manualshive.com logo in svg

3Com 3C13612, Command Reference Manual

The 3Com 3C13612 Command Reference Manual is a comprehensive guide that provides users with detailed instructions on effectively operating and configuring their 3Com product. Download this valuable manual for free from our website manualshive.com, and unleash the full potential of your device.

Share
Download
background image

3Com Command Reference Guide — V1.00 

4.1.29  ipsec sa dynamic-detect 

Syntax 

ipsec sa dynamic-detect 

undo ipsec sa dynamic-detect 

View 

System view 

Parameter 

None 

Description 

Using the 

ipsec sa dynamic-detect

 command, you can enable the tunnel to detect 

the reachability of the remote route. Using the 

undo ipsec sa dynamic-detect

 

command, you can disable the tunnel to detect the reachability of the remote route.   

By default, the reachability of the remote route is not detected by the tunnel.   

The command is applied to the operating system IPSec and crypto card. 

With this command, you can decide whether or not to enable the tunnel to detect the 

reachability of the remote route when timeout occurs at the second stage of IPSec 

negotiation. 

When a main link and a backup link exist between the routers, both ends will create 

SAs in IKE mode dynamically. Once the main link goes into down state, the 

communication will be performed on the backup link automatically, in this case, a new 

SA pair corresponding to the backup link will be created (including the SAs at the first 

stage and the second stage), but the previous SA pair on the main link is not deleted 

in time. Once the SA at the second stage on the main link timeouts and is released 

(SA at the first stage still exists), the communication will be performed on the main 

link again if the main link restores, which may result in the inconsistency of the SAs at 

the first stage saved on both the local and the remote routers and the IPSec tunnel 

cannot be established. After the detect is enabled, it can be ensured that the SA at 

the first stage will be released when the SA at the second stage is released, so as to 

make sure that a new SA pair will be reestablished when the main link is in up state. 

In this way, the IPSec tunnel can be created correctly. 

For related commands, see

 ipsec sa global-duration

72 

Summary of Contents for 3C13612

Page 1: ...3Com Router Command Reference Guide V1 00 http www 3com com Part No Published August 2003 ...

Page 2: ...t 3Com and a copy will be provided to you UNITED STATES GOVERNMENT LEGEND If you are a United States government agency then this documentation and the software described herein are provided to you subject to the following All technical data and computer software are commercial in nature and developed solely at private expense Software is delivered as Commercial Computer Software as defined in DFAR...

Page 3: ... 1 3 quit 3 1 1 4 return 4 1 2 Basic System Management and Configuration Commands 4 1 2 1 clock 4 1 2 2 display base information 5 1 2 3 display clock 6 1 2 4 display duration 7 1 2 5 display processes cpu 7 1 2 6 display processes memory 8 1 2 7 display reboot 9 1 2 8 display sysname 10 1 2 9 display version 10 1 2 10 reboot 11 1 2 11 setup 12 1 2 12 sysname 13 1 ...

Page 4: ...u can view the history of commands input by the current user By default the operating system saves a maximum of 10 commands You can access them through the Up and Down keys on the keyboard Example Display the command history input by the current user 3Com display history command No 1 interface ethernet 0 No 2 ip address 10 110 28 2 255 255 192 0 No 3 down No 4 up No 5 quit No 6 rip No 7 network 10...

Page 5: ...of the command line interface By default the language mode of command line interface is English Example None 1 1 3 quit Syntax quit View All views Parameter None Description Using the quit command you can return to the previous view from the current view In addition you can return directly to the system view from the current view by entering Ctrl Q 3 ...

Page 6: ... Using the return command you can return to the system view from the current view In addition you can directly return to the system view from the current view by entering Ctrl Q Example Return from the Ethernet interface view to the system view 3Com Ethernet0 return 3Com 1 2 Basic System Management and Configuration Commands 1 2 1 clock Syntax clock hour minute second day month year View System vi...

Page 7: ...setting the system time When powered off the routers stop keeping time so it is necessary to reset the current date and time for the router in a rigorous application environment For related commands see display clock Example Set the current date and clock of the router to 0 0 0 Jan 2nd 2001 3Com clock 0 0 0 2 1 2001 1 2 2 display base information Syntax display base information page View All views...

Page 8: ... Traffic Display Ip Interface 1 2 3 display clock Syntax display clock View All views Parameter None Description Using the display clock command you can view the current date and time of the system You can execute this command to find out if the system time is correct If the system time is incorrect you can adjust it For related commands see clock Example Display the current date and clock of the ...

Page 9: ...ion from booting of the router to executing of this command Example Display the time duration from booting of the router to executing this command 3Com display duration 3Com R5640 uptime is 0 days 1 hours 38 minutes 4 seconds 1 2 5 display processes cpu Syntax display processes cpu View All views Parameter None Description Using the display processes cpu command you can view the occupation rate of...

Page 10: ...g memory block address the utilized length of the memory slice Description Using the display processes memory command you can view the utilization of memory in the current system This command displays all the statistics information about memory such as the size of the memory the size of each memory raw slice the size of free memory and the size of the memory utilized Example Display the utilizatio...

Page 11: ...x05005009 3 0x0DD0DC0D 1 0x0DD0DC0C 1 0x0DD0DC0B 1 0x0DD0DC0A 1 0x0DD0DC09 1 0x0DD0DC06 1 0x0DD0DC05 1 0x05005007 2 0x0FE00104 2 0x0B40B408 1 0x00D1D101 1 0x00D0D003 1 0x00D0D002 1 0x00D0D001 2 0x0B20B201 2 0x12345670 1 0x12345679 1 0x12345678 1 1 2 7 display reboot Syntax display reboot View All views Parameter None Description Using the display reboot command you can view the plan for rebooting ...

Page 12: ...r For related commands see sysname Example Display the router name 3Com display sysname 3Com 1 2 9 display version Syntax display version View All views Parameter None Description Using the display version command you can view information on the version of the system Different versions have different functions By viewing the version information you can learn the features supported by the software ...

Page 13: ...PLD 2 0 Bootrom Version is 4 33 AUX AUX Hardware Version is 1 0 Driver Version is 1 0 Slot 0 2cE1 Hardware Version is 1 0 Driver Version is 1 0 Slot 1 8AS Hardware Version is 1 0 Driver Version is 1 2 Slot 2 RTB12FE Hardware Version is 1 0 Driver Version is 1 0 1 2 10 reboot Syntax reboot mode interval hh mm time time hh mm dd mm yy reason string reason reason string cancel View System view Parame...

Page 14: ... you can set timed reboot This is helpful for online version upgrade and configuration modification maintenance If you do not reboot the router after upgrading a version online the new version will not be available In most cases however an administrator cannot reboot the router immediately after maintenance of the router if such undertakings may affect the ongoing activities By setting timed reboo...

Page 15: ... necessary for running the router These parameters include Router domain name User password SNMP parameter Selection of network protocols such as IP and IPX IP addresses and IPX network numbers at the interfaces In addition the administrator user can execute the setup command at any point Example Guide the user in configuring the basic parameters of the router 3Com setup 1 2 12 sysname Syntax sysn...

Page 16: ...3Com Router Command Reference Guide V1 00 Example Set the sysname of the router to Corporate 3Com sysname Corporate Corporate 14 ...

Page 17: ...er system name 15 1 2 5 ftp server timeout 16 1 2 6 ftp server update 17 1 2 7 kill ftp 17 1 3 TFTP Commands 18 1 3 1 copy 18 1 3 2 get 20 Chapter 2 Terminal Service Configuration Commands 22 2 1 Terminal Service Attribute Configuration Commands 22 2 1 1 idle timeout 22 2 2 Commands for Terminal Message Service Configuration 23 2 2 1 send 23 2 2 2 send status 24 2 2 3 send switch 24 2 3 Dumb Termi...

Page 18: ...isplay snmp agent mib view 43 3 1 6 display snmp agent statistics 44 3 1 7 display snmp agent sys info contact 45 3 1 8 display snmp agent sys info location 46 3 1 9 display snmp agent usm user 46 3 1 10 snmp agent 47 3 1 11 snmp agent community 48 3 1 12 snmp agent group 49 3 1 13 snmp agent local engineid 51 3 1 14 snmp agent mib view 51 3 1 15 snmp agent packet max size 53 3 1 16 snmp agent sys...

Page 19: ...3 5 info center loghost 79 4 3 6 info center monitor 81 Chapter 5 POS Terminal Access Service Configuration Commands 83 5 1 POS Terminal Access Service Configuration Commands 83 5 1 1 async mode pos 83 5 1 2 async mode posapp 83 5 1 3 debugging pos app 84 5 1 4 debugging pos interface 85 5 1 5 display fcm 85 5 1 6 display pos app 86 5 1 7 display pos interface 87 5 1 8 pos server app flow 88 5 1 9...

Page 20: ...h memory and NVRAM for saving configuration files Normally the configuration files are reserved in NVRAM The configfile command is used to select one of them as the currently valid media For example after the configfile NVRAM command is executed the SAVE command is executed the configuration file will then be saved to NVRAM instead of Flash memory Before saving or erasing the configuration file yo...

Page 21: ...vironment and the existing configuration file does not meet requirements of the new environment It is then necessary to re configure the router after erasing the original configuration file In the 3Com series of routers the configuration file stored in the media specified by the configfile command will be erased When the router is powered on and is initializing if the system detects no configurati...

Page 22: ...aved configuration configfile Example Display the storage media type for the current configuration file 3Com display configfile Boot from or write config ini to nvram 1 1 4 display current configuration Syntax display current configuration display current configuration global display current configuration interface type number display current configuration ip route route policy display current con...

Page 23: ... the router voice aaa access number acct method cdr Display the current voice configuration of the router Description Using the display current configuration command you can view the currently valid configuration parameters of the router When a set of configurations has been completed it is necessary to check if they are correct You can execute the display current configuration command to check th...

Page 24: ... return 1 1 5 display saved configuration Syntax display saved configuration View All views Parameter None Description Using the display saved configuration command you can view the configuration file of the router saved in Flash memory that is the configuration file to be used when the router is rebooted next time For related commands see save delete download config display current configuration ...

Page 25: ...tion file You load the configuration file via the Send Binary File function of the terminal simulator Before sending a configuration file to the router please make sure that The download config command is executed and the router is waiting for loading Now in the window of the terminal simulator you can see that the router regularly sends the C character to the terminal simulator Xmodem CRC is set ...

Page 26: ... Syntax first config set reset View System view Parameter set Set the flag bit The system will initialize the configuration files whenever the router is rebooted or restarted again after it is powered off reset Delete the flag bit The system will not initialize the configuration files whenever the router is rebooted or restarted again after it is powered off Description Using the first config comm...

Page 27: ... command you can save the current configuration file to Flash memory or NVRAM When a set of configurations has been completed and have implemented the intended functions the current configuration files should be saved to Flash memory or NVRAM in the 3Com series of routers they will be saved to the storage media specified by the configfile command For related commands see delete download config dis...

Page 28: ...r of the specified FTP server user name Legal login user name registered on FTP server password Legal login user password registered on FTP server Description Using the update command you can upgrade the card on line Currently online upgrade does not apply to cards of versions lower than certain versions Upgrade of 4SA and NDEC is supported The name of the on line upgrade file is drv The system wi...

Page 29: ...wing prompt information The indicated board is at updating status Example Upgrade the card RTB14SA in slot 3 on line FTP hostname is 3Com IP address is 1 1 1 253 the name of the on line upgrade file is ram4sa drv the user name of the FTP host is 3Com and the user password is 123456 3Com systname 3Com 3Com update slot 3 ftpserver switch filename ram4sa drv username 3Com password 123456 1 2 FTP Conf...

Page 30: ...x ftp server config name file name View System view Parameter file name Configuration filename Description Using the ftp server config name command you can configure the configuration filename By default the name of the configuration file is config The configuration filename is set for uploading the configuration file Only when the name of the configuration file to be uploaded is the same as that ...

Page 31: ...disabled This command can be used to enable or disable the FTP server to safeguard the router Example Disable the FTP server 3Com undo ftp server enable 1 2 4 ftp server system name Syntax ftp server system name file name View System view Parameter file name System program filename Description Using the ftp server system name command you can configure the name of the system program file By default...

Page 32: ... 0 to 4294967295 seconds The default value is 600 seconds Description Using the ftp server timeout command you can configure the connection timeout value When you log into the FTP server a connection is set up If the connection is disconnected abnormally or you disconnect abnormally the FTP will not be able to know this so it will still maintains the connection Therefore the connection timeout is ...

Page 33: ...er the FTP Server has received the files uploaded by the user it will write the files into Flash memory Even when the power is disconnected during transmission of the files the existing files in the router are not destroyed Normal update mode In this mode the FTP Server writes the files uploaded by the user into Flash memory as it receives the files The existing files in the router can be destroye...

Page 34: ...his command Example Disconnect all the links between the FTP users and the router 3Com kill ftp 1 3 TFTP Commands 1 3 1 copy Syntax copy ip addr file name system config View System view Parameter ip addr IP address of TFTP server file name File name of 47 characters at the maximum in length system File type indicate that the uploaded file is a system file config File type indicates that the upload...

Page 35: ...able 1 1 Errno Description Operation Description 0x00 Succeeds 0x01 Inadequate memory 0x02 Failed to create a request packet 0x03 Failed to create a socket 0x04 Failed to bind the socket 0x05 Invalid transmission mode 0x06 Partial file was transmitted 0x07 Unable to transmit data to the server 0x0b Failed to create socket 0x0c Failed to read the file 0x0d Failed to resolve the host name 0x0e Faile...

Page 36: ...figuration file Description Using the get command you can download the configuration file or system file named file name from a TFTP server into Flash memory or NVRAM of the local router The system file is saved in the Flash memory of the router And the configuration file is saved either in the Flash memory or NVRAM memory of the router depending on the router hardware and the configuration If the...

Page 37: ...xecuting the command Error number 0x0 represents a successful operationall Other error numbers indicate failure The error numbers contained in the output by executing the get command are equivalent to the error numbers contained in the output by executing the copy command 21 ...

Page 38: ...o idle timeout command you can disable the function By default timed disconnection is enabled For a client at a terminal with console port the disconnection timeout is 3 minutes For a dummy client the disconnection timeout is 10 minutes For the user who uses the dummy terminal in the dial up mode the disconnection timeout is 6 minutes You can turn off this function by using the undo idle timeout c...

Page 39: ...smit information such as simple configuration files and description characters that can not be easily expressed through telephones Using the send command is much more convenient than using email Enter Ctrl W to terminate the message and the system will ask the user whether to send this message to all the terminal users Send message confirm Press Enter Ctrl W y or Y to confirm sending or press Ctrl...

Page 40: ...mmand you can view the current status of the terminal message service which can be either enabled or disabled For related commands see send switch Example Display the current status of the terminal message service 3Com send status Getting messages is enabled The above information shows that the terminal message service is enabled and the terminal can receive messages from other terminals 2 2 3 sen...

Page 41: ...after a second input of this command For related commands see send status Example Display the status of the terminal for receiving messages from other terminals the terminal was enabled to receive the messages 3Com send switch 2 3 Dumb Terminal Service Configuration Commands 2 3 1 auto execute command Syntax auto execute command command undo auto execute command command View Asynchronous serial in...

Page 42: ...Configure the auto execute command for the telnet 10 110 164 45 command on Serial0 3Com Serial0 physical mode async 3Com Serial0 undo modem 3Com Serial0 async mode flow 3Com Serial0 auto execute command telnet 10 110 164 45 2 4 Telnet Service Configuration Commands 2 4 1 display client Syntax display client View All views Parameter None Description Using the display client command you can view all...

Page 43: ...s are specified Description Using the kill telnet command you can disconnect the Telnet connection In some cases such as Telnet users malicious access the administrator user logging in from the Console port can use the kill telnet command to disconnect the link between the Telnet user and the router or disconnect the link according to the process number found through the display client command Use...

Page 44: ...command to delete the Reverse Telnet connection on the interface This command is used on serial interface in async mode async interface and AUX interface Flow mode is configured on the current interface before this command is configured For related commands see reverse telnet timeout Example Disconnect Reverse Telnet on the interface 3Com Async0 asy mode flow 3Com Async0 reverse telnet disconnect ...

Page 45: ... beginning at 1 In other words the port numbering of the asynchronous interfaces begins at 2001 so the first synchronous interface is numbered 2001 and the second 2002 and so on Description Using the reverse telnet listenport command you can configure the number of the port listening to the Reverse Telnet service for an interface Using the undo reverse telnet listenport command you can restore the...

Page 46: ...e interface adopts the transparent transmission mode in the system For relevant configurations see commands reverse telnet disconnect reverse telnet timeout and reverse telnet listenport Example Configure Reverse Telnet to process the data from the Telnet client 3Com Async0 reverse telnet return deal from telnet 2 4 6 reverse telnet timeout Syntax reverse telnet timeout time undo reverse telnet ti...

Page 47: ...w Parameter ip address IP address of the remote router in the dotted decimal format service port TCP port number via the remote router which provides the Telnet service The port number ranges from 0 to 65535 If adopting the Reverse Telnet you should configure the port number Description Using the telnet command you can log onto other routers from the current router via Telnet By default the Telnet...

Page 48: ...nal telnet break on ip Syntax terminal telnet break on ip undo terminal telnet break on ip View System view Parameter None Description Using the terminal telnet break on ip command you can enable the Break On Ip function of Reverse Telnet If this function has been enabled already Reverse Telnet will send a special type of terminal signal to the terminal device connected to the interface upon recei...

Page 49: ... negotiation is enabled For the Reverse Telnet terminal service of the router it is sometimes necessary to set up a connection via the TCP client The client data are directly and transparently transferred to the router via the transmission layer interface to communicate directly with the asynchronous port corresponding to the port specified by the TCP connection You can disable the telnet negotiat...

Page 50: ...gin Client function can make the digital or analogue user terminal that has logged in the router via the dumb terminal access function to log in the UNIX host by using Rlogin protocol This command can be used to establish the Rlogin connection to the UNIX host Example Establish user root on the router After authentication the user can log on the UNIX host legally 3Com rlogin 1 1 254 78 root Trying...

Page 51: ...t error all View All views Parameter packet Enable the packet debugging error Enable the error debugging all Enable all the debugging Description Using the debugging pad command you can enable debugging at all levels Using the undo debugging pad command you can disable the level corresponding debugging The X 25 PAD related information will be displayed along with the configuration information on S...

Page 52: ...m display x25 pad connection 1 to host 123456 PAD0 Total input 12 control 3 bytes 35 QueuedIn 1 of 56 Total output 10 control 3 bytes 64 QueuedOut 2 of 56 State 3 Last error 1 ParamsIn 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 0 10 0 11 0 12 0 13 0 14 0 15 0 16 0 17 0 18 0 19 0 20 0 21 0 22 0 ParamsOut 1 1 2 0 3 2 4 1 5 1 6 0 7 21 8 0 9 1 10 0 11 14 12 1 13 0 14 0 15 0 16 127 17 21 18 18 19 0 20 0 21 0 22...

Page 53: ...mmand can be used to set the valid X 25 PAD remote login user at the Server end if it is necessary to authenticate the user efficiency This command is then used to start the AAA authentication at the Server end As for the detailed description of the meaning the parameter and the usage of the local user command please refer to the Security part of this manual For related commands see local user pad...

Page 54: ...iate the calling from X 25 PAD to log in the remote Server end The remote router can then be configured After a successful calling the party initiating the calling Client end will enter the configuration interface of the called party Server end It must be ensured that both ends support the X 25 PAD features Otherwise calling cannot succeed For related commands see login pad display x25 pad debuggi...

Page 55: ...ges When the Server end of X 25 PAD for some reason For example the Client end sends the exit request or needs to release link resources etc sends link clearance message Invite Clear to the Client end the Server end will wait for the response from the Client end If the Client end fails to respond within the time specified the Server end will clear the link Example Set the response time of the loca...

Page 56: ...splay the headers of received SNMP Simple Network Management Protocol messages packets Contents of SNMP messages received sent process Display debugging information in agent operations trap Display information on the agent when it sends traps all Display all SNMP information Description Using the debugging snmp agent command you can enable the debugging of transceived SNMP messages and their proce...

Page 57: ... been configured For related commands see snmp agent community Example Display information on the community names that have been configured 3Com display snmp agent community Community name 8040 Access Attribute read Group name 8040 Storage type nonVolatile Community name 8070 Access Attribute write Group name 8070 Access list 1 Storage type nonVolatile Note There are five storage methods other vol...

Page 58: ...rious views and the storage type of each group For related commands see snmp agent group Example Display the SNMP group name and security model 3Com display snmp agent group Group name 3Com Security model v3 auth Readview dfd Writeview dfds Notifyview dfd Storage type nonVolatile Access list 8 Note There are five storage methods other volatile nonVolatile permanent and readOnly 3 1 4 display snmp ...

Page 59: ...municates with the SNMP applications For related commands see snmp agent local engineid Example Display the engineID of the active equipment 3Com display snmp agent local engineid SNMP local engineID 800007DB0300E0FC048153 3 1 5 display snmp agent mib view Syntax display snmp agent mib view View All views Parameter None Description Using the display snmp agent mib view command you can view informa...

Page 60: ...rStatus active View name ViewDefault MIB Subtree snmpUsmMIB Storage type nonVolatile excluded UserStatus active View name ViewDefault MIB Subtree snmpVacmMIB Storage type nonVolatile excluded UserStatus active View name ViewDefault MIB Subtree snmpModules 18 Storage type nonVolatile excluded UserStatus active Note There are five storage types other volatile nonVolatile permanent and readOnly 3 1 6...

Page 61: ...cessfully 0 MIB objects altered successfully 0 Get Request PDUs accepted and processed 0 Get Next PDUs accepted and processed 0 Set Request PDUs accepted and processed 0 Messages passed from the SNMP entity 0 SNMP PDUs which had a tooBig error Maximum packet size is 1500 0 SNMP PDUs which had a noSuchName error 0 SNMP PDUs which had a badValue error 0 SNMP PDUs which had a general error 0 Get Resp...

Page 62: ... MA 3 1 8 display snmp agent sys info location Syntax display snmp agent sys info location View All views Parameter None Description Using the display snmp agent sys info location command you can view the system location string This command can be used for searching the system location For related commands see snmp agent sys info location Example Display the system location string 3Com display snm...

Page 63: ...ed commands see snmp agent usm user Example Display information on all the active users 3Com display snmp agent usm user User name 8040 Engine ID 800007DB0300E0FC01A47A UserStatus active Access list 3 3 1 10 snmp agent Syntax snmp agent undo snmp agent View System view Parameter None Description Using the snmp agent command you can enable the SNMP Simple Network Management Protocol service Using t...

Page 64: ...the warm start trap is enabled the system will send a warm start trap packet whenever the SNMP service is enabled Example Disable the SNMP service 3Com undo snmp agent 3 1 11 snmp agent community Syntax snmp agent community read write community_name mib view view name acl number undo snmp agent community community_name View System view Parameter community_name The community name whose string range...

Page 65: ... public which can be used for accessing those objects with read only authority 3Com snmp agent community private read Set the community name to private which can be used to access those objects with read write authority and it also specifies the accessible MIB view to view1 and access list to 2 3Com snmp agent community public view view1 write acl 2 Delete the read only community name private 3Com...

Page 66: ... snmp agent group command you can configure a SNMP group Using the undo snmp agent group command you can cancel a specific SNMP group By default no SNMP group is configured By default SNMP group has only the real only authority The read only view name is ViewDefault that is the default configuration is read view ViewDefault Configuring a SNMP group is to map a SNMP group to a MIB view and the user...

Page 67: ...t local engineid command you can configure a unique ID for the router Using the undo snmp agent local engineid command you can restore the default SNMPv3 engineID Changing engineID will deactivate the configured SNMPv3 user and the user name should be re configured Normally the default engineID is unique If you want to set a familiar ID make sure that it is unique in the overall network For relate...

Page 68: ...ew command you can cancel a view By default a view is named as ViewDefault and OID is 1 3 6 1 View information includes 1 3 6 1MIB sub tree but excludes the MIB sub trees 1 3 6 1 6 3 15 1 3 6 1 6 3 16 and 1 3 6 1 6 3 18 ViewDefault included 1 3 6 1 excluded 1 3 6 1 6 3 15 1 3 6 1 6 3 16 and 1 3 6 1 6 3 18 Please be sure to distinguish view information and view name Different pieces of information ...

Page 69: ...size command you can restore the default maximum size of SNMP packets that the agent can receive and send When congestion occurs in the network this command can be used to restrict the maximum size of SNMP packets that the agent may receive send Once a maximum size is set the agent will not process the request packets greater than the maximum size For related commands see snmp agent snmp agent tra...

Page 70: ...stem maintenance contact information so that the network administrators can be in contact with the equipment administrator One or multiple spaces are allowed in the system maintenance contact string If multiple continuous spaces are input the system will regard them as one space The character is not allowed to appear in the system maintenance contact string For related commands see snmp agent snmp...

Page 71: ...quipment in case that faults occur on the network One and more spaces are allowed in the system location string If multiple continuous spaces are input the system will regard it as one space is not allowed in the system location string For related commands see snmp agent snmp agent sys info contact display snmp agent sys info location Example Set Marlborough as system location information 3Com snm...

Page 72: ...an use this command to enable the NMS to perform SNMPv1 or SNMPv2 For related commands see snmp agent snmp agent community snmp agent group snmp agent mib view Example Enable the NMS to perform SNMPv1 operations on the SNMP agent 3Com snmp agent sys info version v1 3 1 19 snmp agent target host Syntax snmp agent target host trap address host_address securityname name port port parameters v1 v2c v3...

Page 73: ... command you can cancel the host specified When configuring the snmp agent trap enables command you must use the snmp agent target host command to configure at least one host that receives Trap message The former command is used to specify which SNMP notification is to be sent to which host If the NMS wants to receive most of the notification messages you should configure at least one snmp agent t...

Page 74: ...e following options authentication Enable the router to send authentication traps Coldstart Enable the router to send cold start traps Warmstart Enable the router to send warm start traps Linkup Enable the router to send traps when the line protocol on the interface is up linkdown Enable the router to send traps when the line protocol on the interface is down Description Using the snmp agent trap ...

Page 75: ...ime out after 30 seconds Description Using the snmp agent trap life command you can configure the timeout time that traps can be held Using the undo snmp agent trap life command you can restore the default timeout time that traps can be held Suppose that the system is set to hold traps for some time if a trap times out it will be discarded and the system will not transmit it or hold it any longer ...

Page 76: ...f effectively controlling the system resources Too long a queue will consume too many system resources but too short a queue will probably cause loss of traps You should set the length of the trap queue according to the number of traps generated and sent per unit time in the actual application For related commands see snmp agent snmp agent trap enable Example Set the length of the message queue of...

Page 77: ...f the Ethernet interface 0 as the source address in the traps 3Com snmp agent trap source ethernet 0 3 1 24 snmp agent usm user Syntax snmp agent usm user v1 username groupname v2c username groupname v3 username groupname authentication mod md5 sha auth password privacy mod des56 priv password username groupname acl acl undo snmp agent usm user username groupname View System view Parameter v1 The ...

Page 78: ...ser in the SNMP group By default no user is configured and a user will not be encrypted nor authenticated The change of engineID will cause the invalidation of the configured SNMPv3 user so the username needs to be reconfigured Three combinations of encryption and authentication are available both encryption and authentication authentication without encryption and neither authentication nor encryp...

Page 79: ...isplay the RMON statistics of an Ethernet interface 3Com display rmon statistics Interface 1 is active and owned by monitor Monitors Ethernet0 which has Received 1150 octets 13 packets 2 broadcast and 0 multicast packets 3 undersized and 0 oversized packets 0 fragments and 0 jabbers 0 CRC alignment errors and 0 collisions of dropped packet events due to lack of resources 0 of packets received of l...

Page 80: ...mon promiscuous undo rmon promiscuous View Ethernet interface view Parameter None Description Using the rmon promiscuous command you can enable the RMON statistics function of the Ethernet interface Using the undo rmon promiscuous command you can disable the RMON statistics function By default the RMON statistics function is disabled The router can collect the original data needed by RMON only whe...

Page 81: ...n provide RMON with the statistic of the frame whose destination is another router For related commands see reset rmon statistics display rmon statistics Example Enable the RMON statistics function 3Com Ethernet0 rmon promiscuous 65 ...

Page 82: ...ng of the specified operation Description Using the debugging command you can enable the system debug switch Using the undo debugging command you can disable this switch By default all debug switches are turned off The operating system provides you with a shortcut key combination Ctrl D to close the enormous debugging information output by the terminal It functions exactly like the undo debugging ...

Page 83: ...debug switches already turned on are shown according to the order of the interfaces which are valid to interfaces only b global debug switches For related commands see debugging Example Display the debugging already enabled 3Com display debugging Enable pimsm J P TIMER debugging functions Enable bridge packet debugging functions Enable spanning tree protocol packet debugging functions Enable spann...

Page 84: ...ckets is sent ranging from 1 to 4294967295 d Set socket to DEBUG mode n Use the host parameter as the IP address without domain name resolution p Pattern ICMP ECHO REQUEST packet filling bit in the hex format For example p ff fills all packets with ff q No other detailed information but statistics is shown R Record routes r Transmit Echo Request packets directly to the connected network without ro...

Page 85: ...PONSE ICMP packets not shown While ping is being executed the ICMP ECHO REQUEST packet is sent to the destination If the network connection to the destination works normally it will acknowledge receipt of the ICMP ECHO REPLY packet in the source host after the destination host receives the ICMP ECHO REQUEST The ping command is used to test if network connection is faulty or if the network has line...

Page 86: ...2ms 202 38 160 244 ping statistics 5 packets transmitted 5 packets received 0 packet loss round trip min avg max 1 2 3 ms 4 2 2 ping ipx Syntax ping ipx n v N H H H count timeout pscketsize View All views Parameter n Standard Novell reply mode is used v Display detailed information N H H H The network address of the remote host count Times that the IPX ping packet request is sent timeout Timeout v...

Page 87: ...er of reply packets received the percentage of packets unanswered the minimum the maximum and the average value Example Check if the host whose IPX address is 2 0 0c91 f61f is reachable 3Com ping ipx 2 0 0c91 f61f Press CTRL_C to break Sending 5 100 byte IPX Echoes to 2 0 0c91 f61f timeout is 2 seconds 2 0 0c91 f61f IPX ping statistics 5 packets transmitted 5 packets received 0 packet loss round t...

Page 88: ...434 nqueries 3 timeout 5s The tracert command can be used to test the gateways through which the data packets travel from the source host to the destination host It can be used to check if the network connection is reachable and to analyze where does the fault occur The procedure of executing the tracert command is as follows First send a data packet whose TTL is 1 so that the first hop feeds back...

Page 89: ...ms 199 ms 199 ms 10 nic merit edu 35 1 1 48 239 ms 239 ms 239 ms From the above results you can learn the gateways through which the data packets go from the source address to the destination address 1 9 which is very helpful to network analysis 3Com tracert 18 26 0 115 traceroute to allspice lcs mit edu 18 26 0 115 30 hops max 1 helios ee lbl gov 128 3 112 1 0 ms 0 ms 0 ms 2 lilac dmc Berkeley ED...

Page 90: ...er command you can view the configuration information for the log system or record the information in the buffer of the router display info center logbuffer is used to display the log information saved in the buffer of the router For related commands see display current configuration Example Display the current log configuration 3Com display info center Buffer logging size200 levelinformational la...

Page 91: ...n 18 State reqsent code ConfAck 02 id 6 len 14 MRU 1 len 4 val 05dc MagicNumber 5 len 6 val 0000d32d Line protocol ip on interface Serial2 0 changed state to UP 01 19 41 PPP 6 DEBUG Serial2 0 PPP O LCP c021 Pkt Len 18 State acksent code ConfReq 01 id 22 len 14 MRU 1 len 4 val 05dc MagicNumber 5 len 6 val 85670100 4 3 2 info center console Syntax info center console English Chinese emergencies aler...

Page 92: ...onal Only the log information with severity level equal to or higher than informational can be output to the Console debugging Only the log information with severity level equal to or higher than debugging can be output to the Console filter facility1 facility2 Enable filtering function of the specified modules By default the log information output into the buffer is not module based filtering inf...

Page 93: ...fo center enable command you can disable the log function By default log function is disabled Only after the log system is turned on via this log command can log information be output to the Console Telnet terminal dummy terminal buffer in the router and log host For related commands see display info center Example Disable the log function 3Com undo info center enable 4 3 4 info center logbuffer S...

Page 94: ...evel equal to or higher than errors can be output to the buffer warnings Only the log information with severity level equal to or higher than warnings can be output to the buffer notifications Only the log information with severity level equal to or higher than notifications can be output to the buffer informational Only the info center information with severity level equal to or higher than infor...

Page 95: ...y2 undo info center loghost loghost number ip address local0 local7 English Chinese emergencies alerts critical errors warnings notifications informational debugging filter facility1 facility2 View System view Parameter host number It specifies a Unix host This value ranges from 0 to 9 ip address It specifies the IP address of the Unix host in dotted decimal format port It specifies the port of th...

Page 96: ...the info center loghost specified By default the threshold of seriousness level is informational debugging Only the info center information with severity level equal to or higher than debugging can be output to the info center loghost specified filter The information filtering switch facility The filtering module name Description Using the info center loghost command you can enable the log output ...

Page 97: ...ts Only the info center information with severity level equal to or higher than alerts can be output to the terminal critical Only the info center information with severity level equal to or higher than critical can be output to the terminal errors Only the info center information with severity level equal to or higher than errors can be output to the terminal warnings Only the info center informa...

Page 98: ...ich can be used for remote debugging The parameter all is used in undo info center monitor all only indicating that the log system is disabled to send log information to any Telnet or dummy terminal undo info center monitor indicates that the log system is disabled to send log information to the local terminal For related commands see display info center display current configuration Example Enabl...

Page 99: ... from 0 to 127 Description Using the async mode pos command you can configure the POS access port By default the asynchronous interface or FCM interface operates in the dedicated mode Therefore no POS access port is configured by default The port can provide POS access service and process POS packet only after the interface is configured to enable the service Example Set the number of the access p...

Page 100: ...t to work in the POS application mode and use the pos server app flow command to configure the POS application in the asynchronous connection in the global mode Example Configure the asynchronous interface async0 to work in POS application mode 3Com Async0 async mode posapp 5 1 3 debugging pos app Syntax debugging pos app app number View All views Parameter app number Enable debugging of a specifi...

Page 101: ...mmand you can enable debugging of the POS access interface This command is used to enable debugging of the POS access interface If undo interface is specified it will enable debugging of all interfaces The information displayed includes the name of the interface receiving the packet packet type discarded packets packet content TPDU and buffer overflow Example None 5 1 5 display fcm Syntax display ...

Page 102: ...ated commands see reset fcm Example Display the number of times that the dialing negotiation of FCM card interface fails and the number of times that FCM card interface disconnects due to transaction timeout 3Com display fcm FCMId ConnectFail Timeout 0 0 0 1 0 0 2 0 0 3 0 0 4 0 2 5 0 0 6 0 0 7 0 0 8 0 0 9 0 0 5 1 6 display pos app Syntax display pos app View All views Parameter None Description Us...

Page 103: ...acErr DisErr Discarded Buffed 0 up 100 2 2 2 3 1 up 60 0 0 0 0 5 1 7 display pos interface Syntax display pos interface View All views Parameter None Description Using the display pos interface command you can view the brief information on the POS interface This command is used to display some major information on the POS interface including ID interface name connection state and the number of pac...

Page 104: ...ntax pos server app flow app number interface type interface number undo pos server app flow app number View System view Parameter app number Number of POS application ranging from 0 to 31 A router can be configured with up to 32 POS applications interface type Interface type interface number Interface number Description Using the pos server app flow command you can configure the POS application i...

Page 105: ...dress of the POS application in the TCP IP connection port number Port number of the POS application in the TCP IP connection Description Using the pos server app tcp command you can configure the POS application in the TCP IP mode Using the undo pos server app tcp command you can cancel a POS application By default no POS application is configured The POS access router is connected to a UNIX fron...

Page 106: ...By default POS access server is disabled To implement the POS access it is necessary to start the POS access server first After starting the POS server execute the pos server enable command the system will then prompt as follows pos server has been enabled Example Enable the POS access function 3Com pos server enable 5 1 11 pos server fcm Syntax pos server fcm answertime time tradetime time packet...

Page 107: ...h poor quality too short answer time setting will cause the failure of MODEM negotiation and you can only find Up and Down at the MODEM interface of the router without data packet sending and dispatching Now you can increase the time value of the AnswerTime Communication begins when negotiation is completed As POS terminal adopts SDLC protocol the monitor frame and data frame needs timeout and rep...

Page 108: ...re the multi application POS mapping table Using the undo pos server map command you can cancel the mapping table By default no multi application POS mapping table is configured POS multi application is a kind of POS access function which sends the packets from a POS terminal to different POS applications according to the destination addresses packed For the TCP IP connection an application is mar...

Page 109: ...command you can bind the source address of the TCP connection Using the undo pos server source ip command you can cancel the binding of the source address of the TCP connection When using several POS terminal multiplex one TCP connections to set up relations with the application it is necessary to hide the true IP address of the up TCP connection in the access service and set other IP address for ...

Page 110: ...you can reset the number of times that the dialing negotiation of FCM card interface fails and the number of times that FCM card interface disconnects due to transaction timeout For related commands see display fcm Example Clear the number of times that the dialing negotiation of FCM card interface fails and the number of times that FCM card interface disconnects due to transaction timeout 3Com re...

Page 111: ...s command you can reset the counter of the displayed information on commands display pos app and display pos interface and to count the corresponding packets over again Example Reset the counter of the displayed information on the display command 3Com reset pos 95 ...

Page 112: ...k Ethernet Interface 13 2 1 3 mtu Ethernet Interface 14 2 1 4 send frame type 14 2 1 5 speed 15 Chapter 3 WAN Interface Configuration Commands 17 3 1 Serial Interface Configuration Commands 17 3 1 1 async mode 17 3 1 2 baudrate 18 3 1 3 clock Serial Interface 19 3 1 4 code nrzi 21 3 1 5 country code 21 3 1 6 databits 22 3 1 7 detect dcd 23 3 1 8 detect dsr dtr 24 3 1 9 flow control 25 3 1 10 idle ...

Page 113: ...roller t1 45 3 3 7 frame format PRI Interface 45 3 3 8 loopback PRI Interface 46 3 3 9 pri set PRI Interface 47 3 4 E1 F Interface Configuration Commands 48 3 4 1 display fe1 serial 48 3 4 2 fe1 clock 49 3 4 3 fe1 code 50 3 4 4 fe1 frame format 50 3 4 5 fe1 loopback 51 3 4 6 fe1 timeslot list 52 3 4 7 fe1 unframed 53 3 5 T1 F Interface Configuration Commands 54 3 5 1 ft1 cable 54 3 5 2 display ft1...

Page 114: ...face 70 3 7 3 controller t3 71 3 7 4 crc 72 3 7 5 display controller t3 72 3 7 6 frame format CT3 Interface 74 3 7 7 loopback CT3 Interface 75 3 7 8 t1 channel set 76 3 7 9 t1 set clock 77 3 7 10 t1 set frame format 78 3 7 11 t1 set loopback 78 3 7 12 t1 shutdown 79 3 7 13 t1 unframed 80 3 7 14 using CT3 Interface 81 Chapter 4 Logical Interface Configuration Commands 82 4 1 Null Interface Configur...

Page 115: ...ers By default the description is 3Com Router xxxxx interface Description Using the description command you can configure the description of an interface Using the undo description command you can restore the default description This command is used only to identify an interface and does not have special meaning and usage For related commands see display interfaces Example Set the interface Ethern...

Page 116: ... interface Physical features of the interface sync async DTE DCE clock selection external cable etc IP address of the interface The run status statistics etc of the link layer protocols encapsulated at the interface Statistics of input and output packets at the interface For related commands see display interfaces brief reset counters interface Example Display the statistics of Serial 0 with PPP l...

Page 117: ...utes output rate The output rate of the interface within recent 5 minutes Input queue size max drops The length of the input interface FIFO queuing FIFO The type of the output interface Output queue size max drops FIFO The length of the output interface input packets 8 bytes 108 no buffers 0 The number of packets received by interface The number of bytes received by interface The number of packets...

Page 118: ...tocol status of all the interfaces 3Com display interfaces brief Aux0 is up line protocol is up spoofing Link protocol PPP Bridge Template1 is up line protocol is up Dialer1 is up spoofing line protocol is up spoofing Link protocol PPP Ethernet0 is up line protocol is up loop Internet address is 1 1 1 1 255 255 255 0 1 1 1 255 Internet address is 1 1 2 2 255 255 255 0 1 1 2 255 sub Ethernet1 is do...

Page 119: ...threshold command This command is used to set the time interval for counting traffic at all interfaces For related commands see display interfaces reset counters interface Example Set the time interval for counting traffic at all interfaces to 2 minutes 3Com flow interval 2 1 1 5 interface Syntax interface type number sub number undo interface type number sub number View All views Parameter type T...

Page 120: ...ual template interface Logic interface Tunnel Tunnel interface Logic interface The interface name can be derived from the interface numbering rule interface name uses the format of interface type interface number For example Ethernet0 represents the Ethernet interface with the interface number 0 Serial0 1 represents the first sub interface of the interface Serial0 Similarly Serial3 2 represents th...

Page 121: ... type it specifies an interface Description Using the reset counters interface command you can reset the statistics of packets received and transmitted at an interface If no interface is specified then the statistics of packets received and transmitted at all interfaces will be cleared by default In some circumstances it is necessary to keep statistics of the traffic at a certain interface It is t...

Page 122: ...terface the tunnel interface and the MFR interface In some circumstances such as modifying the working parameter of a certain interface the modification could not take effect immediately It is necessary to shut down and restart the interface before the modification can take effect For related commands see display interfaces Example Shut down Ethernet interface 0 3Com Ethernet0 shutdown Interface E...

Page 123: ...e full Set the Ethernet interface to work in the full duplex mode half Set the Ethernet interface to work in the half duplex mode Description Using the duplex command you can configure the mode in which 100Base TX fast Ethernet interface works Using the undo duplex command you can restore the default mode in which the Ethernet interface works By default the operating mode is duplex negotiation Whe...

Page 124: ...ed display interfaces Example Set the 100Base T fast Ethernet interface to work in full duplex mode 3Com Ethernet0 duplex full 2 1 2 loopback Ethernet Interface Syntax loopback undo loopback View Ethernet interface view Parameter None Description Using the loopback command you can enable the internal loopback and the external loopback on the Ethernet interface Using the undo loopback command you c...

Page 125: ...it ranges from 46 to 1492 Description Using the mtu command you can configure or modify the length byte of the MTU maximum transmission unit Using the undo mtu command you can restore the default value The default value is 1500 when Ethernet_II is adopted and 1492 when Ethernet_SNAP is adopted The size of the MTU of the Ethernet interface will affect the fragmentation and reassembling of the IP da...

Page 126: ...thernet_II The Ethernet interface of the 3Com series of routers supports the following four frame types Ethernet_II Ethernet_SNAP 802 2 802 3 Ethernet_II and Ethernet_SNAP frame type support IP protocol and all four types support IPX The Ethernet interface can auto discriminate the types of frames received so it can receive packets of multiple frame types concurrently But it can only send packets ...

Page 127: ...is only effective for fast Ethernet interface By default the speed for a Fast Ethernet interface is auto negotiation While setting the fast Ethernet interface to speed negotiation you must set its remote end to work in the same mode If this could not be achieved then use forced setting to ensure consistency in the working mode The execution of duplex negotiation after executing speed 10 100 at the...

Page 128: ...s to the called end this can achieve the same effect as by entering configuration commands remotely The parameters of the link layer protocol at the called end are set and then a link is set up This mode applies for man machine interaction situations such as the dial up tty Terminal Server mode When the asynchronous serial interface of the router is used in the terminal server mode the number of v...

Page 129: ...ault 9600bps is set for the asynchronous serial interface and 64000bps is set for the synchronous serial interface The asynchronous serial interface supports the following baud rates 300 bps 600 bps 1200 bps 2400 bps 4800 bps 9600 bps 19200 bps 38400 bps 57600 bps 115200 bps And the synchronous serial interface supports the following baud rates 1200 bps 2400 bps 4800 bps 9600 bps 19200 bps 38400 b...

Page 130: ... asynchronous mode the baud rates of routers at both sides can be set to different values In synchronous mode the router at the DCE side decides the baud rate for line transmission and you just need to set it at the DCE side For related commands see virtualbaudrate Example Set the baud rate at the serial interface to 115200bps 3Com Serial0 baudrate 115200 3 1 3 clock Serial Interface Syntax clock ...

Page 131: ...X clock for the DTE can be either of the DCE s TX and RX clocks So this gives rise to four clock combinations that is four clocks are available for selection at the DTE side These four selection methods are specified as in the following table Table 3 1 Clock selection methods at the serial interface DTE side Selection method Meanings DTEclk1 TxClk TxClk RxClk RxClk DTEclk2 TxClk TxClk RxClk TxClk ...

Page 132: ...l interface to NRZ nonreturn to zero By default the digital signal encoding format of synchronous serial interface is NRZ Example Configure the digital signal encoding format of interface Serial0 to NRZI 3Com Serial0 code nrzi 3 1 5 country code Syntax country code area name View Asynchronous serial interface view AM interface view Parameter area name Area name including australia austria belgium ...

Page 133: ...g formats of Modem are different To adapt to coding formats in different areas you can use this command On the asynchronous serial interface only the command modem is enabled can this command be configured Example Set the area code to china 3Com Serial0 country code china 3 1 6 databits Syntax databits 5 6 7 8 View Asynchronous serial interface view Parameter 5 5 data bits 6 6 data bits 7 7 data b...

Page 134: ... be set to 5 Otherwise the system will prompt Unsupported databits for AUX which indicates the AUX interface does not support the databits to be 5 For related commands see parity stopbits Example Set the data bit to 6 3Com Serial0 databits 6 3 1 7 detect dcd Syntax detect dcd undo detect dcd View Serial interface view Parameter None Description Using the detect dcd command you can enable the data ...

Page 135: ...erial interfaces is enabled If undo detect dsr dtr is set then the system will only check if the serial interface is connected with the external cable and will automatically report to the user the UP and DOWN states of the serial interface If detect dsr dtr is set then the system will not only check if the serial interface is connected with the external cable but also detect the DSR signal Only wh...

Page 136: ...e two types of data flow control methods hardware flow control and software flow control when an asynchronous serial interface adopts the flow mode to establish links If hardware flow control is adopted the data transmission on the asynchronous serial interface will be controlled by the hardware signal on the interface When transmitting data the interface will automatically detect the CTS signal I...

Page 137: ...sync 0 3Com Async0 flow control software 3 1 10 idle mark Syntax idle mark undo idle mark View Synchronous interface view Parameter None Description Using the idle mark command you can configure the idle coding of synchronous interface to 7E Using the undo idle mark command you can restore the idle coding of synchronous interface to FF By default the idle coding of synchronous interface is 7E In g...

Page 138: ...fault Invert transmit clock disabled when the synchronous serial interface acts as the DTE In some circumstances the transmit clock on the serial interface of the DTE side is inverted to eliminate the delay for half a clock cycle This command is only valid for some clock signals provided by some special DCE The transmit clock should not be inverted for normal applications For related commands see ...

Page 139: ...and external loopback are enabled on serial interface only when some special functions are tested Example Configures the internal loopback and external loopback on the serial interface 3Com Serial0 loopback 3 1 13 mtu Serial Interface Syntax mtu size undo mtu View Serial interface view Parameter size The size of the serial interface s Maximum Transmission Unit with the unit being byte Ranging from...

Page 140: ... method of link layer protocol on asynchronous serial interface under flow or terminal server TTY mode No parity is the default When the asynchronous serial interface works in flow mode or terminal server mode the two ends of the link interact after the setup of a physical connection The link is set up after the router sends configuration command and operating parameters of link layer to the termi...

Page 141: ...ous mode Description Using the physical mode command you can configure the working mode of the synchronous asynchronous serial interface By default working mode is sync for the synchronous asynchronous serial interface Example Set the synchronous asynchronous serial interface to work as an asynchronous serial interface 3Com Serial0 physical mode async 3 1 16 reverse rts Syntax reverse rts undo rev...

Page 142: ...alid after the data are sent In full duplex mode RTS hand shaking signals are valid all the time Note If reverse rts command is configured in the case that SDLC protocol is encapsulated there is a need to configure qmtoken 1 command to achieve better effect For related commands see qmtoken Example Set the synchronous serial interface Serial0 to work in half duplex mode 3Com Serial0 reverse rts 3 1...

Page 143: ...it length of async serial interface to 2 3Com Serial0 stopbits 2 3 1 18 timer hold Syntax timer hold seconds undo timer hold View Serial interface view Parameter seconds the time interval for sending keepalive packets on the serial interface This value ranges 0 to 32767 in seconds 0 indicates that no keepalive packets are allowed to be sent equal to the undo timer hold command in function By defau...

Page 144: ...on Commands 3 2 1 channel set CE1 PRI Interface Syntax channel set set number timeslot list range undo channel set set number View CE1 PRI interface view Parameter set number The channel set number formed by binding timeslots on an interface It is in the range 0 to 30 range Number of the bound timeslots it is in the range 1 to 31 When specifying timeslots to be bound you can configure a single tim...

Page 145: ...mber plus 1 and set number is the number of channel set Only one timeslot binding mode can be supported on one CE1 PRI interface at one time that is this command and the pri set command cannot be used simultaneously For related commands see pri set Example Bind the timeslots 1 2 10 15 and 18 on the CE1 PRI interface as channel set 0 3Com E1 0 channel set 0 timeslot list 1 2 10 15 18 3 2 2 clock CE...

Page 146: ...rface view Parameter ami Adopt the line code format ami Alternate Mark Inversion hdb3 Adopt the line code format hdb3 High Density Bipolar 3 Description Using the code command you can configure the line code format of the CE1 PRI interface Using the undo code command you can restore the default setting of line code format of the interface The default line code format of CE1 PRI interface is hdb3 Y...

Page 147: ...mple Display how to enter the view of interface E1 0 3Com controller e1 0 3Com E1 0 3 2 5 display controller e1 Syntax display controller e1 interface number View All views Parameter interface number Interface number Description Using the display controller e1 command you can view the information related to the CE1 PRI interface This command displays the following information Physical conditions o...

Page 148: ... on the CE1 PRI interface to CRC4 frame format no crc4 Set the frame format on the CE1 PRI interface to non CRC4 frame format Description Using the frame format command you can configure the frame format on the CE1 PRI interface Using the undo frame format command you can restore the default setting of the frame format on the interface The default frame format on the CE1 PRI interface is no crc4 W...

Page 149: ... both internal loopback and external loopback are disabled internal loopback and external loopback are used to check the condition of interfaces or cables Such functions should be disabled when they are in normal operations If a serial interface that is formed by binding timeslots of the CE1 PRI interface is encapsulated with the PPP and set to loopback it is normal for the protocol state of link ...

