NSX CLI Guide
Associated Commands:
| CLI Description | Command |
|---|---|
Reset flow cache stats for all fastpath coresClear flow cache statistics for all fastpath cores. |
clear dataplane flow-cache stats
|
Clear Edge Cluster state historyClear the Edge cluster state history. |
clear edge-cluster history state
|
Clear the gateway high availability state historyClear the high availability state history for the specified gateway. Only service gateways have a high availability status. Use the get gateway command to get a list of gateways and their types. |
clear gateway <nsxa-uuid-service-router-arg> high-availability history state
|
Clear the gateway high availability state historyClear the high availability state history for the gateway in the VRF context. |
clear gateway high-availability history state
|
Clear stats for a high-availability channelClear statistics for the specified high-availability channel |
clear high-availability channel local-ip <ip-address> remote-ip <ip-address> stats
|
Clear stats for high-availability channelsClear statistics for all high-availability channels. |
clear high-availability channels stats
|
Clear the logical router high availability state historyClear the high availability state history for the logical router in the VRF context. |
clear high-availability history state
|
Clear stats for a high-availability sessionClear statistics for the specified high-availability session |
clear high-availability session local-service-id <service-id-arg> peer-service-id <service-id-arg> stats
|
Clear stats for high-availability sessionsClear statistics for all high-availability sessions. |
clear high-availability sessions stats
|
Deletes LLDP Neighbor information on all devicesDeletes LLDP Neighbor information on all devices. |
clear lldp neighbors
|
Deletes LLDP Neighbor information on given deviceDeletes LLDP Neighbor information on given device. |
clear lldp neighbors <lldp-interface-name>
|
Deletes LLDP Statistics on all devicesDeletes LLDP Statistics on all devices. |
clear lldp stats
|
Deletes LLDP Statistics on given deviceDeletes LLDP Statistics on given device. |
clear lldp stats <lldp-interface-name>
|
Clear the logical router high availability state historyClear the high availability state history for the specified logical router. Only service routers have a high availability status. Use the get logical-routers command to get a list of logical routers and their router types. |
clear logical-router <nsxa-uuid-service-router-arg> high-availability history state
|
Clean up host stateDeletes all NSX configuration and modules from the host only. Please delete the corresponding transport node entries from NSX manager using GUI/API. |
clear management-plane
|
Clear physical port stats by nameClear statistics for the specified physical port. |
clear physical-port <dpd-name-physical-port-arg> stats
|
Delete the host's public cloud gateway certificateDelete the host's public cloud gateway certificate |
del gateway certificate <ip-address>
|
Delete all the host's public cloud gateway certificatesDelete all the host's public cloud gateway certificates |
del gateway certificates
|
Remove public cloud VM certificateRemove public cloud VM certificate |
del gw-controller vm-certificate <VmID>
|
Delete NSX Edge service container imageDelete NSX Edge service container image. Only images that are not in use can be deleted. |
del image <configurable-image-name> version <configurable-image-version>
|
Get bond interface statsDisplay the bond interface with the specified name. Specify the stats argument to display the statistics for the interface. |
get bond <bond name> [stats]
|
Get bond interface statsDisplay all bond interfaces. Specify the stats argument to display the statistics for the interfaces. |
get bonds [stats]
|
Get dataplane configurationsDisplay Data Plane Development Kit (DPDK) configurations, which include fastpath cores, hugepage reserved, NUMA, physical port bindings, etc. |
get dataplane
|
Get the cpu stats for dataplaneDisplay data plane cpu statistics. |
get dataplane cpu stats
|
Get the list of supported devices on the systemGet the list of supported devices on the system. |
get dataplane device list
|
Check status of dynamic core featureCheck status of dynamic core feature. |
get dataplane dynamic-core
|
Get flow cache configurationDisplay the flow cache configurations. |
get dataplane flow-cache config
|
Get flow cache stats for all fastpath coresDisplay flow cache statistics for all fastpath cores. |
get dataplane flow-cache stats
|
Get flow cache stats for cores selected in coremaskDisplay the flow cache statistics for the specified fastpath cores. |
get dataplane flow-cache stats <lcore-list-all-arg>
|
Get geneve critical bit configurationDisplay geneve critical bit configurations. |
get dataplane geneve-cbit config
|
Get l2vpn pmtu message generation settingsDisplay l2vpn pmtu message generation settings. |
get dataplane l2vpn-pmtu config
|
Get the memory stats for dataplaneDisplay data plane memory statistics. |
get dataplane memory stats
|
Get dataplane perf statsDisplay data plane performance statistics. |
get dataplane perfstats <interval-arg>
|
Get dataplane pmtu learning settingsDisplay dataplane pmtu learning settings. |
get dataplane pmtu-learning config
|
Get admin and operational state of QAT crypto accelerationGet admin and operational state of QAT crypto acceleration. |
get dataplane qat
|
Calculate all nics throughput given an intervalCalculate all nics throughput given an interval |
get dataplane throughput <time>
|
Get edge config diagnosisGet edge config diagnosis |
get diagnosis config
|
Get runtime federation health check reportGet runtime federation health check report |
get diagnosis health-check
|
Check for inconsistencyCheck for any inconsistency on local edge |
get diagnosis inconsistency
|
Get diagnosis analysisGet diagnosis analysis |
get diagnosis log
|
Get number of diagnosis entriesGet number of diagnosis entries |
get diagnosis log limit <log-num>
|
Get two number of diagnosis entriesGet two number of diagnosis entries |
get diagnosis log limit <log-num> context <context-line-num>
|
Get edge logical topologyGet logical topology on edge |
get diagnosis topology
|
Get Edge Cluster state historyDisplay the Edge cluster state history. |
get edge-cluster history state
|
Get Edge Cluster statusDisplay the Edge cluster status. |
get edge-cluster status
|
Show ENS lcore assignment modeShow the current mode of enhanced datapath lcore assignment. |
get ens lcore-assignment-mode <hs-name-arg>
|
Dump the host's public cloud gateway certificateDump the host's public cloud gateway certificate |
get gateway certificate <ip-address>
|
Dump the host's public cloud gateway certificatesDump the host's public cloud gateway certificates. |
get gateway certificates
|
Dump the host's public cloud gateway connection statusDump the host's public cloud gateway connection status. |
get gateway connection status
|
Get geneve critival bitGet geneve critival bit. |
get geneve-cbit dvs <dvs-name-arg>
|
Dump public cloud gateway connectionsDump public cloud gateway connections |
get gw-controller connections
|
Get gw-controller logging levelGet gw-controller logging level. |
get gw-controller logging-level
|
Show public cloud VM certificateDisplay public cloud VM certificate |
get gw-controller vm-certificate <VmID>
|
Show public cloud VM certificatesDisplay all public cloud VM certificates |
get gw-controller vm-certificates
|
Get VM log forwarding statusGet VM log forwarding status |
get gw-controller vm-log-forwarding
|
Get VM log forwarding statusGet VM log forwarding status |
get gw-controller vm-log-forwarding <VmID>
|
Show public cloud state for all VMsDisplay public cloud VM state for all VMs |
get gw-controller vm-state
|
Show public cloud VM stateDisplay public cloud VM state for specific VM |
get gw-controller vm-state <VmID>
|
Display info for a high-availability channelDisplay information about the specified high-availability channel. |
get high-availability channel local-ip <ip-address> remote-ip <ip-address>
|
Display stats for a high-availability channelDisplay statistics for the specified high-availability channel. |
get high-availability channel local-ip <ip-address> remote-ip <ip-address> stats
|
Display info about high-availability channelsDisplay information about high-availability channels. |
get high-availability channels
|
Display high-availability channel statsDisplay statistics for the high-availability channels. |
get high-availability channels stats
|
Display the logical router high availability state historyDisplay the high availability state history for the logical router in the VRF context. |
get high-availability history state
|
Display info for a high-availability sessionDisplay information about the specified high-availability session. |
get high-availability session local-service-id <service-id-arg> peer-service-id <service-id-arg>
|
Display stats for a high-availability sessionDisplay statistics for the specified high-availability session. |
get high-availability session local-service-id <service-id-arg> peer-service-id <service-id-arg> stats
|
