- Written by Ajay Chhatwal
- Posted on May 15, 2020
- Updated on May 16, 2025
- 10308 Views
L2 protocol packets - LLDP, LACP and STP are trapped to the CPU by default. This feature allows for disabling the per protocol trap on a given set of interfaces.
- Written by Mihyar Baroudi
- Posted on December 8, 2015
- Updated on December 21, 2015
- 8206 Views
In our current implementation, on a switch with default startup config or no config, all ports come up in access
- Written by Sarah Chen
- Posted on October 17, 2024
- Updated on October 17, 2024
- 2710 Views
This feature is used to connect a Layer 3 EVPN VXLAN network to an Adaptive Virtual Topology (AVT) WAN network using dynamic path selection (DPS) tunnels. One or a pair of WAN routers are configured to serve as the VXLAN gateway. On the control plane, the configured VXLAN gateway handles EVPN IP-PREFIX route exchanges between the VXLAN network and the WAN network. On the data plane, the configured VXLAN gateway decapsulates the VXLAN packets received from the VXLAN network and encapsulates them into the DPS tunnels and sends them to the AVT WAN network.
- Written by Isidor Kouvelas
- Posted on December 22, 2017
- Updated on December 9, 2020
- 10364 Views
This feature is available when configuring BGP in the multi agent routing protocol model. Ethernet
- Written by Lavanya Conjeevaram
- Posted on June 29, 2016
- Updated on April 25, 2018
- 9122 Views
L3 interface ingress counters can be used to count routable traffic coming into the box on sub interfaces and vlan
- Written by Jayden Navarro
- Posted on February 8, 2017
- Updated on February 15, 2017
- 8079 Views
LACP on Loopback Interfaces allows for Active Port Channels on one or more interfaces whose link endpoints terminate
- Written by Jayden Navarro
- Posted on February 8, 2017
- Updated on February 9, 2017
- 9083 Views
LACP State Transition Event Monitoring on Arista switches allows for quick and filterable viewing of LACP state
- Written by Nathan Wolfe
- Posted on February 15, 2018
- Updated on April 9, 2025
- 14641 Views
Introduced in EOS-4.20.1F, “selectable hashing fields” feature controls whether a certain header’s field is used in the hash calculation for LAG and ECMP.
- Written by Mihyar Baroudi
- Posted on February 1, 2016
- Updated on February 2, 2016
- 9264 Views
LAGs are allocated hardware resources on transition from one member (software LAG) to two members (hardware LAG) and
- Written by Yuta Higuchi
- Posted on April 23, 2025
- Updated on April 23, 2025
- 604 Views
This document addresses LAG hashing improvements across different platforms. In DANZ Monitoring Fabric (DMF) 8.7, the Controller applies the default hash configuration if no hash fields are configured or the configuration contains an error. If the Controller detects any hash error, DMF reports it as a fabric error.
- Written by Piotr Nowakowski
- Posted on December 20, 2024
- Updated on December 20, 2024
- 1671 Views
Switches can now use two LAG partitions (A and B) to support double the number of available Port Channels dictated by the chosen LAG mode. This is useful if the selected LAG mode does not allow the creation of the desired number of Port Channels on a single partition.
- Written by Greg Poloczek
- Posted on September 11, 2017
- Updated on September 11, 2017
- 9090 Views
Arista switches use the hashing algorithm to load balance traffic among LAG (Link Aggregation Group) members
- Written by Stefan Rebaud
- Posted on March 31, 2017
- Updated on January 11, 2022
- 8798 Views
This document describes the current status of LANZ on DCS 7500R, DCS 7280R and DCS 7020R, for both polling and
- Written by Pinky Agrawal
- Posted on November 22, 2017
- Updated on December 22, 2017
- 7898 Views
LANZ on 7160S 32CQ, 7160 48YC6 and 7160 48TC6 adds support for monitoring congestion on front panel ports with Start,
- Written by Andrei Dvornic
- Posted on April 2, 2015
- Updated on February 8, 2024
- 14392 Views
Loop protection is a loop detection and prevention method which is independent of Spanning Tree Protocol (STP) and is not disabled when the switch is in switchport backup mode or port is in discarding state. The LoopProtect agent has a method to detect loops and take action based on the configuration by the user. In order to find loops in the system, a loop detection frame is sent out periodically on each interface that loop protection is enabled on. The frame carries broadcast destination MAC address, bridge MAC source address, OUI Extended EtherType 0x88b7 as well as information to specify the origins of the packet.
