Table Of Contents
show ip mobile router interface
show ip mobile mobile-networks
show ip mobile router interface
show ip mobile router registration
snmp-server enable traps ipmobile
template tunnel (mobile networks)
template tunnel (mobile router)
network (mobile networks)
To specify a list of mobile networks for a mobile router, use the network command in mobile networks configuration mode. To remove an entry, use the no form of this command.
network net mask
no network net mask
Syntax Description
Defaults
No networks are specified.
Command Modes
Mobile networks configuration
Command History
Usage Guidelines
When the mobile router is registered, the home agent injects the mobile networks into its routing table.
Examples
The following configuration example shows how to associate the mobile router address, 10.1.1.10, with the mobile networks:
Mobile Router Configuration
ip mobile routeraddress 10.1.1.10 255.255.255.0home-agent 10.1.1.20ip mobile secure home-agent 10.1.1.20 spi 100 key hex 12345678123456781234567812345678Home Agent Configuration
! mobile host is mobile router addressip mobile host 10.1.1.10 virtual-network 10.0.0.0 255.0.0.0! associates mobile router address with mobile networksip mobile mobile-networks 10.1.1.10description jetnetwork 172.6.1.0 255.255.255.0ip mobile secure host 10.1.1.10 spi 100 key hex 12345678123456781234567812345678Related Commands
show ip mobile mobile-networks
Displays a list of mobile networks associated with the mobile router.
physical-interface
To create a physical subinterface to be associated with the Virtual Multipoint Interfaces (VMI) on a router, use the physical-interface command in interface configuration mode. To return the interface to the default mode of synchronous, use the no form of this command.
physical-interface interface-type/slot
no physical-interface
Syntax Description
Defaults
No physical interface exists until created.
Command Modes
Interface configuration
Command History
Usage Guidelines
Use the physical-interface command to create a physical subinterface.
Only one physical interface can be assigned to a VMI interface. Because there is very high number of VMI interfaces that can be used, assign a new VMI for each physical interface.
Examples
The following example shows how to change a low-speed serial interface from synchronous to asynchronous mode:
Router(config)# interface vmi1Router(config-if)# physical-interface fe0/1Related Commands
redundancy group
To configure fault tolerance for the mobile router, use the redundancy group command in mobile router configuration mode. To disable this functionality, use the no form of this command.
redundancy group name
no redundancy group name
Syntax Description
Defaults
No default behavior or values.
Command Modes
Mobile router configuration
Command History
Usage Guidelines
The redundancy group command provides fault tolerance by selecting one mobile router in the redundancy group name argument to provide connectivity for the mobile networks. This mobile router is in the active state. The other mobile routers are passive and wait until the active mobile router fails before a new active mobile router is selected. Only the active mobile router registers and sets up proper routing for the mobile networks. The redundancy state is either active or passive.
Examples
The following example selects the mobile router in the sanjose group, to provide fault tolerance:
ip mobile routerredundancy group sanjoseaddress 10.1.1.10 255.255.255.0home-agent 10.1.1.20register lifetime 600Related Commands
standby name
Configures the name of the standby group, which is associated with the mobile router.
register (mobile networks)
To dynamically register the mobile networks with the home agent, use the register command in mobile networks configuration mode. To disable the registration, use the no form of this command.
register
no register
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
Mobile networks configuration
Command History
Usage Guidelines
When the mobile router registers its mobile networks on the home agent, the home agent looks up the mobile network configuration and verifies that the register command is configured before adding forwarding entries into the home agent forwarding table for the mobile router. If the mobile router is not configured properly, the home agent will reject the request with error code 129.
It is possible to have both statically configured mobile networks and dynamically registered mobile networks. However, static mobile network configurations take precedence over dynamic mobile network registrations. For example, if a mobile router tries to dynamically add (or delete) a mobile network and that network is already statically configured for that mobile router or any other mobile router, then the dynamic mobile network is ignored and an error message is generated.
Similarly, if a mobile router has dynamically added a mobile network, an attempt by another mobile router to dynamically add or delete the same mobile network is ignored and an error message is generated.
Examples
In the following example, the mobile router is configured to dynamically register its mobile networks with the home agent:
router mobileip mobile home-agentip mobile host 10.20.30.4 interface Ethernet 1!Associated host address that informs HA that 10.20.30.4 is actually an MRip mobile mobile-networks 10.20.30.4registerip mobile secure host 10.20.30.4 spi 100 key hex 12345678123456781234567812345678Related Commands
ip mobile host
Configures the mobile host or mobile node group.
mobile-network
Specifies the mobile router interface that is connected to the dynamic mobile network.
register (mobile router)
To control the registration parameters of the mobile router, use the register command in mobile router configuration mode. To return the registration parameters to their default settings, use the no form of this command.
register {extend expire seconds retry number interval seconds | lifetime seconds | retransmit initial milliseconds maximum milliseconds retry number}
no register {extend expire seconds retry number interval seconds | lifetime seconds | retransmit initial milliseconds maximum milliseconds retry number}
Syntax Description
Defaults
expire seconds: 120 seconds
retry number: Three retries
interval seconds: 10 seconds
lifetime seconds: 65534 seconds
retransmit initial milliseconds: 1000 milliseconds (1 second)
maximum milliseconds: 5000 milliseconds (5 seconds)Command Modes
Mobile router configuration
Command History
Usage Guidelines
The register lifetime seconds command configures the lifetime that the mobile router requests in a registration request. The home agent also has lifetimes that are set. If the registration request from a mobile router has a greater lifetime than the registration reply from the home agent, the lifetime set on the home agent will be used for the registration. If the registration request lifetime from the mobile router is less than the registration reply from the home agent, the lifetime set on the mobile router will be used. Thus, the smaller lifetime between the home agent and mobile router is used for registration.
Examples
The following example specifies a registration lifetime of 600 seconds:
ip mobile routeraddress 10.1.1.10 255.255.255.0home-agent 10.1.1.20register lifetime 600Related Commands
reverse-tunnel
To enable the reverse tunnel function on the mobile router, use the reverse-tunnel command in mobile router configuration mode. To disable the reverse tunnel function, use the no form of this command.
reverse-tunnel
no reverse-tunnel
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
Mobile router configuration
Command History
Examples
The following example configures reverse tunneling on the mobile router:
ip mobile routeraddress 10.1.1.2 255.0.0.0home-agent 10.1.1.1register extend expire 10 retry 2 interval 2reverse-tunnelRelated Commands
router mobile
To enable Mobile IP on the router, use the router mobile command in global configuration mode. To disable Mobile IP, use the no form of this command.
router mobile
no router mobile
Syntax Description
This command has no arguments or keywords.
Defaults
Disabled
Command Modes
Global configuration
Command History
Usage Guidelines
This command must be used in order to run Mobile IP on the router, as either a home agent or a foreign agent. The process is started, and counters begin. Disabling Mobile IP removes all related configuration commands, both global and interface.
Examples
The following example enables Mobile IP:
router mobileRelated Commands
show ip mobile binding
To display the mobility binding table on the home agent (HA), use the show ip mobile binding command in privileged EXEC mode.
show ip mobile binding [home-agent ip-address | nai string [session-id string] | summary]
Syntax Description
Command Modes
Privileged EXEC
Command History
Usage Guidelines
You can display a list of all bindings if you press enter. You can also specify an IP address for a specific home agent using the show ip mobile binding home-agent ip-address command.
If the session-id string combination is specified, only the binding entry for that session identifier is displayed. A session identifier is used to uniquely identify a Mobile IP flow. A Mobile IP flow is the set of {NAI, IP address}. The flow allows a single NAI to be associated with one or multiple IP addresses, for example, {NAI, ipaddr1}, {NAI, ipaddr2}, and so on. A single user can have multiple sessions for example, when logging through different devices such as a PDA, cellular phone, or laptop. If the session identifier is present in the initial registration, it must be present in all subsequent registration renewals from that MN.
