- Written by Lavanya Conjeevaram
- Posted on June 29, 2016
- Updated on July 6, 2016
- 10904 Views
The feature enables support for displaying per traffic class counters on ingress interfaces. The feature is
- Written by Johnny Chen
- Posted on November 12, 2019
- Updated on March 7, 2025
- 12193 Views
This feature provides support for per-interface ingress/egress packet/byte counters for both IPv4 and IPv6.
- Written by Weichen Zhao
- Posted on August 25, 2016
- Updated on August 25, 2016
- 10909 Views
The Inner IP hashing for MPLSoGRE feature enabled hashing of inner IP source/destination address. With this
- Written by Harish Pradyot
- Posted on July 1, 2025
- Updated on June 26, 2026
- 2922 Views
This feature when configured enables users to rewrite the DSCP of the GUE encapsulated header on IP-over-UDP tunnels while preserving the TOS value of the inner IP ( IPv4 / IPv6 ) payload. Starting from software version 4.34.1F, the CLI configuration to enable or disable DSCP preserve globally on the egress interface introduces a clear distinction in the behavior of GUE encapsulation on the core facing interface of the IP-over-UDP tunnels. ( The user can configure DSCP to be rewritten using a set DSCP action via QoS Policy-Map or Traffic-Policy )
- Written by Mihyar Baroudi
- Posted on December 8, 2015
- Updated on February 5, 2022
- 11006 Views
The DCS 7280E and DCS 7500E platforms are virtual output queue (VOQ) based architectures where there is a VOQ for all
- Written by Prachi Modi
- Posted on May 8, 2025
- Updated on May 8, 2025
- 2742 Views
Arista access points (APs) support the integration of SESimagotag’s Electronic Shelf Labels (ESLs), which dynamically display prices and offers in retail environments. The SES-Imagotag Retail IoT Connector (USB dongle) connects automatically to the ESLs through a proprietary protocol based on the IEEE 802.15.4 standard. This dongle plugs into the USB port of Arista APs and is managed by SESimagotag’s Serial Communication Daemon (SCD). The SCD ensures seamless AP and USB dongle connectivity to VusionCloud.
- Written by Freedom Garcia
- Posted on December 24, 2024
- Updated on May 16, 2025
- 5245 Views
This feature, when enabled, allows NAT to function on traffic traversing between VRFs, over inter-VRF static routes or routes leaked to VRFs other than where they were configured.
- Written by Paul McDade
- Posted on September 22, 2025
- Updated on June 18, 2026
- 1942 Views
Using the show switch <switch name/all> interface details or show switch <switch name/all> interface <interface name> details commands in the CLI will now include a Description column, which provides the configured description (if any) for the corresponding interface. This is a CLI-only change.
- Written by Joseph Walsh
- Posted on November 6, 2024
- Updated on November 6, 2024
- 4733 Views
The Interface Diagnostics quick action provides you with a fast and efficient way to run interface cycles and cable diagnostics on your campus devices from the Campus Health Overview Dashboard. The devices available are those with a Campus tag, which is automatically assigned to devices configured with the Campus Fabric Studio (L2/L3/EVPN).
- Written by Neel Neogi
- Posted on December 30, 2020
- Updated on July 3, 2026
- 20208 Views
The document describes the support for dedicated and group ingress policing on interfaces without using QoS policy-maps to match on the traffic and apply policing.
- Written by Neel Neogi
- Posted on November 3, 2021
- Updated on June 30, 2026
- 13528 Views
This document describes the support for interface policing counters on interfaces where interface policing feature is configured. Counters for this feature provide information on how many packets are being allowed or dropped on a given interface via the policers configured. The counters are only supported on interfaces where dedicated policers are configured.
- Written by Joseph Walsh
- Posted on July 25, 2024
- Updated on July 25, 2024
- 5658 Views
You can use the Access Interface Configuration quick action to assign configuration profiles to devices. The guided workflow will display an illustration of device front panels, which you can use to select interfaces from.
