VPRN Services Command Reference

Command Hierarchies

Configuration Commands

VPRN Service Configuration Commands

config
— service
vprn service-id [customer customer-id] [create]
— no vprn service-id
aggregate ip-prefix/ip-prefix-length [summary-only]
— no aggregate ip-prefix/ip-prefix-length
auto-bind {ldp | gre | rsvp-te | mpls}
— no auto-bind
autonomous-system as-number
[no] bgp
description description-string
dhcp       (refer to the 7705 SAR OS Router Configuration Guide, “Local DHCP Server Commands”)
dhcp6       (see Local DHCP and DHCPv6 Server Commands)
ecmp max-ecmp-routes
— no ecmp
encryption-keygroup keygroup-id direction {inbound | outbound}
— no encryption-keygroup direction {inbound | outbound}
[no] export-grt-rib-only policy-name [policy-name...(up to 10 max)]
[no] export-limit num-routes
[no] export-v6-limit num-routes
interface ip-int-name
— interface ip-int-name tunnel create        (see Service Interface Tunnel Commands)
— no interface ip-int-name
— ipsec         (see the IPSec Command Reference)
maximum-ipv6-routes number [log-only] [threshold percent]
maximum-routes number [log-only] [threshold percent]
[no] ospf
router-id ip-address
— no router-id
service-name service-name
application dscp-app-name dscp {dscp-value | dscp-name}
application dot1p-app-name dot1p dot1p-priority
— no application {dscp-app-name | dot1p-app-name}
dscp dscp-name fc fc-name
— no dscp dscp-name
[no] shutdown
snmp-community community-name [hash | hash2] [version SNMP-version]
— no snmp-community community-name [hash | hash2]
application {app [ping | ptp | ssh | telnet | traceroute]} | {[ip-int-name | ip-address]}
— no application app {[ping | ptp | ssh | telnet | traceroute]}
application6 app {[ping | telnet | ssh | traceroute]} | ipv6-address
— no application6 app {[ping | telnet | ssh | traceroute]}
[no] spoke-sdp sdp-id
—  [no] shutdown
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] {next-hop {ip-int-name | ip-address} | ipsec-tunnel ipsec-tunnel-name} [bfd-enable | {cpe-check cpe-ip-address [interval seconds] [drop-count count] [log]}]
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] [cpe-check cpe-ip-address [interval seconds] [drop-count count] [log]]
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] black-hole
type hub
— no type
vrf-export policy-name [policy-name...(up to 5 max)]
— no vrf-export
vrf-import policy-name [policy-name...(up to 5 max)]
— no vrf-import
vrf-target {ext-community | {[export ext-community] [import ext-community]}}
— no vrf-target
zone zone-id [create]

BGP Commands

config
— service
— vprn
[no] bgp
[no] as-override
authentication-key [authentication-key | hash-key] [hash | hash2]
[no] backup-path [ipv4] [ipv6]
always-compare-med {zero | infinity}
[no] as-path-ignore [ipv4] [ipv6]
[no] bfd-enable
connect-retry seconds
[no] damping
description description-string
disable-communities [standard] [extended]
[no] enable-bgp-vpn-backup [ipv4] [ipv6]
export policy-name [policy-name…(up to 5 max)]
— no export
[no] family [ipv4] [ipv6]
hold-time seconds [strict]
— no hold-time
import policy-name [policy-name…(up to 5 max)]
— no import
keepalive seconds
— no keepalive
local-as as-number [private]
— no local-as
local-preference local-preference
loop-detect {drop-peer | discard-route | ignore-loop | off}
med-out [number | igp-cost]
— no med-out
min-as-origination seconds
multihop ttl-value
— no multihop
multipath max-paths
— no multipath
preference preference
— no preference
[no] remove-private [limited]
router-id ip-address
— no router-id
[no] shutdown
[no] group name [dynamic-peer]
[no] as-override
authentication-key [authentication-key | hash-key] [hash | hash2]
[no] bfd-enable
connect-retry seconds
[no] damping
description description-string
disable-communities [standard] [extended]
export policy-name [policy-name…(up to 5 max)]
— no export
[no] family [ipv4] [ipv6]
hold-time seconds [strict]
— no hold-time
import policy-name [policy-name…(up to 5 max)]
— no import
keepalive seconds
— no keepalive
local-address ip-address
local-as as-number [private]
— no local-as
local-preference local-preference
loop-detect {drop-peer | discard-route | ignore-loop | off}
med-out [number | igp-cost]
— no med-out
min-as-origination seconds
multihop ttl-value
— no multihop
[no] next-hop-self
[no] passive
peer-as as-number
— no peer-as
preference preference
— no preference
prefix-limit limit
[no] remove-private [limited]
ttl-security min-ttl-value
[no] shutdown
[no] neighbor ip-address
[no] as-override
authentication-key [authentication-key | hash-key] [hash | hash2]
[no] bfd-enable
connect-retry seconds
description description-string
[no] damping
disable-communities [standard] [extended]
export policy-name [policy-name…(up to 5 max)]
— no export
[no] family [ipv4] [ipv6]
hold-time seconds [strict]
— no hold-time
import policy-name [policy-name…(up to 5 max)]
— no import
keepalive seconds
— no keepalive
local-address ip-address
local-as as-number [private]
— no local-as
local-preference local-preference
loop-detect {drop-peer | discard-route | ignore-loop | off}
med-out [number | igp-cost]
— no med-out
min-as-origination seconds
multihop ttl-value
— no multihop
[no] next-hop-self
[no] passive
peer-as as-number
— no peer-as
preference preference
— no preference
prefix-limit limit
[no] remove-private [limited]
ttl-security min-ttl-value
[no] shutdown

OSPF Commands

config
— service
— vprn
[no] ospf
[no] area area-id
area-range ip-prefix/mask [advertise | not-advertise]
— no area-range ip-prefix/mask
[no] interface ip-int-name
authentication-key {authentication-key | hash-key} [hash | hash2]
authentication-type {password | message-digest}
bfd-enable [remain-down-on-failure]
— no bfd-enable
dead-interval seconds
hello-interval seconds
interface-type {broadcast | point-to-point}
lfa-policy-map route-nh-template template-name
message-digest-key key-id md5 {key | hash-key | hash2-key} [hash | hash2]
— no message-digest-key key-id
metric metric
— no metric
mtu bytes
— no mtu
[no] passive
priority number
— no priority
[no] shutdown
transit-delay seconds
[no] nssa
area-range ip-prefix/mask [advertise | not-advertise]
— no area-range ip-prefix/mask
[no] summaries
[no] stub
default-metric metric
[no] summaries
[no] virtual-link router-id transit-area area-id
authentication-key {authentication-key | hash-key} [hash | hash2]
authentication-type {password | message-digest}
dead-interval seconds
hello-interval seconds
message-digest-key key-id md5 {key | hash-key | hash2-key} [hash | hash2]
— no message-digest-key key-id
[no] shutdown
transit-delay seconds
export policy-name [policy-name...(up to 5 max)]
— no export
external-db-overflow limit seconds
external-preference preference
[no] ignore-dn-bit
loopfree-alternate-exclude prefix-policy prefix-policy [prefix-policy...(up to 5 max)]
overload [timeout seconds]
no overload
overload-on-boot [timeout seconds]
preference preference
— no preference
reference-bandwidth bandwidth-in-kbps
reference-bandwidth [tbps Tera-bps] [gbps Giga-bps] [mbps Mega-bps] [kbps Kilo-bps]
router-id ip-address
— no router-id
[no] shutdown
timers
lsa-arrival lsa-arrival-time
lsa-generate max-lsa-wait [lsa-initial-wait [lsa-second-wait]]
spf-wait max-spf-wait [spf-initial-wait [spf-second-wait]]
— no spf-wait
vpn-domain id {0005 | 0105 | 0205 | 8005}
— no vpn-domain
vpn-tag vpn-tag
— no vpn-tag

OSPFv3 Commands

config
— service
— vprn
[no] ospf3
[no] area area-id
area-range ipv6-prefix/prefix-length [advertise | not-advertise]
— no area-range ipv6-prefix/prefix-length
[no] interface ip-int-name
authentication bidirectional sa-name
authentication inbound sa-name outbound sa-name
bfd-enable [remain-down-on-failure]
— no bfd-enable
dead-interval seconds
hello-interval seconds
interface-type {broadcast | point-to-point}
lfa-policy-map route-nh-template template-name
lsa-filter-out [all | except-own-rtrlsa | except-own-rtrlsa-and-defaults]
metric metric
— no metric
mtu bytes
— no mtu
[no] passive
priority number
— no priority
[no] shutdown
transit-delay seconds
key-rollover-interval key-rollover-interval
[no] nssa
area-range ipv6-prefix/prefix-length [advertise | not-advertise]
— no area-range ipv6-prefix/prefix-length
originate-default-route [type-nssa]
[no] summaries
[no] stub
default-metric metric
[no] summaries
[no] virtual-link router-id transit-area area-id
authentication bidirectional sa-name
authentication inbound sa-name outbound sa-name
dead-interval seconds
hello-interval seconds
[no] shutdown
transit-delay seconds
export policy-name [policy-name...(up to 5 max)]
— no export
external-db-overflow limit seconds
external-preference preference
[no] ignore-dn-bit
import policy-name [policy-name...(up to 5 max)]
— no import
loopfree-alternate-exclude prefix-policy prefix-policy [prefix-policy...(up to 5 max)]
overload [timeout seconds]
no overload
overload-on-boot [timeout seconds]
preference preference
— no preference
reference-bandwidth bandwidth-in-kbps
reference-bandwidth [tbps Tera-bps] [gbps Giga-bps] [mbps Mega-bps] [kbps Kilo-bps]
router-id ip-address
— no router-id
[no] shutdown
timers
lsa-arrival lsa-arrival-time
lsa-generate max-lsa-wait [lsa-initial-wait [lsa-second-wait]]
spf-wait max-spf-wait [spf-initial-wait [spf-second-wait]]
— no spf-wait

IGMP Commands

config
— service
— vprn
[no] igmp
[no] interface ip-int-name
import policy-name
— no import
max-groups value
— no max-groups
max-grp-sources max-grp-sources
[no] shutdown
[no] grp-range start end
[no] source ip-address
static
[no] group grp-ip-address
[no] source ip-address
[no] subnet-check
version version
— no version
query-interval seconds
robust-count robust-count
— no robust-count
[no] shutdown
[no] grp-range start end
[no] source ip-address

PIM Commands

config
— service
— vprn
[no] pim
apply-to {all | none}
import {join-policy | register-policy} policy-name [policy-name...(up to 5 max)]
— no import {join-policy | register-policy}
[no] interface ip-int-name
assert-period assert-period
[no] bfd-enable [ipv4]
hello-interval hello-interval
hello-multiplier deci-units
max-groups value
— no max-groups
priority dr-priority
— no priority
[no] shutdown
sticky-dr [priority dr-priority]
— no sticky-dr
rp
bootstrap-export policy-name [policy-name...(up to 5 max)]
bootstrap-import policy-name [policy-name...(up to 5 max)]
[no] shutdown

RIP Commands

Global RIP Commands

config
— service
— vprn
[no] rip
authentication-key [authentication-key | hash-key] [hash | hash2]
authentication-type {none | password | message-digest-20st}
check-zero {enable | disable}
— no check-zero
description description-string
export policy-name [policy-name...(up to 5 max)]
— no export
[no] group name
import policy-name [policy-name...(up to 5 max)]
— no import
message-size max-num-of-routes
metric-in metric
— no metric-in
metric-out metric
— no metric-out
preference preference
— no preference
receive receive-type
— no receive
send send-type
— no send
[no] shutdown
split-horizon {enable | disable}
timers update timeout flush
— no timers

Group RIP Commands

config
— service
— vprn
[no] rip
[no] group name
authentication-key [authentication-key | hash-key] [hash | hash2]
authentication-type {none | password | message-digest}
check-zero {enable | disable}
— no check-zero
description description-string
export policy-name [policy-name...(up to 5 max)]
— no export
import policy-name [policy-name...(up to 5 max)]
— no import
message-size max-num-of-routes
metric-in metric
— no metric-in
metric-out metric
— no metric-out
preference preference
— no preference
receive receive-type
— no receive
send send-type
— no send
[no] shutdown
split-horizon {enable | disable}
timers update timeout flush
— no timers
[no] neighbor ip-int-name

Neighbor RIP Commands

config
— service
— vprn
[no] rip
[no] group name
[no] neighbor ip-int-name
authentication-key [authentication-key | hash-key] [hash | hash2]
authentication-type {none | password | message-digest}
check-zero {enable | disable}
— no check-zero
description description-string
export policy-name [policy-name...(up to 5 max)]
— no export
import policy-name [policy-name...(up to 5 max)]
— no import
message-size max-num-of-routes
metric-in metric
— no metric-in
metric-out metric
— no metric-out
preference preference
— no preference
receive receive-type
— no receive
send send-type
— no send
[no] shutdown
split-horizon {enable | disable}
timers update timeout flush
— no timers

VPRN Security Zone Configuration Commands

config
— service
vprn service-id [customer customer-id] [create]
— no vprn service-id
zone {zone-id | name} [create]
— no zone zone-id
abort
begin
commit
description description-string
[no] auto-bind
inbound
limit
concurrent-sessions {tcp | udp | icmp | other} sessions
— no concurrent-sessions {tcp | udp | icmp | other}
[no] interface ip-int-name
[no] shutdown
log log-id
— no log
name zone-name
— no name
nat
pool pool-id [create]
— no pool pool-id
description description-string
direction {zone-outbound | zone-inbound | both}
— no direction
entry entry-id [create]
— no entry entry-id
ip-address ip-address [to ip-address] interface ip-int-name
— no ip-address
port port [to port]
— no port
name pool-name
— no name
limit
concurrent-sessions {tcp | udp | icmp | other} sessions
— no concurrent-sessions {tcp | udp | icmp | other}
policy {policy-id | name}
— no policy
[no] shutdown

Multicast VPN Commands

config
— service
— vprn
mvpn
auto-discovery [default]
mdt-type {sender-only | receiver-only | sender-receiver}
— no mdt-type
[no] mldp
[no] shutdown
data-threshold {c-grp-ip-addr/mask | c-grp-ip-addr netmask} s-pmsi-threshold
— no data-threshold {c-grp-ip-addr/mask | c-grp-ip-addr netmask}
[no] mldp
[no] shutdown
umh-selection {highest-ip | hash-based | unicast-rt-pref}
vrf-export unicast
vrf-export policy-name [policy-name...(up to 15 max)]
— no vrf-export
vrf-import unicast
vrf-import policy-name [policy-name ... (up to 15 max)]
— no vrf-import
vrf-target {unicast | ext-community | export unicast | ext-community | import unicast | ext-community}
— no vrf-target
export {unicast | ext-community}
import {unicast | ext-community}

Router Advertisement Commands

config
— service
vprn service-id [customer customer-id] [create]
— no vprn service-id
[no] interface ip-int-name
mtu mtu-bytes
— no mtu
prefix ipv6-prefix/prefix-length
— no prefix
[no] autonomous
[no] on-link
preferred-lifetime {seconds | infinite}
valid-lifetime{seconds | infinite}
reachable-time milli-seconds
retransmit-time milli-seconds
router-lifetime seconds
[no] shutdown

Local DHCP and DHCPv6 Server Commands

For complete descriptions of all local DHCP and DHCPv6 server commands, refer to the Router Configuration Guide, “Local DHCP and DHCPv6 Server Commands”.

config
— service
— vprn
dhcp
local-dhcp-server server-name [create]
— no local-dhcp-server server-name
description description-string
— no description
[no] force-renew
pool pool-name [create]
— no pool pool-name
description description-string
— no description
max-lease-time [days days] [hrs hours] [min minutes] [sec seconds]
— no max-lease-time
min-lease-time [days days] [hrs hours] [min minutes] [sec seconds]
— no min-lease-time
— minimum-free minimum-free [percent] [event-when-depleted]
— no minimum-free
offer-time [min minutes] [sec seconds]
— no offer-time
options
custom-option option-number address ip-address [ip-address...(up to 4 max)]
custom-option option-number hex hex-string
custom-option option-number string ascii-string
— no custom-option option-number
— dns-server ip-address [ip-address...(up to 4 max)]
— no dns-server
— domain-name domain-name
— no domain-name
lease-rebind-time [days days] [hrs hours] [min minutes] [sec seconds]
— no lease-rebind-time
lease-renew-time [days days] [hrs hours] [min minutes] [sec seconds]
— no lease-renew-time
lease-time [days days] [hrs hours] [min minutes] [sec seconds]
— no lease-time
netbios-name-server ip-address [ip-address...(up to 4 max)]
— no netbios-name-server
netbios-node-type {B | P | M | H}
— no netbios-node-type
subnet {ip-address/mask | ip-address netmask} [create]
— no subnet {ip-address/mask | ip-address netmask}
[no] address-range start-ip-address end-ip-address
[no] exclude-addresses start-ip-address [end-ip-address]
maximum-declined maximum-declined
— no maximum-declined
— minimum-free minimum-free [percent] [event-when-depleted]
— no minimum-free
options
custom-option option-number address ip-address [ipaddress...(up to 4 max)]
custom-option option-number hex hex-string
custom-option option-number string ascii-string
— no custom-option option-number
— default-router ip-address [ip-address...(up to 4 max)]
— no default-router
subnet-mask ip-address
— no subnet-mask
[no] shutdown
[no] use-gi-address
[no] use-pool-from-client
dhcp6
local-dhcp-server server-name [create]
— no local-dhcp-server server-name
description description-string
— no description
[no] ignore-rapid-commit
— lease-hold-time [days days] [hrs hours] [min minutes] [sec seconds]
— no lease-hold-time
pool pool-name [create]
— no pool pool-name
description description-string
— no description
options
custom-option option-number address ipv6-address [ipv6-address...(up to 4 max)]
— custom-option option-number domain domain-string
custom-option option-number hex hex-string
custom-option option-number string ascii-string
— no custom-option option-number
— dns-server ipv6-address [ipv6-address...(up to 4 max)]
— no dns-server
— domain-name domain-name
— no domain-name
— prefix ipv6-address/prefix-length [pd] [wan-host] [create]
— no prefix ipv6-address/prefix-length
— options
— custom-option option-number address ipv6-address [ipv6-address... (up to 4 max)]
— custom-option option-number domain domain-string
— custom-option option-number hex hex-string
— custom-option option-number string ascii-string
— no custom-option option-number
— dns-server ipv6-address [ipv6-address... (up to 4 max)]
— no dns-server
— domain-name domain-name
— no domain-name
— preferred-lifetime [days days] [hrs hours] [min minutes] [sec seconds]
— no preferred-lifetime
— rebind-timer [days days] [hrs hours] [min minutes] [sec seconds]
— no rebind-timer
— renew-timer [days days] [hrs hours] [min minutes] [sec seconds]
— no renew-timer
— valid-lifetime [days days] [hrs hours] [min minutes] [sec seconds]
— no valid-lifetime
— server-id duid-en hex hex-string
— server-id duid-en string ascii-string
— server-id duid-ll
— no server-id
[no] shutdown
— use-link-address [scope scope]
— no use-link-address
[no] use-pool-from-client
— user-ident user-ident
— no user-ident

Interface Commands

config
— service
— vprn
interface ip-int-name
— interface ip-int-name tunnel create        (see Service Interface Tunnel Commands)
— no interface ip-int-name
address {ip-address/mask | ip-address netmask} [broadcast {all-ones | host-ones}]
— no address {ip-address/mask | ip-address netmask}
arp-retry-timer ms-timer
arp-timeout seconds
— no arp-timeout
bfd transmit-interval [receive receive-interval] [multiplier multiplier] [echo-receive echo-interval] [type np]
— no bfd
description description-string
dhcp
icmp
ip-mtu octets
— no ip-mtu
ipcp
dns ip-address [secondary ip-address]
dns secondary ip-address
— no dns [ip-address] [secondary ip-address]
peer-ip-address ip-address
l4-load-balancing {includeL4 | excludeL4}
[no] local-dhcp-server local-server-name
[no] local-proxy-arp
[no] loopback
mac ieee-address
— no mac [ieee-address]
proxy-arp-policy policy-name [policy-name...(up to 5 max)]
[no] sap sap-id [create]
accounting-policy acct-policy-id
— no accounting-policy [acct-policy-id]
[no] collect-stats
description description-string
egress
agg-rate-limit agg-rate [cir cir-rate]
filter ip ip-filter-id
— no filter ip [ip-filter-id]
filter ipv6 ipv6-filter-id
— no filter ipv6 [ipv6-filter-id]
filter [ip ip-filter-id] [ipv6 ipv6-filter-id ]
— no filter [[ip [ip-filter-id]] [[ipv6 [ipv6-filter-id ]]
qos policy-id
— no qos [policy-id]
scheduler-mode {4-priority | 16-priority}
[no] shaper-group shaper-group-name [create]
ingress
agg-rate-limit agg-rate [cir cir-rate]
filter ip ip-filter-id
— no filter ip [ip-filter-id]
filter ipv6 ipv6-filter-id
— no filter ipv6 [ipv6-filter-id]
filter [ip ip-filter-id] [ipv6 ipv6-filter-id ]
— no filter [[ip [ip-filter-id]] [[ipv6 [ipv6-filter-id ]]
match-qinq-dot1p {top | bottom}
qos policy-id
— no qos [policy-id]
scheduler-mode {4-priority | 16-priority}
[no] shaper-group shaper-group-name [create]
[no] shutdown
secondary {ip-address/mask | ip-address netmask} [broadcast all-ones | host-ones] [igp-inhibit]
— no secondary {ip-address/mask | ip-address netmask}
[no] shutdown
spoke-sdp sdp-id:vc-id
— no spoke-sdp sdp-id:vc-id
egress
vc-label egress-vc-label
— no vc-label [egress-vc-label]
ingress
filter ip ip-filter-id
filter ipv6 ipv6-filter-id
— no filter [ip ip-filter-id] [ipv6 ipv6-filter-id ]
vc-label ingress-vc-label
— no vc-label [ingress-vc-label]
[no] shutdown
static-arp ip-address ieee-address
— no static-arp ip-address [ieee-address]
static-arp ieee-address unnumbered
— no static-arp [ieee-address] unnumbered
unnumbered {ip-int-name | ip-address}
— no unnumbered
vpls service-name
— no vpls
vrrp virtual-router-id [owner]
— no vrrp virtual-router-id

IPv6 Interface Commands

config
— service
vprn service-id [customer customer-id] [create]
— no vprn service-id
[no] interface ip-int-name
[no] ipv6
address ipv6-address/prefix-length [eui-64][preferred]
— no address ipv6-address/prefix-length
bfd transmit-interval [receive receive-interval] [multiplier multiplier]
— no bfd
[no] dhcp6-relay
description description-string
[no] option
interface-id ascii-tuple
interface-id ifindex
interface-id sap-id
interface-id string
[no] remote-id
[no] server ipv6z-address
[no] shutdown
[no] source-address ipv6-address
[no] dhcp6-server
max-nbr-of-leases max-nbr-of-leases
[no] prefix ipv6-address/prefix-length
duid duid [iaid iaid]
— no duid
preferred-lifetime seconds
preferred-lifetime infinite
valid-lifetime seconds
valid-lifetime infinite
[no] shutdown
icmp6
packet-too-big [number seconds]
param-problem [number seconds]
time-exceeded [number seconds]
unreachables [number seconds]
link-local-address ipv6-address [preferred]
— no local-dhcp-server server-name
neighbor ipv6-address mac-address
— no neighbor ipv6-address
[no] reachable-time seconds
[no] stale-time seconds
— no stale-time

Interface DHCP Commands

config
— service
— vprn
— interface
dhcp
description description-string
gi-address ip-address [src-ip-addr]
— no gi-address
[no] option
action {replace | drop | keep}
— no action
circuit-id [ascii-tuple | ifindex | sap-id | vlan-ascii-tuple]
— no circuit-id
remote-id [mac | string string]
— no remote-id
[no] sap-id
[no] service-id
string text
— no string
[no] system-id
server server1 [server2...(up to 8 max)]
— no server
[no] shutdown
[no] trusted

Interface ICMP Commands

config
— service
— vprn
— interface
icmp
[no] mask-reply
ttl-expired number seconds
— no ttl-expired [number seconds]
unreachables number seconds
— no unreachables [number seconds]

Interface SAP IPSec-Tunnel Commands

For complete descriptions of all VPRN IPSec commands, refer to the IPSec Command Reference.

config
— service
— vprn
— interface
— sap
— ipsec-tunnel ipsec-tunnel-name [create]

Routed VPLS Commands

config
— service
vprn service-id
interface ip-interface-name [create]
— no interface ip-interface-name
vpls service-name
— no vpls
ingress
v4-routed-override-filter ipv4-filter-id
v6-routed-override-filter ipv6-filter-id

Interface VRRP Commands

config
— service
vprn
interface ip-int-name
vrrp virtual-router-id [owner]
— no vrrp virtual-router-id
authentication-key [authentication-key | hash-key] [hash | hash2]
[no] backup ip-address
[no] bfd-enable [base | service-id] interface interface-name dst-ip ip-address
init-delay seconds
— no init-delay
mac ieee-address
— no mac
message-interval {[seconds] [milliseconds milliseconds]}
[no] ping-reply
policy vrrp-policy-id
— no policy
[no] preempt
priority priority
— no priority
[no] shutdown
[no] ssh-reply
[no] telnet-reply

TWAMP Light Commands

config
— service
vprn
[no] reflector
description description-string
[no] prefix ip-prefix/prefix-length [create]
description description-string
udp-port number
— no udp-port
[no] shutdown

Show Commands

For complete descriptions of all local DHCP and DHCPv6 server show commands, refer to the Router Configuration Guide, “IP Router Command Reference, Show Commands”.

show
— service
egress-label start-label [end-label]
id service-id
all
arp [ip-address] | [mac ieee-address] | [sap sap-id] | [interface ip-int-name]
base
dhcp
statistics [interface ip-int-name | ip-address]
summary [interface interface-name | saps]
interface [{[ip-address | ip-int-name] [interface-type] [detail] [family]} | summary]
sap [sap-id [detail]]
— sap-using description (see the VLLServices Command Reference, Show Commands)
sdp {[sdp-id[:vc-id] | far-end ip-address]} [detail]
sdp [sdp-id[:vc-id]
ingress-label start-label [end-label]
service-using vprn [sdp sdp-id] [customer customer-id]
show
router [service-id]
aggregate [active]
arp [ip-address | ip-int-name | mac ieee-mac-address] [sdp sdp-id:vc-id] [summary]
bgp
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] [ipv4]
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] ipv6
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] vpn-ipv4
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] vpn-ipv6
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] mvpn-ipv4
group [name] [detail]
— inter-as-label   (see  Note:)
neighbor [ip-address [detail]]
neighbor [as-number [detail]]
neighbor ip-address [family [type mvpn-type]] filter1 [brief]
neighbor ip-address [family] filter2
neighbor as-number [family] filter2
neighbor ip-address orf [filter3]
neighbor ip-address graceful-restart
next-hop [family] [ip-address] [detail]
paths
routes [family] [brief]
routes [family] prefix [detail | longer | hunt [brief]]
routes family [prefix] [detail | longer | hunt [brief]]
routes vpn-ipv4 prefix [rd rd] [detail | longer | hunt [brief]]
routes [family [type mvpn-type]] community comm-id
routes [family [type mvpn-type]] aspath-regex reg-ex
routes mvpn-ipv4 type mvpn-type {rd rd | originator-ip ip-address | source-ip ip-address | group-ip ip-address | source-as as-number} [hunt | detail]
summary [all]
summary [family family] [neighbor ip-address]
— dhcp
— local-dhcp-server server-name
— associations
— declined-addresses ip-address[/mask] [detail]
— declined-addresses pool pool-name
— free-addresses ip-address[/mask]
— free-addresses summary [subnet ip-address[/mask]]
— free-addresses pool pool-name
— leases [detail]
— leases ip-address[/mask] address-from-user-db [detail]
— leases ip-address[/mask] [detail] [state]
— leases ip-address[/mask] dhcp-host dhcp-host-name [detail]
— pool-ext-stats [pool-name]
— server-stats
— subnet-ext-stats ip-address[/mask]
— subnet-ext-stats pool pool-name
— subnet-stats ip-address[/mask]
— subnet-stats pool pool-name
— summary
servers [all]
statistics [interface ip-int-name | ip-address]
— dhcp6
— local-dhcp-server server-name
— associations
— leases [ipv6-address/prefix-length] [type] [state] [detail]
— pool-ext-stats [pool-name]
— pool-stats [pool-name]
— prefix-ext-stats ipv6-address/prefix-length
— prefix-ext-stats pool pool-name
— prefix-stats ipv6-address/prefix-length
— prefix-stats pool pool-name
— server-stats
— summary
servers [all]
interface [{[ip-address | ip-int-name] [detail]} | summary | exclude-services]
route-table [ip-address | mask] [longer | best] [protocol protocol] [summary]
sgt-qos [service-id]
application [app-name] [dscp | dot1p]
dscp-map dscp-map [dscp-name]
static-arp [ip-address | ip-int-name | mac ieee-mac-address]
static-route [ip-prefix /mask] | [preference preference] | [next-hop ip-address] [detail]
tunnel-table [ip-address[/[mask]] [protocol protocol | sdp sdp-id]
tunnel-table [summary]
Note:

The inter-as-label command appears in the show>router>bgp command hierarchy; however, it is not applicable in the VPRN BGP context and, if executed, will return empty output.

Clear Commands

clear
— service
id service-id
arp
dhcp
statistics [sap sap-id | sdp sdp-id:vc-id | interface {ip-int-name | ip-address}]
dhcp6
statistics [interface {ip-int-name | ipv6-address}]
fdb {all | mac ieee-address | sap sap-id | mesh-sdp sdp-id[:vc-id] | spoke-sdp sdp-id:vc-id}
mesh-sdp sdp-id[:vc-id] ingress-vc-label
mfib
statistics {all | ip | mac | group grp-address}
spoke-sdp sdp-id:vc-id ingress-vc-label
id service-id
cem
mesh-sdp sdp-id[:vc-id] {all | counterss | stp}
spoke-sdp sdp-id:vc-id {all | counters}
sap sap-id {all | cem | counters }
sap-aggregation-group svcId-id:groupName {all | counters}
sdp sdp-id keep-alive

Debug Commands

debug
— service
id service-id
[no] id service-id
[no] dhcp
detail-level {low | medium | high}
mac ieee-address
— no mac ieee-address
mode {dropped-only | ingr-and-dropped | egr-ingr-and-dropped}
— no mode
sap sap-id
— no sap sap-id
sdp sdp-id:vc-id
— no sdp sdp-id:vc-id
[no] dhcp6
detail-level {low | medium | high}
mac ieee-address
— no mac ieee-address
mode {all | dropped-only}
— no mode
sap sap-id
— no sap sap-id
event-type {config-change | svc-oper-status-change | sap-oper-status-change | sdpbind-oper-status-change}
— no event-type
sap sap-id
— no sap sap-id
sdp sdp-id:vc-id
— no sdp sdp-id:vc-id

Command Descriptions

VPRN Service Configuration Commands

Generic Commands

description

Syntax 
description description-string
no description
Context 
config>service>vprn
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
config>service>vprn>dhcp>local-dhcp-server
config>service>vprn>dhcp>local-dhcp-server>pool
config>service>vprn>interface
config>service>vprn>if>dhcp
config>service>vprn>if>ipv6>dhcp6-relay
config>service>vprn>if>sap
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
config>service>vprn>twamp-light>reflector
config>service>vprn>twamp-light>reflector>prefix
config>service>vprn>zone
config>service>vprn>zone>nat>pool
Description 

This command creates a text description that is stored in the configuration file for a configuration context.

The description command associates a text string with a configuration context to help identify the contents in the configuration file.

The no form of this command removes the string from the configuration.

Default 

no description

Parameters 
description-string—
the description character string. Allowed values are any string up to 80 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

shutdown

Syntax 
[no] shutdown
Context 
config>service>vprn
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
config>service>vprn>interface
config>service>vprn>if>dhcp
config>service>vprn>if>ipv6>dhcp6-relay
config>service>vprn>if>ipv6>dhcp6-server>prefix-delegation
config>service>vprn>if>spoke-sdp
config>service>vprn>if>sap
config>service>vprn>if>vrrp
config>service>vprn>ospf
config>service>vprn>ospf>area>interface
config>service>vprn>ospf>area>virtual-link
config>service>vprn>ospf3
config>service>vprn>ospf3>area>interface
config>service>vprn>ospf3>area>virtual-link
config>service>vprn>pim
config>service>vprn>pim>interface
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
config>service>vprn>router-advertisement>interface
config>service>vprn>spoke-sdp
config>service>vprn>twamp-light>reflector
config>service>vprn>zone
config>service>vprn>zone>interface
Description 

This command administratively disables an entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics.

The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they can be deleted.

Services are created in the administratively down (shutdown) state. When a no shutdown command is entered, the service becomes administratively up and then tries to enter the operationally up state. Default administrative states for services and service entities are described below in Special Cases.

The no form of this command places the entity into an administratively enabled state.

Special Cases 
Service Admin State —
bindings to an SDP within the service will be put into the out-of-service state when the service is shut down. While the service is shut down, all customer packets are dropped and counted as discards for billing and debugging purposes.

A service is regarded as operational providing that one IP Interface SAP and one SDP is operational.

Global Commands

vprn

Syntax 
vprn service-id [customer customer-id] [create]
no vprn service-id
Context 
config>service
Description 

This command creates or edits a Virtual Private Routed Network (VPRN) service instance.

If the service-id does not exist, a context for the service is created. If the service-id exists, the context for editing the service is entered.

VPRN services allow the creation of customer-facing IP interfaces in a separate routing instance from the one used for service network core routing connectivity. VPRN services allow the IP addressing scheme used by the subscriber to overlap with other addressing schemes used by other VPRN services or by the provider and, potentially, the entire Internet.

IP interfaces defined within the context of a VPRN service ID must have a SAP created as the access point to the subscriber network.

When a service is created, the customer keyword and customer-id must be specified, which associates the service with a customer. The customer-id must already exist, having been created using the customer command in the service context. When a service is created with a customer association, it is not possible to edit the customer association. To change the association between service and customer, the service must be deleted and recreated with a new customer association.

Once a service is created, the use of customer customer-id is optional to navigate into the service configuration context. Attempting to edit a service with an incorrect customer-id results in an error.

Multiple VPRN services are created in order to separate customer-owned IP interfaces. More than one VPRN service can be created for a single customer ID. More than one IP interface can be created within a single VPRN service ID. All IP interfaces created within a VPRN service ID belong to the same customer.

The no form of the command deletes the VPRN service instance with the specified service-id. The service cannot be deleted until all the IP interfaces and all routing protocol configurations defined within the service ID have been shut down and deleted.

Default 

n/a

Parameters 
service-id—
the unique service identification number or name that identifies the service in the service domain. The ID must be unique to this service and cannot be used for any other service of any type (such as Epipe, Cpipe, IES). However, a VPRN instance in the service provider network can include different service-ids on the routers in the network.
Values—
1 to 2147483647 or service-name
customer-id—
an existing customer identification number to be associated with the service. This parameter is required during service creation and is optional for service editing or deleting.
Values—
1 to 2147483647
create—
keyword is mandatory when creating a VPRN service

aggregate

Syntax 
aggregate ip-prefix/ip-prefix-length [summary-only]
no aggregate ip-prefix/ip-prefix-length
Context 
config>service>vprn
Description 

This command creates an aggregate route.

Use this command to group a number of routes with common prefixes into a single entry in the routing table. This reduces the number of routes that need to be advertised by this router and reduces the number of routes in the routing tables of downstream routers.

Both the original components and the aggregated route (source protocol aggregate) are offered to the Routing Table Manager (RTM). Subsequent policies can be configured to assign protocol-specific characteristics, such as the OSPF tag, to aggregate routes.

Multiple entries with the same prefix but a different mask can be configured; routes are aggregated to the longest mask. If one aggregate is configured as 10.0/16 and another as 10.0.0/24, then route 10.0.128/17 would be aggregated into 10.0/16 and route 10.0.0.128/25 would be aggregated into 10.0.0/24. If multiple entries are made with the same prefix and the same mask, the previous entry is overwritten.

The no form of the command removes the aggregate.

Default 

no aggregate

Parameters 
ip-prefix/ip-prefix-length—
the destination address of the aggregate route
Values—
ipv4-prefix                              a.b.c.d (host bits must be 0)
ipv4-prefix-length                   0 to 30
ipv6-prefix                              x:x:x:x:x:x:x:x (eight 16-bit                                                pieces)
                                               x:x:x:x:x:x:d.d.d.d
                                               x:   [0 to FFFF]H
                                              d:   [0 to 255]D
ipv6-prefix-length                 0 to 128
summary-only—
suppresses advertisement of more specific component routes for the aggregate. To remove the summary-only option, enter the same aggregate command without the summary-only parameter.

auto-bind

Syntax 
auto-bind {ldp | gre | rsvp-te | mpls}
no auto-bind
Context 
config>service>vprn
Description 

This command specifies the type of automatic binding for the SDP assigned to this service. When auto-bind is used, it is not required that a spoke-SDP be configured for the service.

Default 

no auto-bind

Parameters 
ldp—
specifies LDP as the automatic binding for the SDP assigned to the service
gre—
specifies GRE as the automatic binding for the SDP assigned to the service
rsvp-te—
specifies RSVP-TE as the automatic binding for the SDP assigned to the service
mpls—
specifies that both LDP and RSVP-TE can be used to resolve the BGP next-hop for VPRN routes in an associated VPRN instance.

autonomous-system

Syntax 
autonomous-system as-number
no autonomous-system
Context 
config>service>vprn
Description 

This command defines the autonomous system (AS) to be used by this VPN virtual routing/forwarding table (VRF).

The no form of the command removes the defined AS from the given VPRN context.

Default 

no autonomous-system

Parameters 
as-number—
specifies the AS number for the VPRN service
Values—
1 to 4294967295

ecmp

Syntax 
ecmp max-ecmp-routes
no ecmp
Context 
config>service>vprn
Description 

This command enables ECMP in the VPRN service context and configures the number of routes for path sharing; for example, the value 2 means two equal-cost routes will be used for cost sharing.

ECMP (Equal-Cost Multipath Protocol) refers to the distribution of packets over two or more outgoing links that share the same routing cost. ECMP provides a fast local reaction to route failures. ECMP is supported on static routes and dynamic (OSPF, IS-IS, and BGP) routes.

ECMP can only be used for routes with the same preference and same protocol. See the static-route command for information on preferences.

When more ECMP routes are available at the best preference than configured in max-ecmp-routes, then the lowest next-hop IP address algorithm is used to select the number of routes configured in max-ecmp-routes.

The no form of the command disables ECMP path sharing. If ECMP is disabled and multiple routes are available at the best preference and equal cost, the route with the lowest next-hop IP address is used.

The no form of the command disables ECMP path sharing.

Default 

no ecmp

Parameters 
max-ecmp-routes—
the maximum number of equal-cost routes allowed on this VPRN instance, expressed as a decimal integer. Setting ECMP max-ecmp-routes to 1 yields the same result as entering no ecmp.
Values—
0 to 8

encryption-keygroup

Syntax 
encryption-keygroup keygroup-id direction {inbound | outbound}
no encryption-keygroup direction {inbound | outbound}
Context 
config>service>vprn
Description 

This command is used to bind a key group to a VPRN service for inbound or outbound packet processing. When configured in the outbound direction, packets egressing the node use the active-outbound-sa associated with the key group configured. When configured in the inbound direction, received packets must be encrypted using one of the valid security associations configured for the key group.

The encryption (enabled or disabled) configured on an SDP used to terminate a Layer 3 spoke SDP of a VPRN always overrides any VPRN-level configuration for encryption.

Encryption is enabled once the outbound direction is configured.

The no form of the command removes the key group from the service in the specified direction (inbound or outbound).

Default 

n/a

Parameters 
keygroup-id—
the number of the key group being configured
Values—
1 to 15 or keygroup-name (up to 64 characters)
direction {inbound | outbound}
mandatory keywords when binding a key group to a service for a particular direction

grt-lookup

Syntax 
grt-lookup
Context 
config>service>vprn
Description 

This command enables the context for global routing table lookup within a VPRN, for in-band node management on the 7705 SAR. The GRT lookup occurs only on the local 7705 SAR system IP address within a VPRN.

enable-grt-local-management-only

Syntax 
[no] enable-grt-local-management-only
Context 
config>service>vprn>grt-lookup
Description 

This command enables global routing table lookup of the 7705 SAR system IP address on network ingress traffic in a VPRN, so that only management traffic is transported using the VPRN.

On network ingress, when a packet arrives from the transport tunnel to the VPRN, a lookup is performed within the VPRN on the inner customer packet IP header. If the destination IP address in the header matches the local 7705 SAR system IP address, and the enable-grt-local-management-only command is configured, then the packet is extracted to the CSM for processing as management traffic. If enable-grt-local-management-only is not enabled, the packet is routed using the 7705 SAR VRF FIB.

The no form of the command disables the global routing table lookup function for the 7705 SAR system IP address.

Default 

no enable-grt-local-management-only

export-grt-rib-only

Syntax 
[no] export-grt-rib-only policy-name [policy-name...(up to 10 max)]
Context 
config>service>vprn>grt-lookup
Description 

This command enables specific route policies to be exported to the GRT RIB.

On network egress, packets generated from the CSM with a source IP address that matches the 7705 SAR system IP address and the destination IP address of either the far-end 5620 SAM or other management entity must perform a GRT lookup in order to be resolved. A route policy can be configured with the IP address prefix of the far-end management entity and with the action to accept. This policy can be configured under the config>router> policy-options context, and can be installed in the GRT RIB using the export-grt-rib-only command. The route installed in the GRT RIB will have a next hop of the corresponding VRF tunnel.

This prevents any user data traffic in the GRT data path from leaking into the VPRN, and ensures that only the management traffic originating from the system IP address and the CSM gets transported through the VPRN. The management packets get routed by the corresponding VPRN transport tunnel, which means the VPRN route is leaked into the GRT so the GRT resolves the route using the corresponding VPRN.

Up to ten policies can be exported to the GRT RIB.

The no form of the command restores the default of not exporting routes to the GRT RIB.

Default 

no export-grt-rib-only

Parameters 
policy-name—
the name of the route policy to be exported to the GRT RIB

export-limit

Syntax 
[no] export-limit num-routes
Context 
config>service>vprn>grt-lookup
Description 

This command limits the number of IPv4 routes that can be placed in a route policy to be exported to the GRT RIB.

The no form of the command reverts to the default of allowing five routes to be placed in a route policy to be exported from the VPRN to the GRT RIB.

Default 

no export-limit

Parameters 
num-routes—
the number of routes per policy to be exported to the GRT RIB (up to 5 routes)
Values—
1 to 5

export-v6-limit

Syntax 
[no] export-v6-limit num-routes
Context 
config>service>vprn>grt-lookup
Description 

This command limits the number of IPv6 routes that can be placed in a route policy to be exported to the GRT RIB.

The no form of the command reverts to the default of allowing five IPv6 routes to be placed in a route policy to be exported from the VPRN to the GRT RIB.

Default 

no export-v6-limit

Parameters 
num-routes—
the number of IPv6 routes per policy to be exported to the GRT RIB
Values—
1 to 5

maximum-ipv6-routes

Syntax 
maximum-ipv6-routes number [log-only] [threshold percent]
no maximum-ipv6routes
Context 
config>service>vprn
Description 

This command specifies the maximum number of IPv6 routes that can be held within a VPN virtual routing /forwarding (VRF) context. Local, host, static, and aggregate routes are not counted.

The VPRN service ID must be in a shutdown state before maximum-ipv6-routes command parameters can be modified.

If the log-only parameter is not specified and the maximum-ipv6-routes value is set to a value below the existing number of IPv6 routes in a VRF, then the extra IPv6 routes will not be added to the VRF.

The maximum IPv6 route threshold can dynamically change to increase the number of supported IPv6 routes even when the maximum has already been reached. Protocols will resubmit the IPv6 routes that were initially rejected.

The no form of the command disables any limit on the number of IPv6 routes within a VRF context. Issue the no form of the command only when the VPRN instance is shut down.

Default 

no maximum-ipv6routes (0 or disabled)

Parameters 
number—
the maximum number of IPv6 routes to be held in a VRF context
Values—
1 to 2147483647
log-only—
specifies that if the maximum limit is reached, the event only will be logged. The log-only parameter does not disable the learning of new IPv6 routes.
percent
the percentage at which a warning log message and SNMP will be used. There are two warning levels: mid-level and high-level. A mid-level warning occurs when the threshold percent value is reached, and a high-level warning occurs at the halfway level between the maximum number of IPv6 routes and the percent value ([max + mid] / 2). For example, if the maximum-ipv6-routes number is 100, and percent is 60, then the mid-level warning occurs at 60 IPv6 routes, and the high-level warning occurs at 80 IPv6 routes.
Values—
0 to 100

maximum-routes

Syntax 
maximum-routes number [log-only] [threshold percent]
no maximum-routes
Context 
config>service>vprn
Description 

This command specifies the maximum number of IPv4 routes that can be held within a VPN virtual routing /forwarding (VRF) context. Local, host, static, and aggregate routes are not counted.

The VPRN service ID must be in a shutdown state before maximum-routes command parameters can be modified.

If the log-only parameter is not specified and the maximum-routes value is set to a value below the existing number of IPv4 routes in a VRF, then the extra IPv4 routes will not be added to the VRF.

The maximum IPv4 route threshold can dynamically change to increase the number of supported IPv4 routes even when the maximum has already been reached. Protocols will resubmit the IPv4 routes that were initially rejected.

The no form of the command disables any limit on the number of IPv4 routes within a VRF context. Issue the no form of the command only when the VPRN instance is shut down.

Default 

no maximum-routes (0 or disabled)

Parameters 
number—
the maximum IPv4 number of routes to be held in a VRF context
Values—
1 to 2147483647
log-only—
specifies that if the maximum limit is reached, the event only will be logged. The log-only parameter does not disable the learning of new routes.
percent
the percentage at which a warning log message and SNMP will be used. There are two warning levels: mid-level and high-level. A mid-level warning occurs when the threshold percent value is reached, and a high-level warning occurs at the halfway level between the maximum number of IPv4 routes and the percent value ([max + mid] / 2). For example, if the maximum-routes number is 100, and percent is 60, then the mid-level warning occurs at 60 IPv4 routes, and the high-level warning occurs at 80 IPv6 routes.
Values—
0 to 100

route-distinguisher

Syntax 
route-distinguisher [rd]
no route-distinguisher
Context 
config>service>vprn
Description 

This command sets the identifier that gets attached to routes to which the VPN belongs. Each routing instance must have a unique (within the carrier’s domain) route distinguisher associated with it. A route distinguisher must be defined for a VPRN to be operationally active.

AS numbers can be either 2-byte or 4-byte values.

Default 

no route-distinguisher

Parameters 
rd—
the route distinguisher value
Values—
ip-addr:comm-val | 2byte-asnumber:ext-comm-val | 4-byte-asnumber:comm-val
where
ip-addr: a.b.c.d
comm-val : 0 to 65535
2-byte-asnumber : 1 to 65535
ext-comm-val : 0 to 4294967295
4-byte-asnumber: 1 to 4294967295

router-id

Syntax 
router-id ip-address
no router-id
Context 
config>service>vprn
config>service>vprn>bgp
Description 

This command sets the router ID for a specific VPRN context.

If neither the router ID nor system interface are defined, the router ID from the base router context is inherited.

The no form of the command removes the router ID definition from the given VPRN context.

Default 

no router-id

Parameters 
ip-address—
the IP address, in dotted-decimal notation
Values—
a.b.c.d

service-name

Syntax 
service-name service-name
no service-name
Context 
config>service>vprn
Description 

This command configures a service name that can be used for reference in configuration and show commands.

Parameters 
service-name—
up to 64 characters

sgt-qos

Syntax 
sgt-qos
Context 
config>service>vprn
Description 

This command enables the context to configure DSCP/dot1p re-marking for self-generated traffic.

application

Syntax 
application dscp-app-name dscp {dscp-value | dscp-name}
application dot1p-app-name dot1p dot1p-priority
no application {dscp-app-name | dot1p-app-name}
Context 
config>service>vprn>sgt-qos
Description 

This set of commands configures DSCP marking for self-generated IP traffic or dot1p marking for self-generated non-IP traffic (specifically, IS-IS and ARP traffic).

When an IP or Layer 3 application is configured using the dscp-app-name parameter, the specified DSCP name or DSCP value is used for all packets generated by this application within the router instance in which it is configured. The value set in this command sets the DSCP value in the egress IP header. The egress QoS policy will not overwrite this value.

When a Layer 2 application is configured using the dot1p-app-name parameter, the specified dot1p priority value is used for all packets generated by this application within the router instance in which it is configured.

Only one name or value can be configured per application. If multiple entries are configured, then a subsequent entry overrides the previously configured entry.

The no form of this command resets the DSCP or dot1p value for the application to its default value.

Default 

none (that is, sgt-qos does not enforce a DSCP or dot1p value and the application uses its default value, as shown in Table 116)

Table 116:  Applications and Support for Configurable DSCP or dot1p Markings 

Application

Supported Marking

Default DSCP/dot1p

ARP

dot1p

7

IS-IS

dot1p

7

BGP

DSCP

NC1

DHCP

DSCP

NC1

DNS

DSCP

AF41

FTP

DSCP

AF41

ICMP (ping)

DSCP

BE

IGMP

DSCP

NC1

LDP (T-LDP)

DSCP

NC1

MLD

DSCP

NC1

NDIS

DSCP

NC1

NTP

DSCP

NC1

OSPF

DSCP

NC1

PIM

DSCP

NC1

1588 PTP

DSCP

NC1

RADIUS

DSCP

AF41

RIP

DSCP

NC1

RSVP

DSCP

NC1

SNMP (get, set, etc.)

DSCP

AF41

SNMP trap/log

DSCP

AF41

SSH (SCP)

DSCP

AF41

syslog

DSCP

AF41

TACACS+

DSCP

AF41

Telnet

DSCP

AF41

TFTP

DSCP

AF41

Traceroute

DSCP

BE

VRRP

DSCP

NC1

Parameters 
dscp-app-name—
the DSCP application name
Values—
bgp, dhcp, dns, ftp, icmp, igmp, ldp, mld, ndis, ntp, ospf, pim, ptp, radius, rip, rsvp, snmp, snmp-notification, ssh, syslog, tacplus, telnet, tftp, traceroute, vrrp
dscp-value—
the DSCP value when this packet egresses. The respective egress policy should provide the mapping for the DSCP value to either LSP-EXP bits or IEEE 802.1p (dot1p) bits as appropriate; otherwise, the default mapping applies.
Values—
none | 0 to 63
dscp-name—
the DSCP name
Values—
none, be, ef, cp1, cp2, cp3, cp4, cp5, cp6, cp7, cp9, cs1, cs2,  cs3, cs4, cs5, nc1, nc2, af11, af12, af13, af21, af22, af23,  af31, af32, af33, af41, af42, af43, cp11, cp13, cp15, cp17,  cp19, cp21, cp23, cp25, cp27, cp29, cp31, cp33, cp35, cp37,  cp39, cp41, cp42, cp43, cp44, cp45, cp47, cp49, cp50, cp51,  cp52, cp53, cp54, cp55, cp57, cp58, cp59, cp60, cp61, cp62, cp63
dot1p-app-name—
the dot1p application name
Values—
arp, isis
dot1p-priority—
the dot1p priority
Values—
none, 0 to 7

dscp

Syntax 
dscp dscp-name fc fc-name
no dscp dscp-name
Context 
config>service>vprn>sgt-qos
Description 

This command creates a mapping between the DSCP of the self-generated traffic and the forwarding class. The forwarding class dot1p SAP egress QoS policy mapping is used to mark the dot1p bits of the Layer 3 or IP application. For example, configuring the dscp-name parameter as be and the fc-name parameter as l1 results in marking the dot1p bits of the outgoing Ethernet frame, which is transporting self-generated IP traffic with DSCP bits set to BE, to the value that FC L1 points to in the SAP egress QoS policy (as configured in the config>qos>sap-egress>fc context).

