Power
Etherne
DSL
Internet
Thomson ST516/536/546
CLI Reference Guide
Download from Www.Somanuals.com. All Manuals Search And Download.
Thomson ST516/536/546
CLI Reference Guide
R6.2
Download from Www.Somanuals.com. All Manuals Search And Download.
Copyright
Copyright ©1999-2007 THOMSON. All rights reserved.
Distribution and copying of this document, use and communication of its contents is not permitted without written authorization
from THOMSON. The content of this document is furnished for informational use only, may be subject to change without notice,
and should not be construed as a commitment by THOMSON. THOMSON assumes no responsibility or liability for any errors or
inaccuracies that may appear in this document.
Thomson Telecom Belgium
Prins Boudewijnlaan, 47
B-2650 Edegem
Belgium
Trademarks
The following trademarks are used in this document:
>
>
>
>
DECT is a trademark of ETSI.
Bluetooth® word mark and logos are owned by the Bluetooth SIG, Inc.
Ethernet™ is a trademark of Xerox Corporation.
Wi-Fi® and the Wi-Fi logo are registered trademarks of the Wi-Fi Alliance. "Wi-Fi CERTIFIED", "Wi-Fi ZONE", "Wi-Fi Alli-
ance", their respective logos and "Wi-Fi Protected Access" are trademarks of the Wi-Fi Alliance.
>
>
UPnP™ is a certification mark of the UPnP™ Implementers Corporation.
Microsoft®, MS-DOS®, Windows® and Windows NT® are either registered trademarks or trademarks of Microsoft Corpo-
ration in the United States and/or other countries.
>
Apple® and Mac OS® are registered trademarks of Apple Computer, Incorporated, registered in the United States and
other countries.
>
>
UNIX® is a registered trademark of UNIX System Laboratories, Incorporated.
Adobe®, the Adobe logo, Acrobat and Acrobat Reader are trademarks or registered trademarks of Adobe Systems, Incor-
porated, registered in the United States and/or other countries.
Other brands and product names may be trademarks or registered trademarks of their respective holders.
Document Information
Status: v2.0 (May 2007)
Reference: E-DOC-CTC-20061027-0003
Short Title: CLI Reference Guide ST516/536/546 R6.2
Software Build: R 6.2.H.5
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
ping.......................................................................................................................................................... 4
traceroute................................................................................................................................................ 5
adsl config............................................................................................................................................... 8
adsl info................................................................................................................................................... 9
adsl debug bitloadinginfo.................................................................................................................... 11
adsl debug deltconfig...........................................................................................................................12
adsl debug modemoptioninfo.............................................................................................................14
atm ifattach ...........................................................................................................................................21
atm ifconfig...........................................................................................................................................22
atm ifdelete ...........................................................................................................................................24
atm bundle add.....................................................................................................................................27
atm bundle config ................................................................................................................................29
atm bundle clear................................................................................................................................... 30
atm bundle detach................................................................................................................................32
atm bundle ifadd ..................................................................................................................................34
atm bundle ifconfig ..............................................................................................................................35
atm bundle ifdelete ..............................................................................................................................36
atm bundle list...................................................................................................................................... 37
atm cac overbooking............................................................................................................................ 40
E-DOC-CTC-20061027-0003 v2.0
i
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
atm debug aal5stats.............................................................................................................................41
atm debug gstats..................................................................................................................................42
atm debug portstats .............................................................................................................................43
atm oam config.....................................................................................................................................44
atm oam ping........................................................................................................................................48
atm oam cc send ..................................................................................................................................51
atm oam vclb add................................................................................................................................. 52
atm oam vclb del..................................................................................................................................53
atm oam vclb list ..................................................................................................................................54
atm phonebook add .............................................................................................................................55
atm phonebook autolist....................................................................................................................... 56
atm phonebook flush ...........................................................................................................................58
atm qosbook add..................................................................................................................................60
atm qosbook config..............................................................................................................................61
atm qosbook ctdadd.............................................................................................................................62
atm qosbook ctdlist..............................................................................................................................65
atm qosbook delete..............................................................................................................................66
atm qosbook flush................................................................................................................................67
autopvc list............................................................................................................................................ 72
config dump.......................................................................................................................................... 75
config flush ...........................................................................................................................................76
config list............................................................................................................................................... 77
config save............................................................................................................................................ 80
E-DOC-CTC-20061027-0003 v2.0
ii
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
connection appconfig...........................................................................................................................82
connection applist ................................................................................................................................85
connection bind.................................................................................................................................... 86
connection bindlist............................................................................................................................... 87
connection config................................................................................................................................. 90
connection debug................................................................................................................................. 91
connection describe .............................................................................................................................92
connection info.....................................................................................................................................94
connection refresh................................................................................................................................96
connection timerconfig........................................................................................................................99
connection unbind..............................................................................................................................100
cwmp server config............................................................................................................................104
debug exec.......................................................................................................................................... 106
dhcp client ifconfig............................................................................................................................. 112
dhcp client ifdetach ............................................................................................................................114
dhcp client iflist...................................................................................................................................115
dhcp client ifrenew............................................................................................................................. 117
dhcp client debug clear......................................................................................................................119
dhcp client debug stats ......................................................................................................................120
E-DOC-CTC-20061027-0003 v2.0
iii
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
dhcp client debug traceconfig...........................................................................................................121
dhcp client rqoptions add.................................................................................................................. 122
dhcp client rqoptions delete..............................................................................................................123
dhcp client rqoptions list ...................................................................................................................124
dhcp client rqoptions optionlist ........................................................................................................125
dhcp client txoptions delete ..............................................................................................................127
dhcp client txoptions list.................................................................................................................... 128
dhcp client txoptions optionlist......................................................................................................... 129
dhcp relay debug stats....................................................................................................................... 131
dhcp relay debug traceconfig............................................................................................................ 132
dhcp relay config................................................................................................................................ 133
dhcp relay ifconfig..............................................................................................................................136
dhcp relay iflist ...................................................................................................................................138
dhcp relay list......................................................................................................................................139
dhcp relay ruleadd..............................................................................................................................141
dhcp rule add......................................................................................................................................143
dhcp rule debug traceconfig..............................................................................................................144
dhcp rule delete.................................................................................................................................. 145
dhcp rule flush.................................................................................................................................... 146
dhcp server config..............................................................................................................................148
dhcp server flush................................................................................................................................ 149
dhcp server policy ..............................................................................................................................150
dhcp server lease flush ......................................................................................................................158
dhcp server option flush.................................................................................................................... 160
dhcp server option instadd................................................................................................................161
E-DOC-CTC-20061027-0003 v2.0
iv
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
dhcp server option instdelete............................................................................................................ 163
dhcp server option tmpladd ..............................................................................................................165
dhcp server option tmpllist................................................................................................................167
dhcp server pool add .........................................................................................................................168
dhcp server pool list...........................................................................................................................174
dhcp server pool optadd.................................................................................................................... 175
dhcp server pool optdelete................................................................................................................176
dhcp server pool rtadd....................................................................................................................... 178
dhcp server pool rtdelete...................................................................................................................179
dhcp server pool ruleadd...................................................................................................................180
dhcp server pool ruledelete............................................................................................................... 181
dns client dnsdelete ...........................................................................................................................186
dns client dnslist................................................................................................................................. 187
dns client nslookup ............................................................................................................................189
dns server config................................................................................................................................ 190
dns server debug stats....................................................................................................................... 193
dns server debug spoof clear............................................................................................................ 194
dns server debug spoof update ........................................................................................................198
dns server host add............................................................................................................................199
dns server host delete........................................................................................................................ 200
dns server host flush.......................................................................................................................... 201
E-DOC-CTC-20061027-0003 v2.0
v
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
dns server route delete ......................................................................................................................205
dns server route list............................................................................................................................207
dsd debug config................................................................................................................................ 211
dsd debug recycling...........................................................................................................................214
dsd intercept config............................................................................................................................216
dsd urlfilter config ..............................................................................................................................219
dsd urlfilter rule add...........................................................................................................................220
dsd urlfilter rule delete....................................................................................................................... 221
dsd urlfilter rule flush.........................................................................................................................222
dsd urlfilter rule list ............................................................................................................................223
dyndns add .........................................................................................................................................228
dyndns list...........................................................................................................................................231
dyndns modify.................................................................................................................................... 232
dyndns host add................................................................................................................................. 234
dyndns host delete............................................................................................................................. 235
dyndns host flush............................................................................................................................... 236
dyndns service list..............................................................................................................................238
dyndns service modify....................................................................................................................... 240
env flush..............................................................................................................................................244
env get.................................................................................................................................................245
env list .................................................................................................................................................246
E-DOC-CTC-20061027-0003 v2.0
vi
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
env set .................................................................................................................................................247
env unset............................................................................................................................................. 248
eth ifadd ..............................................................................................................................................252
eth ifdetach .........................................................................................................................................256
eth iflist................................................................................................................................................ 257
eth bridge clear...................................................................................................................................259
eth bridge list......................................................................................................................................260
eth bridge dynvlan add......................................................................................................................266
eth bridge dynvlan config.................................................................................................................. 267
eth bridge dynvlan delete.................................................................................................................. 268
eth bridge dynvlan flush.................................................................................................................... 269
eth bridge flush...................................................................................................................................271
eth bridge ifattach ..............................................................................................................................273
eth bridge ifconfig ..............................................................................................................................274
eth bridge ifdelete ..............................................................................................................................276
eth bridge iflist.................................................................................................................................... 278
eth bridge igmpsnooping iflist.......................................................................................................... 283
eth bridge igmpsnooping clear......................................................................................................... 284
eth bridge macdelete .........................................................................................................................287
E-DOC-CTC-20061027-0003 v2.0
vii
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
eth bridge maclist............................................................................................................................... 289
eth bridge mcddelete .........................................................................................................................291
eth bridge rule add............................................................................................................................. 293
eth bridge rule delete.........................................................................................................................294
eth bridge rule flush...........................................................................................................................295
eth bridge rule list ..............................................................................................................................296
eth bridge vlan ifconfig......................................................................................................................298
eth bridge vlan ifdelete ......................................................................................................................299
eth bridge vlan iflist............................................................................................................................300
eth device ifconfig ..............................................................................................................................301
eth device iflist.................................................................................................................................... 303
eth switch group list...........................................................................................................................305
eth switch group move ......................................................................................................................306
eth switch mirror egress.................................................................................................................... 308
eth switch mirror ingress...................................................................................................................309
eth switch share delete ......................................................................................................................311
eth switch share list............................................................................................................................312
eth switch qos config .........................................................................................................................314
eth switch qos ifconfig....................................................................................................................... 315
eth switch qos list............................................................................................................................... 316
eth switch qos weights ......................................................................................................................317
eth switch shaper config.................................................................................................................... 318
eth switch storm ifconfig ...................................................................................................................321
eth switch storm iflist.........................................................................................................................322
eth vlan flush ......................................................................................................................................325
eth vlan list.......................................................................................................................................... 326
E-DOC-CTC-20061027-0003 v2.0
viii
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
expr add ..............................................................................................................................................328
expr list................................................................................................................................................ 335
expr modify.........................................................................................................................................339
firewall list...........................................................................................................................................347
firewall chain delete ...........................................................................................................................351
firewall debug clear............................................................................................................................355
firewall debug stats............................................................................................................................356
firewall debug traceconfig................................................................................................................. 357
firewall level delete ............................................................................................................................359
firewall level flush ..............................................................................................................................360
firewall level list.................................................................................................................................. 361
firewall level modify...........................................................................................................................362
firewall level set.................................................................................................................................. 363
firewall rule add.................................................................................................................................. 364
firewall rule delete..............................................................................................................................365
firewall rule flush................................................................................................................................ 366
firewall rule list ...................................................................................................................................367
firewall rule modify ............................................................................................................................369
grp config............................................................................................................................................ 376
grp flush ..............................................................................................................................................377
grp rtlist............................................................................................................................................... 378
grp rip config ......................................................................................................................................379
E-DOC-CTC-20061027-0003 v2.0
ix
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
grp rip flush.........................................................................................................................................382
grp rip show........................................................................................................................................ 385
hostmgr clear......................................................................................................................................390
hostmgr config ...................................................................................................................................391
hostmgr flush......................................................................................................................................393
hostmgr list.........................................................................................................................................394
ids config............................................................................................................................................. 397
ids pattern clear.................................................................................................................................. 401
ids threshold clear..............................................................................................................................406
igmp host flush...................................................................................................................................411
igmp host list ......................................................................................................................................412
igmp host ifconfig ..............................................................................................................................413
igmp host iflist.................................................................................................................................... 414
igmp proxy config ..............................................................................................................................417
igmp proxy ifconfig............................................................................................................................421
E-DOC-CTC-20061027-0003 v2.0
x
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
igmp proxy mbslist ............................................................................................................................423
igmp proxy debug clear..................................................................................................................... 424
igmp proxy debug stats..................................................................................................................... 425
igmp proxy debug traceconfig.......................................................................................................... 426
interface list.........................................................................................................................................428
ip arpdelete .........................................................................................................................................434
ip flush.................................................................................................................................................438
ip ifadd.................................................................................................................................................439
ip iflist.................................................................................................................................................. 445
ip ifwait................................................................................................................................................ 446
ip ipconfig ...........................................................................................................................................448
ip iplist.................................................................................................................................................450
ip mcast rtadd..................................................................................................................................... 451
ip mcast rtdelete................................................................................................................................. 452
ip mcast rtlist ......................................................................................................................................453
ip mcast flush......................................................................................................................................454
ip auto ifadd........................................................................................................................................ 460
ip auto ifattach.................................................................................................................................... 461
ip auto ifconfig.................................................................................................................................... 462
ip auto ifdelete.................................................................................................................................... 464
E-DOC-CTC-20061027-0003 v2.0
xi
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
ip auto ifdetach...................................................................................................................................465
ip auto iflist .........................................................................................................................................466
ip debug sendto.................................................................................................................................. 468
ipqos list..............................................................................................................................................477
ipqos ef list.......................................................................................................................................... 479
ipqos ef stats....................................................................................................................................... 480
ipqos queue config............................................................................................................................. 482
label add..............................................................................................................................................488
label delete.......................................................................................................................................... 489
label flush............................................................................................................................................ 490
label chain list..................................................................................................................................... 498
label rule add ......................................................................................................................................499
label rule debug clear.........................................................................................................................508
label rule debug stats.........................................................................................................................510
label rule debug traceconfig..............................................................................................................511
E-DOC-CTC-20061027-0003 v2.0
xii
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
language config.................................................................................................................................. 514
mbus client config..............................................................................................................................518
mbus client exec................................................................................................................................. 519
mbus client register............................................................................................................................521
mbus debug stats............................................................................................................................... 522
mbus debug clearstats....................................................................................................................... 523
mbus debug traceconfig.................................................................................................................... 524
mbus listsubscriptions....................................................................................................................... 529
mbus debug loadobjects ...................................................................................................................530
mbus debug unloadobjects ..............................................................................................................531
memm listobjects............................................................................................................................... 540
mlp debug export............................................................................................................................... 546
mlp debug stats.................................................................................................................................. 547
mlp debug traceconfig....................................................................................................................... 548
E-DOC-CTC-20061027-0003 v2.0
xiii
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
mlp privilege config ...........................................................................................................................552
mlp privilege delete............................................................................................................................553
mlp privilege list................................................................................................................................. 555
mlp privilege removezone................................................................................................................. 557
mlp role add........................................................................................................................................ 558
mlp role delete.................................................................................................................................... 562
mlp role list .........................................................................................................................................563
mlp role removepriv...........................................................................................................................564
nat iflist................................................................................................................................................ 569
nat mapadd.........................................................................................................................................570
nat mapdelete..................................................................................................................................... 574
nat tmpladd.........................................................................................................................................576
nat tmpldelete..................................................................................................................................... 580
nat tmplinst.........................................................................................................................................582
ppp ifattach .........................................................................................................................................587
ppp ifconfig.........................................................................................................................................589
ppp ifdelete .........................................................................................................................................594
ppp ifscan............................................................................................................................................ 599
ppp rtadd............................................................................................................................................. 600
ppp rtdelete.........................................................................................................................................602
ppp relay flush.................................................................................................................................... 604
ppp relay ifadd.................................................................................................................................... 605
E-DOC-CTC-20061027-0003 v2.0
xiv
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
ppp relay ifdelete................................................................................................................................ 607
ppp relay sesslist................................................................................................................................ 609
pptp ifadd............................................................................................................................................ 612
pptp profdelete ...................................................................................................................................617
pptp proflist.........................................................................................................................................618
script delete.........................................................................................................................................621
script flush...........................................................................................................................................622
script list..............................................................................................................................................623
service host assign............................................................................................................................. 628
service host delete..............................................................................................................................631
service host disable............................................................................................................................632
service host list...................................................................................................................................634
service host stats................................................................................................................................ 635
service host rule add.......................................................................................................................... 637
service host rule delete......................................................................................................................638
service system ifadd...........................................................................................................................639
service system ipdelete......................................................................................................................642
service system list ..............................................................................................................................643
E-DOC-CTC-20061027-0003 v2.0
xv
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
snmp getnext......................................................................................................................................652
snmp walk...........................................................................................................................................653
snmp community add........................................................................................................................ 654
snmp community delete.................................................................................................................... 655
snmp community list .........................................................................................................................656
snmp ifdelete ......................................................................................................................................659
snmp ifattach ......................................................................................................................................660
snmp ifconfig......................................................................................................................................662
sntp delete...........................................................................................................................................668
sntp list................................................................................................................................................ 670
software version................................................................................................................................. 673
system config......................................................................................................................................676
system flush........................................................................................................................................ 678
system locale ......................................................................................................................................679
system reboot..................................................................................................................................... 681
system reset........................................................................................................................................ 682
system timedreboot ...........................................................................................................................684
system debug autosave..................................................................................................................... 685
system debug stats ............................................................................................................................686
E-DOC-CTC-20061027-0003 v2.0
xvi
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
system rtc synchronize ......................................................................................................................688
system rtc settime ..............................................................................................................................689
systemlog send...................................................................................................................................695
systemlog DBG dbg_burst................................................................................................................. 698
systemlog DBG dbg_contents ...........................................................................................................699
upgrade debug sesslist......................................................................................................................705
upgrade profile add............................................................................................................................706
upgrade profile modify ......................................................................................................................707
upgrade profile delete........................................................................................................................ 708
upgrade ifadd......................................................................................................................................710
upgrade iflist....................................................................................................................................... 715
upnp config.........................................................................................................................................718
upnp flush ...........................................................................................................................................719
user delete...........................................................................................................................................726
E-DOC-CTC-20061027-0003 v2.0
xvii
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
user list................................................................................................................................................ 728
user rights ...........................................................................................................................................730
Auto-PVC Module............................................................................................................................... 736
Configuration Module........................................................................................................................ 736
DHCP Client Module...........................................................................................................................736
DHCP Relay Module ...........................................................................................................................737
DHCP Server Module .........................................................................................................................737
Firewall Module.................................................................................................................................. 738
LOGIN Module.................................................................................................................................... 739
Linestate Module................................................................................................................................ 739
NAPT Module......................................................................................................................................739
PPP Module.........................................................................................................................................740
RIP Module.......................................................................................................................................... 741
Routing Module.................................................................................................................................. 742
Session Module.................................................................................................................................. 742
SNTP Module......................................................................................................................................742
Software Module................................................................................................................................ 743
UPnP Module......................................................................................................................................743
Supported IP Protocols ......................................................................................................................746
Supported TCP/UDP Port Names...................................................................................................... 747
Supported ICMP Type Names ...........................................................................................................750
Supported Facilities...........................................................................................................................751
Supported Severities.........................................................................................................................752
IP Precedence......................................................................................................................................752
Differentiated Services Code Point (DSCP) ......................................................................................753
E-DOC-CTC-20061027-0003 v2.0
xviii
Download from Www.Somanuals.com. All Manuals Search And Download.
About this CLI Reference Guide
About this CLI Reference Guide
Used Symbols
A note provides additional information about a topic.
i
A caution warns you about potential problems or specific precautions that need to be taken.
!
Terminology
Generally, the Thomson ST516/536/546 will be referred to as Thomson ST in this CLI Reference Guide.
Typographical Conventions
Following typographical convention is used throughout this manual:
>
>
>
Sample text indicates a hyperlink to a Web site.
Sample text indicates an internal cross-reference.
Example: If you want to know more about guide, see “1 Introduction” on page 7”.
Sample text indicates an important content-related word.
Example: To enter the network, you must authenticate yourself.
> Sample textindicates a CLI command to be input after the CLI prompt.
Example: To obtain a list of all available command groups, type helpat the top level.
> Sample textindicates input in the CLI interface.
> Sample textindicates comment explaining output in the CLI interface.
Documentation and software updates
THOMSON continuously develops new solutions, but is also committed to improving its existing products.
For more information on THOMSON's latest technological innovations, documents and software releases,
E-DOC-CTC-20061027-0003 v2.0
1
Download from Www.Somanuals.com. All Manuals Search And Download.
About this CLI Reference Guide
E-DOC-CTC-20061027-0003 v2.0
2
Download from Www.Somanuals.com. All Manuals Search And Download.
Root Commands
1 Root Commands
From the root prompt, you can choose one of the following commands:
Command
help
Description
Displays the help information.
?
menu
exit
Displays the menu.
Exits the shell.
..
Exits group selection.
saveall
Saves current configuration.
Send ICMP ECHO_REQUEST packets.
Send ICMP/UDP packets to trace the ip path.
To obtain help on a specific command group:
i
>
>
type help, followed by the name of the command group, and then press ENTER, or
type the name of the command group, press ENTER, and then type help.
EXAMPLE:
<Administrator>=>help firewall
Following commands are available :
config
list
clear
: Display/Modify firewall configuration.
: Display firewall configuration.
: Clear firewall configuration.
Following command groups are available :
chain debug level rule
<Administrator>=>
E-DOC-CTC-20061027-0003 v2.0
3
Download from Www.Somanuals.com. All Manuals Search And Download.
Root Commands
ping
Send ICMP ECHO_REQUEST packets.
SYNTAX:
ping
proto = <{ip|atm}>
addr = <ip-address>
dest = <string>
[count = <number{0-1000000}>]
[size = <number{28-20028}>]
[interval(ms) = <number{100-1000000}>]
[DF-bit = <{disabled|enabled}>] [srcaddr = <ip-address>]
where:
proto
The interface type to be used.
Choose between:
REQUIRED
>
>
ip
atm
addr
dest
The destination IP address.
REQUIRED
REQUIRED
OPTIONAL
The destination address for the request.
count
A number between 1 and 1000000.
Represents the number of pings to send.
The default is 5.
size
A number between 0 and 20000.
Represents the size of the ping payload(s).
OPTIONAL
OPTIONAL
interval
A number between 100 and 1000000.
Represents the interval in milliseconds between packets.
The default is 100.
DF-bit
Set the Don't Fragment bit (or leave unset) in the IP header of ping.
The default is disabled.
OPTIONAL
OPTIONAL
scraddr
The IP source address to use.
EXAMPLE:
=>:ping proto=ip addr=192.168.1.70
Legend : Ping successful(!)
Ping Timeout(.)
Hit ctrl-g to abort...
!!!!!
--- ping statistics ---
5 packet(s) transmitted, 5 successful, 0% loss
rtt min/avg/max = 1 / 2 / 4 ms
=>
E-DOC-CTC-20061027-0003 v2.0
4
Download from Www.Somanuals.com. All Manuals Search And Download.
Root Commands
traceroute
Send ICMP/UDP packets to trace the IP path.
SYNTAX:
traceroute addr = <ip-address>
[count = <number{1-10}>]
[size = <number{1-20000}>]
[interval = <number{1000-60000}>]
[maxhops = <number{1-255}>]
[dstport = <number{1-65535}>]
[maxfail = <number{0-255}>]
[type = <{icmp | udp}>]
[utime = <{disabled | enabled}>]
where:
addr
The destination IP address.
REQUIRED
OPTIONAL
count
A number between 1 and 10.
Represents the number of times to reissue a traceroute request with the
same TTL.
The default is 3.
size
A number between 1 and 20000 (bytes).
Represents the size of the traceroute packet(s).
The default is 1.
OPTIONAL
OPTIONAL
OPTIONAL
interval
A number between 1000 and 60000 (milliseconds).
Represents the intermediate interval between two packets.
The default is 1000.
maxhops
A number between 1 and 255.
Represents the maximum number of routers through which a packet can
pass.
The default is 30.
dstport
maxfail
A number between 1 and 65535.
Represents the UDP destination port number to send to.
OPTIONAL
OPTIONAL
A number between 0 and 255.
Represents the maximum number of consecutive timeouts allowed
before terminating a traceroute request.
The default is 5.
type
The type of traceroute packet(s).
Choose between:
OPTIONAL
OPTIONAL
>
>
icmp
udp.
The default is icmp.
utime
Display time in useconds (enabled) or not (disabled).
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
5
Download from Www.Somanuals.com. All Manuals Search And Download.
Root Commands
EXAMPLE:
=>traceroute addr = 192.193.195.250 count=3 size=1 interval=1000 maxhops=30 dstport=33433
maxfail=5 type=icmp utime=yes
:traceroute addr=192.193.195.250
ttl=1
192.193.195.250 676 us 1351 us 648 us
=>
E-DOC-CTC-20061027-0003 v2.0
6
Download from Www.Somanuals.com. All Manuals Search And Download.
ADSL Commands
2 ADSL Commands
Introduction
This chapter describes the commands of the adslcommand group.
Contents
This chapter covers the following commands:
Show/set the Asymmetric Digital Subscriber Line (ADSL)
configuration.
Display the ADSL statistics and information about the DSL line
status.
Displays the number of bits per tone.
Enable/disable the Dual Ended Line Testing Interface (DELT)
Displays the modem options bitmap
Configure the modem options bitmap
Configure the ADSL tracelevel.
E-DOC-CTC-20061027-0003 v2.0
7
Download from Www.Somanuals.com. All Manuals Search And Download.
ADSL Commands
adsl config
Show/set the Asymmetric Digital Subscriber Line (ADSL) configuration.
SYNTAX:
adsl config
[opermode = <{multimode | multi_adsl2 | multi_readsl2
| multi_adsl2plus}>]
[trace = <{disabled | enabled}>]
where:
opermode
The operational mode of the Thomson ST.
Choose between:
OPTIONAL
>
>
>
>
multimode
multi_adsl2
multi_readsl2
multi_adsl2plus
The default is multi_adsl2plus.
trace
Enable or disable ADSL tracing.
OPTIONAL
The default is enabled.
EXAMPLE:
The example below shows the default configuration for a Thomson ST ADSL/POTS variant:
=>adsl config
ADSL configuration:
opermode = multi_adsl2plus
trace = on
modemoption = 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
=>
E-DOC-CTC-20061027-0003 v2.0
8
Download from Www.Somanuals.com. All Manuals Search And Download.
ADSL Commands
adsl info
Display the ADSL statistics and information about the DSL line status.
Although the same command is used for both Thomson ST ADSL/POTS and Thomson ST ADSL/ISDN
variants, the command features specific output parameters and counters per variant.
SYNTAX:
adsl info
E-DOC-CTC-20061027-0003 v2.0
9
Download from Www.Somanuals.com. All Manuals Search And Download.
ADSL Commands
EXAMPLE (for a Thomson ST ADSL/POTS variant):
=>adsl info
Modemstate
: up
Operation Mode
Channel Mode
Number of resets
: G.992.1 Annex A
: interleaved
: 1
Vendor
Country
Vendor
VendorSpecific
Local
Remote
00
:
:
:
0f
TMMB
0000
00
0000
00
StandardRevisionNr :
Downstream
26.0
Upstream
18.0
2.0
Margin
Attenuation [dB]
OutputPower [dBm]
[dB]
:
:
:
0.0
4.0
11.5
Available Bandwidth
Downstream
Upstream
Cells/s
14490
1509
Kbit/s
6144
640
:
:
Transfer statistics
Errors
Received FEC
Received CRC
Received HEC
Transmitted FEC :
Transmitted CRC :
Tranmsitted HEC :
:
:
:
0
0
0
0
0
0
Near end failures since reset
Loss of frame:
Loss of signal:
Loss of power:
Errored seconds:
0 failures
0 failures
0 failures
0 seconds
Near end failures last 15 minutes
Loss of frame:
Loss of signal:
Loss of power:
Errored seconds:
0 seconds
0 seconds
0 seconds
0 seconds
Near end failures current day
Errored seconds:
0 seconds
Near end failures previous day
Errored seconds:
0 seconds
=>
E-DOC-CTC-20061027-0003 v2.0
10
Download from Www.Somanuals.com. All Manuals Search And Download.
ADSL Commands
adsl debug traceconfig
Configure the ADSL tracelevel.
Syntax
adsl debug traceconfig [level = <number{0-2}>]
where:
level
Trace Level:
REQUIRED
>
0=disable tracing;
>
>
1=enable dsl manager tracing;
2=enable dsl driver tracing)
E-DOC-CTC-20061027-0003 v2.0
16
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
3 ATM Commands
Introduction
This chapter describes the commands of the atmcommand group.
Contents
This chapter covers the following commands:
Flush all Asynchronous Transfer Mode (ATM) interfaces.
Create a new ATM interface.
Attach a ATM interface.
Configure an ATM interface.
Delete an ATM interface.
Detach an ATM interface.
Display the ATM interfaces.
E-DOC-CTC-20061027-0003 v2.0
17
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
Add a new phonebook entry.
Show the auto PVCs.
Delete an existing phonebook entry.
Flush all the phonebook entries.
Display the current phonebook.
Add a new QoS book entry.
Modify the QoS book configuration.
Add a Connection Traffic Descriptor (CTD).
Delete a CTD.
Display all CTDs.
Flush all the QoS book entries.
Display the QoS book.
E-DOC-CTC-20061027-0003 v2.0
18
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm ifadd
Create a new ATM interface.
SYNTAX:
atm ifadd
intf = <string>
where:
intf
The name for the new ATM interface.
REQUIRED
Note If not specified, the destination parameter must be specified. In this
case the name of the destination will double as interface name.
EXAMPLE:
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : disabled Ulp : mac
Connection State : connected
=>
=>atm ifadd intf = RtPPPoA_atm
=>
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : disabled Ulp : mac
Connection State : connected
RtPPPoA_atm: dest : (none)
Retry : 10 QoS : default Encaps : llc Fcs : disabled Ulp : ip
Connection State : not-connected
=>
RELATED COMMANDS:
Delete an ATM interface.
Display the ATM interfaces.
E-DOC-CTC-20061027-0003 v2.0
20
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm ifattach
Attach a ATM interface.
SYNTAX:
atm ifattach
intf = <string>
where:
intf
The name of the ATM interface to be attached.
REQUIRED
EXAMPLE:
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : mac
Connection State : connected
RtPPPoA_atm: dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : ppp
Connection State : not-connected
=>atm ifattach intf=RtPPPoA_atm
=>
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : mac
Connection State : connected
RtPPPoA_atm: dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : ppp
Connection State : connected
=>
RELATED COMMANDS:
Detach an ATM interface.
E-DOC-CTC-20061027-0003 v2.0
21
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm ifconfig
Configure an ATM interface.
The interface to be configured must not be connected at the time of configuration. If this should be
the case, use the command :atm ifdetachbefore using the command :atm ifconfig.
i
SYNTAX:
atm ifconfig
intf = <string>
[dest = <string>]
[qos = <string>]
[clp = <{0|1|classification}>]
[clpthresh = <number{0-15}>]
[encaps = <{llc | vcmux}>]
[retry = <number{0-65535}>]
[fcs = <{disabled | enabled | auto}>]
[ulp = <{ip | mac | ppp}>]
where:
intf
The name of the ATM interface to be configured.
REQUIRED
OPTIONAL
dest
The WAN destination for this ATM interface.
Typically, an ATM phonebook entry.
qos
The name of the Quality of Service (QoS) book entry to apply on this ATM
OPTIONAL
interface.
The default is default.
clp
The mode used to determine the CLP bit value
OPTIONAL
OPTIONAL
OPTIONAL
clpthresh
Priority class threshold where CLP becomes 0 (for all classes >= threshold)
encaps
The type of encapsulation to be used for this ATM interface.
Choose between:
>
>
llc: Logical Link Control (LLC) / Sub Network Access Protocol (SNAP)
vcmux: Virtual Channel MUltipleXing (VCMUX).
The default is llc.
fcs
Enable or disable the inclusion of the Ethernet Frame Check Sequence
(FCS) in the packet header on the WAN side (only used for llc
encapsulation for mac).
OPTIONAL
OPTIONAL
The default is disabled.
Note This parameter is normally left disabled.
retry
A number between 0 and 65535.
Represents the number of times the Thomson ST retries to set up a WAN
connection before giving up.
The default is 10.
E-DOC-CTC-20061027-0003 v2.0
22
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
ulp
Select the Upper Layer Protocol (ULP) for this interface.
Choose between:
OPTIONAL
>
>
ip (for a Routed IPoA interface).
mac (for a Bridged Ethernet, Routed ETHoA, Bridged PPP over
Ethernet (PPPoE), Routed PPPoE or a PPPoE Relay interface).
>
ppp (for a Routed PPP over ATM (PPPoA) interface).
The default is ip.
EXAMPLE:
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : llc Fcs : disabled Ulp : mac
Connection State : connected
atm_8_35 : dest : atm_pvc_8_35
Retry : 10 QoS : default Encaps : llc Fcs : disabled Ulp : mac
Connection State : not-connected
=>
=>atm ifconfig intf=atm_8_35 dest=atm_pvc_8_35 encaps=vcmux ulp=ppp
=>
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : llc Fcs : disabled Ulp : mac
Connection State : connected
atm_8_35 : dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : disabled Ulp : ppp
Connection State : not-connected
=>
E-DOC-CTC-20061027-0003 v2.0
23
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm ifdelete
Delete an ATM interface.
SYNTAX:
atm ifdelete
intf = <string>
where:
intf
The name of the ATM interface to be deleted.
REQUIRED
EXAMPLE:
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : mac
Connection State : connected
RtPPPoA_atm: dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : ppp
Connection State : connected
=>
=>atm ifdelete intf=RtPPPoA_atm
=>
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : mac
Connection State : connected
=>
RELATED COMMANDS:
Create a new ATM interface.
Display the ATM interfaces.
E-DOC-CTC-20061027-0003 v2.0
24
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm ifdetach
Detach an ATM interface.
SYNTAX:
atm ifdetach
intf = <string>
where:
intf
The name of the ATM interface to be detached.
REQUIRED
EXAMPLE:
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : mac
Connection State : connected
RtPPPoA_atm: dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : ppp
Connection State : connected
=>
=>atm ifdetach intf=RtPPPoA_atm
=>
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : mac
Connection State : connected
RtPPPoA_atm: dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : ppp
Connection State : not-connected
=>
RELATED COMMANDS:
Attach a ATM interface.
E-DOC-CTC-20061027-0003 v2.0
25
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm iflist
Display the ATM interfaces.
SYNTAX:
atm iflist
[intf = <string>]
where:
intf
The name of the ATM interface to be shown.
OPTIONAL
Note If not specified, all the ATM interfaces are shown.
EXAMPLE:
=>atm iflist
atm_0_35 : dest : atm_pvc_0_35
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : mac
Connection State : connected
RtPPPoA_atm: dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : ppp
Connection State : connected
=>atm iflist intf=RtPPPoA_atm
RtPPPoA_atm: dest : RtPPPoA
Retry : 10 QoS : default Encaps : vcmux Fcs : off Ulp : ppp
Connection State : connected
=>
RELATED COMMANDS:
Create a new ATM interface.
Delete an ATM interface.
E-DOC-CTC-20061027-0003 v2.0
26
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle add
Add a new bundle of interfaces.
SYNTAX:
atm bundle add
where:
name
name = <string>
The name of the new bundle.
REQUIRED
EXAMPLE:
=>atm bundle add name=myBundle
=>atm bundle list
myBundle: Connection state : not-connected
Retry: 10
TX requested bytes: 0
TX bytes: 0
Policy: priority Propagate: disabled
requested frames: 0
frames: 0
RX bytes: 0
frames: 0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
27
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle attach
Attach a bundle of interfaces.
SYNTAX:
atm bundle attach
name = <string>
where:
name
The name of the bundle to be attached.
REQUIRED
EXAMPLE:
=>atm bundle attach name=myBundle
=>atm bundle list
myBundle: Connection state : connected
Retry: 10
TX requested bytes: 0
TX bytes: 0
Policy: priority Propagate: disabled
requested frames: 0
frames: 0
RX bytes: 0
frames: 0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
28
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle config
Modify a bundle of interfaces.
The bundle of interfaces to be configured must not be connected at the time of configuration. If this
should be the case, use the command :atm bundle detachbefore using the command :atm
bundle config.
i
SYNTAX:
atm bundle config
name = <string>
[policy = <{priority | connection}>]
[propagate = <{disabled | enabled}>]
[retry = <number{0-65535}>]
where:
name
The name of the bundle to be configured.
REQUIRED
OPTIONAL
policy
The traffic handling policy of the bundle.
Choose between:
>
priority: lower layer ATM interfaces can be configured for a certain
priority range, marked packets will be sent on the corresponding
interface.
>
connection: all the packets of the same connection will be sent via
the same interface.
The default is priority.
propagate
retry
Enable or disable propagation of packets.
OPTIONAL
OPTIONAL
When propagation is enabled, packets are sent via the first interface
configured for that traffic. If the interface goes down, the next interface in
the bundle will be used.
The default is disabled.
A number between 0 and 65535.
Represents the number of connection setup retries before giving up.
The default is 10.
EXAMPLE:
=>atm bundle list
myBundle: Connection state : not-connected
Retry: 10
Policy: priority Propagate: disabled
requested frames: 0
frames: 0
TX requested bytes: 0
TX bytes: 0
RX bytes: 0
frames: 0
=>atm bundle config name=myBundle policy=connection retry=15
=>atm bundle list
myBundle: Connection state : not-connected
Retry: 15
Policy: connection Propagate: disabled
TX requested bytes: 0
TX bytes: 0
requested frames: 0
frames: 0
RX bytes: 0
frames: 0
=>
E-DOC-CTC-20061027-0003 v2.0
29
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle clear
Clear the bundle statistics.
SYNTAX:
atm bundle clear
[name = <string>]
where:
name
The name of the bundle for which the statistics must be cleared.
Note If not specified, the statistics for all the bundles will be cleared.
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
30
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle ifadd
Add an interface on a bundle.
Up to 8 interfaces or (sub-)bundles can be added to one bundle.
i
SYNTAX:
atm bundle ifadd
name = <string>
intf = <string>
[index = <number{0-6}>]
where:
name
The name of the bundle to which an ATM interface must be added.
The name of the ATM interface to be added.
REQUIRED
REQUIRED
OPTIONAL
intf
index
A number between 0 and 6.
Represents the index of the ATM interface.
EXAMPLE:
=>atm bundle ifadd name=myBundle intf=myATMintf
=>atm bundle list
myBundle: Connection state : not-connected
Retry: 15
Policy: connection
TX requested bytes: 0
TX bytes: 0
requested frames: 0
frames: 0
RX bytes: 0
frames: 0
Interface: myATMintf
TX bytes: 0
State: enabled
Selector: 0-15
frames: 0
RX bytes: 0
frames: 0
RX discarded bytes: 0
Disconnects: 0
discarded frames: 0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
34
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle ifconfig
Configure an interface from a bundle.
The interface to be configured must not be connected at the time of configuration. If this should be
the case, use the command :atm bundle ifdetachbefore using the command :atm bundle
ifconfig.
i
SYNTAX:
atm bundle ifconfig
name = <string>
intf = <string>
[state = <{disabled | enabled}>]
[low = <number{0-15}>]
[high = <number{0-15}>]
where:
name
The name of the bundle from which an ATM interface must be configured.
The name of the ATM interface to be configured.
REQUIRED
REQUIRED
OPTIONAL
intf
state
Enable or disable the ATM interface.
The default is enabled.
low
A number between 0 and 15.
OPTIONAL
Represents the low selector value.
Note This parameter must only be configured when the policy of the
high
A number between 0 and 15.
OPTIONAL
Represents the high selector value.
Note This parameter must only be configured when the policy of the
E-DOC-CTC-20061027-0003 v2.0
35
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle ifdelete
Remove an interface from a bundle.
SYNTAX:
atm bundle ifdelete
name = <string>
intf = <string>
where:
name
intf
The name of the bundle from which an ATM interface must be removed.
The name of the ATM interface to be removed.
REQUIRED
REQUIRED
EXAMPLE:
=>atm bundle iflist
Test
: dest : (none)
Retry : 10 QoS : default Encaps : llc Fcs : off Ulp : ip
Connection State : not-connected
=>atm bundle ifdelete intf=Test
=>atm bundle iflist
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
36
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm bundle list
Display the current bundles.
SYNTAX:
atm bundle list
EXAMPLE:
=>atm bundle list
Test
: Connection state : not-connected
Retry: 10
Policy: priority
requested frames: 0
frames: 0
TX requested bytes: 0
TX bytes: 0
RX bytes: 0
frames: 0
Interface: Test
State: enabled
Selector: 0-15
frames: 0
TX bytes: 0
RX bytes: 0
frames: 0
RX discarded bytes: 0
Disconnects: 0
discarded frames: 0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
37
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm cac config
Configure the ATM connection admission control.
SYNTAX:
atm cac config
config port = <{dsl0|dsl1|atm2|atm3|aal5|atm5} or
number>
state = <{disabled|enabled}>
where:
config
port
The port for which CAC is configured.
Enable/disable CAC for an ATM port.
REQUIRED
REQUIRED
state
EXAMPLE:
{Administrator}=>atm cac config
port = dsl0
state = enabled
:atm cac config port=dsl0 state=enabled
{Administrator}=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
38
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm cac list
Display all the CAC parameters.
SYNTAX:
atm cac list
EXAMPLE:
{Administrator}[atm cac]=>list
CAC: port: dsl0 state: enabled
CAC: port: dsl1 state: enabled
CAC: port: atm2 state: enabled
CAC: port: aal5 state: disabled
CAC: port: atm5 state: disabled
Overbooking: realtime: 0% non-realtime: 0%.
{Administrator}[atm cac]=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
39
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm cac overbooking
Configure ATM overbooking parameters.
SYNTAX:
atm cac overbooking
rt = <number{0-1000}>
nrt = <number{0-1000}>
where:
rt
A number between 0 and 1000.
The realtime overbooking percentage.
REQUIRED
REQUIRED
nrt
A number between 0 and 1000.
The non-realtime overbooking percentage.
EXAMPLE:
{Administrator}[atm cac]=>overbooking rt 20 nrt 500
{Administrator}[atm cac]=>list
CAC: port: dsl0 state: enabled
CAC: port: dsl1 state: enabled
CAC: port: atm2 state: enabled
CAC: port: aal5 state: disabled
CAC: port: atm5 state: disabled
Overbooking: realtime: 20% non-realtime: 500%.
{Administrator}[atm cac]=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
40
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm debug aal5stats
Display ATM Adaptation Layer 5 (AAL5) port specific ATM statistics.
SYNTAX:
atm debug aal5stats
port = <{dsl0|dsl1|atm2|atm3|aal5|atm5} or number>
vpi = <number{0-15}>
[vci = <number{0-511}>]
[clear = <{disabled | enabled}>]
where:
port
The port number for which statistics will be retrieved.
Choose between:
REQUIRED
>
>
>
>
>
>
DSL0
DSL1
ATM2
ATM3
AAL5
ATM5
Or specify a port number (dsl0 has port number 0).
vpi
A number between 0 and 15.
Represents the Virtual Path Identifier (VPI) number for which statistics will
be retrieved.
REQUIRED
OPTIONAL
OPTIONAL
vci
A number between 0 and 511.
Represents the Virtual Channel Identifier (VCI) number for which statistics
will be retrieved.
clear
Enable or disable clearing of the statistics after request.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
41
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm debug gstats
Display ATM global statistics.
SYNTAX:
atm debug gstats
[clear = <{disabled | enabled}>]
where:
clear
Enable or disable clearing of the statistics after request.
OPTIONAL
EXAMPLE:
{admin}[atm debug]=>gstats
# of received octets = 1802.
# of transmitted octets = 4346.
# of received cells = 34.
# of transmitted cells = 82.
# of unknown cells = 0.
# of errors on the input = 0.
# of errors on output = 0.
{admin}[atm debug]=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
42
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm debug portstats
Display port specific ATM statistics.
SYNTAX:
atm debug portstats
port = <{dsl0} or number>
[clear = <{disabled | enabled}>]
where:
port
The port number for which statistics will be retrieved.
Choose between:
REQUIRED
OPTIONAL
>
DSL0
Or specify a port number (dsl0 has port number 0).
clear
Enable or disable clearing of the statistics after request.
EXAMPLE:
=>atm debug portstats port=dsl0
# of received octets = 1961.
# of transmitted octets = 4717.
# of received cells = 37.
# of transmitted cells = 89.
# of unknown cells = 0.
# of errors on the input = 0.
# of errors on output = 0.
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
43
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam config
Modify the ATM Operation and Maintenance (OAM) settings.
SYNTAX:
atm oam config
[clp = <number{0-1}>]
[loopbackid = <string>]
where:
clp
A number (0 or 1).
Represents the Cell Loss Priority (CLP) bit value of the OAM cells.
The default is 1.
OPTIONAL
OPTIONAL
loopbackid
A hexadecimal string.
Represents the loopback ID for processing of segment loopback cells.
The default is 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
44
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam list
Display the ATM OAM settings.
SYNTAX:
atm oam list
EXAMPLE:
=>atm oam list
OAM config dump
-------------------
CLP bit value : 1
Loopback id : 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a
OAM data blocking mode
--------------------------
Port dsl0: blocking
Port dsl1: blocking
Port atm2: blocking
Port atm3: blocking
Port aal5: blocking
Port atm5: blocking
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
45
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam modify
Modify the ATM OAM data blocking mode.
SYNTAX:
atm oam modify
port = <{dsl0} or number>
blocking = <{disabled | enabled}>
where:
port
The port for which OAM blocking is configured.
Choose between:
REQUIRED
REQUIRED
>
DSL0
Or specify a port number (dsl0 has port number 0).
blocking
Enable or disable the OAM data blocking mode on this port.
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
46
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
EXAMPLE:
=>atm oam list
OAM config dump
-------------------
CLP bit value : 1
Loopback id : 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a
OAM data blocking mode
--------------------------
Port dsl0: blocking
Port dsl1: blocking
Port atm2: blocking
Port atm3: blocking
Port aal5: blocking
Port atm5: blocking
=>atm oam modify port=dsl1 blocking=disabled
=>:atm oam list
OAM config dump
-------------------
CLP bit value : 1
Loopback id
: 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a
OAM data blocking mode
--------------------------
Port dsl0: blocking
Port dsl1: non blocking
Port atm2: blocking
Port atm3: blocking
Port aal5: blocking
Port atm5: blocking
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
47
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam ping
Send ATM loopback cells.
SYNTAX:
atm oam ping
dest = <string>
[count = <number{1-1000000}>]
[interval = <number{100-1000000}>]
where:
dest
The destination address for the request.
This can be any ATM phonebook entry.
REQUIRED
OPTIONAL
OPTIONAL
count
interval
A number between 1 and 1000000.
Represents the number of pings to send.
A number between 100 and 1000000 (milliseconds).
Represents the interval between packets.
EXAMPLE:
=>atm oam ping dest=atm_ph_8_35 count=10 interval=1000
loopback: successful, sequence: 1 time: 37890 usec
loopback: successful, sequence: 2 time: 39118 usec
loopback: successful, sequence: 3 time: 39116 usec
loopback: successful, sequence: 4 time: 39187 usec
loopback: successful, sequence: 5 time: 38605 usec
loopback: successful, sequence: 6 time: 38764 usec
loopback: successful, sequence: 7 time: 38752 usec
loopback: successful, sequence: 8 time: 38813 usec
loopback: successful, sequence: 9 time: 38848 usec
loopback: successful, sequence: 10 time: 38941 usec
--- loopback statistics ---
10 loopbacks transmitted, 10 successful, 0% loss, time 1390 ms
rtt min/avg/max = 37890/38803/39187
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
48
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam cc list
Display Continuity Check (CC) configuration.
SYNTAX:
atm oam cc list
EXAMPLE:
=>atm oam cclist
PORT = 0 VPI = 15 VCI = 16 End2End Mode = Auto Segment Mode = Auto
PORT = 0 VPI = 0 VCI = 35 End2End Mode = Auto Segment Mode = Auto
PORT = 0 VPI = 8 VCI = 35 End2End Mode = Auto Segment Mode = Auto
PORT = 0 VPI = 0 VCI = 16 End2End Mode = Auto Segment Mode = Auto
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
49
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam cc modify
Modify CC on the connection.
SYNTAX:
atm oam modify
port = <{dsl0|dsl1|atm2|atm3|aal5|atm5} or number>
vpi = <number{0-15}>
[vci = <number{0-511}>]
[transmit = <{disabled | enabled}>]
[receive = <{disabled | enabled}>]
[auto = <{disabled | enabled}>]
[span = <{segment | end2end}>]
where:
port
The ATM port number.
Choose between:
REQUIRED
>
>
>
>
>
>
DSL0
DSL1
ATM2
ATM3
AAL5
ATM5
Or specify a port number (dsl0 has port number 0).
vpi
vci
A number between 0 and 15.
Represents the VPI.
REQUIRED
OPTIONAL
A number between 0 and 511.
Represents the VCI.
Note For a Virtual Path (VP) cross-connection, use 0 or do not specify.
Enable or disable transmission of CC cells.
transmit
receive
auto
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
Enable or disable loss of continuity.
Enable or disable remote CC activation/deactivation.
span
Select the CC span.
Choose between:
>
end2end: monitoring occurs on the entire VC between two ATM end
stations.
>
segment: monitoring occurs on a VC segment between the Thomson
ST and a first-hop ATM switch.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
50
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam cc send
Send CC activate/deactivate to connection.
SYNTAX:
atm oam cc send
port = <{dsl0} or number>
vpi = <number{0-15}>
[vci = <number{0-511}>]
[span = <{segment | end2end}>]
[action = <{activate | deactivate}>]
[direction = <{source | sink | both}>]
where:
port
The ATM port number.
Choose between:
REQUIRED
>
DSL0.
Or specify a port number (dsl0 has port number 0).
vpi
vci
A number between 0 and 15.
Represents the VPI.
REQUIRED
OPTIONAL
A number between 0 and 511.
Represents the VCI.
Note For a VP cross-connection, use 0 or do not specify.
span
Select the CC span.
Choose between:
OPTIONAL
>
end2end: monitoring occurs on the entire VC between two ATM end
stations.
>
segment: monitoring occurs on a VC segment between the Thomson
ST and a first-hop ATM switch.
action
Activate or deactivate CC.
The default is deactivate.
OPTIONAL
OPTIONAL
direction
Indicates the direction of CC activity.
Choose between:
>
>
>
source
sink
both.
The default is both.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
51
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam vclb add
Create a loopback connection for VC.
SYNTAX:
atm oam vclb add
port = <{dsl0} or number>
vpi = <number{0-15}>
[vci = <number{0-511}>]
where:
port
The ATM port number.
Choose between:
REQUIRED
>
DSL0
Or specify a port number (dsl0 has port number 0).
vpi
vci
A number between 0 and 15.
Represents the VPI.
REQUIRED
OPTIONAL
A number between 0 and 511.
Represents the VCI.
Note For a VP cross-connection, use 0 or do not specify.
EXAMPLE:
=>atm oam vclb add port=dsl0 vpi=0 vci=36
=>atm oam vclb list
PORT = 0 VPI = 0 VCI = 36
=>atm oam vclb add port=dsl1 vpi=0 vci=37
=>atm oam vclb list
PORT = 0 VPI = 0 VCI = 36
PORT = 1 VPI = 0 VCI = 37
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
52
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm oam vclb del
Delete a loopback connection for VC.
SYNTAX:
atm oam vclb del
port = <{dsl0} or number>
vpi = <number{0-15}>
[vci = <number{0-511}>]
where:
port
The ATM port number.
Choose between:
REQUIRED
>
DSL0
Or specify a port number (dsl0 has port number 0).
vpi
vci
A number between 0 and 15.
Represents the VPI.
REQUIRED
OPTIONAL
A number between 0 and 511.
Represents the VCI.
Note For a VP cross-connection, use 0 or do not specify.
EXAMPLE:
=>atm oam vclb list
PORT = 0 VPI = 0 VCI = 36
PORT = 1 VPI = 0 VCI = 37
=>atm oam vclb del port=dsl1 vpi=0 vci=37
=>atm oam vclb list
PORT = 0 VPI = 0 VCI = 36
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
53
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm phonebook add
Add a new phonebook entry.
SYNTAX:
atm phonebook add
name = <string>
addr = <atmchannel : PVC syntax is [port.]vpi.vci
port=dsl0 | ...>
where:
name
The name of the new phonebook entry.
This name can be freely chosen, however two limitations apply:
REQUIRED
>
The name of a phonebook entry intended for the Relayed PPPoA
(PPPoA-to-PPTP Relaying) packet service may not start with capital P or
capital T
>
The name of a phonebook entry intended for the PPP-to-DHCP
spoofing packet service must start with DHCP (for example
DHCP_Spoof01).
addr
The ATM address for this destination.
REQUIRED
It is composed of a VPI and a VCI identifying ATM virtual channels. In most
cases the values are provided by the Service Provider.
Accepted VPI: a number between 0 and 15.
Accepted VCI: a number between 0 and 511.
EXAMPLE:
=>atm phonebook list
Name
Use Address
atm_pvc_0_35 1
0.35
=>atm phonebook add name=RtPPPoA addr=8.35
=>atm phonebook list
Name
Use Address
atm_pvc_0_35 1
0.35
8.35
RtPPPoA
=>
0
RELATED COMMANDS:
Delete an existing phonebook entry.
Display the current phonebook.
E-DOC-CTC-20061027-0003 v2.0
55
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm phonebook autolist
Show the auto PVCs.
Auto PVCs are only shown if they are supported by the Central Office DSLAM.
i
SYNTAX:
atm phonebook autolist
EXAMPLE:
=>atm phonebook autolist
8.35
=>
RELATED COMMANDS:
Display the current phonebook.
E-DOC-CTC-20061027-0003 v2.0
56
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm phonebook delete
Delete an existing phonebook entry.
This command is only applicable for phonebook entries that are not used (in other words, not
configured for any packet service).
i
SYNTAX:
atm phonebook delete
where:
name
name = <string>
The name of the phonebook entry to be deleted.
REQUIRED
Tip
Use the command :atm phonebook listto check whether the
entry is in use (Use=1) or not (Use=0).
EXAMPLE:
=>atm phonebook list
Name
Use Address
atm_pvc_0_35 1
0.35
8.35
RtPPPoA
0
=>atm phonebook delete name=RtPPPoA
=>atm phonebook list
Name
atm_pvc_0_35 1
=>
Use Address
0.35
RELATED COMMANDS:
Add a new phonebook entry.
Display the current phonebook.
E-DOC-CTC-20061027-0003 v2.0
57
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm phonebook flush
Flush all the phonebook entries.
1. Phonebook entries that are in use, cannot be flushed.
2. This command does not impact previously saved configurations.
i
SYNTAX:
atm phonebook flush
EXAMPLE:
=>atm phonebook list
Name
Use Address
atm_pvc_0_35 1
RtPPPoA
=>
=>atm phonebook flush
0.35
0
8.35
Some phonebook entries are still in use. Entries that are in use cannot be deleted.
=>
=>atm phonebook list
Name
Use Address
atm_pvc_0_35 1
=>
0.35
E-DOC-CTC-20061027-0003 v2.0
58
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm phonebook list
Display the current phonebook.
SYNTAX:
atm phonebook list
EXAMPLE:
=>atm phonebook list
Name
Use Address
atm_pvc_0_35 1
0.35
8.35
RtPPPoA
=>
0
RELATED COMMANDS:
Add a new phonebook entry.
Show the auto PVCs.
Delete an existing phonebook entry.
E-DOC-CTC-20061027-0003 v2.0
59
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm qosbook add
Add a new QoS book entry.
SYNTAX:
atm qosbook add
name = <string>
[txctd = <string>]
[rxctd = <string>]
where:
name
txctd
The name of the new QoS entry.
REQUIRED
OPTIONAL
The name of the Conformance Traffic Descriptor (CTD) for the transmit
(upstream) direction.
rxctd
The name of the CTD for the receive (downstream) direction.
OPTIONAL
EXAMPLE:
=>atm qosbook list
Name
default
=>
Ref Tx CTD
default
Rx CTD
default
3
RELATED COMMANDS:
Display the QoS book.
E-DOC-CTC-20061027-0003 v2.0
60
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm qosbook config
Modify the QoS book configuration.
SYNTAX:
atm qosbook config
[format = <{bytes | cells}>]
where:
format
The input/output format of the QoS book.
Choose between:
OPTIONAL
>
>
bytes: the output is shown in Kbits or bytes.
cells: the output is shown in cps or cells.
The default is bytes.
EXAMPLE:
=>atm qosbook ctdlist
Name Ref Conf
Peak
Sust
Burst
Minrate Frame
Cdvt
0
RT
FD
(Kbits) (Kbits) (bytes) (Kbits) (bytes)
default 2
led
UBR
linerate 0
0
0
0
disabled
disab
=>atm qosbook config format=cells
=>atm qosbook ctdlist
Name
Ref Conf
Peak
(cps)
Sust
(cps)
Burst
(cells) (cps)
Minrate Frame
Cdvt
0
RT
FD
(cells)
default 2
UBR
linerate 0
0
0
0
disabled
disab
led
=>
E-DOC-CTC-20061027-0003 v2.0
61
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm qosbook ctdadd
Add a Connection Traffic Descriptor (CTD).
SYNTAX:
atm qosbook ctdadd
name = <string>
conformance = <{UBR | CBR | VBR }>
[peakrate = <number{0-27786}>]
[sustrate = <number{0-27786}
[maxburst = <number{0-12240}>]
[realtime = <{enabled | disabled}>]
where:
name
The name of the new CTD.
The ATM service conformance definition.
REQUIRED
REQUIRED
OPTIONAL
conformance
peakrate
A number between 0 and 27786.
Represents the peak rate (in kilobits per second).
The default is 0 (indicates linerate for UBR).
sustrate
maxburst
realtime
A number between 0 and 27786.
Represents the sustainable rate (in kilobits per second) (VBR only).
The default is 0.
OPTIONAL
A number between 48 and 12240.
Represents the maximum burst size (in bytes) (VBR or GFR).
The default is 0.
OPTIONAL
OPTIONAL
Enable or disable realtime traffic (VBR only).
The default is disabled.
EXAMPLE:
=>atm qosbook ctdadd name=High conformance=CBR peakrate=27786
=>atm qosbook ctdlist
Name
Ref Conf
Peak
Sust
Burst
Minrate Frame
Cdvt
RT
FD
(Kbits) (Kbits) (bytes) (Kbits) (bytes)
default 2
led
UBR
CBR
linerate 0
27786 0
0
0
0
0
0
0
0
0
disabled
disabled
disab
disab
High
led
=>
0
E-DOC-CTC-20061027-0003 v2.0
62
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
IMPORTANT NOTE:
The Thomson ST always rounds up specified burst sizes to a multiple of 48 bytes (a multiple of ATM cells).
Example:
In the example below a burst size of 100 bytes is specified (maxburst=100). The Thomson ST will round up
the burst size to the closest matching multiple of 48 bytes, as can be seen when displaying the profile via the
command :atm qosbook ctdlist(burst=144).
=>atm qosbook ctdadd name=Medium conformance=VBR peakrate=27786 sustrate=20000 maxburst=100
=>atm qosbook ctdlist
Name
Ref Conf
Peak
Sust
Burst
Minrate Frame
Cdvt
RT
FD
(Kbits) (Kbits) (bytes) (Kbits) (bytes)
default 2
Medium 0
=>
UBR
VBR
linerate 0
27786 20000
0
144
0
0
0
0
0
0
disabled disabled
disabled disabled
RELATED COMMANDS:
Delete a CTD.
Display all CTDs.
E-DOC-CTC-20061027-0003 v2.0
63
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm qosbook ctddelete
Delete a CTD.
SYNTAX:
atm qosbook ctddelete name = <string>
[force = <{disabled | enabled}>]
where:
name
The name of the CTD entry to be deleted.
REQUIRED
OPTIONAL
force
Enable or disable to force delete the entry even when it is still in use.
The default is disabled.
EXAMPLE:
=>atm qosbook ctdlist
Name Ref Conf
Peak
Sust
Burst
Minrate Frame
Cdvt
RT
FD
(Kbits) (Kbits) (bytes) (Kbits) (bytes)
default 2
led
UBR
CBR
linerate 0
27786 0
0
0
0
0
0
0
0
0
disabled
disabled
disab
disab
High
led
0
=>atm qosbook ctddelete name=High
=>atm qosbook ctdlist
Name
Ref Conf
Peak
Sust
Burst
Minrate Frame
Cdvt
0
RT
FD
(Kbits) (Kbits) (bytes) (Kbits) (bytes)
default 2
UBR
linerate 0
0
0
0
disabled
disab
led
=>
RELATED COMMANDS:
Add a Connection Traffic Descriptor (CTD).
Display all CTDs.
E-DOC-CTC-20061027-0003 v2.0
64
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm qosbook ctdlist
Display all CTDs.
SYNTAX:
atm qosbook ctdlist
EXAMPLE:
=>atm qosbook ctdlist
Name
Ref Conf
Peak
Sust
Burst
Minrate Frame
Cdvt
RT
FD
(Kbits) (Kbits) (bytes) (Kbits) (bytes)
default 2
led
UBR
CBR
linerate 0
27786 0
0
0
0
0
0
0
0
0
disabled
disabled
disab
disab
High
led
=>
0
RELATED COMMANDS:
Add a Connection Traffic Descriptor (CTD).
Delete a CTD.
E-DOC-CTC-20061027-0003 v2.0
65
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm qosbook delete
Delete a QoS book entry.
SYNTAX:
atm qosbook delete
name = <string>
[force = <{disabled | enabled}>]
where:
name
force
The name of the QoS book entry to be deleted.
REQUIRED
OPTIONAL
Enable or disable to force delete the entry even when it is still in use.
The default is disabled.
EXAMPLE:
=>atm qosbook list
Name Ref Type
TX peak sust
burst
RX peak sust
burst
framediscard
(Kbits) (Kbits) (bytes) (Kbits) (Kbits) (bytes)
default 3
TestVBR 0
ubr
vbr-nrt 1500
linerate 0
1000
0
144
linerate 0
0
144
disabled
enabled
1500
1000
=>atm qosbook delete name=TestVBR
=>atm qosbook list
Name
Ref Type
TX peak sust
burst
RX peak sust
burst
framediscard
disabled
(Kbits) (Kbits) (bytes) (Kbits) (Kbits) (bytes)
linerate 0 linerate 0
default 3
=>
ubr
0
0
RELATED COMMANDS:
Add a new QoS book entry.
Display the QoS book.
E-DOC-CTC-20061027-0003 v2.0
66
Download from Www.Somanuals.com. All Manuals Search And Download.
ATM Commands
atm qosbook list
Display the QoS book.
SYNTAX:
atm qosbook list
EXAMPLE:
=>atm qosbook list
Name
Ref Type
TX peak sust
burst
RX peak sust
burst
framediscard
(Kbits) (Kbits) (bytes) (Kbits) (Kbits) (bytes)
default 3
TestVBR 0
=>
ubr
vbr-nrt 1500
linerate 0
1000
0
144
linerate 0
1500 1000
0
144
disabled
enabled
RELATED COMMANDS:
Add a new QoS book entry.
E-DOC-CTC-20061027-0003 v2.0
68
Download from Www.Somanuals.com. All Manuals Search And Download.
AutoPVC Commands
autopvc config
Configure autopvc.
SYNTAX:
autopvc config [mode = <{pseudo | passive | active}>]
[type = <{bridge | pppoerelay | ipoa | ethoa | pppoa | pppoe
}>]
[overwrite = <{disabled | enabled}>]
[peakrate = <number{0-27786}>]
where:
mode
Select the autopvc mode:
OPTIONAL
>
>
>
pseudo: only pseudo-ILMI (VP/VC 15/16) is enabled. When the
connection parameters are written to the MIB, this information is
displayed on CLI or web interface but these parameters are not used
for configuration.
passive: both ILMI (VP/VC 0/16) and pseudo-ILMI (VP/VC 15/16) are
enabled. When the connection parameters are written to the MIB, this
information is displayed on CLI or web interface but these parameters
are not used for configuration.
active: both ILMI (VP/VC 0/16) and pseudo-ILMI (VP/VC 15/16) are
enabled. When the connection parameters are written to the MIB,
these parameters are used to configure phonebook entries, qosbook
profiles and bind bridge or PPPoE interfaces on top.
The default is passive.
type
Select the type of autopvc.
Choose between:
OPTIONAL
>
>
bridge
pppoerelay: an ETHoA interface will be created, will be bound to the
ILMI Permanent Virtual Channel (PVC) and will be added to the PPPoE
relay as relay port.
>
>
>
>
ipoa
ethoa
pppoa
pppoe.
overwrit
e
Enable or disable UBR peak rate overwrite.
The default is disabled.
OPTIONAL
OPTIONAL
peakrate
A number between 0 and 27786.
Represents the UBR peak rate (in kilobits per second).
The default is 0 (indicates the linerate).
E-DOC-CTC-20061027-0003 v2.0
70
Download from Www.Somanuals.com. All Manuals Search And Download.