- Written by Joseph Walsh
- Posted on October 30, 2024
- Updated on October 30, 2024
- 4730 Views
You can use the Access Interface Configuration quick action to assign configuration profiles to devices. The guided workflow will display an illustration of device front panels, which you can use to select interfaces from.
- Written by Dhruba Jyoti Pokhrel
- Posted on July 7, 2023
- Updated on July 7, 2023
- 8356 Views
One of the reasons why Wi-Fi clients encounter RF issues is non-Wi-Fi interference. All Wi-Fi 6 and above APs can perform interference classification. CloudVision Cognitive Unified Edge (CV-CUE) classifies interference into four categories — Wi-Fi, Microwave Oven (MWO), Frequency Hopping Spread Spectrum (FHSS), and Continuous Wave (CW).
- Written by Cheng-Hung
- Posted on July 1, 2026
- Updated on July 3, 2026
- 34 Views
VLAN COS and IP DSCP values in a packet may be inconsistent. Without this feature, regardless of the interface's QoS trust mode, VLAN tagged packets always use the VLAN COS value as the input priority for PFC PG selection. This can lead to unpredictable PFC behavior. This feature allows tagged packets to use the QoS trust mode as the source for PG selection, instead of always using VLAN COS. This unifies the behavior for tagged and untagged packets, ensuring consistent PFC operation.
- Written by Srinivasan Koona Lokabiraman
- Posted on June 29, 2023
- Updated on January 10, 2025
- 9918 Views
The internet exit feature enables hosts attached to a VRF in an edge router to reach prefixes that may be reachable over the internet. Since the addresses assigned within a VRF may be non-routable private addresses which cannot be directly used when going to the Internet, the NAT feature is used as a part of the Internet exit solution to provide internet connectivity.
- Written by Richard Goh
- Posted on August 16, 2018
- Updated on March 18, 2025
- 12920 Views
IPv6 multicast routing protocols are used to distribute IPv6 datagrams to one or more recipients. IPv6 PIM builds and maintains multicast routing using reverse path forwarding (RPF) based on the unicast routing table. IPv6 PIM is protocol-independent and can use routing tables consisting of OSPFv3, IPv6 BGP or static routes, for RPF lookup. MLD is used to discover multicast hosts and maintain group membership on a directly attached link.
- Written by Xuguang (Shawn) Yang
- Posted on May 1, 2015
- Updated on February 5, 2022
- 11077 Views
With this feature, Arista 7050 and 7050X series of switches can now decapsulate IP in IP tunneled packets.
- Written by Srinivasan Viswanathan
- Posted on December 27, 2024
- Updated on July 23, 2025
- 4666 Views
With this feature, Arista 7050 and 7050X series of switches can now decapsulate IP in IP tunneled packets. When IP in IP decapsulation is configured, incoming packets with an outer IP header having IpProto=4 (IP in IP) and IpDest matching the one configured will be decapsulated, meaning that the outer IP header will be removed from the packet and all subsequent forwarding decisions will be based on the inner IP header.
- Written by Pratik Mangalore
- Posted on December 14, 2020
- Updated on July 2, 2026
- 21776 Views
IP Locking is an EOS feature configured on an Ethernet Layer 2 port or on a VLAN. When enabled, it ensures that a configured port or all member ports of a configured VLAN will only permit IP and ARP packets with IP source addresses that have been authorized. IP Locking prevents another host on a different IP Locking enabled interface from claiming ownership of an IP address through either IP or ARP spoofing. Additionally, IP Locking prevents hosts from masquerading as a DHCP server by blocking DHCP (server-to-client) packets.
- Written by Vivek Dua
- Posted on September 15, 2023
- Updated on July 22, 2025
- 8526 Views
Current behavior for IPv4 Options packets is to let Kernel do the forwarding. Strata Platforms do this by setting the action of drop=1 and CPU=1 in the IP_OPTION_CONTROL_PROFILE_TABLE Hardware table so that all IPv4 options packets reach the CPU for forwarding in the Kernel.
- Written by Kartic Bhargav
- Posted on April 23, 2018
- Updated on May 15, 2018
- 11904 Views
Similar to L4 ports, ACL rules can be configured to filter ingress packets based on their IP length (present in the IPv4
- Written by Sarah Chen
- Posted on September 30, 2015
- Updated on September 30, 2015
- 11930 Views
IP Source Guard (IPSG) is a security feature that can help prevent IP spoofing attacks. It filters inbound IP packets
- Written by Kiranmayi Kasarapu
- Posted on September 30, 2015
- Updated on April 6, 2026
- 10828 Views
With this feature, IPv4 or IPv6 packets matching a static nexthop-group route can be encapsulated within an IP-in-IP tunnel and forwarded
- Written by Srinivasan Viswanathan
- Posted on December 27, 2024
- Updated on December 27, 2024
- 4692 Views
With this feature, IPv4 or IPv6 packets matching a static nexthop-group route can be encapsulated within an IP-in-IP tunnel and forwarded
- Written by Haris S M
- Posted on March 4, 2025
- Updated on February 2, 2026
- 4323 Views
When the next hop of an IP route (hereafter referred to as the dependent route) resolves over another IP route (hereafter referred to as the resolving route), the adjacency information of the resolving route’s FEC is typically duplicated into the dependent route’s FEC. With this feature, we prevent the duplication of the adjacency information. Instead, the dependent route’s FEC points to the resolving route’s FEC, forming a hierarchical FEC for the dependent route.
- Written by Indu Mahadevan
- Posted on March 12, 2026
- Updated on March 13, 2026
- 558 Views
This feature addresses a restriction on the combination of IKE and IPSec algorithms that can be used in a security configuration. The National Information Assurance Partnership (NIAP) Common Criteria certification requires that:
- Written by Indu Mahadevan
- Posted on December 24, 2024
- Updated on December 24, 2024
- 4555 Views
Support for IPSec connections in a full-cone Network/Port Address Translation (NAT) environment has been added to the Dynamic Path Selection (DPS) setup. DPS optimizes application performance by selecting different paths for various types of traffic. In this configuration, STUN is used to discover the translated IP address of WAN interfaces and export it to BGP.
- Written by Jyothish Kunkumath
- Posted on January 6, 2022
- Updated on October 21, 2025
- 20621 Views
IPSec tunnel mode support allows the customer to encrypt traffic transiting between two tunnel endpoints.
- Written by Navneet Sinha
- Posted on June 29, 2016
- Updated on June 29, 2016
- 13987 Views
This feature enables dataplane forwarding of IPv4 traffic on interfaces that are not IPv4 address enabled, but only
- Written by Dhanashree Nagre
- Posted on April 21, 2015
- Updated on February 7, 2022
- 12068 Views
IPv4 routes of certain prefix lengths can be optimized for enhanced route scale on 7500E, 7280E, 7500R and 7280R
- Written by Sriram Sellappa
- Posted on January 23, 2019
- Updated on April 21, 2026
- 12989 Views
IPv4 routes of certain prefix lengths can be optimized for enhanced route scale. This document describes the enhancements done to IPv4 route scale in subsequent EOS releases.
- Written by Vishal Bandekar
- Posted on August 23, 2022
- Updated on June 30, 2026
- 10895 Views
This document is an extension to the decap group feature, that allows IPv4 addresses to be configured and used as part of a group. Now we will be able to configure IPv4 prefixes as a decap group.
- Written by Neel Kabra
- Posted on June 27, 2024
- Updated on March 5, 2025
- 6445 Views
This feature enhances IPv4 VRF scale to 1024 VRFs on AWE-7230R and AWE-7250R, and 64 VRFs on AWE-7220R.On CloudEOS, the VRF scale is as follows
- Written by Roland Phung
- Posted on May 1, 2015
- Updated on May 1, 2015
- 10907 Views
As of EOS 4.15.0F, VRRP is supported in a VRF context. Virtual IP addresses can be reused in different VRF contexts,
- Written by Manogna Namburi
- Posted on May 1, 2015
- Updated on July 24, 2023
- 10608 Views
IPv6 access lists can be used to filter IPv6 network traffic. Starting EOS 4.15.0F release, we have added support
- Written by Kumaran Narayanan
- Posted on April 25, 2025
- Updated on July 8, 2025
- 3725 Views
This feature enables IPv6 access control list (ACLs) on cloudEOS and AWE-series platforms, providing access control on incoming traffic (ingress direction). ACLs use packet classification to mark certain packets going through the packet processor pipeline and then take configured action against them. Rules are defined based on various fields of packets.
- Written by Brett Hatch
- Posted on April 30, 2025
- Updated on April 30, 2025
- 3931 Views
This feature provides an IPv6 address provisioning mechanism which is driven by tenant authentication results and offers inter-tenant traffic isolation. The generated IPv6 connected route subnets can also be summarized into aggregate routes dynamically for advertising out to BGP peers.
- Written by Siddharth Verma
- Posted on May 1, 2015
- Updated on May 1, 2015
- 10604 Views
IPv6 egress ACLs applied to routed interfaces across the same chip on the DCS 7500E and the DCS 7280E series can be
- Written by Jason Lai
- Posted on July 15, 2025
- Updated on July 15, 2025
- 2572 Views
This document provides information on how to configure IPv6 Endpoint Independent Filtering (EIF) and debug issues on the nat-vxlan profile on Arista 7170 switches.
- Written by Greg Poloczek
- Posted on April 10, 2015
- Updated on May 1, 2015
- 10776 Views
Arista switches use the hashing algorithm to load balance traffic among LAG (Link Aggregation Group) members
- Written by Shelly Chang
- Posted on October 24, 2024
- Updated on June 24, 2026
- 6004 Views
This solution allows delivery of both IPv4 and IPv6 multicast traffic in an IP-VRF using an IPv6 multicast in the underlay network. The protocol used to build multicast trees in the underlay network is IPv6 PIM-SSM.
- Written by Christopher Brown
- Posted on December 22, 2017
- Updated on December 22, 2017
- 10903 Views
The IPv6 Neighbor Discovery protocol performs Neighbor Unreachability Detection (NUD) in order to determine if two
- Written by Anoop Dawani
- Posted on September 30, 2015
- Updated on December 19, 2024
- 10930 Views
With this feature, IPv4 and IPv6 packets matching a static nexthop-group route can be encapsulated within an IP-in-IP tunnel and forwarded
- Written by Satya Viswanathan
- Posted on December 9, 2015
- Updated on February 5, 2022
- 10763 Views
Policy-Based Routing (PBR) provides the flexibility of routing according to custom-defined policies
- Written by Jahnavi Singhal
- Posted on June 29, 2016
- Updated on February 5, 2022
- 10784 Views
With this, IPv6 routes can be configured pointing to a static Nexthop group of 2 types:. Type
- Written by Jayden Navarro
- Posted on November 22, 2017
- Updated on February 7, 2022
- 10745 Views
IPv6 Router Advertisement Consistency Logging, when enabled, allows for notification through syslogging of
- Written by Srinivasan Viswanathan
- Posted on December 27, 2024
- Updated on June 30, 2026
- 4490 Views
The document describes an extension of the decap group feature, that allows IPv6 addresses to be configured and used as part of a group. IP-in-IP packets with v6 destination matching a configured decap group IP will be decapsulated and forwarded based on the inner header. That will allow any IP-to-IP packet type to be decapsulated, i.e. IPv4 in IPv4, IPv4 in IPv6, IPv6 in IPv4 and IPv6 in IPv6.
- Written by Rashid Akhtar
- Posted on June 29, 2023
- Updated on July 3, 2026
- 9487 Views
This document is an extension to the Decap Group feature that allows IPv6 addresses to be configured and used as part of a decap group. Now we will be able to configure IPv6 prefixes as a decap group. Tunneled packets with IPv6 destination matching to a configured prefix decap group will be decapsulated and forwarded based on the inner header. IP-in-IP tunnel type will be supported for prefix based decap groups.