Page 150: ...ation timeslot 16 as a D channel to transmit signaling and the other timeslots as B channels to transmit data At the time of binding bind the timeslots except the timeslot 0 as one pri set as a D channel the timeslot 16 will be automatically bound The logic feature of this pri set will be the same like that of an ISDN PRI interface In the case of binding timeslots to be a pri set if timeslots to b...

Page 151: ...n which no timeslots will be divided Its logic feature is the same as that of a synchronous serial interface When the CE1 PRI interface works in CE1 PRI operating mode it is physically divided into 32 timeslots numbered from 0 to 31 In which timeslot 0 is used to transmit the synchronizing information This interface can be used as either a CE1 interface or a PRI interface After changing the operat...

Page 152: ...on the corresponding length of the transmission cable Description Using the cable command you can configure the attenuation or length of a transmission cable that the PRI interface matches Using the undo cable command you can restore the default value By default the attenuation of transmission cable that the PRI interface matches is long 0db This command is mainly used to configure the signal wave...

Page 153: ...will be N x 64kbps Description Using the channel set command you can bind the timeslots of the PRI interface as channel sets Using the undo channel set command you can cancel the corresponding timeslot binding By default no channel set is bound The PRI interface is physically divided into 24 timeslots numbered from 1 to 24 When put into use all the timeslots can be divided into multiple channel se...

Page 154: ...he clock command you can configure the clock mode on the PRI interface Using the undo clock command you can restore the default clock mode on the interface By default the interface uses the slave clock mode When the PRI interface operates as DCE you should choose the internal clock namely master clock mode When it operates as DTE you should choose the line clock namely slave clock mode Example Set...

Page 155: ...ore the default setting of line code format of the interface The default line code format of PRI interface is b8zs You should keep the peer devices in consistency when setting the line code format of interfaces Example Set the line code format of the interface T1 0 to ami 3Com T1 0 code ami 3 3 5 controller t1 Syntax controller t1 number View All views Parameter number Number of the PRI interface ...

Page 156: ... you can view the information related to the PRI interface This command displays the following information Physical conditions of the interface Clock mode of the interface Frame check mode of the interface Line code decode mode of the interface Example Display the information related to the interface T1 3Com display controller t1 2 3 3 7 frame format PRI Interface Syntax frame format sf esf undo f...

Page 157: ...hat more significant bits can be used to transmit user data In practice a system should be tested often The application of ESF satisfies the requirement that the services are still in normal operation even at the time of testing Example Set the frame format of T1 0 to SF 3Com T1 0 frame format sf 3 3 8 loopback PRI Interface Syntax loopback local remote undo loopback local remote View PRI interfac...

Page 158: ...cifying timeslots to be bound you can configure a single timeslot using the form of number or timeslots within a range using the form of number1 number2 or simultaneously specify multiple timeslots using the form of number1 number2 number3 Description Using the pri set command you can bind the timeslots of PRI interface to be a pri set Using the undo pri set command you can cancel the existing bin...

Page 159: ...orted on one PRI interface at one time that is this command and the channel set command cannot be used at the same time For related commands see channel set Example Bind the timeslots 1 2 8 to 12 of the PRI interface as a pri set 3Com T1 0 pri set timeslot list 1 2 8 12 3 4 E1 F Interface Configuration Commands 3 4 1 display fe1 serial Syntax display fe1 serial serial number View All views Paramet...

Page 160: ...o fe1 clock View E1 F interface view Parameter master Internal clock is used slave Line clock is used Description Using the fe1 clock command you can configure clock used by an E1 F interface Using the undo fe1 clock command you can restore the default clock of the interface By default the interfaces use slave clock For an E1 F interface used as DCE master clock should be used If the interface is ...

Page 161: ...nterface Using the undo fe1 code command you can restore the default line code format of interface By default E1 F interfaces adopt hdb3 The line code of an interface should be set in consistency with that of the peer Example Set the line code format of the E1 F interface to AMI 3Com Serial0 fe1 code ami 3 4 4 fe1 frame format Syntax fe1 frame format crc4 no crc4 undo fe1 frame format View E1 F in...

Page 162: ...rface view Parameter local Places the interface in local loopback remote Places the interface in remote loopback Description Using the fe1 loopback command you can configure an E1 F interface in local or remote loopback Using the undo fe1 loopback command you can disable the local and remote loopback on the interface By default the interfaces are not placed in local or remote loopback Local loopba...

Page 163: ...e form of number1 number2 or multiple time slots by using the form of number1 number2 number3 Description Using the fe1 timeslot list command you can configure the time slots that will participate in the binding operation on an E1 F interface Using the undo fe1 timeslot list command you can restore the default setting of time slot binding By default all the time slots on an E1 F interface are boun...

Page 164: ... you can configure the E1 F interface to work in framed mode By default E1 F interfaces work in framed mode When it works in unframed mode it is a timeslotless interface of 2048kbps data bandwidth In this case it is logically equivalent to a synchronous serial interface When it works in framed mode however it is physically divided into 32 time slots numbered in the range of 0 to 31 and time slot 0...

Page 165: ...ding on the length of transmission line Description Using the ft1 cable command you can configure attenuation or length of the transmission line matched a Fractional T1 interface Using the undo ft1cable command you can restore the default setting By default the transmission line attenuation matched T1 F interfaces is long 0db This command is mainly used for configuring the signal waveform required...

Page 166: ...nd state of T1 F interface If the specified interface is a serial interface rather than a T1 F interface the system will display the error prompt The serial is not a factional interface Example Display the information of the T1 F interface 3Com display ft1 serial 0 Serial1 Module type is T1 fractional T1 F is down Applique type is framed 100 OHM balanced Framing is ESF Line Code is B8ZS Source Clo...

Page 167: ...terface is used as DTE however slave clock should be used Example Set the T1 F interface to use internal clock 3Com Serial0 ft1 clock master 3 5 4 ft1 code Syntax ft1 code ami b8zs undo ft1 code View T1 F interface view Parameter ami Adopts AMI line code format b8zs Adopts B8ZS line code format Description Using the ft1 code command you can configure line code format for a T1 F interface Using the...

Page 168: ...interface Using the undo ft1 frame format command you can restore the default frame format of the interface By default T1 F interfaces use esf T1 F interfaces support SF and ESF In SF multiple frames can share the same frame synchronization and signaling information so that more significant bits can be used for transmitting user data In practice the system test is often required The application of...

Page 169: ...e or cable itself These functions should be disabled in normal cases On an interface using this command but with different arguments can respectively enable local loopback and remote loopback but these two functions cannot be enabled at the same time Example Place the T1 F interface in local loopback 3Com Serial0 ft1 loopback local 3 5 7 ft1 timeslot list Syntax ft1 timeslot list all range speed 5...

Page 170: ...ore the default setting of time slot binding By default all the time slots on a T1 F interface are bound That is the T1 F interface rate defaults to 1536kbps When performing time slot binding on a T1 F interface the speed assigned to a time slot defaults to 64kbps Time slot binding operation on a T1 F interface will result in changing of interface rate For example after the user binds the time slo...

Page 171: ...the local end will use the line clock If the CE3 ports of the two routers are directly connected one router should use the internal clock whereas the other router uses the line clock Example Configure CE3 interface with internal clock 3Com E3 0 clock master 3 6 2 controller e3 Syntax controller e3 interface number View System view Parameter interface number Number of CE3 interface Description Usin...

Page 172: ...om display controller e3 0 E3 0 is up Description 3Com E3 0 Interface Applique type is CE3 75 OHM unbalanced Frame format G751 line code HDB3 clock slave national bit 1 loopback not set Alarm none ERROR 0 BPV 0 EXZ 0 FrmErr 0 FEBE E3 0 CE1 1 is up Frame format NO CRC4 clock master loopback not set E3 0 CE1 2 is up Frame format NO CRC4 clock slave loopback local E3 0 CE1 3 is up Frame format NO CRC...

Page 173: ... CE1 15 is up Frame format NO CRC4 clock slave loopback not set E3 0 CE1 16 is up Frame format NO CRC4 clock slave loopback not set 3 6 4 e1 channel set Syntax e1 line number channel set set number timeslot list range undo e1 line number channel set set number View CE3 interface view Parameter line number E1 channel number in the range of 1 to 16 set number Number of the channel set formed by bind...

Page 174: ... interface whose number is serial number line number set number and whose rate is N x 64 kbps The interface has the same logic feature as that of a synchronous serial interface therefore it can be regarded as a synchronous serial interface for further configuration For related commands see e1 unframed Example Bind a 128Kbps serial port on the first E1 channel on E3 0 interface 3Com E3 0 e1 1 chann...

Page 175: ...rmat Syntax e1 line number set frame format crc4 no crc4 undo e1 line number set frame format View CE3 interface view Parameter line number E1 channel number in the range of 1 to 16 crc4 Set the frame format of E1 channel to crc4 4 bit Cyclic Redundancy Check no crc4 Set the frame format of E1 channel to no crc4 Description Using the e1 set frame format command you can configure frame format for E...

Page 176: ...otely Description Using the e1 set loopback command you can enable E1 loopback or configure the loopback mode of an E1 sub interface on the E3 interface Using the undo e1 set loopback command you can disable E1 loopback By default E1 loopback is disabled If the link layer protocol of an E1 channel is PPP and setting loopback on it it is normal that the link layer protocol is reported as DOWN Examp...

Page 177: ...all the serial interfaces formed by channel binding on the E1 channel will be shut down and data transmitting and receiving activities will stop Executing the undo e1 shutdown command however will re enable the E1 channel and the serial interfaces formed by channel binding operations Example Disable the first E1 channel on the E3 interface 3Com E3 0 e1 1 shutdown 3 6 9 e1 unframed Syntax e1 line n...

Page 178: ...uration For related commands see e1 channel set Example Set the first E1 channel on the E3 interface to work in unframed mode 3Com E3 0 e1 1 unframed 3 6 10 loopback CE3 Interface Syntax loopback local payload remote undo loopback View CE3 interface view Parameter local Loops the CE3 interface back internally payload Places the CE3 interface in external payload loopback Data passes the framer and ...

Page 179: ...it Syntax national bit 0 1 undo national bit View CE3 interface view Parameter 0 National bit of CE3 interface is 0 1 National bit of CE3 interface is 1 Description Using the national bit command you can configure the national bit of CE3 interface Using the undo national bit command you can restore the default setting By default the national bit of CE3 interface is 1 The national bit of E3 interfa...

Page 180: ...E3 interface is CE3 mode The user can configure E1 channels only when the CE3 interface is working in CE3 mode When CE3 interface works in E3 mode the system will automatically create a serial interface whose number is serial number 0 0 and whose rate is 34 368 Mbps The interface has the same logic feature as that of a synchronous serial interface therefore it can be regarded as a synchronous seri...

Page 181: ...the cable command you can configure the length of CT3 cable Using the undo cable command you can restore the default setting By default the length of CT3 cable is 350 feet The cable command is used to set the distance between the router and the cable distribution frame Example Set the cable length of interface T3 0 to 50 feet 3Com T3 0 cable 50 3 7 2 clock CT3 Interface Syntax clock master slave u...

Page 182: ...is a transmission device the local end will use the line clock If the CT3 ports of the two routers are directly connected one router should use the internal clock whereas the other router uses the line clock Example Configure CT3 interface with internal clock 3Com T3 0 clock master 3 7 3 controller t3 Syntax controller t3 interface number View System view Parameter interface number Number of CT3 i...

Page 183: ...ou can configure CRC mode of the serial interface formed by CT3 Using the undo crc command you can restore the default configuration By default 16 bit CRC is used For the related commands see t1 channel set t1 unframed and using Example Use 32 bit CRC on the serial interface formed by interface T3 0 in non channelization mode 3Com Serial0 0 0 crc 32 3 7 5 display controller t3 Syntax display contr...

Page 184: ...lock slave loopback not set Alarm LOS LOF ERROR 0 BiPolarViolation 0 EXcessiveZero 0 FrameError 0 ParityBitError 0 C BitParityBitError 0 FarEndBlockError T3 0 1 is down Frame format ESF clock master loopback not set T3 0 2 is down Frame format ESF clock slave loopback local T3 0 3 is down Frame format ESF clock slave loopback remote T3 0 4 is down Frame format SF clock slave loopback not set T3 0 ...

Page 185: ...k not set T3 0 19 is down Frame format ESF clock slave loopback not set T3 0 20 is down Frame format ESF clock slave loopback not set T3 0 21 is down Frame format ESF clock slave loopback not set T3 0 22 is down Frame format ESF clock slave loopback not set T3 0 23 is down Frame format ESF clock slave loopback not set T3 0 24 is down Frame format ESF clock slave loopback not set T3 0 25 is down Fr...

Page 186: ... format of T3 0 as m23 3Com Serial0 0 0 frame format m23 3 7 7 loopback CT3 Interface Syntax loopback local payload remote undo loopback View CT3 interface view Parameter local Enable local loopback on CT3 payload Enable external payload loopback on CT3 which will process frame header overhead remote Enable external remote loopback on CT3 which will not process the frame Description Using the loop...

Page 187: ... slots for binding operation the user can use the argument number to specify a single time slot the argument number1 number2 to specify a time slot range or the argument number1 number2 number3 to specify multiple time slots speed Mode of the timeslot bundle When the parameter 56k is used the bundle mode is Nx56kbps When the parameter 64k is used the bundle mode is Nx64kbps if the speed is not spe...

Page 188: ...t clock master slave undo t1 line number set clock View CT3 interface view Parameter line number T1 channel number in the range of 1 to 28 master Uses the internal clock slave Uses the line clock Description Using the t1 set clock command you can configure the clock mode for the T1 channels on the CT3 interface Using the undo t1 set clock command you can restore the default setting By default the ...

Page 189: ...n Using the t1 set frame format command you can configure frame format for T1 channels Using the undo t1 set frame format command you can restore the default setting By default frame format ESF is used This command can be configured only when T1 channels work in framing mode using the undo t1 unframed command For related commands see t1 unframed Example Set the frame format of the first T1 channel...

Page 190: ...ck command you can disable T1 loopback By default E1 loopback is disabled If the link layer protocol of an E1 channel is PPP and setting loopback on it it is normal that the link layer protocol is reported as DOWN Loopback is usually used for some special detection It should not be enabled in normal working condition Example Enable the local loopback on the first T1 channel of T3 0 3Com T3 0 t1 1 ...

Page 191: ...n the range of 1 to 28 Description Using the e1 unframed command you can configure an T1 channel of CT3 interface to work in unframed mode T1 mode Using the undo e1 unframed command you can configure the T1 channel of CT3 interface to work in framing mode mode By default E1 channels work in framing mode After unframed is configured on an T1 channel it will not include the frame control information...

Page 192: ...ault operation mode of CT3 interface is CT3 mode The user can configure T1 channels only when the CT3 interface is working in CT3 mode When CT3 interface works in T3 mode the system will automatically create a serial interface whose number is serial number 0 0 and whose rate is 44 736Mbps The interface has the same logic feature as that of a synchronous serial interface therefore it can be regarde...

Page 193: ...g ICMP unreachable packets on Null interface Using the undo ip unreachables command you can disable the function of sending ICMP unreachable packets on Null interface By default Null interface does not send ICMP unreachable packets After enable the function of sending ICMP unreachable packets on Null interface the router will reply the ICMP unreachable packet when it receives packets sent to the N...

Page 194: ... send frags 17 1 1 15 ppp mp user 18 1 1 16 ppp pap local user 19 1 1 17 ppp timer negotiate 20 1 1 18 virtualbaudrate 20 Chapter 2 PPPoE Client Configuration Commands 22 2 1 PPPoE Client Configuration Commands 22 2 1 1 debugging pppoe client 22 2 1 2 display pppoe client session 22 2 1 3 pppoe client 24 2 1 4 reset pppoe client 25 Chapter 3 SLIP Configuration Commands 27 3 1 SLIP Configuration Co...

Page 195: ...x25 map 46 5 1 7 display x25 switch vc table pvc 47 5 1 8 display x25 switch table svc 47 5 1 9 display X25 template 48 5 1 10 display x25 vc 49 5 1 11 fr x25 template 50 5 1 12 lapb max frame 51 5 1 13 lapb modulo 52 5 1 14 lapb retry 52 5 1 15 lapb timer 53 5 1 16 lapb window size 54 5 1 17 link protocol lapb 54 5 1 18 link protocol x25 55 5 1 19 reset xot 56 5 1 20 x25 alias policy 57 5 1 21 x2...

Page 196: ... timer tx3 84 5 1 50 x25 vc per map 85 5 1 51 x25 vc range 86 5 1 52 x25 window size 87 5 1 53 x25 x121 address 88 5 1 54 x25 xot pvc 89 Chapter 6 Frame Relay Configuration Commands 91 6 1 Frame Relay Configuration Command 91 6 1 1 cbs 91 6 1 2 cir 92 6 1 3 cir allow 93 6 1 4 congestion threshold 93 6 1 5 cq 95 6 1 6 debugging fr 95 6 1 7 display fr compression 96 6 1 8 display fr dlci switch 97 6...

Page 197: ...lmi n393dte 118 6 1 36 fr lmi t392dce 119 6 1 37 fr lmi type 120 6 1 38 fr map 121 6 1 39 fr pvc pq 122 6 1 40 fr switch 123 6 1 41 fr switching 124 6 1 42 fr traffic policing 124 6 1 43 fr traffic shaping 125 6 1 44 fragment 126 6 1 45 fr lmi t391dte 127 6 1 46 fr class 127 6 1 47 interface mfr 128 6 1 48 link protocol fr 129 6 1 49 link protocol fr mfr 130 6 1 50 mfr bundle name 131 6 1 51 mfr l...

Page 198: ...3 bridge stp timer forward delay 151 8 1 14 bridge stp timer hello 152 8 1 15 bridge set dest mac 153 8 1 16 bridge set inbound lsap 154 8 1 17 bridge set inbound type 154 8 1 18 bridge set link set 155 8 1 19 bridge set outbound lsap 156 8 1 20 bridge set outbound type 156 8 1 21 bridge set source mac 157 8 1 22 bridge set stp disable 158 8 1 23 bridge set stp port pathcost 158 8 1 24 bridge set ...

Page 199: ...3Com Router Command Reference Guide V1 00 8 1 36 reset stp statistics 167 6 ...

Page 200: ...g lqr Enable the PPP link detect debugging negotiation Enable the PPP negotiation debugging packet Enable the PPP packet debugging all Enable all the debugging of PPP interface type number Enable the PPP negotiation debugging of a designated interface Description Using the debugging ppp command you can enable the PPP debugging Example None 1 1 2 diaplay ppp mp Syntax display ppp mp interface type ...

Page 201: ...ble 1 1 The information of MP bundle Field Description Virtual Template1 The interface of MP bundle User can configure this interface Member links 2 max 16 The number and max number of links that the MP bundle can have Virtual Template1 0 The internal interface of MP bundle This interface is automatically created by the system and it is transparent for users Bundle name is usera 2b0775d0 The User ...

Page 202: ...ands see display interfaces Example Configure PPP on interface Serial0 3Com Serial0 link protocol ppp 1 1 4 ppp authentication mode Syntax ppp authentication mode chap pap callin scheme default name list undo ppp authentication mode View Interface view Parameter chap using CHAP authentication pap using PAP authentication callin means that only when the remote user calls in can he be authenticated ...

Page 203: ...hod is used CHAP or PAP is just an authentication process The success of the authentication is decided by AAA which can authenticate based on the local authentication database or AAA server For related commands see local user ppp chap user ppp pap local user aaa authentication scheme ppp Example Authenticate the remote device by PAP on interface Serial0 3Com Serial0 ppp authentication mode pap 1 1...

Page 204: ...rface view Parameter username user name of CHAP This name is sent to remote device to perform CHAP authentication Description Using the ppp chap user command you can configure the name of user when the CHAP authentication is implemented Using the undo ppp chap user command you can delete the existing configuration By default the user name of the CHAP is null While configuring CHAP authentication y...

Page 205: ...ata frame size can be reduced through data compression without incurring damage to the data However using this configuration will make the load of router heavier Therefore you are recommended to disable this function in the case that the burden of the router is too heavy In addition only when Stac is configured at both ends of a point to point link will this PPP link support Stac compression Examp...

Page 206: ...ink the parameters of routers on two ends must be equal Generally it is not recommended to enable the link quality monitoring function on both ends of the link at the same time It is not recommended to enable the link quality monitoring on the dialup line If the link quality monitoring function is enabled on the dialup line the DDR module will disconnect the dialup line once the link is disabled T...

Page 207: ...red both physical and dialer interfaces should be configured with this command That is because whether to implement the MP negotiation is determined in the LCP negotiation and at this time the MP negotiation uses the information of physical interface For related commands see link protocol ppp ppp mp user interface virtual template Example Configure the interface Serial0 to operate in MP mode 3Com ...

Page 208: ...ication 1 1 11 ppp mp interface Syntax ppp mp interface virtual template interface number undo ppp mp interface View Interface view Parameter interface number The number of Virtual template interface Description Using the ppp mp interface command you can bind the interface to a specified Virtual Template Using the undo ppp mp interface command you can cancel the interface s binding to a virtual te...

Page 209: ...modified MP channel must be re established to make the configuration take effect To re establish the MP channel disable all the PPP links bound in MP channel with the shutdown command and then enable these links one by one with the undo shutdown command For related commands see ppp mp max receive frags ppp mp max send frags ppp mp user ppp mp Example Set the maximum number of bound links in MP cha...

Page 210: ... must be re established to make the configuration take effect To re establish the MP channel disable all the PPP links bound in MP channel with the shutdown command and then enable these links one by one with the undo shutdown command For related commands see ppp mp max bind ppp mp max send frags ppp mp user ppp mp Example Set the maximum number of fragments received by a MP channel to 5 3Com ppp ...

Page 211: ...nts sent by a MP channel to 5 3Com ppp mp max send frags 5 1 1 15 ppp mp user Syntax ppp mp user user name bind virtual template number undo ppp mp user user name View System view Parameter user name User name number Virtual template interface number Description Using the ppp mp user command you can configure MP binds based on the username Using the undo ppp mp user command you can cancel the rela...

Page 212: ...ord in cipher text Description Using the ppp pap local user command you can configure the username and password when the local router is authenticated by the remote router via the PAP Using the undo ppp pap local user command you can disable the configuration By default both the username and password sent are null When the local router is authenticated via the PAP by the remote router the username...

Page 213: ...ult value During PPP negotiation if no acknowledgement is received from the remote end within this time range PPP will retransmit the packets that have been previously transmitted For related commands see link protocol ppp Example Set the PPP negotiation timeout to 10 seconds 3Com Serial0 ppp negotiate timeout 10 1 1 18 virtualbaudrate Syntax virtualbaudrate baudrate undo virtualbaudrate View Inte...

Page 214: ...tures and baudrate there is no need to set the virtual baudrate for the interfaces If the features or operating mode of links bundled in MP channel are different then it is necessary to set the virtual baudrate for the interfaces The transmission efficiency of the asynchronous serial interface is lower than that of the synchronous serial interface with the identical baudrates When binding the asyn...

Page 215: ...of a specified interface If no interface is specified debugging of all interfaces will be enabled Table 2 1 Description and type of PPPoE client debugging Debugging type Type all Enables all PPPoE client debugging data Enables debugging of packets at PPPoE session phase error Enables error debugging of PPPoE client event Enables event debugging of PPPoE client packet Enables debugging of negotiati...

Page 216: ...mmary PPPoE Client Session SID RemMAC LocMAC VA Dialer Bundle number OIntf State 1 00049a23b050 00e0fc0254f3 1 1 1 Eth0 PPPUP 2 00049a23b050 00e0fc0254f3 2 2 2 Eth0 PPPUP The output information is explained in the following table Table 2 2 Description of the output of display pppoe client session summary Field Description SID Session ID which is the number of PPPoE session RemMAC Remote MAC addres...

Page 217: ...e timeout seconds queue length packets undo pppoe client dial bundle number number View Ethernet interface view Parameter dial bundle number number Number of the dialer bundle associated to a PPPoE session which is in the range of 1 to 255 The argument number can be used for uniquely identifying a PPPoE session Alternatively it can be taken as the number of the PPPoE session no hostuniq The Host U...

Page 218: ... PPPoE client could not be added into the dialer bundle If a PPPoE session is permanent the router will originate a PPPoE call for establishing PPPoE session immediately This PPPoE connection will be permanently in place unless it is deleted by executing the undo pppoe client command If a PPPoE session is packet triggered the router will originate a PPPoE call for setting up PPPoE session only whe...

Page 219: ...pppoe client command the router will automatically re establish the PPPoE session 16 seconds later If a packet triggered PPPoE session has been terminated by executing the same command however the router will re establish the session only when there is data waiting for transmission For related commands see pppoe client Example Reset all the PPPoE sessions and re establishe the sessions later 3Com ...

Page 220: ...mple None 3 1 2 link protocol slip Syntax link protocol slip View Interface view Parameter None Description Using the link protocol slip command you can configure the link layer protocol of the interface to SLIP By default the link layer protocol of the interface is PPP SLIP Serial Line IP a simpler link layer protocol can be used over a point to point link It is mainly used to run TCP IP over the...

Page 221: ... it involves no address concept no negotiation process no packet type discrimination so only one network protocol can be supported at one time and no error correction function The link layer protocol of the interface shall be the same with that of the peer interface Example Configure the link layer protocol of interface Serial0 to SLIP 3Com Serial0 link protocol slip 28 ...

Page 222: ...all To display all debugging information interface type number Interface type and number This parameter is used for debugging ISDN signaling on a specified ISDN interface If no interface is specified by this parameter ISDN signaling debugging on all the ISDN interfaces will be enabled Description Using the debugging isdn command you can enable ISDN signaling debugging This command is used to enabl...

Page 223: ...er bundle before configuring this command For related commands see isdn voice2data Example Set the ISDN interface BRI 0 to initiate calls using voice calls 3Com Bri0 dialer data2voice 4 1 3 display isdn active channel Syntax display isdn active channel interface type number View All views Parameter interface type number Interface type and number If no interface is specified all the current call in...

Page 224: ... you can view the current status of the ISDN interface The information output by this command includes the states of the layers of the ISDN protocol on the interface including Q 921 Q 931 QSIG and CC Using this command you can diagnose faults For related commands see display interfaces Example Display the current status of the ISDN interface 3Com display isdn call info Global ISDN protocol type qs...

Page 225: ...f command display isdn status Field Meaning ISDN protocol type ISDN layer 3 protocol type CCIndex The index of call State The state of call Channel Channel map Calling_Num The calling number Calling_Sub The calling subnumber Called_Num The called number Called_Sub The called subnumber Channel Map State The occupied state of B channel Note If an interface is shut down all the statistic data will be...

Page 226: ...e Display the value of the isdn timer 3Com display isdn q931 timer ISDN Layer 2 values K 1 Outstanding I frames on BRI port N200 3 Max number of retransmits T200 1 Seconds T202 2 Seconds T203 10 Seconds ISDN Layer 3 Values T301 240 Seconds T302 15 Seconds T303 4 Seconds T304 15 Seconds T305 30 Seconds T308 4 Seconds T309 90 Seconds T310 10 Seconds T313 4 Seconds T314 4 Seconds T316 120 Seconds T31...

Page 227: ...ling timers on a particular ISDN interface If no interface is specified by this parameter the values of timers on all the interfaces will be displayed Description Using the display isdn qsig timer command you can view the value of all of the ISDN QSIG signaling timers This command is mainly intended for technical support engineers in their fault diagnosis and troubleshooting For related commands s...

Page 228: ...tring of 1 to 20 numerical or English alphabetic characters Description Using the isdn check called number command you can configure the router to check the called numbers and sub addresses in the received calls Using the undo isdn check called number command you can cancel the existing setting By default the router does not check the called number and the sub address This command is used to set c...

Page 229: ...tworks cannot do that If the router is interconnected with such a device for sending a call to it you should configure the length of call reference to be used in the call for the router If calls exist on the ISDN PRI interface it will be useless to configure this command The configuration of this command can take effect only when no calls are on the interface Alternatively you can manually shutdow...

Page 230: ... complete sending mode the receiving mode on the interface can be set to either complete receiving or overlap receiving This command cannot take effect unless the ISDN PRI interface adopts QSIG signaling For related commands see isdn sending complete isdn protocol type Example Set the interface Serial2 15 to receive called numbers in complete receiving mode 3Com Serial2 15 undo isdn overlap receiv...

Page 231: ...l2 15 3Com Serial2 15 isdn protocol type qsig 4 1 11 isdn qsig timer Syntax isdn qsig timer timer name time interval undo isdn qsig timer timer name all View Interface view Parameter timer name Name of QSIG timer Refer to the following table for description in detail time interval Interval of timer Refer to the following table for description in detail all To be used to restore the default interva...

Page 232: ...N message Send the CALL PROCEEDING ALERTING CONNECT messages T303 Send the SETUP message The message CALL PROCEEDING CONNECT ALERTING SETUP ACK or RELEASE COMPLETE is received T304 The SETUP ACK message is received or send the INFORMATION message The message CALL PROCEEDING ALERTING or CONNECT is received T305 Send the DISCONNECT message The message RELEASE or DISCONNECT is received T308 Send the ...

Page 233: ...ete command you can enable a router to carry the Sending Complete Information Element in the SETUP message sent to PBX Using the undo isdn sending complete command you can disable the router to carry the Sending Complete Information Element in the SETUP message sent to PBX By default the Sending Complete Information Element is carried When a router originates a call to PBX information of the calle...

Page 234: ...d calls as voice calls Using the undo isdn voice2data command you can configure the ISDN interface to process the received calls as data calls By default ISDN interfaces processes the received calls as data calls This command can be configured on ISDN physical interfaces but not on dialer interfaces Regardless of how an interface processes a received call the packets transmitted after establishing...

Page 235: ...ame Relay ANSI T1 617 Annex G defines how to use Frame Relay VCs for transmitting X 25 packets A Frame Relay VC configured to be Annex G is similar to an X 25 interface on which the packets of both X 25 PVCs and X 25 SVCs can be carried Besides that it can work as an X 25 switched interface The user can set the LAPB and X 25 parameters for the VC through associating an X 25 template with it X 25 p...

Page 236: ...channel command you can add a serial interface Annex G DLCI or XOT channel into current hunt group Using the undo channel command you can cancel the specified interface Annex G DLCI or XOT channel from current hunt group One interface can belong to 6 hunt groups at most at the same time For related commands see x25 huntgroup Example Add the serial 0 into the hunt group hg1 3Com X25 huntgroup hg1 c...

Page 237: ... policy View All views Parameter None Description Using the display x25 alias policy command you can view all the aliases set for all the X 25 interfaces For related commands see x25 alias policy Example Display the X 25 alias table 3Com display x25 alias policy Alias for Serial0 Alias for Serial1 Alias 1 20112405 strict Alias 2 20112450 left Alias 3 20112450 right The above information indicates ...

Page 238: ... hg1 round robin Serial0 2 Last used 51 20 Serial1 1 Next 21 15 1 1 1 1 1 Normal 24 3 Table 5 1 Meaning of each field in the display x25 hunt group info command Field Meaning HG_ID Name of the hunt group HG_Type Selection policy for calling channel of hunt group including round robin and vc number HG_Target Interfaces or XOT tunnels included in the hunt group HG_uses Number of calls made on the in...

Page 239: ...ed to display all the address maps For related commands see x25 map x25 pvc x25 switch pvc x25 xot pvc x25 fr pvc Example Display X 25 address maps 3Com display x25 map Serial0 X 121 20112450 ip 202 38 165 19 SVC_MAP No VCs attched Facility ACCEPT_REVERSE BROADCAST PACKET_SIZE I 512 O 512 Serial1 X 121 20112451 ip 202 38 166 20 PVC_MAP 1 VCs 3 Facility BROADCAST WINDOW_SIZE I 5 O 5 Table 5 2 The i...

Page 240: ...u can view the X 25 PVC routing table For related commands see x25 switch pvc Example Display the X 25 PVC routing table 3Com display x25 switch vc table pvc 1 In Serial0 vc20 Out Serial1 vc30 The above information indicates that there are one record in the current switched virtual circuit in from virtual circuit 20 on Serial0 and out from virtual circuit 30 on interface Serial1 5 1 8 display x25 ...

Page 241: ...ds shown above Table 5 3 Meaning of fields of the display x25 switch table svc command Field name Meaning Number The sequence number of the route in this routing table X 121 The character string matching the destination X 121 address of this route Sub source The substitute source X 121 address When it is null no substitution will be performed Sub dest The substitute destination X 121 address When ...

Page 242: ...isplay x25 vc Syntax display x25 vc lci View All views Parameter lci logic channel number Description Using the display x25 vc command you can view information about the X 25 virtual circuit If no logic channel number is specified all the virtual circuits will be displayed SVC switched virtual circuit is set up temporarily by X 25 through call connection when data transmission is required PVC is c...

Page 243: ...21 address of the remote end connected to the virtual circuit Begin The time for establishing the virtual circuit Last input time The last time for receiving the packet Last output time The last time for sending the packet Window size The size of X 25 windows Packet Size The size of X 25 packet PS The sending number of local end PR The receiving number of local end ACK The acknowledge number Remot...

Page 244: ...sm of X 25 can guarantee reliable transmission This command is used to configure the X 25 attributes For related commands see x25 template Example Specify DLCI 100 to use X 25 template vofr 3Com fr dlci 100 fr x25 template vofr 5 1 12 lapb max frame Syntax lapb max frame n1 value undo lapb max frame View Interface view Parameter n1 value the N1 parameter ranging 1056 bits to 12804 bits By default ...

Page 245: ... modulo 8 or extended modulo 128 protocol mode Using the undo lapb modulo command you can restore to the default value By default modulo 8 protocol mode is used There are two LAPB frame protocol mode modulo 8 and modulo 128 Each data frame I frame is numbered in sequence ranging 0 to one less than the window modulus And serial numbers will cycle within the range of modulo size Modulo 8 is a basic ...

Page 246: ... lapb timer t1 t1 value t2 t1 value t3 t3 value undo lapb timer t1 t2 t3 View Interface view Parameter t1 value the value of T1 ranging 1ms to 64000 ms By default the t1 value is 2000 ms t2 value the value of T2 ranging 1ms to 64000 ms By default the t1 value is 1000 ms t3 value the value of T3 ranging 1ms to 36000 ms By default the t1 value is 0 ms Description Using the lapb timer command you can...

Page 247: ... k value maximum permissible number of outstanding frames to be determined by the DTE or DCE If the modulo size is 8 then the window parameter K ranges 1 through 7 if the modulo size is 128 the window parameter K ranges 1 through 127 Description Using the lapb window size command you can configure the LAPB window parameter K Using the undo lapb window size command you can restore the default value...

Page 248: ...serial interface Generally LAPB can be used when two routers are connected directly with a dedicated line Now one end works in DTE mode and the other in DCE mode For related commands see display interfaces Example Set the operating mode as DCE and specifies LAPB on Serial0 3Com Serial0 link protocol lapb dce 5 1 18 link protocol x25 Syntax link protocol x25 dte dce ietf nonstandard View Interface ...

Page 249: ... the router should work as DCE In a normal application without any special requirement please select datagram encapsulation in the IETF format For related commands see display interfaces Example Specify the use of X 25 protocol on the specified Serial0 which works in DTE IETF mode 3Com Serial0 link protocol x25 dte ietf 5 1 19 reset xot Syntax reset xot remote remote ip address remote port local l...

Page 250: ...u can configure an X 12 alias address Using the undo x25 alias policy command you can cancel an X 12 alias address By default no X 25 alias is configured When an X 25 call is forwarded between networks different X 25 networks may perform some operations on the destination addresses that is the called DTE address carried by this call packet for example routinely adding or deleting the prefix and su...

Page 251: ...er group CUG number for the X 25 interface This facility can make DTE a member of one or more Closed User Groups CUG A CUG allows its DTE members to communicate with each other but not the DTEs beyond the CUG packet size in size out size Specifies the maximum size of transmit packet The value can be 16 32 64 128 256 512 and 1024 window size in size out size Size of input window and output window w...

Page 252: ...y value For related commands see x25 map Example Specify the traffic flow parameters negotiation with the remote end for all the calls from the X 25 interface serial0 3Com Serial0 x25 call facility packet size 512 512 3Com Serial0 x25 call facility window size 5 5 5 1 22 x25 check response address Syntax x25 check response address undo x25 check response address View Interface view Parameter None ...

Page 253: ...Interface view Parameter protocol type protocol type which is either IP or IPX Description Using the x25 default protocol command you can configure the default upper layer protocol carried by the X 25 protocol for the interface Using the undo x25 default protocol command you can cancel the protocol specified In the process of establishing an X 25 SVC the called device will check the Call User Data...

Page 254: ...c command you can cancel the PVC route By default the system does not define any PVC route The user can configure X 25 PVC switching to switch packets from one X 25 interface to an Annex G DLCI X 25 over FR from an Annex G DLCI to an X 25 interface or between two Annex G DLCIs With an Annex G DLCI two X 25 networks can be connected over a Frame Relay network Also It can be used to connect two Fram...

Page 255: ...el selection policies Round robin mode and vc number mode but one hunt group can only apply one channel selection policy For each call request the round robin mode applies cyclic selection policy to select the next interface or XOT tunnel in the hunt group While the vc number mode selects the interface with the most idle logic channels in the hunt group for each call request A hunt group may have ...

Page 256: ...oup But in some occasions the X 25 call request does not have to carry the called calling DTE address in a specific network environment or as is required by the application This command enables you to specify whether the call request sent by X 25 in the 3Com series routers carries the called DTE address For related commands see x25 response called address x25 response calling address x25 ignore ca...

Page 257: ... series routers carries the calling DTE address For related commands see x25 response called address x25 response calling address x25 suppress called address Example No calling DTE address in outgoing x25 calls originated from interface Serial0 3Com Serial0 x25 ignore calling address 5 1 28 x25 map Syntax x25 map ip ipx protocol address x121 address x 121 address option undo x25 map ip ipx protoco...

Page 258: ...mum period of idle time for the VC associate with the address map 0 means that the idle time is infinite logic channel logical channel number Logic channel number of the address map in the standby center no callin Deny call to the address map nocallout Deny call originating from the address map vc per map count Maximum number of VCs for one map packet size in size out size When the address map is ...

Page 259: ...ize 4 4 broadcast 3Com Serial0 x25 map ipx 20 30 4 8 x121 address 25112450 no callin logic channel 6 5 1 29 x25 modulo Syntax x25 modulo modulus undo x25 modulo View Interface view Parameter modulus modulo size whose value is 8 or 128 By default modulo 8 is used Description Using the x25 modulo command you can configure the window modulus of an X 25 interface Using the undo x25 modulo command you ...

Page 260: ...figure the maximum incoming and outgoing packet size for an X 25 interface Using the undo x25 packet size command you can restore to the default value Usually the X 25 network has a maximum transmission packet size and the size of a packet sent by the DTE shall not exceed this length otherwise it will trigger the resetting of the virtual circuit So the DTEs at both the send and receive ends are re...

Page 261: ...ption Using the x25 pvc command you can establish an datagram encapsulation PVC Using the undo x25 pvc command you can cancel the datagram encapsulation PVC By default no datagram encapsulation PVC is established While creating a PVC if you do not set the corresponding attributes its traffic control parameter is the same as that on the X 25 interface the traffic control parameter at an X 25 interf...

Page 262: ...Routing Information Protocol encapsulation type Direct encapsulation type as if nonstandard ietf multi protocol snap packet size in size out size The maximum packet size of this PVC in byte which should be one of the values as follows 16 32 64 128 256 512 1024 window size in size out size Size of input window and output window for this PVC which range from 1 to the modulo size minus 1 on the X 25 ...

Page 263: ... 500 When the data traffic is too heavy you can use this command to extend the receive queue and send queue of the X 25 VC to avoid data loss which may affect transmission performance It should be noted here that modifying this parameter would not affect the hold queue limits of the existing VC For related commands see x25 packet size Example Set the X 25 hold queue to hold 75 datagrams 3Com Seria...

Page 264: ...mands see x25 window size x25 window size Example Specify that each VC on the X 25 channel interface serial0 acknowledges the receipt of each correct packet 3Com Serial0 x25 receive threshold 1 5 1 34 x25 response called address Syntax x25 response called address undo x25 response called address View Interface view Parameter None Description Using the x25 response called address command you can co...

Page 265: ...ield in outgoing calls while X 25 sends the call input packet Using the undo x25 response calling address command you can reset this command to its default value By default this function is disabled According to X 25 the input packet of a call may or may not carry an address code group depending on the specific network requirements This command enables you to easily specify whether the input packe...

Page 266: ...This function does not affect any call without the reverse charge call function On an X 25 interface you can enable the function of reverse charge call Then any such calls to this X 25 interface will be accepted If the option of accept reverse in the x25 map command enables the function for a mapping only the calls with related mapping to this interface could be accepted while the other calls i e ...

Page 267: ... list1 11 23 45 3Com x25 roa list list2 345 3Com interface serial 0 3Com Serial0 x25 call facility roa name list1 3Com channel interface serial 1 3Com Serial1 x25 call facility roa name list2 5 1 38 x25 switch svc hunt group Syntax x25 switch svc x 121 address sub dest destination address sub source source address hunt group hunt group name undo x25 switch svc x 121 address sub dest destination ad...

Page 268: ...hen X 25 is used Table 5 8 X 121 pattern matching rule Wildcard Matching rule Example Matched character string The asterisk wildcard matches zero or more occurrences of the preceding character fo fo foo fooo The plus sign wildcard matches zero or more occurrences of the preceding character fo fo foo fooo The character is used to identify the start of the character string hell hell hello hellaaa Th...

Page 269: ...yntax x25 switch svc x 121 address sub dest destination address sub source source address interface serial interface number dlci dlci number undo x25 switch svc x 121 address sub dest destination address sub source source address interface serial interface number dlci dlci number View System view Parameter x 121 address the destination X 121 address This parameter is a pattern matching character s...

Page 270: ...witching command For related commands see x25 switch svc xot display x25 switch vc table svc x25 switching Example Switch the VC Virtual Circuit destined to the address 1 to the interface Serial 0 and the VC destined to the address 2 to Serial 1 3Com interface serial 0 3Com Serial0 link protocol x25 dce ietf 3Com interface serial 1 3Com Serial1 link protocol x25 dce ietf 3Com x25 switch svc 1 chan...

Page 271: ...ch svc xot command you can cancel the specified X 25 switching route By default the X 25 switching route is not configured After the user configures the XOT switch command of X 25 SVC he can implement the connection between local and remote X 25 nets spanning the IP net After configuring keepalive it can support the link inspection Table 5 10 Optional XOT tunnel parameters Option Meaning timer sec...

Page 272: ...and you can cancel a switched PVC route for a given interface By default no switched PVC is configured By configuring X 25 switching you can use the 3Com series routers as a simple X 25 switch When the PVC switching is configured the input and output interfaces must be configured with X 25 protocol and the PVCs specified at both interfaces already exists and is valid Note that no PVC switching can...

Page 273: ... the packet layer switching function is enabled the router can serve as a small packet switch For related commands see x25 pvc x25 switch pvc x25 xot pvc x25 fr pvc x25 switch svc display x25 vc display x25 switch vc table svc Example Enable the X 25 switching function 3Com x25 switching 5 1 43 x25 template Syntax x25 template name undo x25 template name View System view Parameter name Name of X 2...

Page 274: ...d you can restore the default value for the timer Sending call requests to a wrong destination which does not exist or is faulty will deteriorate the working efficiency of the router The use of this function can avoid this problem to some degree If this parameter is set to 0 this is equal to disabling the function In addition this function is effective to the locally originated calls only That is ...

Page 275: ...arameter is set to 0 this SVC will be reserved no matter how long it stays idle The setting of this parameter will affect all the SVCs on this X 25 interface Also you can configure the maximum idle time for a SVC attached to this address map through the option in the command of x25 map Note For a PVC or SVC established for the X 25 switching this command does not take effect For related commands s...

Page 276: ... delay on the X 25 interface Serial0 to 120 seconds 3Com Serial0 x25 timer tx0 120 5 1 47 x25 timer tx1 Syntax x25 timer tx1 seconds undo x25 timer tx1 View Interface view Parameter seconds delay value of Call Request Indication Retransmission timer in second Description Using the x25 timer tx1 command you can configure the delay value of Call Request Indication Retransmission timer on DTE DCE dev...

Page 277: ...he default value Default value for the reset request retransmission timer on a DTE is 180 seconds default value for the reset request retransmission timer on a DCE is 60 seconds According to X 25 a timer should be started when a DTE sends a reset request or a DCE sends a reset indication If no remote acknowledgement is received after this timer is timeout the sending end will take some measures to...

Page 278: ...ed after this timer is timeout the sending end will take some measures to guarantee the normal proceeding of the local procedure This parameter specifies the delay value of this timer before the timeout For related commands see x25 timer tx0 x25 timer tx1 x25 timer tx2 Example Set the delay value of clear indication retransmission timer on the X 25 channel interface serial0 to 100 seconds 3Com Ser...

Page 279: ...5 If this htc the highest two way virtual circuit number is 0 you must set another X 25 parameter ltc the lowest two way virtual circuit number to 0 indicating that the two way virtual circuit is disabled By default the circuit number is 1024 loc hoc means both lowest and highest of the outgoing only virtual circuit number ranging 0 to 4095 If this hoc the highest outgoing only virtual circuit num...

Page 280: ...nges from 1 to 127 The default value is 2 Description Using the x25 window size command you can configure the incoming and outgoing window size on the X 25 interface Using the undo x25 window size command you can restore to the default value Default incoming window size on the X 25 interface is 2 packets in packets specifies the maximum count of correct packets received before X 25 sends correct a...

Page 281: ...address If a router is connected to an X 25 public data network then the ISP shall assign a legal X 121 address for it In a setting where two routers are connected back to back this legal X 121 address can be specified at your discretion If you want the router to work in a switched mode you do not have to configure the X 121 address Note For the format of the X 121 address and the dynamic conversi...

Page 282: ...face name The name of the interface initiating XOT connection at this end Description Using the x25 pvc command you can add a PVC route of XOT Using the undo x25 pvc command you can cancel the PVC route of the appointed XOT By default no PVC route is added After the user configures the XOT switch command of X 25 PVC he can implement the connection between local and remote X 25 net spanning the IP ...

Page 283: ...ommand Reference Guide V1 00 3Com Ethernet0 ip address 10 1 1 2 255 255 255 0 3Com Ethernet0 interface serial 1 3Com Serial1 link protocol x25 dce ietf 3Com Serial1 x25 xot pvc 2 10 1 1 1 interface serial 0 pvc 1 90 ...

Page 284: ... the value is in the range from 0 to 16000000 If the outgoing committed burst size is set the value is in the range from 300 to 16000000 By default the burst size is 56000 bits Description Using the cbs command you can configure the committed burst size Bc of the Frame Relay PVC Using the undo cbs command you can restore the default Bc of the Frame Relay PVC Committed burst size is the packet traf...

Page 285: ...PVC can provide It ensures that the users can still transmit data at this rate in the case of network congestion When the congestion occurs to the network DCE will send the packet with the BECN flag bit being 1 to DTE Upon receiving this packet DTE will eventually lower the transmit rate of the PVC from CIR ALLOW to minimum CIR If no packet whose BECN flag bit is 1 is received any longer within 2 ...

Page 286: ...fault rate limit is 56000 bps Description Using the cir allow command you can configure the committed information rate CIR for a Frame Relay PVC Using the undo cir allow command you can restore the default CIR for a Frame Relay PVC CIR is the transmit rate that the Frame Relay network can support in normal circumstances If there is no congestion on the network it can guarantee the data can be tran...

Page 287: ...ets on the PVC Once congestion occurs the router will adopt the following two measures Discard all the Frame Relay packets that are marked with the DE and are transmitted on the PVC Process the BECN and FECN flag bits in the Frame Relay packets transmitted on the PVC As for the forward packets to be forwarded the router will set the FECN flag bit in the Frame Relay packet headers to 1 As for the b...

Page 288: ...efault the queue type of the PVC is FIFO After the function of traffic shaping is enabled on the Frame Relay interface each PVC on this interface will own its independent PVC queue The queue type of Frame Relay PVC can be FIFO PQ CQ or WFQ For related commands see wfq pq fr pvc pq Example Apply Group 10 of the custom list to class one 3Com fr class one cq cql 10 6 1 6 debugging fr Syntax debugging...

Page 289: ...ing DLCI number must be specified lmi Enable the LMI protocol information debugging mfr control Enable the Multilink Frame Relay information debugging control display bundle link s Control message and state packet hex detail all Enable the Frame Relay data packet information debugging hex display packet by HEX detail display packet detail all display packet detail and display packet by HEX pipq En...

Page 290: ...elay compression Uncompressed Octets out in 766 0 Compressed Octets out in 329 0 1 min avg ratio xmt rcv 0 42 0 00 5 min avg ratio xmt rcv 0 42 0 00 6 1 8 display fr dlci switch Syntax display fr dlci switch View All views Parameter None Description Using the display fr dlci switch command you can view the status of all Frame Relay routes Users can use the command to check if Frame Relay routes ar...

Page 291: ...lci number DLCI number Description Using the display fr fragment info command you can view information of Frame Relay fragment For related commands see fragment Example 3Com display fr fragment info interface dlci type size d v in out drop Serial2 100 FRF12 ETE 100 0 0 12 0 3Com display fr fragment info serial 0 160 fragment type FRF11 fragment size data level 60 voice level 40 in fragmented pkts ...

Page 292: ...formation of this command the user can diagnose if the inverse address resolution protocol operates normally For related commands see fr inarp Example Display the packet statistics of the Frame Relay Inverse Address Resolution Protocol 3Com display fr inarp info Frame relay inarp info FR ARP request sent 771 FR ARP reply sent 0 FR ARP request recvd 0 FR ARP reply recvd 771 The above information in...

Page 293: ...o Syntax display fr lmi info interface type number View All views Parameter interface type number Interface type and number Description Using the display fr lmi info command you can view the statistics of Local Management Interface LMI A LMI packet is used to maintain the active Frame Relay link including status enquiry packets and status packets The displayed information can help users diagnose t...

Page 294: ...able The information displayed by this command is used to view whether the static address mapping is correctly configured and whether the dynamic address mapping works normally For related commands see fr map fr inarp Example Display the Frame Relay address mapping table 3Com display fr map info Interface Serial0 0 protocol status is up ip address 66 66 1 2 dlci 16 0x10 map type static broadcast n...

Page 295: ...pkts 0 Table 6 2 Information in Frame Relay PVC Field Meaning DLCI data link connection identifier PVC STATUS DLCI status in FECN pkts Number of Forward explicit congestion notifications received in BECN pkts Number of Backward explicit congestion notifications received input pkts Number of frames received in bytes Number of octets received output pkts Number of frames sent out bytes Number of oct...

