Diagnostic Commands and Tools

The show commands are very useful in troubleshooting issues on the switch side. You use different commands to accomplish the same task on CatOS and Native IOS. Some commands are common in both modes. All the show commands in different modes are explained as follows.

show Commands in Both Modes

Following is the list of common switch commands available on both CatOS and Native IOS for getting different statistical and configuration information on the switch:

• show module Provides information on whether the module is up and functioning correctly.

• show version Provides the version of CatOS or the Native IOS running on the switch.

show Commands in CatOS

Following is a list of commands specific to CatOS that are used to obtain specific details about the port and other relevant information on the switch for the IDSM-2 blade:

• show port module_number Shows the ports of a specific module and provides the statistics of the ports. Also verifies which VLAN the port of the module belongs to.

• show trunk When you use the show trunk command without specifying a module or port number, the command displays only the actively trunking ports. This command is useful to find out if the trunk is working properly for span ports (slot/7 and slot/8) of IDSM-2 blade.

• show span [all] This command displays information about the current SPAN configuration. To see both local and remote SPAN configuration information, use this command with the all argument. Use this command to determine if SPAN is configured correctly on the switch for IDSM-2 blade.

• show security acl Use this command to display the contents of the VACL that are currently configured or that are last committed to nonvolatile random-access memory (NVRAM) and hardware.

• show test module_number Shows the test result of a module. The output of this command verifies the test results and checks for software corruption on the IDSM-2 module.

show Commands in Native IOS

Following is a list of commands available on the Native IOS that are used to obtain different stats and configuration information on the switch pertaining to IDSM-2 blade:

• show intrusion-detection module module_number management-port {state|traffic} Use this command to obtain the statistics of the command and control port for the IDSM-2 blade on the switch.

• show intrusion-detection module module_number data-port {1|2} {state|traffic} Use this command to obtain the statistics of the data-ports of the IDSM-2 blade on the switch.

• show monitor session Use this command to display information about the Encapsulated Remote SPAN (ERSPAN), SPAN, and RSPAN sessions on the switch.

• show vlan access-map [map-name] To display the contents of a VLAN-access map, use the show vlan access-map command. Use this command to verify the VACL configuration for the IDSM-2 blade.

• show vlan filter To display information about the VLAN filter, use the show vlan filter command. This is useful to verify the VACL configuration on the switch for the IDSM-2 blade.