Table Of Contents

show ip sockets

show ip tcp header-compression

show ip traffic

show ip wccp

show ip wccp web-caches

show platform software wccp

show sctp association

show sctp association list

show sctp association parameters

show sctp association statistics

show sctp errors

show sctp instance

show sctp instances

show sctp statistics

show sockets

show standby

show standby arp gratuitous

show standby capability

show standby delay

show standby internal

show standby neighbors

show standby redirect

show tcp

show tcp brief

show tcp statistics

show time-range ipc

show track

show udp

show vrrp

show vrrp interface

snmp-server enable traps slb

standby arp gratuitous

standby authentication

standby bfd

standby bfd all-interfaces

standby delay minimum reload

standby follow

standby ip

standby mac-address

standby mac-refresh

standby name

show ip sockets

To display IP socket information, use the show ip sockets command in user EXEC or privileged EXEC mode.

show ip sockets

Syntax Description

This command has no arguments or keywords.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
10.0 T	This command was introduced.
12.2(2)T	Support for IPv6 socket information in the display output of the command was added.
12.0(21)ST	This command was integrated into Cisco IOS Release 12.0(21)ST.
12.0(22)S	This command was integrated into Cisco IOS Release 12.0(22)S.
12.2(14)S	This command was integrated into Cisco IOS Release 12.2(14)S.
12.2(28)SB	This command was integrated into Cisco IOS Release 12.2(28)SB.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.4(11)T	This command was replaced by the show udp, show sockets and show ip sctp commands.
12.2(33)SXH	This command was integrated into Cisco IOS Release 12.2(33)SXH.

Usage Guidelines

Use this command to verify that the socket being used is opening correctly. If there is a local and remote endpoint, a connection is established with the ports indicated.

Examples

The following is sample output from the show ip sockets command:

Router# show ip sockets

Proto    Remote         Port      Local           Port  In Out Stat TTY OutputIF

 17      10.0.0.0         0       172.16.186.193  67    0   0    1   0

 17      172.16.191.135   514     172.16.191.129  1811  0   0    0   0

 17      172.16.135.20    514     172.16.191.1    4125  0   0    0   0

 17      172.16.207.163   49      172.16.186.193  49    0   0    9   0

 17      10.0.0.0         123     172.16.186.193  123   0   0    1   0

 88      10.0.0.0         0       172.16.186.193  202   0   0    0   0

 17      172.16.96.59     32856   172.16.191.1    161   0   0    1   0

 17     --listen--             --any--        496  0    0   1    0

The following sample output from the show ip sockets command shows IPv6 socket information:

Router# show ip sockets 

Proto     Remote     Port     Local     Port     In     Out     Stat     TTY OutputIF 

17(v6)  --listen--           --any--    1024      0      0       0          0 

17(v6)  --listen--           --any--       7      0      0       0          0 
17(v6)  --listen--           --any--     161      0      0       0          0 

17(v6)  --listen--           --any--     162      0      0       0          0 

17      --listen--           --any--    1024      0      0       0          0 

17      --listen--           --any--       7      0      0       0          0 

17      --listen--           --any--       9      0      0       0          0 

17      --listen--           --any--      19      0      0       0          0 

17      --listen--           --any--    1645      0      0       0          0 

17      --listen--           --any--    1646      0      0       0          0 

17      --listen--           --any--     161      0      0       0          0 

17      --listen--           --any--     162      0      0       0          0

Table 57 describes the significant fields shown in the display.

Table 57 show ip sockets Field Descriptions 

Field	Description
Proto	Protocol type, for example, User Datagram Protocol (UDP) or TCP.
Remote	Remote address connected to this networking device. If the remote address is considered illegal, "--listen--" is displayed.
Port	Remote port. If the remote address is considered illegal, "--listen--" is displayed.
Local	Local address. If the local address is considered illegal or is the address 0.0.0.0, "--any--" displays.
Port	Local port.
In	Input queue size.
Out	Output queue size.
Stat	Various statistics for a socket.
TTY	The tty number for the creator of this socket.
OutputIF	Output IF string, if one exists.
v6	IPv6 sockets.

Related Commands

Command	Description
show ip sctp	Displays information about SCTP.
show processes	Displays information about the active processes.
show sockets	Displays IP socket information.
show udp	Displays IP socket information about UDP processes.

show ip tcp header-compression

To display Transmission Control Protocol (TCP)/IP header compression statistics, use the show ip tcp header-compression command in user EXEC or privileged EXEC mode.

show ip tcp header-compression [interface-type interface-number] [detail]

Syntax Description

interface-type interface-number	(Optional) The interface type and number.
detail	(Optional) Displays details of each connection. This keyword is available only in privileged EXEC mode.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
10.0	This command was introduced.
12.4	This command was integrated into Cisco Release 12.4 and its command output was modified to include additional compression statistics.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Examples

The following is sample output from the show ip tcp header-compression command:

Router# show ip tcp header-compression

TCP/IP header compression statistics:

  Interface Serial2/0 (compression on, IETF)

    Rcvd:    53797 total, 53796 compressed, 0 errors, 0 status msgs

             0 dropped, 0 buffer copies, 0 buffer failures

    Sent:    53797 total, 53796 compressed, 0 status msgs, 0 not predicted

             1721848 bytes saved, 430032 bytes sent

             5.00 efficiency improvement factor

    Connect: 16 rx slots, 16 tx slots,

             1 misses, 0 collisions, 0 negative cache hits, 15 free contexts

             99% hit ratio, five minute miss rate 0 misses/sec, 0 max

Table 58 describes significant fields shown in the display.

Table 58 show ip tcp header-compression Field Descriptions 

Field	Description
Interface Serial2/0 (compression on, IETF)	Interface type and number on which compression is enabled.
Rcvd:	Received statistics described in subsequent fields.
total	Total number of TCP packets received on the interface.
compressed	Total number of TCP packets compressed.
errors	Number of packets received with errors.
status msgs	Number of resynchronization messages received from the peer.
dropped	Number of packets dropped due to invalid compression.
buffer copies	Number of packets that needed to be copied into bigger buffers for decompression.
buffer failures	Number of packets dropped due to a lack of buffers.
Sent:	Sent statistics described in subsequent fields.
total	Total number of TCP packets sent on the interface.
compressed	Total number of TCP packets compressed.
status msgs	Number of resynchronization messages sent from the peer.
not predicted	Number of packets taking a non-optimal path through the compressor.
bytes saved	Total savings in bytes due to compression.
bytes sent	Total bytes sent after compression.
efficiency improvement factor	Improvement in line efficiency because of TCP header compression.
Connect:	Connection statistics described in subsequent fields.
rx slots	Total number of receive slots.
tx slots	Total number of transmit slots.
misses	Indicates the number of times a match could not be made. If your output shows a large miss rate, then the number of allowable simultaneous compression connections may be too low.
collisions	Total number of collisions.
negative cache hits	Total number of negative cache hits. Note This field is not relevant for TCP header compression; it is used for Real-Time Transport Protocol (RTP) header compression.
free contexts	Total number of free contexts. Note Free contexts (also known as connections) are an indication of the number of resources that are available, but not currently in use, for TCP header compression.
hit ratio	Percentage of times the software found a match and was able to compress the header.
Five minute miss rate in misses/sec	Calculates the miss rate over the previous five minutes for a longer-term (and more accurate) look at miss rate trends.
max	Maximum value of the previous field.

Related Commands

Command	Description
ip tcp compression-connections	Specifies the total number of TCP header compression connections that can exist on an interface

show ip traffic

To display statistics about IP traffic, use the show ip traffic command in user EXEC or privileged EXEC mode.

show ip traffic

Syntax Description

This command has no arguments or keywords.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
10.0	This command was introduced.
12.2	The output was enhanced to displays the number of keepalive, open, update, route-refresh request, and notification messages received and sent by a Border Gateway Protocol (BGP) routing process.
12.2(25)S	The command output was modified.
12.2(28)SB	This command was integrated into Cisco IOS Release 12.2(28)SB and implemented on the Cisco 10000 series routers.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2(33)SXH	This command was integrated into Cisco IOS Release 12.2(33)SXH.
12.4(20)T	This command was integrated into Cisco IOS Release 12.4(20)T.
12.2(33)SXH5	This command was modified. The output was changed to display the ARP (proxy) reply counter as the number of ARP replies for real proxies only.

Examples

The following is sample output from the show ip traffic command:

Router# show ip traffic

IP statistics:

  Rcvd:  27 total, 27 local destination

         0 format errors, 0 checksum errors, 0 bad hop count

         0 unknown protocol, 0 not a gateway

         0 security failures, 0 bad options, 0 with options

  Opts:  0 end, 0 nop, 0 basic security, 0 loose source route

         0 timestamp, 0 extended security, 0 record route

         0 stream ID, 0 strict source route, 0 alert, 0 cipso, 0 ump

         0 other

  Frags: 0 reassembled, 0 timeouts, 0 couldn't reassemble

         0 fragmented, 0 couldn't fragment

  Bcast: 27 received, 0 sent

  Mcast: 0 received, 0 sent

  Sent:  0 generated, 0 forwarded

  Drop:  0 encapsulation failed, 0 unresolved, 0 no adjacency

         0 no route, 0 unicast RPF, 0 forced drop

  Drop:  0 packets with source IP address zero

ICMP statistics:

  Rcvd: 0 format errors, 0 checksum errors, 0 redirects, 0 unreachable

        0 echo, 0 echo reply, 0 mask requests, 0 mask replies, 0 quench

        0 parameter, 0 timestamp, 0 info request, 0 other

        0 irdp solicitations, 0 irdp advertisements

        0 time exceeded, 0 timestamp replies, 0 info replies

  Sent: 0 redirects, 0 unreachable, 0 echo, 0 echo reply

        0 mask requests, 0 mask replies, 0 quench, 0 timestamp

        0 info reply, 0 time exceeded, 0 parameter problem

        0 irdp solicitations, 0 irdp advertisements

BGP statistics:

  Rcvd: 0 total, 0 opens, 0 notifications, 0 updates

        0 keepalives, 0 route-refresh, 0 unrecognized

  Sent: 0 total, 0 opens, 0 notifications, 0 updates

        0 keepalives, 0 route-refresh

EIGRP-IPv4 statistics:

  Rcvd: 0 total

  Sent: 0 total

TCP statistics:

  Rcvd: 0 total, 0 checksum errors, 0 no port

  Sent: 0 total

PIMv2 statistics: Sent/Received

  Total: 0/0, 0 checksum errors, 0 format errors

  Registers: 0/0 (0 non-rp, 0 non-sm-group), Register Stops: 0/0,  Hellos: 0/0

  Join/Prunes: 0/0, Asserts: 0/0, grafts: 0/0

  Bootstraps: 0/0, Candidate_RP_Advertisements: 0/0

  State-Refresh: 0/0

IGMP statistics: Sent/Received

  Total: 0/0, Format errors: 0/0, Checksum errors: 0/0

  Host Queries: 0/0, Host Reports: 0/0, Host Leaves: 0/0 

  DVMRP: 0/0, PIM: 0/0

UDP statistics:

  Rcvd: 185515 total, 0 checksum errors, 185515 no port

  Sent: 0 total, 0 forwarded broadcasts

OSPF statistics:

  Rcvd: 0 total, 0 checksum errors

        0 hello, 0 database desc, 0 link state req

        0 link state updates, 0 link state acks

  Sent: 0 total

        0 hello, 0 database desc, 0 link state req

        0 link state updates, 0 link state acks

Probe statistics:

  Rcvd: 0 address requests, 0 address replies

        0 proxy name requests, 0 where-is requests, 0 other

  Sent: 0 address requests, 0 address replies (0 proxy)

        0 proxy name replies, 0 where-is replies

ARP statistics:

  Rcvd: 1477 requests, 8841 replies, 396 reverse, 0 other

  Sent: 1 requests, 20 replies (0 proxy), 0 reverse

  Drop due to input queue full: 0

Cisco 10000 Series Routers Example Only

The following is sample output from the show ip traffic command:

Router# show ip traffic

IP statistics:

  Rcvd:  27 total, 27 local destination

         0 format errors, 0 checksum errors, 0 bad hop count

         0 unknown protocol, 0 not a gateway

         0 security failures, 0 bad options, 0 with options

  Opts:  0 end, 0 nop, 0 basic security, 0 loose source route

         0 timestamp, 0 extended security, 0 record route

         0 stream ID, 0 strict source route, 0 alert, 0 cipso, 0 ump

         0 other

  Frags: 0 reassembled, 0 timeouts, 0 couldn't reassemble

         0 fragmented, 0 couldn't fragment

  Bcast: 27 received, 0 sent

  Mcast: 0 received, 0 sent

  Sent:  0 generated, 0 forwarded

  Drop:  0 encapsulation failed, 0 unresolved, 0 no adjacency

         0 no route, 0 unicast RPF, 0 forced drop

         0 options denied, 0 source IP address zero

Table 59 describes the significant fields shown in the display.

Table 59 show ip traffic Field Descriptions 

Field	Description
format errors	Indicates a gross error in the packet format, such as an impossible Internet header length.
bad hop count	Occurs when a packet is discarded because its time-to-live (TTL) field was decremented to zero.
encapsulation failed	Usually indicates that the router had no Address Resolution Protocol (ARP) request entry and therefore did not send a datagram.
no route	Counted when the Cisco IOS software discards a datagram it did not know how to route.

show ip wccp

To display global statistics related to Web Cache Communication Protocol (WCCP), use the show ip wccp command in user EXEC or privileged EXEC mode.

show ip wccp [service-number | interfaces {cef | counts | detail} | | web-cache] [detail | view]

Syntax Description

service-number	(Optional) Identification number of the web-cache service group being controlled by the cache. The number can be from 0 to 254. For web caches using Cisco cache engines, the reverse proxy service is indicated by a value of 99.
interfaces	(Optional) WCCP redirect interfaces.
cef	(Optional) CEF interface statistics, including the number of input, output, dynamic, static, and multicast services.
counts	(Optional) WCCP interface count statistics, including the number of CEF and process-switched output and input packets redirected.
detail	(Optional) WCCP interface configuration statistics, including the number of input, output, dynamic, static, and multicast services.
web-cache	(Optional) Statistics for the web-cache service.
detail	(Optional) Information about the router and all web caches.
view	(Optional) Other members of a particular service group have or have not been detected.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
11.1CA	This command was introduced for Cisco 7200 and 7500 platforms.
11.2P	Support for this command was added to a variety of Cisco platforms.
12.0(3)T	The detail and view keywords were added.
12.3(7)T	The output was enhanced to display the bypass counters (process, fast, and Cisco Express Forwarding) when WCCP is enabled.
12.2(14)SX	Support for this command was introduced on the Supervisor Engine 720.
12.2(17d)SXB	Support for this command on the Supervisor Engine 2 was extended to Cisco IOS Release 12.2(17d)SXB.
12.2(25)S	This command was integrated into Cisco IOS Release 12.2(25)S.
12.3(14)T	The output was enhanced to display the maximum number of service groups.
12.2(27)SBC	This command was integrated into Cisco IOS Release 12.2(27)SBC.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.4(11)T	This command was enhanced to display information about the WCCP service mode.
12.2(33)SXH	This command was integrated into Cisco IOS Release 12.2(33)SXH.
Cisco IOS XE Release 2.2	This command was integrated into Cisco IOS XE Release 2.2.

Usage Guidelines

Use the clear ip wccp command to reset the counter for the "Packets Redirected" information.

Use the show ip wccp service-number command to provide the "Total Packets Redirected" count. The "Total Packets Redirected" count is the number of flows, or sessions, that are redirected.

Use the show ip wccp service-number detail command to provide the "Packets Redirected" count. The "Packets Redirected" count is the number of flows, or sessions, that are redirected.

Use the show ip wccp web-cache detail command to provide an indication of how many flows, rather than packets, are using Layer 2 redirection.

For cache-engine clusters using Cisco cache engines, the reverse proxy service-number is indicated by a value of 99.

Cisco IOS counters display software-based (CEF and process switching) fowarding of WCCP packets. The Cisco ASR 1000 series aggregation services routers implement WCCP in hardware, rather than in the CEF or process-switching paths, which produces a packet count of 0 when the show ip wccp command is entered. Use the show platform software wccp command to display global statistics related to WCCP on the Cisco ASR 1000 series aggregation services routers.

