Skip to content
AsterNOS
Ask AI

User Binding Rule Configuration

show user-bind counter

Section titled “show user-bind counter”

[Command] show user-bind counter [ interface_name ] clear user-bind counter

[Purpose] Show packet loss statistics for packets inspection function

[View] System view

[Notes] Statistics of packets dropped due to unhit table entries after enabling IPSG/IPSGv6/ARP detection/SAVI function.

[Use Cases]

sonic# show user-bind counter
Interface   Drop Packets
----------- --------------
Vlan400          0

show user-bind rule

Section titled “show user-bind rule”

[Command] show user-bind rule

[Purpose] View static binding table information

[View] System view

[Use Cases]

sonic# show user-bind rule
VLAN     MAC               IP        Interface
------- ----------------- --------- -----------
Vlan100  00:11:22:33:11:11 10.1.1.10 Ethernet1

show user-bind config

Section titled “show user-bind config”

[Command] show user-bind config

[Purpose] Display packet inspection function alarms and alarm threshold related configuration

[View] System view

[Use Cases]

sonic# show user-bind config
+------------+--------+-------------------+
| Interface  | Alarm  | Alarm threshold   |
+============+========+===================+
| Vlan400    | true   | 100               |
+------------+--------+-------------------+

user-bind rule

Section titled “user-bind rule”

[Command] user-bind rule { A.B.C.D | A::B } nn:nn:nn:nn:nn:nn { interface_id } { vlan_id } no user-bind rule { A.B.C.D | A::B } nn:nn:nn:nn:nn:nn { interface_id } { vlan_id }

[Purpose] Configure static binding tables

[Parameter]

ParameterDescription
A.B.C.D | A::B<A::B>
nn:nn:nn:nn:nn:nnMAC address
interface_idInterface id
vlan_idVLAN ID

[View] System configuration view

[User Scenario] For terminals with statically configured IP address, snooping table entries cannot be generated, and all packets are discarded when the packet inspection function is enabled. In order not to affect the online operation of such terminals, user need to use this command to configure the static binding table.

[Use Cases]

sonic(config)# user-bind rule 10.1.1.10 00:11:22:33:11:11 1 800

user-bind alarm enable

Section titled “user-bind alarm enable”

[Command] user-bind alarm enable no user-bind alarm enable

[Purpose] Enable the packet inspection alarm function

[View] Interface view,VLAN view

[User Scenario] When this feature is enabled, when the packets discarded on the device due to the packet inspection function exceed the alarm threshold, a log is recorded. By default, the alarm threshold is 100.

[Use Cases]

sonic(config)# interface ethernet 1
sonic(config-if-1)# user-bind alarm enable

user-bind alarm threshold

Section titled “user-bind alarm threshold”

[Command] user-bind alarm threshold

[Purpose] Configure the alarm threshold for the packet inspection function

[View] Interface view,VLAN view

[User Scenario] When this feature is enabled, when the packets discarded on the device due to the packet inspection function exceed the alarm threshold, a log is recorded. By default, the alarm threshold is 100.

[Use Cases]

sonic(config)# interface ethernet 1
sonic(config-if-1)# user-bind alarm threshold 200