M Commands

mac-limit-modify

You can now limit the number of MAC addresses per port. You can configure port security only on ports. Details about port security for ports are as follows:

  • Access ports—You can configure port security on interfaces that you have configured as Layer 2 access ports. On an access port, port security applies only to the access VLAN.
  • Trunk ports—You can configure port security on interfaces that you have configured as Layer 2 trunk ports.

Syntax   mac-limit-modify


id id-number

Specify the ID assigned to the port.

port port-list

Specify the port or port list.

mac-limit mac-limit-number

Specify the number of MAC addresses to limit on the port.

mac-limit-action log|drop|disable

Specify the action to take if the MAC address limit is exceeded.

Defaults   None

Access   Network Administrator

History   Command introduced in Version 2.6.0.

Usage   Use this command to modify the MAC address limits on ports.

Examples  To modify the number of MAC addresses on ports, use the following syntax:

CLI network-admin@switch > mac-limit-modify

mac-limit-show

You can now limit the number of MAC addresses per port. You can configure port security only on ports. Details about port security for ports are as follows:

  • Access ports—You can configure port security on interfaces that you have configured as Layer 2 access ports. On an access port, port security applies only to the access VLAN.
  • Trunk ports—You can configure port security on interfaces that you have configured as Layer 2 trunk ports.

Syntax   mac-limit-show


id id-number

Displays the ID assigned to the port.

port port-list

Displays the port or port list.

mac-limit mac-limit-number

Displays the number of MAC addresses to limit on the port.

mac-limit-action log|drop|disable

Displays the action to take if the MAC address limit is exceeded.

num-macs num-macs-number

Displays the number of MAC addresses learned on the port.

Access   Network Administrator

History   Command introduced in Version 2.6.0.

Usage   Use this command to display information about MAC address limits on ports.

Examples  To display information about MAC address limits on ports, use the following syntax:

CLI network-admin@switch > mac-limit-show

mcast-show

This command displays multicast group information for a switch.

Syntax   mcast-show

group-ip muticast-ip-address

Specifies the IP address for the multicast group.

vnet vnet-name

Specifies the VNET name.

l2-net l2-net-name

Specifies the Layer 2 network name.

Defaults   Unless otherwise specified, all multicast group membership information for the local switch is displayed.

Access   CLI

History   

Version 1.2

Command introduced.

Version 3.0.0

The parameter, l2-net, added.

Usage   Hosts and adjacent switches on IPv4 networks can establish multicast group memberships.

Examples  To display all multicast group memberships for the local switch, use the following command:

CLI network-admin@switch > mcast-show

group-ip         vlan      group-id       group-ports

--------         -----     --------       -----------

239.4.10.122     1         28             43

239.4.10.70      1         27             43

239.4.10.190     1         26             17

239.4.10.222     1         25             17

239.4.10.187     1         24             17

239.4.10.32      1         23             17

239.4.10.115     1         22             17

mgmt-session-show

In earlier versions of Netvisor, Netvisor did not support viewing current user sessions using the CLI.  This can be very useful for security and troubleshooting. Netvisor now lists all currently logged-in users along with the IP they are connecting from and the login time when you execute the command, mgt-session-show.

Syntax   mgmt-session-show

user user-string

Displays the user name.

cli-user cli-user-string 

Displays the name used to log into the switch.

pid pid-number

Displays the process ID.

terminal terminal-string

Displays the terminal.

from-ip ip-address

Displays the IP address for the user.

login-time date/time: yyyy-mm-ddTHH:mm:ss

Displays the time and date that the user logged into the switch.

remote-node remote-node-string

Displays the name of the remote node.

vnet vnet-string

Displays the VNET assigned to the user.

type cli|api|shell

Displays the type of login session.

Defaults   None

Access   Network Administrator

History   Command introduced in Version 3.0.0

Usage   Use this command to display users logged into the switch.

Examples  To display users logged into the switch, NAT-1, use the following syntax:

CLI network-admin@switch > mgmt-session-show

switch        user  cli-user      pid   terminal from-ip      login-time     type  

------------- ----- ------------- ----- -------- ------------ ------------   -------

Spine-ext-41  admin network-admin 13805 pts/3    10.60.1.216  11:20:52        cli

Spine-ext-41  root  network-admin 8589  pts/2    10.14.20.109 11-15,17:16:17  cli

mirror-create

This command is used to create mirror ports and flows. Network engineers or administrators use port mirroring to analyze and debug data or diagnose errors on a network. It helps administrators keep a close eye on network performance and alerts them when problems occur. It can be used to mirror either inbound or outbound traffic (or both) on single or multiple interfaces.

Syntax   mirror-create

name name-string

Specify a name for the mirror configuration.

direction ingress|egress|
bidirection

Specify a direction for the mirrored traffic.

out-port port-list

Specify the port for outgoing traffic.

out-trunk trunk name

Specify the name of the outgoing trunk configuration.

in-port port-list

Specify the port for incoming traffic. Supported ports are 1-64 on the F64 platform. The parameter, all, is not supported.

filtering port|
vflow-and-port|vflow-or-port

Specify the filter type for the configuration.

enable|disable

Enable or disable the configuration.

other-egress-out allow|prevent

Specify if other outgoing traffic is allowed or prevented. The default value is prevent.

span-encap none|over-ip|over-vlan

Specify the mirror span type. The default type is none.

span-local-ip ip-address

Specify the local IPv4 address for the mirror span.

span-remote-ip ip-address

Specify the remote IPv4 address fpr the mirror span.

span-src-mac mac-address

Specify the source MAC address for the mirror span.

span-dst-mac mac-address

Specify the destination MAC address for the mirror span.

span-tagging-vlan vlan-id

Specify the mirror span VLAN tagging ID. The default value is none.

span-tos integer

Specify the mirror span ToS from 0 to 255. The default value is 0.

nvie-mirror|no-nvie-mirror

Specify to mark this mirroring as an NVIE mirror and mirror traffic to NVIE VM.