Examples

This section contains examples and field descriptions for the following forms of this command:

•show ip wccp service-number (service mode displayed)

•show ip wccp service-number view

•show ip wccp service-number detail

•show ip wccp interfaces

•show ip wccp web-cache

•show ip wccp web-cache detail

•show ip wccp web-cache detail (bypass counters displayed)

show ip wccp service-number (Service Mode Displayed)

The following is sample output from the show ip wccp service-number command:

Router# show ip wccp 90

Global WCCP information:

    Router information:

        Router Identifier:                   100.1.1.16

        Protocol Version:                    2.0

    Service Identifier: 90

        Number of Service Group Clients:     1

        Number of Service Group Routers:     1

        Total Packets s/w Redirected:        0

          Process:                           0

          CEF:                               0

        Service mode:                        Closed

        Service Access-list:                 tcp91

        Total Packets Dropped Closed:        0

        Redirect Access-list:                -none-

        Total Packets Denied Redirect:       0

        Total Packets Unassigned:            0

        Group Access-list:                   -none-

        Total Messages Denied to Group:      0

        Total Authentication failures:       0

        Total Bypassed Packets Received:     0

Table 60 describes the significant fields shown in the display.

Table 60 show ip wccp service-number Field Descriptions 

Field	Description
Router information:	A list of routers detected by the current router.
Protocol Version:	The version of WCCP being used by the router in the service group.
Service Identifier:	Indicates which service is detailed.
Number of Service Group Clients:	The number of clients that are visible to the router and other clients in the service group.
Number of Service Group Routers:	The number of routers in the service group.
Total Packets s/w Redirected:	Total number of packets redirected by the router.
Service mode: Closed	Identifies the WCCP service mode. Options are open or closed.
Service Access-list:	A named extended IP access list that defines the packets that will match the service.
Total Packets Dropped Closed:	Total number of packets that were dropped when WCCP is configured for closed services and an intermediary device is not available to process the service.
Redirect Access-list:	The name or number of the access list that determines which packets will be redirected.
Total Packets Denied Redirect:	Total number of packets that were not redirected because they did not match the access list.
Total Packets Unassigned:	Number of packets that were not redirected because they were not assigned to any cache engine. Packets may not be assigned during initial discovery of cache engines or when a cache is dropped from a cluster.
Group Access-list:	Indicates which cache engine is allowed to connect to the router.
Total Messages Denied to Group:	Indicates the number of packets denied by the group-list access list.
Total Authentication failures:	The number of instances where a password did not match.
Total Bypassed Packets Received:	The number of packets that have been bypassed. Process, fast, and Cisco Express Forwarding (CEF) are switching paths within Cisco IOS software.

show ip wccp service-number view

The following is sample output from the show ip wccp service-number view command for service group 1:

Router# show ip wccp 1 view

WCCP Router Informed of:

 10.168.88.10

 10.168.88.20

WCCP Cache Engines Visible

 10.168.88.11

 10.168.88.12

WCCP Cache Engines Not Visible:

 -none-

---

Note The number of maximum service groups that can be configured is 256.

---

If any web cache is displayed under the WCCP Cache Engines Not Visible field, the router needs to be reconfigured to map the web cache that is not visible to it.

Table 61 describes the significant fields shown in the display.

Table 61 show ip wccp service-number view Field Descriptions 

Field	Description
WCCP Router Informed of	A list of routers detected by the current router.
WCCP Clients Visible	A list of clients that are visible to the router and other clients in the service group.
WCCP Clients Not Visible	A list of clients in the service group that are not visible to the router and other clients in the service group.

show ip wccp service-number detail

The following example displays WCCP client information and WCCP router statistics that include the type of services:

Router# show ip wccp 91 detail

WCCP Client information:

 WCCP Client ID: 10.1.1.14

 Protocol Version: 2.0

 State: Usable

 Redirection: GRE

 Packet Return: GRE

 Assignment: HASH

 Initial Hash Info: 0000000000000000000000000000000000000000000000000000000000000000

 Assigned Hash Info: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

 Hash Allotment: 256 (100.00%)

 Packets Redirected: 0

 Connect Time: 00:01:56

 Bypassed Packets

 Process: 0

 CEF: 0

show ip wccp interfaces

The following is sample output from the show ip wccp interfaces command:

Router# show ip wccp interfaces

WCCP interface configuration:

    FastEthernet0/1/0

        Output services: 2

        Input services: 3

        Mcast services: 1

        Exclude In:      FALSE

Table 62 describes the significant fields shown in the display.

Table 62 show ip wccp interfaces Field Descriptions 

Field	Description
Output services	Indicates the number of output services configured on the interface.
Input services	Indicates the number of input services configured on the interface.
Mcast services	Indicates the number of multicast services configured on the interface.
Exclude In:	Displays whether traffic on the interface is excluded from redirection.

show ip wccp web-cache

The following is sample output from the show ip wccp web-cache command:

Router# show ip wccp web-cache

Global WCCP Information:

 Service Name: web-cache:

 Number of Cache Engines:	1

 Number of Routers:	1

 Total Packets Redirected:	213

 Redirect access-list:	no_linux

 Total Packets Denied Redirect:	88

 Total Packets Unassigned:	-none-

 Group access-list:	0

 Total Messages Denied to Group:	0

 Total Authentication failures:	0

Table 63 describes the significant fields shown in the display.

Table 63 show ip wccp web-cache Field Descriptions 

Field	Description
Service Name	Indicates which service is detailed.
Number of Cache Engines	Number of Cisco cache engines using the router as their home router.
Number of Routers	The number of routers in the service group.
Total Packets Redirected	Total number of packets redirected by the router.
Redirect access-list	The name or number of the access list that determines which packets will be redirected.
Total Packets Denied Redirect	Total number of packets that were not redirected because they did not match the access list.
Total Packets Unassigned	Number of packets that were not redirected because they were not assigned to any cache engine. Packets may not be assigned during initial discovery of cache engines or when a cache is dropped from a cluster.
Group access-list	Indicates which cache engine is allowed to connect to the router.
Total Messages Denied to Group	Indicates the number of packets denied by the group-list access list.
Total Authentication failures	The number of instances where a password did not match.

show ip wccp web-cache detail

The following example displays web-cache engine information and WCCP router statistics for the web-cache service:

Router# show ip wccp web-cache detail

WCCP Router information:

 IP Address	10.168.88.10

 Protocol Version:	2.0

WCCP Client Information

 IP Address:	10.168.88.11

 Protocol Version:	2.0

 State:	Usable

 Initial Hash Info:	AAAAAAAAAAAAAAAAAAAAAAAAAA

	AAAAAAAAAAAAAAAAAAAAAAAAAA

 Assigned Hash Info:	FFFFFFFFFFFFFFFFFFFFFFFFFF

	FFFFFFFFFFFFFFFFFFFFFFFFFF

 Hash Allotment:	256 (100.00%)

 Packets Redirected:	21345

 Connect Time:	00:13:46

Table 64 describes the significant fields shown in the display.

Table 64 show ip wccp web-cache detail Field Descriptions 

Field	Description
WCCP Router information	The header for the area that contains fields for the IP address and version of WCCP associated with the router connected to the cache engine in the service group.
IP Address	The IP address of the router connected to the cache engine in the service group.
Protocol Version	The version of WCCP being used by the router in the service group.
WCCP Client Information	The header for the area that contains fields for information on clients.
IP Address	The IP address of the cache engine in the service group.
Protocol Version	The version of WCCP being used by the cache engine in the service group.
State	Indicates whether the cache engine is operating properly and can be contacted by a router and other cache engines in the service group.
Initial Hash Info	The initial state of the hash bucket assignment. The values show the state of each of the 256 hash buckets. Hexadecimal digits are used as shorthand for binary numbers with F representing 1111, four bits set to one. If a set of four bits is F, then that hash bucket is allocated to the client with the displayed ID. If a set of bits is 0, then it is not allocated to the client with the displayed ID.
Assigned Hash Info	The current state of the hash bucket assignment. The values show the state of each of the 256 hash buckets. If F is displayed, then that hash bucket is allocated to the client with the displayed ID. If a bit is 0 then it is not allocated to the client with the displayed ID. In this output all the bits in the assigned field are F, indicating that all traffic goes to that client. All 1's in the assigned field indicates there is only one client in the service group. If there were two clients in the group, half of the bits would have a value of F and the other half would have a value of 0 for each client, indicating that redirected traffic is divided equally between the two clients.
Hash Allotment	The percent of buckets assigned to the current cache engine. Both a value and a percent figure are displayed.
Packets Redirected	The number of packets that have been redirected to the cache engine.
Connect Time	The amount of time the cache engine has been connected to the router.

show ip wccp web-cache detail (Bypass Counters)

The following example displays web-cache engine information and WCCP router statistics that include the bypass counters:

Router# show ip wccp web-cache detail

WCCP Router information:

 IP Address:	10.168.88.10

 Protocol Version:	2.0

WCCP Client Information

 IP Address:	10.168.88.11

 Protocol Version:	2.0

 State:	Usable

 Initial Hash Info:	AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

 Assigned Hash Info:	FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

 Hash Allotment:	256 (100.00%)

 Packets Redirected:	21345

 Connect Time:	00:13:46

Bypassed Packets

 Process:             0

 Fast:                0

 CEF:                 250

Table 65 describes the significant fields shown in the display.

Table 65 show ip wccp web-cache detail Field Descriptions 

Field	Description
WCCP Router information	The header for the area that contains fields for the IP address and the version of WCCP associated with the router connected to the cache engine in the service group.
IP Address	The IP address of the router connected to the cache engine in the service group.
Protocol Version	The version of WCCP that is being used by the router in the service group.
WCCP Client Information	The header for the area that contains fields for information on clients.
IP Address	The IP address of the cache engine in the service group.
Protocol Version	The version of WCCP that is being used by the cache engine in the service group.
State	Indicates whether the cache engine is operating properly and can be contacted by a router and other cache engines in the service group.
Initial Hash Info	The initial state of the hash bucket assignment.
Assigned Hash Info	The current state of the hash bucket assignment.
Hash Allotment	The percent of buckets assigned to the current cache engine. Both a value and a percent figure are displayed.
Packets Redirected	The number of packets that have been redirected to the cache engine.
Connect Time	The amount of time the cache engine has been connected to the router.
Bypassed Packets	The number of packets that have been bypassed. Process, fast, and Cisco Express Forwarding (CEF) are switching paths within Cisco IOS software.

Related Commands

Command	Description
clear ip wccp	Clears the counter for packets redirected using WCCP.
ip wccp	Enables WCCP on a router and specifies the type of services to be used.
ip wccp redirect	Enables packet redirection on an outbound or inbound interface using WCCP.
ip wccp web-cache accelerated	Enables the hardware acceleration for WCCP version 1.
show ip interface	Lists a summary of the IP information and status of an interface.

show ip wccp web-caches

The show ip wccp web-caches command has been replaced by the show ip wccp web-cache detail command. See the description of the show ip wccp command in this book for more information.

show platform software wccp

To display global statistics related to Web Cache Communication Protocol (WCCP) on  Cisco ASR 1000 series aggregation services routers, use the show platform software wccp command in user EXEC or privileged EXEC mode.

show platform software wccp [service-number counters | slot [service-number [access-list]] | cache-info [object-id] | interface | statistics | web-cache [access-list]]]

Syntax Description

service-number counters	(Optional) Displays counter information for a dynamically defined service. The service identifier number can be from 0 to 254.
access-list	(Optional) Displays access list information.
slot	(Optional) Embedded-Service-Processor or Route-Processor slot. Valid options are: •F0—Embedded-Service-Processor Slot 0 •F1—Embedded-Service-Processor Slot 1 •FP— Embedded-Service-Processor •R0—Route-Processor Slot 0 •R1—Rout-Processor Slot 1 •RP—Route-Processor
cache-info	(Optional) Displays cache-engine information for all cache engines.
object-id	(Optional) Displays cache-engine information for the specified cache engine. Valid range is 0 to 65535.
interface counters	(Optional) Displays information about interfaces bound to WCCP services.
statistics	(Optional) Displays internal messaging statistics for WCCP. Displayed counters are self-descriptive.
web-cache counters	(Optional) Displays web-cache information.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
Cisco IOS XE Release 2.2	This command was introduced.

Usage Guidelines

Use the show platform software wccp to display global statistics related to WCCP on the Cisco ASR 1000 series aggregation services routers. The show ip wccp command displays information about software-based (process, fast, and Cisco Express Forwarding [CEF]) forwarding of WCCP packets. The Cisco ASR 1000 series aggregation services routers implement WCCP in hardware, rather than in the CEF or process-switching paths. This results in a packet count of 0 when the show ip wccp command is entered.

Examples

The following is sample output from the show platform software wccp counters command:

Router# show platform software wccp 61 counters

 Service Group (1, 61) counters

        Unassigned count = 0

        Dropped due to closed service count = 0

        Bypass count = 0

        Bypass failed count = 0

        Denied count = 0

        Redirect count = 313635910244

  CE = 10.1.1.2, obj_id = 58, Redirect Packets = 42768533218

  CE = 10.2.1.2, obj_id = 165, Redirect Packets = 45619768766

.

.

.

Table 66 describes the significant fields shown in the display.

Table 66 show platform software wccp counters Field Descriptions 

Field	Description
Service Group (1, 61) counters	Dynamic service group 61 counters.
Unassigned count	Number of packets that were not redirected because they were not assigned to any cache engine. Packets may not be assigned during initial discovery of cache engines or when a cache is dropped from a cluster.
Dropped due to closed service count = 0	This output field is not supported in Cisco IOS XE Release 2.2 and always returns a value of 0.
Bypass count	The number of packets that have been bypassed.
Bypass failed count	Number of bypass packets that WCCP could not find the original input interface.
Denied count	Total number of packets that were not redirected because they did not match the access list.
Redirect count	Total number of packets redirected by the router.
CE = 10.1.1.2, obj_id = 58, Redirect Packets = 42768533218	The number of packets redirected to each cache-engine.

The following is sample output from the show platform software wccp slot interface command:

Router# show platform software wccp f0 interface 

Interface FastEthernet0/1/0

if_handle: 11, direction: In

Standard web-cache service

Table 67 describes the significant fields shown in the display.

Table 67 show platform software wccp slot interface Field Descriptions 

Field	Description
Interface FastEthernet0/1/0	Name of the interface on which the WCCP service is applied.
if_handle	The internal interface index associated with the above interface.
direction: In	Specifies if the service is applied inbound or outbound. Note WCCP Outbound services are not supported in Cisco IOS XE Release 2.2.
Standard web-cache service	Description of the service which is applied. In this output it is the standard web-cache service.

The following is sample output from the show platform software wccp interface counters command:

Router# show platform software wccp interface counters 

 Interface FastEthernet0/1/0

        Input Redirect Packets  = 0

        Output Redirect Packets  = 0

Table 68 describes the significant fields shown in the display.

Table 68 show platform software wccp interface counters Field Descriptions 

Field	Description
Input Redirect Packets	The number of input packets that have been redirected to the cache engine.
Output Redirect Packets	The number of output packets that have been redirected to the cache engine.

The following is sample output from the show platform software wccp web-cache counters command:

Router# show platform software wccp web-cache counters 

 Service Group (0, 0) counters

        Unassigned count = 0

        Dropped due to closed service count = 0

        Bypass count = 0

        Bypass failed count = 0

        Denied count = 0

        Redirect count = 0

Table 69 describes the significant fields shown in the display.

Table 69 show platform software wccp web-cache counters Field Descriptions 

Field	Description
Unassigned count	Number of packets that were not redirected because they were not assigned to any cache engine. Packets may not be assigned during initial discovery of cache engines or when a cache is dropped from a cluster.
Dropped due to closed service count	Total number of packets that were dropped when WCCP is configured for closed services and an intermediary device is not available to process the service.
Bypass count	The number of packets that have been bypassed.
Bypass failed count	Number of bypass packets that WCCP could not find the original input interface.
Denied count	Total number of packets that were not redirected because they did not match the access list.
Redirect count	Total number of packets redirected by the router.

