Support |
您所在的位置:网站首页 › openflow disconnected › Support |
Contents OpenFlow commands· 1 active instance· 1 classification· 1 controller address· 2 controller auxiliary· 3 controller connect interval 4 controller echo-request interval 5 controller mode· 5 datapath-id· 6 default table-miss permit 6 description· 7 display openflow·· 7 display openflow auxiliary· 9 display openflow flow-table· 10 display openflow instance· 15 display openflow meter 17 display openflow summary· 19 fail-open mode· 20 flow-entry max-limit 21 forbidden port 21 in-band management vlan· 22 listening port 22 mac-learning forbidden· 23 openflow instance· 24 openflow-instance· 24 port 25 reset openflow instance statistics· 25 OpenFlow commands active instance Use active instance to activate an OpenFlow instance. Use undo active instance to deactivate an OpenFlow instance. Syntax active instance undo active instance Default An OpenFlow instance is not activated. Views OpenFlow instance view Predefined user roles network-admin Usage guidelines After an OpenFlow instance is created or modified, use this command to activate or reactivate the instance to make the instance take effect. After an OpenFlow instance is reactivated, it disconnects from all controllers, clears the deployed flow tables, updates the capability set, and then reconnects to controllers. Examples # Activate OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] active instance classificationUse classification to configure the OpenFlow instance mode. Use undo classification to restore the default. Syntax classification global undo classification Default The OpenFlow instance mode is not configured. Views OpenFlow instance view Predefined user roles network-admin Parameters global: Specifies the global mode. Usage guidelines If you execute this command multiple times, the most recent configuration takes effect. Examples # Enable the global mode for OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] classification global Related commands display openflow instance controller addressUse controller address to specify a controller for an OpenFlow switch and configure the main connection to the controller. Use undo controller address to delete the main connection to the specified controller. Syntax controller controller-id address { ip ipv4-address | ipv6 ipv6-address } [ port port-number ] [ local address { ip local-ipv4-address | ipv6 local-ipv6-address } [ port local-port-number ] ] [ ssl ssl-policy-name ] [ vrf vrf-name ] undo controller controller-id address Default An OpenFlow instance does not have a main connection to a controller. Views OpenFlow instance view Predefined user roles network-admin Parameters controller-id: Specifies a controller by its ID in the range of 0 to 63. ip ipv4-address: Specifies the IPv4 address of the controller. ipv6 ipv6-address: Specifies the IPv6 address of the controller. port port-number: Sets the port number used by the controller to establish TCP connections to the OpenFlow switch. The value range for the port number is 1 to 65535. The default value is 6633. local address: Specifies the source IP address used to establish TCP connections to the controller. When multiple routes are available between a controller and a switch, you can use this keyword to configure a source IP address for the switch. When the switch restarts or an active/standby switchover occurs, the switch can use the original route to reconnect to the controller without selecting a new route. ip local-ipv4-address: Specifies the source IPv4 address. ipv6 local-ipv6-address: Specifies the source IPv6 address. port local-port-number: Specifies the source port number in the range of 1 to 65535. If you do not specify this option, the system automatically assigns a source port number for establishing the main connection to the controller. ssl ssl-policy-name: Specifies the SSL client policy that the controller uses to authenticate the OpenFlow switch. The ssl-policy-name argument is a case-insensitive string of 1 to 31 characters. You must configure a separate SSL client policy for the main connection to each controller. vrf vrf-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a VRF name, the controller is in the public network. Usage guidelines You can specify multiple controllers for an OpenFlow switch. The OpenFlow channel between the OpenFlow switch and each controller can have only one main connection. The OpenFlow switch uses the main connection to a controller to exchange control messages with the controller to perform the following operations: · Receive flow table entries or data from the controller. · Report information to the controller. As a best practice, configure a unicast IP address for a controller. An OpenFlow switch might fail to establish a connection with the controller that does not use a unicast IP address. As a best practice, configure a unicast source IP address that is the IP address of a port belonging to the OpenFlow instance. If the source IP address is not a unicast address of a port belonging to the OpenFlow instance, the OpenFlow switch might fail to establish a connection with the controller. Examples # Specify controller 1 for OpenFlow instance 1. The controller's IP address is 1.1.1.1 and the port number is 6666. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] controller 1 address ip 1.1.1.1 port 6666 controller auxiliaryUse controller auxiliary to specify a controller for an OpenFlow switch and configure an auxiliary connection to the controller. Use undo controller auxiliary to delete the specified auxiliary connection to the specified controller. Syntax controller controller-id auxiliary auxiliary-id transport { tcp | udp | ssl ssl-policy-name } [ address { ip ipv4-address | ipv6 ipv6-address } ] [ port port-number ] undo controller id auxiliary auxiliary-id Default An OpenFlow instance does not have auxiliary connections to a controller. Views OpenFlow instance view Predefined user roles network-admin Parameters controller-id: Specifies a controller by its ID in the range of 0 to 63. auxiliary auxiliary-id: Specifies an auxiliary connection ID in the range of 1 to 255. transport: Specifies the transport layer protocol. tcp: Specifies TCP connections. udp: Specifies UDP connections. ssl ssl-policy-name: Specifies the SSL client policy that the controller uses to authenticate the OpenFlow switch. The ssl-policy-name argument is a case-insensitive string of 1 to 31 characters. ip ipv4-address: Specifies the IPv4 address of the controller. ipv6 ipv6-address: Specifies the IPv6 address of the controller. port port-number: Sets the port number used to establish TCP connections to the controller. The value range for the port number is 1 to 65535. The default value is 6633. Usage guidelines Auxiliary connections are used to improve the communication performance between the controller and OpenFlow switches. For an auxiliary connection to be successfully established, make sure the configuration of the auxiliary connection does not conflict with the configuration of the main connection. An auxiliary connection can have a different destination IP address and port number than the main connection. If no destination IP address and port number are specified, the auxiliary connection uses the destination IP address and port number configured for the main connection. Examples # Specify controller 1 for OpenFlow instance 1 and configure auxiliary connection 1 to the controller. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] controller 10 auxiliary 1 transport tcp controller connect intervalUse controller connect interval to set the reconnection interval. Use undo controller connect interval to restore the default. Syntax controller connect interval interval undo controller connect interval Default The reconnection interval is 60 seconds. Views OpenFlow instance view Predefined user roles network-admin Parameters interval: Specifies the reconnection interval in the range of 10 to 120 seconds. Examples # Set the reconnection interval to 10 seconds for OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] controller connect interval 10 controller echo-request intervalUse controller echo-request interval to set the connection detection interval for an OpenFlow switch. Use undo controller echo-request interval to restore the default. Syntax controller echo-request interval interval undo controller echo-request interval Default The connection detection interval is 5 seconds for an OpenFlow switch. Views OpenFlow instance view Predefined user roles network-admin Parameters interval: Specifies the connection detection interval in the range of 1 to 10 seconds. Examples # Set the connection detection interval to 10 seconds for OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] controller echo-request interval 10 controller modeUse controller mode to set the controller connection mode for an OpenFlow instance. Use undo controller mode to restore the default. Syntax controller mode { multiple | single } undo controller mode Default The controller connection mode is multiple. Views OpenFlow instance view Predefined user roles network-admin Parameters multiple: Specifies the multiple mode. In multiple mode, the OpenFlow switch simultaneously connects to all controllers. If one or more controllers become invalid or disconnected, the OpenFlow switch continues to exchange messages with the rest of the controllers. single: Specifies the single mode. In single mode, the OpenFlow switch connects to only one controller at a time. When communication with the current controller fails, the OpenFlow instance connects to the controller with the lowest ID among the rest controllers. Examples # Set all controllers of OpenFlow instance 1 to operate in single mode. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] controller mode single datapath-idUse datapath-id to set the datapath ID for an OpenFlow instance. Use undo datapath-id to restore the default. Syntax datapath-id id undo datapath-id Default The datapath ID of an OpenFlow instance contains the instance ID and the bridge MAC address of the device. The lower 16 bits are the instance ID and the upper 48 bits are the bridge MAC address of the device. Views OpenFlow instance view Predefined user roles network-admin Parameters id: Specifies the datapath ID for the OpenFlow instance, in the range of 1 to ffffffffffffffff in hexadecimal format. Usage guidelines The datapath ID uniquely identifies an OpenFlow instance. Examples # Set the datapath ID to 123456 for OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] datapath-id 123456 default table-miss permitUse default table-miss permit to configure the default action of table-miss flow entries to forward packets to the normal pipeline. Use undo default table-miss permit to restore the default. Syntax default table-miss permit undo default table-miss permit Default The default action of a table-miss flow entry is to drop packets. Views OpenFlow instance view Predefined user roles network-admin Examples # Configure the default action of table-miss flow entries to forward packets to the normal pipeline. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] default table-miss permit descriptionUse description to configure a description for an OpenFlow instance. Use undo description to restore the default. Syntax description text undo description Default An OpenFlow instance does not have a description. Views OpenFlow instance view Predefined user roles network-admin Parameters text: Specifies a description, a case-sensitive string of 1 to 255 characters. Examples # Configure the description as test-desc for OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] description test-desc display openflowUse display openflow to display controller information for an OpenFlow instance. Syntax display openflow instance instance-id { controller [ controller-id ] | listened } Views Any view Predefined user roles network-admin network-operator Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. controller-id: Specifies a controller by its ID in the range of 0 to 63. If you do not specify a controller ID, this command displays information about all controllers for an OpenFlow instance. listened: Specifies the client that connects to the server that is enabled for the OpenFlow instance. Examples # Display controller information for OpenFlow instance 100. display openflow instance 100 controller Instance 1 controller information: Reconnect interval : 60 (s) Echo interval : 5 (s)
Controller ID : 1 Controller IP address : 192.168.49.49 Controller port : 6633 Local IP address : 192.0.0.1 Local port : 5566 Controller role : Equal Connect type : TCP Connect state : Established Packets sent : 9 Packets received : 9 SSL policy : -- VRF name : -- Table 1 Command output Field Description Reconnect interval Reconnection interval (in seconds) for an OpenFlow instance to reconnect to all controllers. Echo interval Connection detection interval (in seconds) at which an OpenFlow instance sends an echo request message to all controllers. Controller IP address IP address of the controller. Controller port TCP port number of the controller. Local IP address Source IP address of the controller that is connected to the OpenFlow instance. Local port Source TCP port number of the current controller. Controller role Role of the controller: · Equal—The controller has the same mode as other controllers that are specified for the OpenFlow instance. · Master—The controller is the master controller for the OpenFlow instance. · Slave—The controller is a subordinate controller for the OpenFlow instance. If the controller is not configured with any role, this field displays two hyphens (--). Connect type Type of the connection between the OpenFlow instance and the controller: TCP or SSL. Connect state State of the connection between the OpenFlow instance and the controller: Idle or Established. Packets sent Number of packets that have been sent to the controller. Packets received Number of packets that have been received from the controller. SSL policy Name of the SSL client policy used for SSL connections. If no SSL client policy is configured, this field displays two hyphens (--). VRF name Name of the MPLS L3VPN to which the controller belongs. If no MPLS L3VPN instance is configured, this field displays two hyphens (--). display openflow auxiliary Use display openflow auxiliary to display auxiliary connection information for an OpenFlow instance. Syntax display openflow instance instance-id auxiliary [ controller-id [ auxiliary auxiliary-id ] ] Views Any view Predefined user roles network-admin network-operator Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. controller-id: Specifies a controller by its ID in the range of 0 to 63. auxiliary auxiliary-id: Specifies an auxiliary connection by its ID in the range of 1 to 255. Examples # Display auxiliary connection information for OpenFlow instance 100. display openflow instance 100 auxiliary Controller ID: 1 Auxiliary connection number: 2 Auxiliary connection ID : 1 Controller IP address : 192.168.49.48 Controller port : 6633 Connect type : TCP Connect state : Established Packets sent : 9 Packets received : 9 SSL policy : --