AutoPVC Commands
EXAMPLE:
=>autopvc config
Autopvc mode
Autopvc type
: passive
:
Autopvc standard: unknown
Autopvc pseudo : unknown
UBR overwrite
UBR peak rate
=>
: disabled
: linerate
E-DOC-CTC-20061027-0003 v2.0
71
Download from Www.Somanuals.com. All Manuals Search And Download.
AutoPVC Commands
autopvc list
Show the retrieved information.
SYNTAX:
autopvc list [table = <{Port | AtmLayer | Vpc | Vcc | Address
| AddressRegistrationAdmin | AtmServiceType
| AtmServiceConnectionInfo | AAL1Profile |
| AAL34Profile | AAL5Profile | AAL2CommonProfile
| AAL2TrunkingProfile | AAL2LESProfile
| AtmServiceConnInfoExtension |
| AtmServiceTypeExtension |
AAL5ProfileExtension}>]
where:
table
Select the autopvc table for which the information must be shown.
Choose between:
OPTIONAL
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
Port
AtmLayer
Vpc
Vcc
Address
AddressRegistrationAdmin
AtmServiceType
AtmServiceConnectionInfo
AAL1Profile
AAL34Profile
AAL5Profile
AAL2CommonProfile
AAL2TrunkingProfile
AAL2LESProfile
AtmServiceConnInfoExtension
AtmServiceTypeExtension
AAL5ProfileExtension.
EXAMPLE:
=>autopvc list
Address Type
BestEff
Par1
Par2
Par3
Par4
Par5
8.35
ubr
Enabled Tx: 451
Rx: 7923
0
0
0
0
0
0
0
0
=>
E-DOC-CTC-20061027-0003 v2.0
72
Download from Www.Somanuals.com. All Manuals Search And Download.
Config Commands
config delete
Delete a user configuration file.
SYNTAX:
config delete
[filename = <string>]
where:
filename
Name of the user configuration file to be deleted.
Note If not specified, all the user configuration files that were saved in
OPTIONAL
the Thomson ST permanent storage will be deleted.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
74
Download from Www.Somanuals.com. All Manuals Search And Download.
Config Commands
config dump
Show the saved configuration file.
SYNTAX:
config dump
where:
sections
[sections = <string>]
Sections to be dumped
OPTIONAL
RELATED COMMANDS:
Delete a user configuration file.
E-DOC-CTC-20061027-0003 v2.0
75
Download from Www.Somanuals.com. All Manuals Search And Download.
Config Commands
config flush
Flush the loaded configuration.
1. This flush command combines all the possible flush commands.
2. This command does not affect saved configurations.
i
SYNTAX:
config flush
where:
flush_ip
[flush_ip = <{enabled | disabled}>]
Flush IP settings (enabled) or not (disabled).
OPTIONAL
The default is enabled.
Note Not keeping the IP settings could cause lost IP connectivity in the
LAN.
E-DOC-CTC-20061027-0003 v2.0
76
Download from Www.Somanuals.com. All Manuals Search And Download.
Config Commands
config list
Show the current configuration set.
SYNTAX:
config list
where:
templates
[templates = <{disabled | enabled}>]
List the template files (disabled) or not (enabled).
OPTIONAL
The default is disabled.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
77
Download from Www.Somanuals.com. All Manuals Search And Download.
Config Commands
config load
Load complete saved (backup) or default configuration file.
Use the command :config flushbefore loading a configuration file.
i
SYNTAX:
config load
[load_ip = <{enabled | disabled}>]
[defaults = <{enabled | disabled}>]
[flush = <{enabled | disabled}>]
[echo = <{disabled | enabled}>]
[filename = <string>]
where:
load_ip
Load IP settings (enabled) or not (disabled).
OPTIONAL
Note Not keeping the IP settings could cause lost IP connectivity in the
LAN.
defaults
flush
Load default configuration (enabled) or saved configuration (disabled).
OPTIONAL
OPTIONAL
Note If not specified, the saved configuration will be loaded.
Flush the current configuration before loading a new configuration
(enabled) or not (disabled).
echo
Echo each command string when loaded (enabled) or not (disabled).
Name of the configuration file to be loaded.
OPTIONAL
OPTIONAL
filename
E-DOC-CTC-20061027-0003 v2.0
78
Download from Www.Somanuals.com. All Manuals Search And Download.
Config Commands
EXAMPLE:
=>ip rtlist
Destination
10.0.0.0/24
172.16.0.5/32
10.0.0.140/32
127.0.0.1/32
172.16.0.0/24
Source
Gateway
Intf
eth0
cip1
eth0
loop
cip1
Mtrc
10.0.0.0/24
0.0.0.0/0
0.0.0.0/0
0.0.0.0/0
0.0.0.0/0
10.0.0.140
172.16.0.5
10.0.0.140
127.0.0.1
172.16.0.5
0
0
0
0
1
=>config load flush_ip=no
=>ip rtlist
Destination
Source
Gateway
Intf
eth0
eth0
loop
Mtrc
10.0.0.0/24
10.0.0.140/32
127.0.0.1/32
10.0.0.0/24
0.0.0.0/0
0.0.0.0/0
10.0.0.140
10.0.0.140
127.0.0.1
0
0
0
=>config load flush=yes
=>ip rtlist
Destination
10.0.0.0/24
10.0.0.140/32
172.16.0.5/32
127.0.0.1/32
172.16.0.0/24
Source
Gateway
Intf
eth0
eth0
cip1
loop
cip1
Mtrc
10.0.0.0/24
0.0.0.0/0
0.0.0.0/0
0.0.0.0/0
0.0.0.0/0
10.0.0.140
10.0.0.140
172.16.0.5
127.0.0.1
172.16.0.5
0
0
0
0
1
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
79
Download from Www.Somanuals.com. All Manuals Search And Download.
Config Commands
config save
Store the current configuration in a backup file.
All the existing configurations and modifications entered by the user are saved.
The backup file is saved in the Thomson ST permanent storage. This file can be downloaded via the Thomson
ST web pages or via an FTP session.
SYNTAX:
config save
where:
filename
filename = <string>
The filename for the backup file of the current configuration.
REQUIRED
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
80
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
6 Connection Commands
Introduction
This chapter describes the commands of the connectioncommand group.
Contents
This chapter covers the following commands:
Configure the available CONN/NAT application helpers.
Kill all the connections.
E-DOC-CTC-20061027-0003 v2.0
81
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection appconfig
Configure the available CONN/NAT application helpers.
SYNTAX:
connection appconfig application = <string>
[trace = <{disabled | enabled}>]
[timeout = <number{0-32000}>]
[floating = <{disabled | enabled}>]
[childqos = <{DSCP|Interactive|
Management|Video|VoIP|default}>]
[tracelevel = <number{1-4}>]
[SIP_ALG = <{disabled|enabled}>]
[RTP_predict_for_term_SIP_ALG =
<{disabled|enabled}>]
where:
application
The name of a CONN/NAT application helper.
REQUIRED
Tip
Use the command :connection
applistto obtain a list of CONN/NAT
application helpers.
trace
Enable or disable CONN/NAT application helper
traces.
The default is enabled.
OPTIONAL
OPTIONAL
timeout
A number between 0 and 32000 (seconds).
Represents the maximum timeout to keep
predicted child connections around.
floating
Enable / disabled floating port for IKE helper.
OPTIONAL
OPTIONAL
OPTIONAL
childqos
tracelevel
Used QOS label for the predicted child connections.
A number between 1 and 4.
Represents the SIP trace level.
Choose between:
>
>
>
>
1: feature errors
2: feature traces
3: all errors
4: all traces.
The default is 1.
SIP_ALG
SIP only: enable/disable traditional sip alg
behaviour
OPTIONAL
OPTIONAL
RTP_predict_for_term_SIP_ALG
Enable/disable RTP connection prediction for
terminated SIP
E-DOC-CTC-20061027-0003 v2.0
82
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
EXAMPLE:
=>connection applist
Application Proto DefaultPort Traces
Timeout
IP6TO4
PPTP
ESP
IKE
SIP
6to4 0
enabled
enabled
unavailable 15' 0"
disabled
disabled
unavailable
unavailable
tcp
esp
udp
udp
1723
0
500
5060
15' 0"
6 0"
FLOATING
trace level 1
...
LOOSE(UDP)
FTP
udp
tcp
0
21
enabled
enabled
5' 0"
unavailable
=>connection appconfig application=SIP trace=enabled
=>connection applist
Application Proto DefaultPort Traces
Timeout
IP6TO4
PPTP
ESP
IKE
SIP
6to4 0
enabled
enabled
unavailable 15' 0"
disabled
enabled
unavailable
unavailable
tcp
esp
udp
udp
1723
0
500
5060
15' 0"
6 0"
FLOAATING
trace level 1
...
LOOSE(UDP)
FTP
udp
tcp
0
21
enabled
enabled
5' 0"
unavailable
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
83
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection appinfo
Display CONN/NAT application specific info.
SYNTAX:
connection appinfo
where:
application = <{string}>
application
The name of a CONN/NAT application helper.
REQUIRED
Tip
Use the command :connection
applistto obtain a list of CONN/NAT
application helpers.
EXAMPLE:
=>connection appinfo application=SIP
SIP ALG session SIPALG: pool=138, in use=0, bottom=138
=>
RELATED COMMANDS:
Configure the available CONN/NAT application helpers.
E-DOC-CTC-20061027-0003 v2.0
84
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection applist
List the available CONN/NAT application helpers.
SYNTAX:
connection applist
EXAMPLE:
=>connection applist
Application Proto DefaultPort Traces
Timeout
IP6TO4
PPTP
ESP
IKE
SIP
JABBER
CU/SeeMe
RAUDIO(PNA) tcp
RTSP
ILS
H245
H323
IRC
6to4 0
enabled
enabled
unavailable 15' 0"
disabled
disabled
disabled
enabled
enabled
enabled
unavailable 5' 0"
unavailable 5' 0"
enabled
enabled
enabled
enabled
unavailable
unavailable
tcp
esp
udp
udp
tcp
udp
1723
0
500
5060
5222
7648
7070
554
389
0
15' 0"
6 0"
2' 0"
unavailable
unavailable
unavailable
FLOATING
trace level 1
tcp
tcp
tcp
tcp
tcp
udp
tcp
1720
6667
0
unavailable
5' 0"
5' 0"
unavailable
LOOSE(UDP)
FTP
21
=>
For some CONN/NAT application helpers, either traces or timeout are unavailable.
i
RELATED COMMANDS:
Configure the available CONN/NAT application helpers.
E-DOC-CTC-20061027-0003 v2.0
85
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection bind
Create a new CONN/NAT application helper/port binding.
SYNTAX:
connection bind
application = <string>
port = <port-range>
where:
application
The name of a CONN/NAT application helper.
REQUIRED
REQUIRED
Tip
Use the command :connection
applistto obtain a list of CONN/NAT
application helpers.
port
The port number or port range this application
handler should work on.
EXAMPLE:
=>connection bindlist
Application Proto Portrange
Flags
JABBER
JABBER
FTP
tcp
tcp
tcp
tcp
15222
5222
21
IRC
6660
...
IP6TO4
6to4 0
=>connection bind application = IRC port = 6750
=>connection bindlist
Application Proto Portrange
IRC
tcp
tcp
tcp
tcp
tcp
6750
15222
5222
21
JABBER
JABBER
FTP
IRC
6660
...
IP6TO4
=>
6to4 0
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
86
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection bindlist
List the current CONN/NAT application helper/port bindings.
SYNTAX:
connection bindlist
EXAMPLE:
=>connection bindlist
Application Proto Portrange
Flags
LOOSE(UDP)
JABBER
JABBER
FTP
IRC
H323
ILS
ILS
RTSP
udp
tcp
tcp
tcp
tcp
tcp
tcp
tcp
tcp
67
15222
5222
21
6660-6669
1720
1002
389
554
RAUDIO(PNA) tcp
7070
7648
5060
500
CU/SeeMe
SIP
IKE
udp
udp
udp
esp
tcp
ESP
0
PPTP
IP6TO4
=>
1723
6to4 0
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
87
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection clean
Clean the connection database by forcing timeouts.
SYNTAX:
connection clean
[level = <number{0-9}>]
where:
level
A number between 0 and 9.
OPTIONAL
Represents the desired scrubbing level.
EXAMPLE:
=>connection list
ID
--
8
proto state
----- -----
substate
--------
flags timeout
----- -------
tcp
ACTIVE
192.168. 1. 64: 1377 192.168. 1.254:
192.168. 1.254: 23 192.168. 1. 64: 1377 [R..]
[TCPS_ESTABLISHED-TCPS_ESTABLISHED] [......] 15' 7"
INIT: 16
RESP: 17
tcp
23 [...] LocalNetwork
1390 tcp
951 tcp 0
0
0
loop
34
ACTIVE
[TCPS_CLOSE_WAIT-TCPS_FIN_WAIT_1] [I.....] 57' 16"
INIT: 68
RESP: 69
192.168. 1. 64: 1417 192.168. 1.254:
192.168. 1.254: 21 192.168. 1. 64: 1417 [R..]
21 [...] LocalNetwork
11 tcp
loop 10 tcp
0
=>connection clean
=>connection list
ID
--
8
proto state
----- -----
substate
--------
flags timeout
----- -------
tcp
ACTIVE
192.168. 1. 64: 1377 192.168. 1.254:
192.168. 1.254: 23 192.168. 1. 64: 1377 [R..]
[TCPS_ESTABLISHED-TCPS_ESTABLISHED] [......] 14' 59"
23 [...] LocalNetwork
loop
INIT: 16
RESP: 17
1417 tcp
0
967 tcp
0
=>
E-DOC-CTC-20061027-0003 v2.0
88
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection config
Configure the connection handling.
SYNTAX:
connection config
[configchangemode = <{immediate | delayed}>]
[probes = <{disabled | enabled}>]
[udptrackmode = <{strict | loose}>]
where:
configchangemode
Select how configuration changes are handled.
Choose between:
OPTIONAL
>
>
immediate
delayed.
The default is immediate.
probes
Enable or disable live probes on idle connections.
The default is disabled.
OPTIONAL
OPTIONAL
udptrackmode
Select the User Datagram Protocol (UDP)
connection tracking mode.
Choose between:
>
strict: replies to a request from a client must be
in a specific window to the client.
>
loose: inbound packets are allowed on the port
that was first used to start the communication
with the server (for example to allow a client of
an online game to obtain peer-to-peer
information from other clients of that same
online game).
The default is strict.
EXAMPLE:
=>connection config
config change mode : immediate
alive probes
: disabled
udp tracking mode : loose
=>
E-DOC-CTC-20061027-0003 v2.0
90
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection debug
The connection debug commands
SYNTAX:
connection debug
[trace = <{disabled|enabled}>]
where:
trace
Enable or disable traces.
OPTIONAL
The default is disabled.
EXAMPLE:
=>connection debug
connection traces : disabled
=>
=>connection debug trace enabled
=>
=>connection debug
connection traces : enabled
=>
E-DOC-CTC-20061027-0003 v2.0
91
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection describe
Describe the streams of a connection.
SYNTAX:
connection describe
[id = <number{0-2048}>]
where:
id
A number between 0 and 2048.
OPTIONAL
Represents the ID of the connection to be
described.
Note If not specified, the connection with ID 0
will be described.
Tip
Use the command :connection list
to obtain the IDs of the
different connections.
EXAMPLE:
=>connection list
ID
--
62
proto state
----- -----
substate
--------
flags timeout
----- -------
tcp
INIT: 124 192.168. 1. 64: 1979 192.168. 1.254:
RESP: 125 192.168. 1.254: 23 192.168. 1. 64: 1979 [R..]
=>connection describe id=62
ACTIVE
[TCPS_ESTABLISHED-TCPS_ESTABLISHED] [......] 15' 8"
23 [...] LocalNetwork
loop
548 tcp
0
0
396 tcp
ID
--
proto state
----- -----
substate
--------
flags timeout
----- -------
62
FW
tcp
ACTIVE
[TCPS_ESTABLISHED-TCPS_ESTABLISHED] [......] 14' 59"
: cache = valid; FP
IDS
NAT
: ...
: cache = valid; No translation
INIT: 124 192.168. 1. 64: 1979 192.168. 1.254:
23 [...] LocalNetwork
576 tcp
0
ROUTING
LABEL
IPQOS
: cache = valid; FP (gateway 127.0.0.1)
: cache = valid; FP (no route label); FP (QoS label Interactive)
: cache = valid; FP (label <no meter>, intf <no meter>)
: cache = valid; FP (no trigger)
TRIGGER
RESP: 125 192.168. 1.254:
23 192.168. 1. 64: 1979 [R..]
loop
412 tcp
0
ROUTING
LABEL
IPQOS
: cache = valid; FP (gateway 192.168.1.254)
: cache = valid; FP (no route label); FP (QoS label default)
: cache = valid; FP (label <no meter>, intf <no meter>)
: cache = valid; FP (no trigger)
TRIGGER
=>
E-DOC-CTC-20061027-0003 v2.0
92
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection info
Show all the registered modules with some info.
SYNTAX:
connection info
EXAMPLE:
=>connection info
Registered connection modules :
- Module : FW, holds private data (F:10264 S:6592).
- Module : IDS, holds private data (F:0 S:0).
- Module : NAT, holds private data (F:0 S:0).
Registered stream modules :
- Module : ROUTING, holds private data (F:10199 S:6657).
- Module : LABEL, holds private data (F:22546 S:19870).
- Module : IPQOS, holds private data (F:10202 S:6653).
- Module : TRIGGER, holds private data (F:10202 S:6659).
=>
E-DOC-CTC-20061027-0003 v2.0
94
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection list
Display the currently known connections.
SYNTAX:
connection list
[nr = <number{1-2048}>][string = <string>]
[beginstring = <string>]
where:
nr
A number between 1 and 2048.
Represents the number of connections to be
displayed.
OPTIONAL
Note If not specified, all the connections will be
displayed.
string
string matching condition
OPTIONAL
OPTIIONAL
beginstring
beginstring matching condition
EXAMPLE:
=>connection list
ID
--
58
proto state
----- -----
substate
--------
flags timeout
----- -------
tcp
INIT: 116
RESP: 117
ACTIVE
10. 0. 0. 1: 1106 10. 0. 0.138:
[TCPS_ESTABLISHED-TCPS_ESTABLISHED] [......] 15' 7"
23 [.]
eth0
loop
331 tcp
229 tcp
0
0
10. 0. 0.138:
23 10. 0. 0. 1: 1106 [R]
=>
E-DOC-CTC-20061027-0003 v2.0
95
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection stats
Display the connection and stream statistics.
SYNTAX:
connection stats
EXAMPLE:
=>connection stats
Connection statistics:
-------------------------------------------
Maximum number of connections
Maximum number of halfopen connections
: 1024
: 1024
-------------------------------------------
Number of active connections
Number of halfopen connections
Number of expected connections
Number of closing connections
Number of idle connections
: 3
: 0
: 0
: 0
: 1
-------------------------------------------
Number of TCP connections
: 2
Number of UDP connections
Number of ICMP connections
Number of non TCP/UDP/ICMP connections
: 1
: 0
: 0
-------------------------------------------
Number of TCP open connections
: 0
Number of TCP established connections
Number of TCP closing connections
: 1
: 1
Stream cache statistics:
-------------------------------------------
Maximum number of hash collisions
% of hash entries with collisions
% of hash entries unused
: 0
: 0.00
: 0.00
CONN/NAT application helper statistics:
-------------------------------------------
Maximum number of helper bindings
: 24
Maximum number of connections with helper : 128
-------------------------------------------
Number of helper bindings
: 16
Number of connections with active helper : 0
=>
E-DOC-CTC-20061027-0003 v2.0
97
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection timerclear
Clear the connection timeout to default.
SYNTAX:
connection timerclear
[timer = <{tcpidle|tcpneg|tcpkill|udpidle|udpkill|
icmpkill|ipidle|ipkill}>]
where:
timer
The name of the connection idle timer to be reset.
REQUIRED
Note If not specified, all the timers will be reset
to their default values.
EXAMPLE:
=>connection timerconfig
tcpidle
tcpneg
udp
icmp
ip
: 10' 30"
: 3' 0"
: 1' 19"
: 2' 0"
: 1' 0"
=>connection timerclear
=>connection timerconfig
tcpidle
tcpneg
udp
icmp
ip
: 15' 0"
: 2' 0"
: 1' 0"
: 1' 0"
: 1' 0"
=>
RELATED COMMANDS:
Configure the connection timeout handling.
E-DOC-CTC-20061027-0003 v2.0
98
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection timerconfig
Configure the connection timeout handling.
SYNTAX:
connection timerconfig
[timer =
<{tcpidle|tcpneg|tcpkill|udpidle|udpkill|
icmpkill|ipidle|ipkill}>]
[value = <number{0-86400}>]
where:
timer
The name of the connection idle timer to be
configured.
OPTIONAL
Choose between:
>
>
>
>
>
>
>
>
tcpidle
tcpneg
tcpkill
udpidle
udpkill
icmpkill
ipidle
ipkill
value
A number between 0 and 86400 (seconds).
Represents the timer expire value.
OPTIONAL
EXAMPLE:
=>connection timerconfig
tcpidle
tcpneg
udp
icmp
ip
: 15' 0"
: 2' 0"
: 1' 0"
: 1' 0"
: 1' 0"
=>connection timerconfig timer=tcpidle value=360
=>connection timerconfig
tcpidle
tcpneg
udp
icmp
ip
: 6' 0"
: 2' 0"
: 1' 0"
: 1' 0"
: 1' 0"
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
99
Download from Www.Somanuals.com. All Manuals Search And Download.
Connection Commands
connection unbind
Delete an existing CONN/NAT application helper/port binding.
SYNTAX:
connection unbind
application = <string>
port = <port-range>
where:
application
The name of a CONN/NAT application helper.
REQUIRED
REQUIRED
Tip
Use the command :connection
applistto obtain a list of CONN/NAT
application helpers.
port
The port number or port range this application
handler should work on.
EXAMPLE:
=>connection bindlist
Application Proto Portrange
IRC
tcp
tcp
tcp
tcp
tcp
6750
15222
5222
21
JABBER
JABBER
FTP
IRC
6660
...
IP6TO4
6to4 0
=>connection unbind application=IRC port=6750
=>connection bindlist
Application Proto Portrange
JABBER
JABBER
FTP
tcp
tcp
tcp
tcp
15222
5222
21
IRC
6660
...
IP6TO4
=>
6to4 0
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
100
Download from Www.Somanuals.com. All Manuals Search And Download.
CWMP Commands
cwmp config
Configure the cwmpd as seen from the ACS.
SYNTAX:
cwmp config
[state = <{disabled|enabled}>]
[mode = <{readonly|full}>]
[periodicInform = <{disabled|enabled}>]
[periodicInfInt = <number>]
[sessionTimeout = <number>]
[noIpTimeout = <number>]
[maxEnvelopes = <number>]
[connectionRequest = <{disabled|enabled}>]
[connectionReqPath = <string>]
[connectionReqUserName = <string>]
[connectionReqPsswd = <string>]
[connectionReqAuth = <{none|basic|digest}>]
where:
state
The state of the cwmp daemon.
Choose between:
OPTIONAL
>
>
enabled
disabled.
The default is disabled.
mode
Set the operation mode of the cwmp daemon.
Choose between:
OPTIONAL
OPTIONAL
OPTIONAL
>
>
readonly
full.
The default is readonly.
periodicInform
periodicInfInt
Set the periodicInform flag of the cwmp daemon.
Choose between:
>
>
enabled
disabled.
The default is enabled.
A number (of seconds).
Represents the interval between two periodicInform
messages.
The default is 3600.
sessionTimeout
noIpTimeout
Set HTTP session-timeout in seconds.
The default is 60.
OPTIONAL
OPTIONAL
Set time (in seconds) ip may be 0 after uploading new
config file.
The default is 10.
maxEnvelopes
Set the maximum number of SOAP envelopes sent
within one HTTP message.
OPTIONAL
The default is 2.
E-DOC-CTC-20061027-0003 v2.0
102
Download from Www.Somanuals.com. All Manuals Search And Download.
CWMP Commands
connectionRequest
Set the connection request flag of the cwmp daemon.
Choose between:
OPTIONAL
>
>
enabled
disabled.
The default is enabled.
connectionReqPath
Set the path where the cwmp daemon can be reached.
Set the username the ACS must use to log in.
Set the password the ACS must use to log in.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
connectionReqUserName
connectionReqPsswd
connectionReqAuth
Set the digest authentication flag of the cwmp
daemon.
Choose between:
>
>
enabled
disabled.
The default is enabled.
EXAMPLE:
=>cwmp config
State
: disabled
Mode
: readonly
Max Envelopes
: 2
Session Timeout
: 60
No Ip Timeout
: 10
Connection Request Port
Periodic Inform
: 80
: enabled
Periodic Inform Interval
Connection Request
Connection Request UserName
Connection Request PassWord
Connection Request Path
: 20000 ms
: enabled
:
:
:
Connection Request Authentication : enabled
Qos class
Boot delay range between 0 and
=>
: 12
: 0s
E-DOC-CTC-20061027-0003 v2.0
103
Download from Www.Somanuals.com. All Manuals Search And Download.
CWMP Commands
cwmp server config
Configure the cwmpd towards the ACS.
SYNTAX:
cwmp server config
[url = <string>]
[username = <string>]
[password = <string>]
where:
url
Set the HTTP URL used to contact the ACS server.
Set the username for ACS Digest Authentication.
Set the password for ACS Digest Authentication.
OPTIONAL
OPTIONAL
OPTIONAL
username
password
EXAMPLE:
=>cwmp server config
ACS url
: 10.11.10.248
ACS username
ACS password
=>
:
:
E-DOC-CTC-20061027-0003 v2.0
104
Download from Www.Somanuals.com. All Manuals Search And Download.
Debug Commands
debug exec
Execute a 'Trace & Debug' command.
This command is for qualified personnel only.
!
SYNTAX:
debug exec cmd = <quoted string>
where:
cmd
A quoted 'Trace & Debug' command string.
REQUIRED
E-DOC-CTC-20061027-0003 v2.0
106
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
9 DHCP Commands
Introduction
This chapter describes the commands of the Dynamic Host Configuration Protocol (DHCP) command group.
Contents
This chapter covers the following commands:
Delete all the DHCP leases.
Clear the DHCP client statistics.
Print the DHCP client statistics.
Modify the DHCP client trace configuration.
Show the DHCP relay statistics.
Modify the DHCP relay trace configuration.
Set the DHCP relay configuration settings.
E-DOC-CTC-20061027-0003 v2.0
107
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
143
Add a rule for DHCP conditional selection.
Flush all DHCP server pool and lease entries.
Clear the DHCP server statistics.
E-DOC-CTC-20061027-0003 v2.0
108
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client ifadd
Create a DHCP client.
SYNTAX:
dhcp client ifadd
intf = <string>
[defrqoptions = <{disabled|enabled}>]
where:
intf
The name of the dynamic interface for which a DHCP lease
must be created.
REQUIRED
OPTIONAL
defrqoptions
Enable/Disable the creation of the default Parameter Request
List.
EXAMPLE:
=>dhcp client iflist
No dynamic interfaces defined.
=>dhcp client ifadd intf=myPPP_ppp
[dhcp client]=>iflist
DHCP Client Info :
Interface
: myPPP_ppp
DHCP Client State : [INIT]
HW address
Client ID
: 00:0e:50:91:26:5a
:
IP Address
p-t-p IP
Default Gateway
: 0.0.0.0
: 0.0.0.0
:
Number of leases: 1
Total size of table: 68, in use: 1, free: 98 %=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
110
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client ifattach
Activate a DHCP client.
SYNTAX:
dhcp client ifattach
intf = <string>
where:
intf
The name of the dynamic interface for which a DHCP client
was created.
REQUIRED
EXAMPLE:
=>dhcp client iflist
myPPP_ppp : [INIT]
flags = bc dns rt
IP address : 0.0.0.0
HW address [SpeedTouch] : 00
DHCP server: 255.255.255.255
metric : rt = 1, DNS = 1
Number of leases: 1
Total size of table: 36, in use: 1, free: 97 %
=>dhcp client ifattach intf=myPPP_ppp
=>dhcp client iflist
myPPP_ppp : [SELECTING]
flags = bc dns rt
IP address : 0.0.0.0
HW address [SpeedTouch] : 00
DHCP server: 255.255.255.255
metric : rt = 1, DNS = 1
trying to get a lease for 1 sec
transmission of DISCOVER in 0 sec
retransmission timeout: 4
nbr of retransmissions: 2
Number of leases: 1
Total size of table: 36, in use: 1, free: 97 %
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
111
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client ifconfig
Configure a DHCP client.
Use the command :dhcp client ifreleasebefore configuring the dhcp client.
i
SYNTAX:
dhcp client ifconfig
intf = <string>
[label = <label name>]
[metric = <number{0-255}>]
[dnsmetric = <number{0-100}>]
[broadcast = <{disabled|enabled}>]
[serverroute = <disabled|enabled>]
where:
intf
The name of the dynamic interface to be configured.
REQUIRED
OPTIONAL
OPTIONAL
label
metric
Label for default gateway and static routes.
A number between 0 and 255.
Represents the route metric for default gateway and static
routes.
The default is 1.
dnsmetric
A number between 0 and 100.
Represents the DNS route metric.
The default is 1.
OPTIONAL
broadcast
Operate client in unicast/broadcast mode.
The default is enabled.
OPTIONAL
OPTIONAL
serverroute
Insert a route for the DHCP server IP.
The default is enabled.
RELATED COMMANDS
E-DOC-CTC-20061027-0003 v2.0
112
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client ifdelete
Delete a DHCP client.
SYNTAX:
dhcp client ifdelete
intf = <string>
where:
intf
The name of the dynamic interface for which the DHCP lease
must be deleted.
REQUIRED
EXAMPLE:
=>dhcp client iflist
myPPP_ppp : [INIT]
flags = bc dns rt
IP address : 10.0.0.1
HW address [SpeedTouch] : 00:90:d0:01:47:f1
DHCP server: 10.10.1.1
hostname : myHostName
client identifier : [00] myClientID
user class identifier : myUserID
metric : rt = 1, DNS = 1
Number of leases: 1
Total size of table: 36, in use: 1, free: 97 %
=>dhcp client ifdelete intf=myPPP_ppp
=>dhcp client iflist
No dynamic interfaces defined.
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
113
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client iflist
List all the DHCP leases attached to dynamic interfaces.
SYNTAX:
dhcp client iflist
[intf = <string>]
[expand = <{disabled|enabled}>]
where:
intf
The name of the dynamic interface.
Expand enabled/disabled.
OPTIONAL
OPTIONAL
expand
EXAMPLE:
=>dhcp client iflist
myPPP_ppp : [INIT]
flags = bc dns rt
IP address : 10.0.0.1
HW address [SpeedTouch] : 00:90:d0:01:47:f1
DHCP server: 10.10.1.1
hostname : myHostName
client identifier : [00] myClientID
user class identifier : myUserID
metric : rt = 1, DNS = 1
Number of leases: 1
Total size of table: 36, in use: 1, free: 97 %
=>
EXAMPLE INPUT/OUTPUT IN A NETWORKED ENVIRONMENT:
The Thomson ST is configured as DHCP client disabled its Ethernet interface eth0.
=>dhcp client iflist
myPPP_ppp : [INIT]
flags = bc dns rt
IP address : 10.0.0.1
HW address [SpeedTouch] : 00:90:d0:01:47:f1
DHCP server: 10.10.1.1
hostname : myHostName
client identifier : [00] myClientID
user class identifier : myUserID
metric : rt = 1, DNS = 1
lease renewal in
lease rebinding in
lease expires in
5 days, 1 h, 26 min, 45 sec
8 days, 20 h, 34 min, 15 sec
10 days, 2 h, 56 min, 45 sec
Number of leases: 1
Total size of table: 36, in use: 1, free: 97 %
=>
E-DOC-CTC-20061027-0003 v2.0
115
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
116
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client ifrenew
Renew the DHCP lease.
SYNTAX:
dhcp client ifrenew
intf = <string>
where:
intf
The name of the dynamic interface for which the DHCP lease
must be renewed.
REQUIRED
EXAMPLE 1:
=>dhcp client iflist
NewETHoA
: [BOUND]
flags= uc
IP address
HW address
: 10.0.0.10
: 00:90:d0:01:47:f1
DHCP server
hostname
: 255.255.255.255
: NewLease
req.leasetime = 10800 s
lease renewal in
lease rebinding in
lease expires in
5 days, 58 min, 48 sec
8 days, 20 h, 6 min, 18 sec
10 days, 2 h, 28 min, 48 sec
Number of leases: 1
Total size of table: 19,
=>dhcp client ifrenew intf=NewETHoA
=>dhcp client iflist
in use: 1,
free: 94 %
NewETHoA
: [SELECTING]
flags= uc
IP address
HW address
DHCP server
hostname
: 10.0.0.10
: 00:90:d0:01:47:de
: 255.255.255.255
: NewLease
req.leasetime
= 10800 s
trying to get a lease for 12 sec
transmission of DISCOVER in 24 sec
retransmission timeout: 64
nbr of retransmissions: 11
Number of leases: 1
Total size of table: 19,
=>
in use: 1,
free: 94 %
E-DOC-CTC-20061027-0003 v2.0
117
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
EXAMPLE 2:
The Thomson ST is configured as DHCP client disabled its Ethernet interface eth0.
=>dhcp client stats
DHCP client statistics:
Corrupted packet recv
:
:
:
:
:
:
:
:
:
:
:
0
0
0
0
0
0
0
0
0
1
0
OFFERs
ACKs
NAKs
recv
recv
recv
Pure BOOTP REPLIES
Other message types
DISCOVERs sent
REQUESTs sent
DECLINEs sent
RELEASEs sent
INFORMs
sent
Number of dynamic interfaces: 1
Memory usage:
Table size of dyn leases: 18,
=>dhcp client ifrenew intf=eth0
=>dhcp client stats
in use: 1,
free: 94 %
DHCP client statistics:
Corrupted packet recv
:
:
:
:
:
:
:
:
:
:
:
0
1
1
0
0
0
1
1
0
1
0
OFFERs
ACKs
NAKs
recv
recv
recv
Pure BOOTP REPLIES
Other message types
DISCOVERs sent
REQUESTs sent
DECLINEs sent
RELEASEs sent
INFORMs
sent
Number of dynamic interfaces: 1
Memory usage:
Table size of dyn leases: 18,
=>(CTRL + Q)
in use: 1,
free: 94 %
..................
STATE IDLE !
STATE ACTIVATE !
dhcc: intf 1 renews lease 10.0.0.3.
dhcc: intf 1 requests 10.0.0.3 from 10.10.1.1
dhcc: 10.10.1.1 acks 10.0.0.3 to intf 1.
dhcc: lease 10.0.0.3 bound to intf 1.
STATE IDLE !
STATE ACTIVATE !
...........
=>(CTRL + S)
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
118
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client debug clear
Clear the DHCP client statistics.
SYNTAX:
dhcp client debug clear
EXAMPLE:
=>dhcp client debug stats
DHCP client statistics:
Corrupted packet recv
: 0
: 0
: 0
: 0
: 0
: 0
: 253
: 9
: 0
: 0
: 0
OFFERs
ACKs
NAKs
recv
recv
recv
Pure BOOTP REPLIES
Other message types
DISCOVERs sent
REQUESTs sent
DECLINEs sent
RELEASEs sent
INFORMs
sent
Number of dynamic interfaces: 1
Memory usage:
Table size of dyn leases: 19, in use: 1, free: 94 %
=>dhcp client debug clear
=>dhcp client debug stats
DHCP client statistics:
Corrupted packet recv
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
:
OFFERs
ACKs
NAKs
recv
recv
recv
Pure BOOTP REPLIES
Other message types
DISCOVERs sent
REQUESTs sent
DECLINEs sent
RELEASEs sent
INFORMs
sent
0
Number of dynamic interfaces: 1
Memory usage:
Table size of dyn leases: 19, in use: 1, free: 94 %
=>
RELATED COMMANDS:
Print the DHCP client statistics.
E-DOC-CTC-20061027-0003 v2.0
119
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client debug stats
Print the DHCP client statistics.
SYNTAX:
dhcp client debug stats
EXAMPLE:
=>dhcp client debug stats
DHCP client statistics:
Corrupted packet recv
:
:
:
:
:
:
:
:
:
:
:
0
1
1
0
0
0
244
9
0
OFFERs
ACKs
NAKs
recv
recv
recv
Pure BOOTP REPLIES
Other message types
DISCOVERs sent
REQUESTs sent
DECLINEs sent
RELEASEs sent
1
0
INFORMs
sent
Number of dynamic interfaces: 1
Memory usage:
Table size of dyn leases: 19,
=>
in use: 1,
free: 94 %
RELATED COMMANDS:
Clear the DHCP client statistics.
E-DOC-CTC-20061027-0003 v2.0
120
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client debug traceconfig
Modify the DHCP client trace configuration.
SYNTAX:
dhcp client debug traceconfig [state = <{disabled | enabled}>]
where:
state
Enable or disable tracing.
OPTIONAL
The default is disabled.
EXAMPLE:
=>dhcp client debug traceconfig
tracing: disabled
=>dhcp client debug traceconfig trace=enabled
=>dhcp client debug traceconfig
tracing: enabled
=>
E-DOC-CTC-20061027-0003 v2.0
121
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client rqoptions add
Add a DHCP Option Code to the Parameter Request List.
SYNTAX:
dhcp client rqoptions add
intf = <string>
option = <string or number>
[index = <number{0-255}>]
where:
The name of the dynamic interface.
The name or number of the option.
REQUIRED
OPTIONAL
OPTIONAL
intf
option
index
The index of the option.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
122
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client rqoptions delete
Delete a DHCP Option Code from the Parameter Request List.
SYNTAX:
dhcp client rqoptions delete
intf = <string>
option = <string or number>
where:
The name of the dynamic interface.
The name or number of the option.
REQUIRED
OPTIONAL
intf
option
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
123
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client rqoptions list
List all DHCP Option Codes in the Parameter Request List.
SYNTAX:
dhcp client rqoptions list
[intf = <string>]
where:
intf
The name of the dynamic interface.
OPTIONAL
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
124
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client txoptions add
Add an option.
SYNTAX:
dhcp client txoptions add
intf = <string>
option = <string or number>
value = <Value : (type)value; type being 8-
bit,
16-bit, 32-bit, addr, ascii,
byte_array,
clientid>
[index = <number{0-255}>]
where:
intf
The name of the dynamic interface.
The name or number of the option.
REQUIRED
option
value
index
REQUIRED
REQUIRED
OPTIONAL
The value of the option.
The index of the option.
EXAMPLE:
=>:dhcp client txoptions add intf=wan1 option=ien116-name-servers value=(8-bit)5
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
126
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp client txoptions delete
Delete an option.
SYNTAX:
dhcp client txoptions delete
intf = <string>
option = <string or number>
where:
intf
The name of the dynamic interface.
The name or number of the option.
REQUIRED
REQUIRED
option
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
127
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay debug stats
Show the DHCP relay statistics.
SYNTAX:
dhcp relay debug stats
EXAMPLE:
=>dhcp relay debug stats
DHCP relay statistics
-------------------------
Client packet relayed
Server packet relayed
Bogus relay agent
Bogus giaddr recv
Corrupt agent option
Missing agent option
Bad circuit id
:
:
:
:
:
:
:
:
64
0
0
0
0
0
0
0
Missing circuit id
=>
RELATED COMMANDS:
Modify the DHCP relay trace configuration.
E-DOC-CTC-20061027-0003 v2.0
131
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay debug traceconfig
Modify the DHCP relay trace configuration.
SYNTAX:
dhcp relay debug traceconfig
[state = <{disabled | enabled}>]
where:
state
Enable or disable tracing.
The default is disabled.
OPTIONAL
EXAMPLE:
=>dhcp relay debug traceconfig
Tracing: disabled
=>
RELATED COMMANDS:
Show the DHCP relay statistics.
E-DOC-CTC-20061027-0003 v2.0
132
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay config
Set the DHCP relay configuration settings.
SYNTAX:
dhcp relay config
[agentinfo = <{disabled | enabled}>]
[agentmismatch = <{disabled | enabled}>]
where:
agentinfo
agentmismatch
Set the relay agent info status (RFC3046) enabled or disabled.
The default is disabled.
OPTIONAL
OPTIONAL
Forward/drop DHCP reply packet when a relay agent info
mismatch is detected (RFC3046) (enabled) or not (disabled).
The default is disabled.
EXAMPLE:
=>dhcp relay config
Agent info status : disabled
Drop agent info mismatch status : disabled
=>dhcp relay config agentinfo=enabled
=>dhcp relay config
Agent info status : enabled
Drop agent info mismatch status : disabled
=>
E-DOC-CTC-20061027-0003 v2.0
133
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay delete
Delete an entry from the DHCP forward list.
SYNTAX:
dhcp relay delete
name = <string>
where:
name
The forward entry name.
REQUIRED
EXAMPLE:
=>dhcp relay delete
name = lan1_to_127.0.0.1
:dhcp relay delete name=lan1_to_127.0.0.1
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
134
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay flush
Flush the DHCP relay settings.
The flush command does not impact previously saved configurations.
i
SYNTAX:
dhcp relay flush
EXAMPLE:
=>dhcp relay list
DHCP server
-------------------------------------------------------
Interface
giaddr
127.0.0.1
eth0
192.168.1.254
=>dhcp relay flush
=>dhcp relay list
No dynamic interfaces defined.
=>
E-DOC-CTC-20061027-0003 v2.0
135
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay ifconfig
Configure a DHCP relay interface.
SYNTAX:
dhcp relay ifconfig
intf = <string>
[relay = <{disabled | enabled}>]
[maxhops = <number{0-16}>]
[remoteid = <password>]
[trusted = <{disabled | enabled}>]
where:
intf
The name of the dynamic interface to be configured.
Set the relay status to enabled or disabled.
REQUIRED
OPTIONAL
relay
The default is disabled.
maxhops
A number between 0 and 16.
Represents the maximum number of hops allowed in the
DHCP packet.
OPTIONAL
The default is 4.
remoteid
trusted
Set the remote ID as specified in RFC3046.
OPTIONAL
OPTIONAL
Drop/forward DHCP request packet when the DHCP Relay
Agent Option is enabled (with the command :dhcp relay
config agentinfo=enabled) and the giaddr field is 0
(RFC3046)) (enabled) or not (disabled).
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
136
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
EXAMPLE:
=>dhcp relay iflist
eth0 :
admin state = up
max hops = 4
trusted = disabled
oper state = up
remote id =
Internet_trigger :
admin state = down
max hops = 4
oper state = down
remote id =
trusted = disabled
Internet :
admin state = down
max hops = 4
trusted = disabled
oper state = down
remote id =
=>dhcp relay ifconfig intf=Internet_trigger relay=enabled trusted=enabled
=>dhcp relay iflist
eth0 :
admin state = up
max hops = 4
trusted = disabled
oper state = up
remote id =
Internet_trigger :
admin state = up
max hops = 4
oper state = up
remote id =
trusted = enabled
Internet :
admin state = down
max hops = 4
trusted = disabled
oper state = down
remote id =
=>
E-DOC-CTC-20061027-0003 v2.0
137
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay iflist
Show the configuration of the relay interfaces.
SYNTAX:
dhcp relay iflist
[intf = <string>]
where:
intf
The name of the dynamic interface to be listed.
OPTIONAL
Note If not specified, all the relay interfaces will be shown.
EXAMPLE:
=>dhcp relay iflist
eth0 :
admin state = up
oper state = up
remote id =
max hops = 4
trusted = disabled
Internet_trigger :
admin state = up
max hops = 4
oper state = up
remote id =
trusted = enabled
Internet :
admin state = down
max hops = 4
trusted = disabled
oper state = down
remote id =
=>
E-DOC-CTC-20061027-0003 v2.0
138
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay list
List the DHCP forward list.
SYNTAX:
dhcp relay list
[name = <string>]
where:
name
The forward entry name.
OPTIONAL
EXAMPLE:
=>dhcp relay list
DHCP server
Interface
giaddr
-------------------------------------------------------
127.0.0.1
eth0
10.0.0.138
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
139
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay modify
Modify an entry from the DHCP forward list.
SYNTAX:
dhcp relay modify
name = <string>
[addr = <ip-address>]
[intf = <{None | guest1 | dmz1 | wan1 |
lan1 | Internet}>]
[giaddr = <ip-address>]
[script = <>]
where:
name
addr
intf
The forward entry name.
REQUIRED
The DHCP server IP address.
OPTIONAL
OPTIONAL
The name of the relay interface, ‘None’ to indicate no interface
is specified.
The standard is None.
giaddr
script
The giaddr field to be used in relayed DHCP packets.
Script to be run when the forward entry is hit.
OPTIONAL
OPTIONAL
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
140
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay ruleadd
Add a selection rule to a DHCP forward entry.
SYNTAX:
dhcp relay ruleadd
name = <string>
[key = <{or | and}>]
rulename = <string>
where:
name
The name of the forward entry.
REQUIRED
OPTIONAL
key
The logical key of the selection rule.
The default is or.
rulename
The name of the DHCP selection rule.
REQUIRED
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
141
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp relay ruledelete
Delete a selection rule from a DHCP forward entry.
SYNTAX:
dhcp relay ruledelete
name = <string>
rulename = <string>
where:
name
The name of the forward entry.
The name of the DHCP selection rule.
REQUIRED
REQUIRED
rulename
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
142
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp rule add
Add a rule for DHCP conditional selection.
SYNTAX:
dhcp rule add
name = <string>
type = <{vci | uci | mac}>
vci [!]= <quoted string>
uci [!]= <quoted string>
[match = <{exactly|as_substring}>]
mac [!]= <hardware-address with wildcard
| ex: '00:9f:aa:*:*:*'>
If a value is preceded by a “!”, it means NOT.
For example “mac=!00:9f:aa:bb:cc:dd” means “for MAC address different from 00:9f:aa:bb:cc:dd”.
i
where:
name
type
The name of the new DHCP rule.
REQUIRED
REQUIRED
Specify the DHCP rule type.
Choose between:
>
>
>
vci: vendor class identifier
uci: user class identifier
mac: MAC address.
vci
uci
The vendor class identifier string.
Note Only required when type=vci.
The user class identifier string.
REQUIRED
REQUIRED
Note Only required when type=uci.
The vendor or user class identifier string matching.
The MAC address.
match
mac
OPTIONAL
REQUIRED
Note Only required when type=mac.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
143
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp rule debug traceconfig
Modify DHCP rule trace configuration.
SYNTAX:
dhcp rule debug traceconfig
[state = {disabled | enabled}]
where:
state
Set tracing to disabled or enabled.
OPTIONAL
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
144
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp rule delete
Delete a DHCP rule.
SYNTAX:
dhcp rule delete
name = <string>
where:
name
The name of the DHCP rule.
REQUIRED
EXAMPLE:
=>dhcp rule delete
name = new
:dhcp rule delete name=new
=>
RELATED COMMANDS:
Add a rule for DHCP conditional selection.
E-DOC-CTC-20061027-0003 v2.0
145
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp rule flush
Flush all DHCP rules.
SYNTAX:
dhcp rule flush
EXAMPLE:
=>dhcp rule list
Name
Use Value
new
0
vci=test
=>dhcp rule flush
=>dhcp rule list
Name
=>
Use Value
RELATED COMMANDS:
Add a rule for DHCP conditional selection.
E-DOC-CTC-20061027-0003 v2.0
146
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server policy
Print the DHCP server policy settings.
SYNTAX:
dhcp server policy
[verifyfirst = <disabled|enabled>]
[trustclient = <disabled|enabled>]
[rtbehaviour = <msft|standard|traditional>]
where:
E-DOC-CTC-20061027-0003 v2.0
150
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server debug clear
Clear the DHCP server statistics.
SYNTAX:
dhcp server debug clear
EXAMPLE:
=>dhcp server debug stats
DHCP server state: Running
DHCP server statistics:
Corrupted packet recv
DISCOVER
REQUEST
DECLINE
RELEASE
INFORM
Pure BOOTP REQUESTS
Other message types
OFFERs sent
ACKs sent
NAKs sent
:
:
:
:
:
:
:
:
:
:
:
:
0
2451
28
0
22
1
2
0
2451
19
0
Relay agent options dropped
0
Lease table got full
Ping table got full
: no
: no
Second dhcp server seen : no
Total size of lease table: 32, in use: 0 free: 100 %
=>dhcp server debug clear
=>dhcp server debug stats
DHCP server state: Running
DHCP server statistics:
Corrupted packet recv
DISCOVER
REQUEST
DECLINE
RELEASE
:
:
:
:
:
:
:
:
:
:
:
:
0
0
0
0
0
0
0
0
0
0
0
0
INFORM
Pure BOOTP REQUESTS
Other message types
OFFERs sent
ACKs sent
NAKs sent
Relay agent options dropped
Lease table got full
Ping table got full
: no
: no
Second dhcp server seen : no
Total size of lease table: 32, in use: 0 free: 100 %
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
151
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server debug stats
Show the DHCP server statistics.
SYNTAX:
dhcp server debug stats
EXAMPLE:
=>dhcp server stats
DHCP Server State:
Stopped
DHCP server statistics:
Corrupted packet recv
DISCOVER
REQUEST
DECLINE
RELEASE
INFORM
Pure BOOTP REQUESTS
Other message types
OFFERs sent
:
:
:
:
:
:
:
:
:
:
:
:
0
2451
28
0
22
1
2
0
2451
19
0
ACKs sent
NAKs sent
Relay agent options dropped
0
Lease table got full
Ping table got full
: no
: no
Second dhcp server seen : no
Total size of lease table: 32, in use: 16, free: 50 %
=>
DESCRIPTION:
>
>
DHCP server state: the state of the DHCP server.
Corrupted packet recv: the number of corrupted packets (not complaint to RFC2131) received from the
LAN.
>
DISCOVER: the number of DHCP server discovery packets received from the LAN. These broadcasts are
sent by potential DHCP clients to locate available DHCP servers.
>
>
>
>
>
>
>
>
>
>
>
REQUEST: the number of DHCP address lease requests received from the Local Area Network (LAN).
DECLINE: the number of DHCP address lease requests declined.
RELEASE: the number of DHCP address release requests received from DHCP clients.
INFORM: the number of information requests received from DHCP clients.
Pure BOOTP requests: the number of BOOTP requests received from the LAN.
Other message types: the number of other messages received from the LAN.
OFFERs sent: the number of IP address offers sent in reply to DHCP requests.
ACKs sent: the number of ACKnowledgement replies sent to successfully configured DHCP clients.
NAKs sent: the number of Not-AcKnowledgement replies sent to wrongly configured DHCP clients.
Relay agent options dropped
Lease table got full: whether the maximum number of DHCP leases is reached or not.
E-DOC-CTC-20061027-0003 v2.0
152
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
>
>
Ping table got full: whether the history list of IP address pings got full or not. These pings are sent by the
DHCP server to verify whether the IP address is already in use disabled the LAN or not (:dhcp server
policy verifyfirst=yes).
Second DHCP server seen: whether a concurrent DHCP server was found disabled the LAN or not.
RELATED COMMANDS:
Clear the DHCP server statistics.
E-DOC-CTC-20061027-0003 v2.0
153
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server debug traceconfig
Modify the DHCP server trace configuration.
SYNTAX:
dhcp server debug traceconfig [state = <{disabled | enabled}>]
where:
state
Enable or disable tracing.
OPTIONAL
The default is disabled.
EXAMPLE:
=>dhcp server debug traceconfig
Tracing: disabled
=>
E-DOC-CTC-20061027-0003 v2.0
154
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server lease add
Add a DHCP server lease.
SYNTAX:
dhcp server lease add
clientid = <client-id>
pool = <string>
[addr = <ip-address>]
[offset = <number>]
[leasetime = <number>]
[expirytime = <number>]
[gateway = <ip-address>]
[macaddr = <hardware-address>]
where:
clientid
pool
The DHCP client identification string of the booting host.
REQUIRED
REQUIRED
The name of the DHCP server pool from which the DHCP lease
should be taken.
Tip
Use the command :dhcp server pool listto
obtain a list of available DHCP server pools.
addr
The favoured IP address for this DHCP host.
This IP address, if specified, must be in the range of the
specified DHCP server pool.
OPTIONAL
OPTIONAL
offset
A number between 0 and the integer number defined by the
number of available IP addresses in the DHCP server pool.
Represents the IP address offset in the DHCP server pool
preserved for this host.
Note Not specifying this parameter does not preserve an IP
address for the host.
leasetime
A number (of seconds).
OPTIONAL
Represents the time the host is allowed to use this address.
Note 0 means infinite leasetime.
expiretime
The time in seconds the DHCP server keeps the lease reserved
Tip
0 means infinite expirytime.
gateway
macaddr
The IP address of the default router for this client.
The MAC address of the host.
OPTIONAL
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
155
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
EXAMPLE:
=>dhcp server lease list
Lease
0 0.0.0.0
Pool
TTL
State
FREE
Clientid
00:90:D0:12:34:56
dhcp_pool_1 00:26:40
=>dhcp server lease add clientid=01:23:55:67:89:ab pool=Local_pool leasetime=3600
=>dhcp server lease list
Lease
Pool
dhcp_pool_1 00:26:40
local_pool 00:59:22
TTL
State
FREE
USED
Clientid
00:90:D0:12:34:56
01:23:45:67:89:AB
0 0.0.0.0
1 10.0.0.1
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
156
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server lease delete
Delete a DHCP server lease.
SYNTAX:
dhcp server lease delete
[clientid = <clientid | none>]
[index = <number>]
where:
clientid
index
The DHCP client identification string of the DHCP lease.
Note If not specified, all DHCP clients are deleted.
The DHCP server lease table index.
OPTIONAL
OPTIONAL
Tip
Use the command :dhcp server lease listto
obtain a list of the index numbers of all current
DHCP leases.
EXAMPLE:
=>dhcp server lease list
Lease
0 0.0.0.0
1 10.0.0.1
Pool
dhcp_pool_1 00:26:40
local_pool 00:59:22
TTL
State
FREE
USED
Clientid
00:90:D0:12:34:56
01:23:45:67:89:AB
=>dhcp server lease delete index=0
=>dhcp server lease list
Lease
1 10.0.0.1
=>
Pool
local_pool
TTL
00:59:22
State
USED
Clientid
01:23:45:67:89:AB
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
157
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server lease flush
Flush all the DHCP server leases.
The flush command does not impact previously saved configurations.
i
SYNTAX:
dhcp server lease flush
[pool = <string>]
where:
pool
The name of the DHCP server pool to be flushed.
Only the leases belonging to this pool will be deleted.
OPTIONAL
Note If not specified, all the DHCP server leases will be
flushed.
EXAMPLE:
=>dhcp server lease list
Lease
0 0.0.0.0
1 10.0.0.1
2 10.0.0.101 local_pool
3 10.0.0.132 local_pool
5 10.0.0.5
4 10.0.0.6
8 10.0.0.8
9 10.0.0.15 local_pool
=>dhcp server lease flush
=>dhcp server lease list
=>
Pool
TTL
State
FREE
USED
USED
USED
USED
USED
USED
USED
Clientid
dhcp_pool_1 00:26:40
local_pool
00:90:D0:12:34:56
01:23:45:67:89:AB
01:23:89:AB:80:CD
09:D0:25:CE:F1:31
AB:33:A1:7C:89:DD
E3:81:9F:11:11:11
08:80:09:90:AB:DC
08:93:DA:AE:01:AF
00:59:22
00:21:01
00:45:37
00:21:11
00:59:01
00:01:00
00:00:23
local_pool
local_pool
local_pool
E-DOC-CTC-20061027-0003 v2.0
158
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server lease list
List all the DHCP server leases.
SYNTAX:
dhcp server lease list
[clientid = <clientid | none>]
[index = <number>]
where:
clientid
The DHCP client identification string of the DHCP lease.
OPTIONAL
OPTIONAL
Note If not specified, the DSHCP server leases for all the
DHCP clients are listed.
index
The DHCP server lease table index.
Note If not specified, the complete DHCP server lease table
will be shown.
EXAMPLE:
=>dhcp server lease list
Lease
0 0.0.0.0
1 10.0.0.1
2 10.0.0.101 local_pool
3 10.0.0.132 local_pool
5 10.0.0.5
4 10.0.0.6
8 10.0.0.8
Pool
TTL
State
FREE
USED
USED
USED
USED
USED
USED
USED
Clientid
dhcp_pool_1 00:26:40
local_pool
00:90:D0:12:34:56
01:23:45:67:89:AB
01:23:89:AB:80:CD
09:D0:25:CE:F1:31
AB:33:A1:7C:89:DD
E3:81:9F:11:11:11
08:80:09:90:AB:DC
08:93:DA:AE:01:AF
00:59:22
00:21:01
00:45:37
00:21:11
00:59:01
00:01:00
00:00:23
local_pool
local_pool
local_pool
9 10.0.0.15 local_pool
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
159
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server option instadd
Add a DHCP server option instance.
SYNTAX:
dhcp server option instadd
name = <string>
tmplname = <string>
value = <Value : (type)value; type being 8-
bit,
16-bit, 32-bit, addr, ascii,
byte_array>
where:
name
The name of the DHCP server option instance.
The name of the DHCP server option template.
REQUIRED
tmplname
REQUIRED
Tip
Use the command :dhcp server option
tmpllistto obtain a list of DHCP server option
templates.
value
The value of the DHCP server option instance.
Format is (type)value where type is 8-bit, 16-bit, 32-bit, addr,
ascii or byte_array.
REQUIRED
Note The type must be identical to the type of the DHCP
server option template. Use the command :dhcp
server option tmpllistto obtain a list of DHCP
server option templates.
E-DOC-CTC-20061027-0003 v2.0
161
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
EXAMPLE:
=>dhcp server option instlist
myInstance
Tmpl name : myTmpl
(1)
Use
Value
: 0
: (32-bit)64
=>dhcp server option instadd name=yourInstance tmplname=yourTmpl value=(ascii)!
{root}[dhcp server option]=>instlist
yourInstance
Tmpl name : yourTmpl
(2)
(1)
Use
: 0
Value
: (ascii)!
myInstance
Tmpl name : myTmpl
Use
: 0
Value
: (32-bit)64
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
162
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server option instdelete
Delete a DHCP server option instance.
SYNTAX:
dhcp server option instdelete name = <string>
where:
name
The name of the DHCP server option instance to be deleted.
REQUIRED
EXAMPLE:
=>dhcp server option instlist
yourInstance
Tmpl name : yourTmpl
(2)
(1)
Use
: 0
Value
: (ascii)!
myInstance
Tmpl name : myTmpl
Use
: 0
Value
: (32-bit)64
=>dhcp server option instdelete name=yourInstance
=>dhcp server option instlist
myInstance
Tmpl name : myTmpl
(1)
Use
: 0
Value
: (32-bit)64
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
163
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server option instlist
List all the DHCP server option instances.
SYNTAX:
dhcp server option instlist
EXAMPLE:
=>dhcp server option instlist
yourInstance
Tmpl name : yourTmpl
(2)
(1)
Use
: 0
Value
: (ascii)!
myInstance
Tmpl name : myTmpl
Use
: 0
Value
: (32-bit)64
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
164
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server option tmpladd
Add a DHCP server option template.
SYNTAX:
dhcp server option tmpladd
name = <string>
optionid = <number{1-254}>
type = <{8-bit | 16-bit | 32-bit | addr |
ascii | byte_array}>
where:
name
The name of the DHCP server option template.
A number between 1 and 254.
REQUIRED
optionid
REQUIRED
Specifies the DHCP server option code.
type
Specifies the DHCP server option type.
Choose between:
REQUIRED
>
>
>
>
>
>
8-bit
16-bit
32-bit
addr
ascii
byte_array.
EXAMPLE:
=>dhcp server option tmpllist
Name
myTmpl
Option Type
1 32-bit
Use
0
=>dhcp server option tmpladd name=yourTmpl optionid=2 type=ascii
=>dhcp server option tmpllist
Name
Option Type
Use
0
0
yourTmpl
myTmpl
=>
2
1
ascii
32-bit
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
165
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server option tmpldelete
Delete a DHCP server option template.
SYNTAX:
dhcp server option tmpldelete name = <string>
where:
name
The name of the DHCP server option template to be deleted.
REQUIRED
EXAMPLE:
=>dhcp server option tmpllist
Name
yourTmpl
myTmpl
Option Type
Use
0
0
2
1
ascii
32-bit
=>dhcp server option tmpldelete name=yourTmpl
=>dhcp server option tmpllist
Name
myTmpl
=>
Option Type
32-bit
Use
0
1
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
166
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server option tmpllist
List all the DHCP server option templates.
SYNTAX:
dhcp server option tmpllist
EXAMPLE:
=>dhcp server option tmpllist
Name
Option Type
Use
0
0
yourTmpl
myTmpl
=>
2
1
ascii
32-bit
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
167
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool add
Add a DHCP server pool.
SYNTAX:
dhcp server pool add
name = <string>
[index = <number>]
where:
name
The name of the DHCP server pool.
REQUIRED
Note If not specified, the name is “dhcp_pool_x”, where x is
a subsequent number.
index
The number of the pool before which you want the new pool to
be added.
OPTIONAL
Note If not specified, the DHCP server pool will be added at
the bottom of the DHCP server lease table.
E-DOC-CTC-20061027-0003 v2.0
168
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
EXAMPLE:
=>dhcp server pool list
Pool
Start
End
State
FREE
USED
FREE
PPP
PPP
0 dhcp_pool_1
1 My_LAN_Pool
2 dhcp_pool_2
=>dhcp server pool add
=>dhcp server pool list
0.0.0.0
10.0.0.1
0.0.0.0
0.0.0.0
10.0.0.254
0.0.0.0
Pool
Start
End
State
FREE
USED
FREE
FREE
0 dhcp_pool_1
1 My_LAN_Pool
2 dhcp_pool_2
3 dhcp_pool_3
0.0.0.0
10.0.0.1
0.0.0.0
0.0.0.0
0.0.0.0
10.0.0.254
0.0.0.0
0.0.0.0
=>dhcp server pool add name=POOL_EXTRA1
=>dhcp server pool list
Pool
Start
End
State
FREE
USED
FREE
FREE
FREE
PPP
0 dhcp_pool_1
1 My_LAN_Pool
2 dhcp_pool_2
3 dhcp_pool_3
4 POOL_EXTRA1
0.0.0.0
10.0.0.1
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
10.0.0.254
0.0.0.0
0.0.0.0
0.0.0.0
=>ppp ifconfig name=PPP_Test pool=POOL_EXTRA1
=>dhcp server pool list
Pool
Start
End
State
FREE
USED
FREE
FREE
FREE
PPP
0 dhcp_pool_1
1 My_LAN_Pool
2 dhcp_pool_2
3 dhcp_pool_3
4 POOL_EXTRA1
=>
0.0.0.0
10.0.0.1
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
10.0.0.254
0.0.0.0
0.0.0.0
0.0.0.0
PPP_Test
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
169
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool config
Configure a DHCP server pool.
SYNTAX:
dhcp server pool config
name = <string>
intf = <string>
[index = <number>]
[poolstart = <ip-address>]
[poolend = <ip-address>]
[netmask = <ip-mask(dotted or cidr)>]
[gateway = <ipaddress | 0>]
[server = <ipaddress | 0>]
[primdns = <ipaddress | 0>]
[secdns = <ipaddress | 0>]
[dnsmetric = <number{0-100}>]
[primwins = <ipaddress | 0>]
[secwins = <ipaddress | 0>]
[leasetime = <number>]
[unnumbered = <{disabled | enabled}>]
[localgw = <{disabled | enabled}>]
where:
name
intf
The name of the DHCP server pool to configure.
REQUIRED
The interface for which the pool is allowed to lease IP
addresses.
REQUIRED
index
A number between 0 (highest priority) and the highest number
(lowest priority) found in the list of existing DHCP server pools.
Represents a (higher) priority for the DHCP server pool.
OPTIONAL
Tip
Use the command :dhcp server pool listto
obtain a list of the index numbers of all current
DHCP server pools.
poolstart
The lowest IP address in the DHCP address range to use for
leasing.
OPTIONAL
The default value of this parameter is 0.0.0.0 (not specified),
which means that the lowest IP address of the pool will be
defined by the remote server via Internet Protocol Control
Protocol (IPCP) as soon as the Point-to-Point Protocol (PPP)
IPCP subnetmasking connection is established.
poolend
netmask
The highest IP address in the DHCP address range to use for
leasing.
The default value of this parameter is 0.0.0.0 (not specified),
which means that the highest IP address of the pool will be
defined by the remote server via IPCP as soon as the PPP IPCP
subnetmasking connection is established.
OPTIONAL
OPTIONAL
The applicable netmask for the DHCP leases.
E-DOC-CTC-20061027-0003 v2.0
170
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
gateway
The IP address of the default gateway for the DHCP clients.
The default value of this parameter is 0 (not specified), which
means that the gateway IP address will be communicated by
the remote server as soon as the PPP IPCP subnetmasking
connection is established or that the Thomson ST acts as the
LAN default gateway.
OPTIONAL
server
The IP address of the DHCP server for DHCP clients.
OPTIONAL
OPTIONAL
primdns
The IP address of the primary DNS server for the DHCP clients.
