• Author : Shyam Kota

 
 

EOS-4.26.0F TOI Index Page

VxLAN DSCP Mapping Sharing BGP update groups between similar RCF functions Support for Differentiated MMU Discard Counters on 7060X4 and 7368X4 series Detect Duplicate IP Addresses LSP ping/traceroute for BGP labeled unicast tunnels Configurable MTU values for fwd interfaces Disable ingress interface from LAG hashing 802.1X on Arista Switches VXLAN Remote VTEP Tunnels over L3 SubInterfaces MACsec LLDP Bypass MLDv2 Snooping Support for transmitting more-specific routes in IPv6 RA messages Security ACL Filtered Mirroring IPv4 route scale enhancements Default QSFP mode support Syslog with TLS support Postcard Telemetry EVPN Single-active Multihoming & Preference-based DF Election 7800R3/7500R3/7280R3 L2 EVPN MPLS Support...
Continue reading →

gRPC Network Operations Interface (gNOI) Support

Description gNOI (gRPC Network Operations Interface) defines a set of gRPC-based microservices for executing operational commands on network devices. Supported operational areas: gNOI Certificate Management (starting with 4.20.6F) – executes commands on the target relating to certificate management. /gnoi.certificate,CertificateManagement/CanGenerateCSR – used to check if a certificate signing request is supported, /gnoi.certificate,CertificateManagement/GetCertificates – used to get a list of certificates available. /gnoi.certificate.,CertificateManagement/Rotate – used to replace an existing certificate on the switch. Note: only internally generated CSRs are supported. gNOI System – a collection of operational RPCs. /gnoi.system.System/Ping (starting with 4.22.1F) – executes the ping command on the switch and streams...
Continue reading →

Support for TapAgg GRE tunnel termination

Description This feature terminates GRE packets on a TapAgg switch by stripping the GRE header and then letting the decapped packets go through the normal TapAgg path. With this feature, we can use an L3 GRE tunnel to transit tapped traffic to the TapAgg switch over an L3 network. That would widely extend the available use cases for TapAgg. Support IPv4 GRE tunnel interface only. Support different GRE types that include IPoGRE, L2GRE, GREenSPAN, ERSPAN and GREenTAP. Do packet forwarding/steering on the decaped packets. Not routing. Packets can be forwarded to a set of tool ports. Have a command to...
Continue reading →

EOS-4.25.2F TOI Index Page

BFD session telemetry Resilient ECMP deduping EOS support for class E addressing ( 240/4 ) 802.1X on Arista Switches MPLS over GRE Encapsulation Vlan tagged MACsec IGP Agent Hitless Restart BGP Labeled Unicast Hitless Restart Support Support for BGP flowspec + Release Updates DHCP Relay Advanced Mirroring Features BGP Long Lived Graceful Restart Identifying BGP aggregate contributors in outbound policy OSPF routes over GRE tunnels Dot1x Dropped Counters Egress DSCP Rewrite Hardware Flow Tracking with IPFIX Export and Filter Based Packet Sampling Support for Static Topology Storm Control Speed Rate Support Storm Control Packet-per-second Support Support BGP PIC edge for...
Continue reading →

Hardware Accelerated sFlow on 7280R3/7500R3/7800R3

Description EOS-4.24.0 adds support for hardware-accelerated sFlow on R3 systems. Without hardware acceleration, all sFlow processing is done in software, which means performance is heavily dependent on the capabilities of the host CPU. Aggressive sampling rates also decrease the amount of processing time available for other EOS applications. With hardware acceleration, all sFlow processing is done on the switch ASIC itself, with little involvement from the CPU. Hence, it’s possible to support higher sampling rate without compromising CPU performance. Note that this is different from DCS-7280R2 and DCS-7500R2 systems, where a separate accelerator chip is used to provide hardware acceleration....
Continue reading →

BGP Prefix Origin Validation with Resource Public Key Infrastructure (RPKI)

Description RPKI provides a mechanism to validate the originating AS of an advertised prefix. EOS support includes: Connecting to RPKI cache server(s) using the RTR protocol and syncing the Route Origin Authorizations (ROA) that have been synced from the global repositories. Validating prefixes received in BGP Update messages either using the ROAs that have been synced, or the Origin Validation State Extended Community attached to the received routes. Using the result of the validation to apply inbound policy in a route map. Platform Compatibility This feature is available on all platforms. Configuration Configuration consists of 3 steps: Configuration of an...
Continue reading →