Related Commands

Command	Description
ip wccp	Enables WCCP on a router and specifies the type of services to be used.
ip wccp redirect	Enables packet redirection on an outbound or inbound interface using WCCP.

show sctp association

To display accumulated information for a specific Stream Control Transmission Protocol (SCTP) association, use the show sctp association command in privileged EXEC mode.

show sctp association assoc-id

Syntax Description

assoc-id

Association identifier, which can be obtained from the output of the show sctp association list command.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command shows only the information that has become available since the last time a clear sctp statistics command was executed.

Because thousands of associations can be on a single socket and instance ID, this command has been created to limit the output by displaying the status of one particular association ID.

Examples

The following sample output shows the established associations:

Router# show sctp association list 

** SCTP Association List ** 

AssocID: 3011699535, Instance ID: 1 

Current state: ESTABLISHED 

Local port: 2000, Addrs: 10.1.0.1 10.2.0.1 10.3.0.1 10.0.20.105 

Remote port: 1000, Addrs: 10.1.0.1 10.2.0.1 10.3.0.1 10.0.20.105 

AssocID: 2740019456, Instance ID: 0 

Current state: ESTABLISHED 

Local port: 1000, Addrs: 10.1.0.1 10.2.0.1 10.3.0.1 10.0.20.105 

Remote port: 2000, Addrs: 10.1.0.1 10.2.0.1 10.3.0.1 10.0.20.105 

The following sample output shows information for SCTP association 3011699535:

Router# show sctp association 3011699535

 AssocID: 3011699535, Instance ID: 1 

 Current state: ESTABLISHED 

 Local port: 2000, Addrs: 10.1.0.1 10.2.0.1 10.3.0.1 10.0.20.105 

 Remote port: 1000, Addrs: 10.1.0.1 10.2.0.1 10.3.0.1 10.0.20.105 

Table 70 describes the significant fields shown in the display.

Table 70 show sctp association Field Descriptions   

Field	Description
AssocID/Instance ID	SCTP association identifier and instance identifier.
Current state	State of SCTP association.
Local port	Port number for the local SCTP endpoint.
Remote port	Port number for the remote SCTP endpoint.
Addrs	IP addresses for the local and remote SCTP endpoints.

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.
show sctp association list	Displays a list of all current SCTP associations.
show sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show sctp errors	Displays error counts logged by SCTP.
show sctp instance	Displays information about SCTP endpoint information for one specific currently configured instance.
show sctp instances	Displays all currently defined SCTP instances.
show sctp statistics	Displays overall statistics counts for SCTP.

show sctp association list

To display identifiers and information for current Stream Control Transmission Protocol (SCTP) associations and instances, use the show sctp association list command in privileged EXEC mode.

show sctp association list

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced. This command replaces the show ip sctp association list command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

Use this command to display the current SCTP association and instance identifiers, the current state of SCTP associations, and the local and remote port numbers and addresses that are used in the associations.

Examples

The following is sample output from this command for three association identifiers:

Router# show sctp association list

*** SCTP Association List ****

AssocID:0,  Instance ID:0

Current state:ESTABLISHED

Local port:8989, Addrs:10.1.0.2 10.2.0.2

Remote port:8989, Addrs:10.6.0.4 10.5.0.4

AssocID:1,  Instance ID:0

Current state:ESTABLISHED

Local port:8989, Addrs:10.1.0.2 10.2.0.2

Remote port:8990, Addrs:10.6.0.4 10.5.0.4

AssocID:2,  Instance ID:0

Current state:ESTABLISHED

Local port:8989, Addrs:10.1.0.2 10.2.0.2

Remote port:8991, Addrs:10.6.0.4 10.5.0.4

Table 71 describes the significant fields shown in the display.

Table 71 show sctp association list Field Descriptions 

Field	Description
AssocID	SCTP association identifier.
Instance ID	SCTP association instance identifier.
Current state	SCTP association state, which can be ESTABLISHED, CLOSED, COOKIE-WAIT, and COOKIE-ECHOED.
Local port, Addrs	Port and IP address for the local SCTP endpoint.
Remote port, Addrs	Port and IP address for the remote SCTP endpoint.

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show sctp errors	Displays error counts logged by SCTP.
show sctp instances	Displays the currently defined SCTP instances.
show sctp statistics	Displays the overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.

show sctp association parameters

To display configured and calculated parameters for the specified Stream Control Transmission Protocol (SCTP) association, use the show sctp association parameters command in privileged EXEC mode.

show sctp association parameters assoc-id

Syntax Description

assoc-id

Association identifier. Shows the associated ID statistics for the SCTP association.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced. This commands replaces the show ip sctp association parameters command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

The show sctp association parameters command provides information to determine the stability of SCTP associations, dynamically calculated statistics about destinations, and values to assess network congestion. This command also displays parameter values for the specified association.

This command requires an association identifier. Association identifiers can be obtained from the output of the show sctp association list command.

Many parameters are defined for each association. Some are configured parameters, and others are calculated. Three main groupings of parameters are displayed by this command:

•Association configuration parameters

•Destination address parameters

•Association boundary parameters

The association configuration section displays information similar to that in the show sctp association list command, including association identifiers, state, and local and remote port and address information. The current primary destination is also displayed.

Examples

The following sample output shows the IP SCTP association parameters for association 0:

Router# show sctp association parameters 0

** SCTP Association Parameters **

AssocID: 0  Context: 0  InstanceID: 1

Assoc state: ESTABLISHED  Uptime: 19:05:57.425

Local port: 8181

Local addresses: 10.1.0.3 10.2.0.3

Remote port: 8181

Primary dest addr: 10.5.0.4

Effective primary dest addr: 10.5.0.4

Destination addresses:

10.5.0.4:   State:  ACTIVE

  Heartbeats:  Enabled   Timeout: 30000 ms

  RTO/RTT/SRTT: 1000/16/38 ms   TOS: 0  MTU: 1500

  cwnd: 5364  ssthresh: 3000  outstand: 768

  Num retrans: 0  Max retrans: 5  Num times failed: 0

10.6.0.4:   State:  ACTIVE

  Heartbeats:  Enabled   Timeout: 30000 ms

  RTO/RTT/SRTT: 1000/4/7 ms   TOS: 0  MTU: 1500

  cwnd: 3960  ssthresh: 3000  outstand: 0

  Num retrans: 0  Max retrans: 5  Num times failed: 0

Local vertag: 9A245CD4  Remote vertag: 2A08D122

Num inbound streams: 10  outbound streams: 10

Max assoc retrans: 5  Max init retrans: 8

CumSack timeout: 200 ms  Bundle timeout: 100 ms

Min RTO: 1000 ms  Max RTO: 60000 ms

LocalRwnd: 18000  Low: 13455   RemoteRwnd: 15252  Low: 13161

Congest levels: 0  current level: 0  high mark: 325

Table 72 describes the significant fields shown in the display.

Table 72 show sctp association parameters Field Descriptions 

Field	Description
AssocID	SCTP association identifier.
Context	Internal upper-layer handle.
InstanceID	SCTP association instance identifier.
Assoc state	SCTP association state, which can be ESTABLISHED, CLOSED, COOKIE-WAIT, and COOKIE-ECHOED.
Uptime	How long the association has been active.
Local port	Port number for the local SCTP endpoint.
Local addresses	IP addresses for the local SCTP endpoint.
Remote port	Port number for the remote SCTP endpoint.
Primary dest addr	Primary destination address.
Effective primary dest addr	Current primary destination address.
Heartbeats	Status of heartbeats.
Timeout	Heartbeat timeout.
RTO/RTT/SRTT	Retransmission timeout, round trip time, and smoothed round trip time, calculated from network feedback.
TOS	IP precedence setting.
MTU	Maximum transmission unit size, in bytes, that a particular interface can handle.
cwnd	Congestion window value calculated from network feedback. This value is the maximum amount of data that can be outstanding in the network for that particular destination.
ssthresh	Slow-start threshold value calculated from network feedback.
outstand	Number of outstanding bytes.
Num retrans	Current number of times that data has been retransmitted to that address.
Max retrans	Maximum number of times that data has been retransmitted to that address.
Num times failed	Number of times that the address has been marked as failed.
Local vertag, Remote vertag	Verification tags (vertags). Tags are chosen during association initialization and do not change.
Num inbound streams, Num outbound streams	Maximum inbound and outbound streams. This number does not change.
Max assoc retrans	Maximum association retransmit limit. Number of times that any particular chunk may be retransmitted before a declaration that the association failed, which indicates that the chunk could not be delivered on any address.
Max init retrans	Maximum initial retransmit limit. Number of times that the chunks for initialization may be retransmitted before a declaration that the attempt to establish the association failed.
CumSack timeout	Cumulative selective acknowledge (SACK) timeout. The maximum time that a SACK may be delayed while attempting to bundle together with data chunks.
Bundle timeout	Maximum time that data chunks may be delayed while attempts are made to bundle them with other data chunks.
Min RTO, Max RTO	Minimum and maximum retransmit timeout values allowed for the association.
LocalRwnd, RemoteRwnd	Local and remote receive windows.
Congest levels: current level, high mark	Current congestion level and highest number of packets queued.

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show sctp association list	Displays a list of all current SCTP associations.
show sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show sctp errors	Displays error counts logged by SCTP.
show sctp instances	Displays all currently defined SCTP instances.
show sctp statistics	Displays overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.

show sctp association statistics

To display statistics that have accumulated for the specified Stream Control Transmission Protocol (SCTP) association, use the show sctp association statistics command in privileged EXEC mode.

show sctp association statistics assoc-id

Syntax Description

assoc-id

Association identifier, which can be obtained from the output of the show sctp association list command.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced. This command replaces the show ip sctp association statistics command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command shows only the information that has become available since the last time a clear sctp statistics command was executed.

Examples

The following sample output shows the statistics accumulated for SCTP association 0:

Router# show sctp association statistics 0

** SCTP Association Statistics **

AssocID/InstanceID: 0/1

Current State: ESTABLISHED

Control Chunks

  Sent: 623874  Rcvd: 660227

Data Chunks Sent

  Total: 14235644  Retransmitted: 60487

  Ordered: 6369678  Unordered: 6371263

  Avg bundled: 18  Total Bytes: 640603980

Data Chunks Rcvd

  Total: 14496585  Discarded: 1755575

  Ordered: 6369741  Unordered: 6371269

  Avg bundled: 18  Total Bytes: 652346325

  Out of Seq TSN: 3069353

ULP Dgrams

  Sent: 12740941  Ready: 12740961  Rcvd: 12740941

Table 73 describes the significant fields shown in the display.

Table 73 show sctp association statistics Field Descriptions   

Field	Description
AssocID/InstanceID	SCTP association identifier and instance identifier.
Current State	State of SCTP association.
Control Chunks	SCTP control chunks sent and received.
Data Chunks Sent	SCTP data chunks sent, ordered and unordered.
Data Chunks Rcvd	SCTP data chunks received, ordered and unordered.
ULP Dgrams	Number of datagrams sent, ready, and received by the Upper-Layer Protocol (ULP).

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show sctp association list	Displays a list of all current SCTP associations.
show sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show sctp errors	Displays error counts logged by SCTP.
show sctp instances	Displays all currently defined SCTP instances.
show sctp statistics	Displays overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.

show sctp errors

To display the error counts logged by the Stream Control Transmission Protocol (SCTP), use the show sctp errors command in privileged EXEC mode.

show sctp errors

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced. This command replaces the show ip sctp errors command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command displays all errors across all associations that have been logged since the last time that the SCTP statistics were cleared with the clear sctp statistics command. If no errors have been logged, this is indicated in the output.

Examples

The following sample output shows a session with no errors:

Router# show sctp errors

*** SCTP Error Statistics ****

No SCTP errors logged.

The following sample output shows a session that has SCTP errors:

Router# show sctp errors

** SCTP Error Statistics **

Invalid verification tag:       5

Communication Lost:             64

Destination Address Failed:     3

Unknown INIT params rcvd:       16

Invalid cookie signature:       5

Expired cookie:                 1

Peer restarted:                 1

No Listening instance:          2

Field descriptions are self-explanatory.

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show sctp association list	Displays a list of all current SCTP associations.
show sctp association parameters	Displays the parameters configured for the association defined by the association ID.
show sctp association statistics	Displays the current statistics for the association defined by the association ID.
show sctp instances	Displays the currently defined SCTP instances.
show sctp statistics	Displays overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an AS.
show iua asp	Displays information about the current condition of an ASP.

show sctp instance

To display Stream Control Transmission Protocol (SCTP) endpoint information for one specific currently configured instance, use the show sctp instance command in privileged EXEC mode.

show sctp instance instance-id

Syntax Description

instance-id

Instance identifier, which is defined as the transport ID (TransID) value in the output from the show sockets command.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced.
12.4(15)T	This command was moved to the Cisco IP Application Services Command Reference.

Usage Guidelines

This command displays information for the currently configured instance with the ID specified in the command syntax. The instance number, local port, and address information are displayed. The instance state is either available or deletion pending. An instance enters the deletion pending state when a request is made to delete it but there are currently established associations for that instance. The instance cannot be deleted immediately and instead enters the pending state. No new associations are allowed in this instance, and when the last association is terminated or fails, the instance is deleted.

The default inbound and outbound stream numbers (shown in the example output in the next section) are used for establishing incoming associations, the maximum number of associations allowed for this instance is shown, and a snapshot of each existing association is shown, if any exists.

Examples

The following sample output displays information for SCTP instance 0. In this example, instance 0 is using local port 1000 and has three current associations.

Router# show sctp instance 0

Instance ID:0 Local port:1000 State:available

Local addrs:10.1.0.2 10.2.0.2

Default streams inbound:1  outbound:1

  Current associations: (max allowed:200)

  AssocID:0  State:ESTABLISHED  Remote port:8989

    Dest addrs:10.6.0.4 10.5.0.4

  AssocID:1  State:ESTABLISHED  Remote port:8990

    Dest addrs:10.6.0.4 10.5.0.4

  AssocID:2  State:ESTABLISHED  Remote port:8991

    Dest addrs:10.6.0.4 10.5.0.4

The following sample output displays information for SCTP instance 1. In this example, instance 1 is using local port 9191 and has no current associations.

Router# show sctp instance 1

Instance ID:1  Local port:9191 State:available

Local addrs:10.1.0.2 10.2.0.2

Default streams inbound:1  outbound:1

No current associations established for this instance.

Max allowed:6

Field descriptions are self-explanatory.

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show sctp association list	Displays a list of all current SCTP associations.
show sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show sctp errors	Displays error counts logged by SCTP.
show sctp statistics	Displays the overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an application server.
show iua asp	Displays information about the current condition of an application server process.
show sockets	Displays information about sockets.

show sctp instances

To display information for each of the currently configured Stream Control Transmission Protocol (SCTP) instances, use the show sctp instances command in privileged EXEC mode.

show sctp instances

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced. This command replaces the show ip sctp instances command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command displays information for each of the currently configured instances. The instance number, local port, and address information are displayed. The instance state is either available or deletion pending. An instance enters the deletion pending state when a request is made to delete it but there are currently established associations for that instance. The instance cannot be deleted immediately and instead enters the pending state. No new associations are allowed in this instance, and when the last association is terminated or fails, the instance is deleted.

The default inbound and outbound stream numbers are used for establishing incoming associations, the maximum number of associations allowed for this instance is shown, and a snapshot of each existing association is shown, if any exists.

When you enter the show sctp instances command, you must type the complete word instances in the command syntax. If you try to enter an abbreviated form of this word, there will be a partial match that identifies the show sctp instance instance-id command.

Examples

The following sample output shows available IP SCTP instances. In this example, two current instances are active and available. The first is using local port 8989, and the second is using 9191. Instance identifier 0 has three current associations, and instance identifier 1 has no current associations.

