Initially, Dell released a proprietary operating system called DNOS, a real-time OS developed by Wind River Systems.
After acquiring Force10 Networks, Dell rebranded its network operating system as FTOS. While it is based on the Linux kernel, it remains proprietary due to Dell’s proprietary network layer.
Later, Dell introduced OS10, a Linux-based (Debian-based) operating system for network devices. It was initially released as open source, but Dell later changed its mind (what a shame!)
HIERARCHICAL COMMAND-LINE MODES
- User EXEC Mode
console>- Basic monitoring, no config access (e.g.,
ping,show). - Privileged accounts do not see this mode.
- Basic monitoring, no config access (e.g.,
- Privileged EXEC Mode
console> enable
console#- View configurations and diagnostics, but no direct changes.
- Global Configuration Mode
console# config
console(config)#- Full configuration access.
MOST IMPORTANT COMMANDS
- Privileged EXEC Commands
disable– Downgrade terminal privileges to User EXEC Mode.disable
show– Display running system information (e.g., interfaces, VLANs, routes).show running-configshow arpshow ip routeshow ip interfaceshow access-listsshow vlanshow ip dhcp snooping binding
set– Configure various system settings.set interface active gigabitethernet 1/0/48
!– Comment symbol. The line is not processed.! This is a comment and will not be interpreted.
reload– Restart the switch or stack (i.e., reboot).reload
ping– Send ICMP echo requests to test connectivity.ping 8.8.8.8
traceroute– Trace the path packets take to a destination.traceroute ip 8.8.8.8
write– Save the running configuration to memory (similar tocopy running-config startup-config).write
clear– Reset functions such as clearing counters or sessions.clear arp-cache
system– System configuration.system light duration 60
- Global Configuration Commands
do– Run EXEC-level commands from configuration mode.do show crypto certificate mycertificate
end– Exit Global Configuration Mode and return to the previous mode.end
interface– Configure network interfaces.interface vlan 1ip address 192.168.3.100 255.255.255.0end
crypto– Configure global cryptographic features.crypto certificate 1 generate keycrypto key generate rsa
ip/ipv6– Global IPv4/IPv6 configuration.ip host localhost 127.0.1.1ip https certificate 1ip http secure-server
vlan– VLAN management.vlan 2 state active media ethernet name LAN2
hostname– Set the device hostname.hostname SW1
logging– Configure system logging.logging host 192.168.3.200
no– Negate or disable a command in configuration mode.no logging host 192.168.3.200
spanning-tree– Manage Spanning Tree Protocol.spanning-tree mode stp
port-channel– Configure port aggregation.port-channel load-balance src-dst-mac-ip
qos– Enable and configure Quality of Service.qos basic
sflow– Enable network traffic sampling.sflow receiver 192.168.1.200
system– System-level configuration options.system fan always-on
CONSIDERATIONS
DNOS is similar to Cisco IOS in both look and feel, making it easy to get familiar with quickly.
- Security Considerations:
- Always prefer SSH over Telnet and HTTPS over HTTP. There is no reason to use legacy protocols.
- Enable port security at the appropriate level for your environment and disable unused ports.
- Limit management access to a dedicated management VLAN.
- Limit physical access to the Console port and protect it with a password.
- Consider full physical segregation (air gap) for your Out-Of-Band (OOB) network.
- Enable DHCP Snooping, Dynamic ARP Inspection (DAI), and Storm Control.
- Set up a remote centralized logging server and AAA for better control and visibility.
- Disable unnecessary features (e.g., auto-discovery) and keep the firmware up to date.
- Important Reminders:
- Back up the running configuration before making any changes.
- Save (
write) the configuration to the startup configuration to prevent rollback on the next reboot or power cycle. - Consider using automation tools like Ansible for remote backups, audits, and source control of your configuration.