- Written by Tarun Jaswanth LNU
- Posted on August 24, 2020
- Updated on October 17, 2024
- 26831 Views
802.1X is an IEEE standard protocol that prevents unauthorized devices from gaining access to the network.
- Written by Trevor Mendez
- Posted on December 20, 2021
- Updated on February 5, 2022
- 8854 Views
ACL based traffic management often requires matching packets’ destination addresses against one or more sets of
- Written by Jason Shamberger
- Posted on April 20, 2020
- Updated on February 19, 2024
- 11118 Views
RPKI provides a mechanism to validate the originating AS of an advertised prefix.
- Written by Shalini Kaleeswaran
- Posted on December 27, 2021
- Updated on July 19, 2023
- 9481 Views
ZeroTouch Provisioning (ZTP) is used to configure a switch without user intervention. Campus ZTP extends the
- Written by Travis Hammond
- Posted on December 29, 2021
- Updated on December 29, 2021
- 8295 Views
TCAM features matching on the same packet type and executing the same action are implicitly prioritized if both are
- Written by Terence Hui
- Posted on December 16, 2021
- Updated on June 9, 2023
- 7514 Views
Source port filtering is enabled by default to prevent traffic from egressing out the same interface it ingressed on.
- Written by Mike Nelson
- Posted on October 20, 2021
- Updated on December 20, 2021
- 8343 Views
Tagging traffic with a drop precedence is a method that can be used to differentiate traffic flows over a given
- Written by Praveen Kumar Yadav
- Posted on December 16, 2021
- Updated on December 16, 2021
- 6715 Views
This feature allows the user to have a custom DSCP To TC map per subInterface. By default,
- Written by Andrew Li
- Posted on November 9, 2020
- Updated on December 23, 2021
- 8597 Views
Normally the ingress router in the following diagram has no control over an autonomous system border router’s
- Written by Vamsi Anne
- Posted on December 29, 2021
- Updated on December 20, 2024
- 10629 Views
As Ethernet technologies made their way into the Metropolitan Area Networks (MAN) and the Wide Area Networks (WAN), from the conventional enterprise level usage, they are now widely being used by service providers to provide end-to-end connectivity to customers. Such service provider networks are typically spread across large geographical areas. Additionally, the service providers themselves may be relying on certain internet backbone providers, referred to as “operators”, to provide connectivity in case the geographical area to be covered is too huge. This mode of operation makes the task of Operations, Administration and Maintenance (OAM) of such networks to be far more challenging, and the ability of service providers to respond to such network faults swiftly directly impacts their competitiveness.
- Written by Aaron Bamberger
- Posted on April 23, 2020
- Updated on November 7, 2024
- 10380 Views
E-Tree is an L2 EVPN service (defined in RFC8317) in which each attachment circuit (AC) is assigned the role of Root or Leaf. Once roles are assigned, the following forwarding rules are enforced:
- Written by Arpit Bansal
- Posted on January 6, 2023
- Updated on January 6, 2023
- 5548 Views
For MPLS forwarded traffic the tunnel destination needs to know the address-family of the payload IP/IPv6 packet to correctly parse the header. On some platforms this address-family is deduced from the address family of the Bottom of stack( BOS ) MPLS label seen by the router or by relying on the Ether Type in the Ethernet header.
- Written by Edwin Tambi
- Posted on August 19, 2020
- Updated on July 3, 2024
- 20762 Views
EOS supports the ability to match on a single VLAN tag (example: encapsulation dot1q vlan 10) or a VLAN tag pair (example: encapsulation dot1q vlan 10 inner 20) to map matching packets to an interface. In this case, the encapsulation string is considered consumed by the mapped interface before forwarding, which means that the tags are effectively removed from the incoming packet for the purposes of any downstream forwarding.
- Written by Matthew Carrington-Fair
- Posted on October 20, 2021
- Updated on December 30, 2021
- 7424 Views
Prior to EOS 4.27.0F, MPLS tunnel egress counters could only be enabled for all MPLS tunnels present in the system
- Written by Prajul Sreedharan
- Posted on January 22, 2019
- Updated on November 7, 2024
- 8816 Views
This feature introduces the support for IPv4 ACL configuration under GRE and IPsec tunnel interfaces and IPv6 ACL configuration under GRE tunnel interfaces. The configured ACL rules are applied to a tunnel terminated GRE packet i.e. any IPv4/v6-over-GRE-over-IPv4 that is decapsulated by the GRE tunnel-interface on which the ACL is applied, or a packet terminated on IPsec tunnel i.e, IPv4-over-ESP-over-encrypted-IPv4 packet that is decapsulated and decrypted by the IPsec tunnel interface on which the ACL is applied.
- Written by Aman Aman-Ul-Haq
- Posted on March 9, 2021
- Updated on December 1, 2023
- 11517 Views
The Segment security feature provides the convenience of applying policies on segments rather than interfaces or subnets. Hosts/networks are classified into segments based on prefixes. Grouping prefixes into segments allows for definition of policies that govern flow of traffic between segments.
- Written by Padmanabh Ratnakar
- Posted on October 7, 2021
- Updated on October 14, 2024
- 12789 Views
For network monitoring and troubleshooting flow related issues, it is desirable to know the path, latency, queue and congestion information for flows at different times. The inband telemetry feature(INT), based on Inband Flow Analyzer RFC draft -IFA 2.0 and IFA 1.0(on some platforms) , is used to gather per flow telemetry information like path, per hop latency and congestion. INT is supported for both IPv4 and IPv6 traffic.
- Written by Richard Goh
- Posted on August 16, 2018
- Updated on December 30, 2021
- 8187 Views
IPv6 multicast routing protocols are used to distribute IPv6 datagrams to one or more recipients. IPv6 PIM builds and
- Written by Priyesh Vakayil Palakandy
- Posted on December 20, 2021
- Updated on December 20, 2021
- 7596 Views
Enterprise networks span sites such as Public Cloud, Data Centers, Branches, Head Quarters. These sites are
- Written by Jyothish Kunkumath
- Posted on January 6, 2022
- Updated on December 2, 2024
- 11911 Views
IPSec tunnel mode support allows the customer to encrypt traffic transiting between two tunnel endpoints.
- Written by Jian Zhen
- Posted on December 18, 2019
- Updated on December 27, 2021
- 8171 Views
The document describes an extension of the decap group feature, that allows IPv6 addresses to be configured and used
- Written by Marc Laprade
- Posted on November 3, 2021
- Updated on June 13, 2023
- 10495 Views
This feature will allow the user to select whether port mirror destinations of type GRE tunnel include the optional “key” field in the GRE header on certain platforms. The key field allows the user to uniquely identify a particular packet flow. The feature also allows the user to specify the value of the 32 bit key field.
- Written by Andrew Li
- Posted on November 11, 2021
- Updated on December 28, 2021
- 8017 Views
Egress Peer Engineering (EPE) using BGP LU enables traffic engineering of the links between Autonomous Systems
- Written by Shyam Kota
- Posted on November 6, 2019
- Updated on November 7, 2024
- 8975 Views
This feature allows setting the desired maximum VOQ latency. Drop probabilities are adjusted in hardware to meet this limit.
- Written by John Clarke
- Posted on December 20, 2021
- Updated on October 9, 2024
- 11497 Views
Arista's 7130 Connect Series of Layer 1+ switches are powerful network devices designed for ultra low latency and offer a wealth of integrated management features and functionalities.
- Written by Alejandro Schwoykoski
- Posted on December 22, 2021
- Updated on November 14, 2024
- 11944 Views
MetaMux is an FPGA-based feature available on Arista’s 7130 platforms. It performs ultra-low latency Ethernet packet multiplexing with or without packet contention queuing. The port to port latency is a function of the selected MetaMux profile, front panel ingress port, front panel egress port, FPGA connector ingress port, and platform being used.
- Written by David Mirabito
- Posted on December 30, 2021
- Updated on December 12, 2024
- 15994 Views
MetaWatch is an FPGA-based feature available for Arista 7130 Series platforms. It provides precise timestamping of packets, aggregation and deep buffering for Ethernet links. Timestamp information and other metadata such as device and port identifiers are appended to the end of the packet as a trailer.
- Written by Sandeep Betha
- Posted on December 18, 2019
- Updated on December 16, 2021
- 8288 Views
MLDv2 Snooping optimizes the transmission of multicast packets in Layer 2 by using Layer 3 information contained in
- Written by Bhavin Patel
- Posted on January 17, 2022
- Updated on January 17, 2022
- 7173 Views
Arista EOS currently supports a maximum 6 labels push on R2 and R3 series platforms. This feature increases maximum
- Written by Binoshmon T B
- Posted on July 22, 2020
- Updated on June 27, 2022
- 12316 Views
The TCP MSS clamping feature involves clamping the maximum segment size (MSS) in the TCP header of TCP SYN packets if it exceeds the configured MSS ceiling limit for the interface. Clamping MSS value helps in avoiding IP fragmentation in tunnel scenarios by ensuring that MSS is small enough to accommodate the extra overhead of GRE and tunnel outer IP headers.
- Written by Thejesh Panchappa
- Posted on December 30, 2021
- Updated on December 30, 2021
- 8015 Views
Macro Segmentation Service with Layer 3 firewall (MSS FW) provides a mechanism to offload policy enforcement on TORs
- Written by Jeffrey Nelson
- Posted on June 21, 2021
- Updated on December 20, 2024
- 39089 Views
This feature provides the ability to interconnect EVPN VXLAN domains. Domains may or may not be within the same data center network, and the decision to stretch/interconnect a subnet between domains is configurable. The following diagram shows a multi-domain deployment using symmetric IRB. Note that two domains are shown for simplicity, but this solution supports any number of domains.
- Written by Swati Patel
- Posted on October 27, 2021
- Updated on September 4, 2024
- 18464 Views
[L2 EVPN] and [Multicast EVPN IRB] solutions allow for the delivery of customer BUM (Broadcast, Unknown unicast and Multicast) traffic in a L2VPN and L3VPNs respectively using multicast in the underlay network.
- Written by Shyam Kota
- Posted on June 21, 2021
- Updated on December 15, 2021
- 7675 Views
The per port scheduler compensation feature is used to make adjustments to the packet size seen by the scheduler for
- Written by Sandeep Betha
- Posted on January 31, 2022
- Updated on September 25, 2024
- 12178 Views
PIM External Gateways (PEGs) allow an EVPN overlay multicast network to interface with an external PIM domain. They can be used to interconnect two data centers using an external PIM domain in between them.
- Written by Saravanan Balasubramanian
- Posted on May 17, 2018
- Updated on December 30, 2021
- 6777 Views
This document describes how PIM non stop forwarding (NSF) works and its limitations. PIM supports non stop
- Written by Ethan Vadai
- Posted on March 6, 2020
- Updated on March 14, 2024
- 17519 Views
Policy-based routing (PBR) is a feature that is applied on routable ports, to preferentially route packets. Forwarding is based on a policy that is enforced at the ingress of the applied interface and overrides normal routing decisions. In addition to matches on regular ACLs, PBR policy-maps can also include “raw match” statements that look like a single entry of an ACL as a convenience for users.
- Written by Padmanabh Ratnakar
- Posted on April 20, 2021
- Updated on July 15, 2024
- 13954 Views
The postcard telemetry (GreenT - GRE Encapsulated Telemetry) feature is used to gather per flow telemetry information like path and per hop latency. For network monitoring and troubleshooting flow related issues, it is desirable to know the path, latency and congestion information for flows at different times.
- Written by Sameer Pakalapati
- Posted on December 17, 2021
- Updated on December 17, 2021
- 6213 Views
This feature enables a 7170 using the stateless load balancer profile to act as a proxy for pings to VIPs (virtual IPs)
- Written by Paul Miiller
- Posted on December 15, 2021
- Updated on December 15, 2021
- 6829 Views
This feature adds a new CLI command which can be used to clear RSVP sessions. Clearing a session will remove the current
- Written by Tanuj Kumar Jhamb
- Posted on December 16, 2021
- Updated on September 2, 2022
- 8339 Views
This feature allows the user to configure upto 1023 unique QoS Policy-maps per chip.
- Written by Basil Saji
- Posted on January 17, 2022
- Updated on January 17, 2022
- 9559 Views
VXLAN UDP ESP support allows the customer to encrypt traffic between two VXLAN VTEPs. The frame
- Written by Dragos Maftei
- Posted on December 16, 2021
- Updated on December 16, 2021
- 7163 Views
This feature adds RSVP information for three tables from MPLS TE STD MIB:. mplsTunnelTable.
- Written by Shyam Kota
- Posted on June 13, 2019
- Updated on December 30, 2021
- 7461 Views
This feature modifies the display format of “show interface Tunnel <num> counters” on hardware
- Written by Navjot Singh Sandhu
- Posted on April 6, 2021
- Updated on December 17, 2021
- 6469 Views
This feature enables ACL functionality on subinterfaces. Release. Update. 4.17.0F . Support for
- Written by Josh Pfosi
- Posted on June 11, 2019
- Updated on December 18, 2024
- 12471 Views
This feature adds support for CPU traffic policy capable of matching and acting on IP traffic which would otherwise
- Written by Christopher Brown
- Posted on December 30, 2021
- Updated on December 30, 2021
- 6365 Views
ARP is a protocol that resolves an IPv4 neighbor address to a MAC address while IPv6 Neighbor Discovery is similar
- Written by Yin Chen
- Posted on December 17, 2021
- Updated on May 5, 2022
- 7213 Views
This article describes the usage of the ptp free-running source clock command, which selects a time source used by a switch running the Precision Time Protocol (PTP) while it is in a free-running state.
- Written by Gaofeng Yue
- Posted on December 20, 2021
- Updated on September 7, 2022
- 7999 Views
Currently EOS supports redistribution into BGP at the global (instance) level. Also EOS supports redistribution in
- Written by Muhammad Yousuf
- Posted on September 9, 2021
- Updated on February 27, 2024
- 9186 Views
This TOI supplements the Ingress Traffic Policy applied on ingress interfaces. Please refer to that document for a description of Traffic Policies and field-sets. This TOI explains the Traffic Policies as applied in the egress direction on interfaces