Auxiliary connection ID : 2 Controller IP address : 192.168.49.49 Controller port : 6633 Connect type : TCP Connect state : Established Packets sent : 9 Packets received : 9 SSL policy : -- Table 2 Command output Field Description Auxiliary connection number Total number of auxiliary connections. Auxiliary connection ID ID of an auxiliary connection. Controller IP address IP address of the controller. Controller port TCP port number of the controller. Connect type Type of the connection between the OpenFlow instance and the controller: TCP UDP, or SSL. Connect state State of the connection between the OpenFlow instance and the controller: Idle or Established. Packets sent Number of packets that have been sent to the controller. Packets received Number of packets that have been received from the controller. SSL policy Name of the SSL client policy used for SSL connections. If no SSL client policy is configured, this field displays two hyphens (--). display openflow flow-table Use display openflow flow-table to display flow table information for an OpenFlow instance. Syntax display openflow instance instance-id flow-table [ table-id ] Views Any view Predefined user roles network-admin network-operator Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. table-id: Specifies a flow table by its ID in the range of 0 to 254. If you do not specify a flow table ID, the command displays information about all flow tables for the specified OpenFlow instance. Examples # Display information about all flow tables for OpenFlow instance 100. display openflow instance 100 flow-table Instance 100 flow table information:
Table 0 information: Table type: MAC-IP, flow entry count: 1, total flow entry count: 2
MissRule (default) Flow entry information: cookie: 0x0, priority: 0, hard time: 0, idle time: 0, flags: reset_counts |no_pkt_counts|no_byte_counts, byte count: --, packet count: -- Match information: any Instruction information: Write actions: Drop
Flow entry rule 1 information: cookie: 0x0, priority: 1, hard time: 0, idle time: 0, flags: none, byte count: --, packet count: -- Match information: Ethernet destination MAC address: 0000-0000-0001 Ethernet destination MAC address mask: ffff-ffff-ffff VLAN ID: 100, mask: 0xfff Instruction information: Write actions: Output interface: GE1/0/4 Write metadata/mask: 0x0000000000000001/0xffffffffffffffff Goto table: 1
Table 1 information: Table type: Extensibility, flow entry count: 2, total flow entry count: 2
MissRule (default) Flow entry information: cookie: 0x0, priority: 0, hard time: 0, idle time: 0, flags: none, byte count: 300, packet count: 60 Match information: any Instruction information: Write actions: Drop
Flow entry rule 1 information: (Not effective) cookie: 0x0, priority: 0, hard time: 0, idle time: 0, flags: flow_send_rem |check_overlap, byte count: 8, packet count: 1 Match information: Input interface: GE1/0/3 Ethernet source MAC address: 0000-0000-0001 Ethernet source MAC address mask: ffff-ffff-ffff Instruction information: Set meter: 100 Apply actions: Output interface: GE1/0/4 Write actions: Output interface: Controller, send length: 128 bytes Table 3 Command output Field Description Table information Information about the flow table. Table type Type of the flow table: MAC-IP or Extensibility. flow entry count Number of flow entries deployed by the controller. total flow entry count Total number of flow entries in the table. Flow entry rule information Information about the flow entry. If the flow entry does not take effect, this field displays Not effective. cookie Cookie ID of the flow entry. priority Priority of the flow entry. The larger the value, the higher the priority. hard time Hard timeout of the flow entry, in seconds. The flow entry is removed when the timer times out, whether or not the flow entry matches any data stream. If the flow entry has no hard timeout, the field displays 0. idle time Idle timeout of the flow entry, in seconds. The flow entry is removed if the flow entry does not match any data stream during the idle time. If the flow entry has no idle timeout, the field displays 0. flags Flags that the flow entry includes: · flow_send_rem—Sends a flow removed message when the flow entry is removed or expires. · check_overlap—Checks for overlapping flow entries. · reset_counts—Resets flow table counters. · no_pkt_counts—Does not count packets. · no_byte_counts—Does not count bytes. If the flow entry does not include any flags, this field displays none. byte count Number of bytes that have matched the flow entry. packet count Number of packets that have matched the flow entry. Match information Contents of the match field of the flow entry (see Table 4). Instruction information Contents of the instruction set of the flow entry: · Set meter—Sends the matched packet to a specific meter. · Write metadata—Writes the value into the metadata fields of the matched packet. Metadata is used for passing messages between flow tables. · Write metadata mask—Specifies which bits of the metadata should be modified. · Goto table—Sends the matched packet to the next flow table for processing. · Clear actions—Immediately clears all actions in the action set. · Apply actions—Immediately applies specified actions in the action set. · Write actions—Writes specified actions into the current action set. For more information about actions, see Table 6.
Table 4 Match field types Field Mask field Description Input interface N/A Ingress port (see Table 7). Physical input interface N/A Ingress physical port. Metadata Metadata mask Metadata and mask. Ethernet destination MAC address Ethernet destination MAC address mask Ethernet destination MAC address and mask. Ethernet source MAC address Ethernet source MAC address mask Ethernet source MAC address and mask. Ethernet type N/A Ethernet type of the OpenFlow packet payload. VLAN ID Mask VLAN ID and mask. VLAN PCP N/A VLAN priority. IP DSCP N/A Differentiated Services Code Point (DSCP) value. IP ECN N/A Explicit Congestion Notification (ECN) value in the IP header. IP protocol N/A IPv4 or IPv6 protocol number. IPv4 source address Mask IPv4 source address and mask. IPv4 destination address Mask IPv4 destination address and mask. TCP source port Mask TCP source port and mask. TCP destination port Mask TCP destination port and mask. UDP source port Mask UDP source port and mask. UDP destination port Mask UDP destination port and mask. SCTP source port Mask Stream Control Transmission Protocol (SCTP) source port and mask. SCTP destination port Mask SCTP destination port and mask. ICMPv4 type N/A ICMPv4 type. ICMPv4 code N/A ICMPv4 code. ARP opcode N/A ARP opcode. ARP source IPv4 address Mask Sender IPv4 address and mask in the ARP payload. ARP target IPv4 address Mask Target IPv4 address and mask in the ARP payload. ARP source MAC address ARP source MAC address mask Sender MAC address and mask in the ARP payload. ARP target MAC address ARP target MAC address mask Target MAC address and mask in the ARP payload. IPv6 source address IPv6 source address mask Source IPv6 address and mask. IPv6 destination address IPv6 destination address mask Destination IPv6 address and mask. IPv6 flow label Mask IPv6 flow label and mask. ICMPv6 type N/A ICMPv6 type. ICMPv6 code N/A ICMPv6 code. IPv6 ND target address N/A Target IP address in an IPv6 Neighbor Discovery message. IPv6 ND source MAC address N/A Source link-layer address in an IPv6 Neighbor Discovery message. IPv6 ND target MAC address N/A Target link-layer address in an IPv6 Neighbor Discovery message. MPLS label N/A Label in the first MPLS header. MPLS tc N/A Traffic Class (TC) in the first MPLS header. MPLS bos N/A Bottom of stack flag in the MPLS label. Tunnel ID Mask Metadata and mask that are associated with a logical port. IPv6 extension header Mask IPv6 extension header and mask. Output interface N/A Output port. VRF index N/A VPN index. Fragment N/A Fragment. Physical output interface N/A Output physical port. CVLAN ID Mask CVLAN ID and mask. Experimenter N/A Proprietary matching information. For more information, see Table 5.
Table 5 Proprietary match field types Field Mask field Description In-BSSID N/A Ingress port BSSID. Out-BSSID N/A output port BSSID. Eapol N/A 802.1X authentication packet type and packet offset.
Table 6 Actions Field Description Drop Drops the matched packet. This action is not defined in the OpenFlow specifications. Output interface Sends the packet through a specific port. For more information about ports, see Table 7. send length Specifies the max length of bytes to be taken from the packet and sent to the controller. This field appears only when the reserved port of the controller type is specified as the output port. Group Specifies a group table to process the packet. Set queue Maps the flow entry to a queue specified by its ID. Set field Modifies a field of the packet. Set MPLS TTL Sets the MPLS TTL. Set IP TTL Sets the IP TTL. Push VLAN tag Adds a VLAN tag to the packet. Push MPLS tag Adds an MPLS tag to the packet. Pop MPLS tag Removes the outermost MPLS tag from the packet. Push PBB tag Adds a PBB service tag to the packet. Pop VLAN tag Removes the outermost VLAN tag from the packet. Pop PBB tag Removes the outermost PBB service tag from the packet. Decrement MPLS TTL Decreases the MPLS TTL by 1. Decrement IP TTL Decreases the IP TTL by 1. Copy TTL inwards Copies the TTL from the outermost header to the second outermost header. Copy TTL outwards Copies the TTL from the second outermost header to the outermost header.
Table 7 Ports Port name Ingress port Output port Description In port Not supported. Supported. Forwarding the packet out of the ingress port. Table Not supported. Supported. Submitting the packet to the first flow table so that the packet can be processed through the regular OpenFlow pipeline. Normal Not supported. Supported. Processing the packet by using the normal forwarding process. Flood Not supported. Supported. Flooding the packet. All Not supported. Supported. Forwarding the packet out of all ports. Controller Supported. Supported. Sending the packet to the controller. Local Supported. Supported. Sending the packet to the local CPU. Any Not supported. Not supported. Special value used in some OpenFlow commands when you do not specify a port. port name Supported. Supported. Valid physical or logical port on the switch. display openflow instance Use display openflow instance to display detailed information about an OpenFlow instance. Syntax display openflow instance [ instance-id ] Views Any view Predefined user roles network-admin network-operator Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. If you do not specify an instance ID, this command displays detailed information about all OpenFlow instances. Examples # Display detailed information about all OpenFlow instances. display openflow instance 100 Instance 100 information:
Configuration information: Description : test-desc Active status : Active Inactive configuration: None Active configuration: Classification: VLAN, loosen mode, total VLANs(1) 2 In-band management VLAN, total VLANs(0) Empty VLAN Connect mode: Multiple MAC address learning: Disabled Flow table: Table ID(type): 0(MAC-IP), count: 0 Flow-entry max-limit: 65535 Datapath ID: 0x0000001234567891 Default table-miss: Drop Forbidden port: None Port information: GigabitEthernet1/0/3 Active channel information: Controller 1 IP address: 192.168.49.49 port: 6633 Controller 2 IP address: 192.168.43.49 port: 6633 … Table 8 Command output Field Description Configuration information Information about the configuration. Description Description of the OpenFlow instance. Active status OpenFlow instance status: Active or Inactive. Inactive configuration Inactive configuration for the OpenFlow instance. Active configuration Active configuration for the OpenFlow instance. Classification: VLAN, total VLANs VLANs that are associated with the OpenFlow instance and the total number of these VLANs. Classification: Port The port mode is enabled. loose mode The loose mode is used. In-band management VLAN, total VLANs Inband management VLANs and the total number of them. Connect mode Connection mode of the controller: · Single—The OpenFlow instance connects to only one controller at a time. · Multiple—The OpenFlow instance can simultaneously connect to multiple controllers. MAC address learning Whether MAC address learning is disabled: Enabled or Disabled. Flow table Flow table information for the OpenFlow instance. Table ID(type) Type of the flow table: MAC-IP or Extensibility. count Total number of flow entries included in the current flow table. Flow-entry max-limit Maximum number of flow entries allowed in the extensibility flow table. Datapath ID Datapath ID of the OpenFlow instance. Default table-miss Default action of the table-miss flow entry: Permit or Drop. Forbidden port Type of interfaces that are forbidden to be reported to the controller: · L3 Physical Interface—Layer 3 Ethernet interfaces and Layer 3 aggregate interfaces. · VLAN interface. · Virtual Switch Interface. Port information Ports that have been added to the OpenFlow instance. Active channel information Information about active channels. IP address IP address of the controller configured for the OpenFlow instance. Port TCP port number that is used to connect to the controller. Fail-open mode Connection interruption mode for the OpenFlow instance: · Standalone. · Secure. display openflow meter Use display openflow meter to display meter information for an OpenFlow instance. Syntax display openflow instance instance-id meter [ meter-id ] Views Any view Predefined user roles network-admin network-operator Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. meter-id: Specifies a meter by its ID in the range of 1 to 4294901760. If you do not specify a meter ID, this command displays information about all meter entries for an OpenFlow instance. Examples # Display meter information for OpenFlow instance 100. display openflow instance 100 meter Meter flags: KBPS -- Rate value in kb/s, PKTPS -- Rate value in packet/sec BURST -- Do burst size, STATS -- Collect statistics
Instance 100 meter table information: meter entry count: 2
Meter entry 100 information: Meter flags: KBPS Band 1 information Type: drop, rate: 1024, burst size: 65536 Byte count: 0, packet count: 0 Referenced information: Count: 3 Flow table: 0 Flow entry: 1, 2, 3
Meter entry 200 information: Meter flags: KBPS Band 1 information Type: drop, rate: 10240, burst size: 655360 Byte count: 0, packet count: 0 Referenced information: Count: 0 Table 9 Command output Field Description Group entry count Total number of meter entries that the OpenFlow instance has. Meter flags Flags configured for the meter: · KBPS—The rate value is in kbps. · PKTPS—The rate value is in pps. · BURST—The burst size field in the band is used and the length of the packet or byte burst is determined by the burst size. · STATS—Meter statistics are collected. Band Bands contained in the meter. Type Type of the band: · drop—Discard the packet. · dscp_remark—Modify the drop precedence of the DSCP field in the IP header of the packet. Rate Rate value above which the corresponding band applies to packets. Burst size Length of the packet or byte burst to consider for applying the meter. Byte count Number of bytes processed by a band. If this field is not supported, the field displays two hyphens (--). packet count Number of packets processed by a band. If this field is not supported, the field displays two hyphens (--). Referenced information Information about the meter entry used by flow entries. Count Total number of flow entries that use the meter entry. Flow table Flow table to which the flow entries that use the meter entry belong. Flow entry Flow entries that use the meter entry. display openflow summary Use display openflow summary to display brief OpenFlow instance information. Syntax display openflow instance summary Views Any view Predefined user roles network-admin network-operator Examples # Display brief OpenFlow instance information. display openflow summary Fail-open mode: Se - Secure mode, Sa - Standalone mode
ID Status Datapath-ID Channel Table num Port num Reactivate 1 Active 0x0000000100001221 Connected 2 8 Y 10 Inactive - - - - - 4094 Active 0x00000ffe00001221 Fail(Sa) 2 0 N OAP Active 0x0000100200001221 Fail(Sa) 1 8 N Table 10 Command output Field Description ID OpenFlow instance ID. Status Activation status of the OpenFlow instance: · Active—The OpenFlow instance has been activated. · Inactive—The OpenFlow instance has not been activated. Datapath-ID Datapath ID of the OpenFlow instance. If the OpenFlow instance is not activated, this field displays a hyphen (-). Channel Status of the OpenFlow channel to the controller: · Connected—An OpenFlow channel has been established. · Fail(Se)—The OpenFlow channel is disconnected from the controller, and the OpenFlow instance is in secure mode. · Fail(Sa)—The OpenFlow channel is disconnected from the controller, and the OpenFlow instance is in standalone mode. If the OpenFlow instance is not activated, this field displays a hyphen (-). Table num Number of flow tables that the OpenFlow instance has. If the OpenFlow instance is not activated, this field displays a hyphen (-). Port num Number of ports that belong to the OpenFlow instance. If the OpenFlow instance is not activated, this field displays a hyphen (-). Reactivate Whether the OpenFlow instance is required to be reactivated. · Y—The configuration is changed, and the OpenFlow instance is required to be reactivated. · N—The configuration is unchanged, and the OpenFlow instance is not required to be reactivated. If the OpenFlow instance is not activated, this field displays a hyphen (-). fail-open mode Use fail-open mode to set the connection interruption mode for an OpenFlow switch. Use undo fail-open mode to restore the default. Syntax fail-open mode { secure | standalone } undo fail-open mode Default The connection interruption mode is secure. Views OpenFlow instance view Predefined user roles network-admin Parameters secure: Configures the OpenFlow switch to use flow tables for traffic forwarding after it is disconnected from all controllers. The OpenFlow switch does not remove unexpired flow entries. standalone: Configures the OpenFlow switch to use the normal forwarding process after it is disconnected from all controllers. Examples # Set the connection interruption mode to standalone for OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] fail-open mode standalone flow-entry max-limitUse flow-entry max-limit to set the maximum number of entries for an extensibility flow table on an OpenFlow switch. Use undo flow-entry max-limit to restore the default. Syntax flow-entry max-limit limit-value undo flow-entry max-limit Default The maximum number of entries for an extensibility flow table on an OpenFlow switch is 32768. Views OpenFlow instance view Predefined user roles network-admin Parameters limit-value: Specifies the maximum number of flow entries for an extensibility flow table. The value range for this argument is 1 to 32768. Usage guidelines If the number of extensibility flow table entries deployed from a controller to an OpenFlow switch exceeds the maximum, the switch returns a failure message to the controller. When multiple extensibility flow tables exist, this command sets a limit on every extensibility flow table. Examples # Configure OpenFlow instance 1 to have a maximum of 256 entries in each extensibility flow table. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] flow-entry max-limit 256 forbidden portUse forbidden port to forbid an OpenFlow instance from reporting ports of the specified types to controllers. Use undo forbidden port to restore the default. Syntax forbidden port { vlan-interface | vsi-interface } * undo forbidden port Default No port types are prevented from being reported to the controllers. All ports that belong to an OpenFlow instance are reported to the controllers. Views OpenFlow instance view Predefined user roles network-admin Parameters vlan-interface: Specifies VLAN interfaces that belong to an OpenFlow instance. vsi-interface: Specifies virtual switch instance (VSI) interfaces that belong to an OpenFlow instance. Examples # Forbid OpenFlow instance 1 from reporting VLAN interfaces that belong to the OpenFlow instance to controllers. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] forbidden port vlan-interface in-band management vlanUse in-band management vlan to configure inband management VLANs for an OpenFlow instance. Use undo in-band management vlan to restore the default. Syntax in-band management vlan { vlan-id [ to vlan-id ] } & undo in-band management vlan Default No inband management VLANs are configured for an OpenFlow instance. Views OpenFlow instance view Predefined user roles network-admin Parameters vlan-id: Specifies a VLAN ID in the range of 1 to 4094. Usage guidelines Traffic in inband management VLANs is forwarded in the normal forwarding process for an OpenFlow instance to establish secure connections to controllers. Examples # Configure VLAN 10 as the inband management VLAN for OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] in-band management vlan 10 listening portUse listening port to configure an OpenFlow instance to act as an SSL server to listen to controllers. Use undo listening port to restore the default. Syntax listening port port-number ssl ssl-policy-name undo listening port Default An OpenFlow instance is not configured to acts as an SSL server to listen to controllers. Views OpenFlow instance view Predefined user roles network-admin Parameters port-number: Specifies the SSL server port number in the range of 1 to 65535. ssl ssl-policy-name: Specifies the SSL server policy name, a case-insensitive string of 1 to 31 characters. Usage guidelines Typically, an OpenFlow instance actively connects to the controller and acts as a TCP/SSL client. After the SSL server is enabled for an OpenFlow instance, the controller acts as the SSL client and actively connects to the OpenFlow instance. For more information about SSL, see Security Configuration Guide. To re-configure the SSL server, first execute the undo form of the command to delete the existing SSL server configuration. Examples # Configure OpenFlow instance 1 to act as an SSL server with port number 20000 and SSL server policy name ssl_name. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] listening port 20000 ssl ssl_name mac-learning forbiddenUse mac-learning forbidden to configure OpenFlow to forbid MAC address learning in VLANs associated with an OpenFlow instance. Use undo mac-learning forbidden to restore the default. Syntax mac-learning forbidden undo mac-learning forbidden Default MAC address learning is allowed for VLANs associated with an OpenFlow instance. Views OpenFlow instance view Predefined user roles network-admin Examples # Forbid MAC address learning in VLANs associated with OpenFlow instance 1. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] mac-learning forbidden openflow instanceUse openflow instance to create an OpenFlow instance and enter its view, or enter the view of an existing OpenFlow instance. Use undo openflow instance to remove an OpenFlow instance. Syntax openflow instance instance-id undo openflow instance instance-id Default No OpenFlow instances exist. Views System view Predefined user roles network-admin Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. Examples # Create OpenFlow instance 1 and enter OpenFlow instance view. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] openflow-instanceUse openflow-instance to bind a port to an OpenFlow instance. Use undo openflow-instance to unbind a port from an OpenFlow instance. Syntax openflow-instance instance-id undo openflow-instance instance-id Default A port is not bound to an OpenFlow instance. Views Interface view Predefined user roles network-admin Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. Examples # Bind GigabitEthernet 1/0/1 to OpenFlow instance 1. OpenFlow instance 1 has existed and has had port mode enabled. system-view [Sysname] interface gigabitethernet 1/0/1 [Sysname-GigabitEthernet1/0/1] openflow-instance 1 portUse port to bind an OpenFlow instance to ports. Use undo port to unbind an OpenFlow instance from ports. Syntax port interface-type interface-number1 [ to interface-type interface-number2 ] undo port interface-type interface-number1 [ to interface-type interface-number2 ] Default An OpenFlow instance is not bound to any ports. Views OpenFlow instance view Predefined user roles network-admin Parameters interface-type interface-number1 [ to interface-type interface-number2 ]: Specifies a range of Ethernet interfaces, where interface-type interface-number represents the interface type and interface number. The start interface number must be smaller than or equal to the end interface number. Examples # Bind OpenFlow instance 1 to interfaces GigabitEthernet 1/0/1 through GigabitEthernet 1/0/3. system-view [Sysname] openflow instance 1 [Sysname-of-inst-1] port gigabitethernet 1/0/1 to gigabitethernet 1/0/3 reset openflow instance statisticsUse reset openflow instance statistics to clear statistics on packets that a controller sends and receives for an OpenFlow instance. Syntax reset openflow instance instance-id { controller [ controller-id ] | listened } statistics Views User view Predefined user roles network-admin Parameters instance-id: Specifies an OpenFlow instance by its ID in the range of 1 to 4094. controller-id: Specifies a controller by its ID in the range of 0 to 63. If you do not specify a controller ID, this command clears statistics on packets that all controllers send and receive for an OpenFlow instance. listened: Specifies the client that connects to the server enabled for the OpenFlow instance. Examples # Clear statistics on packets that all controllers send and receive for OpenFlow instance 1. reset openflow instance 1 controller statistics
|
CopyRight 2018-2019 办公设备维修网 版权所有 豫ICP备15022753号-3 |