The default value of this parameter is 0 (not specified), which
means that the IP address of the DNS server will be
communicated by the remote server as soon as the PPP IPCP
subnetmasking connection is established or that the Thomson
ST acts as the LAN DNS server.
secdns
The IP address of the optional secondary DNS server for DHCP
clients.
OPTIONAL
The default value of this parameter is 0 (not specified), which
means that the gateway IP address will be communicated by
the remote server as soon as the PPP IPCP subnetmasking
connection is established.
dnsmetric
primwins
The DHCP server pool DNS route metric.
OPTIONAL
OPTIONAL
The IP address of the primary Windows Internet Naming
Service (WINS) server for DHCP clients.
secwins
The IP address of the secondary WINS server for DHCP clients.
OPTIONAL
OPTIONAL
leasetime
A number (of seconds).
Represents the time in seconds a client is allowed to use an
address.
Note Specifying 0 makes the lease permanent.
unnumbered
localgw
Assign an IP address from this pool to the DHCP server
(enabled) or not (disabled).
OPTIONAL
OPTIONAL
Note For dynamic pools only.
Proxy for a virtual default gateway residing in same subnet of
DHCP client instead of the remote peer address.
EXAMPLE:
=>dhcp server pool list
Pool
0 LAN_Private
Start
10.0.0.1
End
10.0.0.254
Intf
eth0
State
USED
=>dhcp server pool config name=My_Pool poolstart=192.6.11.101
| poolend=192.6.11.254 netmask=255.255.255 gateway=192.6.11.100 leasetime=21600
=>dhcp server pool list
Pool
Start
10.0.0.1
192.6.11.101
End
Intf
eth0
eth0
State
USED
USED
0 LAN_Private
1 My_Pool
=>
10.0.0.254
192.6.11.254
E-DOC-CTC-20061027-0003 v2.0
171
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool delete
Delete a DHCP server pool.
SYNTAX:
dhcp server pool delete
name = <string>
where:
name
The name of the DHCP server pool to be deleted.
Tip Use the command :dhcp server pool listto
obtain a list of all current DHCP leases.
REQUIRED
EXAMPLE:
=>dhcp server pool list
Pool
0 LAN_Private
1 My_Pool
Start
10.0.0.1
192.6.11.101
End
Intf
eth0
eth0
State
USED
USED
10.0.0.254
192.6.11.254
=>dhcp server pool delete name=My_Pool
=>dhcp server pool list
Pool
0 LAN_Private
=>
Start
10.0.0.1
End
10.0.0.254
Intf
eth0
State
USED
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
172
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool flush
Flush all DHCP server pools.
The flush command does not impact previously saved configurations.
i
SYNTAX:
dhcp server pool flush
EXAMPLE:
=>dhcp server pool list
Pool
0 LAN_Private
1 My_Pool
Start
10.0.0.1
192.6.11.101
End
Intf
eth0
eth0
State
USED
USED
10.0.0.254
192.6.11.254
=>dhcp server pool flush
=>dhcp server pool list
=>
E-DOC-CTC-20061027-0003 v2.0
173
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool list
List all DHCP server pools.
SYNTAX:
dhcp server pool list
[name = <string>]
where:
name
The name of the DHCP server pool to be shown.
Note If not specified, all the DHCP server pools are shown.
OPTIONAL
EXAMPLE:
=>dhcp server pool list
Pool
Start
10.0.0.1
192.6.11.101
End
Intf
eth0
eth0
State
USED
USED
0 LAN_Private
1 My_Pool
=>
10.0.0.254
192.6.11.254
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
174
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool optadd
Add an option instance to the DHCP server pool.
SYNTAX:
dhcp server pool optadd
name = <string>
instname = <string>
where:
name
The name of the DHCP server pool to which an option instance
must be added.
REQUIRED
REQUIRED
instname
The name of the DHCP server option instance.
Tip
Use the command :dhcp server option
instlistto obtain a list of DHCP server option
instances.
EXAMPLE:
=>dhcp server pool optadd name=dhcp_pool_1 instname=yourInstance
=>dhcp server pool list name=dhcp_pool_1
Pool
1 dhcp_pool_1
Start
0.0.0.0
End
0.0.0.0
Intf
lan1
State
FREE
DHCP server
Netmask
Leasetime
Gateway
DNS domain
DNS metric
= 0.0.0.0 [unnumbered]
= 0.0.0.0
= infinite
= 0.0.0.0
= lan
= 0
DNS address list:
0.0.0.0 (local DNS)
Option instance list:
Name
yourInstance
=>
Option
2 (yourTmpl)
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
175
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool optdelete
Delete an option instance from the DHCP server pool.
SYNTAX:
dhcp server pool optdelete
name = <string>
instname = <string>
where:
name
The name of the DHCP server pool from which an option
instance must be deleted.
REQUIRED
REQUIRED
instname
The name of the DHCP server option instance to be deleted.
Tip
Use the command :dhcp server option listto
obtain a list of DHCP server option instances.
E-DOC-CTC-20061027-0003 v2.0
176
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
EXAMPLE:
=>dhcp server pool list name=dhcp_pool_1
Pool
1 dhcp_pool_1
Start
0.0.0.0
End
0.0.0.0
Intf
lan1
State
FREE
DHCP server
Netmask
Leasetime
Gateway
DNS domain
DNS metric
= 0.0.0.0 [unnumbered]
= 0.0.0.0
= infinite
= 0.0.0.0
= lan
= 0
DNS address list:
0.0.0.0 (local DNS)
Option instance list:
Name
yourInstance
Option
2 (yourTmpl)
=>dhcp server pool optdelete name=dhcp_pool_1 instname=yourInstance
=>dhcp server pool list name=dhcp_pool_1
Pool
1 dhcp_pool_1
Start
0.0.0.0
End
0.0.0.0
Intf
lan1
State
FREE
DHCP server
Netmask
Leasetime
Gateway
DNS domain
DNS metric
= 0.0.0.0 [unnumbered]
= 0.0.0.0
= infinite
= 0.0.0.0
= lan
= 0
DNS address list:
0.0.0.0 (local DNS)
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
177
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool rtadd
Add a route to the DHCP server pool.
SYNTAX:
dhcp server pool rtadd
name = <string>
dst = <ip-address>
[dstmsk = <ip-mask(dotted or cidr)>]
[gateway = <ipaddress | 0>]
where:
name
The name of the DHCP server pool to which a route must be
added.
REQUIRED
dst
The IP destination address of the route for DHCP clients.
The destination IP address mask.
REQUIRED
OPTIONAL
OPTIONAL
dstmsk
gateway
The IP address of the next hop. Must be directly connected to
the DHCP client
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
178
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool rtdelete
Delete a route from the DHCP server pool.
SYNTAX:
dhcp server pool rtdelete
name = <string>
dst = <ip-address>
[dstmsk = <ip-mask(dotted or cidr)>]
[gateway = <ipaddress | 0>]
where:
name
The name of the DHCP server pool from which a route must be
deleted.
REQUIRED
dst
The IP destination address of the route for DHCP clients.
The destination IP address mask.
REQUIRED
OPTIONAL
OPTIONAL
dstmsk
gateway
The IP address of the next hop. Must be directly connected to
the DHCP client
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
179
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool ruleadd
Add a selection rule to the DHCP server pool.
SYNTAX:
dhcp server pool ruleadd
name = <string>
[key = {or | and}]
rulename = <string>
where:
name
key
The name of the DHCP server pool to which a selection rule
must be added.
REQUIRED
OPTIONAL
REQUIRED
The logical key of the selection rule.
The default is or.
rulename
The name of the DHCP selection rule.
Tip
Use the command :dhcp server rule listto
obtain a list of DHCP server rules.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
180
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
dhcp server pool ruledelete
Delete a selection rule from the DHCP server pool.
SYNTAX:
dhcp server pool ruleadd
name = <string>
rulename = <string>
where:
name
The name of the DHCP server pool from which a selection rule
must be deleted.
REQUIRED
REQUIRED
rulename
The name of the DHCP selection rule to be deleted.
Tip
Use the command :dhcp server rule listto
obtain a list of DHCP server rules.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
181
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP Commands
E-DOC-CTC-20061027-0003 v2.0
182
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns client config
Modify the Domain Name System (DNS) resolver configuration.
SYNTAX:
dns client config
[timeout = <number{1-900}>]
[retry = <number{0-10}>]
[search = <{disabled | enabled}>]
[list = <string>]
[trace = <{disabled | enabled}>]
where:
timeout
A number between 1 and 900 (seconds).
Represents the query timeout.
The default is 5.
OPTIONAL
OPTIONAL
retry
A number between 0 and 10.
Represents the number of query retries before giving up.
The default is 3.
search
list
Use the search list to construct fully qualified domain names.
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
Specify a search list.
This is a slash separated list of domain name suffixes.
trace
Enable or disable verbose logging.
The default is disabled.
EXAMPLE:
=>dns client config
timeout : 5s
retry
: 3
search
: on
srchlist : <empty>
trace
=>
: off
E-DOC-CTC-20061027-0003 v2.0
184
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns client dnsadd
Add a DNS server.
SYNTAX:
dns client dnsadd
addr = <string>
[port = <number>]
where:
addr
port
The IP address of the DNS server to be added.
REQUIRED
OPTIONAL
The DNS server port number.
The default is 53.
EXAMPLE:
=>dns client dnsadd addr=150.150.150.150
=>dns client dnslist
Entry
1
2
State
CONNECTED
CONNECTED
Family
IP
IP
Server
[port] 53 - [addr] 127.0.0.1
[port] 53 - [addr] 150.150.150.150
=>
RELATED COMMANDS:
Delete a DNS server.
List all DNS servers.
E-DOC-CTC-20061027-0003 v2.0
185
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns client dnsdelete
Delete a DNS server.
SYNTAX:
dns client dnsdelete
index = <number{1-99}>
where:
index
A number between 1 and 99.
REQUIRED
Represents the index number of the DNS server to be deleted.
Tip
Use the command :dns client dnslistto obtain a list of
DNS servers.
EXAMPLE:
=>dns client dnslist
Entry
State
Family
Server
1
2
CONNECTED
CONNECTED
IP
IP
[port] 53 - [addr] 127.0.0.1
[port] 53 - [addr] 150.150.150.150
=>dns client dnsdelete index=2
=>dns client dnslist
Entry
1
State
CONNECTED
Family
IP
Server
[port] 53 - [addr] 127.0.0.1
=>
RELATED COMMANDS:
Add a DNS server.
List all DNS servers.
E-DOC-CTC-20061027-0003 v2.0
186
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns client dnslist
List all DNS servers.
SYNTAX:
dns client dnslist
EXAMPLE:
=>dns client dnslist
Entry
1
2
State
CONNECTED
CONNECTED
Family
IP
IP
Server
[port] 53 - [addr] 127.0.0.1
[port] 53 - [addr] 150.150.150.150
=>
RELATED COMMANDS:
Add a DNS server.
Delete a DNS server.
E-DOC-CTC-20061027-0003 v2.0
187
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server config
Modify the DNS resolver configuration.
SYNTAX:
dns server config
[domain = <string>]
[timeout = <number{0-2147483647}>]
[suppress = <number>]
[state = <{disabled | enabled}>]
[trace = <{disabled | enabled}>]
[WANDownSpoofing = <{disabled | enabled}>]
[WDSpoofedIP = <ip-address>]
where:
domain
timeout
The DNS server domain name.
OPTIONAL
A number between 0 and 2147483647 (seconds).
Represents the forwarded DNS query timeout.
The default is 15.
OPTIONAL
suppress
Suppress not more than the specified amount of remote DNS
OPTIONAL
server errors.
The default is 0.
state
Enable or disable the local DNS server/forwarder.
The default is enabled.
OPTIONAL
OPTIONAL
OPTIONAL
trace
Enable or disable verbose logging.
The default is disabled.
WANDownSpoofing
Enable or disable DNS spoofing when no applicable forwarding
route present.
The default is disabled.
WDSpoofedIP
The IP address to be used for spoofing when WANDownSpoofing
OPTIONAL
is enabled.
EXAMPLE:
=>dns server config
domain : lan
timeout : 15s
suppress : 0
state
trace
: enabled
: off
spoofing : off
spoof ip : 0.0.0.0
=>
E-DOC-CTC-20061027-0003 v2.0
190
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server debug clear
Clear the DNS server/forwarder statistics.
SYNTAX:
dns server debug clear
EXAMPLE:
=>dns server debug stats
Corrupted packets received
Local questions resolved
Local negative answers sent
Total DNS packets forwarded
External answers received
Spoofed responses
Forward table full, discard
Spurious answers
Unknown query types
:
:
:
:
:
:
:
:
:
100
3
1
0
0
0
0
0
0
=>dns server debug clear
=>dns server debug stats
Corrupted packets received
Local questions resolved
Local negative answers sent
Total DNS packets forwarded
External answers received
Spoofed responses
:
:
:
:
:
:
:
:
:
0
0
0
0
0
0
0
0
0
Forward table full, discard
Spurious answers
Unknown query types
=>
RELATED COMMANDS:
Print the DNS server/forwarder statistics.
E-DOC-CTC-20061027-0003 v2.0
192
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server debug stats
Print the DNS server/forwarder statistics.
SYNTAX:
dns server debug stats
EXAMPLE:
=>dns server debug stats
Corrupted packets received
Local questions resolved
Local negative answers sent
Total DNS packets forwarded
External answers received
Spoofed responses
Forward table full, discard
Spurious answers
Unknown query types
:
100
3
1
0
0
0
0
0
0
:
:
:
:
:
:
:
:
=>
RELATED COMMANDS:
Clear the DNS server/forwarder statistics.
E-DOC-CTC-20061027-0003 v2.0
193
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server debug spoof getaddress
Get the real ip for the given spoofed ip
SYNTAX:
dns server debug spoof getaddress addr = <ip-address>
where:
addr
The IP address of the spoofed server.
REQUIRED
EXAMPLE:
{Administrator}=>dns server debug spoof getaddress addr=198.18.1.1
:dns server debug spoof getaddress addr=198.18.1.1
Resolved ip = 0.0.0.0.
{Administrator}=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
195
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server debug spoof getflags
Get the error flags for the given spoofed ip
SYNTAX:
dns server debug spoof getflags
addr = <ip-address>
where:
addr
The IP address of the spoofed server.
REQUIRED
EXAMPLE:
{Administrator}[dns server debug spoof]=>:dns server debug spoof getflags
addr = 192.168.1.254
:dns server debug spoof getflags addr=192.168.1.254
Invalid spoofed ip.
{Administrator}[dns server debug spoof]=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
196
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server debug spoof list
List the intercept cache table.
SYNTAX:
dsn server debug spoof list
EXAMPLE:
{Administrator}[dns server debug spoof]=>list
Spoof IP
FQDN
eu.thmulti.com
thmulti.com
Real IP
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
Flags
198.18.1.1
198.18.1.2
198.18.1.3
198.18.1.4
198.18.1.5
198.18.1.6
198.18.1.7
Not resolved
Not resolved
Not resolved
Not resolved
Not resolved
Not resolved
Not resolved
com
edgmd588.eu.thmulti.com
edgmssus01.eu.thmulti.com
BOULSDCEU02.eu.thmulti.com
juleke.nit
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
197
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server debug spoof update
Update the intercept cache table.
SYNTAX:
dns server debug spoof update
EXAMPLE:
{Administrator}=>dns server debug spoof update
{Administrator}=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
198
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server host add
Add a local DNS host.
SYNTAX:
dns server host add
name = <string>
[addr = <ip-address>]
[ttl = <number{0-2147483647}>]
where:
name
addr
ttl
The name of the IP host to be added.
The IP address of the host.
REQUIRED
OPTIONAL
OPTIONAL
A number between 0 and 2147483647 (seconds).
Represents the lifetime of the host.
The default is 0 (in other words, no limit on the lifetime).
EXAMPLE:
=>dns server host add name=myDNS addr=150.150.150.150 ttl=3600
=>dns server host list
Address
Hostname
TTL (s)
150.150.150.150 myDNS
3600
<local>
<local>
=>
speedtouch
dsldevice
0
0
RELATED COMMANDS:
Delete a local DNS host.
List all the local DNS hosts.
E-DOC-CTC-20061027-0003 v2.0
199
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server host delete
Delete a local DNS host.
SYNTAX:
dns server host delete
name = <string>
where:
name
The name of the DNS host to be deleted.
REQUIRED
EXAMPLE:
=>dns server host list
Address Hostname
150.150.150.150 myDNS
TTL (s)
3600
<local>
<local>
speedtouch
dsldevice
0
0
=>dns server host delete name=myDNS
=>dns server host list
Address
<local>
<local>
=>
Hostname
speedtouch
dsldevice
TTL (s)
0
0
RELATED COMMANDS:
Add a local DNS host.
List all the local DNS hosts.
E-DOC-CTC-20061027-0003 v2.0
200
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server host flush
Flush all the local DNS hosts.
SYNTAX:
dns server host flush
EXAMPLE:
=>dns server host list
Address
192.168.1.64
<local>
Hostname
* Unknown-00-10-a4-ad-32-cf
dsldevice
TTL (s)
60
1200
1200
<local>
speedtouch
=>dns server host flush
=>dns server host list
=>
E-DOC-CTC-20061027-0003 v2.0
201
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server host list
List all the local DNS hosts.
SYNTAX:
dns server host list
EXAMPLE:
=>dns server host list
Address
192.168.1.64
<local>
<local>
=>
Hostname
* Unknown-00-10-a4-ad-32-cf
dsldevice
TTL (s)
60
1200
speedtouch
1200
RELATED COMMANDS:
Add a local DNS host.
Delete a local DNS host.
E-DOC-CTC-20061027-0003 v2.0
202
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server route add
Creates a DNS forwarding entry or template.
SYNTAX:
dns server route add
dns = <ip-address>
[src = <ip-address>]
[srcmask = <ip-mask(dotted or cidr)>]
[domain = <string>]
[metric = <number{0-100}>]
[intf = <string>]
where:
dns
The IP address of a DNS server. If 0.0.0.0 is used, the entry becomes a
DNS-Template which is instantiated if DNS Server IPs are configured
on an IP interface.
REQUIRED
OPTIONAL
src
The source IP address(es) using this remote DNS server. If specified,
only DNS queries from machines of which the source IP address
matches the source prefix of the DNS entry will be forwarded to the
corresponding DNS server.
Note Supports IP/mask notation.
srcmask
The source IP address mask.
OPTIONAL
OPTIONAL
domain
The DNS Domain matching string. If configured, only those DNS
queries of which
the domain name in the query matches with the
string configured for the entry will be forwarded to the corresponding
DNS Server. Maximum string length: 62 characters.
metric
intf
A number between 0 and 100. Represents the metric (weight factor) for
this DNS route. The DNS Entry List is sorted on DNS Metric: the lower
the metric, the higher the priority of the entry.
OPTIONAL
OPTIONAL
An interface name.
The interface associated with the DNS entry or DNS Template. DNS
queries will only be forwarded on the specified interface.
Note In no interface is specified, DNS queries will be forwarded on
all interfaces.
E-DOC-CTC-20061027-0003 v2.0
203
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
EXAMPLE:
=>dns server route add dns=150.150.150.150 src=10.0.0.0/8 domain=myDNS intf=eth0
=>dns server route list
DNS Server Source
Domain
myDNS
Metric Intf
eth0
State
UP
150.150.150.150 10.0.0.0/8
=>
0
RELATED COMMANDS:
Delete a DNS forwarding route.
List all the DNS forwarding routes.
E-DOC-CTC-20061027-0003 v2.0
204
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server route delete
Deletes a DNS forwarding entry or template
SYNTAX:
dns server route delete
dns = <ip-address>
[domain = <string>]
[intf = <{loop|Internet|LocalNetwork}>]
where:
dns
The IP address of the DNS server for which the forwarding route must
be deleted.
REQUIRED
domain
intf
The DNS domain string.
OPTIONAL
OPTIONAL
The interface associated with the DNS entry or DNS Template.
EXAMPLE:
=>dns server route list
DNS Server Source
150.150.150.150 10.0.0.0/8
Domain
myDNS
Metric Intf
eth0
State
UP
0
=>dns server route delete dns=150.150.150.150
=>dns server route list
=>
RELATED COMMANDS:
Adds a DNS forwarding route.
List all the DNS forwarding routes.
E-DOC-CTC-20061027-0003 v2.0
205
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server route flush
Removes all DNS forwarding entries and templates.
SYNTAX:
dns server route flush
EXAMPLE:
=>dns server route list
DNS Server
Source
Domain
myDNS
Metric Intf
eth0
State
UP
150.150.150.150 10.0.0.0/8
=>dns server route flush
=>dns server route list
=>
0
E-DOC-CTC-20061027-0003 v2.0
206
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
dns server route list
List all the DNS forwarding entries or templates.
SYNTAX:
dns server route list
EXAMPLE:
=>dns server route list
DNS Server Source
150.150.150.150 10.0.0.0/8
=>
Domain
myDNS
Metric Intf
eth0
State
UP
0
RELATED COMMANDS:
Adds a DNS forwarding route.
Delete a DNS forwarding route.
E-DOC-CTC-20061027-0003 v2.0
207
Download from Www.Somanuals.com. All Manuals Search And Download.
DNS Commands
E-DOC-CTC-20061027-0003 v2.0
208
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
11 DSD Commands
Introduction
This chapter describes the commands of the dsdcommand group.
Contents
This chapter covers the following commands:
Display/modify the URL filtering configuration.
Add a rule.
Delete a rule.
Remove all current rules.
Display the list of current rules.
Modify an existing rule.
E-DOC-CTC-20061027-0003 v2.0
209
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd config
Display/modify the Differentiated Service Delivery (DSD) framework configuration.
SYNTAX:
dsd config
[state = <{disabled | enabled | automatic}>]
where:
state
Choose between:
OPTIONAL
>
automatic (default):
By default (DSD config state is automatic), the DSD framework is
not active, for example no URL filtering or web site filtering is
applied. Only in case the state of the default WAN IP interface goes
down, DSD framework will be activated, for example in case the
PPP link goes down (implying HTTP intercept active).
>
>
enabled:
If DSD config state is enabled the DSD framework is always active.
disabled
If you do not provide any parameters, the current configuration will be shown.
i
EXAMPLE:
=>dsd config
State
=>
: automatic
E-DOC-CTC-20061027-0003 v2.0
210
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd debug connection list
Display the internal connection pool usage.
SYNTAX:
dsd debug connection list
[expand = <{disabled|enabled}>]
where:
expand
Enable or disable the expanded listing.
The default is disabled.
optional
E-DOC-CTC-20061027-0003 v2.0
212
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd debug proxy
Display/modify the HyperText Transfer Protocol (HTTP) Intercept fixed proxy configuration.
SYNTAX:
dsd debug proxy
[state = <{disabled | enabled}>]
[dest = <ip-address>]
[port = <{supported TCP/UDP port} or number>]
where:
state
Enable or disable fixed proxy redirecting.
OPTIONAL
The default is disabled.
dest
port
The destination IP address to which requests will be forwarded.
OPTIONAL
OPTIONAL
The port to be used for connecting to proxy.
Select one of the supported Transmission Control Protocol (TCP)/UDP
alternatively, specify the port number.
EXAMPLE:
=>dsd debug proxy
State : off
Dest.IP : 0.0.0.0
Port
=>
: 0
E-DOC-CTC-20061027-0003 v2.0
213
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd debug recycling
Display/modify HTTPI recycling settings
SYNTAX:
dsd debug recycling
state = <disabled>|<enabled>
interval = <number>
httpidle = <number>
otheridle = <number>
where:
state
Enable/disable stream recycling
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
interval
httpidle
otheridle
Time between successive activity checks
Minimal idle count for recycling (filtered) http streams
Minimal idle count for recycling other streams
E-DOC-CTC-20061027-0003 v2.0
214
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd debug stats
Display/clear DSD framework and module statistics
SYNTAX:
dsd debug stats
name = <{intercept|urlfilter|recycling|syslog|all}
clear = <{no|yes}>
where:
name
Specify the name of a module
REQUIRED
REQUIRED
clear
Clear the specified statistics
E-DOC-CTC-20061027-0003 v2.0
215
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd intercept config
Display/modify the HTTP Intercept configuration.
SYNTAX:
dsd intercept config
[WDSpoofedIP = <ip-address>]
[servertimeout = <number>]
[servererrorurl = <string>]
[categoryerrorurl = <string>]
[monitorintercepturl = <string>]
[urlblockedurl = <string>]
[imageredirect = <{disabled | enabled}>]
[imageredirecturl = <string>]
[alwaysuseip = <{disabled | enabled}>]
where:
WDSpoofedIP
servertimeout
The IP address indicating unavailable WAN connection.
The default is 198.18.1.1.
OPTIONAL
OPTIONAL
A number of seconds.
Represents the server timeout for redirect action.
The default is 10.
servererrorurl
The destination URL when the connection to the server failed.
OPTIONAL
OPTIONAL
categoryerrorurl
The destination URL when the connection to the category server
failed.
monitorintercept
url
The destination URL when the request is intercepted by the
monitor thread.
OPTIONAL
urlblockedurl
imageredirect
The destination URL when the requested URL is blocked.
OPTIONAL
OPTIONAL
Enable or disable substitution of blocked images.
The default is enabled.
imageredirecturl
alwaysuseip
The URL of the image used when substituting blocked images.
OPTIONAL
OPTIONAL
Always use IP address when redirecting to a local page (enabled)
or not (disabled).
The default is enabled.
EXAMPLE:
=>dsd intercept config
WAN down spoofed IP
Servertimeout
: 198.18.1.1
: 10 sec
Connection failure
: /cgi/b/ic/connect/
Category server error : /cgi/b/ic/connect/
Monitor intercept : /cgi/b/ic/connect/
Unauthorized request : /cgi/b/sfltr/blocked/
Image redirecting
Image redirect url
Always use IP
=>
: enabled
: /images/spacer.gif
: enabled
E-DOC-CTC-20061027-0003 v2.0
216
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd syslog config
Display/modify the HTTP Intercept logging configuration.
SYNTAX:
dsd syslog config
[syslog = <{none | unauthorized | errors | inter-
cepted | all}>]
where:
syslog
Define the type of events to log.
Choose between:
OPTIONAL
>
>
none: nothing is logged to syslog.
unauthorized: only the HTTP requests that are blocked because of a
LocalRule, BlockCategory, BlockIPAddress or BlockObscure event,
are logged.
>
>
>
errors: only the HTTP requests that are blocked because of Server
errors, Category errors, Monitor intercept, loop detection, bad
requests or redirects by local policy rules.
intercepted: only the HTTP requests that are blocked because of
URLBlocked, Server errors, Category errors, Monitor intercept, loop
detection, bad requests or redirects by local policy rules.
all: every received request is logged to syslog.
The default is intercepted.
EXAMPLE:
=>dsd syslog config
syslog : errors
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
217
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd syslog list
Display the HTTP Intercept log file.
SYNTAX:
dsd syslog list
EXAMPLE:
=>dsd syslog list
<86> SysUpTime: 00:22:37 [HTTPI] src=10.0.0.1 src_port=1965 dst=141.11.196.35 dst_port=80 eve
nt=ServerConnect dst_name=aWebsite.com/icons/Button_Document.gif
<86> SysUpTime: 00:22:59 [HTTPI] src=10.0.0.1 src_port=1968 dst=141.11.234.60 dst_port=80 eve
nt=ServerConnect dst_name=anotherWebsite.com/rawgen.asp
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
218
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd urlfilter config
Display/modify the URL filtering configuration.
SYNTAX:
dsd urlfilter config
[state = <{disabled | enabled}>]
[blockproxy = <{disabled | enabled}>]
[blockipaddress = <{disabled | enabled}>]
[blockobscuredip = <{disabled | enabled}>]
[defaultaction = <{block | accept}>]
where:
state
Enable or disable URL filtering.
The default is enabled.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
blockproxy
Enable or disable blocking of HTTP requests via a proxy server.
The default is disabled.
blockipaddr
ess
Enable or disable blocking of HTTP requests if host name is IP address.
The default is disabled.
blockobscur
edip
Enable or disable blocking of HTTP requests if host name is believed to
be an IP address.
The default is disabled.
defaultactio
n
Select the action to be performed when no filter is applicable.
Choose between:
OPTIONAL
>
>
block
accept.
The default is accept.
EXAMPLE:
=>dsd urlfilter config
Filter state
Block proxy traffic
Block IP addr
: enabled
: disabled
: disabled
Block obscured IP addr : disabled
Default action
=>
: accept
E-DOC-CTC-20061027-0003 v2.0
219
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd urlfilter rule add
Add a rule.
SYNTAX:
dsd urlfilter rule add url = <string>
action = <{block | accept | redirect}>
redirect = <string>
where:
url
Definition of the URL filter.
REQUIRED
REQUIRED
action
The action to perform when URL matches URL.
Choose between:
>
>
>
block
accept
redirect.
redirect
The redirection URL.
REQUIRED
Note This parameter is only required when the action is redirect.
EXAMPLE:
=>dsd urlfilter rule add url=www.speedtouch.com action=redirect redirect=www.speedtouch.be
=>dsd urlfilter rule list
Index Action
Url
Redirect
----- ------
---
--------
0
redirect www.speedtouch.com
www.speedtouch.be
Rule list statistics : 1 present, 128 total (0.0% used)
=>
RELATED COMMANDS:
Delete a rule.
Display the list of current rules.
E-DOC-CTC-20061027-0003 v2.0
220
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd urlfilter rule delete
Delete a rule.
SYNTAX:
dsd urlfilter rule delete index = <number>
[url = <string>]
where:
index
Insertion position in the list.
REQUIRED
OPTIONAL
Tip
Use the command :dsd urlfilter rule listto obtain
the index number of the rule to be deleted.
url
Definition of the URL filter.
EXAMPLE:
=>dsd urlfilter rule list
Index Action
Url
Redirect
----- ------
---
--------
0
1
redirect www.speedtouch.com
accept www.baen.com
www.speedtouch.be
Rule list statistics : 2 present, 128 total (0.0% used)
=>dsd urlfilter rule delete index=1
=>dsd urlfilter rule list
Index Action
Url
Redirect
----- ------
---
--------
0
redirect www.speedtouch.com
www.speedtouch.be
Rule list statistics : 1 present, 128 total (0.0% used)
=>
RELATED COMMANDS:
Add a rule.
Display the list of current rules.
E-DOC-CTC-20061027-0003 v2.0
221
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd urlfilter rule flush
Remove all current rules.
SYNTAX:
dsd urlfilter rule flush
EXAMPLE:
=>dsd urlfilter rule list
Index Action
Url
Redirect
--------
----- ------
---
0
1
redirect www.speedtouch.com
accept www.baen.com
www.speedtouch.be
Rule list statistics : 2 present, 128 total (0.0% used)
=>dsd urlfilter rule flush
=>dsd urlfilter rule list
Index Action
Url
Redirect
--------
----- ------
---
Rule list statistics : 0 present, 128 total (0.0% used)
=>
E-DOC-CTC-20061027-0003 v2.0
222
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd urlfilter rule list
Display the list of current rules.
SYNTAX:
dsd urlfilter rule list
EXAMPLE:
=>dsd urlfilter rule list
Index Action
Url
Redirect
----- ------
---
--------
0
1
redirect www.speedtouch.com
accept www.baen.com
www.speedtouch.be
Rule list statistics : 2 present, 128 total (0.0% used)
=>
RELATED COMMANDS:
Add a rule.
Delete a rule.
E-DOC-CTC-20061027-0003 v2.0
223
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
dsd urlfilter rule modify
Modify an existing rule.
SYNTAX:
dsd urlfilter rule modify index = <number>
[newurl = <string>]
action = <{block | accept | redirect}>
redirect = <string>
where:
index
Insertion position in the list.
REQUIRED
OPTIONAL
REQUIRED
newurl
action
Definition of the new URL filter.
Action to perform when URL matches URL.
Choose between:
>
>
>
block
accept
redirect.
redirect
The redirection URL.
REQUIRED
Note This parameter is only required when the action is redirect.
E-DOC-CTC-20061027-0003 v2.0
224
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
EXAMPLE:
=>dsd urlfilter rule list
Index Action
Url
Redirect
----- ------
---
--------
0
1
redirect www.speedtouch.com
accept www.baen.com
www.speedtouch.be
Rule list statistics : 2 present, 128 total (0.0% used)
=>dsd urlfilter rule modify index=0 newurl=www.speed*.* action=redirect redirect=www.speedtou
ch.be
=>dsd urlfilter rule list
Index Action
Url
Redirect
----- ------
---
--------
0
1
redirect www.speed*.*
accept www.baen.com
www.speedtouch.be
Rule list statistics : 2 present, 128 total (0.0% used)
=>
RELATED COMMANDS:
Add a rule.
Delete a rule.
Display the list of current rules.
E-DOC-CTC-20061027-0003 v2.0
225
Download from Www.Somanuals.com. All Manuals Search And Download.
DSD Commands
E-DOC-CTC-20061027-0003 v2.0
226
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
12 DynDNS Commands
Introduction
Dynamic DNS is a service that allows to bind a host name to an IP address. In contrast to classical DNS, this
service allows regular updates of the IP address related to a host name. In this way, hosts of which the IP
address regularly changes (for example due to a limited DHCP lease time) can be identified by a static host
name that is unique throughout the Internet.
This chapter describes the commands of the dyndnscommnd group.
Contents
This chapter covers the following commands:
E-DOC-CTC-20061027-0003 v2.0
227
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns add
Add a dynamic DNS client.
SYNTAX:
dyndns add
name = <string>
where:
name
The name of the new dynamic DNS client.
REQUIRED
Note A maximum of 5 clients can be configured.
EXAMPLE:
=>dyndns add name=WAN
=>dyndns list
WAN
: [INIT]
user =
password =
addr = 0.0.0.0
=>
RELATED COMMANDS:
Delete a dynamic DNS client.
List all dynamic DNS clients.
E-DOC-CTC-20061027-0003 v2.0
228
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns delete
Delete a dynamic DNS client.
SYNTAX:
dyndns delete
name = <string>
where:
name
The name of the dynamic DNS client to be deleted.
REQUIRED
EXAMPLE:
=>dyndns list
WAN : [INIT]
user =
password =
addr = 0.0.0.0
=>dyndns delete name=WAN
=>dyndns list
=>
RELATED COMMANDS:
Add a dynamic DNS client.
List all dynamic DNS clients.
E-DOC-CTC-20061027-0003 v2.0
229
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns list
List all the dynamic DNS clients.
SYNTAX:
dyndns list
EXAMPLE:
=>dyndns list
WAN
: [INIT]
user =
password =
addr = 0.0.0.0
=>
RELATED COMMANDS:
Add a dynamic DNS client.
Delete a dynamic DNS client.
E-DOC-CTC-20061027-0003 v2.0
231
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns modify
Modify a dynamic DNS client.
SYNTAX:
dyndns modify
name = <string>
[intf = <string>]
[user = <string>]
[password = <password>]
[group = <string>]
[mx = <string>]
[backmx = <{disabled | enabled}>]
[wildcard = <{disabled | enabled}>]
[offline = <{disabled | enabled}>]
[service = <{dyndns | statdns | custom | No-IP |
DtDNS
| gnudip}>]
[status = <{disabled | enabled}>]
[trace = <{disabled | enabled}>]
where:
name
intf
The name of the dynamic DNS client to be modified.
The dynamic DNS client interface.
REQUIRED
OPTIONAL
Note This parameter must be defined to enable the dynamic DNS
client.
user
The username for dynamic DNS authentication.
The password for dynamic DNS authentication.
The dynamic DNS host group.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
password
group
mx
The mail exchanger.
backmx
Set up the mail exchanger as a backup mail exchanger (enabled) or
not (disabled).
The default is disabled.
wildcard
offline
Allow the use of hostname wildcards (enabled) or not (disabled).
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
Set the host to offline mode (enabled) or not (disabled).
The default is disabled.
service
The dynamic DNS service. Choose between:
>
>
>
>
>
>
dyndns
statdns
custom
No-IP
DtDNS
gnudip.
E-DOC-CTC-20061027-0003 v2.0
232
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
status
trace
Enable or disable the dynamic DNS client.
The default is disabled.
OPTIONAL
OPTIONAL
Enable or disable the verbose console logging for the dynamic DNS
client.
The default is disabled.
EXAMPLE:
=>dyndns list
WAN : [INIT]
user =
password =
addr = 0.0.0.0
=>dyndns modify name=WAN intf=RtPPPoE user=DNSuser password=_DEV_BA8C0C963BD84130 service=gnu
dip
=>dyndns list
WAN
: RtPPPoE_ppp [INIT]
options = gnudip
user = my_DNS_user password = ********
addr = 0.0.0.0
=>
E-DOC-CTC-20061027-0003 v2.0
233
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns host add
Add a fully qualified host name.
SYNTAX:
dyndns host add
group = <string>
name = <string>
where:
group
name
The dynamic DNS host group.
REQUIRED
Note A maximum of 4 different groups can be created.
The name of an IP host to add.
REQUIRED
Note A maximum of 20 hosts can be configured.
EXAMPLE:
=>dyndns host add group=local name=localhost.com
=>dyndns host list
local :
[ ] localhost.com
legend :
[ ] not initialised
[v] update successful
[o] update in progress
[x] error
=>
RELATED COMMANDS:
Delete a host name.
List all host names.
E-DOC-CTC-20061027-0003 v2.0
234
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns host delete
Delete a host name.
SYNTAX:
dyndns host delete
name = <string>
where:
name
The name of the IP host to be deleted.
REQUIRED
EXAMPLE:
=>dyndns host list
local :
[ ] localhost.com
public :
[ ] publichost.com
legend :
[ ] not initialised
[v] update successful
[o] update in progress
[x] error
=>dyndns host delete name=publichost.com
=>dyndns host list
local :
[ ] localhost.com
legend :
[ ] not initialised
[v] update successful
[o] update in progress
[x] error
=>
RELATED COMMANDS:
Add a fully qualified host name.
List all host names.
E-DOC-CTC-20061027-0003 v2.0
235
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns host list
List all host names.
SYNTAX:
dyndns host list
EXAMPLE:
=>dyndns host list
local :
[ ] localhost.com
public :
[ ] publichost.com
legend :
[ ] not initialised
[v] update successful
=>
[o] update in progress
[x] error
RELATED COMMANDS:
Add a fully qualified host name.
Delete a host name.
E-DOC-CTC-20061027-0003 v2.0
237
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns service list
List all dynamic DNS services.
SYNTAX:
dyndns service list
EXAMPLE:
=>dyndns service list
dyndns
server
port
request
:
= members.dyndns.org
= 80
= /nic/update
update interval = 2097120
retry interval = 30
max retry
= 3
statdns
:
server
port
= members.dyndns.org
= 80
request
= /nic/update
update interval = 0
retry interval = 30
max retry
= 3
custom
:
server
port
= members.dyndns.org
= 80
request
= /nic/update
update interval = 0
retry interval = 30
max retry
= 3
No-IP
:
server
port
= dynupdate.no-ip.com
= 80
request
= /ducupdate.php
update interval = 86400
retry interval = 30
max retry
= 3
DtDNS
:
server
port
= dtdns.com
= 80
request
= /api/autodns.cfm
update interval = 86400
retry interval = 30
max retry
= 3
=>
E-DOC-CTC-20061027-0003 v2.0
238
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
RELATED COMMANDS:
Modify specific dynamic DNS service settings.
E-DOC-CTC-20061027-0003 v2.0
239
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
dyndns service modify
Modify specific dynamic DNS service settings.
SYNTAX:
dyndns service modify name = <string>
[server = <string>]
[port = <{supported TCP/UDP port name} or number>]
[request = <string>]
[updateinterval = <number{0-2097120}>]
[retryinterval = <number{0-600}]
[max_retry = <number{1-5}>]
where:
name
The name of the dynamic DNS service.
Choose between:
REQUIRED
>
>
>
>
>
>
dyndns
statdns
custom
No-IP
DtDNS
gnudip.
server
port
The hostname of the dynamic DNS server.
OPTIONAL
OPTIONAL
The port of the dynamic DNS server.
Select one of the supported TCP/UDP port names (see “ Supported
TCP/UDP Port Names” on page 747) or, alternatively, specify the port
number.
request
The dynamic DNS request string.
OPTIONAL
OPTIONAL
updateinterval
A number between 0 and 2097120 (seconds).
Represents the time interval before a dynamic update is sent to the
dynamic DNS server.
Note The value 0 means disabled.
retryinterval
max_retry
A number between 0 and 600 (seconds).
Represents the interval between retries if communication with the
dynamic DNS server fails.
OPTIONAL
OPTIONAL
The default is 30.
Note The value 0 means disabled.
A number between 1 and 5.
Represents the maximum number of retries if communication with
the dynamic DNS server fails.
The default is 3.
E-DOC-CTC-20061027-0003 v2.0
240
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
EXAMPLE:
=>dyndns service modify name=custom server=mydyndns.org port=www-http request=hereiam
| updateinterval=2000000 retryinterval=15 max_retry=5
=>dyndns service list
dyndns
server
port
request
:
= members.dyndns.org
= 80
= /nic/update
update interval = 2097120
retry interval = 30
max retry
= 3
statdns
:
server
port
= members.dyndns.org
= 80
request
= /nic/update
update interval = 0
retry interval = 30
max retry
= 3
custom
:
server
port
= mydyndns.org
= 80
request
= hereiam
update interval = 2000000
retry interval = 15
max retry
= 5
No-IP
:
server
port
= dynupdate.no-ip.com
= 80
request
= /ducupdate.php
update interval = 86400
retry interval = 30
max retry
= 3
DtDNS
:
server
port
= dtdns.com
= 80
request
= /api/autodns.cfm
update interval = 86400
retry interval = 30
max retry
= 3
=>
RELATED COMMANDS:
List all dynamic DNS services.
E-DOC-CTC-20061027-0003 v2.0
241
Download from Www.Somanuals.com. All Manuals Search And Download.
DynDNS Commands
E-DOC-CTC-20061027-0003 v2.0
242
Download from Www.Somanuals.com. All Manuals Search And Download.
Env Commands
env get
Get the current value of an environment variable.
SYNTAX:
env get
var = <string>
where:
var
The name of the environment variable.
REQUIRED
Tip
Use the command :env listto obtain a list of all environ-
ment variables.
RELATED COMMANDS:
List all current environment variables.
E-DOC-CTC-20061027-0003 v2.0
245
Download from Www.Somanuals.com. All Manuals Search And Download.
Env Commands
env set
Set an environment variable.
SYNTAX:
env set
var = <string>
value = <translated string>
where:
var
The name of the environment variable.
REQUIRED
Tip
When creating an environment variable, any name is
allowed.
However spaces are NOT allowed and the name may NOT
start with:
>
>
>
>
“CONF”
“HOST”
an underscore “_”
the dollar sign “$”.
value
A quoted translated string which defines the value of the environment
variable.
REQUIRED
Note The value of system variables (built-in variables with names
starting with an underscore “_”, “CONF” or “HOST”) cannot
be changed.
EXAMPLE:
For infinite TELNET time out, set the value of the variable SESSIONTIMEOUT to “0”:
=>env set var=SESSIONTIMEOUT value=0
=>
RELATED COMMANDS:
Delete a non-system environment variable.
E-DOC-CTC-20061027-0003 v2.0
247
Download from Www.Somanuals.com. All Manuals Search And Download.
Env Commands
env unset
Delete a environment variable.
SYNTAX:
env unset
var = <string>
where:
var
The name of the environment variable to be deleted.
REQUIRED
Note System variables (built-in variables with names starting with
an underscore “_”, “CONF” or “HOST”) cannot be unset,
changed or deleted.
EXAMPLE:
=>env list
_COMPANY_NAME=THOMSON multimedia
_COMPANY_URL=http://www.speedtouch.com
_PROD_NAME=SpeedTouch
.....
CONF_DATE=March 2004
CONF_REGION=World
HOST_SETUP=user
=>env unset var=CONF_REGION
=>env list
_COMPANY_NAME=THOMSON multimedia
_COMPANY_URL=http://www.speedtouch.com
_PROD_NAME=SpeedTouch
.....
CONF_DATE=March 2004
HOST_SETUP=user
=>
RELATED COMMANDS:
Create and set a non-system environment variable.
E-DOC-CTC-20061027-0003 v2.0
248
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
14 Eth Commands
Introduction
This chapter describes the commands of the ethcommand group.
Contents
This chapter covers the following commands:
265
Display the current bridge instances.
Add a new bridge instance.
Delete a bridge instance.
Select the default bridge to configure interfaces .
Modify/display the bridge configuration settings.
Display the active MAC entries for the dynamic
VLAN membership.
Add a dynamic VLAN membership entry.
266
267
Modify the dynamic VLAN membership
configuration.
Delete a dynamic VLAN membership entry.
Flush all dynamic VLAN membership entries.
Delete a dynamic VLAN membership entry.
Flush bridge interfaces and parameters.
Add a new bridge interface.
268
269
268
Attach a bridge interface.
Modify a bridge interface configuration.
Delete a bridge interface.
Detach a bridge interface.
Display the current bridge interfaces.
Flush the bridge interfaces
Configure the bridge instance‘s IGMP Snooping
flags
Display a bridge instance‘s snooped groups
E-DOC-CTC-20061027-0003 v2.0
249
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
Configure the bridge interface‘s IGMP snooping
flags and mode
Display a bridge interface‘s IGMP status
Clear the snooping statistics
Add a static MAC address to a bridge interface.
Remove a MAC address from the filtering database.
Display the MAC address database.
Add a new constraint to the VLAN learning system.
Delete a constraint from the VLAN learning system.
Flush all constraints from the VLAN learning system.
Display all constraints from the VLAN learning
system.
Add a bridge interface to a VLAN.
Modify a bridge interface from a VLAN.
Delete a bridge interface from a VLAN.
Display all VLANs.
Set all the ports to the default settings.
List all the configured switch groups.
Move a specified port to a specified switch group.
Define the specified port to be the Mirror Capture
Port.
Enable or disable the specified port to be the Mirror
Egress Port.
Enable or disable the specified port to be the Mirror
Ingress Port.
Add a port to be shared.
310
311
312
313
314
315
316
317
318
319
320
321
322
Delete a shared port.
Display shared ports.
Display switch capabilities.
Configure common qos parameters.
Configure per port QoS parameters.
Display QoS configuration.
Configure the queue weights.
Configure common ingress shaper parameters.
Configure per port shaper parameters.
Display shaper configuration per port.
Configure per port storm control parameters.
Display storm control configuration per port.
Add a new VLAN.
Delete a VLAN.
E-DOC-CTC-20061027-0003 v2.0
250
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
Flush all VLANs.
Display all VLANs.
E-DOC-CTC-20061027-0003 v2.0
251
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth ifconfig
Modify an ETH interface.
SYNTAX:
eth ifconfig
intf = <string>
[dest = <string>]
[retry = <number{0-65535}>]
[vlan = <string>]
where:
intf
The name of the ETH interface to be configured.
REQUIRED
OPTIONAL
OPTIONAL
dest
retry
The destination interface for this ETH interface.
A number between 0 and 65535.
Represents the number of times the ETH connection setup
should retry before giving up.
The default is 10.
vlan
The Virtual Local Area Network (VLAN) for this ETH interface.
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
254
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth iflist
Display the ETH interfaces.
SYNTAX:
eth iflist
[intf = <string>]
[string = <string>]
[beginstring = <string>]
where:
intf
The name of the ETH interface to be displayed.
Note If not specified, all the ETH interfaces will be displayed.
String matching condition
OPTIONAL
string
OPTIONAL
OPTIONAL
beginstring
Beginstring matching condition
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
257
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge list
Display the current bridge instances
Syntax
eth bridge list
[brname = <{bridge}>]
[string = <string>]
[beginstring = <string>]
where
brname
string
The name of a bridge instance
String matching condition
OPTIONAL
OPTIONAL
OPTIONAL
beginstring
Beginstring matching condition
E-DOC-CTC-20061027-0003 v2.0
260
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge select
Select the default bridge to configure interfaces (when not setting a bridge name, for legacy purposes).
Syntax
eth bridge select
where
brname
brname = <{bridge}>
The name of a bridge instance
REQUIRED
E-DOC-CTC-20061027-0003 v2.0
263
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge config
Modify/display the bridge configuration settings.
SYNTAX:
eth bridge config
[brname = <{bridge}>]
[age = <number{10-100000}>]
[filter = <{no_WAN_broadcast | none}>]
[vlan = <{disabled | enabled}>]
[precedencemap = <string>]
where:
brname
age
The name of a bridge instance
A number between 10 and 100000 (seconds).
OPTIONAL
Represents the lifetime of a dynamically learned Medium Access
Control (MAC) address.
The default is 300.
filter
The bridge filter to be applied for all Wide Area Network (WAN)
OPTIONAL
bridge ports.
Choose between:
>
no_WAN_broadcast: broadcasts from the Thomson ST itself
to the WAN are filtered out, broadcasts from the LAN to the
WAN are still passed through
>
none: no broadcasts are filtered out.
The default is no_WAN_broadcast.
vlan
Enable or disable the use of the VLAN ID of the received VLAN
packets.
The default is enabled.
OPTIONAL
OPTIONAL
precedencemap
The IP QoS precedence mapping table
E-DOC-CTC-20061027-0003 v2.0
264
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge dynvlan actlist
Display the active MAC entries for the dynamic VLAN membership.
SYNTAX:
eth bridge dynvlan actlist
RELATED COMMANDS:
Add a dynamic VLAN membership entry.
Modify the dynamic VLAN membership configuration.
Delete a dynamic VLAN membership entry.
Display a dynamic VLAN membership entry.
E-DOC-CTC-20061027-0003 v2.0
265
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge dynvlan add
Add a dynamic VLAN membership entry.
SYNTAX:
eth bridge dynvlan add
[id = <number{0-100000}>]
hwaddr = <masked-hardware-address>
vlan = <string>
[remvlan = <{default}>]
where:
id
A number between 0 and 100000.
Represents the id of the dynamic VLAN membership entry.
OPTIONAL
REQUIRED
hwaddr
The (masked) ethernet MAC address of the dynamic VLAN
membership entry.
vlan
The VLAN for the dynamic VLAN membership entry.
The VLAN that will be removed from the bridge interface.
REQUIRED
OPTIONAL
remvlan
RELATED COMMANDS:
Display the active MAC entries for the dynamic VLAN membership.
Modify the dynamic VLAN membership configuration.
Delete a dynamic VLAN membership entry.
Display a dynamic VLAN membership entry.
E-DOC-CTC-20061027-0003 v2.0
266
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge dynvlan config
Modify the dynamic VLAN membership configuration.
SYNTAX:
eth bridge dynvlan config
[timeout = <number{0-100000}>]
where:
timeout
A number between 0 and 100000 (seconds).
Represents timeout for the dynamic entries.
OPTIONAL
RELATED COMMANDS:
Display the active MAC entries for the dynamic VLAN membership.
Add a dynamic VLAN membership entry.
Delete a dynamic VLAN membership entry.
Display a dynamic VLAN membership entry.
E-DOC-CTC-20061027-0003 v2.0
267
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge dynvlan delete
Delete a dynamic VLAN membership entry.
SYNTAX:
eth bridge dynvlan delete
id = <number{0-100000}>
where:
id
A number between 0 and 100000.
REQUIRED
Represents the id of a dynamic VLAN membership.
RELATED COMMANDS:
Display the active MAC entries for the dynamic VLAN membership.
Add a dynamic VLAN membership entry.
Modify the dynamic VLAN membership configuration.
Display a dynamic VLAN membership entry.
E-DOC-CTC-20061027-0003 v2.0
268
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge dynvlan list
Display a dynamic VLAN membership entry.
SYNTAX:
eth bridge dynvlan list
RELATED COMMANDS:
Display the active MAC entries for the dynamic VLAN membership.
Add a dynamic VLAN membership entry.
Modify the dynamic VLAN membership configuration.
Delete a dynamic VLAN membership entry.
E-DOC-CTC-20061027-0003 v2.0
270
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge ifadd
Add a new bridge interface.
SYNTAX:
eth bridge ifadd
[brname = <{bridge}>] intf = <string>
where:
brname
intf
The name of a bridge instance.
OPTIONAL
REQUIRED
The name of the new bridge interface.
RELATED COMMANDS:
Delete a bridge interface.
Display the current bridge interfaces.
E-DOC-CTC-20061027-0003 v2.0
272
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge ifattach
Attach a bridge interface.
SYNTAX:
eth bridge ifattach
[brname = <{bridge}>] intf = <string>
where:
brname
intf
The name of a bridge instance.
The name of the bridge interface to be attached.
OPTIONAL
REQUIRED
RELATED COMMANDS:
Detach a bridge interface.
E-DOC-CTC-20061027-0003 v2.0
273
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge ifconfig
Modify a bridge interface configuration.
SYNTAX:
eth bridge ifconfig
[brname = <{bridge}>]
intf = <string>
[dest = <string>]
[portstate = <{disabled | learning |
forwarding}>]
[retry = <number{0-65535}>]
[prioconfig = <{disabled|over-
write|increase}>]
[vlan = <string>]
[ipprec = <{disabled|precedence|dscp}>]
[priority = <number{0-7}>]
[regenprio = <string>]
[ingressfiltering = <{disabled |
enabled}>]
[acceptvlanonly = <{disabled | enabled}>]
[mcastfilter = <{disabled|enabled}>]
[dynvlan = <{disabled|enabled}>]
[igmpsnooping = <{disabled|enabled}>]
where:
brname
intf
The name of a bridge instance.
The name of the bridge interface to be configured.
OPTIONAL
REQUIRED
OPTIONAL
dest
The destination for this interface.
Typically an ATM or a physical interface name.
portstate
The bridge portstate for this interface.
Choose between:
OPTIONAL
>
>
>
disabled
learning
forwarding.
The default is forwarding.
retry
A number between 0 and 65535.
OPTIONAL
Represents the number of times the Thomson ST retries to set
up a WAN connection before giving up.
The default is 10.
vlan
Select the default VLAN.
OPTIONAL
OPTIONAL
prioconfig
The priority configuration for this interface.
E-DOC-CTC-20061027-0003 v2.0
274
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
ipprec
The IP precedence for this interface.
Choose between:
OPTIONAL
OPTIONAL
>
>
>
disabled
precedence
dscp.
The default is disabled.
priority
A number between 0 and 7.
Represents the default priority for tagging egress packets.
The default is 0.
regenprio
The priority regeneration table for tagged ingress packets.
The default is 01234567.
OPTIONAL
OPTIONAL
ingressfiltering
Enable/disable discard of tagged ingress packets if the interface
is not part of the VLAN.
The default is disabled.
acceptvlanonly
mcastfilter
dynvlan
Enable or disable receipt of tagged ingress packets.
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
Enable or disable the discard of multicast packets on this port
The default is disabled.
Enable or disable dynamic VLAN membership checking for this
interface.
The default is disabled.
igmpsnooping
Enable or disable IGMP snooping for this interface.
OPTIONAL
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
275
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge ifdelete
Delete a bridge interface.
SYNTAX:
eth bridge ifdelete
[brname = <{bridge}>] intf = <string>
where:
brname
intf
The name of a bridge instance.
OPTIONAL
REQUIRED
The name of the bridge interface name to be deleted.
RELATED COMMANDS:
Add a new bridge interface.
Display the current bridge interfaces.
E-DOC-CTC-20061027-0003 v2.0
276
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge ifdetach
Detach a bridge interface.
SYNTAX:
eth bridge ifdetach
[brname = <{bridge}>]
intf = <string>
where:
brname
intf
The name of a bridge instance.
The name of the bridge interface to be detached.
OPTIONAL
REQUIRED
RELATED COMMANDS:
Attach a bridge interface.
E-DOC-CTC-20061027-0003 v2.0
277
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge iflist
Display the current bridge interfaces.
SYNTAX:
eth bridge iflist
[brname = <{bridge}>]
[intf = <string>]
[string = <string>]
[beginstring = <string>]
where:
brname
intf
The name of a bridge instance.
OPTIONAL
OPTIONAL
The name of the bridge interface to be displayed.
Note If not specified, all bridge interfaces are shown.
String matching condition
string
OPTIONAL
OPTIONAL
beginstring
Beginstring matching condition
RELATED COMMANDS:
Add a new bridge interface.
Delete a bridge interface.
E-DOC-CTC-20061027-0003 v2.0
278
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge igmpsnooping config
Configure the bridge instance‘s IGMP Snooping flags
Syntax
eth bridge igmpsnooping config [brname = <{bridge}>]
[state = <{enabled|disabled}>]
[floodrp = <{disabled|enabled}>]
[floodmcast = <{disabled|enabled}>]
where:
brname
The name of a bridge instance
OPTIONAL
OPTIONAL
state
Enable/Disable the IGMP Snooping
The default is enabled
floodrp
floodmcast
Enable/Disable flooding reports to all ports
The default is disabled
OPTIONAL
OPTIONAL
Enable/Disable flooding unregistered multicasts
The default is disabled
E-DOC-CTC-20061027-0003 v2.0
280
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge igmpsnooping ifconfig
Configure the bridge interface‘s IGMP snooping flags and mode.
Syntax
eth bridge igmpsnooping ifconfig
[brname = <{bridge}>]
intf = <{interface}>
[portmode=<{Host|Router|Auto}>]
[fastleave = <{disabled|enabled}>]
[exptrack=<{disabled|enabled}>]
[mrdp = <{disabled|enabled}>]
[rgmp = <{disabled|enabled}>]
where:
brname
intf
The bridge instance currently to be configured
OPTIONAL
The bridge interface currently to be configured
Mode of the bridge port
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
portmode
fastleave
exptrack
mrdp
Enable/Disable Fast Immediate Leave
Enable/Disable Explicit Host Tracking
Enable/Disable MRDP support
rgmp
Enable/Disable RGMP support
E-DOC-CTC-20061027-0003 v2.0
282
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge igmpsnooping iflist
Display a bridge interface‘s IGMP status
Syntax
Display bridge interface IGMP status
[brname = <{bridge}>]
[intf = <{interface}>]
where:
brname
intf
The name of a bridge instance
The name of the bridge interface
OPTIONAL
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
283
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge igmpsnooping clear
Clear the snooping statistics.
Syntax
eth bridge igmpsnooping clear
[brname = <{bridge}>]
[intf = <{interface}>]
where:
brname
intf
The name of a bridge instance
The name of the bridge interface
OPTIONAL
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
284
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge macadd
Add a static MAC address to a bridge interface.
This command allows to manually add static MAC addresses, which should normally be dynamically
discovered by the bridge itself.
SYNTAX:
eth bridge macadd
[brname = <{bridge}>]
intf = <string>
hwaddr = <hardware-address>
[vlan = <string>]
where:
brname
The name of a bridge instance.
OPTIONAL
REQUIRED
intf
The name of the bridge interface to which the MAC address must
be added.
hwaddr
vlan
The Ethernet MAC address of the new entry.
The VLAN.
REQUIRED
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
285
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
EXAMPLE:
=>eth bridge maclist
00:10:a4:ad:32:cf -- dynamic, ethport1, 300 seconds
00:90:d0:8b:fc:2c -- permanent
01:00:5e:00:00:67 -- static
01:00:5e:7f:ff:fa -- static
01:80:c2:00:00:00 -- permanent
01:80:c2:00:00:01 -- permanent
01:80:c2:00:00:02 -- permanent
01:80:c2:00:00:03 -- permanent
...
01:80:c2:00:00:0e -- permanent
01:80:c2:00:00:0f -- permanent
01:80:c2:00:00:10 -- permanent
ff:ff:ff:ff:ff:ff -- permanent
=>eth bridge macadd intf=ethport2 hwaddr=00:80:9f:01:23:45
=>eth bridge maclist
00:0d:9d:47:dd:aa -- dynamic, ethport1, 300 seconds
00:80:9f:01:23:45 -- static
00:90:d0:72:88:64 -- permanent
01:00:5e:00:00:67 -- static
01:00:5e:7f:ff:fa -- static
01:80:c2:00:00:00 -- permanent
01:80:c2:00:00:01 -- permanent
01:80:c2:00:00:02 -- permanent
01:80:c2:00:00:03 -- permanent
01:80:c2:00:00:0e -- permanent
01:80:c2:00:00:0f -- permanent
01:80:c2:00:00:10 -- permanent
ff:ff:ff:ff:ff:ff -- permanent
=>
RELATED COMMANDS:
Remove a MAC address from the filtering database.
Display the MAC address database.
E-DOC-CTC-20061027-0003 v2.0
286
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge macdelete
Remove a MAC address from the filtering database.
SYNTAX:
eth bridge macdelete
[brname = <{bridge}>]
hwaddr = <hardware-address>
[vlan = <string>]
where:
brname
The name of a bridge instance.
OPTIONAL
REQUIRED
OPTIONAL
hwaddr
vlan
The Ethernet MAC address of the entry to be deleted.
The VLAN.
EXAMPLE:
=>eth bridge maclist
00:0d:9d:47:dd:aa -- dynamic, ethport1
00:80:9f:01:23:45 -- static
00:90:d0:72:88:64 -- permanent
01:00:5e:00:00:67 -- static
01:00:5e:7f:ff:fa -- static
01:80:c2:00:00:00 -- permanent
01:80:c2:00:00:01 -- permanent
01:80:c2:00:00:02 -- permanent
01:80:c2:00:00:03 -- permanent
...
01:80:c2:00:00:0e -- permanent
01:80:c2:00:00:0f -- permanent
01:80:c2:00:00:10 -- permanent
ff:ff:ff:ff:ff:ff -- permanent
=>eth bridge macdelete hwaddr=00:80:9f:01:23:45
=>eth bridge maclist
00:0d:9d:47:dd:aa -- dynamic, ethport1
00:90:d0:72:88:64 -- permanent
01:00:5e:00:00:67 -- static
01:00:5e:7f:ff:fa -- static
01:80:c2:00:00:00 -- permanent
01:80:c2:00:00:01 -- permanent
01:80:c2:00:00:02 -- permanent
01:80:c2:00:00:03 -- permanent
01:80:c2:00:00:0e -- permanent
01:80:c2:00:00:0f -- permanent
01:80:c2:00:00:10 -- permanent
ff:ff:ff:ff:ff:ff -- permanent
=>
E-DOC-CTC-20061027-0003 v2.0
287
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
RELATED COMMANDS:
Add a static MAC address to a bridge interface.
Display the MAC address database.
E-DOC-CTC-20061027-0003 v2.0
288
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge maclist
Display the MAC address database.
SYNTAX:
eth bridge maclist
where:
brname
[brname = <{bridge}>]
The name of a bridge instance.
OPTIONAL
EXAMPLE:
=>eth bridge maclist
00:0d:9d:47:dd:aa -- dynamic, ethport1, 300 seconds
00:90:d0:72:88:64 -- permanent
01:00:5e:00:00:67 -- static
01:00:5e:7f:ff:fa -- static
01:80:c2:00:00:00 -- permanent
01:80:c2:00:00:01 -- permanent
01:80:c2:00:00:02 -- permanent
01:80:c2:00:00:03 -- permanent
01:80:c2:00:00:04 -- permanent
01:80:c2:00:00:05 -- permanent
01:80:c2:00:00:06 -- permanent
01:80:c2:00:00:07 -- permanent
01:80:c2:00:00:08 -- permanent
01:80:c2:00:00:09 -- permanent
01:80:c2:00:00:0a -- permanent
01:80:c2:00:00:0b -- permanent
01:80:c2:00:00:0c -- permanent
01:80:c2:00:00:0d -- permanent
01:80:c2:00:00:0e -- permanent
01:80:c2:00:00:0f -- permanent
01:80:c2:00:00:10 -- permanent
ff:ff:ff:ff:ff:ff -- permanent
=>
RELATED COMMANDS:
Add a static MAC address to a bridge interface.
Remove a MAC address from the filtering database.
E-DOC-CTC-20061027-0003 v2.0
289
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge mcdadd
Add a multicast group to be dropped to the database.
SYNTAX:
eth bridge mcdadd
[brname = <{bridge}>]
srcintfs = <string or combination of
strings separated by '+'}>
dstintfs = <string or combination of
strings separated by '+'}>
where:
brname
srcports
The name of a bridge instance.
OPTIONAL
REQUIRED
The source bridge interfaces from which multicast packets must
be dropped.
dstports
The destination bridge interfaces for which the multicast packets
must be dropped.
REQUIRED
RELATED COMMANDS:
Delete a multicast group to be dropped from the database.
Display the multicast group to be dropped from the database.
E-DOC-CTC-20061027-0003 v2.0
290
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge mcddelete
Delete a multicast group to be dropped from the database.
SYNTAX:
eth bridge mcddelete
where:
brname
[brname = <{bridge}>]
The name of a bridge instance.
OPTIONAL
RELATED COMMANDS:
Add a multicast group to be dropped to the database.
Display the multicast group to be dropped from the database.
E-DOC-CTC-20061027-0003 v2.0
291
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge mcdlist
Display the multicast group to be dropped from the database.
SYNTAX:
eth bridge mcdlist
RELATED COMMANDS:
Add a multicast group to be dropped to the database.
Delete a multicast group to be dropped from the database.
E-DOC-CTC-20061027-0003 v2.0
292
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge rule add
Add a new constraint to the VLAN learning system.
SYNTAX:
eth bridge rule add
type = <{shared | independent}>
vlan = <string>
[vlan2 = <string>]
[isi = <number{0-32}>]
where:
type
Type of constraint.
Choose between:
REQUIRED
>
>
shared
independent.
vlan
The VLAN to which the constraint belongs.
The second VLAN for a shared constraint.