Display info about high-availability sessionsDisplay information about high-availability sessions. |
get high-availability sessions
|
Display info about high-availability sessions of specified channelDisplay information about high-availability sessions by remote-ip of the channel |
get high-availability sessions remote-ip <ip-address>
|
Display info about high-availability sessions of specified service-typeDisplay information about high-availability sessions by service-type. |
get high-availability sessions service-type <service-type-arg>
|
Display info about high-availability sessions of specified service-type and channelDisplay information about high-availability sessions by service-type and remote-ip of the channel |
get high-availability sessions service-type <service-type-arg> remote-ip <ip-address>
|
Display stats for high-availability sessions of specified service-typeDisplay statistics for the high-availability sessions of specified service-type. |
get high-availability sessions service-type <service-type-arg> stats
|
Display high-availability sessions that have completed synchronizationDisplays any high-availability sessions of a given type who have completed synchronization with peer |
get high-availability sessions service-type <service-type-arg> sync complete
|
Display high-availability sessions whose synchronization is ongoingDisplays any high-availability sessions of a given type who have not yet completed synchronization with peer |
get high-availability sessions service-type <service-type-arg> sync in-progress
|
Display high availability session synchronization status summaryDisplay the synchronization status of high-availability sessions of a given type on current node |
get high-availability sessions service-type <service-type-arg> sync summary
|
Display stats for high-availability sessionsDisplay statistics for the high-availability sessions. |
get high-availability sessions stats
|
Display Tunnels info on a host switchDisplay Tunnels info on the specified host switch. |
get host-switch <hs-name-arg> <bfd-cmd-type-arg>
|
Display Tunnel Detail info on a host switchDisplay Tunnel Detail info on the specified DVPort of the specified host switch. |
get host-switch <hs-name-arg> <bfd-cmd-type-arg> <local-ip-arg> <remote-ip-arg>
|
Display IPFIX setting on a DVPort of a host switchDisplay IPFIX setting on the specified DVPort of the specified host switch |
get host-switch <hs-name-arg> dvport <dvport-id-arg> ipfix setting
|
Display IPFIX stats on a DVPort of a host switchDisplay IPFIX stats on the specified DVPort of the specified host switch |
get host-switch <hs-name-arg> dvport <dvport-id-arg> ipfix stats
|
Display mcast filter mode for a Host switchDisplay the mcast filter mode for the specified host switch and dvPort |
get host-switch <hs-name-arg> dvport <dvport-id-arg> mcast-filter
|
Display mcast filter stats of the specified entryDisplay the mcast filter stata of the specified entry |
get host-switch <hs-name-arg> dvport <dvport-id-arg> mcast-filter <entry-mode-arg> <entry-group-arg>
|
Display IPFIX stats on a host switchDisplay IPFIX stats on the specified host switch |
get host-switch <hs-name-arg> ipfix stats
|
Display mcast filter mode for a host switchDisplay the mcast filter mode for the specified host switch. |
get host-switch <hs-name-arg> mcast-filter
|
Display stats of mirror on a host switchDisplay the stats of mirror on the specified host switch. |
get host-switch <hs-name-arg> mirror-session <ms-id-arg-esx>
|
Display mirror settings on a host switchDisplay the mirror settings on the specified host switch. |
get host-switch <hs-name-arg> mirror-sessions
|
Display IPFIX setting on an uplink of a host switchDisplay IPFIX setting on the specified uplink of the specified host switch |
get host-switch <hs-name-arg> uplink <uplink-arg> ipfix setting
|
Display IPFIX stats on an uplink of a host switchDisplay IPFIX stats on the specified uplink of the specified host switch |
get host-switch <hs-name-arg> uplink <uplink-arg> ipfix stats
|
Display host switch upgrade statusDisplay if host switch is getting upgraded. |
get host-switch upgrade-status
|
Display VLAN table for the host switchDisplay VLAN table for the host switch. |
get host-switch vlan-table
|
Display host switchesDisplay information about all host switches. |
get host-switches
|
Get CIF configuration by AppIDDisplay the container interface (CIF) configuration for the specified app. |
get hyperbus app-id <app-ID> cif-config
|
Get CIF configuration cache tableDisplay the container interface (CIF) configuration table. |
get hyperbus cif-table
|
Get VIF connection infoDisplay the virtual interface (VIF) connection information. |