Page 296: ...ormation indicates that this interface has received 7001 incoming packets and 96848 bytes and transmitted out 7001 outgoing packets and 91013 bytes 3 errors are received and no errors have been made while transmitting packets 6 1 16 display fr switch table Syntax display fr switch table all name switch name View All views Parameter None Description Using the display fr switch table command you can...

Page 297: ...3Com display mfr Bundle interface MFR0 Bundle State up Bundle Class A Bundle name MFR0 Bundle links Serial0 PHY state up link state up Link name Serial0 Display the detailed state information of MFR bundle link interface Serial 0 3Com display mfr interface serial0 detail Serial2 PHY state up link state add sent Link name Serial2 Bundle Link statistics Add_link sent packets 40 rcv d packets 0 Add_l...

Page 298: ...burst size in the range from 0 to 16000000 bits By default excess burst size is 0 bit Description Using the ebs command you can configure the excess burst size Be of the Frame Relay PVC Using the undo ebs command you can restore the default Be of the Frame Relay PVC Excess burst size is the difference between the maximum packet traffic allowed to send by a Frame Relay PVC within the first interval...

Page 299: ...ependent PVC queue The queue type of a Frame Relay PVC can be FIFO PQ CQ or WFQ This command is effective only when the PVC adopts the FIFO queueing If DLCI adopts the queueing mechanisms other than the FIFO this command will not be effective For related commands see fr class Example Set the FIFO queueing length in class to 80 3Com fr class one fifo queue length 80 6 1 20 fr class Syntax fr class ...

Page 300: ... on a specified point to point interface Using the undo fr compression frf9 command you can disable Frame Relay payload compression By default Frame Relay payload compression is disabled This command can take effect only when the Frame Relay interfaces are point to point interfaces Frame Relay payload compression can take effect only if the type of Frame Relay datagram format for an interface is I...

Page 301: ...sion can either be specified on an interface or be specified when configuring the static mapping Example Configure interface Serial 0 to use the passive TCP IP header compression 3Com Serial0 fr compression vj passive 6 1 23 fr congestion threshold Syntax fr congestion threshold de ecn queue percentage undo fr congestion threshold de ecn View Interface view Parameter de Discard the Frame Relay pac...

Page 302: ... packets transmitted on this interface As for the forward packets to be forwarded the router will set the FECN flag bit in the Frame Relay packet headers to 1 As for the backward packets on the same PVC the router will set the BECN flag bit in the Frame Relay packet headers to 1 If no backward packets are to be forwarded after a certain period the router will automatically transmit the Q922A Test ...

Page 303: ...ed commands see fr del inbound interface fr del protocol Example Apply DE rule list 3 to DLCI100 on the interface Serial 0 3Com Serial0 fr de del 3 100 6 1 25 fr del inbound interface Syntax fr del list number inbound interface type number undo fr del list number inbound interface type number View System view Parameter list number DE rule list number type number Interface type and number Descripti...

Page 304: ...upported characteristic Rule matching parameters that are valid only when the protocol is IP Refer to the following table for details Description Using the fr del protocol command you can configure a protocol based DE rule list Using the undo fr del protocol command you can cancel the specified DE rule from the DE rule list By default no DE rule list is created After this command is configured the...

Page 305: ... number of an IP packet is ports the DE flag bit in the Frame Relay packet header will be set to 1 For related commands see fr de del fr del inbound interface Example Add a rule to DE rule list 1 and sets the DE flag bit of all the IP packets including the Frame Relay Encapsulation to 1 3Com fr del 1 protocol ip 6 1 27 fr dlci Syntax fr dlci dlci number undo fr dlci dlci number View Interface view...

Page 306: ...CI number on the interface interface type number interface number of packet forwarded by a router out dlci DLCI on which the packet is forwarded on the specified interface Description Using the fr dlci switch command you can configure the static route for Frame Relay PVC switching Using the undo fr dlci switch command you can cancel a static route Before the static route of Frame Relay PVC is conf...

Page 307: ... Using the undo fr inarp command you can disable the use of protocol By default the Inverse Address Resolution Protocol is enabled A DLCI to network address mapping must exist for frame relay to transmit data to a destination You can configure this mapping statically or by using frame relay inarp For related commands see fr map reset fr inarp info display fr map info Example Enable inverse address...

Page 308: ... if the fr switching command is enabled If a certain Frame Relay interface is required to support the PVC switch it is then necessary to set the operation mode of this interface to Network to Network Interface NNI and the corresponding interface at the remote router should be set to NNI Note that to configure DCE or NNI you first need to enable the fr switching command in System view For related c...

Page 309: ... DCE ranging 1 to 10 The default value is 3 Description Using the fr lmi n392dce command you can configure LMI error threshold on a DCE Using the undo fr lmi n392dce command you can restore the default value The DCE requires the DTE to send a Status Enquiry packet at regular interval decided by T392 If the DCE does not receive the Status Enquiry packet it will record the error by adding 1 to the e...

Page 310: ...ceived in a specified time the DTE equipment will record the error and add 1 to the number of errors If the number of errors exceeds the threshold the DTE equipment will regard the physical path and all the virtual circuits as unusable Parameters N392 and N393 together define the error threshold In which N393 represents the total number of the observed events whereas N392 represents the threshold ...

Page 311: ...ror count If the errors reach the threshold the DCE would declare that the physical channels and all the DLCIs to be down N392 and N393 together define the error threshold N393 defines the event count observed and N392 defines the error threshold in the event count observed That is if error count that occurred to the DCE is up to N392 in N393 time intervals DCE will consider the errors have exceed...

Page 312: ...ror count If the errors reach the threshold the DTE will declare that the physical channels and all the DLCIs to be down N392 and N393 together define the error threshold N393 indicates the event count observed and N392 indicates the error threshold in the event count observed That is if N392 errors occur to N393 Status Enquiry packets in the DTE the DTE would consider that the error count reached...

Page 313: ...0 as DCE mode and set T392 to 16s 3Com Serial0 fr interface type dce 3Com Serial0 fr lmi t392dce 16 6 1 37 fr lmi type Syntax fr lmi type ansi nonstandard q933a bi direction undo fr lmi type View Interface view Parameter ansi ANSI T1 617 Annex D nonstandard Non standard q933a ITU T Q 933 Annex A bi direction Responds to the state query request from the network side if the interface works as Frame ...

Page 314: ...interfaces Example Set the Frame Relay LIMI type of Serial0 to Q 933 Annex A 3Com Serial0 fr lmi type q933a 6 1 38 fr map Syntax fr map ip ipx protocol address dlci dlci broadcast nonstandard ietf logic channel channel_number nocompress compression vj compression frf9 undo fr map ip ipx protocol address dlci dlci View Interface view Parameter ip ipx Frame Relay supported network protocol protocol ...

Page 315: ...LCI will be automatically changed to IETF after the parameter compression frf9 is configured The mapping table which is generated by Inverse ARP has broadcast attribute automatic For related commands see display fr map info fr inarp fr compression Example Map the remote IP address of the router 202 38 163 252 to local interface Serial0 There is a DLCI 50 on local Serial0 connected to this router C...

Page 316: ...queue type can only be either FIFO or PIPQ For related commands see pvc pq Example Set the type of a queue on the interface Serial 0 to PIPQ 3Com Serial0 fr pvc pq 6 1 40 fr switch Syntax fr switch name interface type number dlci dlci interface type number dlci dlci undo fr switch name View System view Parameter name Name of the PVC interface type number dlci dlci Numbers of DLCIs at both ends of ...

Page 317: ...fr switching command you can enable Frame Relay PVC switching Using the undo fr switching command you can disable switching You must use the fr switching command to configure By default PVC switching is disabled 3Com series routers can be used as Frame Relay switch and perform Frame Relay PVC switching After enabling PVC switching on a Frame Relay DCE or an NNI interface it is necessary to configu...

Page 318: ...affic policing 6 1 43 fr traffic shaping Syntax fr traffic shaping undo fr traffic shaping View Interface view Parameter None Description Using the fr traffic shaping command you can enable the Frame Relay traffic shaping Using the undo fr traffic shaping command you can disable the Frame Relay traffic shaping By default the Frame Relay traffic shaping is disabled The function of Frame Relay traff...

Page 319: ...ransmission demands however fragmenting the large packets into the small packets of the same size will waste the bandwidth resources To efficiently use the bandwidth the fragment size should be dynamically adjusted In the case of concurrent transmission of voice and data but no voice is waiting for transmission or in the case of transmission of only voice use the fragment size configured by the ar...

Page 320: ...91dte Syntax fr lmi t391dte t391 value undo fr lmi t391dte View Interface view Parameter t391dte value value of the polling timer ranging 5s to 30s The default value is 15 Description Using the fr lmi t391dte command you can configure the polling timer value on a DTE Using the undo fr lmi t391dte command you can restore the default value This parameter defines the time interval for DTE sending the...

Page 321: ...reating a new class The undo form of this command will only remove the association between the class and the PVC or interface without deleting the actual class In this case if using the display current configuration command to view the configurations of the router you can still see the configuration of class To delete the class use the undo fr class command For related commands see fr class fr dlc...

Page 322: ...The undo interface mfr command will work only if all physical interfaces have been removed from the MFR interface The subinterface of a MFR interface cannot be created until the main MFR interface is created For related commands see link protocol fr mfr mfr bundle name Example Create a MFR bundle interface and a subinterface of the main interface 3Com interface mfr 0 3Com MFR0 interface mfr0 1 poi...

Page 323: ...are bundled to the designated MFR interface insure that all links transmit at the desired access rate Up to 16 physical interfaces can be bundled to a MFR interface Using the mfr link name command you can also configure the link identification of bundle link If the physical interface is already configured to the bundle link the link protocol fr mfr command cannot be used once again to modify the l...

Page 324: ...dentification of the MFR interface is mfr plus the Frame Relay bundle number such as mfr0 Each MFR interface has a bundle identification which takes effect only at the local end The two bundle identifications of both ends of the link can be the same Only after being enabled through the command shutdown undo shutdown can the newly configured bundle identification take effect Example Set the bundle ...

Page 325: ...ffect Besides using the command link protocol fr mfr number name you can configure the name of the bundle link identification Example Set the bundle link identification to bl1 3Com Serial0 mfr link name bl1 6 1 52 mfr retry Syntax mfr retry number undo mfr retry View Serial interface view Parameter number Number of times waiting for the acknowledge timer to time out successively in the range from ...

Page 326: ...ts for the remote end to acknowledge the Hello message Using the undo mfr timer ack command you can restore the default value of the time that the Frame Relay bundle link waits for the remote end to acknowledge the Hello message Each link of the multilink Frame Relay maintains one Ack timer which is started when the local end sends a Hello message If no acknowledge is received from the remote end ...

Page 327: ...r the bundle link to send Hello messages Each link of the multilink Frame Relay maintains one Hello timer When the Hello timer times out the local end will send a Hello message to the remote end then the remote end response the message Only after you use the command link protocol fr mfr to associate the Frame Relay bundle link interface with the Frame Relay bundle can this command be configured Fo...

Page 328: ...Com Serial0 mfr window size 10 6 1 56 pq Syntax pq pql list number undo pq pql View Frame Relay class view Parameter list number Group number of a priority queue in the range from 1 to 16 Description Using the pq pql command you can configure the queue type of a Frame Relay PVC to the Priority Queueing PQ Using the undo pq pql command you can restore the queue type of the Frame Relay PVC to FIFO B...

Page 329: ...e undo pvc pq command you can restore the default PIPQ type of the Frame Relay PVC By default the PIPQ type on a PVC is normal PIPQ type can be top middle normal or bottom After the queue type on an interface is set to PIPQ the packets on each PVC can enter only one type of PIPQ This command can take effect only after PIPQ is enabled by the fr pvc pq command in interface view For related commands ...

Page 330: ... reduced to CIR bandwidth percentage After the congestion is relieved the sending rate will be restored to CIR For related commands see cir allow fr traffic shaping Example Set the maximum available bandwidth of the Frame Relay virtual circuit to 85 3Com fr class frts reserved bandwidth 85 6 1 59 reset fr inarp info Syntax reset fr inarp info View System view Parameter None Description Using the r...

Page 331: ...leared Specifies interface but not DLCI Statistics of all the PVCs on the specified interface will be cleared Specifies both interface and DLCI The statistics of the specified PVC will be cleared For related commands see display fr pvc info Example Clear the statistics on all the PVCs 3Com reset fr pvc info 6 1 61 traffic shaping adaptation becn Syntax traffic shaping adaptation becn percentage un...

Page 332: ... on the interface can implement the transmitting according to the committed information rate CIR configured in the class If the PVC receives a Frame Relay packet with the BECN backward explicit congestion notification flag bit being 1 its transmit rate will slow down After the transmit rate is lowered if the rate is less than minimum CIR the transmit rate is minimum CIR if the PVC has not received...

Page 333: ...can restore the queue type of the PVC to FIFO By default the queue type of the PVC is FIFO Given that the queue type of PVC is WFQ congestive discard threshold will be 64 dynamic queues will be 256 After the function of traffic shaping is enabled on the Frame Relay interface each PVC on this interface will own its independent PVC queue The queue type of a Frame Relay PVC can be FIFO PQ CQ or WFQ F...

Page 334: ...ging information event Enable the output of the event debugging information packet Enable the output of the packet debugging information interface type number Enable the PPP negotiation debugging of a designated interface Description Using the debugging hdlc command you can enable the debugging information of HDLC packets Example None 7 1 2 link protocol hdlc Syntax link protocol hdlc View Interfa...

Page 335: ... Using the link protocol hdlc command you can configure the interface link layer protocol to HDLC Default is PPP protocol For related commands see display interfaces Example Configure HDLC protocol on interface Serial0 3Com Serial0 link protocol hdlc 142 ...

Page 336: ...ing time command you can configure an aging time for the dynamic address table Using the undo bridge aging time command you can estore the default aging time of the dynamic address table Upon the timeout of the timer the contents in the bridge address table will be deleted Example Configure the aging time of the dynamic address table to 500 seconds 3Com bridge aging time 500 8 1 2 bridge bridging ...

Page 337: ...ge set By default the bridging function is enabled Note This command can be configured only after a bridge set has been configured Example Stop the bridging fucntion for IP protocol 3Com undo bridge 1 bridging ip Enable the bridging of IP 3Com bridge 1 bridging ip 8 1 3 bridge enable Syntax bridge enable undo bridge enable View System view Parameter None Description Using the bridge enable command...

Page 338: ...s table to forward i e merely using the static port table to forward By default forwarding is enabled by using dynamic address table The dynamic address table does not require manual maintenance It can automatically refresh whenever the network topology takes changes Example Enable the interface Ethernet 0 to use the dynamic address table to forward 3Com bridge 1 learning 8 1 5 bridge link set ori...

Page 339: ... be forwarded on the same port to ensure the sequence of packets You can use the bridge link set origin command to modify the default load sharing policy so as to accommodate such applications Example Enable the link set 1 to share load on the basis of source MAC addresses 3Com bridge 1 link set 1 origin Disable the load sharing on the basis of source MAC addresses 3Com undo bridge 1 link set 1 or...

Page 340: ...the interface Ethernet 0 to forward the frames with the MAC address 00 00 00 00 01 11 3Com bridge 1 mac address 00 00 00 00 01 11 permit Ethernet 0 8 1 7 bridge routing Syntax bridge bridge set routing ip ipx undo bridge bridge set routing ip ipx View System view Parameter bridge set Bridge set number in the range of 1 to 63 ip Internet Protocol ipx Internet Packet Exchange Protocol Description Us...

Page 341: ...tion of a bridge Using the undo bridge routing enable command you can disable the routing function of a bridge By default the routing function of a bridge is disabled A network layer protocol can be routed and bridged only when the routing function of a bridge is enabled Example Enable the routing function of the bridge 3Com bridge routing enable 8 1 9 bridge set Syntax bridge set bridge set undo ...

Page 342: ...bridge bridge set stp ieee View System view Parameter bridge set Bridge set number an integer in the range of 1 to 63 ieee Ethernet Spanning Tree Protocol Description Using the bridge stp ieee command you can configure the STP version supported by a bridge set Using the undo bridge stp ieee command you can cancel the specified STP version supported by the bridge set By default the bridge set suppo...

Page 343: ...ng STP the Max Age timer begins to time If the bridge have not received any BPDU in a specified time it will assume that the link has failed and the STP will regenerate the topology When configuring the Max Age timer it should be noted that Regardless of their configurations all the bridges in the spanning tree should use the value of the Max Age timer of root Bridge Too short a Max Age will resul...

Page 344: ...t bridge In the case that the STP is enabled changing the priority of a bridge will cause the recomputation of the spanning tree Example Configure the priority of the bridge to 500 3Com bridge stp priority 500 8 1 13 bridge stp timer forward delay Syntax bridge stp timer forward delay seconds undo bridge stp timer forward delay View System view Parameter seconds Time value of the Forward Delay tim...

Page 345: ...t there is the possibility of redistributing temporary redundant paths If the Forward Delay is configured too long however restoring of network connection may take a long time because the STP cannot converge to a stable state for a long period It is recommended that users use the default value Example Configure the time value of the Forward Delay timer of bridge to 50 seconds 3Com bridge stp timer...

Page 346: ...timer in bridge information to 5 seconds 3Com bridge stp timer hello 5 8 1 15 bridge set dest mac Syntax bridge set bridge set dest mac acl acl number undo bridge set bridge set dest mac acl acl number View Interface view Parameter bridge set Bridge set number in the range 1 to 63 acl number Access control list number based on MAC address in the range of 700 to 799 Description Using the bridge set...

Page 347: ...o bridge set inbound lsap acl command you can cancel the application of the ACL encapsulated in IEEE 802 2 form on an inbound interface This command makes the specified interface only accepts the Ethernet frame that satisfies certain conditions Example Apply the ACL 201 encapsulated in IEEE 802 2 form on the inbound Ethernet interface0 3Com Ethernet0 bridge set 1 inbound lsap acl 201 8 1 17 bridge...

Page 348: ...ridge set inbound type acl 204 8 1 18 bridge set link set Syntax bridge set bridge set link set link set undo bridge set bridge set link set link set View Interface view Parameter bridge set Bridge set number It is in the range of 1 to 63 link set Link set number in the range of 1 to 9 Description Using the bridge set link set command you can bind an interface to a link set Using the undo bridge s...

Page 349: ... bridge set outbound lsap acl command you can cancel the application of the ACL encapsulated in IEEE 802 2 form on an outbound interface This command makes the specified interface only forwards the Ethernet frame that satisfies certain conditions Example Apply the ACL 201 encapsulated in IEEE 802 2 form on the outbound Ethernet interface0 3Com Ethernet0 bridge set 1 outbound lsap acl 201 8 1 20 br...

Page 350: ...l 204 8 1 21 bridge set source mac Syntax bridge set bridge set source mac acl acl number undo bridge set bridge set source mac acl acl number View Interface view Parameter bridge set Bridge set number in the range 1 to 63 acl number Access control list number based on MAC address in the range of 700 to 799 Description Using the bridge set source mac acl command you can configure to apply the ACL ...

Page 351: ...eters related to the STP take effect Example Disable STP on Ethernet0 3Com Ethernet0 bridge set 1 stp disable 8 1 23 bridge set stp port pathcost Syntax bridge set bridge set stp port pathcost cost undo bridge set bridge set stp port pathcost View Interface view Parameter bridge set Bridge set number in the range of 1 to 63 cost Path cost of a bridge port in the range of 1 to 65535 By default the ...

Page 352: ... default the bridge port priority is 128 Description Using the bridge set stp port priority command you can configure the bridge port priority Using the undo bridge set stp port priority command you can restore the default bridge port priority In the case that path costs of ports are the same the port with lower ID has greater chance to be the designated port The port ID is comprised of Port Prior...

Page 353: ...ror event packet View All views Parameter error Enable the error debugging of STP event Enable STP event debugging packet Enable STP packet debugging Description Using the debugging stp command you can enable spanning tree debugging Example None 8 1 27 display bridge bridge template Syntax display bridge bridge set bridge template View All views Parameter bridge set Bridge set number in the range ...

Page 354: ...terface Virtual MAC address 00 e0 fc 00 00 01 No IP routed IP bridged IPX routed No IPX bridged Defalt bridged Table 8 1 Field description of the display bridge bridge template command Field Description Virtual MAC address MAC address of the Bridge template interface to which the bridge set corresponds No IP routed IP packets cannot be routed in the bridge set IP bridged IP packets can be bridged ...

Page 355: ...k set on each bridge and whether it is sharing the load A link set can be used to group multiple parallel segments between two bridges for load sharing as well as maintain a loop free spanning tree All the interfaces in the link set will share the load so long as one of them is in transmission status regardless of their statuses in the spanning tree You can execute the display bridge link set comm...

Page 356: ...0 Down disabled 2 Serial1 Down disabled 3 Serial2 Down disabled 8 1 31 display bridge spanning tree Syntax display bridge spanning tree View All views Parameter None Description Using the display bridge spanning tree command you can view the STP status and statistics This command is used to display the STP status and statistics for analyzing and controlling the traffic The displayed information in...

Page 357: ...1 address 00 e0 fc 0b 15 9c Designated bridge s priority 11 address 00 e0 fc 0b 15 9c Designated port 0 designated path cost 0 Timers message age 0 forward delay 0 hold 0 Sent BPDU 0 Received BPDU 0 Table 8 2 Field description of the display bridge spanning tree command Field Description Bridge Identifier has priority Bridge priority address Ethernet address of the bridge Configured Hello time Int...

Page 358: ...bridge template interface It is in the range of 1 to 63 Description Using the interface bridge template command you can create a bridge template interface for connecting the interfaces of specified bridge set to the other routed interfaces in the routing network Using the undo interface bridge template command you can cancel bridge template interface By default no bridge template interface is crea...

Page 359: ...mmand you can reset the entries of all the bridge sets or a specified bridge set in the MAC address table Example Clear all information contained in the bridge set 1 in the MAC address table 3Com reset bridge 1 8 1 35 reset bridge traffic Syntax reset bridge traffic View All views Parameter None Description Using the reset bridge traffic command you can reset the bridge set traffic statistics This...

Page 360: ...ge traffic 8 1 36 reset stp statistics Syntax reset stp statistics View All views Parameter None Description Using the reset stp statistics command you can reset the statistics of the spanning tree Example Clear the statistics of the spanning tree 3Com reset stp statistics 167 ...

Page 361: ...mmands 14 2 2 1 display ip host 14 2 2 2 ip host 14 2 3 VLAN Configuration Commands 15 2 3 1 display vlan 15 2 3 2 vlan type dot1q vid 16 2 4 DHCP Server Configuration Commands 17 2 4 1 debugging dhcp server 17 2 4 2 dhcp enable 18 2 4 3 dhcp server forbidden ip 19 2 4 4 dhcp server ip pool 20 2 4 5 dhcp server ping 21 2 4 6 display dhcp server conflict 22 2 4 7 display dhcp server expired 23 2 4 ...

Page 362: ...up 43 2 6 5 nat aging time 44 2 6 6 nat outbound address group 44 2 6 7 nat outbound interface 45 2 6 8 nat reset 46 2 6 9 nat server 46 Chapter 3 IP Performance Configuration Commands 49 3 1 IP Performance Configuration Commands 49 3 1 1 display ip statistics 49 3 1 2 icmp redirect send 50 3 1 3 ifquelen arp 51 3 1 4 ifquelen interface 52 3 1 5 ifquelen ip 52 3 1 6 ifquelen ipx 53 3 1 7 ip option...

Page 363: ...nd packets 70 4 1 11 ip count table 70 4 1 12 ip count timeout 71 4 1 13 reset ip count 72 Chapter 5 IPX Configuration Commands 74 5 1 IPX Configuration Commands 74 5 1 1 debugging ipx 74 5 1 2 display ipx interface 74 5 1 3 display ipx routing table 75 5 1 4 display ipx service table 76 5 1 5 display ipx statistics 77 5 1 6 ipx default route 78 5 1 7 ipx enable 79 5 1 8 ipx encapsulation 80 5 1 9...

Page 364: ...w remote 102 6 1 9 dlsw bridge set system view 102 6 1 10 dlsw enable 103 6 1 11 dlsw local 104 6 1 12 dlsw remote 105 6 1 13 dlsw timer 106 6 1 14 idle mark 107 6 1 15 link protocol sdlc 108 6 1 16 llc2 max ack 109 6 1 17 llc2 max send queue 109 6 1 18 llc2 max transmission 110 6 1 19 llc2 modulo 111 6 1 20 llc2 receive window 111 6 1 21 llc2 timer ack 112 6 1 22 llc2 timer ack delay 113 6 1 23 l...

Page 365: ... sap map local 122 6 1 36 sdlc sap map remote 123 6 1 37 sdlc simultaneous 123 6 1 38 sdlc status 124 6 1 39 sdlc timer ack 125 6 1 40 sdlc timer lifetime 126 6 1 41 sdlc timer poll 126 6 1 42 sdlc window 127 6 1 43 sdlc xid 128 5 ...

Page 366: ... ip address command you can configure the IP address of the interface Using the undo ip address command you can cancel the IP address of the interface By default no IP address is defined IP addresses fall into 5 classes You can choose the proper IP subnet as required For special purpose the IP addresses the host addresses of which are all 0s or 1s can not be used as common IP addresses The network...

Page 367: ...r the interface Serial 0 3Com Serial1 ip address 129 102 0 1 255 255 255 0 3Com Serial1 ip address 202 38 160 1 255 255 255 0 sub 1 1 2 ip address ppp negotiate Syntax ip address ppp negotiate undo ip address ppp negotiate View Interface view Parameter None Description Using the ip address ppp negotiate command you can enable IP address ppp negotiated at the interface Using the undo ip address ppp...