REQUIRED
OPTIONAL
vlan2
Note This parameter is required when type is shared.
isi
A number between 0 and 32.
OPTIONAL
Represents the Independent Set ID (ISI) for an independent
constraint.
Note This parameter is required when type is independent.
EXAMPLE:
=>eth bridge rule add type=independant vlan=default isi=1
=>eth bridge rule list
Index
-----
1
Type
----
VLAN
----
Parameter
---------
Independent set identifier: 1
independant default
=>
RELATED COMMANDS:
Delete a constraint from the VLAN learning system.
Display all constraints from the VLAN learning system.
E-DOC-CTC-20061027-0003 v2.0
293
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge rule delete
Delete a constraint from the VLAN learning system.
SYNTAX:
eth bridge rule delete
index = <number{0-32}>
where:
index
Index of the constraint to be deleted.
REQUIRED
Tip
Use the command :eth bridge rule listto
obtain a list of the indexes of the constraints.
EXAMPLE:
=>eth bridge rule list
Index
-----
1
Type
----
VLAN
----
Parameter
---------
Independent set identifier: 1
independant default
=>eth bridge rule delete index=1
=>eth bridge rule list
Index
-----
=>
Type
----
VLAN
----
Parameter
---------
RELATED COMMANDS:
Add a new constraint to the VLAN learning system.
Display all constraints from the VLAN learning system.
E-DOC-CTC-20061027-0003 v2.0
294
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge rule list
Display all constraints from the VLAN learning system.
SYNTAX:
eth bridge rule list
EXAMPLE:
=>eth bridge rule list
Index
-----
1
Type
----
VLAN
----
Parameter
---------
Independent set identifier: 1
independant default
=>
RELATED COMMANDS:
Add a new constraint to the VLAN learning system.
Delete a constraint from the VLAN learning system.
E-DOC-CTC-20061027-0003 v2.0
296
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge vlan ifadd
Add a bridge interface to a VLAN.
SYNTAX:
eth bridge vlan ifadd
name = <string>
intf = <string>
[untagged = <{disabled | enabled}>]
where:
name
intf
The VLAN name to which a bridge interface must be added.
The name of the bridge interface to be added to the VLAN.
REQUIRED
REQUIRED
OPTIONAL
untagged
Enable or disable the interface as untagged for this VLAN.
The default is disabled.
RELATED COMMANDS:
Modify a bridge interface from a VLAN.
Delete a bridge interface from a VLAN.
Display all VLANs.
E-DOC-CTC-20061027-0003 v2.0
297
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge vlan ifconfig
Modify a bridge interface from a VLAN.
SYNTAX:
eth bridge vlan ifconfig
name = <string>
intf = <string>
untagged = <{disabled | enabled}>
where:
name
intf
The VLAN name for which a bridge interface must be modified.
The name of the bridge interface to be modified.
REQUIRED
REQUIRED
REQUIRED
untagged
Enable or disable the interface as untagged for this VLAN.
RELATED COMMANDS:
Add a bridge interface to a VLAN.
Delete a bridge interface from a VLAN.
Display all VLANs.
E-DOC-CTC-20061027-0003 v2.0
298
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge vlan ifdelete
Delete a bridge interface from a VLAN.
SYNTAX:
eth bridge vlan ifdelete
name = <string>
intf = <string>
where:
name
intf
The VLAN name for which a bridge interface must be deleted.
The name of the bridge interface to be deleted.
REQUIRED
REQUIRED
RELATED COMMANDS:
Add a bridge interface to a VLAN.
Modify a bridge interface from a VLAN.
Display all VLANs.
E-DOC-CTC-20061027-0003 v2.0
299
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth bridge vlan iflist
Display all VLANs.
SYNTAX:
eth bridge vlan iflist
RELATED COMMANDS:
Add a bridge interface to a VLAN.
Modify a bridge interface from a VLAN.
Delete a bridge interface from a VLAN.
E-DOC-CTC-20061027-0003 v2.0
300
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth device ifconfig
Configure an Ethernet interface.
SYNTAX:
eth device ifconfig
intf = <string>
[type = <{auto | 10BaseTHD | 10BaseTFD |
100BaseTHD| 100BaseTFD} or number>]
[state = <{enabled | disabled}>]
where:
intf
The name of a physical interface.
REQUIRED
OPTIONAL
type
The Ethernet type.
Select either:
>
auto: Auto negotiation of Ethernet communication speed
(10Mb/s or 100Mb/s) and Duplex mode (half duplex or full
duplex).
>
>
>
>
10BaseTHD: 10Mb/s communication speed in half duplex
mode.
10BaseTFD: 10Mb/s communication speed in full duplex
mode.
100BaseTHD: 100Mb/s communication speed in half duplex
mode.
100BaseTFD: 100Mb/s communication speed in full duplex
mode.
or enter a number between 0 (auto) and 5 (100BaseTFD).
The default is auto.
Note This value should never be changed, except in case of
communication problems.
state
Enable or disable the interface.
OPTIONAL
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
301
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
EXAMPLE:
=>eth device iflist
Interface
ethif1
ethif2
ethif3
ethif4
usbif1
Type
auto
auto
auto
auto
Result
State
100BaseTFD
100BaseTFD
100BaseTFD
100BaseTFD
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
=>eth device ifconfig intf=ethif4 state=disabled
=>eth device iflist
Interface
ethif1
ethif2
ethif3
ethif4
usbif1
=>
Type
auto
auto
auto
auto
Result
State
100BaseTFD
100BaseTFD
100BaseTFD
100BaseTFD
UP [forwarding]
UP [forwarding]
UP [forwarding]
DOWN [disabled]
UP [forwarding]
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
302
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth device iflist
Show status of Ethernet interfaces.
SYNTAX:
eth device iflist
EXAMPLE:
=>eth device iflist
Interface
ethif1
ethif2
ethif3
ethif4
usbif1
wlif1
wlif2
wlif3
wlif4
wlif5
Type
auto
auto
auto
auto
Result
State
100BaseTFD
100BaseTFD
100BaseTFD
100BaseTFD
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
UP [forwarding]
=>
DESCRIPTION:
>
>
Type: Indicates the configured Ethernet communication speed and duplex mode.
Result : Indicates the effective operating status if Type equals “auto”. In other cases, when the Ethernet
types do NOT match, Result Type will equal “unknown” and no Ethernet connectivity will exist.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
303
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch group flush
Set all the ports to the default settings.
All the ports are placed in group 0.
SYNTAX:
eth switch group flush
EXAMPLE:
=>eth switch group list
Group 0 Ports: 4
Group 1 Ports: 1
Group 2 Ports: 2 3
=>eth switch group flush
=>eth switch group list
Group 0 Ports: 1 2 3 4
=>
RELATED COMMANDS:
List all the configured switch groups.
Move a specified port to a specified switch group.
E-DOC-CTC-20061027-0003 v2.0
304
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch group list
List all the configured switch groups.
SYNTAX:
eth switch group list
EXAMPLE:
=>eth switch group list
Group 0 Ports: 4
Group 1 Ports: 1
Group 2 Ports: 2 3
=>
RELATED COMMANDS:
Set all the ports to the default settings.
Move a specified port to a specified switch group.
E-DOC-CTC-20061027-0003 v2.0
305
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch group move
Move a specified port to a specified switch group.
SYNTAX:
eth switch group move
group = <number{0-3}>
port = <number{1-4}>
where:
group
port
A number between 0 and 4.
Represents the group ID to which the port must be moved.
REQUIRED
REQUIRED
A number between 01 and 4.
Represents the port to be moved.
EXAMPLE:
=>eth switch group list
Group 0 Ports: 1 2 3 4
=>eth switch group move group=3 port=1
=>eth switch group list
Group 0 Ports: 2 3 4
Group 3 Ports: 1
=>
RELATED COMMANDS:
Set all the ports to the default settings.
List all the configured switch groups.
E-DOC-CTC-20061027-0003 v2.0
306
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch mirror capture
Define the specified port to be the Mirror Capture Port.
Only one port can be the Mirror Capture Port at any one time.
i
SYNTAX:
eth switch mirror capture
port = <number{1-4}>
where:
port
The port to be the Mirror Capture Port.
REQUIRED
Note If no port number is specified, then the port number of
the Mirror Capture Port is shown.
EXAMPLE:
=>eth switch mirror capture port=2
=>eth switch mirror capture
Mirror capture port = 2
=>
RELATED COMMANDS:
Enable or disable the specified port to be the Mirror Egress Port.
Enable or disable the specified port to be the Mirror Ingress Port.
E-DOC-CTC-20061027-0003 v2.0
307
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch mirror egress
Enable or disable the specified port to be the Mirror Egress Port.
Only one port can be the Mirror Egress Port at any one time.
But a port can be the Mirror Egress Port and the
Mirror Ingress Port at the same time.
i
SYNTAX:
eth switch mirror egress
port = <number{1-4}>
[state = <{enabled | disabled}>]
where:
port
The port to be the Mirror Egress Port.
REQUIRED
OPTIONAL
Note If no port number is specified, then the port number of
the current Mirror Egress Port is shown.
state
Enable or disable the port as Mirror Egress Port.
The default is enabled.
EXAMPLE:
Here port 1 is enabled as Mirror Egress Port
=>eth switch mirror egress port=1
=>eth switch mirror egress
Egress mirror port = 1
=>
Here port 1 is disabled as Mirror Egress Port
=>eth switch mirror egress
Egress mirror port = 1
=>eth switch mirror egress port=1 state=disabled
=>eth switch mirror egress
=>
RELATED COMMANDS:
Define the specified port to be the Mirror Capture Port.
Enable or disable the specified port to be the Mirror Ingress Port.
E-DOC-CTC-20061027-0003 v2.0
308
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch mirror ingress
Enable or disable the specified port to be the Mirror Ingress Port.
Only one port can be the Mirror Ingress Port at any one time.
But a port can be the Mirror Egress Port and the
Mirror Ingress Port at the same time.
i
SYNTAX:
eth switch mirror ingress
port = <number{1-4}>
[state = <{enabled | disabled}>]
where:
port
The port to be the Mirror Ingress Port.
REQUIRED
OPTIONAL
Note If no port number is specified, then the port number of
the current Mirror Ingress Port is shown.
state
Enable or disable the port as Mirror Ingress Port.
The default is enabled.
EXAMPLE:
Here port 2 is enabled as Mirror Ingress Port
=>eth switch mirror ingress port=2
=>eth switch mirror ingress
Ingress mirror port = 2
=>
Here port 2 is disabled as Mirror Ingress Port
=>eth switch mirror ingress
Ingress mirror port = 2
=>eth switch mirror ingress port=2 state=disabled
=>eth switch mirror ingress
=>
RELATED COMMANDS:
Define the specified port to be the Mirror Capture Port.
Enable or disable the specified port to be the Mirror Egress Port.
E-DOC-CTC-20061027-0003 v2.0
309
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch share add
Add a port to be shared.
SYNTAX:
eth switch share add
port = <number{1-4}>
shared = <number{1-4}>
where:
port
A number between 1 and 4.
Represents the port.
REQUIRED
REQUIRED
shared
A number between 1 and 4.
Represents the shared port.
RELATED COMMANDS:
Delete a shared port.
Display shared ports.
E-DOC-CTC-20061027-0003 v2.0
310
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch share delete
Delete a shared port.
SYNTAX:
eth switch share delete
port = <number{1-4}>
shared = <number{1-4}>
where:
port
A number between 1 and 4.
Represents the port.
REQUIRED
REQUIRED
shared
A number between 1 and 4.
Represents the shared port.
RELATED COMMANDS:
Add a port to be shared.
Display shared ports.
E-DOC-CTC-20061027-0003 v2.0
311
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch qos config
Configure common qos parameters.
SYNTAX:
eth switch qos config
state = <disabled|enabled>
[nbrOfQueues = <number{0-4}>]
[realtime = <disabled|enabled>]
where:
state
Enable or disable QoS
Number of QoS queues
Enable or disable real time
REQUIRED
OPTIONAL
OPTIONAL
nbrOfQueues
realtime
RELATED COMMANDS:
Configure per port QoS parameters.
Display QoS configuration.
Configure the queue weights.
E-DOC-CTC-20061027-0003 v2.0
314
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch qos ifconfig
Configure per port QoS parameters.
SYNTAX:
eth switch qos ifconfig
port = <number{1-4}>
mode = <802.1p|diffserv|high|none|tos>
[flowcontrol = <disabled|enabled>]
where:
Port
Port to be configured
QoS Classifier for the port
Enable or disable flow control
REQUIRED
REQUIRED
Mode
Fowcontrol
OPTIONAL
RELATED COMMANDS:
Configure common qos parameters.
Display QoS configuration.
Configure the queue weights.
E-DOC-CTC-20061027-0003 v2.0
315
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch qos list
Display QoS configuration.
SYNTAX:
eth switch qos list
RELATED COMMANDS:
Configure common qos parameters.
Configure per port QoS parameters.
Configure the queue weights.
E-DOC-CTC-20061027-0003 v2.0
316
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch qos weights
Configure the queue weights.
SYNTAX:
eth switch qos weights
queue0 = <number{0-100}>
queue1 = <number{0-100}>
queue2 = <number{0-100}>
queue3 = <number{0-100}>
where:
QueueX
The weight of queue X in WFQ (percentage)
X=1 through 4
REQUIRED
RELATED COMMANDS:
Configure common qos parameters.
Configure per port QoS parameters.
Display QoS configuration.
E-DOC-CTC-20061027-0003 v2.0
317
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch shaper config
Configure common ingress shaper parameters.
SYNTAX:
eth switch shaper config
shaper = <number{0-1}>
[unicast = <disabled|enabled>]
[multicast = <disabled|enabled>]
[broadcast = <disabled|enabled>]
[control = <disabled|enabled>]
[unknown = <disabled|enabled>]
[discard = <disabled|enabled>]
where:
shaper
The shaper instance
Shape unicast traffic.
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
unicast
multicast
broadcast
control
Shape multicast traffic.
Shape broadcast traffic.
Shape MAC control traffic.
unknown
discard
Shape traffic with unknown destination address.
Discard frame at overflow (else attempt for flow control)
RELATED COMMANDS:
Configure per port shaper parameters.
Display shaper configuration per port.
E-DOC-CTC-20061027-0003 v2.0
318
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch shaper ifconfig
Configure per port shaper parameters.
SYNTAX:
eth switch shaper ifconfig
port = <number{1-4}>
ingress = <disabled|enabled>
shaper = <number{0-1}>
[state = <disabled|enabled>]
[speed = <number{64000-100000000}>]
[burstsize = <number{6-126}>]
where:
port
Port number
REQUIRED
REQUIRED
ingress
Enabled: port is ingress port
Disabled: port is egress port
shaper
state
Shaper instance
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
Enable/disable shaping
Speed in bits/sec.
Burst size in KBytes
speed
burstsize
RELATED COMMANDS:
Configure common ingress shaper parameters.
Display shaper configuration per port.
E-DOC-CTC-20061027-0003 v2.0
319
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch shaper iflist
Display shaper configuration per port.
SYNTAX:
eth switch shaper iflist
RELATED COMMANDS:
Configure common ingress shaper parameters.
Configure per port shaper parameters.
E-DOC-CTC-20061027-0003 v2.0
320
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth switch storm ifconfig
Configure per port storm control parameters.
SYNTAX:
eth switch storm ifconfig
port = <number{1-4}>
[state = <disabled|enabled>]
[rate = <{33|50|100|200}>]
[burstsize = <number{2-8}>]
[broadcast = <disabled|enabled>
[multicast = <disabled|enabled>]
[unknown = <disabled|enabled>]
where:
port
Port number
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
state
Enable/disable storm control
rate
Rate in 10ths of percent
burstsize
broadcast
multicast
unknown
Burst size in KBytes
Storm control for broadcast traffic
Storm control for multicast traffic
Storm control for traffic with unknown destination address
RELATED COMMANDS:
Display storm control configuration per port.
E-DOC-CTC-20061027-0003 v2.0
321
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth vlan add
Add a new VLAN.
SYNTAX:
eth vlan add
name = <string>
vid = <number{2-4094}>
[addrule = <{disabled | enabled}>]
where:
name
vid
The new VLAN name.
REQUIRED
REQUIRED
A number representing the new VLAN ID.
Note The ID 1 is reserved for the default VLAN.
addrule
Add (enabled) the default bridge constraint or not (disabled).
OPTIONAL
The default is enabled.
EXAMPLE:
=>eth vlan list
Vid
---
1
Name
----
default
=>eth vlan add name=myVLAN vid=2
=>eth vlan list
Vid
---
1
Name
----
default
myVLAN
2
=>
RELATED COMMANDS:
Delete a VLAN.
Display all VLANs.
E-DOC-CTC-20061027-0003 v2.0
323
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth vlan delete
Delete a VLAN.
SYNTAX:
eth vlan delete
name = <string>
where:
name
The name of the VLAN to be deleted.
REQUIRED
EXAMPLE:
=>eth vlan list
Vid
---
1
Name
----
default
myVLAN
2
=>eth vlan delete name=myVLAN vid=2
=>eth vlan list
Vid
---
1
Name
----
default
=>
RELATED COMMANDS:
Add a new VLAN.
Display all VLANs.
E-DOC-CTC-20061027-0003 v2.0
324
Download from Www.Somanuals.com. All Manuals Search And Download.
Eth Commands
eth vlan flush
Flush all VLANs.
All the VLANs, except the default VLAN will be flushed.
i
SYNTAX:
eth vlan flush
EXAMPLE:
=>eth vlan list
Vid
---
1
2
3
Name
----
default
myVLAN
yourVLAN
=>eth vlan flush
=>eth vlan list
Vid
---
1
Name
----
default
=>
E-DOC-CTC-20061027-0003 v2.0
325
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
expr add
Add a subexpression to an expression.
SYNTAX:
expr add
name = <string>
type = <{intf | ip | serv}>
addr [!]= <ip-range>
[intf [!]= <string>]
[intfgroup [!]= <{wan|local|lan|tunnel|dmz|guest} or number>]
[tos [!]= <number{0-255}>]
[precedence [!]= <IP precedence type> or <number>]
[dscp [!]= <DSCP name> or <number>]
[proto = <supported IP protocol name> or <number>]
[srcport [!]= <supported TCP/UDP port name> or <number>]
[srcportend = <supported TCP/UDP port name> or <number>]
[dstport [!]= <supported TCP/UDP port name> or <number>]
[dstportend = <supported TCP/UDP port name> or <number>]
[icmptype [!]= <supported ICMP type name> or <number>]
[icmpcode [!]= <number{0-15}>]
[icmpcodeend = <number{0-15}>]
If a value is preceded by a “!”, it means NOT.
For example “intfgroup=!wan” means “if the interface group is different from WAN”.
i
where:
name
The name of an existing expression.
REQUIRED
REQUIRED
type
The expression type.
Choose between:
>
>
>
intf
ip
serv.
addr
intf
The IP address (or range). Supports ip/mask notation.
REQUIRED
OPTIONAL
Note Only for expression type ip.
The IP interface name.
Note Only for expression type intf.
E-DOC-CTC-20061027-0003 v2.0
328
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
intfgroup
The IP interface group.
Choose between:
OPTIONAL
>
>
>
>
>
>
wan
local
lan
tunnel
dmz
guest.
Note Only for expression type intf.
tos
A number between 0 and 255.
Represents the Type of Service (ToS) specification in the IP
packet.
OPTIONAL
OPTIONAL
OPTIONAL
Note The parameters tos, precedence and dscp are mutually
exclusive.
precedence
dscp
The precedence in the IP packet (part of tos).
alternatively, specify the number.
Note The parameters tos, precedence and dscp are mutually
exclusive.
The Differentiated Services Code Point (DSCP) in the IP packet
(part of tos).
Select a DSCP (see “ Differentiated Services Code Point (DSCP)”
on page 753) or, alternatively, specify the number.
Note The parameters tos, precedence and dscp are mutually
exclusive.
proto
The protocol (name or number) expected in the IP packet.
Select one of the following protocols: icmp, igmp, ipinip, tcp,
udp, ah, esp, ipcomp or, alternatively, specify the protocol
number.
OPTIONAL
OPTIONAL
srcport
The TCP/UDP port (or beginning of range) the packet is coming
from.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
srcportend
dstport
The source TCP/UDP port range end (inclusive).
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
The TCP/UDP port (or beginning of range) the packet is going to.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
dstportend
icmptype
The destination TCP/UDP port range end. (inclusive).
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
The Internet Control Message Protocol (ICMP) type (name or
number) of the packet.
Select one of the supported ICMP types (see “ Supported ICMP
Type Names” on page 750) or, alternatively, specify the type
number.
E-DOC-CTC-20061027-0003 v2.0
329
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
icmpcode
A number between 0 and 15.
OPTIONAL
Represents the ICMP code (or beginning of range) of the packet.
icmpcodeend
A number between 0 and 15.
OPTIONAL
Represents the ICMP code range end (inclusive).
E-DOC-CTC-20061027-0003 v2.0
330
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
EXAMPLE:
=>expr list
name
type
use flags expression
------------------------------------------------------------------------------------------
_myPPP_ppp
_eth0
wan
lan
local
notwan
intf
intf
intf
intf
intf
intf
0 D
0 D
0
28
0
1
1. intf=myPPP_ppp
1. intf=eth0
1. intfgroup=0
1. intfgroup=2
1. intfgroup=1
1. intfgroup=2
2. intfgroup=1
1. addr=10.0.0.138
1. addr=192.168.1.254
_10.0.0.138
_192.168.1.254
ip
ip
0 D
0 D
...
DiffServ
sip
serv
serv
0
1
1. dscp=!0
1. proto=17 dst-prt=5060
2. proto=6 dst-prt=5060
1. proto=6 dst-prt=1720
2. proto=17 dst-prt=1718
3. proto=17 dst-prt=1719
h323
serv
1
=>expr add name=myEXPR type=intf intf=Internet intfgroup=lan
=>expr list
name
type
use flags expression
------------------------------------------------------------------------------------------
_myPPP_ppp
_eth0
wan
lan
local
notwan
intf
intf
intf
intf
intf
intf
0 D
0 D
0
28
0
1
1. intf=myPPP_ppp
1. intf=eth0
1. intfgroup=0
1. intfgroup=2
1. intfgroup=1
1. intfgroup=2
2. intfgroup=1
myEXPR
_10.0.0.138
_192.168.1.254
intf
ip
ip
0
0 D
0 D
1. intf=Internet intfgroup=2
1. addr=10.0.0.138
1. addr=192.168.1.254
...
DiffServ
sip
serv
serv
0
1
1. dscp=!0
1. proto=17 dst-prt=5060
2. proto=6 dst-prt=5060
1. proto=6 dst-prt=1720
2. proto=17 dst-prt=1718
3. proto=17 dst-prt=1719
h323
=>
serv
1
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
331
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
expr delete
Delete an expression.
SYNTAX:
expr delete
name = <string>
[index = <number>]
where:
name
index
The name of the expression to be deleted.
The index of the subexpression to be deleted.
REQUIRED
OPTIONAL
Note If not specified, all the subexpressions wil be deleted.
E-DOC-CTC-20061027-0003 v2.0
332
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
EXAMPLE:
=>expr list
name
type
use flags expression
------------------------------------------------------------------------------------------
_myPPP_ppp
_eth0
wan
lan
local
notwan
intf
intf
intf
intf
intf
intf
0 D
0 D
0
28
0
1
1. intf=myPPP_ppp
1. intf=eth0
1. intfgroup=0
1. intfgroup=2
1. intfgroup=1
1. intfgroup=2
2. intfgroup=1
myEXPR
_10.0.0.138
_192.168.1.254
intf
ip
ip
0
0 D
0 D
1. intf=Internet intfgroup=2
1. addr=10.0.0.138
1. addr=192.168.1.254
...
DiffServ
sip
serv
serv
0
1
1. dscp=!0
1. proto=17 dst-prt=5060
2. proto=6 dst-prt=5060
1. proto=6 dst-prt=1720
2. proto=17 dst-prt=1718
3. proto=17 dst-prt=1719
h323
serv
1
=>expr delete name=myEXPR
=>expr list
name
type
use flags expression
------------------------------------------------------------------------------------------
_myPPP_ppp
_eth0
wan
lan
local
notwan
intf
intf
intf
intf
intf
intf
0 D
0 D
0
28
0
1
1. intf=myPPP_ppp
1. intf=eth0
1. intfgroup=0
1. intfgroup=2
1. intfgroup=1
1. intfgroup=2
2. intfgroup=1
1. addr=10.0.0.138
1. addr=192.168.1.254
_10.0.0.138
_192.168.1.254
ip
ip
0 D
0 D
...
DiffServ
sip
serv
serv
0
1
1. dscp=!0
1. proto=17 dst-prt=5060
2. proto=6 dst-prt=5060
1. proto=6 dst-prt=1720
2. proto=17 dst-prt=1718
3. proto=17 dst-prt=1719
h323
=>
serv
1
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
333
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
expr list
List the expressions.
SYNTAX:
expr list
[name = <string>]
[type = <{intf | ip | serv}>]
[format = <{pretty | cli}>]
[string = <string>]
[beginstring = <string>]
where:
name
The name of an existing expression.
OPTIONAL
OPTIONAL
Note If not specified, all the expressions will be listed.
type
The expression type.
Choose between:
>
>
>
intf
ip
serv.
Note If not specified, the expressions of all types will be
shown.
format
Select the output format of the list.
Choose between:
OPTIONAL
>
pretty: the expressions are shown as intuitive output in clear
text.
>
cli: the expressions are shown via the CLI commands
configuration.
The default is pretty.
string
String matching condition
Beginstring matching condition
OPTIONAL
OPTIONAL
beginstring
E-DOC-CTC-20061027-0003 v2.0
335
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
EXAMPLE 1:
=>expr list
name
------------------------------------------------------------------------------------------
type
use flags expression
_Internet
_LocalNetwork
HTTPI_if_0
intf
intf
intf
0 D
0 D
1 D
1. intf=Internet
1. intf=LocalNetwork
1. intf=LocalNetwork
2. intf=LocalNetwork
3. intf=LocalNetwork
1. intfgroup=2
1. intfgroup=2
1. intfgroup=2
1. intfgroup=2
1. intfgroup=2
1. intfgroup=2
1. intfgroup=2
1. intfgroup=0
1. intfgroup=2
1. intfgroup=1
1. addr=10.0.0.138
1. addr=192.168.1.254
1. addr=10.0.0.0/8
HTTP_if_0
HTTPs_if_0
FTP_if_0
TELNET_if_0
DNS-S_if_0
SNMP_AGENT_if_0
PING_RESPONDER_if_0
wan
lan
local
_10.0.0.138
_192.168.1.254
private
intf
intf
intf
intf
intf
intf
intf
intf
intf
intf
ip
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1
2
0
0 D
0 D
0
ip
ip
2. addr=172.[16-31].*.*
3. addr=192.168.1.0/24
1. addr=239.255.255.250
1. addr=224.0.0.103
1. proto=6 dst-prt=80
1. proto=6 dst-prt=443
1. proto=6 dst-prt=21
1. proto=6 dst-prt=23
1. proto=17 src-prt=520 dst-prt=520
1. proto=17 dst-prt=520
1. proto=17 dst-prt=53
1. proto=17 dst-prt=161
1. proto=6 dst-prt=80
1. proto=6 dst-prt=443
1. proto=1
ssdp_ip
mdap_ip
ip
ip
1
1
HTTP_sv_0
HTTPs_sv_0
FTP_sv_0
TELNET_sv_0
RIP_sv_0
RIP-Query_sv_0
DNS-S_sv_0
SNMP_AGENT_sv_0
RAS_sv_0
SRAS_sv_0
ICMP_LISTEN_sv_0
SENDTO_LISTEN_sv_0
PING_RESPONDER_sv_0
HTTPI_sv_0
icmp
igmp
ftp
telnet
http
httpproxy
https
RPC
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1 D
1
2
0
1
1
1
1
0
0
1. proto=17
1. proto=1 icmp-type=8
1. proto=6 dst-prt=8080
1. proto=1
1. proto=2
1. proto=6 dst-prt=21
1. proto=6 dst-prt=23
1. proto=6 dst-prt=80
1. proto=6 dst-prt=8080
1. proto=6 dst-prt=443
1. proto=6 dst-prt=135
1. proto=17 dst-prt=137
2. proto=17 dst-prt=138
3. proto=6 dst-prt=139
1. proto=6 dst-prt=445
1. proto=6 dst-prt=143
1. proto=6 dst-prt=220
1. proto=6 dst-prt=585
1. proto=6 dst-prt=993
1. proto=6 dst-prt=109
1. proto=6 dst-prt=110
1. proto=6 dst-prt=995
1. proto=6 dst-prt=25
1. proto=6 dst-prt=22
1. proto=6 dst-prt=53
2. proto=17 dst-prt=53
1. proto=6 dst-prt=119
1. proto=51
NBT
SMB
imap
imap3
imap4-ssl
imaps
pop2
pop3
pop3s
smtp
ssh
dns
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
serv
0
1
1
1
1
1
1
1
1
0
1
nntp
ipsec
serv
serv
0
0
2. proto=50
3. proto=17 src-prt=500 dst-prt=500
1. proto=50
1. proto=51
1. proto=17 dst-prt=500
1. dscp=!0
1. proto=17 dst-prt=5060
2. proto=6 dst-prt=5060
1. proto=6 dst-prt=1720
2. proto=17 dst-prt=1718
3. proto=17 dst-prt=1719
1. proto=17 dst-prt=68
2. proto=17 dst-prt=67
1. proto=17 dst-prt=554
2. proto=6 dst-prt=554
1. proto=17 dst-prt=1900
1. proto=17 dst-prt=3235
esp
ah
ike
DiffServ
sip
serv
serv
serv
serv
serv
1
1
1
0
1
h323
serv
1
dhcp
rtsp
serv
serv
1
1
ssdp_serv
mdap_serv
=>
serv
serv
1
1
E-DOC-CTC-20061027-0003 v2.0
336
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
EXAMPLE 2:
=>expr list format=cli
:expr add name=_Internet type=intf intf=Internet
:expr add name=_LocalNetwork type=intf intf=LocalNetwork
:expr add name=HTTPI_if_0 type=intf intf=LocalNetwork
:expr add name=HTTPI_if_0 type=intf intf=LocalNetwork
:expr add name=HTTPI_if_0 type=intf intf=LocalNetwork
:expr add name=HTTP_if_0 type=intf intfgroup=lan
:expr add name=HTTPs_if_0 type=intf intfgroup=lan
:expr add name=FTP_if_0 type=intf intfgroup=lan
:expr add name=TELNET_if_0 type=intf intfgroup=lan
:expr add name=DNS-S_if_0 type=intf intfgroup=lan
:expr add name=SNMP_AGENT_if_0 type=intf intfgroup=lan
:expr add name=PING_RESPONDER_if_0 type=intf intfgroup=lan
:expr add name=wan type=intf intfgroup=wan
:expr add name=lan type=intf intfgroup=lan
:expr add name=local type=intf intfgroup=local
:expr add name=_10.0.0.138 type=ip addr=10.0.0.138
:expr add name=_192.168.1.254 type=ip addr=192.168.1.254
:expr add name=private type=ip addr=10.0.0.0/8
:expr add name=private type=ip addr=172.[16-31].*.*
:expr add name=private type=ip addr=192.168.1.0/24
:expr add name=ssdp_ip type=ip addr=239.255.255.250
:expr add name=mdap_ip type=ip addr=224.0.0.103
:expr add name=HTTP_sv_0 type=serv proto=tcp dstport=www-http
:expr add name=HTTPs_sv_0 type=serv proto=tcp dstport=443
:expr add name=FTP_sv_0 type=serv proto=tcp dstport=ftp
:expr add name=TELNET_sv_0 type=serv proto=tcp dstport=telnet
:expr add name=RIP_sv_0 type=serv proto=udp srcport=rip dstport=rip
:expr add name=RIP-Query_sv_0 type=serv proto=udp dstport=rip
:expr add name=DNS-S_sv_0 type=serv proto=udp dstport=dns
:expr add name=SNMP_AGENT_sv_0 type=serv proto=udp dstport=snmp
:expr add name=RAS_sv_0 type=serv proto=tcp dstport=www-http
:expr add name=SRAS_sv_0 type=serv proto=tcp dstport=443
:expr add name=ICMP_LISTEN_sv_0 type=serv proto=icmp
:expr add name=SENDTO_LISTEN_sv_0 type=serv proto=udp
:expr add name=PING_RESPONDER_sv_0 type=serv proto=icmp icmptype=echo-request
:expr add name=HTTPI_sv_0 type=serv proto=tcp dstport=httpproxy
:expr add name=icmp type=serv proto=icmp
:expr add name=igmp type=serv proto=igmp
:expr add name=ftp type=serv proto=tcp dstport=ftp
:expr add name=telnet type=serv proto=tcp dstport=telnet
:expr add name=http type=serv proto=tcp dstport=www-http
:expr add name=httpproxy type=serv proto=tcp dstport=httpproxy
:expr add name=https type=serv proto=tcp dstport=443
:expr add name=RPC type=serv proto=tcp dstport=135
:expr add name=NBT type=serv proto=udp dstport=netbios-ns
:expr add name=NBT type=serv proto=udp dstport=netbios-dgm
:expr add name=NBT type=serv proto=tcp dstport=netbios-ssn
:expr add name=SMB type=serv proto=tcp dstport=445
:expr add name=imap type=serv proto=tcp dstport=imap2
:expr add name=imap3 type=serv proto=tcp dstport=imap3
:expr add name=imap4-ssl type=serv proto=tcp dstport=585
:expr add name=imaps type=serv proto=tcp dstport=993
:expr add name=pop2 type=serv proto=tcp dstport=pop2
:expr add name=pop3 type=serv proto=tcp dstport=pop3
:expr add name=pop3s type=serv proto=tcp dstport=995
:expr add name=smtp type=serv proto=tcp dstport=smtp
:expr add name=ssh type=serv proto=tcp dstport=22
:expr add name=dns type=serv proto=tcp dstport=dns
:expr add name=dns type=serv proto=udp dstport=dns
:expr add name=nntp type=serv proto=tcp dstport=nntp
:expr add name=ipsec type=serv proto=ah
:expr add name=ipsec type=serv proto=esp
:expr add name=ipsec type=serv proto=udp srcport=ike dstport=ike
:expr add name=esp type=serv proto=esp
:expr add name=ah type=serv proto=ah
:expr add name=ike type=serv proto=udp dstport=ike
:expr add name=DiffServ type=serv dscp=!cs0
:expr add name=sip type=serv proto=udp dstport=sip
:expr add name=sip type=serv proto=tcp dstport=sip
:expr add name=h323 type=serv proto=tcp dstport=h323
:expr add name=h323 type=serv proto=udp dstport=1718
:expr add name=h323 type=serv proto=udp dstport=1719
:expr add name=dhcp type=serv proto=udp dstport=bootpc
:expr add name=dhcp type=serv proto=udp dstport=bootps
:expr add name=rtsp type=serv proto=udp dstport=rtsp
:expr add name=rtsp type=serv proto=tcp dstport=rtsp
:expr add name=ssdp_serv type=serv proto=udp dstport=1900
:expr add name=mdap_serv type=serv proto=udp dstport=3235=>
E-DOC-CTC-20061027-0003 v2.0
337
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
338
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
expr modify
Modify an expression.
SYN TAX:
expr modify
name = <string>
type = <{intf | ip | serv}>
index = <number>
addr [!]= <ip-range>
[intf [!]= <string>]
[intfgroup [!]= <{wan|local|lan|tunnel|dmz|guest} or
number>]
[bridgeport [!]= <number>]
[tos [!]= <number{0-255}>]
[precedence [!]= <IP precedence type> or <number>]
[dscp [!]= <DSCP name> or <number>]
[proto = <supported IP protocol name> or <number>]
[srcport [!]= <supported TCP/UDP port name> or <number>]
[srcportend = <supported TCP/UDP port name> or <number>]
[dstport [!]= <supported TCP/UDP port name> or <number>]
[dstportend = <supported TCP/UDP port name> or <number>]
[icmptype [!]= <supported ICMP type name> or <number>]
[icmpcode [!]= <number{0-15}>]
[icmpcodeend = <number{0-15}>]
If a value is preceded by a “!”, it means NOT.
For example “intfgroup=!wan” means “if the interface group is different from WAN”.
i
where:
name
The name of the expression to be modified.
REQUIRED
REQUIRED
type
The expression type.
Choose between:
>
>
>
intf
ip
serv.
number
The index of the subexpression to be modified.
REQUIRED
Tip
Use the command :expr list to obtain the indexes
of the subexpressions.
addr
intf
The IP address (or range). Supports ip/mask notation.
Note Only for expression type ip.
REQUIRED
OPTIONAL
The IP interface name.
Note Only for expression type intf.
E-DOC-CTC-20061027-0003 v2.0
339
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
intfgroup
The IP interface group.
Choose between:
OPTIONAL
>
>
>
>
>
>
wan
local
lan
tunnel
dmz
guest.
Note Only for expression type intf.
bridgeport
tos
The bridge port number.
OPTIONAL
OPTIONAL
Note Only for expression type intf.
A number between 0 and 255.
Represents the ToS specification in the IP packet.
Note The parameters tos, precedence and dscp are mutually
exclusive.
precedence
dscp
The precedence in the IP packet (part of tos).
alternatively, specify the number.
OPTIONAL
OPTIONAL
Note The parameters tos, precedence and dscp are mutually
exclusive.
The DSCP in the IP packet (part of tos).
Select a DSCP (see “ Differentiated Services Code Point (DSCP)”
Note The parameters tos, precedence and dscp are mutually
exclusive.
proto
The protocol (name or number) expected in the IP packet.
Select one of the following protocols: icmp, igmp, ipinip, tcp,
udp, ah, esp, ipcomp or, alternatively, specify the protocol
number.
OPTIONAL
OPTIONAL
srcport
The TCP/UDP port (or beginning of range) the packet is coming
from.
Select one of the supported TCP/UDP port names (see
alternatively, specify the protocol number.
srcportend
dstport
The source TCP/UDP port range end (inclusive).
Select one of the supported TCP/UDP port names (see
alternatively, specify the protocol number.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
The TCP/UDP port (or beginning of range) the packet is going to.
Select one of the supported TCP/UDP port names (see
alternatively, specify the protocol number.
dstportend
icmptype
The destination TCP/UDP port range end (inclusive).
Select one of the supported TCP/UDP port names (see
alternatively, specify the protocol number.
The ICMP type (name or number) of the packet.
Select one of the supported ICMP types (see “ Supported ICMP
Type Names” on page 750) or, alternatively, specify the type
number.
E-DOC-CTC-20061027-0003 v2.0
340
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
icmpcode
A number between 0 and 15.
Represents the ICMP code (or beginning of range) of the packet.
OPTIONAL
OPTIONAL
icmpcodeend
A number between 0 and 15.
Represents the ICMP code range end (inclusive).
E-DOC-CTC-20061027-0003 v2.0
341
Download from Www.Somanuals.com. All Manuals Search And Download.
Expr Commands
E-DOC-CTC-20061027-0003 v2.0
342
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
16 Firewall Commands
Introduction
This chapter describes the commands of the firewallcommand group.
Contents
This chapter covers the following commands:
Flush the firewall configuration.
Add a chain.
Delete a chain.
Flush all chains.
List all chains.
Clear the firewall statistics.
Display the firewall statistics.
Configure the firewall trace options.
Clear the firewall rule statistics.
Show the firewall rule statistics.
Display or modify the rule trace configuration.
E-DOC-CTC-20061027-0003 v2.0
343
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall config
Configure the firewall options.
SYNTAX:
firewall config
[state = <{disabled | enabled}>]
[keep = <{disabled | enabled}>]
[tcpchecks = <{none | fast | exact}>]
[udpchecks = <{disabled|enabled}>]
[icmpchecks = <{disabled | enabled}>]
[logdefault = <{disabled | enabled}>]
[logthreshold = <{disabled | enabled}>]
[tcpwindow = <number{0-1073725440}>]
where:
state
keep
Enable or disable the firewall.
The default is enabled.
OPTIONAL
The firewall keeps active connections (enabled) or not
(disabled) when the firewall rules change.
The default is disabled.
OPTIONAL
OPTIONAL
tcpchecks
Select the level of TCP sequence number checks. Choose
between:
>
>
none: no TCP checks are done.
fast: check all the combinations of flag and disallow all the
possible illegal combinations shown below:
SYN PSH (SYN PSH URG,...)
SYN FIN (SYN FIN PSH, SYN FIN RST PSH,...)
FIN flag set without ACK
All flags set
No flags set.
>
exact: check and permit only combinations of flag with the
TCP state of a connection:
SYN: request to open connection
SYN ACK: agree to open connection
A, PA, AU, PAU: acknowledgement of receipt
FA, FAP, FAU, FAP, FAPU, FAU, FPAU: request to close
connection
R, RA, RP, RU, RPA, RPU, RAU, RPAU: tear down
connection.
The default is none.
udpchecks
icmpchecks
Disable or enable keeping UDP checks.
The default is enabled.
OPTIONAL
OPTIONAL
Disable or enable keeping ICMP checks.
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
344
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
logdefault
Disable or enable logging of default firewall rule.
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
logthreshold
tcpwindow
Disable or enable log thresholding.
The default is enabled.
A number between 0 and 1073725440.
This parameter permits to modify the TCP window for fast TCP
checks.
The default is 65536.
EXAMPLE:
=>firewall config
:firewall config state=enabled keep=disabled tcpchecks=none udpchecks=enabled
icmpchecks=enabled logdefault=disabled logthreshold=enabled tcpwindow=65536
=>
E-DOC-CTC-20061027-0003 v2.0
345
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall list
List the firewall configuration.
SYNTAX:
firewall list
[format = <{pretty | cli}>]
where:
format
Select the output format in which the configuration must be
OPTIONAL
shown.
Choose between:
>
pretty: the configuration is shown as intuitive output in
clear text.
>
cli: the configuration is shown via the CLI commands
configuration.
The default is pretty.
E-DOC-CTC-20061027-0003 v2.0
347
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
EXAMPLE of output in text mode:
=>firewall list
Config
======
State
Keep
: enabled
: disabled
: exact
TcpChecks
TcpWindow
IcmpChecks
LogDefault
LogThreshold
: 65536
: enabled
: disabled
: enabled
Modules
=======
Module
State
Text
Hooks
---------------------------------------------------------------------------------------------
-----
fire
host_service
level
system_service
=>
enabled Firewall Administration Module
enabled Firewall Host Service Module
enabled Firewall Level Module
sink, forward, source
forward
forward
sink
enabled Firewall System Service Module
EXAMPLE of output in CLI mode:
=>firewall list format=cli
:firewall config state=enabled keep=disabled tcpchecks=exact icmpchecks=enabled logdefault=di
sabled
| logthreshold=enabled tcpwindow=65536
:firewall debug traceconfig tcpchecks=disabled icmpchecks=disabled sink=none forward=none
| source=none
=>
E-DOC-CTC-20061027-0003 v2.0
348
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
EXAMPLE:
=>firewall chain list
Chains
======
Name
Description
-----------------------------------------------------------------
sink
forward
source
sink_fire
forward_fire
source_fire
forward_host_service
forward_level
sink_system_service
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
=>firewall chain add chain=myCHAIN
=>firewall chain list
system
system
system
system
system
system
system
system
system
system
system
system
Chains
======
Name
Description
-----------------------------------------------------------------
sink
forward
source
sink_fire
forward_fire
source_fire
forward_host_service
forward_level
sink_system_service
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
myCHAIN
system
system
system
system
system
system
system
system
system
system
system
system
user
=>
RELATED COMMANDS:
Delete a chain.
List all chains.
E-DOC-CTC-20061027-0003 v2.0
350
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
EXAMPLE:
=>firewall chain list
Chains
======
Name
Description
-----------------------------------------------------------------
sink
forward
source
sink_fire
forward_fire
source_fire
forward_host_service
forward_level
sink_system_service
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
myCHAIN
system
system
system
system
system
system
system
system
system
system
system
system
user
=>firewall chain delete chain=myCHAIN
=>firewall chain list
Chains
======
Name
Description
-----------------------------------------------------------------
sink
forward
source
sink_fire
forward_fire
source_fire
forward_host_service
forward_level
sink_system_service
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
=>
system
system
system
system
system
system
system
system
system
system
system
system
RELATED COMMANDS:
Add a chain.
List all chains.
E-DOC-CTC-20061027-0003 v2.0
352
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall chain list
List all chains.
SYNTAX:
firewall chain list
[format = <{pretty | cli}>]
where:
format
Select the output format in which the chains must be shown.
Choose between:
OPTIONAL
>
pretty: the chains are shown as intuitive output in clear
text.
>
cli: the chains are shown via the CLI commands
configuration.
The default is pretty.
EXAMPLE:
=>firewall chain list
Chains
======
Name
Description
-----------------------------------------------------------------
sink
forward
source
sink_fire
forward_fire
source_fire
forward_host_service
forward_level
sink_system_service
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
=>
system
system
system
system
system
system
system
system
system
system
system
system
RELATED COMMANDS:
Add a chain.
Delete a chain.
E-DOC-CTC-20061027-0003 v2.0
354
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall debug clear
Clear the firewall statistics.
SYNTAX:
firewall debug clear
EXAMPLE:
=>firewall debug stats
Statistics
==========
Used rule contexts
Total rule contexts
Total packets parsed
Packets parsed in hook sink
: 0
: 256
: 2554
: 1461
Packets parsed in hook forward : 12
Packets parsed in hook source
Packets dropped in hook sink
: 1041
: 0
Packets dropped in hook forward : 0
Packets dropped in hook source : 0
TCP flag errors detected
: 14
TCP seq/ack/win errors detected : 5
ICMP errors with partial info
ICMP errors without cause
ICMP replies without request
: 0
: 0
: 0
Packet replay errors
=>firewall debug clear
=>firewall debug stats
: 0
Statistics
==========
Used rule contexts
Total rule contexts
Total packets parsed
: 0
: 256
: 26
: 16
Packets parsed in hook sink
Packets parsed in hook forward : 0
Packets parsed in hook source
Packets dropped in hook sink
: 10
: 0
Packets dropped in hook forward : 0
Packets dropped in hook source : 0
TCP flag errors detected
: 0
TCP seq/ack/win errors detected : 0
ICMP errors with partial info
ICMP errors without cause
ICMP replies without request
: 0
: 0
: 0
Packet replay errors
=>
: 0
RELATED COMMANDS:
Display the firewall statistics.
E-DOC-CTC-20061027-0003 v2.0
355
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall debug stats
Display the firewall statistics.
SYNTAX:
firewall debug stats
EXAMPLE:
=>firewall debug stats
Statistics
==========
Used rule contexts
Total rule contexts
Total packets parsed
Packets parsed in hook sink
: 0
: 256
: 2554
: 1461
Packets parsed in hook forward : 12
Packets parsed in hook source
Packets dropped in hook sink
: 1041
: 0
Packets dropped in hook forward : 0
Packets dropped in hook source : 0
TCP flag errors detected
: 14
TCP seq/ack/win errors detected : 5
ICMP errors with partial info
ICMP errors without cause
ICMP replies without request
: 0
: 0
: 0
Packet replay errors
: 0
=>
RELATED COMMANDS:
Clear the firewall statistics.
E-DOC-CTC-20061027-0003 v2.0
356
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall debug traceconfig
Configure the firewall trace options.
SYNTAX:
firewall debug traceconfig [tcpchecks = <{disabled | enabled}>]
[udpchecks = <{disabled|enabled}>]
[icmpchecks = <{disabled | enabled}>]
[sink = <{none | all | accept | deny | drop
| reset} or number>]
[forward = <{none | all | accept | deny | drop
reset} or number>]
[source = <{none | all | accept | deny | drop
| reset} or number>]
where:
tcpchecks
udpchecks
icmpchecks
sink
Disable or enable tcpchecks traces.
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
Disable or enable udpchecks traces.
The default is disabled.
Disable or enable icmpchecks traces.
The default is disabled.
Specify the action traced by the firewall for sink traffic.
The default is none.
forward
source
Specify the action traced by the firewall for forward traffic.
The default is none.
Specify the action traced by the firewall for source traffic.
The default is none.
EXAMPLE:
=>firewall debug traceconfig
Trace Config
============
tcpchecks
icmpchecks
sink
: disabled
: disabled
: none
forward
source
=>
: none
: none
E-DOC-CTC-20061027-0003 v2.0
357
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall level add
Add a security level.
SYNTAX:
firewall level add
name = <string>
[index = <number>]
[readonly = <{disabled | enabled}>]
[udptrackmode = <{strict | loose}>]
[service = <{disabled | enabled}>]
[proxy = <{disabled|enabled}>]
[text = <quoted string>]
where:
name
index
The name of the security level to be added.
The index of the security level.
Tip Use the command :firewall level listto
obtain a list of indexes.
REQUIRED
OPTIONAL
Note If not specified, the new security level will be added at
the bottom of the list.
readonly
Select whether the security level is readonly (enabled) or not
(disabled).
The default is enabled.
OPTIONAL
OPTIONAL
udptrackmode
Select the UDP connection tracking mode.
Choose between:
>
strict: replies to a request from a client must be in a specific
window to the client.
>
loose: inbound packets are allowed on the port that was
first used to start the communication with the server (for
example to allow a client of an online game to obtin peer-
to-peer information from other clients of that same online
game).
The default is strict.
proxy
Enable or disable proxy system services for this security level.
OPTIONAL
OPTIONAL
service
Disable or enable host service definitions.
The default is disabled.
text
Description of the security level.
OPTIONAL
Note The maximum length is 39 characters.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
358
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall level list
List all the security levels.
SYNTAX:
firewall level list
[format = <{pretty | cli}>]
[string = <string>]
[beginstring = <string>]
where:
format
Select the output format in which the security levels must be
OPTIONAL
shown.
Choose between:
>
pretty: the security levels are shown as intuitive output in
clear text.
>
cli: the security levels are shown via the CLI commands
configuration.
The default is pretty.
string
String matching condition
Beginstring matching condition
OPTIONAL
OPTIONAL
beginstring
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
361
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall level modify
Configure a security level.
SYNTAX:
firewall level modify
name = <string>
[index = <number>]
[readonly = <{disabled | enabled}>]
[udptrackmode = <{strict | loose}>]
[service = <{disabled | enabled}>]
[proxy = <{disabled|enabled}>]
[text = <quoted string>]
where:
name
index
The name of the security level to be added.
The index of the security level.
REQUIRED
OPTIONAL
Tip
Use the command :firewall level listto
obtain a list of indexes.
readonly
Select whether the security level is readonly (enabled) or not
(disabled).
OPTIONAL
OPTIONAL
udptrackmode
Select the UDP connection tracking mode.
Choose between:
>
strict: replies to a request from a client must be in a specific
window to the client.
>
loose: inbound packets are allowed on the port that was
first used to start the communication with the server (for
example to allow a client of an online game to obtin peer-
to-peer information from other clients of that same online
game).
The default is strict.
proxy
service
text
Enable or disable proxy system services for this security level.
Disable or enable service definitions for this security level.
Description of the security level.
OPTIONAL
OPTIONAL
OPTIONAL
Note The maximum length is 39 characters.
E-DOC-CTC-20061027-0003 v2.0
362
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall level set
Set the security level or display the current security level.
SYNTAX:
firewall level set
where:
name
[name = <string>]
The name of the security level to be set.
OPTIONAL
Note If no security level is specified, the current security
level will be shown.
E-DOC-CTC-20061027-0003 v2.0
363
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule add
Add a firewall rule.
SYNTAX:
firewall rule add
chain = <chain name>
[index = <number>]
[name = <string>]
[clink = <chain name>]
[srcintf [!]= <string>]
[srcip [!]= <string>]
[dstip [!]= <string>]
[serv [!]= <string>]
[log = <{disabled | enabled}>]
[state = <{disabled | enabled}>]
action = <{accept|deny|drop|reset|count|link}>
If a value is preceded by a “!”, it means NOT.
For example “srcintf=!wan” means “if the source interface is different from WAN”.
i
where:
chain
The name of the chain which contains the rule.
The number of the rule in the chain.
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
REQUIRED
index
name
clink
The name of the new rule.
The name of the chain to be parsed when this rule applies.
The name of the source interface expression.
The name of the source IP expression.
srcintf
srcip
dstintf
dstip
serv
The name of the destination interface expression.
The name of the destination IP expression.
The name of the service expression.
log
Disable or enable logging is done when this rule applies.
Enable or disable this rule.
state
action
The action to be taken when this rule applies ('link' when clink is used).
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
364
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule delete
Delete a firewall rule.
SYNTAX:
firewall rule delete
chain = <string>
index = <number>
where:
chain
index
The name of the chain in which a rule must be deleted.
The number of the rule in the chain.
REQUIRED
REQUIRED
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
365
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule flush
Flush all firewall rules.
SYNTAX:
firewall rule flush
[chain = <string>]
where:
chain
The name of the chain for which the rules must be flushed.
OPTIONAL
Note If not specified, the rules of all the chains will be
flushed.
E-DOC-CTC-20061027-0003 v2.0
366
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule list
Show a list of the firewall rules in a chain.
SYNTAX:
firewall rule list
[chain = <string>]
[format = <{pretty | cli}>]
[string = <string>]
[beginstring = <string>]
where:
chain
The name of the chain for which the rules must be listed.
OPTIONAL
OPTIONAL
Note If not specified, the rules of all the chains are shown.
format
Select the output format in which the list must be shown.
Choose between:
>
>
pretty: the list is shown as intuitive output in clear text.
cli: the list is shown via the CLI commands configuration.
The default is pretty.
string
String matching condition
Beginstring matching condition
OPTIONAL
OPTIONAL
beginstring
E-DOC-CTC-20061027-0003 v2.0
367
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
EXAMPLE:
=>firewall rule list
Rules (flags: C=Constant, D=Dynamic, E=Enable, L=Log)
=====
Chain
Nr. Flags Rule
---------------------------------------------------------------------------------------
sink
1
2
1
1
2
CDE
CDE
C E
CDE
DE
: link
: link
sink_fire
sink_system_service
sink_fire
sink_system_service
SSDP
HTTPI
: accept ssdp_serv lan.* > *.ssdp_ip
: accept HTTPI_sv_0 HTTPI_if_0.* > *.*
PING_RESPONDER : accept PING_RESPONDER_sv_0 PING_RESPON
DER_
if_0.* > *.*
3
4
5
6
7
8
CD
D
CD
CD
CDE
CDE
SENDTO_LISTEN
ICMP_LISTEN
SRAS
RAS
MDAP
: accept SENDTO_LISTEN_sv_0 *.* > *.*
: accept ICMP_LISTEN_sv_0 *.* > *.*
: accept SRAS_sv_0 *.* > *.*
: accept RAS_sv_0 *.* > *.*
: accept MDAP_sv_0 *.* > *.*
SNMP_AGENT
: accept SNMP_AGENT_sv_0 SNMP_AGENT_
if_0.* > *.*
9
CD
DHCP-S
DHCP-R
DNS-S
RIP-Query
RIP
TELNET
FTP
HTTPs
HTTP
: accept DHCP-S_sv_0 *.* > *.*
: accept DHCP-R_sv_0 DHCP-R_if_0.* > *.*
: accept DNS-S_sv_0 DNS-S_if_0.* > *.*
: accept RIP-Query_sv_0 *.* > *.*
: accept RIP_sv_0 *.* > *.*
: accept TELNET_sv_0 TELNET_if_0.* > *.*
: accept FTP_sv_0 FTP_if_0.* > *.*
: accept HTTPs_sv_0 HTTPs_if_0.* > *.*
: accept HTTP_sv_0 HTTP_if_0.* > *.*
10
11
12
13
14
15
16
17
1
CDE
CDE
CD
CDE
CDE
CDE
CDE
CDE
CDE
CDE
CDE
CDE
C E
CDE
C E
forward
: link
: link
: link
: link
forward_fire
forward_host_service
forward_level
2
3
1
forward_level
forward_level_Disabled 1
source
source_fire
=>
forward_level_Disabled
AnyTraffic
AnyTraffic
: accept *.* > *.*
: link source_fire
: accept *.* > *.*
1
1
=>firewall rule list format=cli
:firewall rule add chain=sink_fire index=1 name=SSDP srcintf=lan dstip=ssdp_ip serv=ssdp_serv
| log=disabled state=enabled action=accept
:firewall rule add chain=source_fire index=1 name=AnyTraffic log=disabled state=enabled
| action=accept
:firewall rule add chain=forward_level_BlockAll index=1 name=AnyTraffic log=disabled state=en
abled
| action=drop
:firewall rule add chain=forward_level_Standard index=1 name=FromLAN srcintf=lan log=disabled
| state=enabled action=accept
:firewall rule add chain=forward_level_Disabled index=1 name=AnyTraffic log=disabled state=en
abled
| action=accept
=>
E-DOC-CTC-20061027-0003 v2.0
368
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule modify
Modify a firewall rule.
SYNTAX:
firewall rule modify
chain = <string>
index = <number>
[newindex = <number>]
[name = <string>]
[clink = <chain name>]
[srcintf [!]= <string>]
[srcip [!]= <string>]
[dstintf [!]= <string>]
[dstip [!]= <string>]
[serv [!]= <string>]
[log = <{disabled | enabled}>]
[state = <{disabled | enabled}>]
[action = <action>]
If a value is preceded by a “!”, it means NOT.
For example “srcintf=!wan” means “if the source interface is different from WAN”.
i
where:
chain
index
newindex
name
clink
The name of the chain which contains the rule.
The number of the rule in the chain.
REQUIRED
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
The number of the rule in the chain.
The name of the new rule.
The name of the chain to be parsed when this rule applies.
The name of the source interface expression.
The name of the source IP expression.
The name of the destination interface expression.
The name of the destination IP expression.
The name of the service expression.
srcintf
srcip
dstintf
dstip
serv
log
Disable or enable logging when this rule applies.
Disable or enable this rule.
state
action
The action to be taken when this rule applies ('link' when clink
is used).
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
369
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule debug clear
Clear the firewall rule statistics.
SYNTAX:
firewall rule debug clear [chain = <string>]
[index = <number>]
where:
chain
index
The name of the chain which contains the rule.
The number of the rule in the chain.
OPTIONAL
OPTIONAL
Note If not specified, the statistics for all the rules in the
chain will be cleared.
E-DOC-CTC-20061027-0003 v2.0
370
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
EXAMPLE:
=>firewall rule debug stats
chain
----------------------------------------------------------------------------
index
packets
bytes
sink
1
2
1
0
4
0
0
192
0
forward
2
0
0
3
1
10
0
480
0
source
sink_fire
1
0
0
source_fire
forward_level
sink_system_service
1
1
1
2
0
10
1
0
480
48
0
0
...
16
17
1
0
2
0
0
96
0
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
=>firewall rule debug clear
=>firewall rule debug stats
chain
1
1
0
10
0
480
index
packets
bytes
----------------------------------------------------------------------------
sink
1
2
1
2
3
1
1
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
forward
source
sink_fire
source_fire
forward_level
sink_system_service
1
1
2
...
16
17
1
1
1
0
0
0
0
0
0
0
0
0
0
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
=>
RELATED COMMANDS:
Show the firewall rule statistics.
E-DOC-CTC-20061027-0003 v2.0
371
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule debug stats
Show the firewall rule statistics.
SYNTAX:
firewall rule debug stats [chain = <chain name>]
[index = <number>]
where:
chain
The name of the chain for which the statistics must be shown.
Note If not specified, the statistics for all the chains will be
OPTIONAL
OPTIONAL
shown.
index
The number of the rule in the chain.
Note If not specified, the statistics for all the rules in the
chain are shown.
E-DOC-CTC-20061027-0003 v2.0
372
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
EXAMPLE:
=>firewall rule debug stats
chain
----------------------------------------------------------------------------
index
packets
bytes
sink
1
2
1
0
4
0
0
192
0
forward
2
0
0
3
1
10
0
480
0
source
sink_fire
1
0
0
source_fire
forward_level
sink_system_service
1
1
1
2
0
10
1
0
480
48
0
0
3
0
0
4
0
0
5
0
0
6
0
0
7
0
0
8
0
0
9
0
0
10
11
12
13
14
15
16
17
1
0
0
0
0
1
0
0
2
0
0
0
0
48
0
0
96
0
0
forward_level_BlockAll
forward_level_Standard
forward_level_Disabled
=>
0
0
10
1
1
480
RELATED COMMANDS:
Clear the firewall rule statistics.
E-DOC-CTC-20061027-0003 v2.0
373
Download from Www.Somanuals.com. All Manuals Search And Download.
Firewall Commands
firewall rule debug traceconfig
Display or modify the rule trace configuration.
SYNTAX:
firewall rule debug traceconfig [trace = <{disabled | enabled}>]
where:
trace
Enable or disable rule traces.
OPTIONAL
The default is disabled.
EXAMPLE:
=>firewall rule debug traceconfig
:firewall rule debug traceconfig state=disabled
=>
E-DOC-CTC-20061027-0003 v2.0
374
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
17 GRP Commands
Introduction
This chapter describes the commands of the grpcommand group.
Contents
This chapter covers the following commands:
Set the Generic Routing Protocol (GRP) configuration settings.
Flush the GRP interface settings and parameters.
Show the current routes in the GRP interfaces routing table.
Configure the RIP settings.
Flush the RIP interface settings and global parameters.
Configure a RIP interface.
Show the RIP settings and the routes in the RIP database.
E-DOC-CTC-20061027-0003 v2.0
375
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
grp config
Set the Generic Routing Protocol (GRP) configuration settings.
SYNTAX:
grp config
[cdistance = <number{0-255}>]
[kdistance = <number{0-255}>]
[rdistance = <number{0-255}>]
[trace = <{disabled | enabled}>]
where:
cdistance
A number between 0 and 255.
Sets the distance of the connected route type.
The default is 0.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
kdistance
rdistance
trace
A number between 0 and 255.
Sets the distance of the kernel route type.
The default is 1.
A number between 0 and 255.
Sets the distance of the RIP route type.
The default is 120.
Enable or disable verbose console messaging.
The default is disabled.
EXAMPLE:
=>grp config
Distance of the connected route type : 0
Distance of the kernel route type : 1
Distance of the RIP route type : 120
Tracing : disabled
=>
E-DOC-CTC-20061027-0003 v2.0
376
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
grp rtlist
Show the current routes in the GRP interfaces routing table.
SYNTAX:
grp rtlist
[dst = <ip-address>]
[dstmask = <ip-mask (dotted or cidr)>]
where:
dst
The destination IP address of the route.
Supports IP/mask notation.
OPTIONAL
Note If no destination IP address is specified, all the current routes
will be shown.
dstmask
The destination IP address mask, either in dotted or in numerical cidr
notation.
OPTIONAL
EXAMPLE:
=>grp rtlist
Codes : K - kernel, C - connected, S - static, R - rip, * - FIB route
destination : 10.0.0.0/24 *
Route type : "C"
distance : 0
Nexthop : LocalNetwork
destination : 10.0.0.0/24
Route type : "K"
distance : 1
Nexthop : 10.0.0.138
destination : 127.0.0.0/8 *
Route type : "C"
distance : 0
Nexthop : loop
destination : 192.168.1.0/24 *
Route type : "C"
distance : 0
Nexthop : LocalNetwork
destination : 192.168.1.0/24
Route type : "K"
distance : 1
Nexthop : 192.168.1.254
destination : 255.255.255.255/32 *
Route type : "K"
distance : 1
Nexthop : 127.0.0.1
=>
E-DOC-CTC-20061027-0003 v2.0
378
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
grp rip config
Configure the RIP settings.
SYNTAX:
grp rip config
state = <{disabled | enabled}>
[version = <{rip_unspec | rip_v1 | rip_v2}>]
[defmetric = <number{1-16}>]
[updatetime = <number{1-3600}>]
[timeouttime = <number{1-3600}>]
[garbagetime = <number{1-3600}>]
[impcrt = <{disabled | enabled}>]
[impkrt = <{disabled | enabled}>]
[impsrt = <{disabled | enabled}>]
[impdefkrt = <{disabled | enabled}>]
[impdefsrt = <{disabled | enabled}>]
[exprt = <{disabled | enabled}>]
[expdefrt = <{disabled | enabled}>]
[txdefrt = <{disabled | enabled}>]
[trace = <{disabled | enabled}>]
where:
state
Enable or disable the RIP daemon.
The default is enabled.
REQUIRED
OPTIONAL
version
Configure the RIP version to be applied.
Choose between:
>
rip_unspec: No RIP version is specified as such. The actual RIP
version to be used is negotiated with the remote side.
>
>
rip_v1: RIP version 1 is used.
rip_v2: RIP version 2 is used.
The default is rip_v2.
defmetric
A number between 1 and 16 (hops).
Represents the default RIP metric for imported routes.
The default is 1.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
updatetime
timeouttime
garbagetime
A number between 1 and 3600 (seconds).
Represents the update timer value of the RIP routing table.
The default is 30.
A number between 1 and 3600 (seconds).
Represents the timeout timer value of the RIP routing info.
The default is 180.
A number between 1 and 3600 (seconds).
Represents the garbage collection timer value.
The default is 120.
impcrt
impkrt
Enable or disable the import of connected routes.
The default is enabled.
OPTIONAL
OPTIONAL
Enable or disable the import of kernel routes.
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
379
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
impsrt
impdefkrt
impdefsrt
exprt
Enable or disable the import of static routes.
The default is enabled.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
Enable or disable the import of the default kernel route.