get hyperbus connection info
|
Get VIF connection infoDisplay the virtual interface (VIF) connection information. |
get hyperbus connection info
|
Get VIF connection versionDisplay the virtual interface (VIF) connection version information. |
get hyperbus connection version
|
Get LIP IP poolDisplay the LIP allocation pool. |
get hyperbus lip ip-pool
|
Get CIF configuration by logical switch port IDDisplay the container interface (CIF) configuration for the specified logical switch port. |
get hyperbus logical-switch-port <logical-switch-port-ID> cif-config
|
Get connection info by VIF IDDisplay the connection information for the specified virtual interface (VIF). |
get hyperbus vif-id <vif-ID> connection info
|
Get LIP by VIF IDDisplay the logical IP (LIP) for the specified virtual interface (VIF). |
get hyperbus vif-id <vif-ID> lip
|
Get VIF LIP tableDisplay the VIF (virtual interface) LIP (logical IP) table. |
get hyperbus vif-lip-table
|
Get connected VIF tableDisplay the connected virtual interfaces (VIFs). For ESXi, all connected container host VIFs are displayed. For KVM, all connected container host VIFs and CIFs are displayed. |
get hyperbus vif-table
|
List all container images for given serviceList all container images for given service. |
get image <configurable-image-name>
|
List install history of container images for given serviceList install history of container images for given service. |
get image <configurable-image-name> install history
|
List all service container imagesList all service container images. |
get images
|
List install history for all service container imagesList install history for all service container images. |
get images install history
|
Display LLDP configuration on all devicesDisplay LLDP configuration on all devices. |
get lldp config
|
Displays LLDP Configuration on all devicesDisplays LLDP configuration on all devices. |
get lldp config
|
Display LLDP configuration on all devicesDisplay LLDP configuration on all devices. |
get lldp config
|
Display LLDP Configuration on given deviceDisplay LLDP configuration on given device. |
get lldp config <lldp-interface-name-esx>
|
Display LLDP configuration on given deviceDisplay LLDP configuration on given device. |
get lldp config <lldp-interface-name-kvm>
|
Displays LLDP Configuration on given deviceDisplays LLDP configuration given device. |
get lldp config <lldp-interface-name>
|
Display LLDP Neighbor information on all devicesDisplay LLDP Neighbor information on all devices. |
get lldp neighbors
|
Display LLDP Neighbor information on all devicesDisplay LLDP Neighbor information on all devices. |
get lldp neighbors
|
Displays LLDP Neighbor information on all devicesDisplays LLDP Neighbor information on all devices. |
get lldp neighbors
|
Display LLDP Neighbor information on given deviceDisplay LLDP Neighbor information on given device. |
get lldp neighbors <lldp-interface-name-esx>
|
Display LLDP Neighbor information on given deviceDisplay LLDP Neighbor information on given device. |
get lldp neighbors <lldp-interface-name-kvm>
|
Displays LLDP Neighbor information on given deviceDisplays LLDP Neighbor information on given device. |
get lldp neighbors <lldp-interface-name>
|
Displays LLDP Statistics on all devicesDisplays LLDP Statistics on all devices. |
get lldp stats
|
Displays LLDP Statistics on given deviceDisplays LLDP Statistics on given device. |
get lldp stats <lldp-interface-name>
|
Show logical service bindingDisplay a specific logical service binding. |
get logical-service binding <uuid-string-arg>
|
Show all logical service bindingsDisplay all logical service bindings. |
get logical-service bindings
|
Display a specific logical service portDisplay information for the specified logical service port. Optionally specify an argument to display the statistics. |
get logical-service port <uuid> [stats]
|
Display the logical service portsDisplay information for all logical service ports. Optionally specify an argument to display the statistics. |
get logical-service ports [stats]
|
Show logical service stateDisplay the state of a specific logical service. |
get logical-service state <uuid-string-arg>
|
Show all logical service statesDisplay the state of all logical services. |
get logical-service states
|
Display information about a mirror sessionDisplay information about the specified mirror session. |
get mirror-session <ms-id-arg>
|
Display mirror sessionsDisplay all mirror sessions on this host. |
get mirror-sessions
|
Show physical port by nameDisplay the specified physical port. |
get physical-port <dpd-name-physical-port-arg>