Examples
The following is sample output from the show ip mobile binding command:
Router# show ip mobile bindingMobility Binding List:Total 3192.0.2.0(Bindings 3):Care-of Addr 192.0.2.102, Src Addr 192.0.2.102Lifetime granted 00:01:30 (90), remaining 00:00:53Flags sbdmg-T-, Identification CD1E860C.46A7467CTunnel0 src 192.0.2.3 dest 192.0.2.102 reverse-allowedMR Tunnel1 src 192.0.2.3 dest 192.0.2.0 reverse-allowedRouting Options - (T)Reverse-tunnelMobile Networks: 209.165.200.225/255.255.255.224 (D)Roaming IF Attributes: BW 10000 Kb, ID 11Description WiMAXMetric bandwidth192.0.2.0(Bindings 3):Care-of Addr 192.0.2.103, Src Addr 192.0.2.103Lifetime granted 00:01:30 (90), remaining 00:00:54Flags sbDmg-T-, Identification CD1E860D.4394D6C0Tunnel2 src 192.0.2.3 dest 192.0.2.103 reverse-allowedMR Tunnel2 src 192.0.2.3 dest 192.0.2.103 reverse-allowedRouting Options - (D)Direct-to-MN (T)Reverse-tunnelMobile Networks: 209.165.200.225/255.255.255.224 (D)Roaming IF Attributes: BW 10000 Kb, ID 3, Link Type WIFI Mobility Binding List:Metric bandwidth192.0.2.0 (Bindings 3):Care-of Addr 192.0.2.104, Src Addr 192.0.2.104Lifetime granted 00:01:30 (90), remaining 00:01:19Flags sbdmg-T-, Identification CD1E8639.48B35C2CTunnel3 src 192.0.2.3 dest 192.0.2.104 reverse-allowedMR Tunnel4 src 192.0.2.3 dest 192.0.2.0 reverse-allowedRouting Options - (T)Reverse-tunnelMobile Networks: 209.165.200.225/255.255.255.224 (D)Roaming IF Attributes: BW 10000 Kb, ID 7, Link Type UMTSMetric bandwidthThe following is sample output from the show ip mobile binding command when mobile networks are configured or registered on the home agent:
Router# show ip mobile bindingMobility Binding List:Total 1192.0.2.6:Care-of Addr 192.0.2.7, Src Addr 192.0.2.7Lifetime granted 00:02:00 (120), remaining 00:01:56Flags sbDmgvT, Identification B7A262C5.DE43E6F4Tunnel0 src 10.0.0.3 dest 192.0.2.7 reverse-allowedMR Tunnel1 src 10.0.0.3 dest 192.0.2.6 reverse-allowedRouting Options - (D)Direct-to-MN (T)Reverse-tunnelMobile Networks: 209.165.200.235/255.255.255.224(S)209.165.200.235/255.255.255.224 (D)209.165.200.235/209.165.200.255(D)The following is sample output from the show ip mobile binding command with session identifier information:
Router# show ip mobile bindingMobility Binding List:Total 1192.0.2.10:Care-of Addr 192.0.2.20, Src Addr 192.0.2.27,Lifetime granted 00:33:20 (20000), remaining 00:30:56Flags SbdmGvt, Identification BC1C2A04.EA42659C,Tunnel0 src 192.0.2.207 dest 192.0.2.20 reverse-allowedRouting OptionsSession identifier 998811234SPI 333 (decimal 819) MD5, Prefix-suffix, Timestamp +/-255, root keyKey 38a38987ad0a399cb80940835689da66SPI 334 (decimal 820) MD5, Prefix-suffix, Timestamp +/-255, session keyKey 34c7635a313038611dec8c16681b55e0The following sample output shows that the home agent is configured to detect network address translation (NAT):
Router# show ip mobile binding nai mn@cisco.comMobility Binding List:mn@cisco.com (Bindings 1):Home Addr 192.0.2.66Care-of Addr 192.0.2.107, Src Addr 192.0.2.119Lifetime granted 00:03:00 (180), remaining 00:02:20Flags sbDmg-T-, Identification BCF5F7FF.92C1006FTunnel0 src 192.0.2.134 dest 192.0.2.119 reverse-allowedRouting Options - (D)Direct-to-MN (T)Reverse-tunnelService Options:NAT detectThe following sample output shows that multipath support is enabled:
Router# show ip mobile bindingMobility Binding List:Total 1192.0.2.178:Care-of Addr 192.0.2.172, Src Addr 192.0.2.172Lifetime granted 10:00:00 (36000), remaining 09:52:40Flags sbDmg-T-, Identification C5441314.61D36B14Tunnel1 src 192.0.2.249 dest 192.0.2.172 reverse-allowedMR Tunnel1 src 192.0.2.249 dest 192.0.2.172 reverse-allowedRouting Options - (D)Direct-to-MN (T)Reverse-tunnelMobile Networks: 209.165.200.205/255.255.255.224 (D)Roaming IF Attributes: BW 10000 Kbit, ID 3247Description First Lan InterfaceMulti-path Metric bandwidthTable 9 describes the significant fields shown in the display.
Related Commands
show ip mobile globals
To display global information for mobile agents, use the show ip mobile globals command in privileged EXEC mode.
show ip mobile globals
Syntax Description
This command has no arguments or keywords.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
This command shows the services provided by the home agent or foreign agent. Note the deviation from RFC 3344: the foreign agent will not display busy or registration required information. Both are handled on a per-interface basis (see the show ip mobile interface command), not at the global foreign agent level.
Examples
The following is sample output from the show ip mobile globals command:
Router# show ip mobile globalsIP Mobility global information:Home AgentRegistration lifetime: 10:00:00 (36000 secs)Broadcast enabledReplay protection time: 7 secsReverse tunnel enabledICMP Unreachable enabledStrip realm enabledNAT detect disabledHA Accounting enabled using method list: mylistAddress 1.1.1.1Virtual networks10.0.0.0/8Foreign AgentPending registrations expire after 120 secondsCare-of address advertisedMobile network route injection enabledMobile network route redistribution disabledMobile network route injection access list mobile-net-listEthernet2/2 (10.10.10.1) - upMobility Agent1 interfaces providing serviceEncapsulations supported: IPIP and GRETunnel fast switching enabled, cef switching enabledDiscovered tunnel MTU aged out after 1:00:00The following example shows that home agent UDP tunneling is enabled with a keepalive timer set at 60 seconds and forced UDP tunneling enabled.
Router# show ip mobile globalsIP Mobility global information:Home agentRegistration lifetime: 10:00:00 (36000 secs)Broadcast disabledReplay protection time: 7 secsReverse tunnel enabledICMP Unreachable enabledStrip realm disabledNAT Traversal disabledHA Accounting disabledNAT UDP Tunneling support enabledUDP Tunnel Keepalive 60Forced UDP Tunneling enabledVirtual networks10.99.101.0/24Foreign agent is not enabled, no care-of address0 interfaces providing serviceEncapsulations supported: IPIP and GRETunnel fast switching enabled, cef switching enabledTunnel path MTU discovery aged out after 10 minThe following example shows that NAT UDP tunneling support is enabled on the foreign agent with a keepalive timer set at 110 seconds and forced UDP tunneling disabled.
Router# show ip mobile globalsIP Mobility global information:Foreign AgentPending registrations expire after 120 secsCare-of addresses advertisedMobile network route injection disabledEthernet2/2 (10.30.30.1) - up1 interface providing serviceEncapsulations supported: IPIP and GRETunnel fast switching enabled, cef switching enabledTunnel path MTU discovery aged out after 10 minNAT UDP Tunneling support enabledUDP Tunnel Keepalive 110Forced UDP Tunneling disabledThe following example output shows that multipath support is enabled:
Router# show ip mobile globalsIP Mobility global information:Home AgentRegistration lifetime: 10:00:00 (36000 secs)Broadcast disabledReplay protection time: 7 secs....UDP Tunnel Keepalive 110Forced UDP Tunneling disabledMultiple Path Support enabledTable 10 describes the significant fields shown in the sample output.