The default is enabled.
Enable or disable the import of the default static route.
The default is enabled.
Enable or disable the export of received RIP routes.
The default is enabled.
expdefrt
txrt
Enable or disable the export of the received RIP default route.
The default is enabled.
Enable or disable the transmission of the RIP default route.
The default is enabled.
trace
Enable or disable verbose console messaging.
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
380
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
EXAMPLE:
=>grp rip show
RIP routing protocol config dump
------------------------------------
RIP daemon is enabled
Global RIP queries received : 0
Global RIP route changes : 0
Default version : send rip_v2, receive rip_v2
Default redistribution metric is 1
Sending routing table updates every 30 seconds with +/-5%
Route timeout after 180 seconds
Route garbage collect after 120 seconds
Import of connected routes is enabled
Import of kernel routes is enabled
Import of static routes is enabled
Import of default kernel route is enabled
Import of default static route is enabled
Export of RIP routes is enabled
Export of default RIP route is enabled
Transmission of default RIP route is enabled
Interface
Send
Recv
AuthMode
Passive SplitHorizon BadPackets
BadRoutes SentUpdates
---------------------------------------------------------------------------------------------
-------------------
lan1
rip_unspec
rip_unspec
none
enabled enabled
0
0
0
0
Internet
rip_unspec
rip_unspec
none
enabled enabled
0
0
RIP routing table dump
--------------------------
Codes : K - Kernel, C - connected, S - Static, R - RIP, * - FIB route
Network Next Hop Metric From Flags
----------------------------------------------------------------------
C 10.0.0.0/24
C 192.168.1.0/24
=>
1
1
<> *
<> *
RELATED COMMANDS:
Show the RIP settings and the routes in the RIP database.
E-DOC-CTC-20061027-0003 v2.0
381
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
grp rip ifconfig
Configure a RIP interface.
SYNTAX:
grp rip ifconfig intf = <string>
[rip = <{disabled | enabled}>]
[rxversion = <{rip_unspec | rip_v1 | rip_v2 | rip_v1-2}>]
[authmode = <{none | cleartext}>]
[authstring = <quoted string>]
[splithorizon = <{disable | enable}>]
where:
intf
The name of the RIP interface to be configured.
REQUIRED
Tip
Use the command :grp iflistto obtain a list of avail-
able interfaces.
rip
Enabled or disabled RIP on this interface.
The default is disabled.
OPTIONAL
OPTIONAL
rxversion
Configure the RIP receive version to be applied.
Choose between:
>
rip_unspec: No RIP version is specified as such. The actual RIP
version to be used is negotiated with the remote side.
>
>
>
rip_v1: RIP version 1 is used.
rip_v2: RIP version 2 is used.
rip_v1-2: RIP version 1 and RIP version 2 are used.
The default is rip_unspec.
authmode
Configure the RIP authentication mode.
Enter the mode in cleartext or specify none in case no authentication
mode is required.
OPTIONAL
The default is none.
authstring
Configure the authentication string for the RIP authentication
password.
OPTIONAL
OPTIONAL
Note Leave authstring unspecified in case authmode is none.
splithorizon
Enable or disable the split horizon status for this interface.
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
383
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
EXAMPLE:
=>grp rip ifconfig
intf = myPPP_ppp
[rip] = disabled
[rxversion] = rip_unspec
[authmode] = none
[authstr] =
[passive] = disabled
[splithorizon] = enabled
:grp rip ifconfig intf=myPPP_ppp
=>
E-DOC-CTC-20061027-0003 v2.0
384
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
grp rip show
Show the RIP settings and the routes in the RIP database.
SYNTAX:
grp rip show
EXAMPLE:
=>grp rip show
RIP routing protocol config dump
------------------------------------
RIP daemon is enabled
Global RIP queries received : 0
Global RIP route changes : 3
Default version : send rip_v2, receive rip_v2
Default redistribution metric is 1
Sending routing table updates every 30 seconds with +/-5%
Route timeout after 180 seconds
Route garbage collect after 120 seconds
Import of connected routes is enabled
Import of kernel routes is enabled
Import of static routes is enabled
Import of default kernel route is enabled
Import of default static route is enabled
Export of RIP routes is enabled
Export of default RIP route is enabled
Transmission of default RIP route is enabled
Intf
ates
Send
Recv
AuthMode Passive
SplitHorizon BadPackets BadRoutes SentUpd
---------------------------------------------------------------------------------------------
----
eth0
rip_unspec rip_unspec none
off
on
0
58
62
RIP route table dump
----------------------
Codes : K - Kernel, C - connected, S - Static, R - RIP, * - FIB route
Network Next Hop Metric From Flags
---------------------------------------------------------------------
R 0.0.0.0/0
192.6.11.150
3
1
1
1
1
192.6.11.150
<> *
<> *
<> *
<> *
<> *
C 10.0.0.0/8
K 129.132.2.21/32
C 138.203.4.0/22
C 172.16.1.0/24
=>
138.203.7.146
E-DOC-CTC-20061027-0003 v2.0
385
Download from Www.Somanuals.com. All Manuals Search And Download.
GRP Commands
E-DOC-CTC-20061027-0003 v2.0
386
Download from Www.Somanuals.com. All Manuals Search And Download.
Hostmgr Commands
18 Hostmgr Commands
Introduction
This chapter describes the commands of the hostmgrcommand group.
Contents
This chapter covers the following commands:
Delete the host device info from the host manager.
Flush the host manager configuration.
E-DOC-CTC-20061027-0003 v2.0
387
Download from Www.Somanuals.com. All Manuals Search And Download.
Hostmgr Commands
hostmgr add
Add host device info to the host manager.
SYNTAX:
hostmgr add
mac_addr = <hardware-address>
[ip_addr = <ip-address>]
[name = <string>]
[type=<{generic_device|desktop_computer|laptop_computer|
set_top_box|pda|gaming_console|phone|mobile_phone|
printer|mass_storage_device}>]
[ipintf = <string>]
[ethintf = <string>]
[physintf = <string>]
where:
mac_addr
ip_addr
name
The MAC address of the host to be added.
The host IP address.
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
The host name.
type
The host type.
Choose between:
>
>
>
>
>
>
>
>
>
>
generic_device
desktop_computer
laptop_computer
set_top_box
pda
gaming_console
phone
mobile_phone
printer
mass_storage_device
The default is Generic Device.
ipintf
The IP interface name.
OPTIONAL
OPTIONAL
OPTIONAL
ethintf
physintf
The Ethernet interface name.
The physical interface name.
E-DOC-CTC-20061027-0003 v2.0
388
Download from Www.Somanuals.com. All Manuals Search And Download.
Hostmgr Commands
EXAMPLE:
=>hostmgr list
MAC-address
-----------
00:10:a4:ad:32:cf 192.168.1.64
IP-address
----------
Flags Type
----- ----
Intf
----
Hw Intf
-------
ethif4
Hostname
--------
MyComputer
C
Generic Device LocalNetwork
=>hostmgr add mac_addr=00:10:a4:33:56:53 name=Play type=Playstation
=>hostmgr list
MAC-address
-----------
00:10:a4:33:56:53 0.0.0.0
IP-address
----------
Flags Type
----- ----
Intf
----
ethif1
Hw Intf
-------
ethif1
ethif4
Hostname
--------
Play
Playstation
00:10:a4:ad:32:cf 192.168.1.64
C
Generic Device LocalNetwork
MyComputer
=>
RELATED COMMANDS:
Delete the host device info from the host manager.
E-DOC-CTC-20061027-0003 v2.0
389
Download from Www.Somanuals.com. All Manuals Search And Download.
Hostmgr Commands
hostmgr clear
Remove all the hosts from the list.
SYNTAX:
hostmgr clear
EXAMPLE:
=>hostmgr list
MAC-address
-----------
00:10:a4:33:56:53 0.0.0.0
00:10:a4:ad:32:cf 192.168.1.64
er
IP-address
----------
Flags
-----
Type
----
Intf
----
ethif1
Hw Intf
-------
ethif1
ethif4
Hostname
--------
Play
Playstation
Generic Device LocalNetwork
C
MyComput
=>hostmgr clear
=>hostmgr list
No hosts found.
=>
RELATED COMMANDS:
Delete the host device info from the host manager.
E-DOC-CTC-20061027-0003 v2.0
390
Download from Www.Somanuals.com. All Manuals Search And Download.
Hostmgr Commands
hostmgr config
Configure the host manager parameters.
SYNTAX:
hostmgr config [state = <{disabled | enabled}>]
[scantime = <number{10-600}>]
[autosave = <{disabled | enabled}>]
[trace = <{disabled | enabled}>]
where:
state
Enable or disable the host manager daemon.
The default is enabled.
OPTIONAL
OPTIONAL
scantime
A number between 10 an 600 (seconds).
Represents the time between two scans.
The default is 30 (seconds).
autosave
trace
Enable or disable automatic saves to flash memory.
The default is enabled.
OPTIONAL
OPTIONAL
Enable or disable the host manager traces.
The default is disabled.
EXAMPLE:
=>hostmgr config
state
: enabled
scantime : 30 sec.
autosave : enabled
trace
: disabled
=>
E-DOC-CTC-20061027-0003 v2.0
391
Download from Www.Somanuals.com. All Manuals Search And Download.
Hostmgr Commands
hostmgr delete
Delete the host device info from the host manager.
SYNTAX:
hostmgr delete mac_addr = <hardware-address>
where:
mac_addr
The MAC address of the host to be removed.
REQUIRED
EXAMPLE:
=>hostmgr list
MAC-address
-----------
00:10:a4:33:56:53 0.0.0.0
00:10:a4:ad:32:cf 192.168.1.64
er
IP-address
----------
Flags
-----
Type
----
Intf
----
ethif1
Hw Intf
-------
ethif1
ethif4
Hostname
--------
Play
Playstation
Generic Device LocalNetwork
C
MyComput
=>hostmgr delete mac_addr=00:10:a4:fa:33:56
=>hostmgr list
MAC-address
-----------
00:10:a4:ad:32:cf 192.168.1.64
er
IP-address
----------
Flags
-----
C
Type
----
Intf
----
Hw Intf
-------
ethif4
Hostname
--------
MyComput
Generic Device LocalNetwork
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
392
Download from Www.Somanuals.com. All Manuals Search And Download.
Hostmgr Commands
hostmgr list
List all the host devices.
SYNTAX:
hostmgr list
EXAMPLE:
=>hostmgr list
MAC-address
-----------
00:10:a4:33:56:53 0.0.0.0
00:10:a4:ad:32:cf 192.168.1.64
er
IP-address
----------
Flags
-----
Type
----
Intf
----
ethif1
Hw Intf
-------
ethif1
ethif4
Hostname
--------
Play
Playstation
Generic Device LocalNetwork
C
MyComput
=>
RELATED COMMANDS:
Delete the host device info from the host manager.
E-DOC-CTC-20061027-0003 v2.0
394
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
19 IDS Commands
Introduction
This chapter describes the commands of the idscommand group.
Contents
This chapter covers the following commands:
Reset the IDS statistics.
Modify the IDS parser configuration.
Reset the pattern tracker.
Reset the IDS thresholds to their default values.
Display the IDS thresholds.
E-DOC-CTC-20061027-0003 v2.0
395
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids config
Display/modify the Intrusion Detection System (IDS) configuration.
SYNTAX:
ids config
[state = <{disabled | enabled}>]
[trace = <{disabled|enabled}>]
where:
state
Enable or disable IDS checks.
The default is enabled.
OPTIONAL
OPTIONAL
trace
Enable or disable tracing.
The default is disabled.
EXAMPLE:
=>ids config
IDS configuration:
=================
state : enabled
traces ::disabled
=>
E-DOC-CTC-20061027-0003 v2.0
397
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids parser list
Display the IDS parser configuration.
SYNTAX:
ids parser list
[parser = <parser>]
where:
parser
The name of the parser
REQUIRED
EXAMPLE:
=>ids parser list
parser
state
-----------------------------------------
fragment
scan
dos
proto
rate
=>
enabled
enabled
enabled
enabled
enabled
E-DOC-CTC-20061027-0003 v2.0
398
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids parser modify
Modify the IDS parser configuration.
SYNTAX:
ids parser modify
parser = <string>
state = <{disabled | enabled}>
where:
parser
The name of the IDS parser of which the configuration must be modifi
ed.
REQUIRED
REQUIRED
state
Disable or enable the parser.
E-DOC-CTC-20061027-0003 v2.0
399
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
EXAMPLE:
=>ids list
Resources:
==========
resource
total maximum
---------------------------------
parsers
signatures
5
38
10
50
Signatures:
==========
parser
signature
hits action
state
---------------------------------------------------------------------------------------
fragment
fragment
fragment
fragment
fragment
fragment
...
fragment sweep
0 log, drop
0 log, drop
0 log, drop
0 log, drop
0 log, drop
0 log
enabled
enabled
enabled
enabled
enabled
enabled
zero-length fragment size
small fragment size
fragment size overrun
fragment overlap
fragment out-of-order
=>ids parser modify parser=fragment state=disabled
=>ids list
Resources:
==========
resource
total maximum
---------------------------------
parsers
signatures
5
38
10
50
Signatures:
==========
parser
signature
hits action
state
---------------------------------------------------------------------------------------
fragment
fragment
fragment
fragment
fragment
fragment
...
fragment sweep
0 log, drop
0 log, drop
0 log, drop
0 log, drop
0 log, drop
0 log
disabled
disabled
disabled
disabled
disabled
disabled
zero-length fragment size
small fragment size
fragment size overrun
fragment overlap
fragment out-of-order
=>
E-DOC-CTC-20061027-0003 v2.0
400
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids pattern clear
Reset the pattern tracker.
SYNTAX:
ids pattern clear
EXAMPLE:
=>ids pattern stats
Pattern tracker statistics:
---------------------------
memory
: 32768 bytes
maximum number of patterns
number of active patterns
number of recycled patterns
number of pattern searches
number of new patterns
: 512
: 8
: 0
: 9
: 8
maximum number of hash collisions : 1
% of hash entries with collisions : 0.09
% of hash entries unused
=>ids pattern clear
: 99.31
=>ids pattern stats
Pattern tracker statistics:
---------------------------
memory
: 32768 bytes
maximum number of patterns
number of active patterns
number of recycled patterns
number of pattern searches
number of new patterns
: 512
: 0
: 0
: 0
: 0
maximum number of hash collisions : 0
% of hash entries with collisions : 0.00
% of hash entries unused
=>
: 100.00
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
401
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids pattern list
Display the patterns in the pattern tracker.
SYNTAX:
ids pattern list
[size = <{10 | 100 | full} or number>]
where:
size
The size of the IDS pattern list that will be shown.
Choose between:
OPTIONAL
>
>
>
10
100
full
or, alternatively, specify a number.
The default is full.
EXAMPLE:
=>ids pattern list
1. # 40002# UDP
period: [00001564..00001565]
2. # 30002# UDP
period: [00001564..00001566]
3. # 5000a# UDP
*.*.*.*:*
*.*.*.*:*
*.*.*.*:*
->
*.*.*.*:*
count:1
-> 255.255.255.255:67
-> 255.255.255.255:*
count:1
count:1
period: [00001411..00001425]
=>
RELATED COMMANDS:
Reset the pattern tracker.
E-DOC-CTC-20061027-0003 v2.0
402
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids pattern stats
Display the pattern tracker statistics.
SYNTAX:
ids pattern stats
EXAMPLE:
=>ids pattern stats
Pattern tracker statistics:
---------------------------
memory
: 32768 bytes
maximum number of patterns
number of active patterns
number of recycled patterns
number of pattern searches
number of new patterns
: 512
: 8
: 0
: 9
: 8
maximum number of hash collisions : 1
% of hash entries with collisions : 0.09
% of hash entries unused
=>
: 99.31
RELATED COMMANDS:
Reset the pattern tracker.
E-DOC-CTC-20061027-0003 v2.0
403
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids signature list
Displays the ids signature configuration
SYNTAX
ids signature list
[signature = <fragment_sweep|zero-
length_fragment_size|
small_fragment_size|fragment_size_ove
fragment_overlap|fragment_out-
rrun|
of-order|
ip_protocol_scan|tcp_port_scan|tcp_sy
n_scan|
_scan|
stealth_tcp_null_scan|stealth_tcp_fin
stealth_tcp_xmas_scan|
stealth_tcp_full_xmas_scan|
stealth_tcp_vecna_scan|
stealth_tcp_syn-fin_scan|
udp_port_scan|ping_sweep_scan|tcp_syn
_flood|
_storm|
tack|
udp_flood|ping_flood|icmp_unreachable
smurf_broadcast_attack|smurf_storm_at
fraggle_broadcast_attack|
fraggle_storm_attack|land_attack}>]
where
signature
The name of the signature
OPTIONAL
EXAMPLE:
=>ids signature list signature fragment_sweep
signature parser
-------------------------------------------------------------------------------------
hits action
state
fragment_sweep
=>
fragment
0 log
enabled
E-DOC-CTC-20061027-0003 v2.0
404
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids signature modify
Modify the states of the signatures.
SYNTAX
ids signature modify
[signature = <fragment_sweep|
zero-length_fragment_size|
small_fragment_size|
fragment_size_overrun|
fragment_overlap|
fragment_out-of-order|
ip_protocol_scan|
tcp_port_scan|tcp_syn_scan|
stealth_tcp_null_scan|
stealth_tcp_fin_scan|
stealth_tcp_xmas_scan|
stealth_tcp_full_xmas_scan|
stealth_tcp_vecna_scan|
stealth_tcp_syn-fin_scan|
udp_port_scan|ping_sweep_scan|
tcp_syn_flood|udp_flood|ping_flood|
icmp_unreachable_storm|
smurf_broadcast_attack|
smurf_storm_attack|
fraggle_broadcast_attack|
fraggle_storm_attack|land_attack}>]
state = <{disabled|enabled}>
where
signature
state
The name of the signature
The desired state of the signature.
REQUIRED
REQUIRED
EXAMPLE:
=>ids signature modify
[signature] = ip_protocol_scan
state = disabled
:ids signature modify signature=ip_protocol_scan state=disabled
=>
E-DOC-CTC-20061027-0003 v2.0
405
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids threshold clear
Reset the IDS thresholds to their default values.
SYNTAX:
ids threshold clear
EXAMPLE:
=>ids threshold list
index name
window
limit scaling
-----------------------------------------------------------------
1. ids scan
2. ids flood
20
2
10
1
1
1
20 enabled
100 disabled
300 enabled
200 disabled
200 disabled
200 disable
3. ids tcp rate
4. ids udp rate
5. ids icmp rate
6. ids ip rate
=>ids threshold clear
=>ids threshold list
index name
window
limit scaling
-----------------------------------------------------------------
1. ids scan
2. ids flood
3. ids tcp rate
4. ids udp rate
5. ids icmp rate
6. ids ip rate
20
2
1
1
1
20 enabled
100 disabled
200 disabled
200 disabled
200 disabled
200 disabled
1
=>
RELATED COMMANDS:
Display the IDS thresholds.
E-DOC-CTC-20061027-0003 v2.0
406
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids threshold list
Display the IDS thresholds.
SYNTAX:
ids threshold list
EXAMPLE:
=>ids threshold list
index name
window
limit scaling
-----------------------------------------------------------------
1. ids scan
2. ids flood
3. ids tcp rate
4. ids udp rate
5. ids icmp rate
6. ids ip rate
20
2
1
1
1
20 enabled
100 disabled
200 disabled
200 disabled
200 disabled
200 disabled
1
=>
RELATED COMMANDS:
Reset the IDS thresholds to their default values.
E-DOC-CTC-20061027-0003 v2.0
407
Download from Www.Somanuals.com. All Manuals Search And Download.
IDS Commands
ids threshold modify
Modify the IDS thresholds.
SYNTAX:
ids threshold modify
index = <number>
[window = <number>]
[limit = <number>]
[scaling = <{disabled | enabled}>]
where:
index
The index of the IDS threshold to be modified.
Tip Use the command :ids threshold listto obtain the indexes.
REQUIRED
window
limit
A number (of seconds).
Represents the time window of the threshold.
OPTIONAL
OPTIONAL
OPTIONAL
A number.
Represents the limit of the threshold.
scaling
Enable or disable scaling of the threshold window.
EXAMPLE:
=>ids threshold list
index name
window
limit scaling
-----------------------------------------------------------------
1. ids scan
2. ids flood
3. ids tcp rate
4. ids udp rate
5. ids icmp rate
6. ids ip rate
20
2
1
1
1
20 enabled
100 disabled
200 disabled
200 disabled
200 disabled
200 disabled
1
=>ids threshold modify index=3 window=10 limit=300 scaling=enabled
=>ids threshold list
index name
window
limit scaling
-----------------------------------------------------------------
1. ids scan
2. ids flood
3. ids tcp rate
4. ids udp rate
5. ids icmp rate
6. ids ip rate
20
2
10
1
1
1
20 enabled
100 disabled
300 enabled
200 disabled
200 disabled
200 disable
=>
RELATED COMMANDS:
Reset the IDS thresholds to their default values.
Display the IDS thresholds.
E-DOC-CTC-20061027-0003 v2.0
408
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
20 IGMP Commands
Introduction
This chapter describes the commands of the IGMPcommand group.
Contents
This chapter covers the following commands:
Flush the IGMP settings.
411
412
412
414
415
416
417
419
420
421
422
423
Show the IGMP groups.
Show the IGMP groups.
Show the configuration of the IGMP interfaces.
Clear IGMP statistics.
Print IGMP statistics.
Configure the IGMP proxy.
Flush all IGMP proxy settings and learned groups.
Show the learned groups on an IGMP proxy interface.
Configure an IGMP proxy interface.
Show the configuration of an IGMP proxy interface.
Show the IGMP proxy membership database (merge of all
learned groups.
Clear IGMP proxy statistics.
424
425
426
Print IGMP proxy statistics.
Modify IGMP proxy trace configuration.
E-DOC-CTC-20061027-0003 v2.0
409
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp host config
Display or modify global IGMP configuration.
SYNTAX:
igmp host config
where:
[requirera = <{disabled | enabled}>]
requirera
Enable or disable the router alert IP option check.
OPTIONAL
The default is disabled.
EXAMPLE:
=>igmp host confighostmgr list
Router alert IP option check : disabled
=>
RELATED COMMANDS:
Show the IGMP groups.
E-DOC-CTC-20061027-0003 v2.0
410
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp host list
Show the IGMP groups.
SYNTAX:
igmp host list
[intf = <string>]
[expand = <{disabled | enabled}>]
where:
intf
The IP interface name.
OPTIONAL
OPTIONAL
expand
Enable or disable expanded listing of IGMP groups.
The default is disabled.
EXAMPLE:
=>igmp host list
Interface
Group
Filter-Mode Source
4
4
lan1
lan1
224.0.0.103
239.255.255.250
EXCLUDE
EXCLUDE
none
none
=>
E-DOC-CTC-20061027-0003 v2.0
412
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp host ifconfig
Configure an IGMP interface.
SYNTAX:
igmp host ifconfig
intf = <string>
version = <{none |IGMPv1 |IGMPv2 |IGMPv3}>
where:
intf
The IP interface name.
REQUIRED
REQUIRED
version
The IGMP version of the IP interface.
Choose between:
>
>
>
>
IGMPv1
IGMPv2
IGMPv3
none
EXAMPLE:
=>igmp host ifconfig
intf = lan1
version = IGMPv1
:igmp host ifconfig intf=lan1 version=IGMPv1
=>
RELATED COMMANDS:
Show the configuration of the IGMP interfaces.
E-DOC-CTC-20061027-0003 v2.0
413
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp host iflist
Show the configuration of the IGMP interfaces.
SYNTAX:
igmp host iflist
where:
[expand = <{disabled | enabled}>]
expand
Enable or disable expanded listing of IGMP interfaces
configuration.
OPTIONAL
The default is disabled.
EXAMPLE:
=>igmp host iflist
Interface
Version
IGMPv3
IGMPv3
IGMPv3
0
loop
1
2
Internet
ISDN_backup
3
4
5
6
ISDN_backup_trigger
lan1
wan1
dmz1
IGMPv3
IGMPv3
IGMPv3
IGMPv3
IGMPv3
7
guest1
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
414
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp host debug stats
Print IGMP statistics.
SYNTAX:
igmp host debug stats
EXAMPLE:
=>igmp host debug stats
Total IGMP messages received
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
Too small IGMP messages received
Too long IGMP messages received
IGMP messages with bad checksum received
IGMP messages with bad TTL received
IGMP messages with no router alert IP option received
IGMPv1 membership queries received
IGMPv2 membership queries received
IGMPv3 membership queries received
IGMP bad queries received
IGMP failing membership queries
IGMPv1/v2 membership reports received
IGMPv1/v2 invalid membership reports received
IGMPv1/v2 membership reports received for our groups
IGMPv1/v2 membership reports transmitted
IGMPv3 membership reports transmitted
=>
RELATED COMMANDS:
Clear IGMP statistics.
E-DOC-CTC-20061027-0003 v2.0
416
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp proxy config
Configure the IGMP proxy.
SYNTAX:
igmp proxy config
[state = <{disabled | enabled}>]
[qi = <number{1-86400}>]
[qri = <number{1-86400}>]
[lmqi = <number{1-86400}>]
[rv = <number{2-10}>]
[requirera = <{disabled | enabled}>]
[localgroup = <{disabled | enabled}>]
where:
state
Enable or disable the IGMP proxy.
The default is enabled.
OPTIONAL
OPTIONAL
qi
A number between 1 and 86400.
Represents the interval in seconds between general queries sent
by the querier.
qri
lmqi
rv
A number between 1 and 86400.
Represents the maximum response time in seconds for an IGMP
client in reply to general queries.
OPTIONAL
OPTIONAL
OPTIONAL
A number between 1 and 86400.
Represents the maximum response time in seconds for an IGMP
client in reply to group specific queries.
A number between 2 and 10.
Represents the robustness variable, which allows tuning for
expected IGMP packet loss.
requirera
Enable or disable the router alert IP option check.
The default is disabled.
OPTIONAL
OPTIONAL
localgroup
Enable or disable the processing of a local multicast group in an
IGMP packet.
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
417
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
EXAMPLE:
=>igmp proxy config
IGMP proxy state
: disabled
Query Interval
: 0 days, 0:02:05
: 0 days, 0:00:10
: 0 days, 0:00:01
: 2
: disabled
: disabled
Query Response Interval
Last Member Query Interval
Robustness variable
Router alert IP option check
Process local multicast group
=>
RELATED COMMANDS:
Show the learned groups on an IGMP proxy interface.
E-DOC-CTC-20061027-0003 v2.0
418
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp proxy grouplist
Show the learned groups on an IGMP proxy interface.
SYNTAX:
igmp proxy grouplist
[intf = <string>]
[expand = <{disabled | enabled}>]
where:
intf
The name of the IGMP proxy interface to be listed.
OPTIONAL
OPTIONAL
expand
Enable or disable expanded listing of the learned groups on an
IGMP proxy interface.
The default is disabled.
RELATED COMMANDS:
Configure the IGMP proxy.
E-DOC-CTC-20061027-0003 v2.0
420
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp proxy ifconfig
Configure an IGMP proxy interface.
SYNTAX:
igmp proxy ifconfig
intf = <string>
[state = <{inactive | downstream | upstream}>]
[version = <{IGMPv1 | IGMPv2 | IGMPv3}>]
[fastleave = <{disabled | enabled}>]
where:
intf
The name of the IGMP proxy interface to be configured.
The state of the IGMP proxy interface.
Choose between:
REQUIRED
state
OPTIONAL
>
>
>
inactive
downstream
upstream
version
The IGMP version of the IGMP proxy interface.
Choose between:
OPTIONAL
>
>
>
>
IGMPv1
IGMPv2
IGMPv3
none
fastleave
Enable or disable the immediate deletion of a group when a
leave is received.
OPTIONAL
The default is disabled.
EXAMPLE:
=>igmp proxy ifconfig
intf = lan1
[state] = downstream
[version] = IGMPv3
[fastleave] = disabled
=>
RELATED COMMANDS:
Show the configuration of an IGMP proxy interface.
E-DOC-CTC-20061027-0003 v2.0
421
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp proxy iflist
Show the configuration of an IGMP proxy interface.
SYNTAX:
igmp proxy iflist
[expand = <{disabled | enabled}>]
where:
expand
Enable or disable expanded listing of IGMP proxy interface
OPTIONAL
configuration.
The default is disabled.
EXAMPLE:
=>igmp proxy iflist
Interface
State
Version
Querier
7
6
5
4
3
2
1
guest1
dmz1
wan1
lan1
ISDN_backup_trigger
ISDN_backup
Internet
inactive
inactive
inactive
downstream
inactive
inactive
inactive
-
-
-
-
-
-
-
-
-
-
-
-
-
-
=>
RELATED COMMANDS:
Configure an IGMP proxy interface.
E-DOC-CTC-20061027-0003 v2.0
422
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp proxy debug stats
Print IGMP proxy statistics.
SYNTAX:
igmp proxy debug stats
EXAMPLE:
=>igmp proxy debug stats
IGMP proxy statistics:
Total IGMP packets recv
Too short IGMP packets recv
IGMP packets with bad checksum recv
IGMP packets with bad ttl recv
IGMP packets with no route alert option recv
IGMPv1 queries recv
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
: 0
IGMPv2 queries recv
IGMPv3 queries recv
IGMP bad queries recv
IGMP queries fail
IGMPv1 reports recv
IGMPv2 reports recv
IGMPv3 reports recv
IGMP bad reports recv
IGMP leave reports recv
IGMP bad leave reports recv
IGMPv1 queries sent
IGMPv2 queries sent
IGMPv3 queries sent
IGMP query election switch
=>
RELATED COMMANDS:
Clear IGMP proxy statistics.
Modify IGMP proxy trace configuration.
E-DOC-CTC-20061027-0003 v2.0
425
Download from Www.Somanuals.com. All Manuals Search And Download.
IGMP Commands
igmp proxy debug traceconfig
Modify IGMP proxy trace configuration.
SYNTAX:
igmp proxy debug traceconfig [state = <{disabled | enabled}>]
where:
state
Enable or disable tracing.
OPTIONAL
The default is disabled.
RELATED COMMANDS:
Clear IGMP proxy statistics.
Print IGMP proxy statistics.
E-DOC-CTC-20061027-0003 v2.0
426
Download from Www.Somanuals.com. All Manuals Search And Download.
Interface Commands
interface list
Display interfaces.
SYNTAX:
interface list
[expand = <{disabled | enabled}>]
[reverse = <{disabled | enabled}>]
where:
expand
reverse
Enable or disable expanded listing of interfaces.
The default is disabled.
OPTIONAL
OPTIONAL
Enable or disable reverse listing (lower layer first instead of upper layer
first).
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
428
Download from Www.Somanuals.com. All Manuals Search And Download.
Interface Commands
EXAMPLE:
=>interface list
Name
Type
State
Use UL Interfaces
ethif1
ethif4
usbif1
RELAY
physical
physical
physical
eth
eth
atm
atm
eth
eth
connected
connected
connected
connected
connected
connected
connected
connected
connected
not-connected
not-connected
connected
1
1
1
1
1
1
1
0
0
1
0
0
bridge
bridge
bridge
Internet_ppp
eth0
bridge
atm_0_35
atm_8_35
ethoa_0_35
ethoa_8_35
Internet_ppp ppp
Internet
eth0
ethoa_0_35
ethoa_8_35
Internet
ip
ip
=>
=>interface list expand=enabled
Name
ethif1
Type
physical
State
connected
Use UL Interfaces
1 bridge
Flags....: INTERNAL
Phys.....: intf: 0 type eth speed: 100 Mbps
physical connected bridge
Flags....: INTERNAL
Phys.....: intf: 3 type eth speed: 100 Mbps
physical connected bridge
Flags....: INTERNAL
Phys.....: intf: 4 type usb speed: 12 Mbps
eth connected Internet_ppp
Flags....: INTERNAL DYNAMIC RELAY
Eth......: port: 65535 ip_cid: 200 arp_cid: 0
eth connected eth0
Flags....: DYNAMIC
Eth......: port: 0 ip_cid: 16385 arp_cid: 16386
ethif4
1
usbif1
1
RELAY
1
bridge
1
atm_0_35
atm_8_35
ethoa_0_35
ethoa_8_35
atm
Flags....:
connected
1
ethoa_0_35
Atm......: cid: 8196 atm_cid: 8196 llc_cid: 0 ppp_cid: 0
atm
Flags....:
Atm......: cid: 8198 atm_cid: 8198 llc_cid: 0 ppp_cid: 0
eth
Flags....:
connected
1
ethoa_8_35
connected
0
Eth......: port: 1 ip_cid: 16387 arp_cid: 16388
eth
connected
0
Flags....:
Eth......: port: 2 ip_cid: 16389 arp_cid: 16390
Internet_ppp ppp
Flags....:
Ppp......: cid: 0 ip_cid: 0
ip not-connected
Flags....: DYNAMIC
Ip.......: dest: Internet_ppp
not-connected
1
Internet
Internet
eth0
0
ip
connected
0
Flags....:
Ip.......: dest: bridge
=>
E-DOC-CTC-20061027-0003 v2.0
429
Download from Www.Somanuals.com. All Manuals Search And Download.
Interface Commands
E-DOC-CTC-20061027-0003 v2.0
430
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
22 IP Commands
This chapter describes the commands of the ipcommand group.
Contents
This chapter covers the following commands:
Assign an IP address to an IP interface.
Remove an IP address from an IP interface.
Display all the configured IP addresses.
Select and assign a link-local address to an autoIP interface.
Send a HTTP probe.
E-DOC-CTC-20061027-0003 v2.0
431
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
Send UDP packets.
Display IP statistics.
Display/modify the IP stack trace configuration.
E-DOC-CTC-20061027-0003 v2.0
432
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip arpadd
Add an entry to the ARP cache of a broadcast Internet Protocol (IP) interface.
SYNTAX:
ip arpadd
intf = <string>
ip = <ip-range>
[hwaddr = <hardware-address>]
where:
intf
ip
The IP interface name.
REQUIRED
REQUIRED
The IP address (or range) of the entry to be added to the Address
Resolution Protocol (ARP) cache.
hwaddr
The hardware address (for example the Ethernet MAC address) of the
entry to be added.
OPTIONAL
EXAMPLE:
=>ip arplist
Interface
eth0
IP-address
10.0.0.1
HW-address
00:10:a4:ad:32:cf STATIC
Type
2
=>ip arpadd intf=eth0 ip=10.0.0.2
=>ip arplist
Interface
IP-address
10.0.0.1
10.0.0.2
HW-address
00:10:a4:ad:32:cf STATIC
00:00:00:00:00:00 DYNAMIC
Type
2
2
eth0
eth0
=>ip arpadd intf=eth0 ip=10.0.0.3 hwaddr=00:a0:24:ae:66:e1
=>ip arplist
Interface
IP-address
10.0.0.1
10.0.0.2
10.0.0.3
HW-address
Type
2
eth0
eth0
eth0
00:10:a4:ad:32:cf STATIC
00:00:00:00:00:00 DYNAMIC
00:a0:24:ae:66:e1 STATIC
2
2
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
433
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip arpdelete
Delete an entry from the ARP cache.
SYNTAX:
ip arpdelete
intf = <string>
ip = <ip-range>
[hwaddr = <hardware-address>]
where:
intf
The IP interface name.
REQUIRED
REQUIRED
OPTIONAL
ip
The IP address (or range) of the entry to be deleted.
hwaddr
The hardware address (for example the Ethernet MAC address) of the
entry to be deleted.
EXAMPLE:
=>ip arplist
Interface
IP-address
10.0.0.1
10.0.0.2
10.0.0.3
HW-address
Type
2
2
2
eth0
eth0
eth0
00:10:a4:ad:32:cf STATIC
00:00:00:00:00:00 DYNAMIC
00:a0:24:ae:66:e1 STATIC
=>ip arpdelete intf=eth0 ip=10.0.0.3 hwaddr=00:a0:24:ae:66:e1
=>ip arplist
Interface
IP-address
10.0.0.1
10.0.0.2
HW-address
00:10:a4:ad:32:cf STATIC
00:00:00:00:00:00 DYNAMIC
Type
2
eth0
eth0
2
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
434
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip arplist
Display the ARP cache.
SYNTAX:
ip arplist
EXAMPLE:
=>ip arplist
Interface
IP-address
10.0.0.1
10.0.0.2
10.0.0.3
HW-address
Type
2
eth0
eth0
eth0
00:10:a4:ad:32:cf STATIC
00:00:00:00:00:00 DYNAMIC
00:a0:24:ae:66:e1 STATIC
2
2
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
435
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip config
Show/set global IP stack configuration options.
SYNTAX:
ip config
[forwarding = <{disabled | enabled}>]
[redirects = <{disabled | enabled}>]
[checkoptions = <{disabled|enabled|transparent}>]
[netbroadcasts = <{disabled | enabled}>]
[ttl = <number{0-255}>]
[defragmode = <{disabled | enabled}>]
[addrcheck = <{off | own | static | dynamic}>]
[mssclamping = <{disabled | enabled}>]
[natloopback = <{disabled|enabled}>]
[loadbalancing = <{disabled|roundrobin}>]
[bitrate-window(sec) = <number{10-3600}>]
[acceleration = <{disabled|enabled}>]
where:
forwarding
Disable or enable the IP routing functionality.
OPTIONAL
The default is enabled.
redirects
Disable or enable the sending of ICMP redirect messages.
A router can send a redirect message in case a shorter path than the
path followed is discovered.
OPTIONAL
The default is enabled (for security reasons).
checkoptions
netbroadcasts
Disallow/Allow packets with IP options.
The default is enabled.
OPTIONAL
OPTIONAL
Disable or enable net directed broadcasts.
The default is disabled.
In case netbroadcasts are allowed, no traces of netbroadcasts are
generated.
ttl
A number between 0 and 255.
OPTIONAL
OPTIONAL
Represents the default Time To Live (TTL) for locally generated IP
packets. This parameter determines the number of hop counts the IP
packet may pass before it is dropped.
By limiting the TTL, continuous circulation of IP packets on the
network without ever reaching a destination is avoided.
The default is 64.
defragmode
Disallow (disabled) or allow (enabled) defragmenting IP fragments.
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
436
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
addrcheck
Set the level of IP address checks.
Choose between:
OPTIONAL
>
off: No address checking is performed. For advanced users only;
in normal circumstances there should always be some kind of
address checking.
>
>
own: Minimum level of checking.
Only the address configuration on the Thomson ST is checked.
static: Checking of the address configuration of the Thomson ST
and also of traffic: addresses of incoming packets; this checking
is related to constants (for example an address may not be
entirely composed of one‘s or zero‘s).
>
dynamic: Besides the address configuration of the Thomson ST
itself, and besides the checking of traffic on a constants level,
additional checking is performed on the IP addresses that are
determined by the configuration, more specifically by the
network.
The default is dynamic.
mssclamping
Disable or enable mss clamping for low MTU interfaces.
Enabling mss clamping assures that the size of a TCP packet never
exceeds the available Maximum Transmission Unit (MTU) of the
outgoing interface.
OPTIONAL
OPTIONAL
The default is on.
Note It is recommended not to disable this parameter.
natloopback
Disable/Enable NAT loopback.
The default is enabled.
loadbalancing
Select loadbalancing mechanism
OPTIONAL
OPTIONAL
bitrate-
window(sec)
A number between 10 and 3600.
Set the window to calculate the bitrate (multiple of 10).
The default is 30.
acceleration
Disable/Enable IP acceleration
OPTIONAL
EXAMPLE:
=>ip config
Forwarding enabled
Sendredirects enabled
IP options enabled
NetBroadcasts disabled
Default TTL 64
Fraglimit 64 fragments
Fragcount currently 0 fragments
Defragment mode : enabled
Address checks : dynamic
Mss Clamping : enabled
NAT Loopback : enabled
Bitrate window (sec), multiple of 10 : 30
=>
E-DOC-CTC-20061027-0003 v2.0
437
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip flush
Flush all the static IP parameters.
Dynamic configurations (for example from PPP or CIP links) remain.
The flush command does not impact previously saved configurations.
i
The command :ip flushdeletes all local IP connectivity.
Do not use this command during an IP based local connection, for example a Telnet CLI session, or
web based CLI access.
!
SYNTAX:
ip flush
E-DOC-CTC-20061027-0003 v2.0
438
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ifadd
Create an IP interface.
SYNTAX:
ip ifadd
intf = <string>
dest = <string>
where:
intf
The name of the IP interface to be created.
An network interface name.
REQUIRED
REQUIRED
dest
EXAMPLE:
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
loop
local 65535 122062
72987
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
wan
wan
lan
1500 0
1500 0
1500 84105
123358
00:0e:50:0f:fc:2c
=>ip ifadd intf=myIPintf dest=RtPPPoE_eth
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
loop
local 65535 123966
75177
0
0
125262
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
DOWN
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
myIPintf
wan
wan
lan
wan
1500 0
1500 0
1500 86589
1500 0
00:0e:50:0f:fc:2c
00:0e:50:0f:fc:2c
4
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
439
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ifattach
Attach an IP interface.
SYNTAX:
ip ifattach
intf = <string>
where:
intf
The name of the IP interface to be attached.
REQUIRED
EXAMPLE:
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
4
loop
local 65535 123966
75177
0
0
125262
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
DOWN
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
myIPintf
wan
wan
lan
wan
1500 0
1500 0
1500 86589
1500 0
00:0e:50:0f:fc:2c
00:0e:50:0f:fc:2c
=>ip ifattach intf=myIPintf
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
loop
local 65535 123966
75177
0
0
125262
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
[UP]
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
myIPintf
wan
wan
lan
wan
1500 0
1500 0
1500 86589
1500 0
00:0e:50:0f:fc:2c
00:0e:50:0f:fc:2c
4
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
440
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ifconfig
Configure the parameters of an IP interface.
SYNTAX:
ip ifconfig
intf = <string>
[mtu = <number{68-65535}>]
[status = <{down | up}>]
[hwaddr = <hardware-address>]
[group = <string> or number]
[linksensing = <{disabled | enabled}>]
[primary = <{disabled | enabled}>]
[mcastpromisc = <{disabled|enabled}>]
where:
intf
The name of the IP interface to be configured.
REQUIRED
OPTIONAL
mtu
A number between 68 and 65535.
Represents the MTU (the maximum packet size (including IP
header)) to be used on this interface.
Note The default value depends on the connection and packet
service for which the interface was created.
status
The administrative state of the interface.
Choose between:
OPTIONAL
>
>
down
up.
hwaddr
group
The hardware address (for example the Ethernet MAC address) of
this IP interface.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
The group to which this interface belongs. Can be used for
firewalling, for example.
linksensing
primary
The IP interface's awareness of link state transitions.
The default is enabled.
Make the IP interface the primary interface (enabled) or not
(disabled).
The default is disabled.
mcastpromisc
Make the IP interface multicast promiscuous.
Choose between:
OPTIONAL
>
>
disabled
enabled
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
441
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
EXAMPLE:
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
4
loop
local 65535 123966
75177
0
0
125262
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
DOWN
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
myIPintf
wan
wan
lan
wan
1500 0
1500 0
1500 86589
1500 0
00:0e:50:0f:fc:2c
00:0e:50:0f:fc:2c
=>ip ifconfig
intf = myIPintf
[mtu] = 1500
[status] = up
[hwaddr] = 00:0e:50:0f:fc:2c
[group] = wan
[linksensing] = enabled
[primary] = enabled
:ip ifconfig intf=myIPintf
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
loop
local 65535 123966
75177
0
0
125262
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
[UP]
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
myIPintf
wan
wan
lan
wan
1500 0
1500 0
1500 86589
1500 0
00:0e:50:0f:fc:2c
00:0e:50:0f:fc:2c
4
=>
If the STATUS is shown between square brackets, then linksensing is disabled for that particular
interface.
i
E-DOC-CTC-20061027-0003 v2.0
442
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ifdelete
Delete an IP interface.
SYNTAX:
ip ifdelete
intf = <string>
where:
intf
The name of the IP interface to be deleted.
REQUIRED
EXAMPLE:
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
4
loop
local 65535 123966
75177
0
0
125262
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
[UP]
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
myIPintf
wan
wan
lan
wan
1500 0
1500 0
1500 86589
1500 0
00:0e:50:0f:fc:2c
00:0e:50:0f:fc:2c
=>ip ifdelete intf=myIPintf
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
loop
local 65535 123966
75177
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
wan
wan
lan
1500 0
1500 0
1500 86589
125262
00:0e:50:0f:fc:2c
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
443
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ifdetach
Detach an IP interface.
SYNTAX:
ip ifdetach
intf = <string>
where:
intf
The name of the IP interface to be detached.
REQUIRED
EXAMPLE:
=>ip iflist expand=enabled
Interface Group MTU
local 65535 130597
BRHW-address : ff:ff:ff:ff:ff:ff
RX
TX
82240
TX-Drop Status HW-address
0
loop
0
[UP]
00:0e:50:0f:fc:2c
RX unicastpkts: 1304
brcastpkts : 0
brcastpkts : 0
Admin State: UP
: ARP BROADCAST ARPTABLE LOOP MULTICAST INTERNAL
TX unicastpkts: 1994
droppkts:0
Oper state
Flags
: UP
...
4
myIPintf
wan
1500 0
0
0
DOWN
00:0e:50:0f:fc:2c
BRHW-address : ff:ff:ff:ff:ff:ff
RX unicastpkts: 0
TX unicastpkts: 0
brcastpkts : 0
brcastpkts : 0
Admin State: UP
: PRIMARY ARP BROADCAST BOUND ARPTABLE MULTICAST LINKSENSING STATIC
droppkts:0
Oper state
Flags
: DOWN
=>ip ifdetach intf=myIPintf
=>ip iflist expand=enabled
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
loop
local 65535 133683
83949
0
[UP]
00:0e:50:0f:fc:2c
BRHW-address : ff:ff:ff:ff:ff:ff
RX unicastpkts: 1332
brcastpkts : 0
brcastpkts : 0
Admin State: UP
: ARP BROADCAST ARPTABLE LOOP MULTICAST INTERNAL
TX unicastpkts: 2036
droppkts:0
Oper state
Flags
: UP
...
4
myIPintf
wan
1500 0
0
0
DOWN
00:0e:50:0f:fc:2c
BRHW-address : ff:ff:ff:ff:ff:ff
RX unicastpkts: 0
TX unicastpkts: 0
brcastpkts : 0
brcastpkts : 0
Admin State: DOWN
droppkts:0
Oper state
Flags
: DOWN
: PRIMARY ARP BROADCAST ARPTABLE MULTICAST LINKSENSING STATIC
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
444
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip iflist
Display all the IP interfaces.
SYNTAX:
ip iflist
[expand = <{disabled | enabled}>]
[string = <string>]
[beginstring = <string>]
where:
expand
Enable or disable expanded listing.
OPTIONAL
The default is disabled.
string
String matching conditions
Bginstring matching conditions
OPTIONAL
OPTIONAL
beginstring
EXAMPLE:
=>ip iflist
Interface
Group MTU
RX
TX
TX-Drop Status HW-address
0
1
2
3
loop
local 65535 123966
75177
0
0
125262
0
0
0
0
0
0
[UP]
DOWN
DOWN
[UP]
[UP]
00:0e:50:0f:fc:2c
Internet
RtPPPoE_ppp
LocalNetwork
myIPintf
wan
wan
lan
wan
1500 0
1500 0
1500 86589
1500 0
00:0e:50:0f:fc:2c
00:0e:50:0f:fc:2c
4
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
445
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ifwait
Wait for a status change of an IP interface.
SYNTAX:
ip ifwait
intf = <string>
[timeout = <number{1-600000}>]
[adminstatus = <{down | up}>]
[operstatus = <{down | up}>]
[linkstatus = <{down | up}>]
where:
intf
The IP interface name.
REQUIRED
OPTIONAL
timeout
A number between 1 and 600000 (seconds).
Represents the timeout.
adminstatus
operstatus
linkstatus
The administrative state of the interface.
Choose between:
OPTIONAL
OPTIONAL
OPTIONAL
>
>
down
up.
The operational state of the interface.
Choose between:
>
>
down
up.
The link state of the interface.
Choose between:
>
>
down
up.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
446
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ipadd
Assign an IP address to an IP interface.
SYNTAX:
ip ipadd
intf = <string>
addr = <ip-address>
[netmask = <ip-mask(dotted or cidr)>]
[pointopoint = <ip-address>]
[addroute = <{disabled | enabled}>]
where:
intf
The IP interface name.
REQUIRED
REQUIRED
OPTIONAL
OPTIONAL
addr
The new IP address to be added.
netmask
The subnetmask associated with this address.
The remote IP address in case of a dedicated point-to-point link.
pointopoi
nt
addroute
Add typical net/subnet routes automatically according to the default (or
specified) subnet mask (enabled) or not (disabled).
The default is disabled.
OPTIONAL
EXAMPLE:
=>ip iplist
Interface
Type
IP-address
10.0.0.138
169.254.141.11
127.0.0.1
Point-to-point/Mask
255.255.255.0
255.255.0.0
1
1
0
eth0
eth0
loop
Ethernet
Ethernet
Ethernet
255.0.0.0
=>ip ipadd intf=eth0 addr=10.0.0.2/24 addroute=enabled
=>ip iplist
Interface
Type
IP-address
10.0.0.2
10.0.0.138
169.254.141.11
127.0.0.1
Point-to-point/Mask
255.255.255.0
255.255.255.0
255.255.0.0
1
eth0
eth0
eth0
loop
Ethernet
Ethernet
Ethernet
Ethernet
1
1
0
255.0.0.0
=>
RELATED COMMANDS:
Remove an IP address from an IP interface.
Display all the configured IP addresses.
E-DOC-CTC-20061027-0003 v2.0
447
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ipconfig
Modify an IP address configuration.
SYNTAX:
ip ipconfig
addr = <ip-address>
[preferred = <{disabled | enabled}>]
[primary = <{disabled | enabled}>]
where:
addr
The IP address to be configured.
REQUIRED
OPTIONAL
preferred
Make this IP address the preferred address for that subnet (enabled) or
not (disabled).
The default is disabled.
primary
Make this IP address the primary address for the interface (enabled) or
OPTIONAL
not (disabled).
The default is disabled.
EXAMPLE:
=>ip iplist
Interface
Type
IP-address
10.0.0.138
169.254.141.11
127.0.0.1
Point-to-point/Mask
255.255.255.0
255.255.0.0
1
1
0
eth0
eth0
loop
Ethernet
Ethernet
Ethernet
255.0.0.0
=>ip ipconfig addr=169.254.141.11 preferred=enabled primary=enabled
=>ip iplist
Interface
Type
IP-address
10.0.0.138
*169.254.141.11
127.0.0.1
Point-to-point/Mask
255.255.255.0
255.255.0.0
1
eth0
eth0
loop
Ethernet
Ethernet
Ethernet
1
0
255.0.0.0
=>
The primary IP address is marked with “*” in the list.
i
E-DOC-CTC-20061027-0003 v2.0
448
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip ipdelete
Remove an IP address from an IP interface.
SYNTAX:
ip ipdelete
addr = <ip-address>
where:
addr
The IP address to be deleted.
REQUIRED
EXAMPLE:
=>ip iplist
Interface
Type
IP-address
10.0.0.2
10.0.0.138
169.254.141.11
127.0.0.1
Point-to-point/Mask
255.255.255.0
255.255.255.0
255.255.0.0
1
1
1
0
eth0
eth0
eth0
loop
Ethernet
Ethernet
Ethernet
Ethernet
255.0.0.0
=>ip ipdelete addr=10.0.0.2
=>ip iplist
Interface
Type
IP-address
10.0.0.138
169.254.141.11
127.0.0.1
Point-to-point/Mask
255.255.255.0
255.255.0.0
1
1
0
eth0
eth0
loop
Ethernet
Ethernet
Ethernet
255.0.0.0
=>
RELATED COMMANDS:
Assign an IP address to an IP interface.
Display all the configured IP addresses.
E-DOC-CTC-20061027-0003 v2.0
449
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip iplist
Display all the configured IP addresses.
SYNTAX:
ip iplist
EXAMPLE:
=>ip iplist
Interface
Type
IP-address
10.0.0.138
*192.168.1.254
127.0.0.1
Point-to-point/Mask
255.255.255.0
255.255.255.0
2
LocalNetwork
Ethernet
Ethernet
Ethernet
2
0
LocalNetwork
loop
255.255.255.255
=>
RELATED COMMANDS:
Assign an IP address to an IP interface.
Remove an IP address from an IP interface.
E-DOC-CTC-20061027-0003 v2.0
450
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip mcast rtadd
Add a multicast route to the multicast routing table.
SYNTAX:
ip mcast rtadd
srcintf = <string>
[src = <ip-address>]
grp = <ip-address>
dstintf = <string>
[ttl = <number{1-255}>]
[ttlincr = {disabled | enabled}]
where:
srcintf
The source IP interface.
REQUIRED
OPTIONAL
REQUIRED
REQUIRED
OPTIONAL
OPTIONAL
src
The source IP address.
grp
The multicast group IP address.
The destination IP interface.
dstintf
ttl
The time-to-live for that destination IP interface.
Increment TTL before packet is send.
ttlincr
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
451
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip mcast rtdelete
Delete a multicast route from the multicast routing table.
SYNTAX:
ip mcast rtdelete
srcintf = <string>
[src = <ip-address>]
grp = <ip-address>
dstintf = <string>
where:
srcintf
src
The source IP interface.
The source IP address.
REQUIRED
OPTIONAL
REQUIRED
REQUIRED
grp
The multicast group IP address.
The destination IP interface.
dstintf
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
452
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip mcast rtlist
Display the multicast routing table.
SYNTAX:
ip mcast rtlist
where:
expand
[expand = <{disabled | enabled}>}]
Enable or disable expanded listing.
The default is disabled.
OPTIONAL
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
453
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip rtadd
Add a route to the routing table.
SYNTAX:
ip rtadd
dst = <ip-address>
[dstmsk = <ip-mask(dotted or cidr)>]
[label = <string>]
[gateway = <ip-address>]
[intf = <string>]
[srcintf = <string>]
[metric = <number{0-255}>]
where:
dst
The destination IP address(es) for this route.
REQUIRED
Note Supports ip/mask notation.
The destination IP address mask.
The name of the label.
dstmsk
OPTIONAL
OPTIONAL
OPTIONAL
label
gateway
The IP address of the next hop (direct connected gateway or extended
route).
Note The parameters gateway and intf are mutually exclusive.
Only for special interface routes: the outgoing IP interface name.
Note The parameters gateway and intf are mutually exclusive.
Use this interface for source address selection.
intf
OPTIONAL
srcintf
metric
OPTIONAL
OPTIONAL
The metric for this route (weight factor).
The lower the metric, the higher the weight.
The default is 0.
E-DOC-CTC-20061027-0003 v2.0
455
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
EXAMPLE:
=>ip rtlist
Destination Label
Gateway
10.0.0.140
10.0.0.140
127.0.0.1
Intf Mtrc Status
10.0.0.0/24
10.0.0.140/32
127.0.0.1/32
eth0
eth0
loop
0 [UP]
0 [UP]
0 [UP]
=>ip rtadd dst=10.10.0.0/24 label=Interactive gateway=10.0.0.140
=>ip rtlist
Destination Label
10.0.0.0/24
10.10.0.0/24 Interactive
10.0.0.140/32
Gateway
10.0.0.140
10.0.0.140
10.0.0.140
127.0.0.1
Intf Mtrc Status
eth0
eth0
eth0
loop
0 [UP]
0 [UP]
0 [UP]
0 [UP]
127.0.0.1/32
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
456
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip rtdelete
Delete a route from the routing table.
SYNTAX:
ip rtdelete
dst = <ip-address>
[dstmsk = <ip-mask(dotted or cidr)>]
[label = <string>]
[gateway = <ip-address>]
[intf = <string>]
where:
dst
The destination IP address(es) for this route.
REQUIRED
Note Supports cidr notation.
dstmsk
The destination IP address mask.
OPTIONAL
OPTIONAL
OPTIONAL
label
The name of the label.
gateway
The IP address of the next hop. The next hop must be directly connected.
Note The parameters gateway and intf are mutually exclusive.
Only for special interface routes: the outgoing IP interface name.
Note The parameters gateway and intf are mutually exclusive.
intf
OPTIONAL
EXAMPLE:
=>ip rtlist
Destination Label
Gateway
10.0.0.140
10.0.0.140
10.0.0.140
127.0.0.1
Intf Mtrc Status
10.0.0.0/24
10.10.0.0/24 Interactive
10.0.0.140/32
eth0
eth0
eth0
loop
0 [UP]
0 [UP]
0 [UP]
0 [UP]
127.0.0.1/32
=>ip rtdelete dst=10.10.0.0/24 label=Interactive gateway=10.0.0.140
=>ip rtlist
Destination Label
10.0.0.0/24
10.0.0.140/32
127.0.0.1/32
Gateway
10.0.0.140
10.0.0.140
127.0.0.1
Intf Mtrc Status
eth0
eth0
loop
0 [UP]
0 [UP]
0 [UP]
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
457
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip rtlist
Display the routing table.
SYNTAX:
ip rtlist
where:
expand
[expand = <{disabled | enabled}>]
Enable or disable expanded listing.
The default is disabled.
OPTIONAL
EXAMPLE:
=>ip rtlist
Destination Label
Gateway Interface
127.0.0.1 loop
127.0.0.1 loop
Metric Status
10.0.0.138/32
127.0.0.1/32
10.0.0.0/24
0
0
0
[UP]
[UP]
[UP]
10.0.0.138 eth0
=>ip rtlist expand=enabled
Destination Label
10.0.0.138/
Gateway Interface
Metric Status Source-selection
32
127.0.0.1 loop
0
0
0
[UP]
[UP]
[UP]
default
127.0.0.1
127.0.0.1
10.0.0.138
127.0.0.1/
10.0.0.0/
32
127.0.0.1 loop
10.0.0.138 eth0
default
default
24
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
458
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip auto ifadd
Create an autoIP interface.
SYNTAX:
ip auto ifadd
intf = <string>
[addr = <ip-address>]
where:
intf
The name of the IP interface for which a link-local address has to be
allocated.
REQUIRED
OPTIONAL
dest
The preferred link-local IP address.
EXAMPLE:
=>ip auto ifadd intf=eth0
=> ip auto iflist
eth0 : [INIT] 0.0.0.0
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 0
collisions = 0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
460
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip auto ifattach
Select and assign a link-local address to an autoIP interface.
SYNTAX:
ip auto ifattach
intf = <string>
where:
intf
The name of the autoIP interface for which a link-local address has to be
attached.
REQUIRED
EXAMPLE:
=> ip auto iflist
ipsec0 : [INIT] 0.0.0.0
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 0
collisions = 0
=>ip auto ifattach intf=ipsec0
=> ip auto iflist
ipsec0
: [SELECTING] 169.254.80.236
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 2
collisions = 0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
461
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip auto ifconfig
Configure an autoIP interface.
SYNTAX:
ip auto ifconfig
intf = <string>
[addr = <ip-address>]
[poolstart = <ip-address>]
[poolend = <ip-address>]
[netmask = <ip-mask(dotted or cidr)>]
[claim = <number{0-65535}>]
[defence = <number{0-65535}>]
[probe = <number{0-65535}>]
[interval = <number{1-65535}>]
where:
intf
The name of the autoIP interface to be configured.
The preferred link-local IP address.
REQUIRED
OPTIONAL
OPTIONAL
addr
poolstart
The start IP address of the link-local address pool.
The default is 169.254.1.1.
poolend
netmask
claim
The end IP address of the link-local address pool.
The default is 169.254.254.254.
OPTIONAL
OPTIONAL
OPTIONAL
The netmask of the link-local IP address pool.
The default is 16.
A number between 0 and 65535.
Represents the number of link-local address selection retries before
giving up.
The default is 10.
defence
probe
A number between 0 and 65535.
Represents the number of times the link-local address is defended before
releasing the address.
OPTIONAL
OPTIONAL
OPTIONAL
The default is 5.
A number between 0 and 65535.
Represents the number of ARP probes to be sent before accepting a link-
local address.
The default is 4.
interval
A number between 1 and 65535 (seconds).
Represents the time interval between two ARP probe transmissions.
The default is 2.
E-DOC-CTC-20061027-0003 v2.0
462
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
EXAMPLE:
=> ip auto iflist
eth0
: [INIT] 0.0.0.0
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 0
collisions = 0
=>ip auto ifconfig intf=ipsec0 claim=5 probe=5
=> ip auto iflist
ipsec0
: [INIT] 0.0.0.0
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 5 defence : 5 probe : 5 interval : 2 (sec)
probes sent = 0
collisions = 0
=>
E-DOC-CTC-20061027-0003 v2.0
463
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip auto ifdelete
Delete an existing autoIP interface.
SYNTAX:
ip auto ifdelete
intf = <string>
where:
intf
The name of the IP interface to be deleted.
REQUIRED
EXAMPLE:
=>ip auto iflist
ipsec0 : [SELECTING] 169.254.80.236
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 2
collisions = 0
=>ip auto ifdelete intf=ipsec0
=>ip auto iflist
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
464
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip auto ifdetach
Release the link-local address for the given autoIP interface.
SYNTAX:
ip auto ifdetach
intf = <string>
where:
intf
The name of the autoIP interface for which a link-local address has to be
detached.
REQUIRED
EXAMPLE:
=>ip auto iflist
ipsec0 : [SELECTING] 169.254.80.236
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 2
collisions = 0
=>ip auto ifdetach intf=ipsec0
=>ip auto iflist
ipsec0
: [INIT] 169.254.80.236
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 0
collisions = 0
=>
RELATED COMMANDS:
Select and assign a link-local address to an autoIP interface.
E-DOC-CTC-20061027-0003 v2.0
465
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip auto iflist
Display the autoIP interfaces.
SYNTAX:
ip auto iflist
[intf = <string>]
where:
intf
The name of the autoIP interface to be listed.
OPTIONAL
Note If not specified, all the autoIP interfaces are shown.
EXAMPLE:
=>ip auto iflist
eth0
: [CLAIMED] 169.254.138.1
poolstart = 169.254.1.1 poolend = 169.254.254.254 netmask = 255.255.0.0
claim : 10 defence : 5 probe : 4 interval : 2 (sec)
probes sent = 2
collisions = 0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
466
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip debug httpprobe
Send a HTTP probe.
This HTTP probe will measure the Round Trip Time (RTT) taken to connect and access data from a HTTP
server.
SYNTAX:
ip debug httpprobe
url = <string>
[version = <{1.0 | 1.1}>]
where:
url
The Uniform Resource Locator (URL) identifying the HTTP server.
REQUIRED
OPTIONAL
version
The version of the HTTP server.
The default is 1.0.
EXAMPLE:
The first example shows the measured time for a file that was downloaded:
=>ip httpprobe url=http://download.winzip.com/wzipse22.exe
DNS Lookup-RTT
TCP Connect-RTT
= 19 ms
= 20 ms
HTTP transaction-RTT = 18772 ms
Total RTT
PageSize
Download speed
=>
= 18811 ms
= 385712 Bytes
= 20.54 KByte/s
If the URL of a normal HTML page is used the figures are not so relevant, as shown in the example below:
=>ip httpprobe url=http://www.google.be
DNS Lookup-RTT
TCP Connect-RTT
= 19 ms
= 75 ms
HTTP transaction-RTT = 401 ms
Total RTT
PageSize
=>
= 495 ms
= 3448 Bytes
DESCRIPTION:
>
>
>
RTT taken to perform domain name lookup.
RTT taken to perform a TCP connect to the HTTP Server.
RTT taken to send a request and get a response back from the HTTP Server (the probe retrieves the base
HTML page only as body, and does not request hyperlinks within this page).
The SpeedTouch will send the HTTP request, receive the reply, and report the RTT statistics (including the size
of the page returned).
E-DOC-CTC-20061027-0003 v2.0
467
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip debug sendto
Send UDP packets.
SYNTAX:
ip debug sendto
addr = <ip-address>
[count = <number{1-1000000}>]
[size = <number{0-20000}>]
[interval = <number{1-1000000}>]
[listen = <{disabled | enabled}>]
[dffield = <{disabled | enabled}>]
[srcaddr = <ip-address>]
[srcport = <number{1-65535}>]
dstport = <number{1-65535}>
[dstintf = <string>]
where:
addr
The destination IP address.
A number between 1 and 1000000.
REQUIRED
OPTIONAL
count
Represents the number of UDP packets to send.
The default is 1.
size
A number between 0 and 20000 (bytes).
Represents the size of the ping packet(s).
The default is 1.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
interval
listen
dffield
A number between 1 and 10000000 (milliseconds).
Represents the intermediate interval between two sent UDP packets.
The default is 100.
Listen for incoming ICMP packets (enabled) or only send ICMP packets
(disabled).
The default is disabled.
Enable or disable setting of the don’t fragment flag in the IP headers of
the ping.
srcaddr
srcport
dstport
dstintf
The IP source address to use.
OPTIONAL
OPTIONAL
REQUIRED
OPTIONAL
The UDP source port number to use.
The UDP destination port number to send to.
The IP interface name.
By specifying the destination interface with the dstintf parameter, a direct
send is performed instead of a routed send. This means that the statefull
firewall will be bypassed for the outbound packet. As a result, the
returning icmp packet can not be associated with an existing udp
connection (because there isn’t any) and is legally dropped by the
firewall. To prevent this packet from being dropped, disable the
ICMPchecks and UDPchecks in the firewall configuration.