EOS-4.25.1F TOI Index Page

Support for setting DN bit in OSPF PTP Monitoring: Filtering Dynamic NAT profiles Route-Map Match Ospf Instance Support Redistribution of leaked BGP routes into OSPF / OSPFv3 EVPN VxLAN IPV6 Overlay TOI L2EVPN MPLS EVPN IRB with MPLS Underlay MACsec fallback to unprotected traffic RFC 4364 BGP/MPLS L3 VPN Support for Multicast NAT L3 EVPN extension to BGP using MPLS Head-End-Replicated DHCP Packets Suppression in VXLAN Network VLAN Aware Bundle Service LAG and ECMP selectable hashing fields RSVP-TE LER L2 Sub-interfaces IP Locking + Release Updates OpenConfig Configuration Guide Enhance Dot1x Modes to MBA Hosts Egress ACL counters Storm control...
Continue reading →

Qos Policy Map Counter

This feature is an extension of Qos Policy. It allows the user to configure Qos Policy Map counters. If a class-map is configured for a policer action then the conformed and non-conformed packet and byte counters are displayed for that class-map. Otherwise the number of packets and bytes hitting the class-map are shown. Platform compatibility DCS-7280E DCS-7020R DCS-7280R DCS-7280R2 DCS-7500R2 DCS-7280R3, DCS-7500R3, DCS-7800R3 (EOS 4.24.2F) Configuration Following command allocates the Counter Engines for Qos which actually count and store the counter value. switch(config)#[no|default] hardware counter feature qos in 7280E Currently, there is not enough space in TCAM action bank for...
Continue reading →

QinQ L3 Subinterfaces

Description QinQ L3 subinterfaces divide a single ethernet or port-channel interface into multiple logical L3 interfaces based on a combination of two 802.1q tags (VLAN ID) in the incoming traffic. QinQ L3 subinterfaces are commonly used in the L2/L3 boundary device, but they can also be used to isolate traffic with a combination of two 802.1q tags between L3 peers by assigning each subinterface to a different VRF.   QinQ L3 subinterfaces are similar to regular L3 subinterfaces, with the only difference being the number of tags being used to isolate traffic. While L3 subinterfaces use a single 802.1q tag...
Continue reading →

EOS-4.25.0F TOI Index Page

EVPN VXLAN single-gateway centralized routing CLI error for references to unconfigured policy constructs Support for deleting link bandwidth extended community without specifying value (“set extcommunity lbw delete”) or with specified AS number (“set extcommunity lbw asn delete”) Support for IPv6 Link-local addresses in NHG entries Support for set large community list EVPN L3 Gateway Nexthop Group Resolution for Static Routes Set TTL for PBRed packets Support for OSPFv3 dn-bit-ignore Route-map match on next-hop for vpnv4/vpnv6 routes Support for WRED Counters on 7060X4 and 7368 series GRE Tunneling Support Consistent Policy Enforcement and Multi-VRF support for Macro-Segmentation Service L2 Sub-interfaces RSVP-TE...
Continue reading →

EOS-4.24.2F TOI Index Page

Disable ENTITY-STATE traps for link up/down IS-IS set-attached-bit OSPF conditional default-originate Route-Map As-Path “repeat” option RSVP-TE LSR Advanced Mirroring Features Support for Traffic Policy on interfaces DHCP Server on EOS Flexible Interface Encapsulation (FlexEncap) LDP End-of-LIB BGP Enhanced Route Refresh Connected routes for VARP subnets Support for Non XPN Cipher Suites in MACsec Route Map – Match Resolved Nexthop Support in Multi-Agent Discard unimportable VPN paths Health monitoring of free buffer counts Support for ECMP routes in RIP VxLAN VTEP counters on 7020R, 7280R, 7280R2, 7500R, and 7500R2 series RFC 4364 BGP/MPLS L3 VPN Dynamic CLI Access VLAN Support for...
Continue reading →

EOS-4.24.1F TOI Index Page

Support for IPv6 multicast (S,G) counters BGP best paths and best ECMP paths counters As-Path Statement Enhancement BGP Non Stop Forwarding Setting metric on static routes and Eos SDK support Redistribution of leaked routes into IGPs CLI Command for Fast Phy Link up Security ACL Filtered Mirroring MPLS static tunnel ECMP Optimizing hardware utilization for unused (S,G) routes Hardware Accelerated sFlow on 7280R3/7500R3/7800R3 MLAG Unicast Convergence LDP Graceful Restart Support for static NAT access-list resource sharing TAP Aggregation – FCS handling Support for metadata in egress mirroring to GRE TAP Aggregation DCS-7280R3 / DCS-7500R3 support BGP neighbor default-originate always LAWFUL...
Continue reading →