Router# show sctp instances

*** SCTP Instances ****

Instance ID:0  Local port:8989

Instance state:available

Local addrs:10.1.0.2 10.2.0.2

Default streams inbound:1  outbound:1

  Current associations: (max allowed:6)

  AssocID:0  State:ESTABLISHED  Remote port:8989

    Dest addrs:10.6.0.4 10.5.0.4

  AssocID:1  State:ESTABLISHED  Remote port:8990

    Dest addrs:10.6.0.4 10.5.0.4

  AssocID:2  State:ESTABLISHED  Remote port:8991

    Dest addrs:10.6.0.4 10.5.0.4

Instance ID:1  Local port:9191

Instance state:available

Local addrs:10.1.0.2 10.2.0.2

Default streams inbound:1  outbound:1

No current associations established for this instance.

Max allowed:6

Field descriptions are self-explanatory.

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show sctp association list	Displays a list of all current SCTP associations.
show sctp association parameters	Displays the parameters configured for the association defined by the association identifier.
show sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show sctp errors	Displays error counts logged by SCTP.
show sctp statistics	Displays the overall statistics counts for SCTP.
show iua as	Displays information about the current condition of an AS.
show iua asp	Displays information about the current condition of an ASP.

show sctp statistics

To display the overall statistics counts for Stream Control Transmission Protocol (SCTP) activity, use the show sctp statistics command in privileged EXEC mode.

show sctp statistics

Syntax Description

This command has no arguments or keywords.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced. This command replaces the show ip sctp statistics command.
12.4(15)T	This command was moved to the Cisco IOS IP Application Services Command Reference.

Usage Guidelines

This command displays the overall SCTP statistics accumulated since the last clear sctp statistics command. It includes numbers for all currently established associations, and for any that have been terminated. The statistics indicated are similar to those shown for individual associations.

Examples

The following sample output shows SCTP statistics:

Router# show sctp statistics

*** SCTP Overall Statistics ****

Total Chunks Sent:           2097

Total Chunks Rcvd:           2766

Data Chunks Rcvd In Seq:     538

Data Chunks Rcvd Out of Seq: 0

Total Data Chunks Sent:      538

Total Data Chunks Rcvd:      538

Total Data Bytes Sent:       53800

Total Data Bytes Rcvd:       53800

Total Data Chunks Discarded: 0

Total Data Chunks Retrans:   0

Total SCTP Dgrams Sent:      1561

Total SCTP Dgrams Rcvd:      2228

Total ULP Dgrams Sent:       538

Total ULP Dgrams Ready:      538

Total ULP Dgrams Rcvd:       538

Field descriptions are self-explanatory.

Related Commands

Command	Description
clear sctp statistics	Clears statistics counts for SCTP.
debug ip sctp api	Reports SCTP diagnostic information and messages.
show sctp association list	Displays a list of all current SCTP associations.
show sctp association parameters	Displays the parameters configured and calculated for the association defined by the association identifier.
show sctp association statistics	Displays the current statistics for the association defined by the association identifier.
show sctp errors	Displays error counts logged by SCTP.
show sctp instances	Displays all currently defined SCTP instances.
show iua as	Displays information about the current condition of an AS.
show iua asp	Displays information about the current condition of an ASP.

show sockets

To display IP socket information, use the show sockets command in user EXEC or privileged EXEC mode.

show sockets process-id [detail] [events]

Syntax Description

process-id	Identifier of the IP process to be displayed.
detail	(Optional) Displays detailed information about the selected socket process.
events	(Optional) Displays information about IP socket events.

Command Default

IP socket information is not displayed.

Command Modes

User EXEC
Privileged EXEC

Command History

Release	Modification
12.4(11)T	This command was introduced.

Usage Guidelines

Use this command to display the number of sockets currently open and their distribution with respect to the transport protocol process specified by the process-id argument.

Use the optional detail keyword to display additional information including the local and remote port, protocol type, sub-type for Stream Control Transmission Protocol (SCTP) sockets, IP version, and socket state. Use the optional events keyword to display information about the status of the event model for the specified socket. The events keyword also displays the events being watched using the event model, events being watched using select calls, and any current events present on the socket.

Use the show processes command to display the list of running processes and their associated process IDs.

Examples

The following is sample output from the show sockets command when there are no sockets open for the specified process:

Router# show sockets 99

There are no open sockets for this process

The following example displays the total number of open sockets for the specified process:

Router# show sockets 35

Total open sockets - TCP:7, UDP:0, SCTP:0 

The following example shows how to display detailed information about open sockets:

Router# show sockets 35 detail

   FD LPort FPort Proto Type    TransID

   0  5000  0     TCP   STREAM  0x6654DEBC

State: SS_ISBOUND

Options: SO_ACCEPTCONN

   1  5001  0     TCP   STREAM  0x6654E494

State: SS_ISBOUND

Options: SO_ACCEPTCONN

   2  5002  0     TCP   STREAM  0x656710B0

State: SS_ISBOUND

Options: SO_ACCEPTCONN

   3  5003  0     TCP   STREAM  0x65671688

State: SS_ISBOUND

Options: SO_ACCEPTCONN

   4  5004  0     TCP   STREAM  0x65671C60

State: SS_ISBOUND

Options: SO_ACCEPTCONN

   5  5005  0     TCP   STREAM  0x65672238

State: SS_ISBOUND

Options: SO_ACCEPTCONN

   6  5006  0     TCP   STREAM  0x64C7840C

State: SS_ISBOUND

Options: SO_ACCEPTCONN

Total open sockets - TCP:7, UDP:0, SCTP:0

The following example displays IP socket event information:

Router# show sockets 35 events

Events watched for this process: READ

FD Watched Present Select Present

0 --- --- R-- R--

Table 74 describes the significant fields shown in the displays.

Table 74 show sockets Field Descriptions 

Field	Description
FD	Feasible distance. The feasible distance is the best metric to reach the destination or the best metric that was known when the route went active. This value is used in the feasibility condition check. If the reported distance of the router (the metric after the slash) is less than the feasible distance, the feasibility condition is met and that path is a feasible successor. Once the software determines it has a feasible successor, it need not send a query for that destination.
LPort	Local TCP port.
FPort	Foreign port.
Proto	Protocol type, such as UDP, TCP, or SCTP.
Type	Type of socket being displayed. Possible socket types include: •STREAM—TCP socket. •DGRAM—UDP socket. •SEQPACKET—SCTP socket.
TransID	Transaction ID number.
State:	Current state of the socket. Possible socket state flags include: •SS_NOFDREF—No file descriptor reference for this socket. •SS_ISCONNECTING—Socket connecting is in progress. •SS_ISBOUND—Socket is bound to TCP. •SS_ISCONNECTED—Socket is connected to peer. •SS_ISDISCONNECTING—Socket disconnecting is in progress. •SS_CANTSENDMORE—Cannot send more data to peer. •SS_CANTRCVMORE—Cannot receive more data from peer. •SS_ISDISCONNECTED—Socket is disconnected. Connection is fully closed.
Options:	Displays socket options. Possible socket options include: •SO_ACCEPTCONN—Socket is accepting a connection. •SO_NBIO—Socket is in a non-blocking I/O mode. •SO_LINGER—Socket waits for a time before all data is sent out.
Events watched for this process:	Details the events that are being watched by the application.
READ	Read events being watched by the application.
Watched	Events being watched by the application.
Present	Watched events that are present on the socket.
Select	Events being watched by the application using the select () call.

Related Commands

Command	Description
clear sockets	Closes all IP sockets and clears the underlying transport connections and data structures.
show ip sctp	Displays information about SCTP.
show processes	Displays information about the active processes.
show udp	Displays IP socket information about UDP processes.

show standby

To display Hot Standby Router Protocol (HSRP) information, use the show standby command in user EXEC or privileged EXEC mode.

show standby [type number [group]] [all | brief]

Syntax Description

type number	(Optional) Interface type and number for which output is displayed.
group	(Optional) Group number on the interface for which output is displayed.
all	(Optional) Displays information for groups that are learned or do not have the standby ip command configured.
brief	(Optional) A single line of output summarizes each standby group.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
10.0	This command was introduced.
12.2(8)T	The output for the command was made clearer and easier to understand.
12.3(2)T	The output was enhanced to display information about Message Digest 5 (MD5) authentication.
12.3(4)T	The output was enhanced to display information about HSRP version 2.
12.2(25)S	This command was integrated into Cisco IOS Release 12.2(25)S.
12.4(4)T	IPv6 support was added.
12.4(6)T	The output for this command was enhanced to display information about HSRP master and client groups.
12.4(9)T	The output for this command was enhanced to display information about HSRP group shutdown configuration.
12.4(11)T	The output for this command was enhanced to display information about HSRP Bidirectional Forwarding Detection (BFD) peering.
12.2(33)SRB	This command was integrated into Cisco IOS Release 12.2(33)SRB.
12.2(33)SXH	This command was integrated into Cisco IOS Release 12.2(33)SXH.
12.2(33)SXI	The output for this command was enhanced to display information about gratuitous ARP packets.
12.4(24)T	This command was modified. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.
12.2(33)SXI1	This command was modified. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.
Cisco IOS XE Release 2.1	This command was integrated into Cisco IOS XE Release 2.1.
Cisco IOS XE Release 2.4	This command was modified. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.

Usage Guidelines

To specify a group, you must specify an interface type and number.

Examples

The following is sample output from the show standby command:

Router# show standby

Ethernet0/1 - Group 1

  State is Active

   2 state changes, last state change 00:30:59

  Virtual IP address is 10.1.0.20

   Secondary virtual IP address 10.1.0.21

  Active virtual MAC address is 0004.4d82.7981

   Local virtual MAC address is 0004.4d82.7981 (bia)

  Hello time 4 sec, hold time 12 sec

   Next hello sent in 1.412 secs

  Gratuitous ARP 14 sent, next in 7.412 secs

  Preemption enabled, min delay 50 sec, sync delay 40 sec

  Active router is local

  Standby router is 10.1.0.6, priority 75 (expires in 9.184 sec)

  Priority 95 (configured 120)

   Tracking 2 objects, 0 up

      Down Interface Ethernet0/2, pri 15

      Down Interface Ethernet0/3

Group name is "HSRP1" (cfgd)

Follow by groups:

    Et1/0.3 Grp 2 Active 10.0.0.254 0000.0c07.ac02 refresh 30 secs (next 19.666)

    Et1/0.4 Grp 2 Active 10.0.0.254 0000.0c07.ac02 refresh 30 secs (next 19.491)

  Group name is "HSRP1", advertisement interval is 34 sec

The following is sample output from the show standby command when HSRP version 2 is configured:

Router# show standby

Ethernet0/1 - Group 1 (version 2)

  State is Speak

  Virtual IP address is 10.21.0.10

  Active virtual MAC address is unknown

   Local virtual MAC address is 0000.0c9f.f001 (v2 default)

  Hello time 3 sec, hold time 10 sec

   Next hello sent in 1.804 secs

  Preemption enabled

  Active router is unknown

  Standby router is unknown

  Priority 20 (configured 20)

  Group name is "hsrp-Et0/1-1" (default)

Ethernet0/2 - Group 1

  State is Speak

  Virtual IP address is 10.22.0.10

  Active virtual MAC address is unknown

    Local virtual MAC address is 0000.0c07.ac01 (v1 default)

  Hello time 3 sec, hold time 10 sec

    Next hello sent in 1.804 secs

  Preemption disabled

  Active router is unknown

  Standby router is unknown

  Priority 90 (default 100)

    Track interface Serial2/0 state Down decrement 10

  Group name is "hsrp-Et0/2-1" (default)

The following is sample output from the show standby command with the brief keyword specified:

Router# show standby brief

Interface   Grp Prio P State    Active addr     Standby addr    Group addr     

Et0         0   120    Init     10.0.0.1        unknown         10.0.0.12 

The following is sample output from the show standby command when HSRP MD5 authentication is configured:

Router# show standby

Ethernet0/1 - Group 1

  State is Active

    5 state changes, last state change 00:17:27

  Virtual IP address is 10.21.0.10

  Active virtual MAC address is 0000.0c07.ac01

    Local virtual MAC address is 0000.0c07.ac01 (default)

  Hello time 3 sec, hold time 10 sec

    Next hello sent in 2.276 secs

  Authentication MD5, key-string, timeout 30 secs

  Preemption enabled

  Active router is local

  Standby router is unknown

  Priority 110 (configured 110)

  Group name is "hsrp-Et0/1-1" (default)

The following is sample output from the show standby command when HSRP group shutdown is configured:

Router# show standby

Ethernet0/0 - Group 1

State is Init (tracking shutdown)

3 state changes, last state change 00:30:59

Track object 100 state Up

Track object 101 state Down

Track object 103 state Up

The following is sample output from the show standby command when HSRP BFD peering is enabled:

Router# show standby

Ethernet0/0 - Group 2

  State is Listen

    2 state changes, last state change 01:18:18

  Virtual IP address is 10.0.0.1

  Active virtual MAC address is 0000.0c07.ac02

    Local virtual MAC address is 0000.0c07.ac02 (v1 default)

  Hello time 3 sec, hold time 10 sec

  Preemption enabled

  Active router is 10.0.0.250, priority 120 (expires in 9.396 sec)

  Standby router is 10.0.0.251, priority 110 (expires in 8.672 sec)

    BFD enabled

  Priority 90 (configured 90)

  Group name is "hsrp-Et0/0-1" (default)

The following is sample output from the show standby command used to display the state of the standby RP:

Router# show standby

GigabitEthernet3/25 - Group 1

State is Init (standby RP, peer state is Active)

Virtual IP address is 10.0.0.1

Active virtual MAC address is unknown

Local virtual MAC address is 0000.0c07.ac01 (v1 default)

Hello time 3 sec, hold time 10 sec

Preemption disabled

Active router is unknown

Standby router is unknown

Priority 100 (default 100)

Group name is "hsrp-Gi3/25-1" (default)

Table 75 describes the significant fields shown in the displays.

Table 75 show standby Field Descriptions 

Field	Description
Ethernet - Group	Interface type and number and Hot Standby group number for the interface.
State is	State of local router; can be one of the following: •Active—Indicates the current Hot Standby router. •Standby—Indicates the router next in line to be the Hot Standby router. •Speak—Router is sending packets to claim the active or standby role. •Listen—Router is neither in the active nor standby state, but if no messages are received from the active or standby router, it will start to speak. •Init or Disabled—Router is not yet ready or able to participate in HSRP, possibly because the associated interface is not up. HSRP groups configured on other routers on the network that are learned via snooping are displayed as being in the Init state. Locally configured groups with an interface that is down or groups without a specified interface IP address appear in the Init state. For these cases, the Active addr and Standby addr fields will show "unknown." The state is listed as disabled in the fields when the standby ip command has not been specified. •Init (tracking shutdown)—HSRP groups appear in the Init state when HSRP group shutdown has been configured and a tracked object goes down.
Virtual IP address is, Secondary virtual IP addresses	All secondary virtual IP addresses are listed on separate lines. If one of the virtual IP addresses is a duplicate of an address configured for another device, it will be marked as "duplicate." A duplicate address indicates that the router has failed to defend its ARP (Address Resolution Protocol) cache entry.
Active virtual MAC address	Virtual MAC address being used by the current active router.
Local virtual MAC address	Virtual MAC address that would be used if this router became the active router. The origin of this address (displayed in parentheses) can be "default," "bia," (burned-in address) or "confgd" (configured).
Hello time, hold time	The hello time is the time between hello packets (in seconds) based on the command. The holdtime is the time (in seconds) before other routers declare the active or standby router to be down, based on the standby timers command. All routers in an HSRP group use the hello and hold- time values of the current active router. If the locally configured values are different, the variance appears in parentheses after the hello time and hold-time values.
Next hello sent in	Time in which the Cisco IOS software will send the next hello packet (in hours:minutes:seconds).
Gratuitous ARP 14 sent, next in 7.412 secs	Number of the gratuitous ARP packet HSRP has sent and the time in seconds when HSRP will send the next gratuitous ARP packet. This output appears only when HSRP sends gratuitous ARP packets.
Authentication	Authentication type configured based on the standby authentication command.
key-string	Indicates a key string is used for authentication. Configured key chains are not displayed.
timeout	Duration (in seconds) that HSRP will accept message digests based on both the old and new keys.
Preemption enabled, sync delay	Indicates whether preemption is enabled. If enabled, the minimum delay is the time a higher-priority nonactive router will wait before preempting the lower-priority active router. The sync delay is the maximum time a group will wait to synchronize with the IP redundancy clients.
Active router is	Value can be "local," "unknown," or an IP address. Address (and the expiration date of the address) of the current active Hot Standby router.
Standby router is	Value can be "local," "unknown," or an IP address. Address (and the expiration date of the address) of the "standby" router (the router that is next in line to be the Hot Standby router).
BFD enabled	Indicates that BFD peering is enabled on the router.
expires in	Time (in hours:minutes:seconds) in which the standby router will no longer be the standby router if the local router receives no hello packets from it.
Tracking	List of interfaces that are being tracked and their corresponding states. Based on the standby track command.
Group name is	The name of the HSRP group.
Follow by groups:	Indicates the client HSRP groups that have been configured to follow this HSRP group.
P	Indicates that the router is configured to preempt.

Related Commands

Command	Description
standby authentication	Configures an authentication string for the HSRP.
standby ip	Activates the HSRP.
standby mac-address	Specifies the virtual MAC address for the virtual router.
standby mac-refresh	Refreshes the MAC cache on the switch by periodically sending packets from the virtual MAC address.
standby preempt	Configures HSRP preemption and preemption delay.
standby priority	Configures Hot Standby priority of potential standby routers.
standby timers	Configures the time between hello messages and the time before other routers declare the active Hot Standby or standby router to be down.
standby track	Configures an interface so that the Hot Standby priority changes based on the availability of other interfaces.
standby use-bias	Configures HSRP to use the BIA of the interface as its virtual MAC address, instead of the preassigned MAC address (on Ethernet and FDDI) or the functional address (on Token Ring).

show standby arp gratuitous

To display the number and configured interval of gratuitous Address Resolution Protocol (ARP) packets sent by Hot Standby Router Protocol (HSRP), use the show standby arp gratuitous command in user EXEC or privileged EXEC configuration mode.

show standby arp gratuitous [type number]

Syntax Description

type number

(Optional) Interface type and number for which output is displayed.

Command Default

The number of user-configured gratuitous ARP packets is not displayed.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.2(33)SXI	This command was introduced.

Usage Guidelines

This command displays the interface to which HSRP sends gratuitous ARP packets, the interval (in seconds) and the number. Gratuitous ARP packets are sent only when an HSRP group transitions to the Active state.

Examples

The following sample output displays information about HSRP gratuitous ARP packets:

Router# show standby arp gratuitous

HSRP Gratuitous ARP 

Interface   Interval   Count 

Ethernet0/0 3          2 

Related Commands

Command	Description
debug standby events arp	Displays events related to HSRP.
standby arp gratuitous	Configures the number of gratuitous ARP packets sent by an active HSRP group, and how often they are sent.
standby send arp	Configures HSRP to check that all ARP entries for active HSRP addresses are correct prior to sending gratuitous ARP packets.

show standby capability

To display the limitation on how many virtual MAC addresses that some interfaces can listen to, use the show standby capability command in user EXEC or privileged EXEC mode.

show standby capability [type number]

Syntax Description

type number

(Optional) Interface type and number for which output is displayed.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.2	This command was introduced.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Usage Guidelines

HSRP allows up to 256 groups to be configured on each interface, but it is possible that the MAC address filter of the interface does not support that many entries. For example, Versatile Interface Processor (VIP) interfaces only support 32 MAC addresses in their MAC address filter. If more HSRP groups are created than there are address filter entries, then it is likely that the router will stop listening to packets sent to the MAC address of an active HSRP group.

Examples

The following is sample output from the show standby capability command:

Router# show standby capability

7206VXR * indicates hardware may support HSRP

                                               |

Interface          Type                       H  Potential Max Groups

FastEthernet0/0    18  DEC21140A              *  256  (0x60194B00, 

0x60194BE8)

FastEthernet1/0    18  DEC21140A              *  256  (0x60194B00, 

0x60194BE8)

Ethernet2/0        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

Ethernet2/1        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

Ethernet2/2        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

Ethernet2/3        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

Ethernet2/4        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

Ethernet2/5        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

Ethernet2/6        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

Ethernet2/7        61  AmdP2                  *  256  (0x601A252C, 

0x601A25E4)

ATM3/0             74  ENHANCED ATM PA        *  256  LAN emulation

TokenRing4/0       66  HAWKEYE                *  3    HSRP TR functional 

addresses (0x6076A590)

TokenRing4/1       66  HAWKEYE                *  3    HSRP TR functional 

addresses (0x6076A590)

TokenRing4/2       66  HAWKEYE                *  3    HSRP TR functional 

addresses (0x6076A590)

TokenRing4/3       66  HAWKEYE                *  3    HSRP TR functional 

addresses (0x6076A590)

Serial5/0          67  M4T                       -

Serial5/1          67  M4T                       -

Serial5/2          67  M4T                       -

Serial5/3          67  M4T                       -

FastEthernet6/0    18  DEC21140A              *  256  (0x60194B00, 

0x60194BE8)

VoIP-Null0	         102 VoIP-Null                 -

Table 76 describes the significant fields in the display.

Table 76 show standby capability Field Descriptions

Field	Description
Interface	Interface type and number for the interface.
Type	Hardware type.
*	Indicates hardware may support HSRP.
Potential Max Groups	An estimate of the number of HSRP groups that a MAC address filter can process for an interface.

show standby delay

To display Hot Standby Router Protocol (HSRP) information about delay periods, use the show standby delay command in user EXEC or privileged EXEC mode.

show standby delay [type number]

Syntax Description

type number

(Optional) Interface type and number for which output is displayed.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.2	This command was introduced.
12.2(14)SX	Support for this command was introduced on the Supervisor Engine 720.
12.2(17d)SXB	Support for this command on the Supervisor Engine 2 was extended to Cisco IOS Release 12.2(17d)SXB.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.

Examples

The following is sample output from the show standby delay command:

Router# show standby delay

 Interface          Minimum Reload 

 Ethernet0/3        1       5 

Table 77 describes the significant fields shown in the display.

Table 77 show standby delay Field Descriptions 

Field	Description
Interface	Interface type and number.
Minimum	Minimum time (in seconds) to delay HSRP group initialization after an interface comes up.
Reload	Time (in seconds) to delay after the router has reloaded.

Related Commands

Command	Description
standby delay minimum reload	Delays the initialization of HSRP groups.

show standby internal

To display internal flags and conditions, use the show standby internal command in user EXEC or privileged EXEC mode.

show standby internal [type number]

Syntax Description

type number

(Optional) Interface type and number for which output is displayed.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.2	This command was introduced.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Examples

This example shows a configuration example and the output from the show standby internal command for the configuration:

interface Ethernet2/0

 ip address 10.0.0.254 255.255.0.0

 standby use-bia

 standby version 2

 standby 1 ip 10.0.0.1

 standby 1 timers 2 6

 standby 1 priority 110

 standby 1 preempt

Router# show standby internal

Global           Confg: 0000

Et2/0 If hw      AmdP2, State 0x210040

Et2/0 If hw      Confg: 0001, USEBIA

Et2/0 If hw      Flags: 0000

Et2/0 If sw      Confg: 0040, VERSION

Et2/0 If sw      Flags: 0001, USEBIA

Et2/0 Grp 1      Confg: 0072, IP_PRI, PRIORITY, PREEMPT, TIMERS

Et2/0 Grp 1      Flags: 0000

The above output shows internal flags and hardware and software information for Ethernet interface 2/0. The output shows that HSRP group 1 is configured for priority, preemption, and the standby timers and standby-use bia commands have been configured.

Related Commands

Command	Description
show standby	Displays HSRP information.

show standby neighbors

To display information about Hot Standby Router Protocol (HSRP) peer routers on an interface, use the show standby neighbors command in privileged EXEC mode.

show standby neighbors [interface-type interface-number]

Syntax Description

interface-type interface-number

(Optional) Interface type and number for which output is displayed.

Command Default

HSRP neighbor information is displayed for all interfaces.

Command Modes

Privileged EXEC

Command History

Release	Modification
12.4(11)T	This command was introduced.

Usage Guidelines

Use this command to display information about HSRP peer neighbors. This command displays the HSRP groups for which each neighbor is acting as the active and standby router and whether Bidirectional Forwarding Detection (BFD) peering is enabled for each neighbor.

Examples

The following example displays the HSRP neighbors on Ethernet interface 0/0. Neighbor 10.0.0.250 is active for group 2 and standby for groups 1 and 8, and is registered with BFD:

Router# show standby neighbors Ethernet0/0

HSRP neighbors on Ethernet0/0

  10.0.0.250

    Active groups: 2

    Standby groups: 1, 8

    BFD enabled

  10.0.0.251

    Active groups: 5, 8

    Standby groups: 2

    BFD enabled

  10.0.0.253

    No Active groups

    No Standby groups

    BFD enabled

The following example displays information for all HSRP neighbors:

Router# show standby neighbors

HSRP neighbors on FastEthernet2/0

  10.0.0.2

    No active groups

    Standby groups: 1

    BFD enabled

HSRP neighbors on FastEthernet2/0

  10.0.0.1

    Active groups: 1

    No standby groups

    BFD enabled

Table 78 describes the significant fields shown in the displays.

Table 78 show standby neighbors Field Descriptions 

Field	Description
Active groups	HSRP groups for which an interface is acting as the active peer.
Standby groups	HSRP groups for which an interface is acting as the standby peer.
BFD enabled	Indicates that HSRP BFD peering is enabled.

Related Commands

Command	Description
bfd	Sets the baseline BFD session parameters on an interface.
debug standby events neighbor	Displays HSRP neighbor events.
show bfd neighbor	Displays a line-by-line listing of existing BFD adjacencies.
show standby	Displays information about HSRP.
standby bfd	Reenables HSRP BFD peering for a specified interface if it has been disabled.
standby ip	Activates HSRP.

show standby redirect

To display Internet Control Message Protocol (ICMP) redirect information on interfaces configured with the Hot Standby Router Protocol (HSRP), use the show standby redirect command in user EXEC or privileged EXEC mode.

show standby redirect [ip-address | interface-type interface-number [active | passive | timers]]

Syntax Description

ip-address	(Optional) Router IP address.
interface-type interface-number	(Optional) Interface type and number for which output is displayed.
active	(Optional) Active HSRP routers on the subnet.
passive	(Optional) Passive HSRP routers on the subnet.
timers	(Optional) HSRP ICMP redirect timers.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.2	This command was introduced.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.

Examples

The following is sample output from the show standby direct command with no optional keywords:

Router# show standby redirect 

Interface          Redirects Unknown   Adv      Holddown

Ethernet0/2        enabled   enabled   30       180     

Ethernet0/3        enabled   disabled  30       180     

Active          Hits   Interface          Group Virtual IP      Virtual MAC   

10.19.0.7       0      Ethernet0/2        3     10.19.0.13      0000.0c07.ac03

local           0      Ethernet0/3        1     10.20.0.11      0000.0c07.ac01

local           0      Ethernet0/3        2     10.20.0.12      0000.0c07.ac02

Passive         Hits   Interface          Expires in

10.19.0.6       0      Ethernet0/2        151.800   

Table 79 describes the significant fields in the display.

Table 79 show standby redirects Field Descriptions

Field	Description
Interface	Interface type and number for the interface.
Redirects	Indicates whether redirects are enabled or disabled on the interface.
Unknown	Indicates whether redirects to an unknown router are enabled or disabled on the interface.
Adv	Number indicating the passive router advertisement interval in seconds.
Holddown	Number indicating the passive router hold interval in seconds.
Active	Active HSRP routers on the subnet.
Hits	Number of address translations required for ICMP information.
Interface	Interface type and number for the interface on the active router.
Group	Hot standby group number.
Virtual IP	Virtual IP address of the active HSRP router.
Virtual MAC	Virtual MAC address of the active HSRP router.
Passive	Passive HSRP routers on the subnet.
Hits	Number of address translations required for ICMP information.
Interface	Interface type and number for the interface on the passive router.
Expires in	Time in seconds for a virtual IP to expire and the holddown time to apply for filtering routes to the standby router.

The following is sample output from the show standby redirect command with a specific interface Ethernet 0/3:

Router# show standby redirect e0/3

Interface          Redirects Unknown   Adv      Holddown

Ethernet0/3        enabled   disabled  30       180     

Active          Hits   Interface          Group Virtual IP      Virtual MAC   

local           0      Ethernet0/3        1     10.20.0.11      0000.0c07.ac01

local           0      Ethernet0/3        2     10.20.0.12      0000.0c07.ac02

The following is sample output from the show standby redirect command showing all active routers on interface Ethernet 0/3:

Router# show standby redirect e0/3 active 

Active          Hits   Interface          Group Virtual IP      Virtual MAC   

local           0      Ethernet0/3        1     10.20.0.11      0000.0c07.ac01

local           0      Ethernet0/3        2     10.20.0.12      0000.0c07.ac02

The following is sample output from the show standby redirect ip-address command, where the IP address is the real IP address of the router:

Router# show standby redirect 10.19.0.7 

Active          Hits   Interface          Group Virtual IP      Virtual MAC 

10.19.0.7       0      Ethernet0/2        3     10.19.0.13      0000.0c07.ac03

Related Commands

Command	Description
show standby	Displays the HSRP information.
standby redirects	Enables ICMP redirect messages to be sent when HSRP is configured on an interface.

show tcp

To display the status of Transmission Control Protocol (TCP) connections when Cisco IOS or Cisco IOS Software Modularity images re running, use the show tcp command in user EXEC or privileged EXEC mode.

show tcp [line-number] [tcb address]

Syntax Description

line-number	(Optional) Absolute line number of the line for which you want to display Telnet connection status.
tcb	(Optional) Specifies the transmission control block (TCB) of the ECN-enabled connection that you want to display.
address	(Optional) TCB hexadecimal address. The valid range is from 0x0 to 0xFFFFFFFF.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
10.0	This command was introduced.
12.3(7)T	The tcb keyword and address argument were added.
12.4(2)T	The output is enhanced to display status and option flags.
12.2(28)SB	This command was integrated into Cisco IOS Release 12.2(28)SB. The display output was modified to include the SSO capability flag and to indicate the reason that the SSO property failed on a TCP connection.
12.2(18)SXF4	This command was integrated into Cisco IOS Release 12.2(18)SXF4 to support Software Modularity images.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2(31)SB2	This command was integrated into Cisco IOS Release 12.2(31)SB2.
Cisco IOS XE Release 2.1	This command was integrated into Cisco IOS XE Release 2.1.

Examples

Example output varies between Cisco IOS software images and Cisco IOS Software Modularity software images. To view the appropriate output, choose one of the following sections:

•Cisco IOS Software

•Cisco IOS Software Modularity

Cisco IOS Software

The following is sample output that displays the status and option flags:

Router# show tcp

.

.

.

Status Flags: passive open, active open, retransmission timeout, app closed

Option Flags: vrf id set

IP Precedence value: 6

.

.

.

SRTT: 273 ms, RTTO: 490 ms, RTV: 217 ms, KRTT: 0 ms

minRTT: 0 ms, maxRTT: 300 ms, ACK hold: 200 ms

 Status Flags: active open, retransmission timeout

 Option Flags: vrf id set

 IP Precedence value: 6

Table 80 contains the types of flags, all possible command output enhancements, and descriptions. See Table 81 through Table 85 for descriptions of the other fields in the sample output.

Table 80 Type of Flags, All Possible Output Enhancements, and Descriptions 

Type of Flag	Output Enhancement	Description
Status
	Passive open	Set if passive open was done.
	Active open	Set if active open was done.
	Retransmission timeout	Set if retransmission timeout aborts.
	Net output pending	Output to network is pending.
	Wait for FIN	Wait for FIN to be acknowledged.
	App closed	Application has closed the TCB.
	Sync listen	Listen and establish a handshake.
	Gen tcbs	TCBs are generated as passive listener.
	Path mtu discovery	Path maximum transmission unit (MTU) discovery is enabled.
	Half closed	TCB is half closed.
	Timestamp echo present	Echo segment is present.
	Stopped reading	Read half is shut down.
Option
	VRF id set	Set if connection has a VRF table identifier.
	Idle user	Set if the connection is idle.
	Sending urgent data	Set if urgent data is being sent.
	Keepalive running	Set if keepalive timer is running, or if an Explicit Congestion Notification (ECN)-enabled connection, or a TCB address bind is in effect.
	Nagle	Set if performing the Nagle algorithm.
	Always push	All packets and full-sized segments (internal use) are pushed.
	Path mtu capable	Path MTU discovery is configured.
	MD5	Message digest 5 (MD) messages are generated.
	Urgent data removed	Urgent data is removed.
	SACK option permitted	Peer permits a selective acknowledgment (SACK) option.
	Timestamp option used	Time-stamp option is in use.
	Reuse local address	Local address can be reused.
	Non-blocking reads	Nonblocking TCP is read.
	Non-blocking writes	Nonblocking TCP is written.
	No delayed ACK	No TCP delayed acknowledgment is sent.
	Win-scale	Peer permits window scaling.
	Linger option set	The linger-on close option is set.