E-DOC-CTC-20061027-0003 v2.0
468
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
EXAMPLE:
=>ip debug sendto addr=10.0.0.148 listen=on srcport=19 dstport=1025
=>ip debug sendto addr=10.0.0.148 listen=on srcport=19 dstport=1025
1 bytes from 10.0.0.148:1025
41
A
=>ip debug sendto addr=10.0.0.148 count=3 listen=on srcport=19 dstport=1025
1 bytes from 10.0.0.148:1025
41
A
A
A
1 bytes from 10.0.0.148:1025
41
1 bytes from 10.0.0.148:1025
41
=>
E-DOC-CTC-20061027-0003 v2.0
469
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip debug stats
Display IP statistics.
SYNTAX:
ip debug stats
EXAMPLE:
=>ip debug stats
Total datagrams received
IP header errors
: 8599
: 0
Datagrams forwarded
: 23
: 3
: 0
Datagram forwarding errors
Datagram forwarding resource errors
Total Fragments received
: 0
Fragments dropped due to resources or timeouts
Datagrams reassembled
: 0
: 0
Datagrams fragmented successfully
Datagram fragmentation errors
Total Datagram fragments created successfully
=>
: 0
: 0
: 0
E-DOC-CTC-20061027-0003 v2.0
470
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
ip debug traceconfig
Display/modify the IP stack trace configuration.
SYNTAX:
ip debug traceconfig [input = <{none | label | -telnet | -host |
-broadcast | all}>]
[forward = <{none | label | -telnet | -host |
-broadcast | all}>]
[output = <{none | label | -telnet | -host |
-broadcast | all}>]
[drop = <{none | label | -telnet | -host |
-broadcast | all}>]
[path = <{none | label | -telnet | -host |
-broadcast | all}>]
[mode = <{line | dump}>]
[arp = <{none | all}>]
where:
input
Define the input packets that will be traced.
The default is none.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
forward
output
drop
Define the forward packets that will be traced.
The default is none.
Define the output packets that will be traced.
The default is none.
Define the packet drops that will be traced.
The default is all.
path
Define the packet that will be path-traced.
The default is none.
mode
Select the packet dump method.
Choose between:
>
>
line:
dump: .
The default is line.
arp
Define the ARP packets that will be traced.
OPTIONAL
The default is none.
E-DOC-CTC-20061027-0003 v2.0
471
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Commands
EXAMPLE:
=>ip debug traceconfig
Input traces : none
Forward traces : none
Output traces : none
Drop traces
Path traces
Trace mode
ARP traces
=>
: all
: none
: line
: none
EXAMPLE:
=>ip debug traceroute addr = 192.193.195.250 count=3 size=1 interval=1000 maxhops=30 dstport=
33433
maxfail=5 type=icmp utime=yes
:ip debug traceroute addr=192.193.195.250
ttl=1
192.193.195.250 676 us 1351 us 648 us
=>
E-DOC-CTC-20061027-0003 v2.0
472
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
23 IPQoS Commands
Introduction
This chapter describes the commands of the ipqoscommand group.
Contents
This chapter covers the following commands:
Configure IPQoS for a given destination interface for the IPQoS
queues instantiation.
E-DOC-CTC-20061027-0003 v2.0
473
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos config
Configure IPQoS for a given destination interface for the IPQoS queues instantiation.
When enabling or disabling IPQoS, take the following into account:
i
>
>
if the WAN interface (for example PPPoA, IP oA,...) is detached at the time of enabling/disabling
IPQoS, then the WAN interface has to be attached in order for the enabling/disabling of IPQoS to
take effect.
if the WAN interface is attached at the time of enabling/disabling IPQoS, then the WAN interface
has to be detached and then re-attached in order for the enabling/disabling of IPQoS to take
effect.
SYNTAX:
ipqos config
dest = <string>
[state = <{disabled | enabled}>]
[discard = <{tail | early}>]
[priority = <{wfq | strict | wrr}>]
[realtimerate = <number{1-100}>]
[burstsize = <number{1-128}>]
[weight1 = <number{1-97}>]
[weight2 = <number{1-97}>]
[weight3 = <number{1-97}>]
[weight4 = <number{1-97}>]
[maxpackets = <number{0-100}>]
[maxbytes = <number{0-128}>]
where:
dest
The destination interface for the IPQoS queues instantiation.
This is an ATM phonebook entry.
REQUIRED
OPTIONAL
OPTIONAL
state
Disable or enable IPQoS for the interface.
The default is disabled.
discard
Determines the packet discard strategy in case of congestion.
Choose between:
>
tail: Tail Drop: arriving packets will be dropped as soon as the
destination queue is in an overflow state.
>
early: Early Packet discard: arriving packets will be dropped early
according to the BLUE active queue management algorithm.
The default is early.
E-DOC-CTC-20061027-0003 v2.0
474
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
priority
Select the subqueue priority algorithm.
Choose between:
OPTIONAL
>
wfq: Weighted Fair Queuing (WFQ) is used for the four AF queues.
The realtime queue has priority over the WFQ queues, which have
priority over the best-effort queue.
>
>
strict: Priority queuing is used. Strict Priority scheduling is used
between all queues. The higher the queue number, the higher the
priority.
wrr: Weighted Round Robin (WRR) is used for the four AF queues.
Each queue is scheduled in turn, with a circular “round”
wrapping.
The default is wfq.
realtimerate
burstsize
A number between 1 and 100.
Represents a percentage of the interface bandwidth for rate-limiting of
the Real Time queue.
In case of congestion, the Real Time queue will only use this
percentage of the interface bandwidth when there is also traffic on the
other queues.
OPTIONAL
OPTIONAL
The default is 80.
A number between 1 and 64.
Represents the Real Time queue burstsize (in kilobytes) for rate
limiting.
The default is 2.
weight1
weight2
weight3
weight4
maxpackets
A number between 1 and 97.
Represents the weight of queue 1 used for WFQ or WRR.
The default is 25 (%).
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
A number between 1 and 97.
Represents the weight of queue 2 used for WFQ or WRR.
The default is 25 (%).
A number between 1 and 97.
Represents the weight of queue 3 used for WFQ or WRR.
The default is 25 (%).
A number between 1 and 97.
Represents the weight of queue 4 used for WFQ or WRR.
The default is 25 (%).
A number between 0 and 250.
Represents the maximum number of packets in all IPQoS queues
instantiated for one interface.
The default is 250.
maxbytes
A number between 0 and 128.
OPTIONAL
Represents the maximum size in kilobytes in all IPQoS queues
instantiated for one interface.
The default is 56.
E-DOC-CTC-20061027-0003 v2.0
475
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
EXAMPLE:
=>ipqos config dest=atm_pvc_8_35 state=enabled
=>ipqos list
Name
State
Discard Priority Size
Size
Rate Burst
Weights
(Packets) (KBytes) (%)
(KBytes) Weights
atm_pvc_0_35 disabled early
wfq
wfq
250
250
56
56
80%
80%
2
2
25% 25% 25% 25%
25% 25% 25% 25%
atm_pvc_8_35 enabled
=>
early
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
476
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos list
Display the IPQoS configuration.
SYNTAX:
ipqos list
EXAMPLE:
=>ipqos list
Name
State
Discard
Priority Size
Size
Rate Burst
Weights
(Packets) (KBytes) (%)
(KBytes) Weights
atm_pvc_0_35 disabled early
%
wfq
wfq
250
250
56
56
80%
80%
2
25% 25% 25% 25
atm_pvc_8_35 enabled
early
2
25% 25% 25% 25
%
=>
RELATED COMMANDS:
Configure IPQoS for a given destination interface for the IPQoS queues
instantiation.
E-DOC-CTC-20061027-0003 v2.0
477
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos ef config
Configure the IPQoS Expedited Forwarding (EF) timer for an interface.
SYNTAX:
ipqos ef config
intf = <string>
[state = <{disabled | enabled}>]
[timeout = <number{100-10000}>]
[mtu = <number{68-65535}>]
where:
intf
The name of the IP interface.
REQUIRED
OPTIONAL
state
Enable or disable the IPQoS EF timer for the interface.
The default is disabled.
timeout
mtu
A number between 100 and 10000 milliseconds.
Represents the timeout.
The default is 1000.
OPTIONAL
OPTIONAL
A number between 68 and 65535.
Represents the MTU of the IP interface in case of EF data.
The default is 1500.
EXAMPLE:
The example below shows the default configuration:
=>ipqos ef list
Interface State
Timeout
(ms)
1000
MTU
(bytes)
65535
1500
loop
disabled
Rt_PPPoA2 disabled
1000
eth0
disabled
1000
1500
=>ipqos ef config intf=Rt_PPPoA2 state=enabled
=>ipqos ef list
Interface State
Timeout
(ms)
1000
MTU
(bytes)
65535
1500
loop
disabled
Rt_PPPoA2 enabled
1000
eth0
=>
disabled
1000
1500
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
478
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos ef list
Display the IPQoS EF timers.
SYNTAX:
ipqos ef list
EXAMPLE:
=>ipqos ef list
Interface State
Timeout
MTU
(ms)
1000
1000
1000
(bytes)
65535
1500
loop
disabled
Rt_PPPoA2 enabled
eth0
=>
disabled
1500
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
479
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos ef stats
Display the IPQoS EF timer statistics.
SYNTAX:
ipqos ef stats
EXAMPLE:
=>ipqos ef stats
Interface State
Remain
(ms)
900
loop
active
Rt_PPPoA2 active
900
eth0
=>
disabled
0
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
480
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos queue clear
Clear the IPQoS statistics.
SYNTAX:
ipqos queue clear
EXAMPLE:
=>ipqos queue stats
Name Queue
# packets # packets # packets # packets # packets Marking
added
1240
0
0
234
0
marked
removed
1240
0
0
234
0
dropped
replaced
PVC_1 0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
2
3
4
5
1345
1345
=>ipqos queue clear
=>ipqos queue stats
Name Queue
# packets # packets # packets # packets # packets Marking
added
marked
removed
dropped
replaced
PVC_1 0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
2
3
4
5
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
481
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos queue config
Modify the IPQoS subqueue configuration.
SYNTAX:
ipqos queue config
dest = <string>
queue = <number{0-5}>
[propagate = <{disabled | enabled}>]
[ecnmarking = <{disabled | enabled}>]
[ackfiltering = <{disabled | enabled}>]
[maxpackets = <number{0-250}>]
[maxbytes = <number{0-128}>]
[respackets = <number{0-250}>]
[resbytes = <number{0-128}>]
[hold = <number>]
[markprob = <number{1-1000}>]
where:
dest
The destination interface for the IPQoS queues instantiation.
Typically, an ATM phonebook entry.
REQUIRED
OPTIONAL
queue
A number between 0 and 5.
Represents the number of the queue, where:
>
>
>
>
>
>
5 is the Real time queue
4 is the Assured Forwarding (AF) queue 4
3 is the AF queue 3
2 is the AF queue 2
1 is the AF queue 1
0 is the Best Effort queue.
propagate
Higher priority packets will be queued in a lower priority queue,
instead of being dropped, as soon as the destination queue is in
overflow state.
The packet will be put in a lower priority queue only once.
Choose between disabled or enabled.
OPTIONAL
OPTIONAL
The default is disabled.
Note The propagate flag for the lowest priority subqueue (the Best
Effort queue) has no meaning.
ecnmarking
Enable Explicit Congestion Notification (ECN) for IP packets in this
subqueue (enabled) or not (disabled).
The default is disabled.
ackfiltering
maxpackets
Enable filtering of TCP ACK packets (enabled) or not (disabled).
The default is disabled.
OPTIONAL
OPTIONAL
A number between 0 and 250.
Represents the maximum number of packets in this queue.
The default is 0 for the Real time queue and 100 for the other queues.
Note 0 means that a maximum size is not enforced.
E-DOC-CTC-20061027-0003 v2.0
482
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
maxbytes
A number between 0 and 128.
OPTIONAL
Represents the maximum size in kilobytes of this queue.
The default is 0 for the Real time queue and 20 for the other queues.
Note 0 means that a maximum size is not enforced.
respackets
resbytes
hold
A number between 0 and 250.
Represents the reserved number of packets in this queue.
The default is 30 for the Real time queue and 13 for the other queues.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
A number between 0 and 128
Represents the reserved size in kilobytes of this queue.
The default is 12 for the Real time queue and 4 for the other queues.
A number (of microseconds).
Represents the hold time in microseconds for early discard strategy.
The default is 50000.
markprob
A number between 1 and 1000.
Represents the maximum packet marking probability in parts per
mille for early discard strategy.
The default is 1000.
EXAMPLE:
=>ipqos queue list
Name
Queue
Propagate ECN
AckFilter Size
Size
Reserved Reserved
Holdtime Markprob
(Packets) (KBytes) (Packets) (KBytes)
(usecs)
atm_pvc_0_35 0
disabled disabled 100
20
20
20
20
20
0
13
13
13
13
13
30
13
13
13
13
13
30
4
50000
50000
50000
50000
50000
50000
1000
1
1000
2
1000
3
1000
4
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 0
disabled disabled 100
4
4
4
4
1000
5
1000
12
4
atm_pvc_8_35 0
20
20
20
20
20
0
50000
50000
50000
50000
50000
1000
1
1000
2
1000
3
1000
4
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 0
4
4
4
4
1000
5
12
50000
=>
1000
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
483
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos queue list
Display the IPQoS subqueue configuration.
SYNTAX:
ipqos queue list
[dest = <string}>]
where:
dest
The destination interface for the IPQoS queues instantiation.
This is an ATM phonebook entry.
OPTIONAL
Note If not specified, the IPQoS subqueue configuration for all the
interfaces will be shown.
EXAMPLE:
=>ipqos queue list
Name Queue
Propagate ECN
AckFilter Size
Size
Reserved Reserved Hold
time Markprob
(Packets) (KBytes) (Packets) (KBytes) (use
cs)
atm_pvc_0_35 0
disabled disabled 100
20
20
20
20
20
0
13
13
13
13
13
30
13
13
13
13
13
30
4
5000
5000
5000
5000
5000
5000
5000
5000
5000
5000
5000
5000
0
0
0
0
0
0
1000
1000
1000
1000
1000
1000
1
2
3
4
5
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 0
disabled disabled 100
4
4
4
4
12
4
atm_pvc_8_35 0
20
20
20
20
20
0
0
0
0
0
0
1000
1000
1000
1000
1000
1000
1
2
3
4
5
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 100
disabled disabled disabled 0
4
4
4
4
12
0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
484
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
ipqos queue stats
Show the IPQoS subqueue statistics.
SYNTAX:
ipqos queue stats
[dest = <string}>]
where:
dest
The destination interface for the IPQoS queues instantiation.
This is an ATM phonebook entry.
OPTIONAL
Note If not specified, the IPQoS subqueue statistics for all the
interfaces will be shown.
EXAMPLE:
=>ipqos queue stats
Name Queue # packets # packets # packets # packets # packets Marking
added
1240
0
0
234
0
marked
removed
1240
0
0
234
0
dropped
replaced
PVC_1 0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0%
0%
0%
0%
0%
0%
1
2
3
4
5
145
145
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
485
Download from Www.Somanuals.com. All Manuals Search And Download.
IPQoS Commands
E-DOC-CTC-20061027-0003 v2.0
486
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
24 Label Commands
Introduction
This chapter describes the commands of the labelcommand group.
Contents
This chapter covers the following commands:
Modify a label configuration.
Display a list of chains.
Clear the label rule statistics.
Display the label rule statistics.
Display or modify the rule trace configuration.
E-DOC-CTC-20061027-0003 v2.0
487
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label add
Create a new label.
SYNTAX:
label add
where:
name
name = <string>
The name of the label to be added.
REQUIRED
EXAMPLE:
=>label list
Name
DSCP
Class
overwrite dscp
Def
Ack
defclass
8
12
10
14
Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace
disabled disabled disabled tos 0
disabled disabled disabled tos 0
disabled disabled disabled tos 0
disabled disabled disabled tos 0
enabled enabled disabled tos 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
0
0
0
0
0
0
disabled
disabled
disabled
disabled
disabled
disabled
Interactive increase
Management increase
Video
VoIP
8
12
10
increase
overwrite 14
increase
default
default prioritize disabled disabled disabled tos 0
=>label add name=myLABEL
=>label list
Name
DSCP
Class
overwrite dscp
Def
Ack
defclass
8
12
10
14
Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace
disabled disabled disabled tos 0
disabled disabled disabled tos 0
disabled disabled disabled tos 0
disabled disabled disabled tos 0
enabled enabled disabled tos 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
0
0
0
0
0
0
0
disabled
disabled
disabled
disabled
disabled
disabled
disabled
Interactive increase
Management increase
Video
VoIP
default
myLABEL
=>
8
12
10
increase
overwrite 14
increase
ignore
default prioritize disabled disabled disabled tos 0
disabled disabled disabled tos 0
0
0
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
488
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label delete
Delete a label.
SYNTAX:
label delete
name = <string>
[force = <{disabled | enabled}>]
where:
name
force
The name of the label to be deleted.
REQUIRED
OPTIONAL
Force delete and cleanup references even when the label is still
in use (enabled) or not (disabled).
The default is disabled.
EXAMPLE:
=>label list
Name
DSCP
Class
overwrite dscp
Def
Ack
defclass
8
12
10
14
Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
enabled enabled disabled tos
0
0
0
0
0
0
0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
0
0
0
0
0
0
0
disabled
disabled
disabled
disabled
disabled
disabled
disabled
Interactive increase
Management increase
Video
VoIP
default
myLABEL
8
12
10
increase
overwrite 14
increase
ignore
default prioritize disabled disabled disabled tos
disabled disabled disabled tos
0
0
=>label delete name=myLABEL force=yes
=>label list
Name
DSCP
Class
overwrite dscp
Def
Ack
defclass
8
12
10
14
Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
enabled enabled disabled tos
0
0
0
0
0
0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
0
0
0
0
0
0
disabled
disabled
disabled
disabled
disabled
disabled
Interactive increase
Management increase
Video
VoIP
default
=>
8
12
10
increase
overwrite 14
increase
default prioritize disabled disabled disabled tos
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
489
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label list
Display the labels.
SYNTAX:
label list
where:
[name = <string>]
name
The name of the label to be displayed.
OPTIONAL
Note If not specified, all the labels will be displayed.
EXAMPLE:
=>label list
Name
DSCP
Class
overwrite dscp
Def
Ack
defclass
8
12
10
14
Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
enabled enabled disabled tos
0
0
0
0
0
0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
disabled 0
0
0
0
0
0
0
disabled
disabled
disabled
disabled
disabled
disabled
Interactive increase
Management increase
Video
VoIP
default
=>
8
12
10
increase
overwrite 14
increase
default prioritize disabled disabled disabled tos
=>label list name=Interactive
Name
Class
Def
8
Ack
8
Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace
Interactive increase
=>
disabled disabled disabled tos
0
disabled 0
0
disabled
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
491
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label modify
Modify a label configuration.
SYNTAX:
label modify
name = <string>
[classification = <{ignore | overwrite | increase}>]
[defclass = <number{0-15} | dscp | default>]
[ackclass = <number{0-15} | defclass | prioritize>]
[bidirectional = <{disabled | enabled}>]
[inheritance = <{disabled | enabled}>]
[tosmarking = <{disabled | enabled}>]
[tos = <number{0-255}>]
[dscp = <{DSCP name> | <number>}]
[precedence = <{IP precedence type> | <number>}]
[trace = <{disabled | enabled}>]
where:
name
The name of the label to be configured.
REQUIRED
OPTIONAL
classification
Select the method of classification, in other words, determine
what the Layer 3 class assignment must do with the priority of
the data packet (as set by Layer 2).
Choose between:
>
>
>
ignore: Ignore the class parameters defclass and ackclass,
but use the class as set by Layer 2 (VLAN user priority, ATM
QoS).
overwrite: Change the class to defclass and ackclass,
overwriting the value set by Layer 2 (VLAN user priority,
ATM QoS).
increase: Change the class according to defclass and
ackclass, but only if the defclass value is higher than the
class value already set by Layer 2.
The default is ignore.
Note The class as set by Layer 2 is derived from:
>
the VLAN user priority (in case of VLAN or priority
tagged frames)
>
the ATM PVC QoS class (in case the packet is
received from an ATM PVC).
For non-VLAN frames or non-PVC received data, Layer
2 sets the internal class (priority) to 4 by default.
defclass
The default priority class of the assigned connection.
Choose between:
OPTIONAL
>
>
>
A number between 0 and 15
dscp
default.
The default is 0.
E-DOC-CTC-20061027-0003 v2.0
492
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
ackclass
The priority class of the ACK segments of the TCP connection.
Choose between:
OPTIONAL
>
>
>
A number between 0 and 15
prioritize
defclass.
The default is 0.
bidirectional
inheritance
The label applies to the initiator stream, the returning stream
(the current connection) as well as to the child connections
(enabled) or not (disabled).
OPTIONAL
OPTIONAL
The default is disabled.
The label will be copied to all child connection streams in the
same direction (enabled) or not (disabled).
The default is disabled.
tosmarking
tos
Enable or disable tos marking.
The default is disabled.
OPTIONAL
OPTIONAL
A number between 0 and 255.
Represents the ToS specification in the IP packet (used for
tosmarking).
The default is 0.
Note The parameters tos, precedence and dscp are mutually
exclusive.
dscp
The DSCP in the IP packet (part of tos).
Select a DSCP (see “ Differentiated Services Code Point
(DSCP)” on page 753) or, alternatively, specify the number.
OPTIONAL
OPTIONAL
OPTIONAL
Note The parameters tos, precedence and dscp are mutually
exclusive.
precedence
trace
The precedence in the IP packet (part of tos).
alternatively, specify the number.
Note The parameters tos, precedence and dscp are mutually
exclusive.
Enable or disable IP tracing for this label.
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
493
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
EXAMPLE:
=>label list
Name
DSCP
Class
overwrite dscp
Def
Ack
defclass
8
12
10
14
Bidirect Inherit Tosmark Type Value
Use Trace
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
enabled enabled disabled tos
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
disabled
disabled
disabled
disabled
disabled
disabled
disabled
Interactive increase
Management increase
Video
VoIP
default
myLABEL
8
12
10
increase
overwrite 14
increase
ignore
default prioritize disabled disabled disabled tos
disabled disabled disabled tos
0
0
=>label modify name=myLABEL classification=increase defclass=7 ackclass=7 bidirectional=enabled
inheritance=enabled tosmarking=enabled tos=234 trace=enabled
=>label list
Name
DSCP
Class
overwrite dscp
Def
Ack
defclass
8
12
10
14
Bidirect Inherit Tosmark Type Value
Use Trace
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
disabled disabled disabled tos
enabled enabled disabled tos
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
disabled
disabled
disabled
disabled
disabled
disabled
Interactive increase
Management increase
Video
VoIP
default
myLABEL
=>
8
12
10
increase
overwrite 14
increase
increase
default prioritize disabled disabled disabled tos
enabled enabled enabled tos
7
7
234
0
0
enabled
E-DOC-CTC-20061027-0003 v2.0
494
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label chain add
Add a new label chain.
SYNTAX:
label chain add
chain = <string>
where:
chain
The name of the chain to be added.
REQUIRED
EXAMPLE:
=>label chain list
Chains
======
Name
Description
-------------------------------------------------
routing_labels
rt_user_labels
system
user
rt_default_labels
qos_labels
qos_user_labels
user
system
user
qos_default_labels
=>label chain add chain=myChain
=>label chain list
user
Chains
======
Name
Description
-------------------------------------------------
routing_labels
rt_user_labels
rt_default_labels
qos_labels
qos_user_labels
qos_default_labels
myChain
system
user
user
system
user
user
user
=>
RELATED COMMANDS:
Display a list of chains.
E-DOC-CTC-20061027-0003 v2.0
495
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label chain delete
Delete a label chain.
SYNTAX:
label chain delete
chain = <string>
where:
chain
The name of the chain to be deleted.
REQUIRED
EXAMPLE:
=>label chain list
Chains
======
Name
Description
-------------------------------------------------
routing_labels
rt_user_labels
rt_default_labels
qos_labels
qos_user_labels
qos_default_labels
myChain
system
user
user
system
user
user
user
=>label chain delete chain=myChain
=>label chain list
Chains
======
Name
Description
-------------------------------------------------
routing_labels
rt_user_labels
rt_default_labels
qos_labels
qos_user_labels
qos_default_labels
=>
system
user
user
system
user
user
RELATED COMMANDS:
Display a list of chains.
E-DOC-CTC-20061027-0003 v2.0
496
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label chain list
Display a list of chains.
SYNTAX:
label chain list
where:
[format = <{pretty | cli}>]
format
Select the output format of the list.
Choose between:
OPTIONAL
>
pretty: the configuration is shown as intuitive output in
clear text.
>
cli: the configuration is shown via the CLI commands
configuration.
The default is pretty.
EXAMPLE:
=>label chain list
Chains
======
Name
Description
-------------------------------------------------
routing_labels
rt_user_labels
rt_default_labels
qos_labels
qos_user_labels
qos_default_labels
system
user
user
system
user
user
=>label chain list format=cli
:label chain add chain=rt_user_labels
:label chain add chain=rt_default_labels
:label chain add chain=qos_user_labels
:label chain add chain=qos_default_labels
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
498
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule add
Add a label rule.
SYNTAX:
label rule add
chain = <chain name>
[index = <number>]
[name = <string>]
[clink = <chain name>]
[srcintf [!]= <string>]
[srcip [!]= <{ip address | private}>]
[dstip [!]= <{ip address | private}>]
[serv [!]= <{service name}>]
[log = <{disabled | enabled}>]
[state = <{disabled | enabled}>]
label = <string>
If a value is preceded by a “!”, it means NOT.
For example “srcintf=!wan” means “if srcintf is different from WAN”.
i
where:
chain
The name of the chain in which the rule must be inserted.
REQUIRED
OPTIONAL
index
The index number of the rule before which the new rule must
be added.
Tip
Use the command :label rule listto obtain the
index number of the applicable rule.
name
clink
srcintf
srcip
dstip
serv
The name of the new rule.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
The name of the chain to be parsed when this rule applies.
The name of the source interface expression.
The name of the source IP expression.
The name of the destination IP expression.
The name of the service expression.
log
Disable or enable logging when this rule applies.
The default is disabled.
state
label
Disable or enable this rule.
The default is enabled.
OPTIONAL
REQUIRED
Choose between:
>
>
>
None
link (when clink is used)
label name.
E-DOC-CTC-20061027-0003 v2.0
499
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
EXAMPLE:
=>label rule list
Rules (flags: C=Constant, D=Dynamic, E=Enable, L=Log)
=====
Chain
Nr. Flags Rule
---------------------------------------------------------------------------------------------
routing_labels
qos_labels
1
2
1
2
1
2
3
4
5
6
7
8
CDE
CDE
CDE
CDE
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
E
: link
: link
: link
: link
: VoIP
: VoIP
rt_user_labels
rt_default_labels
qos_user_labels
qos_default_labels
sip *.* > *.*
qos_default_labels
h323 *.* > *.*
telnet *.* > *.*
smtp *.* > *.*
imap4-ssl *.* > *.*
imap3 *.* > *.*
imap *.* > *.*
imaps *.* > *.*
pop3s *.* > *.*
pop3 *.* > *.*
pop2 *.* > *.*
httpproxy *.* > *.*
http *.* > *.*
https *.* > *.*
esp *.* > *.*
ah *.* > *.*
dns *.* > *.*
ike *.* > *.*
icmp *.* > *.*
rtsp *.* > *.*
igmp *.* > *.*
!wan.* > *.*
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Management
: Management
: Management
: Video
9
10
11
12
13
14
15
16
17
18
19
20
21
22
C E
C E
C E
: Video
: default
default
=>label rule add chain=myChain name=myRule dstip=150.150.150.150 serv=DiffServ log=enabled state=enabled
| label=myLABEL
=>label rule list
Rules (flags: C=Constant, D=Dynamic, E=Enable, L=Log)
=====
Chain
Nr. Flags Rule
--------------------------------------------------------------------------------------------------
routing_labels
qos_labels
1
2
1
2
1
2
3
4
5
6
7
8
CDE
CDE
CDE
CDE
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
C E
E
: link
: link
: link
: link
: VoIP
: VoIP
rt_user_labels
rt_default_labels
qos_user_labels
qos_default_labels
sip *.* > *.*
qos_default_labels
h323 *.* > *.*
telnet *.* > *.*
smtp *.* > *.*
imap4-ssl *.* > *.*
imap3 *.* > *.*
imap *.* > *.*
imaps *.* > *.*
pop3s *.* > *.*
pop3 *.* > *.*
pop2 *.* > *.*
httpproxy *.* > *.*
http *.* > *.*
https *.* > *.*
esp *.* > *.*
ah *.* > *.*
dns *.* > *.*
ike *.* > *.*
icmp *.* > *.*
rtsp *.* > *.*
igmp *.* > *.*
!wan.* > *.*
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Interactive
: Management
: Management
: Management
: Video
9
10
11
12
13
14
15
16
17
18
19
20
21
22
1
C E
C E
C E
C EL
: Video
: default
default
myRule
myChain
=>
: myLABEL DiffServ *.* > *.150.150.150.150
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
500
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
E-DOC-CTC-20061027-0003 v2.0
501
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule delete
Delete a label rule.
SYNTAX:
label rule delete
chain = <string>
index = <number>
where:
chain
index
The name of the chain in which a rule must be deleted.
The index number of the rule in the chain.
REQUIRED
REQUIRED
Tip
Use the command :label rule listto obtain the
index number of the applicable rule.
EXAMPLE:
=>label rule list
Rules (flags: C=Constant, D=Dynamic, E=Enable, L=Log)
=====
Chain
Nr. Flags Rule
--------------------------------------------------------------------------------------------------
routing_labels
qos_labels
1
2
1
2
1
2
3
CDE
CDE
CDE
CDE
C E
C E
C E
: link
: link
: link
: link
: VoIP
: VoIP
: Interactive
rt_user_labels
rt_default_labels
qos_user_labels
qos_default_labels
sip *.* > *.*
qos_default_labels
h323 *.* > *.*
telnet *.* > *.*
...
19
20
21
22
1
E
C E
C E
C E
C EL
: Management
: Video
: Video
icmp *.* > *.*
rtsp *.* > *.*
igmp *.* > *.*
!wan.* > *.*
default
myRule
: default
myChain
: myLABEL DiffServ *.* > *.150.150.150.150
=>label rule delete chain=myChain index=1
=>label rule list
Rules (flags: C=Constant, D=Dynamic, E=Enable, L=Log)
=====
Chain
Nr. Flags Rule
--------------------------------------------------------------------------------------------------
routing_labels
qos_labels
1
2
1
2
1
2
3
CDE
CDE
CDE
CDE
C E
C E
C E
: link
: link
: link
: link
: VoIP
: VoIP
: Interactive
rt_user_labels
rt_default_labels
qos_user_labels
qos_default_labels
sip *.* > *.*
qos_default_labels
h323 *.* > *.*
telnet *.* > *.*
...
=>
19
20
21
22
E
C E
C E
C E
: Management
: Video
: Video
icmp *.* > *.*
rtsp *.* > *.*
igmp *.* > *.*
!wan.* > *.*
default
: default
E-DOC-CTC-20061027-0003 v2.0
502
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
503
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule flush
Flush all label rules.
The chains themselves are not removed.
The flush command does not impact previously saved configurations.
i
SYNTAX:
label rule flush
where:
chain
[chain = <string>]
The name of the chain to be flushed.
OPTIONAL
Note If not specified, all the rules for all the chains are
flushed.
E-DOC-CTC-20061027-0003 v2.0
504
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule list
Display a list of label rules.
SYNTAX:
label rule list
[chain = <string>]
[format = <{pretty | cli}>]
[string = <string>]
[beginstring = <string>]
where:
chain
The name of the chain for which the rules must be listed.
OPTIONAL
OPTIONAL
Note If not specified, all rules for all chains are shown.
format
Select the output format of the list.
Choose between:
>
pretty: the configuration is shown as intuitive output in
clear text.
>
cli: the configuration is shown via the CLI commands
configuration.
The default is pretty.
string
String matching condition
Beginstring matching condition
OPTIONAL
OPTIONAL
beginstring
E-DOC-CTC-20061027-0003 v2.0
505
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
EXAMPLE:
=>label rule list format=cli
:label rule add chain=qos_default_labels index=1 serv=sip log=disabled state=enabled
label=VoIP
:label rule add chain=qos_default_labels index=2 serv=h323 log=disabled state=enabled
label=VoIP
:label rule add chain=qos_default_labels index=3 serv=telnet log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=4 serv=smtp log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=5 serv=imap4-ssl log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=6 serv=imap3 log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=7 serv=imap log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=8 serv=imaps log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=9 serv=pop3s log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=10 serv=pop3 log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=11 serv=pop2 log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=12 serv=httpproxy log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=13 serv=http log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=14 serv=https log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=15 serv=esp log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=16 serv=ah log=disabled state=enabled
label=Interactive
:label rule add chain=qos_default_labels index=17 serv=dns log=disabled state=enabled
label=Management
:label rule add chain=qos_default_labels index=18 serv=ike log=disabled state=enabled
label=Management
:label rule add chain=qos_default_labels index=19 serv=icmp log=disabled state=enabled
label=Management
:label rule add chain=qos_default_labels index=20 serv=rtsp log=disabled state=enabled
label=Video
:label rule add chain=qos_default_labels index=21 serv=igmp log=disabled state=enabled
label=Video
:label rule add chain=qos_default_labels index=22 name=default srcintf=!wan log=disabled
state=enabled
| label=default
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
506
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule modify
Modify a label rule.
SYNTAX:
label rule modify
chain = <chain name>
index = <number>
[newindex = <number>]
[name = <string>]
[clink = <chain name>]
[srcintf [!]= <string>]
[srcip [!]= <{ip address | private}>]
[dstip [!]= <{ip address | private}>]
[serv [!]= <{service name}>]
[log = <{disabled | enabled}>]
[state = <{disabled | enabled}>]
[label = <string>]
If a value is preceded by a “!”, it means “NOT”.
For example “srcintf=!wan” means “if srcintf is different from WAN”.
i
where:
chain
The name of the chain which contains the rule.
The number of the rule in the chain.
The new number of the rule in the chain.
The name of the new rule.
REQUIRED
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
index
newindex
name
clink
The name of the chain to be parsed when this rule applies.
The name of the source interface expression.
The name of the source IP expression.
The name of the destination IP expression.
The name of the device expression.
Disable or enable logging when this rule applies.
Disable or enable this rule.
srcintf
srcip
dstip
serv
log
state
label
Choose between:
>
>
>
None
link (when clink is used)
label name.
E-DOC-CTC-20061027-0003 v2.0
507
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule debug clear
Clear the label rule statistics.
SYNTAX:
label rule debug clea [chain = <string>]
r
[index = <number>]
where:
chain
The name of the chain in which the rule is to be found.
OPTIONAL
Note If not specified, the statistics for all the rules in all
chains will be cleared.
index
The index number (determined by the position) of the rule in
the chain.
OPTIONAL
Note If not specified, the statistics for all the rules in a chain
will be cleared.
E-DOC-CTC-20061027-0003 v2.0
508
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
EXAMPLE:
=>label rule debug stats chain=qos_labels
chain index
------------------------------------------------------------
packets
bytes
qos_labels
1
2
0
203
0
19146
=>label rule debug clear chain=qos_labels
=>label rule debug stats
chain
index
packets
bytes
------------------------------------------------------------
routing_labels
1
2
0
0
0
0
qos_labels
1
0
0
2
0
0
qos_default_labels
1
0
0
2
0
0
3
4
168
4
0
0
5
0
0
6
0
0
7
0
0
8
0
0
9
0
0
0
0
10
11
12
13
14
15
16
17
18
19
20
0
0
10
3
0
0
5
0
4
0
0
480
144
0
0
329
0
452
17573
177
=>
RELATED COMMANDS:
Display the label rule statistics.
E-DOC-CTC-20061027-0003 v2.0
509
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule debug stats
Display the label rule statistics.
SYNTAX:
label rule debug stat [chain = <string>]
s
[index = <number>]
where:
chain
The name of the chain for which the statistics must be shown.
OPTIONAL
OPTIONAL
Note If not specified, the statistics for the rules applicable to
all chains are shown.
index
The index number of the rule for which the statistics must be
shown.
Tip
Use the command :label rule listto obtain the
index number of the applicable rule.
Note If not specified, the statistics for all rules applicable to
the specified chain are shown.
EXAMPLE:
=>label rule debug stats chain=qos_labels
chain index
------------------------------------------------------------
packets
bytes
qos_labels
1
2
0
167
0
15690
=>
=>label rule debug stats chain=qos_default_labels index=20
chain index packets bytes
------------------------------------------------------------
qos_default_labels
=>
19
165
16421
RELATED COMMANDS:
Clear the label rule statistics.
E-DOC-CTC-20061027-0003 v2.0
510
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
label rule debug traceconfig
Display or modify the rule trace configuration.
SYNTAX:
label rule debug trac [trace = <{disabled | enabled}>]
econfig
where:
trace
Disable or enable rule traces.
OPTIONAL
The default is disabled.
EXAMPLE:
=>label rule debug traceconfig
:label rule debug traceconfig state=disabled
=>
E-DOC-CTC-20061027-0003 v2.0
511
Download from Www.Somanuals.com. All Manuals Search And Download.
Label Commands
E-DOC-CTC-20061027-0003 v2.0
512
Download from Www.Somanuals.com. All Manuals Search And Download.
Language Commands
25 Language Commands
Introduction
This chapter describes the commands of the languagecommand group.
Contents
This chapter covers the following commands:
Delete one or all language archives.
E-DOC-CTC-20061027-0003 v2.0
513
Download from Www.Somanuals.com. All Manuals Search And Download.
Language Commands
language config
Select a language.
SYNTAX:
language config
[language = <string>]
[complete = <{yes | no}>]
where:
language
Language code: OSI language code (2 chars) for language.
Example: en for english.
OPTIONAL
OPTIONAL
complete
Enable translation for expert pages.
The default is yes.
EXAMPLE:
=>language config
language
complete
=>
: en
: no
RELATED COMMANDS:
Delete one or all language archives.
E-DOC-CTC-20061027-0003 v2.0
514
Download from Www.Somanuals.com. All Manuals Search And Download.
Language Commands
language delete
Delete one or all language archives.
SYNTAX:
language delete
[file = <string>]
[all = <{yes | no}>]
where:
file
all
The filename of the language archive to be removed.
OPTIONAL
OPTIONAL
Remove all languages archives (yes) or not (no).
The default is no.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
515
Download from Www.Somanuals.com. All Manuals Search And Download.
Language Commands
language list
List the available language archives.
SYNTAX:
language list
EXAMPLE:
=>language list
CODE LANGUAGE
en* English
=>
VERSION
5.3.0.10.0
FILENAME
<system>
The currently selected language is indicated by a “*” next to the OSI language code.
i
RELATED COMMANDS:
Delete one or all language archives.
E-DOC-CTC-20061027-0003 v2.0
516
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus client config
Modify client parameters.
SYNTAX:
mbus client config [writelock = <{enabled | disabled}>]
[wlgetimeout = <number>]
[wlidletimeout = <number>]
[path = <quoted string>]
[type = <idpath | keypath>]
where:
writelock
Enable or disable mbus writelock.
The default is enabled.
OPTIONAL
OPTIONAL
OPTIONAL
wlgetimeout
wlidletimeout
Writelock get timeout in seconds.
<forever=-1, *default=nowait=0>
Writelock idle timeout in seconds.
<forever=-1, *default=nowait=30>
path
type
Fully qualified mbus path.
OPTIONAL
OPTIONAL
Path type.
The default is idpath.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
518
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus client exec
Execute mbus command.
SYNTAX:
mbus client exec
cmd = <{addobject | deleteobject | getparamattributes
| getparamcount | getparamnames | getparamvalues |
getpath | setparamvalue}>
[param = <quoted string>]
[value = <quoted string>]
[gettype = <{object | parameter | path}>]
[depth = <number>]
[processcmd = <{disabled | enabled}>]
[readcommitted = <{disabled | enabled}>]
[onerrorrollback = <{disabled | enabled}>]
where:
cmd
Mbus command name.
Choose between:
REQUIRED
>
>
>
>
>
>
>
>
addobject
deleteobject
getparamattributes
getparamcount
getparamnames
getparamvalues
getpath
setparamvalue
param
value
Parameter name.
OPTIONAL
OPTIONAL
OPTIONAL
Parameter value to set.
gettype
Get type elements.
Choose between:
>
>
>
object
parameter
path
The default is parameter.
depth
Number of levels to recurse, default=-1 (all).
OPTIONAL
OPTIONAL
processcmd
Enable or disable the process SET_PARAMVALUE
command flag.
The default is enabled.
readcommitted
onerrorrollback
Enable or disable the read committed data only
(MBUS_CMD_GET_PARAMVALUES) flag.
The default is enabled.
OPTIONAL
OPTIONAL
Enable or disable the on error rollback flag.
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
519
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
520
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus debug traceconfig
Modify mbus trace settings.
SYNTAX:
mbus debug traceconfig [level = <number{0-4}>]
where:
level
A number between 0 and 4.
OPTIONAL
Represents the mbus trace level.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
524
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus listobjects
Display the object instances.
SYNTAX:
mbus listobjects
[path = <quoted string>]
[type = <{idpath | keypath}>]
[output = <{list | tree}>]
[expand = <{disabled | enabled}>]
where:
path
type
Fully qualified mbus path to list.
OPTIONAL
OPTIONAL
Path type.
Choose between:
>
>
idpath
keypath.
The default is idpath.
output
List output type.
Choose between:
OPTIONAL
OPTIONAL
>
>
list
tree.
The default is tree.
expand
Enable or disable details.
The default is disabled.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
525
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus listtypes
Display the registered objecttypes.
SYNTAX:
mbus listtypes
[path = <quoted string>]
[expand = <{disabled | enabled}>]
where:
path
Fully qualified mbus path to list.
OPTIONAL
OPTIONAL
expand
Enable or disable details.
The default is disabled.
EXAMPLE:
=>mbus listtypes
- root
+ InternetGatewayDevice
* DeviceInfo
* Layer3Forwarding
* LANDevice
- WLANConfiguration
+ WEPKey
+ PreSharedKey
-
* WANDevice
- WANCommonInterfaceConfig
- WANDSLInterfaceConfig
- WANConnectionDevice
+ WANDSLLinkConfig
+ WANIPConnection
* PortMapping
+ WANPPPConnection
* PortMapping
* Services
* ManagementServer
=>
RELATED COMMANDS:
Display the object instances.
E-DOC-CTC-20061027-0003 v2.0
526
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus listenums
Display the registered enumtypes.
SYNTAX:
mbus listenumss
[dmtree = <{igd|atomic|system}>]
[name = <quoted string>]
[expand = <{disabled|enabled}>]
where:
dmtree
Select mbusd datamodel tree.
OPTIONAL
OPTIONAL
OPTIONAL
name
Filter enumtypes by (part of) the name
expand
Enable or disable details.
The default is disabled.
EXAMPLE:
=>mbus listtypes
- root
+ InternetGatewayDevice
* DeviceInfo
* Layer3Forwarding
* LANDevice
- WLANConfiguration
+ WEPKey
+ PreSharedKey
-
* WANDevice
- WANCommonInterfaceConfig
- WANDSLInterfaceConfig
- WANConnectionDevice
+ WANDSLLinkConfig
+ WANIPConnection
* PortMapping
+ WANPPPConnection
* PortMapping
* Services
* ManagementServer
=>
RELATED COMMANDS:
Display the object instances.
E-DOC-CTC-20061027-0003 v2.0
527
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus listcontexts
Display the context instances .
SYNTAX:
listcontexts
where:
[dmtree = <{igd|atomic|system}>]
dmtree
Select mbusd datamodel tree.
OPTIONAL
RELATED COMMANDS:
Display the object instances.
E-DOC-CTC-20061027-0003 v2.0
528
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus listsubscriptions
Display the subscription instances .
SYNTAX:
listsubscriptions
[dmtree = <{igd|atomic|system}>]
where:
dmtree
Select mbusd datamodel tree.
OPTIONAL
RELATED COMMANDS:
Display the object instances.
E-DOC-CTC-20061027-0003 v2.0
529
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus debug loadobjects
Load object instances of registered objecttypes.
SYNTAX:
mbus debug loadobjects [dmtree = <{igd|atomic|system}>]
[path = <quoted string>]
[type = <{indexpath|objidpath|keystrpath}>]
[flush = <{disabled|enabled}>]
where:
dmtree
mbus data model tree
OPTIONAL
OPTIONAL
OPTIONAL
path
type
Fully qualified mbus path.
Path type.
The default is indexpath.
flush
Flush objects before load
OPTIONAL
The default is disabled)
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
530
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus debug unloadobjects
Unload object instances.
SYNTAX:
mbus unloadobjects [path = <quoted string>]
[type = <{idpath | keypath}>]
where:
path
type
Fully qualified mbus path.
OPTIONAL
OPTIONAL
Path type.
Choose between:
>
>
idpath
keypath.
The default is idpath.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
531
Download from Www.Somanuals.com. All Manuals Search And Download.
MBUS Commands
mbus pluginevent
Simulate event from plugin .
SYNTAX:
mbus pluginevent
ctxid = <number{0--2}>
type = <{addobj|delobj|updobj}>
path = <quoted string>
[name = <quoted string>]
[value = <quoted string>]
[orivalue = <quoted string>]
where:
ctxid
Plugin context id
Event type
type
path
Plugin event subpath
Plugin event name
Plugin event value
Plugin event orivalue
name
value
orivalue
E-DOC-CTC-20061027-0003 v2.0
532
Download from Www.Somanuals.com. All Manuals Search And Download.
MEMM Commands
memm debug lock traceconfig
Modify lock trace settings.
SYNTAX:
memm debug lock traceconfig
[level = <number{0-4}>]
[name = <string>]
where:
level
A number between 0 and 4.
Represents the memm trace level.
OPTIONAL
name
Application name filter for lock traces (empty displays all
lock traces).
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
536
Download from Www.Somanuals.com. All Manuals Search And Download.
MEMM Commands
memm stats
Display memm statistics.
SYNTAX:
memm stats
where:
[name = <quoted string>]
name
Select typename(s) to list (supports partial typename).
OPTIONAL
EXAMPLE:
=>memm stats
pool name
---------
bytes cur,max,avail (max.%) count cur,max,avail ref cur,max,avail
---------------------------- ------------------- -----------------
memm_pooldesc
dynstr_pool
mbus_llist
mbus_dynstr
- strings buffer
mbus_client
mbus_cmddata
mbus_objecttype
mbus_paramtype
mbus_object
mbus_objectindex
upnp_dynstr
-strings buffer
upnp_handles
upnp_devices
upnp_services
upnp_subscriptions
upnp_firstdeviceevents
mbus_cliclient
cwmp_elem_pool
cwmp_attr_pool
cwmp_llist_pool
cwmp_dynstr_pool
-strings buffer
cwmp_event_pool
cwmp_cmddata_pool
---------
1196, 1196, 1300
72, 72, 120
2904, 2904, 4920
2928, 2964, 4920
3545, 3563, 8192
(92%)
(60%)
(59%)
(60%)
(43%)
(10%)
( 2%)
(77%)
(84%)
( 1%)
( 0%)
(10%)
( 7%)
(33%)
(10%)
(13%)
( 0%)
( 0%)
( 0%)
( 0%)
( 0%)
( 5%)
( 0%)
( 0%)
( 0%)
( 0%)
23,
3,
242,
244,
23,
3,
242,
247,
25
5
410
410
obj:
0,
0,
0, 255
0,
0,
0,
-
-
-
0,
12,
0,
744,
12,
88, 3520
744, 960
120
1,
0,
31,
211,
1,
1,
2,
31,
211,
1,
10
80
40
250
70
70
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
-
-
-
-
-
-
-
5908, 5908, 7000
28,
0,
36,
28, 1960
0,
840
600
0,
3,
0,
5,
60,
50
138,
332,
816,
151, 2048
332, 996
816, 8160
1,
3,
4,
0,
0,
0,
0,
0,
0,
0,
1,
3,
4,
0,
0,
0,
0,
0,
2,
0,
3
30
30
50
50
5
20
20
40
20
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
-
-
-
-
-
-
-
-
-
-
2560, 2560, 19200
0,
0,
0,
0,
0,
0,
0,
0,
0,
0,
0, 30400
0, 4000
0,
0,
0,
24,
0,
240
560
400
480
240
0, 8192
0, 64
0, 1320
0,
0,
0,
0,
4
30
0,
0,
0,
0,
-
-
----------------------------
21219, 21422,110752 (19%)
Total usage
=>
E-DOC-CTC-20061027-0003 v2.0
541
Download from Www.Somanuals.com. All Manuals Search And Download.
MEMM Commands
EXAMPLE:
=>memm stats
pool name
bytes cur,max,avail (max.%)
---------------------------
count cur,max,avail
-------------------
ref
cur,max,avail
-------------
memm_pooldesc
---
ob
1196,
1196,
1300 ( 92%)
120 ( 60%)
4920 ( 51%)
4920 ( 49%)
23,
23,
25
j:
0,
255
dynstr_pool
72,
72,
3,
3,
5
0,
mbus_llist
0, 0,
0,
-
-
2460,
2316,
2532,
2424,
205, 211, 410
193, 202, 410
mbus_dynstr
0, 0,
-
- strings buffer
mbus_client
2761,
12,
2839,
12,
8192 ( 34%)
120 ( 10%)
1,
0,
1,
2,
10
80
40
0,
mbus_cmddata
0, 0,
mbus_objecttype
0, 0,
mbus_paramtype
0, 0,
mbus_object
0, 0,
mbus_objectindex
0, 0,
upnp_dynstr
0, 0,
0,
-
0,
480,
3976,
840,
168,
36,
88,
480,
3976,
840,
168,
72,
3520 ( 2%)
960 ( 50%)
7000 ( 56%)
1960 ( 42%)
840 ( 20%)
600 ( 12%)
-
20,
20,
-
142, 142, 250
-
30,
14,
3,
30,
14,
6,
70
70
50
-
-
-
- strings buffer
upnp_handles
132,
332,
152,
332,
2048 ( 7%)
996 ( 33%)
14,
1,
14,
1,
70
3
0,
upnp_devices
0, 0,
upnp_services
0, 0,
upnp_subscriptions
0, 0,
upnp_firstdeviceevents
0, 0,
mbus_cliclient
0, 0,
cwmp_elem_pool
0, 0,
cwmp_attr_pool
0, 0,
cwmp_llist_pool
0, 0,
cwmp_dynstr_pool
0, 0,
0,
-
816,
2560,
1216,
0,
816,
8160 ( 10%)
3,
4,
2,
0,
0,
0,
0,
0,
0,
3,
4,
4,
4,
0,
0,
0,
2,
0,
30
30
50
50
5
-
2560, 19200 ( 13%)
2432, 30400 ( 8%)
-
-
320,
0,
4000 ( 8%)
240 ( 0%)
560 ( 0%)
400 ( 0%)
480 ( 5%)
240 ( 0%)
-
0,
-
0,
0,
20
20
40
20
-
0,
0,
-
0,
24,
0,
-
0,
-
- strings buffer
cwmp_event_pool
0,
0,
0,
0,
8192 ( 0%)
64 ( 0%)
0,
0,
4
0,
cwmp_cmddata_pool
0, 0,
0,
-
0,
0,
13202 ( 0%)
0,
0,
30
-
-------------
Total usage
=>
---------------------------
19373, 21335,110752 ( 19%)
E-DOC-CTC-20061027-0003 v2.0
542
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
28 MLP Commands
Introduction
This chapter describes the commands of the mlpcommand group.
Contents
This chapter covers the following commands:
Export all the scores.
Modify the MLP trace settings.
Add a privilege.
Add a role.
Add a privilege to a role.
E-DOC-CTC-20061027-0003 v2.0
543
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp import
Import all the scores.
SYNTAX:
mlp import
[trace = <{disabled | enabled | full}>]
where:
trace
Select the import trace level.
Choose between:
OPTIONAL
>
>
>
disabled
enabled
full.
The default is disabled.
RELATED COMMANDS:
Export all the scores.
E-DOC-CTC-20061027-0003 v2.0
545
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp debug stats
Display MLP statistics.
SYNTAX:
mlp debug stats
EXAMPLE:
=>mlp debug stats
Roles (cur/free/max)
: 8/7/15
Privileges (cur/free/max) : 35/25/60
ListItems (cur/free/max) : 31/119/150
=>
E-DOC-CTC-20061027-0003 v2.0
547
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp debug traceconfig
Modify the MLP trace settings.
SYNTAX:
mlp debug traceconfig
[trace = <{disabled | enabled | full}>]
where:
trace
Select the trace level.
Choose between:
OPTIONAL
>
>
>
disabled
enabled
full.
The default is disabled.
EXAMPLE:
=>mlp debug traceconfig
mlp trace: disabled
=>
E-DOC-CTC-20061027-0003 v2.0
548
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp privilege add
Add a privilege.
SYNTAX:
mlp privilege add
name = <quoted string>
type = <{access | service}>
[descr = <quoted string>]
where:
name
type
The name of the new privilege.
REQUIRED
REQUIRED
Note The maximum number of privileges is 60.
Select the privilege type.
Choose between:
>
>
access: the privilege is an access privilege.
service: the privilege is a service privilege.
descr
A description of the privilege.
OPTIONAL
Note The maximum length is 63 characters.
E-DOC-CTC-20061027-0003 v2.0
549
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
EXAMPLE:
=>mlp privilege list type=access
Privilege (type) Description
----------------------------
anyaccess (access) All access privileges granted
AP1 (access) LAN_Local_all
AP2 (access) LAN_Local with all secured channels
AP3 (access) LAN_Local with all channels & access to sensitive files
...
AP15 (access) WAN from all channels
AP16 (access) LAN from HTTP/HTTPs
=>mlp privilege add name=myPrivilege type=access descr="My access privilege"
=>mlp privilege list type=access
Privilege (type) Description
----------------------------
anyaccess (access) All access privileges granted
AP1 (access) LAN_Local_all
AP2 (access) LAN_Local with all secured channels
AP3 (access) LAN_Local with all channels & access to sensitive files
...
AP15 (access) WAN from all channels
AP16 (access) LAN from HTTP/HTTPs
myPrivilege (access) My access privilege
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
550
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp privilege addzone
Add a zone to a privilege.
Only one zone can be added at a time to a privilege. If multiple zones need to be added, the
command :mlp privilege addzonemust be executed for each zone to be added.
i
SYNTAX:
mlp privilege addzone
name = <string>
zone = <string>
where:
name
The name of the privilege in which a zone must be added.
The name of the new zone.
REQUIRED
REQUIRED
zone
EXAMPLE:
=>mlp privilege list type=access name=myPrivilege verbose=all
myPrivilege (access) My access privilege
=>mlp privilege addzone name=myPrivilege zone=channel_http
=>mlp privilege list type=access name=myPrivilege verbose=all
myPrivilege (access) My access privilege
channel_http
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
551
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp privilege config
Modify a privilege.
SYNTAX:
mlp privilege config
name = <string>
[descr = <quoted string>]
[score = <{hex-word}[:{hex-word}] ex:
'a12:c30f'>]
where:
name
descr
The name of the privilege to be modified.
Set the privilege description.
REQUIRED
OPTIONAL
Note The maximum length is 63 characters.
Set the score of the privilege.
score
OPTIONAL
Note This is a hexadecimal value, for example “a12:c30f”.
EXAMPLE:
=>mlp privilege config name=myPrivilege descr="My test privilege" score=a12:def4
=>mlp privilege list verbose=all
anyaccess (access) All access privileges granted
unsecure_connection, channel_ftp, channel_telnet, channel_http,
channel_mdap, channel_serial, origin_lan, origin_wan, origin_local
anyservice (service) All service privileges granted
...
AP15 (access) WAN from all channels
unsecure_connection, channel_ftp, channel_telnet, channel_http,
channel_mdap, channel_serial, origin_wan
AP16 (access) LAN from HTTP/HTTPs
unsecure_connection, channel_http, origin_lan
myPrivilege (service) My test privilege
r_lan, r_fs_view, r_fs_retrieve, r_rtg, r_fwdg, r_frwl, r_ipsec_norm,
r_ipsec_adv, r_certificates, r_local, r_qos, and_lan, and_local, cli,
ftp
=>
E-DOC-CTC-20061027-0003 v2.0
552
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp privilege delete
Delete a privilege.
SYNTAX:
mlp privilege delete
name = <string>
where:
name
The name of the privilege to be deleted.
REQUIRED
EXAMPLE:
=>mlp privilege list type=access
Privilege (type) Description
----------------------------
anyaccess (access) All access privileges granted
AP1 (access) LAN _Local_all
AP2 (access) LAN_Local with all secured channels
AP3 (access) LAN_Local with all channels & access to sensitive files
AP4 (access) LAN_Local with all secured channels & access to sensitive files
AP5 (access) WAN from a secure HTTP
AP6 (access) WAN from a secure HTTP & access to sensitive files
AP7 (access) LAN from all channels except telnet
AP8 (access) LAN from all secured channels except telnet
AP9 (access) LAN from all channels except telnet & access to sensitive file
AP10 (access) LAN access to sensitive file & secured channels except telnet
AP11 (access) All origins_noHTTP
AP12 (access) All origins_from all secured channels no http
AP13 (access) All origins_noHTTP & access to sensitive files
AP14 (access) All origins_secured channels &access to sensitive files no http
AP15 (access) WAN from all channels
AP16 (access) LAN from HTTP/HTTPs
myPrivilege (access) My access privilege
=>mlp privilege delete name=myPrivilege
=>mlp privilege list type=access
Privilege (type) Description
----------------------------
anyaccess (access) All access privileges granted
AP1 (access) LAN _Local_all
AP2 (access) LAN_Local with all secured channels
AP3 (access) LAN_Local with all channels & access to sensitive files
...
AP13 (access) All origins_noHTTP & access to sensitive files
AP14 (access) All origins_secured channels &access to sensitive files no http
AP15 (access) WAN from all channels
AP16 (access) LAN from HTTP/HTTPs
=>
E-DOC-CTC-20061027-0003 v2.0
553
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
RELATED COMMANDS:
Add a privilege.
E-DOC-CTC-20061027-0003 v2.0
554
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp privilege list
Display the privileges.
SYNTAX:
mlp privilege list
[name = <string>]
[type = <{access | service}>]
[verbose = <{minimal | medium | all}>]
where:
name
type
The name of the privilege to be listed.
Note If not specified, all the privileges will be shown.
Select the privilege type to be shown. Choose between:
OPTIONAL
OPTIONAL
>
>
access: only the access privileges will be shown
service: only the service privileges will be shown.
Note If not specified, all the privilege types will be shown.
verbose
Limit the output list. Choose between:
OPTIONAL
>
>
>
minimal
medium
all.
The default is minimal.
E-DOC-CTC-20061027-0003 v2.0
555
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
EXAMPLE:
=>mlp privilege list type=service
Privilege (type) Description
----------------------------
anyservice (service) All service privileges granted
SP1 (service) Limited_Read
SP2 (service) detailed_Read
SP3 (service) Write_to_LAN
SP4 (service) Write_FWD_RT_normal_FW_cfgs
SP5 (service) cooperative_cfgs
SP6 (service) Remote Configurations
SP7 (service) Advanced sink & source FW
SP8 (service) Write_to_U_Connection
SP9 (service) Write_to_Local
SP10 (service) Simple_network_debugging
SP11 (service) Advance_Network_debugging
SP12 (service) User_admin
SP13 (service) MLP_Admin
SP14 (service) Backup & Restore
SP15 (service) CLI mngt Interface only
SP16 (service) CGI mngt Interface only
SP17 (service) FTP mngt Interface only
=>mlp privilege list name=SP5 verbose=all
SP5 (service) cooperative_cfgs
r_ipsec_norm, r_ipsec_adv, r_certificates, w_frwl_norm, w_frwl_adv,
w_ipsec, w_certificates
=>
RELATED COMMANDS:
Add a privilege.
E-DOC-CTC-20061027-0003 v2.0
556
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp privilege removezone
Remove a zone from a privilege.
Only one zone can be removed at a time from a privilege. If multiple zones need to be removed, the
command :mlp privilege removezonemust be executed for each zone to be removed.
i
SYNTAX:
mlp privilege removezone name = <string>
zone = <string>
where:
name
zone
The name of the privilege in which a zone must be removed.
The name of the zone to be removed.
REQUIRED
REQUIRED
EXAMPLE:
=>mlp privilege list name=myPrivilege verbose=all
myPrivilege (access) My access privilege
channel_http, channel_serial
=>mlp privilege removezone name=myPrivilege zone=channel_serial
=>mlp privilege list name=myPrivilege verbose=all
myPrivilege (access) My access privilege
channel_http
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
557
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp role add
Add a role.
SYNTAX:
mlp role add
name = <quoted string>
parent = <string>
[descr = <quoted string>]
where:
name
The name of the new role.
REQUIRED
Note The maximum number of roles is 15.
The name of the parent role.
parent
descr
REQUIRED
OPTIONAL
The role description.
Note The maximum length is 63 characters.
EXAMPLE:
=>mlp role list
Role (parent) Description
-------------------------
root (-) The superuser
SuperUser (root) Any service and any access from LAN/WAN/LOCAL
TechnicalSupport (SuperUser) Any service and any channels from WAN
Administrator (TechnicalSupport) Any service and any access from LAN/Local origin only
PowerUser (Administrator) GUI(Service/overview page)via http/https from LAN origin
User (PowerUser) GUI(Overview pages, remote assistance) via HTTP/HTTPS from LAN
LAN_Admin (Administrator) Only LAN related configurations from any Channel/Origin
WAN_Admin (Administrator) Only WAN related configurations from any Channels/Origin
=>mlp role create name=myRole parent=User descr="My user access"
=>mlp role list
Role (parent) Description
-------------------------
root (-) The superuser
SuperUser (root) Any service and any access from LAN/WAN/LOCAL
TechnicalSupport (SuperUser) Any service and any channels from WAN
Administrator (TechnicalSupport) Any service and any access from LAN/Local origin only
PowerUser (Administrator) GUI(Service/overview page)via http/https from LAN origin
User (PowerUser) GUI(Overview pages, remote assistance) via HTTP/HTTPS from LAN
LAN_Admin (Administrator) Only LAN related configurations from any Channel/Origin
WAN_Admin (Administrator) Only WAN related configurations from any Channels/Origin
myRole (User) My user access
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
558
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
E-DOC-CTC-20061027-0003 v2.0
559
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp role addpriv
Add a privilege to a role.
SYNTAX:
mlp role addpriv
name = <string>
access = <string>
service = <string>
where:
name
The name of the role.
REQUIRED
REQUIRED
REQUIRED
access
service
The name of the access privilege to be added.
The name of the service privilege to be added.
EXAMPLE:
=>mlp role list name=myRole verbose=all
myRole (User) My user access
=>mlp role addpriv name=myRole access=myPrivilege service=SP7
=>mlp role list name=myRole verbose=all
myRole (User) My user access
myPrivilege & SP7
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
560
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp role config
Modify the role.
SYNTAX:
mlp role config
name = <string>
[parent = <string>]
[descr = <quoted string>]
where:
name
parent
descr
The name of the role to be configured.
The name of the parent role.
REQUIRED
OPTIONAL
OPTIONAL
The role description.
Note The maximum length is 63 characters.
EXAMPLE:
=>mlp role list name=myRole verbose=all
myRole (User) My user access
myPrivilege & SP7
=>mlp role config name=myRole parent=Guest descr="My user access"
=>mlp role list name=myRole verbose=all
myRole (Guest) My user access
myPrivilege & SP7
=>
E-DOC-CTC-20061027-0003 v2.0
561
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp role delete
Delete a role.
SYNTAX:
mlp role delete
name = <string>
where:
name
The name of the role to be deleted.
REQUIRED
EXAMPLE:
=>mlp role list
Role (parent) Description
-------------------------
root (-) The superuser
SuperUser (root) Any service and any access from LAN/WAN/LOCAL
TechnicalSupport (SuperUser) Any service and any channels from WAN
Administrator (TechnicalSupport) Any service and any access from LAN/Local origin only
PowerUser (Administrator) GUI(Service/overview page)via http/https from LAN origin
User (PowerUser) GUI(Overview pages, remote assistance) via HTTP/HTTPS from LAN
LAN_Admin (Administrator) Only LAN related configurations from any Channel/Origin
WAN_Admin (Administrator) Only WAN related configurations from any Channels/Origin
myRole (Guest) My user access
=>mlp role delete name=myRole
=>mlp role list
Role (parent) Description
-------------------------
root (-) The superuser
SuperUser (root) Any service and any access from LAN/WAN/LOCAL
TechnicalSupport (SuperUser) Any service and any channels from WAN
Administrator (TechnicalSupport) Any service and any access from LAN/Local origin only
PowerUser (Administrator) GUI(Service/overview page)via http/https from LAN origin
User (PowerUser) GUI(Overview pages, remote assistance) via HTTP/HTTPS from LAN
LAN_Admin (Administrator) Only LAN related configurations from any Channel/Origin
WAN_Admin (Administrator) Only WAN related configurations from any Channels/Origin
=>
RELATED COMMANDS:
Add a role.
E-DOC-CTC-20061027-0003 v2.0
562
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp role list
Display the roles.
SYNTAX:
mlp role list
[name = <string>]
[verbose = <{minimal | medium | all}>]
where:
name
The name of the role to be listed.
Note If not specified, all the roles will be listed.
OPTIONAL
OPTIONAL
verbose
Limit the output list.
Choose between:
>
>
>
minimal
medium
all.
The default is minimal.
EXAMPLE:
=>mlp role list
Role (parent) Description
-------------------------
root (-) The superuser
SuperUser (root) Any service and any access from LAN/WAN/LOCAL
TechnicalSupport (SuperUser) Any service and any channels from WAN
Administrator (TechnicalSupport) Any service and any access from LAN/Local origin only
PowerUser (Administrator) GUI(Service/overview page)via http/https from LAN origin
User (PowerUser) GUI(Overview pages, remote assistance) via HTTP/HTTPS from LAN
LAN_Admin (Administrator) Only LAN related configurations from any Channel/Origin
WAN_Admin (Administrator) Only WAN related configurations from any Channels/Origin
myRole (Guest) My user access
=>mlp role list name=PowerUser verbose=all
PowerUser (Administrator) GUI(Service/overview page)via http/https from LAN origin
AP16 & SP1
AP16 & SP2
AP16 & SP10
AP16 & SP16
AP16 & SP8
=>
RELATED COMMANDS:
Add a role.
E-DOC-CTC-20061027-0003 v2.0
563
Download from Www.Somanuals.com. All Manuals Search And Download.
MLP Commands
mlp role removepriv
Remove a privilege from a role.
SYNTAX:
mlp role removepriv
name = <string>
access = <string>
[service = <string>]
where:
name
The name of the role.
REQUIRED
REQUIRED
OPTIONAL
access
service
The name of the access privilege to be deleted.
The name of the service privilege to be deleted.
EXAMPLE:
=>mlp role list name=myRole verbose=all
myRole (Guest) My user access
myPrivilege & SP7
=>mlp role removepriv name=myRole access=myPrivilege
=>mlp role list name=myRole verbose=all
myRole (Guest) My user access
=>
RELATED COMMANDS:
Add a privilege to a role.
E-DOC-CTC-20061027-0003 v2.0
564
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat config
Display/modify global NAT configuration options.
SYNTAX:
nat config
[trace = <{disabled | enabled}>]
where:
trace
Enable or disable traces.
The default is disabled.
REQUIRED
EXAMPLE:
=>nat config
NAT traces : disabled
=>nat config trace=enabled
=>nat config
NAT traces : enabled
=>
E-DOC-CTC-20061027-0003 v2.0
566
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat ifconfig
Modify address translation on an IP interface.
SYNTAX:
nat ifconfig
intf = <string>
translation = <{disabled | enabled | trans-
parent}>
where:
intf
The IP interface name.
REQUIRED
REQUIRED
translation
Enable or disable address translation.
Choose between:
>
>
>
disabled: Address translation is disabled.
enabled: Address translation is enabled.
transparent: An inside address is translated into the same
outside IP address. In fact, no translation happens and the
IP packets passing through the Thomson ST remain
untouched.
The default is disabled.
EXAMPLE:
=>nat iflist
Interface
loop
NAT
disabled
myPPP_ppp
eth0
disabled
transparent
=>nat ifconfig intf=myPPP_ppp translation=enabled
=>nat iflist
Interface
loop
myPPP_ppp
eth0
NAT
disabled
enabled
transparent
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
568
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat iflist
Display the address translation configuration on all the interfaces.
SYNTAX:
nat iflist
EXAMPLE:
=>nat iflist
Interface
loop
Internet
RtPPPoE_ppp
LocalNetwork
=>
NAT
disabled
enabled
enabled
transparent
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
569
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat mapadd
Add an address mapping to a Network Address Translation (NAT) enabled interface.
SYNTAX:
nat mapadd
intf = <string>
[type = <{napt | nat}>]
[outside_addr = <ip-range>]
[inside_addr = <ip-range>]
[access_list = <ip-range>]
[foreign_addr = <ip-range>]
[protocol = <{supported IP protocol} or number>]
[outside_port = <port-range>]
[inside_port = <port-range>]
[mode = <{auto | inbound | outbound}>]
where:
intf
The IP interface name.
REQUIRED
OPTIONAL
Note The specified interface must be an existing NAT enabled
interface.
type
The type of NAT map to be used.
Choose between:
>
napt: The map is a Network Address Port Translation (NAPT)
map or a port-shifting NAT map.
>
nat: The map is a basic NAT map or a two-way NAT map.
outside_addr
The outside (typically public) IP address.
REQUIRED
forNATmaps
and NAPT
maps.
>
Inbound: This map will only apply if the destination IP address is
part of the outside address(es).
>
Outbound: Represents the address(es) to be used as source
address after translation.
OPTIONAL
for port-
shifting
maps.
Allowed values are:
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]) (only for NAT).
An IP subnet (A.B.C.D/M) (only for NAT).
E-DOC-CTC-20061027-0003 v2.0
570
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
inside_addr
The inside (typically private) IP address.
OPTIONAL
forNATmaps
and NAPT
maps.
>
Inbound: Represents the address(es) to be used as destination
address after translation.
>
Outbound: This map will only apply if the source IP address is
part of the inside address(es).
REQUIRED
for port-
shifting
maps.
Allowed values are:
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]) (only for NAT).
An IP subnet (A.B.C.D/M (only for NAT)).
The default is ““ (unmapped).
Note If specified, the number of inside addresses must be equal
to the number of outside addresses.
access_list
The range of inside addresses to which the mapping is restricted.
This parameter is used for outbound traffic only. Represents the list
of inside IP addresses (LAN devices) allowed to make use of this
map.
OPTIONAL
Allowed values are:
>
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]).
An IP subnet (A.B.C.D/M).
* (all addresses).
The default is the inside_addr.
foreign_addr
The range of destination addresses to which the mapping is
restricted.
OPTIONAL
This parameter is used as filter for inbound/outbound traffic.
>
Inbound: This map only applies if the source IP address is part
of the foreign address(es).
>
Outbound: This map only applies if the destination IP address is
part of the foreign address(es).
Allowed values are:
>
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]).
An IP subnet (A.B.C.D/M).
* (all addresses).
The default is * (meaning all addresses).
protocol
The IP protocol to be used as filter for inbound/outbound traffic. The
NAT map only applies if the protocol of the IP packet matches the
map protocol.
OPTIONAL
alternatively, type the protocol number.
The default is 0 (meaning any protocol).
E-DOC-CTC-20061027-0003 v2.0
571
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
outside_port
The outside port number or range (only for maps of type napt).
OPTIONAL
for NAPT
map.
>
For a NAPT map: Represents the range of TCP/UDP ports to be
used as dynamic port range during the NAPT process.
>
For a port-shifting map: Represents the source port(s) to be
translated (shifted) into inside_port.
REQUIRED
for port-
shifting map.
Allowed values are:
>
>
TCP/UDP port range [P-Q] (with Q > P)
TCP/UDP port number (only for port-shifting maps).
inside_port
The inside port number or range (only for maps of type napt).
If this parameter is specified for a map of type napt, then this map is
a port-shifting map.
REQUIRED
for port-
shifting map
Represents the target TCP/UDP ports to which the traffic has to be
shifted.
Allowed values are:
>
>
TCP/UDP port range [P-Q] (with Q > P)
TCP/UDP port number (only for port-shifting maps).
Note The size of inside_port must be identical to the size of
outside_port.
mode
The mode to create the portmap.
Choose between:
OPTIONAL
>
>
>
auto
inbound
outbound.
The standard is auto.
E-DOC-CTC-20061027-0003 v2.0
572
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
EXAMPLE:
=>nat maplist
Idx Type Interface
1 NAPT eth0
2 NAPT eth0
3 NAPT eth0
Outside Address
any:80
any:1080
Inside Address
127.0.0.1:8080
127.0.0.1:8080
127.0.0.1:8080
Use
0
0
any:8080
0
=>nat mapadd intf=myPPP_ppp type=napt outside_addr=100.100.100.1 access_list=10.0.0.0/24
=>nat maplist
Idx Type Interface
1 NAPT myPPP_ppp
1 NAPT eth0
2 NAPT eth0
3 NAPT eth0
Outside Address
100.100.100.1
any:80
any:1080
any:8080
Inside Address
unmapped
127.0.0.1:8080
127.0.0.1:8080
127.0.0.1:8080
Use
0
0
0
0
=>maplist intf=myPPP_ppp expand=enabled
Idx Type Interface
1 NAPT myPPP_ppp
Outside Address
100.100.100.1
Inside Address
unmapped
Use
0
Access List................... 10.0.0.0/24
Foreign Address............... any
Protocol...................... any
Flags......................... Static
Description................... Outbound NAPT without defserver
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
573
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat mapdelete
Delete an address mapping from a NAT enabled interface.
SYNTAX:
nat mapdelete
intf = <string>
index = <number>
where:
intf
The IP interface name.
The map index.
Tip Use the command :nat maplistto obtain a list
of the mapindexes.
REQUIRED
REQUIRED
index
EXAMPLE:
=>nat maplist
Idx Type Interface
1 NAPT myPPP_ppp
1 NAPT eth0
2 NAPT eth0
3 NAPT eth0
Outside Address
100.100.100.1
any:80
any:1080
any:8080
Inside Address
unmapped
127.0.0.1:8080
127.0.0.1:8080
127.0.0.1:8080
Use
0
0
0
0
=>nat mapdelete intf=myPPP_ppp index=1
=>nat maplist
Idx Type Interface
1 NAPT eth0
2 NAPT eth0
3 NAPT eth0
=>
Outside Address
any:80
any:1080
Inside Address
127.0.0.1:8080
127.0.0.1:8080
127.0.0.1:8080
Use
0
0
any:8080
0
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
574
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat maplist
Display the address mapping for a NAT enabled interface.
SYNTAX:
nat maplist
[intf = <string>]
[expand = <{disabled | enabled}>]
[string = <string>]
[beginstring = <string>]
where:
intf
The IP interface name.
OPTIONAL
OPTIONAL
Note If not specified, the address mapping for all the NAT
enabled interfaces will be shown.
expand
Enable or disable expanded listing.
The default is disabled.
string
string matching condition
OPTIONAL
OPTIONAL
beginstring
beginstring matching condition
EXAMPLE:
=>nat maplist
Idx Type Interface
1 NAPT myPPP_ppp
1 NAPT eth0
2 NAPT eth0
3 NAPT eth0
Outside Address
100.100.100.1
any:80
any:1080
any:8080
Inside Address
unmapped
127.0.0.1:8080
127.0.0.1:8080
127.0.0.1:8080
Use
0
0
0
0
=>maplist intf=myPPP_ppp expand=enabled
Idx Type Interface
1 NAPT myPPP_ppp
Outside Address
100.100.100.1
Inside Address
unmapped
Use
0
Access List................... 10.0.0.0/24
Foreign Address............... any
Protocol...................... any
Flags......................... Static
Description................... Outbound NAPT without defserver
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
575
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat tmpladd
Add an address mapping template.
SYNTAX:
nat tmpladd
[intf = <string>]
[group = <{wan|local|lan|tunnel|dmz|guest} or
number>]
[timeout = <number{0-65535}>]
[type = <{napt | nat}>]
outside_addr = <ip-range>
[inside_addr = <ip-range>]
[access_list = <ip-range>]
[foreign_addr = <ip-range>]
[protocol = <{supported IP protocol} or number>]
[outside_port = <port-range>]
[inside_port = <port-range>]
[mode = <{auto | inbound | outbound}>]
where:
intf
The IP interface name.
The IP interface group scope for this template.
Choose between:
OPTIONAL
group
OPTIONAL
>
>
>
>
>
>
wan
local
lan
tunnel
dmz
guest.
Note If an interface has been defined with the parameter intf,
then the setting for this parameter is ignored.
timeout
type
A number between 0 and 6553 (seconds).
Represents the lifetime for this template.
OPTIONAL
OPTIONAL
The type of NAT map to be used.
Choose between:
>
>
napt: The map is a NAPT map or a port-shifting NAT map.
nat: The map is a basic NAT map or a two-way NAT map.
E-DOC-CTC-20061027-0003 v2.0
576
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
outside_addr
The outside (typically public) IP address.
REQUIRED
forNATmaps
and NAPT
maps.
>
Inbound: This map will only apply if the destination IP
address is part of the outside address(es).
>
Outbound: Represents the address(es) to be used as source
address after translation.
OPTIONAL
for port-
shifting
maps.
Allowed values are:
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]) (only for NAT).
An IP subnet (A.B.C.D/M) (only for NAT).
inside_addr
The inside (typically private) IP address.
OPTIONAL
forNATmaps
and NAPT
maps.
>
Inbound: Represents the address(es) to be used as
destination address after translation.
>
Outbound: This map will only apply if the source IP address is
part of the inside address(es).
REQUIRED
for port-
shifting
maps.
Allowed values are:
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]) (only for NAT).
An IP subnet (A.B.C.D/M (only for NAT)).
Default value is ““ (meaning unmapped).
Note If specified, the number of inside addresses must be equal
to the number of outside addresses.
access_list
The range of inside addresses to which the mapping is restricted.
This parameter is used for outbound traffic only. Represents the
list of inside IP addresses (LAN devices) allowed to make use of
this map.
OPTIONAL
Allowed values are:
>
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]).
An IP subnet (A.B.C.D/M).
* (all addresses).
The default is the inside_addr.
foreign_addr
The range of destination addresses to which the mapping is
restricted.
OPTIONAL
This parameter is used as filter for inbound/outbound traffic.
>
Inbound: This map only applies if the source IP address is part
of the foreign address(es).
>
Outbound: This map only applies if the destination IP address
is part of the foreign address(es).
Allowed values are:
>
>
>
>
An IP address (A.B.C.D or A.D, meaning A.0.0.D).
A range of IP addresses (A.B.C.[D-E]).
An IP subnet (A.B.C.D/M).
* (all addresses).
The default is * (meaning all addresses).
E-DOC-CTC-20061027-0003 v2.0
577
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
protocol
The IP protocol to be used as filter for inbound/outbound traffic.
OPTIONAL
The NAT map only applies if the protocol of the IP packet matches
the map protocol.
or, alternatively, type the protocol number.
The default is 0 (meaning any protocol).
outside_port
The outside port number or range (only for maps of type napt).
OPTIONAL
for NAPT
map.
>
>
For a NAPT map:
Represents the range of TCP/UDP ports to be used as dynamic
port range during the NAPT process.
REQUIRED
for port-
shifting map.
For a port-shifting map:
Represents the source port(s) to be translated (shifted) into
inside_port.
Allowed values are:
>
>
TCP/UDP port range [P-Q] (with Q > P)
TCP/UDP port number (only for port-shifting maps).
inside_port
The inside port number or range (only for maps of type napt).
If this parameter is specified for a map of type napt, then this map
is a port-shifting map.
REQUIRED
for port-
shifting map
Represents the target TCP/UDP ports to which the traffic has to be
shifted.
Allowed values are:
>
>
TCP/UDP port range [P-Q] (with Q > P)
TCP/UDP port number (only for port-shifting maps).
Note The size of inside_port must be identical to the size of
outside_port.
mode
The mode to create the portmap.
Choose between:
OPTIONAL
>
>
>
auto
inbound
outbound.
The standard is auto.
E-DOC-CTC-20061027-0003 v2.0
578
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
EXAMPLE:
=>nat tmpladd intf=myPPP_ppp type=napt outside_addr=100.100.100.1
=>nat tmpllist
Idx Type Interface
Use
1 NAPT myPPP_ppp
0
Ifgroup Outside Address
any 100.100.100.1
Inside Address
unmapped
=>nat tmpladd group=lan type=napt outside_addr=100.200.100.1
=>nat tmpllist
Idx Type Interface
Use
1 NAPT any
0
Ifgroup Outside Address
Inside Address
unmapped
lan
any
100.200.100.1
100.100.100.1
2 NAPT myPPP_ppp
unmapped
0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
579
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat tmpldelete
Delete an address mapping template.
SYNTAX:
nat tmpldelete
index = <number>
where:
index
The index of the address mapping template to be deleted.
REQUIRED
Tip
Use the command :nat tmpllistto view the
address mapping templates.
EXAMPLE:
=>nat tmpllist
Idx Type Interface
Use
1 NAPT any
0
Ifgroup Outside Address
Inside Address
unmapped
lan
any
100.200.100.1
100.100.100.1
2 NAPT myPPP_ppp
unmapped
0
=>nat tmpldelete index=1
=>nat tmpllist
Idx Type Interface
Use
1 NAPT myPPP_ppp
Ifgroup Outside Address
any 100.100.100.1
Inside Address
unmapped
0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
580
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat tmpllist
Display the address mapping templates.
SYNTAX:
nat tmpllist
where:
expand
[expand = <{disabled | enabled}>]
Enable or disable expanded listing.
OPTIONAL
The default is disabled.
EXAMPLE:
=>nat tmpllist
Idx Type Interface
Use
1 NAPT any
0
Ifgroup Outside Address
Inside Address
unmapped
lan
any
100.200.100.1
100.100.100.1
2 NAPT myPPP_ppp
unmapped
0
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
581
Download from Www.Somanuals.com. All Manuals Search And Download.
NAT Commands
nat tmplinst
Instantiate address mapping templates for a given dynamic address.
SYNTAX:
nat tmplinst
intf = <string>
addr_index = <ip-address>
dynamic_addr = <ip-address>
where:
intf
The IP interface name.
REQUIRED
REQUIRED
REQUIRED
addr_index
dynamic_addr
The outside IP address index/key to instantiate for.
The dynamic address to substitute the index/key with.
EXAMPLE:
=>nat tmplinst intf=myPPP_ppp addr_index=100.100.100.1 dynamic_addr=200.200.200.1
=>nat tmpllist
Idx Type Interface
Ifgroup Outside Address
Inside Address
Use
1 NAPT myPPP_ppp
any 100.100.100.1
unmapped
1
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
582
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
30 PPP Commands
Introduction
This chapter describes the commands of the pppcommand group.
Contents
This chapter covers the following commands:
Configure a PPP interface.
Remove all Ethernet interfaces from the PPP relay agent list and
terminate all sessions.
Add an Ethernet interface to the PPP relay list.
Delete an Ethernet interface from the PPP relay agent list.
Display all Ethernet interfaces added to the PPP relay agent list.
Add an Ethernet interface to the PPP relay list.
E-DOC-CTC-20061027-0003 v2.0
583
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp ifadd
Create a new PPP interface.
SYNTAX:
ppp ifadd
intf = <string>
where:
intf
The name for the new PPP interface.
REQUIRED
Note If not specified, the destination parameter must be specified.
In this case the name of the destination will double as
interface name.
EXAMPLE:
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
=>ppp ifadd intf=Rt_PPPoA
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest :
[00:00:00]
Retry : 10
mode = IP routing
flags = echo magic accomp restart mru addr savepwd
dns metric = 0 mru = 1500
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>
E-DOC-CTC-20061027-0003 v2.0
585
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
586
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
EXAMPLE:
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1500
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>ppp ifattach intf=Rt_PPPoA
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1500
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = up
oper state = down
link state = connected
LCP : state = reqsent retransm = 1 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
588
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp ifconfig
Configure a PPP interface.
The interface to be configured must not be connected at the time of configuration. If this should be
the case, use the command :ppp ifdetach before using the command :ppp ifconfig.
i
SYNTAX:
ppp ifconfig
intf = <string>
[dest = <string>]
[user = <string>]
[password = <password>
[acname = <quoted string>
[servicename = <quoted string>
[pcomp = <{disabled | enabled}>
[accomp = <{enabled | disabled | negotiate}>]
[trace = <{disabled | enabled}>]
[concentrator = <{disabled | enabled}>]
[auth = <{pap | chap | auto}>]
[restart = <{disabled | enabled}>]
[retryinterval = <number{0-65535}>]
[passive = <{disabled | enabled}>]
[silent = <{disabled | enabled}>]
[echo = <{disabled | enabled}>]
[mru = <number{293-8192}>]
[laddr = <ip-address>]
[raddr = <ip-address>]
[netmask = <ip-mask(dotted or cidr)>]
[format = <{cidr | dotted | none}>]
[pool = <none>]
[savepwd = <{disabled | enabled}>]
[demanddial = <{disabled | enabled}>]
[doddelay = <number{0-3600}>]
[primdns = <ip-address>]
[secdns = <ip-address>]
[dnsmetric = <number{0-100}>]
[idletime = <number{0-1000000}>]
[idletrigger = <{RxTx | Rx | Tx}>]
[unnumbered = <{disabled | enabled}>]
where:
intf
The name of the PPP interface to be configured.
REQUIRED
OPTIONAL
dest
The destination for this PPP interface.
Typically, a phonebook entry.
If an Ethernet interface is given as destination, then the connection
will be a PPPoE connection.
If an ATM interface is given as destination, then the connection will
be a PPPoA connection.
user
The user name for remote PAP/CHAP authentication.
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
589
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
password
acname
The password for remote PAP/CHAP authentication.
The Access Concentrator name for a PPPoE session.
OPTIONAL
OPTIONAL
Tip
Use the command :ppp ifscanto obtain the names of
available access concentrators, if any.
servicename
The Service Name for a PPPoE session.
Tip Use the command :ppp ifscanto obtain the available
service names, if any.
OPTIONAL
pcomp
Try (enabled) or do not try (disabled) to negotiate PPP protocol
compression (LCP PCOMP).
The default is disabled.
OPTIONAL
OPTIONAL
accomp
Try (enabled), do never try (disabled) or negotiate (negotiate) to
negotiate PPP address & control field compression (LCP ACCOMP).
In most cases, LCP ACCOMP should not be disabled nor negotiated,
in other words, the address field FF-03 should not be sent over ATM.
The default is enabled.
Note If the accomp parameter is set to “negotiate”, the local side
of the PPP connection demands to do ACCOMP and adapts
itself to the result of this negotiation.
trace
Enable or disable verbose console logging.
The default is disabled.
OPTIONAL
OPTIONAL
concentrator
The access concentrator is on this side of the PPPoE connection.
Choose between:
>
enabled: the PPP connection is terminated on the Access
Concentrator (here the Thomson ST itself)
>
disabled: the Thomson ST is PPP client.
The default is disabled.
auth
Select the authentication protocol.
Choose between:
OPTIONAL
>
>
>
pap: Password Authentication Protocol (PAP) authentication will
be forced.
chap: Challenge Handshake Authentication Protocol (CHAP)
authentication will be forced.
auto: CHAP authentication will be used. If CHAP authentication is
not successful, PAP authentication will be used instead.
The default is auto.
restart
Automatically restart the connection when Link Control
Protocol (LCP) link goes down (enabled) or not (disabled).
The default is disabled.
OPTIONAL
OPTIONAL
retryinterval
A number between 0 and 65535 (seconds).
Represents the intermediate interval between two retries to establish
the connection on ATM level.
The default is 10.
passive
Put the link in listening state in case LCP times out (enabled) or not
(disabled).
OPTIONAL
This parameter allows to determine whether the link should be left
open to wait for incoming messages from the remote side after 10
unsuccessful tries to establish the connection or not.
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
590
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
silent
Do not send anything at startup and just listen for incoming LCP
messages (enabled) or retry up to 10 times to establish the
connection (disabled).
OPTIONAL
The default is disabled.
echo
mru
Send LCP echo requests at regular intervals (enabled) or not
(disabled).
The default is disabled.
OPTIONAL
OPTIONAL
A number between 293 and 8192.
Represents the maximum packet size the Thomson ST should
negotiate to be able to receive.
The default is 1492.
laddr
The local IP address of the peer-to-peer connection.
Specifying a local IP address forces the remote side of the PPP link (if
it allows to) to accept this IP address as the Thomson ST PPP session
IP address.
OPTIONAL
If not specified, the Thomson ST will accept any IP address.
Typically the local IP address parameter is not specified.
raddr
The remote IP address of the peer-to-peer connection.
OPTIONAL
OPTIONAL
Specifying a remote IP address forces the remote side of the PPP link
(if it allows to) to accept this IP address as its PPP session IP address.
If not specified, the Thomson ST will accept any IP address.
Typically the remote IP address parameter is not specified.
netmask
The subnetmask associated with this address.
Specifying a subnetmask forces the remote side (if it allows to) to
accept this subnetmask as the PPP session subnetmask.
If not specified, the Thomson ST will accept any subnetmask.
The Thomson ST will only request/accept a subnetmask if a DHCP
server pool is associated, in other words, if the [pool] parameter is
specified.
format
The negotiated subnetmask specified in the netmask parameter is
specified in the dotted format (dotted) or in Classless Inter Domain
Routing (CIDR) format (cidr).
OPTIONAL
The default is cidr.
pool
The name of the free DHCP server pool to which the acquired IP
subnet must be assigned.
OPTIONAL
OPTIONAL
savepwd
Save password (enabled), if supplied, or do not save the password
(disabled).
The default is disabled.
demanddial
doddelay
primdns
Enable or disable the dial-on-demand feature.
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
A number between 0 and 3600 (seconds).
During this initial interval, packets do not trigger the PPP interface.
The IP address of the primary DNS server.
In case a primary DNS server is specified, the Thomson ST will
negotiate this IP address with the remote side.
Note If not specified, the Thomson ST will accept any IP address.
secdns
The IP address of the (optional) secondary DNS server.
In case a secondary DNS server is specified, the Thomson ST will
negotiate this IP address with the remote side.
OPTIONAL
Note If not specified, the Thomson ST will accept any IP address.
E-DOC-CTC-20061027-0003 v2.0
591
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
dnsmetric
A number between 1 and 100.
OPTIONAL
Represents the DNS route metric to be used for the negotiated DNS
servers.
The default is 1.
idletime
A number between 0 and 1000000 (seconds).
Represents the maximum time the link may be idle.
The default is 0.
OPTIONAL
OPTIONAL
idletrigger
Consider the link being idle if no traffic is sent and/or received during
the idle time. Choose between:
>
RxTx: The idle time period restarts when a packet is transmitted
or received.
>
Rx: The idle time period restarts when a packet is received.
Transmitted packets are ignored.
>
Tx: The idle time period restarts when a packet is transmitted.
Received packets are ignored.
The default is RxTx.
unnumbered
Takes the local IP address from the laddr field and remote IP address
from the IP address pool assigned to the incoming PPP link.
In case the unnumbered parameter is disabled, the same IP address
is used for each connection on the server side, thus reducing the
number of used IP addresses.
OPTIONAL
E-DOC-CTC-20061027-0003 v2.0
592
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
EXAMPLE:
=>ppp iflist
Internet: dest : RELAY
[00:00:00]
Retry : 10
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest :
[00:00:00]
Retry : 10
mode = IP routing
flags = echo magic accomp restart mru addr savepwd
dns metric = 0 mru = 1500
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=> ppp ifconfig intf=Rt_PPPoA dest=RtPPPoA_atm user=johndoe@ISP password=johndoe
[ppp]=>iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd
dns metric = 0 mru = 1500
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>
E-DOC-CTC-20061027-0003 v2.0
593
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp ifdelete
Delete a PPP interface.
SYNTAX:
ppp ifdelete
intf = <intfname>
where:
intf
The name of the PPP interface to be deleted.
REQUIRED
EXAMPLE:
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm [local disconnect]
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd
dns metric = 0 mru = 1500
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 9 term. reason = User kill
IPCP: state = initial retransm = 0 term. reason =
=>ppp ifdelete intf=Rt_PPPoA
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
=>
E-DOC-CTC-20061027-0003 v2.0
594
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
595
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
EXAMPLE:
=>ppp iflist
Internet: dest : RELAY
[00:00:00]
Retry : 10
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1500
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = up
oper state = down
link state = connected
LCP : state = reqsent retransm = 5 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>ppp ppp ifdetach intf=Rt_PPPoA
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm [local disconnect]
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1500
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 9 term. reason = User kill
IPCP: state = initial retransm = 0 term. reason =
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
597
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp iflist
Display the PPP interfaces.
SYNTAX:
ppp iflist
[intf = <intfname>]
[string = <string>]
[beginstring = <string>]
where:
intf
The name of the PPP interface.
OPTIONAL
Note If not specified, all PPP interfaces are shown.
string matching condition
string
beginstring
OPTIONAL
OPTIONAL
beginstring matching condition
EXAMPLE INPUT/OUTPUT :
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1500
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = up
oper state = down
link state = connected
LCP : state = reqsent retransm = 1 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
598
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp ifscan
Scan a PPPoE interface for available Access Concentrator and Service names.
Use the command :ppp ifdetachfor this interface before performing a scan on it.
i
SYNTAX:
ppp ifscan
intf = <string>
[time = <number{0-36000}>]
where:
intf
The name of the PPPoE interface to be scanned.
REQUIRED
OPTIONAL
time
A number between 0 and 36000 (seconds).
Represents the time to scan for services.
EXAMPLE:
=>ppp iflist
myRtPPPoE: dest : RtPPPoE_eth
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1492
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 9 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
=>ppp ifscan intf=myRtPPPoE time=45
Service Name
Access Concentrator
Done !
=>
E-DOC-CTC-20061027-0003 v2.0
599
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp rtadd
Add a route to the routing table when the PPP link comes up.
This route configuration will determine which local hosts are allowed to use this link and/or which remote
destinations should be or should not be reachable.
The interface must not be connected when a route configuration is added. If this should be the case,
use the command :ppp ifdetachfor this interface prior to configuring routes.
i
SYNTAX:
ppp rtadd
intf = <intfname>
dst = <ip-address>
[dstmsk = <ip-mask(dotted or cidr)>]
[label = <string>]
[src = <ip-address>]
[srcmsk = <ip-mask(dotted or cidr)>]
[metric = <number{0-100}>]
where:
intf
dst
The name of the PPP interface.
REQUIRED
REQUIRED
The IP destination address specification for the route to be added
when the link comes up.
dstmsk
The destination IP mask.
OPTIONAL
Depending on the destination netmask:
>
Any remote destination is reachable, in other words, the PPP
connection acts as default route (dstmsk=0)
>
>
Only the remote (sub)net is reachable (dstmsk=1)
The actual destination mask will be the default netmask
applicable for destination IP address
>
>
Only the single remote host is reachable (dstmsk=32)
Any valid (contiguous) netmask in case of Variable Length
Subnet Masking (VLSM).
label
src
The name of the label.
OPTIONAL
OPTIONAL
The IP source address specification for the route (in other words,
who can use this link).
srcmsk
The source IP mask.
OPTIONAL
Depending on the source netmask:
>
>
Everybody is allowed to use this PPP connection (dstmsk=0)
Only members of the same subnet as the host which opened the
PPP connection are allowed to use the PPP connection
(dstmsk=1)
>
>
>
The actual destination mask will be the netmask applicable for
the IP address of the host which opened the PPP connection
Only the host which opened the PPP connection is allowed to
use the PPP connection (dstmsk=32)
Any valid (contiguous) netmask in case of VLSM.
E-DOC-CTC-20061027-0003 v2.0
600
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
metric
The route metric, in other words, the cost factor of the route.
Practically, the cost is determined by the hop count.
OPTIONAL
EXAMPLE:
=>ppp iflist
Retry : 10
Internet: dest : RELAY
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd
dns metric = 0 mru = 1500
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>ppp rtadd intf=Rt_PPPoA dst=0.0.0.0/0 src=10.0.0.0/1
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1500
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
601
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp rtdelete
Delete the route for a PPP link.
The interface must not be connected when a route configuration must be deleted. If the interface is
connected, use the command :ppp ifdetachfor this interface.
i
SYNTAX:
ppp rtdelete
intf = <intfname>
where:
intf
The PPP interface name for which to delete the route settings.
REQUIRED
E-DOC-CTC-20061027-0003 v2.0
602
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
EXAMPLE:
=>ppp iflist
Internet: dest : RELAY
[00:00:00]
Retry : 10
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm [local disconnect]
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr route savepwd
dns metric = 0 mru = 1500
route : dst=0.0.0.0/0 - src=10.0.0.0/1 (metric 1)
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 9 term. reason = User kill
IPCP: state = initial retransm = 0 term. reason =
=>ppp ppp rtdelete intf=Rt_PPPoA
=>ppp iflist
Internet: dest : RELAY
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd demanddial
dns metric = 0 mru = 1492 Tx inactivity = 1200s left = 0s
auth = auto user =
admin state = down
password =
oper state = down
link state = not-connected
LCP : state = initial retransm = 10 term. reason =
IPCP: state = initial retransm = 0 term. reason =
acname : --- service : ---
Rt_PPPoA: dest : RtPPPoA_atm [local disconnect]
Retry : 10
[00:00:00]
mode = IP routing
flags = echo magic accomp restart mru addr savepwd
dns metric = 0 mru = 1500
auth = auto user = johndoe@ISP password = ********
admin state = down
oper state = down
link state = not-connected
LCP : state = initial retransm = 9 term. reason = User kill
IPCP: state = initial retransm = 0 term. reason =
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
603
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp relay flush
Remove all Ethernet interfaces from the PPP relay agent list and terminate all sessions.
The flush command does not impact previously saved configurations.
i
SYNTAX:
ppp relay flush
E-DOC-CTC-20061027-0003 v2.0
604
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp relay ifadd
Add an Ethernet interface to the PPP relay list.
SYNTAX:
ppp relay ifadd
intf = <string>
where:
intf
The Ethernet interface to be added to the PPP relay agent list.
REQUIRED
EXAMPLE:
=>ppp relay iflist
# Interface
1 ethoa_0_35
HWaddr
Status
00-0e-50-0f-fc-2d connected
=>ppp relay ifadd intf=ethoa_8_35
=>ppp relay iflist
# Interface
1 ethoa_0_35
2 ethoa_8_35
=>
HWaddr
Status
00-0e-50-0f-fc-2d connected
00-0e-50-0f-fc-2d connected
RELATED COMMANDS:
Delete an Ethernet interface from the PPP relay agent list.
Display all Ethernet interfaces added to the PPP relay agent list.
E-DOC-CTC-20061027-0003 v2.0
605
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp relay ifconfig
Modify an ethernet interface from the PPP relay agent list.
SYNTAX:
ppp relay ifconfig
intf = <string>
hwaddr = <hardware-address>
where:
inft
The ethernet intf to be added to the PPP relay agent list.
The hardware address (e.g. Ethernet MAC address) of this interface.
REQUIRED
hwaddr
REQUIRED
E-DOC-CTC-20061027-0003 v2.0
606
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp relay ifdelete
Delete an Ethernet interface from the PPP relay agent list.
SYNTAX:
ppp relay ifdelete
intf = <string>
where:
intf
The Ethernet interface to be deleted from the PPP relay agent list.
REQUIRED
EXAMPLE:
=>ppp relay iflist
# Interface
1 ethoa_0_35
2 ethoa_8_35
HWaddr
Status
00-0e-50-0f-fc-2d connected
00-0e-50-0f-fc-2d connected
=>ppp relay ifdelete intf=ethoa_8_35
=>ppp relay iflist
# Interface
1 ethoa_0_35
=>
HWaddr
Status
00-0e-50-0f-fc-2d connected
RELATED COMMANDS:
Add an Ethernet interface to the PPP relay list.
Display all Ethernet interfaces added to the PPP relay agent list.
E-DOC-CTC-20061027-0003 v2.0
607
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp relay iflist
Display all Ethernet interfaces added to the PPP relay agent list.
SYNTAX:
ppp relay iflist
where:
intf
The Ethernet interface to be added to the PPP relay agent list.
REQUIRED
EXAMPLE:
=>ppp relay iflist
# Interface
1 ethoa_0_35
2 ethoa_8_35
=>
HWaddr
Status
00-0e-50-0f-fc-2d connected
00-0e-50-0f-fc-2d connected
RELATED COMMANDS:
Add an Ethernet interface to the PPP relay list.
Delete an Ethernet interface from the PPP relay agent list.
E-DOC-CTC-20061027-0003 v2.0
608
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
ppp relay sesslist
Add an Ethernet interface to the PPP relay list.
SYNTAX:
ppp relay ifadd
intf = <string>
where:
intf
The Ethernet interface to be added to the PPP relay agent list.
REQUIRED
E-DOC-CTC-20061027-0003 v2.0
609
Download from Www.Somanuals.com. All Manuals Search And Download.
PPP Commands
E-DOC-CTC-20061027-0003 v2.0
610
Download from Www.Somanuals.com. All Manuals Search And Download.
PPTP Commands
pptp ifadd
Add a Point-to-Point Tunneling Protocol (PPTP) profile.
Backwards compatible with previous release, use profiles instead.
i
SYNTAX:
pptp ifadd
dest = <string>
[rate = <number{10-10000}>]
[encaps = <{vcmux | nlpid}>]
[ac = <{never | always | keep}>]
where:
dest
The WAN destination for this PPTP tunnel.
Typically a phonebook entry.
REQUIRED
OPTIONAL
rate
A number between 10 and 10000.
Represents the transmission speed (in bits/s) for the WAN link.
encaps
The type of WAN encapsulation to be used with this PPTP profile.
Choose between:
OPTIONAL
>
>
VC_MUX
Network Layer Protocol IDentifiers (NLPID).
The default is vcmux.
ac
The High-level Data Link Control (HDLC) framing option applicable
to PPTP interfaces using this PPTP profile.
Choose between:
OPTIONAL
>
>
>
always: Before relaying the encapsulated PPP frames over the
PPPoA link, make sure that the address and control field
(0xFF03) is always in front of the frames.
never: Before relaying the encapsulated PPP frames over the
PPPoA link, make sure the address and control field will never
be found in front of the frames.
keep: Do not change the frames arriving via the PPTP tunnel.
The default is never.
Note The default setting is compliant to RFC2364, therefore it is
recommended to keep this setting.
E-DOC-CTC-20061027-0003 v2.0
612
Download from Www.Somanuals.com. All Manuals Search And Download.
PPTP Commands
pptp profadd
Define a new PPTP profile.
SYNTAX:
pptp profadd
name = <string>
[qos = <string>]
[encaps = <{vcmux | nlpid}>]
[ac = <{never | always | keep}>]
where:
name
qos
The name of the new PPTP profile.
REQUIRED
OPTIONAL
The name of the qosbook entry, containing the settings for this
profile.
Note This parameter never needs to be specified.
encaps
The type of WAN protocol encapsulation to be used with this PPTP
OPTIONAL
profile.
Choose between:
>
>
VC-MUX
NLPID.
The default is vcmux.
ac
The HDLC framing option applicable to PPTP interfaces using this
OPTIONAL
PPTP profile.
Choose between:
>
>
>
always: Before relaying the encapsulated PPP frames over the
PPPoA link, make sure that the address and control field
(0xFF03) is always in front of the frames.
never: Before relaying the encapsulated PPP frames over the
PPPoA link, make sure the address and control field will never
be found in front of the frames.
keep: Do not change the frames arriving via the PPTP tunnel.
The default is never.
Note The default setting is compliant to RFC2364, therefore it is
recommended to keep this setting.
EXAMPLE:
=>pptp proflist
Profile
QoS
Encaps
AC
Relay_PPP1
default nlpid
always
=>pptp profadd name=PPTPLink encaps=vcmux ac=never
=>pptp proflist
Profile
Relay_PPP1
PPTPLink
=>
QoS
Encaps
AC
always
never
default nlpid
default vcmux
E-DOC-CTC-20061027-0003 v2.0
615
Download from Www.Somanuals.com. All Manuals Search And Download.
PPTP Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
616
Download from Www.Somanuals.com. All Manuals Search And Download.
PPTP Commands
pptp profdelete
Delete a PPTP profile.
SYNTAX:
pptp profdelete
name <string>
where:
name
The name of the PPTP profile to be deleted.
REQUIRED
EXAMPLE:
=>pptp proflist
Profile
QoS
Encaps
AC
Relay_PPP1
PPTPLink
default nlpid
default vcmux
always
never
=>pptp profdelete name=PPTPLink
=>pptp proflist
Profile
Relay_PPP1
=>
QoS
Encaps
AC
always
default nlpid
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
617
Download from Www.Somanuals.com. All Manuals Search And Download.
PPTP Commands
pptp proflist
Display all the current PPTP profiles.
SYNTAX:
pptp proflist
EXAMPLE:
=>pptp proflist
Profile
Relay_PPP1
PPTPLink
=>
QoS
Encaps
AC
always
never
default nlpid
default vcmux
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
618
Download from Www.Somanuals.com. All Manuals Search And Download.
Script Commands
32 Script Commands
Introduction
This chapter describes the commands of the scriptcommand group.
Scripting is not a general purpose mechanism but is only used in the autoPVC/ILMI mechanism.
It is recommended not to change the default scripts.
!
Contents
This chapter covers the following commands:
E-DOC-CTC-20061027-0003 v2.0
619
Download from Www.Somanuals.com. All Manuals Search And Download.
Script Commands
script add
Add a line to a script.
SYNTAX:
script add
name = <string>
[index = <number>]
command = <quoted string>
where:
name
Name of the script in which a line must be added.
Line number
REQUIRED
OPTIONAL
index
Note Use 0 to add a line.
Command.
command
REQUIRED
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
620
Download from Www.Somanuals.com. All Manuals Search And Download.
Script Commands
script delete
Delete a complete script or a line from a script.
SYNTAX:
script delete
name = <string>
[index = <number>]
where:
name
Name of the script to be deleted.
Line number to be deleted.
REQUIRED
OPTIONAL
index
Tip
Use the command :script listto view the line
numbers.
Note If not specified, the complete script will be deleted.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
621
Download from Www.Somanuals.com. All Manuals Search And Download.
Script Commands
script list
Display a script or all scripts.
SYNTAX:
script list
where:
[name = <string>]
name
Name of the script to be listed.
OPTIONAL
Note If not specified, all the scripts are displayed.
EXAMPLE
Some of the default scripts are shown below:
=>script list
Script: autopvc_add_qos
0: qosbook add name _auto_$1_$2 class $3 tx_peakrate $4 tx_sustrate $5 tx_maxburst $
6
rx_peakrate $4 rx_sustrate $5 rx_maxburst $6 dynamic yes
...
Script: autopvc_add_bridge
0: qosbook add name _auto_$1_$2 class $3 tx_peakrate $4 tx_sustrate $5 tx_maxburst $
6
rx_peakrate $4 rx_sustrate $5 rx_maxburst $6 dynamic yes
1: phonebook add name _auto_$1_$2 addr $1.$2 type any dynamic yes
2: bridge ifadd intf _auto_$1_$2 dest _auto_$1_$2
3: bridge ifconfig intf _auto_$1_$2 qos _auto_$1_$2
4: bridge ifattach intf _auto_$1_$2
Script: autopvc_delete_bridge
0: bridge ifdetach intf _auto_$1_$2
1: bridge ifdelete intf _auto_$1_$2
2: phonebook delete name _auto_$1_$2
3: qosbook delete name _auto_$1_$2
Script: autopvc_add_pppoerelay
0: qosbook add name _auto_$1_$2 class $3 tx_peakrate $4 tx_sustrate $5 tx_maxburst $
6
rx_peakrate $4 rx_sustrate $5 rx_maxburst $6 dynamic yes
1: phonebook add name _auto_$1_$2 addr $1.$2 type any dynamic yes
2: ethoa ifadd intf _auto_$1_$2 dest _auto_$1_$2
3: ethoa ifconfig intf _auto_$1_$2 qos _auto_$1_$2
4: ethoa ifattach intf _auto_$1_$2
5: ip ifwait intf _auto_$1_$2 timeout 15 adminstatus up
6: pppoe relay add port _auto_$1_$2
E-DOC-CTC-20061027-0003 v2.0
623
Download from Www.Somanuals.com. All Manuals Search And Download.
Script Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
624
Download from Www.Somanuals.com. All Manuals Search And Download.
Script Commands
script run
Run a script.
SYNTAX:
script run
name = <string>
pars = <string>
where:
name
Name of the script to be run.
REQUIRED
REQUIRED
Tip
Use the command :script listto obtain the names
of the different scripts.
pars
Parameters separated with comma.
For example a,b,c.
E-DOC-CTC-20061027-0003 v2.0
625
Download from Www.Somanuals.com. All Manuals Search And Download.
Script Commands
E-DOC-CTC-20061027-0003 v2.0
626
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host assign
Assign a service to a host device.
SYNTAX:
service host assign
name = <quoted string>
[host = <ip-address>]
[log = <{disabled|enabled}>]
where:
name
host
log
The name of an existing host service.
The IP address of the host.
Enable or disable logging.
REQUIRED
OPTIONAL
OPTIONAL
EXAMPLE:
=>service host assign name="MSN Messenger" host=192.168.1.64
=>service host list
Service Name
Host
User-Defined Mode
---------------------------------------------------------------------------
Age of Empires
AIM Talk
Aliens vs. Predator
unassigned
unassigned
unassigned
server
client
server
..
MSN Messenger
192.168.1.64
server
...
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
628
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host config
Modify and/or display global service configuration options.
SYNTAX:
service host config
[trace = <{disabled | enabled}>]
where:
trace
Enable or disable traces.
The default is disabled.
REQUIRED
EXAMPLE:
=>service host config
Service traces : disabled
l=>
E-DOC-CTC-20061027-0003 v2.0
629
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host add
Add a host service.
SYNTAX:
service host add
name = <quoted string>
[mode = <{server | client | custom}>]
where:
name
mode
The name of the new host service.
REQUIRED
OPTIONAL
The service mode.
Choose between:
>
>
>
server: The service is defined for server purposes.
client: The service is defined for client purposes.
custom: The service is a user created service (in other
words, a customized service).
The default is custom.
EXAMPLE:
=>service host list
Service Name
Host
User-Defined Mode
---------------------------------------------------------------------------
Age of Empires
AIM Talk
unassigned
unassigned
server
client
...
MSN Messenger
unassigned
server
=>service host add name=myService
=>service host list
Service Name
Host
User-Defined Mode
---------------------------------------------------------------------------
Age of Empires
AIM Talk
...
unassigned
unassigned
server
client
MSN Messenger
myService
=>
unassigned
unassigned
server
yes
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
630
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host delete
Delete a host service.
SYNTAX:
service host delete
name = <quoted string>
where:
name
The name of the host service to be deleted.
REQUIRED
EXAMPLE:
=>service host list
Service Name
Host
User-Defined Mode
---------------------------------------------------------------------------
Age of Empires
AIM Talk
unassigned
unassigned
server
client
...
MSN Messenger
myService
unassigned
unassigned
server
yes
=>service host delete name=myService
=>service host list
Service Name
Host
User-Defined Mode
---------------------------------------------------------------------------
Age of Empires
AIM Talk
...
unassigned
unassigned
server
client
MSN Messenger
=>
unassigned
server
RELATED COMMANDS:
Add a host service.
E-DOC-CTC-20061027-0003 v2.0
631
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host disable
Disable a host service.
SYNTAX:
service host disable
[name = <quoted string>]
where:
name
The name of the host service to be disabled.
Note If not specified, all the host services will be disabled.
OPTIONAL
EXAMPLE:
=>service host list
Service Name
---------------------------------------------------------------------------
Host
User-Defined Mode
Age of Empires
AIM Talk
Aliens vs. Predator
..
unassigned
unassigned
unassigned
server
client
server
MSN Messenger
...
192.168.1.64
server
=>service host disable name="MSN Messenger"
=>service host list
Service Name
Host
User-Defined Mode
---------------------------------------------------------------------------
Age of Empires
AIM Talk
Aliens vs. Predator
unassigned
unassigned
unassigned
server
client
server
..
MSN Messenger
unassigned
server
...
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
632
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host list
Display a list of host services.
SYNTAX:
service host list
[name = <quoted string>]
[string = <string>]
[beginstring = <string>]
where:
name
The name of the host service to be listed.
REQUIRED
Note If not specified, all the host services will be listed.
String matching condition
string
OPTIONAL
OPTIONAL
beginstring
Beginstring matching condition
EXAMPLE:
=>service host list
Service Name
Host
User-Defined Mode
---------------------------------------------------------------------------
Aliens vs. Predator
Asheron's Call
Battlecom
Black and White
Buddy Phone
Bungie.net
Citrix Metaframe
CU-SeeMe
unassigned
unassigned
unassigned
unassigned
unassigned
unassigned
unassigned
unassigned
unassigned
server
client
server
server
client
server
client
client
server
Dark Reign 2
...
Westwood Online
Yahoo Messenger Chat
=>
unassigned
unassigned
client
server
=>service host list name="MSN Messenger"
Service Name:"MSN Messenger" Host:unassigned User-Defined:no Mode:server
-------------------------------------------------------------------
Port 1863 for protocol tcp will be forwarded to host port 1863
Portrange 6891 - 6900 for protocol tcp will be forwarded to host portrange 6891 - 6900
Port 6901 for protocol tcp or udp will be forwarded to host port 6901
=>
RELATED COMMANDS:
Add a host service.
E-DOC-CTC-20061027-0003 v2.0
634
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host stats
Show the host service statistics.
SYNTAX:
service host stats
EXAMPLE:
=>service host stats
Services
: 113 of 150 in use.
Service maps : 225 of 300 in use.
Trigger ports: 0 of 25 in use.
=>
E-DOC-CTC-20061027-0003 v2.0
635
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host rule add
Create/define a host service portmap.
SYNTAX:
service host rule add
name = <quoted string>
[protocol = <{any|tcp|udp} or number>]
[baseport = <supported UDP port | number>]
portrange = <port-range>
[triggerport = <supported UDP port | number>]
[triggerprotocol = <{any|tcp|udp} or number>]
where:
name
The name of the host service.
REQUIRED
protocol
The IP protocol type.
Choose between:
OPTIONAL
OPTIONAL
>
>
>
>
any
tcp
udp
a number.
baseport
The inbound base port.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
Note If not specified, baseport is equal to the first port of
portrange.
portrange
triggerport
The outbound port range.
REQUIRED
OPTIONAL
The outbound trigger port.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
triggerprotocol
Protocol of the trigger port.
Choose between:
OPTIONAL
>
>
>
>
any
tcp
udp
a number.
Note If not specified, triggerprotocol is equal to protocol.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
637
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service host rule delete
Delete a host service portmap.
SYNTAX:
service host rule delete name = <quoted string>
[protocol = <{any|tcp|udp} or number>]
[baseport = <supported UDP port | number>]
portrange = <port-range>
[triggerport = <supported UDP port | number>]
[triggerprotocol = <{any|tcp|udp} or number>]
where:
name
The name of the host service.
REQUIRED
OPTIONAL
protocol
The IP protocol type.
Choose between:
>
>
>
>
any
tcp
udp
a number.
baseport
The inbound base port.
OPTIONAL
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
Note If not specified, baseport is equal to the first port of
portrange.
portrange
triggerport
The outbound port range.
REQUIRED
OPTIONAL
The outbound trigger port.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
triggerprotocol
Protocol of the trigger port.
Choose between:
OPTIONAL
>
>
>
>
any
tcp
udp
a number.
Note If not specified, triggerprotocol is equal to protocol.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
638
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system ifadd
Add an interface group to the access list.
SYNTAX:
service system ifadd
name = <string>
group = <{wan|local|lan|tunnel|dmz|guest} or
number>
where:
name
group
The name of the system service for this access list.
The interface group for this access list.
REQUIRED
REQUIRED
EXAMPLE:
=>service system list name=SIPPBX expand=enabled
Idx Name Protocol SrcPort DstPort Group
---------------------------------------------------------------------------------
1 SIPPBX udp 5060 disabled
State
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... any
Ip Access List............. any
NAT Port List.............. 5060
=>service system ifadd name=SIPPBX group=lan
=>service system list name=SIPPBX expand=enabled
Idx Name
---------------------------------------------------------------------------------
1 SIPPBX udp 5060 disabled
Protocol
SrcPort DstPort Group
State
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... lan
Ip Access List............. any
NAT Port List.............. 5060
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
639
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system ifdelete
Delete an interface group from the access list.
SYNTAX:
service system ifdelete
name = <string>
group = <{wan|local|lan|tunnel|dmz|guest} or
number>
where:
name
group
The name of the system service for this access list.
The interface group for this access list.
REQUIRED
REQUIRED
EXAMPLE:
=>service system list name=SIPPBX expand=enabled
Idx Name Protocol SrcPort DstPort Group
---------------------------------------------------------------------------------
1 SIPPBX udp 5060 disabled
State
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... lan
Ip Access List............. any
NAT Port List.............. 5060
=>service system ifdelete name=SIPPBX group=lan
=>service system list name=SIPPBX expand=enabled
Idx Name
---------------------------------------------------------------------------------
1 SIPPBX udp 5060 disabled
Protocol
SrcPort DstPort Group
State
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... any
Ip Access List............. any
NAT Port List.............. 5060
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
640
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system ipadd
Add an IP address (range) to the access list.
SYNTAX:
service system ipadd
name = <string>
ip = <ip-range>
where:
name
The name of the system service for this access list.
The IP address (range) for this access list.
REQUIRED
REQUIRED
ip
EXAMPLE:
=>service system list name=SIPPBX expand=enabled
Idx Name Protocol SrcPort DstPort Group
---------------------------------------------------------------------------------
1 SIPPBX udp 5060 disabled
State
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... any
Ip Access List............. any
NAT Port List.............. 5060
=>service system ipadd name=SIPPBX ip=192.168.1.64
=>service system list name=SIPPBX expand=enabled
Idx Name
---------------------------------------------------------------------------------
1 SIPPBX udp 5060 disabled
Protocol
SrcPort DstPort Group
State
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... any
Ip Access List............. 192.168.1.64
NAT Port List.............. 5060
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
641
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system ipdelete
Delete an IP address (range) from the access list.
SYNTAX:
service system ipdelete
name = <string>
ip = <ip-range>
where:
name
ip
The name of the system service for this access list.
The IP address (range) for this access list.
REQUIRED
REQUIRED
EXAMPLE:
=>service system list name=SIPPBX expand=enabled
Idx Name Protocol SrcPort DstPort Group
State
---------------------------------------------------------------------------------
1 SIPPBX udp 5060 disabled
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... any
Ip Access List............. 192.168.1.64
NAT Port List.............. 5060
=>service system ipdelete name=SIPPBX ip=192.168.1.64
=>service system list name=SIPPBX expand=enabled
Idx Name
Protocol
SrcPort DstPort Group
State
---------------------------------------------------------------------------------
1 SIPPBX
udp
5060
disabled
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... any
Ip Access List............. any
NAT Port List.............. 5060
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
642
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system list
Display the system services.
SYNTAX:
service system list
[name = <string>]
[expand = <{disabled | enabled}>]
[dynamics = <{disabled | enabled}>]
[members = <{disabled | enabled}>]
[string = <string>]
[beginstring = <string>]
where:
name
The name of the system service to be displayed.
OPTIONAL
Note If not specified, all the system services will be
displayed.
expand
Enable or disable expanded listing.
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
dynamics
members
Display dynamic sevices.
The default is disabled.
Display service group members.
The default is disabled.
string
String matching condition
OPTIONAL
OPTIONAL
beginstring
Beginstring matching condition
E-DOC-CTC-20061027-0003 v2.0
643
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
EXAMPLE:
=>service system list
Idx Name
Protocol
SrcPort DstPort Group
State
---------------------------------------------------------------------------------
1 DNS-C
2 SNTP
udp
udp
icmp
udp
icmp
udp
udp
tcp
tcp
tcp
tcp
tcp
udp
udp
udp
53
123
8
7
8
33434
514
80
443
8080
21
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
enabled
disabled
enabled
enabled
enabled
disabled
enabled
enabled
enabled
123
3 SLA_ICMP_PING
4 SLA_UDP_PING
5 SLA_ICMP_TRRT
6 SLA_UDP_TRRT
7 SYSLOG
8 HTTP
9 HTTPs
10 HTTPI
11 FTP
12 TELNET
13 RIP
14 RIP-Query
15 DNS-S
16 Dynamic DNS
17 DHCP-S
18 SNMP_AGENT
19 SNMP_TRAPS
20 MDAP
21 SIPPBX
22 IKE
23
520
520
520
53
udp
udp
udp
udp
udp
udp
49152
161
3235
5060
500
23 IP_COMMANDS
24 PING_RESPONDER
icmp
8
=>
=>service system list name=SIPPBX expand=enabled
Idx Name Protocol SrcPort DstPort Group
State
---------------------------------------------------------------------------------
1 SIPPBX
udp
5060
disabled
Description................ SIP PBX, registrar and proxy
Properties................. server
Managed parameters......... state port acl map log
Source Ip Selection........ auto
Interface Access List...... any
Ip Access List............. any
NAT Port List.............. 5060
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
644
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system mapadd
Add a port map for a system service.
SYNTAX:
service system mapadd
name = <{string}>
intf = <{auto|loop|Internet|LocalNetwork}>
port = <supported port or number>
where:
name
intf
The name of the system service for this map.
REQUIRED
The interface for this map.
REQUIRED
REQUIRED
port
The port for this map.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
645
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system mapdelete
Delete a port map for a system service.
SYNTAX:
service system mapdelete name = <string>
intf = <{auto|loop|Internet|LocalNetwork}>
port = <supported port or number>
where:
name
The name of the system service for this map.
REQUIRED
REQUIRED
REQUIRED
intf
The interface for this map.
port
The port for this map.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
646
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
service system modify
Modify a system service.
SYNTAX:
service system modify
name = <string>
[state = <{disabled | enabled}>]
[port = <supported port or number>]
[srcintf = <string>]
[log = <{disabled|enabled}>]
[qoslabel = <{None|DSCP|Interactive|
Management|Video|VoIP|default}>]
[routelabel = <{None|DSCP|Interactive|
Management|Video|VoIP|default}>]
[natpmweight = <number{0-255}>]
[forward = <{disabled|enabled}>]
where:
name
state
port
The name of the system service for this map.
Disable or enable this system service.
REQUIRED
OPTIONAL
OPTIONAL
The port for this map.
Select one of the supported TCP/UDP port names (see
alternatively, specify the port number.
srcintf
The primary IP interface for this system service.
Disable or enable service logging
QoS label for service data
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
log
qoslabel
routelabel
natpmweight
forward
Route label for service data
NAT portmap weight for this service
Disable or enable service forwarding
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
647
Download from Www.Somanuals.com. All Manuals Search And Download.
Service Commands
E-DOC-CTC-20061027-0003 v2.0
648
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
34 SNMP Commands
Introduction
This chapter describes the commands of the snmpcommand group.
Contents
This chapter covers the following commands:
Show/set global Simple Network Management
Protocol (SNMP) parameters.
Walk from the supplied SNMP OID.
E-DOC-CTC-20061027-0003 v2.0
649
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp config
Show/set global Simple Network Management Protocol (SNMP) parameters.
SYNTAX:
snmp config
[sysContact = <quoted string>]
[sysName = <quoted string>]
[sysLocation = <quoted string>]
where:
sysContact
The SNMP system contact.
OPTIONAL
The default is Service Provider.
sysName
The SNMP system name.
OPTIONAL
OPTIONAL
sysLocation
The SNMP system location.
The default is Customer Premises.
EXAMPLE:
=>snmp config
SNMP System Contact
SNMP System Name
SNMP System Location
: Service Provider
: SpeedTouch 620
: Customer Premises
All SNMP traps : ENABLED
Delay, in secs before first trap is sent
=>
: 90
E-DOC-CTC-20061027-0003 v2.0
650
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp get
Get from the supplied SNMP Object IDentifier (OID).
For example: get ObjectId=.1.3.6.1.2.1.1.1.0.
SYNTAX:
snmp get
where:
[ObjectId = <string>]
ObjectID
The Object Identifier. Object ID to get from ... must include the
instance which is 0 for scalar objects, for example
.1.3.6.1.2.1.1.1.0 sysDescription.
OPTIONAL
Note If not specified, the sysDescription OID .1.3.6.1.2.1.1.1.0
is assumed. Its value is Thomson ST.
EXAMPLE:
=>snmp get
VB_octetStr
=>
.1.3.6.1.2.1.1.1.0
Thomson ST 620
RELATED COMMANDS:
Walk from the supplied SNMP OID.
E-DOC-CTC-20061027-0003 v2.0
651
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp getnext
GetNext from the supplied SNMP OID.
SYNTAX:
snmp getnext
where:
[ObjectId = <string>]
ObjectID
The Object Identifier.
OPTIONAL
Object ID to getnext from for example .1.3.6.1.2.1.1 system
returns sysDescription.
EXAMPLE:
=>snmp getnext ObjectId=.1.3.6.1.2.1.1.4.0
VB_octetStr
=>
.1.3.6.1.2.1.1.5.0
Sascha
RELATED COMMANDS:
Walk from the supplied SNMP OID.
E-DOC-CTC-20061027-0003 v2.0
652
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp walk
Walk from the supplied SNMP OID.
SYNTAX:
snmp walk
where:
ObjectID
[ObjectId = <string>]
The Object Identifier.
OPTIONAL
Object ID to walk from for example .1.3.6.1.2.1.1 system walks
the system group.
EXAMPLE:
=>snmp walk ObjectId=.1.3.6.1.2.1.1
VB_octetStr
VB_objId
VB_timeTicks .1.3.6.1.2.1.1.3.0
.1.3.6.1.2.1.1.1.0
.1.3.6.1.2.1.1.2.0
Thomson ST 620
.1.3.6.1.4.1.637.61.2
2927636
VB_octetStr
VB_octetStr
VB_octetStr
VB_integer
=>
.1.3.6.1.2.1.1.4.0
.1.3.6.1.2.1.1.5.0
.1.3.6.1.2.1.1.6.0
.1.3.6.1.2.1.1.7.0
Service Provider
Sascha
Customer Premises
72
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
653
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp community add
Configure an SNMP community string to allow SNMP access over IP.
SYNTAX:
snmp community add
securityname = <{RWCommunity | ROCommunity}>
communityname = <password>
where:
securityname
Configure access rights/restrictions control for the community
name.
Choose between:
REQUIRED
REQUIRED
>
RWCommunity: read/write access rights
>
ROCommunity: read only access rights.
communityname
Configure the SNMP community name.
EXAMPLE:
=>snmp community add
securityname = RWCommunity
communityname = *******
Please retype communityname for verification.
communityname = *******
:snmp community add securityname=RWCommunity communityname=_DEV_2C6A78E1C41E7B01
=>snmp community add
securityname = ROCommunity
communityname = ******
Please retype communityname for verification.
communityname = ******
:snmp community add securityname=ROCommunity communityname=_DEV_184B05F89719A74E
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
654
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp community delete
Delete an SNMP community string to prevent SNMP access over IP.
SYNTAX:
snmp community delete
securityname = <{RWCommunity | ROCommunity}>
where:
securityname
Select the access rights/restrictions control for the community
REQUIRED
name to be deleted.
Choose between:
>
>
RWCommunity: read/write access rights
ROCommunity: read only access rights.
EXAMPLE:
=>snmp community list
Read-write SNMP community name : *****
Read-only SNMP community name : *****
=>snmp community delete securityname=ROCommunity
=>snmp community list
Read-write SNMP community name : *****
Read-only SNMP community name : not specified
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
655
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp community list
List all SNMP community strings in use for SNMP access over IP.
SYNTAX:
snmp community list
EXAMPLE:
=>snmp community list
Read-write SNMP community name : *****
Read-only SNMP community name : *****
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
656
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp community modify
Modify an SNMP community string to allow SNMP access over IP.
SYNTAX:
snmp community modify
securityname = <{RWCommunity | ROCommunity}>
communityname = <password>
where:
securityname
Configure access rights/restrictions control for the community
name.
Choose between:
REQUIRED
REQUIRED
>
>
RWCommunity: read/write access rights
ROCommunity: read only access rights.
communityname
Configure the SNMP community name.
E-DOC-CTC-20061027-0003 v2.0
657
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp ifadd
Create a new SNMP interface.
SYNTAX:
snmp ifadd
intf = <string>
dest = <string>
where:
intf
The name for the new SNMP interface.
REQUIRED
REQUIRED
dest
The destination interface for this SNMP interface.
EXAMPLE:
=>snmp ifadd
intf = new
dest = Internet
:snmp ifadd intf=new dest=Internet
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
658
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp ifdelete
Delete an SNMP interface.
SYNTAX:
snmp ifdelete
intf = <string>
where:
intf
The name of the SNMP interface.
REQUIRED
EXAMPLE:
=>snmp ifdelete
intf = new
:snmp ifdelete intf=new
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
659
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp ifattach
Attach an SNMP interface.
SYNTAX:
snmp ifattach
intf = <string>
where:
intf
The name of the SNMP interface.
REQUIRED
EXAMPLE:
=>snmp ifattach
intf = Internet
:snmp ifattach intf=Internet
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
660
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp ifdetach
Detach an SNMP interface.
SYNTAX:
snmp ifdetach
intf = <string>
where:
intf
The name of the SNMP interface.
REQUIRED
EXAMPLE:
=>snmp ifdetach
intf = Internet
:snmp ifdetach intf=Internet
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
661
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
snmp ifconfig
Modify an SNMP interface.
SYNTAX:
snmp ifconfig
intf = <string>
[securityname = <{RWCommunity | ROCommunity}>]
[communityname = <password>]
where:
intf
The name of the SNMP interface to configure.
REQUIRED
securityname
Configure access rights/restrictions control for the community
OPTIONAL
name.
Choose between:
>
>
RWCommunity
ROCommunity.
The default is RWCommunity.
communityname
Configure SNMP community name.
OPTIONAL
EXAMPLE:
=>snmp ifconfig
intf = Internet
[securityname] =
[communityname] =
:snmp ifconfig intf=Internet
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
662
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP Commands
E-DOC-CTC-20061027-0003 v2.0
664
Download from Www.Somanuals.com. All Manuals Search And Download.
SNTP Commands
sntp add
Add a Network Time Protocol (NTP) server to the NTP server list.
The internal Thomson ST real time clock (SNTP client) will be synchronized with the NTP server.
SYNTAX:
sntp add
[addr = <ip-address>]
[name = <string>]
[version = <number{1-4}>]
where:
addr
The IP address of the NTP server to add to the list.
OPTIONAL
OPTIONAL
Note This parameter is optional in this respect that either an IP
address or the name of an NTP server must be specified.
name
The DNS name of NTP server to be added to list. If both the IP address
and the DNS name are provided, the IP address is ignored.
Note This parameter is optional in this respect that either an IP
address or the name of an NTP server must be specified
version
The SNTP version of the NTP server.
Select either 1, 2, 3, or 4 following NTP server supported versions.
The default is 4.
OPTIONAL
EXAMPLE:
=>sntp list
IP Address
100.101.110.113
Version
4
Status
Synchronized
=>sntp add addr=100.101.110.111
=>sntp list
IP Address
100.101.110.111
100.101.110.113
=>
Version
4
4
Status
contacting ...
Synchronized
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
666
Download from Www.Somanuals.com. All Manuals Search And Download.
SNTP Commands
sntp config
Modify/display the SNTP client configuration.
SYNTAX:
sntp config
[state = <{enabled | disabled}>]
[poll = <number{1-60}>]
[pollpresync = <number{1-60}>]
where:
state
Enable or disable the Thomson ST SNTP client.
The default is enabled.
OPTIONAL
OPTIONAL
poll
A number between 1 and 60 (minutes).
Represents the time interval for the SNTP client to poll the configured
NTP server and, if needed, (re-)synchronize its internal clock.
The default is 60.
pollpresync
polling interval before first sync (1 min, ... ,60min)
OPTIONAL
EXAMPLE:
=>sntp config
SNTP configuration:
state = enabled
poll interval = 60 minute(s)
poll interval (before first sync) = 60 minute(s)
=>
E-DOC-CTC-20061027-0003 v2.0
667
Download from Www.Somanuals.com. All Manuals Search And Download.
SNTP Commands
sntp delete
Delete an NTP server from the NTP server list.
SYNTAX:
sntp delete
[addr = <ip-address>]
[name = <string>]
where:
addr
The IP address of the NTP server to be removed from the list.
OPTIONAL
Note This parameter is optional in this respect that either an IP
address or the name of an NTP server must be specified.
name
The DNS name of the NTP server to be removed to the list.
OPTIONAL
Note This parameter is optional in this respect that either an IP
address or the name of an NTP server must be specified.
EXAMPLE:
=>sntp list
IP Address
Version
Status
100.101.110.111
100.101.110.113
4
4
contacting ...
Synchronized
=>sntp del addr=100.101.110.111
=>sntp list
IP Address
100.101.110.113
=>
Version
4
Status
Synchronized
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
668
Download from Www.Somanuals.com. All Manuals Search And Download.
SNTP Commands
sntp list
List the NTP servers.
SYNTAX:
sntp list
EXAMPLE:
=>sntp list
IP Address
Version
Status
contacting ...
Unable to contact
Synchronized
Name
100.101.110.111
100.101.110.112
100.101.110.113
=>
4
4
4
DESCRIPTION:
The status of an NTP server can be:
>
>
>
Not used: The Thomson ST SNTP client is disabled. As a consequence, none of the NTP servers are used.
Contacting...: The Thomson ST SNTP client is trying to contact this NTP server.
Unable to contact: The Thomson ST SNTP client is unable to contact this NTP server. It may be down, or
no end-to-end connectivity exists (no connection, no DSL,...).
>
Synchronized: The Thomson ST SNTP client was able to contact this NTP server. If required the internal
clock has been synchronized with this NTP server.
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
670
Download from Www.Somanuals.com. All Manuals Search And Download.
Software Commands
36 Software Commands
Introduction
This chapter describes the commands of the softwarecommand group.
Contents
This chapter covers the following commands:
Reboot the modem to initiate the SW upgrade.
Display the software version.
E-DOC-CTC-20061027-0003 v2.0
671
Download from Www.Somanuals.com. All Manuals Search And Download.
Software Commands
E-DOC-CTC-20061027-0003 v2.0
674
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
37 System Commands
Introduction
This chapter describes the commands of the systemcommand group.
Contents
This chapter covers the following commands:
Set/get date, time, timezone, daylight savings time, uptime.
E-DOC-CTC-20061027-0003 v2.0
675
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system config
Set/change the system configuration parameters.
For a good operation of UPnP and the discovery mechanism, it is highly recommended not to
change the system configuration settings.
!
SYNTAX:
system config
[upnp = <{disabled | enabled}>]
[tr64 = <{disabled | enabled}>]
[mdap = <{disabled | enabled}>]
[drst = <{disabled | enabled}>]
[led = <{green | red | orange | flash | off}>]
[resetbutton = <{disabled | enabled}>]
[digestauth = <{disabled | enabled}>]
[defaultconnection = <string>]
[rtc = <{disabled|enabled}>]
[autosave = <{disabled | enabled}>]
[autosavedelay = <number{0-600}>]
where:
upnp
Enable or disable UPnP discovery.
OPTIONAL
The default is enabled.
tr64
mdap
drst
led
Enable or disable TR-64 discovery.
The default is disabled.
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
Enable or disable proprietary discovery protocol.
The default is enabled.
Enable or disable DrSpeedTouch access.
The default is disabled.
Set the system LED colour.
Choose between:
>
>
>
>
>
green: solid green
red: solid red
orange: solid orange
flash: toggle between green and orange
off: LED is off.
The default is green.
resetbutton
Enable or disable reset-to-factory-defaults pushbutton.
The default is enabled.
OPTIONAL
OPTIONAL
digestauth
Enable or disable HTTP digest authentication.
The default is enabled.
defaultconnection
rtc
The name of the default internet connection.
OPTIONAL
OPTIONAL
Enable or disable RTC.
The default is disabled
autosave
Enable or disable autosaves.
OPTIONAL
The default is enabled.
E-DOC-CTC-20061027-0003 v2.0
676
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
autosavedelay
A number between 0 and 600.
OPTIONAL
Represents the autosave delay in seconds (0 for immediate save).
EXAMPLE:
=>system config
upnp discovery
TR-64 discovery
mdap discovery
drst support
: enabled
: disabled
: enabled
: disabled
: enabled
reset button
digest authentication : enabled
rtc
: enabled
: Internet
: enabled
: 10s
defaultconnection
autosave
autosave delay
=>
E-DOC-CTC-20061027-0003 v2.0
677
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system flush
Flush the current system configuration.
The system password and the system config settings (dcache excluded) are flushed.
The flush command does not impact previously saved configurations.
i
SYNTAX:
system flush
EXAMPLE:
=>system flush
Security notification: Password changed, use 'saveall' to make it permanent.
=>
E-DOC-CTC-20061027-0003 v2.0
678
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system locale
Set/get the regional settings.
SYNTAX:
system locale
[dec_symbol = <{, | .}>]
[group_symbol = <{. | ,}>]
[date_separator = <{/ | - | .}>]
[date_format = <{iso | ddmmyyyy | ddmmyy | mmddyyyy |
mmddyy}>]
[time_format = <{iso | hmmss}>]
[datetime_format = <{iso | date+time | time+date}>]
[duration_format = <{dhmmss | hmmss}>]
where:
dec_symbol
Set the decimal symbol.
Choose between:
OPTIONAL
>
>
.
,
The default is “,”.
group_symbol
date_separator
Set the group symbol.
Choose between:
OPTIONAL
OPTIONAL
>
>
.
,
The default is “.”.
Set the date separator.
Choose between:
>
>
>
/
-
.
The default is “-”.
date_format
Set the date format.
Choose between:
OPTIONAL
>
>
>
>
>
iso
ddmmyyyy
ddmmyy
mmddyyyy
mmddyy
The default is ddmmyyyy.
Note dd = day; mm = month; yyyy or yy = year.
E-DOC-CTC-20061027-0003 v2.0
679
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
time_format
Set the time format.
Choose between:
OPTIONAL
>
>
iso
hmmss.
The default is iso.
Note h = hours; mm = minutes; ss = seconds.
datetime_format
duration_format
Set the date-time format.
Choose between:
OPTIONAL
OPTIONAL
>
>
>
iso
date+time
time+date.
The default is date+time.
Set the duration format.
Choose between:
>
>
dhmmss
hmmss.
The default is dhmmss.
Note d = days; h = hours; mm = minutes; ss = seconds.
EXAMPLE:
=>system locale
Decimal symbol
= ,
Digit grouping symbol = .
Date separator
Date format
Time format
Date-time format
Duration format
=>
= -
= ddmmyyyy
= iso
= date+time
= dhmmss
E-DOC-CTC-20061027-0003 v2.0
680
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system reboot
Reboot the Thomson ST.
Non-saved configuration settings will be lost after reboot.
!
SYNTAX:
system reboot
EXAMPLE:
=>system reboot
.....
(lost session connectivity due to reboot)
.....
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
681
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system reset
Reset the Thomson ST to its factory or ISP defaults and reboot the device.
All user specific settings and all saved configuration changes are lost after reboot.
!
SYNTAX:
system reset
factory yes/no = <{yes | no}>
proceed no/yes = <{no | yes}>
where:
factory yes/no
Choose between:
REQUIRED
REQUIRED
>
>
yes: delete user and ISP specific settings.
no: delete user specific settins only.
proceed no/yes
Confirmation for resetting the modem.
If no confirmation is given, the Thomson ST will not be reset.
EXAMPLE:
=>system reset
---------------
!! WARNING !!
---------------
The modem will be reset to (factory) defaults clearing all user (and ISP) settings.
Specifying <factory=yes> deletes user and ISP specific settings.
Connectivity with the ISP network might be lost.
<factory=no> deletes user specific settings only.
factory yes/no = no
proceed no/yes = no
:system reset factory yes/no=no proceed no/yes=no
=>
=>system reset
---------------
!! WARNING !!
---------------
The modem will be reset to (factory) defaults clearing all user (and ISP) settings.
Specifying <factory=yes> deletes user and ISP specific settings.
Connectivity with the ISP network might be lost.
<factory=no> deletes user specific settings only.
factory yes/no = yes
proceed no/yes = yes
:system reset factory yes/no=yes proceed no/yes=yes
.....
(lost session connectivity due to reboot)
.....
E-DOC-CTC-20061027-0003 v2.0
682
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
683
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system timedreboot
Set or change a timed reboot for the Thomson ST.
SYNTAX
timedreboot
[state = <{disabled|enabled}>]
[time = <number{0-16384}>]
[date = <string>]
where:
state
Enable/Disable timed reboot.
The default is disabled.
OPTIONAL
OPTIONAL
time
date
Change default countdown time (Min).
A number between 0 and 16384.
The default is 60.
Set date/time to reboot (DD/MM/YYYY/HH:MM).
The default is the current day and time
OPTIONAL
EXAMPLE:
=>:system timedreboot state=enabled time=60
input timeout (min): 60
=>
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
684
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system debug stats
Show the Thomson ST CPU and memory statistics.
SYNTAX:
system debug stats [reset = <{disabled | enabled}>]
where:
reset
Reset the CPU statistics.
OPTIONAL
The default is disabled.
DESCRIPTION:
>
>
>
CHIP memory: Memory used by the CPU (first MB from the RAM) – not cached since it has to be realtime.
Application memory: Memory used by the applications.
min: The least amount of free memory detected during the uptime of the Thomson ST.
E-DOC-CTC-20061027-0003 v2.0
686
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system ra config
Configure Remote management access parameters.
SYNTAX:
system ra config
[secure = <{disabled | enabled}>]
[port = <number>]
[timeout = <number>]
where:
secure
Enable or disable https.
The default is enabled.
OPTIONAL
OPTIONAL
OPTIONAL
port
Set the destination port for remote access.
The default is 51003.
timeout
Set the connection timeout in minutes.
EXAMPLE:
=>system ra config
Remote management access configuration
Remote access port
: 51003
Secure remote access : enabled
=>
E-DOC-CTC-20061027-0003 v2.0
687
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
system rtc settime
Set/get date, time, timezone, daylight savings time, uptime.
When synchronization with an external NTP server via the Thomson ST SNTP client fails, this command
allows to manually configure its internal clock.
In cases without regular synchronization, accurate realtime clock settings can not be guaranteed.
i
SYNTAX:
system rtc settime [date = <dd/mm/yyyy>]
[time = <hh:mm:ss>]
[timezone = <(+ or -)hh:mm>]
[daylightsaving = <{disabled | enabled}>]
where:
date
The system date formatted as dd/mm/yyyy.
OPTIONAL
OPTIONAL
OPTIONAL
Note If not specified, the current date is preserved.
The system time formatted as hh:mm:ss.
time
Note If not specified, the current time is preserved.
timezone
The system timezone formatted as (+ or -)hh:mm.
Valid timezones are possible from -12:00 to +14:00 with a resolution
of 15 minutes.
Note If not specified, the current timezone is preserved.
daylightsaving
Enable or disable daylight saving.
OPTIONAL
The default is disabled.
Note If not specified, the current daylight saving setting is
preserved.
EXAMPLE:
=>system settime
date = 31/01/2005
time = 18:05:16
timezone = +00:00
daylightsaving = off
=>
E-DOC-CTC-20061027-0003 v2.0
689
Download from Www.Somanuals.com. All Manuals Search And Download.
System Commands
E-DOC-CTC-20061027-0003 v2.0
690
Download from Www.Somanuals.com. All Manuals Search And Download.
Systemlog Commands
systemlog show
Show messages in the internal Syslog message buffer.
SYNTAX:
systemlog show
[fac = <supported facility name>]
[sev = <supported severity name>]
[hist = <{disabled | enabled}>]
where:
fac
Specify the facility name of the syslog messages to be shown.
Use one of the supported facility names (see “ Supported Facilities”
OPTIONAL
OPTIONAL
Note If not specified, the messages of all the facilities will be
shown.
sev
Specify the lowest priority severity of the syslog messages to be
shown.
All the syslog messages with severity as specified or higher will be
shown.
Use one of the supported severity names (see “ Supported
Note If not specified, the messages of all the severities will be
shown.
hist
Show messages over several Thomson ST reboots (enabled) or show
only messages since latest startup (disabled).
OPTIONAL
Note If not specified, only the recent messages will be shown.
E-DOC-CTC-20061027-0003 v2.0
693
Download from Www.Somanuals.com. All Manuals Search And Download.
Systemlog Commands
EXAMPLE:
=>syslog msgbuf show fac=kern sev=emerg hist=enabled
<0> SysUpTime: 14:45:43 KERNEL Controlled restart (after internal error or explicit system re
boot)
<0> SysUpTime: 02:58:18 KERNEL Controlled restart (after internal error or explicit system re
boot)
<0> SysUpTime: 04 days 04:52:37 KERNEL Controlled restart (after internal error or explicit s
ystem reboot)
<0> SysUpTime: 00:00:41 KERNEL Controlled restart (after internal error or explicit system re
boot)
=>syslog msgbuf show fac=kern sev=warning hist=enabled
<4> SysUpTime: 00:00:00 KERNEL Cold restart
<0> SysUpTime: 14:45:43 KERNEL Controlled restart (after internal error or explicit system re
boot)
<4> SysUpTime: 00:00:00 KERNEL Warm restart
<0> SysUpTime: 02:58:18 KERNEL Controlled restart (after internal error or explicit system re
boot)
<4> SysUpTime: 00:00:00 KERNEL Warm restart
<0> SysUpTime: 04 days 04:52:37 KERNEL Controlled restart (after internal error or explicit s
ystem reboot)
<4> SysUpTime: 00:00:00 KERNEL Warm restart
<0> SysUpTime: 00:00:41 KERNEL Controlled restart (after internal error or explicit system re
boot)
=>
E-DOC-CTC-20061027-0003 v2.0
694
Download from Www.Somanuals.com. All Manuals Search And Download.
Systemlog Commands
systemlog send
Send messages from the internal Syslog message buffer to a specified local or remote syslog server host.
There will be no notification on whether the host has received the messages or not.
i
SYNTAX:
systemlog send
[fac = <supported facility name>]
[sev = <supported severity name>]
[hist = <{disabled | enabled}>]
dest = <ip-address>
where:
fac
Specify the facility name of the syslog messages to show.
Use one of the supported facility names (see “ Supported Facilities”
OPTIONAL
OPTIONAL
Note If not specified, the messages of all the facilities will be
shown.
sev
Specify the lowest priority severity of the syslog messages to be
shown.
All the syslog messages with severity as specified or higher will be
shown.
Use one of the supported severity names (see “ Supported
Note If not specified, the messages of all the severities will be
shown.
hist
Show messages over several Thomson ST reboots (disabled) or show
only messages since latest startup (enabled).
OPTIONAL
REQUIRED
Note If not specified, only the recent messages will be shown.
dest
The IP address of the remote host on the local or remote network, in
other words, the collector's IP address, to send the syslog messages
to.
E-DOC-CTC-20061027-0003 v2.0
695
Download from Www.Somanuals.com. All Manuals Search And Download.
Systemlog Commands
systemlog DBG dbg_syslog
Perform a syslog call.
SYNTAX:
systemlog DBG dbg_syslog priority = <number{0-191}>
msgstring = <string>
where:
priority
priority number
message content
msgstring
E-DOC-CTC-20061027-0003 v2.0
696
Download from Www.Somanuals.com. All Manuals Search And Download.
Systemlog Commands
E-DOC-CTC-20061027-0003 v2.0
700
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
39 Upgrade Commands
Introduction
This chapter describes the commands of the upgradecommand group.
Contents
This chapter covers the following commands:
Add a new file profile description.
E-DOC-CTC-20061027-0003 v2.0
701
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade config
Change the upgrade daemon configuration.
SYNTAX:
upgrade config [state = <{disabled|enabled}>]
[protocol = <{tftp|ftp|http|https}>]
where:
state
Set the upgrade daemon state to enabled or disabled.
The default is disabled.
OPTIONAL
OPTIONAL
protocol
The transfer protocol to be used for file download.
Choose between:
>
>
>
>
tftp
ftp
http
https
The default is tftp.
EXAMPLE:
=>:upgrade config
Upgrade daemon state: disabled
Upgrade daemon transfer protocol: tftp
Upgrade daemon option 66:
Upgrade daemon option 67:
=>
E-DOC-CTC-20061027-0003 v2.0
702
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade start
Start a new upgrade.
SYNTAX:
upgrade start
protocol = <{tftp|ftp|http|https}>
[server = <string>]
[filename = <string>]
where:
protocol
The protocol to be used for the download.
Choose between:
REQUIRED
>
>
>
>
tftp
ftp
http
https
The default is disabled.
server
The server name or IP address
The file to be downloaded
OPTIONAL
OPTIONAL
filename
E-DOC-CTC-20061027-0003 v2.0
703
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade debug traceconfig
Enable/disable upgrade daemon tracing.
SYNTAX:
upgrade debug traceconfig state = <{disabled|enabled}>
where:
state
Set the upgared daemon state to enabled or disabled.
REQUIRED
E-DOC-CTC-20061027-0003 v2.0
704
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade debug sesslist
Display the list of sessions.
SYNTAX:
upgrade debug sesslist
EXAMPLE:
=>:upgrade debug sesslist
Session 0:
---------------------------------------------------------------
SessionId : 0x80c25850
State : IDLE
Protocol : TFTP
ServerName:
FileName :
DestFile :
ServerIP : 0.0.0.0
Error
:
Session 1:
---------------------------------------------------------------
SessionId : 0x80c25c20
State
: IDLE
Protocol : TFTP
ServerName:
FileName :
DestFile :
ServerIP : 0.0.0.0
Error
=>
:
E-DOC-CTC-20061027-0003 v2.0
705
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade profile add
Add a new file profile description.
SYNTAX:
upgrade profile add
extension = <{sts|ini}>
[maxsize(KBytes) = <number>]
action = <{none|config_load|script_load|reboot}>
where:
extension
The extension of the new file profile.
Choose between:
REQUIRED
>
>
sts
ini
The maximum filesize (in KBytes) allowed for files with the
extension of this profile.
The default is 100.
OPTIONAL
REQUIRED
maxsize
action
The action to be done when the file with the extension of this
profile is downloaded.
Choose between:
>
>
>
>
none
config_load
script_load
reboot
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
706
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade profile modify
Modify a file profile description.
SYNTAX:
upgrade profile modify extension = <{sts|ini}>
[maxsize(KBytes) = <number>]
action = <{none|config_load|script_load|reboot}>
where:
extension
The extension of the new file profile.
Choose between:
REQUIRED
>
>
sts
ini
The maximum filesize (in KBytes) allowed for files with the
extension of this profile.
The default is 100.
OPTIONAL
REQUIRED
maxsize
action
The action to be done when the file with the extension of this
profile is downloaded.
Choose between:
>
>
>
>
none
config_load
script_load
reboot
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
707
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade profile delete
Delete a file profile description.
SYNTAX:
upgrade profile delete extension = <{sts|ini}>
where:
extension
The extension of the profile to be deleted.
Choose between:
REQUIRED
>
>
sts
ini
RELATED COMMANDS:
Add a new file profile description.
E-DOC-CTC-20061027-0003 v2.0
708
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
upgrade ifconfig
Configure a download interface.
SYNTAX:
upgrade ifconfig intf = <string>
[protocol = <{tftp|ftp|http|https}>]
[dest = <{loop|Internet|ISDN_backup| ISDN_backup_trigger|
lan1|wan1|dmz1|guest1}>]
[server = <string>]
[file = <string>]
[time = <number>]
where:
Intf
A download interface
The transfer protocol
The destination network interface name
The server name
REQUIRED
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
protocol
dest
server
file
The file name
time
download cycle time in s
RELATED COMMANDS:
E-DOC-CTC-20061027-0003 v2.0
712
Download from Www.Somanuals.com. All Manuals Search And Download.
Upgrade Commands
E-DOC-CTC-20061027-0003 v2.0
716
Download from Www.Somanuals.com. All Manuals Search And Download.
UPnP Commands
upnp config
Configure the UPnP™ parameter(s).
SYNTAX:
upnp config
[maxage = <number{60-999999}>]
[writemode = <{full | natonly | readonly}>]
[safenat = <{disabled | enabled}>]
[preferredaddress = <ip-address>]
[httpport = <number{1-65535}>]
where:
maxage
A number between 60 and 999999.
OPTIONAL
OPTIONAL
This parameter allows to configure how often the Thomson ST sends a
notification message to advertise its presence as an Internet Gateway
Device (IGD) on the network.
The default is 1800.
Note Setting this parameter to a low value will increase the number of
packets sent over time on the network, but will make the state of
the device more up to date.
writemode
Choose the set of rules to limit remote access from UPnP.
Choose between:
>
>
full: the host will accept all the UPnP SET and GET actions.
natonly: GET and NAT related SET actions will be accepted, all other
actions will be ignored.
>
readonly: the UPnP control point will only be able to retrieve
information, all the SET actions are ignored.
The default is natonly.
safenat
Enable or disable check on safe NAT entries.
If this check is enabled, all NAT create/delete requests for a LAN side IP
address different from the source IP address of the UPnP message will be
discarded.
OPTIONAL
The default is enabled.
preferreda
ddress
CSV list of preferred IP address for UPnP advertisements (1 per LAN IP
interface).
OPTIONAL
OPTIONAL
Note Enter “0.0.0.0” for none.
httpport
A number between 1 and 65535.
Represents the web server port.
The default is 80.
E-DOC-CTC-20061027-0003 v2.0
718
Download from Www.Somanuals.com. All Manuals Search And Download.
UPnP Commands
upnp list
List all registered devices.
Use this command to check whether a PPP connection is properly configured and thus advertised
as a PPP service.
i
SYNTAX:
upnp list
[verbose = <number{0-2}>]
where:
verbose
Verbose level.
The default is 1.
OPTIONAL
EXAMPLE:
=>upnp list
---------------- device: IGD.xml ------------
Advertised on: LocalNetwork (10.0.0.138)
-------------- devices/services ------------
++ Root Device: urn:schemas-upnp-org:device:InternetGatewayDevice:1
-- Service 1: urn:upnp-org:serviceId:layer3f
-- Service 2: urn:upnp-org:serviceId:lanhcm
-- Service 3: urn:upnp-org:serviceId:wancic
-- Service 4: urn:upnp-org:serviceId:wandsllc:RELAY
-- Service 5: urn:upnp-org:serviceId:wanpppc:Internet
---------------------- end -----------------
=>
E-DOC-CTC-20061027-0003 v2.0
720
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
41 User Commands
Introduction
This chapter describes the commands of the usercommand group.
Contents
This chapter covers the following commands:
Add a user.
Modify a user.
Delete a user.
Flush the users.
Display the users.
Display the session rights.
E-DOC-CTC-20061027-0003 v2.0
721
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
user add
Add a user.
You can only add a user whose privileges are the same or lower than your own privileges.
i
SYNTAX:
user add name = <quoted string>
password = <password>
role = <string>
[hash2 = <string>]
[descr = <quoted string>]
[defuser = <{disabled | enabled}>]
[defremadmin = <{disabled | enabled}>]
[deflocadmin = <{disabled | enabled}>]
where:
name
The new user name.
REQUIRED
Note 1. The maximum number of users is 10.
2. The maximum length is 32 characters.
The password.
password
role
REQUIRED
REQUIRED
Note The maximum length is 32 characters.
The role name.
Tip
Use the command :mlp role listto obtain the role
tion).
hash2
descr
The MD5 hash.
OPTIONAL
OPTIONAL
OPTIONAL
Note The maximum length is 32 characters.
A user description.
Note The maximum length is 63 characters.
Set this user as the default user (enabled) or not (disabled).
defuser
Note When the Web interface is accessed, the account of this user
will be used by default. The user will not need to
authenticate himself with user name or password.
The default is disabled.
defremadmin
deflocadmin
Set this user as the default remote administrator (enabled) or not
(disabled).
The default is disabled.
OPTIONAL
OPTIONAL
Set this user as the default local administrator (enabled) or not
(disabled).
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
722
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
EXAMPLE:
In the example below, the user Administrator creates a new user JohnDoe. This user has lower access rights
than the user “Poweruser”.
{Administrator}=>user list
User
----
Flags Role
----- ----
Administrator
tech
U
R
Administrator
TechnicalSupport
{Administrator}[user]=>add
name = JohnDoe
password = ****
Please retype password for verification.
password = ****
role = Administrator
[hash2] =
[descr] =
[defuser] =
[defremadmin] =
:user add name=JohnDoe password=_CYP_x9O/lhxuRyMME role=Administrator
{Administrator}=>user list
User
----
Flags Role
----- ----
Administrator
tech
JohnDoe
U
R
Administrator
TechnicalSupport
Administrator
{Administrator}=>
DESCRIPTION:
>
>
U: indicates the default user.
R: indicates the default remote administrator.
RELATED COMMANDS:
Delete a user.
Display the users.
E-DOC-CTC-20061027-0003 v2.0
723
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
user config
Modify a user.
You can only modify a user whose privileges are the same or lower than your own privileges.
i
SYNTAX:
user config
name = <string>
[password = <password>]
[role = <string>]
[descr = <quoted string>]
[defuser = <{disabled | enabled}>]
[defremadmin = <{disabled | enabled}>]
[deflocadmin = <{disabled | enabled}>]
where:
name
The user name.
REQUIRED
OPTIONAL
password
The password.
Note The maximum length is 32 characters.
The role name.
role
OPTIONAL
Tip
Use the command :mlp role listto obtain the role
tion).
descr
A user description.
OPTIONAL
OPTIONAL
Note The maximum length is 63 characters.
Set this user as the default user (enabled) or not (disabled).
defuser
Note When the Web interface is accessed, the account of this user
will be used by default. The user will not need to
authenticate himself with user name or password.
The default is disabled.
defremadmin
deflocadmin
Set this user as the default remote administrator (enabled) or not
(disabled).
The default is disabled.
OPTIONAL
OPTIONAL
Set this user as the default local administrator (enabled) or not
(disabled).
The default is disabled.
E-DOC-CTC-20061027-0003 v2.0
724
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
EXAMPLE:
{Superuser}=>user list
User
====
Role
====
Superuser
aPoweruser
root
Poweruser
{Superuser}=>user config name=aPoweruser role=LAN_admin
{Superuser}=>user list
User
====
Role
====
Superuser
aPoweruser
root
LAN_admin
{Superuser}=>
E-DOC-CTC-20061027-0003 v2.0
725
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
user delete
Delete a user.
You can only delete a user whose privileges are the same or lower than your own privileges.
i
SYNTAX:
user delete
where:
name
name = <string>
The name of the user to be deleted.
REQUIRED
EXAMPLE:
{Administrator}=>user list
User
----
Flags Role
----- ----
Administrator
tech
JohnDoe
U
R
Administrator
TechnicalSupport
Administrator
{Administrator}=>user delete name = JohnDoe
{Administrator}=>user list
User
----
Flags Role
----- ----
Administrator
tech
U
R
Administrator
TechnicalSupport
{Administrator}=>
RELATED COMMANDS:
Add a user.
Display the users.
E-DOC-CTC-20061027-0003 v2.0
726
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
user flush
Flush the users.
After execution of this command, the access to the Thomson ST will no longer be protected by a
password. The first user that logs on, after initiating a new Telnet session, will have the same
administrative rights as a user with the role root.
!
SYNTAX:
user flush
EXAMPLE:
{Administrator}=>user list
User
----
Flags Role
----- ----
Administrator
tech
JohnDoe
U
R
Administrator
TechnicalSupport
Administrator
{Administrator}=>user flush
{Administrator}=>user list
{Administrator}=>
When this Telnet session is terminated and a new Telnet session is initiated, the following welcome screen
will appear:
Username :
------------------------------------------------------------------------
*
*
*
*
*
*
*
*
*
*
______ SpeedTouch 620
___/_____/\
/
/\\ Version 5.3.0.10
/ \\
_____/__
_/
//
_______//_______/
/ \
/\_____/___ \ Copyright (c) 1999-2004,
/ \
/\ \
THOMSON
\
/
/ _\/______
/
\
/ /
/ /
/ /
* /_/______/___________________/ /________/ /___/ \
/\
/ _\__
/ / /\
__/
/
\
\ /
\_______\/
* / /
/
* \ \
* \_\
\
___________
/\
/ \
\ \
\ \
\ \
\ \________\/
\ /
/_____\/
/___\/
\ \
\ \___\/
\ /
\ /
\ /
\/
*
*
*
*
*
*
*
*
*
\
\_____/
/__________/
_____ \
/\ \
/____/ \ \ /
\ /___\/
\____\/
/
\
\
\
\ /
\
------------------------------------------------------------------------
=>
The user will not have to authenticate himself to gain access to the Thomson ST.
E-DOC-CTC-20061027-0003 v2.0
727
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
user list
Display the users.
SYNTAX:
user list
[name = <string>]
[channel = <{ftp | telnet | http | mdap | serial}>]
[origin = <{lan | wan | local}>]
[secure = <{disabled | enabled}>]
where:
name
The user name.
OPTIONAL
OPTIONAL
Note If not specified, all the users will be listed.
channel
The selected channel.
Choose between:
>
>
>
>
>
ftp
telnet
http
mdap
serial.
Note If not specified, all the channels will be listed.
origin
The selected origin.
Choose between:
OPTIONAL
OPTIONAL
>
>
>
lan
wan
local.
Note If not specified, all the origins will be listed.
secure
The selected security level.
Choose between:
>
>
disabled
enabled.
Note If not specified, all the security levels will be listed.
E-DOC-CTC-20061027-0003 v2.0
728
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
EXAMPLE:
{Administrator}=>user list
User
----
Flags Role
----- ----
Administrator
tech
U
R
Administrator
TechnicalSupport
{Administrator}=>user list name=tech channel=http origin=wan
service(s): r_lan, r_wan, r_fs_view, r_fs_retrieve, r_rtg, r_fwdg, r_nat, r_frwl,
r_ipsec_norm, r_ipsec_adv, r_certificates, r_remote_mgnt, r_local, r_qos,
w_lan, w_wan, w_fs_passive, w_rtg, w_fwdg, w_nat, w_frwl_norm, w_frwl_adv,
w_frwe_mgnt, w_ipsec, w_certificates, w_remote_mgnt, w_local, w_qos,
snd_lan, snd_wan, snd_local, and_lan, and_wan, and_frwl, and_local,
user_admin, mlp_admin, secure_ipsec_term, secure_br, cli, cgi, ftp, mdap,
zone_45, zone_46, zone_47, zone_48, zone_49, zone_50, zone_51, zone_52,
zone_53, zone_54, zone_55, zone_56, zone_57, zone_58, zone_59, zone_60,
zone_61, zone_62, swk_activation, sensitve_file, zone_71, zone_72, zone_73,
zone_74, zone_75, zone_76, zone_77, zone_78, zone_79, zone_83, zone_84,
zone_85, zone_86, zone_87, zone_88, zone_89, zone_90, zone_91, zone_92,
traces
{Administrator}=>
RELATED COMMANDS:
Add a user.
Delete a user.
E-DOC-CTC-20061027-0003 v2.0
729
Download from Www.Somanuals.com. All Manuals Search And Download.
User Commands
user rights
Display the session rights.
The user rights of the currently logged-in user are shown.
i
SYNTAX:
user rights
EXAMPLE:
{Administrator}=>user rights
Current session info:
user:
access:
name='Administrator', role='Administrator'
lan (origin_lan), telnet (channel_telnet), unsecure (unsecure_connection)
service(s): r_lan, r_wan, r_fs_view, r_fs_retrieve, r_rtg, r_fwdg, r_nat, r_frwl,
r_ipsec_norm, r_ipsec_adv, r_certificates, r_remote_mgnt, r_local, r_qos,
w_lan, w_wan, w_fs_passive, w_rtg, w_fwdg, w_nat, w_frwl_norm, w_frwl_adv,
w_frwe_mgnt, w_ipsec, w_certificates, w_remote_mgnt, w_local, w_qos,
snd_lan, snd_wan, snd_local, and_lan, and_wan, and_frwl, and_local,
user_admin, mlp_admin, secure_ipsec_term, secure_br, cli, cgi, ftp, mdap,
zone_45, zone_46, zone_47, zone_48, zone_49, zone_50, zone_51, zone_52,
zone_53, zone_54, zone_55, zone_56, zone_57, zone_58, zone_59, zone_60,
zone_61, zone_62, swk_activation, sensitve_file, zone_71, zone_72, zone_73,
zone_74, zone_75, zone_76, zone_77, zone_78, zone_79, zone_83, zone_84,
zone_85, zone_86, zone_87, zone_88, zone_89, zone_90, zone_91, zone_92,
traces
{Administrator}=>
E-DOC-CTC-20061027-0003 v2.0
730
Download from Www.Somanuals.com. All Manuals Search And Download.
Abbreviations
42 Abbreviations
The table below lists all the abbreviations used in the CLI Reference Guide.
Abbreviation
AAL5
ACL
Description
ATM Adaption Layer 5
Access Control List
ADSL
AES
AF
Asymmetric Digital Subscriber Line
Advanced Encryption System
Assured Forwarding
AP
Access Point
ARP
ATM
BSSID
CA
Address Resolution Protocol
Asynchronous Transfer Mode
Base Service Set IDentifier
Certificate Authority
CAPI
CC
Common ISDN Application Interface
Continuity Check
CEP
Certificate Enrollment Protocol
Challenge Handshake Authentication Protocol
Classless Inter Domain Routing
Command Line Interface
Cell Loss Priority
CHAP
CIDR
CLI
CLP
CO
Central Office
CPE
Customer Premises Equipment
Certificate Revocation List
Conformance Traffic Descriptor
CPE WAN Management Protocol
Dynamic Host Configuration Protocol
Distinguished Name
CRL
CTD
CWMP
DHCP
DN
DNS
DPD
DSCP
DSD
DSL
Domain Name System
Dead Peer Detection
Differentiated Services Code Point
Differentiated Service Delivery
Digital Subscriber Line
ECN
EF
Explicit Congestion Notification
Expedited Forwarding
FCS
Frame Check Sequence
FTP
File Transfer Protocol
GRE
GRP
HDLC
General Routing Encapsulation
Gateway Routing Protocol
High-level Data Link Control
E-DOC-CTC-20061027-0003 v2.0
731
Download from Www.Somanuals.com. All Manuals Search And Download.
Abbreviations
Abbreviation
HTTP
ICMP
IDS
Description
HyperText Transfer Protocol
Internet Control Message Protocol
Intrusion Detection System
Internet Gateway Device
Internet Group Management Protocol
Internet Key Exchange
IGD
IGMP
IKE
IP
Internet Protocol
IP oA
IPCP
IPSec
ISDN
ISI
IP over ATM
Internet Protocol Control Protocol
IP Security
Integrated Services Digital Network
Independent Set ID
KB
Kilobytes
Kbps
LAN
LCP
Kilobits per second
Local Area Network
Link Control Protocol
LDAP
LLC
Light-weight Directory Access Protocol
Logical Link Control
MAC
MC
Medium Access Control
MultiCast
MD5
MGCP
MLP
MPLS
MTU
NAPT
NAT
Message Digest 5
Media Gateway Control Protocol
Multi-Level access Policy
Multiprotocol Label Switching
Maximum Transmission Unit
Network Address and Port Translation
Network Address Translation
Network Layer Protocol IDentifiers
Network Time Protocol
Operation and Maintenance
On Board Controller
NLPID
NTP
OAM
OBC
OID
Object IDentifier
PAP
Password Authentication Protocol
Private Branch Exchange
Perfect Forward Secrecy
Public Key Cryptography Standard
Public Key Infrastructure
Plain Old Telephone Service
Point-to-Point Protocol
PBX
PFS
PKCS
PKI
POTS
PPP
E-DOC-CTC-20061027-0003 v2.0
732
Download from Www.Somanuals.com. All Manuals Search And Download.
Abbreviations
Abbreviation
PPPoA
PPPoE
PPTP
PSD
Description
PPP over ATM
PPP over Ethernet
Point-to-Point Tunneling Protocol
Power Spectral Density
Pre-Shared Key
PSK
PVC
Permanent Virtual Channel
Quality of Service
QoS
RIP
Routing Information Protocol
Real Time Clock
RTC
RTT
Round Trip Time
SAs
Security Associations
SFTP
SHDSL
SIP
Secure File Transfer Protocol
Single Pair High-speed Digital Subscriber Line
Session Initiation Protocol
Service Level Agreement
Simple Mail Transfer Protocol
Sub Network Access Protocol
Simple Network Management Protocol
Signal-to-Noise Ratio
SLA
SMTP
SNAP
SNMP
SNR
SNTP
SSH
Simple Network Time Protocol
Secure SHell
SSID
TCP
Service Set IDentifier
Transmission Control Protocol
Trivial File Transfer Protocol
Temporal Key Integrity Protocol
Type of Service
TFTP
TKIP
ToS
TTL
Time To Live
UA
User Agent
UDP
User Datagram Protocol
Upper Layer Protocol
ULP
UPnP
URI
Universal Plug and Play
Uniform Resource Identifier
Uniform Resource Locator
Universal Serial Bus
URL
USB
VC
Virtual Channel
VCI
Virtual Channel Identifier
Virtual Channel MUltipleXing
Very high speed Digital Subscriber Line
Virtual Local Area Network
VCMUX
VDSL
VLAN
E-DOC-CTC-20061027-0003 v2.0
733
Download from Www.Somanuals.com. All Manuals Search And Download.
Abbreviations
Abbreviation
VLSM
VP
Description
Variable Length Subnet Masking
Virtual Path
VPI
Virtual Path Identifier
Virtual Private Networking
Wide Area Network
VPN
WAN
WDS
Wireless Distribution System
Wired Equivalent Privacy
Weighted Fair Queueing
Windows Internet Naming Service
Wireless LAN
WEP
WFQ
WINS
WLAN
WPA
Wi-Fi Protected Access
Weighted Round Robin
WRR
E-DOC-CTC-20061027-0003 v2.0
734
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
43 System Logging Messages
Introduction
This chapter lists the different System Logging messages.
Contents
This chapter lists the different System Logging messages of the following modules:
E-DOC-CTC-20061027-0003 v2.0
735
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
Auto-PVC Module
Facility
LOCAL5
LOCAL5
LOCAL5
LOCAL5
LOCAL5
Severity
Contents
WARNING
WARNING
WARNING
WARNING
WARNING
AUTOPVC script <script_name> failed
AUTOPVC script <script_name> failed
AUTOPVC script <script_name> (name1, qosb_name) failed
AUTOPVC script <script_name> (name1, qosb_name, name2) failed
AUTOPVC script 'autopvc_change_qos (itable[i].intf, name1, qosb_name)
failed
LOCAL5
WARNING
AUTOPVC script <script_name> (name1, name2) failed
Configuration Module
Facility
USER
USER
USER
USER
KERN
Severity
INFO
Contents
CONFIGURATION saved after running Embedded Setup Wizard
CONFIGURATION saved by user <user_id>
INFO
INFO
CONFIGURATION backup by user to file <filename>
CONFIGURATION <conf_version> upgraded to version <version>)
SYSTEM reset by user <user_id> to factory defaults: user settings deleted
INFO
INFO
DHCP Client Module
Facility
LOCAL2
LOCAL2
LOCAL2
Severity
WARNING
WARNING
WARNING
Contents
DHCC lease ip-address <ip-address> bound to intf <intf_id>
DHCC intf <intf_id> renews lease ip-address <ip-address>
DHCC intf <intf_id> rebinds lease ip-address <ip-address> from
server<$paratext><Default ¶ Font>(<ip-address>)
LOCAL2
LOCAL2
LOCAL2
LOCAL2
WARNING
WARNING
WARNING
WARNING
DHCC offer received from <ip-address> (can be relay agent) for intf <intf_id>
DHCC server (<ip-address>) offers <ip-address> to intf <intf_id>
DHCC unable to configure ip address: <ip-address> (bootp-reply)
DHCC bootp lease ip-address <ip-address> bound to intf <intf_id> from
server (<ip-address>)
LOCAL2
LOCAL2
LOCAL2
WARNING
WARNING
WARNING
DHCC <ip-address> already configured on intf <intf_id>: failure
DHCC <ip-address> (<ip-address>) set on intf <intf_id>: {faillure||ok}
DHCC <ip-address> deleted: {faillure||ok}
E-DOC-CTC-20061027-0003 v2.0
736
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
DHCP Relay Module
Facility
Severity
Contents
LOCAL2
WARNING
DHCR relay: Dropping boot rqs on interface <intf_id> due to invalid giaddr
for server (<ip-address>)
LOCAL2
LOCAL2
WARNING
WARNING
DHCR relay: Dropping boot reply with invalid relay agent option from
<intf_id>
DHCR relay: Dropping boot request containing the relay agent option from
<intf_id>
LOCAL2
LOCAL2
LOCAL2
LOCAL2
WARNING
WARNING
WARNING
WARNING
DHCR relay: Dropping boot reply to unknown interface from <intf_id>
DHCR relay: Dropping boot reply to inactive interface <intf_id>
DHCR relay: Dropping boot reply to inactive interface <intf_id>
DHCR relay: Dropping boot request packet with spoofed giaddr field from
<intf_id>
LOCAL2
WARNING
DHCR relay: Dropping boot request received on unknown interface from
<intf_id>
LOCAL2
LOCAL2
WARNING
WARNING
DHCR relay: Dropping boot request on inactive interface <intf_id>
DHCR relay: Dropping boot request with invalid hops field on interface
<intf_id>
LOCAL2
WARNING
DHCR relay: Dropping boot request with invalid giaddr on interface <intf_id>
DHCP Server Module
Facility
Severity
Contents
LOCAL2
WARNING
DHCS server: <DHCP Offer | DHCP ACK> cannot be send due to invalid
server identifier
LOCAL2
LOCAL2
LOCAL2
LOCAL2
WARNING
WARNING
WARNING
WARNING
DHCS server: DHCPACK cannot be send due to invalid server identifier
DHCS server: DHCPNAK cannot be send due to invalid server identifier
DHCS server up
DHCS server went down
E-DOC-CTC-20061027-0003 v2.0
737
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
Dyndns Module
Facility
Severity
Contents
DYNDNS
WARNING
WARNING
WARNING
WARNING
<DYNDNS_ STR_ID> Connection failed to <dyndns_service> for client
<dyndns_client>
DYNDNS
DYNDNS
DYNDNS
<DYNDNS_ STR_ID> Failed to resolve host name <dyndns_service> for
client <dyndns_client>
<DYNDNS_ STR_ID> Server Timeout(<dyndns_service>) for client
<dyndns_client>
<DYNDNS_ STR_ID> Update failed to server <dyndns_service> for client
<dyndns_client>
DYNDNS
DYNDNS
NOTICE
<DYNDNS_ STR_ID> client <dyndns_client> <"started"||"stopped">
WARNING
<DYNDNS_ STR_ID> Update failed for client <dyndns_client>, incomplete
configuration
DYNDNS
WARNING
<DYNDNS_ STR_ID> Update failed for client <dyndns_client> (<message>),
host <hostname> has not been updated
DYNDNS
DYNDNS
WARNING
NOTICE
<DYNDNS_ STR_ID> Update failed for client <dyndns_client>
<DYNDNS_ STR_ID> Host <hostname> has been updated successfully by
<dyndns_service>
DYNDNS
WARNING
<DYNDNS_ STR_ID> Authentication failed to server <dyndns_service>
Firewall Module
Facility
Severity
Contents
AUTH
WARNING
FIREWALL Hook: <hookname> Rule ID:<rule_id> Protocol: ICMP
Src_ip: <ip_address> Dst_ip: <ip_address>
ICMP message type: <message_type_name || message_type_id > Action:
<action>
AUTH
WARNING
FIREWALL Hook: <hookname> Rule ID:<rule_id> Protocol: <protocol_name>
Src_ip_port: <ip-address:ip_port> Dst_ip_port: <ip-address:ip_port>
Action: <action>
E-DOC-CTC-20061027-0003 v2.0
738
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
LOGIN Module
Facility
AUTH
AUTH
AUTH
AUTH
AUTH
Severity
NOTICE
NOTICE
NOTICE
NOTICE
NOTICE
Contents
LOGOUT User <user_id> logged out on <connection_type> (<ip-address>)
LOGOUT User <user_id> logged out on <connection_type>
LOGOUT <session_name> session of user <user_id> killed (<ip-address>)
LOGOUT <session_name> session of user <user_id> killed
LOGIN User <user_id> tried to login on <connection_type> (from <ip-
address>)
AUTH
AUTH
AUTH
NOTICE
NOTICE
NOTICE
LOGIN User <user_id> logged in on <connection_type> (from <ip-address>)
LOGIN User logged in on <connection_type> (<ip-address>)
LOGIN User <user_id> tried to log in on <connection_type>
Kernel Module
Facility
KERN
KERN
KERN
Severity
Contents
WARNING
WARNING
EMERG
KERNEL cold reset
KERNEL warm reset
KERNEL Controlled restart (after internal error or explicit system reboot)
Linestate Module
Facility
Severity
Contents
LOCAL5
NOTICE
xDSL linestate up (downstream: <bitrate_in> kbit/s, upstream: <bitrate_out>
kbit/s)
LOCAL5
NOTICE
xDSL linestate up
(downstream: <bitrate_in> kbit/s, upstream: <bitrate_out> kbit/s;
output Power Down: <outputPowerDn> dBm, Up: <outputPowerUp> dBm;
line Attenuation Down: <lineAttenuationDn> dB, Up: <lineAttenuationUp>
dB;
snr Margin Down: <snrMarginDn> dB, Up: <snrMarginUp> dB)"
NAPT Module
Facility
Severity
INFO
Contents
LOCAL4
NAPT Protocol: <TCP | UDP | ICMP> Open port: <port> Helper: <app_name>
=> <"failed" | "ok">
E-DOC-CTC-20061027-0003 v2.0
739
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
PPP Module
Facility
LOCAL0
LOCAL0
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
AUTH
LOCAL0
LOCAL0
Severity
Contents
WARNING
WARNING
ERROR
INFO
PPP Link up (<intf name>)
PPP Link down (<intf name>)
PPP PAP authentication failed (<intf name>) [protocol reject]
PPP PAP on intf <intf_id> no response to authenticate-request
PPP PAP remote user <remote_user_name> successful authenticated
PPP PAP authentication for remote user <remote_user> failed
PPP PAP Authenticate Ack received
NOTICE
ERROR
INFO
INFO
PPP PAP Authenticate Nack received
INFO
PPP PAP Authenticate Request sent
ERROR
ERROR
INFO
PPP PAP authentication failed (<intf name>)
PPP CHAP authentication failed (<intf name>)
PPP CHAP authentication failed [protocol reject(server)]
PPP CHAP authentication failed [protocol reject(client)]
PPP CHAP Receive challenge (rhost = <hostname>)
PPP CHAP Chap receive success : authentication ok
PPP CHAP Challenge Send (Id = <challenge_id>)
PPP CHAP Send status response: {ack || nack}
INFO
DEBUG
INFO
DEBUG
DEBUG
ERROR
ERROR
PPP IPCP cannot determine remote IP address (<intf name>)
PPP IPCP cannot determine locale IP address (<intf name>)
PPTP Module
Facility
LOCAL0
LOCAL0
Severity
Contents
WARNING
WARNING
PPTP tunnel (<Pbname>) up:(<ip addr>)
PPTP tunnel (<Pbname>) down:(<ip addr>)
E-DOC-CTC-20061027-0003 v2.0
740
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
RIP Module
Facility
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
Severity Contents
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
RIP Packet received from unknown interface
RIP Packet size is smaller than minimum size
RIP Packet size is greater than maximum size
RIP Wrong RIP packet alignment
RIP RIP version 0 with command <command-name> received
RIP Reserved field not zero in RIP header
RIP RIP is not enabled for network address <ip-address>
RIP Packet's v<version_nr> does not match to RIP v<version_nr>
RIP Packet's v<version_nr> does not match to RIP v<version_nr> on interface
<intf-name>
LOCAL1
INFO
RIP Packet v<version_nr> is dropped because authentication is disabled on
interface <intf-name>
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
LOCAL1
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
INFO
RIP Simple password authentication failed on interface<intf-name>
RIP No authentication in RIP packet
RIP Obsolete command <command-name> received
RIP Unknown RIP command received
RIP Response does not come from default RIP port
RIP Datagram doesn't come from a valid neighbor: <ip-address>
RIP Unsupported family from <ip-address>
RIP Network is net 127, class D or class E network
RIP Address <ip-address> is my own address, net 0 or not unicast
RIP RIPv1 packet with incorrect must be zero fields
RIP Route metric is not in the 1-16 range
RIP Nexthop address is not directly reachable <ip-address>
RIP RIPv2 address <ip-address> is not correct mask /<mask> applied
RIP Not configured for sending RIPv1 packet on interface <intf-name>
RIP RIP routing table is full
RIP Neighbor <ip-address> is not connected to direct network
RIP Interface <intf-name> has not any valid local IP address for sending RIPv2
packets
LOCAL1
INFO
RIP Interface <intf-name> has not any valid %s address for sending
RIPv<version_nr> packets
E-DOC-CTC-20061027-0003 v2.0
741
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
Facility
Severity Contents
INFO RIP IP Address <ip-address> not found in RIP table
LOCAL1
Routing Module
Facility
LOCAL1
LOCAL1
SECURITY
Severity
INFO
Contents
GRP Default destination is routed via gateway <ip_address>
INFO
GRP Default destination is not routed anymore via gateway <ip_address>
INFO
LABEL Rule Id:<rule_id> Protocol: ICMP Src_ip: <ip_address> Dst_ip:
<ip_address> ICMP message type: <message_type_name || message_type_id >
Label: <label_name>
SECURITY
INFO
LABEL Rule Id:<rule_id> Protocol: <protocol_name> Src_ip: <ip_address>
Dst_ip: <ip_address> Label: <label_name>
Session Module
Facility
Severity
Contents
AUTH
NOTICE
SESSION TIMEOUT Timeout! (after <seconds> sec)
SNTP Module
Facility
NTP
NTP
NTP
NTP
NTP
NTP
NTP
NTP
Severity
Contents
WARNING
WARNING
WARNING
INFO
SNTP Unable to contact server: <SNTP server ip>
SNTP Server not synchronized: <SNTP server ip>
SNTP Invalid response from server: <SNTP server ip>
SNTP Synchronized to server: <SNTP server ip>
SNTP Synchronized again to server: <SNTP server ip>
SNTP Roundtrip exceeds limits
INFO
WARNING
ERROR
SNTP No server(s) configured, check configuration
ERROR
SNTP Systemtime update: time setting <systemtime> > new time setting:
<new time>
E-DOC-CTC-20061027-0003 v2.0
742
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
Software Module
Facility
KERN
Severity
INFO
Contents
SOFTWARE File <Filename> <receive || transmit> initiated
KERN
INFO
SOFTWARE File <Filename> <receive || transmit><““ || not>
successful terminated"
UPnP Module
Facility
WARNING
NOTICE
NOTICE
Severity
SECURITY
Contents
UPnP<ActionName> refused for ip=<ip_address>
SECURITY
SECURITY
UPnP <ActionName> (<Error_string>) for ip=<ip_address>
UPnP action <ActionName> from ip=<ip_address> (<Error_string>)
E-DOC-CTC-20061027-0003 v2.0
743
Download from Www.Somanuals.com. All Manuals Search And Download.
System Logging Messages
E-DOC-CTC-20061027-0003 v2.0
744
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Supported IP Protocols
For more information on the listed IP protocols, see RFC1340 or www.iana.org.
Protocol name Number
Description
ah
51
8
Authentication Header (AH)
Exterior Gateway Protocol (EGP)
Encapsulating Security Payload (ESP)
Gateway Gateway Protocol (GGP)
General Routing Encapsulation (GRE)
Host Monitoring Protocol (HMP)
Internet Control Message Protocol (ICMP)
Internet Group Management Protocol (IGMP)
PUP Protocol
egp
esp
50
3
ggp
gre
47
20
1
hmp
icmp
igmp
pup
rdp
2
12
27
46
6
Reliable Data Protocol (RDP)
Resource Reservation Protocol (RSVP)
Transmission Control Protocol (TCP)
User Datagram Protocol (UDP)
Vines
rsvp
tcp
udp
vines
xns-idp
6to4
17
83
22
Xerox NS IDP
E-DOC-CTC-20061027-0003 v2.0
746
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Supported TCP/UDP Port Names
For more information on the listed TCP/UDP port assignments, see RFC1340 or www.iana.org.
Port name
echo
Number
7
TCP UDP
Description
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Echo
discard
systat
daytime
qotd
9
Discard
11
Active Users
13
Daytime
17
Quote of the Day
chargen
ftp-data
ftp
19
Character Generator
File Transfer (Default data)
File Transfer (Control)
Telnet
20
21
telnet
23
smtp
25
Simple Mail Transfer Protocol (SMTP)
Time
time
37
nicname
dns
43
Who Is
53
Domain Name System (DNS)
Domain Name System (DNS)
Oracle SQL*NET
domain
sql*net
bootps
bootpc
tftp
53
66
67
Bootstrap Protocol Server
Bootstrap Protocol Client
Trivial File Transfer Protocol (TFTP)
Gopher
68
69
gopher
finger
www-http
kerberos
rtelnet
pop2
70
79
Finger
80
World Wide Web (WWW) HTTP
Kerberos
88
107
109
110
111
113
118
119
123
Remote Telnet Service
Post Office Protocol (POP) - Version 2
Post Office Protocol (POP) - Version 3
SUN Remote Procedure Call
Authentication Service
SQL Services
pop3
sunrpc
auth
sqlserver
nntp
Network News Transfer Protocol (NNTP)
Network Time Protocol (NTP)
ntp
E-DOC-CTC-20061027-0003 v2.0
747
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Port name
sntp
Number
123
134
137
138
139
143
150
158
161
162
179
194
201
202
204
206
213
220
371
372
389
396
444
500
512
TCP UDP
Description
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
-
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Simple Network Time Protocol (SNTP)
INGRES-NET Service
ingres-net
netbios-ns
netbios-dgm
netbios-ssn
imap2
NETBIOS Naming System
NETBIOS Datagram Service
NETBIOS Session Service
Internet Message Access Protocol (IMAP) v2
SQL-NET
sql-net
pcmail-srv
snmp
PCMail Server
Simple Network Management Protocol (SNMP)
SNMP Trap
snmptrap
bgp
Border Gateway Protocol (BGP)
Internet Relay Chat (IRC) - o
AppleTalk RouTing Maintenance Protocol (RTMP)
AppleTalk Name Binding Protocol (NBP)
AppleTalk Echo
irc-o
at-rtmp
at-nbp
at-echo
at-zis
AppleTalk Zone Information System (ZIS)
Novell
ipx
imap3
Internet Message Access Protocol (IMAP) v3
ClearCase
clearcase
ulistserv
ldap
UNIX Listserv
Lightweight Directory Access Protocol (LDAP)
Novell Netware over IP
netware-ip
snpp
Simple Network Paging Protocol (SNPP)
ISAKMP
ike
biff
Used by mail system to notify users of new mail
received
exec
login
who
512
513
513
Y
Y
-
-
Remote process execution
Remote login a la telnet
-
Y
Maintains data bases showing who's logged in to
machines on a local net and the load average of the
machine
syslog
printer
talk
514
515
517
-
Y
Y
Y
Syslog
Y
Y
Spooler
Like Tenex link, but across machine
E-DOC-CTC-20061027-0003 v2.0
748
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Port name
ntalk
Number
518
TCP UDP
Description
NTalk
Y
Y
-
Y
Y
Y
utime
rip
519
UNIX Time
520
Local routing process (on site); uses variant of Xerox
NS Routing Information Protocol (RIP)
timed
525
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Y
Timeserver
netwall
new-rwho
uucp
533
For emergency broadcasts
uucpd remote who is
uucpd
540
540
uucp-rlogin
rtsp
540
uucpd remote login
Real Time Streaming Protocol (RTSP)
whoami
554
whoami
ipcserver
doom
565
600
SUN IPC Server
666
Doom ID Software
Internet Locator Service (ILS)
H323 Host Call Secure
NFS deamon
ils
1002
1720
2049
5060
6000
6667
7070
8080
h323
nfsd
sip
Session Initiation Protocol (SIP)
X windows
xwindows
irc-u
Internet Relay Chat (IRC) Protocol
realaudio
realaudio
httpproxy
HTTP Proxy
E-DOC-CTC-20061027-0003 v2.0
749
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Supported ICMP Type Names
For more information on the listed ICMP type names, see RFC1340 or www.iana.org.
ICMP Type name
echo-reply
Number
Description
0
Echo Reply
destination-unreachable
source-quench
3
Destination Unreachable
Source Quench
Redirect
4
redirect
5
echo-request
8
Echo
router-advertisement
router-solicitation
time-exceeded
9
Router Advertisement
Router Solicitation
Time Exceeded
Parameter problems
Timestamp
10
11
12
13
14
15
16
17
18
parameter-problems
timestamp-request
timestamp-reply
information-request
information-reply
address-mask-request
address-mask-reply
Timestamp Reply
Information Request
Information Reply
Address Mask Request
Address Mask Reply
E-DOC-CTC-20061027-0003 v2.0
750
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Supported Facilities
For more information on the listed facilities, see RFC3164.
Facilty Name
Hierarchy Syslog facility
Code
(listed according descending importance)
kern
0
Kernel messages
User-level messages
Mail system
user
8
mail
16
daemon
auth
24
System daemons
Authorization messages
Syslog daemon messages
Line printer subsystem
Network news subsystem
UUCP subsystem
Clock daemon
32
syslog
lpr
40
48
news
uucp
cron
56
64
72
security
ftp
80
Security messages
FTP daemon
88
ntp
96
NTP subsystem
audit
logalert
clock
104
112
120
Log audit
Log alert
Clock daemon
local0
local1
local2
local3
local4
local5
local6
local7
128
136
144
152
160
168
176
184
Local use messages
all
-
All facilities (Thomson ST specific facility parameter value.
E-DOC-CTC-20061027-0003 v2.0
751
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Supported Severities
For more information on the listed severities, see RFC3164.
Severity Name
Hierarchy
Code
Syslog severity
(listed according descending importance)
Emergency conditions, system unusable
Alert conditions, immediate action is required
Critical conditions
emerg
alert
0
1
2
3
4
5
6
7
crit
err
Error conditions
warning
notice
info
Warning conditions
Normal but significant conditions
Informational messages
debug
Debug-level messages
IP Precedence
Precedence
Numbe
r
Routine
0
1
2
3
4
5
6
7
Priority
Immediate
Flash
Flash-Override
CRITIC-ECP
Internetwork-Control
Network-Control
E-DOC-CTC-20061027-0003 v2.0
752
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
Differentiated Services Code Point (DSCP)
For more information on DSCP, see RFC3260.
PHB
ef
PHB Name
Binary value
101110
100110
100100
100010
011110
011100
011010
010110
010110
010010
001110
001100
001010
111000
110000
101000
100000
011000
010000
001000
000000
Expedited Forwarding
Assured Forwarding 41
Assured Forwarding 42
Assured Forwarding 43
Assured Forwarding 31
Assured Forwarding 32
Assured Forwarding 33
Assured Forwarding 21
Assured Forwarding 22
Assured Forwarding 23
Assured Forwarding 11
Assured Forwarding 12
Assured Forwarding 13
Class Selector 7
af41
af42
af43
af31
af32
af33
af21
af22
af23
af11
af12
af13
cs7
cs6
Class Selector 6
cs5
Class Selector 5
cs4
Class Selector 4
cs3
Class Selector 3
cs2
Class Selector 2
cs1
Class Selector 1
cs0
Class Selector 0
E-DOC-CTC-20061027-0003 v2.0
753
Download from Www.Somanuals.com. All Manuals Search And Download.
Supported Key Names
E-DOC-CTC-20061027-0003 v2.0
754
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
appinfo
applist
arpadd
arpdelete
arplist
assign
A
aal5stats
actlist
add
atm
bundle
cac
debug
oam
cc
addpriv
addzone
vclb
adsl
appconfig
phonebook
E-DOC-CTC-20061027-0003 v2.0
755
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
qosbook
config
attach
autolist
autopvc
autosave
B
bind
bindlist
C
capture
clean
clear
E-DOC-CTC-20061027-0003 v2.0
756
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
upgrade
connection
ctdadd
ctddelete
ctdlist
cwmp
describe
detach
dhcp
client
debug
server
D
debug
del
rqoptions
delete
E-DOC-CTC-20061027-0003 v2.0
757
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
txoptions
disable
dns
client
relay
debug
server
debug
spoof
rule
debug
host
server
debug
route
lease
dnsadd
dnsdelete
dnslist
option
dsd
debug
connection
pool
intercept
syslog
urlfilter
rule
E-DOC-CTC-20061027-0003 v2.0
758
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
igmpsnooping
dump
dyndns
rule
host
service
vlan
device
switch
E
egress
env
group
mirror
eth
bridge
dynvlan
qos
shaper
share
storm
E-DOC-CTC-20061027-0003 v2.0
759
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
flush
vlan
exec
export
expr
F
firewall
chain
debug
level
rule
debug
E-DOC-CTC-20061027-0003 v2.0
760
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
signature
threshold
G
get
getaddress
getflags
grouplist
ifadd
grp
rip
ifattach
gstats
H
hostmgr
ifconfig
httpprobe
I
ids
parser
pattern
ifdelete
E-DOC-CTC-20061027-0003 v2.0
761
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
proxy
debug
ifdetach
import
info
ingress
instadd
instdelete
instlist
interface
ifflush
iflist
ip
auto
ifrenew
ifscan
ifwait
igmp
host
debug
debug
E-DOC-CTC-20061027-0003 v2.0
762
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
L
label
mcast
chain
rule
ipadd
debug
ipconfig
ipdelete
language
iplist
ipqos
ef
list
queue
K
Key names
E-DOC-CTC-20061027-0003 v2.0
763
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
macdelete
maclist
mapadd
mapdelete
maplist
mbslist
mbus
client
debug
mcdadd
mcddelete
mcdlist
memm
debug
lock
listobjects
listtypes
load
loadobjects
locale
mlp
debug
privilege
M
macadd
E-DOC-CTC-20061027-0003 v2.0
764
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
O
optadd
role
optdelete
optionlist
overbooking
modify
P
ping
policy
portstats
move
ppp
N
nat
relay
pptp
nslookup
profadd
E-DOC-CTC-20061027-0003 v2.0
765
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
profdelete
proflist
proxy
ruledelete
run
S
R
save
script
reboot
recycling
refresh
register
removepriv
removezone
reset
rights
select
send
sendto
service
host
root commands
rtadd
rule
rtdelete
system
rtlist
sesslist
ruleadd
E-DOC-CTC-20061027-0003 v2.0
766
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
set
synchronize
settime
show
Syslog messages
snmp
community
system
sntp
debug
ra
rtc
software
start
stats
systemlog
T
timerclear
timerconfig
tmpladd
E-DOC-CTC-20061027-0003 v2.0
767
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
tmpldelete
update
upgrade
debug
profile
tmplinst
tmpllist
traceconfig
upnp
user
traceroute
triggerlist
V
version
U
unbind
unloadobjects
unset
W
walk
E-DOC-CTC-20061027-0003 v2.0
768
Download from Www.Somanuals.com. All Manuals Search And Download.
Download from Www.Somanuals.com. All Manuals Search And Download.
THOMSON Telecom Belgium
Prins Boudewijnlaan 47
2650 Edegem
© THOMSON . All rights reserved.
E-DOC-CTC-20061027-0003 v2.0.
Download from Www.Somanuals.com. All Manuals Search And Download.
|