Related Commands
show ip mobile interface
Displays advertisement information for interfaces that are providing foreign agent service or that are home links for mobile nodes.
show ip mobile host
To display mobile node information, use the show ip mobile host command in privileged EXEC mode.
show ip mobile host [address | interface interface | network address | nai string | group [nai string] | summary]
Syntax Description
Command Modes
Privileged EXEC
Command History
12.0(1)T
This command was introduced.
12.2(2)XC
The nai keyword was added.
12.2(13)T
This command was integrated into Cisco IOS Release 12.2(13)T.
Examples
The following is sample output from the show ip mobile host command:
Router# show ip mobile host10.34.253.147:Allowed lifetime 10:00:00 (36000/default)Roam status -Registered-, Home link on virtual network 10.34.253.128 /26Accepted 2082, Last time 02/13/03 01:03:24Overall service time 1w0dDenied 32, Last time 01/03/03 21:13:43Last code 'registration id mismatch (133)'Total violations 32Tunnel to MN - pkts 0, bytes 0Reverse tunnel from MN - pkts 0, bytes 0The following is sample output from the show ip mobile host nai string command:
Router# show ip mobile host nai jane@cisco.comjane@cisco.comAllowed lifetime 10:00:00 (36000/default)Roam status -Registered-, Home link on interface Loopback0Bindings 10.34.253.205Accepted 3705, Last time 02/13/03 01:02:37Overall service time 6d05hDenied 4918, Last time 01/30/03 20:59:14Last code 'administratively prohibited (129)'Total violations 262Tunnel to MN - pkts 0, bytes 0Reverse tunnel from MN - pkts 0, bytes 0Table 11 describes the significant fields shown in the display.
The following is sample output from the show ip mobile host group command for groups configured with the ip mobile host command:
Router# show ip mobile host group20.0.0.1 - 20.0.0.20:Home link on virtual network 20.0.0.0 /8, Care-of ACL -none-Security associations on router, Allowed lifetime 10:00:00 (36000/default)Table 12 describes the significant fields shown in the display.
Related Commands
clear ip mobile host-counters
Clears the mobile node counters.
show ip mobile binding
Displays the mobility binding table.
show ip mobile router interface
To display information about the interfaces configured for roaming, use the show ip mobile router interface command in privileged EXEC mode.
show ip mobile router interface
Syntax Description
This command has no arguments or keywords.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
The mobile router uses the interfaces for roaming, discovering foreign agents, and registering its location on the foreign network.
Use this command to display information about roaming interfaces. If the interface is configured for a collocated care-of address (CCoA), the CCoA IP address is displayed. If it is not configured for a CCoA, "disabled" is displayed. The interface can be up or down.
Examples
The following is sample output from the show ip mobile router interface command. Fast Ethernet interface 0/0 and Fast Ethernet interface 2/0 have no CCoA configuration, serial interface 1/0 has a static CCoA configuration, and serial interface 1/1 has a dynamic CCoA address with CCoA only. GRE encapsulation is configured on Fast Ethernet interface 2/0.
Router# show ip mobile router interfaceMobile Router Interfaces:Listed in order of preference.Ethernet2/0:Priority 110, Bandwidth 10000, Address 192.0.2.33Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 2000, Remaining 0 msec, Count 2Foreign agent hold down 0 secLayer 2 reassociation hold down 1000 msecLast layer 2 link-state trap: NoneRouting disallowedCollocated CoA disabledInterface ID 11Interface description WiMAXEthernet1/0:Priority 110, Bandwidth 10000, Address 192.0.2.55Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 2000, Remaining 0 msec, Count 2Mobile Router Interfaces:Foreign agent hold down 0 secLayer 2 reassociation hold down 1000 msecLast layer 2 link-state trap: NoneRouting disallowedCollocated CoA disabledInterface ID 7, Link type UMTSEthernet0/0:Priority 110, Bandwidth 10000, Address 192.0.2.103Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 0, Remaining 0 msec, Count 0Foreign agent hold down 0 secLayer 2 reassociation hold down 1000 msecLast layer 2 link-state trap: NoneRouting disallowedCollocated CoA 192.0.2.103UDP Tunneling disabledInterface ID 3, Link type WIFIThe following sample output shows that the mobile router is configured to support signaling on roaming interfaces via SNMP interface MIB traps.
Router# show ip mobile router interfaceMobile Router Interfaces:Listed in order of preference.Ethernet1:Priority 110, Bandwidth 10000, Address 192.0.2.69Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 5000, Remaining 0 msec, Count 4Foreign agent hold down 0 secLayer 2 reassociation hold down 5000 msecLast layer 2 link-state trap: linkDownRouting disallowedCollocated CoA 192.0.2.69 - Solicit FAsTable 13 describes the significant fields shown in the display.
Related Commands
show ip mobile mobile-networks
To display a list of mobile networks associated with the mobile router, use the show ip mobile mobile-networks command in privileged EXEC mode.
show ip mobile mobile-networks [ip-address]
Syntax Description
ip-address
(Optional) Address of a specific mobile router. If not specified, information for all mobile networks is displayed.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
The home agent maintains a list of static and dynamic mobile networks associated with mobile routers.
Examples
The following is sample output from the show ip mobile mobile-networks command:
Router# show ip mobile mobile-networksMobile Networks:MR 20.0.4.1:Dynamic registrationConfigured:10.2.0.0/255.255.255.0Registered:10.3.0.0/255.255.255.010.4.0.0/255.0.0.010.5.0.0/255.255.255.0The following is sample output from the show ip mobile mobile-networks command when multipath support is enabled:
Router# show ip mobile mobile-networksMobile Networks:MR 10.1.1.1:Multiple Paths Support EnabledDynamic registrationRegistered:10.2.0.0/255.255.255.0Table 14 describes the significant fields in the display.
Related Commands
ip mobile mobile-networks
Associates one or more networks with a mobile router configured as a mobile host and enters mobile networks configuration mode.
show ip mobile proxy
To display information about a proxy Mobile IP host, use the show ip mobile proxy command in privileged EXEC mode.
show ip mobile proxy [host [nai string] | registration | traffic]
Syntax Description
Command Modes
Privileged EXEC
Command History
12.2(2)XC
This command was introduced.
12.3(4)T
This command was integrated into Cisco IOS Release 12.3(4)T for PDSN platforms.
Usage Guidelines
This command is available only on Packet Data Serving Node (PDSN) platforms running specific PDSN code images; consult Feature Navigator for your Cisco IOS software release.
Examples
The following is sample output from the show ip mobile proxy host command:
Router# show ip mobile proxy hostProxy Host List:MoIPProxy1@cisco.com:Home Agent Address 10.3.3.1Lifetime 6000Flags :sBdmgvtshow ip mobile router
To display configuration information and monitoring statistics about the mobile router, use the show ip mobile router command in privileged EXEC mode.
show ip mobile router
Syntax Description
This command has no arguments or keywords.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
The display includes the mobile router configuration information such as the home address and network mask, home agent, and registration settings, and operational information such as status, tunnel interface, active foreign agent, and care-of address.
Examples
The following is sample output from the show ip mobile router command:
Router# show ip mobile routerMobile RouterEnabled 05/30/02 11:16:03Last redundancy state transition 05/30/02 11:15:01Configuration:Home Address 10.0.4.1 Mask 255.255.255.0Home Agent 10.0.0.3 Priority 100 (best) (current)Registration lifetime 120 secRetransmit Init 1000, Max 5000 msec, Limit 3Extend Expire 120, Retry 3, Interval 10Redundancy group AlwaysUp (active)Mobile Networks:Ethernet5 (10.0.0.0/255.255.255.248)Ethernet2 (10.0.0.0/255.0.0.0)Ethernet3 (10.1.0.0/255.255.255.0)Monitor:Status -Registered-Active foreign agent 10.0.1.2, Care-of 10.0.1.2On interface Serial0Tunnel0 mode IP/IPThe following is sample output from the show ip mobile router command when a mobile router is registered using a CCoA:
Router# show ip mobile routerMobile RouterEnabled 02/12/02 18:29:13Last redundancy state transition NEVERConfiguration:Home Address 10.0.4.1 Mask 255.255.255.0Home Agent 10.0.0.3 Priority 100 (best)Registration lifetime 120 secRetransmit Init 1000, Max 5000 msec, Limit 3Extend Expire 120, Retry 3, Interval 10Monitor:Status -Registered-Using Collocated Care-of Address 10.0.0.1On interface Ethernet1Tunnel0 mode IP/IPThe following is sample output from the show ip mobile router command when GRE encapsulation is globally configured on the mobile router. When GRE encapsulation is enabled, the line "Request GRE tunnel" is displayed in the output and the tunnel mode is shown as "GRE/IP."