Page 368: ...umbered interface interface number The number of the numbered interface Description Using the ip address unnumbered command you can configure an interface to use the IP address of other interface Using the undo ip address unnumbered command you can cancel the IP address used by the interface By default this function is disabled The serial interface encapsulated with PPP HDLC Frame Relay SLIP and T...

Page 369: ...signment for the peer interface By default the interface does not assign addresses to the peer When the interface encapsulated with PPP does not have an IP address but its peer has one the negotiable IP address can be configured for it Configure the ip address ppp negotiate command on the local router and the remote address command on the peer router this interface will then accept the IP address ...

Page 370: ...apping entry Using the undo arp dynamic command you can cancel a static ARP mapping entry of a specified address By default the dynamic ARP mapping is adopted If you want to bind a packet whose destination address is not in this segment of a specified Ethernet interface so that the packet with this IP address can be forwarded through this gateway or if you want to filter some invalid IP addresses ...

Page 371: ...d you can manually configure a static ARP mapping entry Using the undo arp static command you can cancel a static ARP mapping entry of a specified address By default the dynamic ARP mapping is adopted If you want to bind a packet whose destination address is not in this segment of a specified Ethernet interface so that the packet with this IP address can be forwarded through this gateway or if you...

Page 372: ...1 00 eo fc 01 00 00 2 1 3 debugging arp Syntax debugging arp View All views Parameter None Description Using the debugging arp command you can enable the arp packets debugging Example Enable ARP debugging 3Com debugging arp Disable ARP debugging 3Com undo debugging arp 2 1 4 display arp Syntax display arp verbose ip address View All views Parameter verbose Display the detailed information of ARP m...

Page 373: ...isplays that there are three items in the ARP cache The first item for example indicates that the protocol stack is IP the IP address is 129 102 3 55 the MAC address is 00 c0 26 9d 17 dc and item is automatically derived through ARP via Ethernet0 2 1 5 reset arp cache Syntax reset arp cache View All views Parameter None Description Using the reset arp cache command you can reset the ARP cache The ...

Page 374: ...ameter None Description Using the display ip host command you can view all the static DNS entries For related commands see ip host Example Display the static DNS entries The IP address of quidway 1 is 1 1 1 1 and the IP address of quidway 2 is 2 2 2 2 Quidway display ip host quidway1 1 1 1 1 quidway2 2 2 2 2 2 2 2 ip host Syntax ip host domain name ip address undo ip host domain name 14 ...

Page 375: ...nfigures the map to the IP address the latter means that the domain is resolved through the DNS server Currently the Quidway series of routers supports static domain name resolution only and can maintain 50 map items at the most For related commands see display ip host Example Set the IP address of Router 1 to 10 110 0 1 Quidway ip host router1 10 110 0 1 Set the IP address of Router 2 to 10 110 0...

Page 376: ...ample Display the related information of all the configured VLAN Quidway display vlan Ethernet0 1 VLAN 1 Ethernet0 2 VLAN 2 The above information indicates that the Sub interface 1 of Ethernet0 corresponds to VLAN 1 and Sub interface 2 of Ethernet0 corresponds to VLAN 2 2 3 2 vlan type dot1q vid Syntax vlan type dot1q vid vlan id undo vlan type View Ethernet Sub interface view Parameter vlan id Id...

Page 377: ...dle the frame received Note The Ethernet sub interface is only applied in IPX and VLAN So as to a certain Ethernet sub interface which has not been configured with VLAN ID it is not permitted to specify its IP address For related commands see interface ethernet Example Specify the Ethernet interface Ethernet 0 1 belongs to VLAN 1 Quidway Ethernet0 1 vlan type dot1q vid 1 2 4 DHCP Server Configurat...

Page 378: ...g Example Debugging about all events about DHCP server Quidway debugging dhcp server events 2 4 2 dhcp enable Syntax dhcp enable undo dhcp enable View System view Parameter None Description Using the dhcp enable command you can enable the DHCP service Using the undo dhcp enable command you can disable the DHCP service By default the DHCP service is disabled Before performing the DHCP configuration...

Page 379: ...n the auto allocation By default no IP address that does not participate in the auto allocation is configured As for a network or a subnet certain given IP addresses probably have been occupied by some servers or undetermined hosts such as WWW server gateway and FTP servers When performing DHCP address allocation these addresses should be excluded to ensure the normal operation of the network othe...

Page 380: ...ddress pool view Using the undo dhcp server ip pool command you can cancel a specified IP address pool By default no DHCP address poll is created When performing the dhcp server ip pool command for the first time create an address pool with the identifier pool name and enter the DHCP address pool view When using this command again merely enter the DHCP address pool view At present each DHCP server...

Page 381: ...nge is from 0 to 10000 The default maximum time waiting for response from each ping packet is 500ms Description Using the dhcp server ping command you can configure the maximum number and the maximum time waiting for response for the ping packets sent by DHCP Using the undo dhcp server ping command you can restore the default value Before allocating an IP address for the client the DHCP server nee...

Page 382: ...the address conflicts of the DHCP server The display dhcp server conflict command displays the conflicting IP address conflicting detect type as well as the time when the address conflict took place The system adopts two types of conflict detect mode ping mode The DHCP server uses this method to detect conflicting information ARP mode DHCP client uses this method to detect conflicting information ...

Page 383: ...ormation of the DHCP address pool Quidway display dhcp server expired IP_Lease IP Range from 10 10 0 0 to 10 10 0 0 IP Range from 10 10 0 2 to 10 10 1 253 IP Range from 10 10 1 255 to 10 10 2 253 IP Range from 10 10 2 255 to 10 10 255 255 2 4 8 display dhcp server ip in use Syntax display dhcp server ip in use ip address View All views Parameter ip address The specified IP address If this paramete...

Page 384: ...16 2 254 IP address Hardware address Lease expiration Type 10 10 1 3 02c7 f800 0422 Infinite Manual 10 10 1 2 1111 2222 3333 NOT Used Manual 10 10 1 1 0050 ba28 9c3c Jan 2 2002 1 57 35 AM Auto 2 4 9 display dhcp server statistics Syntax display dhcp server statistics View All views Parameter None Description Using the display dhcp server statistics command you can view the statistics of the DHCP s...

Page 385: ...ot Reply 16 Dhcp Offer 8 Dhcp Ack 8 Dhcp Nak 0 2 4 10 display dhcp server tree Syntax display dhcp server tree View All views Parameter None Description Using the display dhcp server tree command you can view the tree structure information of the DHCP address pool The display dhcp server tree command displays the tree structure of the DHCP address pool as well as the information on the address poo...

Page 386: ... host 10 10 1 2 255 0 0 0 hardware address 1111 2222 3333 ethernet parent node 1 Sibling node 3 option 1 ip 255 255 255 0 option 2 hex 33 33 33 33 33 33 33 33 default router 10 10 1 100 dns server 10 10 1 254 lease 1 0 0 Pool Name 3 network 10 10 1 64 255 255 255 192 parent node 1 PrevSibling node 2 option 1 ip 255 255 255 192 option 2 hex 33 33 33 33 33 33 33 33 default router 10 10 1 100 dns ser...

Page 387: ...machine when allocating IP addresses At present a maximum of 8 DNS addresses can be configured in each DHCP address pool If you want to specify several DNS servers you need to use the dns list command to configure more than one address continuously instead of using this command several times because the IP address of the new DNS server will not superimpose upon the old one but overwrite it For rel...

Page 388: ...com cn Quidway dhcp0 domain name mydomain com cn 2 4 13 expired Syntax expired day day hour hour minute minute unlimited undo expired View DHCP address pool view Parameter day day The number of days in the range of 0 to 65535 hour hour The number of hours in the range of 0 to 23 minute minute The number of minutes in the range of 0 to 59 unlimited The valid period is infinite Description Using the...

Page 389: ... addressX The IP address of the outgoing gateway router X 1 2 8 all All ip addresses Description Using the gateway list command you can configure the IP address of the outgoing gateway router on the DHCP client Using the undo gateway list command you can cancel the outgoing gateway router configuration allocated to the DHCP client By default no outgoing gateway router is configured When a DHCP cli...

Page 390: ...nd you can configure the IP address of NetBIOS server on a DHCP client Using the undo nbns list command you can cancel the IP address allocated to the NetBIOS server on the DHCP client By default no IP address of NetBIOS is configured Client computers can communicate through the NetBIOS protocol As for the client computers using the Microsoft operating system WINS Windows Internet Naming Service s...

Page 391: ... peer communication mechanism h node The h hybrid mode that is the type p node with broadcast characteristics partially Description Using the netbios type command you can configure the NetBIOS node type of a DHCP client Using the undo netbios type command you can restore the NetBIOS node type of the DHCP client to the default value By default clients adopt type h node to perform the configuration ...

Page 392: ...ses allocated to the clients dynamically including the permanent dynamic addresses and those dynamic addresses which have a limited lease period This configuration command cannot be superimposed that is each DHCP address pool can be configured with only one segment The latest configuration will overwrite the original one including deleting the manually binding configuration If the system needs mul...

Page 393: ...ered ip address ip address The user defined IP address Description Using the option command you can configure the DHCP user defined options Using the undo option command you can cancel the DHCP user defined options Along with the continuous development of DHCP new options will appear To support these new options the user can add them to the attribute table of DHCP server by means of defining manua...

Page 394: ...ll the statistics of conflicts of all the IP addresses Quidway reset dhcp server conflict all 2 4 20 reset dhcp server ip in use Syntax reset dhcp server ip in use all ip address View All views Parameter all All ip addresses ip address Clear the binding information of a specified IP address Description Using the reset dhcp server ip in use command you can reset the DHCP dynamic address binding inf...

Page 395: ...stics command is used to reset the internal statistics of the DHCP server including the number of DHCP pools the number of addresses bound automatically and manually the number of the expired binding addresses the number of unidentifiable packets and the number of DHCP request and response packets For related commands see display dhcp server statistics Example Clear all the statistics of DHCP serv...

Page 396: ...AC address with a certain IP address When the client with this MAC address applies for a DHCP address the DHCP server will allocate this fixed IP address to this client When configuring binding it can be regarded that the binding is a special DHCP address pool The static bind mac address command must be used along with the static bind ip address command in pair For related commands see dhcp server...

Page 397: ...in MAC address with a certain IP address When the client with this MAC address applies for a DHCP address the DHCP server will allocate this fixed IP address to this client When configuring the binding it can be regarded that this binding is a special DHCP address pool The static bind mac address command must be used along with the static bind ip address command in pair For related commands see dh...

Page 398: ...protocol Debugging functions Quidway debugging ip relay protocol 2 5 2 display ip relay protocol Syntax display ip relay protocol View All views Parameter None Description Using the display ip relay protocol command you can view the status of forwarding the User Datagram Protocol UDP datagrams Example None 2 5 3 display ip relay address Syntax display ip relay address View All views 38 ...

Page 399: ... relay protocol udp command you can configure the transparent forwarding protocol and the port number it uses Using the undo ip relay protocol udp command you can cancel the transparent forwarding protocol and the port number it uses For DHCP the helper address defines the DHCP server address After configuring a helper address the broadcast packets received from the interface will be transmitted t...

Page 400: ...the undo ip relay address command you can cancel the configured auxiliary address By default the helper address is not specified For DHCP the helper address defines the DHCP server address After configuring a helper address the broadcast packets received from the interface will be transmitted to the server The interface that can configure helper addresses should support broadcast Each interface ca...

Page 401: ...ions Quidway debugging nat event 2 6 2 display nat Syntax display nat View All views Parameter None Description Using the display nat command you can view information on the NAT Translations items This command displays the configuration of the address translation by the user The user can verify if the configuration of the address translation is correct according to the input information of this co...

Page 402: ...10 10 10 to 202 110 10 12 and from 202 110 100 10 to 202 110 100 12 respectively Seria10 is configured with NAT enabling the addresses in address list 1 to be translated to the addresses in address pool pool1 Serial0 is configured with 3 internal servers The internal address of the WW server of http 202 110 10 100 8080 is 10 110 10 10 the internal address of FTP server of ftp 202 110 10 100 2121 i...

Page 403: ...ting address of the NAT address pool end addr The ending address of the NAT address pool pool name Name of the pool Description Using the nat address group command you can configure a NAT address pool Using the undo nat address group command you can cancel a specified NAT address pool All addresses in the address pool should be consecutive At the most 64 addresses can be defined in each address po...

Page 404: ...col times out in the range of 10 to 600 seconds By default the valid value is 20 seconds Description Using the nat aging time command you can configure the valid NAT time Using the nat aging time default command you can restore the default value This command sets up the valid time of address translation connection different time for different type of protocol The unit of time is second Example Set...

Page 405: ...l0 port is connected to ISP Quidway acl 1 Quidway acl 1 rule permit source 10 110 10 0 0 0 0 255 Configure the address pool Quidway nat address group 202 110 10 10 202 110 10 12 pool 1 Add correlation between the address list and the address pool Quidway Serial0 nat outbound 1 pool 1 2 6 7 nat outbound interface Syntax nat outbound acl number interface undo nat outbound acl number interface View I...

Page 406: ...ion selecting the addresses from 202 110 10 10 to 202 110 10 12 as the translated address Assume that ISP is connected by Serial0 port Quidway acl 1 Quidway acl 1 rule permit source 10 110 10 0 0 0 0 255 Add correlation between the address list and the address pool Quidway Serial0 nat outbound 1 interface 2 6 8 nat reset Syntax nat reset View Interface view Parameter None Description Using the nat...

Page 407: ...nly used are stood for with key words For instancethe WWW service port number is 80 which can also be stood for by WWW The FTP service port number is 21 which can also be stood for by FTP any Any protocol 0 domain Domain Name Service 53 ftp File Transfer Protocol 21 pop2 Post Office Protocol v2 109 pop3 Post Office Protocol v3 110 smtp Simple Mail Transport Protocol 25 telnet Telnet 23 www World W...

Page 408: ...with ISP and is the exit of the internal network Example The IP address of the internal WWW server of the specified LAN is 10 110 10 10 The IP address of the internal FTP server is 10 110 10 11 It is hoped that the outside can access WEB through http 202 110 10 10 8080 and connect FTP wet site through ftp 202 110 10 10 Suppose Serial0 is connected to ISP Quidway Serial0 nat server global 202 110 1...

Page 409: ... traffic For related commands see display interface reset ip counters Example Display the statistics of IP packet traffic Quidway display ip statistics IP statistics Rcvd 259 total 250 local destination 0 format errors 0 checksum errors 0 unknown protocol 0 bad options Frags 0 fragment rcvd 0 fragment dropped 0 reassembled 0 timeouts 0 fragmented 0 couldn t fragment 0 fragment sent Sent 27 generat...

Page 410: ...successfully fragmented is 0 the number of packets that can not be fragmented is 0 and the number of fragments generated and forwarded is 0 Sent 27 packets generated 9 packets forwarded 0 Raw IP packet generated 0 packet dropped 0 packet with no route and 0 packet fails to be compressed ICMP statistics Received 0 packet with format error received 0 packet with checksum error 0 redirect packet 0 un...

Page 411: ...router to receive redirected routes Quidway icmp redirect send 3 1 3 ifquelen arp Syntax ifquelen arp queue length View System view Parameter queue length Ranging 0 to 1000 bytes The default queue length is 75 bytes Description Using the ifquelen arp command you can configure the queue length of the arp packets at the interface Configuring the ARP queue length may affect the running efficiency at ...

Page 412: ... configure the length of a receive queue of an interface Configuring the length of a receive queue of an interface may affect the running efficiency at the Ethernet interface So you should configure it under the guidance of the technical support engineer Example None 3 1 5 ifquelen ip Syntax ifquelen ip queue length View System view Parameter queue length ranging 10 to 1000 bytes The default queue...

Page 413: ...quelen ip 70 3 1 6 ifquelen ipx Syntax ifquelen ipx queue length View System view Parameter queue length ranging from 10 to 1000 bytes The default queue length is 75 bytes Description Using the ifquelen ipx command you can configure the queue length of the IPX packets at the interface Example Configure the IPX queue to 95 Quidway ifquelen ipx 95 3 1 7 ip option source route Syntax ip option source...

Page 414: ...m size of the transmission unit When the encapsulation format for the Ethernet is EthernetII the mtu at the interface ranges from 46 to 1500 bytes When the encapsulation format at the Ethernet interface is SNAP the mtu at the interface ranges from 46 to 1492 bytes and that at the serial interface ranging from 128 to 1500 bytes the mtu at the BRI interface ranges from 128 to 1500 bytes Description ...

Page 415: ...counters Syntax reset ip counters View All views Parameter None Description Using the reset ip counters command you can reset the information on IP statistics counters In some special circumstances it is necessary to clear the existing IP statistics for new statistics Example None 3 2 TCP Performance Configuration Commands 3 2 1 display tcp status Syntax display tcp status View All views 55 ...

Page 416: ...0 0 LISTEN The above information displays a TCP connection has been set up the local UP address of the TCP is 129 102 100 142 the local port number is 23 the foreign IP address is 129 102 1 92 and the remote port number is 1038 In addition there is a server especially responsible for monitoring port 23 3 2 2 ppp compression vj Syntax ppp compression vj undo ppp compression vj View Interface view P...

Page 417: ... Parameter seconds Value of the TCP finwait timer in seconds ranging from 76 to 3600 seconds The default value is 675 seconds Description Using the tcp timer fin timeout command you can configure the TCP finwait timer Start the finwait timer when the connection status changes from FIN_WATI_1 to FIN_WAIT_2 If no FIN message is received before the finwait timer is timed out the TCP connection will b...

Page 418: ...re the TCP synwait timer When the synchronous packet is transmitted the TCP starts the synwait timer If no acknowledgment packet is received before the synwait is timed out then the TCP connection will be terminated This parameter should be configured under the guidance of the technical support engineer For related commands see tcp timer fin timeout tcp window Example Configure the TCP synwait tim...

Page 419: ... related commands see tcp timer fin timeout tcp timer syn timeout Example Set the window size of the TCP connection oriented socket to be 4 Kbytes Quidway tcp window 4 3 3 Fast forwarding Configuration Commands 3 3 1 display ip fast forwarding cache Syntax display ip fast forwarding cache View All views Parameter None Description Using the display ip fast forwarding cache command you can view the ...

Page 420: ...ernet0 and the egress is Ethernet1 3 3 2 display ip fast forwarding flow control Syntax display ip fast forwarding flow control View All views Parameter None Description Using the display ip fast forwarding flow control command you can view the IP fast forwarding flow control Information For related commands see ip fast forwarding flow control Example Display the IP fast forwarding flow control In...

Page 421: ...ink has a low transmission speed fast forwarding it is meaningless Quidway series routers support the fast forwarding on all high speed link interfaces including Ethernet synchronous PPP frame relay and HDLC etc It also support the fast forwarding through firewall and NAT Notice that the interface configured with fast forwarding will not transmit any reorientation packets Example Disable the inter...

Page 422: ...e cache capacity Cache capacity 32M 4k 16k 32M cache capacity 64N 4k 16k 64k 256k Cache capacity 64M 4k 16k 64k 256k 1M Example Configure the size of fast forwarding table as 64Kbytes Quidway ip fast forwarding cache size 64K 3 3 5 ip fast forwarding flow control Syntax ip fast forwarding flow control on threshold value undo ip fast forwarding flow control on threshold View System view Parameter o...

Page 423: ...3 6 reset ip fast forwarding cache Syntax reset ip fast forwarding cache View All views Parameter None Description Using the reset ip fast forwarding cache command you can reset the fast forwarding cache This command is used to clear the fast forwarding cache The fast forwarding table will not contain any fast forwarding entry after having been cleared Example Clear the fast forwarding cache Quidw...

Page 424: ...ror View All views Parameter data Debugs IP Count data error Debugs IP Count errors Description Using the debugging ip count command you can enable IP Count debugging Example Enable ip count data debugging functions Quidway debugging ip count data 4 1 2 display ip count inbound packets Syntax display ip count inbound packets exterior interior firewall denied View All views 64 ...

Page 425: ...play ip count inbound packets firewall denied 4 1 3 display ip count outbound packets Syntax display ip count outbound packets exterior interior firewall denied View All views Parameter exterior Display outbound packets not matching the count table interior Display outbound packets matching the count table firewall denied Display outbound packets denied by firewall Description Using the display ip...

Page 426: ... on the count table configure Example Display the statistics of the count table configure information Quidway Ethernet0 display ip count table 4 1 5 ip count enable Syntax ip count enable undo ip count enable View System view Parameter None Description Using the ip count enable command you can enable IP Count Using the undo ip count enable command you can disable IP Count By default IP Count is di...

Page 427: ...tion Using the ip count exterior threshold command you can configure the maximum number of the statistics items that do not comply with the rules Using the undo ip count exterior threshold command you can restore the default value Example Set the maximum number of count entries that can be created in Exterior List to 100 Quidway ip count exterior threshold 100 Set the maximum number of count entri...

Page 428: ...unt firewall denied command you can disable IP Count to make statistics on the packets denied by the firewall on the current interface By default no statistics is made on the packets denied by the firewall Enabling the ip count firewall denied command on an interface will enable IP Count to make statistics on the packets denied by the firewall on the interface or the packets output from the interf...

Page 429: ...n Exterior List or in Interior List depending on whether the packet matches any IP Count list Example Set IP Count to make statistics on the packets received on the interface Ethernet0 Quidway Ethernet0 ip count inbound packets 4 1 9 ip count interior threshold Syntax ip count interior threshold number undo ip count interior threshold View System view Parameter number Set the number of the data it...

Page 430: ... statistics on the output packets on the current interface Using the undo ip count outbound packets command you can disable IP Count to make statistics on the output packets on the current interface By default no statistics is made on the packets output from the interface The information of a packet will be retained either in Exterior List or in Interior List depending on whether the packet matche...

Page 431: ...guring IP Count list When IP Count is making statistics on packets it determines where to put information of a packet by comparing it against the configured IP Count lists If a match is found the packet information will be retained in Interior List If no match is found the packet information will be kept in Exterior List A maximum of 2048 IP Count lists can be configured Example Configure an IP Co...

Page 432: ...ime IP Count will assume that the accounting entries have timed out and the accounting entries will be deleted from the list Example Set the timeout time for IP Count entries to 100 minutes Quidway ip count timeout 100 Set the timeout time for IP Count entries to the default value 720 minutes Quidway undo ip count timeout 4 1 13 reset ip count Syntax reset ip count all exterior firewall denied int...

Page 433: ...aking a new statistics on IP count use this command to clear the existing statistics of IP count Example Clear statistics of the outgoing packets denied by the firewall on the interface Quidway reset ip count firewall denied 73 ...

Page 434: ...ackets information debugging routing Enable the IPX RIP Routing information debugging sap Enable the IPX Service Advertisement information debugging Description Using the debugging ipx command you can enable the debugging information of Novell IPX information Example Enable IPX servers debugging functions Quidway debugging ipx sap 5 1 2 display ipx interface Syntax display ipx interface type numbe...

Page 435: ... IPX type 20 propagation packet forwarding is enabled SAP GNS processing enabled SAP GNS round robin processing disabled The maximum number of services reserved is 4 IPX RIP update interval is 60 seconds aging multiples is 3 IPX SAP update interval is 60 seconds aging multiples is 3 RIP packet maximum size is 432 bytes SAP packet maximum size is 480 bytes RIP packets received 0 RIP packets sent 1 ...

Page 436: ...F Float s seconds u uses 5 Total IPX routes Up to 1 parallel paths 4 reserved paths and 16 hops allowed Current default route is S FFFFFFFE 010 02 010 via 2 0A03 0C50 0003 Ethernet0 C 2 NOVELL ETHER Ethernet0 C 1000 PPP Serial0 S 100 010 02 010 via 1000 0B00 CD00 0000 Serial0 F 10 060 02 010 via 2 0A03 0C50 0003 10s Ethernet0 5 1 4 display ipx service table Syntax display ipx service table type se...

Page 437: ...an view the IPX service table The output of this command is helpful for IPX SAP fault diagnosis by the user Example Display the IPX service table Quidway display ipx service table Codes S Static F Float s seconds 3 Total IPX Servers 128 reserved servers allowed Table ordering is based on routing and server info Type Name Net Address Port Pre Route Hops If F 4 SERVER1 3092D3F3 0000 0000 0001 0451 0...

Page 438: ...tal 0 broadcast 0 forwarded 0 echo Type 20 0 received 0 matched 0 discarded tc 8 0 sent 0 successfully sent 0 encapsulation failed RIP 0 RIP requests 0 RIP replies 1 RIP requests sent 0 RIP advertisements received 0 sent 1 routes SAP 0 SAP get nearest requests 0 SAP get nearest replies 0 SAP requests 0 SAP replies 1 SAP requests sent 0 SAP advertisements received 0 sent 1 servers Forward 0 need fo...

Page 439: ...px enable View System view Parameter node Route node ID 48 bits in length 3 groups of 4 bit hexadecimal separated by e g xxxx xxxx xxxx It cannot be a broadcast address The default is MAC address of the first Ethernet interface of the route Description Using the ipx enable command you can enable IPX Routing Using the undo ipx enable command you can disable IPX Routing By default IPX Routing is dis...

Page 440: ...arameter dot3 Novell Ethernet_802 3 dot2 IEEE 802 2 ethernet 2 Novell Ethernet_II snap IEEE 802 2 SNAP Description Using the ipx encapsulation command you can configure the frame format of Ethernet Using the undo ipx encapsulation command you can restore the frame format of Ethernet to default By default the frame type is dot3 The router supports four Ethernet frame formats The frame received will...

Page 441: ...an cancel the forwarding of type 20 broadcast packet on the interface By default this function is disabled In general the broadcast packet of type 20 will be discarded by the router by the packet can be sent to other segments through router configuration Example None 5 1 10 ipx network Syntax ipx network network undo ipx network View Interface view Parameter network IPX network ID 8 bit hexadecima...