The following is sample output from the show tcp command:

Router# show tcp

tty0, connection 1 to host cider

Connection state is ESTAB, I/O status: 1, unread input bytes: 0

Local host: 172.31.232.17, Local port: 11184

Foreign host: 172.31.1.137, Foreign port: 23

Enqueued packets for retransmit: 0, input: 0, saved: 0

Event Timers (current time is 67341276):

Timer:       Retrans   TimeWait    AckHold    SendWnd  KeepAlive

Starts:           30          0         32          0          0 

Wakeups:           1          0         14          0          0 

Next:              0          0          0          0          0 

iss:   67317172  snduna:   67317228  sndnxt:   67317228     sndwnd:   4096

irs: 1064896000  rcvnxt: 1064897597  rcvwnd:       2144  delrcvwnd:      0

SRTT: 317 ms, RTTO: 900 ms, RTV: 133 ms, KRTT: 0 ms

minRTT: 4 ms, maxRTT: 300 ms, ACK hold: 300 ms

Flags: higher precedence, idle user, retransmission timeout

Datagrams (max data segment is 536 bytes):

Rcvd: 41 (out of order: 0), with data: 34, total data bytes: 1596

Sent: 57 (retransmit: 1), with data: 35, total data bytes: 55

Table 81 describes the first five lines of output shown in the above display.

Table 81 show tcp Field Descriptions—First Section of Output 

Field	Description
tty	Identifying number of the line.
connection	Identifying number of the TCP connection.
to host	Name of the remote host to which the connection has been made.
Connection state is	A connection progresses through a series of states during its lifetime. The states that follow are shown in the order in which a connection progresses through them. •LISTEN—Waiting for a connection request from any remote TCP and port. •SYNSENT—Waiting for a matching connection request after having sent a connection request. •SYNRCVD—Waiting for a confirming connection request acknowledgment after having both received and sent a connection request. •ESTAB—Indicates an open connection; data received can be delivered to the user. This is the normal state for the data transfer phase of the connection. •FINWAIT1—Waiting for a connection termination request from the remote TCP or an acknowledgment of the connection termination request previously sent. •FINWAIT2—Waiting for a connection termination request from the remote TCP host. •CLOSEWAIT—Waiting for a connection termination request from the local user. •CLOSING—Waiting for a connection termination request acknowledgment from the remote TCP host. •LASTACK—Waiting for an acknowledgment of the connection termination request previously sent to the remote TCP host. •TIMEWAIT—Waiting for enough time to pass to be sure that the remote TCP host has received the acknowledgment of its connection termination request. •CLOSED—Indicates no connection state at all. •For more information about TCBs, see RFC 793, Transmission Control Protocol Functional Specification.
I/O status	Number that describes the current internal status of the connection.
unread input bytes	Number of bytes that the lower-level TCP processes have read but that the higher-level TCP processes have not yet processed.
Local host	IP address of the network server.
Local port	Local port number, as derived from the following equation: line-number + (512 * random-number). (The line number uses the lower nine bits; the other bits are random.)
Foreign host	IP address of the remote host to which the TCP connection has been made.
Foreign port	Destination port for the remote host.
Enqueued packets for retransmit	Number of packets that are waiting on the retransmit queue. These are packets on this TCP connection that have been sent but that have not yet been acknowledged by the remote TCP host.
input	Number of packets that are waiting on the input queue to be read by the user.
saved	Number of received out-of-order packets that are waiting for all packets in the datagram to be received before they enter the input queue. For example, if packets 1, 2, 4, 5, and 6 have been received, packets 1 and 2 would enter the input queue, and packets 4, 5, and 6 would enter the saved queue.

---

Note Use the show tcp brief command to display information about the ECN-enabled connections.

---

The following line of output shows the current elapsed time according to the system clock of the local host. The time shown is the number of milliseconds since the system started.

Event Timers (current time is 67341276):

The following lines of output display the number of times that various local TCP timeout values were reached during this connection. In this example, the local host re-sent data 30 times because it received no response from the remote host, and it sent an acknowledgment many more times because there was no data.

Timer:       Retrans   TimeWait    AckHold    SendWnd     Keepalive    GiveUp    PmtuAger 

Starts:           30          0         32          0          0         0           0 

Wakeups:           1          0         14          0          0         0           0 

Next:              0          0          0          0          0         0           0

Table 82 describes the fields in the above lines of output.

Table 82 show tcp Field Descriptions—Second Section of Output 

Field	Description
Timer	Names of the timer types in the output.
Starts	Number of times that the timer has been triggered during this connection.
Wakeups	Number of keepalives sent without receiving any response. (This field is reset to zero when a response is received.)
Next	System clock setting that triggers a timer for the next time an event (for example, TimeWait, AckHold, SendWnd, etc.) occurs.
Retrans	Retransmission timer is used to time TCP packets that have not been acknowledged and that are waiting for retransmission.
TimeWait	A time-wait timer ensures that the remote system receives a request to disconnect a session.
AckHold	An acknowledgment timer delays the sending of acknowledgments to the remote TCP in an attempt to reduce network use.
SendWnd	A send-window timer ensures that there is no closed window due to a lost TCP acknowledgment.
KeepAlive	A keepalive timer controls the transmission of test messages to the remote device to ensure that the link has not been broken without the knowledge of the local device.
GiveUp	A give-up timer determines the amount of time a local host will wait for an acknowledgment (or other appropriate reply) of a transmitted message after the the maximum number of retransmissions has been reached. If the timer expires, the local host gives up retransmission attempts and declares the connection dead.
PmtuAger	A path MTU (PMTU) age timer is an interval that displays how often TCP estimates the PMTU with a larger maximum segment size (MSS). When the age timer is used, TCP path MTU becomes a dynamic process. If the MSS is smaller than what the peer connection can manage, a larger MSS is tried every time the age timer expires. The discovery process stops when the send MSS is as large as the peer negotiated or the timer has been manually disabled by being set to infinite.

The following lines of output display the sequence numbers that TCP uses to ensure sequenced, reliable transport of data. The local host and remote host each use these sequence numbers for flow control and to acknowledge receipt of datagrams.

iss:   67317172  snduna:   67317228  sndnxt:   67317228     sndwnd:   4096

irs: 1064896000  rcvnxt: 1064897597  rcvwnd:       2144  delrcvwnd:      0

Table 83 describes the fields shown in the display above.

Table 83 show tcp Field Descriptions—Sequence Numbers 

Field	Description
iss	Initial send sequence number.
snduna	Last send sequence number that the local host sent but for which it has not received an acknowledgment.
sndnxt	Sequence number that the local host will send next.
sndwnd	TCP window size of the remote host.
irs	Initial receive sequence number.
rcvnxt	Last receive sequence number that the local host has acknowledged.
rcvwnd	TCP window size of the local host.
delrcvwnd	Delayed receive window—data that the local host has read from the connection but has not yet subtracted from the receive window that the host has advertised to the remote host. The value in this field gradually increases until it is larger than a full-sized packet, at which point it is applied to the rcvwnd field.

The following lines of output display values that the local host uses to keep track of transmission times so that TCP can adjust to the network that it is using.

SRTT: 317 ms, RTTO: 900 ms, RTV: 133 ms, KRTT: 0 ms

minRTT: 4 ms, maxRTT: 300 ms, ACK hold: 300 ms

Flags: higher precedence, idle user, retransmission timeout

Table 84 describes the significant fields shown in the output above.

Table 84 show tcp Field Descriptions—Line Beginning with "SRTT" 

Field	Description
SRTT	A calculated smoothed round-trip timeout.
RTTO	Round-trip timeout.
RTV	Variance of the round-trip time.
KRTT	New round-trip timeout (using the Karn algorithm). This field separately tracks the round-trip time of packets that have been re-sent.
minRTT	Smallest recorded round-trip timeout (hard-wire value used for calculation).
maxRTT	Largest recorded round-trip timeout.
ACK hold	Time for which the local host will delay an acknowledgment in order to add data to it.
Flags	Properties of the connection.

---

Note For more information on the above fields, see Round Trip Time Estimation, P. Karn and C. Partridge, ACM SIGCOMM-87, August 1987.

---

The following lines of output display the number of datagrams that are transported with data.

Datagrams (max data segment is 536 bytes):

Rcvd: 41 (out of order: 0), with data: 34, total data bytes: 1596

Sent: 57 (retransmit: 1), with data: 35, total data bytes: 55

Table 85 describes the significant fields shown in the last lines of the show tcp command output.

Table 85 show tcp Field Descriptions—Last Section of Output 

Field	Description
Rcvd	Number of datagrams that the local host has received during this connection (and the number of these datagrams that were out of order).
with data	Number of these datagrams that contained data.
total data bytes	Total number of bytes of data in these datagrams.
Sent	Number of datagrams that the local host sent during this connection (and the number of these datagrams that needed to be re-sent).
with data	Number of these datagrams that contained data.
total data bytes	Total number of bytes of data in these datagrams.

The following is sample output from the show tcp tcb command that displays detailed information by hexadecimal address about an ECN-enabled connection:

Router# show tcp tcb 0x62CD2BB8

Connection state is LISTEN, I/O status: 1, unread input bytes: 0

Connection is ECN enabled

Local host: 10.10.10.1, Local port: 179

Foreign host: 10.10.10.2, Foreign port: 12000

Enqueued packets for retransmit: 0, input: 0 mis-ordered: 0 (0 bytes)

Event Timers (current time is 0x4F31940):

Timer          Starts    Wakeups            Next

Retrans             0          0             0x0

TimeWait            0          0             0x0

AckHold             0          0             0x0

SendWnd             0          0             0x0

KeepAlive           0          0             0x0

GiveUp              0          0             0x0

PmtuAger            0          0             0x0

DeadWait            0          0             0x0

iss:          0 snduna:          0 sndnxt:          0     sndwnd:      0

irs:          0 rcvnxt:          0 rcvwnd:       4128  delrcvwnd:      0

SRTT: 0 ms, RTTO: 2000 ms, RTV: 2000 ms, KRTT: 0 ms

minRTT: 60000 ms, maxRTT: 0 ms, ACK hold: 200 ms

Flags: passive open, higher precedence, retransmission timeout

TCB is waiting for TCP Process (67)

Datagrams (max data segment is 516 bytes):

Rcvd: 6 (out of order: 0), with data: 0, total data bytes: 0

Sent: 0 (retransmit: 0, fastretransmit: 0), with data: 0, total data

bytes: 0

Cisco IOS Software Modularity

The following is sample output from the show tcp tcb command from a Software Modularity image:

Router# show tcp tcb 0x1059C10

Connection state is ESTAB, I/O status: 0, unread input bytes: 0

Local host: 10.4.2.32, Local port: 23

Foreign host: 10.4.2.39, Foreign port: 11000

VRF table id is: 0

Current send queue size: 0 (max 65536)

Current receive queue size: 0 (max 32768)  mis-ordered: 0 bytes

Event Timers (current time is 0xB9ACB9):

Timer          Starts    Wakeups            Next(msec)

Retrans             6          0                0

SendWnd             0          0                0

TimeWait            0          0                0

AckHold             8          4                0

KeepAlive          11          0          7199992

PmtuAger            0          0                0

GiveUp              0          0                0

Throttle            0          0                0

irs:    1633857851  rcvnxt: 1633857890  rcvadv: 1633890620  rcvwnd:  32730

iss:    4231531315  snduna: 4231531392  sndnxt: 4231531392  sndwnd:   4052

sndmax: 4231531392  sndcwnd:     10220

SRTT: 84 ms,  RTTO: 650 ms,  RTV: 69 ms,  KRTT: 0 ms

minRTT: 0 ms,  maxRTT: 200 ms, ACK hold: 200 ms

Keepalive time: 7200 sec, SYN wait time: 75 sec

Giveup time: 0 ms, Retransmission retries: 0, Retransmit forever: FALSE

State flags: none

Feature flags: Nagle

Request flags: none

Window scales: rcv 0, snd 0, request rcv 0, request snd 0

Timestamp option: recent 0, recent age 0, last ACK sent          0

Datagrams (in bytes): MSS 1460, peer MSS 1460, min MSS 1460, max MSS 1460

Rcvd: 14 (out of order: 0), with data: 10, total data bytes: 38

Sent: 10 (retransmit: 0, fastretransmit: 0), with data: 5, total data bytes: 76

Header prediction hit rate: 72 %

Socket states: SS_ISCONNECTED, SS_PRIV

Read buffer flags: SB_WAIT, SB_SEL, SB_DEL_WAKEUP

Read notifications: 4

Write buffer flags: SB_DEL_WAKEUP

Write notifications: 0

Socket status: 0

Related Commands

Command	Description
show tcp brief	Displays a concise description of TCP connection endpoints.

show tcp brief

To display a concise description of TCP connection endpoints, use the show tcp brief command in user EXEC or privileged EXEC mode.

show tcp brief [all | numeric]

Syntax Description

all	(Optional) Displays status for all endpoints in Domain Name System (DNS) hostname format. Without this keyword, endpoints in the LISTEN state are not shown.
numeric	(Optional) Displays status for all endpoints in IP format.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
11.2	This command was introduced.
12.4(2)T	The numeric keyword was added.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2(31)SB2	This command was integrated into Cisco IOS Release 12.2(31)SB2.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.
Cisco IOS XE Release 2.1	This command was integrated into Cisco IOS XE Release 2.1.

Examples

The following is sample output from the show tcp brief command while a user is connected to the system by using Telnet:

Router# show tcp brief

TCB       Local Address           Foreign Address        (state)

609789AC  Router.cisco.com.23     cider.cisco.com.3733   ESTAB

The following example shows the IP activity by using the numeric keyword to display the addresses in IP format.

Router# show tcp brief numeric

TCB           Local Address          Foreign Address     (state)

6523A4FC      10.1.25.3.11000        10.1.25.3.23         ESTAB

65239A84      10.1.25.3.23           10.1.25.3.11000      ESTAB

653FCBBC      *.1723 *.* LISTEN

Table 86 describes the significant fields shown in the display.

Table 86 show tcp brief Field Descriptions 

Field	Description
TCB	An internal identifier for the endpoint.
Local Address	The local IP address and port.
Foreign Address	The foreign IP address and port (at the opposite end of the connection).
(state)	The state of the connection. States are described in the syntax description of the show tcp command.

Related Commands

Command	Description
show tcp	Displays the status of TCP connections.

show tcp statistics

To display TCP statistics, use the show tcp statistics command in user EXEC or privileged EXEC mode.

show tcp statistics

Syntax Description

This command has no arguments or keywords.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
11.3	This command was introduced.
12.2(18)SXF4	This command was integrated into Cisco IOS Release 12.2(18)SXF4, and the output was modified to display Software Modularity information.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.

Usage Guidelines

Cisco IOS Software Modularity

There are three transport protocols used in Software Modularity: TCP, UDP, and raw IP. The transport protocol statistics are generally counters, though some are averages and time stamps. Use the show tcp statistics command to display the TCP statistics and use the clear tcp statistics command to reset the TCP statistics. Many of the statistics are relevant to all of the transport protocols. To view the other transport protocol statistics used in Software Modularity, see the show raw statistics and show udp statistics commands.

Examples

Example output varies between Cisco IOS software images and Cisco IOS Software Modularity software images. To view the appropriate output, choose one of the following sections:

•Cisco IOS Software

•Cisco IOS Software Modularity

Cisco IOS Software

The following is sample output from the show tcp statistics command:

Router# show tcp statistics

Rcvd: 210 Total, 0 no port

      0 checksum error, 0 bad offset, 0 too short

      132 packets (26640 bytes) in sequence

      5 dup packets (502 bytes)

      0 partially dup packets (0 bytes)

      0 out-of-order packets (0 bytes)

      0 packets (0 bytes) with data after window

      0 packets after close

      0 window probe packets, 0 window update packets

      0 dup ack packets, 0 ack packets with unsend data

      69 ack packets (3044 bytes)

Sent: 175 Total, 0 urgent packets

      16 control packets (including 1 retransmitted)

      69 data packets (3029 bytes)

      0 data packets (0 bytes) retransmitted

      73 ack only packets (49 delayed)

      0 window probe packets, 17 window update packets

7 Connections initiated, 1 connections accepted, 8 connections established

8 Connections closed (including 0 dropped, 0 embryonic dropped)

1 Total rxmt timeout, 0 connections dropped in rxmt timeout

0 Keepalive timeout, 0 keepalive probe, 0 Connections dropped in keepalive

Table 87 describes the significant fields shown in the display.

Table 87 show tcp statistics Field Descriptions 

Field	Description
Rcvd:	Statistics in this section refer to packets received by the router.
Total	Total number of TCP packets received.
no port	Number of packets received with no port.
checksum error	Number of packets received with checksum error.
bad offset	Number of packets received with bad offset to data.
too short	Number of packets received that were too short.
packets in sequence	Number of data packets received in sequence.
dup packets	Number of duplicate packets received.
partially dup packets	Number of packets received with partially duplicated data.
out-of-order packets	Number of packets received out of order.
packets with data after window	Number of packets received with data that exceeded the window size of the receiver.
packets after close	Number of packets received after the connection was closed.
window probe packets	Number of window probe packets received.
window update packets	Number of window update packets received.
dup ack packets	Number of duplicate acknowledgment packets received.
ack packets with unsend data	Number of acknowledgment packets received with unsent data.
ack packets	Number of acknowledgment packets received.
Sent:	Statistics in this section refer to packets sent by the router.
Total	Total number of TCP packets sent.
urgent packets	Number of urgent packets sent.
control packets	Number of control packets (SYN, FIN, or RST) sent.
data packets	Number of data packets sent.
data packets retransmitted	Number of data packets re-sent.
ack only packets	Number of packets sent that are acknowledgments only.
window probe packets	Number of window probe packets sent.
window update packets	Number of window update packets sent.
Connections initiated	Number of connections initiated.
connections accepted	Number of connections accepted.
connections established	Number of connections established.
Connections closed	Number of connections closed.
Total rxmt timeout	Number of times that the router tried to resend, but timed out.
connections dropped in rxmit timeout	Number of connections dropped in the resend timeout.
Keepalive timeout	Number of keepalive packets in the timeout.
keepalive probe	Number of keepalive probes.
Connections dropped in keepalive	Number of connections dropped in the keepalive.

Cisco IOS Software Modularity

The following is sample output from the show tcp statistics command when a Software Modularity image is running under Cisco IOS Release 12.2(18)SXF4:

Router# show tcp statistics

Current packet level is 0 (Clear)

Rcvd: 0 Total, 0 no port

      0 checksum error, 0 bad offset, 0 too short

      0 packets (0 bytes) in sequence

      0 dup packets (0 bytes)

      0 partially dup packets (0 bytes)

      0 out-of-order packets (0 bytes)

      0 packets (0 bytes) with data after window

      0 packets after close

      0 window probe packets, 0 window update packets

      0 dup ack packets, 0 ack packets for unsent data

      0 ack packets (0 bytes)

      0 packets dropped due to PAWS

      0 packets dropped due to receive packet limits

      0 packets dropped due to receive byte limits

Sent: 0 Total, 0 urgent packets

      0 control packets (including 0 retransmitted)

      0 data packets (0 bytes)

      0 data packets (0 bytes) retransmitted

      0 data packets (0 bytes) fastretransmitted

      0 Sack retransmitted bytes, 0 Sack skipped bytes

      0 ack only packets (0 delayed)

      0 window probe packets, 0 window update packets 

0 Connections initiated, 0 connections accepted, 0 connections established 

0 Connections closed (including 0 dropped, 0 embryonic dropped) 

0 Total rxmt timeout, 0 connections dropped in rxmt timeout 

0 RTO, 0 KRTO (milliseconds) 

0 VJ SRTT, 0 variance (milliseconds) 

0 min RTT, 0 max RTT (milliseconds) 

0 Keepalive timeout, 0 keepalive probe, 0 Connections dropped in keepalive 

0 increase MSS, 0 decrease MSS

15 Open sockets

0 Timer interrupts

0 Packets used by socket I/O

0 Packets used by TCP reassembly

0 Packets recovered after starvation

0 Packet memory warnings

0 Packet memory alarms

0 Packet allocation errors

0 Packet to octet switches due to send flow control 

0 Packet to octet switches due to partial ACKs 

0 Packet to octet switches due to inadequate resources 

0 Output function calls 

0 Truncated write I/O vectors 

0 Transmission pulse errors 

0 Packet punts from IP 0 Packet punts to IP 

0 Packet punts from application 

0 Packet punts to application

Table 88 describes the significant fields shown in the display that are different from Table 87.

Table 88 show tcp statistics (Software Modularity) Field Descriptions 

Field	Description
Current packet level	A packet level of 0 (Clear) shows that less than 67 percent of the packet supply is in use. A packet level of 1 (Warn) shows that at least 67 percent of the packet supply is in use, and a packet level of 2 (Alarm) shows that at least 90 percent of the packet supply is in use.
packets dropped due to PAWS	Number of packets dropped because of sequence number wrap-around on high speed, low latency networks.
packets dropped due to receive packet limits	Number of packets dropped after the receive packet limit is exceeded.
packets dropped due to receive byte limits	Number of packets dropped after the receive byte limit is exceeded.
data packets fastretransmitted	Number of packets retransmitted before timer expiry because of excessive duplicate ACKs.
Sack retransmitted bytes, Sack skipped bytes	Number of retransmitted bytes due to selective acknowledgement.
RTO, KRTO	RTO is the current retransmission timeout, as calculated by Van Jacobson's algorithm. KRTO is the exponentially backed off retransmission timeout.
VJ SRTT, variance	Scaled mean and variance round trip times used by Van Jacobson's algorithm.
min RTT, max RTT	Minimum and maximum round-trip time (RTT), in milliseconds.
increase MSS, decrease MSS	Number of times that the maximum segment size (MSS) changed because of path MTU discovery.
Open sockets	Number of open sockets.
Timer interrupts	Number of packets received with timer interrupts.
Packets used by socket I/O	Number of packets enqueued on socket send buffers, receive buffers, or reassembly queues. In summary, the number of packets currently being held by the transport protocol.
Packets used by TCP reassembly	Number of out of order segments that cannot be passed to application because of missing holes in the data stream. These holes will be filled when the peer retransmits.
Packets recovered after starvation	Number of packets released by the transport protocol due to memory warnings or memory alarms.
Packet memory warnings	Number of packets with memory warnings.
Packet memory alarms	Number of packets with memory alarms.
Packet allocation errors	Number of packets with allocation errors.
Packet to octet switches due to send flow control	Number of times that TCP switched from packet I/O to octet buffer I/O because of inadequate send window.
Packet to octet switches due to partial ACKs	Number of times that TCP switched from packet I/O to octet buffer I/O because of partially acknowledged data.
Packet to octet switches due to inadequate resources	Number of times that TCP switched from packet I/O to octet buffer I/O because of inadequate packet resources.
Output function calls	Number of times that the TCP output engine was invoked.
Truncated write I/O vectors	Number of truncated segments due to inadequate write buffers.
Transmission pulse errors	Number of transmission signaling mechanism errors.
Packet punts from IP, Packet punts to IP	Number of batches of packets moved from and to the IP layer.
Packet punts from application, Packet punts to application	Number of batches of packets moved from and to the application layers.

Related Commands

Command	Description
clear tcp statistics	Clears TCP statistics.
show raw statistics	Displays raw IP transport protocol statistics.
show udp statistics	Displays UDP transport protocol statistics.

show time-range ipc

To display the statistics about the time-range interprocess communications (IPC) messages between the Route Processor and line card, use the show time-range ipc command in user EXEC or privileged EXEC mode.

show time-range ipc

Syntax Description

This command has no argument or keywords.

Defaults

No default behavior or values.

Command Modes

User EXEC
Privileged EXEC

Command History

Release	Modification
12.2(2)T	This command was introduced.
12.2(28)SB	This command was integrated into Cisco IOS Release 12.2(28)SB.

Usage Guidelines

The debug time-range ipc EXEC command must be enabled for the show time-range ipc command to display the time-range IPC message statistics.

Examples

The following is sample output from the show time-range ipc command:

Router# show time-range ipc

RP Time range Updates Sent  :3

RP Time range Deletes Sent  :2 

Table 89 describes the significant fields shown in the display.

Table 89 show time-range ipc Field Descriptions 

Field	Description
RP Time range Updates Sent	Number of time-range updates sent by the Route Processor.
RP Time range Deletes Sent	Number of time-range deletes sent by the Route Processor.

Related Commands

Command	Description
clear time-range ipc	Clears the time-range IPC message statistics and counters between the Route Processor and the line card.
debug time-range ipc	Enables debugging output for monitoring the time-range IPC messages between the Route Processor and the line card.

show track

To display information about objects that are tracked by the tracking process, use the show track command in privileged EXEC mode.

show track [object-number [brief] | interface [brief] | ip route [brief] | resolution | timers]

Syntax Description

object-number	(Optional) Object number that represents the object to be tracked. The range is from 1 to 500.
brief	(Optional) Displays a single line of information related to the preceding argument or keyword.
interface	(Optional) Displays tracked interface objects.
ip route	(Optional) Displays tracked IP-route objects.
resolution	(Optional) Displays resolution of tracked parameters.
timers	(Optional) Displays polling interval timers.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.2(15)T	This command was introduced.
12.3(8)T	The output was enhanced to include the track-list objects.
12.2(25)S	This command was integrated into Cisco IOS Release 12.2(25)S.
12.4(2)T	The output was enhanced to display stub objects.
12.2(28)SB	This command was integrated into Cisco IOS Release 12.2(28)SB.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.4(9)T	This command was enhanced to display information about the status of an interface when carrier-delay detection has been enabled.
12.2(33)SXH	This command was integrated into Cisco IOS Release 12.2(33)SXH.
Cisco IOS XE Release 2.1	This command was integrated into Cisco IOS XE Release 2.1.
12.4(20)T	The output was enhanced to display IP SLAs information.

Usage Guidelines

Use this command to display information about objects that are tracked by the tracking process. When no arguments or keywords are specified, information for all objects is displayed.

Examples

The following example shows information about the state of IP routing on the interface that is being tracked:

Router# show track 1

Track 1

 Interface Ethernet0/2 ip routing

 IP routing is Down (no IP addr)

  1 change, last change 00:01:08

 Tracked by:

  HSRP Ethernet0/3 1

The following example shows information about the line-protocol state on the interface that is being tracked:

Router# show track 1

Track 1

 Interface Ethernet0/1 line-protocol

 Line protocol is Up

  1 change, last change 00:00:05

 Tracked by:

  HSRP Ethernet0/3 1

The following example shows information about the reachability of a route that is being tracked:

Router# show track 1

Track 1

 IP route 10.16.0.0 255.255.0.0 reachability

 Reachability is Up (RIP)

  1 change, last change 00:02:04

 First-hop interface is Ethernet0/1

 Tracked by:

  HSRP Ethernet0/3 1

The following example shows information about the threshold metric of a route that is being tracked:

Router# show track 1

Track 1

 IP route 10.16.0.0 255.255.0.0 metric threshold

 Metric threshold is Up (RIP/6/102)

  1 change, last change 00:00:08

 Metric threshold down 255 up 254

 First-hop interface is Ethernet0/1

 Tracked by:

  HSRP Ethernet0/3 1

The following example shows the object type, the interval in which it is polled, and the time until the next poll:

Router# show track timers

 Object type   Poll Interval  Time to next poll

 interface     1              expired

 ip route      30             29.364

The following example shows the state of the IP SLAs tracking:

Router# show track 50

Track 50

  IP SLA 400 state

  State is Up

    1 change, last change 00:00:23

  Delay up 60 secs, down 30 secs

  Latest operation return code: Unknown

The following example shows whether a route is reachable:

Router# show track 3

Track 3

   IP SLA 1 reachability

   Reachability is Up

     1 change, last change 00:00:47

   Latest operation return code: over threshold

   Latest RTT (millisecs) 4

   Tracked by:

     HSRP Ethernet0/1 3

Table 90 describes the significant fields shown in the displays.

Table 90 show track Field Descriptions 

Field	Description
Track	Object number that is being tracked.
Interface Ethernet0/2 ip routing	Interface type, number, and object that is being tracked.
IP routing is	State value of the object, displayed as Up or Down. If the object is down, the reason is displayed.
1 change, last change	Number of times that the state of a tracked object has changed and the time (in hh:mm:ss) since the last change.
Tracked by	Client process that is tracking the object.
First-hop interface is	Displays the first-hop interface.
Object type	Object type that is being tracked.
Poll Interval	Interval (in seconds) in which the tracking process polls the object.
Time to next poll	Period of time, in seconds, until the next polling of the object.

The following output shows that there are two objects. Object 1 has been configured with a weight of 10 "down," and object 2 has been configured with a weight of 20 "up." Object 1 is down (expressed as 0/10) and object 2 is up. The total weight of the tracked list is 20 with a maximum of 30 (expressed as 20/30). The "up" threshold is 20, so the list is "up."

Router# show track

 Track 6

 List threshold weight

  Threshold weight is Up (20/30)

   1 change, last change 00:00:08

   object 1 Down (0/10)

   object 2 weight 20 Up (20/30)

  Threshold weight down 10 up 20

   Tracked by:

    HSRP Ethernet0/3 1

The following example shows information about the Boolean configuration:

Router# show track

 Track 3

 List boolean and 

 Boolean AND is Down

  1 change, last change 00:00:08

   object 1 not Up

   object 2 Down

 Tracked by:

  HSRP Ethernet0/3 1

Table 91 describes the significant fields shown in the displays.

Table 91 show track Field Descriptions 

Field	Description
Track	Object number that is being tracked.
Boolean AND is Down	Each object defined in the list must be in a down state.
1 change, last change	Number of times that the state of a tracked object has changed and the time (in hh:mm:ss) since the last change.
Tracked by	Client process that is tracking the object; in this case, HSRP.

The following example shows information about a stub object that has been created to be tracked using Embedded Event Manager (EEM):

Router# show track

Track 1

  Stub-object

  State is Up

    1 change, last change 00:00:04, by Undefined

The following example shows information about a stub object when the brief keyword is used:

Router# show track brief

Track   Object                           Parameter        Value Last Change

1       Stub-object Undefined                             Up    00:00:12

The following example shows information about the line-protocol state on an interface that is being tracked and which has carrier-delay detection enabled:

Router# show track 

Track 101

Interface Ethernet1/0 line-protocol

Line protocol is Down (carrier-delay)

1 change, last change 00:00:03

Table 92 describes the significant fields shown in the displays.

Table 92 show track brief Field Descriptions 

Field	Description
Track	Object number that is being tracked.
Interface Ethernet1/0 line-protocol	Interface type, number, and object that is being tracked.
Line protocol is Down (carrier-delay)	State of the interface with the carrier-delay parameter taken into consideration.
last change	Time (in hh:mm:ss) since the state of a tracked object last changed.

Table 93 describes the significant fields shown in the displays.

Table 93 show track brief Field Descriptions 

Field	Description
Track	Object number that is being tracked.
Object	Definition of stub object.
Parameter	Tracking parameters.
Value	State value of the object, displayed as Up or Down.
last change	Time (in hh:mm:ss) since the state of a tracked object last changed.

Related Commands

Command	Description
track interface	Configures an interface to be tracked and enters tracking configuration mode.
track ip route	Tracks the state of an IP route and enters tracking configuration mode.

show udp

To display IP socket information about User Datagram Protocol (UDP) processes, use the show udp command in user EXEC or privileged EXEC mode.

show udp [detail]

Syntax Description

detail

(Optional) Displays detailed information about the selected socket process.

Command Default

IP socket information about UDP processes is not displayed.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.4(11)T	This command was introduced.

Usage Guidelines

Use this command to verify that the UDP socket being used is opening correctly. If there is a local and remote endpoint, a connection is established with the ports indicated.

Examples

The following is sample output from the show udp command with the detail keyword specified:

Router# show udp detail

 Proto    Remote      Port      Local       Port  In Out Stat TTY OutputIF

 17       10.0.0.0    0         10.0.21.70  67    0  0   2211 0 

 Queues: output 0

         input  0 (drops 0, max 50, highwater 0)

 Proto    Remote      Port      Local       Port  In Out Stat TTY OutputIF

 17       10.0.0.0    0         10.0.21.70  2517  0   0  11   0 

 Queues: output 0

         input  0 (drops 0, max 50, highwater 0)

 Proto    Remote      Port      Local       Port  In Out Stat TTY OutputIF

 17       10.0.0.0    0         10.0.21.70  5000  0  0   211  0 

 Queues: output 0

         input  0 (drops 0, max 50, highwater 0)

 Proto    Remote      Port      Local       Port  In Out Stat TTY OutputIF

 17       10.0.0.0    0         10.0.21.70  5001  0  0   211  0 

 Queues: output 0

         input  0 (drops 0, max 50, highwater 0)

 Proto    Remote      Port      Local       Port  In Out Stat TTY OutputIF

 17       10.0.0.0    0         10.0.21.70  5002  0  0   211  0 

 Queues: output 0

         input  0 (drops 0, max 50, highwater 0)

 Proto    Remote      Port      Local       Port  In Out Stat TTY OutputIF

 17       10.0.0.0    0         10.0.21.70  5003  0  0   211  0 

 Queues: output 0

         input  0 (drops 0, max 50, highwater 0)

 Proto    Remote      Port      Local       Port  In Out Stat TTY OutputIF

 17       10.0.0.0    0         10.0.21.70  5004  0  0   211  0 

 Queues: output 0

         input  0 (drops 0, max 50, highwater 0)

Table 94 describes the significant fields shown in the display.

Table 94 show udp Field Descriptions 

Field	Description
Proto	Protocol type, such as UDP, TCP, or SCTP.
Remote	Remote address connected to this networking device. If the remote address is considered illegal, "--listen--" is displayed.
Port	Remote port. If the remote address is considered illegal, "--listen--" is displayed.
Local	Local address. If the local address is considered illegal or is the address 0.0.0.0, "--any--" is displayed.
Port	Local port.
In	Input queue size.
Out	Output queue size.
Stat	Various statistics for a socket.
TTY	The tty number for the creator of this socket.
OutputIF	Output IF string, if one exists.

Related Commands

Command	Description
clear sockets	Closes all IP sockets and clears the underlying transport connections and data structures.
show ip sctp	Displays information about SCTP.
show processes	Displays information about the active processes.
show sockets	Displays IP socket information.

show vrrp

To display a brief or detailed status of one or all configured Virtual Router Redundancy Protocol (VRRP) groups on the router, use the show vrrp command in privileged EXEC mode.

show vrrp [all | brief]

Syntax Description

all	(Optional) Provides VRRP group information about all VRRP groups, including groups in a disabled state.
brief	(Optional) Provides a summary view of the group information.

Command Modes

Privileged EXEC (#)

Command History

Release	Modification
12.0(18)ST	This command was introduced.
12.0(22)S	This command was integrated into Cisco IOS Release 12.0(22)S.
12.2(13)T	This command was integrated into Cisco IOS Release 12.2(13)T.
12.2(14)S	This command was integrated into Cisco IOS Release 12.2(14)S.
12.3(2)T	This command was enhanced to display the state of a tracked object.
12.3(14)T	This command was enhanced to display message digest 5 (MD5) authentication for a VRRP using text strings, key chains, or key strings.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2(31)SB2	This command was integrated into Cisco IOS Release 12.2(31)SB2.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.
12.2(33)SRC	This command was enhanced to display synchronized state information from the Active RP.
Cisco IOS XE Release 2.1	This command was integrated into Cisco IOS XE Release 2.1.
12.4(24)T	This command was modified. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.

Usage Guidelines

If no group is specified, all groups are displayed.

Examples

The following is sample output from the show vrrp command:

Router# show vrrp

Ethernet1/0 - Group 1 

State is Master

Virtual IP address is 10.2.0.10 

Virtual MAC address is 0000.5e00.0101 

Advertisement interval is 3.000 sec 

Preemption is enabled 

 min delay is 0.000 sec 

Priority 100 

 Track object 1 state down decrement 15

Master Router is 10.2.0.1 (local), priority is 100 

Master Advertisement interval is 3.000 sec 

Master Down interval is 9.609 sec

Ethernet1/0 - Group 2 

State is Master 

Virtual IP address is 10.0.0.20 

Virtual MAC address is 0000.5e00.0102 

Advertisement interval is 1.000 sec 

Preemption is enabled 

 min delay is 0.000 sec 

Priority 95 

Master Router is 10.0.0.1 (local), priority is 95 

Master Advertisement interval is 1.000 sec 

Master Down interval is 3.628 sec

The following sample output shows the MD5 authentication for a VRRP group using a key string:

Router# show vrrp

Ethernet0/1 - Group 1

State is Master

Virtual IP address is 10.21.0.10

Virtual MAC address is 0000.5e00.0101

Advertisement interval is 1.000 sec

Preemption is enabled

 min delay is 0.000 sec

Priority is 100

Authentication MD5, key-string

Master Router is 10.21.0.1 (local), priority is 100

Master Advertisement interval is 1.000 sec

Master Down interval is 3.609 sec

The following is sample output from the show vrrp command in Cisco IOS Release 12.2(33)SRC or later releases, displaying peer RP state information:

Router# show vrrp

Ethernet0/0 - Group 1  

  State is Init (standby RP, peer state is Master)

  Virtual IP address is 172.24.1.1

  Virtual MAC address is 0000.5e00.0101

  Advertisement interval is 1.000 sec

  Preemption enabled

  Priority is 255 

  Master Router is 172.24.1.1 (local), priority is 255 

  Master Advertisement interval is 1.000 sec

  Master Down interval is 3.003 sec

Table 95 describes the significant fields shown in the displays.

Table 95 show vrrp Field Descriptions 

Field	Description
Ethernet1/0 - Group	Interface type and number, and VRRP group number.
(standby RP, peer state is Master)	State of the peer RP.
State is	Role this interface plays within VRRP (master or backup).
Virtual IP address is	Virtual IP address for this group.
Virtual MAC address is	Virtual MAC address for this group.
Advertisement interval is	Interval at which the router will send VRRP advertisements when it is the master virtual router. This value is configured with the vrrp timers advertise command.
Preemption is	Preemption is either enabled or disabled.
Track object	Object number representing the object to be tracked.
state	State value (up or down) of the object being tracked.
decrement	Amount by which the priority of the router is decremented (or incremented) when the tracked object goes down (or comes back up).
Priority	Priority of the interface.
Authentication MD5, key-string	The currently configured authentication mechanism for this group. Possible values for this field include "MD5" for Message Digest 5 encryption, as shown in the example above. Other messages not displayed in the example include "text, string `my_secret_password'" for plain text and "key-chain `the_chain_i'm_looking_at'."
Master Router is	IP address of the current master virtual router.
priority is	Priority of the current master virtual router.
Master Advertisement interval is	Advertisement interval of the master virtual router.
Master Down interval is	Calculated time that the master virtual router can be down before the backup virtual router takes over.

The following is sample output from the show vrrp command with the brief keyword:

Router# show vrrp brief

Interface	     Grp  Prio   Time   Own  Pre  State    Master addr    Group addr

Ethernet1/0    1   100    3609          P  Master   10.0.0.4        10.0.0.10

Ethernet1/0    2   105    3589          P  Master   10.0.0.4        10.0.0.20

Table 96 describes the fields shown in the display.

Table 96 show vrrp brief Field Descriptions 

Field	Description
Interface	Interface type and number.
Grp	VRRP group to which this interface belongs.
Prio	VRRP priority number for this group.
Time	Calculated time that the master virtual router can be down before the backup virtual router takes over.
Own	IP address owner.
Pre	Preemption status. P indicates that preemption is enabled. If this field is empty, preemption is disabled.
State	Role this interface plays within VRRP (master or backup).
Master addr	IP address of the master virtual router.
Group addr	IP address of the virtual router.

Related Commands

Command	Description
vrrp ip	Enables VRRP on an interface and identifies the IP address of the virtual router.

show vrrp interface

To display the Virtual Router Redundancy Protocol (VRRP) groups and their status on a specified interface, use the show vrrp interface command in user EXEC or privileged EXEC mode.

show vrrp interface type number [brief]

Syntax Description

type	Interface type.
number	Interface number.
brief	(Optional) Provides a summary view of the group information.

Command Modes

User EXEC (>)
Privileged EXEC (#)

Command History

Release	Modification
12.0(18)ST	This command was introduced.
12.0(22)S	This command was integrated into Cisco IOS Release 12.0(22)S.
12.2(13)T	This command was integrated into Cisco IOS Release 12.2(13)T.
12.2(14)S	This command was integrated into Cisco IOS Release 12.2(14)S.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.
12.2(31)SB2	This command was integrated into Cisco IOS Release 12.2(31)SB2.
12.2SX	This command is supported in the Cisco IOS Release 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware.
Cisco IOS XE Release 2.1	This command was integrated into Cisco IOS XE Release 2.1.
12.4(24)T	This command was modified. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured.

Examples

The following is sample output from the show vrrp interface command:

Router# show vrrp interface ethernet 1/0

Ethernet1/0 - Group 1

State is Master

Virtual IP address is 10.2.0.10

Virtual MAC address is 0000.5e00.0101

Advertisement interval is 3.000 sec

Preemption enabled, delay min 4 secs

Priority is 100

Master Router is 10.2.0.1 (local), priority is 100

Master Advertisement interval is 3.000 sec

Master Down interval is 9.609 sec

Ethernet1/0 - Group 2

State is Master

Virtual IP address is 10.0.0.20

Virtual MAC address is 0000.5e00.0102

Advertisement interval is 1.000 sec

Preemption enabled, delay min 2 sec

Priority is 95

Authentication MD5, key-string

Master Router is 10.0.0.1 (local), priority is 95

Master Advertisement interval is 1.000 sec

Master Down interval is 3.628 sec

Table 97 describes the significant fields shown in the display.

Table 97 show vrrp interface Field Descriptions 

Field	Description
Ethernet1/0 - Group 1	Interface type and number, and VRRP group number.
State is	Role this interface plays within VRRP (master or backup).
Virtual IP address is	Virtual IP address for this group.
Virtual MAC is	Virtual MAC address for this group.
Advertisement interval is	Interval at which the router will send VRRP advertisements when it is the master virtual router. This value is configured with the vrrp timers advertise command.
Preemption	Preemption is either enabled or disabled.
delay min	If preemption is enabled, delay min is the minimum time (in seconds) that a router will wait before preempting the current master router. This field is displayed only if the delay is set at greater than 0 seconds.
Authentication MD5, key-string	The currently configured authentication mechanism for this group. Possible values for this field include "MD5" for Message Digest 5 encryption, as shown in the example above. Other messages not displayed in the example include "text, string "`my_secret_password'" for plain text and "key-chain `the_chain_i'm_looking_at'."
Priority is 100	Priority of this group on this interface.
Master Router is 10.2.0.1 (local)	IP address of the current master virtual router.
Priority is 100	Priority of the current master router.
Master Advertisement interval	Advertisement interval of the master virtual router.
Master Down interval	Calculated time that the master virtual router can be down before the backup virtual router takes over.

Related Commands

Command	Description
vrrp ip	Enables VRRP and identifies the IP address of the virtual router.
vrrp timers advertise	Configures the interval between successive advertisements by the master virtual router in a VRRP group.

snmp-server enable traps slb

To enable IOS SLB traps for real- and virtual-server state changes, use the snmp-server enable traps slb command in global configuration mode. To disable the traps use the no form of this command.

snmp-server enable traps slb {real | virtual}

no snmp-server enable traps slb {real | virtual}

Syntax Description

real	Enables traps for real server state changes.
virtual	Enables traps for virtual server state changes.

Defaults

IOS SLB traps for real- and virtual-server state changes are not enabled.

Command Modes

Global configuration (config)

Command History

Release	Modification
12.1(11b)E	This command was introduced.
12.2(18)SXE	This command was integrated into Cisco IOS Release 12.2(18)SXE.
12.2(33)SRA	This command was integrated into Cisco IOS Release 12.2(33)SRA.

Examples

The following example enables IOS SLB traps for real server state changes:

Router(config)# snmp-server enable traps slb real

standby arp gratuitous

To configure the number of gratuitous Address Resolution Protocol (ARP) packets sent by a Hot Standby Router Protocol (HSRP) group when it transitions to the active state, and how often the ARP packets are sent, use the standby arp gratuitous command in interface configuration mode. To configure HSRP to send the default number of gratuitous of ARP packets at the default interval when an HSRP group changes to the active state, use the no form of this command.

standby arp gratuitous [count number] [interval seconds]

no standby arp gratuitous

Syntax Description

count number	(Optional) Specifies the number of gratuitous ARP packets to send after an HSRP group is activated. The range is 0 to 60. The default is 2. 0 sends continuous gratuitous ARP packets.
interval seconds	(Optional) Specifies the interval, in seconds, at which HSRP gratuitous ARP packets are sent. The range is 3 to 1800 seconds. The default is 3 seconds.

Command Default

HSRP sends one gratuitous ARP packet when a group becomes active, and then another two and four seconds later.

Command Modes

Interface configuration (config-if)

Command History

Release	Modification
12.2(33)SXI	This command was introduced.

Usage Guidelines

You can configure HSRP to send a gratuitous ARP packet from one or more HSRP active groups. By default, HSRP sends one gratuitous ARP packet when a group becomes active, and then another two and four seconds later.

Use the standby arp gratuitous command in interface configuration mode to configure the number of gratuitous ARP packets sent by an Active HSRP group, and how often they are sent. The count and interval keywords can be specified in any order. If both the count and interval keywords are set to their default values, the standby arp gratuitous command does not appear in the running configuration.

Use the standby send arp command in EXEC mode to configure HSRP to send a single gratuitous ARP packet when an HSRP group becomes active.

Examples

The following example shows how to configure HSRP to send three gratuitous ARP packets every 4 seconds:

Router(config-if)# standby arp gratuitous count 3 interval 4

Related Commands

Command	Description
debug standby events	Displays events related to HSRP.
show standby arp gratuitous	Displays the number of gratuitous ARP packets sent by HSRP and how often they are sent.
standby send arp	Configures HSRP to send a single gratuitous ARP packet for each active HSRP group.

standby authentication

To configure an authentication string for the Hot Standby Router Protocol (HSRP), use the standby authentication command in interface configuration mode. To delete an authentication string, use the no form of this command.

standby [group-number] authentication {text string | md5 {key-string [0 | 7] key [timeout seconds] | key-chain name-of-chain}} 

no standby [group-number] authentication {text string | md5 {key-string [0 | 7] key [timeout seconds] | key-chain name-of-chain}}

Syntax Description

group-number	(Optional) Group number on the interface to which this authentication string applies. The default group number is 0.
text string	Authentication string. It can be up to eight characters long. The default string is cisco.
md5	Message Digest 5 (MD5) authentication.
key-string key	Specifies the secret key for MD5 authentication. The key can contain up to 64 characters. We recommend using at least 16 characters.
0	(Optional) Unencrypted key. If no prefix is specified, the text also is unencrypted.
7	(Optional) Encrypted key.
timeout seconds	(Optional) Duration in seconds that HSRP will accept message digests based on both the old and new keys.
key-chain name-of-chain	Identifies a group of authentication keys.

Command Default

No text authentication string is configured.

Command Modes

Interface configuration (config-if)

Command History