Home / Brocade / Cisco R&S / CLI Commands Comparison: Cisco vs Brocade

CLI Commands Comparison: Cisco vs Brocade

,
Today I am going to talk about the comparison between the Brocade and the Cisco switches, I will cover some of the commands which is used in Brocade and Cisco switches. Let me explain some of the commands here

Console cables:
Lets talk about the console cables, the console cables are not interchangeable between Brocade and Cisco. Each vendor provides their console cable with each manageable unit it sells.

Default Enable Passwords:
Cisco or Brocade have a default password for their systems. If a password is lost, Brocade switches allow the passwords to be reset if there is physical access to the unit and a console port connection.

Telnet Server:
For the Telnet Server on a Brocade switch/router, the Telnet server is enabled by default. Like the system password, there is no default value and on Cisco devices the Telnet server must be enabled through a VTY line.

Password Encryption:
Regarding the password encryption, for Brocade layer 3 switches, all passwords are encrypted in the running-config and startup-config files by default. Encryption can be disabled with the no service password-encryption command but on the Cisco devices, all passwords are unencrypted by default.

Fig 1.1- Brocade to Cisco Comparison

Levels of CLI Access :

Cisco switches allow four primary modes of access, with each mode allowing multiple levels of capabilities but for the Brocade layer 3 switches provide 3 levels of CLI access
  • Super-user : This user has unlimited access to all levels of the CLI. This level is generally reserved for system administration. The super user is also the only user that Brocade to Cisco Comparisons can assign a password access level to another user.
  • Port-config : This user has the ability to configure interface parameters only. The user can also use the show commands.
  • Read-only : A user with this password level is able to use only the show commands. No configuration is allowed with this access type 

Access Security:

Lets talk about the access security for Brocade and Cisco switches, below are the features for access security for Brocade and Cisco switches.
  • Brocade layer 3 switches have the ability to specify specific IP addresses for stations allowed to access Telnet, HTTP and SNMP services. Additionally, administrators have the ability to use Access Control Lists (ACLs) to limit accessibility to these services. 
  • Cisco Layer 3 switches have separate areas in the running-config for VTY, auxiliary and console lines, as well as HTTP. Additionally, administrators have the ability to use Access Control Lists (ACLs) to limit accessibility to these services. 

Authentication, Authorisation, and Accounting (AAA):
For Brocade and Cisco support the use of AAA. Each supports the use of local logins, local username/passwords, TACACS/TACACS+, and RADIUS for AAA. 

File System:
Regarding the File systems, Cisco layer 3 switches use IOS File System (IFS), a DOS-type file system for managing files while Brocade devices do not contain a FAT file system for managing files. The flash on Brocade switch/router is divided in primarily into 4 locations
  • Primary image location — This is the default image location for booting the switch
  • Secondary image location — This is an alternate image location and can be explicitly used
  • Boot image location — This area of flash is where the bootstrap code is located 
  • Startup-config — Similar to Cisco, this is where the operational configuration of the switch/router is saved so configurations can be restored after a reboot.

Saving Configuration Files :
On a brocade switch/router, the write memory command copies the contents of the running-config to the startup-config file in flash. On a Brocade device this command can be executed at any level, including configuration mode.

Port/VLAN Assignments:
Regarding the Port/VLAN assignments, Brocade switches, interfaces are assigned to VLANs as either tagged or untagged ports. On the other side on Cisco switches, VLANs are assigned to interfaces as trunk or access ports. Examples for both switches are shown on the following slides. 

Default STP Version:
Both Brocade and Cisco run 802.1D Spanning Tree by default. 

Fast Edge Convergence:
Both Brocade and Cisco have functionality to allow fast convergence at edge ports for Spanning Tree. On Brocade switches the feature is called “Fast Port Mode” and is enabled by default. Cisco’s feature is called Port-fast and is disabled by default. 

Proprietary Protocols:
In addition to VRRP, Brocade also supports and extended version of VRRP, called VRRPE. VRRPE functions in a similar way to VRRP, but overcomes many of the limitations of the standards-based protocol. Cisco also provides alternatives to the standard-based protocol; Hot Standby Router Protocol (HSRP) and Gateway Load Balancing Protocol (GLBP). 

Track Port:
Both Brocade and Cisco, using VRRPE and HSRP respectively, support the configuration of a track port. A track port allows the layer 3 switch to change how it participates in router redundancy based on the link state of another interface on the switch.