Page 442: ...s see ipx encapsulation ipx enable Example Activate the IPX route at Ethernet0 Quidway ipx enable Quidway Ethernet0 interface ethernet 0 Quidway Ethernet0 ipx network 2 5 1 11 ipx rip load balance path Syntax ipx rip load balance path number undo ipx rip load balance path View System view Parameter number The maximum of IPX parallel routes the range is 1 64 By default it is 1 Description Using the...

Page 443: ...th command you can restore the default value When the length of the max reserve queue is 1 the system reserves one route only for a destination When this unique route is faulty and the system has deleted it there will be no route available to this destination and this will lead to serious loss of packets When the length of the reserve queue is greater than 1 and the first route is deleted the syst...

Page 444: ...ommand you can restore the maximum size of RIP update packet to default In RIP updating packet the route information is 8 bytes and the header of IPX and RIP is 32 bytes in total The maximum size of RIP update packet can be calculated with 32 n 8 herein n is the maximum number of route records in one RIP packet Example Set the maximum RIP packet size at Ethernet0 to be 832 bytes that is it can con...

Page 445: ...twork For related commands see ipx rip timer update Example None 5 1 15 ipx rip timer update Syntax ipx rip timer update seconds undo ipx rip timer update View System view Parameter seconds RIP update time in seconds ranging from 10 to 60000 seconds The default RIP update time is 60 seconds Description Using the ipx rip timer update command you can configure intervals for IPX RIP to control how lo...

Page 446: ...ue all View System view Parameter network Destination IPX network ID 8 bit hexadecimal 1 FFFFFFFD The first 0 can be omitted while inputting it network node IPX address of the next hop Herein the network ID is 8 bit hexadecimal 1 FFFFFFFD The first 0 can be omitted while inputting it Node value is to identify a network node 48 bits in length 3 groups of 4 bit hexadecimal separated by like xxxx xxx...

Page 447: ...isplay ipx routing table Example Specify the next hop on the default route is at 3 1 1 1 Quidway ipx route 3 3 1 1 1 tick 3 hop 1 Specify the next hop on the default route to 3 1 1 1 and the priority to 20 Quidway ipx route 3 3 1 1 1 tick 3 hop 1 preference 20 5 1 17 ipx sap gns disable reply Syntax ipx sap gns disable reply undo ipx sap gns disable reply View Interface view Parameter None Descrip...

Page 448: ...nce View System view Parameter None Description Using the ipx sap gns load balance command you can enable all the servers to reply to the IPX GNS request packet in turn Using the undo ipx sap gns load balance command you can enable the nearest server to reply to the IPX GNS request packet By default the most recently learned eligible server is used The router has two mode to replay to the IPX GNS ...

Page 449: ... max reserve queue is 1 the system reserves one route only for a destination When this unique route is faulty and the system has deleted it no route will be available for this destination while searching for routes and this will lead to serious loss of packets When the length of the reserve queue is greater than 1 and the first route is deleted the system can replace it with the next route so as t...

Page 450: ...the SAP update packet can be calculated with 32 n 64 Herein n is the maximum number of information records in one SAP packet The maximum size includes the sizes of the IPX packet header and SAP header Example Set the maximum SAP packet size to be 672 bytes which can contain 10 pieces of service information at Ethernet0 Quidway Ethernet0 ipx sap mtu 672 5 1 21 ipx sap multiplier Syntax ipx sap mult...

Page 451: ...conds undo ipx sap timer update View System view Parameter seconds Used to calculate the SAP update time ranging from 60 to 60000 seconds The default value is 60 seconds Description Using the ipx sap timer update command you can configure intervals for IPX SAP to control how long it will be waiting to receive the next SAP update packets Using the undo ipx sap timer update command you can restore t...

Page 452: ... network ID is 8 bit hexadecimal 1 FFFFFFFD The first 0 can be omitted while inputting it Node value is to identify a network node 48 bits in length 3 groups of 4 bit hexadecimal separated by e g xxxx xxxx xxxx socket Service Socket hop hopcount Number of hops to go through before reaching the server preference The preference of service information preference The value of the preference of service...

Page 453: ...ipx service 4 server1 1000 0 0c91 f61f 451 2 preference 40 5 1 24 ipx split horizon Syntax ipx split horizon undo ipx split horizon View Interface view Parameter None Description Using the ipx split horizon command you can enable split horizon algorithm on this interface Using the undo ipx split horizon command you can disable the function By default split horizon is enabled The split horizon arit...

Page 454: ...Novell delay in ticks on the interface By default 1 tick ipx tick for the Ethernet 30 ticks for the serial interface and 6 ticks for the other WAN interfaces The ipx tick command is used as a basis for judging the best route In system view the display ipx interface command can be used to display the values configured through the ipx tick command For related commands see ipx rip load balance path E...

Page 455: ...t packets cyclically If the user does not want the router to keep on sending such packets he can enable the ipx touch off function at the interface In this way updated packets will be sent only when change in the routing or service information occurs Example None 5 1 27 reset ipx statistics Syntax reset ipx statistics View All views Parameter None Description Using the reset ipx statistics command...

Page 456: ...3Com Router Command Reference Guide V1 00 Quidway reset ipx statistics 96 ...

Page 457: ...ing from 1 to 63 Description Using the bridge set Ethernet interface view command you can add an Ethernet interface to DLSw bridge set Using the undo bridge set Ethernet interface view command you can cancel the Ethernet interface from the DLSw bridge set By default no Ethernet interface is added to the bridge set Add an Ethernet interface to DLSw bridge set the LLC2 frames can then be transmitted...

Page 458: ...k By default no synchronous interface is added to the bridge set Add an Ethernet interface to DLSw bridge set then the LLC2 frames can be transmitted to the peer entity at the far end through the corresponding TCP corresponding channel Example None 6 1 3 debugging dlsw Syntax debugging dlsw circuit core event packet tcp View All views Parameter circuit Enable the DLSw circuit open the debugging co...

Page 459: ... sdlc Syntax debugging sdlc event packet View All views Parameter event Enable the SDLC events debugging packet Enable the SDLC packet debugging Description Using the debugging sdlc command you can enable the information debugging of SDLC Example Enable SDLC packet debugging functions Quidway debugging sdlc packet 6 1 5 display dlsw bridge entry Syntax display dlsw bridge entry View All views 99 ...

Page 460: ...Parameter circuit id Display the virtual circuit number of DLSw ranging 0 to 4294967295 verbose Display the ordinary detailed information of the virtual circuit Description Using the display dlsw circuits command you can view information on the virtual circuit of DLSw Example Display DLSw circuits Quidway display dlsw circuits Correlator local addr lsap remote addr rsap state 0x00a2000a 0000 1738 ...

Page 461: ... Display performance exchange information with specified IP address Description Using the display dlsw information command you can view information on the performance exchange of DLSw Example Display the performance exchange information of DLSw Quidway display dlsw information local DLSw information for peer 1 1 1 1 Vendor ID OUI 00e0fc Version number 1 Release number 0 Init Pacing Window 1500 Num...

Page 462: ...ew information on the remote end peer entity Example Display the remote end peer entity information Quidway display dlsw remote Peers State pkts_rx pkts_tx drops uptime TCP 11 0 0 1 DISCONNECT 0 0 0 TCP 13 0 0 1 DISCONNECT 0 0 0 TCP 14 0 0 1 CONNECT 1897 1899 0 14 26 22 6 1 9 dlsw bridge set system view Syntax dlsw bridge set bridge set number undo dlsw bridge set bridge set number View System vie...

Page 463: ... a local bridge set to DLSw In other words the messages of the local bridge set can be forwarded to the remote end through the TCP channel You can use the command several times to connect several bridge set to DLSw so that all of them can be forwarded through the TCP channel Example None 6 1 10 dlsw enable Syntax dlsw enable undo dlsw enable View System view Parameter None Description Using the dl...

Page 464: ...ote router not configured beforehand is allowed to initiate connection and create peer entity dynamically The end using the parameter doesn t need to configure the remote peer entity instead waiting for the remote end to initiate connection vendor id vendor id Vender ID used to ensure the intercommunication with the devices of other manufacturers in the range from 00 00 00 to FF FF FF By default v...

Page 465: ...nd 17800 bytes while the default value is 1500 bytes By default max frame size is 1500 bytes max queue max queue length The size of the TCP transceiver queue The value range is 50 2000 bytes and the default value is 200 bytes linger minutes The time to keep the connection after the primary peer entity is disconnected The value range is 1 1440 minutes and the default value is 5 minutes compatible 3...

Page 466: ...e backup peer the system will prompt the following information Primary peer ip address does not exist This prompt indicates that the user should create a remote master peer before creating a remote backup peer If the TCP connection of the main link disconnects and the backup link still exists the TCP link can also keep working A TCP connection can be found via the display dlsw remote command until...

Page 467: ...rious timer used when DLSw established virtual circuits can be modified by configuring the DLSw protocol timer It is recommended that subscribers do not modify or configure the parameters of DLSw timers under normal Example None 6 1 14 idle mark Syntax idle mark undo idle mark View Synchronous interface view Parameter None Description Using the idle mark command you can assign the encoding mode fo...

Page 468: ...w Parameter None Description Using the link protocol sdlc command you can configure SDLC as the link layer encapsulation protocol of synchronous interfaces By default the link layer protocol encapsulated at synchronous interface is PPP SDLC is a link layer protocol related to SNA Its working principle is very similar to HDLC To allow DLSw to operate normally the encapsulation protocol of synchrono...

Page 469: ...sing the undo llc2 max ack command you can restore the length of the LLC2 early response window to the default value LLC2 early response means to send the peer end response frames in advance after receiving a certain number of frames Together with the local response delay time it controls the time to send response frames Once either of the two conditions is met the response frames will be sent Exa...

Page 470: ... transmission Syntax llc2 max transmission retries undo llc2 max transmission View Ethernet interface view Parameter retries The max retransmission times of LLC2 frames The value range is 1 255 and the default value is 20 Description Using the llc2 max transmission command you can configure the max retransmission times for the LLC2 frame Using the undo llc2 max transmission command you can restore...

Page 471: ...and you can configure the modulus used by LLC2 Using the undo llc2 modulo command you can restore the default modulus used by LLC2 By default the modulo value used by LLC2 is 128 LLC2 uses module mode to number the information message such as the X25 protocol The modulo value is 8 or 128 Ethernet generally uses module 128 Example None 6 1 20 llc2 receive window Syntax llc2 receive window length un...

Page 472: ...LLC2 sending frames With this mechanism LLC2 does not expect that the receiving party will respond to each frame instead it will wait for the response after sending the window of frames Example None 6 1 21 llc2 timer ack Syntax llc2 timer ack mseconds undo llc2 timer ack View Ethernet interface view Parameter mseconds The LLC2 local response timeout time The value range is 1 60000ms the default va...

Page 473: ...fault value is 100ms Description Using the llc2 timer ack delay command you can configure the delay time after receiving information frame Using the undo llc2 timer ack delay command you can restore LLC2 local response delay time to the default value After receiving information frames LLC2 may delay sending response Example None 6 1 23 llc2 timer busy Syntax llc2 timer busy mseconds undo llc2 time...

Page 474: ...e case that LLC2 queries the station status it will wait and query again if the station status is BUSY Example None 6 1 24 llc2 timer poll Syntax llc2 timer poll mseconds undo llc2 timer poll View Ethernet interface view Parameter mseconds The P F wait time of LLC2 The value range is 1 60000ms and the default value is 5000ms Description Using the llc2 timer poll command you can configure the P F w...

Page 475: ... llc2 timer reject command you can configure the time waiting for the correct frame after a reject frame is sent Using the undo llc2 timer reject command you can restore to the default value The REJ status time of LLC2 indicates the amount of time the software has waited for a correct frame after sending a reject command to the remote LLC2 station Example None 6 1 26 reset dlsw bridge entry Syntax...

Page 476: ...set dlsw circuits Syntax reset dlsw circuits circuit id View All views Parameter circuit id The virtual circuit number the value range is 0 4294967295 Description Using the reset dlsw circuits command you can reset information on the DLSw circuits Example None 6 1 28 sdlc controller Syntax sdlc controller sdlc address undo sdlc controller sdlc address View Synchronous interface view 116 ...

Page 477: ...rimary equipment can be connected with several secondary equipments and the relationship is unique However connection can not be established between secondary equipments It can ensure that communication normally operates in one group of SDLC equipment only if the addresses of the secondary equipments are identified The sdlc controller command is used to specify SDLC address for virtual circuit The...

Page 478: ...rcuit which would be used when converting the SDLC message to the LLC2 message The sdlc mac map local command must be configured before configuring DLSw Each interface is configured with a shared SDLC virtual MAC address meanwhile it supports the SDLC virtual MAC addresses related to each DSLC node SDLC Address and the configuration is similar to DSLC Partner When you configure the SDLC virtual MA...

Page 479: ...peer MAC address for one SDLC virtual circuit while the MAC address is to be used as the destination MAC address when transferring SDLC to LLC2 When setting up DLSw one SDLC address should be configured with one corresponding partner The MAC address of partner shall be the MAC address of the remote end SNA equipment physical addresses of such equipment as Ethernet and Token Ring or the next hop MA...

Page 480: ...o have the same values as the connected SDLC equipment Example None 6 1 32 sdlc max send queue Syntax sdlc max send queue length undo sdlc max send queue View Synchronous interface view Parameter length Queue length of messages sent by SDLC ranging from 20 to 255 By default the queue length of messages sent by SDLC is 20 Description Using the sdlc max send queue command you can configure length of...

Page 481: ...ansmission command you can configure the max retransmission time for the SDLC frame Using the undo sdlc max transmission command you can restore it to the default value When SDLC receives no response messages in a certain time after sending frames it will retransmit the frames Example None 6 1 34 sdlc modulo Syntax sdlc modulo n undo sdlc modulo View Synchronous interface view Parameter n Modulo v...

Page 482: ...nous interface view Parameter lsap Virtual SAP address set up for the connective equipment of the interface By default lsap of LLC2 is 04 sdlc addr SDLC address Description Using the sdlc sap map local command you can configure SDLC to transform the SAP address of LLC2 Using the undo sdlc sap map local command you can restore the default value of the SAP address of LLC2 When transforming SDLC mess...

Page 483: ...04 sdlc addr SDLC address Description Using the sdlc sap map remote command you can configure SDLC to transform the SAP address of LLC2 Using the undo sdlc sap map remote command you can restore the default value of the SAP address of LLC2 Generally the SAP address used by the SNA protocol is 0x04 0x08 or 0x0C Example None 6 1 37 sdlc simultaneous Syntax sdlc simultaneous undo sdlc simultaneous Vi...

Page 484: ...ta but can not send data Example None 6 1 38 sdlc status Syntax sdlc status primary secondary undo sdlc status View Synchronous interface view Parameter primary Indicates that this end is the primary station which controls the whole connection procedure secondary Indicates that this end is the secondary station which is controlled by the primary station Description Using the sdlc status command yo...

Page 485: ... Unix host and the ATM machine Example None 6 1 39 sdlc timer ack Syntax sdlc timer ack mseconds undo sdlc timer ack View Synchronous interface view Parameter mseconds Number of ms that the software waits for an acknowledgment packet from the primary station ranging from 1 to 60000ms By default the acknowledgement wait time of the SDLC Primary Station is 3000 ms Description Using the sdlc timer ac...

Page 486: ... lifetime command you can configure the time to wait for a reply used by secondary station Using the undo sdlc timer lifetime command you can restore the time to wait for a reply used by secondary station to the default value After sending messages to the secondary station SDLC secondary station will wait for responses from the primary station and timer will be started Example None 6 1 41 sdlc tim...

Page 487: ...onous interface view Parameter length Length of the local acknowledgement window ranging from 1 to 7 By default the length of the local acknowledgement window of SDLC is 7 Description Using the sdlc window command you can configure the size of the SDLC local window that is the max number of frames that can be sent before receiving the response frames Using the undo sdlc window command you can rest...

Page 488: ... the node ID Description Using the sdlc xid command you can configure the XID of SDLC Using the undo sdlc xid command you can cancel the XID of SDLC By default this function is disabled XID is used to identify a device in SNA There are two device types PU2 0 and PU2 1 PU2 1 is already configured and can recognize each other though exchanging XID Therefore this command is not for PU2 1 devices Wher...

Page 489: ...t 15 2 1 4 display rip 16 2 1 5 filter policy export 17 2 1 6 filter policy import 18 2 1 7 host route 19 2 1 8 import route 20 2 1 9 network 21 2 1 10 peer 22 2 1 11 preference 23 2 1 12 reset 23 2 1 13 rip 24 2 1 14 rip authentication mode md5 key string 25 2 1 15 rip authentication mode md5 type 25 2 1 16 rip authentication mode simple 26 2 1 17 rip input 27 2 1 18 rip metricin 28 2 1 19 rip me...

Page 490: ...49 3 1 18 display ospf vlink 50 3 1 19 filter policy import 51 3 1 20 import route 52 3 1 21 nssa area 53 3 1 22 ospf authentication mode md5 54 3 1 23 ospf authentication mode simple 55 3 1 24 ospf cost 55 3 1 25 ospf dr priority 56 3 1 26 ospf enable 57 3 1 27 ospf enable area 57 3 1 28 ospf network type 58 3 1 29 ospf peer 59 3 1 30 ospf timer dead 60 3 1 31 ospf timer hello 61 3 1 32 ospf time...

Page 491: ...s 85 4 1 22 display bgp routing table flap information 86 4 1 23 display bgp routing table network 87 4 1 24 display bgp routing table regular expression 88 4 1 25 display bgp summary 88 4 1 26 display ip as path acl 89 4 1 27 display route policy 89 4 1 28 filter policy export 90 4 1 29 filter policy import 91 4 1 30 import route 92 4 1 31 ip as path 93 4 1 32 ip community list 93 4 1 33 network ...

Page 492: ...118 5 1 9 display route policy 119 5 1 10 filter policy export 119 5 1 11 filter policy import 120 5 1 12 if match as path 122 5 1 13 if match community 123 5 1 14 if match cost 123 5 1 15 if match interface 124 5 1 16 if match ip address 125 5 1 17 if match ip next hop 126 5 1 18 if match route type 126 5 1 19 if match tag 127 5 1 20 ip ip prefix 128 5 1 21 route policy 129 Chapter 6 IP Policy Ro...

Page 493: ...Routing Protocol 6 1 10 ip policy route policy 137 5 ...

Page 494: ...routing table is too large and the user only wishes to display the detail of several specified routes According to the information output through this command the user can make sure if the specified routes exist or if its status is correct If the specified routes are those in a natural hop like 10 0 0 0 then the execution of this command will display the detail of all the routes Otherwise only rou...

Page 495: ...achable route priority of the route metric next hop address and finally the output interface 3Com display ip routing table 127 0 0 1 Destination 127 0 0 1 Mask 255 255 255 255 Protocol Direct Preference 0 NextHop 127 0 0 1 Interface 127 0 0 1 LoopBack0 State NInst NoAdv Int Active Retain Gateway Age 29 23 08 Metric 0 0 This command displays all the routing information to a specified destination IP...

Page 496: ...outing table 3Com display ip routing table radix Radix tree for inet 2 inodes 20 routes 12 24 202 102 10 0 4 24 196 100 10 0 32 196 100 10 1 1 8 172 0 0 0 32 172 110 10 1 20 32 172 110 1 10 9 32 172 10 0 87 0 8 127 0 0 0 32 127 0 0 1 1 16 36 7 0 0 2 32 10 110 255 1 9 32 10 11 0 211 1 1 3 display ip routing table static Syntax display ip routing table static View All views 8 ...

Page 497: ...uting table static Static routes for family INET indicates gateway s in use 1 2 3 0 24 pref 60 Int intf Ethernet 0 127 0 0 8 pref 0 NoAdv Int Retain Rej intf 127 0 0 1 This command s output helps users to make sure whether the configuration of the static route is correct The information above shows destination ip address length of mask priority of the route State Parameter and the address of the o...

Page 498: ...ck hole route Routing Tables Generate Default no Active Route Last Active Both Next hop in use Destinations 2 Routes 2 Holddown 0 Delete 0 Hidden 0 Destination 127 0 0 0 Mask 255 0 0 0 Protocol Direct Preference 0 NextHop 127 0 0 1 Interface 127 0 0 1 LoopBack0 State NoAdv Int Active Retain Age 29 27 08 Metric 0 0 Destination 127 0 0 1 Mask 255 255 255 255 Protocol Direct Preference 0 NextHop 127 ...

Page 499: ...y some distance vector routing protocols like RIP to avoid the broadcast of error routes and improve the fast and accurate broadcast of the route unreachable message Usually it broadcasts a certain route regularly during an interval no matter what change has occurred to the route to the same destination currently retrieved For detail please consul the routing protocols The routing table statistics...

Page 500: ...ed along this default route The route management policy can be flexibly used for setting different preferences When multiple routes bound for the same destination are configured and if the same preference is specified then load sharing can be implemented If different preferences are set then route backup can be achieved While configuring a static route you can specify a TX interface or a next hop ...

Page 501: ...Routing Protocol Example Assign the next hop of the default route to 129 102 0 2 3Com ip route static 0 0 0 0 0 0 0 0 129 102 0 2 13 ...

Page 502: ...ero field of RIP 1 packet By default the RIP 1 zero check is enabled According to RFC1058 some fields in the RIP 1 packet must be zeroes and these fields are called zero fields checkzero or undo checkzero can be used to start or cancel the checkzero operation on the RIP 1 packet No processing will be conducted on the received RIP 1 packet whose zero field is not a zero Since a RIP 2 packet does no...

Page 503: ... packets sent debugging switch Description Using the debugging rip command you can enable the RIP packet debugging switch Using the undo debugging rip command you can disable the RIP packet debugging switch The debugging rip command enables you to learn the receiving and sending of RIP configuration packets at the current interfaces Example None 2 1 3 default cost Syntax default cost cost undo def...

Page 504: ... route command is used to import the routes of other protocols if the route cost is not specified the values specified by the default cost command will be used for redistribution For related commands see import route Example Set the default cost for RIP to 3 when a route is imported from the other routing protocols 3Com rip default cost 3 2 1 4 display rip Syntax display rip View All views Paramet...

Page 505: ... view Parameter acl number Defines the ACL number used to filter the route destination address of outgoing routing information to other routers ranging from 1 to 199 prefix list name Prefix list name for filtering the destination address of routing information protocol Name of a protocol used to distribute route information on routing process including bgp direct ospf ospf ase rip static export It...

Page 506: ...ilter policy ip prefix prefix list name gateway prefix list name import undo filter policy ip prifix prefix list name gateway prefix list name import View RIP view Parameter acl number The acl number is the IP ACL number used to filter the route destination address of routing information received from the neighboring router ranging from 1 to 199 prefix list name Prefix list name for filtering the ...

Page 507: ...he routes received by RIP by specifying the access list and prefix list For related commands see acl Example Set route imported through access list 3 3Com rip filter policy 3 import 2 1 7 host route Syntax host route undo host route View RIP view Parameter None Description Using the host route command you can enable receiving the host route Using the undo host route command you can disable this fu...

Page 508: ... can import routes found by other routing protocols for RIP Using the undo import route command you can disable the import route function By default import route is disabled import route is used to import routes of other protocols through certain cost value and route policy RIP regards the imported routes as its own and transmits them by the cost specified The import route command greatly improves...

Page 509: ...uting process is prohibited at all the interfaces by default The network command must be used to enable RIP routing at a certain interface undo network is similar to undo rip work functionally but they are not totally the same They are the same in that the interface of either command no longer receives and transmits RIP routes They are different in that with the undo rip work command the other int...

Page 510: ... Otherwise no routing information exchange can be realized Using the undo peer command you can disable the routing information exchange with the specified router By default there is no neighboring router RIP is a broadcast protocol It exchanges routing information with non broadcasting networks in the unicast mode Normally the peer command is not recommended because the peer does not need to recei...

Page 511: ...Using the undo preference command you can restore the default value Each routing protocol has its own routing preference and its default value is decided by the specific routing policy The routing preference will finally decide which routing algorithm is used to select the best route in the IP routing table You can manually adjust the RIP preference with this command Example Set the RIP routing pr...

Page 512: ...IP system configuration 3Com rip reset 2 1 13 rip Syntax rip undo rip View System view Parameter None Description Using the rip command you can enable the RIP and enter the RIP view Using the undo rip command you can disable the RIP By default the RIP is closed By default RIP is shut down You need to start RIP first Only when entering the RIP view can you configure the parameters relevant to RIP E...

Page 513: ...an cancel the authentication performed on RIP 2 By default the interface does not authenticate packets RIP does not support authentication while RIP 2 supports RIP 2 has two authentication modes plaintext authentication and MD5 authentication RIP 2 mainly consists of simple authentication and MD5 authentication Example Set MD5 authentication at Serial0 and the key string is aaa 3Com Serial0 rip ve...

Page 514: ...le RIP 2 packets can be in the following two formats when MD5 authentication is adopted The earlier raised format is described in RFC1723 which is adopted by Gated Another format fits into RFC2082 standard which is adopted by part of the routers in the industry Quidview series routers support both formats For related commands see rip version Example Set MD5 authentication at Serial0 and the packet...

Page 515: ...rsion 2 3Com Serial0 rip authentication mode simple aaa 2 1 17 rip input Syntax rip input undo rip input View Interface view Parameter None Description Using the rip input command you can allow receiving the RIP packets at the interface Using the undo rip input command you can disable the function reject receiving the RIP packets at the interface By default any RIP packet at the interface can be r...