Router# show ip mobile routerMobile RouterEnabled 01/11/00 06:59:19Last redundancy state transition NEVERConfiguration:Home Address 10.80.80.1 Mask 255.255.255.0Home Agent 10.40.40.1 Priority 100 (best) (current)Registration lifetime 65534 secRetransmit Init 1000, Max 5000 msec, Limit 3Extend Expire 20, Retry 10, Interval 1Request GRE tunnelMobile Networks:Ethernet1/3 (172.16.143.0/255.255.255.0)TokenRing4/3 (172.16.153.0/255.255.255.0)Monitor:Status -Registered-Active foreign agent 10.52.52.1, Care-of 10.52.52.1On interface TokenRing4/2Tunnel0 mode GRE/IPThe following is sample output when the mobile router is configured for multipath support:
Router# show ip mobile routerMobile RouterEnabled 11/22/05 05:37:17Last redundancy state transition NEVERConfiguration:Home Address 10.1.1.10 Mask 255.255.255.0Home Agent 10.1.1.2 Priority 100 (best) (current)Registration lifetime 90 secRetransmit Init 1000, Max 5000 msec, Limit 3Extend Expire 120, Retry 3, Interval 10Reverse tunnel requiredMulti-path active, Requested metric: bandwidth, Using metric: bandwidthMobile Networks: Ethernet3/0 (172.16.1.0/255.255.255.0)Loopback44 (192.168.1.0/255.255.255.0)Monitor:Status -Registered-Foreign Agent 172.20.1.1, Care-of 172.20.1.1On interface Ethernet1/0Tunnel0 mode IP/IPCollocated care-of address 172.30.1.11On interface Ethernet2/0Tunnel2 mode IP/IPCollocated care-of address 172.31.1.11On interface Ethernet3/0Tunnel3 mode GRE/IPTable 15 describes the significant fields shown in the display.
Related Commands
ip mobile router
Enables the mobile router and enters mobile router configuration mode.
show ip mobile router agent
To display information about the agents for the mobile router, use the show ip mobile router agent command in privileged EXEC mode.
show ip mobile router agent
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
This command displays a list containing information on all foreign agents currently discovered on the mobile router. This list also displays information about each interface configured for static or dynamic CCoA. An interface must be "up" to be displayed on the list.
You can use the clear ip mobile router agent command to clear foreign agent care-of addresses (CoAs) but not static CCoAs. CCoAs cannot be cleared.
Examples
The following is sample output from the show ip mobile router agent command when a CCoA is configured on a mobile router interface:
Router# show ip mobile router agentMobile Router Agents:Foreign agent 45.0.0.2:Care-of address 42.0.0.2Interface Ethernet1, MAC 0030.9492.6627Agent advertisement seq 56649, Flags rbhFmGvt, Lifetime 36000IRDP advertisement lifetime 30, Remaining 29Last received 02/13/02 17:55:48First heard 02/13/02 11:21:46Collocated Care-of address 48.0.0.1 (static):Interface Ethernet2Default gateway 48.0.0.2Registration retry interval 60Next CCoA reg attempt in 00:00:55 secondsCollocated Care-of address 11.0.0.7 (dynamic):Interface Serial0Registration retry interval 60Table 16 describes the significant fields shown in the display.
Related Commands
clear ip mobile router agent
Deletes learned agents and the corresponding care-of address of the foreign agent from the mobile router agent table.
show ip mobile router interface
To display information about the interfaces configured for roaming, use the show ip mobile router interface command in privileged EXEC mode.
show ip mobile router interface
Syntax Description
This command has no arguments or keywords.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
The mobile router uses the interfaces for roaming, discovering foreign agents, and registering its location on the foreign network.
Use this command to display information about roaming interfaces. If the interface is configured for a collocated care-of address (CCoA), the CCoA IP address is displayed. If it is not configured for a CCoA, "disabled" is displayed. The interface can be up or down.
Examples
The following is sample output from the show ip mobile router interface command. Fast Ethernet interface 0/0 and Fast Ethernet interface 2/0 have no CCoA configuration, serial interface 1/0 has a static CCoA configuration, and serial interface 1/1 has a dynamic CCoA address with CCoA only. GRE encapsulation is configured on Fast Ethernet interface 2/0.
MR#show ip mobile router interfaceMobile Router Interfaces:Listed in order of preference.Ethernet2/0:Priority 110, Bandwidth 10000, Address 57.0.0.1Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 2000, Remaining 0 msec, Count 2Foreign agent hold down 0 secLayer 2 reassociation hold down 1000 msecLast layer 2 link-state trap: NoneRouting disallowedCollocated CoA disabledInterface ID 11Interface description WiMAXEthernet1/0:Priority 110, Bandwidth 10000, Address 56.0.0.1Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 2000, Remaining 0 msec, Count 2Mobile Router Interfaces:Foreign agent hold down 0 secLayer 2 reassociation hold down 1000 msecLast layer 2 link-state trap: NoneRouting disallowedCollocated CoA disabledInterface ID 7, Link type UMTSEthernet0/0:Priority 110, Bandwidth 10000, Address 55.0.0.1Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 0, Remaining 0 msec, Count 0Foreign agent hold down 0 secLayer 2 reassociation hold down 1000 msecLast layer 2 link-state trap: NoneRouting disallowedCollocated CoA 55.0.0.1UDP Tunneling disabledInterface ID 3, Link type WIFIThe following sample output shows that the mobile router is configured to support signaling on roaming interfaces via SNMP interface MIB traps.
Router# show ip mobile router interfaceMobile Router Interfaces:Listed in order of preference.Ethernet1:Priority 110, Bandwidth 10000, Address 55.0.0.8Periodic solicitation disabled, Interval 600 secRetransmit Init 1000, Max 5000 msec, Limit 3Current 5000, Remaining 0 msec, Count 4Foreign agent hold down 0 secLayer 2 reassociation hold down 5000 msecLast layer 2 link-state trap: linkDownRouting disallowedCollocated CoA 55.0.0.8 - Solicit FAsTable 17 describes the significant fields shown in the display.
Related Commands
show ip mobile router registration
To display pending and/or accepted registrations of the mobile router, use the show ip mobile router registration command in privileged EXEC mode.
show ip mobile router registration
Syntax Description
This command has no arguments or keywords.
Command Modes
Privileged EXEC
Command History
Examples
The following is sample output from the show ip mobile router registration command:
MR# show ip mobile router registrationMobile Router Registrations:Foreign agent 192.0.2.112:Registration accepted 01/19/09 04:53:51, On Ethernet2/0Care-of addr 192.0.2.102, HA addr 192.0.2.3, Home addr 192.0.2.0Lifetime requested 00:01:30 (90), Granted 00:01:30 (90)Remaining 00:01:24Flags sbdmg-T-, Identification CD1E85DF.3D702EC8Register next time 00:00:39Extensions:Mobile Network 192.0.2.6/24MN-HA Authentication SPI 100Home agent 192.0.2.3:Registration accepted 01/19/09 04:53:52, On Ethernet0/0Collocated care-of addr 192.0.2.103, HA addr 192.0.2.3, Home addr 192.0.2.0Lifetime requested 00:01:30 (90), Granted 00:01:30 (90)Remaining 00:01:25Flags sbDmg-T-, Identification CD1E85E0.3F7C7758Register next time 00:00:40Extensions:Mobile Router Registrations:Mobile Network 192.0.2.6/24MN-HA Authentication SPI 100Foreign agent 192.0.2.16:Registration accepted 01/19/09 04:53:51, On Ethernet1/0Care-of addr 192.0.2.104, HA addr 192.0.2.3, Home addr 192.0.2.0Lifetime requested 00:01:30 (90), Granted 00:01:30 (90)Remaining 00:01:23Flags sbdmg-T-, Identification CD1E85DF.3D702EC8Register next time 00:00:38Extensions:Mobile Network 192.0.2.6/24MN-HA Authentication SPI 100The following is sample output from the show ip mobile router registration command if a mobile router interface is configured with a CCoA:
Home agent 192.0.2.23:Registration accepted 01/01/02 10:24:46, On Ethernet5/3Collocated care-of addr 192.0.2.27, HA addr 192.0.2.23, Home addr 192.0.2.40Lifetime requested 00:01:30 (90), Granted 00:01:30 (90)Remaining 00:01:08Flags sbDmg-T-, Identification BFDC0CEE.C7A75D64Register next time 00:00:23Extensions:Mobile Network 192.0.2.4/24MN-HA Authentication SPI 100Table 18 describes the significant fields shown in the display.
Related Commands
register (mobile router)
Controls the registration parameters of the mobile router.
show ip mobile router traffic
To display the counters that the mobile router maintains, use the show ip mobile router traffic command in privileged EXEC mode.
show ip mobile router traffic [since bootup]
Syntax Description
since bootup
(Optional) Displays counters since the mobile router process started, regardless of how many times the counters were cleared.
Defaults
Displays counters since the counters were last cleared.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
The mobile router maintains counters for agent discovery, registration, movement, and services.
Examples
The following is sample output from the show ip mobile router traffic command:
Router# show ip mobile router trafficMobile Router Counters:Agent Discovery:Solicitations sent 90, advertisements received 17Agent reboots detected 0Registrations:Register 70, Deregister 0 requests sentRegister 70, Deregister 0 replies receivedRequests accepted 68, denied 1 by HA 1 /FA 0Denied due to mismatched ID 1Authentication failed for HA 0/FA 0Invalid extensions 0, ignored 0Invalid home address 0, ID 0Unknown HA 0/FA 0Gratuitous ARPs sent 0Movement:Came up on HA 0, on FA 1Moved HA to FA 0, FA to FA 0, FA to HA 0Better interface detected 0 source 46.0.0.5 dest 49.0.0.3Tunnel Traffic:Packets received 188105, sent 0Bytes received 142691351, sent 0Services:Redundancy state active 2, passive 1Table 19 describes the significant fields shown in the display.
Related Commands
clear ip mobile router traffic
Clears the counters that the mobile router maintains.
show ip mobile secure
To display the mobility security associations for the mobile host, mobile visitor, foreign agent, home agent, or proxy Mobile IP host, use the show ip mobile secure command in privileged EXEC mode.
show ip mobile secure {host | visitor | foreign-agent | home-agent | proxy-host | summary} {ip-address | nai string}
Syntax Description
Command Modes
EXEC
Command History
Usage Guidelines
Multiple security associations can exist for each entity.
The proxy-host keyword is only available on PDSN platforms running specific PDSN code images; consult Feature Navigator for your Cisco IOS software release.
Examples
The following is sample output from the show ip mobile secure command:
Router# show ip mobile secureSecurity Associations (algorithm,mode,replay protection,key):10.0.0.6SPI 300, MD5, Prefix-suffix, Timestamp +/- 7,Key 00112233445566778899001122334455Table 20 describes the significant fields shown in the display.
show ip mobile traffic
To display protocol counters, use the show ip mobile traffic command in privileged EXEC mode.
show ip mobile traffic
Syntax Description
This command has no arguments or keywords.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
Counters can be reset to zero using the clear ip mobile traffic command, which also allows you to undo the reset.
Examples
The following is sample output from the show ip mobile traffic command:
Router# show ip mobile trafficIP Mobility traffic:UDP:Port: 434 (Mobile IP) input drops: 0Advertisements:Solicitations received 0Advertisements sent 0, response to solicitation 0Home Agent Registrations:Register 0, Deregister 0 requestsRegister 0, Deregister 0 repliedAccepted 0, No simultaneous bindings 0Denied 0, Ignored 0Unspecified 0, Unknown HA 0Administrative prohibited 0, No resource 0Authentication failed MN 0, FA 0Bad identification 0, Bad request form 0Unavailable encap 0, reverse tunnel 0Reverse tunnel mandatory 0Binding updates received 0, sent 0 total 0 fail 0Binding update acks received 0, sent 0Binding info request received 0, sent 0 total 0 fail 0Binding info reply received 0 drop 0, sent 0 total 0 fail 0Binding info reply acks received 0 drop 0, sent 0Gratuitous 0, Proxy 0 ARPs sentTotal incoming requests using NAT detect 1Foreign Agent Registrations:Request in 0,Forwarded 0, Denied 0, Ignored 0Unspecified 0, HA unreachable 0Administrative prohibited 0, No resource 0Bad lifetime 0, Bad request form 0Unavailable encapsulation 0, Compression 0Unavailable reverse tunnel 0Reverse tunnel mandatoryReplies in 0Forwarded 0, Bad 0, Ignored 0Authentication failed MN 0, HA 0Received challenge/gen. authentication extension, feature not enabled 0Route Optimization Binding Updates received 0, acks sent 0 neg acks sent 0Unknown challenge 1, Missing challenge 0, Stale challenge 0Table 21 describes the significant fields shown in the display.
show ip mobile tunnel
To display active tunnels, use the show ip mobile tunnel command in EXEC mode.
show ip mobile tunnel [interface-type] [interface number]
Syntax Description
Command Modes
Privileged EXEC
Command History
Usage Guidelines
This command displays active tunnels created by Mobile IP. When no more users are on the tunnel, the tunnel is released.
Examples
The following is sample output from the show ip mobile tunnel command:
Router# show ip mobile tunnelMobile Tunnels:Total mobile ip tunnels 3Tunnel2:src 192.0.2.103, dest 192.0.2.3, key 0encap IP/IP, mode reverse-allowed, tunnel-users 1Input ACL users 0, Output ACL users 0IP MTU 1480 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface Ethernet0/0, link type WIFIMR created, CEF switching enabled, ICMP unreachable enabled5 minute input rate 0 bits/sec, 0 packets/sec5 minute output rate 0 bits/sec, 0 packets/sec0 packets input, 0 bytes, 0 drops0 packets output, 0 bytesTunnel1:src 192.0.2.0, dest 192.0.2.3, key 7encap IP/IP, mode reverse-allowed, tunnel-users 1Input ACL users 0, Output ACL users 0IP MTU 1480 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface Ethernet1/0, link type UMTSMR created, CEF switching enabled, ICMP unreachable enabled Mobile Tunnels:5 minute input rate 0 bits/sec, 0 packets/sec5 minute output rate 0 bits/sec, 0 packets/sec0 packets input, 0 bytes, 0 drops0 packets output, 0 bytesTunnel0:src 192.0.2.0, dest 192.0.2.3, key 11encap IP/IP, mode reverse-allowed, tunnel-users 1Input ACL users 0, Output ACL users 0IP MTU 1480 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface Ethernet2/0MR created, CEF switching enabled, ICMP unreachable enabled5 minute input rate 0 bits/sec, 0 packets/sec5 minute output rate 0 bits/sec, 0 packets/sec0 packets input, 0 bytes, 0 drops0 packets output, 0 bytesThe following is sample output from the show ip mobile tunnel command that verifies that UDP tunneling is established:
Router# show ip mobile tunnelMobile Tunnels:Total mobile ip tunnels 1Tunnel0:src 192.0.2.91, dest 192.0.2.97src port 434, dest port 434encap MIPUDP/IP, mode reverse-allowed, tunnel-users 1IP MTU 1480 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface Ethernet2/3FA created, fast switching disabled, ICMP unreachable enabled5 packets input, 600 bytes, 0 drops7 packets output, 780 bytesThe following is sample output from the show ip mobile tunnel command that shows that the mobile node-home agent tunnel is still IP-in-IP, but that the foreign agent-home agent tunnel is UDP:
Router# show ip mobile tunnelMobile Tunnels:Total mobile ip tunnels 2Tunnel0:src 192.0.2.100, dest 192.0.2.115encap IP/IP, mode reverse-allowed, tunnel-users 1IP MTU 1460 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface Tunnel1HA created, fast switching enabled, ICMP unreachable enabled11 packets input, 1002 bytes, 0 drops5 packets output, 600 bytesTunnel1:src 192.0.2.100, dest 192.0.2.207src port 434, dest port 434encap MIPUDP/IP, mode reverse-allowed, tunnel-users 1IP MTU 1480 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface GigabitEthernet0/2HA created, fast switching disabled, ICMP unreachable enabled11 packets input, 1222 bytes, 0 drops7 packets output, 916 bytesThe following is sample output from the show ip mobile tunnel command that shows that the mobile node has UDP tunneling established with the home agent:
Router# show ip mobile tunnelTotal mobile ip tunnels 1Tunnel0:src 192.0.2.97, dest 192.0.2.158src port 434, dest port 434encap MIPUDP/IP, mode reverse-allowed, tunnel-users 1IP MTU 1480 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface Ethernet2/1HA created, fast switching disabled, ICMP unreachable enabled5 packets input, 600 bytes, 0 drops5 packets output, 600 bytesThe following is sample output when the mobile router is configured for multipath support:
Router# show ip mobile tunnelMobile Tunnels:Total mobile ip tunnels 1Tunnel0:src 192.0.2.172, dest 192.0.2.202 Key 6encap IP/IP, mode reverse-allowed, tunnel-users 1IP MTU 1480 bytesPath MTU Discovery, mtu: 0, ager: 10 mins, expires: neveroutbound interface Ethernet1/0MR created, fast switching enabled, ICMP unreachable enabled4 packets input, 306 bytes, 0 drops6 packets output, 436 bytesTemplate configuration:ip pim sparse-dense-modeTable 22 describes the significant fields shown in the display.
Related Commands
show ip mobile violation
To display information about security violations, use the show ip mobile violation command in privileged EXEC mode.
show ip mobile violation [address | nai string]
Syntax Description
address
(Optional) Displays violations from a specific IP address.
nai string
(Optional) Network access identifier.
Command Modes
EXEC
Command History
12.0(1)T
This command was introduced.
12.2(2)XC
The nai keyword and associated parameters were added.
12.2(13)T
This command was integrated into Cisco IOS Release 12.2(13)T.
Usage Guidelines
The most recent violation is saved for all the mobile nodes. A circular log holds up to 50 unknown requesters, which are the violators without security associations. The oldest violations will be purged to make room for new unknown requesters when the log limit is reached.
Security violation messages are logged at the informational level (see the logging global configuration command). When logging is enabled to include this severity level, violation history can be displayed using the show logging command.
Examples
The following is sample output from the show ip mobile violation command:
Router# show ip mobile violationSecurity Violation Log:Mobile Hosts:20.0.0.1:Violations: 1, Last time: 06/18/97 01:16:47SPI: 300, Identification: B751B581.77FD0E40Error Code: MN failed authentication (131), Reason: Bad authenticator (2)Table 23 describes significant fields shown in the display.
show ip mobile visitor
To display the visitor table that contains information on mobile nodes (MNs) using this foreign agent (FA), use the show ip mobile visitor command in privileged EXEC mode.
show ip mobile visitor [[pending] [ip-address | summary] | nai string [session-id string]]
Syntax Description
Command Modes
Privileged EXEC
Command History
Usage Guidelines
Use this command to find out information on MNs that are registered with their (home agent) HA via this FA. The FA updates the visitor table that contain a list of the MNs using a FA.
A session identifier is used to uniquely identify a Mobile IP flow. A Mobile IP flow is the set of {NAI, IP address}. The flow allows a single NAI to be associated with one or multiple IP addresses, for example, {NAI, ipaddr1}, {NAI, ipaddr2}, and so on. A single user can have multiple sessions for example, when logging through different devices such as a PDA, cellular phone, or laptop. If the session identifier is present in the initial registration, it must be present in all subsequent registration renewals from that MN.
Examples
The following is sample output from the show ip mobile visitor command:
Router# show ip mobile visitorMobile Visitor List:Total 110.0.0.1:Interface Ethernet1/2, MAC addr 0060.837b.95ecIP src 20.0.0.1, dest 67.0.0.31, UDP src port 434HA addr 66.0.0.5, Identification B7510E60.64436B38Lifetime 08:20:00 (30000) Remaining 08:19:16Tunnel100 src 68.0.0.31, dest 66.0.0.5, reverse-allowedRouting Options - (T)Reverse-tunnelIf the mobile node has visited and is associated with a session identifier, then the visitor entry for the mobile node shows the session identifier as shown below:
Router# show ip mobile visitorMobile Visitor List:Total 1user01@cisco.comHome addr 100.100.100.17Interface Ethernet3/3, MAC addr 0004.6d25.b857IP src 0.0.0.0, dest 100.100.100.1, UDP src port 434HA addr 100.100.100.100, Identification BC189864.B2FE6CC4Lifetime 00:33:20 (2000) Remaining 00:33:06Tunnel0 src 70.70.70.2, dest 100.100.100.100, reverse-allowedRouting Options - (B)BroadcastSession identifier PDThe following sample output shows that the MN is registering with the HA (at the FA):
Router# show ip mobile visitorMobile Visitor List:Total 110.99.100.2:Interface FastEthernet3/0, MAC addr 00ff.ff80.002bIP src 10.99.100.2, dest 30.5.3.5, UDP src port 434HA addr 200.1.1.1, Identification BCE7E391.A09E8720Lifetime 01:00:00 (3600) Remaining 00:30:09Tunnel1 src 200.1.1.5, dest 200.1.1.1, reverse-allowedRouting Options - (T)Reverse TunnelingTable 24 describes the significant fields shown in the display.
Related Commands
show ip mobile vpn-realm
To display virtual private network (VPN) realms configured for Mobile IP, use the show ip mobile vpn-realm command in EXEC mode.
show ip mobile vpn-realm
Syntax Description
This command has no arguments or keywords.
Command Modes
EXEC
Command History
Usage Guidelines
Use this command to display VPN realms configured by the ip mobile vpn-realm command.
Examples
The following example output shows which VPN realms and corresponding sequence numbers are configured for Mobile IP:
Router# show ip mobile vpn-realmIP Mobile VPN realm(s):Sequence number: 20 Realm: company1Sequence number: 10 Realm: company2Related Commands
show ipv6 ospf
To display general information about Open Shortest Path First (OSPF) routing processes, use the show ipv6 ospf command in user EXEC or privileged EXEC mode.
show ipv6 ospf [process-id] [area-id]
Syntax Description
Command Modes
User EXEC
Privileged EXECCommand History
Examples
show ipv6 ospf Output Example
The following is sample output from the show ipv6 ospf command:
Router# show ipv6 ospfRouting Process "ospfv3 1" with ID 10.10.10.1SPF schedule delay 5 secs, Hold time between two SPFs 10 secsMinimum LSA interval 5 secs. Minimum LSA arrival 1 secsLSA group pacing timer 240 secsInterface flood pacing timer 33 msecsRetransmission pacing timer 66 msecsNumber of external LSA 0. Checksum Sum 0x000000Number of areas in this router is 1. 1 normal 0 stub 0 nssaArea BACKBONE(0)Number of interfaces in this area is 1MD5 Authentication, SPI 1000SPF algorithm executed 2 timesNumber of LSA 5. Checksum Sum 0x02A005Number of DCbitless LSA 0Number of indication LSA 0Number of DoNotAge LSA 0Flood list length 0Table 25 describes the significant fields shown in the display.
show ipv6 ospf With Area Encryption Example
The following sample output shows the show ipv6 ospf command with area encryption information:
Router# show ipv6 ospfRouting Process "ospfv3 1" with ID 10.0.0.1It is an area border routerSPF schedule delay 5 secs, Hold time between two SPFs 10 secsMinimum LSA interval 5 secs. Minimum LSA arrival 1 secsLSA group pacing timer 240 secsInterface flood pacing timer 33 msecsRetransmission pacing timer 66 msecsNumber of external LSA 0. Checksum Sum 0x000000Number of areas in this router is 2. 2 normal 0 stub 0 nssaReference bandwidth unit is 100 mbpsArea BACKBONE(0)Number of interfaces in this area is 2SPF algorithm executed 3 timesNumber of LSA 31. Checksum Sum 0x107493Number of DCbitless LSA 0Number of indication LSA 0Number of DoNotAge LSA 20Flood list length 0Area 1Number of interfaces in this area is 2NULL Encryption SHA-1 Auth, SPI 1001SPF algorithm executed 7 timesNumber of LSA 20. Checksum Sum 0x095E6ANumber of DCbitless LSA 0Number of indication LSA 0Number of DoNotAge LSA 0Flood list length 0Table 26 describes the significant fields shown in the display.
show ipv6 ospf interface
To display Open Shortest Path First (OSPF)-related interface information, use the show ipv6 ospf interface command in user EXEC or privileged mode.
show ipv6 ospf [process-id] [area-id] interface [interface-type interface-number] [brief]
Syntax Description
Command Modes
User EXEC
Privileged EXECCommand History
Examples
show ipv6 ospf interface Standard Output Example
The following is sample output from the show ipv6 ospf interface command:
Router# show ipv6 ospf interfaceATM3/0 is up, line protocol is upLink Local Address 2001:0DB1:205:5FFF:FED3:5808, Interface ID 13Area 1, Process ID 1, Instance ID 0, Router ID 172.16.3.3Network Type POINT_TO_POINT, Cost: 1Transmit Delay is 1 sec, State POINT_TO_POINT,Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5Hello due in 00:00:06Index 1/2/2, flood queue length 0Next 0x0(0)/0x0(0)/0x0(0)Last flood scan length is 12, maximum is 12Last flood scan time is 0 msec, maximum is 0 msecNeighbor Count is 1, Adjacent neighbor count is 1Adjacent with neighbor 172.16.4.4Suppress hello for 0 neighbor(s)FastEthernet0/0 is up, line protocol is upLink Local Address 2001:0DB1:205:5FFF:FED3:5808, Interface ID 3Area 1, Process ID 1, Instance ID 0, Router ID 172.16.3.3Network Type BROADCAST, Cost: 1Transmit Delay is 1 sec, State BDR, Priority 1Designated Router (ID) 172.16.6.6, local address 2001:0DB1:205:5FFF:FED3:6408Backup Designated router (ID) 172.16.3.3, local address 2001:0DB1:205:5FFF:FED3:5808Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5Hello due in 00:00:05Index 1/1/1, flood queue length 0Next 0x0(0)/0x0(0)/0x0(0)Last flood scan length is 12, maximum is 12Last flood scan time is 0 msec, maximum is 0 msecNeighbor Count is 1, Adjacent neighbor count is 1Adjacent with neighbor 172.16.6.6 (Designated Router)Suppress hello for 0 neighbor(s)Table 27 describes the significant fields shown in the display.
Cisco IOS Release 12.2(33)SRB Example
The following is sample output of the show ipv6 ospf interface command when the brief keyword is entered.
Router# show ipv6 ospf interface briefInterface PID Area Intf ID Cost State Nbrs F/CVL0 6 0 21 65535 DOWN 0/0Se3/0 6 0 14 64 P2P 0/0Lo1 6 0 20 1 LOOP 0/0Se2/0 6 6 10 62 P2P 0/0Tu0 1000 0 19 11111 DOWN 0/0OSPF with Authentication on the Interface Example
The following is sample output from the show ipv6 ospf interface command with authentication enabled on the interface:
Router# show ipv6 ospf interfaceEthernet0/0 is up, line protocol is upLink Local Address 2001:0DB1:A8BB:CCFF:FE00:6E00, Interface ID 2Area 0, Process ID 1, Instance ID 0, Router ID 10.10.10.1Network Type BROADCAST, Cost:10MD5 Authentication SPI 500, secure socket state UP (errors:0)Transmit Delay is 1 sec, State BDR, Priority 1Designated Router (ID) 10.11.11.1, local address 2001:0DB1:A8BB:CCFF:FE00:6F00Backup Designated router (ID) 10.10.10.1, local address2001:0DB1:A8BB:CCFF:FE00:6E00Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5Hello due in 00:00:01Index 1/1/1, flood queue length 0Next 0x0(0)/0x0(0)/0x0(0)Last flood scan length is 1, maximum is 1Last flood scan time is 0 msec, maximum is 0 msecNeighbor Count is 1, Adjacent neighbor count is 1Adjacent with neighbor 10.11.11.1 (Designated Router)Suppress hello for 0 neighbor(s)OSPF with Null Authentication Example
The following is sample output from the show ipv6 ospf interface command with null authentication configured on the interface:
Router# show ipv6 ospf interfaceEthernet0/0 is up, line protocol is upLink Local Address 2001:0DB1:A8BB:CCFF:FE00:6E00, Interface ID 2Area 0, Process ID 1, Instance ID 0, Router ID 10.10.10.1Network Type BROADCAST, Cost:10Authentication NULLTransmit Delay is 1 sec, State BDR, Priority 1Designated Router (ID) 10.11.11.1, local address 2001:0DB1:A8BB:CCFF:FE00:6F00Backup Designated router (ID) 10.10.10.1, local address2001:0DB1:A8BB:CCFF:FE00:6E00Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5Hello due in 00:00:03Index 1/1/1, flood queue length 0Next 0x0(0)/0x0(0)/0x0(0)Last flood scan length is 1, maximum is 1Last flood scan time is 0 msec, maximum is 0 msecNeighbor Count is 1, Adjacent neighbor count is 1Adjacent with neighbor 10.11.11.1 (Designated Router)Suppress hello for 0 neighbor(s)OSPF with Authentication for the Area Example
The following is sample output from the show ipv6 ospf interface command with authentication configured for the area:
Router# show ipv6 ospf interfaceEthernet0/0 is up, line protocol is upLink Local Address 2001:0DB1:A8BB:CCFF:FE00:6E00, Interface ID 2Area 0, Process ID 1, Instance ID 0, Router ID 10.10.10.1Network Type BROADCAST, Cost:10MD5 Authentication (Area) SPI 1000, secure socket state UP (errors:0)Transmit Delay is 1 sec, State BDR, Priority 1Designated Router (ID) 10.11.11.1, local address 2001:0DB1:A8BB:CCFF:FE00:6F00Backup Designated router (ID) 10.10.10.1, local addressFE80::A8BB:CCFF:FE00:6E00Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5Hello due in 00:00:03Index 1/1/1, flood queue length 0Next 0x0(0)/0x0(0)/0x0(0)Last flood scan length is 1, maximum is 1Last flood scan time is 0 msec, maximum is 0 msecNeighbor Count is 1, Adjacent neighbor count is 1Adjacent with neighbor 10.11.11.1 (Designated Router)Suppress hello for 0 neighbor(s)OSPF with Dynamic Cost Example
The following display shows sample output from the show ipv6 ospf interface command when the OSPF cost dynamic is configured.
Router1# show ipv6 ospf interface serial2/0Serial2/0 is up, line protocol is upLink Local Address 2001:0DB1:A8BB:CCFF:FE00:100, Interface ID 10Area 1, Process ID 1, Instance ID 0, Router ID 172.1.1.1Network Type POINT_TO_MULTIPOINT, Cost: 64 (dynamic), Cost Hysteresis: 200Cost Weights: Throughput 100, Resources 20, Latency 80, L2-factor 100Transmit Delay is 1 sec, State POINT_TO_MULTIPOINT,Timer intervals configured, Hello 30, Dead 120, Wait 120, Retransmit 5Hello due in 00:00:19Index 1/2/3, flood queue length 0Next 0x0(0)/0x0(0)/0x0(0)Last flood scan length is 0, maximum is 0Last flood scan time is 0 msec, maximum is 0 msecNeighbor Count is 0, Adjacent neighbor count is 0Suppress hello for 0 neighbor(s)Related Commands
interface vmi
Creates a virtual multipoint interface (VMI) that can be configured and applied dynamically.
show vmi neighbors
To display information about neighbor connections to the Virtual Multipoint Interface (VMI ), use the show vmi neighbors command in user EXEC mode.
show vmi neighbors [detail] [vmi-interface]
Syntax Description
detail
(Optional) Displays details about the VMI neighbors.
vmi-interface
(Optional) Number of the VMI interface
Command Default
If no arguments are specified, information about all neighbors for all VMI interfaces is displayed.
