• Author : Shyam Kota

 
 

Clear/Set COS for CPU Generated Traffic

Description The CPU CoS mapping feature can only be configured on physical routed interfaces. No other interface types including LAGs, SVIs, sub-interfaces or Tunnel interfaces are supported at this time. When a CPU TC to CoS Map is applied on an interface All outgoing VLAN tagged CPU traffic on that parent interface (including all sub-interfaces) is subjected to the mapping function. This means that the CoS field of the outermost VLAN tag will be computed based on the mapping function. In the case of QinQ sub-interfaces, the inner tag will not be affected at all. Platform compatibility DCS-7020 DCS-7280 series...
Continue reading →

Configuration Lock

Description This mechanism allows a session to lock the configuration of the switch to prevent any other session from altering the configuration. The configuration lock is intended to be short-lived and allows a client to make a change without fear of interaction with other clients, eAPI, OpenConfig, CLI scripts, human users, etc. In order to acquire the configuration lock, a privileged user must use configure lock [ REASON ] command. Care must be taken, because if this CLI session cannot acquire the lock then an error will be issued, and the client must handle this error correctly. When the configuration...
Continue reading →

Route Map Debugging CLI 

Description This document describes a new CLI command to help debug how and why route maps permit and deny paths. The aim of this CLI command is for the user to debug a route map by specifying as input a prefix for which BGP has reachability for, either via a BGP peer or a redistribe source. The path information for this prefix is then used in the evaluation of a route map. The route map can be specified by the user, but if none is specified the route map applied to the peer is used. Any route map configured can...
Continue reading →

EOS-4.23.2F TOI Index Page

EVPN VxLAN control plane support for OpenStack EVPN Internetworking with IPVPN Default QSFP mode support FEC traffic analyzer Support for standalone link training Switch storage device secure erase Route Map Debugging CLI Management SFP port configuration Fastdrop static Forwarding destination prediction byte stream support Match Inner VLAN in QoS Policy-Map on 7280E/7280R/7500E/7500R Per Address Family BGP Missing Policy Action for Multi-agent Model PBR/ACL Counter Selection Client Side Support for MPLS LDP Multipath Traceroute Policy-based Routing ACL-based policing Monitor Session Header Removal IPv4 ACL DSCP Mask Power Over Ethernet (PoE) Policy Control Service RSVP-TE LSR IP Locking + Release Updates RFC...
Continue reading →

EOS-4.23.1F TOI Index Page

SNMP traps for MAC move, learn, and age events Show bgp neighbors history 7800R3/7500R3/7280R3 MLAG support OSPF routes over GRE tunnels TAP Aggregation Extra MPLS Pop (4 to 6 Labels) SNMP IP address ACL support Support for L3 MTU on 7280R3/7500R3/7800R3 Global knob to set MTU for all layer 3 interfaces Multicast Route Counters VXLAN Bridging & Routing on DCS-7500R3 IS-IS Dynamic Flooding IP Locking + Release Updates Hardware Counter Support MLDv2 Snooping Ingress/Egress per-port IPv4, IPv6 counters PHY test pattern CLI IPv4/v6 Support for Decap Groups BGP nexthop resolution RIBs: EVPN and IPV4/6 labeled-unicast support Two rate three color...
Continue reading →

Low-memory mode

Description This feature improves the switch behavior and predictability when it runs out of memory (OOM). Common contributing factors resulting in OOM include (typically a combination of these factors): Memory leaks in EOS or customer user processes. Process leaks.  Bugs in EOS or customer scripts which lead to too many of a particular process running at one time. Over-configuration.  The user has simply specified a configuration that uses more memory than the system in question has available. Full consumption of tmpfs filesystems (e.g. /var/log). User initiating more CLI sessions than the system can sustain Customer programs or scripts using more...
Continue reading →