Defaults   None

Access   CLI

History   

Version 2.2

Command introduced.

Version 2.4

 The parameter, span-, introduced.

Version 2.6.2

The parameter, nvie-mirror, added.

Usage   Use this command to create mirrored traffic or ports for analyzing traffic.

Examples  To create a mirror configuration, mirror-port, with the direction egress, port 73, inbound port 33, filtering by port, and allow other egress traffic, use the following syntax:

CLI network-admin@switch > mirror-create name mirror-port direction egress out-port 73 in-port 33 enable other-egress-out allow

mirror-delete

This command is used to delete a mirror configuration.

Syntax   mirror-delete name name-string 

name name-string

Specify a name for the mirror configuration.

Defaults   None

Access   CLI

History   Command introduced in Version 2.2.

Usage   Use this command to delete a mirror configuration.

Examples  To delete a mirror configuration, mirror-port, use the following syntax:

CLI network-admin@switch > mirror-delete name mirror-port

mirror-modify

This command allows you to modify a port mirror configuration.

Syntax   mirror-modify

name name-string

Specify the name of the mirror configuration to modify.

Specify any of the following options:

direction disabled|ingress|
egress|bidirection

Specify the direction of the traffic that you want to mirror on the port.

out-port port-list

Specify the list of ports for outgoing network traffic.

out-trunk trunk-name

Specify the trunk name for the outgoing trunk.

in-port port-list

Specify the list of ports for incoming network traffic.

filtering port|vflow-and-port|
vflow-or-port

Specify the type of traffic to filter.

enable|disable

Enable or disable port mirroring on the network.

other-egress-out allow|prevent

Specify if other outgoing traffic is allowed or prevented.

span-encap none|over-ip|over-vlan

Specify the mirror span type. The default type is none.

span-local-ip ip-address

Specify the local IPv4 address for the mirror span.

span-remote-ip ip-address

Specify the remote IPv4 address fpr the mirror span.

span-src-mac mac-address

Specify the source MAC address for the mirror span.

span-dst-mac mac-address

Specify the destination MAC address for the mirror span.

span-tagging-vlan vlan-id

Specify the mirror span VLAN tagging ID. The default value is none.

span-tos integer

Specify the mirror span ToS from 0 to 255. The default value is 0.

nvie-mirror|no-nvie-mirror

Specify to mark this mirroring as an NVIE mirror and mirror traffic to NVIE VM.

Defaults   None.

Access   CLI

History   

Version 1.2

port-mirror-modify introduced.

Version 2.0

Command changed to mirror-modify.

Version 2.1

The parameter, out-trunk, added.

Version 2.2.2

The parameter, direction, added.

Version 2.2.3

The parameter, policy, changed to filtering. The parameter other-egress-out added. j

Version 2.4

 The parameter, span-, introduced.

Version 2.6.2

The parameter, nvie-mirror, added.

Usage   Port mirroring is used to send copies of network traffic on one port to a network monitoring connection on another port. You can use this command to enable or disable port mirroring as well as designate the ports to use for it.

Examples  To enable port mirroring on outbound ports 3-5 and inbound ports 8-9, use the following command:

CLI network-admin@switch > mirror-modify out-port 3-5 in-port 8-9 mirroring

mirror-show

This command is used to display information about port mirroring on the switch.

Syntax   mirror-show

name name-string

Specifies a name for the mirror configuration.

id

Specifies the mirror ID assigned by nvOS.

direction ingress|egress|
bidirection

Specifies a direction for the mirrored traffic.

out-port port-list

Specifies the port for outgoing traffic.

out-trunk trunk name

Specifies the name of the outgoing trunk configuration.

loopback-port loopback-port-number

Specifies the loopback port for mirrored traffic.

in-port port-list

Specifies the port for incoming traffic.

filtering port|
vflow-and-port|vflow-or-port

Specifies the filter type for the configuration.

enable|disable

Enable or disable the configuration.

other-egress-out allow|prevent

Specifies if other outgoing traffic is allowed or prevented.

span-encap none|over-ip|over-vlan

Specify the mirror span type. The default type is none.

span-local-ip ip-address

Specify the local IPv4 address for the mirror span.

span-remote-ip ip-address

Specify the remote IPv4 address fpr the mirror span.

span-src-mac mac-address

Specify the source MAC address for the mirror span.

span-dst-mac mac-address

Specify the destination MAC address for the mirror span.

span-tagging-vlan vlan-id

Specify the mirror span VLAN tagging ID. The default value is none.

span-tos integer

Specify the mirror span ToS from 0 to 255. The default value is 0.

nvie-mirror|no-nvie-mirror

Specify to mark this mirroring as an NVIE mirror and mirror traffic to NVIE VM.

Defaults   None.

Access   CLI

History   

Version 1.2

Command introduced.

Version 2.0

Command changed to mirror-show.

Version 2.4

 The parameter, span-, introduced.

Version 2.6.2

The parameter, nvie-mirror, added.

Usage   Use this command to display port mirroring information.

Examples  To display information about port mirroring, use the following command:

CLI (network-admin@pleiades25) > mirror-show

switch:        pleiades25

mirroring:     disable