Command Modes
user EXEC
Command History
12.4(15)XF
This command was introduced.
12.3(15)T
This command was integrated into Cisco IOS Release 12.4(15)T.
Usage Guidelines
If no arguments are specified, information about all neighbors for all VMI interfaces is displayed.
The show vmi neighbors command provides a list of devices that have been dynamically discovered by the connected radio devices in a router-to-radio network, and for which connectivity has been achieved through PPPoE and the radio network.
Examples
The following is sample output from the show vmi neighbors command used to display dynamically created neighbors on a VMI interface.
Router# show vmi neighbors vmi11 vmi1 NeighborsIPV6 IPV4 Transmit ReceiveInterface Address Address Uptime Packets Packetsvmi1 :: 10.3.3.2 00:02:11 0000000008 0000000073Table 28 describes the significant fields shown in the show vmi neighbors command display.
show vmi neighbors command with detail keyword: Example
The following example shows the details about the known VMI neighbors.
Router# show vmi neighbors detail1 vmi1 Neighborsvmi1 IPV6 Address=::IPV4 Address=10.3.3.2, Uptime=00:02:16Output pkts=8, Input pkts=75No Session Metrics have been received for this neighbor.Transport PPPoE, Session ID=79INTERFACE STATS:VMI Interface=vmi1,Input qcount=0, drops=0, Output qcount=0, drops=0V-Access intf=Virtual-Access3,Input qcount=0, drops=0, Output qcount=0, drops=0Physical intf=FastEthernet0/0,Input qcount=0, drops=0, Output qcount=0, drops=0PPPoE Flow Control StatsLocal Credits: 65442 Peer Credits: 65443Credit Grant Threshold: 28000 Max Credits per grant: 65534PADG Seq Num: 133 PADG Timer index: 0PADG last rcvd Seq Num: 133PADG last nonzero Seq Num: 0PADG last nonzero rcvd amount: 0PADG Timers: [0]-1000 [1]-2000 [2]-3000 [3]-4000PADG xmit: 133 rcvd: 133PADC xmit: 133 rcvd: 133PADQ xmit: 0 rcvd: 0
Table 29 describes the significant fields shown in the show vmi neighbors detail command display.
Related Commands
snmp-server enable traps ipmobile
To enable Simple Network Management Protocol (SNMP) security notifications for Mobile IP, use the snmp-server enable traps ipmobile command in global configuration mode. To disable SNMP notifications for Mobile IP, use the no form of this command.
snmp-server enable traps ipmobile
no snmp-server enable traps ipmobile
Syntax Description
This command has no arguments or keywords.
Defaults
SNMP notifications are disabled by default.
Command Modes
Global configuration
Command History
Usage Guidelines
SNMP Mobile IP notifications can be sent as traps or inform requests. This command enables both traps and inform requests. This command enables Mobile IP Authentication Failure notifications. This notification is defined in RFC2006-MIB.my as the mipAuthFailure notification type {mipMIBNotifications 1}. This notification, when enabled, is triggered when there is an authentication failure for the Mobile IP entity during validation of the mobile registration request or reply.
For a complete description of this notification and additional MIB functions, see the RFC2006-MIB.my file, available on Cisco.com at http://www.cisco.com/public/mibs/v2/.
The snmp-server enable traps ipmobile command is used in conjunction with the snmp-server host command. Use the snmp-server host global configuration command to specify which host or hosts receive SNMP notifications. To send SNMP notifications, you must configure at least one snmp-server host command.
Examples
The following example enables the router to send Mobile IP informs to the host at the address myhost.cisco.com using the community string defined as public:
snmp-server enable traps ipmobilesnmp-server host myhost.cisco.com informs version 2c publicRelated Commands
snmp-server host
Specifies the recipient of an SNMP notification operation.
snmp-server trap-source
Specifies the interface from which an SNMP trap should originate.
template tunnel (mobile networks)
To apply a tunnel template to tunnels brought up at the home agent, use the template tunnel command in mobile networks configuration mode. To remove the tunnel template, use the no form of this command.
template tunnel interface-number
no template tunnel interface-number
Syntax Description
Defaults
No default behavior or values
Command Modes
Mobile networks configuration
Command History
Usage Guidelines
This command allows the configuration of multicast on statically created tunnels to be applied to dynamic tunnels brought up on the home agent.
Examples
The following example shows the template tunnel applied at the home agent:
! Tunnel template to be applied to mobile networksinterface tunnel 100ip pim sparse-mode!! Select tunnel template to apply during registratonip mobile mobile-networks 10.1.0.1template tunnel 100Related Commands
template tunnel (mobile router)
Applies a tunnel template to tunnels brought up at the mobile router.
template tunnel (mobile router)
To apply a tunnel template to tunnels brought up at the mobile router, use the template tunnel command in mobile router configuration mode. To remove the tunnel template, use the no form of this command.
template tunnel interface-number
no template tunnel interface-number
Syntax Description
Defaults
No default behavior or values
Command Modes
Mobile router configuration
Command History
Usage Guidelines
This command allows the configuration of multicast on statically created tunnels to be applied to dynamic tunnels brought up on the mobile router.
Examples
The following example shows the template tunnel applied at the mobile router:
! Tunnel template to be applied to mobile networksinterface tunnel100ip pim sparse-mode!! Select tunnel template to apply during registrationip mobile routertemplate tunnel100Related Commands
template tunnel (mobile networks)
Applies a tunnel template to tunnels brought up at the home agent.
tunnel mode gre
To set the global encapsulation mode on all roaming interfaces of a mobile router to generic routing encapsulation (GRE), use the tunnel mode gre command in mobile router configuration mode. To restore the global default encapsulation mode, use the no form of this command.
tunnel mode gre
no tunnel mode gre
Syntax Description
This command has no arguments or keywords.
Defaults
The default encapsulation mode for Mobile IP is IP-in-IP encapsulation.
Command Modes
Mobile router configuration
Command History
Usage Guidelines
If the tunnel mode gre command is configured, the mobile router will try to register with the foreign agent (FA) with the G bit set if the FA advertises GRE. If the registration request is successful, packets will be routed using GRE.
If the tunnel mode gre command is enabled and collocated care-of address (CCoA) is configured, the mobile router will try to register with the home agent (HA) with the G bit set. If the registration request is successful, packets will be routed using GRE.
If the mobile router receives a denied registration reply with error code 72 (foreign agent required encapsulation unavailable) or error code 139 (home agent unsupported encapsulation), the mobile router will send another registration request with the G bit unset and IP-in-IP encapsulation will be used.
The no tunnel mode gre command instructs the mobile router to revert to the default and register with IP-in-IP encapsulation.
Note
If an encapsulation type is configured on an interface using the ip mobile router-service tunnel mode command, that encapsulation type overrides the global encapsulation type configured with the tunnel mode gre command on that interface only. If there is no interface-level configuration, the interface inherits the global configuration.
Once GRE encapsulation is enabled, GRE keepalives can be configured using the keepalive command. GRE keepalives check for a failure in the end-to-end tunnel at a configurable interval. If the connection to the HA is lost, reregistration will be attempted.
Examples
The following example globally configures GRE encapsulation on a mobile router and enables GRE keepalive messages:
router mobile!ip mobile secure home-agent 10.40.40.1 spi 101 key hex 12345678123456781234567812345678 algorithm md5 mode prefix-suffixip mobile routeraddress 10.80.80.1 255.255.255.0home-agent 10.40.40.1mobile-network Ethernet1/3mobile-network FastEthernet0/0template Tunnel 121tunnel mode gre!interface tunnel 121keepalive 5 3Related Commands