Maximum Latency Tail Drop Thresholds

Description The feature adjusts VOQs tail drop thresholds based on the TX queue maximum latency configuration and interface or queue shape rate. This helps customers to avoid manually calculate and configure tail drop thresholds to achieve desired maximum latency. Platform compatibility DCS-7280QR DCS-7280CR DCS-7280SR DCS-7504 DCS-7508 DCS-7512 DCS-7516 Configuration The configuration is done on the interface’s TX queue mode or in QOS profile and applied on required interfaces. The maximum latency is specified in milliseconds or microseconds with maximum threshold of 50 milliseconds. (config)#interface Ethernet1 (config-if-Et1)#tx-queue 3 (config-if-Et1-txq-3)#latency maximum <1-50000> microseconds (config-if-Et1-txq-3)#latency maximum <1-50> milliseconds (config)#qos profile latency (config-qos-profile-latency)#tx-queue 3...
Continue reading →

EOS-4.23.0F TOI Index Page

DCS-7260CX3 128x25G Hitless speed change with dynamic logical ports Support for CPU traffic policy RSVP-TE LSR Maximum Latency Tail Drop Thresholds NAT Support on Strata MPLS Support on X Series Switches ECMP Hash Visibility Accelerated Software Upgrade Support on Sand Platforms Support for the Priority Keyword in DirectFlow Egress Filtered Mirroring DirectFlow Show rib route summary Supporting ‘match ip next-hop’ clause for static routes redistributed into IGPs Sharing of FEC for imported VPN routes in Multi Agent The BGP best-path selection algorithm GRE Tunnel Interface Support GRE Decapsulation GRE Encapsulation Support Segment Routing Traffic Engineering Policy (SR-TE) Power management EVPN...
Continue reading →

EOS-4.21.6F TOI Index Page

Security ACLs on L3 subinterfaces Power over Ethernet (PoE) Macro-Segmentation Service (MSS) for L3 Firewalls

Show route-map enhancements

Description This feature adds two new show commands to better display route-map information. The first show command displays route-maps and their sub-route-maps in a hierarchical fashion. That is, the sub-route-maps will be rendered fully inside the definition of a route-map. This makes it easier to check the full contents of a route-map in a single command. The second command is used for displaying what, if anything, is undefined in the route-maps in the config. This can be used for detecting an undefined element in a match or set clause as well as an undefined sub-route-map or trying to continue to...
Continue reading →

Forwarding Destination Prediction

Description Forwarding destination prediction enables visibility into how a packet is forwarded through the switch, allowing you to determine which interfaces a packet would egress out of. Typical use cases include but are not limited to determining egress members for Port-Channels and ECMPs. Platform Compatibility DCS-7020 DCS-7280/R/R2 series DCS-7500/R/R2 series DCS-7280R3/R3K series DCS-7500R3/R3K series DCS-7800R3/R3K series DCS-7170 Feature History Release Update 4.22.1F Initial introduction 4.23.1F Support for DCS-7020SRG-24C2 4.27.0F Added support for DCS-7280R3/R3K, DCS-7500R3/R3K, DCS-7800R3/R3K and DCS-7170 Interactive Mode The forwarding destination CLI command allows you to specify the various headers and fields of the packet, necessary in predicting the...
Continue reading →

LLDP IPv6 Management Address

Description Add support for IPv6 management address in LLDP. An LLDP packet requires a management address, that is typically one of the local system IP addresses and it is seen by LLDP neighbors. Configuration A new cli command was implemented to add the support for LLDP IPv6 management address by pointing to the management interface: [no|default] lldp management-address ipv6 <interface> The IPv6 address selected is going to be the first address, in numerical order, configured on the <interface> which is passed as a parameter to the command. The configuration of an IPv6 management address does not replace an existing IPv4...
Continue reading →

EOS-4.22.1F TOI Index Page

VXLAN VTEP to VTEP Bridging Pim SSM IPV4 Non-DR OIF Installation for Fast Failover MSDP support for multi-agent model Disabling the IS-IS authentication check on the receive side Support for MPLS packets in IP ACLs Support for mixed TTL/DSCP in MPLS tunnel termination BFD control-plane-independent interoperability LLDP IPv6 Management Address Control Word support on LDP Pseudowire  Maximize Full-Multicast Buffer Usage on Jericho Partial Multipath-Relax Based on First N ASNs Sflow Output Subinterfaces Forwarding Destination Prediction Mirroring to Multiple Destinations OSPFv2 Multiple Instances Support CVX preserve client state Per Port COS-to-TC Route Map Debugging CLI BGP Nexthop Resolution RIBs: MPLS VPN...
Continue reading →

Tap Aggregation and Mirror to GRE Timestamping in UTC Time Scale

Description Previously, Tap Aggregation and Mirror to GRE timestamping only supported timestamping packets in International Atomic Time ( TAI ). This release introduces a new feature on the Sand platform to allow for timestamping packets in UTC. UTC only differs from TAI by being behind by 37 leap seconds than TAI. Additional leap seconds will then be added or subtracted by the International Earth Rotation and Reference Systems Service ( IERS ) when needed. Generally, the PTP grandmaster propagates the leap second information downstream to all its slaves. For the Arista switch to know the number of leap seconds, this...
Continue reading →

Optimized IPv4 route scale with 2-to-1 compression

Description IPv4 routes of certain prefix lengths can be optimized for enhanced route scale on 7500R, 7280R, 7500R2 and 7280R2 platforms using this feature. This feature is ideally suited to achieve route scale when route distribution has a large number of routes of one or two prefix lengths. EOS 4.21.3F offers the 2-to-1 compression of routes as an enhancement.  Platform compatibility DCS-7500R series DCS-7280R series DCS-7500R2 series DCS-7280R2 series Configuration The TOI of the previous revision of this feature is available at IPv4 route scale TOI of 4.15.0F release. Starting from 4.21.3F release, the following configuration command can be used...
Continue reading →

User-defined TCAM profiles TOI

This article describes a set of CLI commands to create TCAM profiles. The profile is composed of a set of TCAM features, with each feature having customized lookup key, actions and packet types to hit. Platform compatibility DCS-7280 series DCS-7020 series DCS-7500 series Release Support This feature was introduced in 4.20.5F and will be supported in all future releases. CLI Command Release hardware tcam 4.20.5F [no|default] profile 4.20.5F profile copy 4.20.5F show [pending] | active | diff 4.20.5F [no|default] feature 4.20.5F [no|default] feature [ copy ] 4.21.3F sequence 4.20.5F (no|default) sequence 4.20.5F key size limit 4.20.5F (no|default) key size limit...
Continue reading →

MLAG MaintenanceMode

Description The objective of Maintenance Mode on MLAG is to gracefully drain away the traffic (L2 and BGP) flowing through a switch that is part of the MLAG pair while the switch is put into maintenance and to gracefully add it back into the network and attract traffic again, once the switch is out of maintenance. Platform compatibility Compatible with all platforms. Configuration Maintenance Mode on a device in an MLAG Domain can only be configured for System Unit which consists of all the BGP neighbors and the interfaces. Following steps are putting device into maintenance mode: Setting mlag and non-mlag...
Continue reading →

EosKernel maintenance upgrade to 4.9.122

Description The base kernel for EOS was upgraded to use newer maintenance version 4.9.122 from version 4.9.108, bringing many fixes and improvements from mainline Linux for the network stack, device drivers, filesystems and general system stability, and the kernel fixes for the following public security issues: CVE-2018-10876 use-after-free in jbd2_journal_commit_transaction function CVE-2018-10877 out-of-bound access in ext4_ext_drop_refs with a crafted ext4 image CVE-2018-10878 out-of-bound write in ext4_init_block_bitmap with a crafted ext4 image CVE-2018-10879 use-after-free detected in ext4_xattr_set_entry with a crafted file CVE-2018-10881 out-of-bound access in ext4_get_group_info() when mounting and operating a crafted ext4 image CVE-2018-10882 stack-out-of-bounds write infs/jbd2/transaction.c CVE-2018-10883 stack-out-of-bounds write...
Continue reading →

TAP Aggregation – 80-Bit ACL Rule Support

Description TAP Aggregation traffic steering feature relies on access control list (ACL) rules to filter and match traffic. The creation of user-defined TCAM profiles is required to match some particular types of traffic with ACLs. User created TCAM profiles are defined by packet, key and action attributes. Packet and key defines the packet types and the header fields that apply to the selected features, action defines the action to perform on matched packets. Previously, we could only have key sizes of 160 or 320 bits. Not all types of ACL entries require such large key sizes and can actually fit...
Continue reading →

Follow

Get every new post on this blog delivered to your Inbox.

Join other followers: