The Multi-Vendor Networking Forum and Resources
Brocade NetIron Configuration Tips

Here you will find some basic configuration for the Brocade NetIron switches. Commands may be different within the NetIron family, so some may not work on your specific switch. If you find this to be true, please let me know so I can update this page. If you find other useful information that I may have missed, please let me know. Keep in mind that these setting may not meet your companies security or technical goals.  **Always read the configuration guide to make sure the configuration you are using does everything you want it to do**

For more information on Brocade switches, please click here to look through my furum

Here are some configuration suggestions.

Global configuration

  default-max-frame-size 9216                             - Enables Jumbo frames

  no route-only                                                        - Enables Layer 2 Switching, Switch is layer 3 only be default

  system-max vlan 4095                                         - Sets the maximum number of VLANS that can be configured

  system-max rstp 128                                            - Sets the maximum number of RSTP instances

  system-max virtual-interface 4095                    - Sets the maximum number of VE interfaces

  system-max trunk-num 256                                - Sets the maximum number of trunks on the switch

  enable-acl-counter                                               - Enable counters on ACL’s

  enable-qos-statistics                                            - Enable QOS statistics

**system-max virtual-interface 409 Allows you to have all of your VE's the same number as your VLAN. If you don't do this, then your VE number may not match up with your VLAN number. This would be confusing.

Create and apply a VLAN to a port

  vlan <#> name <VLAN-Name>

        tagged eth <slot/port>                                - Tags the VLAN out specified interface

                untagged eth <slot/port>                   - Applies the vlan to an access port

        rstp  - Configured Rapid Spanning Tree on NetIron Switches (If you do NOT add this, this router   will not partisipate in spanning tree for this VLAN)


Configure a Trunk

   lag “<NAME>" dynamic id <Unique #>                   - Name the LAG, Dynamic = LACP, Static = Etherchannel

   ports ethernet 5/1 ethernet 6/1                             - Identify ports in LAG

   primary-port 5/1  - Identify Primary Port

   deploy                                                                          - Applies the config to the switch

   port-name "PORT DESCRIPTION" ethernet 5/1  - Configure description on a port

   port-name "PORT DESCRIPTION" ethernet 6/1  - Configure description on a port

Configure UDLD on Optical links connecting to other switches

   link-keepalive eth <slot/port>                                -  Enables UDLD on the specified port
(Must be configured on the neighboring switch port to work)

Configure port description on a Brocade NetIron

  port-name <Description>                                          - Label a port with a description

VRRP-Extended Configuration on a Brocade NetIron

  router vrrp-extended                                                   - Enables VRRP-E at a global level

  interface ve <VLAN> 

  ip vrrp-extended vrid <Unique Number>                 - enable the VRRP instance, use same vrid on both switches

    backup priority <Number>                                        - define backup’s prefer ability to become master

    ip-address                                              - virtual IP address

    advertise backup                                                        - Tells other VRRP-E routers that it’s available

    track-port ethernet 3/1 priority 51                         - Tracks port 3/1 and drops the priority by 51

    short-path-forwarding                                              - Forces traffic to use the shortest path, must have when using MCT

    version v3                                                                   - Specify version, default is 2

    activate                                                                       - Activates vrrp-e on this ve interface

Configuring OSPF on a Brocade NetIron

  router ospf                                                                   - Enables OSPF

   area 0                                                                          - Enables area 0

  bfd all-interfaces                                                        - Enables Bidirectional Forwarding Detection (Maintains neighbors when MP   fails over)

  auto-cost reference-bandwidth 10000                  - Sets the reference bandwith based off of 10Gig

  graceful-restart                                                          - Does not drop neighbors when management module fails over to the standby module

  log adjacency                                                             - Logs OSPF Neighbor adjacency changes

  log retransmit                                                            - Logs OSPF retransmits

** This is only a base config, there are many more options for OSPF!!!

Add a network to OSPF on a Brocade NetIron
 interface ve <#>                                                         - Interface that you want added to OSPF
    ip ospf area 0                                                           - Tells the interface what area to be in, this example is area Zero

Configure Spanning Tree on Brocade NetIron  (Enable spanning tree under the VLAN)

  Interface ethernet <slot/port>

  rstp admin-pt2pt-mac                                                - Ports that connect to other switches

  rstp admin-edge-port                                                 - Ports that connect to end users

  (Rapid spanning tree will not work correctly with out these commands, it will default to 802.1d on an interface with out these commands)

Example on how to configure QOS on a Brocade NetIron MLXe

Global Config

Configure Random Early Detection to prevent Tail Drop.
qos queue-type 0 wred enable                                 - Enables WRED on Queue 0 
qos queue-type 1 wred enable                                        - Enables WRED on Queue 1
qos queue-type 2 wred enable                                         - Enables WRED on Queue 2
qos queue-type 3 wred enable                                         - Enables WRED on Queue 3
qos queue-type 4 wred enable                                         - Enables WRED on Queue 4
qos queue-type 4 wred averaging-weight 3                   - Set weight of Queue 4 to 3

  (does not drop packets as early as queue’s 0-3)

enable-qos-statistics  - Enables qos statistics
qos-tos map cos-dscp 0 8 16 24 32 46 48 56                  - Sets cos-dscp mapping
qos-tos map ip-prec-dscp 0 8 16 24 32 46 48 56           - Sets cos-IP Precedence mapping

   *** You need to figure out what weight you need your queue's. The higher the weight the longer the queue waits to start dropping packets.

I Found that Brocade has different configurations for DSCP Marking based on the version of code, either Layer 2 or Layer 3 code. This solution is based off of the Layer 3 code on the MLX.
Trust DSCP on uplink ports
Qos dscp force  - Trusts DSCP markings, use on uplinks
Apply marking ACL to router interface (VE)      - Apply marking to the VE, not the interface
interface ve 2  - VE # for VLAN

  ip access-group ve-traffic                          - Allows inter-vlan packets to be marked

             ip access-group 101 in                               - ACL classifies and marks packets

Creat your DSCP marking Access List

ip access-list extended 101
permit udp range 16384  32767 dscp-marking <#>
permit ip any any dscp-marking 0

***You need to build out your ACL to fit the needs of your business. This example only shows you how to write the ACL and to apply it.

There are more configuration examples on Scapes's forum. Please take and if you have something to add to it, please do so.