EOS-4.24.0F TOI Index Page

Allow resolution over BGP aggregates BGP Send-Community Global Setting Burst-Size with Shape Rate Configurable Admin Distance for OSPFv3 External Routes Flow Aware Transport on LDP pseudowires IS-IS set-attached-bit Egress IPv6 RACL on R3 series 7800R3/7500R3/7280R3 MLAG support Priority Drop Support Redistribution of ISIS Routes into OSPFv3 Redistribution of leaked routes into IGPs Router ACLs with User-Defined Fields Sub-interface ACLs with User-Defined Fields Port Security: Protect Mode Class Based Forwarding for SR-TE Policies BFD for Static Routes Per Port Tc-To-Cos IP Locking + Release Updates LDP Pseudowire Regular expression aliases Egress MAC ACLs Lanz Mirroring Segment Routing Traffic Engineering Policy (SR-TE)...
Continue reading →

Per Port Tc-To-Cos

Description This feature enables per port TC-To-COS mapping. TC represents Traffic-Class and COS represents Vlan tag PCP bits. While at present there is a global TC-To-COS mapping, in this feature named TC-To-COS profiles can be created which can be applied to the required interfaces. When a Tc-To-Cos profile is applied to an interface then all the packet egressing through this interface will follow the below principles: Cos remarking will happen based on the TC, Dp( Drop precedence ) of the packet. The exact value of the cos will depend on the mapping present in the tc-to-cos profile applied to it....
Continue reading →

Clear/Set COS for CPU Generated Traffic

Description The CPU CoS mapping feature can only be configured on physical routed interfaces. No other interface types including LAGs, SVIs, sub-interfaces or Tunnel interfaces are supported at this time. When a CPU TC to CoS Map is applied on an interface All outgoing VLAN tagged CPU traffic on that parent interface (including all sub-interfaces) is subjected to the mapping function. This means that the CoS field of the outermost VLAN tag will be computed based on the mapping function. In the case of QinQ sub-interfaces, the inner tag will not be affected at all. Platform compatibility DCS-7020 DCS-7280 series...
Continue reading →

Configuration Lock

Description This mechanism allows a session to lock the configuration of the switch to prevent any other session from altering the configuration. The configuration lock is intended to be short-lived and allows a client to make a change without fear of interaction with other clients, eAPI, OpenConfig, CLI scripts, human users, etc. In order to acquire the configuration lock, a privileged user must use configure lock [ REASON ] command. Care must be taken, because if this CLI session cannot acquire the lock then an error will be issued, and the client must handle this error correctly. When the configuration...
Continue reading →

Route Map Debugging CLI 

Description This document describes a new CLI command to help debug how and why route maps permit and deny paths. The aim of this CLI command is for the user to debug a route map by specifying as input a prefix for which BGP has reachability for, either via a BGP peer or a redistribe source. The path information for this prefix is then used in the evaluation of a route map. The route map can be specified by the user, but if none is specified the route map applied to the peer is used. Any route map configured can...
Continue reading →

EOS-4.23.2F TOI Index Page

EVPN VxLAN control plane support for OpenStack EVPN Internetworking with IPVPN Default QSFP mode support FEC traffic analyzer Support for standalone link training Switch storage device secure erase Route Map Debugging CLI Management SFP port configuration Fastdrop static Forwarding destination prediction byte stream support Match Inner VLAN in QoS Policy-Map on 7280E/7280R/7500E/7500R Per Address Family BGP Missing Policy Action for Multi-agent Model PBR/ACL Counter Selection Client Side Support for MPLS LDP Multipath Traceroute Policy-based Routing ACL-based policing Monitor Session Header Removal IPv4 ACL DSCP Mask Power Over Ethernet (PoE) Policy Control Service RSVP-TE LSR IP Locking + Release Updates RFC...
Continue reading →

EOS-4.23.1F TOI Index Page

SNMP traps for MAC move, learn, and age events Show bgp neighbors history 7800R3/7500R3/7280R3 MLAG support OSPF routes over GRE tunnels TAP Aggregation Extra MPLS Pop (4 to 6 Labels) SNMP IP address ACL support Support for L3 MTU on 7280R3/7500R3/7800R3 Global knob to set MTU for all layer 3 interfaces Multicast Route Counters VXLAN Bridging & Routing on DCS-7500R3 IS-IS Dynamic Flooding IP Locking + Release Updates Hardware Counter Support MLDv2 Snooping Ingress/Egress per-port IPv4, IPv6 counters PHY test pattern CLI IPv4/v6 Support for Decap Groups BGP nexthop resolution RIBs: EVPN and IPV4/6 labeled-unicast support Two rate three color...
Continue reading →

Follow

Get every new post on this blog delivered to your Inbox.

Join other followers: