Table Of Contents

sctp

serverfarm

service-module ip redundancy

show debugging

show fm slb counters

show glbp

show interface mac

show interface precedence

show ip accounting

show ip casa affinities

show ip casa oper

show ip casa stats

show ip casa wildcard

show ip dfp

show ip helper-address

show ip icmp rate-limit

show ip redirects

show ip sctp association list

show ip sctp association parameters

show ip sctp association statistics

show ip sctp errors

show ip sctp instances

show ip sctp statistics

sctp

To enter the Stream Control Transmission Protocol (SCTP) configuration, use the sctp command in IDSN User Adaptation Layer (IUA) configuration mode. To disable, use the no form of this command.

sctp [[t1-init milliseconds] [t3-rtx-min seconds] [t3-rtx-max milliseconds] [startup-rtx number] [assoc-rtx number] [path-rtx number]]

no sctp

Syntax Description

t1-init milliseconds	Timer T1 initiation value in milliseconds. Valid values are from 1000 to 60000. The t1-init configurable option applies only during the creation of an SCTP instance.
t3-rtx-min seconds	Timer T3 retransmission minimum timeout in seconds. Valid values are from 1 to 300.
t3-rtx-max milliseconds	Timer T3 retransmission maximum timeout in milliseconds. Valid values are from 1000 to 60000.
startup-rtx number	Maximum startup retransmissions. The startup-rtx configurable option applies only during the creation of an SCTP instance. Valid values are from 2 to 20.
assoc-rtx number	Maximum association retransmissions. Valid values are from 2 to 20.
path-rtx number	Maximum path retransmissions. Valid values are from 2 to 20.

Command Default

No default behavior or values.

Command Modes

IUA configuration (config-iua)

Command History

Release	Modification
12.2(15)T	This command was introduced on the Cisco 2420, Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series; and Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850 network access server (NAS) platforms.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

To enter SCTP configuration commands, you must first enter IUA configuration mode and then enter sctp at the Router(config-iua)# prompt to enter SCTP configuration mode.

Examples

The following example shows how to enter IUA configuration mode:

Router# configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router(config)# iua

Router(config-iua)#

The following is an example of how to set failover time (in milliseconds) between 1 and 10 seconds as part of SCTP configuration of the T1 initiation timer. This example uses the lowest failover timer value allowed (1 second):

Router(config-iua)# as as5400-3 fail-over 1000

The following is an example of how to set SCTP maximum startup retransmission interval. This example uses the maximum startup retransmission interval value allowed:

Router(config-iua)# as as5400-3 sctp-startup 20

The following is an example of how to configure the number of SCTP streams for this AS. This example uses the maximum SCTP streams allowed:

Router(config-iua)# as as5400-3 sctp-streams 57

The following is an example of how to configure the SCTP T1 initiation timer (in milliseconds). This example uses the maximum timer value allowed:

Router(config-iua)# as as5400-3 sctp-t1init 60000

Related Commands

Command	Description
pri-group (pri-slt)	Specifies an ISDN PRI on a channelized T1 or E1 controller.

serverfarm

To associate an IPv4 server farm with a virtual server, and optionally configure an IPv4 backup server farm, an IPv6 server farm and backup server farm, and specify that sticky connections are to be used in the IPv4 backup server farm, use the serverfarm command in SLB virtual server configuration mode. To remove the server farm association from the virtual server configuration, use the no form of this command.

serverfarm primary-farm [backup backup-farm [sticky]] [ipv6-primary ipv6-primary-farm [ipv6-backup ipv6-backup-farm]] [map map-id priority priority]

no serverfarm primary-farm [backup backup-farm [sticky]] [ipv6-primary ipv6-primary-farm [ipv6-backup ipv6-backup-farm]] [map map-id priority priority]

Syntax Description

primary-farm	Name of a primary server farm that has already been defined using the ip slb serverfarm command. •For IPv4 or dual-stack, name of the IPv4 server farm. •For IPv6, name of the IPv6 server farm.
backup backup-farm	(Optional) Name of a backup server farm that has already been defined using the ip slb serverfarm command. •For IPv4 or dual-stack backup, name of the IPv4 server farm. •For IPv6 backup, name of the IPv6 server farm.
sticky	(Optional) Specifies that sticky connections are to be used in the backup server farm.
ipv6-primary ipv6-primary-farm	(Optional) For dual-stack, name of the primary IPv6 server farm that has already been defined using the ip slb serverfarm command.
ipv6-backup ipv6-backup-farm	(Optional) For dual-stack, name of the backup IPv6 server farm that has already been defined using the ip slb serverfarm command.
map map-id priority priority	(Optional) Associates an IOS SLB GPRS Tunneling Protocol (GTP) or RADIUS map with the server farm for general packet radio service (GPRS) or RADIUS load balancing. The map ID identifies a specific map that has already been defined using the ip slb map command. The priority specifies the order of preference of the specified map. A lower number indicates a higher priority. The range of priorities is 1 to 255. Priorities for different maps do not have to be contiguous. That is, you can have three maps with priorities 1, 5, and 10, respectively. When IOS SLB searches for a match, it does so on the basis of both the map ID and the map priority. Each map ID and each map priority must be unique across all server farms associated with the virtual server. That is, you cannot configure more than one map with the same ID or priority.

Command Default

No real server farm is associated with a virtual server.
If backup backup-farm is not specified, no IPv4 backup server farm is configured.
If backup backup-farm is specified but the sticky keyword is not specified, sticky connections are not used in the IPv4 backup server farm.
If ipv6-primary ipv6-primary-farm is not specified, no dual-stack backup server farm is configured.
If ipv6-backup ipv6-backup-farm is not specified, no dual-stack backup server farm is configured.

Command Modes

SLB virtual server configuration (config-slb-vserver)

Command History

Release	Modification
12.0(7)XE	This command was introduced.
12.1(5)T	This command was integrated into Cisco IOS Release 12.1(5)T.
12.2	This command was integrated into Cisco IOS Release 12.2.
12.1(8a)E	The backup and sticky keywords and the backup-farm argument were added.
12.2(14)S	This command was integrated into Cisco IOS Release 12.2(14)S.
12.2(18)SXE	This command was integrated into Cisco IOS Release 12.2(18)SXE.
12.2(33)SRB	The map and priority keywords and the map-id and priority arguments were added.
15.0(1)S	The ipv6-primary and ipv6-backup keywords and the ipv6-primary-farm and ipv6-backup-farm arguments were added.

Usage Guidelines

RADIUS load balancing and the Home Agent Director do not support the sticky keyword.

You can associate more than one server farm with a given virtual server by configuring more than one serverfarm command, each with a unique map ID and a unique priority. (That is, each map ID and each map priority must be unique across all server farms associated with the virtual server.)

For GPRS load balancing, if a real server is defined in two or more server farms, each server farm must be associated with a different virtual server.

IOS SLB supports dual-stack addresses for GTP load balancing only.

All IPv4 or IPv6 server farms that are associated with the same virtual server must have the same NAT configuration.

If you associate a primary server farm with a backup server farm, then all of the server farm maps that use that primary server farm must also be configured to use that same backup serverfarm. You cannot configure a server farm map that uses that primary server farm and no backup server farm.

•For example, if you configure primary server farm SF1 with backup server farm SF2, then all of the server farm maps that are configured with SF1 as the primary serverfarm must also be configured with SF2 as the backup serverfarm, as follows:

ip slb vserver RADIUS

 virtual 2.2.2.2 udp 0 service radius

 serverfarm SF1 backup SF2 map 1 priority 1

 serverfarm SF1 backup SF2

 inservice

•Furthermore, if you configure primary server farm SF1 with backup server farm SF2, you cannot then configure a server farm map to use SF1 as the primary server farm with no backup server farm. That is, the following is not allowed:

ip slb vserver RADIUS

 virtual 2.2.2.2 udp 0 service radius

 serverfarm SF1 map 1 priority 1

 serverfarm SF1 backup SF2

 inservice

•The backup server farm associated with an IOS SLB protocol map cannot be associated as a backup server farm with any other map in a given virtual server.

Examples

The following example shows how the ip slb vserver, virtual, and serverfarm commands are used to associate the real server farm named PUBLIC with the virtual server named PUBLIC_HTTP.

Router(config)# ip slb vserver PUBLIC_HTTP

Router(config-slb-vserver)# virtual 10.0.0.1 tcp www

Router(config-slb-vserver)# serverfarm PUBLIC

Related Commands

Command	Description
ip slb serverfarm	Identifies a server farm and enters server farm configuration mode.
show ip slb vservers	Displays information about the virtual servers defined to IOS Server Load Balancing (IOS SLB).
virtual	Configures the virtual server attributes.

service-module ip redundancy

To link the primary HSRP interface status to that of the satellite interface, use the service-module ip redundancy command in satellite interface configuration mode. To remove the link between the primary HSRP interface status and the satellite interface status, use the no form of this command.

service-module ip redundancy group-name

no service-module ip redundancy group-name

Syntax Description

group-name

Name of the hot standby group. This name must match the hot standby group name configured for the primary HSRP interface, which is typically an Ethernet interface.

Defaults

HSRP is disabled.

Command Modes

Satellite interface configuration (config-if)

Command History

Release	Modification
12.3(14)T	This command was introduced.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Usage Guidelines

Use the service-module ip redundancy command only when you have two Cisco IP VSAT satellite WAN network modules (NM-1VSAT-GILAT) on separate HSRP-redundant routers that connect to the same outdoor unit (ODU).

This command enables the satellite interface to spoof the line protocol UP state.

Examples

The following example shows how to link the primary HSRP interface status to that of the satellite interface:

service-module ip redundancy grp-hsrp 

Related Commands

Command	Description
standby ip	Activates HSRP.
standby name	Configures the name of the hot standby group.
standby preempt	Enables preemption on the router and optionally configures a preemption delay.
standby track	Configures an interface so that the hot standby priority changes based on the availability of other interfaces.

show debugging

To display information about the types of debugging that are enabled for your router, use the show debugging command in privileged EXEC mode.

show debugging

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
11.1	This command was introduced.
12.3(7)T	The output of this command was enhanced to show TCP Explicit Congestion Notification (ECN) configuration.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2(31)SB2	This command was integrated into Cisco IOS Release 12.2(31)SB2.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.
12.4(20)T	The output of this command was enhanced to show the user-group debugging configuration.

Examples

The following is sample output from the show debugging command. In this example, the remote host is not configured or connected.

Router# show debugging

!

TCP:

  TCP Packet debugging is on

  TCP ECN debugging is on

!

Router# telnet 10.1.25.234

!

Trying 10.1.25.234 ... 

!

00:02:48: 10.1.25.31:11001 <---> 10.1.25.234:23 out ECN-setup SYN

00:02:48: tcp0: O CLOSED 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 ECE CWR SYN  WIN 4128

00:02:50: 10.1.25.31:11001 <---> 10.1.25.234:23 congestion window changes

00:02:50: cwnd from 1460 to 1460, ssthresh from 65535 to 2920

00:02:50: tcp0: R SYNSENT 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 ECE CWR SYN  WIN 4128

00:02:54: 10.1.25.31:11001 <---> 10.1.25.234:23 congestion window changes

00:02:54: cwnd from 1460 to 1460, ssthresh from 2920 to 2920

00:02:54: tcp0: R SYNSENT 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 ECE CWR SYN  WIN 4128

00:03:02: 10.1.25.31:11001 <---> 10.1.25.234:23 congestion window changes

00:03:02: cwnd from 1460 to 1460, ssthresh from 2920 to 2920

00:03:02: tcp0: R SYNSENT 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 ECE CWR SYN  WIN 4128

00:03:18: 10.1.25.31:11001 <---> 10.1.25.234:23 SYN with ECN disabled

00:03:18: 10.1.25.31:11001 <---> 10.1.25.234:23 congestion window changes

00:03:18: cwnd from 1460 to 1460, ssthresh from 2920 to 2920

00:03:18: tcp0: O SYNSENT 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 SYN  WIN 4128

00:03:20: 10.1.25.31:11001 <---> 10.1.25.234:23 congestion window changes

00:03:20: cwnd from 1460 to 1460, ssthresh from 2920 to 2920

00:03:20: tcp0: R SYNSENT 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 SYN  WIN 4128

00:03:24: 10.1.25.31:11001 <---> 10.1.25.234:23 congestion window changes

00:03:24: cwnd from 1460 to 1460, ssthresh from 2920 to 2920

00:03:24: tcp0: R SYNSENT 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 SYN  WIN 4128

00:03:32: 10.1.25.31:11001 <---> 10.1.25.234:23 congestion window changes

00:03:32: cwnd from 1460 to 1460, ssthresh from 2920 to 2920

00:03:32: tcp0: R SYNSENT 10.1.25.234:11001 10.1.25.31:23 seq 1922220018

        OPTS 4 SYN  WIN 4128

!Connection timed out; remote host not responding

The following is sample output from the show debugging command when user-group debugging is configured:

Router# show debugging

!

usergroup:

 Usergroup Deletions debugging is on

 Usergroup Additions debugging is on

 Usergroup Database debugging is on

 Usergroup API debugging is on

!

The following is sample output from the show debugging command when SNAP debugging is configured:

Router# show debugging

Persistent variable debugging is currently All

SNAP Server Debugging ON

SNAP Client Debugging ON

Router#

Table 3 describes the significant fields in the output.

Table 3 show debugging Field Descriptions 

Field	Description
OPTS 4	Bytes of TCP expressed as a number. In this case, the bytes are 4.
ECE	Echo congestion experience.
CWR	Congestion window reduced.
SYN	Synchronize connections—Request to synchronize sequence numbers, used when a TCP connection is being opened.
WIN 4128	Advertised window size, in bytes. In this case, the bytes are 4128.
cwnd	Congestion window (cwnd)—Indicates that the window size has changed.
ssthresh	Slow-start threshold (ssthresh)—Variable used by TCP to determine whether or not to use slow-start or congestion avoidance.
usergroup	Statically defined usergroup to which source IP addresses are associated.

show fm slb counters

To display information about the Feature Manager (FM) IOS Server Load Balancing (IOS SLB) counters, use the show fm slb counters command in privileged EXEC mode.

show fm slb counters

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(18)SXF5	This command was introduced.

Examples

The following sample output from the show fm slb counters command shows counter information for virtual server 10.11.11.11:

Router# show fm slb counters

FM SLB Purge Counters:

Global Purges:    0

TCP Purges:       0

UDP Purges:       0

Virtual Purges:   0

Flow Purges:      0

FM SLB Netflow Install Counters

[Slot 6 ] Install Request Sent           3

Table 4 describes the fields shown in the display.

Table 4 show fm slb counters Field Descriptions 

Field	Description
Global Purges	Number of global purges sent by FM IOS SLB.
TCP Purges	Number of TCP purges sent by FM IOS SLB.
UDP Purges	Number of UDP purges sent by FM IOS SLB.
Virtual Purges	Number of virtual purges sent by FM IOS SLB.
Flow Purges	Number of flow purges sent by FM IOS SLB.
Install Request Sent	Number of install requests sent by IOS SLB.

Related Commands

Command	Description
clear fm slb counters	Clears Feature Manager (FM) IOS Server Load Balancing (IOS SLB) counters.

show glbp

To display Gateway Load Balancing Protocol (GLBP) information, use the show glbp command in privileged EXEC mode.

show glbp [capability [interface-type interface-number ]] | [[interface-type interface-number [group-number] [state] [brief] [detail] [client-cache [[age number] [forwarder number]] | [mac-address address] | [summary]]]

Syntax Description

interface-type interface-number	(Optional) Interface type and number for which output is displayed.
group-number	(Optional) GLBP group number in the range from 0 to 1023.
state	(Optional) State of the GLBP router, one of the following: active, disabled, init, listen, and standby.
brief	(Optional) Summarizes each virtual gateway or virtual forwarder with a single line of output.
detail	(Optional) Displays all the status of the GLBP router in detailed format. The available status are: active, disabled, init, listen, speak, and standby.
capability	(Optional) Displays the GLBP capability interfaces.
client-cache	(Optional) Displays the GLBP client cache.
age number	(Optional) Displays the client-cache age in the range from 0 to 1440.
forwarder number	(Optional) Displays the client forwarder in the range from 1 to 4.
mac-address address	(Optional) Displays the mac-address of the client.
summary	(Optional) Displays the summary of the GLBP client caches.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(14)S	This command was introduced.
12.2(15)T	This command was integrated into Cisco IOS Release 12.2(15)T. The client-cache keyword was added.
12.3(2)T	The output was enhanced to display information about Message Digest 5 (MD5) authentication.
12.3(7)T	The output was enhanced to display information about assigned redundancy names to specified groups.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2(31)SB2	This command was enhanced to display information about GLBP support of Stateful Switchover (SSO) mode.
12.2(33)SXH	This command was integrated into Cisco IOS Release 12.2(33)SXH.
Cisco IOS XE Release 2.1	This command was integrated into Cisco IOS XE Release 2.1.
12.4(15)T	This command was modified. The client-cache keyword was added.
12.4(24)T	This command was modified. The detail keyword was added. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.
12.2(33)SXI1	This command was modified. The client-cache keyword was added. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.
12.2(33)SRE	The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.

Usage Guidelines

Use the show glbp command to display information about GLBP groups on a router. The brief keyword displays a single line of information about each virtual gateway or virtual forwarder. The client-cache keyword displays the client cache details and the capability keyword displays all GLBP-capable interfaces.

Examples

The following is sample output from the show glbp command:

Router# show glbp

FastEthernet0/0 - Group 10

  State is Active

    2 state changes, last state change 23:50:33

  Virtual IP address is 10.21.8.10

  Hello time 5 sec, hold time 18 sec

    Next hello sent in 4.300 secs

  Redirect time 600 sec, forwarder time-out 7200 sec

  Authentication MD5, key-string

  Preemption enabled, min delay 60 sec

  Active is local

  Standby is unknown

  Priority 254 (configured)

  Weighting 105 (configured 110), thresholds: lower 95, upper 105

    Track object 2 state Down decrement 5

  Load balancing: host-dependent

  There is 1 forwarder (1 active)

  Forwarder 1

    State is Active

      1 state change, last state change 23:50:15

    MAC address is 0007.b400.0101 (default)

    Owner ID is 0005.0050.6c08

    Redirection enabled

    Preemption enabled, min delay 60 sec

    Active is local, weighting 105

The following is sample output from the show glbp command with the brief keyword specified:

Router# show glbp brief

Interface   Grp  Fwd Pri State    Address         Active router   Standby router

Fa0/0       10   -   254 Active   10.21.8.10       local           unknown       

Fa0/0       10   1   7   Active   0007.b400.0101   local           -

The following is sample output from the show glbp command that displays GLBP group 10:

Router# show glbp 10

FastEthernet0/0 - Group 10

  State is Active

    2 state changes, last state change 23:50:33

  Virtual IP address is 10.21.8.10

  Hello time 5 sec, hold time 18 sec

    Next hello sent in 4.300 secs

  Redirect time 600 sec, forwarder time-out 7200 sec

  Authentication MD5, key-string

  Preemption enabled, min delay 60 sec

  Active is local

  Standby is unknown

  Priority 254 (configured)

  Weighting 105 (configured 110), thresholds: lower 95, upper 105

    Track object 2 state Down decrement 5

  Load balancing: host-dependent

  There is 1 forwarder (1 active)

  Forwarder 1

    State is Active

      1 state change, last state change 23:50:15

    MAC address is 0007.b400.0101 (default)

    Owner ID is 0005.0050.6c08

    Redirection enabled

    Preemption enabled, min delay 60 sec

    Active is local, weighting 105

The following output shows that the redundancy name has been assigned to the "glbp1" group:

Router# show glbp ethernet0/1 1

Ethernet0/1 - Group 1

 State is Listen

   64 state changes, last state change 00:00:54

 Virtual IP address is 10.1.0.7

 Hello time 50 msec, hold time 200 msec

   Next hello sent in 0.030 secs

 Redirect time 600 sec, forwarder time-out 14400 sec

  Authentication text, string "authword"

 Preemption enabled, min delay 0 sec

 Active is 10.1.0.2, priority 105 (expires in 0.184 sec)

 Standby is 10.1.0.3, priority 100 (expires in 0.176 sec)

 Priority 96 (configured)

 Weighting 100 (configured 100), thresholds: lower 95, upper 100

   Track object 1 state Up decrement 10

 Load balancing: round-robin

 IP redundancy name is "glbp1"

  Group members:

   0004.4d83.4801 (10.0.0.0)

   0010.7b5a.fa41 (10.0.0.1)

   00d0.bbd3.bc21 (10.0.0.2) local

The following output shows GLBP support for SSO mode on an active RP:

Router# show glbp 

Ethernet0/0 - Group 1 

State is Standby 

1 state change, last state change 00:00:20 

Virtual IP address is 172.24.1.254 

Hello time 3 sec, hold time 10 sec 

Next hello sent in 0.232 secs 

Redirect time 600 sec, forwarder time-out 14400 sec 

Preemption disabled 

Active is 172.24.1.2, priority 100 (expires in 7.472 sec) 

Standby is local 

Priority 100 (default) 

Weighting 100 (default 100), thresholds: lower 1, upper 100 

Load balancing: round-robin 

Group members: 

aabb.cc00.0100 (172.24.1.1) local 

aabb.cc00.0200 (172.24.1.2) 

There are 2 forwarders (1 active) 

Forwarder 1 

State is Listen 

MAC address is 0007.b400.0101 (learnt) 

Owner ID is aabb.cc00.0200 

Time to live: 14397.472 sec (maximum 14400 sec) 

Preemption enabled, min delay 30 sec 

Active is 172.24.1.2 (primary), weighting 100 (expires in 9.540 sec) 

Forwarder 2 

State is Active 

1 state change, last state change 00:00:28 

MAC address is 0007.b400.0102 (default) 

Owner ID is aabb.cc00.0100 

Preemption enabled, min delay 30 sec 

Active is local, weighting 100

The following output shows GLBP support for SSO mode on a standby RP:

RouterRP-standby# show glbp 

Ethernet0/0 - Group 1 

State is Init (standby RP, peer state is Standby) 

Virtual IP address is 172.24.1.254 

Hello time 3 sec, hold time 10 sec 

Redirect time 600 sec, forwarder time-out 14400 sec 

Preemption disabled 

Active is unknown 

Standby is unknown 

Priority 100 (default) 

Weighting 100 (default 100), thresholds: lower 1, upper 100 

Load balancing: round-robin 

Group members: 

aabb.cc00.0100 (172.24.1.1) local 

aabb.cc00.0200 (172.24.1.2) 

There are 2 forwarders (0 active) 

Forwarder 1 

State is Init (standby RP, peer state is Listen) 

MAC address is 0007.b400.0101 (learnt) 

Owner ID is aabb.cc00.0200 

Preemption enabled, min delay 30 sec 

Active is unknown 

Forwarder 2 

State is Init (standby RP, peer state is Active) 

MAC address is 0007.b400.0102 (default) 

Owner ID is aabb.cc00.0100 

Preemption enabled, min delay 30 sec 

Active is unknown

GLBP support for Stateful Switchover (SSO) mode is enabled by default but may be disabled by the no glbp sso command. If GLBP support for SSO mode is disabled, the output of the show glbp command on the standby RP will display a warning:

RouterRP-standby# show glbp 

Ethernet0/0 - Group 1 

State is Init (GLBP SSO disabled) <------ GLBP SSO is disabled.

Virtual IP address is 172.24.1.254 

Hello time 3 sec, hold time 10 sec 

Redirect time 600 sec, forwarder time-out 14400 sec 

Preemption disabled 

Active is unknown 

Standby is unknown 

Priority 100 (default) 

Weighting 100 (default 100), thresholds: lower 1, upper 100 

Load balancing: round-robin 

Group members: 

aabb.cc00.0100 (172.24.1.1) local 

There are 2 forwarders (0 active) 

Forwarder 1 

State is Init (GLBP SSO disabled)

MAC address is 0007.b400.0101 (learnt) 

Owner ID is aabb.cc00.0200 

Preemption enabled, min delay 30 sec 

Active is unknown 

Forwarder 2 

State is Init (GLBP SSO disabled)

MAC address is 0007.b400.0102 (default) 

Owner ID is aabb.cc00.0100 

Preemption enabled, min delay 30 sec 

Active is unknown

Table 5 describes the significant fields shown in the displays.

Table 5 show glbp Field Descriptions 

Field	Description
FastEthernet0/0 - Group	Interface type and number and GLBP group number for the interface.
State is	State of the virtual gateway or virtual forwarder. For a virtual gateway, the state can be one of the following: •Active—The gateway is the active virtual gateway (AVG) and is responsible for responding to Address Resolution Protocol (ARP) requests for the virtual IP address. •Disabled—The virtual IP address has not been configured or learned yet, but another GLBP configuration exists. •Initial—The virtual IP address has been configured or learned, but virtual gateway configuration is not complete. An interface must be up and configured to route IP, and an interface IP address must be configured. •Listen—The virtual gateway is receiving hello packets and is ready to change to the "speak" state if the active or standby virtual gateway becomes unavailable. •Speak—The virtual gateway is attempting to become the active or standby virtual gateway. •Standby—The gateway is next in line to be the AVG.
	For a virtual forwarder, the state can be one of the following: •Active—The gateway is the active virtual forwarder (AVF) and is responsible for forwarding packets sent to the virtual forwarder MAC address. •Disabled—The virtual MAC address has not been assigned or learned. This is a transitory state because a virtual forwarder changing to a disabled state is deleted. •Initial—The virtual MAC address is known, but virtual forwarder configuration is not complete. An interface must be up and configured to route IP, an interface IP address must be configured, and the virtual IP address must be known. •Listen—The virtual forwarder is receiving hello packets and is ready to change to the "active" state if the AVF becomes unavailable.
Virtual IP address is	The virtual IP address of the GLBP group. All secondary virtual IP addresses are listed on separate lines. If one of the virtual IP addresses is a duplicate of an address configured for another device, it will be marked as "duplicate." A duplicate address indicates that the router has failed to defend its ARP cache entry.
Hello time, hold time	The hello time is the time between hello packets (in seconds or milliseconds). The hold time is the time (in seconds or milliseconds) before other routers declare the active router to be down. All routers in a GLBP group use the hello- and hold-time values of the current AVG. If the locally configured values are different, the configured values appear in parentheses after the hello- and hold-time values.
Next hello sent in	The time until GLBP will send the next hello packet (in seconds or milliseconds).
Preemption	Whether GLBP gateway preemption is enabled. If enabled, the minimum delay is the time (in seconds) for which a higher-priority nonactive router will wait before preempting the lower-priority active router. This field is also displayed under the forwarder section where it indicates GLBP forwarder preemption.
Active is	The active state of the virtual gateway. The value can be "local," "unknown," or an IP address. The address (and the expiration date of the address) is the address of the current AVG. This field is also displayed under the forwarder section where it indicates the address of the current AVF.
Standby is	The standby state of the virtual gateway. The value can be "local," "unknown," or an IP address. The address (and the expiration date of the address) is the address of the standby gateway (the gateway that is next in line to be the AVG).
Weighting	The initial weighting value with lower and upper threshold values.
Track object	The list of objects that are being tracked and their corresponding states.
IP redundancy name is	The name of the GLBP group.

Related Commands

Command	Description
glbp ip	Enables GLBP.
glbp timers	Configures the time between hello messages and the time before other routers declare the active GLBP router to be down.
glbp weighting track	Specifies an object to be tracked that affects the weighting of a GLBP gateway.

show interface mac

To display MAC accounting information for interfaces configured for MAC accounting, use the show interface mac command in user EXEC or privileged EXEC mode.

show interface [type number] mac

Syntax Description

type	(Optional) Interface type supported on your router.
number	(Optional) Port number of the interface. The syntax varies depending on the type of router. For example, on a Cisco 7500 series router the syntax is 0/0/0, where 0 represents the slot, port adapter, and port number (the slash marks are required). Refer to the appropriate hardware manual for numbering information.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
11.1 CC	This command was introduced.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Usage Guidelines

The show interface mac command displays information for one interface, when specified, or all interfaces configured for MAC accounting.

For incoming packets on the interface, the accounting statistics are gathered before the committed access rate (CAR)/distributed committed access rate (DCAR) functionality is performed on the packet. For outgoing packets on the interface, the accounting statistics are gathered after the CAR output, and before DCAR output or distributed weighted random early detection (DWRED) or distributed weighted fair queuing (DWFQ) functionality is performed on the packet.

Therefore, if DCAR or DWRED is performed on the interface and packets are dropped, the dropped packets are still counted in the show interface mac command.

The maximum number of MAC addresses that can be stored for the input and output addresses is 512 each. After the maximum is reached, subsequent MAC addresses are ignored.

To clear the accounting statistics, use the clear counter EXEC command. To configure an interface for IP accounting based on the MAC address, use the ip accounting mac-address interface configuration command.

Examples

The following is sample output from the show interface mac command:

Router# show interface ethernet 0/1/1 mac

Ethernet0/1/1 

  Input  (511 free)

    0007.f618.4449(228):  4 packets, 456 bytes, last: 2684ms ago

                  Total:  4 packets, 456 bytes

  Output  (511 free)

    0007.f618.4449(228):  4 packets, 456 bytes, last: 2692ms ago

                  Total:  4 packets, 456 bytes

Table 6 describes the significant fields shown in the display.

Table 6 show interface mac Field Descriptions 

Field	Description
Ethernet0/1/1	Interface type and number.
Input Output	Number of packets received as input or sent as output by this interface.
0007.f618.4449(228)	MAC address of the interface from or to which this router sends or receives packets.
packets	Total number of messages that have been transmitted or received by the system.
bytes	Total number of bytes, including data and MAC encapsulation, that have been transmitted or received by the system.
last	Time, in milliseconds, since the last IP packet was transmitted or received on the specified interface.

Related Commands

Command	Description
ip accounting mac-address	Enables IP accounting on any interface based on the source and destination MAC address.

show interface precedence

To display precedence accounting information for interfaces configured for precedence accounting, use the show interface precedence command in user EXEC or privileged EXEC mode.

show interface [type number] precedence

Syntax Description

type	(Optional) Interface type supported on your router.
number	(Optional) Port number of the interface. The syntax varies depending on the type of router. For example, on a Cisco 7500 series router the syntax is 0/0/0, where 0 represents the slot, port adapter, and port number (the slash is required). Refer to the appropriate hardware manual for numbering information.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
11.1CC	This command was introduced.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Usage Guidelines

The show interface precedence command displays information for one interface, when specified, or all interfaces configured for IP precedence accounting.

For incoming packets on the interface, the accounting statistics are gathered before the committed access rate (CAR)/distributed committed access rate (DCAR) functionality is performed on the packet. For outgoing packets on the interface, the accounting statistics are gathered after the CAR output, and before DCAR output or distributed weighted random early detection (DWRED) or distributed weighted fair queuing (DWFQ) functionality is performed on the packet. Therefore, if DCAR or DWRED is performed on the interface and packets are dropped, the dropped packets are still counted in the show interface mac command.

To clear the accounting statistics, use the clear counter EXEC command.

To configure an interface for IP accounting based on IP precedence, use the ip accounting precedence interface configuration command.

Examples

The following is sample output from the show interface precedence command. In this example, the total packet and byte counts are calculated for the interface that receives (input) or sends (output) IP packets and sorts the results based on IP precedence.

Router# show interface ethernet 0/1/1 precedence

Ethernet0/1/1 

  Input

    Precedence 0:  4 packets, 456 bytes

  Output

    Precedence 0:  4 packets, 456 bytes

Table 7 describes the fields shown in the display.

Table 7 show interface precedence Field Descriptions 

Field	Description
Ethernet0/1/1	Interface type and number.
Input Output	An interface that receives or sends IP packets and sorts the results based on IP precedence.
Precedence	Precedence value for the specified interface.
packets	Total number of messages that have been transmitted or received by the system.
bytes	Total number of bytes, including data and MAC encapsulation, that have been transmitted or received by the system.

Related Commands

Command	Description
ip accounting precedence	Enables IP accounting on any interface based on IP precedence.

show ip accounting

To display the active accounting or checkpointed database or to display access list violations, use the show ip accounting command in user EXEC or privileged EXEC mode.

show ip accounting [checkpoint] [output-packets | access-violations]

Syntax Description

checkpoint	(Optional) Indicates that the checkpointed database should be displayed.
output-packets	(Optional) Indicates that information pertaining to packets that passed access control and were routed should be displayed. If neither the output-packets nor access-violations keyword is specified, output-packets is the default.
access-violations	(Optional) Indicates that information pertaining to packets that failed access lists and were not routed should be displayed. If neither the output-packets nor access-violations keyword is specified, output-packets is the default.

Defaults

If neither the output-packets nor access-violations keyword is specified, the show ip accounting command displays information pertaining to packets that passed access control and were routed.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
10.0	This command was introduced.
10.3	The output-packets and access-violations keywords were added.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Usage Guidelines

If you do not specify any keywords, the show ip accounting command displays information about the active accounting database.

To display IP access violations, you must use the access-violations keyword. If you do not specify the keyword, the command defaults to displaying the number of packets that have passed access lists and were routed.

To use this command, you must first enable IP accounting on a per-interface basis.

Examples

The following is sample output from the show ip accounting command:

Router# show ip accounting

   Source           Destination              Packets               Bytes     

 172.16.19.40    192.168.67.20                  7                 306

 172.16.13.55    192.168.67.20                  67                2749

 172.16.2.50     192.168.33.51                  17                1111

 172.16.2.50     172.31.2.1                     5                 319

 172.16.2.50     172.31.1.2                     463               30991

 172.16.19.40    172.16.2.1                      4                 262

 172.16.19.40    172.16.1.2                      28                2552

 172.16.20.2     172.16.6.100                    39                2184

 172.16.13.55    172.16.1.2                      35                3020

 172.16.19.40    192.168.33.51                  1986               95091

 172.16.2.50     192.168.67.20                   233               14908

 172.16.13.28    192.168.67.53                   390               24817

 172.16.13.55    192.168.33.51                214669             9806659

 172.16.13.111   172.16.6.23                  27739             1126607

 172.16.13.44    192.168.33.51                 35412             1523980

 192.168.7.21    172.163.1.2                      11                 824

 172.16.13.28    192.168.33.2                     21                1762

 172.16.2.166    192.168.7.130                   797              141054

 172.16.3.11     192.168.67.53                     4                 246

 192.168.7.21    192.168.33.51                 15696              695635

 192.168.7.24    192.168.67.20                    21                 916

 172.16.13.111   172.16.10.1                     16                1137

 accounting threshold exceeded for 7 packets and 433 bytes

The following is sample output from the show ip accounting access-violations command. The output pertains to packets that failed access lists and were not routed:

Router# show ip accounting access-violations

   Source           Destination      Packets        Bytes        ACL

172.16.19.40    192.168.67.20              7          306         77

172.16.13.55    192.168.67.20             67         2749        185

172.16.2.50     192.168.33.51             17         1111        140

172.16.2.50     172.16.2.1                5          319        140

172.16.19.40    172.16.2.1                4          262         77

Accounting data age is 41

Table 8 describes the significant fields shown in the displays.

Table 8 show ip accounting Field Descriptions 

Field	Description
Source	Source address of the packet.
Destination	Destination address of the packet.
Packets	Number of packets sent from the source address to the destination address. With the access-violations keyword, the number of packets sent from the source address to the destination address that violated an access control list (ACL).
Bytes	Sum of the total number of bytes (IP header and data) of all IP packets sent from the source address to the destination address. With the access-violations keyword, the total number of bytes sent from the source address to the destination address that violated an ACL.
ACL	Number of the access list of the last packet sent from the source to the destination that failed an access list filter.
accounting threshold exceeded...	Data for all packets that could not be entered into the accounting table when the accounting table is full. This data is combined into a single entry.

Related Commands

Command	Description
clear ip accounting	Clears the active or checkpointed database when IP accounting is enabled.
ip accounting	Enables IP accounting on an interface.
ip accounting-list	Defines filters to control the hosts for which IP accounting information is kept.
ip accounting-threshold	Sets the maximum number of accounting entries to be created.
ip accounting-transits	Controls the number of transit records that are stored in the IP accounting database.

show ip casa affinities

To display statistics about affinities, use the show ip casa affinities command in user EXEC or privileged EXEC mode.

show ip casa affinities [daddr ip-address | detail | dport destination-port | protocol protocol-number | saddr ip-address | sport source-port] [detail | internal]

Syntax Description

daddr ip-address	(Optional) Displays the destination address of a given TCP connection. The detail keyword displays detailed information about the destination IP address. The internal keyword displays internal forwarding agent (FA) information.
detail	(Optional) Displays the detailed statistics.
dport destination-port	(Optional) Displays the destination port of a given TCP connection. The detail keyword displays detailed information about the destination port. The internal keyword displays internal forwarding agent (FA) information.
protocol protocol-number	(Optional) Displays the protocol of a given TCP connection. The detail keyword displays detailed information about the protocol. The internal keyword displays internal forwarding agent (FA) information.
saddr ip-address	(Optional) Displays the source address of a given TCP connection. The detail keyword displays detailed information about the source IP address. The internal keyword displays internal forwarding agent (FA) information.
sport source-port	(Optional) Displays the source port of a given TCP connection. The detail keyword displays detailed information about the source port. The internal keyword displays internal forwarding agent (FA) information.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.0(5)T	This command was introduced.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Examples

The following is sample output of the show ip casa affinities command:

Router# show ip casa affinities

                        Affinity Table

Source Address  Port  Dest Address    Port  Prot

172.16.36.118   1118  172.16.56.13    19    TCP 

172.16.56.13    19    172.16.36.118   1118  TCP 

The following is sample output of the show ip casa affinities detail command:

Router# show ip casa affinities detail 

                        Affinity Table

Source Address  Port  Dest Address    Port  Prot

172.44.36.118   1118  172.16.56.13    19    TCP 

  Action Details:

    Interest Addr:          172.16.56.19      Interest Port: 1638

    Interest Packet: 0x0102 SYN FRAG 

    Interest Tickle: 0x0005 FIN RST 

    Dispatch (Layer 2):     YES               Dispatch Address: 172.26.56.33

Source Address  Port  Dest Address    Port  Prot

172.16.56.13    19    172.16.36.118   1118  TCP 

  Action Details:

    Interest Addr:          172.16.56.19      Interest Port: 1638

    Interest Packet: 0x0104 RST FRAG

    Interest Tickle: 0x0003 FIN SYN

    Dispatch (Layer 2):     NO                Dispatch Address: 10.0.0.0

Table 9 describes the significant fields shown in the display.

Table 9 show ip casa affinities Field Descriptions

Field	Description
Source Address	Source address of a given TCP connection.
Port	Source port of a given TCP connection.
Dest Address	Destination address of a given TCP connection.
Port	Destination of a given TCP connection.
Prot	Protocol of a given TCP connection.
Action Details	Actions to be taken on a match.
Interest Addr	Services manager address that is to receive interest packets for this affinity.
Interest Port	Services manager port to which interest packets are sent.
Interest Packet	List of TCP packet types of interest to the services manager is interested in.
Interest Tickle	List of TCP packet types for which the services manager wants the entire packet.
Dispatch (Layer 2)	Layer 2 destination information will be modified.
Dispatch Address	Address of the real server.

Related Commands

Command	Description
forwarding-agent	Specifies the port on which the forwarding agent will listen for wildcard and fixed affinities.
show ip casa oper	Displays operational information about the forwarding agent.

show ip casa oper

To display operational information about the forwarding agent, use the show ip casa oper command in user EXEC or privileged EXEC mode.

show ip casa oper

Syntax Description

This command has no arguments or keywords.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.0(5)T	This command was introduced.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Examples

The following is sample output from the show ip casa oper command:

Router# show ip casa oper

Casa is Active

  Casa control address is 10.10.20.34/32

  Casa multicast address is 239.1.1.1

  Listening for wildcards on:

    Port:1637

      Current passwd:NONE Pending passwd:NONE

      Passwd timeout:180 sec (Default)

Table 10 describes the significant fields shown in the display.

Table 10 show ip casa oper Field Descriptions 

Field	Description
Casa is Active	The forwarding agent is active.
Casa control address	Unique address for this forwarding agent.
Casa multicast address	Services manager broadcast address.
Listening for wildcards on	Port on which the forwarding agent will listen.
Port	Services manager broadcast port.
Current passwd	Current password.
Pending passwd	Password that will override the current password.
Passwd timeout	Interval after which the pending password becomes the current password.

Related Commands

Command	Description
ip casa oper	Configures the router to function as an MNLB forwarding agent.

show ip casa stats

To display statistical information about the Forwarding Agent, use the show ip casa stats command in user EXEC or privileged EXEC mode.

show ip casa stats

Syntax Description

This command has no arguments or keywords.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.0(5)T	This command was introduced.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Examples

The following is sample output of the show ip casa stats command:

Router# show ip casa stats

Casa is active:

  Wildcard Stats:

    Wildcards:       6           Max Wildcards:    6          

    Wildcard Denies: 0           Wildcard Drops:   0          

    Pkts Throughput: 441         Bytes Throughput: 39120      

  Affinity Stats:

    Affinities:      2           Max Affinities:   2          

    Cache Hits:      444         Cache Misses:     0          

    Affinity Drops:  0          

  Casa Stats:

    Int Packet:      4           Int Tickle:       0          

    Casa Denies:     0           Drop Count:       0

Table 11 describes the significant fields shown in the display.

.

Table 11 show ip casa stats Field Descriptions 

Field	Description
Casa is Active	The Forwarding Agent is active.
Wildcard Stats	Wildcard statistics.
Wildcards	Number of current wildcards.
Max Wildcards	Maximum number of wildcards since the Forwarding Agent became active.
Wildcard Denies	Protocol violations.
Wildcard Drops	Not enough memory to install wildcard.
Pkts Throughput	Number of packets passed through all wildcards.
Bytes Throughput	Number of bytes passed through all wildcards.
Affinity Stats	Affinity statistics.
Affinities	Current number of affinities.
Max Affinities	Maximum number of affinities since the forwarding agent became active.
Cache Hits	Number of packets that match wildcards and fixed affinities.
Cache Misses	Matched wildcard, missed fix.
Affinity Drops	Number of times an affinity could not be created.
Casa Stats	Forwarding agent statistics.
Int Packet	Interest packets.
Int Tickle	Interest tickles.
Casa Denies	Protocol violation.
Security Drops	Packets dropped due to password or authentication mismatch.
Drop Count	Number of messages dropped.

Related Commands

Command	Description
show ip casa oper	Displays operational information about the Forwarding Agent.

show ip casa wildcard

To display information about wildcard blocks, use the show ip casa wildcard command in user EXEC or privileged EXEC mode.

show ip casa wildcard [detail]

Syntax Description

detail

(Optional) Displays detailed statistics.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.0(5)T	This command was introduced.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Examples

The following is sample output from the show ip casa wildcard command:

Router# show ip casa wildcard

Source Address  Source Mask     Port  Dest Address    Dest Mask       Port  Prot

10.0.0.0         0.0.0.0         0     172.16.56.2     255.255.255.255  0     ICMP

10.0.0.0         0.0.0.0         0     172.16.56.2     255.255.255.255  0     TCP 

10.0.0.0         0.0.0.0         0     172.16.56.13    255.255.255.255  0     ICMP

10.0.0.0         0.0.0.0         0     172.16.56.13    255.255.255.255  0     TCP 

172.16.56.2     255.255.255.255  0     10.0.0.0         0.0.0.0         0     TCP 

172.16.56.13    255.255.255.255  0     10.0.0.0         0.0.0.0         0     TCP 

The following is sample output from the show ip casa wildcard detail command:

Router# show ip casa wildcard detail

Source Address  Source Mask     Port  Dest Address    Dest Mask       Port  Prot

10.0.0.0         0.0.0.0         0     172.16.56.2     255.255.255.255 0     ICMP

  Service Manager Details:

    Manager Addr:           172.16.56.19      Insert Time: 08:21:27 UTC 04/18/96

  Affinity Statistics:

    Affinity Count:         0                 Interest Packet Timeouts: 0

  Packet Statistics:

    Packets:                0                 Bytes: 0              

  Action Details:

    Interest Addr:          172.16.56.19      Interest Port: 1638

    Interest Packet: 0x8000 ALLPKTS

    Interest Tickle: 0x0107 FIN SYN RST FRAG 

    Dispatch (Layer 2):     NO                Dispatch Address: 10.0.0.0        

    Advertise Dest Address: YES               Match Fragments:  NO 

Source Address  Source Mask     Port  Dest Address    Dest Mask       Port  Prot

10.0.0.0         0.0.0.0         0     172.16.56.2     255.255.255.255 0     TCP 

  Service Manager Details:

    Manager Addr:           172.16.56.19      Insert Time: 08:21:27 UTC 04/18/96

  Affinity Statistics:

    Affinity Count:         0                 Interest Packet Timeouts: 0

  Packet Statistics:

    Packets:                0                 Bytes: 0              

  Action Details:

    Interest Addr:          172.16.56.19      Interest Port: 1638

    Interest Packet: 0x8102 SYN FRAG ALLPKTS

    Interest Tickle: 0x0005 FIN RST 

    Dispatch (Layer 2):     NO                Dispatch Address: 10.0.0.0        

    Advertise Dest Address: YES               Match Fragments:  NO 

---

Note If a filter is not set, the filter is not active.

---

Table 12 describes significant fields shown in the display.

Table 12 show ip casa wildcard Field Descriptions 

Field	Description
Source Address	Source address of a given TCP connection.
Source Mask	Mask to apply to source address before matching.
Port	Source port of a given TCP connection.
Dest Address	Destination address of a given TCP connection.
Dest Mask	Mask to apply to destination address before matching.
Port	Destination port of a given TCP connection.
Prot	Protocol of a given TCP connection.
Service Manager Details	Services manager details.
Manager Addr	Source address of this wildcard.
Insert Time	System time at which this wildcard was inserted.
Affinity Statistics	Affinity statistics.
Affinity Count	Number of affinities created on behalf of this wildcard.
Interest Packet Timeouts	Number of unanswered interest packets.
Packet Statistics	Packet statistics.
Packets	Number of packets that match this wildcard.
Bytes	Number of bytes that match this wildcard.
Action Details	Actions to be taken on a match.
Interest Addr	Services manager that is to receive interest packets for this wildcard.
Interest Port	Services manager port to which interest packets are sent.
Interest Packet	List of packet types that the services manager is interested in.
Interest Tickle	List of packet types for which the services manager wants the entire packet.
Dispatch (Layer 2)	Layer 2 destination information will be modified.
Dispatch Address	Address of the real server.
Advertise Dest Address	Destination address.
Match Fragments	Indicates whether the wildcard matches fragments based on Boolean logic.

Related Commands

Command	Description
show ip casa oper	Displays operational information about the Forwarding Agent.

show ip dfp

To display information about Dynamic Feedback Protocol (DFP) agents and their subsystems, use the show ip dfp command in privileged EXEC mode.

show ip dfp [agent subsystem-name] [detail]

Syntax Description

agent subsystem-name	(Optional) Displays information about the specified DFP agent, such as slb for IOS SLB.
detail	(Optional) Displays detailed DFP agent information.

Defaults

If no options are specified, the command displays output for all DFP agents identified by ip dfp agent commands, regardless of whether those agents are currently in service (Inservice: yes) or active (AppActive: yes).

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.1(8a)E	This command was introduced.
12.2(14)S	This command was integrated into Cisco IOS Release 12.2(14)S.
12.3(4)T	This command was integrated into Cisco IOS Release 12.3(4)T.
12.2(18)SXD	This command was integrated into Cisco IOS Release 12.2(18)SXD.

Usage Guidelines

Detailed output for the show ip dfp command includes information about all DFP agents configured with ip slb agent commands, regardless of whether those agents are currently in service.

Examples

The following example shows basic information for DFP agent slb:

Router# show ip dfp agent slb

Unexpected errors: 0

DFP Agent for service: SLB

      Port: 666 Interval: 10

      Current passwd: <none> Pending passwd: <none>

      Passwd timeout: 0

      Inservice: yes  AppActive: yes

      Manager IP Address   Timeout

      ------------------   -------

      172.16.45.27         0

The following example shows detailed information for DFP agent slb:

Router# show ip dfp agent slb detail

Unexpected errors: 0

DFP Agent for service: SLB

      Port: 666 Interval: 10

      Current passwd: <none> Pending passwd: <none>

      Passwd timeout: 0

      Inservice: yes  AppActive: yes

      Manager IP Address   Timeout

      ------------------   -------

      172.16.45.27         0

Weight Table Report for Agent SLB

      Weights for Port: 80  Protocol: TCP

          IP Address        Bind ID  Weight

          ---------------   -------  -------

          10.1.1.1           0        65535

      Weights for Port: 0 (wildcard)  Protocol: 0 (wildcard)

          IP Address        Bind ID  Weight

          ---------------   -------  -------

          10.0.0.0           65534    0

Bind ID Table Report for Agent SLB

      Bind IDs for Port: 80  Protocol: TCP

          Bind ID   Client IP        Client Mask

          -------   ---------------  ---------------

          0           10.0.0.0          0.0.0.0

Table 13 describes the fields shown in the display.

Table 13 show ip dfp Field Descriptions 

Field	Description
Port	TCP port number of the agent.
Interval	Number of seconds to wait before recalculating weights.
Current passwd	Current DFP password for Message Digest Algorithm Version 5 (MD5) authentication.
Pending passwd	Pending new DFP password for MD5 authentication.
Passwd timeout	Delay period, in seconds, during which both the current password and the new password are accepted.
Inservice	Indicates whether the DFP agent is enabled for communication with a DFP manager.
AppActive	Indicates whether the DFP agent is active.
Manager IP Address	IP address of the manager to which weights are being sent.
Timeout	Time period, in seconds, during which the DFP manager must receive an update from the DFP agent. A value of 0 means there is no timeout.
Weights for Port	Port for which the following weights are reported. 0 indicates a wildcard value.
Protocol	Protocol used for the port. 0 indicates a wildcard value.
IP Address	IP address for which weight is reported.
Bind ID	Bind ID associated with the IP address.
Weight	Weight calculated for the IP address.
Bind IDs for Port	Port for which the following bind IDs are reported.
Protocol	Protocol used for the port.
Bind ID	Bind ID of this instance of the real server.
Client IP	IP address of client using the virtual server.
Client Mask	IP network mask of client using the virtual server.

Related Commands

Command	Description
agent	Identifies a DFP agent to which IOS SLB can connect.
ip dfp agent	Identifies a DFP agent subsystem and initiates DFP agent configuration mode.
ip slb dfp	Configures DFP, supplies an optional password, and initiates DFP configuration mode.

show ip helper-address

To display IP address information from the helper-address table, use the show ip helper-address command in user EXEC or privileged EXEC mode.

show ip helper-address [interface-type interface-number]

Syntax Description

interface-type	(Optional) Interface type. For more information, use the question mark (?) online help function.
interface-number	Interface or subinterface number. For more information about the numbering syntax for your networking device, use the question mark (?) online help function.

Command Default

If no arguments are specified, IP address information for all the entries in the helper-address table is displayed.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.3(2)T	This command was introduced in a release earlier than Cisco IOS Release 12.3(2)T.
12.2(33)SRD	This command was integrated into Cisco IOS Release 12.2(33)SRD.
12.2(33)SXI	This command was integrated in a release earlier than Cisco IOS Release 12.2(33)SXI.

Examples

The following is sample output from the show ip helper-address command:

Router# show ip helper-address 

Interface                  Helper-Address  VPN VRG Name             VRG State

FastEthernet0/0            172.16.0.0      0   router1              Unknown  

Ethernet3/3                172.16.1.0      0   None                 Unknown  

ATM6/0                     172.16.2.0      0   None                 Unknown  

Loopback30                 172.16.2.1      0   None                 Unknown  

                           172.16.2.3      0   None                 Unknown  

                           172.16.5.0      0   None                 Unknown  

Table 14 describes the significant fields shown in the display.

Table 14 show show ip helper-address Field Descriptions 

Field	Description
Interface	Name of the interface.
Helper-Address	IP addresses in the helper-address table.
VPN	Name of the Virtual Private Network (VPN).
VRG Name	Name of the Virtual Router Group (VRG).
VRG State	State of the VRG.

Related Commands

Command	Description
ip helper-address	Enables the forwarding of UDP broadcasts, including BOOTP, received on an interface.

show ip icmp rate-limit

To display all Internet Control Message Protocol (ICMP) unreachable destination messages or unreachable destination messages for a specified interface including the number of dropped packets, use the show ip icmp rate-limit command in privileged EXEC mode.

show ip icmp rate-limit [interface-type interface-number]

Syntax Description

interface-type	(Optional) Interface type. Type of interface to be configured. Note Refer to the interface command in the Cisco IOS Interface and Hardware Component Command Reference, Release 12.4 for a list of interface types.
interface-number	(Optional) Port, connector, or interface card number. On Cisco 4700 series routers, specifies the network interface module (NIM) or network processor module (NPM) number. The numbers are assigned at the factory at the time of installation or when added to a system, and can be displayed with the show interfaces command.

Defaults

All unreachable statistics for all devices are displayed.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(2)T	This command was introduced.
12.2(31)SB2	This command was integrated into Cisco IOS Release 12.2(31)SB2.

Examples

The following is sample output when the show ip icmp rate-limit command is entered and unreachable messages are generated:

Router# show ip icmp rate-limit

                           DF bit unreachables        All other unreachables

Interval (millisecond)     500                        500

Interface                  # DF bit unreachables     # All other unreachables 

---------                  ---------------------     ------------------------ 

Ethernet0/0                0                         0                        

Ethernet0/2                0                         0                        

Serial3/0/3                0                         19

The greatest number of unreachables on Serial3/0/3 is 19.

The following is sample output when the show ip icmp rate-limit command is entered and the rate-limit interval has been set at 500. The packet threshold has been set at 1 by using the ip icmp rate-limit unreachable command, so the logging will display on the console when the threshold is exceeded. The total suppressed packets since last log message is displayed.

Router# show ip icmp rate-limit

00:04:18: %IP-3-ICMPRATELIMIT: 2 unreachables rate-limited within 60000 milliseconds on 
Serial3/0/3. 17 log messages suppressed since last log message displayed on Serial3/0/3

Table 15 describes the significant fields shown in the display.

Table 15 show ip icmp rate-limit Field Descriptions 

Field	Description
ICMPRATELIMIT	ICMP packets that are rate limited.
suppressed	Packets that have been suppressed because the destination is unreachable.

Related Commands

Command	Description
clear icmp rate-limit	Clears all ICMP unreachable destination messages or all messages for a specified interface.
ip icmp rate-limit unreachable	Limits the rate at which ICMP unreachable messages are generated for a destination.

show ip redirects

To display the address of a default gateway (router) and the address of hosts for which an Internet Control Message Protocol (ICMP) redirect message has been received, use the show ip redirects command in user EXEC or privileged EXEC mode.

show ip redirects

Syntax Description

This command has no arguments or keywords.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
10.0	This command was introduced.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Usage Guidelines

This command displays the default router (gateway) as configured by the ip default-gateway command.

The ip mtu command enables the router to send ICMP redirect messages.

Examples

The following is sample output from the show ip redirects command:

Router# show ip redirects

Default gateway is 172.16.80.29

Host               Gateway           Last Use    Total Uses  Interface

172.16.1.111      172.16.80.240         0:00             9  Ethernet0

172.16.1.4        172.16.80.240         0:00             4  Ethernet0

Related Commands

Command	Description
ip default-gateway	Defines a default gateway (router) when IP routing is disabled.
ip mtu	Enables the sending of ICMP redirect messages if the Cisco IOS software is forced to resend a packet through the same interface on which it was received.

show ip sctp association list

---

Note Effective with Cisco IOS Release 12.4(11)T, the show ip sctp association list command is replaced by the show sctp association list command. See the show sctp association list command for more information.

---

To display identifiers and information for current Stream Control Transmission Protocol (SCTP) associations and instances, use the show ip sctp association list command in privileged EXEC mode.

show ip sctp association list

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(2)MB	This command was introduced as part of the show ip sctp command.
12.2(2)T	This command was changed to the show ip sctp association list command.
12.2(4)T	This command was integrated into Cisco IOS Release 12.2(4)T.
12.2(8)T	This command was implemented on the following platforms: Cisco 2600 series, Cisco 3600 series, and Cisco 7200 series. Support for the Cisco AS5300 is not included in this release.
12.2(11)T	This command was integrated into Cisco IOS Release 12.2(11)T.
12.4(11)T	This command was replaced by the show sctp association list command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

Use this command to display the current SCTP association and instance identifiers, the current state of SCTP associations, and the local and remote port numbers and addresses that are used in the associations.

Examples

The following is sample output from this command for three association identifiers:

Router# show ip sctp association list

*** SCTP Association List ****

AssocID:0,  Instance ID:0

Current state:ESTABLISHED

Local port:8989, Addrs:10.1.0.2 10.2.0.2

Remote port:8989, Addrs:10.6.0.4 10.5.0.4

AssocID:1,  Instance ID:0

Current state:ESTABLISHED

Local port:8989, Addrs:10.1.0.2 10.2.0.2

Remote port:8990, Addrs:10.6.0.4 10.5.0.4

AssocID:2,  Instance ID:0

Current state:ESTABLISHED

Local port:8989, Addrs:10.1.0.2 10.2.0.2

Remote port:8991, Addrs:10.6.0.4 10.5.0.4

Table 16 describes the significant fields shown in the display.

Table 16 show ip sctp association list Field Descriptions 

Field	Description
Assoc ID	SCTP association identifier.
Instance ID	SCTP association instance identifier.
Current state	SCTP association state, which can be ESTABLISHED, CLOSED, COOKIE-WAIT, and COOKIE-ECHOED.
Local port, Addrs	Port and IP address for the local SCTP endpoint.
Remote port, Addrs	Port and IP address for the remote SCTP endpoint.

Related Commands

Command	Description
clear ip sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show ip sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show ip sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show ip sctp errors	Displays error counts logged by SCTP.
show ip sctp instances	Displays the currently defined SCTP instances.
show ip sctp statistics	Displays the overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.

show ip sctp association parameters

---

Note Effective with Cisco IOS Release 12.4(11)T, the show ip sctp association parameters command is replaced by the show sctp association parameters command. See the show sctp association parameters command for more information.

---

To display configured and calculated parameters for the specified Stream Control Transmission Protocol (SCTP) association, use the show ip sctp association parameters command in privileged EXEC mode.

show ip sctp association parameters assoc-id

Syntax Description

assoc-id

Association identifier. Shows the associated ID statistics for the SCTP association.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(2)MB	This command was introduced as part of the show ip sctp command.
12.2(2)T	This command was changed to the show ip sctp association parameters command.
12.2(4)T	This command was integrated into Cisco IOS Release 12.2(4)T.
12.2(8)T	Three new output fields were added to this command: Outstanding bytes, per destination address; Round trip time (RTT), per destination address; and Smoothed round trip time (SRTT), per destination address.
12.2(11)T	This command was integrated into Cisco IOS Release 12.2(11)T and support was added for the Cisco AS5300 and Cisco AS5850.
12.2(15)T	This command was implemented on the Cisco 2420, Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series; and Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850 network access server (NAS) platforms.
12.4(11)T	This command was replaced by the show sctp association parameters command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

The show ip sctp association parameters command provides information to determine the stability of SCTP associations, dynamically calculated statistics about destinations, and values to assess network congestion. This command also displays parameter values for the specified association.

This command requires an association identifier. Association identifiers can be obtained from the output of the show ip sctp association list command.

Many parameters are defined for each association. Some are configured parameters, and others are calculated. Three main groupings of parameters are displayed by this command:

•Association configuration parameters

•Destination address parameters

•Association boundary parameters

The association configuration section displays information similar to that in the show ip sctp association list command, including association identifiers, state, and local and remote port and address information. The current primary destination is also displayed.

Examples

The following sample output shows the IP SCTP association parameters for association 0:

Router# show ip sctp association parameters 0

** SCTP Association Parameters **

AssocID: 0  Context: 0  InstanceID: 1

Assoc state: ESTABLISHED  Uptime: 19:05:57.425

Local port: 8181

Local addresses: 10.1.0.3 10.2.0.3

Remote port: 8181

Primary dest addr: 10.5.0.4

Effective primary dest addr: 10.5.0.4

Destination addresses:

10.5.0.4:   State:  ACTIVE

  Heartbeats:  Enabled   Timeout: 30000 ms

  RTO/RTT/SRTT: 1000/16/38 ms   TOS: 0  MTU: 1500

  cwnd: 5364  ssthresh: 3000  outstand: 768

  Num retrans: 0  Max retrans: 5  Num times failed: 0

10.6.0.4:   State:  ACTIVE

  Heartbeats:  Enabled   Timeout: 30000 ms

  RTO/RTT/SRTT: 1000/4/7 ms   TOS: 0  MTU: 1500

  cwnd: 3960  ssthresh: 3000  outstand: 0

  Num retrans: 0  Max retrans: 5  Num times failed: 0

Local vertag: 9A245CD4  Remote vertag: 2A08D122

Num inbound streams: 10  outbound streams: 10

Max assoc retrans: 5  Max init retrans: 8

CumSack timeout: 200 ms  Bundle timeout: 100 ms

Min RTO: 1000 ms  Max RTO: 60000 ms

LocalRwnd: 18000  Low: 13455   RemoteRwnd: 15252  Low: 13161

Congest levels: 0  current level: 0  high mark: 325

Table 17 describes the significant fields shown in the display.

Table 17 show ip sctp association parameters Field Descriptions 

Field	Description
AssocID	SCTP association identifier.
Context	Internal upper-layer handle.
InstanceID	SCTP association instance identifier.
Assoc state	SCTP association state, which can be ESTABLISHED, CLOSED, COOKIE-WAIT, and COOKIE-ECHOED.
Uptime	How long the association has been active.
Local port	Port number for the local SCTP endpoint.
Local addresses	IP addresses for the local SCTP endpoint.
Remote port	Port number for the remote SCTP endpoint.
Primary dest addr	Primary destination address.
Effective primary dest addr	Current primary destination address.
Heartbeats	Status of heartbeats.
Timeout	Heartbeat timeout.
RTO/RTT/SRTT	Retransmission timeout, round trip time, and smoothed round trip time, calculated from network feedback.
TOS	IP precedence setting.
MTU	Maximum transmission unit size, in bytes, that a particular interface can handle.
cwnd	Congestion window value calculated from network feedback. This value is the maximum amount of data that can be outstanding in the network for that particular destination.
ssthresh	Slow-start threshold value calculated from network feedback.
outstand	Number of outstanding bytes.
Num retrans	Current number of times that data has been retransmitted to that address.
Max retrans	Maximum number of times that data has been retransmitted to that address.
Num times failed	Number of times that the address has been marked as failed.
Local vertag, Remote vertag	Verification tags (vertags). Tags are chosen during association initialization and do not change.
Num inbound streams, Num outbound streams	Maximum inbound and outbound streams. This number does not change.
Max assoc retrans	Maximum association retransmit limit. Number of times that any particular chunk may be retransmitted before a declaration that the association failed, which indicates that the chunk could not be delivered on any address.
Max init retrans	Maximum initial retransmit limit. Number of times that the chunks for initialization may be retransmitted before a declaration that the attempt to establish the association failed.
CumSack timeout	Cumulative selective acknowledge (SACK) timeout. The maximum time that a SACK may be delayed while attempting to bundle together with data chunks.
Bundle timeout	Maximum time that data chunks may be delayed while attempts are made to bundle them with other data chunks.
Min RTO, Max RTO	Minimum and maximum retransmit timeout values allowed for the association.
LocalRwnd, RemoteRwnd	Local and remote receive windows.
Congest levels: current level, high mark	Current congestion level and highest number of packets queued.

Related Commands

Command	Description
clear ip sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show ip sctp association list	Displays a list of all current SCTP associations.
show ip sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show ip sctp errors	Displays error counts logged by SCTP.
show ip sctp instances	Displays all currently defined SCTP instances.
show ip sctp statistics	Displays overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.

show ip sctp association statistics

---

Note Effective with Cisco IOS Release 12.4(11)T, the show ip sctp association statistics command is replaced by the show sctp association statistics command. See the show sctp association statistics command for more information.

---

To display statistics that have accumulated for the specified Stream Control Transmission Protocol (SCTP) association, use the show ip sctp association statistics command in privileged EXEC mode.

show ip sctp association statistics assoc-id

Syntax Description

assoc-id

Association identifier, which can be obtained from the output of the show ip sctp association list command.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(2)MB	This command was introduced as part of the show ip sctp command.
12.2(2)T	This command was changed to the show ip sctp association statistics command.
12.2(4)T	This command was integrated into Cisco IOS Release 12.2(4)T.
12.2(8)T	Two new output fields were added to this command: Number of unordered data chunks sent and Number of unordered data chunks received. Support for the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850 is not included in this release.
12.2(11)T	This command was implemented on the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850.
12.4(11)T	This command was replaced by the show sctp association statistics command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command shows only the information that has become available since the last time a clear ip sctp statistics command was executed.

Examples

The following sample output shows the statistics accumulated for SCTP association 0:

Router# show ip sctp association statistics 0

** SCTP Association Statistics **

AssocID/InstanceID: 0/1

Current State: ESTABLISHED

Control Chunks

  Sent: 623874  Rcvd: 660227

Data Chunks Sent

  Total: 14235644  Retransmitted: 60487

  Ordered: 6369678  Unordered: 6371263

  Avg bundled: 18  Total Bytes: 640603980

Data Chunks Rcvd

  Total: 14496585  Discarded: 1755575

  Ordered: 6369741  Unordered: 6371269

  Avg bundled: 18  Total Bytes: 652346325

  Out of Seq TSN: 3069353

ULP Dgrams

  Sent: 12740941  Ready: 12740961  Rcvd: 12740941

Table 18 describes the significant fields shown in the display.

Table 18 show ip sctp association statistics Field Descriptions   

Field	Description
AssocID/InstanceID	SCTP association identifier and instance identifier.
Current State	State of SCTP association.
Control Chunks	SCTP control chunks sent and received.
Data Chunks Sent	SCTP data chunks sent, ordered and unordered.
Data Chunks Rcvd	SCTP data chunks received, ordered and unordered.
ULP Dgrams	Number of datagrams sent, ready, and received by the Upper-Layer Protocol (ULP).

Related Commands

Command	Description
clear ip sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show ip sctp association list	Displays a list of all current SCTP associations.
show ip sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show ip sctp errors	Displays error counts logged by SCTP.
show ip sctp instances	Displays all currently defined SCTP instances.
show ip sctp statistics	Displays overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.

show ip sctp errors

---

Note Effective with Cisco IOS Release 12.4(11)T, the show ip sctp errors command is replaced by the show sctp errors command. See the show sctp errors command for more information.

---

To display the error counts logged by the Stream Control Transmission Protocol (SCTP), use the show ip sctp errors command in privileged EXEC mode.

show ip sctp errors

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(2)MB	This command was introduced as part of the show ip sctp command.
12.2(2)T	This command was changed to the show ip sctp errors command.
12.2(4)T	This command was integrated into Cisco IOS Release 12.2(4)T.
12.2(8)T	This command was integrated into Cisco IOS Release 12.2(8)T. Support for the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850 is not included in this release.
12.2(11)T	This command was implemented on the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850.
12.4(11)T	This command was replaced by the show sctp errors command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command displays all errors across all associations that have been logged since the last time that the SCTP statistics were cleared with the clear ip sctp statistics command. If no errors have been logged, this is indicated in the output.

Examples

The following sample output shows a session with no errors:

Router# show ip sctp errors

*** SCTP Error Statistics ****

No SCTP errors logged.

The following sample output shows a session that has SCTP errors:

Router# show ip sctp errors

** SCTP Error Statistics **

Invalid verification tag:       5

Communication Lost:             64

Destination Address Failed:     3

Unknown INIT params rcvd:       16

Invalid cookie signature:       5

Expired cookie:                 1

Peer restarted:                 1

No Listening instance:          2

Field descriptions are self-explanatory.

Related Commands

Command	Description
clear ip sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show ip sctp association list	Displays a list of all current SCTP associations.
show ip sctp association parameters	Displays the parameters configured for the association defined by the association ID.
show ip sctp association statistics	Displays the current statistics for the association defined by the association ID.
show ip sctp instances	Displays the currently defined SCTP instances.
show ip sctp statistics	Displays overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an AS.
show iua asp	Displays information about the current condition of an ASP.

show ip sctp instances

---

Note Effective with Cisco IOS Release 12.4(11)T, the show ip sctp instances command is replaced by the show sctp instances command. For more information, see the show sctp instances command.

---

To display information for each of the currently configured Stream Control Transmission Protocol (SCTP) instances, use the show ip sctp instances command in privileged EXEC mode.

show ip sctp instances

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(2)MB	This command was introduced as part of the show ip sctp command.
12.2(2)T	This command was changed to the show ip sctp instances command.
12.2(4)T	This command was integrated into Cisco IOS Release 12.2(4)T.
12.2(8)T	This command was integrated into Cisco IOS Release 12.2(8)T. Support for the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850 is not included in this release.
12.2(11)T	This command was implemented on the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850.
12.4(11)T	This command was replaced by the show sctp instances command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command displays information for each of the currently configured instances. The instance number, local port, and address information are displayed. The instance state is either available or deletion pending. An instance enters the deletion pending state when a request is made to delete it but there are currently established associations for that instance. The instance cannot be deleted immediately and instead enters the pending state. No new associations are allowed in this instance, and when the last association is terminated or fails, the instance is deleted.

The default inbound and outbound stream numbers are used for establishing incoming associations, and the maximum number of associations allowed for this instance is shown. Then a snapshot of each existing association is shown, if any exists.

Effective with Cisco IOS Release 12.4(11)T, if you enter the show ip sctp instances command, you must type the complete word instances in the command syntax.

Examples

The following sample output shows available IP SCTP instances. In this example, two current instances are active and available. The first is using local port 8989, and the second is using 9191. Instance identifier 0 has three current associations, and instance identifier 1 has no current associations.

Router# show ip sctp instances

*** SCTP Instances ****

Instance ID:0  Local port:8989

Instance state:available

Local addrs:10.1.0.2 10.2.0.2

Default streams inbound:1  outbound:1

  Current associations: (max allowed:6)

  AssocID:0  State:ESTABLISHED  Remote port:8989

    Dest addrs:10.6.0.4 10.5.0.4

  AssocID:1  State:ESTABLISHED  Remote port:8990

    Dest addrs:10.6.0.4 10.5.0.4

  AssocID:2  State:ESTABLISHED  Remote port:8991

    Dest addrs:10.6.0.4 10.5.0.4

Instance ID:1  Local port:9191

Instance state:available

Local addrs:10.1.0.2 10.2.0.2

Default streams inbound:1  outbound:1

No current associations established for this instance.

Max allowed:6

Field descriptions are self-explanatory.

Related Commands

Command	Description
clear ip sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show ip sctp association list	Displays a list of all current SCTP associations.
show ip sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show ip sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show ip sctp errors	Displays error counts logged by SCTP.
show ip sctp statistics	Displays the overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an AS.
show iua asp	Displays information about the current condition of an ASP.

show ip sctp statistics

---

Note Effective with Cisco IOS Release 12.4(11)T, the show ip sctp statistics command is replaced by the show sctp statistics command. See the show sctp statistics command for more information.

---

To display the overall statistics counts for Stream Control Transmission Protocol (SCTP) activity, use the show ip sctp statistics command in privileged EXEC mode.

show ip sctp statistics

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(2)MB	This command was introduced as part of the show ip sctp command.
12.2(2)T	This command was changed to the show ip sctp statistics command.
12.2(4)T	This command was integrated into Cisco IOS Release 12.2(4)T.
12.2(8)T	This command was integrated into Cisco IOS Release 12.2(8)T. Support for the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850 is not included in this release.
12.2(11)T	This command is supported on the Cisco AS5300, Cisco AS5350, Cisco AS5400, and Cisco AS5850 in this release.
12.4(11)T	This command was replaced by the show sctp statistics command.
12.4(15)T	This command was moved to the Cisco IP Application Services Command Reference.

Usage Guidelines

This command displays the overall SCTP statistics accumulated since the last clear ip sctp statistics command. It includes numbers for all currently established associations, and for any that have been terminated. The statistics indicated are similar to those shown for individual associations.

Examples

The following sample output shows IP SCTP statistics:

Router# show ip sctp statistics

*** SCTP Overall Statistics ****

Total Chunks Sent:           2097

Total Chunks Rcvd:           2766

Data Chunks Rcvd In Seq:     538

Data Chunks Rcvd Out of Seq: 0

Total Data Chunks Sent:      538

Total Data Chunks Rcvd:      538

Total Data Bytes Sent:       53800

Total Data Bytes Rcvd:       53800

Total Data Chunks Discarded: 0

Total Data Chunks Retrans:   0

Total SCTP Dgrams Sent:      1561

Total SCTP Dgrams Rcvd:      2228

Total ULP Dgrams Sent:       538

Total ULP Dgrams Ready:      538

Total ULP Dgrams Rcvd:       538

Field descriptions are self-explanatory.

Related Commands

Command	Description
clear ip sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show ip sctp association list	Displays a list of all current SCTP associations.
show ip sctp association parameters	Displays the parameters configured and calculated for the association defined by the association identifier.
show ip sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show ip sctp errors	Displays error counts logged by SCTP.
show ip sctp instances	Displays all currently defined SCTP instances.
show iua as	Displays information about the current condition of an AS.
show iua asp	Displays information about the current condition of an ASP.