Note:

The dot1p class of service may not apply to all IP traffic and is dependent on the egress port encapsulation type.

Based on this configured FC, the SAP egress QoS policy for the egress forwarding complex sets the IEEE 802.1 dot1p bits.

Multiple commands can be entered to associate some or all of the 64 DSCP values with the forwarding class. For undefined code points, packets are assigned to the default forwarding class for the DSCP value. Table 117 lists the default forwarding class for each DSCP value.

The no form of the command resets the DSCP value to its default forwarding class.

Table 117:  DSCP-to-Default Forwarding Class Mapping  

DSCP Value

Default FC

be

nc

cp1

be

cp2

be

cp3

be

cp4

be

cp5

be

cp6

be

cp7

be

cs1

be

cp9

be

af11

af

cp11

be

af12

af

cp13

be

af13

af

cp15

be

cs2

be

cp17

be

af21

l1

cp19

be

af22

l1

cp21

be

af23

l1

cp23

be

cs3

be

cp25

be

af31

l1

cp27

be

af32

l1

cp29

be

af33

l1

cp31

be

cs4

be

cp33

be

af41

nc

cp35

be

af42

h2

cp37

be

af43

h2

cp39

be

cs5

be

cp41

be

cp42

be

cp43

be

cp44

be

cp45

be

ef

ef

cp47

be

nc1

nc

cp49

be

cp50

h2

cp51

be

cp52

be

cp53

be

cp54

be

cp55

be

nc2

nc

cp57

be

cp58

be

cp59

be

cp60

be

cp61

be

cp62

be

cp63

be

Default 

See Table 117 for the default forwarding class for each DSCP value.

Parameters 
dscp-name—
the DSCP name to be associated with the forwarding class. DSCP can only be specified by its name and only an existing value can be specified. The software provides names for the well-known code points.
Values—
be, ef, cp1, cp2, cp3, cp4, cp5, cp6, cp7, cp9, cs1, cs2, cs3,  cs4, cs5, nc1, nc2, af11, af12, af13, af21, af22, af23, af31,  af32, af33, af41, af42, af43, cp11, cp13, cp15, cp17, cp19,  cp21, cp23, cp25, cp27, cp29, cp31, cp33, cp35, cp37, cp39,  cp41, cp42, cp43, cp44, cp45, cp47, cp49, cp50, cp51, cp52,  cp53, cp54, cp55, cp57, cp58, cp59, cp60, cp61, cp62, cp63
fc-name—
the forwarding class name. All packets with a DSCP value or MPLS EXP bits that are not defined will be placed in this forwarding class.
Values—
be, l2, af, l1, h2, ef, h1, nc

snmp-community

Syntax 
snmp-community community-name [hash | hash2] [version SNMP-version]
no snmp-community community-name [hash | hash2]
Context 
config>service>vprn
Description 

This command sets the SNMP community name to be used with the associated VPRN instance.

If an SNMP community name is not specified, SNMP access is not allowed.

The no form of the command removes the SNMP community name from the given VPRN context.

Default 

n/a

Parameters 
community-name—
one or more SNMP community names
Values—
community-name: 32 characters (max)
hash-key: 33 characters (max)
hash2-key: 96 characters (max)
hash, hash2—
the hashing scheme for the community name
SNMP-version
the SNMP version
Values—
v1, v2c, both

source-address

Syntax 
source-address
Context 
config>service>vprn
Description 

This command enters the context to specify the source address and application that should be used in all unsolicited packets.

application

Syntax 
application app {[ping | ptp | ssh | telnet | traceroute]} | {[ip-int-name | ip-address]}
no application app {[ping | ptp | ssh | telnet | traceroute]}
Context 
config>service>vprn>source-address
Description 

This command configures the application to use the IPv4 source address.

The no form of the command removes the application name from using the IPv4 source address.

Parameters 
app—
the application name
Values—
ping, ptp, ssh, telnet, traceroute
ip-int-name | ip-address—
the name of the IPv4 interface or IPv4 address. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.
Values—
ip-int-name: up to 32 alphanumeric characters
ip-address: a.b.c.d

application6

Syntax 
application6 app {[ping | telnet | ssh | traceroute]} | ipv6-address
no application6 app {[ping | telnet | ssh | traceroute]}
Context 
config>service>vprn>source-address
Description 

This command configures the application to use the IPv6 source address.

The no form of the command removes the application name from using the IPv6 source address.

Parameters 
app—
the application name
Values—
ping, telnet, ssh, traceroute
ipv6-address—
the IPv6 address
Values—

ipv6-address:

x:x:x:x:x:x:x:x (eight 16-bit pieces)

x:x:x:x:x:x:d.d.d.d

x - [0..FFFF]H

d - [0..255] D

spoke-sdp

Syntax 
[no] spoke-sdp sdp-id
Context 
config>service>vprn
Description 

This command binds a service to an existing Service Distribution Point (SDP).

The SDP has an operational state that determines the operational state of the SDP within the service. For example, if the SDP is administratively or operationally down, the SDP for the service will be down.

The SDP must already be defined in the config>service>sdp context in order to associate an SDP with a VPRN service. If the sdp sdp-id is not already configured, an error message is generated. If the sdp-id exists, a binding between that sdp-id and the service is created.

SDPs must be explicitly associated and bound to a service. If an SDP is not bound to a service, no far-end routers can participate in the service. Alternatively, auto-bind can be used. With auto-bind, no vprn>spoke-sdp configuration is required. When both auto-bind and spoke-sdp are configured, spoke-sdp takes precedence. Spoke-sdp must be deconfigured for auto-bind to take effect.

The no form of this command removes the SDP binding from the service. The SDP configuration is not affected; only the binding of the SDP to a service is affected. Once the SDP is removed, no packets are forwarded to the far-end router.

Default 

n/a

Special Cases 
VPRN—
several SDPs can be bound to a VPRN service. Each SDP must be destined for a different 7705 SAR, 7750 SR, or 7710 SR router. If two sdp-id bindings terminate on the same 7705 SAR, an error occurs and the second SDP binding is rejected.
Parameters 
sdp-id—
the SDP identifier
Values—
1 to 17407

static-route

Syntax 
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] {next-hop {ip-int-name | ip-address} | ipsec-tunnel ipsec-tunnel-name} [bfd-enable | {cpe-check cpe-ip-address [interval seconds] [drop-count count] [log]}]
 
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] [cpe-check cpe-ip-address [interval seconds] [drop-count count] [log]]
 
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] black-hole
Context 
config>service>vprn
Description 

This command creates static route entries within the associated router instance. When configuring an IPv4 static route, either next-hop, ipsec-tunnel, or black-hole must be configured. For an IPv6 static route, ipsec-tunnel must be used.

The no form of the command deletes the static route entry. If a static route needs to be removed when multiple static routes exist to the same destination, then enter as many parameters as necessary to uniquely identify that static route.

If a CPE connectivity check target address is already being used as the target address in a different static route, then cpe-check parameters must match. If they do not match, the new configuration command will be rejected.

If a static-route command is issued with no cpe-check target but the destination prefix/netmask and next-hop matches a static route that did have an associated cpe-check, then the cpe-check test will be removed from the associated static route.

Default 

no static-route

Parameters 
ip-prefix/prefix-length—
the destination address of the static route
Values—
ipv4-prefix:                 a.b.c.d (host bits must be 0)
ipv4-prefix-length:     0 to 32
ipv6-prefix:                 x:x:x:x:x:x:x:x (eight 16-bit pieces)
                                    x:x:x:x:x:x:d.d.d.d
                                    x:   [0 to FFFF]H
                                    d:   [0 to 255] D
ipv6-prefix-length:      0 to 128
netmask—
the subnet mask in dotted-decimal notation
Values—
a.b.c.d (network bits all 1 and host bits all 0)
preference—
the preference of this static route (as opposed to the routes from different sources such as BGP or OSPF), expressed as a decimal integer. When modifying the preference value of an existing static route, the metric will not change unless specified.

If multiple routes are learned with an identical preference using the same protocol, the lowest- cost route is used. If multiple routes are learned with an identical preference using the same protocol and the costs (metrics) are equal, then the decision of which route to use is determined by the ecmp command.

Values—
1 to 255
Values—
5
metric—
the cost metric for the static route, expressed as a decimal integer. This value is used when importing this static route into other protocols such as OSPF or IS-IS. This value is also used to determine the static route to install in the forwarding table: When modifying the metric values of an existing static route, the preference will not change unless specified.

If there are multiple static routes with the same preference but unequal metric values, the lower-cost (metric) route is installed. If there are multiple static routes with equal preference and metrics, then the 7705 SAR OS chooses the route with the lowest next-hop IP address as the best route. If there are multiple routes with unequal preferences, then the lower preference route is installed.

Values—
0 to 65535
Values—
1
tag
adds a 32-bit integer tag to the static route. The tag is used in route policies to control distribution of the route into other protocols.
Values—
1 to 4294967295
enable | disable —
static routes can be administratively enabled or disabled. Use the enable parameter to re-enable a disabled static route. Use the disable parameter to disable a static route while maintaining the static route in the configuration. In order to disable or enable a static route, it must be uniquely identified by the IP address, mask, and any other parameter that is required to identify the exact static route.

The administrative state is maintained in the configuration file.

Values—
enable
ip-int-name—
the interface name of the directly connected next hop. Interface names must be unique within the group of defined IP interfaces for config router interface commands. An interface name cannot be in the form of an IP address. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.
Values—
1 to 32 characters (must start with a letter)
ip-address
the directly connected next-hop IP address used to reach the destination

The next-hop, ipsec-tunnel, and black-hole keywords are mutually exclusive. If a static route is configured with the same destination address, subnet mask, and next-hop IP address as a previously configured static route, the newly configured route replaces the previous one, and unless specified, the respective defaults for preference and metric will be applied.

The next-hop ip-address can be either on the network side or the access side on this node. This address must be associated with a network directly connected to a network configured on this node.

Values—
ip-int-name: 32 chars max
ipv4-address:          a.b.c.d
ipv6-address:          x:x:x:x:x:x:x:x[-interface]                                 x:x:x:x:x:x:d.d.d.d[-interface]                                     interface - 32 chars max,                                     mandatory for link local addresses                                 x: [0..FFFF]H                                 d: [0..255] D
ipsec-tunnel-name—
the name of the IPSec tunnel that specifies the local and peer gateway addresses for the tunnel

The ipsec-tunnel, black-hole, and next-hop keywords are mutually exclusive. If a static route is configured with the same destination address, subnet mask, and IPSec tunnel name as a previously configured static route, the newly configured route replaces the previous one, and unless specified, the respective defaults for preference and metric will be applied.

Values—
32 chars max
bfd-enable—
associates the state of the static route to a BFD session between the local system and the configured next hop. This keyword is only available when the next-hop keyword is used.
cpe-ip-address—
the IP address of the target CPE device. ICMP pings will be sent to this target IP address. This parameter must be configured to enable the CPE connectivity feature for the associated static route. The cpe-ip-address cannot be in the same subnet as the static route subnet itself to avoid possible circular references. This option and BFD support are mutually exclusive on a given static route.
Values—
a.b.c.d
Values—
no cpe-check enabled
seconds—
the interval between ICMP pings to the target IP address
Values—
1 to 255 seconds
Values—
1 second
count
the number of consecutive ping-replies that must be missed in order to declare the CPE down and to deactivate the associated static route
Values—
1 to 255
Values—
3
log—
enables the logging of transitions between active and inactive routes based on the CPE connectivity check. Events should be sent to the system log, syslog and SNMP traps.
black-hole—
specifies a blackhole route, meaning that if the destination address on a packet matches this static route, it will be silently discarded.

The black-hole, ipsec-tunnel, and next-hop keywords are mutually exclusive. If a static route is configured with the same destination address and subnet mask as a previously configured static route, the newly configured route replaces the previous one, and unless specified, the respective defaults for preference and metric will be applied.

type

Syntax 
type hub
no type
Context 
config>service>vprn
Description 

This command designates the type of VPRN instance being configured for hub and spoke topologies.

The no form of the command resets to the default of a fully meshed VPRN.

Default 

no type

Parameters 
hub—
a hub VPRN, which allows all traffic from the hub SAP to be routed directly to the destination, while all traffic from spoke VPRNs or network interfaces can only be routed to a hub SAP

vrf-export

Syntax 
vrf-export policy-name [policy-name...(up to 5 max)]
no vrf-export
Context 
config>service>vprn
Description 

This command specifies the export policies to control routes exported from the local VPN virtual routing/ forwarding table (VRF) to other VRFs on the same or remote PE routers (via MP-BGP). The policy (and policy-name) are defined under the config>router>policy-options>policy-statement command.

The no form of the command removes all route policy names from the export list.

Default 

n/a

Parameters 
policy-name—
the route policy statement name (up to 32 characters)

vrf-import

Syntax 
vrf-import policy-name [policy-name...(up to 5 max)]
no vrf-import
Context 
config>service>vprn
Description 

This command sets the import policies to control routes imported to the local VPN virtual routing/ forwarding table (VRF) from other VRFs on the same or remote PE routers (via MP-BGP). BGP-VPN routes imported with a vrf-import policy will use the BGP preference value of 170 when imported from remote PE routers, or retain the protocol preference value of the exported route when imported from other VRFs on the same router, unless the preference is changed by the policy.

The no form of the command removes all route policy names from the import list.

Default 

n/a

Parameters 
policy-name—
the route policy statement name (up to 32 characters)

vrf-target

Syntax 
vrf-target {ext-community | {[export ext-community] [import ext-community]}}
no vrf-target
Context 
config>service>vprn
Description 

This command facilitates a simplified method to configure the route target to be added to advertised routes or compared against received routes from other VRFs on the same or remote PE routers (via MP-BGP).

BGP-VPN routes imported with a vrf-target statement will use the BGP preference value of 170 when imported from remote PE routers, or retain the protocol preference value of the exported route when imported from other VRFs in the same router.

Specified vrf-import or vrf-export policies override the vrf-target policy.

The no form of the command removes the route target from the VRF.

Default 

no vrf-target

Parameters 
ext-community—
an extended BGP community in the type:x:y format.
Values—
ip-addr:comm-val | 2byte-asnumber:ext-comm-val | 4-byte-asnumber: comm-val
where
ip-addr : a.b.c.d
comm-val : 0 to 65535
2-byte-asnumber : 0 to 65535
ext-comm-val : 0 to 4294967295
4-byte-asnumber: 0 to 4294967295
export ext-community
communities allowed to be sent to remote PE neighbors
import ext-community
communities allowed to be accepted from remote PE neighbors

BGP Commands

bgp

Syntax 
[no] bgp
Context 
config>service>vprn
Description 

This command enables the BGP protocol on the VPRN service.

The no form of this command disables the BGP protocol on the VPRN service.

Default 

no bgp

advertise-inactive

Syntax 
[no] advertise-inactive
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command enables the advertising of inactive BGP routes to other BGP peers. By default, BGP only advertises BGP routes to other BGP peers if a given BGP route is chosen by the route table manager as the most preferred route within the system and is active in the forwarding plane. This command allows system administrators to advertise a BGP route even though it is not the most preferred route within the system for a given destination.

The no form of this command disables the advertising of inactive BGP routes to other BGP peers.

Default 

no advertise-inactive

aggregator-id-zero

Syntax 
[no] aggregator-id-zero
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command is used to set the router ID in the BGP aggregator path attribute to 0 when BGP aggregates routes. This prevents different routers within an AS from creating aggregate routes that contain different AS paths.

When BGP is aggregating routes, it adds the aggregator path attribute to the BGP Update messages. By default, BGP adds the AS number and router ID to the aggregator path attribute.

When this command is enabled, BGP adds only the router ID (set to 0) to the aggregator path attribute. This command is used at the group level to revert to the value defined under the global level, and this command is used at the neighbor level to revert to the value defined under the group level.

The no form of the command used at the global level reverts to the default, where BGP adds the AS number and router ID to the aggregator path attribute.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no aggregator-id-zero

backup-path

Syntax 
[no] backup-path [ipv4] [ipv6]
Context 
config>service>vprn>bgp
Description 

This command enables BGP Fast Reroute (FRR) with Prefix-Independent Convergence (PIC), allowing for the creation of a backup path for IPv4 or IPv6 BGP learned prefixes belonging to a VPRN. Multiple paths must be received for a prefix in order to take advantage of this feature.

When a prefix has a backup path, and its primary paths fail, the affected traffic is rapidly diverted to the backup path without waiting for control plane reconvergence to occur. The time to reroute the traffic is independent of the number of prefixes sharing the primary or backup paths.

Default 

no backup-path

Parameters 
ipv4—
enables a backup path for IPv4 BGP learned prefixes
ipv6—
enables a backup path for IPv6 BGP learned prefixes

best-path-selection

Syntax 
best-path-selection
Context 
config>service>vprn>bgp
Description 

This command enables path selection configuration.

always-compare-med

Syntax 
always-compare-med {zero | infinity}
no always-compare-med
Context 
config>service>vprn>bgp>path-selection
Description 

This command specifies how the Multi-Exit Discriminator (MED) path attribute is used in the BGP route selection process. If this command is set to zero or infinity, the MED attribute is always used in the route selection process regardless of the peer AS that advertised the route.

This command determines what MED value is inserted in the RIB-IN.

The no form of the command means that only the MEDs of routes that have the same peer ASs are compared.

Default 

no always-compare-med

Parameters 
zero—
specifies that for routes learned without a MED attribute, a zero (0) value is used in the MED comparison. The routes with the lowest metric are the most preferred.
infinity—
specifies that for routes learned without a MED attribute, a value of infinity (4294967295) is used in the MED comparison. This, in effect, makes these routes the least desirable.

as-path-ignore

Syntax 
[no] as-path-ignore [ipv4] [ipv6]
Context 
config>service>vprn>bgp>path-selection
Description 

This command determines whether the AS path is used to determine the best BGP route.

If this command is enabled, the AS paths of incoming routes are not used in the route selection process.

When as-path-ignore is used without specifying one or more keywords, then all keywords are configured. When one or more keywords are specified, then only those keywords are configured.

The no form of the command means that the AS paths of incoming routes are used to determine the best BGP route.

Default 

no as-path-ignore

Parameters 
ipv4—
specifies support for IPv4 routes
ipv6—
specifies support for IPv6 routes

as-override

Syntax 
[no] as-override
Context 
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command replaces all instances of the peer's AS number with the local AS number in a BGP route's AS path.

This command breaks the BGP loop detection mechanism. It should be used carefully.

Default 

no as-override

authentication-key

Syntax 
authentication-key [authentication-key | hash-key] [hash | hash2]
no authentication-key
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the BGP authentication key.

Authentication is performed between neighboring routers before setting up the BGP session by verifying the password. Authentication is performed using the MD5 message-based digest.

The authentication key can be any combination of ASCII characters up to 255 characters long.

The no form of the command removes the authentication password from the configuration and effectively disables authentication.

Default 

Authentication is disabled and the authentication password is empty.

Parameters 
authentication-key —
the authentication key. The key can be any combination of ASCII characters up to 255 characters in length (unencrypted). If spaces are used in the string, the entire string must be enclosed in quotation marks (“ ”).
hash-key—
the hash key. The key can be any combination of ASCII characters up to 342 characters in length (encrypted). If spaces are used in the string, the entire string must be enclosed in quotation marks (“ ”). This is useful when a user must configure the parameter, but for security purposes, the actual unencrypted key value is not provided.
hash—
specifies that the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
hash2—
specifies that the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.

bfd-enable

Syntax 
[no] bfd-enable
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command enables the use of bidirectional forwarding (BFD) to control the state of the associated protocol interface. By enabling BFD on a given protocol interface, the state of the protocol interface is tied to the state of the BFD session between the local node and the remote node. The parameters used for BFD are set via the BFD command under the IP interface.

The no form of this command removes BFD from the associated BGP protocol peering.

Default 

no bfd-enable

connect-retry

Syntax 
connect-retry seconds
no connect-retry
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the BGP connect retry timer value in seconds. When this timer expires, BGP tries to reconnect to the configured peer. This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

The no form of the command used at the global level reverts to the default value.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

120 s

Parameters 
seconds—
the BGP connect retry timer value, in seconds, expressed as a decimal integer
Values—
1 to 65535

damping

Syntax 
[no] damping
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command enables BGP damping for learned routes that are defined within the VPRN service. Damping parameters are set at the route policy level. Refer to the 7705 SAR OS Router Configuration Guide, “Route Policy Command Reference”.

The no form of the command disables learned route damping.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no damping

disable-communities

Syntax 
disable-communities [standard] [extended]
no disable-communities
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures BGP to disable sending communities.

Default 

no disable-communities

Parameters 
standard—
specifies standard communities that existed before VPRNs or RFC 2547
extended—
specifies BGP communities that were expanded after the concept of RFC 2547 was introduced, to include handling the route target in the VRF

disable-fast-external-failover

Syntax 
[no] disable-fast-external-failover
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures BGP fast external failover.

For EBGP neighbors, fast external failover controls whether the router should drop an EBGP session immediately upon an interface-down event, or whether the BGP session is kept up until the hold-time expires.

When fast external failover is disabled, the EBGP session stays up until the hold-time expires or the interface comes back up again. If the BGP routes become unreachable as a result of the interface going down, they are immediately withdrawn from other peers.

Default 

no disable-fast-external-failover

enable-bgp-vpn-backup

Syntax 
[no] enable-bgp-vpn-backup [ipv4] [ipv6]
Context 
config>service>vprn>bgp
Description 

This command allows BGP-VPN routes imported into the VPRN to be used as backup paths for IPv4 or IPv6 BGP learned prefixes.

Parameters 
ipv4—
allow BGP-VPN routes to be used as backup paths for IPv4 prefixes
ipv6—
allow BGP-VPN routes to be used as backup paths for IPv6 prefixes

enable-peer-tracking

Syntax 
[no] enable-peer-tracking
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command enables BGP peer tracking. BGP peer tracking allows a BGP peer to be dropped immediately if the route used to resolve the BGP peer address is removed from the IP routing table and there is no alternative available. The BGP peer will not wait for the hold timer to expire; therefore, the BGP reconvergence process is accelerated.

The no form of the command disables peer tracking.

Default 

no enable-peer-tracking

export

Syntax 
export policy-name [policy-name…(up to 5 max)]
no export
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command specifies the export policies used to control routes advertised to BGP neighbors. Route policies are configured in the config>router>policy-options context. Refer to the section on “Route Policy” in the 7705 SAR OS Router Configuration Guide.

When multiple policy names are specified, the policies are evaluated in the order in which they are specified. A maximum of five (5) policy names can be configured. The first policy that matches is applied.

If a non-existent route policy is applied to a VPRN instance, the CLI generates a warning message. This message is only generated during an interactive CLI session. No warning message is generated when a non-existent route policy is applied to a VPRN instance in a configuration file or when SNMP is used.

The no form of this command removes all route policy names from the export list.

Default 

no export—BGP routes are advertised and non-BGP routes are not advertised

Parameters 
policy-name —
the route policy name. Allowed values are any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

family

Syntax 
family [ipv4] [ipv6]
no family
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command specifies the address families to be negotiated with one or more multiprotocol BGP peers of the VPRN.

The no form of this command removes the specified address family from the associated BGP sessions.

Default 

ipv4

Parameters 
ipv4 —
provisions IPv4 support
ipv6 —
provisions IPv6 support

graceful-restart

Syntax 
[no] graceful-restart
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command enables graceful restart for BGP in the VPRN context. If the control plane of a GR-capable router fails, the VPRN BGP peers (GR helpers) temporarily preserve neighbor information, so packets continue to be forwarded through the failed GR router using the last known routes. The helper state remains until the peer completes its restart or exits if the GR timer value is exceeded.

The 7705 SAR acts as a GR helper; it does not request graceful restart but agrees to graceful restart requests from a peer.

The no form of the command disables graceful restart and removes all graceful restart configurations in the VPRN BGP instance.

Default 

no graceful-restart

stale-routes-time

Syntax 
stale-routes-time time
no stale-routes-time
Context 
config>service>vprn>bgp>graceful-restart
config>service>vprn>bgp>group>graceful-restart
config>service>vprn>bgp>group>neighbor>graceful-restart
Description 

This command configures the maximum amount of time in seconds that stale routes should be maintained after a graceful restart is initiated.

The no form of the command resets the stale routes time back to the default value.

Default 

360 s

Parameters 
time —
the amount of time that stale routes should be maintained after a graceful restart is initiated
Values—
1 to 3600 s

group

Syntax 
[no] group name [dynamic-peer]
Context 
config>service>vprn>bgp
Description 

This command creates a context to configure a BGP peer group.

The no form of the command deletes the specified peer group and all configurations associated with the peer group. The group must be shut down before it can be deleted.

Default 

no group—no peer groups are defined

Parameters 
name —
the peer group name. Allowed values are any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.
dynamic-peer—
this option specifies that the given BGP group will be used by BGP peers created dynamically based on subscriber-hosts pointing to corresponding BGP peering policy. There can only be one BGP group with this option set in any given VPRN. No BGP neighbors can be manually configured in a BGP group with this option set.
Values—
disabled

neighbor

Syntax 
[no] neighbor ip-address
Context 
config>service>vprn>bgp>group
Description 

This command creates a BGP peer/neighbor instance within the context of the BGP group.

This command can be issued repeatedly to create multiple peers and their associated configurations.

The no form of the command is used to remove the specified neighbor and the entire configuration associated with the neighbor. The neighbor must be administratively shut down before it can be deleted. If the neighbor is not shut down, the command will not result in any action except a warning message on the CLI indicating that the neighbor is still administratively up.

Default 

no neighbor—no neighbors are defined

Parameters 
ip-address —
the IP address of the BGP peer router
Values—
ipv4-address:     a.b.c.d
ipv6-address:     x:x:x:x:x:x:x:x[-interface]                            x:x:x:x:x:x:d.d.d.d[-interface]                              interface - 32 chars max,                              mandatory for link local addresses                            x:[0..FFFF]H                            d: [0..255]D

hold-time

Syntax 
hold-time seconds [strict]
no hold-time
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the BGP hold time, expressed in seconds.

The BGP hold time specifies the maximum time BGP waits between successive messages (either Keepalive or Update) from its peer, before closing the connection. This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

The strict option ensures that the negotiated hold time value is not set to a value less than the configured value.

Even though the 7705 SAR OS implementation allows setting the keepalive time separately, the configured keepalive timer is overridden by the hold-time value under the following circumstances.

  1. If the specified hold-time is less than the configured keepalive time, then the operational keepalive time is set to a third of the hold-time; the configured keepalive time is not changed.
  2. If the hold-time is set to 0, then the operational value of the keepalive time is set to 0; the configured keepalive time is not changed. This means that the connection with the peer is up permanently and no keepalive packets are sent to the peer.

The no form of the command used at the global level reverts to the default value.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

90 s

Parameters 
seconds —
the hold-time, in seconds, expressed as a decimal integer. A value of 0 indicates the connection to the peer is permanently up.
Values—
0, 3 to 65535
strict—
when used, the advertised BGP hold time from the far-end BGP peer must be greater than or equal to the specified hold-time value

import

Syntax 
import policy-name [policy-name…(up to 5 max)]
no import
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command specifies the import route policy to be used to determine which routes are accepted from peers. Route policies are configured in the config>router>policy-options context. Refer to the section on “Route Policy” in the 7705 SAR OS Router Configuration Guide.

When multiple policy names are specified, the policies are evaluated in the order in which they are specified. A maximum of five (5) policy names can be specified. The first policy that matches is applied.

When multiple import commands are issued, the last command entered will override the previous command.

The no form of the command removes all route policy names from the import list.

Default 

no import—BGP routes are accepted by default

Parameters 
policy-name —
the route policy name. Allowed values are any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

keepalive

Syntax 
keepalive seconds
no keepalive
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the BGP keepalive timer. A Keepalive message is sent every time this timer expires.

The keepalive parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used. The keepalive value is generally one-third of the hold-time interval. Even though the 7705 SAR OS implementation allows the keepalive value and the hold-time interval to be independently set, under the following circumstances, the configured keepalive value is overridden by the hold-time value.

  1. If the specified keepalive value is greater than the configured hold-time, then the specified value is ignored, and the keepalive value is set to one third of the current hold-time value.
  2. If the specified hold-time interval is less than the configured keepalive value, then the keepalive value is reset to one third of the specified hold-time interval.
  3. If the hold-time interval is set to 0, then the configured value of the keepalive value is ignored. This means that the connection with the peer is up permanently and no keepalive packets are sent to the peer.

The no form of the command used at the global level reverts to the default value.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

30 s

Parameters 
seconds —
the keepalive timer, in seconds, expressed as a decimal integer
Values—
0 to 21845

local-address

Syntax 
local-address ip-address
no local-address
Context 
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the local IP address used by the group or neighbor when communicating with BGP peers.

Outgoing connections use the local-address as the source of the TCP connection when initiating connections with a peer.

When a local address is not specified, the 7705 SAR OS uses the interface address for directly connected EBGP peers. This command is used at the neighbor level to revert to the value defined under the group level.

The no form of the command removes the configured local address for BGP.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no local-address

Parameters 
ip-address —
the local address. The allowed value is a valid routable IP address on the router, either an interface or system IP address.
Values—
ipv4-address:    a.b.c.d
iv6p-address:   x:x:x:x:x:x:x:x (eight 16-bit pieces)                           x:x:x:x:x:x:d.d.d.d                           x: [0..FFFF]H                           d: [0..255]D

local-as

Syntax 
local-as as-number [private]
no local-as
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures a BGP virtual autonomous system (AS) number.

In addition to the AS number configured for BGP in the config>router>autonomous-system context, a virtual (local) AS number is configured. The virtual AS number is added to the as-path attribute before the router’s AS number makes the virtual AS the second AS in the AS path.

This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). By specifying this parameter at each neighbor level, it is possible to have a separate AS number per EBGP session.

When a command is entered multiple times for the same AS, the last command entered is used in the configuration. The private attribute can be added or removed dynamically by reissuing the command.

Changing the local AS at the global level in an active BGP instance causes the BGP instance to restart with the new local AS number.

Changing the local AS at the group level in an active BGP instance causes BGP to re-establish the peer relationships with all peers in the group with the new local AS number.

Changing the local AS at the neighbor level in an active BGP instance causes BGP to re-establish the peer relationship with the new local AS number.

This is an optional command and can be used in the following example:

Example: Provider router P is moved from AS1 to AS2. The customer router that is connected to P, however, is configured to belong to AS1. To avoid reconfiguring the customer router, the local-as value on router P can be set to AS1. Thus, router P adds AS1 to the as-path message for routes it advertises to the customer router.

The no form of the command used at the global level will remove any virtual AS number configured.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no local-as

Parameters 
as-number —
the virtual autonomous system number expressed as a decimal integer
Values—
1 to 4294967295
private —
specifies that the local AS is hidden in paths learned from the peering

local-preference

Syntax 
local-preference local-preference
no local-preference
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the default value of the BGP local preference attribute if it is not already specified in incoming routes.

This value is used if the BGP route arrives from a BGP peer without the local-preference integer set.

The specified value can be overridden by any value set via a route policy. This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

The no form of the command at the global level specifies that incoming routes with local preference set are not overridden and routes arriving without local preference set are interpreted as if the route had a local preference value of 100.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no local-preference

Parameters 
local-preference —
the local preference value to be used as the override value, expressed as a decimal integer
Values—
0 to 4294967295

loop-detect

Syntax 
loop-detect {drop-peer | discard-route | ignore-loop | off}
no loop-detect
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures how the BGP peer session handles loop detection in the AS path.

This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

When applied to an ongoing BGP peer session, this command does not take effect until the BGP peer session is re-established.

The no form of the command used at the global level reverts to the default (ignore- loop).

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

ignore-loop

Parameters 
drop-peer —
sends a notification to the remote peer and drops the session
discard-route—
discards routes received from a peer with the same AS number as the router itself. This option prevents routes looped back to the router from being added to the routing information base and consuming memory. When this option is changed, the change will not be active for an established peer until the connection is re-established for the peer.
ignore-loop—
ignores routes with loops in the AS path, but maintains peering
off—
disables loop detection

med-out

Syntax 
med-out [number | igp-cost]
no med-out
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command enables advertising the Multi-Exit Discriminator (MED) and assigns the value used for the path attribute for the advertised MED to BGP peers if the MED is not already set.

The specified value can be overridden by any value set via a route policy.

This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

The no form of the command used at the global level reverts to the default where the MED is not advertised.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no med-out

Parameters 
number—
the MED path attribute value, expressed as a decimal integer
Values—
0 to 4294967295
igp-cost—
the MED is set to the IGP cost of the IP prefix that is defined via a route policy

min-as-origination

Syntax 
min-as-origination seconds
no min-as-origination
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the minimum interval, in seconds, at which a path attribute, originated by the local router, can be advertised to a peer.

This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

The no form of the command used at the global level reverts to the default.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

15 s

Parameters 
seconds —
the minimum path attribute advertising interval, in seconds, expressed as a decimal integer
Values—
2 to 255

min-route-advertisement

Syntax 
min-route-advertisement seconds
no min-route-advertisement
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the minimum interval, in seconds, at which a prefix can be advertised to a peer.

This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

The no form of the command used at the global level reverts to the default.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

30 s

Parameters 
seconds —
the minimum route advertising interval, in seconds, expressed as a decimal integer
Values—
1 to 255

multihop

Syntax 
multihop ttl-value
no multihop
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the time to live (TTL) value at an originating EBGP peer. The TTL value is entered in the IP header of packets that are sent to a terminating EBGP peer that is multiple hops away.

The no form of the command used at the global level reverts to the default value.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

1 — EBGP peers are directly connected

Parameters 
ttl-value —
the TTL value that will be entered in the IP header of packets that are sent to a terminating EBGP peer that is multiple hops away
Values—
1 to 255

multipath

Syntax 
multipath max-paths
no multipath
Context 
config>service>vprn>bgp
Description 

This command enables BGP multipath.

When multipath is enabled, BGP load-shares traffic across multiple links. Multipath can be configured to load-share traffic across a maximum of 16 routes. If the equal-cost routes available are more than the configured value, then routes with the lowest next-hop IP address value are chosen.

This configuration parameter is set at the global level (applies to all peers).

Multipath is disabled if the value is set to 1. When multipath is disabled and multiple equal-cost routes are available, the route with the lowest next-hop IP address will be used.

The no form of the command reverts to the default where multipath is disabled.

Default 

no multipath

Parameters 
max-paths —
the number of equal-cost routes to use for multipath routing
Values—
1 to 16

next-hop-self

Syntax 
[no] next-hop-self
Context 
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the group or neighbor to always set the next-hop path attribute to its own physical interface when advertising to a peer.

This command is primarily used to avoid third-party route advertisements when connected to a multi-access network.

The no form of the command used at the group level allows third-party route advertisements in a multi-access network.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no next-hop-self

passive

Syntax 
[no] passive
Context 
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command enables and disables passive mode for the BGP group or neighbor. When in passive mode, BGP will not attempt to actively connect to the configured BGP peers but responds only when it receives a connect open request from the peer.

The no form of the command used at the group level disables passive mode, and BGP actively attempts to connect to its peers.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no passive

peer-as

Syntax 
peer-as as-number
no peer-as
Context 
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the autonomous system number for the remote peer. The peer AS number must be configured for each configured peer.

For EBGP peers, the peer AS number configured must be different from the autonomous system number configured for this router under the global level. This requirement is necessary since the peer will be in a different autonomous system than that of this router.

This command may be configured under the group level for all neighbors in a particular group.

Default 

no AS numbers defined

Parameters 
as-number —
the autonomous system number, expressed as a decimal integer
Values—
1 to 4294967295

preference

Syntax 
preference preference
no preference
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the route preference for routes learned from the configured peers.

This configuration parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in group) or neighbor level (only applies to specified peer). The most specific value is used.

The lower the preference, the higher the chance of the route being the active route. The 7705 SAR OS assigns the highest default preference to BGP routes as compared to routes that are direct, static, or learned via MPLS or OSPF.

The no form of the command used at the global level reverts to the default value.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

170

Parameters 
preference —
the route preference, expressed as a decimal integer
Values—
1 to 255

prefix-limit

Syntax 
prefix-limit limit
no prefix-limit
Context 
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures the maximum number of routes that BGP can learn from a peer.

When the number of routes reaches 90% of this limit, an SNMP trap is sent. When the limit is exceeded, the BGP peering is dropped and disabled.

The no form of the command removes the prefix-limit.

Default 

no prefix-limit

Parameters 
limit —
the number of routes that can be learned from a peer, expressed as a decimal integer
Values—
1 to 4294967295

rapid-withdrawal

Syntax 
[no] rapid-withdrawal
Context 
config>service>vprn>bgp
Description 

This command disables the delay on issuing BGP withdrawals.

By default, BGP withdrawals (messages containing the routes that are no longer valid) are delayed up to the min-route-advertisement to allow for efficient packing of BGP Update messages. However, when the rapid-withdrawal command is enabled, the delay on sending BGP withdrawals is disabled.

The no form of the command returns BGP withdrawal processing to its default behavior.

Default 

no rapid-withdrawal

remove-private

Syntax 
[no] remove-private [limited]
Context 
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command allows all private AS numbers to be removed from the AS path before advertising them to BGP peers. The no form of the command includes private AS numbers in the AS path attribute.

If the limited keyword is included, only the leading private ASNs up to the first public ASN are removed.

When the remove-private parameter is set at the global level, it applies to all peers regardless of group or neighbor configuration. When the parameter is set at the group level, it applies to all peers in the group regardless of the neighbor configuration.

The 7705 SAR OS recognizes the set of AS numbers that are defined by IANA as private. These are AS numbers in the range 64512 through 65535, inclusive.

The no form of the command used at the global level reverts to the default value.

The no form of the command used at the group level reverts to the value defined at the global level.

The no form of the command used at the neighbor level reverts to the value defined at the group level.

Default 

no remove-private

ttl-security

Syntax 
ttl-security min-ttl-value
no ttl-security
Context 
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Description 

This command configures TTL security parameters for incoming packets. When the feature is enabled, BGP accepts incoming IP packets from a peer only if the TTL value in the packet is greater than or equal to the minimum TTL value configured for that peer.

The no form of the command disables TTL security.

Default 

no ttl-security

Parameters 
min-ttl-value—
the minimum TTL value for an incoming packet
Values—
1 to 255
Values—
1

OSPF and OSPFv3 Commands

ospf

Syntax 
[no] ospf
Context 
config>service>vprn
Description 

This command enables access to the context to define OSPF parameters for VPRN.

When an OSPF instance is created, the protocol is enabled. To start or suspend execution of the OSPF protocol without affecting the configuration, use the no shutdown command.

The no form of the command deletes the OSPF protocol instance and removes all associated configuration parameters.

Default 

no ospf

ospf3

Syntax 
[no] ospf3
Context 
config>service>vprn
Description 

This command enables access to the context to define OSPFv3 parameters for VPRN.

When an OSPFv3 instance is created, the protocol is enabled. To start or suspend execution of the OSPF protocol without affecting the configuration, use the no shutdown command.

The no form of the command deletes the OSPFv3 protocol instance and removes all associated configuration parameters.

Default 

no ospf3

area

Syntax 
[no] area area-id
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command creates the context to configure an OSPF or OSPFv3 area. An area is a collection of network segments within an AS that have been administratively grouped together. The area ID can be specified in dotted-decimal notation or as a 32-bit decimal integer.

The no form of the command deletes the specified area from the configuration. Deleting the area also removes the OSPF or OSPFv3 configuration of all the interfaces, virtual links, address ranges, and so on, that are currently assigned to this area.

The 7705 SAR supports a maximum of four areas.

Default 

no area — no OSPF or OSPFv3 areas are defined

Parameters 
area-id—
the OSPF or OSPFv3 area ID expressed in dotted-decimal notation or as a 32-bit decimal integer
Values—
0.0.0.0 to 255.255.255.255 (dotted decimal) 0 to 4294967295 (decimal integer)

area-range

Syntax 
area-range ip-prefix/mask [advertise | not-advertise]
no area-range ip-prefix/mask
area-range ipv6-prefix/prefix-length [advertise | not-advertise]
no area-range ipv6-prefix/prefix-length
Context 
config>service>vprn>ospf>area
config>service>vprn>ospf3>area
config>service>vprn>ospf>area>nssa
config>service>vprn>ospf3>area>nssa
Description 

This command creates ranges of addresses on an Area Border Router (ABR) for the purpose of route summarization or suppression. When a range is created, the range is configured to be advertised or not advertised to other areas. Multiple range commands can be used to summarize or hide ranges. In the case of overlapping ranges, the most specific range command applies.

ABRs send summary link advertisements to describe routes to other areas. To minimize the number of advertisements that are flooded, you can summarize a range of IP addresses and send reachability information about these addresses in an LSA.

The ip-prefix/mask parameter applies in the ospf context. The ipv6-prefix/prefix-length parameter applies in the ospf3 context.

The no form of the command deletes the range advertisement or non-advertisement.

Default 

no area-range — no range of addresses is defined

Special Cases 
NSSA context—
in the NSSA context, the option specifies that the range applies to external routes (via type 7 LSAs) learned within the NSSA when the routes are advertised to other areas as type 5 LSAs
Area context—
if this command is not entered under the NSSA context, the range applies to summary LSAs even if the area is an NSSA
Parameters 
ip-prefix/mask—
the IP prefix for the range in dotted-decimal notation and the subnet mask for the range, expressed as a decimal integer
Values—
ip-prefix                               a.b.c.d (host bits must be 0)
mask                                   0 to 32
ipv6-prefix/prefix-length—
the IPv6 prefix for the range in hexadecimal notation
Values—
ipv6-prefix                          x:x:x:x:x:x:x:x (eight 16-bit                                           pieces)
                                          x:x:x:x:x:x:d.d.d.d
                                          x:   [0 to FFFF]H
                                          d:   [0 to 255]D
prefix-length                      0 to 128
advertise | not-advertise—
specifies whether to advertise the summarized range of addresses to other areas
Values—
advertise

blackhole-aggregate

Syntax 
[no] blackhole-aggregate
Context 
config>service>vprn>ospf>area
config>service>vprn>ospf3>area
Description 

This command installs a low-priority blackhole route for the entire aggregate. Existing routes that make up the aggregate will have a higher priority and only the components of the range for which no route exists will be blackholed.

When performing area aggregation, addresses may be included in the range for which no actual route exists. This can cause routing loops. To avoid this problem, configure the blackhole aggregate option.

The no form of this command removes this option.

Default 

blackhole-aggregate

interface

Syntax 
[no] interface ip-int-name
Context 
config>service>vprn>ospf>area
config>service>vprn>ospf3>area
Description 

This command creates a context to configure an OSPF or OSPFv3 interface.

By default, interfaces are not activated in any interior gateway protocol, such as OSPF or OSPFv3, unless explicitly configured.

The no form of the command deletes the OSPF or OSPFv3 interface configuration for this interface. The shutdown command in the config>router>ospf>interface context or config>router>ospf3>interface context can be used to disable an interface without removing the configuration.

Default 

no interface

Parameters 
ip-int-name—
the IP interface name. Interface names must be unique within the group of defined IP interfaces for the config>service>vprn>interface and config>router>interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

If the IP interface name does not exist or does not have an IP address configured, an error message will be returned.

If the IP interface exists in a different area, it will be moved to this area.

advertise-subnet

Syntax 
[no] advertise-subnet
Context 
config>service>vprn>ospf>area>interface
Description 

This command enables advertising point-to-point interfaces as subnet routes (network number and mask). When disabled, point-to-point interfaces are advertised as host routes.

This command is not supported in the ospf3 context.

The no form of the command disables advertising point-to-point interfaces as subnet routes, meaning they are advertised as host routes.

Default 

advertise-subnet

authentication

Syntax 
authentication bidirectional sa-name
authentication inbound sa-name outbound sa-name
no authentication
Context 
config>service>vprn>ospf3>area>interface
config>service>vprn>ospf3>area>virtual-link
Description 

This command configures an interface with a static security association (SA) used to authenticate OSPFv3 packets.

This command is not supported in the ospf context.

The no form of the command removes the SA name from the configuration.

Parameters 
bidirectional sa-name
specifies the IPSec SA name used for transmitting and receiving OSPFv3 packets
inbound sa-name
specifies the IPSec SA name used for receiving OSPFv3 packets
outbound sa-name
specifies the IPSec SA name used for transmitting OSPFv3 packets

authentication-key

Syntax 
authentication-key {authentication-key | hash-key} [hash | hash2]
no authentication-key
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf>area>virtual-link
Description 

This command configures the password used by the OSPF interface or virtual link to send and receive OSPF protocol packets on the interface when simple password authentication is configured.

All neighboring routers must use the same type of authentication and password for correct protocol communication. If the authentication-type is configured as password, the authentication key must be configured.

By default, no authentication key is configured.

This command is not supported in the ospf3 context.

The no form of the command removes the authentication key.

Default 

no authentication-key

Parameters 
authentication-key—
the authentication key can be any combination of ASCII characters up to 8 characters in length (unencrypted). If spaces are used in the string, enclose the entire string in quotation marks (“ ”).
hash-key—
the hash key can be any combination of ASCII characters up to 22 characters in length (hash parameter is used) or 121 characters in length (if the hash2 parameter is used). If spaces are used in the string, enclose the entire string in quotation marks (“ ”).

This is useful when a user must configure the parameter, but for security purposes, the actual unencrypted key value is not provided.

hash—
specifies that the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
hash2—
specifies that the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.

authentication-type

Syntax 
authentication-type {password | message-digest}
no authentication-type
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf>area>virtual-link
Description 

This command enables authentication and specifies the type of authentication to be used on the OSPF interface or virtual link.

Both simple password and message-digest authentication are supported.

By default, authentication is not enabled on an interface or link.

This command is not supported in the ospf3 context.

The no form of the command disables authentication on the interface or link.

Default 

no authentication-type

Parameters 
password—
enables simple password (plain text) authentication. If authentication is enabled and no authentication type is specified in the command, simple password authentication is enabled.
message-digest—
enables message digest MD5 authentication in accordance with RFC 1321. If this option is configured, at least one message-digest-key must be configured.

bfd-enable

Syntax 
bfd-enable [remain-down-on-failure]
no bfd-enable
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command enables the use of bidirectional forwarding detection (BFD) to control the state of the associated OSPF or OSPFv3 interface. By enabling BFD on an OSPF or OSPFv3 interface, the state of the interface is tied to the state of the BFD session between the local node and the remote node. The parameters used for BFD are set using the bfd command under the IP interface.

The optional remain-down-on-failure parameter can be specified on OSPF or OSPFv3 interfaces that are enabled for BFD, to keep OSPF or OSPFv3 from reaching the Full state if the BFD session to that neighbor cannot be established. This option is disabled by default and should be used only if there is a chance that unicast packets might be discarded while multicast packets are forwarded.

The no form of this command removes BFD from the associated OSPF or OSPFv3 adjacency.

Default 

no bfd-enable

Parameters 
remain-down-on-failure—
forces adjacency down on BFD failure

dead-interval

Syntax 
dead-interval seconds
no dead-interval
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
config>service>vprn>ospf>area>virtual-link
config>service>vprn>ospf3>area>virtual-link
Description 

This command configures the time, in seconds, that OSPF or OSPFv3 waits before declaring a neighbor router or virtual-link neighbor down. If no Hello packets are received from a neighbor for the duration of the dead interval, the router or link is assumed to be down. The minimum interval must be two times the hello interval.

The no form of the command resets the configured interval to the default value.

Default 

40

Special Cases 
OSPF or OSPFv3 interface—
if the dead-interval configured applies to an interface, all nodes on the subnet must have the same dead interval
Virtual link—
if the dead-interval configured applies to a virtual link, the interval on both endpoints of the virtual link must have the same dead interval
Parameters 
seconds—
the dead interval in seconds, expressed as a decimal integer
Values—
1 to 65535

hello-interval

Syntax 
hello-interval seconds
no hello-interval
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
config>service>vprn>ospf>area>virtual-link
config>service>vprn>ospf3>area>virtual-link
Description 

This command configures the interval between OSPF or OSPFv3 Hellos issued on the interface or virtual link.

The hello interval, in combination with the dead interval, is used to establish and maintain the adjacency.

Reducing the interval, in combination with an appropriate reduction in the associated dead-interval, allows for faster detection of link and/or router failures but results in higher processing costs.

The no form of this command resets the configured interval to the default value.

Default 

10

Special Cases 
OSPF or OSPFv3 interface—
if the hello-interval configured applies to an interface, all nodes on the subnet must have the same hello interval
Virtual link—
if the hello-interval configured applies to a virtual link, the interval on both endpoints of the virtual link must have the same hello interval
Parameters 
seconds—
the hello interval in seconds, expressed as a decimal integer
Values—
1 to 65535

interface-type

Syntax 
interface-type {broadcast | point-to-point}
no interface-type
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command configures the interface type to be either broadcast or point-to-point.

Use this command to set the interface type of an Ethernet link to point-to-point to avoid having to carry the broadcast adjacency maintenance overhead of the link, provided that the link is used as a point-to-point link.

If the interface type is not known when the interface is added to OSPF or OSPFv3, and the IP interface is subsequently bound (or moved) to a different interface type, this command must be entered manually.

The no form of the command resets the configured interface type to the default value.

Default 

broadcast – if the physical interface is Ethernet or unknown

point-to-point – if the physical interface is T1, E1, or SONET/SDH

Special Cases 
Virtual link—
a virtual link is always regarded as a point-to-point interface and is not configurable
Parameters 
broadcast—
configures the interface to maintain this link as a broadcast link. To significantly improve adjacency forming and network convergence, a network should be configured as point-to-point if only two routers are connected, even if the network is a broadcast media such as Ethernet.
point-to-point—
configures the interface to maintain this link as a point-to-point link

lfa-policy-map

Syntax 
lfa-policy-map route-nh-template template-name
no lfa-policy-map
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command applies a route next-hop policy template to an OSPF or OSPFv3 interface. When a route next-hop policy template is applied to an interface in OSPF or OSPFv3, it is applied in all areas.

If the interface has been excluded from LFA with the loopfree-alternate-exclude command, the LFA policy has no effect on the interface.

If the route next-hop policy template is applied to a loopback interface or to the system interface, the command will not be rejected, but the policy will have no effect on the interface.

The no form of the command deletes the mapping of a route next-hop policy template to an OSPF or OSPFv3 interface.

Default 

no lfa-policy-map

Parameters 
template-name—
the name of an existing template

loopfree-alternate-exclude

Syntax 
[no] loopfree-alternate-exclude
Context 
config>service>vprn>ospf>area
config>service>vprn>ospf3>area
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command instructs OSPF or OSPFv3 to exclude a specific interface or all interfaces participating in a specific OSPF or OSPFv3 area from the LFA SPF calculation. The LFA SPF calculation can therefore be run only where it is needed.

If an interface is excluded from the LFA SPF in OSPF or OSPFv3, it is excluded in all areas.

Default 

no loopfree-alternate-exclude

message-digest-key

Syntax 
message-digest-key key-id md5 {key | hash-key | hash2-key} [hash | hash2]
no message-digest-key key-id
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf>area>virtual-link
Description 

This command configures a message digest key when MD5 authentication is enabled on the interface or virtual link. Multiple message digest keys can be configured.

This command is not supported in the ospf3 context.

The no form of the command removes the message digest key identified by the key-id.

Default 

no message-digest-key

Parameters 
key-id—
the key-id is expressed as a decimal integer
Values—
1 to 255
key—
the MD5 key, any alphanumeric string up to 16 characters in length
hash-key—
the MD5 hash key, any combination of ASCII characters up to 33 characters in length (hash parameter is used). If spaces are used in the string, enclose the entire string in quotation marks (“ ”).

This is useful when a user must configure the parameter, but for security purposes, the actual unencrypted key value is not provided.

hash2-key—
the MD5 hash key, any combination of ASCII characters up to 132 characters in length (hash2 parameter is used). If spaces are used in the string, enclose the entire string in quotation marks (“ ”).

This is useful when a user must configure the parameter, but for security purposes, the actual unencrypted key value is not provided.

hash—
specifies that the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
hash2—
specifies that the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.

metric

Syntax 
metric metric
no metric
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command configures an explicit route cost metric for the OSPF or OSPFv3 interface that overrides the metrics calculated based on the speed of the underlying link.

The no form of the command deletes the manually configured interface metric, so the interface uses the computed metric based on the reference-bandwidth command setting and the speed of the underlying link.

Default 

no metric

Parameters 
metric—
the metric to be applied to the interface, expressed as a decimal integer
Values—
1 to 65535

mtu

Syntax 
mtu bytes
no mtu
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command configures the OSPF or OSPFv3 interface MTU value used when negotiating an OSPF or OSPFv3 adjacency.

The operational OSPF MTU value is calculated as follows.

If this command is not configured:

  1. the OSPF or OSPFv3 interface operational MTU derives the MTU value from the IP interface MTU (which is derived from the port MTU); for example, port MTU minus 14 bytes for a null-encapsulated Ethernet port
    1. for OSPF (not OSPFv3), if the derived MTU value is less than 576 bytes, the OSPF interface operational MTU is set to 576 bytes. If a lower interface MTU is required, you must explicitly configure it using this command.

If this command is configured:

  1. for OSPF (not OSPFv3):
    1. if the OSPF interface MTU is less than 576 bytes, it becomes the operational OSPF MTU, regardless of the port MTU value
    2. if the OSPF interface MTU is equal to or greater than 576 bytes, and the derived interface MTU is less than 576 bytes, the operational OSPF MTU is set to 576 bytes
    3. if the OSPF interface MTU is equal to or greater than 576 bytes, and the derived interface MTU is greater than 576 bytes, the operational OSPF MTU is set to the lesser of the values configured with this command and the derived MTU
    The port MTU must be set to 512 bytes or higher, since OSPF cannot support port MTU values lower than 512 bytes.
  2. for OSPFv3:
    1. the operational OSPF MTU is set to the lesser of the values configured with this command and the derived MTU
    2. this applies only when the port MTU is set to 1280 bytes or higher, since OSPFv3 cannot support port MTU values less than 1280 bytes

To determine the actual packet size, add 14 bytes for an Ethernet packet and 18 bytes for a tagged Ethernet packet to the size of the OSPF (IP) packet MTU configured with this command.

If the OSPF mtu command is configured to a value less than the interface or port MTU value, the OSPF MTU value will be used to transmit OSPF packets.

Use the no form of this command to revert to the default.

Default 

no mtu — uses the value derived from the port MTU

Parameters 
bytes—
the MTU to be used by OSPF or OSPFv3 for this logical interface in bytes
Values—
OSPF: 512 to 9710 (9724 – 14) (depends on the physical media)
OSPFv3: 1280 to 9710 (9724 – 14) (depends on the physical media)

passive

Syntax 
[no] passive
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command adds the passive property to an OSPF or OSPFv3 interface.

By default, only interface addresses that are configured for OSPF or OSPFv3 will be advertised as OSPF or OSPFv3 interfaces. The passive parameter allows an interface to be advertised as an OSPF or OSPFv3 interface without running the OSPF or OSPFv3 protocol.

While in passive mode, the interface will ignore ingress OSPF or OSPFv3 protocol packets and will not transmit any OSPF or OSPFv3 protocol packets.

The no form of the command removes the passive property from the OSPF or OSPFv3 interface.

Default 

Service interfaces defined with the config>router>service-prefix command are passive. All other interfaces are not passive.

priority

Syntax 
priority number
no priority
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
Description 

This command configures the priority of the OSPF or OSPFv3 interface that is used in an election of the designated router on the subnet.

This parameter is only used if the interface is of type broadcast. The router with the highest-priority interface becomes the designated router. A router with priority 0 is not eligible to be a designated router or backup designated router.

The no form of the command resets the interface priority to the default value.

Default 

1

Parameters 
number—
the interface priority expressed as a decimal integer
Values—
0 to 255

retransmit-interval

Syntax 
retransmit-interval seconds
no retransmit-interval
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
config>service>vprn>ospf>area>virtual-link
config>service>vprn>ospf3>area>virtual-link
Description 

This command specifies the length of time, in seconds, that OSPF or OSPFv3 will wait before retransmitting an unacknowledged LSA to an OSPF or OSPFv3 neighbor.

The value should be longer than the expected round-trip delay between any two routers on the attached network. If the retransmit interval expires and no acknowledgment has been received, the LSA will be retransmitted.

The no form of this command resets the configuration to the default interval.

Default 

5

Parameters 
seconds—
the retransmit interval in seconds, expressed as a decimal integer
Values—
1 to 1800

transit-delay

Syntax 
transit-delay seconds
no transit-delay
Context 
config>service>vprn>ospf>area>interface
config>service>vprn>ospf3>area>interface
config>service>vprn>ospf>area>virtual-link
config>service>vprn>ospf3>area>virtual-link
Description 

This command configures the estimated time, in seconds, that it takes to transmit an LSA on the interface or virtual link.

The no form of this command resets the configuration to the default delay time.

Default 

1

Parameters 
seconds—
the transit delay in seconds, expressed as a decimal integer
Values—
1 to 1800

key-rollover-interval

Syntax 
key-rollover-interval key-rollover-interval
no key-rollover-interval
Context 
config>service>vprn>ospf3>area
Description 

This command configures the key rollover interval.The no form of the command resets the configured interval to the default setting.

Default 

10

Parameters 
key-rollover-interval—
specifies the time, in seconds, after which a key rollover will start
Values—
10 to 300

lsa-filter-out

Syntax 
lsa-filter-out [all | except-own-rtrlsa | except-own-rtrlsa-and-defaults]
no lsa-filter-out
Context 
config>service>vprn>ospf3>area>interface
Description 

This command enables filtering of outgoing OSPF LSAs on the selected OSPFv3 interface. There are three filtering options.

  1. Do not flood any LSAs out the interface. This option is suitable if the neighbor is simply connected and has a statically configured default route with the address of this interface as next-hop.
  2. Flood the router’s own router-LSA out the interface and suppress all other flooded LSAs.This option is suitable if the neighbor is simply-connected and has a statically configured default route with a loopback or system interface address (contained in the router-LSA) as a next hop.
  3. Flood the router’s own router-LSA and all self-generated type-3, type-5, and type-7 LSAs advertising a default route (0/0) out the interface, and suppress all other flooded LSAs. This option is suitable if the neighbor is simply-connected and does not have a statically configured default route.

The no form of this command disables OSPF LSA filtering (normal operation).

Default 

no lsa-filter-out

nssa

Syntax 
[no] nssa
Context 
config>service>vprn>ospf>area
config>service>vprn>ospf3>area
Description 

This command creates the context to configure an OSPF or OSPFv3 Not So Stubby Area (NSSA) and adds or removes the NSSA designation from the area.

NSSAs are similar to stub areas in that no external routes are imported into the area from other OSPF or OSPFv3 areas. The major difference between a stub area and an NSSA is that an NSSA has the capability to flood external routes that it learns throughout its area and via an ABR to the entire OSPF or OSPFv3 domain.

Existing virtual links of a non-stub area or NSSA are removed when the designation is changed to NSSA or stub.

An area can be designated as stub or NSSA but never both at the same time.

By default, an area is not configured as an NSSA area.

The no form of the command removes the NSSA designation and configuration context from the area.

Default 

no nssa

originate-default-route

Syntax 
originate-default-route [type-7]
originate-default-route [type-nssa]
no originate-default-route
Context 
config>service>vprn>ospf>area>nssa
config>service>vprn>ospf3>area>nssa
Description 

This command enables the generation of a default route and its LSA type into an NSSA by an NSSA ABR or ASBR.

The functionality of the type-7 parameter and the type-nssa parameter is the same. The type-7 parameter is available in the ospf context; the type-nssa parameter is available in the ospf3 context. Include the type-7 or type-nssa parameter to inject a type 7 LSA default route instead of a type 3 LSA into the NSSA configured with no summaries.

To return to a type 3 LSA, enter the originate-default-route command without the type-7 or type-nssa parameter.

When configuring an NSSA with no summaries, the ABR will inject a type 3 LSA default route into the NSSA area. Some older implementations expect a type 7 LSA default route.

The no form of the command disables origination of a default route.

Default 

no originate-default-route

Parameters 
type-7 | type-nssa—
specifies that a type 7 LSA should be used for the default route
Values—
type 3 LSA for the default route

redistribute-external

Syntax 
[no] redistribute-external
Context 
config>service>vprn>ospf>area>nssa
config>service>vprn>ospf3>area>nssa
Description 

This command enables the redistribution of external routes into the NSSA on an NSSA ABR that is exporting the routes into non-NSSA areas.

NSSAs are similar to stub areas in that no external routes are imported into the area from other OSPF or OSPFv3 areas. The major difference between a stub area and an NSSA is that the NSSA has the capability to flood external routes that it learns (providing it is an ASBR) throughout its area and via an ABR to the entire OSPF or OSPFv3 domain.

The no form of the command disables the default behavior to automatically redistribute external routes into the NSSA area from the NSSA ABR.

Default 

redistribute-external

summaries

Syntax 
[no] summaries
Context 
config>service>vprn>ospf>area>nssa
config>service>vprn>ospf3>area>nssa
config>service>vprn>ospf>area>stub
config>service>vprn>ospf3>area>stub
Description 

This command enables sending summary (type 3) advertisements into a stub area or NSSA on an ABR.

This parameter is particularly useful to reduce the size of the routing and link-state database (LSDB) tables within the stub or NSSA area.

By default, summary route advertisements are sent into the stub area or NSSA.

The no form of the command disables sending summary route advertisements and, for stub areas, only the default route is advertised by the ABR.

Default 

summaries

stub

Syntax 
[no] stub
Context 
config>service>vprn>ospf>area
config>service>vprn>ospf3>area
Description 

This command enables access to the context to configure an OSPF or OSPFv3 stub area and adds or removes the stub designation from the area.

External routing information is not flooded into stub areas. All routers in the stub area must be configured with the stub command.

Existing virtual links of a non-stub area or NSSA are removed when its designation is changed to NSSA or stub.

An OSPF or OSPFv3 area cannot be both an NSSA and a stub area at the same time.

By default, an area is not a stub area.

The no form of the command removes the stub designation and configuration context from the area.

Default 

no stub

default-metric

Syntax 
default-metric metric
no default-metric
Context 
config>service>vprn>ospf>area>stub
config>service>vprn>ospf3>area>stub
Description 

This command configures the metric used by the ABR for the default route into a stub area.

The default metric should only be configured on an ABR of a stub area.

An ABR generates a default route if the area is a stub area.

The no form of the command resets the configuration to the default value.

Default 

default-metric 1

Parameters 
metric—
the metric, expressed as a decimal integer, for the default route cost to be advertised to the stub area
Values—
  1 to 16777215

virtual-link

Syntax 
[no] virtual-link router-id transit-area area-id
Context 
config>service>vprn>ospf>area
config>service>vprn>ospf3>area
Description 

This command configures a virtual link to connect ABRs to the backbone.

The backbone area (area 0.0.0.0) must be contiguous and all other areas must be connected to the backbone area. If it is not practical or possible to connect an area to the backbone, the ABRs must be connected via a virtual link. The two ABRs form a point-to-point-like adjacency across the transit area. A virtual link can only be configured while in the area 0.0.0.0 context.

The router-id specified in this command must be associated with the virtual neighbor. The transit area cannot be a stub area or an NSSA.

The no form of the command deletes the virtual link.

Default 

no virtual-link

Parameters 
router-id—
the router ID of the virtual neighbor in IP address dotted-decimal notation
area-id—
 the area ID specified identifies the transit area that links the backbone area to the area that has no physical connection with the backbone, expressed in dotted-decimal notation or as a 32-bit decimal integer
Values—
0.0.0.0 to 255.255.255.255 (dotted-decimal) 0 to 4294967295 (decimal integer)

export

Syntax 
export policy-name [policy-name…(up to 5 max)]
no export
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command specifies export route policies to determine which routes are exported from the routing table manager to OSPF or OSPFv3. Export policies are only in effect if OSPF or OSPv3 is configured as an ASBR.

If no export policy is specified, routes that are not OSPF or OSPFv3 are not exported from the routing table manager to OSPF or OSPFv3.

If multiple policy names are specified, the policies are evaluated in the order they are specified. The first policy that matches is applied. If multiple export commands are issued, the last command entered will override the previous command. A maximum of five policy names can be specified.

The no form of the command removes all policies from the configuration.

Refer to the 7705 SAR OS Router Configuration Guide for information on defining route policies.

Default 

no export — no export route policies specified

Parameters 
policy-name—
the name of an existing route policy

external-db-overflow

Syntax 
external-db-overflow limit seconds
no external-db-overflow
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command enables limits on the number of non-default, AS-external LSA entries that can be stored in the link-state database (LSDB) and specifies a wait timer before processing these entries after the limit is exceeded.

The limit value specifies the maximum number of entries that can be stored in the LSDB. Placing a limit on these LSAs in the LSDB protects the router from receiving an excessive number of external routes that consume excessive memory or CPU resources. If the number of routes reaches or exceeds the limit, the table is in an overflow state. When in an overflow state, the router will not originate any new AS-external LSAs and will withdraw all the self-originated non-default external LSAs.

The seconds value specifies the time to wait after an overflow state before regenerating and processing non-default, AS-external LSAs. The waiting period acts like a dampening period, preventing the router from continuously running shortest path first (SPF) calculations caused by the excessive number of non-default, AS-external LSAs.

The external-db-overflow must be set identically on all routers attached to any regular OSPF or OSPFv3 area. OSPF or OSPFv3 stub areas and NSSAs are excluded.

The no form of the command disables limiting the number of non-default, AS-external LSA entries.

Default 

no external-db-overflow

Parameters 
limit—
the maximum number of non-default, AS-external LSA entries that can be stored in the LSDB before going into an overflow state, expressed as a decimal integer
Values—
-1 to 2147483647
seconds —
the number of seconds after entering an overflow state before attempting to process non-default, AS-external LSAs, expressed as a decimal integer
Values—
0 to 2147483647

external-preference

Syntax 
external-preference preference
no external-preference
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command configures the preference for OSPF or OSPFv3 external routes. The preference for internal routes is set with the preference command.

A route can be learned by the router from different protocols, in which case, the costs are not comparable. When this occurs, the preference is used to decide which route will be used.

Different protocols should not be configured with the same preference. If this occurs, the tiebreaker is based on the default preferences as defined in Table 118.

Table 118:  Route Preference Defaults by Route Type  

Route Type

Preference

Configurable

Direct attached

0

No

Static routes

5

Yes

OSPF/OSPFv3 internal

10

Yes

IS-IS level 1 internal

15

Yes

IS-IS level 2 internal

18

Yes

OSPF/OSPFv3 external

150

Yes

IS-IS level 1 external

160

Yes

IS-IS level 2 external

165

Yes

If multiple routes are learned with the same preference using the same protocol, the lowest-cost route is used. If multiple routes are learned with the same preference using the same protocol and the costs (metrics) are equal, the decision of which route to use is determined by the configuration of ECMP in the config>router context. Refer to the 7705 SAR OS Router Configuration Guide for information on ECMP.

Note:

To configure a preference for static routes, use the config>router>static-route command. Refer to the 7705 SAR OS Router Configuration Guide for information.

The no form of the command returns the setting to the default value.

Default 

external-preference 150 — OSPF or OSPFv3 external routes have a default preference of 150

Parameters 
preference—
the preference for external routes, expressed as a decimal integer
Values—
1 to 255

ignore-dn-bit

Syntax 
[no] ignore-dn-bit
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command specifies whether to ignore the DN (down) bit for OSPF or OSPFv3 LSA packets for this instance of OSPF or OSPFv3 on the router. When enabled, the DN bit for OSPF or OSPFv3 LSA packets will be ignored. When disabled, the DN bit will not be ignored for OSPF or OSPFv3 LSA packets.

Default 

no ignore-dn-bit

import

Syntax 
import policy-name [policy-name...(up to 5 max)]
no import
Context 
config>service>vprn>ospf3
Description 

This command applies one or more (up to 5) route polices as OSPFv3 import policies. When a prefix received in an OSPFv3 LSA is accepted by an entry in an OSPFv3 import policy, it is installed in the routing table if it is the most preferred route to the destination. When a prefix received in an OSPFv3 LSA is rejected by an entry in an OSPFv3 import policy, it is not installed in the routing table even if it has the lowest preference value among all the routes to that destination. The flooding of LSAs is unaffected by OSPFv3 import policy actions.

Default 

no import

loopfree-alternate

Syntax 
[no] loopfree-alternate
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command enables Loop-Free Alternate (LFA) computation by SPF under the OSPF or OSPFv3 routing protocol instance.

When this command is enabled, the OSPF or OSPFv3 SPF attempts to precalculate both a primary next hop and a LFA backup next hop for every learned prefix. When found, the LFA next hop is populated into the routing table along with the primary next hop for the prefix.

The no form of this command disables the LFA SPF calculation.

Default 

no loop-free alternate

loopfree-alternate-exclude

Syntax 
loopfree-alternate-exclude prefix-policy prefix-policy [prefix-policy...(up to 5 max)]
no loop-free-alternate-exclude
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command excludes from the LFA SPF calculation any prefixes that match a prefix entry in a prefix policy. If a prefix is excluded, it is not included in the LFA SPF calculation, regardless of its priority. Prefix policies are created with the command config>router> policy-options>prefix-list (for information on prefix lists, refer to the 7705 SAR OS Router Configuration Guide, “Route Policies”).

The default action of the loopfree-alternate-exclude command, when not explicitly specified in the prefix policy, is to “reject”. Therefore, even if the default-action reject statement was not explicitly stated for the prefix policy, a prefix that does not match any entry in the policy will be used in the LFA SPF calculation.

The no form of the command deletes the excluded prefix policy.

Default 

no loop-free-alternate-exclude

Parameters 
prefix-policy—
the name of an existing prefix policy

overload

Syntax 
overload [timeout seconds]
no overload
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command changes the overload state of the local router so that it appears to be overloaded. When overload is enabled, the router can participate in OSPF or OSPFv3 routing, but is not used for transit traffic. Traffic destined for directly attached interfaces continues to reach the router.

To put the IGP in an overload state, enter a timeout value. The IGP will enter the overload state until the timeout timer expires or a no overload command is executed.

If no timeout is specified, the overload state is maintained indefinitely.

If the overload command is encountered during the execution of an overload-on-boot command, the overload command takes precedence. This situation could occur as a result of a saved configuration file where both parameters are saved. When the file is saved by the system, the overload-on-boot command is saved after the overload command.

Use the no form of this command to return to the default. When the no overload command is executed, the overload state is terminated regardless of the reason the protocol entered the overload state.

Default 

no overload

Parameters 
seconds—
the number of seconds to reset overloading
Values—
60 to 1800

overload-include-stub

Syntax 
[no] overload-include-stub
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command is used to determine if the OSPF or OSPFv3 stub networks should be advertised with a maximum metric value when the system goes into an overload state for any reason. When enabled, the system uses the maximum metric value. When this command is enabled and the router is in overload, all stub interfaces, including loopback and system interfaces, will be advertised at the maximum metric.

Default 

no overload-include-stub

overload-on-boot

Syntax 
overload-on-boot [timeout seconds]
no overload-on-boot
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

When the router is in an overload state, the router is used only if there is no other router to reach the destination. This command configures OSPF or OSPFv3 upon bootup in the overload state until one of the following events occurs:

  1. the timeout timer expires (if a timeout has been specified)
  2. a manual override of the current overload state is entered with the no overload command

If no timeout is specified, the overload state is maintained indefinitely.

The no overload command does not affect the overload-on-boot function.

The no form of the command removes the overload-on-boot functionality from the configuration.

Default 

no overload-on-boot

Parameters 
seconds—
the number of seconds to reset overloading
Values—
60 to 1800

preference

Syntax 
preference preference
no preference
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command configures the preference for OSPF or OSPFv3 internal routes.

A route can be learned by the router from different protocols, in which case, the costs are not comparable. When this occurs, the preference is used to decide which route will be used.

Different protocols should not be configured with the same preference. If this occurs, the tiebreaker is based on the default preferences as defined in Table 118. If multiple routes are learned with the same preference using the same protocol and the costs (metrics) are equal, the decision of which route to use is determined by the configuration of ECMP in the config>router context. Refer to the 7705 SAR OS Router Configuration Guide for information on ECMP.

The no form of the command resets the preference configuration to the default value.

Default 

preference 10 — OSPF or OSPFv3 internal routes have a preference of 10

Parameters 
preference—
the preference for internal routes, expressed as a decimal integer
Values—
1 to 255

reference-bandwidth

Syntax 
reference-bandwidth bandwidth-in-kbps
reference-bandwidth [tbps Tera-bps] [gbps Giga-bps] [mbps Mega-bps] [kbps Kilo-bps]
no reference-bandwidth
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command configures the reference bandwidth used to calculate the default costs of interfaces based on their underlying link speed.

The default interface cost is calculated as follows:

cost = reference bandwidth/bandwidth

The default reference bandwidth is 100 000 000 kb/s or 100 Gb/s; therefore, the default auto-cost metrics for various link speeds are as follows:

  1. 10 Mb/s link: default cost of 10000
  2. 100 Mb/s link: default cost of 1000
  3. 1 Gb/s link: default cost of 100

The reference-bandwidth command assigns a default cost to the interface based on the interface speed. To override this default cost on an interface, use the metric command in the config>router>ospf>area>interface ip-int-name context or config>router >ospf3>area> interface ip-int-name context.

The no form of the command resets the reference bandwidth to the default value.

Default 

reference-bandwidth 100000000

Parameters 
bandwidth-in-kbps—
the reference bandwidth in kilobits per second, expressed as a decimal integer
Values—
1 to 400000000
Tera-bps
the reference bandwidth in terabits per second, expressed as a decimal integer
Values—
1 to 4
Giga-bps
the reference bandwidth in gigabits per second, expressed as a decimal integer
Values—
1 to 999
Mega-bps
the reference bandwidth in megabits per second, expressed as a decimal integer
Values—
1 to 999
Kilo-bps
the reference bandwidth in kilobits per second, expressed as a decimal integer
Values—
1 to 999

router-id

Syntax 
router-id ip-address
no router-id
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command configures the router ID for a specific VPRN context. If the router ID is not defined under VPRN, the router ID from the base router context is inherited.

When configuring the router ID in the base instance of OSPF or OSPFv3, the value overrides the router ID configured in the config>router context.

The default value for the base instance is inherited from the configuration in the config>router context. If the router ID in the config>router context is not configured, the following applies:

  1. the system uses the system interface address (which is also the loopback address)
  2. if a system interface address is not configured, the last 4 bytes of the chassis MAC address are used

When configuring a new router ID, the instance is not automatically restarted with the new router ID. The next time the instance is initialized, the new router ID is used.

To force the new router ID to be used, issue the shutdown and no shutdown commands for the instance, or reboot the entire router.

The no form of the command to resets the router ID to the default value.

Default 

0.0.0.0 (base OSPF)

Parameters 
ip-address—
a 32-bit, unsigned integer uniquely identifying the router in the Autonomous System

super-backbone

Syntax 
[no] super-backbone
Context 
config>service>vprn>ospf
Description 

This command specifies whether CE-PE functionality is required. The OSPF super-backbone indicates the type of the LSA generated as a result of routes redistributed into OSPF. When enabled, the redistributed routes are injected as summary, external, or NSSA LSAs. When disabled, the redistributed routes are injected as either external or NSSA LSAs only.

Default 

no super-backbone

suppress-dn-bit

Syntax 
[no] suppress-dn-bit
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command specifies whether to suppress the setting of the DN (down) bit for OSPF or OSPFv3 LSA packets generated by this instance of OSPF or OSPFv3 on the router. When enabled, the DN bit will not be set. When disabled, this instance of the OSPF or OSPFv3 router will follow the usual procedure to determine whether to set the DN bit.

Default 

no suppress-dn-bit

timers

Syntax 
timers
Context 
config>service>vprn>ospf
config>service>vprn>ospf3
Description 

This command enables the context that allows for the configuration of OSPF or OSPFv3 timers. Timers control the delay between receipt of an LSA requiring an SPF calculation and the minimum time between successive SPF calculations.

Changing the timers affects CPU usage and network reconvergence times. Lower values reduce reconvergence time but increase CPU usage. Higher values reduce CPU usage but increase reconvergence time.

Default 

n/a

lsa-arrival

Syntax 
lsa-arrival lsa-arrival-time
no lsa-arrival
Context 
config>service>vprn>ospf>timers
config>service>vprn>ospf3>timers
Description 

This command defines the minimum delay that must pass between receipt of the same LSAs arriving from neighbors.

It is recommended that the configured lsa-generate lsa-second-wait interval for the neighbors be equal to or greater than the lsa-arrival-time.

Use the no form of this command to return to the default.

Default 

no lsa-arrival

Parameters 
lsa-arrival-time—
the timer in milliseconds
Values—
0 to 600000

lsa-generate

Syntax 
lsa-generate max-lsa-wait [lsa-initial-wait [lsa-second-wait]]
no lsa-generate
Context 
config>service>vprn>ospf>timers
config>service>vprn>ospf3>timers
Description 

This command customizes the throttling of OSPF or OSPFv3 LSA generation. Timers that determine when to generate the first, second, and subsequent LSAs can be controlled with this command. Subsequent LSAs are generated at increasing intervals of the lsa-second-wait timer until a maximum value is reached.

It is recommended that the lsa-arrival-time be equal to or less than the lsa-second-wait interval.

Use the no form of this command to return to the default.

Default 

no lsa-generate

Parameters 
max-lsa-wait—
the maximum interval, in milliseconds, between two consecutive occurrences of an LSA being generated
Values—
10 to 600000
Values—
5000
lsa-initial-wait—
the first waiting period between LSAs generated, in milliseconds. When the LSA exceeds the lsa-initial-wait timer value and the topology changes, there is no wait period and the LSA is immediately generated.

When an LSA is generated, the initial wait period commences. If, within the specified lsa-initial-wait period, another topology change occurs, the lsa-initial-wait timer applies.

Values—
10 to 600000
Values—
5000
lsa-second-wait—
the hold time, in milliseconds, between the first and second LSA generation. The next topology change is subject to this second wait period. With each subsequent topology change, the wait time doubles (that is, two times the previous wait time). This assumes that each failure occurs within the relevant wait period.
Values—
10 to 600000
Values—
5000

spf-wait

Syntax 
spf-wait max-spf-wait [spf-initial-wait [spf-second-wait]]
no spf-wait
Context 
config>service>vprn>ospf>timers
config>service>vprn>ospf3>timers
Description 

This command defines the maximum interval between two consecutive SPF calculations in milliseconds. Timers that determine when to initiate the first, second, and subsequent SPF calculations after a topology change occurs can be controlled with this command. Subsequent SPF runs (if required) will occur at exponentially increasing intervals of the spf-second-wait interval. For example, if the spf-second-wait interval is 1000, the next SPF will run after 2000 ms, and the next SPF will run after 4000 ms, and so on, until it reaches the spf-wait value. The SPF interval will stay at the spf-wait value until there are no more SPF runs scheduled in that interval. After a full interval without any SPF runs, the SPF interval will drop back to spf-initial-wait.

The timer must be entered in increments of 100 ms. Values entered that do not match this requirement will be rejected.

Use the no form of this command to return to the default.

Default 

no spf-wait

Parameters 
max-spf-wait—
the maximum interval, in milliseconds, between two consecutive SPF calculations
Values—
10 to 120000
Values—
1000
spf-initial-wait —
the initial SPF calculation delay, in milliseconds, after a topology change
Values—
10 to 100000
Values—
1000
spf-second-wait —
the hold time, in milliseconds, between the first and second SPF calculation
Values—
10 to 100000
Values—
1000

vpn-domain

Syntax 
vpn-domain id {0005 | 0105 | 0205 | 8005}
no vpn-domain
Context 
config>service>vprn>ospf
Description 

This command specifies the type of extended community attribute exchanged using BGP to carry the OSPF VPN domain ID. The command applies to VPRN instances of OSPF only. An attempt to modify the value of this attribute will result in an inconsistent value error when the instance is not a VPRN instance. The parameters are mandatory and can be entered in any order.

This command is not supported in the ospf3 context.

Default 

no vpn-domain

Parameters 
id—
specifies the 6-octet OSPF VPN domain identifier in the format “xxxx.xxxx.xxxx”. This ID is exchanged using BGP in the extended community attribute associated with a prefix. This parameter applies to VPRN instances of OSPF only.
0005 | 0105 | 0205 | 8005—
specifies the type of extended community attribute exchanged using BGP to carry the OSPF VPN domain ID

vpn-tag

Syntax 
vpn-tag vpn-tag
no vpn-tag
Context 
config>service>vprn>ospf
Description 

This command specifies the route tag for an OSPF VPN on a PE router and is used mainly to prevent routing loops. This field is set in the tag field of the OSPF external LSAs generated by the PE. The command applies to VPRN instances of OSPF only. An attempt to modify the value of this tag will result in an inconsistent value error when the instance is not a VPRN instance.

This command is not supported in the ospf3 context.

Default 

vpn-tag 0

Parameters 
vpn-tag—
specifies the route tag for an OSPF VPN
Values—
0 to 4294967295

IGMP Commands

igmp

Syntax 
[no] igmp
Context 
config>service>vprn
Description 

This command enables the context to configure IGMP parameters.

The no form of the command disables IGMP.

Default 

disabled

interface

Syntax 
[no] interface ip-int-name
Context 
config>service>vprn>igmp
Description 

This command enables the context to configure IGMP interface parameters.

Parameters 
ip-int-name—
specifies the name of the IP interface. Interface names can be from 1 to 32 alphanumeric characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed between double quotes.

disable-router-alert-check

Syntax 
[no] disable-router-alert-check
Context 
config>service>vprn>igmp>if
Description 

This command enables or disables the IGMP router alert check option.

The no form of the command enables the router alert check.

Default 

no disable-router-alert-check

import

Syntax 
import policy-name
no import
Context 
config>service>vprn>igmp>if
Description 

This command imports a policy to filter IGMP packets on this interface.

The no form of the command removes the policy association from the IGMP instance.

Default 

no import

Parameters 
policy-name—
the import route policy name. The specified names must already be defined.

max-groups

Syntax 
max-groups value
no max-groups
Context 
config>service>vprn>igmp>if
Description 

This command specifies the maximum number of groups for which IGMP can have local receiver information based on received IGMP reports on this interface. When this configuration is changed dynamically to a value lower than the currently accepted number of groups, the groups that are already accepted are not deleted. Only new groups will not be allowed.

The no form of the command removes the value.

Default 

0 — no limit to the number of groups

Parameters 
value—
specifies the maximum number of groups for this interface
Values—
1 to 2047

max-grp-sources

Syntax 
max-grp-sources max-grp-sources
no max-grp-sources
Context 
config>service>vprn>igmp>if
Description 

This command configures the maximum number of group sources for which IGMP can have local receiver information based on received IGMP reports on this interface. When this configuration is changed dynamically to a value lower than the currently accepted number of group sources, the group sources that are already accepted are not deleted. Only new group sources will not be allowed.

The no form of the command reverts to the default.

Default 

0

Parameters 
max-grp-sources—
specifies the maximum number of group sources
Values—
1 to 2407

ssm-translate

Syntax 
ssm-translate
Context 
config>service>vprn>igmp
config>service>vprn>igmp>if
Description 

This command enables the context to configure group ranges that are translated to SSM (S,G) entries. If the static entry needs to be created, it must be translated from an IGMPv1 or IGMPv2 request to a Source Specific Multicast (SSM) join request. An SSM translate source can only be added when the starg command is not enabled. An error message is generated when trying to configure the source command while the starg command is enabled.

grp-range

Syntax 
[no] grp-range start end
Context 
config>service>vprn>igmp>ssm-translate
config>service>vprn>igmp>if>ssm-translate
Description 

This command is used to configure group ranges that are translated to SSM (S,G) entries.

Parameters 
start—
specifies the start address of the multicast group range, in a.b.c.d format
end—
specifies the end address of the multicast group range, in a.b.c.d format. This value should always be greater than or equal to the start value.

source

Syntax 
[no] source ip-address
Context 
config>service>vprn>igmp>ssm-translate>grp-range
config>service>vprn>igmp>if>ssm-translate>grp-range
Description 

This command specifies the source IP address for the group range. Whenever a (*,G) report is received and is in the range specified by grp-range start and end parameters, it is translated to an (S,G) report where ip-address is the source address.

Parameters 
ip-address—
specifies the unicast source address, in a.b.c.d format

static

Syntax 
static
Context 
config>service>vprn>igmp>if
Description 

This command accesses the context to test forwarding on an interface without a receiver host. When enabled, data is forwarded to an interface without having received membership reports from host members.

Default 

n/a

group

Syntax 
[no] group grp-ip-address
Context 
config>service>vprn>igmp>if>static
Description 

This command adds a static multicast group as either a (*,G) record or one or more (S,G) records. Use IGMP static group memberships to test multicast forwarding when there is no receiver host. When IGMP static groups are enabled, data is forwarded to an interface without receiving membership reports from host members.

When static IGMP group entries on point-to-point links that connect routers to a rendezvous point (RP) are configured, the static IGMP group entries do not generate join messages toward the RP.

Default 

n/a

Parameters 
grp-ip-address—
specifies an IGMP multicast group address that receives data on an interface. The IP address must be unique for each static group. The address must be in dotted-decimal notation.

source

Syntax 
[no] source ip-address
Context 
config>service>vprn>igmp>if>static>group
Description 

This command specifies the source address of the multicast group. It is an IPv4 unicast address. By specifying the source address, a multicast receiver host signals to the router that the multicast group will only be receiving multicast traffic from this specific source.

The source command and the specification of individual sources for the same group are mutually exclusive.

The source command, in combination with the group command, is used to create a specific (S,G) static group entry.

The no form of the command removes the source from the configuration.

Default 

n/a

Parameters 
ip-address—
specifies the IPv4 unicast address
Values—
a.b.c.d

subnet-check

Syntax 
[no] subnet-check
Context 
config>service>vprn>igmp>if
Description 

This command enables or disables subnet checking for IGMP messages received on this interface. All IGMP packets with a source address that is not in the local subnet are dropped.

The no form of the command disables subnet-check.

Default 

enabled

version

Syntax 
version version
no version
Context 
config>service>vprn>igmp>if
Description 

This command specifies the IGMP version. If routers run different versions of IGMP, they negotiate the lowest common version of IGMP that is supported by hosts on their subnet and operate in that version. For IGMP to function correctly, all routers on a LAN should be configured to run the same version of IGMP.

For IGMPv3, a multicast router that is also a group member performs both parts of IGMPv3, receiving and responding to its own IGMP message transmissions as well as those of its neighbors.

Default 

3

Parameters 
version—
specifies the IGMP version number
Values—
1, 2, or 3

query-interval

Syntax 
query-interval seconds
no query-interval
Context 
config>service>vprn>igmp
Description 

This command specifies the frequency at which the querier router transmits general host-query messages. The host-query messages solicit group membership information and are sent to the all-systems multicast group address, 224.0.0.1.

Default 

125

Parameters 
seconds—
specifies the frequency, in seconds, at which the router transmits general host-query messages
Values—
2 to 1024

query-last-member-interval

Syntax 
query-last-member-interval seconds
no query-last-member-interval
Context 
config>service>vprn>igmp
Description 

This command configures the frequency at which the querier sends group-specific query messages, including messages sent in response to leave-group messages; the shorter the interval, the faster the detection of the loss of the last member of a group.

Default 

1

Parameters 
seconds—
specifies the frequency, in seconds, at which query messages are sent
Values—
1 to 1023

query-response-interval

Syntax 
query-response-interval seconds
no query-response-interval
Context 
config>service>vprn>igmp
Description 

This command specifies how long the querier router waits to receive a response to a host-query message from a host.

Default 

10

Parameters 
seconds—
specifies the length of time, in seconds, that the router waits to receive a response to the host-query message from the host
Values—
1 to 1023

robust-count

Syntax 
robust-count robust-count
no robust-count
Context 
config>service>vprn>igmp
Description 

This command configures the robust count. The robust-count allows adjusting for the expected packet loss on a subnet. If a subnet anticipates losses, the robust-count can be increased.

Default 

2

Parameters 
robust-count—
specifies the robust count value
Values—
2 to 10

PIM Commands

pim

Syntax 
[no] pim
Context 
config>service>vprn
Description 

This command configures a Protocol Independent Multicast (PIM) instance in the VPRN service. When a PIM instance is created, the protocol is enabled. PIM is used for multicast routing within the network. Devices in the network can receive the requested multicast feed and non-participating routers can be pruned. The router supports PIM sparse mode (PIM-SM).

The no form of the command deletes the PIM protocol instance, removing all associated configuration parameters.

Default 

n/a

apply-to

Syntax 
apply-to {all | none}
Context 
config>service>vprn>pim
Description 

This command creates a PIM interface configured with default parameters.

If a manually created interface or a modified interface is deleted, the interface will be recreated when the apply-to command is executed. If PIM is not required on a specific interface, execute a shutdown command on the interface.

The apply-to command is saved first in the PIM configuration structure; all subsequent apply-to commands either create new structures or modify the defaults as created by the apply-to command.

Default 

none

Parameters 
all—
specifies that all VPRN and non-VPRN interfaces are automatically applied in PIM
none—
specifies that no interfaces are automatically applied in PIM; PIM interfaces must be manually configured

import

Syntax 
import {join-policy | register-policy} policy-name [policy-name…(up to 5 max)]
no import {join-policy | register-policy}
Context 
config>service>vprn>pim
Description 

This command specifies up to five import route policies to be used for determining which routes are accepted from peers. Route policies are configured in the config>router>policy-options context. When an import policy is not specified, BGP routes are accepted by default.

The no form of the command removes the policy associations from the PIM instance for the specified type.

Default 

no import join-policy no import register-policy

Parameters 
join-policy—
specifies filtering PIM join messages to prevent unwanted multicast streams from traversing the network
register-policy—
specifies filtering PIM messages to prevent register messages from being processed by the RP. This filter can only be defined on an RP. When a match is found, the RP immediately sends back a register-stop message.
policy-name—
specifies the route policy name

interface

Syntax 
[no] interface ip-int-name
Context 
config>service>vprn>pim
Description 

This command enables PIM on an interface and enables the context to configure interface-specific parameters. By default, interfaces are activated in PIM based on the apply-to command, and do not have to be configured on an individual basis unless the default values must be changed.

The no form of the command deletes the PIM interface configuration for this interface. If the apply-to command parameter is configured, then the no interface form must be saved in the configuration to avoid automatic recreation of the interface after the next apply-to command is executed as part of a reboot.

The shutdown command can be used to disable an interface without removing the configuration for the interface.

Default 

Interfaces are activated in PIM based on the apply-to command.

Parameters 
ip-int-name—
specifies the interface name up to 32 characters; if the string contains special characters (#, $, spaces, etc.), then the entire string must be enclosed between double quotes

assert-period

Syntax 
assert-period assert-period
no assert-period
Context 
config>service>vprn>pim>if
Description 

This command configures the time between refreshes of PIM assert messages on an interface.

The no form of the command reverts to the default.

Default 

60

Parameters 
assert-period—
specifies the time, in seconds, between refreshes of PIM assert messages on an interface
Values—
1 to 300

bfd-enable

Syntax 
[no] bfd-enable [ipv4]
Context 
config>service>vprn>pim>if
Description 

This command enables the use of bidirectional forwarding (BFD) to control the state of the associated protocol interface. By enabling BFD on a protocol interface, the state of the protocol interface is tied to the state of the BFD session between the local node and the remote node. The parameters used for the BFD session are set via the bfd command under the IP interface.

The no form of this command removes BFD from the associated IGP protocol adjacency.

Default 

no bfd-enable

hello-interval

Syntax 
hello-interval hello-interval
no hello-interval
Context 
config>service>vprn>pim>if
Description 

This command configures the interval at which PIM hello messages are transmitted on this interface.

The no form of this command reverts to the default value.

Default 

30

Parameters 
hello-interval—
specifies the hello interval, in seconds; a 0 value disables the sending of hello messages
Values—
0 to 255

hello-multiplier

Syntax 
hello-multiplier deci-units
no hello-multiplier
Context 
config>service>vprn>pim>if
Description 

This command configures the multiplier used to determine the hold time for a PIM neighbor.

The hello-multiplier in conjunction with the hello-interval determines the hold time for a PIM neighbor.

Parameters 
deci-units—
specifies the value of the hello-multiplier, in multiples of 0.1, for the formula used to calculate the hello hold-time

hello hold-time = (hello-interval * hello-multiplier) / 10

This allows the PIMv2 default timeout of 3.5 s to be supported. For example, if hello-interval = 1 s, and hello-multiplier = 35 deci-units, then hold-time = (1 * 35) / 10 = 3.5 s.

Values—
20 to 100
Values—
35 (3.5 s)

instant-prune-echo

Syntax 
[no] instant-prune-echo
Context 
config>service>vprn>pim>if
Description 

This command enables or disables instant PruneEcho for a PIM interface.

Default 

no instant-prune-echo

ipv4-multicast-disable

Syntax 
[no] ipv4-multicast-disable
Context 
config>service>vprn>pim
config>service>vprn>pim>if
Description 

This command administratively disables or enables PIM operation for IPv4.

Default 

no ipv4-multicast-disable

max-groups

Syntax 
max-groups value
no max-groups
Context 
config>service>vprn>pim>if
Description 

This command configures the maximum number of groups for which PIM can have a downstream state based on received PIM join messages on this interface. This number does not include IGMP local receivers on the interface. When this configuration is changed dynamically to a value lower than the currently accepted number of groups, the groups that are already accepted are not deleted. Only new groups will not be allowed. When this configuration has a value of 0, there is no limit to the number of groups.

Parameters 
value—
specifies the maximum number of groups for this interface
Values—
1 to 2047

priority

Syntax 
priority dr-priority
no priority
Context 
config>service>vprn>pim>if
Description 

This command sets the priority value for the interface to become the designated router (DR), so that multiple PIM routers do not exist on one Layer 2 network.

The no form of the command resets the priority to the default value.

Default 

1 (the router is least likely to become the designated router)

Parameters 
dr-priority—
specifies the priority to become the designated router; greater values have higher priority
Values—
1 to 4294967295

sticky-dr

Syntax 
sticky-dr [priority dr-priority]
no sticky-dr
Context 
config>service>vprn>pim>if
Description 

This command enables sticky-dr operation on this interface. When enabled, the priority value used in PIM hello messages sent on this interface when elected as the designated router (DR) is changed to the value configured with this command. This is done to avoid forwarding delays caused by DR recovery, which occurs when switching back to the old DR on a LAN when the old DR comes back up.

By enabling sticky-dr on this interface, the interface continues to act as the DR for the LAN even after the old DR comes back up.

When sticky-dr is used without the priority keyword, the sticky-dr priority value is 1024 (default).

The no form of the command disables sticky-dr operation on this interface.

Default 

disabled (no sticky-dr)

Parameters 
dr-priority
when sticky-dr operation is enabled, dr-priority sets the DR priority sent in PIM hello messages after the election of that interface as the DR
Values—
1024
Values—
1 to 4294967295

three-way-hello

Syntax 
[no] three-way-hello
Context 
config>service>vprn>pim>if
Description 

This command configures the compatibility mode to enable three-way hello. By default, three-way hello is disabled on all interfaces and the standard two-way hello is supported.

Default 

no three-way-hello

tracking-support

Syntax 
[no] tracking-support
Context 
config>service>vprn>pim>if
Description 

This command sets the T-bit in the LAN prune delay option of the hello message. This indicates the router's capability to disable join-message suppression.

Default 

no tracking-support

non-dr-attract-traffic

Syntax 
[no] non-dr-attract-traffic
Context 
config>service>vprn>pim
Description 

This command specifies whether the router should ignore the designated router state and attract traffic even when it is not the designated router.

An operator can configure an interface (router or IES or VPRN interfaces) with IGMP and PIM. The interface IGMP state will be synchronized to the backup node if it is associated with the redundant peer port. The interface can be configured to use PIM, which will cause multicast streams to be sent to the elected DR only. The DR will also be the router sending traffic to the DSLAM. Since it may be required to attract traffic to both routers, a non-dr-attract-traffic flag can be used in the PIM context to have the router ignore the DR state and attract traffic when it is not the DR. While using this flag, the router may not send the stream to the DSLAM when it is not the DR.

The no form of the command disables the DR state. When disabled, the DR state is used.

Default 

no non-dr-attract-traffic

rp

Syntax 
rp
Context 
config>service>vprn>pim
Description 

This command enables access to the context to configure the rendezvous point (RP) of a PIM protocol instance.

A PIM router acting as an RP must respond to a PIM register message that specifies an SSM multicast group address by sending stop register messages to the first-hop router. The PIM router does not build an (S, G) shortest path tree toward the first-hop router. An SSM multicast group address can be an address either from the SSM default range of 232/8 or from a multicast group address range that was explicitly configured for SSM.

Default 

rp enabled when PIM is enabled

bootstrap-export

Syntax 
bootstrap-export policy-name [policy-name... (up to 5 max)]
no bootstrap-export
Context 
config>service>vprn>pim>rp
Description 

This command exports policies to control the flow of bootstrap messages from the RP. Up to five policies can be defined.

The no form of this command removes the specified policy names from the configuration.

Default 

n/a

Parameters 
policy-name—
specifies the policy name, where the policy statement must already be configured in the config>router>policy-options context

bootstrap-import

Syntax 
bootstrap-import policy-name [policy-name... (up to 5 max)]
no bootstrap-import
Context 
config>service>vprn>pim>rp
Description 

This command imports policies to control the flow of bootstrap messages to the RP. Up to five policies can be defined.

The no form of this command removes the specified policy names from the configuration.

Default 

n/a

Parameters 
policy-name—
specifies the policy name, where the policy statement must already be configured in the config>router>policy-options context

RIP Commands

rip

Syntax 
[no] rip
Context 
config>service>vprn
Description 

This command enables the RIP protocol on a VPRN interface.

The no form of the command disables the RIP protocol on a VPRN interface.

authentication-key

Syntax 
authentication-key [authentication-key | hash-key] [hash | hash2]
no authentication-key
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command sets the authentication password to be passed between RIP neighbors. The authentication type and authentication key must match exactly in order for the RIP message to be considered authentic.

The authentication key can be any combination of ASCII characters up to 16 characters long. The hash-key can be any combination of ASCII characters up to 33 characters long.

The no form of the command removes the authentication password from the configuration and disables authentication.

Default 

no authentication-key

Parameters 
authentication-key —
the authentication key. The key can be any combination of ASCII characters up to 16 characters in length (unencrypted). If spaces are used in the string, the entire string must be enclosed in double quotes.
hash-key —
the hash key. The key can be any combination of ASCII characters up to 33 characters in length (encrypted). If spaces are used in the string, the entire string must be enclosed in double quotes.
hash —
specifies the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
hash2 —
specifies the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.

authentication-type

Syntax 
authentication-type {none | password | message-digest-20}
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command sets the type of authentication to be used between RIP neighbors. Authentication type can be specified regardless of the configured send and receive parameters, but will only apply to RIPv2 packets.

The type and password must match exactly for the RIP message to be considered authentic and processed.

The no form of the command removes the authentication type from the configuration and disables authentication.

Default 

no authentication-type

Parameters 
none —
disables authentication
password —
enables simple password (plain text) authentication. If authentication is enabled and no authentication type is specified in the command, simple password authentication is enabled.
message-digest-20 —
configures 16-byte message digest for MD5 authentication. If this option is configured, then at least one message-digest key must be configured.

check-zero

Syntax 
check-zero {enable | disable}
no check-zero
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command enables checking for zero values in fields specified to be zero by the RIPv1 and RIPv2 specifications.

The check-zero enable command enables checking of the mandatory zero fields in the RIPv1 and RIPv2 specifications and rejecting of non-compliant RIP messages.

The check-zero disable command disables this check and allows the receipt of RIP messages even if the mandatory zero fields are non-zero.

The check-zero command can be enabled at all three RIP levels. The most specific value is used. If no check-zero value is set (no check-zero), the setting from the less-specific level is inherited by the lower level.

The no form of the command disables check-zero on the configuration.

Default 

no check-zero

Parameters 
enable—
configures the router to reject RIP messages that do not have zero in the mandatory fields
disable—
configures the router to accept RIP messages that do not have zero in the mandatory fields

export

Syntax 
export policy-name [policy-name... (up to 5 max)]
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command specifies the export policies to be used to control routes advertised to RIP neighbors.

By default, when no export policies are specified, RIP routes are advertised and non-RIP routes are not advertised.

The no form of the command removes all route policy names from the export list.

Default 

no export

Parameters 
policy-name —
the route policy name. Allowed values are any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

export-limit

Syntax 
export-limit number [log percentage]
no export-limit
Context 
config>service>vprn>rip
Description 

This command configures the maximum number of routes (prefixes) that can be exported into RIP from the route table.

The no form of the command removes the configured parameter values.

Default 

no export-limit

Parameters 
number —
specifies the maximum number of routes (prefixes) that can be exported into RIP from the route table
Values—
1 to 4294967295
percentage —
specifies the percentage of the export-limit, that when reached, causes a warning log message and SNMP notification to be sent
Values—
1 to 100

group

Syntax 
[no] group group-name
Context 
config>service>vprn>rip
Description 

This command creates a context for configuring a RIP group of neighbors.

RIP groups logically associate RIP neighbor interfaces to facilitate a common configuration for RIP interfaces.

The no form of the command deletes the RIP neighbor interface group. Deleting the group will also remove the RIP configuration of all the neighbor interfaces currently assigned to this group.

Default 

no group

Parameters 
group-name —
the RIP group name. Allowed values are any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

import

Syntax 
import policy-name [policy-name... (up to 5 max)]
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command specifies the import policy to be used to control routes advertised from RIP neighbors.

By default, RIP accepts all routes from RIP neighbors. Import policies can be used to limit or modify the routes accepted and their corresponding parameters and metrics.

The no form of the command removes all route policy names from the import list.

Default 

no import

Parameters 
policy-name —
the route policy name. Allowed values are any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

message-size

Syntax 
message-size max-num-of-routes
no message-size
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command configures the maximum number of routes per RIP update message.

By default, each update can contain a maximum of 25 route advertisements. This limit is imposed by RIP specifications. RIP can be configured to send as many as 255 routes per update.

The no form of the command reverts to the default value.

Default 

no message-size

Parameters 
max-num-of-routes —
an integer value
Values—
25
Values—
25 to 255

metric-in

Syntax 
metric-in metric
no metric-in
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command configures the metric added to routes received from a RIP neighbor. The specified metric value is added to the hop count and shortens the maximum distance of the route.

When applying an export policy to a RIP configuration, the policy overrides the metric values determined through calculations involving the metric-in and metric-out values.

The no form of the command reverts to the default value.

Default 

no metric-in

Parameters 
metric —
the value added to the metric of routes received from a RIP neighbor, expressed as adecimal integer
Values—
1 to 16

metric-out

Syntax 
metric-out metric
no metric-out
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command configures the metric added to routes exported into RIP and advertised to RIP neighbors. The specified metric value is added to the hop count and shortens the maximum distance of the route.

When applying an export policy to a RIP configuration, the policy overrides the metric values determined through calculations involving the metric-in and metric-out values.

The no form of the command removes the command from the configuration and resets the metric-in value to the default.

Default 

no metric-out

Parameters 
metric —
the value added to the metric of routes exported into RIP and advertised to RIP neighbors, expressed as a decimal integer
Values—
1 to 16

neighbor

Syntax 
[no] neighbor ip-int-name
Context 
config>service>vprn>rip>group
Description 

This command creates a context for configuring a RIP neighbor interface.

By default, interfaces are not activated unless explicitly configured.

The no form of the command deletes the RIP interface configuration for this interface. The shutdown command in the config>router>rip>group>neighbor context can be used to disable an interface without removing the configuration for the interface.

Default 

no neighbor

Parameters 
ip-int-name —
the IP interface name. Interface names must be unique within the group of defined IP interfaces for config>router>interface and config>service>vprn>interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

If the IP interface name does not exist or does not have an IP address configured, an error message will be returned.

preference

Syntax 
preference preference
no preference
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command configures the route preference assigned to RIP routes. This value can be overridden by route policies.

The no form of the command reverts to the default value.

Default 

no preference

Parameters 
preference —
the route preference, expressed as an integer value
Values—
100
Values—
1 to 255

propagate-metric

Syntax 
[no] propagate-metric
Context 
config>service>vprn>rip
Description 

This command allows the RIP metric to be used to set the MP-BGP MED attribute when RIP is used as the CE-PE routing protocol for VPRNs. This is similar to the way the OSPF metric can be used to set the MP-BGP metric when OSPF is used as the CE-PE protocol.

MP-BGP uses the RIP metric to set the MED attribute, which is flooded throughout the MP-BGP peers and is then used to set the RIP metric at the other end and re-advertise the RIP metric to the far-end RIP neighbors.

receive

Syntax 
receive receive-type
no receive
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command configures the types of RIP updates that will be accepted and processed.

If you specify both or version-2, the RIP instance listens for, and accepts, packets sent to the broadcast (255.255.255.255) and multicast (224.0.0.9) addresses.

If version-1 is specified, the router only listens for and accepts packets sent to the broadcast address.

The default behavior is to accept and process both RIPv1 and RIPv2 messages.

The no form of the command reverts to the default value.

Default 

both

Parameters 
receive-type —
configures the type of RIP updates that will be accepted and processed
Values—
receiver-type values are both, none, version-1, and version-2, where:

both

specifies that RIP updates in either version 1 or version 2 format will be accepted

none

specifies that RIP updates will not be accepted

version-1

specifies that only RIP updates in version 1 format will be accepted

version-2

specifies that only RIP updates in version 2 format will be accepted

send

Syntax 
send send-type
no send
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command specifies the type of RIP messages sent to RIP neighbors.

If multicast is specified, the router sends RIPv2 messages to the multicast (224.0.0.9) destination address.

If broadcast, or version-1 is specified, the router only listens for and accepts packets sent to the broadcast address.

The no form of this command reverts to the default value.

Default 

broadcast

Parameters 
send-type —
configures the type of RIP messages that will be sent to RIP neighbors
Values—
send-type values are broadcast, multicast, none, and version-1, where:

broadcast

sends RIPv2 formatted messages to the broadcast address

multicast

sends RIPv2 formatted messages to the multicast address

none

does not to send any RIP messages (silent listener)

version-1

sends RIPv1 formatted messages to the broadcast address

split-horizon

Syntax 
split-horizon {enable | disable}
no split-horizon
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command enables the use of split-horizon. RIP uses split-horizon with poison-reverse to protect from such problems as “counting to infinity”. Split-horizon with poison reverse means that routes learned from a neighbor through an interface are advertised in updates out of the same interface but with a metric of 16 (infinity).

The split-horizon disable command enables split-horizon without poison-reverse. This allows the routes to be re-advertised on interfaces other than the interface that learned the route, with the advertised metric equaling an increment of the metric-in value.

This parameter can be set at three levels: global level (applies to all groups and neighbor interfaces), group level (applies to all neighbor interfaces in the group), or neighbor level (only applies to the specified neighbor interface). The most specific value is used. If no value is set (no split-horizon), the setting from the less-specific level is inherited by the lower level.

The no form of the command disables split-horizon.

Default 

enable

Parameters 
enable—
enables split-horizon and poison-reverse
disable—
disables poison-reverse but leaves split-horizon enabled

timers

Syntax 
timers update timeout flush
Context 
config>service>vprn>rip
config>service>vprn>rip>group
config>service>vprn>rip>group>neighbor
Description 

This command configures values for the update, timeout, and flush RIP timers.

The RIP update timer determines how often RIP updates are sent.

If the route is not updated by the time the RIP timeout timer expires, the route is declared invalid but is maintained in the RIP database.

The RIP flush timer determines how long a route is maintained in the RIP database after it has been declared invalid. After the flush timer expires, the route is removed from the RIP database.

The no form of the command reverts all timers to their default values.

Default 

no timers

Parameters 
update—
the RIP update timer value, in seconds, expressed as a decimal integer
Values—
1 to 600
Values—
30
timeout—
the RIP timeout value, in seconds, expressed as a decimal integer
Values—
1 to 1200
Values—
180
flush—
the RIP flush timer value, in seconds, expressed as a decimal integer
Values—
1 to 1200
Values—
120

VPRN Security Configuration Commands

zone

Syntax 
zone {zone-id | zone-name} [create]
no zone zone-id
Context 
config>service>vprn
Description 

This command creates or specifies a security zone within a VPRN context. Each zone must have a unique ID.

All zones must be explicitly created with the create keyword. If no zones are created within a service or router context, a zone will not exist on that object.

Enter an existing zone without the create keyword to edit zone parameters.

The no form of this command deletes the zone. When a zone is deleted, all configuration parameters for the zone are also deleted.

Parameters 
zone-id—
the zone ID number. The zone ID must be unique within the system.
Values—
1 to 65534

abort

Syntax 
abort
Context 
config>service>vprn>zone
Description 

This command discards changes made to a security feature.

Default 

n/a

begin

Syntax 
begin
Context 
config>service>vprn>zone
Description 

This command enters the mode to create or edit security features.

Default 

n/a

commit

Syntax 
commit
Context 
config>service>vprn>zone
Description 

This command saves changes made to security features.

Default 

n/a

auto-bind

Syntax 
auto-bind
no auto-bind
Context 
config>service>vprn>zone
Description 

This command creates a security zone on automatically bound GRE, MPLE, or LDP transport tunnels configured for this service. Depending on how the security policy is configured, any traffic entering or exiting the zone is firewalled; traffic traveling between auto-bind LSPs in the zone is not firewalled.

Default 

n/a

inbound

Syntax 
inbound
Context 
config>service>vprn>zone
Description 

This command enables the context to configure limit parameters on inbound security sessions.

Default 

n/a

outbound

Syntax 
outbound
Context 
config>service>vprn>zone
Description 

This command enables the context to configure limit parameters for outbound security sessions on the CSM.

Default 

n/a

limit

Syntax 
limit
Context 
config>service>vprn>zone>inbound
config>service>vprn>zone>outbound
Description 

This command enables the context to configure limits on concurrent sessions for inbound or outbound firewall sessions on the CSM.

Default 

n/a

concurrent-sessions

Syntax 
concurrent-sessions {tcp | udp | icmp | other} sessions
no concurrent-sessions {tcp | udp | icmp | other}
Context 
config>service>vprn>zone>inbound>limit
config>service>vprn>zone>outbound>limit
Description 

This command configures the maximum number of concurrent firewall sessions that can be established per zone, in either the inbound or outbound direction.

Default 

n/a

Parameters 
tcp—
specifies that TCP connection traffic is to be firewalled
udp —
specifies that UDP connection traffic is to be firewalled
icmp—
specifies that ICMP connection traffic is to be firewalled
other—
specifies that the traffic to be firewalled is other than TCP, UDP, or ICMP
sessions—
the maximum number of concurrent firewall sessions that can be created in a zone for the configured direction
Values—
1 to 16383

interface

Syntax 
[no] interface ip-int-name
Context 
config>service>vprn>zone
Description 

This command creates a logical IP routing interface for a zone. Once created, attributes such as an IP address can be associated with the IP interface. Multiple interfaces can be configured on a zone.

The no form of this command removes the IP interface and all the associated configurations.

Parameters 
ip-int-name—
the name of the interface to be configured within the zone
Values—
1 to 32 characters (must start with a letter)

log

Syntax 
log {log-id | name}
no log
Context 
config>service>vprn>zone
Description 

This command configures a log identifier for the specified zone. A log identifier can be configured in the config>router>zone context and the config>security>policy context.

The no form of this command removes logging for the zone.

Parameters 
log-id—
specifies the identifier for the log
Values—
1 to 32 characters

name

Syntax 
name zone-name
no name
Context 
config>service>vprn>zone
Description 

This command configures a zone name. The zone name is unique within the system. It can be used to refer to the zone under configure, show, and clear commands.

Parameters 
zone-name—
 specifies the name of the zone
Values—
1 to 32 characters (must start with a letter). If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

nat

Syntax 
nat
Context 
config>service>vprn>zone
Description 

This command enters the context to configure NAT security parameters for a zone.

pool

Syntax 
pool pool-id [create]
no pool pool-id
Context 
config>service>vprn>zone>nat
Description 

This command configures the NAT pool for the security zone within a VPRN service. Each pool must have a unique ID.

All pools must be explicitly created with the create keyword.

Enter an existing pool without the create keyword to edit pool parameters.

The no form of this command deletes the specified NAT pool. When a pool is deleted, all configuration parameters for the pool will also be deleted.

Parameters 
pool-id—
the pool ID number
Values—
1 to 100

direction

Syntax 
direction {zone-outbound | zone-inbound | both}
no direction
Context 
config>service>vprn>zone>nat>pool
Description 

This command configures the NAT pool direction for the security zone. A specific NAT pool can be configured for different directions while using the same policy. For example, if the security policy entry direction is set to both, separate inbound and outbound pools can be created for that policy.

The no form of this command deletes the direction.

Parameters 
zone-outbound—
configures a pool for the policy outbound traffic
zone-inbound—
configures a pool for the policy inbound traffic
both—
configures a pool for policy inbound and outbound traffic

entry

Syntax 
entry entry-id [create]
no entry entry-id
Context 
config>service>vprn>zone>nat>pool
Description 

This command configures a NAT pool entry within a VPRN service.

The no form of this command deletes the entry with the specified ID. When an entry is deleted, all configuration parameters for the entry will also be deleted.

Parameters 
entry-id—
the entry ID number
Values—
1 to 65535

ip-address

Syntax 
ip-address ip-address [to ip-address] interface ip-int-name
no ip-address
Context 
config>service>vprn>zone>nat>pool>entry
Description 

This command configures the source IP address or IP address range to which packets that match NAT policy are routed using NAT. An interface can also be configured, in which case all packets that match NAT policy are routed to the interface IP address. If the interface IP address is changed dynamically, NAT is updated accordingly. Only one IP address can be associated with an IP interface. Source IP addresses and interfaces cannot be used together in a single NAT pool.

The IP address for the interface must be entered in dotted-decimal notation.

The no form of the command removes the IP address assignment. The no form of this command can only be performed when the IP interface is administratively shut down. Shutting down the IP interface brings the interface operationally down.

Parameters 
ip-address—
the source IP address to be used by NAT. The ip-address portion of the ip-address command specifies the IP host address that will be used by the IP interface within the subnet. This address must be unique within the subnet and specified in dotted-decimal notation.
Values—
1.0.0.0 to 223.255.255.255
ip-int-name—
the name of the interface to be used by NAT

port

Syntax 
port port [to port]
no port
Context 
config>service>vprn>zone>nat>pool>entry
Description 

This command configures the UDP/TCP port or port range. Packets that match NAT policy undergo network port address translation (NPAT) and are routed to their source UDP/TCP port. Configuring a UDP/TCP port pool requires an IP-address pool because the 7705 SAR does not support port address translation (PAT) alone.

The no form of this command deletes the port or port range.

Parameters 
port—
the UDP/TCP port or range of ports to which NPAT is applied

name

Syntax 
name pool-name
no name
Context 
config>service>vprn>zone>nat>pool
Description 

This command configures a zone pool name. Pool names must be unique within the group of pools defined for a zone. It can be used to refer to the pool under configure, show, and clear commands.

Parameters 
pool-name—
 specifies the name of the pool. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.
Values—
1 to 32 characters (must start with a letter).

policy

Syntax 
policy {policy-id | policy-name}
no policy policy-id
Context 
config>service>vprn>zone
Description 

This command sets the policy to be used by the security zone to build its matching criteria for incoming packets.

The no form of this command deletes the specified policy.

Parameters 
policy-id—
the number of the referenced policy
Values—
1 to 65535

Multicast VPN Commands

mvpn

Syntax 
mvpn
Context 
config>service>vprn
Description 

This command enables the context to configure MVPN-related parameters for the IP VPN.

auto-discovery

Syntax 
auto-discovery [default]
Context 
config>service>vprn>mvpn
Description 

This command enables MVPN membership auto-discovery through BGP. When auto-discovery is enabled, PIM peering on the inclusive provider tunnel is disabled. Changing the auto-discovery configuration requires a shutdown of this VPRN instance.

Default 

default

Parameters 
default—
enables auto-discovery route exchange based on the format defined in NG-MVPN (RFC 6514)

c-mcast-signaling

Syntax 
c-mcast-signaling bgp
Context 
config>service>vprn>mvpn
Description 

This command specifies BGP for PE-to-PE signaling of CE multicast states.

Default 

bgp

Parameters 
bgp—
specifies to use BGP for PE-to-PE signaling of CE multicast states. Auto-discovery must be enabled.

mdt-type

Syntax 
mdt-type {sender-only | receiver-only | sender-receiver}
no mdt-type
Context 
config>service>vprn>mvpn
Description 

This command allows the restriction of an MVPN instance per PE node to a specific role. By default, an MVPN instance on a PE node assumes the role of a sender as well as a receiver. This creates a mesh of MDT/PMSI across all PE nodes from this PE.

This command provides an option to configure either a sender-only or receiver-only mode per PE node. Restricting the role of a PE node avoids creating a full mesh of MDT/PMSI across all PE nodes that are participating in the MVPN instance.

The no version of this command restores the default (sender-receiver).

Default 

sender-receiver

Parameters 
sender-only—
MVPN has only senders connected to the PE node
receiver-only—
MVPN has only receivers connected to the PE node
sender-receiver—
MVPN has both senders and receivers connected to the PE node

provider-tunnel

Syntax 
provider-tunnel
Context 
config>service>vprn>mvpn
Description 

This command enables the context to configure tunnel parameters for the MVPN.

inclusive

Syntax 
inclusive
Context 
config>service>vprn>mvpn>pt
Description 

This command enables the context for specifying inclusive provider tunnels.

mldp

Syntax 
[no] mldp
Context 
config>service>vprn>mvpn>pt>inclusive
config>service>vprn>mvpn>provider-tunnel>selective
Description 

This command enables the use of an mLDP LSP for the provider tunnel.

Default 

no mldp

shutdown

Syntax 
[no] shutdown
Context 
config>service>vprn>mvpn>ptl>inclusive>mldp
config>service>vprn>mvpn>provider-tunnel>selective>mldp
Description 

This command administratively disables or enables the use of an mLDP LSP for the provider tunnel.

Default 

no shutdown

selective

Syntax 
selective
Context 
config>service>vprn>mvpn>provider-tunnel
Description 

This command enables the context to specify selective provider tunnel parameters.

Default 

n/a

data-delay-interval

Syntax 
data-delay-interval value
no data-delay-interval
Context 
config>service>vprn>mvpn>provider-tunnel>selective
Description 

This command specifies the interval, in seconds, before a PE router connected to the source switches traffic from the inclusive provider tunnel to the selective provider tunnel.

The no form of the command resets the value to the default.

Default 

3 s

Parameters 
value —
specifies the data delay interval, in seconds
Values—
3 to 180

data-threshold

Syntax 
data-threshold {c-grp-ip-addr/mask | c-grp-ip-addr netmask} s-pmsi-threshold
no data-threshold {c-grp-ip-addr/mask | c-grp-ip-addr netmask}
Context 
config>service>vprn>mvpn>provider-tunnel>selective
Description 

This command specifies the data rate threshold that triggers the switch from the inclusive provider tunnel to the selective provider tunnel for (C-S, C-G) within the group range. Optionally, PE thresholds for creating or deleting NG-MVPN S-PMSI may also be specified. Omitting the PE thresholds preserves the currently set value (or defaults, if never set). Multiple statements (one per unique group) are allowed in the configuration.

The no form of the command removes the values from the configuration.

Default 

no data-threshold

Parameters 
c-grp-ip-addr/mask | c-grp-ip-addr netmask—
specifies an IPv4 multicast group address and netmask length or network mask
Values—

c-grp-ip-addr

multicast group address a.b.c.d

mask

4 to 32

netmask

a.b.c.d (network bits all 1 and host bits all 0)

s-pmsi-threshold —
specifies the rate, in kb/s. If the rate for a (C-S, C-G) within the specified group range exceeds the threshold, traffic for the (C-S, C-G) will be switched to the selective provider tunnel.
Values—
1 to 4294967294

maximum-p2mp-spmsi

Syntax 
maximum-p2mp-spmsi range
no maximum-p2mp-spmsi
Context 
config>service>vprn>mvpn>provider-tunnel>selective
Description 

This command specifies the maximum number of LDP point-to-multipoint S-PMSI tunnels for the MVPN. When the limit is reached, no more LDP point-to-multipoint S-PMSI tunnels are created and traffic over the data threshold will stay on I-PMSI.

Default 

10

Parameters 
number—
specifies the maximum number of LDP point-to-multipoint S-PMSI tunnels for the MVPN
Values—
1 to 4000
Values—
10

umh-selection

Syntax 
umh-selection {highest-ip | hash-based | unicast-rt-pref}
no umh-selection
Context 
config>service>vprn>mvpn
Description 

This command specifies which upstream multicast hop (UMH) selection mechanism to use, highest IP address, hash-based, or preferred unicast route.

The no form of the command resets it back to the default.

Default 

umh-selection highest-ip

Parameters 
highest-ip—
specifies that the highest IP address is selected as the UMH
hash-based—
specifies that the UMH selection is based on the hash based procedures
unicast-rt-pref—
when selected, preferred unicast route will decide which UMH is chosen. All PE routers must prefer the same route to the UMH for the UMH selection criterion (for example, BGP path selection criteria must not influence one PE to choose a different UMH from another PE).

vrf-export

Syntax 
vrf-export unicast
vrf-export policy-name [policy-name... (up to 15 max)]
no vrf-export
Context 
config>service>vprn>mvpn
Description 

This command specifies the export policy (up to 15) to control MVPN routes exported from the local VRF to other VRFs on the same or remote PE routers.

Default 

vrf-export unicast

Parameters 
unicast—
specifies to use the unicast VRF export policy for the MVPN
policy-name—
the route policy name

vrf-import

Syntax 
vrf-import unicast
vrf-import policy-name [policy-name... (up to 15 max)]
no vrf-import
Context 
config>service>vprn>mvpn
Description 

This command specifies the import policy (up to 15) to control MVPN routes imported to the local VRF from other VRFs on the same or remote PE routers.

Default 

vrf-import unicast

Parameters 
unicast—
specifies to use a unicast VRF import policy for the MVPN
policy-name—
the route policy name

vrf-target

Syntax 
vrf-target {unicast | ext-community | export unicast | ext-community | import unicast | ext-community}
no vrf-target
Context 
config>service>vprn>mvpn
Description 

This command specifies the route target to be added to the advertised routes or compared against the received routes from other VRFs on the same or remote PE routers. The VRF import or VRF export policies override the VRF target policy.

The no form of the command removes the VRF target.

Default 

no vrf-target

Parameters 
unicast—
specifies to use the unicast vrf-target ext-community for the multicast VPN
ext-community—
an extended BGP community in the type:x:y format. The value x can be an integer or IP address. The type can be the target or origin.The x and y values are 16-bit integers.
Values—

target:{ip-address:comm-val | 2byte-asnumber:ext-comm-val | 4byte-asnumber:comm-val}

ip-address:

a.b.c.d

comm-val:

0 to 65535

2byte-asnumber:

0 to 65535

ext-comm-val:

0 to 4294967295

4byte-asnumber

0 to 4294967295

export

Syntax 
export {unicast | ext-community}
Context 
config>service>vprn>mvpn>vrf-target
Description 

This command specifies communities to be sent to peers.

Parameters 
unicast—
specifies to use the unicast vrf-target ext-community for the multicast VPN
ext-community—
an extended BGP community in the type:x:y format. The value x can be an integer or IP address. The type can be the target or origin. The x and y values are 16-bit integers.
Values—

target:{ip-address:comm-val | 2byte-asnumber:ext-comm-val | 4byte-asnumber:comm-val}

ip-address:

a.b.c.d

comm-val:

0 to 65535

2byte-asnumber:

0 to 65535

ext-comm-val:

0 to 4294967295

4byte-asnumber

0 to 4294967295

import

Syntax 
import {unicast | ext-community}
Context 
config>service>vprn>mvpn>vrf-target
Description 

This command specifies communities to be accepted from peers.

Parameters 
unicast—
specifies to use the unicast vrf-target ext-community for the multicast VPN
ext-community—
an extended BGP community in the type:x:y format. The value x can be an integer or IP address. The type can be the target or origin.The x and y values are 16-bit integers.
Values—

target:{ip-address:comm-val | 2byte-asnumber:ext-comm-val | 4byte-asnumber:comm-val}

ip-address:

a.b.c.d

comm-val:

0 to 65535

2byte-asnumber:

0 to 65535

ext-comm-val:

0 to 4294967295

4byte-asnumber

0 to 4294967295

Router Advertisement Commands

router-advertisement

Syntax 
[no] router-advertisement
Context 
config>service>vprn
Description 

This command enables the context to configure router advertisement properties for all VPRN IPv6-enabled interfaces. By default, the command is disabled for all IPv6-enabled interfaces.

The no form of the command disables router advertisement on all IPv6 interfaces.

Default 

no router-advertisement

interface

Syntax 
[no] interface ip-int-name
Context 
config>service>vprn>router-advertisement
Description 

This command configures router advertisement properties on a specified interface. The interface name must already exist in the config>service>vprn>interface context.

The no form of the command disables router advertisement on the specified router interface.

Default 

n/a

Parameters 
ip-int-name—
a 1 to 32 character name (must start with a letter) of the IP interface. Interface names must be unique within the group of defined IP interfaces for the config>service>vprn>interface command. An interface name cannot be in the form of an IP address. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

current-hop-limit

Syntax 
current-hop-limit number
no current-hop-limit
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures the current hop limit in the router advertisement messages. It informs the nodes on the subnet about the hop limit when originating IPv6 packets.

Default 

64

Parameters 
number—
the hop limit
Values—
0 to 255 (a value of 0 means that there are an unspecified number of hops)

managed-configuration

Syntax 
[no] managed-configuration
Context 
config>service>vprn>router-advertisement>interface
Description 

This command sets the managed address configuration flag. This flag indicates that DHCPv6 is available for address configuration in addition to any address autoconfigured using stateless address autoconfiguration.

Default 

no managed-configuration

max-advertisement-interval

Syntax 
max-advertisement-interval seconds
no max-advertisement-interval
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures the maximum interval between sending router advertisement messages.

Default 

600

Parameters 
seconds—
the maximum interval, in seconds, between sending router advertisement messages
Values—
4 to 1800

min-advertisement-interval

Syntax 
min-advertisement-interval seconds
no min-advertisement-interval
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures the minimum interval between sending ICMPv6 router advertisement messages.

Default 

200

Parameters 
seconds —
the minimum interval, in seconds, between sending ICMPv6 router advertisement messages
Values—
3 to 1350

mtu

Syntax 
mtu mtu-bytes
no mtu
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures the MTU for the nodes to use when sending packets on the link.

The no form of the command means that the MTU option is not sent in the router advertisement messages.

Default 

no mtu

Parameters 
mtu-bytes—
the MTU for the nodes to use when sending packets
Values—
1280 to 9212

other-stateful-configuration

Syntax 
[no] other-stateful-configuration
Context 
config>router>vprn>router-advertisement>interface
Description 

This command sets the “Other configuration” flag. This flag indicates that DHCPv6lite is available for autoconfiguration of other (non-address) information such as DNS-related information or information on other servers in the network.

Default 

no other-stateful configuration

prefix

Syntax 
prefix ipv6-prefix/prefix-length
no prefix
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures an IPv6 prefix in the router advertisement messages. To support multiple IPv6 prefixes, use multiple prefix statements. No prefix is advertised until it is explicitly configured using prefix statements.

Default 

n/a

Parameters 
ipv6-prefix/prefix-length—
the IPv6 prefix
Values—
ipv6-prefix         x:x:x:x:x:x:x:x (eight 16-bit pieces)
                           x:x:x:x:x:x:d.d.d.d
                           x:   [0 to FFFF]H
                           d:   [0 to 255]D
prefix-length      0 to 128

autonomous

Syntax 
[no] autonomous
Context 
config>service>vprn>router-advertisement>if>prefix
Description 

This command specifies whether the prefix can be used for stateless address autoconfiguration.

Default 

autonomous

on-link

Syntax 
[no] on-link
Context 
config>service>vprn>router-advertisement>if>prefix
Description 

This command specifies whether the prefix can be used for on-link determination.

Default 

on-link

preferred-lifetime

Syntax 
preferred-lifetime {seconds | infinite}
no preferred-lifetime
Context 
config>service>vprn>router-advertisement>if>prefix
Description 

This command configures the time that this prefix will continue to be preferred (time until deprecation). The address generated from a deprecated prefix should not be used as a source address in new communications. However, packets received on such an interface are processed as expected.

Default 

604800

Parameters 
seconds—
the length of time, in seconds, that this prefix will be preferred
Values—
1 to 4294967294
infinite—
the prefix will always be preferred. A value of 4294967295 also represents infinity.

valid-lifetime

Syntax 
valid-lifetime {seconds | infinite}
no valid-lifetime
Context 
config>service>vprn>router-advertisement>if>prefix
Description 

This command specifies the length of time, in seconds, that the prefix is valid for the purpose of onlink determination. The address generated from an invalidated prefix should not appear as the destination or source address of a packet.

Default 

2592000

Parameters 
seconds—
the remaining length of time, in seconds, that this prefix will be valid
Values—
1 to 4294967294
infinite—
the prefix will always be valid. A value of 4294967295 also represents infinity.

reachable-time

Syntax 
reachable-time milli-seconds
no reachable-time
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures how long the router should be considered reachable by other nodes on the link after receiving a reachability confirmation.

Default 

no reachable-time

Parameters 
milli-seconds—
the length of time, in milliseconds, that the router should be considered reachable
Values—
0 to 3600000

retransmit-time

Syntax 
retransmit-time milli-seconds
no retransmit-time
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures the retransmission frequency of neighbor solicitation messages.

Default 

no retransmit-time

Parameters 
milli-seconds—
the amount of time, in milliseconds, that a host should wait before retransmitting neighbor solicitation messages
Values—
0 to 1800000

router-lifetime

Syntax 
router-lifetime seconds
no router-lifetime
Context 
config>service>vprn>router-advertisement>interface
Description 

This command configures the router lifetime.

Default 

no router-lifetime

Parameters 
seconds—
the length of time, in seconds, that the prefix is valid for route determination
Values—
0, 4 to 9000 (a value of 0 means that the router is not a default router on this link)

Local DHCP and DHCPv6 Server Commands

For complete descriptions of all local DHCP and DHCPv6 server commands, refer to the Router Configuration Guide, “Local DHCP and DHCPv6 Server Commands”.

local-dhcp-server

Syntax 
local-dhcp-server server-name [create]
no local-dhcp-server server-name
Context 
config>service>vprn>dhcp
config>service>vprn>dhcp6
Description 

This command creates a local DHCP or DHCPv6 server instance. A local DHCP or DHCPv6 server can serve multiple interfaces but is limited to the routing context in which it was created.

The no form of the command removes the local DHCP or DHCPv6 server instance.

Default 

n/a

Parameters 
server-name—
the name of the local DHCP or DHCPv6 server
Values—
up to 32 alphanumeric characters
create—
keyword is mandatory when creating a local DHCP or DHCPv6 server

Interface Commands

interface

Syntax 
interface ip-int-name
no interface ip-int-name
Context 
config>service>vprn
Description 

This command creates a logical IP routing interface for a Virtual Private Routed Network (VPRN). Once created, attributes such as an IP address and a service access point (SAP) can be associated with the IP interface.

The interface command, under the context of services, is used to create and maintain IP routing interfaces within VPRN service IDs. The interface command can be executed in the context of a VPRN service ID. The IP interface created is associated with the VPRN service routing instance and VPRN service routing table.

Interface names are case-sensitive and must be unique within the group of defined IP interfaces defined for config router interface and config service vprn interface. Interface names must not be in the dotted-decimal notation of an IP address. For example, the name “1.1.1.1” is not allowed, but “int-1.1.1.1” is allowed. Show commands for router interfaces use either interface names or the IP addresses. Use unique IP address values and IP address names to maintain clarity. It could be unclear to the user if the same IP address and IP address name values are used. Although not recommended, duplicate interface names can exist in different router instances.

When a new name is entered, a new logical router interface is created. When an existing interface name is entered, the user enters the router interface context for editing and configuration.

There are no default IP interface names defined within the system. All VPRN IP interfaces must be explicitly defined. Interfaces are created in an enabled state.

The no form of this command removes the interface and all the associated configurations. The interface must be administratively shut down before issuing the no interface command.

Parameters 
ip-int-name—
the name of the IP interface. Interface names must be unique within the group of defined IP interfaces for config router interface and config service vprn interface commands. An interface name cannot be in the form of an IP address. Interface names can be from 1 to 32 alphanumeric characters and must start with a letter. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

address

Syntax 
address {ip-address/mask | ip-address netmask} [broadcast {all-ones | host-ones}]
no address {ip-address/mask | ip-address netmask}
Context 
config>service>vprn>interface
Description 

This command assigns an IP address, IP subnet, and broadcast address format to a VPRN IP router interface.

An IP address must be assigned to each VPRN IP interface. An IP address and a mask are used together to create a local IP prefix. The defined IP prefix must be unique within the context of the routing instance. It cannot overlap with other existing IP prefixes defined as local subnets on other IP interfaces in the same routing context within the 7705 SAR.

The IP address for the interface can be entered in either CIDR (Classless Inter-Domain Routing) or traditional dotted-decimal notation. The show commands display CIDR notation, which is stored in configuration files.

By default, no IP address or subnet association exists on an IP interface until it is explicitly created.

Use the no form of this command to remove the IP address assignment from the IP interface. When the no address command is entered, the interface becomes operationally down, as shown in Table 119.

Table 119:  VPRN Interface State and IP Address  

Address

Administrative State

Operational State

No address

Up

Down

No address

Down

Down

1.1.1.1

Up

Up

1.1.1.1

Down

Down

The operational state is a read-only variable, and the only controlling variables are the address and administrative states. The address and administrative states are independent and can be set independently. If an interface is in an administratively up state and an address is assigned, it becomes operationally up and the protocol interfaces and the MPLS LSPs associated with that IP interface will be reinitialized.

Parameters 
ip-address —
the IP address of the IP interface. The ip-address portion of the address command specifies the IP host address that will be used by the IP interface within the subnet. This address must be unique within the subnet and specified in dotted-decimal notation.
Values—
a.b.c.d (no multicast/broadcast address)
(1.0.0.0 to 223.255.255.255 (with support of /31 subnets)
The “/” (forward slash) is a parameter delimiter that separates the ip-address portion of the IP address from the mask, which defines the scope of the local subnet. No spaces are allowed between the ip-address, the “/”, and the mask. If a forward slash does not immediately follow the ip-address, a dotted-decimal mask must follow the prefix.
mask—
the subnet mask length when the IP prefix is specified in CIDR notation. When the IP prefix is specified in CIDR notation, a forward slash separates the ip-address from the mask. The mask indicates the number of bits used for the network portion of the IP address; the remainder of the IP address is used to determine the host portion of the IP address.
Values—
0 to 32
netmask —
the subnet mask, in dotted-decimal notation. When the IP prefix is not specified in CIDR notation, a space separates the ip-address from a traditional dotted-decimal mask. The netmask parameter indicates the complete mask that will be used in a logical “AND” function to derive the local subnet of the IP address.
Values—
128.0.0.0 to 255.255.255.252
(network bits all 1 and host bits all 0)
(255.255.255.255 is reserved for system IP addresses)
broadcast—
the optional broadcast parameter overrides the default broadcast address used by the IP interface when sourcing IP broadcasts on the IP interface. If no broadcast format is specified for the IP address, the default value is host-ones, which indicates a subnet broadcast address. Use this parameter to change the broadcast address to all-ones or revert back to a broadcast address of host-ones.

The broadcast format on an IP interface can be specified when the IP address is assigned or changed.

This parameter does not affect the type of broadcasts that can be received by the IP interface. A host sending either the local broadcast (all-ones) or the valid subnet broadcast address (host-ones) will be received by the IP interface.

Values—
host-ones
all-ones—
specifies that the broadcast address used by the IP interface for this IP address will be 255.255.255.255, also known as the local broadcast
host-ones—
specifies that the broadcast address used by the IP interface for this IP address will be the subnet broadcast address. This is an IP address that corresponds to the local subnet described by the ip-address and the mask, or the mask with all the host bits set to binary one. This is the default broadcast address used by an IP interface.

The broadcast parameter within the address command does not have a negation feature, which is usually used to revert a parameter to the default value. To change the broadcast type to host-ones after being changed to all-ones, the address command must be executed with the broadcast parameter defined.

allow-directed-broadcasts

Syntax 
allow-directed-broadcasts
no allow-directed-broadcasts
Context 
config>service>vprn>interface
Description 

This command controls the forwarding of directed broadcasts out of the IP interface.

A directed broadcast is a packet received on a local router interface destined for the subnet broadcast address on another IP interface. The allow-directed-broadcasts command on an IP interface enables or disables the transmission of packets destined for the subnet broadcast address of the egress IP interface.

When enabled, a frame destined for the local subnet on this IP interface will be sent as a subnet broadcast out this interface. Care should be exercised when allowing directed broadcasts as it is a well-known mechanism used for denial-of-service attacks.

When disabled, directed broadcast packets discarded at this egress IP interface will be counted in the normal discard counters for the egress SAP.

By default, directed broadcasts are not allowed and will be discarded at this egress IP interface.

The no form of this command disables the forwarding of directed broadcasts out of the IP interface.

Default 

no allow-directed-broadcasts

arp-retry-timer

Syntax 
arp-retry-timer ms-timer
no arp-retry-timer
Context 
config>service>vprn>interface
Description 

This command specifies the length of time, in 100s of milliseconds, that the system waits before reissuing a failed ARP request.

The no form of the command resets the interval to the default value.

Note:

The ARP retry default value of 5000 ms is intended to protect CPU cycles on the 7705 SAR, especially when it has a large number of interfaces. Configuring the ARP retry timer to a value shorter than the default should be done only on mission-critical links, such as uplinks or aggregate spoke SDPs transporting mobile traffic; otherwise, the retry interval should be left at the default value.

Default 

50 (in 100s of ms)

Parameters 
ms-timer—
the time interval, in 100s of milliseconds, the system waits before retrying a failed ARP request
Values—
1 to 300

arp-timeout

Syntax 
arp-timeout seconds
no arp-timeout
Context 
config>service>vprn>interface
Description 

This command configures the minimum time, in seconds, that an ARP entry learned on the IP interface will be stored in the ARP table. ARP entries are automatically refreshed when an ARP request or gratuitous ARP is seen from an IP host; otherwise, the ARP entry is aged from the ARP table. If arp-timeout is set to a value of 0 s, ARP aging is disabled.

The no form of this command restores arp-timeout to the default value.

Default 

14400 s

Parameters 
seconds—
the minimum number of seconds a learned ARP entry will be stored in the ARP table, expressed as a decimal integer. A value of 0 specifies that the timer is inoperative and learned ARP entries will not be aged.
Values—
0 to 65535

bfd

Syntax 
bfd transmit-interval [receive receive-interval] [multiplier multiplier] [echo-receive echo-interval] [type np]
no bfd
Context 
config>service>vprn>interface
config>service>vprn>interface>ipv6
Description 

This command specifies the BFD parameters for the associated IP interface. If no parameters are defined, the default values are used.

The multiplier specifies the number of consecutive BFD messages that must be missed from the peer before the BFD session state is changed to down. In addition, the Route Table Manager (RTM) is notified and the static routes with BFD enabled will go down, based on BFD status.

The no form of the command removes BFD from the associated IGP protocol adjacency.

Default 

no bfd

Parameters 
transmit-interval—
sets the transmit interval for the BFD session
Values—
10 to 100000 in milliseconds
Values—
100
receive-interval
sets the receive interval for the BFD session
Values—
10 to 100000 milliseconds
Values—
100
multiplier
sets the multiplier for the BFD session
Values—
3 to 20
Values—
3
echo-interval
(does not apply to IPv6 interfaces) sets the minimum echo receive interval for the BFD session
Values—
100 to 100000 milliseconds
Values—
100
type np—
(does not apply to IPv6 interfaces) controls the value range of the transmit-interval and receive-interval parameters. If the type np option is not specified, the range of the transmit-interval and receive-interval parameter values is from 100 ms to 100000 ms. If the type np option is specified, the range of the transmit-interval and receive-interval parameter values is from 10 ms to 1000 ms, with the restriction that the maximum receiving detection time for the missing BFD packets must be less than or equal to 3000 ms. The maximum receiving detection time is the receive-interval parameter multiplied by the multiplier parameter.
Note:

The BFD session must be disabled before the type np parameter can be changed. The type np parameter is only supported on VPRN services for SAPs.

ip-mtu

Syntax 
ip-mtu octets
no ip-mtu
Context 
config>service>vprn>interface
Description 

This command configures the IP maximum transmit unit (packet) for this interface.

The default value is derived from the port MTU.

The no form of the command returns the default value.

Default 

no ip-mtu — uses the value derived from the port MTU

Parameters 
octets—
specifies the MTU for this interface
Values—
128 to 9732

ipcp

Syntax 
ipcp
Context 
config>service>vprn>interface
Description 

This command allows access to the Internet Protocol Control Protocol (IPCP) context within the interface configuration. Within this context, IPCP extensions can be configured to define such things as the remote IP address and DNS IP address to be signaled via IPCP on the associated PPP interface.

This command is only applicable if the associated SAP/port is a PPP/MLPPP interface.

Default 

n/a

dns

Syntax 
dns ip-address [secondary ip-address]
dns secondary ip-address
no dns [ip-address] [secondary ip-address]
Context 
config>service>vprn>if>ipcp
Description 

This command defines the DNS addresses to be assigned to the far end of the associated PPP/MLPPP link via IPCP extensions.

This command is only applicable if the associated SAP/port is a PPP/MLPPP interface with an IPCP encapsulation.

The no form of the command deletes the specified primary DNS address, the secondary DNS address, or both addresses from the IPCP extension peer-ip-address configuration.

Default 

no dns

Parameters 
ip-address—
a unicast IPv4 address for the primary DNS server to be signaled to the far end of the associated PPP/MLPPP link via IPCP extensions
Values—
a.b.c.d (unicast only)
secondary ip-address
a unicast IPv4 address for the secondary DNS server to be signaled to the far end of the associated PPP/MLPPP link via IPCP extensions
Values—
a.b.c.d (unicast only)

peer-ip-address

Syntax 
peer-ip-address ip-address
no peer-ip-address
Context 
config>service>vprn>if>ipcp
Description 

This command defines the remote IP address to be assigned to the far end of the associated PPP/ MLPPP link via IPCP extensions.

This command is only applicable if the associated SAP/port is a PPP/MLPPP interface with an IPCP encapsulation.

The interface must be shut down to modify the IPCP configuration.

The no form of the command deletes the IPCP extension peer-ip-address configuration.

Default 

no peer-ip-address (0.0.0.0)

Parameters 
ip-address—
a unicast IPv4 address to be signaled to the far end of the associated PPP/ MLPPP link by IPCP extensions
Values—
a.b.c.d (unicast only)

l4-load-balancing

Syntax 
l4-load-balancing {includeL4 | excludeL4}
no l4-load-balancing
Context 
config>service>vprn>interface
Description 

This command configures Layer 4 load balancing at the interface level. Configuration must be done on the ingress network interface (that is, the interface on the node that the packet is received on). When enabled, Layer 4 source and destination port fields of incoming TCP/UDP packets are included in the hashing calculation to randomly determine the distribution of packets.

You can add additional fields to generate more randomness and more equal distribution of packets with the teid-load-balancing command.

The default configuration on the interface is to match the Layer 4 load balancing configuration in the config>system context. Using this command to modify Layer 4 load-balancing configuration on an interface overrides the system-wide load-balancing settings for that interface.

Parameters 
includeL4—
layer 4 source and destination port fields are included in the hashing calculation for TCP/UDP packets
excludeL4—
layer 4 source and destination port fields are not included in the hashing calculation for TCP/UDP packets

local-dhcp-server

Syntax 
[no] local-dhcp-server local-server-name
Context 
config>service>vprn>interface
Description 

This command associates the interface with a local DHCP server configured on the system. A routed VPLS interface may not be associated with a local DHCP server.

The no form of the command removes the association of the interface with the local DHCP server.

Default 

none

Parameters 
local-server-name—
the name of the local DHCP server
Values—
up to 32 alphanumeric characters

local-proxy-arp

Syntax 
[no] local-proxy-arp
Context 
config>service>vprn>interface
Description 

This command enables local proxy ARP on the interface.

Local proxy ARP allows the 7705 SAR to respond to ARP requests received on an interface for an IP address that is part of a subnet assigned to the interface. The router responds to all requests for IP addresses within the subnet with its own MAC address and forwards all traffic between the hosts in the subnet.

Local proxy ARP is used on subnets where hosts are prevented from communicating directly.

When local-proxy-arp is enabled, ICMP redirects on the ports associated with the service are automatically blocked.

Default 

no local-proxy-arp

loopback

Syntax 
[no] loopback
Context 
config>service>vprn>interface
Description 

This command specifies that the interface is a loopback interface that has no associated physical interface. If this command is enabled, a SAP cannot be defined on the interface.

Default 

no loopback

mac

Syntax 
mac ieee-address
no mac [ieee-address]
Context 
config>service>vprn>interface
Description 

This command assigns a specific MAC address to a VPRN IP interface.

The no form of this command returns the MAC address of the IP interface to the default value.

Default 

The physical MAC address associated with the Ethernet interface that the SAP is configured on.

Parameters 
ieee-address—
the 48-bit MAC address for the static ARP. Allowed values are any non-broadcast, non-multicast MAC, and non-IEEE reserved MAC addresses.
Values—
aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff
(where aa, bb, cc, dd, ee, and ff are hexadecimal numbers and cannot be all zeros)

proxy-arp-policy

Syntax 
proxy-arp-policy policy-name [policy-name...(up to 5 max)]
no proxy-arp-policy
Context 
config>service>vprn>interface
Description 

This command enables proxy ARP on the interface and specifies an existing policy statement that controls the flow of routing information by analyzing match and action criteria. The policy statement is configured in the config>router>policy-options context (refer to the 7705 SAR OS Router Configuration Guide, “Route Policy Command Reference, Route Policy Options”). When proxy ARP is enabled, the 7705 SAR responds to ARP requests on behalf of another device.

Default 

no proxy-arp-policy

Parameters 
policy-name—
the route policy statement name. Allowed values are any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes. The policy statement must already be defined.

remote-proxy-arp

Syntax 
[no] remote-proxy-arp
Context 
config>service>vprn>interface
Description 

This command enables remote proxy ARP on the interface, allowing a router on one network to respond to ARP requests intended for another node that is physically located on another network. The router effectively pretends to be the destination node by sending an ARP response to the originating node that associates the router’s MAC address with the destination node’s IP address (acts as a proxy for the destination node). The router then takes responsibility for routing traffic to the real destination.

Default 

no remote-proxy-arp

secondary

Syntax 
secondary {ip-address/mask | ip-address netmask} [broadcast all-ones | host-ones] [igp-inhibit]
no secondary {ip-address/mask | ip-address netmask}
Context 
config>service>vprn>interface
Description 

This command assigns an secondary IP address, IP subnet, and broadcast address format to the interface.

Default 

no secondary

Parameters 
ip-address —
the IP address of the IP interface. The ip-address portion of the secondary command specifies the IP host address that will be used by the IP interface within the subnet. This address must be unique within the subnet and specified in dotted-decimal notation.
Values—
a.b.c.d
(1.0.0.0 to 223.255.255.255 (with support of /31 subnets)
The “/” (forward slash) is a parameter delimiter that separates the ip-address portion of the IP address from the mask, which defines the scope of the local subnet. No spaces are allowed between the ip-address, the “/”, and the mask. If a forward slash does not immediately follow the ip-address, a dotted-decimal mask must follow the prefix.
mask—
the subnet mask length when the IP prefix is specified in CIDR notation. When the IP prefix is specified in CIDR notation, a forward slash separates the ip-address from the mask. The mask indicates the number of bits used for the network portion of the IP address; the remainder of the IP address is used to determine the host portion of the IP address.
Values—
0 to 32
netmask —
the subnet mask, in dotted-decimal notation. When the IP prefix is not specified in CIDR notation, a space separates the ip-address from a traditional dotted-decimal mask. The netmask parameter indicates the complete mask that will be used in a logical “AND” function to derive the local subnet of the IP address.
Values—
128.0.0.0 to 255.255.255.252
(network bits all 1 and host bits all 0)
(255.255.255.255 is reserved for system IP addresses)
broadcast—
the optional broadcast parameter overrides the default broadcast address used by the IP interface when sourcing IP broadcasts on the IP interface. If no broadcast format is specified for the IP address, the default value is host-ones, which indicates a subnet broadcast address. Use this parameter to change the broadcast address to all-ones or revert back to a broadcast address of host-ones.

The broadcast format on an IP interface can be specified when the IP address is assigned or changed.

This parameter does not affect the type of broadcasts that can be received by the IP interface. A host sending either the local broadcast (all-ones) or the valid subnet broadcast address (host-ones) will be received by the IP interface.

Values—
host-ones
all-ones—
specifies that the broadcast address used by the IP interface for this IP address will be 255.255.255.255, also known as the local broadcast
host-ones—
specifies that the broadcast address used by the IP interface for this IP address will be the subnet broadcast address. This is an IP address that corresponds to the local subnet described by the ip-address and the mask, or the mask with all the host bits set to binary one. This is the default broadcast address used by an IP interface.

The broadcast parameter within the secondary command does not have a negation feature, which is usually used to revert a parameter to the default value. To change the broadcast type to host-ones after being changed to all-ones, the secondary command must be executed with the broadcast parameter defined.

igp-inhibit—
specifies that this secondary IP interface should not be recognized as a local interface by the running IGP. For OSPF and IS-IS, this means that the secondary IP interface will not be injected and used as a passive interface and will not be advertised as an internal IP interface into the IGP link state database. For RIP, this means that the secondary IP interface will not source RIP updates.

static-arp

Syntax 
static-arp ip-address ieee-address
no static-arp ip-address [ieee-address]
static-arp ieee-address unnumbered
no static-arp [ieee-address] unnumbered
Context 
config>service>vprn>interface
Description 

This command configures a static address resolution protocol (ARP) entry associating a subscriber IP address with a MAC address for the core router instance. This static ARP will appear in the core routing ARP table. A static ARP can only be configured if it exists on the network attached to the IP interface. If an entry for a particular IP address already exists and a new MAC address is configured for the IP address, the existing MAC address will be replaced with the new MAC address.

Static ARP is used when a 7705 SAR needs to know about a device on an interface that cannot or does not respond to ARP requests. Therefore, the 7705 SAR OS configuration can specify to send a packet with a particular IP address to the corresponding ARP address.

The no form of the command removes a static ARP entry.

Default 

n/a

Parameters 
ip-address—
the IP address for the static ARP in dotted-decimal notation
Values—
a.b.c.d
ieee-address—
the 48-bit MAC address for the static ARP. Allowed values are any non-broadcast, non-multicast MAC, and non-IEEE reserved MAC addresses.
Values—
aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff
(where aa, bb, cc, dd, ee, and ff are hexadecimal numbers and cannot be all zeros)
unnumbered—
specifies the static ARP MAC addresses for an unnumbered interface. Unnumbered interfaces also support dynamic ARP. If this parameter is configured, it overrides any dynamic ARP.

teid-load-balancing

Syntax 
[no] teid-load-balancing
Context 
config>service>vprn>interface
Description 

This command configures TEID load balancing at the interface level. Configuration must be done on the ingress network interface (that is, the interface on the node that the packet is received on). The TEID attribute is included in the header of GTP (general packet radio system tunneling protocol) packets. When TEID load balancing is enabled, the TEID field of incoming TCP/UDP packets is included in the hashing calculation to randomly determine the distribution of packets.

You can add additional fields to generate more randomness and more equal distribution of packets with the l4-load-balancing command.

Default 

no teid-load-balancing

unnumbered

Syntax 
unnumbered {ip-int-name | ip-address}
no unnumbered
Context 
config>service>vprn>interface
Description 

This command configures an IP interface as an unnumbered interface and specifies an IP address or interface name to be used for the interface. Unnumbered interfaces are point-to-point interfaces that are not explicitly configured with a dedicated IP address and subnet; instead, they borrow (or link to) an IP address from another interface on the system (the system IP address, another loopback interface, or any other numbered interface) and use it as the source IP address for packets originating from the interface.

By default, no IP address exists on an IP interface until it is explicitly created.

The no form of the command removes the IP address assignment from the IP interface.

Default 

no unnumbered

Parameters 
ip-int-name | ip-address—
the IP interface name or address to associate with the unnumbered IP interface
Values—
ip-int-name:      1 to 32 characters (must start with a letter)
ip-address:         a.b.c.d

IPv6 Interface Commands

ipv6

Syntax 
[no] ipv6
Context 
config>service>vprn>interface
Description 

This command enables the context to configure parameters for a VPRN IPv6 interface.

address

Syntax 
address ipv6-address/prefix-length [eui-64] [preferred]
no address ipv6-address/prefix-length
Context 
config>service>vprn>if>ipv6
Description 

This command assigns an address to the IPv6 interface.

Parameters 
ipv6-address/prefix-length—
the address of the IPv6 interface
Values—
ipv6-address   x:x:x:x:x:x:x:x (eight 16-bit pieces)
                        x:x:x:x:x:x:d.d.d.d
                        x:   [0 to FFFF]H
                        d:   [0 to 255]D
prefix-length   0 to 128
eui-64—
when the eui-64 keyword is specified, a complete IPv6 address from the supplied prefix and 64-bit interface identifier is formed. The 64-bit interface identifier is derived from the MAC address on Ethernet interfaces. For interfaces without a MAC address, for example ATM interfaces, the base MAC address of the chassis is used
preferred—
specifies that the IPv6 address is the preferred IPv6 address for this interface. A preferred address is an address assigned to an interface whose use by upper layer protocols is unrestricted. A preferred addresses maybe used as the source (or destination) address of packets sent from (or to) the interface

dhcp6-relay

Syntax 
[no] dhcp6-relay
Context 
config>service>vprn>if>ipv6
Description 

This command enables the context to configure DHCPv6 relay parameters for the interface.

The no form of the command disables DHCPv6 relay.

option

Syntax 
[no] option
Context 
config>service>vprn>if>ipv6>dhcp6-relay
Description 

This command enables the context to configure DHCPv6 relay information options.

The no form of the command disables DHCPv6 relay information options.

interface-id

Syntax 
interface-id
interface-id ascii-tuple
interface-id ifindex
interface-id sap-id
interface-id string
no interface-id
Context 
config>service>vprn>if>ipv6>dhcp6-relay>option
Description 

This command enables the sending of interface ID options in the DHCPv6 relay packet.

The no form of the command disables the sending of interface ID options in the DHCPv6 relay packet.

Parameters 
ascii-tuple—
specifies that the ASCII-encoded concatenated tuple will be used (consists of the access-node-identifier, service-id, and interface-name, separated by “|”)
ifindex—
specifies that the interface index will be used. (The If Index of a router interface can be displayed using the command show>router>if>detail.)
sap-id—
specifies that the SAP identifier will be used
string—
a string of up to 32 characters long, composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.

remote-id

Syntax 
[no] remote-id
Context 
config>service>vprn>if>ipv6>dhcp6-relay>option
Description 

This command enables the sending of the remote ID option in the DHCPv6 relay packet.

The client DHCP Unique Identifier (DUID) is used as the remote ID.

The no form of the command disables the sending of remote ID option in the DHCPv6 relay packet.

server

Syntax 
[no] server ipv6z-address
Context 
config>service>vprn>if>ipv6>dhcp6-relay
Description 

This command configures an IPv6 address to the DHCPv6 server.

The no form of the command disables the specified IPv6 address.

Parameters 
ipv6z-address—
the IPv6 address of the DHCPv6 server (a maximum of eight addresses can be configured)
Values—
ipv6z-address   x:x:x:x:x:x:x:x [-interface]
                         x:x:x:x:x:x:d.d.d.d [-interface]
                         x:   [0 to FFFF]H
                         d:   [0 to 255]D
                         interface: 32 characters maximum,
                         mandatory for link local addresses

source-address

Syntax 
[no] source-address ipv6-address
Context 
config>service>vprn>if>ipv6>dhcp6-relay
Description 

This command assigns the source IPv6 address of the DHCPv6 relay messages.

The no form of the command disables the specified IPv6 address.

Parameters 
ipv6-address—
the source IPv6 address of the DHCPv6 relay messages
Values—
ipv6-address   x:x:x:x:x:x:x:x (eight 16-bit pieces)
                        x:x:x:x:x:x:d.d.d.d
                        x:   [0 to FFFF]H
                        d:   [0 to 255]D

dhcp6-server

Syntax 
[no] dhcp6-server
Context 
config>service>vprn>if>ipv6
Description 

This command enables the context to configure DHCPv6 server parameters for the VPRN interface.

The no form of the command disables the DHCPv6 server.

max-nbr-of-leases

Syntax 
max-nbr-of-leases max-nbr-of-leases
no max-nbr-of-leases
Context 
config>service>vprn>if>ipv6>dhcp6-server
Description 

This command configures the maximum number of lease states installed by the DHCPv6 server function allowed on this interface.

The no form of the command returns the value to the default.

Default 

8000

Parameters 
max-nbr-of-leases—
the maximum number of lease states installed by the DHCPv6 server function allowed on this interface
Values—
0 to 8000

prefix-delegation

Syntax 
[no] prefix-delegation
Context 
config>service>vprn>if>ipv6>dhcp6-server
Description 

This command configures prefix delegation options for delegating a long-lived prefix from a delegating router to a requesting router, where the delegating router does not require knowledge about the topology of the links in the network to which the prefixes will be assigned.

The no form of the command disables prefix delegation.

prefix

Syntax 
[no] prefix ipv6-address/prefix-length
Context 
config>service>vprn>if>ipv6>dhcp6-server>pfx-delegate
Description 

This command specifies the IPv6 prefix that is delegated by the system.

Parameters 
ipv6-address/prefix-length—
the address of the IPv6 interface
Values—
ipv6-address   x:x:x:x:x:x:x:x (eight 16-bit pieces)
                        x:x:x:x:x:x:d.d.d.d
                        x:   [0 to FFFF]H
                        d:   [0 to 255]D
prefix-length   0 to 128

duid

Syntax 
duid duid [iaid iaid]
no duid
Context 
config>service>vprn>if>ipv6>dhcp6>pfx-delegate>prefix
Description 

This command configures the DHCP Unique Identifier (DUID) of the DHCPv6 server client.

Parameters 
duid—
the ID of the requesting router. If set to a non-zero value, the prefix defined will only be delegated to this router. If set to 0, the prefix will be delegated to any requesting router.
iaid iaid
the identity association identification (IAID) from the requesting router that needs to match in order to delegate the defined prefix. If set to 0, no match on the received IAID is done.

preferred-lifetime

Syntax 
preferred-lifetime seconds
preferred-lifetime infinite
no preferred-lifetime
Context 
config>service>vprn>if>ipv6>dhcp6>pfx-delegate>prefix
Description 

This command configures the IPv6 prefix preferred lifetime. The preferred-lifetime value cannot be larger than the valid-lifetime value.

The no form of the command reverts to the default value.

Default 

604800 seconds (7 days)

Parameters 
seconds—
the time, in seconds, that this prefix remains preferred
Values—
1 to 4294967294
infinite—
specifies that this prefix remains preferred infinitely

valid-lifetime

Syntax 
valid-lifetime seconds
valid-lifetime infinite
no valid-lifetime
Context 
config>service>vprn>if>ipv6>dhcp6>pfx-delegate>prefix
Description 

This command configures the time, in seconds, that the prefix is valid.

The no form of the command reverts to the default value.

Default 

2592000 seconds (30 days)

Parameters 
seconds—
the time, in seconds, that this prefix remains valid
Values—
1 to 4294967295
infinite—
specifies that this prefix remains valid infinitely

icmp6

Syntax 
icmp6
Context 
config>service>vprn>if>ipv6
Description 

This command configures ICMPv6 parameters for the interface.

packet-too-big

Syntax 
packet-too-big [number seconds]
no packet-too-big
Context 
config>service>vprn>if>ipv6>icmp6
Description 

This command specifies whether, and how often, “packet-too-big” ICMPv6 messages should be sent. When enabled, ICMPv6 “packet-too-big” messages are generated by this interface.

The no form of the command disables the sending of ICMPv6 “packet-too-big” messages.

Default 

100 10

Parameters 
number —
the number of “packet-too-big” ICMPv6 messages to send in the time frame specified by the seconds parameter
Values—
10 to 1000
Values—
100
seconds—
the time frame, in seconds, that is used to limit the number of “packet-too-big” ICMPv6 messages issued
Values—
1 to 60
Values—
10

param-problem

Syntax 
param-problem [number seconds]
no packet-too-big
Context 
config>service>vprn>if>ipv6>icmp6
Description 

This command specifies whether, and how often, “parameter-problem” ICMPv6 messages should be sent. When enabled, “parameter-problem” ICMPv6 messages are generated by this interface.

The no form of the command disables the sending of “parameter-problem” ICMPv6 messages.

Default 

100 10

Parameters 
number —
the number of “parameter-problem” ICMPv6 messages to send in the time frame specified by the seconds parameter
Values—
10 to 1000
Values—
100
seconds—
the time frame, in seconds, that is used to limit the number of “parameter-problem” ICMPv6 messages issued
Values—
1 to 60
Values—
10

time-exceeded

Syntax 
time-exceeded [number seconds]
no time-exceeded
Context 
config>service>vprn>if>ipv6>icmp6
Description 

This command specifies whether, and how often, “time-exceeded” ICMPv6 messages should be sent. When enabled, ICMPv6 “time-exceeded” messages are generated by this interface.

Default 

100 10

Parameters 
number —
the number of “time-exceeded” ICMPv6 messages are to be issued in the time frame specified by the seconds parameter
Values—
10 to 1000
Values—
100
seconds—
the time frame, in seconds, that is used to limit the number of “time-exceeded” ICMPv6 messages to be issued
Values—
1 to 60
Values—
10

unreachables

Syntax 
unreachables [number seconds]
no unreachables
Context 
config>service>vprn>if>ipv6>icmp6
Description 

This command specifies whether, and how often, ICMPv6 host and network destination unreachable messages are generated by this interface.

Default 

100 10

Parameters 
number —
the number of destination unreachable ICMPv6 messages to send issued in the time frame specified by the seconds parameter
Values—
10 to 1000
Values—
100
seconds—
the time frame, in seconds, that is used to limit the number of destination unreachable ICMPv6 messages to be sent
Values—
1 to 60
Values—
10

link-local-address

Syntax 
link-local-address ipv6-address [preferred]
Context 
config>service>vprn>if>ipv6
Description 

This command assigns the IPv6 link local address to the interface.

Default 

n/a

Parameters 
ipv6-address—
the IPv6 link local address
Values—
x:x:x:x:x:x:x:x (eight 16-bit pieces) x:x:x:x:x:x:d.d.d.d x: [0 — FFFF]H d: [0 — 255]D
preferred—
specifies that the IPv6 address is the preferred IPv6 address for this interface. A preferred address is an address assigned to an interface whose use by upper layer protocols is unrestricted. A preferred addresses maybe used as the source (or destination) address of packets sent from (or to) the interface

neighbor

Syntax 
neighbor ipv6-address mac-address
no neighbor ipv6-address
Context 
config>service>vprn>if>ipv6
Description 

This command configures IPv6-to-MAC address mapping on the interface.

Default 

n/a

Parameters 
ipv6-address—
the address of the IPv6 interface for which to display information
Values—
x:x:x:x:x:x:x:x (eight 16-bit pieces) x:x:x:x:x:x:d.d.d.d x: [0 — FFFF]H d: [0 — 255]D prefix-length [1 to 128]
mac-address—
the 48-bit MAC address for the IPv6-to-MAC address mapping in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff, where aa, bb, cc, dd, ee and ff are hexadecimal numbers. Allowed values are any unicast MAC addresses and non-IEEE reserved MAC addresses

reachable-time

Syntax 
reachable-time seconds
no reachable-time
Context 
config>service>vprn>if>ipv6
Description 

This command specifies the time that an IPv6 neighbor remains in a reachable state.

Default 

no reachable-time

Parameters 
seconds—
the number of seconds that an IPv6 neighbor remains in a reachable state
Values—
30 to 3600
Values—
30

stale-time

Syntax 
stale-time seconds
no stale-time
Context 
config>service>vprn>if>ipv6
Description 

This command specifies the time that an IPv6 neighbor cache entry remains in a stale state. When the specified time elapses, the system removes the neighbor cache entry.

Default 

no stale-time

Parameters 
seconds—
the number of seconds that an IPv6 neighbor remains in a stale state
Values—
60 to 65535
Values—
14400

Interface DHCP Commands

dhcp

Syntax 
dhcp
Context 
config>service>vprn>interface
Description 

This command enables the context to configure DHCP parameters.

gi-address

Syntax 
gi-address ip-address [src-ip-addr]
no gi-address
Context 
config>service>vprn>if>dhcp
Description 

This command configures the gateway interface address for the DHCP Relay Agent. By default, the GIADDR used in the relayed DHCP packet is the primary address of an interface. Specifying the GIADDR allows the user to choose a secondary address.

Default 

no gi-address

Parameters 
ip-address—
the IP address of the gateway interface in dotted-decimal notation
Values—
a.b.c.d (host bits must be 0)
src-ip-addr—
specifies that the GIADDR is to be used as the source IP address for DHCP relay packets

option

Syntax 
[no] option
Context 
config>service>vprn>if>dhcp
Description 

This command enables DHCP Option 82 (Relay Agent Information Option) parameters processing and enters the context for configuring Option 82 suboptions.

The no form of this command returns the system to the default.

Default 

no option

action

Syntax 
action {replace | drop | keep}
no action
Context 
config>service>vprn>if>dhcp>option
Description 

This command configures the processing required when the 7705 SAR receives a DHCP request that already has a Relay Agent Information Option (Option 82) field in the packet.

The no form of this command returns the system to the default value.

Default 

keep—(as per RFC 3046, DHCP Relay Agent Information Option, section 2.1.1, Reforwarded DHCP requests, the default is to keep the existing information intact. The exception to this occurs if the gi-addr (gateway interface address) of the received packet is the same as the ingress address on the router. In this case, the packet is dropped and an error is logged.)

Parameters 
replace—
in the upstream direction (from the user), the existing Option 82 field is replaced with the Option 82 field from the router. In the downstream direction (towards the user) the Option 82 field is stripped (in accordance with RFC 3046).
drop—
the packet is dropped, and an error is logged
keep—
the existing information is kept in the packet and the router does not add any additional information. In the downstream direction, the Option 82 field is not stripped and is sent on towards the client.

The behavior is slightly different in the case of Vendor Specific Options (VSOs). When the keep parameter is specified, the router will insert its own VSO into the Option 82 field. This will only be done when the incoming message has an Option 82 field already.

If no Option 82 field is present, the router will not create the Option 82 field. In this case, no VSO will be added to the message.

circuit-id

Syntax 
circuit-id [ascii-tuple | ifindex | sap-id | vlan-ascii-tuple]
no circuit-id
Context 
config>service>vprn>if>dhcp>option
Description 

This command sends either an ASCII tuple or the interface index (If Index) on the specified SAP ID in the circuit-id suboption of the DHCP packet. The If Index of a router interface can be displayed using the command show>router>interface> detail. This option specifies data that must be unique to the router that is relaying the circuit.

If disabled, the circuit-id suboption of the DHCP packet is left empty.

The no form of this command returns the system to the default.

Default 

ascii-tuple

Parameters 
ascii-tuple—
the ASCII-encoded concatenated “tuple” will be used, where the “tuple” consists of the access-node-identifier, service-id, and interface-name, separated by the syntax symbol “|”
ifindex—
the interface index will be used
sap-id—
the SAP ID will be used
vlan-ascii-tuple—
specifies that the format will include VLAN-id and dot1p bits, in addition to the ascii-tuple. The format is supported on dot1q and qinq ports only. Thus, when the Option 82 bits are stripped, dot1p bits will be copied to the Ethernet header of an outgoing packet.

remote-id

Syntax 
remote-id [mac | string string]
no remote-id
Context 
config>service>vprn>if>dhcp>option
Description 

This command sends the MAC address of the remote end (typically, the DHCP client) in the remote-id suboption of the DHCP packet. This command identifies the host at the other end of the circuit. If disabled, the remote-id suboption of the DHCP packet will be left empty.

The no form of this command returns the system to the default.

Default 

remote-id

Parameters 
mac—
the MAC address of the remote end is encoded in the suboption
string
the remote ID
Values—
up to 32 alphanumeric characters

vendor-specific-option

Syntax 
[no] vendor-specific-option
Context 
config>service>vprn>if>dhcp>option
Description 

This command enables the Nokia vendor-specific suboption of the DHCP relay packet and enters the context for configuring the vendor-specific suboptions.

client-mac-address

Syntax 
[no] client-mac-address
Context 
config>service>vprn>if>dhcp>option>vendor
Description 

This command enables the sending of the MAC address in the Nokia vendor-specific suboption of the DHCP relay packet.

The no form of the command disables the sending of the MAC address in the Nokia vendor- specific suboption of the DHCP relay packet.

Default 

no client-mac-address

sap-id

Syntax 
[no] sap-id
Context 
config>service>vprn>if>dhcp>option>vendor
Description 

This command enables the sending of the SAP ID in the Nokiat vendor-specific suboption of the DHCP relay packet.

The no form of the command disables the sending of the SAP ID in the Nokia vendor-specific suboption of the DHCP relay packet.

Default 

no sap-id

service-id

Syntax 
[no] service-id
Context 
config>service>vprn>if>dhcp>option>vendor
Description 

This command enables the sending of the service ID in the Nokia vendor-specific suboption of the DHCP relay packet.

The no form of the command disables the sending of the service ID in the Nokia vendor- specific suboption of the DHCP relay packet.

Default 

no service-id

string

Syntax 
string text
no string
Context 
config>service>vprn>if>dhcp>option>vendor
Description 

This command specifies the vendor-specific suboption string of the DHCP relay packet.

The no form of the command returns the default value.

Default 

no string

Parameters 
text—
any combination of ASCII characters up to 32 characters in length. If spaces are used in the string, the entire string must be enclosed within double quotes.

system-id

Syntax 
[no] system-id
Context 
config>service>vprn>if>dhcp>option>vendor
Description 

This command specifies whether the system ID is encoded in the Nokia vendor-specific suboption of Option 82.

Default 

n/a

server

Syntax 
server server1 [server2...(up to 8 max)]
no server
Context 
config>service>vprn>if>dhcp
Description 

This command specifies a list of servers where requests will be forwarded. The list of servers can be entered as either IP addresses or fully qualified domain names. There must be at least one server specified for DHCP Relay to work. If there are multiple servers specified, the request is forwarded to all of the servers in the list. There can be a maximum of 8 DHCP servers configured.

Default 

no server

Parameters 
server—
the DHCP server IP address

trusted

Syntax 
[no] trusted
Context 
config>service>vprn>if>dhcp
Description 

This command enables or disables trusted mode on an IP interface.

According to RFC 3046, DHCP Relay Agent Information Option, a DHCP request where the gi-addr (gateway interface address) is 0.0.0.0 and which contains an Option 82 field in the packet, should be discarded, unless it arrives on a “trusted” circuit.

If trusted mode is enabled on an IP interface, the relay agent (the 7705 SAR) will modify the request gi-addr to be equal to the ingress interface and forward the request.

This behavior only applies when the action in the Relay Agent Information Option is “keep”.

In the case where the Option 82 field is being replaced by the relay agent (action = “replace”), the original Option 82 information is lost. Thus, in this case, there is no reason for enabling the trusted option.

The no form of this command returns the system to the default.

Default 

no trusted

Interface ICMP Commands

icmp

Syntax 
icmp
Context 
config>service>vprn>interface
Description 

This command configures Internet Control Message Protocol (ICMP) parameters on a VPRN service and enters the context for configuring ICMP.

mask-reply

Syntax 
[no] mask-reply
Context 
config>service>vprn>if>icmp
Description 

This command enables responses to ICMP mask requests on the router interface.

If a local node sends an ICMP mask request to the router interface, the mask-reply command configures the router interface to reply to the request.

By default, the router instance will reply to mask requests.

The no form of this command disables replies to ICMP mask requests on the router interface.

Default 

mask-reply

ttl-expired

Syntax 
ttl-expired number seconds
no ttl-expired [number seconds]
Context 
config>service>vprn>if>icmp
Description 

This command configures the rate at which ICMP TTL-expired messages are issued by the IP interface.

By default, generation of ICMP TTL-expired messages is enabled at a maximum rate of 100 per 10-s time interval.

The no form of this command disables limiting the rate of TTL-expired messages on the router interface.

Default 

ttl-expired 100 10

Parameters 
number—
the maximum number of ICMP TTL-expired messages to send, expressed as a decimal integer. This parameter must be specified along with the seconds parameter.
Values—
10 to 100
seconds—
the time, in seconds, used to limit the number of ICMP TTL-expired messages that can be issued, expressed as a decimal integer
Values—
1 to 60

unreachables

Syntax 
unreachables number seconds
no unreachables [number seconds]
Context 
config>service>vprn>if>icmp
Description 

This command enables and configures the rate of ICMP host and network destination unreachable messages issued on the router interface.

The unreachables command enables the generation of ICMP destination unreachables on the router interface. The rate at which ICMP unreachables is issued can be controlled with the number and seconds parameters by indicating the maximum number of destination unreachable messages that can be issued on the interface for a given time interval.

By default, generation of ICMP destination unreachable messages is enabled at a maximum rate of 100 per 10-s time interval.

The no form of this command disables the generation of ICMP destination unreachable messages on the router interface.

Default 

unreachables 100 10

Parameters 
number—
the maximum number of ICMP unreachable messages to send. This parameter must be specified along with the seconds parameter.
Values—
10 to 100
seconds—
the time frame, in seconds, used to limit the number of ICMP unreachable messages that can be issued
Values—
1 to 60

Interface SAP Commands

sap

Syntax 
sap sap-id [create]
no sap sap-id
Context 
config>service>vprn>interface
Description 

This command creates a Service Access Point (SAP) within a service when used with the create keyword. The create keyword is not needed when entering an existing SAP to edit SAP parameters.

A SAP is a combination of port and encapsulation parameters that identify the service access point on the interface and within the 7705 SAR. Each SAP must be unique.

All SAPs must be explicitly created. If no SAPs are created within a service or on an IP interface, a SAP will not exist on that object.

The SAP is owned by the service in which it was created.

A SAP can only be associated with a single service. A SAP can only be defined on a port that has been configured as an access port using the config interface port-type port-id mode access command. Channelized TDM ports are always access ports.

If a port is shut down with the shutdown command, all SAPs on that port become operationally down. When a service is shut down, SAPs for the service are not displayed as operationally down although all traffic traversing the service will be discarded. The operational state of a SAP is relative to the operational state of the port on which the SAP is defined.

To configure a VPRN interface SAP that is used for a private IPSec tunnel interface, see sap in Service Interface Tunnel Commands.

If the VPRN interface has been configured as a loopback interface with the loopback command, a SAP cannot be defined on the interface.

The no form of this command deletes the SAP with the specified port. When a SAP is deleted, all configuration parameters for the SAP will also be deleted.

Default 

no SAPs are defined

Parameters 
sap-id—
the physical port identifier portion of the SAP definition. See Table 39 for a full list of SAP IDs.
create—
keyword used to create a SAP instance

accounting-policy

Syntax 
accounting-policy acct-policy-id
no accounting-policy [acct-policy-id]
Context 
config>service>vprn>if>sap
Description 

This command creates the accounting policy context that can be applied to an interface SAP.

An accounting policy must be defined before it can be associated with a SAP. Accounting policies are configured in the config log context. A maximum of one accounting policy can be associated with a SAP at one time.

If the acct-policy-id does not exist, an error message is generated.

The no form of this command removes the accounting policy association from the SAP, and the accounting policy reverts to the default.

Default 

no accounting policy

Parameters 
acct-policy-id—
the accounting policy ID as configured in the config log accounting-policy context
Values—
1 to 99

collect-stats

Syntax 
[no] collect-stats
Context 
config>service>vprn>if>sap
Description 

This command enables accounting and statistical data collection for either an interface SAP or network port. When applying accounting policies, the data, by default, is collected in the appropriate records and written to the designated billing file.

When the no collect-stats command is issued, the statistics are still accumulated. However, the CPU will not obtain the results and write them to the billing file. If a subsequent collect-stats command is issued, then the counters written to the billing file include all the traffic while the no collect-stats command was in effect.

Default 

collect-stats

egress

Syntax 
egress
Context 
config>service>vprn>if>sap
Description 

This command enables the context to configure egress SAP QoS policies and filter policies.

If no sap-egress QoS policy is defined, the system default sap-egress QoS policy is used for egress processing. If no egress filter policy is defined, no filtering is performed.

ingress

Syntax 
ingress
Context 
config>service>vprn>if>sap
Description 

This command enables the context to configure ingress SAP QoS policies and filter policies.

If no sap-ingress QoS policy is defined, the system default sap-ingress QoS policy is used for ingress processing. If no ingress filter policy is defined, no filtering is performed.

agg-rate-limit

Syntax 
agg-rate-limit agg-rate [cir cir-rate]
no agg-rate-limit
Context 
config>service>vprn>if>sap>egress
config>service>vprn>if>sap>ingress
Description 

This command sets the aggregate rate limits (PIR and CIR) for the SAP. The agg-rate sets the PIR value. The cir-rate sets the CIR value. When aggregate rate limits are configured on a second-generation (Gen-2) Ethernet adapter card, the scheduler mode must be set to 16-priority. On a third-generation (Gen-3) Ethernet adapter card, the scheduler mode is always 4-priority. For information on adapter card generations, refer to the “Evolution of Ethernet Adapter Cards, Modules, and Platforms” section in the 7705 SAR OS Interface Configuration Guide.

Configuring the cir-rate is optional. If a cir-rate is not entered, then the cir-rate is set to its default value (0 kb/s). If a cir-rate has been set and the agg-rate is changed without re-entering the cir-rate, the cir-rate automatically resets to 0 kb/s. For example, to change the agg-rate from 2000 to 1500 while maintaining a cir-rate of 500, use the command agg-rate-limit 1500 cir 500.

If the specified SAP is a LAG SAP, then agg-rate and cir-rate can be configured regardless of the scheduler mode setting on Gen-2 or Gen-3 hardware—it is not configurable if one of the ports configured in the LAG SAP is on Gen-1 hardware. If the active port is on a Gen-3 card or platform, then agg-rate and cir-rate are applicable. If the active port is on a Gen-2 card or platform, then agg-rate and cir-rate apply when the scheduler mode is set to 16-priority. If the active port is on a Gen-1 card, then agg-rate and cir-rate are not applicable. For details on the behavior of a mix-and-match LAG SAP, refer to the “LAG Support on Third-Generation Ethernet Adapter Cards, Ports, and Platforms” and “Network LAG Traffic Management” sections in the 7705 SAR OS Interface Configuration Guide.

Note:

From Release 7.0.R6, schedulers on Gen-3 adapter cards and platforms have been updated to better align with the scheduling behavior supported on the other 7705 SAR adapter cards and platforms. The updated scheduler mode is called “4-priority” scheduler-mode throughout the CLI. Prior to Release 7.0.R6, the CLI designation was “4-priority-hqos”. In the updated mode of operation, arbitration among different flows at the second-tier aggregate (per-SAP or per-VLAN) and third-tier aggregate (per-customer (MSS)) levels are carried out in a round-robin manner, scheduling cir-rate first from the shapers, followed by the pir-rate.

Caution:

Any Gen-3 adapter card or platform running Release 7.0.R6 or later software uses 4-priority scheduling instead of 4-priority-hqos scheduling, which was supported previously. The migration of scheduler mode is automatic with an upgrade and there is no operator action required. As part of the migration, all CIR values at second-tier (per-SAP and per-VLAN) and third-tier (per-customer (MSS)) aggregate shaper levels are set to zero. Operators must exercise caution when performing an upgrade to Release 7.0.R6 or later from a previous Release 7.0 version, and must adjust the affected CIR values in accordance with the needs of their applications as soon as possible.

The no form of the command sets the agg-rate to the maximum and the cir-rate to 0 kb/s.

Default 

no agg-rate-limit

Parameters 
agg-rate—
sets the PIR for the aggregate of all the queues on the SAP. The max keyword applies the maximum physical port rate possible.
Values—
1 to 10000000 kb/s, or max
Values—
max
cir-rate—
sets the CIR for the aggregate of all the queues on the SAP
Values—
0 to 10000000 kb/s, or max
Values—
0 kb/s

filter

Syntax 
filter ip ip-filter-id
no filter ip [ip-filter-id]
filter ipv6 ipv6-filter-id
no filter ipv6 [ipv6-filter-id]
filter [ip ip-filter-id] [ipv6 ipv6-filter-id]
no filter [[ip [ip-filter-id]] [[ipv6 [ipv6-filter-id]]
Context 
config>service>vprn>if>sap>egress
config>service>vprn>if>sap>ingress
Description 

This command associates an IPv4 or IPv6 filter policy with an ingress or egress SAP or IP interface. Filter policies control the forwarding and dropping of packets based on IP matching criteria.

The filter command is used to associate a filter policy with a specified ip-filter-id or ipv6-filter-id with an ingress or egress SAP. The ip-filter-id or ipv6-filter-id must already be defined before the filter command is executed. If the filter policy does not exist, the operation will fail and an error message will be returned.

Only one filter ID can be assigned to an interface unless the interface is dual-stack (supports both IPv4 and IPv6). A dual-stack interface can have one IPv4 and one IPv6 filter ID assigned to it.

In general, filters applied to SAPs apply to all packets on the SAP. One exception is that IP match criteria are not applied to non-IP packets, in which case the default action in the filter policy applies to these packets.

The no form of this command removes any configured filter ID association with the SAP or IP interface. The filter ID is not removed from the system unless the scope of the created filter is set to local. To avoid deletion of the filter ID and only break the association with the service object, use the scope command within the filter definition to change the scope to local or global. The default scope of a filter is local.

Parameters 
ip-filter-id—
the IPv4 filter policy. The filter ID or filter name must already exist within the created IPv4 filters.
Values—
1 to 65535 or filter-name (up to 64 characters)
ipv6-filter-id—
the IPv6 filter policy. The filter ID or filter name must already exist within the created IPv6 filters.
Values—
1 to 65535 or ipv6-filter-name (up to 64 characters)

match-qinq-dot1p

Syntax 
match-qinq-dot1p {top | bottom}
no match-qinq-dot1p
Context 
config>service>vprn>if>sap>ingress
Description 

This command specifies which dot1q tag position (top or bottom) in a qinq-encapsulated packet should be used when QoS evaluates dot1p classification.

The no form of the command restores the default dot1p evaluation behavior for the SAP, which means that the inner (bottom) tag (second tag) dot1p bits are used for classification.

By default, the dot1p bits from the inner tag service-delineating dot1q tag are used.

Table 120 shows which set of dot1p bits are used for QoS purposes when match-qinq-dot1p is configured. To use the table, find the row that represents the settings for Port/SAP Type and Match-QinQ-Dot1q Setting. Use the Existing Packet Tags column to identify which dot1q tags are available in the packet. Then use the P-bits Used for Match column to identify which dot1q tag contains the dot1p bits that are used for QoS dot1p classification.

Default 

no match-qinq-dot1p

Parameters 
top—
the top parameter and bottom parameter are mutually exclusive. When the top parameter is specified, the outer tag's dot1p bits (topmost P-bits) are used (if existing) to match any dot1p dot1p-value entries
bottom—
the bottom parameter and top parameter are mutually exclusive. When the bottom parameter is specified, the bottommost P-bits (second tag’s P-bits) are used (if existing) to match any dot1p dot1p-value entries.
Table 120:  Match-QinQ-Dot1p Matching Behavior 

Port/ SAP Type

Match-QinQ-Dot1p Setting  1

Existing Packet Tags

P-bits Used for Match

Null

n/a

None

None

Null

n/a

Dot1p (VLAN ID 0)

None  2

Null

n/a

Dot1q

None  2

Null

n/a

TopQ BottomQ

None  2

Dot1Q

n/a

None

None

Dot1Q

n/a

Dot1p (default SAP VLAN ID 0)

Dot1p P-bits

Dot1Q

n/a

Dot1q

Dot1q P-bits

QinQ/ X.Y

Top

TopQ BottomQ

TopQ P-bits

QinQ/ X.Y

Default or Bottom

TopQ BottomQ

BottomQ P-bits

QinQ/ X.0

Top

TopQ

TopQ P-bits

QinQ/ X.0

Default or Bottom

TopQ

TopQ P-bits

QinQ/ X.0

Top

TopQ BottomQ

TopQ P-bits

QinQ/ X.0

Default or Bottom

TopQ BottomQ

BottomQ P-bits

QinQ/ X.*

Top

TopQ

TopQ P-bits

QinQ/ X.*

Default or Bottom

TopQ

TopQ P-bits

QinQ/ X.*

Top

TopQ BottomQ

TopQ P-bits

QinQ/ X.*

Default or Bottom

TopQ BottomQ

BottomQ P-bits

QinQ/ 0.*

Top

None

None

QinQ/ 0.*

Default or Bottom

None

None

QinQ/ 0.*

Top

TopQ

TopQ P-bits

QinQ/ 0.*

Default or Bottom

TopQ

TopQ P-bits

QinQ/ 0.*

Top

TopQ BottomQ

TopQ P-bits

QinQ/ 0.*

Default or Bottom

TopQ BottomQ

BottomQ P-bits

QinQ/ *.*

Top

None

None

QinQ/ *.*

Default or Bottom

None

None

QinQ/ *.*

Top

TopQ

TopQ P-bits

QinQ/ *.*

Default or Bottom

TopQ

TopQ P-bits

QinQ/ *.*

Top

TopQ BottomQ

TopQ P-bits

QinQ/ *.*

Default or Bottom

TopQ BottomQ

BottomQ P-bits

    Notes:

  1. “Default” in this column refers to the no form of the match-qinq-dot1p command.
  2. For null encapsulation, the 7705 SAR does not process dot1p bits.

qinq-mark-top-only

Syntax 
[no] qinq-mark-top-only
Context 
config>service>vprn>if>sap>egress
Description 

When enabled, the qinq-mark-top-only command specifies which P-bits to mark during packet egress. When disabled, both sets of P-bits are marked. When enabled, only the P-bits in the top Q-tag are marked. The no form of the command is the default state (disabled).

Table 121 shows the dot1p remarking behavior for different egress port type/SAP type combinations and qinq-mark-top-only state, where “False” represents the default (disabled) state.

If a new tag is pushed, the dot1p bits of the new tag will be zero (unless the new tag is re-marked by the egress policy. The dot1p bits are configured using the dot1p parameter under the config>qos context.

Table 121:  Dot1P Re-marking Behavior for the QinQ-mark-top-only Command 

Egress Port Type/SAP Type

QinQ-mark-top-only State

Egress P-Bits Marked or Re-marked

Null  1

n/a

None

Dot1q/ X  1

n/a

Outer tag

Dot1q/ *  2

n/a

None

Dot1q/ 0  2

n/a

Outer tag

QinQ/ X.Y  1

False

Two outer tags  3

True

Outer tag  3

QinQ/ X.*  1

True or False

Outer tag

QinQ/ X.0  1

True or False

Outer tag

QinQ/ 0.*  1

True or False

None

QinQ/ *.*  2

True or False

None

    Notes:

  1. This port type/SAP type is supported by the following services: Epipe, Ipipe, VPLS, IES, and VPRN.
  2. This port type/SAP type is supported by the following services: Epipe and VPLS.
  3. Normally, when a new tag is pushed, the dot1p bits of the new tag will be zero, unless the P-bits are remarked by the egress policy. However, an exception to this occurs when the egress SAP type is X.Y and only one new outer tag must be pushed. In this case, the new outer tag will have its dot1p bits set to the inner tag's dot1p bits.
Default 

no qinq-mark-top-only

qos

Syntax 
qos policy-id
no qos [policy-id]
Context 
config>service>vprn>if>sap>egress
config>service>vprn>if>sap>ingress
Description 

This command associates a QoS policy with an ingress or egress SAP. QoS ingress and egress policies are important for the enforcement of SLA agreements. The policy ID must be defined prior to associating the policy with a SAP. If the policy-id does not exist, an error will be returned.

The qos command is used to associate both ingress and egress QoS policies. The qos command only allows ingress policies to be associated on SAP ingress and egress policies on SAP egress. Attempts to associate a QoS policy of the wrong type returns an error; for example, trying to associate an egress policy on SAP ingress.

Only one ingress and one egress QoS policy can be associated with a SAP at one time. Attempts to associate a second QoS policy of a given type returns an error.

By default, no specific QoS policy is associated with the SAP for ingress or egress, so the default QoS policy is used.

The no form of this command removes the QoS policy association from the SAP, and the QoS policy reverts to the default.

Parameters 
policy-id—
the ingress or egress policy ID to associate with the SAP on ingress or egress. The policy ID or name must already exist.
Values—
1 to 65535, or policy-name (up to 64 characters)

scheduler-mode

Syntax 
scheduler-mode {4-priority | 16-priority}
Context 
config>service>vprn>if>sap>egress
config>service>vprn>if>sap>ingress
Description 

This command sets the scheduler mode for the SAP and is part of the hierarchical QoS (H-QoS) feature on the 7705 SAR.

If the mode is 4-priority, then the SAP is considered an unshaped 4-priority SAP and the agg-rate-limit cannot be changed from its default values.

If the mode is 16-priority and the agg-rate limit parameters are configured to be non-default values, then the SAP is considered a shaped SAP. If the agg-rate limit parameters are left in their default settings, the SAP is considered an unshaped, 16-priority SAP.

This command is blocked on third-generation (Gen-3) Ethernet adapter cards and platforms, such as the 6-port Ethernet 10Gbps Adapter card and the 7705 SAR-X, which only support 4-priority scheduling mode.

If the specified SAP is a LAG SAP, scheduler-mode can be configured but is not applied to Gen-3 adapter cards and platforms. If one of the ports in the LAG is on a Gen-1 adapter card, then scheduler-mode cannot be configured.

Default 

4-priority

Parameters 
4-priority—
sets the scheduler mode for the SAP to be 4-priority mode
16-priority—
sets the scheduler mode for the SAP to be 16-priority mode

shaper-group

Syntax 
[no] shaper-group shaper-group-name
Context 
config>service>vprn>if>sap>egress
config>service>vprn>if>sap>ingress
Description 

This command applies a shaper group to a SAP. The shaper group must already be created and must be within the shaper policy assigned to the Ethernet MDA (for ingress) or port (for egress). A shaper group is a dual-rate aggregate shaper used to shape aggregate access ingress or egress SAPs at a shaper group rate. Multiple aggregate shaper groups ensure fair sharing of available bandwidth among different aggregate shapers.

The default shaper group cannot be deleted.

The no form of this command removes the configured shaper-group.

Default 

shaper-group “default”

Parameters 
shaper-group-name—
the name of the shaper group. To access the default shaper group, enter “default”.
create—
keyword used to create a shaper group

Interface Spoke SDP Commands

spoke-sdp

Syntax 
spoke-sdp sdp-id:vc-id [create]
no spoke-sdp sdp-id:vc-id
Context 
config>service>vprn>interface
Description 

This command binds a service to an existing Service Distribution Point (SDP).

A spoke SDP is treated like the equivalent of a traditional bridge “port”, where flooded traffic received on the spoke SDP is replicated on all other “ports” (other spoke SDPs or SAPs) and not transmitted on the port it was received on.

The SDP has an operational state that determines the operational state of the SDP within the service. For example, if the SDP is administratively or operationally down, the SDP for the service is down.

The SDP must already be defined in the config>service>sdp context in order to associate it with a service. If the sdp sdp-id is not already configured, an error message is generated. If the sdp-id does exist, a binding between that sdp-id and the service is created.

SDPs must be explicitly associated and bound to a service. If an SDP is not bound to a service, no far-end devices can participate in the service.

Class-based forwarding is not supported on a spoke SDP used for termination on an IES or VPRN service. All packets are forwarded over the default LSP.

The no form of this command removes the SDP binding from the service. The SDP configuration is not affected; only the binding of the SDP to the service. Once the binding is removed, no packets are forwarded to the far-end router. The spoke SDP must be shut down first before it can be deleted from the configuration.

Default 

n/a

Special Cases 
VPRN—
several SDPs can be bound to a VPRN service. Each SDP must be destined for a different 7705 SAR router. If two sdp-id bindings terminate on the same 7705 SAR, an error occurs and the second SDP is binding is rejected.
Parameters 
sdp-id —
the SDP identifier
Values—
1 to 17407
vc-id—
the virtual circuit identifier
Values—
1 to 4294967295

egress

Syntax 
egress
Context 
config>service>vprn>if>spoke-sdp
Description 

This command enables the context to configure egress SDP parameters.

vc-label

Syntax 
vc-label egress-vc-label
no vc-label [egress-vc-label]
Context 
config>service>vprn>if>spoke-sdp>egress
Description 

This command configures the static MPLS VC label used by the 7705 SAR to send packets to the far-end device in this service via this SDP.

Parameters 
egress-vc-label—
a VC egress value that indicates a specific connection
Values—
16 to 1048575

ingress

Syntax 
ingress
Context 
config>service>vprn>if>spoke-sdp
Description 

This command enables the context to configure ingress SDP parameters.

filter

Syntax 
filter ip ip-filter-id
filter ipv6 ipv6-filter-id
no filter [ip ip-filter-id] [ipv6 ipv6-filter-id ]
Context 
config>service>vprn>if>spoke-sdp>ingress
Description 

This command associates an IPv4 or IPv6 filter policy with a spoke SDP. Filter policies control the forwarding and dropping of packets based on IP or MAC matching criteria.

The ip-filter-id or ipv6-filter-id must already be defined before the filter command is executed. If the filter policy does not exist, the operation will fail and an error message will be returned.

Only one filter ID can be assigned to an interface unless the interface is dual-stack (supports both IPv4 and IPv6). A dual-stack interface can have one IPv4 and one IPv6 filter ID assigned to it.

In general, filters applied to ingress spoke SDPs will apply to all packets on the spoke SDP. One exception is that non-IP packets are not applied to IP match criteria, so the default action in the filter policy applies to these packets.

The no form of this command removes any configured filter ID association with the spoke SDP.

Parameters 
ip-filter-id
the IP filter policy. The filter ID or filter name must already exist within the created IP filters.
Values—
1 to 65535 or IPv4 filter-name (up to 64 characters)
ipv6-filter-id
specifies the IPv6 filter policy. The filter ID or filter name must already exist within the created IPv6 filters.
Values—
1 to 65535 or ipv6-filter-name (up to 64 characters)

vc-label

Syntax 
vc-label ingress-vc-label
no vc-label [ingress-vc-label]
Context 
config>service>vprn>if>spoke-sdp>ingress
Description 

This command configures the static MPLS VC label used by the far-end device to send packets to the 7705 SAR in this service via this SDP.

Parameters 
ingress-vc-label —
a VC ingress value that indicates a specific connection
Values—
2048 to 18431

Routed VPLS Commands

vpls

Syntax 
vpls service-name
no vpls
Context 
config>service>vprn>interface
Description 

This command within the IP interface context binds the IP interface to the specified VPLS service name.

The system does not attempt to resolve the service name until the IP interface is placed into the administratively up state (no shutdown). Once the IP interface is administratively up, the system scans the available VPLS services that have the allow-ip-int-binding flag set for a VPLS service associated with the service name. If the IP interface is already in the administratively up state, the system immediately attempts to resolve the given service name.

Parameters 
service-name—
specifies the service name that the system attempts to resolve to an allow-ip-int-binding enabled VPLS service associated with the service name. The specified service name is an ASCII string of up to 32 characters.

ingress

Syntax 
ingress
Context 
config>service>vprn>if>vpls
Description 

This command within the VPLS binding context defines the routed IPv4 optional filter override.

v4-routed-override-filter

Syntax 
v4-routed-override-filter ipv4-filter-id
no v4-routed-override-filter
Context 
config>service>vprn>if>vpls>ingress
Description 

This command specifies an IPv4 filter ID applied to all ingress packets entering the VPLS service. The filter overrides the existing ingress IPv4 filter applied to SAPs or SDP bindings for packets associated with the routing IP interface. The override filter is optional, and if not defined or removed, the IPv4 routed packets use the existing ingress IPv4 filter on the VPLS virtual ports.

The no form of the command removes the IPv4 routed override filter from the ingress IP interface.

Default 

n/a

Parameters 
ipv4-filter-id—
specifies the IPv4 filter policy. The filter ID or filter name must already exist within the created IP filters.
Values—
1 to 65535 or filter-name (up to 64 characters)

v6-routed-override-filter

Syntax 
v6-routed-override-filter ipv6-filter-id
no v6-routed-override-filter
Context 
config>service>vprn>if>vpls>ingress
Description 

This command specifies an IPv6 filter ID applied to all ingress packets entering the VPLS service. The filter overrides the existing ingress IPv6 filter applied to SAPs or SDP bindings for packets associated with the routing IP interface. The override filter is optional, and if not defined or removed, the IPv6 routed packets use the existing ingress IPv6 filter on the VPLS virtual ports.

The no form of the command removes the IPv6 routed override filter from the ingress IP interface.

Default 

n/a

Parameters 
ipv6-filter-id—
the IPv6 filter policy. The filter ID or filter name must already exist within the created IP filters.
Values—
1 to 65535 or ipv6-filter-name (up to 64 characters)

Interface VRRP Commands

vrrp

Syntax 
vrrp virtual-router-id [owner]
no vrrp virtual-router-id
Context 
config>service>vprn>interface
Description 

This command creates or edits a virtual router ID on the service IP interface. A virtual router ID is internally represented in conjunction with the IP interface name. This allows the virtual router ID to be used on multiple IP interfaces while representing different virtual router instances.

Two VRIDs can be defined on an IP interface. One, both, or none may be defined as owner.

The no form of this command removes the specified virtual router ID from the IP interface. This terminates VRRP participation for the virtual router and deletes all references to the virtual router ID. The virtual router ID does not need to be shutdown in order to remove the virtual router instance.

Default 

n/a

Parameters 
virtual-router-id—
specifies a new virtual router ID or one that can be modified on the IP interface
Values—
1 to 255

authentication-key

Syntax 
authentication-key [authentication-key | hash-key] [hash | hash2]
no authentication-key
Context 
config>service>vprn>if>vrrp
Description 

This command assigns a simple text password authentication key to generate master VRRP advertisement messages and validate received VRRP advertisement messages.

If the command is re-executed with a different password key defined, the new key will be used immediately. If a no authentication-key command is executed, the password authentication key is restored to the default value. The authentication-key command can be executed at any time.

To change the current in-use password key on multiple virtual router instances:

  1. identify the current master
  2. shut down the virtual router instance on all backups
  3. execute the authentication-key command on the master to change the password key
  4. execute the authentication-key command and no shutdown command on each backup

The no form of this command restores the default value of the key.

Default 

The authentication data field contains the value 0 in all 16 octets.

Parameters 
authentication-key—
identifies the simple text password used when VRRP Authentication Type 1 is enabled on the virtual router instance. Type 1 uses a string eight octets long that is inserted into all transmitted VRRP advertisement messages and compared against all received VRRP advertisement messages. The authentication data fields are used to transmit the key.

The authentication-key parameter is expressed as a string consisting up to eight alpha-numeric characters. Spaces must be contained in quotation marks ( “ ” ). The quotation marks are not considered part of the string.

The string is case-sensitive and is left-justified in the VRRP advertisement message authentication data fields. The first field contains the first four characters with the first octet containing the first character. The second field holds the fifth through eighth characters. Any unspecified portion of the authentication data field is padded with the value 0 in the corresponding octet.

Values—
any 7-bit printable ASCII character
exceptions:           double quote               ASCII 34
                             carriage return             ASCII 13
                             line feed                       ASCII 10
                             tab                                ASCII 9
                             backspace                    ASCII 8
hash-key—
can be any combination of ASCII characters up to 22 characters in length (encrypted). If spaces are used in the string, enclose the entire string in quotation marks (“ ”).

This option is useful when a user must configure the parameter, but for security purposes, the actual unencrypted key value is not provided.

hash—
specifies the key is entered in an encrypted form. If the hash keyword is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash keyword specified.
hash2—
specifies the key is entered in a more complex encrypted form. If the hash2 keyword is not used, the less-encrypted hash form is assumed.

backup

Syntax 
[no] backup ip-address
Context 
config>service>vprn>if>vrrp
Description 

This command configures virtual router IP addresses for backup.

Parameters 
ip-address—
specifies the destination address for backup

bfd-enable

Syntax 
[no] bfd-enable [base | service-id] interface interface-name dst-ip ip-address
Context 
config>service>vprn>if>vrrp
Description 

This commands assigns a BFD session that provides a heart-beat mechanism for the given VRRP instance. Only one BFD session can be assigned to any given VRRP instance, but multiple VRRP sessions can use the same BFD session.

BFD controls the state of the associated interface. By enabling BFD on a given protocol interface, the state of the protocol interface is tied to the state of the BFD session between the local node and the remote node. The parameters used for the BFD session are set with the bfd-enable command under the IP interface.

The no form of this command removes BFD from the configuration.

Default 

n/a

Parameters 
service-id—
specifies the service ID or name of the interface running BFD
Values—
1 to 65535 or service-name
interface-name—
specifies the name of the interface running BFD
ip-address—
specifies the destination address to be used for the BFD session

init-delay

Syntax 
init-delay seconds
no init-delay
Context 
config>service>vprn>if>vrrp
Description 

This command configures a VRRP initialization delay timer.

Default 

no init-delay

Parameters 
seconds—
specifies the amount of time in seconds for the initialization delay timer for VRRP
Values—
1 to 65535

mac

Syntax 
mac ieee-address
no mac
Context 
config>service>vprn>if>vrrp
Description 

This command assigns a specific MAC address to a VPRN IP interface.

The no form of the command returns the MAC address of the IP interface to the default value.

Default 

the physical MAC address associated with the Ethernet interface that the SAP is configured on (the default MAC address assigned to the interface, assigned by the system)

Parameters 
ieee-address—
specifies the 48-bit MAC address for the static ARP in the form aa:bb:cc:dd:ee:ff or aa-bbcc-dd-ee-ff, where aa, bb, cc, dd, ee, and ff are hexadecimal numbers. Allowed values are any non-broadcast, non-multicast MAC and non-IEEE reserved MAC addresses.

master-int-inherit

Syntax 
[no] master-int-inherit
Context 
config>service>vprn>if>vrrp
Description 

This command allows the master instance to dictate the master down timer (non-owner context only).

The master down interval is the time that the master router can be down before backup takes over. The master down interval is used to specify the master down timer. If the master down timer expires, the backup virtual router enters the master state.

Default 

no master-int-inherit

message-interval

Syntax 
message-interval {[seconds] [milliseconds milliseconds]}
no message-interval
Context 
config>service>vprn>if>vrrp
Description 

This command sets the advertisement timer and indirectly sets the master down timer on the virtual router instance. The message-interval setting must be the same for all virtual routers with the same VRID. Any VRRP advertisement message received with an advertisement interval field different from the virtual router instance configured message-interval value will be silently discarded.

The message-interval command is available for both non-owner and owner virtual routers. If the message-interval command is not executed, the default message interval is 1 s.

The no form of this command restores the default message-interval value of 1 s to the virtual router instance.

Parameters 
seconds—
specifies the number of seconds that will transpire before the advertisement timer expires
Values—
1 to 255
Values—
1
milliseconds—
specifies the time interval, in milliseconds, between sending advertisement messages. This parameter is not supported on non-redundant chassis.
Values—
100 to 900

ping-reply

Syntax 
[no] ping-reply
Context 
config>service>vprn>if>vrrp
Description 

This command enables the non-owner master to reply to ICMP echo requests directed to the virtual router instance IP addresses. The ping request can be received on any routed interface.

Ping must not have been disabled at the management security level (either on the parental IP interface or based on the ping source host address). When ping reply is not enabled, ICMP echo requests to non-owner master virtual IP addresses are silently discarded.

Non-owner backup virtual routers never respond to ICMP echo requests regardless of the setting of the ping reply configuration.

The ping-reply command is only available for non-owner virtual routers. If the ping-reply command is not executed, ICMP echo requests to the virtual router instance IP addresses are silently discarded.

The no form of this command restores the default operation of discarding all ICMP echo request messages destined for the non-owner virtual router instance IP addresses.

Default 

no ping-reply

policy

Syntax 
policy vrrp-policy-id
no policy
Context 
config>service>vprn>if>vrrp
Description 

This command associates a VRRP priority control policy with the virtual router instance (non-owner context only).

Default 

n/a

Parameters 
vrrp-policy-id—
specifies a VRRP priority control policy. The VRRP policy ID must already exist in the system for the policy command to be successful
Values—
1 to 9999

preempt

Syntax 
preempt
no preempt
Context 
config>service>vprn>if>vrrp
Description 

This command provides the ability to override an existing non-owner master with a virtual router backup that has a higher priority. Enabling preempt mode enhances the operation of the base priority and VRRP policy ID definitions on the virtual router instance. If the virtual router cannot preempt an existing non-owner master, the affect of the dynamic changing of the in-use priority is greatly diminished.

The preempt command is only available for non-owner VRRP virtual routers. The owner cannot be preempted because the priority of non-owners can never be higher than the owner. The owner will always preempt all other virtual routers when it is available.

Non-owner backup virtual router instances will only preempt when preempt is set and the current master has an in-use message priority value less than the backup virtual router instance in-use priority.

A master non-owner virtual router will only allow itself to be preempted when the incoming VRRP advertisement message priority field value is one of the following:

  1. greater than its in-use priority value
  2. equal to the in-use priority value, and the source IP address (primary IP address) is greater than its primary IP address

The no form of this command prevents a non-owner virtual router instance from preempting another, less-desirable, virtual router.

Default 

preempt

priority

Syntax 
priority priority
no priority
Context 
config>service>vprn>if>vrrp
Description 

This command configures a specific priority value for the virtual router instance. In conjunction with the optional policy command, the base priority derives the in-use priority of the virtual router instance.

The priority command is only available for non-owner VRRP virtual routers. The priority of owner virtual router instances is permanently set to 255 and cannot be changed. For non-owner virtual router instances, if the priority command is not executed, the base priority is set to 100.

The no form of this command restores the default value of 100.

Parameters 
priority—
specifies the base priority used by the virtual router instance. If a VRRP priority control policy is not defined, the base priority will be the in-use priority for the virtual router instance.
Values—
1 to 254

ssh-reply

Syntax 
[no] ssh-reply
Context 
config>service>vprn>if>vrrp
Description 

This command enables the non-owner master to reply to SSH requests directed at the IP addresses of the virtual router instances. The SSH request can be received on any routed interface. SSH must not have been disabled at the management security level (either on the parental IP interface or based on the SSH source host address). Proper login and CLI command authentication are enforced.

When the ssh-reply command is not enabled, SSH packets to non-owner master virtual IP addresses are silently discarded.

Non-owner backup virtual routers never respond to SSH requests regardless of the SSH reply configuration.

The ssh-reply command is only available for non-owner VRRP virtual routers.

The no form of this command restores the default operation of discarding all SSH packets destined to the non-owner virtual router instance IP addresses.

Default 

no ssh-reply

standby-forwarding

Syntax 
[no] standby-forwarding
Context 
config>service>vprn>if>vrrp
Description 

This command allows the forwarding of packets by a standby router when sent to the virtual router MAC address.

The no form of the command specifies that a standby router should not forward traffic sent to the virtual router MAC address. The standby router should forward traffic sent to the real MAC address of the standby router.

Default 

no standby-forwarding

telnet-reply

Syntax 
[no] telnet-reply
Context 
config>service>vprn>if>vrrp
Description 

This command enables the non-owner master to reply to TCP port 23 Telnet requests directed at the IP addresses of the virtual router instance. The Telnet request can be received on any routed interface. Telnet must not have been disabled at the management security level (either on the parental IP interface or based on the Telnet source host address). Proper login and CLI command authentication are enforced.

If the telnet-reply command is not enabled, TCP port 23 Telnet packets to non-owner master virtual IP addresses are silently discarded.

Non-owner backup virtual routers never respond to Telnet requests regardless of the Telnet reply configuration.

The telnet-reply command is only available for non-owner VRRP virtual routers.

The no form of this command restores the default operation of discarding all Telnet packets destined for the non-owner virtual router instance IP addresses.

Default 

no telnet-reply

traceroute-reply

Syntax 
[no] traceroute-reply
Context 
config>service>vprn>if>vrrp
Description 

This command enables a non-owner master to reply to traceroute requests directed to the virtual router instance IP addresses. The command is valid only if the VRRP virtual router instance associated with this entry is a non-owner. A non-owner backup virtual router never responds to traceroute requests regardless of the traceroute reply status.

Default 

no traceroute-reply

TWAMP Light Commands

twamp-light

Syntax 
twamp-light
Context 
config>service>vprn
Description 

This command enables the context for configuring TWAMP Light functionality.

Default 

disabled

reflector

Syntax 
reflector
Context 
config>service>vprn>twamp-light
Description 

This command enables the context for configuring TWAMP Light session reflector functionality. The relector functionality is enabled using the no shutdown command.

Default 

disabled

prefix

Syntax 
[no] prefix ip-prefix/prefix-length [create]
Context 
config>service>vprn>twamp-light>reflector
Description 

This command configures an IP address prefix containing one or more TWAMP Light session controllers. It is used to define which TWAMP Light packet prefixes the reflector will process. Once the prefix is configured, the TWAMP Light session reflector only responds to TWAMP Light packets from source addresses that are part of the prefix list.

Default 

no prefix

Parameters 
ip-prefix/ip-prefix-length—
the IPv4 or IPv6 address prefix
Values—
ipv4-prefix                              a.b.c.d (host bits must be 0)
ipv4-prefix-length                   0 to 32
Values—
ipv6-prefix                              x:x:x:x:x:x:x:x (eight 16-bit                                                 pieces)
                                               x:x:x:x:x:x:d.d.d.d
                                               x:   [0 to FFFF]H
                                               d:   [0 to 255]D
ipv6-prefix-length                 {0 to 128} | {0 to 64 | 128}

udp-port

Syntax 
udp-port number
no udp-port
Context 
config>service>vprn>twamp-light>reflector
Description 

This command configures the specific UDP port that the session reflector listens to for TWAMP Light packets. The session controller launching the TWAMP Light packets must have the same UDP port configured as on the session reflector.

Default 

no udp-port

Parameters 
number—
the UDP port number
Values—
1024 to 65535

Show Service Commands

Note:

The following command outputs are examples only; actual displays may differ depending on supported functionality and user configuration.

egress-label

Syntax 
egress-label start-label [end-label]
Context 
show>service
Description 

This command displays service information using the range of egress labels.

If only the mandatory start-label parameter is specified, only services using the specified label are displayed.

If both start-label and end-label parameters are specified, the services using the labels in the specified range are displayed.

Use the show router ldp bindings command to display dynamic labels.

Parameters 
end-label—
the ending egress label value for which to display services using the label range
Values—
 2049 to 131071
Values—
the start-label value
start-label—
the starting egress label value for which to display services using the label range. If only start-label is specified, services only using start-label are displayed.
Values—
0, or 2048 to 131071
Output 

The following output is an example of service egress label information, and Table 122 describes the fields.

Sample Output

In the example below, services 3, 5 and 6 are IES, and services 5000 and 5001 are VPLS services.

 
*A:ALU-12>show>service# egress-label 0 131071
===============================================================================
Martini Service Labels
===============================================================================
Svc Id     Sdp Binding        Type  I.Lbl                 E.Lbl
-------------------------------------------------------------------------------
3          15:15              Spok  0                     0
5          5:5                Spok  0                     0
6          5:6                Spok  0                     0
5000       15:5000            Mesh  0                     0
5000       15:5001            Spok  0                     0
5001       5001:100           Spok  0                     0
-------------------------------------------------------------------------------
Number of Bindings Found : 6
-------------------------------------------------------------------------------
===============================================================================
Table 122:  Show Service Egress Output Fields 

Label

Description

Svc Id

The ID that identifies a service

Sdp Binding

The ID that identifies an SDP

Type

Indicates whether the SDP binding is a spoke or a mesh

I. Lbl

The VC label used by the far-end device to send packets to this device in this service by the SDP

E. Lbl

The VC label used by this device to send packets to the far-end device in this service by the SDP

Number of Bindings Found

The total number of SDP bindings that exist within the specified label range

id

Syntax 
id service-id
Context 
show>service
Description 

This command accesses the context to display information for a particular service ID. Once the particular service context has been accessed, the filtering commands listed below are available.

Parameters 
service-id—
the unique service identification number or name that identifies the service in the service domain
all—
detailed information about the service
arp—
ARP entries for the service
base—
basic service information
dhcp—
DHCP entries for the service
endpoint—
service endpoint information
fdb—
FDB entries for the service
interface—
service interfaces
labels—
labels being used by this service
mac-move—
MAC move related information about this service
sap—
SAPs associated to the service
sdp—
SDPs associated with the service
split-horizon—
service split horizon groups
static-host—
static hosts configured on this service

all

Syntax 
all
Context 
show>service>id
Description 

This command displays detailed information for all aspects of the service.

Output 

The following output is an example of service ID all information, and Table 123 describes the fields.

Sample Output
*A:ALU-2#show>service>id# all
===============================================================================
Service Detailed Information
===============================================================================
Service Id        : 6
Service Type      : VPRN
Name              : VPRN_global 
Description       : (Not Specified) 
Customer Id       : 1
Last Status Change: 02/03/2010 21:59:01
Last Mgmt Change  : 03/01/2010 18:55:58
Admin State       : Down                Oper State        : Down
Route Dist.       : 12.34.56.78:655     VPRN Type         : regular
AS Number         : None                Router Id         : 255.0.0.0
ECMP              : Enabled             ECMP Max Routes   : 1
Max IPv4 Routes   : No Limit            Auto Bind         : None
Max IPv6 Routes   : No Limit
Vrf Target        : None
Vrf Import        : None
Vrf Export        : None
SAP Count         : 1                   SDP Bind Count    : 1
-------------------------------------------------------------------------------
Service Destination Points(SDPs)
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
 Sdp Id 1:6  -(10.10.10.10)
-------------------------------------------------------------------------------
SDP Id             : 1:6                      Type              : Spoke
VC Type            : n/a                      VC Tag            : n/a
Admin Path MTU     : 0                        Oper Path MTU     : 0
Far End            : 10.10.10.10              Delivery          : MPLS
Admin State        : Up                       Oper State        : Down
Acct. Pol          : None                     Collect Stats     : Disabled
Ingress Label      : n/a                      Egress Label      : n/a
Ing mac Fltr       : n/a                      Egr mac Fltr      : n/a
Ing ip Fltr        : n/a                      Egr ip Fltr       : n/a
Ing ipv6 Fltr      : n/a                      Egr ipv6 Fltr     : n/a
Admin ControlWord  : Not Preferred            Oper ControlWord  : False
Last Status Change : 02/03/2010 21:59:01      Signaling         : n/a
Last Mgmt Change   : 03/01/2010 18:55:58
Class Fwding State : Down
Flags              : SdpOperDown
KeepAlive Information :
Admin State        : Disabled                 Oper State        : Disabled
Hello Time         : 10                       Hello Msg Len     : 0
Max Drop Count     : 3                        Hold Down Time    : 10
Statistics            :
I. Fwd. Pkts.      : n/a                      I. Dro. Pkts.     : n/a
I. Fwd. Octs.      : n/a                      I. Dro. Octs.     : n/a
E. Fwd. Pkts.      : n/a                      E. Fwd. Octets    : n/a
Associated LSP LIST :
No LSPs Associated
 
-------------------------------------------------------------------------------
Number of SDPs : 1
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Service Access Points
-------------------------------------------------------------------------------
 
-------------------------------------------------------------------------------
SAP 1/5/2
-------------------------------------------------------------------------------
Service Id         : 6
SAP                : 1/5/2                    Encap             : null
Admin State        : Up                       Oper State        : Down
Flags              : ServiceAdminDown
                     PortOperDown
Multi Svc Site     : None
Last Status Change : 02/03/2010 21:59:01
Last Mgmt Change   : 02/03/2010 21:59:02
Sub Type           : regular
Dot1Q Ethertype    : 0x8100                   QinQ Ethertype    : 0x8100
 
Admin MTU          : 1514                     Oper MTU          : 1514
Ingr IP Fltr-Id    : 2                        Egr IP Fltr-Id    : n/a
Ingr Mac Fltr-Id   : n/a                      Egr Mac Fltr-Id   : n/a
Ingr IPv6 Fltr-Id  : n/a                      Egr IPv6 Fltr-Id  : n/a
tod-suite          : None                     qinq-pbit-marking : both
Ing Scheduler Mode : 4-priority               Egr Scheduler Mode: 4-priority
Ing Agg Rate Limit : 999000                   Egr Agg Rate Limit: max
Ing Agg cir        : 333000                   Egr Agg cir       : 0
Ing Shaper Group   : test_sg1                 Egr Shaper Group  : default
Q Frame-Based Acct : Disabled
 
Acct. Pol          : None                     Collect Stats     : Disabled
 
Anti Spoofing      : None                     Nbr Static Hosts  : 0
 
-------------------------------------------------------------------------------
QOS
-------------------------------------------------------------------------------
Ingress qos-policy : 2                        Egress qos-policy : 2
Shared Q plcy      : n/a                      Multipoint shared : Disabled
-------------------------------------------------------------------------------
TWAMP Light Reflector             
------------------------------------------------------------------------------- 
Admin State          : Up 
Up Time              : 0d 00:12:01             
Configured UDP Port  : 65535           
Test Packets Rx      : 0                   Test Packets Tx     : 0           
 
TWAMP Light Controller Prefix List                                 
 192.168.1.1/32                                 
    10.1.1.2/32                                           
 172.16.254.9/3                                            
    10.1.1.0/24                                            
-------------------------------------------------------------------------------
Sap Statistics
-------------------------------------------------------------------------------
Last Cleared Time     : N/A
 
                        Packets                 Octets
Forwarding Engine Stats
Dropped               : 0                       0
Off. HiPrio           : 0                       0
Off. LowPrio          : 0                       0
 
Queueing Stats(Ingress QoS Policy 2)
Dro. HiPrio           : 0                       0
Dro. LowPrio          : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
 
Queueing Stats(Egress QoS Policy 2)
Dro. InProf           : 0                       0
Dro. OutProf          : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
-------------------------------------------------------------------------------
Sap per Queue stats
-------------------------------------------------------------------------------
                        Packets                 Octets
Ingress Queue 1 (Unicast) (Priority)
Off. HiPrio           : 0                       0
Off. LoPrio           : 0                       0
Dro. HiPrio           : 0                       0
Dro. LoPrio           : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
Egress Queue 1
For. InProf           : 0                       0
For. OutProf          : 0                       0
Dro. InProf           : 0                       0
Dro. OutProf          : 0                       0
-------------------------------------------------------------------------------
Service Interfaces
-------------------------------------------------------------------------------
 
-------------------------------------------------------------------------------
Interface
-------------------------------------------------------------------------------
If Name           : vprn_interface
Admin State       : Up                  Oper (v4/v6)      : Down/Down
Protocols         : None
 
IP Addr/mask      : Not Assigned
-------------------------------------------------------------------------------
Details
-------------------------------------------------------------------------------
If Index          : 2                   Virt. If Index    : 2
Last Oper Chg     : 02/03/2010 21:59:02 Global If Index   : 125
SAP Id            : 1/5/2
TOS Marking       : Trusted             If Type           : VPRN
SNTP B.Cast       : False
MAC Address       :                     Arp Timeout       : 14400
IP MTU            : 1500                ICMP Mask Reply   : True
Arp Populate      : Disabled            Host Conn Verify  : Disabled
LdpSyncTimer      : None
 
Proxy ARP Details
Rem Proxy ARP     : Disabled            Local Proxy ARP   : Disabled
Policies          : none
 
Proxy Neighbor Discovery Details
Local Pxy ND      : Disabled
Policies          : none
 
DHCP Details
Admin State       : Down                Lease Populate    : 0
Action            : Keep                Trusted           : Disabled
DHCP6 Relay Details
Admin State       : Down                Lease Populate    : 0
Oper State        : Down                Nbr Resolution    : Disabled
If-Id Option      : None                Remote Id         : Disabled
Src Addr          : Not configured
 
DHCP6 Server Details
Admin State       : Down                Max. Lease States : 8000
ICMP Details
Redirects    : Number - 100                     Time (seconds)   - 10
Unreachables : Number - 100                     Time (seconds)   - 10
TTL Expired  : Number - 100                     Time (seconds)   - 10
 
IPCP Address Extension Details
Peer IP Addr      : Not configured
Peer Pri DNS Addr : Not configured
Peer Sec DNS Addr : Not configured
===============================================================================
*A:ALU-2#>show>service>id#
Table 123:  Show Service ID All Output Fields  

Label

Description

Service Detailed Information

Service Id

The service identifier

Service Type

The type of service (VPRN)

Name

The service name

Description

A description of the service

Customer Id

The customer identifier

Last Status Change

The date and time of the most recent change in the administrative or operating status of the service

Last Mgmt Change

The date and time of the most recent management-initiated change to this service

Admin State

The desired state of the service

Oper State

The current operational state of the service

Route Dist.

The route distribution number

VPRN Type

Only valid in services that accept mesh SDP bindings. It validates the VC ID portion of each mesh SDP binding defined in the service.

AS Number

The autonomous system number

Router Id

The router ID for this service

ECMP

Displays equal cost multipath information

ECMP Max Routes

The maximum number of routes that can be received from the neighbors in the group or for the specific neighbor

Max IPv4 Routes

The maximum number of routes that can be used for path sharing

Max IPv6 Routes

Not applicable

Auto Bind

The automatic binding type for the SDP assigned to this service

Vrf Target

The route target in the VRF applied to this service

Vrf Import

The VRF import policy applied to this service

Vrf Export

The VRF export policy applied to this service

SAP Count

The number of SAPs specified for this service

SDP Bind Count

The number of SDPs bound to this service

Service Destination Points (SDPs)

SDP Id

The SDP identifier

Type

Indicates whether this service SDP binding is a spoke or a mesh

VC Type

The VC type: ether or vlan

VC Tag

The explicit dot1Q value used when encapsulating to the SDP far end

Admin Path MTU

The desired largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented

Oper Path MTU

The actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented

Far End

Specifies the IP address of the remote end of the GRE, MPLS, or IP tunnel defined by this SDP

Delivery

Specifies the type of delivery used by the SDP: GRE, MPLS, or IP

Admin State

The administrative state of this SDP

Oper State

The operational state of this SDP

Acct. Pol

The accounting policy applied to the SDP

Collect Stats

Specifies whether accounting statistics are collected on the SDP

Ingress Label

The label used by the far-end device to send packets to this device in this service by this SDP

Egress Label

The label used by this device to send packets to the far-end device in this service by this SDP

Ing mac Fltr

Not applicable

Egr mac Fltr

Not applicable

Ing ip Fltr

The SDP ingress filter policy ID

Egr ip Fltr

The SDP egress filter policy ID

Ing ipv6 Fltr

Not applicable

Egr ipv6 Fltr

Not applicable

Admin ControlWord

The administrative state of the control word: Preferred (control word enabled) or Not Preferred (control word disabled)

Oper ControlWord

The operational state of the control word: True (control word enabled) or False (control word disabled)

Last Status Change

The date and time of the most recent status change to this SDP

Signaling

The signaling protocol used to obtain the ingress and egress labels used in frames transmitted and received on this SDP

Last Mgmt Change

The date and time of the most recent management-initiated change to this SDP

Class Fwding State

Not applicable

Flags

Specifies the conditions that affect the operating status of this SAP. Display output includes: ServiceAdminDown, SapAdminDown, InterfaceAdminDown, PortOperDown, PortMTUTooSmall, L2OperDown, SapIngressQoSMismatch, SapEgressQoSMismatch, RelearnLimitExceeded, RxProtSrcMac, ParentIfAdminDown, NoSapIpipeCeIpAddr, TodResourceUnavail, TodMssResourceUnavail, SapParamMismatch, CemSapNoEcidOrMacAddr, StandByForMcRing, ServiceMTUTooSmall, SapIngressNamedPoolMismatch, SapEgressNamedPoolMismatch, NoSapEpipeRingNode

KeepAlive Information

Admin State

The operating status of the keepalive protocol

Oper State

The current status of the keepalive protocol

Hello Time

Specifies how often the SDP echo request messages are transmitted on this SDP

Hello Msg Len

The length of the SDP echo request messages transmitted on this SDP

Max Drop Count

The maximum number of consecutive SDP Echo Request messages that can be unacknowledged before the keepalive protocol reports a fault

Hold Down Time

The time to wait before the keepalive operating status is eligible to enter the alive state

Statistics

I. Fwd. Pkts.

The number of forwarded ingress packets

I. Dro. Pkts.

The number of dropped ingress packets

I. Fwd. Octs.

The number of forwarded ingress octets

I. Dro. Octs.

The number of dropped ingress octets

E. Fwd. Pkts.

The number of forwarded egress packets

E. Fwd. Octets

The number of forwarded egress octets

Associated LSP LIST

If the SDP type is MPLS, a list of LSPs used to reach the far-end router displays. All the LSPs in the list must terminate at the IP address specified in the far-end field.

If the SDP type is GRE, the following message displays: SDP delivery mechanism is not MPLS

Number of SDPs

The total number of SDPs applied to this service ID

Service Access Points

Service Id

The service identifier

SAP

The SAP identifier

Encap

The encapsulation type of the SAP

Admin State

The administrative state of the SAP

Oper State

The operating state of the SAP

Flags

Specifies the conditions that affect the operating status of this SAP. Display output includes: ServiceAdminDown, SapAdminDown, InterfaceAdminDown, PortOperDown, PortMTUTooSmall, L2OperDown, SapIngressQoSMismatch, SapEgressQoSMismatch, RelearnLimitExceeded, RxProtSrcMac, ParentIfAdminDown, NoSapIpipeCeIpAddr, TodResourceUnavail, TodMssResourceUnavail, SapParamMismatch, CemSapNoEcidOrMacAddr, StandByForMcRing, ServiceMTUTooSmall, SapIngressNamedPoolMismatch, SapEgressNamedPoolMismatch, NoSapEpipeRingNode

Multi Svc Site

Indicates the multiservice site that the SAP is a member of

Last Status Change

The time of the most recent operating status change to this SAP

Last Mgmt Change

The time of the most recent management-initiated change to this SAP

Sub Type

The supported sub type: regular

Dot1Q Ethertype

The value of the dot1q Ethertype

QinQ Ethertype

The value of the qinq Ethertype

Admin MTU

The desired largest service frame size (in octets) that can be transmitted through the SAP to the far-end router, without requiring the packet to be fragmented

Oper MTU

The actual largest service frame size (in octets) that can be transmitted through the SAP to the far-end router, without requiring the packet to be fragmented

Ingr IP Fltr-Id

The ingress filter policy ID assigned to the SAP

Egr IP Fltr-Id

The egress filter policy ID assigned to the SAP

Ingr Mac Fltr-Id

Not applicable

Ingr IPv6 Fltr-ID

Not applicable

Egr IPv6 Fltr-ID

Not applicable

tod-suite

Indicates whether a time-based policy is applied to a multiservice site

qinq-pbit-marking

Indicates the qinq P-bit marking for the service: both or top

Ing Scheduler Mode

Indicates the ingress scheduler mode for the SAP

Egr Scheduler Mode

Indicates the egress scheduler mode for the SAP

Ing Agg Rate Limit

Indicates the PIR rate limit in the access ingress direction for the aggregate of the SAP queues

Egr Agg Rate Limit

Indicates the PIR rate limit in the access egress direction for the aggregate of the SAP queues

Ing Agg cir

Indicates the CIR rate limit in the access ingress direction for the aggregate of the SAP queues

Egr Agg cir

Indicates the CIR rate limit in the access egress direction for the aggregate of the SAP queues

Ing Shaper Group

Indicates the ingress shaper group for the SAP

Egr Shaper Group

Indicates the egress shaper group for the SAP

Q Frame-Based Acct

Not applicable

Acct. Pol

The accounting policy applied to the SAP

Collect Stats

Specifies whether accounting statistics are collected on the SAP

Anti Spoofing

Not applicable

Nbr Static Hosts

Not applicable

QOS

Ingress qos-policy

The SAP ingress QoS policy ID

Egress qos-policy

The SAP egress QoS policy ID

Shared Q plcy

Not applicable

Multipoint shared

Not applicable

TWAMP-Light Reflector

Admin State

Displays one of the following:

Up—the server or prefix is administratively enabled (no shutdown) in configuration

Down—the server or prefix is administratively disabled (shutdown) in configuration

Up Time

The time since the server process was started, measured in days (d), hours, minutes, and seconds

Configured UDP Port

The UDP port number used

Test Packets Rx

The total number of test packets received from session senders

Test Packets Tx

The total number of test packets sent to session senders

TWAMP Light Controller Prefix List

The IP address prefixes of TWAMP Light clients

SAP Statistics

Last Cleared time

The date and time that a clear command was issued on the statistics

Forwarding Engine Stats

Dropped

The number of packets or octets dropped by the forwarding engine

Off. HiPrio

The number of high-priority packets or octets offered to the forwarding engine

Off. LowPrio

The number of low-priority packets offered to the forwarding engine

Queueing Stats (Ingress QoS Policy)

Dro. HiPrio

The number of high-priority packets or octets discarded, as determined by the SAP ingress QoS policy

Dro. LowPrio

The number of low-priority packets discarded, as determined by the SAP ingress QoS policy

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded, as determined by the SAP ingress QoS policy

For. OutProf

The number of out-of-profile packets or octets (rate above CIR) forwarded, as determined by the SAP ingress QoS policy

Queueing Stats (Egress QoS Policy)

Dro. InProf

The number of in-profile packets or octets discarded, as determined by the SAP egress QoS policy

Dro. OutProf

The number of out-of-profile packets or octets discarded, as determined by the SAP egress QoS policy

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded, as determined by the SAP egress QoS policy

For. OutProf

The number of out-of-profile packets or octets (rate above CIR) forwarded, as determined by the SAP egress QoS policy

Sap per Queue stats

Ingress Queue n

The index of the ingress QoS queue of this SAP, where n is the index number

Off. HiPrio

The number of packets or octets of high-priority traffic for the SAP (offered)

Off. LoPrio

The number of packets or octets count of low-priority traffic for the SAP (offered)

Dro. HiPrio

The number of high-priority traffic packets or octets dropped

Dro. LoPrio

The number of low-priority traffic packets or octets dropped

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded

For. OutProf

The number of out-of-profile packets or octets (rate above CIR) forwarded

Egress Queue n

The index of the egress QoS queue of the SAP, where n is the index number

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded

For. OutProf

Number of out-of-profile packets or octets (rate above CIR) forwarded

Dro. InProf

The number of in-profile packets or octets dropped for the SAP

Dro. OutProf

The number of out-of-profile packets or octets discarded

Service Interfaces

Interface

If Name

The name used to refer to the interface

Admin State

The desired state of the interface

Oper (v4/v6)

The operating state of the interface

Protocols

The protocols supported on the interface

IP Addr/mask

The IP address/IP subnet/broadcast address of the interface

Details

If Index

The index corresponding to this interface. The primary index is 1. For example, all interfaces are defined in the Base virtual router context.

Virt. If Index

The virtual interface index of the VPRN interface

Last Oper Chg

The date and time of the last operating state change on the interface

Global If Index

The global interface index of the VPRN interface

TOS Marking

Specifies whether the ToS marking is trusted or untrusted for the interface

If Type

The interface type

SNTP B.Cast

Specifies whether SNTP broadcast client mode is enabled or disabled

MAC Address

The 48-bit IEEE 802.3 MAC address

Arp Timeout

The timeout for an ARP entry learned on the interface

IP MTU

The IP maximum transmit unit for the interface

ICMP Mask Reply

Specifies whether ICMP mask reply is enabled or disabled

ARP Populate

Specifies if ARP is enabled or disabled

Host Conn Verify

Not applicable

LdpSyncTimer

Not applicable

Proxy ARP Details

Rem Proxy ARP

Indicates whether remote proxy ARP is enabled or disabled

Local Proxy ARP

Indicates whether local proxy ARP is enabled or disabled

Policies

Specifies the policy statements applied to proxy ARP

DHCP Details

Admin State

The desired state of DHCP

Lease Populate

Not applicable

Action

The processing required that occurs when the 7705 SAR receives a DHCP request that already has a Relay Agent Information Option (Option 82):

Trusted

Indicates whether trusted mode is enabled or disabled on the IP interface

ICMP Details

Redirects

The rate for ICMP redirect messages

Unreachables

The rate for ICMP unreachable messages

TTL Expired

The rate for ICMP TTL messages

IPCP Address Extension Details

Peer IP Addr

Specifies the remote IP address to be assigned to the far-end of the associated PPP/MLPPP link via IPCP extensions

Peer Pri DNS Addr

Specifies a unicast IPv4 address for the primary DNS server to be signaled to the far-end of the associate PPP/MLPPP link via IPCP extensions

Peer Sec DNS Addr

Specifies a unicast IPv4 address for the secondary DNS server to be signaled to the far-end of the associate PPP/MLPPP link via IPCP extensions

arp

Syntax 
arp [ip-address] | [mac ieee-address] | [sap sap-id] | [interface ip-int-name]
Context 
show>service>id
Description 

This command displays the ARP table for the VPRN instance.

Parameters 
ip-address—
the IP address for which ARP entries will be displayed
Values—
a.b.c.d (1.0.0.0 to 223.255.255.255)
Values—
all IP addresses
ieee-address
the 48-bit MAC address for which ARP entries will be displayed. The MAC address can be expressed in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff, where aa, bb, cc, dd, ee and ff are hexadecimal numbers.
Values—
xx:xx:xx:xx:xx:xx or xx-xx-xx-xx-xx-xx
Values—
all MAC addresses
sap-id—
the SAP ID for which ARP entries will be displayed. See Table 39 for a full list of SAP IDs.
ip-int-name—
the IP interface name for which to display matching ARPs
Output 

The following output is an example of service ID ARP information, and Table 124 describes the fields.

Sample Output
*A:ALU-12>show>service>id# arp
===============================================================================
ARP Table
===============================================================================
IP Address      MAC Address       Type    Expiry    Interface         SAP
-------------------------------------------------------------------------------
190.11.1.1      00:03:fa:00:08:22 Other   00:00:00  ies-100-190.11.1  1/1/11:0
===============================================================================
*A:ALU-12>show>service>id#
Table 124:  Show Service ID ARP Output Fields  

Label

Description

IP Address

The IP address of the ARP entry

MAC Address

The MAC address of the ARP entry

Type

Dyn—the ARP entry is a dynamic ARP entry

Inv—the ARP entry is an inactive static ARP entry (invalid).

Oth—the ARP entry is a local or system ARP entry

Sta—the ARP entry is an active static ARP entry

Expiry

The age of the ARP entry

Interface

The IP interface name associated with the ARP entry

SAP

The port identifier of the SAP

base

Syntax 
base
Context 
show>service>id
Description 

This command displays basic information about the service ID, including service type, description, SAPs and SDPs.

Output 

The following output is an example of service ID base information, and Table 125 describes the fields.

Sample Output
*A:ALU-12>show>service>id# base
===============================================================================
Service Basic Information
===============================================================================
Service Id        : 6                   
Service Type      : VPRN
Name              : VPRN_global 
Description       : (Not Specified) 
Customer Id       : 1
Last Status Change: 02/03/2010 21:59:01
Last Mgmt Change  : 03/01/2010 18:55:58
Admin State       : Down                Oper State        : Down
 
Route Dist.       : 12.34.56.78:655     VPRN Type         : regular
AS Number         : None                Router Id         : 255.0.0.0
ECMP              : Enabled             ECMP Max Routes   : 1
Max IPv4 Routes   : No Limit            Auto Bind         : None
Max IPv6 Routes   : No Limit
Vrf Target        : None
Vrf Import        : None
Vrf Export        : None
 
SAP Count         : 1                   SDP Bind Count    : 1
-------------------------------------------------------------------------------
Service Access & Destination Points
-------------------------------------------------------------------------------
Identifier                               Type         AdmMTU  OprMTU  Adm  Opr
-------------------------------------------------------------------------------
sap:1/5/2                                null         1514    1514    Up   Down
sdp:1:6 S(10.10.10.10)                   n/a          0       0       Up   Down
===============================================================================
Table 125:  Show Service ID Base Output Fields  

Label

Description

Service Id

The service identifier

Service Type

The type of service: VPRN

Name

The service name

Description

Generic information about the service

Customer Id

The customer identifier

Last Status Change

The date and time of the most recent status change to this service

Last Mgmt Change

The date and time of the most recent management-initiated change to this service

Admin State

The desired state of the service

Oper State

The operating state of the service

Route Dist.

The largest frame size (in octets) that the service can handle

VPRN Type

Only valid in services that accept mesh SDP bindings. It validates the VC ID portion of each mesh SDP binding defined in the service.

AS Number

The autonomous system number

Router ID

The router ID for this service

ECMP

Displays equal cost multipath information

ECMP Max Routes

The maximum number of routes that can be received from the neighbors in the group or for the specific neighbor

Max IPv4 Routes

The maximum number of routes that can be used for path sharing

Auto Bind

The automatic binding type for the SDP assigned to this service

Max IPv6 Routes

Not applicable

Vrf Target

The route target in the VRF applied to this service

Vrf Import

The VRF import policy applied to this service

Vrf Export

The VRF export policy applied to this service

SAP Count

The number of SAPs defined on the service

SDP Bind Count

The number of SDPs bound to the service

Service Access and Destination Points

Identifier

The service access (SAP) and destination (SDP) points

Type

The signaling protocol used to obtain the ingress and egress labels used in frames transmitted and received on the SDP

AdmMTU

The desired largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented

OprMTU

The actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented

Adm

The administrative state of the SAP or SDP

Opr

The operating state of the SAP or SDP

dhcp

Syntax 
dhcp
Context 
show>service>id
Description 

This command enables the context to display DHCP information for the specified service.

statistics

Syntax 
statistics [interface ip-int-name | ip-address]
Context 
show>service>id>dhcp
Description 

This command displays DHCP statistics information.

Parameters 
ip-int-name
the interface name for which DHCP statistics will be displayed
ip-address—
the IP address of the interface for which to display information
Values—
a.b.c.d (host bits must be 0)
Output 

The following output is an example of server ID DHCP statistics information, and Table 126 describes the fields.

Sample Output
*A:ALU-12>show>service>id>dhcp# statistics
===================================================================
DHCP Global Statistics, service 6
===================================================================
Rx Packets                           : 0
Tx Packets                           : 0
Rx Malformed Packets                 : 0
Rx Untrusted Packets                 : 0
Client Packets Discarded             : 0
Client Packets Relayed               : 0
Server Packets Discarded             : 0
Server Packets Relayed               : 0
===================================================================
*A:ALU-12>show>service>id>dhcp#
Table 126:  Show Service ID DHCP Statistics Output Fields  

Label

Description

DHCP Global Statistics, service x

Rx Packets

The number of packets received from the DHCP clients

Tx Packets

The number of packets transmitted to the DHCP clients

Rx Malformed Packets

The number of corrupted/invalid packets received from the DHCP clients

Rx Untrusted Packets

The number of untrusted packets received from the DHCP clients. In this case, a frame is dropped due to the client sending a DHCP packet with Option 82 filled in before “trust” is set under the DHCP interface command.

Client Packets Discarded

The number of packets received from the DHCP clients that were discarded

Client Packets Relayed

The number of packets received from the DHCP clients that were forwarded

Server Packets Discarded

The number of packets received from the DHCP server that were discarded

Server Packets Relayed

The number of packets received from the DHCP server that were forwarded

summary

Syntax 
summary [interface interface-name | saps]
Context 
show>service>id>dhcp
Description 

This command displays DHCP configuration summary information.

Parameters 
interface-name
the interface name for which DHCP summary statistics will be displayed
saps—
displays SAPs per interface
Output 

The following output is an example of service ID DHCP summary information, and Table 127 describes the fields.

Sample Output
*A:ALU-12>show>service>id>dhcp# summary
===============================================================================
DHCP Summary, service 6
===============================================================================
Interface Name                   Arp      Used/                 Info    Admin
  SapId/Sdp                      Populate Provided              Option  State
-------------------------------------------------------------------------------
vprn_interface                   No       0/0                   Keep    Down
-------------------------------------------------------------------------------
Interfaces: 1
===============================================================================
*A:ALU-12>show>service>id>dhcp#
Table 127:  Show Service ID DHCP Summary Output Fields  

Label

Description

DHCP Summary, service x

Interface Name Sap/Sdp

The name of the interface

Arp Populate

Specifies whether ARP populate is enabled or disabled

Used/Provided

Used—the number of lease-states that are currently in use on the specified interface, that is, the number of clients on the interface that got an IP address by DHCP. This value is always less than or equal to the “Provided” field.

Provided—the lease-populate value that is configured for a specific interface

Info Option

Keep—the existing information is kept on the packet and the router does not add any additional information

Replace—on ingress, the existing information-option is replaced with the information-option from the router

Drop—the packet is dropped and an error is logged

Admin State

The administrative state

interface

Syntax 
interface [{[ip-address | ip-int-name] [interface-type] [detail] [family]} | summary]
Context 
show>service>id
Description 

This command displays information for the IP interfaces associated with the service.

If no optional parameters are specified, a summary of all IP interfaces associated to the service are displayed.

Parameters 
ip-address—
the IP address of the interface for which to display information
Values—
ipv4-address:   a.b.c.d (host bits must be 0)
ipv6-address:   x:x:x:x:x:x:x:x (eight 16-bit pieces)
                         x:x:x:x:x:x:d.d.d.d
                        x: [0..FFFF]H
                        d [0..255]D
ip-int-name—
the IP interface name for which to display information
interface type—
displays either group or subscriber interfaces
detail—
displays detailed IP interface information
family—
displays the IP interface family
Values—
ipv4, ipv6
summary—
displays summary IP interface information
Output 

The following output is an example of service ID interface information, and Table 128 describes the fields.

Sample Output
*A:ALU-12>show>service>id# interface
===============================================================================
Interface Table
===============================================================================
Interface-Name                   Adm         Opr(v4/v6)  Type    Port/SapId
   IP-Address                                                    PfxState
-------------------------------------------------------------------------------
vprn_interface                   Up          Down/Down   VPRN    1/5/2
   -                                                             -
-------------------------------------------------------------------------------
Interfaces : 1
===============================================================================
 
*A:ALU-12>show>service>id# interface summary
===============================================================================
Service Interface Summary
===============================================================================
Service Id          Interfaces          Admin-Up            Oper-Up(v4/v6)
-------------------------------------------------------------------------------
6                   1                   1                   0/0
===============================================================================
*A:ALU-12>show>service>id#
 
 
*A:ALU-12>show>service>id# interface detail
===============================================================================
Interface Table
===============================================================================
 
-------------------------------------------------------------------------------
Interface
-------------------------------------------------------------------------------
If Name      : vprn_interface
Admin State  : Up                               Oper (v4/v6)     : Down/Down
Protocols    : None
 
IP Addr/mask : Not Assigned
-------------------------------------------------------------------------------
Details
-------------------------------------------------------------------------------
If Index     : 2                                Virt. If Index   : 2
Last Oper Chg: 02/03/2010 21:59:02              Global If Index  : 125
SAP Id       : 1/5/2
TOS Marking  : Trusted                          If Type          : VPRN
SNTP B.Cast  : False
MAC Address  :                                  Arp Timeout      : 14400
IP MTU       : 1500                             ICMP Mask Reply  : True
Arp Populate : Disabled                         Host Conn Verify : Disabled
LdpSyncTimer : None
 
Proxy ARP Details
Rem Proxy ARP: Disabled                         Local Proxy ARP  : Disabled
Policies     : none
 
Proxy Neighbor Discovery Details
Local Pxy ND : Disabled
Policies     : none
 
DHCP Details
Admin State  : Down                             Lease Populate   : 0
Action       : Keep                             Trusted          : Disabled
 
DHCP6 Relay Details
Admin State  : Down                             Lease Populate   : 0
Oper State   : Down                             Nbr Resolution   : Disabled
If-Id Option : None                             Remote Id        : Disabled
Src Addr     : Not configured
 
DHCP6 Server Details
Admin State  : Down                             Max. Lease States: 8000
 
ICMP Details
Redirects    : Number - 100                     Time (seconds)   - 10
Unreachables : Number - 100                     Time (seconds)   - 10
TTL Expired  : Number - 100                     Time (seconds)   - 10
 
IPCP Address Extension Details
Peer IP Addr*: Not configured
Peer Pri DNS*: Not configured
Peer Sec DNS*: Not configured
-------------------------------------------------------------------------------
Interfaces : 1
===============================================================================
* indicates that the corresponding row element may have been truncated.
*A:ALU-12>show>service>id#
Table 128:  Show Service ID Interface Detailed Output Fields  

Label

Description

Interface

If Name

The name used to refer to the interface

Admin State

The desired state of the interface

Oper (v4/v6)

The operating state of the interface

Protocols

The protocols supported on this interface

IP Addr/mask

The IP address/IP subnet/broadcast address of the interface

Details

If Index

The index corresponding to this interface. The primary index is 1. For example, all interfaces are defined in the Base virtual router context.

Virt. If Index

The virtual interface index of the VPRN interface

Last Oper Chg

The date and time of the last operating state change on the interface

Global If Index

The global interface index of the VPRN interface

TOS Marking

Specifies whether the ToS marking is trusted or untrusted for the interface

If Type

The interface type

SNTP B.Cast

Specifies whether SNTP broadcast client mode is enabled or disabled

MAC Address

The 48-bit IEEE 802.3 MAC address

Arp Timeout

The timeout for an ARP entry learned on the interface

IP MTU

The IP maximum transmit unit for the interface

ICMP Mask Reply

Specifies whether ICMP mask reply is enabled or disabled

ARP Populate

Specifies if ARP is enabled or disabled

Host Conn Verify

Not applicable

LdpSyncTimer

Not applicable

Proxy ARP Details

Rem Proxy ARP

Indicates whether remote proxy ARP is enabled or disabled

Local Proxy ARP

Indicates whether local proxy ARP is enabled or disabled

Policies

Specifies the policy statements applied to proxy ARP

DHCP Details

Admin State

The administrative state of DHCP

Lease Populate

Not applicable

Action

The processing required that occurs when the 7705 SAR receives a DHCP request that already has a Relay Agent Information Option (Option 82):

Trusted

Indicates whether trusted mode is enabled or disabled on the IP interface

ICMP Details

Redirects

The rate for ICMP redirect messages

Unreachables

The rate for ICMP unreachable messages

TTL Expired

The rate for ICMP TTL messages

IPCP Address Extension Details

Peer IP Addr

The remote IP address to be assigned to the far-end of the associated PPP/MLPPP link via IPCP extensions

Peer Pri DNS

The unicast IPv4 address for the primary DNS server to be signaled to the far-end of the associate PPP/MLPPP link via IPCP extensions

Peer Sec DNS

The unicast IPv4 address for the secondary DNS server to be signaled to the far-end of the associate PPP/MLPPP link via IPCP extensions

sap

Syntax 
sap [sap-id [detail]]
Context 
show>service>id
Description 

This command displays information for the SAPs associated with the service.

If no optional parameters are specified, a summary of all associated SAPs is displayed.

Parameters 
sap-id—
the SAP ID for which SAP information will be displayed. See Table 39 for a full list of SAP IDs.
detail—
displays detailed information for the SAP
Output 

The following output is an example of service SAP information, and Table 129 describes the fields.

Sample Output
*A:ALU-12>show>service>id# sap
===============================================================================
SAP(Summary), Service 6
===============================================================================
PortId                          SvcId      Ing.  Ing.    Egr.  Egr.   Adm  Opr
                                           QoS   Fltr    QoS   Fltr
-------------------------------------------------------------------------------
1/5/2                           6          2     ip4     2     none   Up   Down
-------------------------------------------------------------------------------
Number of SAPs : 1
-------------------------------------------------------------------------------
===============================================================================
*A:ALU-12>show>service>id# sap 1/5/2
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id         : 6
SAP                : 1/5/2                    Encap             : null
Admin State        : Up                       Oper State        : Down
Flags              : ServiceAdminDown
                     PortOperDown
Multi Svc Site     : None
Last Status Change : 02/03/2010 21:59:01
Last Mgmt Change   : 02/03/2010 21:59:02
===============================================================================
*A:ALU-12>show>service>id#
 
*A:ALU-12>show>service>id# sap 1/5/2 detail
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id         : 6
SAP                : 1/5/2                    Encap             : null
Admin State        : Up                       Oper State        : Down
Flags              : ServiceAdminDown
                     PortOperDown
Multi Svc Site     : None
Last Status Change : 02/03/2010 21:59:01
Last Mgmt Change   : 02/03/2010 21:59:02
Sub Type           : regular
Dot1Q Ethertype    : 0x8100                   QinQ Ethertype    : 0x8100
 
Admin MTU          : 1514                     Oper MTU          : 1514
Ingr IP Fltr-Id    : 2                        Egr IP Fltr-Id    : n/a
Ingr Mac Fltr-Id   : n/a                      Egr Mac Fltr-Id   : n/a
Ingr IPv6 Fltr-Id  : n/a                      Egr IPv6 Fltr-Id  : n/a
tod-suite          : None                     qinq-pbit-marking : both
Ing Scheduler Mode : 4-priority               Egr Scheduler Mode: 16-priority
Ing Agg Rate Limit : max                      Egr Agg Rate Limit: 7000
Ing Agg cir        : 0                        Egr Agg cir       : 700
Ing Shaper Group   : default                  Egr Shaper Group  : default
Q Frame-Based Acct : Disabled
 
Acct. Pol          : None                     Collect Stats     : Disabled
 
Anti Spoofing      : None                     Nbr Static Hosts  : 0
 
-------------------------------------------------------------------------------
QOS
-------------------------------------------------------------------------------
Ingress qos-policy : 2                        Egress qos-policy : 2
Shared Q plcy      : n/a                      Multipoint shared : Disabled
-------------------------------------------------------------------------------
Sap Statistics
-------------------------------------------------------------------------------
Last Cleared Time     : N/A
 
                        Packets                 Octets
Forwarding Engine Stats
Dropped               : 0                       0
Off. HiPrio           : 0                       0
Off. LowPrio          : 0                       0
 
Queueing Stats(Ingress QoS Policy 2)
Dro. HiPrio           : 0                       0
Dro. LowPrio          : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
 
Queueing Stats(Egress QoS Policy 2)
Dro. InProf           : 0                       0
Dro. OutProf          : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
-------------------------------------------------------------------------------
Sap per Queue stats
-------------------------------------------------------------------------------
                        Packets                 Octets
 
Ingress Queue 1 (Unicast) (Priority)
Off. HiPrio           : 0                       0
Off. LoPrio           : 0                       0
Dro. HiPrio           : 0                       0
Dro. LoPrio           : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
 
Egress Queue 1
For. InProf           : 0                       0
For. OutProf          : 0                       0
Dro. InProf           : 0                       0
Dro. OutProf          : 0                       0
===============================================================================
*A:ALU-12>show>service>id#
 
 
*A:ALU-12>>show>service>id# sap 1/5/2 atm
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id         : 6
SAP                : 1/5/2                    Encap             : null
Admin State        : Up                       Oper State        : Down
Flags              : ServiceAdminDown
                     PortOperDown
Multi Svc Site     : None
Last Status Change : 02/03/2010 21:59:01
Last Mgmt Change   : 02/03/2010 21:59:02
===============================================================================
*A:ALU-12>show>service>id#
 
 
*A:ALU-12>show>service>id# sap 1/5/2 qos
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id         : 6
SAP                : 1/5/2                    Encap             : null
Admin State        : Up                       Oper State        : Down
Flags              : ServiceAdminDown
                     PortOperDown
Multi Svc Site     : None
Last Status Change : 02/03/2010 21:59:01
Last Mgmt Change   : 02/03/2010 21:59:02
 
-------------------------------------------------------------------------------
QOS
-------------------------------------------------------------------------------
Ingress qos-policy : 2                        Egress qos-policy : 2
Shared Q plcy      : n/a                      Multipoint shared : Disabled
===============================================================================
*A:ALU-12>show>service>id#
 
 
*A:ALU-12>show>service>id# sap 1/5/2 sap-stats
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id         : 6
SAP                : 1/5/2                    Encap             : null
Admin State        : Up                       Oper State        : Down
 
Flags              : ServiceAdminDown
                     PortOperDown
Multi Svc Site     : None
Last Status Change : 02/03/2010 21:59:01
Last Mgmt Change   : 02/03/2010 21:59:02
-------------------------------------------------------------------------------
Sap Statistics
-------------------------------------------------------------------------------
Last Cleared Time     : N/A
 
                        Packets                 Octets
Forwarding Engine Stats
Dropped               : 0                       0
Off. HiPrio           : 0                       0
Off. LowPrio          : 0                       0
 
Queueing Stats(Ingress QoS Policy 2)
Dro. HiPrio           : 0                       0
Dro. LowPrio          : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
 
Queueing Stats(Egress QoS Policy 2)
Dro. InProf           : 0                       0
Dro. OutProf          : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
===============================================================================
*A:ALU-12>show>service>id# sap 1/5/2 stats
 
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id         : 6
SAP                : 1/5/2                    Encap             : null
Admin State        : Up                       Oper State        : Down
Flags              : ServiceAdminDown
                     PortOperDown
Multi Svc Site     : None
Last Status Change : 02/03/2010 21:59:01
Last Mgmt Change   : 02/03/2010 21:59:02
-------------------------------------------------------------------------------
Sap per Queue stats
-------------------------------------------------------------------------------
                        Packets                 Octets
Ingress Queue 1 (Unicast) (Priority)
Off. HiPrio           : 0                       0
Off. LoPrio           : 0                       0
Dro. HiPrio           : 0                       0
Dro. LoPrio           : 0                       0
For. InProf           : 0                       0
For. OutProf          : 0                       0
 
Egress Queue 1
For. InProf           : 0                       0
For. OutProf          : 0                       0
Dro. InProf           : 0                       0
Dro. OutProf          : 0                       0
===============================================================================
*A:ALU-12>show>service>id#
Table 129:  Show Service ID SAP Detailed Output Fields 

Label

Description

Service Id

The service identifier

SAP

The SAP identifier

Encap

The encapsulation type of the SAP

Admin State

The administrative state of the SAP

Oper State

The operating state of the SAP

Flags

Specifies the conditions that affect the operating status of this SAP. Display output includes: ServiceAdminDown, SapAdminDown, InterfaceAdminDown, PortOperDown, PortMTUTooSmall, L2OperDown, SapIngressQoSMismatch, SapEgressQoSMismatch, RelearnLimitExceeded, RxProtSrcMac, ParentIfAdminDown, NoSapIpipeCeIpAddr, TodResourceUnavail, TodMssResourceUnavail, SapParamMismatch, CemSapNoEcidOrMacAddr, StandByForMcRing, ServiceMTUTooSmall, SapIngressNamedPoolMismatch, SapEgressNamedPoolMismatch, NoSapEpipeRingNode

Last Status Change

The time of the most recent operating status change to this SAP

Last Mgmt Change

The time of the most recent management-initiated change to this SAP

Sub Type

The supported sub type: regular

Dot1Q Ethertype

The value of the dot1q Ethertype

QinQ Ethertype

The value of the qinq Ethertype

Admin MTU

The desired largest service frame size (in octets) that can be transmitted through the SAP to the far-end router, without requiring the packet to be fragmented

Oper MTU

The actual largest service frame size (in octets) that can be transmitted through the SAP to the far-end router, without requiring the packet to be fragmented

Ingr IP Fltr-Id

The ingress filter policy ID assigned to the SAP

Egr IP Fltr-Id

The egress filter policy ID assigned to the SAP

Ingr Mac Fltr-Id

Not applicable

Egr Mac Fltr-Id

Not applicable

tod-suite

Indicates whether a time-based policy is applied to a multiservice site

qinq-pbit-marking

Indicates the qinq P-bit marking for the service: both or top

Ing Scheduler Mode

The scheduler mode for the SAP in the access ingress direction: 4-priority or 16-priority

Egr Scheduler Mode

The scheduler mode for the SAP in the access egress direction: 4-priority or 16-priority

Ing Agg Rate Limit

The PIR rate limit in the access ingress direction for the aggregate of the SAP queues

Egr Agg Rate Limit

The PIR rate limit in the access egress direction for the aggregate of the SAP queues

Ing Agg cir

The CIR rate limit in the access ingress direction for the aggregate of the SAP queues

Egr Agg cir

The CIR rate limit in the access egress direction for the aggregate of the SAP queues

Ing Shaper Group

The ingress shaper group for the SAP

Egr Shaper Group

The egress shaper group for the SAP

Acct. Pol

The accounting policy ID assigned to the SAP

Collect Stats

Specifies whether accounting statistics are collected on the SAP

Anti Spoofing

Not applicable

Nbr Static Hosts

Not applicable

QOS

Ingress qos-policy

The ingress QoS policy ID assigned to the SAP

Egress qos-policy

The egress QoS policy ID assigned to the SAP

Shared Q plcy

Not applicable

Multipoint shared

Not applicable

Sap Statistics

Last Cleared Time

The date and time that a clear command was issued on statistics

Forwarding Engine Stats

Dropped

The number of packets or octets dropped by the forwarding engine

Off. HiPrio

The number of high-priority packets or octets offered to the forwarding engine

Off. LowPrio

The number of low-priority packets offered to the forwarding engine

Queueing Stats (Ingress QoS Policy)

Dro. HiPrio

The number of high-priority packets or octets discarded, as determined by the SAP ingress QoS policy

Dro. LowPrio

The number of low-priority packets discarded, as determined by the SAP ingress QoS policy

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded, as determined by the SAP ingress QoS policy

For. OutProf

The number of out-of-profile packets or octets (rate above CIR) forwarded, as determined by the SAP ingress QoS policy

Queueing Stats (Egress QoS Policy)

Dro. InProf

The number of in-profile packets or octets discarded, as determined by the SAP egress QoS policy

Dro. OutProf

The number of out-of-profile packets or octets discarded, as determined by the SAP egress QoS policy

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded, as determined by the SAP egress QoS policy

For. OutProf

The number of out-of-profile packets or octets (rate above CIR) forwarded, as determined by the SAP egress QoS policy

Sap per Queue stats

Ingress Queue n

The index of the ingress QoS queue of this SAP, where n is the index number

Off. HiPrio

The number of packets or octets of high-priority traffic for the SAP (offered)

Off. LoPrio

The number of packets or octets count of low-priority traffic for the SAP (offered)

Dro. HiPrio

The number of high-priority traffic packets or octets dropped

Dro. LoPrio

The number of low-priority traffic packets or octets dropped

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded

For. OutProf

The number of out-of-profile packets or octets (rate above CIR) forwarded

Egress Queue n

The index of the egress QoS queue of the SAP, where n is the index number

For. InProf

The number of in-profile packets or octets (rate below CIR) forwarded

For. OutProf

The number of out-of-profile packets or octets (rate above CIR) forwarded

Dro. InProf

The number of in-profile packets or octets dropped for the SAP

Dro. OutProf

The number of out-of-profile packets or octets discarded

ingress-label

Syntax 
ingress-label start-label [end-label]
Context 
show>service
Description 

This command displays service information using the range of ingress labels.

If only the mandatory start-label parameter is specified, only services using the specified label are displayed.

If both start-label and end-label parameters are specified, the services using the labels in the specified range are displayed.

Use the show router ldp bindings command to display dynamic labels.

Parameters 
end-label—
the ending ingress label value for which to display services using the label range
Values—
 2049 to 131071
Values—
the start-label value
start-label—
the starting ingress label value for which to display services using the label range. If only start-label is specified, services only using start-label are displayed.
Values—
0, or 2048 to 131071
Output 

The following output is an example of service ingress label information, and Table 130 describes the fields.

Sample Output

In the example below, services 3, 5 and 6 are IES, and services 5000 and 5001 are VPLS services.

*A:ALU-12>show>service# ingress-label 0 131071
===============================================================================
Martini Service Labels
===============================================================================
Svc Id     Sdp Binding        Type  I.Lbl                 E.Lbl
-------------------------------------------------------------------------------
3          15:15              Spok  0                     0
5          5:5                Spok  0                     0
6          5:6                Spok  0                     0
5000       15:5000            Mesh  0                     0
5000       15:5001            Spok  0                     0
5001       5001:100           Spok  0                     0
-------------------------------------------------------------------------------
Number of Bindings Found : 6
-------------------------------------------------------------------------------
===============================================================================
*A:ALU-12#
Table 130:  Show Service ingress Output FIelds  

Label

Description

Svc Id

The ID that identifies a service

Sdp Binding

The ID that identifies an SDP

Type

Indicates whether the SDP binding is a spoke or a mesh

I. Lbl

The VC label used by the far-end device to send packets to this device in this service by the SDP

E. Lbl

The VC label used by this device to send packets to the far-end device in this service by the SDP

Number of Bindings Found

The total number of SDP bindings that exist within the specified label range

sdp

Syntax 
sdp {[sdp-id[:vc-id] | far-end ip-addr]} [detail]
sdp [sdp-id[:vc-id]]
Context 
show>service>id
Description 

This command displays information for the SDPs associated with the service. If no optional parameters are specified, a summary of all associated SDPs is displayed.

Parameters 
sdp-id—
the SDP ID for which SDP information will be displayed
Values—
1 to 17407
Values—
all SDPs
vc-id—
the virtual circuit ID on the SDP ID
Values—
1 to 4294967295
ip-addr
displays only SDPs matching with the specified far-end IP address
detail—
displays detailed SDP information
Output 

The following output is an example of service ID SDP information, and Table 131 describes the fields.

Sample Output
*A:ALU-12>show>service>id# sdp
===============================================================================
Services: Service Destination Points
===============================================================================
SdpId            Type IP address      Adm     Opr       I.Lbl       E.Lbl
-------------------------------------------------------------------------------
1:6              Spok 10.10.10.10     Up      Down      n/a         n/a
-------------------------------------------------------------------------------
Number of SDPs : 1
-------------------------------------------------------------------------------
===============================================================================
*A:ALU-12>show>service>id#
 
 
*A:ALU-12>show>service>id# sdp 1
===============================================================================
Service Destination Point (Sdp Id : 1)
===============================================================================
SdpId            Type IP address      Adm     Opr       I.Lbl       E.Lbl
-------------------------------------------------------------------------------
1:6              Spok 10.10.10.10     Up      Down      n/a         n/a
===============================================================================
*A:ALU-12>show>service>id#
 
 
*A:ALU-12>show>service>id# sdp far-end 10.10.10.10
===============================================================================
Service Destination Point(Far-End : 10.10.10.10)
===============================================================================
SdpId            Type IP address      Adm     Opr       I.Lbl       E.Lbl
-------------------------------------------------------------------------------
1:6              Spok 10.10.10.10     Up      Down      n/a         n/a
-------------------------------------------------------------------------------
Number of SDPs : 1
-------------------------------------------------------------------------------
===============================================================================
*A:ALU-12>show>service>id#
 
 
*A:ALU-12>show>service>id# sdp detail
===============================================================================
Services: Service Destination Points Details
===============================================================================
-------------------------------------------------------------------------------
 Sdp Id 1:6  -(10.10.10.10)
-------------------------------------------------------------------------------
SDP Id             : 1:6                      Type              : Spoke
VC Type            : n/a                      VC Tag            : n/a
Admin Path MTU     : 0                        Oper Path MTU     : 0
Far End            : 10.10.10.10              Delivery          : MPLS
Admin State        : Up                       Oper State        : Down
Acct. Pol          : None                     Collect Stats     : Disabled
Ingress Label      : n/a                      Egress Label      : n/a
Ing mac Fltr       : n/a                      Egr mac Fltr      : n/a
Ing ip Fltr        : n/a                      Egr ip Fltr       : n/a
Ing ipv6 Fltr      : n/a                      Egr ipv6 Fltr     : n/a
Admin ControlWord  : Not Preferred            Oper ControlWord  : False
Last Status Change : 02/03/2010 21:59:01      Signaling         : n/a
Last Mgmt Change   : 03/01/2010 18:55:58
Class Fwding State : Down
Flags              : SdpOperDown
 
KeepAlive Information :
Admin State        : Disabled                 Oper State        : Disabled
Hello Time         : 10                       Hello Msg Len     : 0
Max Drop Count     : 3                        Hold Down Time    : 10
 
Statistics            :
I. Fwd. Pkts.      : n/a                      I. Dro. Pkts.     : n/a
I. Fwd. Octs.      : n/a                      I. Dro. Octs.     : n/a
E. Fwd. Pkts.      : n/a                      E. Fwd. Octets    : n/a
 
Associated LSP LIST :
No LSPs Associated
-------------------------------------------------------------------------------
Number of SDPs : 1
-------------------------------------------------------------------------------
===============================================================================
Table 131:  Show Service ID SDP Detailed Output Fields 

Label

Description

Sdp Id

The SDP identifier

Type

Indicates whether the SDP is a spoke or a mesh

VC Type

The VC type: ether or vlan

VC Tag

The explicit dot1Q value used when encapsulating to the SDP far end

Admin Path MTU

The operating path MTU of the SDP is equal to the admin path MTU (when one is set) or the dynamically computed tunnel MTU, when no admin path MTU is set (the default case)

Oper Path MTU

The actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented

Far End

The IP address of the remote end of the GRE, MPLS, or IP tunnel defined by this SDP.

Delivery

Specifies the type of delivery used by the SDP: GRE, MPLS, or IP

Admin State

The administrative state of this SDP

Oper State

The operational state of this SDP

Acct. Pol

The accounting policy applied to the SDP

Collect Stats

Specifies whether accounting statistics are collected on the SDP

Ingress Label

The label used by the far-end device to send packets to this device in this service by this SDP

Egress Label

The label used by this device to send packets to the far-end device in this service by the SDP

Ing mac Fltr

Not applicable

Egr mac Fltr

Not applicable

Ing ip Fltr

The ingress filter policy ID assigned to the SDP

Egr ip Fltr

The egress filter policy ID assigned to the SDP

Admin ControlWord

The administrative state of the control word: Preferred (control word enabled) or Not Preferred (control word disabled)

Oper ControlWord

The operational state of the control word: True (control word enabled) or False (control word disabled)

Last Status Change

The date and time of the most recent change to the SDP

Signaling

The signaling protocol used to obtain the ingress and egress labels used in frames transmitted and received on this SDP

Last Mgmt Change

The date and time of the most recent management-initiated change to this SDP

Class Fwding State

Not applicable

Flags

Specifies the conditions that affect the operating status of this SAP. Display output includes: ServiceAdminDown, SapAdminDown, InterfaceAdminDown, PortOperDown, PortMTUTooSmall, L2OperDown, SapIngressQoSMismatch, SapEgressQoSMismatch, RelearnLimitExceeded, RxProtSrcMac, ParentIfAdminDown, NoSapIpipeCeIpAddr, TodResourceUnavail, TodMssResourceUnavail, SapParamMismatch, CemSapNoEcidOrMacAddr, StandByForMcRing, ServiceMTUTooSmall, SapIngressNamedPoolMismatch, SapEgressNamedPoolMismatch, NoSapEpipeRingNode

KeepAlive Information

Admin State

The administrative state of the keepalive process

Oper State

The operational state of the keepalive process

Hello Time

Specifies how often the SDP echo request messages are transmitted on this SDP

Hell Msg Length

The length of the SDP echo request messages transmitted on this SDP

Max Drop Count

The maximum number of consecutive SDP echo request messages that can be unacknowledged before the keepalive protocol reports a fault

Hold Down Time

The time to wait before the keepalive operating status is eligible to enter the alive state

Statistics

I. Fwd. Pkts.

The number of forwarded ingress packets

I. Dro. Pkts.

The number of dropped ingress packets

I. Fwd. Octs.

The number of forwarded ingress octets

I. Dro. Octs.

The number of dropped ingress octets

E. Fwd. Pkts.

The number of forwarded egress packets

E. Fwd. Octets

The number of forwarded egress octets

Associated LSP LIST

If the SDP type is MPLS, a list of LSPs used to reach the far-end router displays. All the LSPs in the list must terminate at the IP address specified in the far-end field.

If the SDP type is GRE, the following message displays: SDP delivery mechanism is not MPLS.

Number of SDPs

The total number of SDPs applied to this service ID

twamp-light

Syntax 
twamp-light
Context 
show>service>id
Description 

This command displays OAM TWAMP Light status information.

Output 

The following output is an example of TWAMP Light information, and Table 132 describes the fields.

Sample Output
*A:ALU-3# show service id 10 twamp-light
===============================================================================
TWAMP Light Reflector          
-------------------------------------------------------------------------------
             
Admin State          : Up             
Up Time              : 0d 00:12:01             
Configured UDP Port  : 1025           
Test Packets Rx      : 0                   Test Packets Tx     : 0           
            
TWAMP Light Controller Prefix List                                 
 192.168.1.1/32                                 
    10.1.1.2/32                                           
 172.16.254.9/3                                            
    10.1.1.0/24                                            
=============================================================================== 
*A:ALU-3#
Table 132:  Show TWAMP Light Output Fields 

Label

Description

TWAMP Light Reflector

Admin State

Displays one of the following:

Up—the server or prefix is administratively enabled (no shutdown) in configuration

Down—the server or prefix is administratively disabled (shutdown) in configuration

Up Time

The time since the server process was started, measured in days (d), hours, minutes, and seconds

Configured UDP Port

The UDP port number used

Test Packets Rx

The total number of test packets received from session senders

Test Packets Tx

The total number of test packets sent to session senders

TWAMP Light Controller Prefix List

The IP address prefixes of TWAMP Light clients

service-using

Syntax 
service-using vprn [sdp sdp-id] [customer customer-id]
Context 
show>service
Description 

This command displays the services matching certain usage properties.

If no optional parameters are specified, all services defined on the system are displayed.

Parameters 
vprn—
displays matching VPRN services
sdp-id
displays only services bound to the specified SDP ID
Values—
1 to 17407
customer-id
displays only those services associated with the specified customer ID
Values—
1 to 2147483647
Output 

The following output is an example of service-using information, and Table 133 describes the fields.

Sample Output
*A:ALU-12>show>service# service-using vprn
===============================================================================
Services [vprn]
===============================================================================
ServiceId    Type      Adm    Opr        CustomerId        Last Mgmt Change
-------------------------------------------------------------------------------
6            VPRN      Down   Down       1                 03/01/2010 18:55:58
-------------------------------------------------------------------------------
Matching Services : 1
-------------------------------------------------------------------------------
===============================================================================
*A:ALU-12>show>service#
 
 
*A:ALU-12>show>service# service-using customer 1
===============================================================================
Services  Customer 1
===============================================================================
ServiceId    Type      Adm    Opr        CustomerId        Last Mgmt Change
-------------------------------------------------------------------------------
1            Cpipe     Down   Down       1                 02/03/2010 21:59:01
2            Epipe     Down   Down       1                 02/03/2010 21:59:02
5            Apipe     Down   Down       1                 02/03/2010 21:59:02
6            VPRN      Down   Down       1                 03/01/2010 18:55:58
23           IES       Down   Down       1                 02/03/2010 21:59:01
100          Ipipe     Down   Down       1                 02/03/2010 21:59:02
-------------------------------------------------------------------------------
Matching Services : 6
-------------------------------------------------------------------------------
===============================================================================
*A:ALU-12>show>service#
Table 133:  Show Service Service-Using Output Fields 

Label

Description

Service Id

The service identifier

Type

The service type configured for the service ID

Name

The service name

Description

A description of the service

Adm

The desired state of the service

Opr

The operating state of the service

CustomerID

The ID of the customer who owns this service

Last Mgmt Change

The date and time of the most recent management-initiated change to this service

Matching Services

The number of services of the same type

Show Router Commands

Note:

The following command outputs are examples only; actual displays may differ depending on supported functionality and user configuration.

router

Syntax 
router [service-id]
Context 
show
Description 

This command provides access to the show commands for the service specified by the service-id.

Using service-id with this command applies only to VPRN service.

Parameters 
service-id—
specifies the service-id
Values—
1 to 2147483647 or service-name

aggregate

Syntax 
aggregate [active]
Context 
show>router
Description 

This command displays aggregated routes.

Parameters 
active—
filters out inactive aggregates
Output 

The following output is an example of aggregate route information, and Table 134 describes the fields.

Sample Output
*A:ALU-12# show router 104 aggregate
===============================================================================
Aggregates (Service: 104)
===============================================================================
Prefix                                          Aggr IP-Address   Aggr AS
   Summary                                         AS Set            State
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
No. of Aggregates: 0
===============================================================================
*A:ALU-12#
Table 134:  Show Aggregate Table Output Fields  

Label

Description

Prefix

The destination address of the aggregate route in dotted-decimal notation

Summary

Specifies whether the aggregate or more specific components are advertised

AS Set

Displays an aggregate where the path advertised for the route consists of all elements contained in all paths that are being summarized

Aggr AS

The aggregator path attribute to the aggregate route

Aggr IP-Address

The IP address of the aggregated route

State

The operational state of the aggregated route

No. of Aggregates

The total number of aggregated routes

arp

Syntax 
arp [ip-address | ip-int-name | mac ieee-mac-addr] [sdp sdp-id:vc-id] [summary]
Context 
show>router
Description 

This command displays the router ARP table sorted by IP address.

If no command line options are specified, all ARP entries are displayed.

Parameters 
ip-addr—
the IP address for which ARP entries will be displayed
ip-int-name—
the interface name for which ARP entries will be displayed
ieee-mac-addr
the MAC address for which ARP entries will be displayed
sdp-id—
the SDP ID for which ARP entries will be displayed
Values—
1 to 17407
Values—
all SDPs
vc-id—
the virtual circuit ID on the SDP ID
Values—
1 to 4294967295
summary—
displays summary APR table information
Output 

The following output is an example of ARP table information, and Table 135 describes the fields.

Sample Output
*A:ALU-12# show router 6 arp
===============================================================================
ARP Table (Service: 6)
===============================================================================
IP Address      MAC Address       Expiry    Type   Interface
-------------------------------------------------------------------------------
10.10.10.103    04:67:ff:00:00:01 00h00m00s  Oth   system
10.10.4.3       00:00:00:00:00:00 00h00m00s  Oth   ALU-1-2
-------------------------------------------------------------------------------
No. of ARP Entries: 2
===============================================================================
*A:ALU-12#
Table 135:  Show ARP Table Output Fields 

Label

Description

IP Address

The IP address of the ARP entry

MAC Address

The MAC address of the ARP entry

Expiry

The age of the ARP entry

Type

Dyn—the ARP entry is a dynamic ARP entry

Inv—the ARP entry is an inactive static ARP entry (invalid)

Oth—the ARP entry is a local or system ARP entry

Sta—the ARP entry is an active static ARP entry

Interface

The IP interface name associated with the ARP entry

No. of ARP Entries

The number of ARP entries displayed in the list

bgp

Syntax 
bgp
Context 
show>router
Description 

This command enables the context to display BGP-related information.

damping

Syntax 
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] [ipv4]
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] ipv6
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] vpn-ipv4
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] vpn-ipv6
damping [ip-prefix[/ip-prefix-length]] [damp-type] [detail] mvpn-ipv4
Context 
show>router>bgp
Description 

This command displays BGP routes that have been dampened due to route flapping. This command can be entered with or without a route parameter. If no parameters are included, all dampened routes are listed.

If the keyword detail is included, more detailed information is displayed.

If a damp-type is specified, only those types of dampened routes (decayed, history, or suppressed) are displayed. Routes that have a state of decayed have gained penalties for flapping but have not yet reached the suppression limit. Routes that have a state of history have had a route flap and have been withdrawn. Routes that have a state of suppressed have reached the suppression limit and are not considered in BGP path selection.

Parameters 
ip-prefix/ip-prefix-length—
displays damping information for the specified IP address
Values—
ipv4-prefix                              a.b.c.d (host bits must be 0)
ipv4-prefix-length                   0 to 30
ipv6-prefix                              x:x:x:x:x:x:x:x (eight 16-bit                                                  pieces)
                                               x:x:x:x:x:x:d.d.d.d
                                               x:   [0 to FFFF]H
                                              d:   [0 to 255]D
ipv6-prefix-length                 0 to 128
damp-type—
displays damping information for routes with the specified damp type
Values—
decayed, history, suppressed
detail—
displays detailed information
ipv4—
displays dampened routes for the IPv4 address family
ipv6—
displays dampened routes for the IPv6 address family
vpn-ipv4—
displays dampened routes for the VPN-IPv4 address family
vpn-ipv6—
displays dampened routes for the VPN-IPv6 address family
mvpn-ipv4—
displays dampened routes for the MVPN-IPv4 address family
Output 

The following output is an example of BGP damping information, and Table 136 describes the fields.

Sample Output
*A:ALU-12# show router 6 bgp damping
===============================================================================
 BGP Router ID:0.0.0.14         AS:65206       Local AS:65206
===============================================================================
 Legend -
 Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
 Origin codes  : i - IGP, e - EGP, ? - incomplete, > - best, b - backup
===============================================================================
BGP Damped Routes
===============================================================================
Flag  Network            From            Reuse       AS-Path 
------------------------------------------------------------------------------
ud*i  12.149.7.0/24      10.0.28.1       00h00m00s   60203 65001 19855 3356
                                                      1239  22406 
si    24.155.6.0/23      10.0.28.1       00h43m41s   60203 65001 19855 3356
                                                      2914  7459 
si    24.155.8.0/22      10.0.28.1       00h38m31s   60203 65001 19855 3356
                                                      2914  7459 
si    24.155.12.0/22     10.0.28.1       00h35m41s   60203 65001 19855 3356
                                                      2914  7459 
si    24.155.22.0/23     10.0.28.1       00h35m41s   60203 65001 19855 3356
                                                      2914  7459 
si    24.155.24.0/22     10.0.28.1       00h35m41s   60203 65001 19855 3356
                                                      2914  7459 
si    24.155.28.0/22     10.0.28.1       00h34m31s   60203 65001 19855 3356
                                                      2914  7459
si    24.155.40.0/21     10.0.28.1       00h28m24s   60203 65001 19855 3356
                                                      7911  7459 
si    24.155.48.0/20     10.0.28.1       00h28m24s   60203 65001 19855 3356
                                                      7911  7459 
ud*i  61.8.140.0/24      10.0.28.1       00h00m00s   60203 65001 19855 3356
                                                      4637  17447 
ud*i  61.8.141.0/24      10.0.28.1       00h00m00s   60203 65001 19855 3356
                                                      4637  17447 
ud*i  61.9.0.0/18        10.0.28.1       00h00m00s   60203 65001 19855 3356
                                                      3561  9658  6163 
. . .
ud*i  62.213.184.0/23    10.0.28.1       00h00m00s   60203 65001 19855 3356
                                                      6774  6774  9154 
------------------------------------------------------------------------------
*A:ALU-12#
*A:ALU-12# show router 6 bgp damping detail
==============================================================================
  BGP Router ID : 10.0.0.14         AS : 65206   Local AS : 65206
==============================================================================
  Legend -
  Status codes  : u - used, s - suppressed, h - history, d - decayed, * - 
 valid
  Origin codes  : i - IGP, e - EGP, ? - incomplete,  - best
==============================================================================
BGP Damped Routes
==============================================================================
------------------------------------------------------------------------------
Network : 12.149.7.0/24
------------------------------------------------------------------------------
Network          : 12.149.7.0/24        Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h00m00s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h22m09s            Last update      : 02d00h58m
FOM Present      : 738                  FOM Last upd.    : 2039
Number of Flaps  : 2                    Flags            : ud*i
Path             : 60203 65001 19855 3356  1239  22406
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
Network : 15.142.48.0/20
------------------------------------------------------------------------------
Network          : 15.142.48.0/20       Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h00m00s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h00m38s            Last update      : 02d01h20m
FOM Present      : 2011                 FOM Last upd.    : 2023
Number of Flaps  : 2                    Flags            : ud*i
Path             : 60203 65001 19855 3356  3561  5551  1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
Network : 15.200.128.0/19
------------------------------------------------------------------------------
Network          : 15.200.128.0/19      Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h00m00s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h00m38s            Last update      : 02d01h20m
FOM Present      : 2011                 FOM Last upd.    : 2023
Number of Flaps  : 2                    Flags            : ud*i
Path             : 60203 65001 19855 1299  702   1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
Network : 15.203.192.0/18
-------------------------------------------------------------------------------
Network          : 15.203.192.0/18      Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h00m00s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h00m07s            Last update      : 02d01h20m
FOM Present      : 1018                 FOM Last upd.    : 1024
Number of Flaps  : 1                    Flags            : ud*i
Path             : 60203 65001 19855 1299  702   1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
*A:ALU-12#
*A:ALU-12# show router 6 bgp damping 15.203.192.0/18 detail
==============================================================================
  BGP Router ID : 10.0.0.14         AS : 65206   Local AS : 65206
==============================================================================
  Legend -
  Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
  Origin codes  : i - IGP, e - EGP, ? - incomplete,  - best
==============================================================================
BGP Damped Routes 15.203.192.0/18
==============================================================================
Network : 15.203.192.0/18
------------------------------------------------------------------------------
Network          : 15.203.192.0/18      Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h00m00s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h00m42s            Last update      : 02d01h20m
FOM Present      : 2003                 FOM Last upd.    : 2025
Number of Flaps  : 2                    Flags            : ud*i
Path             : 60203 65001 19855 3356  702   1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
Paths : 1
==============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp damping suppressed detail
==============================================================================
  BGP Router ID : 10.0.0.14         AS : 65206   Local AS : 65206
==============================================================================
  Legend -
  Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
  Origin codes  : i - IGP, e - EGP, ? - incomplete,  - best
==============================================================================
BGP Damped Routes (Suppressed)
==============================================================================
Network : 15.142.48.0/20
------------------------------------------------------------------------------
Network          : 15.142.48.0/20       Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h29m22s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h01m28s            Last update      : 02d01h20m
FOM Present      : 2936                 FOM Last upd.    : 3001
Number of Flaps  : 3                    Flags            : si
Path             : 60203 65001 19855 3356  702   1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
Network : 15.200.128.0/19
------------------------------------------------------------------------------
Network          : 15.200.128.0/19      Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h29m22s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h01m28s            Last update      : 02d01h20m
FOM Present      : 2936                 FOM Last upd.    : 3001
Number of Flaps  : 3                    Flags            : si
Path             : 60203 65001 19855 3356  702   1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
Network : 15.203.240.0/20
------------------------------------------------------------------------------
Network          : 15.203.240.0/20      Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h29m22s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h01m28s            Last update      : 02d01h20m
FOM Present      : 2936                 FOM Last upd.    : 3001
Number of Flaps  : 3                    Flags            : si
Path             : 60203 65001 19855 3356  702   1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
Network : 15.206.0.0/17
------------------------------------------------------------------------------
Network          : 15.206.0.0/17        Peer             : 10.0.28.1
NextHop          : 10.0.28.1            Reuse time       : 00h29m22s
Peer AS          : 60203                Peer Router-Id   : 32.32.27.203
Local Pref       : none
Age              : 00h01m28s            Last update      : 02d01h20m
FOM Present      : 2936                 FOM Last upd.    : 3001
Number of Flaps  : 3                    Flags            : si
Path             : 60203 65001 19855 3356  702   1889
Applied Policy   : default-damping-profile
------------------------------------------------------------------------------
*A:ALU-12#
Table 136:  Show BGP Damping Output Fields  

Label

Description

BGP Router ID

The local BGP router ID

AS

The configured autonomous system number

Local AS

The configured or inherited local AS for the specified peer group; if not configured, it is the same value as the AS

Network

The IP prefix and mask length for the route

Flag/Flags

Legend:

Status codes: u-used, s-suppressed, h-history, d-decayed, *-valid (if an * is not present, the status is invalid)

Origin codes: i-IGP, e-EGP, ?-incomplete, >-best

From

The originator ID path attribute value

Reuse/Reuse time

The time when a suppressed route can be used again

AS-Path

The BGP AS path for the route

Peer

The router ID of the advertising router

NextHop

The BGP next hop for the route

Peer AS

The autonomous system number of the advertising router

Peer Router-Id

The router ID of the advertising router

Local Pref

The BGP local preference path attribute for the route

Age

The time elapsed since the service was enabled

Last update

The time that BGP was last updated

FOM Present

The current Figure of Merit (FOM) value

FOM Last upd.

The last updated FOM value

Number of Flaps

The number of flaps in the neighbor connection

Reuse time

The time when the route can be reused

Path

The BGP AS path for the route

Applied Policy

The applied route policy name

group

Syntax 
group [name] [detail]
Context 
show>router>bgp
Description 

This command displays group information for a BGP peer group. This command can be entered with or without parameters.

When this command is entered without a group name, information about all peer groups displays.

When the command is issued with a specific group name, information only pertaining to that specific peer group displays.

The “State” field displays the BGP group’s operational state. Valid states are:

  1. Up — BGP global process is configured and running
  2. Down — BGP global process is administratively shut down and not running
  3. Disabled — BGP global process is operationally disabled. The process must be restarted by the operator.
Parameters 
name—
displays information for the specified BGP group
detail—
displays detailed information
Output 

The following output is an example of BGP group information, and Table 137 describes the fields.

Sample Output
*A:ALU-12# show router 6 bgp group
===============================================================================
BGP Group
===============================================================================
-------------------------------------------------------------------------------
Group            : bgp_group
-------------------------------------------------------------------------------
Group Type       : No Type              State            : Up
Peer AS          : n/a                  Local AS         : 1
Local Address    : n/a                  Loop Detect      : Ignore
Import Policy    : None Specified / Inherited
Export Policy    : None Specified / Inherited
Hold Time        : 90                   Keep Alive       : 30
Cluster Id       : None                 Client Reflect   : Enabled
NLRI             : Unicast              Preference       : 170
TTL Security     : Enabled              Min TTL Value    : 10
Graceful Restart : Enabled              Stale Routes Time: 360
Auth key chain   : n/a
Bfd Enabled      : Disabled
 
List of Peers
- 44.44.44.44 :
 
Total Peers      : 1                    Established      : 0
-------------------------------------------------------------------------------
Peer Groups : 1
*A:ALU-12# show router 6 bgp group detail
===============================================================================
BGP Group  (detail)
===============================================================================
-------------------------------------------------------------------------------
Group            : bgp_group
-------------------------------------------------------------------------------
Group Type       : No Type              State            : Up
Peer AS          : n/a                  Local AS         : 1
Local Address    : n/a                  Loop Detect      : Ignore
Connect Retry    : 120                  Authentication   : None
Local Pref       : 100                  MED Out          : 0
Multihop         : 0 (Default)          AS Override      : Disabled
Min Route Advt.  : 30                   Min AS Originate : 15
Prefix Limit     : No Limit             Passive          : Disabled
Next Hop Self    : Disabled             Aggregator ID 0  : Disabled
Remove Private   : Disabled             Damping          : Enabled
Import Policy    : None Specified / Inherited
Export Policy    : None Specified / Inherited
Hold Time        : 90                   Keep Alive       : 30
Cluster Id       : None                 Client Reflect   : Enabled
NLRI             : Unicast              Preference       : 170
TTL Security     : Enabled              Min TTL Value    : 10
Graceful Restart : Enabled              Stale Routes Time: 360
Auth key chain   : n/a
Bfd Enabled      : Disabled
 
List of Peers
- 44.44.44.44 :
 
Total Peers      : 1                    Established      : 0
-------------------------------------------------------------------------------
Peer Groups : 1
===============================================================================
*A:ALU-12#
Table 137:  Show BGP Group Output Fields  

Label

Description

Group

The BGP group name

Group Type

No Type: peer type not configured

External: peer type configured as external BGP peers

Internal: peer type configured as internal BGP peers

State

Disabled: the BGP peer group has been operationally disabled

Down: the BGP peer group is operationally inactive

Up: the BGP peer group is operationally active

Peer AS

The configured or inherited peer AS for the specified peer group

Local AS

The configured or inherited local AS for the specified peer group

Local Address

The configured or inherited local address for originating peering for the specified peer group

Loop Detect

The configured or inherited loop detect setting for the specified peer group

Connect Retry

The configured or inherited connect retry timer value

Authentication

None: no authentication is configured

MD5: MD5 authentication is configured

Local Pref

The configured or inherited local preference value

MED Out

The configured or inherited MED value that is assigned to advertised routes

Multihop

The maximum number of router hops a BGP connection can traverse

AS Override

The setting of the AS override

Min Route Advt.

The minimum amount of time that must pass between route updates for the same IP prefix

Min AS Originate

The minimum amount of time that must pass between updates for a route originated by the local router

Prefix Limit

No Limit: no route limit assigned to the BGP peer group

1 — 4294967295: the maximum number of routes BGP can learn from a peer

Passive

Disabled: BGP attempts to establish a BGP connection with a neighbor in the specified peer group

Enabled: BGP will not actively attempt to establish a BGP connection with a neighbor in the specified peer group

Next Hop Self

Disabled: BGP is not configured to send only its own IP address as the BGP next hop in route updates to neighbors in the peer group

Enabled: BGP sends only its own IP address as the BGP next hop in route updates to neighbors in the specified peer group

Aggregator ID 0

Disabled: BGP is not configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates sent to the neighbor in the peer group

Enabled: BGP is configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates sent to the neighbor in the peer group

Remove Private

Disabled: BGP will not remove all private AS numbers from the AS path attribute in updates sent to the neighbor in the peer group

Enabled: BGP removes all private AS numbers from the AS path attribute in updates sent to the neighbor in the peer group

Damping

Disabled: the peer group is configured not to dampen route flaps

Enabled: the peer group is configured to dampen route flaps

Import Policy

The configured import policies for the peer group

Export Policy

The configured export policies for the peer group

Hold Time

The configured hold time setting

Keep Alive

The configured keepalive setting

Cluster Id

The configured route reflector cluster ID

None: No cluster ID has been configured

Client Reflect

Disabled: the BGP route reflector will not reflect routes to this neighbor

Enabled: the BGP route reflector is configured to reflect routes to this neighbor

NLRI

The type of network layer reachability information that the specified peer group can accept

Unicast: IPv4 unicast routing information can be carried

Preference

The configured route preference value for the peer group

TTL Security

Enabled: TTL security is enabled

Disabled: TTL security is disabled

Min TTL Value

The minimum TTL value configured for the peer

Graceful Restart

The state of graceful restart

Stale Routes Time

The length of time that stale routes are kept in the route table

Auth key chain

The value for the authentication key chain

Bfd Enabled

Enabled: BFD is enabled

Disabled: BFD is disabled

List of Peers

A list of BGP peers configured under the peer group

Total Peers

The total number of peers configured under the peer group

Established

The total number of peers that are in an established state

Peer Groups

The number of peer groups

neighbor

Syntax 
neighbor [ip-address [detail]]
neighbor [as-number [detail]]
neighbor ip-address [family [type mvpn-type]] filter1 [brief]
neighbor ip-address [family] filter2
neighbor as-number [family] filter2
neighbor ip-address orf [filter3]
neighbor ip-address graceful-restart
Context 
show>router>bgp
Description 

This command displays BGP neighbor information. This command can be entered with or without any parameters.

When this command is issued without any parameters, information about all BGP peers displays.

When the command is issued with a specific IP address or ASN, information regarding only that specific peer or peers with the same AS displays.

Note:

This information is not available when using SNMP.

Parameters 
ip-address—
the specified IP address for which to display information
Values—
ipv4-address:        a.b.c.d (host bits must be 0)
ipv6-address:          x:x:x:x:x:x:x:x[-interface]                                 x:x:x:x:x:x:d.d.d.d[-interface]                                     interface - 32 chars max,                                     mandatory for link local addresses                                 x: [0..FFFF]H                                 d: [0..255]D
detail—
displays detailed information
as-number—
the specified AS number for which to display information
Values—
1 to 4294967295
family—
the type of routing information to be distributed by this peer group
Values—
ipv4 — displays only those BGP peers that have the IPv4 family enabled and not those capable of exchanging VPN-IPv4 routes
vpn-ipv4 — displays only those BGP peers that have the VPN-IPv4 family enabled
mvpn-ipv4 — displays only those BGP peers that have the MVPN-IPv4 family enabled
type—
displays information for the MVPN type
mvpn-type—
the specified MVPN type for which to display information
Values—
intra-ad | inter-ad | spmsi-ad | leaf-ad | source-ad | shared-join | source-join
filter1 —
displays information for the specified IP address
Values—
received-routes — displays the number of routes received from this peer
advertised-routes — displays the number of routes advertised by this peer
filter2—
displays information for the specified AS number
Values—
history — displays statistics for dampened routes
suppressed — displays the number of paths from this peer that have been suppressed by damping
Note:

When either received-routes or advertised-routes is specified, the routes that are received from or sent to the specified peer are listed. When either history or suppressed is specified, the routes that are learned from those peers that either have a history or are suppressed are listed.

brief—
displays information in a brief format. This parameter is only supported with received-routes and advertised-routes.
orf—
displays outbound route filtering for the BGP instance. ORF (Outbound Route Filtering) is used to inform a neighbor of targets (using target-list) that it is willing to receive. This mechanism helps lessen the update exchanges between neighbors and saves CPU cycles to process routes that could have been received from the neighbor only to be dropped/ignored.
filter3—
displays path information for the specified IP address
Values—
send — displays the number of paths sent to this peer
receive — displays the number of paths received from this peer
graceful-restart—
displays neighbors configured for graceful restart
Output 

The following outputs are examples of BGP neighbor information:

Sample Output - BGP Neighbor (standard and detailed)
*A:ALU-12# show router 6 bgp neighbor
===============================================================================
BGP Neighbor
===============================================================================
-------------------------------------------------------------------------------
Peer  : 10.10.10.12
Group : ibgp_group
-------------------------------------------------------------------------------
Peer AS              : 65000            Peer Port            : 49550
Peer Address         : 10.10.10.12
Local AS             : 65000            Local Port           : 179
Local Address        : 10.10.10.1
Peer Type            : Internal
State                : Established      Last State           : Established
Last Event           : recvKeepAlive
Last Error           : Cease
Local Family         : IPv4 VPN-IPv4
Remote Family        : IPv4 VPN-IPv4
Hold Time            : 90               Keep Alive           : 30
Active Hold Time     : 90               Active Keep Alive    : 30
Cluster Id           : None
Preference           : 170              Num of Flaps         : 0
Recd. Paths          : 19
IPv4 Recd. Prefixes  : 600              IPv4 Active Prefixes : 563
IPv4 Suppressed Pfxs : 0                VPN-IPv4 Suppr. Pfxs : 0
VPN-IPv4 Recd. Pfxs  : 8656             VPN-IPv4 Active Pfxs : 8656
Mc IPv4 Recd. Pfxs.  : 0                Mc IPv4 Active Pfxs. : 0
Mc IPv4 Suppr. Pfxs  : 0
Input Queue          : 0                Output Queue         : 0
i/p Messages         : 1141             o/p Messages         : 1041
i/p Octets           : 449029           o/p Octets           : 163814
i/p Updates          : 151              o/p Updates          : 50
TTL Security         : Enabled          Min TTL Value        : 10
Graceful Restart     : Disabled         Stale Routes Time    : n/a
Advertise Inactive   : Disabled         Peer Tracking        : Disabled
Auth key chain       : n/a
Bfd Enabled          : Enabled
Local Capability     : RouteRefresh MP-BGP
Remote Capability    : RouteRefresh MP-BGP
Import Policy        : None Specified / Inherited
Export Policy        : stmt1
-------------------------------------------------------------------------------
Neighbors : 1
===============================================================================
*A:ALU-12>#
*A:ALU-12# show router 6 bgp neighbor 10.10.10.12 detail
===============================================================================
BGP Neighbor
===============================================================================
-------------------------------------------------------------------------------
Peer  : 10.10.10.12
Group : iBGP
-------------------------------------------------------------------------------
Peer AS              : 65000            Peer Port            : 49550
Peer Address         : 10.10.10.12
Local AS             : 65000            Local Port           : 179
Local Address        : 10.10.10.1
Peer Type            : Internal
State                : Established      Last State           : Established
Last Event           : recvKeepAlive
Last Error           : Cease
Local Family         : IPv4 VPN-IPv4
Remote Family        : IPv4 VPN-IPv4
Connect Retry        : 120              Local Pref.          : 70
Min Route Advt.      : 30               Min AS Orig.         : 15
Multihop             : 0 (Default)      AS Override          : Disabled
Damping              : Disabled         Loop Detect          : Ignore
MED Out              : No MED Out       Authentication       : None
Next Hop Self        : Disabled         AggregatorID Zero    : Disabled
Remove Private       : Disabled         Passive              : Disabled
Peer Identifier      : 10.10.10.12      Fsm Est. Trans       : 1
Fsm Est. Time        : 22h42m46s        InUpd Elap. Time     : 22h54m31s
Prefix Limit         : No Limit
Hold Time            : 90               Keep Alive           : 30
Active Hold Time     : 90               Active Keep Alive    : 30
Cluster Id           : None             Client Reflect       : Disabled
Preference           : 170              Num of Flaps         : 0
Recd. Paths          : 19
IPv4 Recd. Prefixes  : 600              IPv4 Active Prefixes : 563
IPv4 Suppressed Pfxs : 0                VPN-IPv4 Suppr. Pfxs : 0
VPN-IPv4 Recd. Pfxs  : 8656             VPN-IPv4 Active Pfxs : 8656
Mc IPv4 Recd. Pfxs.  : 0                Mc IPv4 Active Pfxs. : 0
Mc IPv4 Suppr. Pfxs  : 0
Input Queue          : 0                Output Queue         : 0
i/p Messages         : 2881             o/p Messages         : 2777
i/p Octets           : 482089           o/p Octets           : 196798
i/p Updates          : 151              o/p Updates          : 50
TTL Security         : Enabled          Min TTL Value        : 10
Graceful Restart     : Disabled         Stale Routes Time    : n/a
Advertise Inactive   : Disabled         Peer Tracking        : Disabled
Auth key chain       : n/a
Bfd Enabled          : Enabled
Local Capability     : RouteRefresh MP-BGP
Remote Capability    : RouteRefresh MP-BGP
Import Policy        : None Specified / Inherited
Export Policy        : stmt1
-------------------------------------------------------------------------------
Neighbors : 1
===============================================================================
*A:ALU-12# 
*A:ALU-12# show router 6 bgp neighbor 10.10.10.11 orf
===============================================================================
BGP Neighbor 10.0.0.11 ORF
===============================================================================
Send List (Automatic)
-------------------------------------------------------------------------------
target:65535:10
target:65535:20
===============================================================================
*A:ALU-12# 
*A:ALU-12# show router 6 bgp neighbor 10.10.10.1 orf
===============================================================================
BGP Neighbor 10.0.0.1 ORF
===============================================================================
Receive List
-------------------------------------------------------------------------------
target:65535:10
target:65535:20
===============================================================================
*A:ALU-12# 
Table 138:  Show BGP Neighbor (Standard and Detailed) Output Fields  

Label

Description

Peer

The IP address of the configured BGP peer

Group

The BGP peer group to which this peer is assigned

Peer AS

The configured or inherited peer AS for the peer group

Peer Address

The configured address for the BGP peer

Peer Port

The TCP port number used on the far-end system

Local AS

The configured or inherited local AS for the peer group

Local Address

The configured or inherited local address for originating peering for the peer group

Local Port

The TCP port number used on the local system

Peer Type

External: peer type configured as external BGP peers

Internal: peer type configured as internal BGP peers

State

Idle: The BGP peer is not accepting connections

Active: BGP is listening for and accepting TCP connections from this peer

Connect: BGP is attempting to establish a TCP connection with this peer

Open Sent: BGP has sent an OPEN message to the peer and is waiting for an OPEN message from the peer

Open Confirm: BGP has received a valid OPEN message from the peer and is awaiting a KEEPALIVE or NOTIFICATION

Established: BGP has successfully established a peering session and is exchanging routing information

Last State

Idle: The BGP peer is not accepting connections

Active: BGP is listening for and accepting TCP connections from this peer

Connect: BGP is attempting to establish a TCP connections with this peer

Open Sent: BGP has sent an OPEN message to the peer and is waiting for an OPEN message from the peer

Open Confirm: BGP has received a valid OPEN message from the peer and is awaiting a KEEPALIVE or NOTIFICATION

Last Event

start: BGP has initialized the BGP neighbor

stop: BGP has disabled the BGP neighbor

open: BGP transport connection is opened

close: BGP transport connection is closed

openFail: BGP transport connection failed to open

error: BGP transport connection error

connectRetry: the connect retry timer expired

holdTime: the hold time timer expired

keepAlive: the keepalive timer expired

recvOpen: BGP has received an OPEN message

revKeepalive: BGP has received a KEEPALIVE message

recvUpdate: BGP has received an UPDATE message

recvNotify: BGP has received a NOTIFICATION message

None: no events have occurred

Last Error

The last BGP error and subcode to occur on the BGP neighbor

Local Family

The configured local family value

Remote Family

The configured remote family value

Connect Retry

The configured or inherited connect retry timer value

Local Pref.

The configured or inherited local preference value

Min Route Advt.

The minimum amount of time that must pass between route updates for the same IP prefix

Min AS Originate

The minimum amount of time that must pass between updates for a route originated by the local router

Multihop

The maximum number of router hops a BGP connection can traverse

Damping

Disabled: the BGP neighbor is configured not to dampen route flaps

Enabled: the BGP neighbor is configured to dampen route flaps

Loop Detect

Ignore: The BGP neighbor is configured to ignore routes with an AS loop

Drop: The BGP neighbor is configured to drop the BGP peering if an AS loop is detected

Off: AS loop detection is disabled for the neighbor

MED Out

The configured or inherited MED value that is assigned to advertised routes

Authentication

None: no authentication is configured

MD5: MD5 authentication is configured

Next Hop Self

Disabled: BGP is not configured to send only its own IP address as the BGP next hop in route updates to the specified neighbor

Enabled: BGP will send only its own IP address as the BGP next hop in route updates to the neighbor

AggregatorID Zero

Disabled: the BGP neighbor is not configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates

Enabled: the BGP neighbor is configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates

Remove Private

Disabled: BGP will not remove all private AS numbers from the AS path attribute in updates sent to the specified neighbor

Enabled: BGP will remove all private AS numbers from the AS path attribute in updates sent to the specified neighbor

Passive

Disabled: BGP will actively attempt to establish a BGP connection with the specified neighbor

Enabled: BGP will not actively attempt to establish a BGP connection with the specified neighbor

Peer Identifier

The IP identifier for the peer router

Prefix Limit

No Limit: no route limit assigned to the BGP peer group

1 — 4294967295: the maximum number of routes BGP can learn from a peer

Hold Time

The configured hold time setting

Keep Alive

The configured keepalive setting

Active Hold Time

The negotiated hold time, if the BGP neighbor is in an established state

Active Keep Alive

The negotiated keepalive time, if the BGP neighbor is in an established state

Cluster Id

The configured route reflector cluster ID

None: no cluster ID has been configured

Client Reflect

Disabled: The BGP route reflector is configured not to reflect routes to this neighbor

Enabled: The BGP route reflector is configured to reflect routes to this neighbor

Preference

The configured route preference value for the peer group

Num of Flaps

The number of route flaps in the neighbor connection

Recd. Prefixes

The number of routes received from the BGP neighbor

Recd. Paths

The number of unique sets of path attributes received from the BGP neighbor

IPv4 Recd. Prefixes

The number of unique sets of IPv4 path attributes received from the BGP neighbor

IPv4 Active Prefixes

The number of IPv4 routes received from the BGP neighbor and active in the forwarding table

IPv4 Suppressed Pfxs

The number of unique sets of IPv4 path attributes received from the BGP neighbor and suppressed due to route damping

VPN-IPv4 Suppr. Pfxs

The number of unique sets of VPN-IPv4 path attributes received from the BGP neighbor and suppressed due to route damping

VPN-IPv4 Recd. Pfxs

The number of unique sets of VPN-IPv4 path attributes received from the BGP neighbor

VPN-IPv4 Active Pfxs

The number of VPN-IPv4 routes received from the BGP neighbor and active in the forwarding table

Mc IPv4 Recd. Pfxs

The number of unique sets of multiclass IPv4 path attributes received from the BGP neighbor

Mc IPv4 Active Pfxs

The number of multiclass IPv4 routes received from the BGP neighbor and active in the forwarding table

Mc IPv4 Suppr. Pfxs

The number of unique sets of multiclass IPv4 path attributes received from the BGP neighbor and suppressed due to route damping

Input Queue

The number of BGP messages to be processed

Output Queue

The number of BGP messages to be transmitted

i/p Messages

The total number of packets received from the BGP neighbor

o/p Messages

The total number of packets sent to the BGP neighbor

i/p Octets

The total number of octets received from the BGP neighbor

o/p Octets

The total number of octets sent to the BGP neighbor

i/p Updates

The total number of updates received from the BGP neighbor

o/p Updates

The total number of updates sent to the BGP neighbor

TTL Security

Enabled: TTL security is enabled

Disabled: TTL security is disabled

Min TTL Value

The minimum TTL value configured for the peer

Graceful Restart

The state of graceful restart

Stale Routes Time

The length of time that stale routes are kept in the route table

Auth key chain

The value for the authentication key chain

Bfd Enabled

Enabled: BFD is enabled

Disabled: BFD is disabled

Local Capability

The capability of the local BGP speaker; for example, route refresh, MP-BGP, ORF

Remote Capability

The capability of the remote BGP peer; for example, route refresh, MP-BGP, ORF

Export Policy

The configured export policies for the peer group

Import Policy

The configured import policies for the peer group

Sample Output - BGP Neighbor (advertised-routes and received-routes)
*A:ALU-12# show router 6 bgp neighbor 44.44.44.44 advertised-routes
===============================================================================
 BGP Router ID : 55.55.55.55       AS : 1       Local AS : 1
===============================================================================
 Legend -
 Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
 Origin codes  : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP IPv4 Routes
===============================================================================
Flag  Network                                           LocalPref   MED
      Nexthop                                                       VPN Label
      As-Path
-------------------------------------------------------------------------------
? 10.0.0.02/32 100 none
10.0.0.16  -
No As-Path
? 10.0.6.04/24 100 none 
10.0.0.16-
No As-Path
-------------------------------------------------------------------------------
Routes : 2 
===============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp neighbor 10.10.10.12 advertised-routes brief
===============================================================================
 BGP Router ID : 10.10.10.1        AS : 65000   Local AS : 65000
===============================================================================
 Legend -
 Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
 Origin codes  : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP IPv4 Routes
===============================================================================
Flag  Network
-------------------------------------------------------------------------------
?     10.10.10.1/32
?     12.12.1.0/24
?     20.0.0.0/24
?     21.0.0.0/24
?     88.88.1.0/24
-------------------------------------------------------------------------------
Routes : 5 
===============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp neighbor 44.44.44.44 received-routes
===============================================================================
 BGP Router ID : 55.55.55.55       AS : 1       Local AS : 1
===============================================================================
 Legend -
 Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
 Origin codes  : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP IPv4 Routes
===============================================================================
Flag  Network                                           LocalPref   MED
      Nexthop                                                       VPN Label
      As-Path
-------------------------------------------------------------------------------
? 10.0.0.16/32 100 none
10.0.0.16  -
No As-Path
? 10.0.6.0/24  100 none 
10.0.0.16-
No As-Path
? 10.0.8.0/24  100 none 
10.0.0.16-
No As-Path
? 10.0.12.0/24 100 none 
10.0.0.16-
No As-Path
-------------------------------------------------------------------------------
Routes : 4 
===============================================================================
*A:ALU-12#
Table 139:  Show BGP Neighbor (Advertised-Routes and Received-Routes) Output Fields 

Label

Description

BGP Router ID

The local BGP router ID

AS

The configured autonomous system number

Local AS

The configured local AS setting. If not configured, then it is the same value as the AS.

Flag/Flags

Legend:

Status codes:

u - used

s - suppressed

h - history

d - decayed

* - valid

If an * is not present, then the status is invalid

Origin codes:

i - IGP

e - EGP

? - incomplete

> - best

Network

The route IP prefix and mask length for the route

Next Hop

The BGP next hop for the route

LocalPref

The BGP local preference path attribute for the route

MED

The BGP Multi-Exit Discriminator (MED) path attribute for the route

AS-Path

The BGP AS path for the route

Sample Output - BGP Neighbor (graceful restart)
*A:ALU-12# show router 6 bgp neighbor 20.10.120.44 graceful-restart
===============================================================================
BGP Neighbor 20.10.120.44 Graceful Restart
===============================================================================
Graceful Restart locally configured for peer  : Enabled
Peer's Graceful Restart feature               : Enabled
NLRI(s) that peer supports restart for        : IPv4-Unicast IPv4-MPLS IPv4-VPN
NLRI(s) that peer saved forwarding for        : IPv4-Unicast IPv4-MPLS IPv4-VPN
NLRI(s) that restart is negotiated for        : None
NLRI(s) of received end-of-rib markers        : IPv4-Unicast
NLRI(s) of all end-of-rib markers sent        : IPv4-Unicast
Restart time locally configured for peer      : 120 seconds
Restart time requested by the peer            : 390 seconds
Time stale routes from peer are kept for      : 360 seconds
Graceful restart status on the peer           : Not currently being helped
Number of Restarts                            : 328
Last Restart at                               : 08/20/2006 12:22:06
===============================================================================
*A:ALU-12#
Table 140:  BGP Neighbor (Graceful Restart) Output Fields 

Label

Description

BGP Neighbor

The IP address of the BGP neighbor

Graceful Restart locally configured for peer

The configured state of graceful restart for the local router

Peer's Graceful Restart feature

The configured state of graceful restart for the peer router

NLRI(s) that peer supports restart for

The families supported by the peer router for graceful restart

NLRI(s) that peer saved forwarding for

The families for which the peer router continued to forward packets after graceful restart

NLRI(s) that restart is negotiated for

The families that negotiate restart during graceful restart

NLRI(s) of received end-of-rib markers

The families for which end-of-RIB markers have been received

NLRI(s) of all end-of-rib markers sent

The families for which end-of-RIB markers have been sent

Restart time locally configured for peer

The length of time configured on the local router for the peer router’s graceful restart

Restart time requested by the peer

The length of time requested by the peer router for graceful restart

Time stale routes from peer are kept for

The length of time that the local router continues to support stale routes

Graceful restart status on the peer

The status of graceful restart on the peer router

Number of Restarts

The number of restarts since graceful restart is enabled between peers

Last Restart at

The local time of the last graceful restart

next-hop

Syntax 
next-hop [family] [ip-address] [detail]
Context 
show>router>bgp
Description 

This command displays BGP next-hop information.

Parameters 
family—
the type of routing information to be distributed by the BGP instance
Values—
ipv4 — displays only those BGP peers that have the IPv4 family enabled and not those capable of exchanging VPN-IPv4 routes
vpn-ipv4 — displays only those BGP peers that have the VPN-IPv4 family enabled
mvpn-ipv4 — displays only those BGP peers that have the MVPN-IPv4 family enabled
ip-address—
displays the next hop information for the specified IP address
Values—
ipv4-address: a.b.c.d
ipv6-address:          x:x:x:x:x:x:x:x[-interface]                                 x:x:x:x:x:x:d.d.d.d[-interface]                                     interface - 32 chars max,                                     mandatory for link local addresses                                 x: [0..FFFF]H                                 d: [0..255]D
detail—
displays the more detailed version of the output
Output 

The following output is an example of BGP next-hop information, and Table 141 describes the fields.

Sample Output
*A:ALU-12# show router 6 bgp next-hop
===============================================================================
 BGP Router ID : 10.10.10.1        AS : 65000   Local AS : 65000
===============================================================================
===============================================================================
BGP Next Hop
===============================================================================
Next Hop                                                        Pref Owner
   Resolving Prefix                                                  Metric
   Resolved Next Hop                                                 Ref. Count
-------------------------------------------------------------------------------
10.10.10.12                                                     15   ISIS
   0.0.0.0/0                                                         10
   88.88.1.2                                                         592
10.10.10.12                                                     15   ISIS
   0.0.0.0/0                                                         10
   88.88.2.2                                                         592
27.0.0.1                                                        15   ISIS
   27.0.0.0/24                                                       20
   88.88.1.2                                                         8
27.0.0.1                                                        15   ISIS
   27.0.0.0/24                                                       20
   88.88.2.2                                                         8
-------------------------------------------------------------------------------
Next Hops : 2
===============================================================================
*A:ALU-12# 
*A:ALU-12# show router 6 bgp next-hop 27.0.0.1
===============================================================================
 BGP Router ID : 10.10.10.1        AS : 65000   Local AS : 65000
===============================================================================
===============================================================================
BGP Next Hop
===============================================================================
Next Hop                                                        Pref Owner
   Resolving Prefix                                                  Metric
   Resolved Next Hop                                                 Ref. Count
-------------------------------------------------------------------------------
27.0.0.1                                                        15   ISIS
   27.0.0.0/24                                                       20
   88.88.1.2                                                         8
27.0.0.1                                                        15   ISIS
   27.0.0.0/24                                                       20
   88.88.2.2                                                         8
-------------------------------------------------------------------------------
Next Hops : 1
===============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp next-hop 27.0.0.1 detail
===============================================================================
 BGP Router ID : 10.10.10.1        AS : 65000   Local AS : 65000
===============================================================================
===============================================================================
BGP Next Hop
===============================================================================
Next Hop: 27.0.0.1
-------------------------------------------------------------------------------
Resolving Prefix : 27.0.0.0/24
Preference       : 15                   Metric           : 20
Reference Count  : 8                    Owner            : ISIS
Resolved Next Hop: 88.88.1.2
Egress Label     : N/A
Resolved Next Hop: 88.88.2.2
Egress Label     : N/A
Resolved Next Hop: 88.88.3.2
Egress Label     : N/A
-------------------------------------------------------------------------------
Next Hops : 1
===============================================================================
*A:ALU-12>#
Table 141:  Show BGP Next-Hop Output Fields 

Label

Description

BGP Router ID

The local BGP router ID

AS

The configured autonomous system number

Local AS

The configured local AS setting. If not configured, then the value is the same as the AS.

Next Hop

The next-hop address

Resolving Prefix

The prefix of the best next hop

Pref: Preference

The BGP preference attribute for the routes

Metric

The metric derived from the IGP for a particular next hop

Reference Count

The number of routes using the resolving prefix

Owner

The routing protocol used to derive the best next hop

Resolved Next Hop

The IP address of the next hop

Egress Label

The VPN label used for VPN-IPv4 data

Next Hops

The number of next hops

paths

Syntax 
paths
Context 
show>router>bgp
Description 

This command displays a summary of BGP path attributes.

Output 

The following output is an example of BGP path information, and Table 142 describes the fields.

Sample Output
*A:ALU-12# show router 6 bgp paths
===============================================================================
 BGP Router ID : 55.55.55.55 AS : 65000   Local AS : 65000
===============================================================================
===============================================================================
BGP Paths
===============================================================================
Path: No As-Path
-------------------------------------------------------------------------------
Next Hop         : 44.44.10.12
Origin           : Incomplete           Segments         : 0
MED              : None                 Local Preference : 4294967295
Refs             : 1080                 ASes             : 0
Flags            : IBGP-learned
-------------------------------------------------------------------------------
Path: No As-Path
-------------------------------------------------------------------------------
Next Hop         : 88.88.1.2
Origin           : IGP                  Segments         : 0
MED              : 10                   Local Preference : None
Refs             : 4                    ASes             : 0
Flags            : Imported
-------------------------------------------------------------------------------
Path: No As-Path
-------------------------------------------------------------------------------
Next Hop         : 44.44.10.21
Origin           : IGP                  Segments         : 0
MED              : None                 Local Preference : 100
Refs             : 1082                 ASes             : 0
Flags            : IBGP-learned
Cluster          : 10.10.10.12
Originator Id    : 10.10.10.21
-------------------------------------------------------------------------------
Paths : 3
===============================================================================
*A:ALU-12# 
Table 142:  Show BGP Path Output Fields  

Label

Description

BGP Router ID

The local BGP router ID

AS

The configured autonomous system number

Local AS

The configured local AS setting. If not configured, then the value is the same as the AS.

Path

The AS path attribute

Next Hop

The advertised BGP next hop

Origin

EGP: the NLRI is learned by an EGP protocol

IGP: the NLRI is interior to the originating AS

Incomplete: NLRI was learned another way

Segments

The number of segments in the AS path attribute

MED

The Multi-Exit Discriminator value

Local Preference

The local preference value. This value is used if the BGP route arrives from a BGP peer without the Local Pref attribute set. It is overridden by any value set via a route policy.

Refs

The number of routes using a specified set of path attributes

ASes

The number of autonomous system numbers in the AS path attribute

Flags

IBGP-learned: path attributes learned by an IBGP peering

Community

The BGP community attribute list

Cluster List

The route reflector cluster list

Originator ID

The originator ID path attribute value

routes

Syntax 
routes [family] [brief]
routes [family] prefix [detail | longer | hunt [brief]]
routes family [prefix] [detail | longer | hunt [brief]]
routes vpn-ipv4 prefix [rd rd] [detail | longer | hunt [brief]]
routes [family [type mvpn-type]] community comm-id
routes [family [type mvpn-type]] aspath-regex reg-ex
routes mvpn-ipv4 type mvpn-type {rd rd | originator-ip ip-address | source-ip ip-address | group-ip ip-address | source-as as-number} [hunt | detail]
Context 
show>router>bgp
Description 

This command displays BGP route information.

When this command is issued without any parameters, the entire BGP routing table displays.

When this command is issued with an IP prefix/mask or IP address, the best match for the parameter displays.

Parameters 
family—
the type of routing information to be distributed by the BGP instance
Values—
ipv4 — displays only those BGP peers that have the IPv4 family enabled and not those capable of exchanging VPN-IPv4 routes
vpn-ipv4 — displays the BGP peers that are VPN-IPv4 capable
ipv6 — displays only those BGP peers that have the IPv6 family enabled and not those capable of exchanging VPN-IPv6 routes
vpn-ipv6 — displays the BGP peers that are VPN-IPv6 capable
mvpn-ipv4 — displays the BGP peers that are MVPN-IPv4 capable
prefix—
the type of routing information to display
Values—
rd | [rd:]ip-prefix[/ip-prefix-length]
where
  rd:  ip-addr:comm-val | 2byte-asnumber:ext-comm-val |          4-byte-asnumber:comm-val
where
  ip-addr:                        a.b.c.d
  comm-val:                    0 to 65535
  2-byte-asnumber:         0 to 65535
  ext-comm-val:               0 to 4294967295
  4-byte-asnumber:          asn1.asn2 (two 2-byte pieces)
                                        asn1:     1 to 65535
                                        asn2:     0 to 65535
  ipv4-prefix:                    a.b.c.d
  ipv4-prefix-length:         0 to 32
brief—
provides a summarized display of the set of peers to which a BGP route is advertised
hunt—
displays entries for the specified route in the RIB-In, RIB-Out, and RTM
longer—
displays the specified route and subsets of the route
detail—
displays the more detailed version of the output
rd—
see prefix
vpn-ipv4—
see family
vpn-ipv6—
see family
mvpn-ipv4—
see family
mvpn-type—
the specified MVPN type for which to display information
Values—
intra-ad | inter-ad | spmsi-ad | leaf-ad | source-ad | shared-join | source-join
comm-id—
displays all routes with the specified BGP community
Values—

comm-id

as-number1:comm-val1 | ext-comm | well-known-comm

ext-comm

type:{ip-address:comm-val1 | as-number1:comm-val2 | as-number2:comm-val1}

as-number1

0 to 65535

comm-val1

0 to 65535

type

target, origin (keywords)

ip-address:

a.b.c.d

comm-val2

0 to 4294967295

as-number2 

0 to 4294967295

well-known-comm

null | no-export | no-export-subconfed | no-advertise (keywords)

reg-ex—
displays all routes with an AS path matching the specified regular expression reg-ex, 32 characters maximum
originator-ip ip-address
filters BGP MVPN routes by the originating router's IP address that is found in the intra-AD (auto-discovery) MVPN routes
source-ip ip-address
filters BGP MVPN routes by the source IP address that is found in the source-join, source-AD, or S-PMSI-AD MVPN routes
group-ip ip-address
filters BGP MVPN routes by the multicast group IP address that is found in the source-join, source-AD, or S-PMSI-AD MVPN routes
source-as as-number
filters BGP MVPN routes by source-AS (autonomous system) extended community attribute
Output 

The following output is an example of BGP route information, and Table 143 describes the fields.

Sample Output
*A:ALU-12# show router 6 bgp routes
===============================================================================
 BGP Router ID : 10.10.10.1        AS : 65000   Local AS : 65000
===============================================================================
 Legend -
 Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
 Origin codes  : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP IPv4 Routes
===============================================================================
Flag  Network                                           LocalPref   MED
      Nexthop                                                       VPN Label
      As-Path
-------------------------------------------------------------------------------
u*>?  10.10.10.12/32                                    100         None
      10.10.10.12                                                   -
      No As-Path
 
u*>?  11.11.1.0/24                                      100         None
      10.10.10.12                                                   -
      No As-Path
 
*?    23.0.0.0/24                                       100         None
      10.10.10.12                                                   -
      No As-Path
 
*?    24.0.0.0/24                                       100         None
      10.10.10.12                                                   -
      No As-Path
-------------------------------------------------------------------------------
Routes : 4
===============================================================================
*A:ALU-12# show router 6 bgp routes brief
===============================================================================
 BGP Router ID : 10.10.10.1        AS : 65000   Local AS : 65000
===============================================================================
 Legend -
 Status codes  : u - used, s - suppressed, h - history, d - decayed, * - valid
 Origin codes  : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP IPv4 Routes
===============================================================================
Flag  Network
-------------------------------------------------------------------------------
u*>?  10.10.10.12/32
u*>?  11.11.1.0/24
*?    23.0.0.0/24
*?    24.0.0.0/24
-------------------------------------------------------------------------------
Routes : 4
===============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp routes 13.1.0.0/24 detail
===============================================================================
BGP Router ID : 10.128.0.161 AS : 65535 Local AS : 65535
===============================================================================
Legend - 
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP Routes
===============================================================================
Original Attributes
Network        : 13.1.0.0/24         Nexthop : 10.20.1.20
Route Dist.    : 10070:100           VPN Label : 152784
From           : 10.20.1.20          Res. Nexthop: 10.130.0.2
Local Pref.    : 100
Aggregator AS  : none                Aggregator: none
Atomic Aggr.   : Not Atomic          MED : none
Community      : target:10070:1
Cluster        : No Cluster Members
Originator Id  : None                Peer Router Id: 10.20.1.20
Flags          : Used Valid Best IGP
AS-Path        : 10070 {14730}
 
Modified Attributes
 
Network        : 13.1.0.0/24         Nexthop : 10.20.1.20
Route Dist.    : 10001:100           VPN Label : 152560
From           : 10.20.1.20          Res. Nexthop : 10.130.0.2
Local Pref.    : 100
Aggregator AS  : none                Aggregator: none
Atomic Aggr.   : Not Atomic          MED : none
Community      : target:10001:1
Cluster        : No Cluster Members
Originator Id  : None                Peer Router Id: 10.20.1.20
Flags          : Used Valid Best IGP
AS-Path        : No As-Path
-------------------------------------------------------------------------------
===============================================================================
*A:ALU-12# show router 6 bgp routes 100.0.0.0/30 hunt
===============================================================================
BGP Router ID : 10.20.1.1 AS : 100Local AS : 100
===============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP Routes
===============================================================================
RIB In Entries
-------------------------------------------------------------------------------
Network        : 100.0.0.0/30
Nexthop        : 10.20.1.2
Route Dist.    : 10.20.1.2:1         VPN Label: 131070
From           : 10.20.1.2
Res. Nexthop   : 10.10.1.2
Local Pref.    : 100                 Interface Name: to-sr7
Aggregator AS  : none                Aggregator: none
Atomic Aggr.   : Not Atomic          MED: none
Community      : target:10.20.1.2:1
Cluster        : No Cluster Members
Originator Id  : None                Peer Router Id: 10.20.1.2
Flags          : Used Valid Best IGP
AS-Path        : No As-Path
VPRN Imported  : 1 2 10 12
-------------------------------------------------------------------------------
RIB Out Entries
-------------------------------------------------------------------------------
Routes : 1
===============================================================================
*A:ALU-12*
Table 143:  Show BGP Route Output Fields 

Label

Description

BGP Router ID

The local BGP router ID

AS

The configured autonomous system number

Local AS

The configured local AS setting. If not configured, then the value is the same as the AS.

Flag/Flags

Legend:

Status codes:

u - used

s - suppressed

h - history

d - decayed

* - valid

If an * is not present, then the status is invalid

Origin codes:

i - IGP

e - EGP

? - incomplete

> - best

Network

The IP prefix and mask length

Nexthop

The BGP next hop

AS-Path

The BGP AS path attribute

Local Pref.

The local preference value. This value is used if the BGP route arrives from a BGP peer without the Local Pref attribute set. It is overridden by any value set via a route policy.

MED

The MED metric value

none: MED metrics are present

VPN Label

 The label generated by the PE’s label manager

Original Attributes

The received BGP attributes of a route from a peer without any modification from any policy

Modified Attributes

The final BGP attributes of a route after the policies evaluation

Route Dist.

The route distinguisher identifier attached to routes that distinguishes the VPN it belongs to

From

The advertising BGP neighbor’s IP address

Res. Nexthop

The resolved next hop

Aggregator AS

The aggregator AS value

none: aggregator AS attributes are not present

Aggregator

The aggregator attribute value

none: aggregator attributes are not present

Atomic Aggr.

Atomic: the atomic aggregator flag is set

Not Atomic: the atomic aggregator flag is not set

Community

The BGP community attribute list

Cluster

The route reflector cluster list

Originator Id

The originator ID path attribute value

none: the originator ID attribute is not present

Peer Router Id

The router ID of the advertising router

VPRN Imported

The VPRNs where a particular BGP-VPN received route has been imported and installed

summary

Syntax 
summary [all]
summary [family family] [neighbor ip-address]
Context 
show>router>bgp
Description 

This command displays a summary of BGP neighbor information.

If confederations are not configured, that portion of the output will not display.

The “State” field displays the global BGP operational state. The valid values are:

  1. Up — BGP global process is configured and running
  2. Down — BGP global process is administratively shut down and not running
  3. Disabled — BGP global process is operationally disabled. The process must be restarted by the operator.

For example, if a BGP peer is operationally disabled, then the state in the summary table shows the state ‘Disabled’.

Parameters 
all—
displays BGP peers in all instances
family
the type of routing information to be distributed by the BGP instance
Values—
ipv4, vpn-ipv4, ipv6, vpn-ipv6, mvpn-ipv4
ipv4, ipv6 — displays only those BGP peers that have the IPv4 or IPv6 family enabled
vpn-ipv4, vpn-ipv6 — displays the BGP peers that are IPv4-VPN capable or IPv6-VPN capable
mvpn-ipv4 — displays the BGP peers that are MVPN-IPv4 capable
ip-address
clears damping information for entries received from the BGP neighbor
Values—
ipv4-address:          a.b.c.d
ipv6-address:          x:x:x:x:x:x:x:x[-interface]                                 x:x:x:x:x:x:d.d.d.d[-interface]                                     interface - 32 chars max,                                     mandatory for link local addresses                                 x: [0..FFFF]H                                 d: [0..255]D
Output 

The following output is an example of BGP summary information, and Table 144 describes the fields.

Sample Output
*A:ALU-12# show router 6 bgp summary
===============================================================================
 BGP Router ID : 55.55.55.1        AS : 65000   Local AS : 65000
===============================================================================
BGP Admin State         : Up          BGP Oper State              : Up
Total Peer Groups       : 1           Total Peers                 : 1
Total BGP Paths         : 74          Total Path Memory           : 9128
Total IPv4 Remote Rts   : 600         Total IPv4 Rem. Active Rts  : 563
Total Supressed Rts     : 0           Total Hist. Rts             : 0
Total Decay Rts         : 0
Total VPN Peer Groups   : 0           Total VPN Peers             : 0
Total VPN Local Rts     : 8672
Total VPN-IPv4 Rem. Rts : 8656        Total VPN-IPv4 Rem. Act. Rts: 8656
Total VPN Supp. Rts     : 0           Total VPN Hist. Rts         : 0
Total VPN Decay Rts     : 0
===============================================================================
BGP Summary
===============================================================================
Neighbor
                   AS PktRcvd InQ  Up/Down   State|Rcv/Act/Sent (Addr Family)
                      PktSent OutQ
-------------------------------------------------------------------------------
44.44.10.12
                65000     654    0 04h11m01s 600/563/569 (IPv4)
                          557    0           8656/8656/8672 (VpnIPv4)
===============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp summary all
===============================================================================
BGP Summary
===============================================================================
Neighbor
ServiceId          AS PktRcvd InQ  Up/Down   State|Rcv/Act/Sent (Addr Family)
                      PktSent OutQ
-------------------------------------------------------------------------------
44.44.10.12
Def. Instance   65000     662    0 04h14m52s 600/563/569 (IPv4)
                          564    0           8656/8656/8672 (VpnIPv4)
===============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp summary neighbor 44.44.10.12
===============================================================================
 BGP Router ID : 44.44.10.1        AS : 65000   Local AS : 65000
===============================================================================
BGP Admin State         : Up          BGP Oper State              : Up
Total Peer Groups       : 1           Total Peers                 : 1
Total BGP Paths         : 74          Total Path Memory           : 9128
Total IPv4 Remote Rts   : 600         Total IPv4 Rem. Active Rts  : 563
Total Supressed Rts     : 0           Total Hist. Rts             : 0
Total Decay Rts         : 0
 
Total VPN Peer Groups   : 0           Total VPN Peers             : 0
Total VPN Local Rts     : 8672
Total VPN-IPv4 Rem. Rts : 8656        Total VPN-IPv4 Rem. Act. Rts: 8656
Total VPN Supp. Rts     : 0           Total VPN Hist. Rts         : 0
Total VPN Decay Rts     : 0
 
===============================================================================
BGP Summary
===============================================================================
Neighbor
                   AS PktRcvd InQ  Up/Down   State|Rcv/Act/Sent (Addr Family)
                      PktSent OutQ
-------------------------------------------------------------------------------
44.44.10.12
                65000     673    0 04h20m24s 600/563/569 (IPv4)
                          575    0           8656/8656/8672 (VpnIPv4)
===============================================================================
*A:ALU-12#
*A:ALU-12# show router 6 bgp summary family ipv4
===============================================================================
 BGP Router ID : 44.44.10.1        AS : 65000   Local AS : 65000
===============================================================================
BGP Admin State         : Up          BGP Oper State              : Up
Total Peer Groups       : 1           Total Peers                 : 1
Total BGP Paths         : 74          Total Path Memory           : 9128
Total IPv4 Remote Rts   : 600         Total IPv4 Rem. Active Rts  : 563
Total Supressed Rts     : 0           Total Hist. Rts             : 0
Total Decay Rts         : 0
 
Total VPN Peer Groups   : 0           Total VPN Peers             : 0
Total VPN Local Rts     : 8672
Total VPN-IPv4 Rem. Rts : 8656        Total VPN-IPv4 Rem. Act. Rts: 8656
Total VPN Supp. Rts     : 0           Total VPN Hist. Rts         : 0
Total VPN Decay Rts     : 0
===============================================================================
BGP IPv4 Summary
===============================================================================
Neighbor
                   AS PktRcvd PktSent  InQ OutQ Up/Down   State|Recv/Actv/Sent
-------------------------------------------------------------------------------
44.44.10.12
                65000     679     581    0    0 04h23m36s 600/563/569
===============================================================================
*A:ALU-12#
Table 144:  Show BGP Summary Output Fields  

Label

Description

BGP Router ID

The local BGP router ID

AS

The configured autonomous system number

Local AS

The configured local AS setting. If not configured, then the value is the same as the AS.

BGP Admin State

Down: BGP is administratively disabled

Up: BGP is administratively enabled

BGP Oper State

Down: BGP is operationally disabled

Up: BGP is operationally enabled

Total Peer Groups

The total number of configured BGP peer groups

Total Peers

The total number of configured BGP peers

Total BGP Paths

The total number of unique sets of BGP path attributes learned from BGP peers

Total Path Memory

The total amount of memory used to store the path attributes

Total IPv4 Remote Rts

The total number of IPv4 routes learned from BGP peers

Total IPv4 Remote Act. Rts

The total number of IPv4 routes used in the forwarding table

Total Supressed Rts

The total number of suppressed routes due to route damping

Total Hist. Rts

The total number of routes with history due to route damping

Total Decay Rts

The total number of decayed routes due to route damping

Total VPN Peer Groups

The total number of configured VPN peer groups

Total VPN Peers

The total number of configured VPN peers

Total VPN Local Rts

The total number of configured local VPN routes

Total VPN-IPv4 Rem. Rts

The total number of configured remote VPN-IPv4 routes

Total VPN-IPv4 Rem. Act. Rts

The total number of active remote VPN-IPv4 routes used in the forwarding table

Total VPN Supp. Rts

The total number of suppressed VPN routes due to route damping

Total VPN Hist. Rts

The total number of VPN routes with history due to route damping

Total VPN Decay Rts

The total number of decayed routes due to route damping

Neighbor

The BGP neighbor address

AS (Neighbor)

The BGP neighbor autonomous system number

PktRcvd

The total number of packets received from the BGP neighbor

PktSent

The total number of packets sent to the BGP neighbor

InQ

The number of BGP messages to be processed

OutQ

The number of BGP messages to be transmitted

Up/Down

The amount of time that the BGP neighbor has either been established or not established depending on its current state

State|Recv/Actv/Sent (Addr Family)

The BGP neighbor’s current state (if not established) or the number of received routes, active routes and sent routes (if established), along with the address family

servers

Syntax 
servers [all]
Context 
show>router>dhcp
show>router>dhcp6
Description 

This command lists the local DHCP or DHCPv6 servers.

Parameters 
all—
displays DHCP or DHCPv6 servers in all instances
Output 

The following output is an example of DHCP server information, and Table 145 describes the fields.

Sample Output
*A:ALU-1# show router dhcp servers
===============================================================================
Overview of DHCP Servers
===============================================================================
Active Leases:      1
Maximum Leases:     4096
 
 
Router              Server                                Admin State
-------------------------------------------------------------------------------
Router: Base        dhcpServer1                           inService
Service: 102        vprnServer                            inService
===============================================================================
*A:ALU-1# 
Table 145:  Show DHCP or DHCPv6 Server Output Fields 

Label

Description

Active Leases

The number of active leases

Maximum Leases

The maximum number of leases available

Router

The name of the router

Server

The name of the DHCP or DHCPv6 server

Admin State

The administrative state of the DHCP or DHCPv6 server

statistics

Syntax 
statistics [interface ip-int-name | ip-address]
Context 
show>router>dhcp
show>router>dhcp6
Description 

This command displays statistics for DHCP Relay and DHCPv6 Relay.

If no interface name or IP address is specified, then all configured interfaces are displayed. If the statistics command is used in the dhcp6 context, the interface name or IP address cannot be specified.

Parameters 
ip-int-name | ip-address—
displays statistics for the specified IP interface
Output 

The following outputs are examples of DHCP or DHCPv6 statistics information:

  1. DHCP statistics (Sample Output, Table 146)
  2. DHCPv6 statistics (Sample Output, Table 147)  
Sample Output
*A:ALU-1# show router dhcp statistics
================================================================
DHCP Global Statistics (Router: Base)
================================================================
Rx Packets                           : 0
Tx Packets                           : 0
Rx Malformed Packets                 : 0
Rx Untrusted Packets                 : 0
Client Packets Discarded             : 0
Client Packets Relayed               : 0
Server Packets Discarded             : 0
Server Packets Relayed              :0
================================================================
*A:ALU-1#
Table 146:  Show DHCP Statistics Output Fields 

Label

Description

DHCP Global Statistics (Router: Base)

Rx Packets

The number of packets received

Tx Packets

The number of packets transmitted

Rx Malformed Packets

The number of malformed packets received

Rx Untrusted Packets

The number of untrusted packets received

Client Packets Discarded

The number of packets from the DHCP client that were discarded

Client Packets Relayed

The number of packets from the DHCP client that were forwarded

Server Packets Discarded

The number of packets from the DHCP server that were discarded

Server Packets Relayed

The number of packets from the DHCP server that were forwarded

Sample Output
*A:ALU-1# show router dhcp6 statistics
==========================================================================
DHCP6 statistics (Router: Base)
==========================================================================
Msg-type                      Rx             Tx             Dropped
--------------------------------------------------------------------------
1 SOLICIT                     0              0              0
2 ADVERTISE                   0              0              0
3 REQUEST                     0              0              0
4 CONFIRM                     0              0              0
5 RENEW                       0              0              0
6 REBIND                      0              0              0
7 REPLY                       0              0              0
8 RELEASE                     0              0              0
9 DECLINE                     0              0              0
10 RECONFIGURE                0              0              0
11 INFO_REQUEST               0              0              0
12 RELAY_FORW                 0              0              0
13 RELAY_REPLY                0              0              0
 
--------------------------------------------------------------------------
Dhcp6 Drop Reason Counters :
--------------------------------------------------------------------------
 1 Dhcp6 oper state is not Up on src itf                         0
 2 Dhcp6 oper state is not Up on dst itf                         0
 3 Relay Reply Msg on Client Itf                                 0
 4 Hop Count Limit reached                                       0
 5 Missing Relay Msg option, or illegal msg type                 0
 6 Unable to determine destination client Itf                    0
 7 Out of Memory                                                 0
 8 No global Pfx on Client Itf                                   0
 9 Unable to determine src Ip Addr                               0
10 No route to server                                            0
11 Subscr. Mgmt. Update failed                                   0
12 Received Relay Forw Message                                   0
13 Packet too small to contain valid dhcp6 msg                   0
14 Server cannot respond to this message                         0
15 No Server Id option in msg from server                        0
16 Missing or illegal Client Id option in client msg             0
17 Server Id option in client msg                                0
18 Server DUID in client msg does not match our own              0
19 Client sent message to unicast while not allowed              0
20 Client sent message with illegal src Ip address               0
21 Client message type not supported in pfx delegation           0
22 Nbr of addrs or pfxs exceeds allowed max (128) in msg         0
23 Unable to resolve client's mac address                        0
24 The Client was assigned an illegal address                    0
25 Illegal msg encoding                                          0
==========================================================================
*A:ALU-1#
Table 147:  Show DHCPv6 Statistics Output Fields 

Label

Description

DHCP6 Statistics (Router: Base)

Msg-type

The number of messages received, transmitted, or dropped by the router for each message type

Dhcp6 Drop Reason Counters

The number of times that a message was dropped for a particular reason

summary

Syntax 
summary
Context 
show>router>dhcp
show>router>dhcp6
Description 

This command displays a summary of DHCP and DHCPv6 configuration.

Output 

The following outputs are examples of DHCP or DHCPv6 summary information:

  1. DHCP summary (Sample Output, Table 148)
  2. DHCPv6 summary (Sample Output, Table 149)  
Sample Output
*A:ALU-48# show router dhcp summary
===============================================================================
DHCP Summary (Router: Base)
===============================================================================
Interface Name                   Arp      Used/                 Info    Admin
  SapId/Sdp                      Populate Provided              Option  State
-------------------------------------------------------------------------------
vprn_interface                   No       0/0                   Keep    Down
  sap:1/5/2                               0/0
-------------------------------------------------------------------------------
Interfaces: 1
===============================================================================
*A:ALU-48#
Table 148:  Show DHCP Summary Output Fields  

Label

Description

DHCP Summary (Router: Base)

Interface Name SapId/Sdp

The name of the interface or SAP/SDP identifier

Arp Populate

Specifies whether ARP populate is enabled or disabled

Used/Provided

Used — number of lease-states that are currently in use on the specified interface; that is, the number of clients on the interface that got an IP address by DHCP. This number is always less than or equal to the “Provided” field.

Provided — lease-populate value configured for the specified interface

Info Option

Keep — the existing information is kept on the packet and the router does not add any additional information

Replace — on ingress, the existing information-option is replaced with the information-option from the router

Drop — the packet is dropped and an error is logged

Admin State

The administrative state

Interfaces

The total number of DHCP interfaces

Sample Output
*A:ALU-48# show router dhcp6 summary
===============================================================================
DHCP6 Summary (Router: Base)
===============================================================================
Interface Name                   Nbr      Used/Max Relay     Admin  Oper Relay
  SapId                          Resol.   Used/Max Server    Admin  Oper Server
-------------------------------------------------------------------------------
iesSap                           No          0/0             Down   Down
  sap:1/2/3:801                              0/8000          Down   Down
iesintf                          No          0/0             Down   Down
  sdp:spoke-5:9999                           0/8000          Down   Down
-------------------------------------------------------------------------------
Interfaces: 2
===============================================================================
*A:ALU-48#
Table 149:  Show DHCPv6 Summary Output Fields  

Label

Description

DHCP Summary (Router: Base)

Interface Name SapId

The name of the interface or SAP/SDP identifier

Nbr Resol.

Yes — neighbor resolution (discovery) is enabled

No — neighbor resolution (discovery) is disabled

Used/Max Relay:

Used — number of relay routes currently being used on the interface

Max Relay — maximum number of relay routes on the interface

Used/Max Server

Used — number of server routes currently being used on the interface

Max Server — maximum number of server routes currently being used on the interface

Admin

The administrative state

Oper Relay

The operating state of the relay routes

Oper Server

The operating state of the server routes

Interfaces

The total number of DHCPv6 interfaces

interface

Syntax 
interface [{[ip-address | ip-int-name] [detail]}] | [summary] | [exclude-services]
Context 
show>router
Description 

This command displays the router IP interface table sorted by interface index.

Parameters 
ip-address—
the IP address of the interface for which to display information
ip-int-name—
the IP interface name for which to display information
detail—
displays detailed IP interface information for the router
summary—
displays summary IP interface information for the router
exclude-services—
displays IP interface information, excluding IP interfaces configured for customer services. Only core network IP interfaces are displayed.
Output 

The following output is an example of standard IP interface information, and Table 150 describes the fields.

Sample Output
*A:ALU-12# show router 6 interface
===============================================================================
Interface Table (Service: 6)
===============================================================================
Interface-Name                   Adm         Opr(v4/v6)  Mode    Port/SapId
   IP-Address                                                    PfxState
-------------------------------------------------------------------------------
vprn_interface                   Up          Down/Down   VPRN    1/5/2
   -                                                             -
-------------------------------------------------------------------------------
Interfaces : 1
===============================================================================
*A:ALU-12#
Table 150:  Show IP Interface Output Fields 

Label

Description

Interface Table (Service: x)

Interface-Name

The name of the interface

IP-Address

The IP address of the interface

Adm

The administrative state of the interface

Opr (v4/v6)

The operational state of the interface (only ipv4 addresses apply)

Type

The service type

Port/SapId PfxState

The port or SAP associated with the interface

route-table

Syntax 
route-table [ip-prefix /[mask] [longer] | [protocol protocol] | [summary]]
Context 
show>router
Description 

This command displays the active routes in the routing table.

If no command line arguments are specified, all routes are displayed, sorted by prefix.

Parameters 
ip-prefix[/mask]—
the IP prefix and optional mask for which to display routes
longer—
displays routes matching the ip-prefix/mask and routes with longer masks
protocol
displays routes learned from the specified protocol
Values—
bgp, isis, local, ospf, rip, static, aggregate
summary—
displays a route table summary information
Output 

The following output is an example of route table information, and Table 151 describes the fields.

Sample Output
*A:ALU-12# show router 6 route-table
===============================================================================
Route Table (Service: 6)
===============================================================================
Dest Prefix                                   Type    Proto    Age         Pref
       Next Hop[Interface Name]                                     Metric
-------------------------------------------------------------------------------
10.10.0.1/32                                  Remote  OSPF    65844        10
       10.10.13.1                                                   1001
10.10.0.2/32                                  Remote  OSPF    65844        10
       10.10.13.1                                                   2001
------------------------------------------------------------------------------
------------------------------------------------------------------------------
No. of Routes: 2
===============================================================================
*A:ALU-12# 
Table 151:  Show Route Table Output Fields  

Label

Description

Dest Prefix

The route destination address and mask

Next Hop

The next hop IP address for the route destination

Type

Local—the route is a local route

Remote—the route is a remote route

Proto

The protocol through which the route was learned

Age

The route age in seconds for the route

Metric

The route metric value for the route

Pref

The route preference value for the route

No. of Routes:

The number of routes displayed in the list

sgt-qos

Syntax 
sgt-qos
Context 
show>router
Description 

This command displays QoS information about self-generated traffic.

Parameters 
service-id—
specifies the service identifier of the service
Values—
1 to 2147483647 or service-name

application

Syntax 
application [app-name] [dscp | dot1p]
Context 
show>router>sgt-qos
Description 

This command displays application QoS settings.

Parameters 
app-name—
the specified application
Values—
arp, bgp, dhcp, dns, ftp, icmp, isis, ldp, ntp, ospf, ptp, radius, rsvp, snmp, snmp-notification, ssh, syslog, tacplus, telnet, tftp, traceroute
Note:

  1. PTP in the context of SGT QoS is defined as Precision Timing Protocol and is an application in the 7705 SAR. The PTP application name is also used in areas such as event-control and logging. Precision Timing Protocol is defined in IEEE 1588-2008.
  2. PTP in the context of IP filters is defined as Performance Transparency Protocol. IP protocols can be used as IP filter match criteria; the match is made on the 8-bit protocol field in the IP header.
dscp—
specifies to show all DSCP applications
dot1p—
specifies to show all dot1p applications
Output 

The following output is an example of application QoS information, and Table 152 describes the fields.

Sample Output
*A:ALU-1>show# router 6 sgt-qos application
===============================================================================
DSCP Application Values
===============================================================================
Application         DSCP Value                    Default DSCP Value
-------------------------------------------------------------------------------
bgp                 none                          none
dhcp                none                          none
dns                 none                          none
ftp                 none                          none
icmp                none                          none
ldp                 none                          none
ntp                 none                          none
ospf                none                          none
radius              none                          none
rsvp                none                          none
snmp                none                          none
snmp-notification   none                          none
ssh                 none                          none
syslog              none                          none
tacplus             none                          none
telnet              none                          none
tftp                none                          none
traceroute          none                          none
ptp                 none                          none
===============================================================================
 
===============================================================================
Dot1p Application Values
===============================================================================
Application         Dot1p Value                   Default Dot1p Value
-------------------------------------------------------------------------------
arp                 none                          none
isis                none                          none
===============================================================================
*A:ALU-1>show#
Table 152:  Application QoS Output Fields 

Label

Description

Application

The DSCP or dot1p application

DSCP Value

The DSCP name or value assigned to the application; if you assign a value to the application (0 to 63), the DSCP name that maps to the value is displayed

Default DSCP Value

The default DSCP value

Dot1p Value

The dot1p priority assigned to the application (applies only to ARP and IS-IS)

Default Dot1p Value

The default dot1p value

dscp-map

Syntax 
dscp-map [dscp-name]
Context 
show>router>sgt-qos
Description 

This command displays the DSCP-to-FC mappings.

Parameters 
dscp-name—
the specified DSCP name.
Values—
be | ef |  | cp1 | cp2 | cp3 | cp4 | cp5 | cp6 | cp7 | cp9 | cs1 | cs2 | cs3 | cs4 | cs5 | nc1 | nc2 | af11 | af12 | af13 | af21 | af22 | af23 | af31 | af32 | af33 | af41 | af42 | af43 | cp11 | cp13 | cp15 | cp17 | cp19 | cp21 | cp23 | cp25 | cp27 | cp29 | cp31 | cp33 | cp35 | cp37 | cp39 | cp41 | cp42 | cp43 | cp44 | cp45 | cp47 | cp49 | cp50 | cp51 | cp52 | cp53 | cp54 | cp55 | cp57 | cp58 | cp59 | cp60 | cp61 | cp62 | cp63
Output 

The following output is an example of DSCP-to-FC mapping information, and Table 153 describes the fields.

Sample Output
A:ALU-1# show router 6 sgt-qos dscp-map
===============================================================================
DSCP to FC Mappings
===============================================================================
DSCP Value          FC Value            Default FC Value
-------------------------------------------------------------------------------
be                  nc                  nc
cp1                 be                  be
cp2                 be                  be
cp3                 be                  be
cp4                 be                  be
cp5                 be                  be
cp6                 be                  be
cp7                 be                  be
cs1                 be                  be
cp9                 be                  be
af11                af                  af
cp11                be                  be
af12                af                  af
cp13                be                  be
af13                af                  af
cp15                be                  be
cs2                 be                  be
cp17                be                  be
af21                l1                  l1
cp19                be                  be
af22                l1                  l1
cp21                be                  be
af23                l1                  l1
cp23                be                  be
cs3                 be                  be
cp25                be                  be
af31                l1                  l1
cp27                be                  be
af32                l1                  l1
cp29                be                  be
af33                l1                  l1
cp31                be                  be
cs4                 be                  be
cp33                be                  be
af41                nc                  nc
cp35                be                  be
af42                af                  h2
cp37                be                  be
af43                h2                  h2
cp39                be                  be
cs5                 be                  be
cp41                be                  be
cp42                be                  be
cp43                be                  be
cp44                be                  be
cp45                be                  be
ef                  ef                  ef
cp47                be                  be
nc1                 nc                  nc
cp49                be                  be
cp50                h2                  h2
cp51                be                  be
cp52                be                  be
cp53                be                  be
cp54                be                  be
cp55                be                  be
nc2                 nc                  nc
cp57                be                  be
cp58                be                  be
cp59                be                  be
cp60                be                  be
cp61                be                  be
cp62                be                  be
cp63                be                  be
===============================================================================
A:ALU-1#
Table 153:  DSCP-to-FC Mapping Output Fields 

Label

Description

DSCP Value

The DSCP values (displayed as names) of the self-generated traffic

FC Value

The FC value mapped to each DSCP value

Default FC Value

The default FC value

static-arp

Syntax 
static-arp [ip-address | ip-int-name | mac ieee-mac-addr]
Context 
show>router
Description 

This command displays the router static ARP table sorted by IP address.

If no options are present, all ARP entries are displayed.

Parameters 
ip-address—
the IP address for which static ARP entries are displayed
ip-int-name—
the interface name for which static ARP entries are displayed
ieee-mac-addr
the MAC address for which static ARP entries are displayed
Output 

The following output is an example of static ARP table information, and Table 154 describes the fields.

Sample Output
*A:ALU-12# show router 6 static-arp
===============================================================================
ARP Table (Service: 6)
===============================================================================
IP Address      MAC Address       Expiry    Type   Interface
-------------------------------------------------------------------------------
10.200.0.253    00:00:5a:40:00:01 00:00:00  Sta    to-ser1
12.200.1.1      00:00:5a:01:00:33 00:00:00  Inv    to-ser1a
------------------------------------------------------------------------------
No. of ARP Entries: 2
==============================================================================
*A:ALU-12#
Table 154:  Show Static ARP Table Output Fields 

Label

Description

IP Address

The IP address of the static ARP entry

MAC Address

The MAC address of the static ARP entry

Expiry

The age of the ARP entry. Static ARPs always have 00:00:00 for the age.

Type

Inv—the ARP entry is an inactive static ARP entry (invalid)

Sta—the ARP entry is an active static ARP entry

Interface

The IP interface name associated with the ARP entry

No. of ARP Entries

The number of ARP entries displayed in the list

static-route

Syntax 
static-route [ip-prefix /mask] | [preference preference] | [next-hop ip-address [detail]
Context 
show>router
Description 

This command displays the static entries in the routing table.

If no options are present. all static routes are displayed sorted by prefix.

Parameters 
ip-prefix /mask—
displays only the static routes matching the specified IP prefix and mask
preference
 displays static routes with the specified route preference
Values—
0 to 65535
ip-address
displays only the static routes with the specified next-hop IP address
detail—
displays detailed information about the static route
Output 

The following output is an example of static route information, and Table 155 describes the fields.

Sample Output
*A:ALU-12# show router 6 static-route
===============================================================================
Static Route Table (Service: 6)  Family: IPv4
===============================================================================
Prefix                                        Tag         Met    Pref Type Act
   Next Hop                                    Interface
-------------------------------------------------------------------------------
192.168.250.0/24                                           1     5    NH    Y
    10.200.10.1                                to-ser1
192.168.252.0/24                                           1     5    NH    N
    10.10.0.254                                na   
====================================================================================
*A:ALU-12#
Table 155:  Show Static Route Output Fields 

Label

Description

Prefix

The static route destination address and mask

Tag

The 32-bit integer tag added to the static route

Met

The route metric value for the static route

Pref

The route preference value for the static route

Type

BH—the static route is a blackhole route, where the next hop for this type of route is black-hole

ID—the static route is an indirect route, where the next hop for this type of route is the non-directly connected next hop

NH—the route is a static route with a directly connected next hop

Act

N—the static route is inactive; for example, the static route is disabled or the next hop IP interface is down

Y—the static route is active

Next Hop

The next hop for the static route destination

No. of Routes:

The number of routes displayed in the list

tunnel-table

Syntax 
tunnel-table [ip-address[/mask]] [protocol protocol | sdp sdp-id]
tunnel-table [summary]
Context 
show>router
Description 

This command displays tunnel table information.

Auto-bind GRE tunnels are not displayed in the show command output. GRE tunnels are not the same as SDP tunnels that use the GRE encapsulation type. When the auto-bind command is used when configuring a VPRN service, it means the MP-BGP NH resolution is referring to the core routing instance for IP reachability. For a VPRN service, this object specifies the lookup to be used by the routing instance if no SDP to the destination exists.

Parameters 
ip-address[/mask]—
the IP address and mask for the tunnel table destination
protocol
displays LDP protocol information
sdp-id
displays information about the specified SDP
summary—
displays summary tunnel table information
Output 

The following output is an example of tunnel table information, and Table 156 describes the fields.

Sample Output
*A:ALU-12>config>service# show router 6 tunnel-table
===============================================================================
Tunnel Table (Service: 6)
===============================================================================
Destination        Owner Encap TunnelId  Pref     Nexthop        Metric
-------------------------------------------------------------------------------
10.0.0.1/32        sdp   GRE   10        5        10.0.0.1       0
10.0.0.1/32        sdp   GRE   21        5        10.0.0.1       0
10.0.0.1/32        sdp   GRE   31        5        10.0.0.1       0
10.0.0.1/32        sdp   GRE   41        5        10.0.0.1       0
==============================================================================
*A:ALU-12>
Table 156:  Show Tunnel Table Output Fields 

Label

Description

Destination

The route’s destination address and mask

Owner

The tunnel owner

Encap

The tunnel encapsulation type

TunnelID

The tunnel (SDP) identifier

Pref

The route preference for routes learned from the configured peers

Nexthop

The next hop for the route’s destination

Metric

The route metric value for the route

Clear Service Commands

id

Syntax 
id service-id
Context 
clear>service
clear>service>statistics
Description 

This command clears data for a specific service.

Parameters 
service-id—
the ID that uniquely identifies a service
Values—
1 to 2147483647 or service-name (64 characters maximum)

arp

Syntax 
arp
Context 
clear>service>id
Description 

This command clears all ARP entries.

dhcp

Syntax 
dhcp
Context 
clear>service>id
Description 

This command enables the context to clear and reset DHCP entities.

statistics

Syntax 
statistics [sap sap-id | sdp sdp-id:vc-id | interface {ip-int-name | ip-address}]
Context 
clear>service>id>dhcp
Description 

This command clears DHCP statistics for a specified IP interface.

Parameters 
ip-int-name—
the name of the IP interface on which to clear DHCP statistics, up to 32 characters (must start with a letter)
sap-id—
the SAP ID on which to clear DHCP statistics. See Table 39 for a full list of SAP IDs.
sdp-id
the spoke SDP ID on which to clear DHCP statistics
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID for which to clear DHCP information
Values—
1 to 4294967295
ip-address—
the IP address of the IP interface

dhcp6

Syntax 
dhcp6
Context 
clear>service>id
Description 

This command enables the context to clear and reset DHCPv6 entities.

statistics

Syntax 
statistics [interface {ip-int-name | ipv6-address}]
Context 
clear>service>id>dhcp6
Description 

This command clears DHCPv6 statistics for this IP interface.

Parameters 
interface—
clears only DHCPv6 statistics for a specified interface name
ip-int-name—
the name of the IPv6 interface
ipv6-address—
the address of the IPv6 interface

fdb

Syntax 
fdb {all | mac ieee-address | sap sap-id | mesh-sdp sdp-id[:vc-id] | spoke-sdp sdp-id:vc-id}
Context 
clear>service>id
Description 

This command clears FDB entries for the service.

Parameters 
all—
clears all FDB entries
ieee-address—
clears only FDB entries in the FDB table for the specified 48-bit MAC address
Values—
xx:xx:xx:xx:xx:xx or xx-xx-xx-xx-xx-xx
sap-id—
clears the physical port identifier portion of the SAP definition for the specified SAP ID. See Table 39 for a full list of SAP IDs.
mesh-sdp—
clears only service FDB entries associated with the specified mesh SDP ID. For a mesh SDP, the VC ID is optional.
spoke-sdp—
clears only service FDB entries associated with the specified spoke SDP ID. For a spoke SDP, the VC ID must be specified.
sdp-id—
the SDP ID for which to clear associated FDB entries
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID for which to clear associated FDB entries
Values—
1 to 4294967295

mesh-sdp

Syntax 
mesh-sdp sdp-id[:vc-id] ingress-vc-label
Context 
clear>service>id
Description 

This command clears and resets the mesh SDP binding for the service.

Parameters 
sdp-id—
the mesh SDP ID to be reset
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID to be reset
Values—
1 to 4294967295

mfib

Syntax 
mfib
Context 
clear>service>id
Description 

This command enables the context to clear Multicast Forwarding Information Base (MFIB)-related data.

statistics

Syntax 
statistics {all | ip | mac | group grp-address }
Context 
clear>service>id>mfib
Description 

This command clears MFIB statistics.

Parameters 
all—
clears all MFIB statistics for the service ID
ip—
clears MFIB statistics for the specified IP address
Values—
a.b.c.d
mac—
clears MFIB statistics for the specified MAC address
grp-address —
clears MFIB statistics for the specified group address
Values—
ip-address:        a.b.c.d
ieee-address:     xx:xx:xx:xx:xx:xx or xx-xx-xx-xx-xx-xx

spoke-sdp

Syntax 
spoke-sdp sdp-id:vc-id ingress-vc-label
Context 
clear>service>id
Description 

This command clears and resets the spoke SDP binding for the service.

Parameters 
sdp-id
the spoke SDP ID to be reset
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID to be reset
Values—
1 to 4294967295
ingress-vc-label—
the locally assigned ingress service label

statistics

Syntax 
statistics
Context 
clear>service>statistics
Description 

This command enables the context to clear statistics data.

cem

Syntax 
cem
Context 
clear>service>statistics>id
Description 

This command clears Circuit Emulation (CEM) statistics for the service.

counters

Syntax 
counters
Context 
clear>service>statistics>id
Description 

This command clears all traffic queue counters statistics associated with the service.

mesh-sdp

Syntax 
mesh-sdp sdp-id[:vc-id] {all | counters | stp}
Context 
clear>service>statistics>id
Description 

This command clears and resets the mesh SDP binding statistics for the service.

Parameters 
sdp-id—
the mesh SDP ID to be reset
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID to be reset
Values—
1 to 4294967295

spoke-sdp

Syntax 
spoke-sdp sdp-id:vc-id {all | counters}
Context 
clear>service>statistics>id
Description 

This command clears statistics for the spoke SDP bound to the service.

Parameters 
sdp-id—
the spoke SDP ID for which to clear statistics
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID to be reset
Values—
1 to 4294967295
all—
clears all queue statistics associated with the SDP
counters—
clears all queue counters associated with the SDP

sap

Syntax 
sap sap-id {all | cem | counters}
Context 
clear>service>statistics
Description 

This command clears statistics for the SAP bound to the service.

Parameters 
sap-id—
specifies the physical port identifier portion of the SAP definition. See Table 39 for a full list of SAP IDs.
all—
clears all queue statistics associated with the SAP
cem—
clears all CEM statistics associated with the SAP
counters—
clears all queue counters associated with the SAP

sap-aggregation-group

Syntax 
sap-aggregation-group svcId-id:groupName {all | counters}
Context 
clear>service>statistics
Description 

This command clears statistics for a specified SAP aggregation group.

Parameters 
svcId-id:groupName—
the service ID or group name, up to 96 characters
all—
clears all queue statistics associated with the SAP aggregation group
counters—
clears all queue counters associated with the SAP aggregation group

sdp

Syntax 
sdp sdp-id keep-alive
Context 
clear>service>statistics
Description 

This command clears keepalive statistics associated with the SDP ID.

Parameters 
sdp-id—
the SDP ID for which to clear statistics
Values—
1 to 17407
keep-alive—
clears the keepalive history associated with this SDP ID

Debug Service Commands

id

Syntax 
id service-id
no id service-id
Context 
debug>service
Description 

This command enables the debugging context for a specific service.

The no form of the command disables debugging for the service.

Parameters 
service-id—
the ID that uniquely identifies a service
Values—
1 to 2147483647 or service-name

dhcp

Syntax 
dhcp
no dhcp
Context 
debug>service>id
Description 

This command enables the context for DHCP debugging.

The no form of the command disables DHCP debugging.

detail-level

Syntax 
detail-level {low | medium | high}
no detail-level
Context 
debug>service>id>dhcp
debug>service>id>dhcp6
Description 

This command enables DHCP and DHCPv6 detail level tracing.

The no form of the command disables the detail level tracing.

mac

Syntax 
mac ieee-address
no mac ieee-address
Context 
debug>service>id>dhcp
debug>service>id>dhcp6
Description 

This command enables debugging for a specified MAC address.

The no form of the command disables debugging for the MAC address.

Parameters 
ieee-address
the MAC address
Values—
xx:xx:xx:xx:xx:xx or xx-xx-xx-xx-xx-xx

mode

Syntax 
mode {dropped-only | ingr-and-dropped | egr-ingr-and-dropped}
no mode
Context 
debug>service>id>dhcp
Description 

This command enables the DHCP tracing mode.

The no form of the command disables the tracing mode.

sap

Syntax 
sap sap-id
no sap sap-id
Context 
debug>service>id>dhcp
debug>service>id>dhcp6
Description 

This command enables debugging for a specific SAP.

The no form of the command disables the debugging for the SAP.

Parameters 
sap-id—
the physical port identifier portion of the SAP definition. See Table 39 for a full list of SAP ID

sdp

Syntax 
sdp sdp-id:vc-id
no sdp sdp-id:vc-id
Context 
debug>service>id>dhcp
Description 

This command enables debugging for a specific SDP.

The no form of the command disables the debugging for the SDP.

Parameters 
sdp-id—
the mesh SDP or spoke SDP ID; for a mesh SDP, the VC ID is optional
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID
Values—
1 to 4294967295

dhcp6

Syntax 
dhcp6
no dhcp6
Context 
debug>service>id
Description 

This command enables the context for DHCPv6 debugging.

The no form of the command disables DHCPv6 debugging.

mode

Syntax 
mode {all | dropped-only}
no mode
Context 
debug>service>id>dhcp6
Description 

This command enables the DHCPv6 tracing mode.

The no form of the command disables the tracing mode.

event-type

Syntax 
event-type {config-change | svc-oper-status-change | sap-oper-status-change | sdpbind-oper-status-change}
no event-type
Context 
debug>service>id
Description 

This command enables debugging for an event type.

The no form of the command disables debugging on the event type.

sap

Syntax 
sap sap-id
no sap sap-id
Context 
debug>service>id
Description 

This command enables debugging for a specific SAP.

The no form of the command disables debugging for the SAP.

Parameters 
sap-id—
the physical port identifier portion of the SAP definition. See Table 39 for a full list of SAP IDs.

sdp

Syntax 
sdp sdp-id:vc-id
no sdp sdp-id:vc-id
Context 
debug>service>id
Description 

This command enables debugging for a specific SDP.

The no form of the command disables the debugging for the SDP.

Parameters 
sdp-id—
the mesh SDP or spoke SDP ID
Values—
1 to 17407
vc-id—
the virtual circuit ID on the SDP ID
Values—
1 to 4294967295