- Written by Navneet Sinha
- Posted on June 29, 2016
- Updated on April 17, 2025
- 9931 Views
The Label Distribution Protocol (LDP) is a protocol in the Multiprotocol Label Switching (MPLS) context that allows label switch routers (LSRs) to exchange label mapping information. It is a distributed protocol without a central controller. Instead, each LSR generates local label mappings for Forward Equivalence Classes (FECs) and propagates this information to adjacent LSRs which it maintains LDP sessions with.
- Written by Xin Guang (Tony) Du
- Posted on August 25, 2016
- Updated on November 23, 2020
- 12771 Views
The LDP pseudowire feature provides support for emulating Ethernet connections over a Multiprotocol Label
- Written by Pedro Coutinho
- Posted on December 22, 2020
- Updated on April 30, 2025
- 13749 Views
The LDP pseudowire feature provides support for emulating Ethernet connections over a Multiprotocol Label Switching (MPLS) network using the extension of the MPLS Label Distribution Protocol (LDP)
- Written by Peter Lam
- Posted on September 30, 2015
- Updated on January 2, 2025
- 15564 Views
Leaf Smart System Upgrade (SSU) provides the ability to upgrade the EOS image with minimal traffic disruption.Note: It is possible that SSU shutdown and bootup are not supported in the same image. If a product has shutdown support in image A and bootup support in a later image B, then SSU upgrade cannot be performed from image A to any images earlier than image B, including image A itself. However, upgrading from image A to image B onwards is allowed.
- Written by Girish Dasari
- Posted on April 30, 2025
- Updated on April 30, 2025
- 622 Views
At a transit router when multiple LSP are available for a given destination from different protocols EOS does stitching based on hard coded preferences. LFIB stitching preferences give a provision to stitch together different LSPs based on configurable preferences. For each protocol(destination) preference can be configured for a given source protocol.
- Written by Michael Chin
- Posted on February 22, 2021
- Updated on December 20, 2024
- 10238 Views
Line system commands are used to apply configuration and query the status of line system modules in EOS. The supported line system modules are the OSFP-AMP-ZR and the QSFP-AMP-ZR.
- Written by Sahil Midha
- Posted on December 22, 2017
- Updated on February 6, 2022
- 11428 Views
Link Fault Signalling (LFS) is a mechanism by which remote link faults are asserted over a link experiencing
- Written by Deepak Sebastian
- Posted on March 21, 2025
- Updated on March 21, 2025
- 893 Views
This feature adds support for Layer1-only front panel Ethernet ports on 7130 devices (containing a layer1 crosspoint chip) to participate in LLDP. As of 4.33.1F only internal Switch interfaces on ASICs/FPGAs participate in the LLDP protocol. The neighbor also only sees these internal ports from the switch. Customers who really care about/rely on LLDP information of the front panel Ethernet ports, especially for making cabling changes, would need to translate the internal interface to the appropriate Ethernet port using the show l1 path output.
- Written by Dhruba Jyoti Pokhrel
- Posted on July 16, 2024
- Updated on July 16, 2024
- 2898 Views
Local Authentication (also known as authentication survivability) is the ability of access points (AP) to authenticate and onboard clients to the network using root CA certificates through the integrated EAP server of the AP. Use Local Authentication when the RADIUS servers are not reachable to authenticate the clients. It is typically a temporary authentication mechanism; avoid using it as a primary authentication. If there are certificate chains, you must upload the root CA certificate along with the certificate chain.
- Written by Kewei Shi
- Posted on November 4, 2020
- Updated on May 21, 2025
- 11446 Views
Logical ports are hardware resources that are required to activate interfaces.
- Written by Prachi Modi
- Posted on February 20, 2023
- Updated on February 20, 2023
- 5968 Views
With the 14.0 release, CloudVision Cognitive Unified Edge (CV-CUE) removes the Wireless Manager(WM) UI dependency for login and for applying the service license. You will no longer be redirected to WM and can now directly login to CV-CUE from the UI.
- Written by Nikos Kokkalis
- Posted on December 27, 2024
- Updated on December 27, 2024
- 1934 Views
The low latency tx-queue scheduler profile feature aims to provide an alternative operating mode for the queue that is fine-tuned for reduced latency. This involves a tradeoff between achieving lower latency and being able to sustain full throughput over a large number of flows.
- Written by Sidak Aneja
- Posted on April 30, 2025
- Updated on April 30, 2025
- 542 Views
This TOI introduces a new global CLI configuration command to transition CMIS compliant transceivers to the low-power mode when all interfaces associated with the transceiver are shut down. Conversely, the transceivers will transition into high power mode when any interface associated with the transceiver is enabled.
- Written by Vikas Hegde
- Posted on June 29, 2016
- Updated on February 8, 2022
- 9767 Views
Support for Media Access Control Security (MACsec) with static keys was added in EOS 4.15.4. This feature brings
- Written by Tarun Jaswanth LNU
- Posted on June 14, 2021
- Updated on June 2, 2025
- 10889 Views
Media Access Control Security (MACsec) is an industry standard encryption mechanism that protects all traffic
- Written by Jeff Chan
- Posted on June 16, 2022
- Updated on June 3, 2025
- 502 Views
Media Access Control Security (MACSec) is an industry standard encryption mechanism to protect all traffic flowing on Ethernet links. Mac Security is described in IEEE 802.1X and IEEE 802.1AE standards.
- Written by Kieran Weaver
- Posted on December 20, 2024
- Updated on December 20, 2024
- 1810 Views
Media Access Control Security (MACsec) is an industry standard encryption mechanism that protects all traffic flowing on the Ethernet links. MACsec is based on IEEE 802.1X and IEEE 802.1AE standards.
- Written by Avineet Sharma
- Posted on April 24, 2025
- Updated on April 24, 2025
- 588 Views
DMF 8.7.0 supports Media Access Control Security (MACsec) as an Early Field Trial (EFT) feature. MACsec is a global configuration option for the entire fabric, with the option to enable it on intracore traffic only. MACsec only encrypts traffic between core switches, ignoring all other ancillary traffic (e.g., tap to filter, delivery to tool). MACsec is a licensed feature. Verify a MACsec license is installed on all switches participating in MACsec before using this feature.
- Written by Japraj Sandhu
- Posted on December 20, 2024
- Updated on December 20, 2024
- 1731 Views
By default, the only visibility a user has into packets that are dropped due to errors with the MACsec/IPsec protocols is a set of counters, such as with show mac security counters detail. This feature enables redirecting such packets to the CPU for manual inspection; it is intended to assist with debugging unexpected packet drops.
- Written by Sriram Rajagopalan
- Posted on September 30, 2015
- Updated on February 5, 2022
- 11770 Views
Maintenance mode is a framework to allow for the easy removal of elements of a switch or the entire switch from
- Written by Shamit Kapadia
- Posted on March 4, 2025
- Updated on May 24, 2025
- 1220 Views
EVPN VXLAN all-active multihoming (AA-MH) provides redundancy to reduce or eliminate the impact of outages and maintenance. The objective of Maintenance Mode on AA-MH is to gracefully drain away the traffic from the EVPN core flowing through a switch that is part of multihoming while the switch is put into maintenance, and to gracefully add it back into the network and attract traffic again once the switch is out of maintenance. During the maintenance cycle any customer edge Ethernet or Port-Channel interfaces, whether they are participating as ethernet segments or not, can also be put into maintenance mode. Doing so eliminates the northbound traffic from the customer edge from flowing through the switch under maintenance. The traffic will instead take a path through other available multi-homing peers.
- Written by Mihyar Baroudi
- Posted on February 1, 2016
- Updated on February 6, 2022
- 8247 Views
Maintenance mode with sub interfaces is an extension to the maintenance mode feature released in EOS 4 15 2F. With this
- Written by Jing Wu
- Posted on April 24, 2025
- Updated on April 29, 2025
- 631 Views
This document describes managing certificates and private keys in DMF.
- Written by Preyas Hathi
- Posted on June 2, 2022
- Updated on June 2, 2022
- 7294 Views
A server cluster or a cluster is a group of Wireless Manager (WM) servers. A cluster comprises a parent WM server and one or more child WM servers. A cluster is created to manage multiple servers using a single server.
- Written by Joseph Walsh
- Posted on October 24, 2024
- Updated on October 24, 2024
- 2093 Views
The Management Connectivity Studio is used to configure out-of-band (OOB) management interfaces. You’ll create a profile of configured attributes for management interfaces, which can be assigned to multiple devices at once using tags.
- Written by Navneet Sinha
- Posted on June 29, 2016
- Updated on February 8, 2022
- 8585 Views
MapReduce Tracer is an existing feature that monitors MapReduce nodes that are directly connected to Arista
- Written by Sunil Kumar
- Posted on May 5, 2025
- Updated on May 5, 2025
- 468 Views
In DMF 8.7.0, the redesigned integration configuration now masks the password field and improves the configuration management. Use the Edit icon to Add, Modify, or Delete the Integration configuration.
- Written by Digvijay Gahlot
- Posted on December 22, 2017
- Updated on December 22, 2017
- 8109 Views
Classification of MPLS packets based on traffic class bits in MPLS header for QoS Policy Maps. DCS
- Written by Yashvir Singh
- Posted on March 2, 2021
- Updated on May 9, 2025
- 11386 Views
This feature allows classification of packets on QoS policy-maps based on the Class of Service (CoS), VLAN, Drop Eligible Indicator (DEI) in the 802.1q header of the packet. CoS (Class of Service) corresponds to the Priority code point (PCP) bits in the 802.1q header.
- Written by Shyam Kota
- Posted on November 6, 2019
- Updated on March 20, 2025
- 11030 Views
This feature allows setting the desired maximum VOQ latency. Drop probabilities are adjusted in hardware to meet this limit.
- Written by Navneet Sinha
- Posted on June 29, 2016
- Updated on June 29, 2016
- 8625 Views
Currently, the 'maximum routes' knob allows one to set an upper bound on the number of routes that can be received from a
- Written by Ioana Costea
- Posted on November 9, 2020
- Updated on April 11, 2025
- 8514 Views
Previously, the maximum valid port channel ID was equal to the maximum number of port channels configurable on the
- Written by Can Sun
- Posted on December 20, 2024
- Updated on December 20, 2024
- 1688 Views
Measured boot is an anti-tamper mechanism. It calculates the cryptographic signatures for software system components and extends the signatures into the Trusted Platform Module (TPM) security chip. Upon startup, with the feature turned on, the Aboot bootloader and EOS calculate the hash of various system components and extend the hashes into the Platform Configuration Registers (PCRs), which is one of the resources of the Trusted Platform Module (TPM) security chip. The calculation and extension event is called the measured boot event, and the event is associated with a revision number to help the user identify changes to the event.
- Written by Mihyar Baroudi
- Posted on February 1, 2016
- Updated on March 4, 2022
- 15097 Views
Media Access Control Security (MACSec) is an industry standard encryption mechanism to protect all traffic flowing
- Written by Alejandro Schwoykoski
- Posted on December 22, 2021
- Updated on May 24, 2025
- 15176 Views
MetaMux is an FPGA-based feature available on Arista’s 7130 platforms. It performs ultra-low latency Ethernet packet multiplexing with or without packet contention queuing. The port to port latency is a function of the selected MetaMux profile, front panel ingress port, front panel egress port, FPGA connector ingress port, and platform being used.