|
Show physical port stats by nameDisplay statistics for the specified physical port. |
get physical-port <dpd-name-physical-port-arg> stats
|
Show physical port verbose stats by nameDisplay verbose statistics for the specified physical port. |
get physical-port <dpd-name-physical-port-arg> stats verbose
|
Show physical port xstats by nameDisplay x statistics for the specified physical port. |
get physical-port <dpd-name-physical-port-arg> xstats
|
Show physical portDisplay all physical ports. |
get physical-ports
|
Show managed VPCs/VNETsShow managed VPCs/VNETs |
get public-cloud-manager managed-vpcs
|
Show public cloud manager statusShow public cloud manager status |
get public-cloud-manager status
|
Show active network connectionsDisplay active network connections. |
get sockets
|
Show active network connectionsDisplay active network connections. |
get sockets
|
Display information about a IPFIX configurationDisplay information about the specified IPFIX configuration. |
get switch-ipfix logical-switch-port <logical-port-id-arg> setting
|
Display Switch Security config for a logical portDisplays Switch Security config for a logical port. |
get switch-security config <logical-port>
|
Display Switch Security stats for a logical portDisplays Switch Security stats for a logical port. |
get switch-security stats <logical-port>
|
Get the topology of the systemDisplay the topology of the system. |
get topology
|
Display transport node agent statusDisplay agent status information for the specified transport node. |
get transport-node <uuid-arg> agent-status
|
Display the ARP table for the specified transport nodeDisplay the ARP table for the specified transport node. |
get transport-node <uuid-arg> arp-table
|
Display the MAC address table for the specified transport nodeDisplay the MAC address table for the specified transport node. |
get transport-node <uuid-arg> mac-table
|
Display routing domains joined by the specified transport nodeDisplay routing domains joined by the specified transport node. |
get transport-node <uuid-arg> routing-domain
|
Display the routing vtep table for the specified transport nodeDisplay the routing vtep table for the specified transport node. |
get transport-node <uuid-arg> routing-vtep
|
Display transport node statusDisplay status information for the specified transport node. |
get transport-node <uuid-arg> status
|
Display transport node statusDisplay status information for the specified transport node. |
get transport-node <uuid-arg> threat-status
|
Display VIF information for the specified transport nodeDisplay VIF information for the specified transport node. |
get transport-node <uuid-arg> vifs
|
Display all VTEPs for the specified transport nodeDisplay all tunnel end points for the specified transport node. |
get transport-node <uuid-arg> vtep
|
Display status of all transport nodesDisplay status information for all transport nodes. |
get transport-nodes status
|
Dump the host's network mode and tagged interfaceDump the host's network mode and tagged interface. |
get vm-network-mode
|
Display info about EW policy service chainDisplay information about EW policy service chain. |
get vsip-si policy-service-chains
|
Display all selected service pathsDisplay selected paths info |
get vsip-si selected-service-paths <chain_id_esx>
|
Display info about EW service chainDisplay information about EW service chain. |
get vsip-si service-chains
|
Display info about EW service path.Display information about EW service path. |
get vsip-si service-paths
|
Display all service paths in orderDisplay service paths info |
get vsip-si service-paths <chain_id_esx>
|
Display active service paths in order of path selection policyDisplay active service paths info |
get vsip-si service-paths <chain_id_esx> active
|
Display all service paths in order of path selection policyDisplay service paths info |
get vsip-si service-paths <chain_id_esx> all
|
Display service paths in maintenanceDisplay maintanence service paths info |
get vsip-si service-paths <chain_id_esx> maintenance-mode
|
Display info about EW service path with specific chain id.Display information about EW service path with specific chain id. |
get vsip-si service-paths <dpd-id-service-chain-arg>
|
Display info about service policiesDisplay information about service policies. |
get vsip-si service-policies
|
Display vswitch runtime optionsDisplay all vSwitch runtime options on this host. |
get vswitch runtime
|
Install NSX Edge service container imageInstall NSX Edge service container image. |
install image <configurable-image-name> version <configurable-image-version>
|
Reset corelist related boot time option to factory defaultReset the corelist-related boot time option to factory default. |
reset dataplane corelist
|
Reset custom list of supported devices on the systemReset custom list of supported devices on the system. |
reset dataplane device list
|
Reset hugepage related boot time option to factory defaultReset the hugepage-related boot time option to factory default. |
reset dataplane hugepage
|
Enable/disable control packet prioritizationEnable/disable control packet prioritization |
set dataplane ctrl-prio <enabled-arg>
|
Set the custom list of physical NICsSet the custom list of physical NICs. |
set dataplane device list <pci-address-arg>
|
Enable/disable dynamic core featureEnabling dynamic core feature will allow fastpath cores to be shared when they are not busy and slowpath cores are busy. |
set dataplane dynamic-core <enabled-arg>
|
Enable/disable flow cacheEnable or disable flow cache. |
set dataplane flow-cache <enabled-arg>
|
Set the flow cache size for each coreSet the flow cache size for each core |
set dataplane flow-cache-size <flow-cache-size-arg>
|
Enable/disable geneve critical bitEnable or disable geneve critical bit. |
set dataplane geneve-cbit <enabled-arg>
|
Enable/disable interrupt modeEnable or disable interrupt mode. |
set dataplane interrupt-mode <enabled-arg>
|
Change the size of the buffer pool for jumbo frame crypto operationsChange the jumbo mbuf pool size |
set dataplane jumbo-mbuf-pool-size <jumbo-mbuf-pool-size-arg>
|
Enable/disable pmtu message generation in l2vpnEnable or disable pmtu message generation in l2vpn. |
set dataplane l2vpn-pmtu <enabled-arg>
|
Change the max number of packets that can be queued on each coreChange the per-core packet queue limit |
set dataplane packet-queue-limit <packet-queue-limit-arg>
|
Enable/disable pmtu learning in dataplaneEnable or disable pmtu learning in dataplane. |
set dataplane pmtu-learning <enabled-arg>
|
Enable/disable QAT device usage for IPsec (bare metal edge only)Enable or disable QAT device usage for IPsec. |
set dataplane qat <enabled-arg>
|
Set Rx/Tx queue number per port per coreSet Rx/Tx queue number per port per core |
set dataplane queue-num-per-port-per-core <queue-num-per-port-per-core-arg>
|
Set the rx ring size for physical portsSet the rx ring size for physical ports. |
set dataplane ring-size rx <ring-size-arg>
|
Set the tx ring size for physical portsSet the tx ring size for physical ports. |
set dataplane ring-size tx <ring-size-arg>
|
Change ENS lcore assignment modeChange mode of enhanced datapath lcore assignment. |
set ens lcore-assignment-mode <hs-name-arg> <ens-lc-mode-arg>
|
Set geneve critival bitSet geneve critival bit. |
set geneve-cbit <boolean-arg> dvs <dvs-name-arg>
|
Set gw-controller log levelSet gw-controller log level |
set gw-controller logging-level <Level>
|
Enable/Disable VM log forwarding for all VMsEnable/Disable VM log forwarding for all VMs |
set gw-controller vm-log-forwarding <enabled-clear-arg>
|
Enable/Disable VM log forwarding for one VMEnable/Disable VM log forwarding for one VM |
set gw-controller vm-log-forwarding <enabled-clear-arg> <VmID>
|
Set mcast filter mode for a host switchSet the mcast filter mode for the specified host switch. |
set host-switch <hs-name-arg> mcast-filter <mcast-filter-mode-arg>
|
Set host switch upgrade statusSet host switch upgrade status. |
set host-switch upgrade-status <boolean-arg>
|
Set the specified physical port mtu to given valueSet the specified physical port mtu to given value. |
set physical-port <dpd-name-physical-port-arg> mtu <dpd-physical-port-mtu-arg>
|
Set the specified physical port admin state up or downSet the specified physical port admin state up or down. |
set physical-port <dpd-name-physical-port-arg> state <dpd-physical-port-state-arg>
|
Set the Dataplane service logging levelSet the log level of the Dataplane service. |
set service dataplane logging-level <edge-service-logging-level-arg>
|
set one vswitch runtime optionSet a runtime option for the specified vSwitch. |
set vswitch runtime <option-name-arg> <option-value-arg>
|
Start Flow MonitorStart flow monitor on a certain core for a given time. Flow monitor will start immediately and stop and dump the flow file automatically after the time passed. Dump file will be stored at /var/vmware/nsx/file-store/flow_mon. |
start flow-monitor [core <core-id>] [timeout <time>]
|
Verify NSX Edge service container image fileVerify NSX Edge service container image file. |
verify image <configurable-image-filename>
|
Total commands: 193
Additional
Links