Page 516: ...g from 0 to 16 By default it is 0 Description Using the rip metricin command you can configure the metric added to the route when RIP packet is received at the interface Using the undo rip metricin command you can restore the default value For related commands see rip metricout Example Set the metric value added to 2 when a RIP packet is received at Serial0 3Com Serial0 rip metricin 2 2 1 19 rip m...

Page 517: ...ip output Syntax rip output undo rip output View Interface view Parameter None Description Using the rip output command you can allow sending the RIP packets at the interface Using the undo rip output command you can disable the function reject sending the RIP packets at the interface By default any RIP packet at the interface is to be sent This command is used in collaboration with rip input and ...

Page 518: ...it horizon command you can disable the split horizon mechanism By default the split horizon mechanism is disabled Normally split horizon is necessary to avoid the appearance of bad routes Only in some special circumstances is it necessary to cancel horizontal split to ensure the execution of correct protocol Before you cancel it you need to make sure if it is necessary Example Shut down split hori...

Page 519: ...The multicast address in RIP 2 is 224 0 0 9 One of the advantages of multicast mode is that the hosts that do not run RIP in this network will not receive the broadcast packets Additionally hosts running RIP 1 will be prevented from receiving and processing the RIP 2 routes with subnet masks When the interface specifies the use of RIP 1 only RIP 1 and RIP 2 broadcast packets will be received In th...

Page 520: ...rks together with rip input rip output and network commands For related commands see network rip input rip output Example Enable RIP work at Serial 0 3Com Serial0 undo rip work 2 1 24 summary Syntax summary undo summary View RIP view Parameter None Description Using the summary command you can enable the RIP 2 automatic route aggregation Using the undo summary command you can disable the RIP 2 aut...

Page 521: ...her network segments it will not only largely decrease the occupation of network resources but also the size of the routing table For related commands see rip version Example Set the RIP Version 2 on Serial 0 and disable the route summary function 3Com Serial0 rip version 2 3Com Serial0 quit 3Com rip 3Com rip undo summary 33 ...

Page 522: ...advertise The abstract information to this network segment route will be broadcast notadvertise The abstract information to this network segment route will not be broadcast Description Using the abr summary area command you can configure route summarization at an area boundary Using the undo abr summary area command you can cancel route summarization at the area boundary By default disable the fun...

Page 523: ...F packets debugging switch ack Enable the OSPF Link State Acknowledgment debugging switch dd Enable the OSPF Database Description debugging switch hello Enable the OSPF hello packet debugging switch request Enable the OSPF Link State Request debugging switch update Enable the OSPF Link State Update debugging switch Description Using the debugging ospf command you can enable the packet debugging sw...

Page 524: ...butes the routes discovered by other protocols as the external routing information it requires specifying some additional parameters including the default cost and the default tag for the route For related commands see default import route tag default import route type Example Set the default cost for OSPF to import external routes to be 10 3Com ospf default import route cost 10 3 1 4 default impo...

Page 525: ...e 2 seconds 3Com ospf default import route interval 2 3 1 5 default import route limit Syntax default import route limit limit value undo default import route limit View OSPF view Parameter limit value Upper limit of importing external routes ranging from 1 to 65535 By default it is 150 Description Using the default import route limit command you can configure default value of the maximum number o...

Page 526: ...ault tag for importing external routes Using the undo default import route tag command you can restore the default value When OSPF redistributes the routes discovered by other protocols as the external routing information it requires the specification of some additional parameters including default route cost and default tag The route tag can be used to identify the information relevant with routi...

Page 527: ...ult import route type command you can restore the default type Default type for importing external routes is type 2 OSPF specifies two cost selection methods for two types of external routing information You can select the default cost type via the commands described in this section For related commands see default import route cost default import route tag Example Specify the default external rou...

Page 528: ... Intra 10 External 150 Default ASE parameters Metric 1 Tag 0 0 0 1 Type 2 SPF computation count 73 Area 0 0 0 0 Authtype none Flags SPF scheduled Interface 10 10 0 2 Serial0 10 10 0 1 Cost 10 State P To P Type PointToPoint Priority 1 DoNotAge Lsa Allowed Timers Hello 10 Dead 40 Poll 0 Retransmit 5 AS Border Routes Area Border Routes Area 0 0 0 1 Authtype none Flags SPF scheduled Interface 10 110 1...

Page 529: ... OSPF external routing information Example Display the external routing information about OSPF 3Com display ospf ase AS External Data Base Destination AdvRouter Forward Addr Age Len Sequence T Metric 210 61 1 0 3 3 3 3 0 0 0 0 76 36 80000001 2 1 3 1 10 display ospf cumulative Syntax display ospf cumulative View All views Parameter None Description Using the display ospf cumulative command you can ...

Page 530: ... 8 9 Link State Req 2 3 Link State Update 11 17 Link State Ack 14 8 ASE 1 checksum sum 4253 LSAs originated 21 received 10 Router 15 SumNet 5 SumASB 1 Area 0 0 0 0 Neighbors 1 Interfaces 1 Spf 13 Checksum sum 2B186 DB rtr 2 net 0 sumasb 1 sumnet 2 Area 0 0 0 1 Neighbors 1 Interfaces 1 Spf 3 Checksum sum 3962E DB rtr 2 net 1 sumasb 0 sumnet 3 Routing Table Intra Area 1 Inter Area 4 ASE 1 3 1 11 dis...

Page 531: ...er Age Len Sequence Metric Where Stub 10 10 0 0 0 0 0 1 388 24 0 0 SpfTree Rtr 0 0 0 1 0 0 0 1 362 48 8000002f 0 SpfTree Rtr 0 0 0 2 0 0 0 2 389 48 8000002e 0 SpfTree SNet 10 110 0 0 0 0 0 1 193 28 80000003 10 Inter List Area 0 0 0 1 TypeLinkStateID AdvRouter Age Len Sequence Metric Where Stub 10 110 0 0 0 0 0 1 2074 24 0 0 SpfTree Rtr 0 0 0 1 0 0 0 1 363 36 80000003 0 SpfTree SNet 10 10 0 0 0 0 0...

Page 532: ...ket too small 0 OSPF packet size ip length 0 OSPF transmit error 0 OSPF interface down 0 OSPF unknown peer 0 HELLO netmask mismatch 0 HELLO hello timer mismatch 0 HELLO dead timer mismatch 0 HELLO extern option mismatch 0 HELLO router id confusion 0 HELLO virtual peer unknown 0 HELLO NBMA peer unknown 0 DD peer state low 0 DD router id confusion 0 DD extern option mismatch 0 DD unknown LSA type 0 ...

Page 533: ...n about OSPF state 3Com display ospf interface Area 0 0 0 0 IP Address Type State Cost Pri DR BDR 192 1 1 1 PtoP P To P 1562 1 None None Area 0 0 0 1 IP Address Type State Cost Pri DR BDR 16 1 1 2 Bcast BackupDR 10 1 16 1 1 1 16 1 1 2 3Com display ospf interface serial 1 Interface 202 38 160 1 Ethernet0 Overhead 1 Status DR Type Broadcast Priority 1 DR 202 38 160 1 Permitting DoNotAge lsa Authenti...

Page 534: ...As information generated by specified router self_originate Display LSAs information generated by self ls_id Display LSAs information generated by specified link state ID area area id Display LSAs information generated by specified area routers Description Using the display ospf lsa command you can view LSAs information related to OSPF Information output via this command may help the user with OSP...

Page 535: ...Ls age 1335 Len 60 Seq 80000006 Cksum 0xc233 Options DC Link count 3 link id 10 110 0 0 data 255 255 192 0 type StubNet metric 10 link id 2 2 2 2 data 193 1 1 1 type Router metric 1562 link id 193 1 1 0 data 255 255 255 0 type StubNet metric 1562 3 1 15 display ospf nexthop Syntax display ospf nexthop View All views Parameter None 47 ...

Page 536: ...1 1 Peer 9 16 1 1 2 Ethernet0 16 1 1 2 Direct 1 16 1 1 2 Ethernet0 192 1 1 1 Local 3 193 1 1 1 Serial1 193 1 1 1 Direct 6 193 1 1 1 Serial1 193 1 1 1 Peer 1 193 1 1 1 Serial1 3 1 16 display ospf peer Syntax display ospf peer View All views Parameter None Description Using the display ospf peer command you can view the OSPF peer information Information output via this command shows the condition of...

Page 537: ...ws Parameter None Description Using the display ospf routing command you can view the routing information related to OSPF Information output via this command helps the user with OSPF fault diagnosis Example Display the routing information related to OSPF 3Com display ospf routing AS Border Routes Router Cost AdvRouter NextHop s Area 0 0 0 1 3 3 3 3 10 3 3 3 3 16 1 1 1 Total AS Border routes 1 Area...

Page 538: ...1 1 1 1 16 0 0 0 0 0 0 1 10 Net 16 1 1 1 3 3 3 3 202 112 10 0 0 0 0 1 1572 Stub 16 1 1 1 3 3 3 3 ASEs Destination Cost E Tag NextHop AdvRotuer 210 61 1 0 10 1 1 16 1 1 1 3 3 3 3 Total nets 5 Intra Area 5 Inter Area 0 ASE 1 3 1 18 display ospf vlink Syntax display ospf vlink View All views Parameter None Description Using the display ospf vlink command you can view virtual links information related...

Page 539: ...r NSSA area 3 1 19 filter policy import Syntax filter policy acl number import undo filter policy acl number import View OSPF view Parameter acl number Serial number of the ACL For detailed description refer to the filter policy import command in chapter 5 IP Routing Policy Configuration Commands Description Using the filter policy import command you can configure filtering for received routing in...

Page 540: ...o the rule defined in access list 2 3Com acl 2 3Com acl 2 rule permit source 20 0 0 0 0 255 255 255 3Com acl 2 rule deny any 3Com ospf filter policy 2 import 3 1 20 import route Syntax import route protocol cost cost type 1 2 tag tag value route policy policy name undo import route protocol View OSPF view Parameter protocol Source protocol where routes are being imported Now they include direct st...

Page 541: ...iew Parameter area id Needed to be configured as the identification of NSSA area default route advertise Type 7 LSA default route generated from NSSA area no import route Not import Type 7 LSA exterior route to NSSA area No summary Not transmit summary LSA to NSSA area Description Using the nssa area command you can configure an area as NSSA area Using the undo nssa area command you can cancel the...

Page 542: ...thentication ranging from 1 to 255 Description Using the ospf authentication mode md5 command you can configure the MD5 authentication key of an OSPF packet and key id Using the undo ospf authentication mode command you can cancel the packet authentication performed on the interface By default no authentication The authentication value will be written to the OSPF packet It is necessary to guarante...

Page 543: ...he OSPF program authentication the routing information sent by this interface to the neighboring router includes authentication information Using the undo ospf authentication mode command you can cancel the authentication that has been set By default no authentication is set The authentication value will be written to the OSPF packet It is necessary to guarantee parameter consistency between neigh...

Page 544: ... 2 3 1 25 ospf dr priority Syntax ospf dr priority value undo ospf dr priority View Interface view Parameter value priority of the interface which determines the qualifications in voting Designated Router DR ranging from 0 to 255 By default it is 0 Description Using the ospf dr priority command you can configure the priority of an interface in DR election Using the undo ospf dr priority command yo...

Page 545: ...one Description Using the ospf enable command you can enable OSPF Using the undo ospf enable command you can disable OSPF By default no OSPF is defined If OSPF is running already use ospf command to enter the OSPF view For related commands see ospf enable area Example Start OSPF 3Com ospf enable 3 1 27 ospf enable area Syntax ospf enable area area_id undo ospf enable area area_id View Interface vi...

Page 546: ...d to belong to any area To run the OSPF on certain interface the interface must be configured to belong to certain area To keep normal running of the OSPF all router interfaces of an area should be kept consistent in area id The ABR is engaged in transforming routing information among different areas Example Allow OSPF running at Serial 0 and specify it as belonging to area 0 3Com Serial0 ospf ena...

Page 547: ...ress IP address for neighboring router at NBMA point to point and point to multipoint interfaces in the dotted decimal format eligible indicates the peer process the priority to select DR Description Using the ospf peer command you can configure the IP address of the neighboring router Using the undo ospf peer command is to cancel the IP address setting for the neighboring router By default no IP ...

Page 548: ...twork interface Description Using the ospf timer dead command you can configure the failure time of the neighboring router Using the undo ospf timer dead command you can restore the default failure time of the neighboring router It is necessary to guarantee parameter consistency between the neighboring routers at this interface and this dead interval should be at least 4 times the hello interval T...

Page 549: ...s hello packet to peer or peers Using the undo ospf timer hello command you can restore the default value By default the Hello packet is sent from the point to point network interface every 10 seconds and from the point to multipoint and the NBMA network interfaces every 30 seconds The interval at which the Hello packet is sent will be written to and be transferred along with the Hello packet The ...

Page 550: ...do ospf timer poll command you can restore the default poll interval On the NBMA and point to multipoint networks the Hello packet is sent at poll interval when the neighbor fails Users may configure the poll interval to specify the sending period of the Hello packet before the neighbor relation between the interface and the adjacent router is established The poll interval should be set no less th...

Page 551: ...he undo ospf timer retransmit command is to restore the default time of timer If a router transmits an LSA it need receive back the acknowledgment from the neighbors If it fails to receive this ACK message within this retransmit interval it will retransmit this LSA Note that the LSA retransmission interval of neighboring routers should be not too small to prevent unnecessary retransmission Example...

Page 552: ...o preference ase View OSPF view Parameter value Preference value ranging from 1 to 255 The default OSPF preference is 10 the default preference for imported AS external route is 150 ase The preference for the imported AS external route Description Using the preference command you can configure OSPF route preference based on route type Using the undo preference command you can restore the default v...

Page 553: ...dress of the router is used as the router ID The router ID is a 32bit unsigned integer that uniquely identifies the router within the AS If none of the interfaces of the router is configured with an IP address you must configure the router ID in OSPF view or the OSPF cannot run Note that the modification to the router ID comes into effective after reboot of the router The router ID is necessary an...

Page 554: ...rea or Totally Stubby area By default the system configures no stub area or Totally Stubby area Example Specify area 2 as the stub area with the cost as 2 3Com ospf stub cost 2 area 2 Specify area 1 as totally stubby area with the cost as 1 3Com ospf stub cost 1 area 1 no summary 3 1 38 vlink Syntax vlink peer id router id transit area area id hello timer seconds retransmit timer seconds transit d...

Page 555: ... Description Using the vlink command you can create and configure an OSPF virtual link Using the undo vlink command you can cancel an existing OSPF virtual link By default no virtual link is defined and no router ID is defined Note that if an AS is divided into more than one area then one of them must be a backbone area the backbone area and the other areas must be connected directly or logically ...

Page 556: ...es so as to form a out of order autonomous system set detail suppressed Only advertises aggregate routes suppress policy policy name Specify the name of the routing policy which filters routes origin policy policy name Name of routing policy used to select the routes to be aggregated attribute policy policy name Name of the routing policy that specifies the aggregate route attributes Description U...

Page 557: ...sing the detail suppressed keyword will not create a summary route but suppress the advertising of all the specific routes To suppress some routes only be careful with the use of the peer filter policy command When using the suppress policy keyword to configure aggregate route you can point out some specific routes through the if match clause and delete other specific routes Using the origin polic...

Page 558: ...Using the compare different as med command you can set comparison of MED values from different AS neighboring routes when determining the best route Using the undo compare different as med command you can cancel the setting of comparison of MED values from different AS neighboring routes when determining the best route By default MED values from different AS neighboring routes are not compared whe...

Page 559: ...ing the confederation id command you can configure a BGP AS confederation and designate an ID as the AS number of the confederation Using the undo confederation id command you can cancel the confederation identifier By default the confederation identifier is not configured Each sub system uses different IGPs But in the aspect of the outside the confederation is an independent AS For related comman...

Page 560: ...series routers use RFC1965 standard AS confederation All the routes in the confederation must be configured as using non RFC1965 standard AS confederation for interconnection of all the routes which are of non RFC1965 standard AS confederation For related commands see confederation id confederation peer as Example There is the router using non RFC1965 standard AS confederation in the AS100 consist...

Page 561: ... confederation and each AS uses fully meshed network The command specifies the confederation ID of the AS If the confederation ID is not configured this configuration item is invalid For related commands see confederation nonstandard compatible confederation id Example Configure the sub autonomous systems belonging to the confederation as 2006 2007 and 2008 3Com bgp confederation peer as 2006 2007...

Page 562: ...n in effect or modify the BGP route attenuation parameter Using the undo dampening command you can cancel the configured route attenuation If no parameters are configured in this command then BGP route dampening is valid and the parameters take default values The parameters are mutually dependent Once any parameter is configured all other parameters should also be specified For related commands se...

Page 563: ...ription Using the debugging bgp command you can enable the bgp packet debugging switch Using the undo debugging bgp command you can disable the bgp packet debugging switch Example None 4 1 9 default local preference Syntax default local preference value undo default local preference View BGP view Parameter value Local preference value ranging from 0 to 4294967295 By default it is 100 Description U...

Page 564: ...ormation Syntax default information undo default information View BGP view Parameter None Description Using the default information command you can originate network 0 0 0 0 into the BGP Using the undo default information command you can disable this function By default this function is disabled The default information command works together with the import route command for importing certain defa...

Page 565: ...with the same destination address and different next hops through different external routers it will select among them according to the MED values of these different routes As long as other conditions are the same for these routes the route with the smaller MED value will be selected as the external route of the AS Example Router A and Router B belong to AS100 and Router C belongs to AS200 Router ...

Page 566: ... name View All views Parameter group name Peer group name Description Using the display bgp group command you can view information on BGP peer groups Example Display the status of the peer 3Com display bgp group my_peer group my_peer no as number still configuration within the group no export policy route policy no export policy distribute list no export policy filter list route policy specified i...

Page 567: ...p peer 10 110 25 20 Peer 120 56 0 2 1074 Local 120 56 0 1 179 Type Internal State Established Flags Last State OpenConfirm Last Event RecvKeepAlive Last Error None Options NoGenDefault Peer Version 4 Peer ID 102 1 18 1 Local ID 16 10 10 1 Active Holdtime 180 Group Bit 0 Send state in sync Last traffic seconds Received 8 Sent 9 Checked 9 Input messages Total 1429 Updates 16 Octets 27647 Output mess...

Page 568: ...or 14 1 0 0 16 Nexthop 10 110 156 30 Paths 600 700 i metric 1000 valid external best Community 100 1 Table 4 1 Display bgp routing table command Field Description Nexthop IP address of the next hop when transferring packets Paths AS path to destination network This field may be only have one record in an AS Metric Metric of AS Community Community name of an address 4 1 16 display bgp routing table...

Page 569: ... 600 700 i 13 5 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 700 I Table 4 2 Display bgp routing table acl command Domain name Description Destination mask Destination address and network mask Pref Local priority Default value is 100 Nexthop IP address of the next hop when transferring data packet to destination network Interface Transferring interface Metric Metric value of AS Path AS path to desti...

Page 570: ...18 display bgp routing table comm list Syntax display bgp routing table comm list community list number exact match View All views Parameter community list number Specify the ID of the communist list ranging from 1 to 199 exact match Display the exactly matched routes Description Using the display bgp routing table comm list command you can view the routing information matching the specified BGP c...

Page 571: ...es Destination Mask Pref Nexthop Interface Metric Path 3 1 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 700 i 13 2 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 700 i 13 3 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 700 i 13 4 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 700 i 13 5 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 700 i 3Com bgp display bgp routing table community no export Routing Tables Destin...

Page 572: ...ion Using the display bgp routing table dampened command you can view the routes with BGP dampening Example View BGP dampened information 3Com bgp display bgp routing table dampened Network From Reuse Path d 14 1 0 0 10 110 156 30 41 30 600 700 i d 14 2 0 0 10 110 156 30 41 30 600 700 i d 14 3 0 0 10 110 156 30 41 30 600 700 i d 14 4 0 0 10 110 156 30 41 30 600 700 i d 14 5 0 0 10 110 156 30 41 30...

Page 573: ...ns are different Example Display the routes with different AS origins 3Com display bgp routing table different origin as Destination Mask Pref Nexthop Interface Metric Path 14 2 0 0 16 170 10 110 25 20 Ethernet0 0 0 700 i 14 2 0 0 16 170 10 110 25 30 Ethernet0 0 0 600 i 14 3 0 0 16 170 10 110 25 20 Ethernet0 0 0 700 i 14 3 0 0 16 170 10 110 25 30 Ethernet0 0 0 600 i 14 4 0 0 16 170 10 110 25 20 Et...

Page 574: ...pression acl acl number network address mask longer match View All views Parameter regular expression as regular expression Route displays route flapping information matching AS route regular expression acl acl number Specifies matched AS path access list ranging from 1 to 200 network address Display the flapping information at this network mask Network mask longer match Display the flapping route...

Page 575: ... obstructed From Distribute IP address of the path s peer Reuse Time that the route can be reused hh mm ss Path AS path suppressed 4 1 23 display bgp routing table network Syntax display bgp routing table network View All views Parameter None Description Using the display bgp routing table network command you can view routing information advertised through BGP Example Display routing information a...

Page 576: ...ertain regular expression Example Display routes that the AS path only includes 600 regular expression is beginning with 600 and ending with 600 3Com display bgp routing table regular expression 600 Destination Mask Pref Nexthop Interface Metric 14 1 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 i 14 2 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 i 14 3 0 0 16 170 10 110 156 30 Ethernet0 0 0 600 i 14 4...

Page 577: ...5 0 23 32 29 Established 4 1 26 display ip as path acl Syntax display ip as path acl aspath list number View All views Parameter aspath list number Filter list number for an AS regular expression Description Using the display ip as path acl command you can view the AS path information Example Display the AS path information 3Com bgp display ip as path acl 1 No Mode Expression 1 permit 600 4 1 27 d...

Page 578: ...filter policy acl number export filter policy ip prefix prefix list name gateway prefix list name export undo filter policy ip prefix prefix list name gateway prefix list name export View BGP view Parameter acl number Configure the access list number of the destination address matching routing information prefix list name Address prefix list name protocol Specify the protocol exporting routing inf...

Page 579: ...cy gateway prefix list name import undo filter policy gateway prefix list name import filter policy acl number import undo filter policy acl number import filter policy ip prefix prefix list name gateway prefix list name import undo filter policy ip prefix prefix list name gateway prefix list name import View BGP view Parameter acl number Configure the access list number of the destination address...

Page 580: ...ult the received routing information is not filtered This command can be use to filter the routes received by the BGP deciding whether to add the routes to the BGP routing table Example Filter the routing information received by the BGP by access list 1 3Com bgp filter policy 1 import 4 1 30 import route Syntax import route protocol med med route policy policy name undo import route protocol View ...

Page 581: ...ging from 1 to 199 as regular expression AS regular expression Description Using the ip as path command you can configure an AS regular expression Using the undo ip as path command you can cancel a defined regular expression The configured AS regular expression can be used in the BGP policy For related commands see peer acl display bgp routing table acl Example Configure an AS expression 3Com ip a...

Page 582: ...o export subconfed Do not send matching routes to the outside no advertise Do not advertise matching routes to any peer no export Advertise routes to other autonomous sub systems rather than the system outside of the autonomous system as regular expression Community attributes expressed in regular expression mode Description Using the ip community list command you can configure BGP community list ...

Page 583: ... Using the network command you can configure the network sent through BGP Using the undo network command you can cancel the existing configuration By default there is no networks When local router receives a local network meeting the configuration it will advertise the route Example Configure the network 255 255 0 0 sent by BGP 3Com bgp network 10 0 0 1 mask 255 255 0 0 4 1 34 peer acl Syntax peer...

Page 584: ...unction By default no acl is used Example Set the peer group test to use ACL 3 as the filtering list for advertising routing information 3Com bgp peer test as number 100 3Com bgp peer test acl 3 export 4 1 35 peer advertise community Syntax peer group name peer address advertise community undo peer group name peer address advertise community View BGP view Parameter group name Group name peer addre...

Page 585: ...umber Syntax peer group name peer address as number as number undo peer group name peer address as number as number View BGP view Parameter group name Group name peer address Peer s IP address as number AS number of the peer group peer Description Using the peer as number command you can configure the AS number of peer group peer Using the undo peer as number command you can cancel the AS number o...

Page 586: ...to send to the peer Using the undo peer default route advertise command you can default the route of sending the next hop to the peer without having the default route in the route table By default the peer does not receive any default route For related commands see default information Example Allow default route to send to the peer 3Com bgp peer test as number 100 3Com bgp peer test default route ...

Page 587: ...value By default it only allows direct connection peer Example Allow setting up a connection to the EBGP peer group test which is not located at the same network 3Com bgp peer test ebgp max hop 4 1 39 peer filter policy Syntax peer group name peer address filter policy acl number import export undo peer group name peer address filter policy acl number import export View BGP view Parameter group na...

Page 588: ...do peer peer address group group name View BGP view Parameter group name Group name peer address Peer s IP address Description Using the peer group command you can configure a peer group Using the undo peer group command you can cancel the peer group Using the peer group command you can add the peer to the peer group Using the undo peer group command you can cancel a specified peer in a peer group...

Page 589: ...ed to this group If an AS is configured for the peer then you must not configure AS numbers if configured different from that for the peer group for all the peers added to this group For the members in a peer group you must not configure route update policies different from that for the peer group but can configure different route import policies Note configure the peer group under the guidance of...

Page 590: ...t View BGP view Parameter group name group name peer address peer s IP address Description Using the peer reflect client command you can configure the peer as a route reflector client Using the undo peer reflect client command you can cancel the peer as the route reflector client Generally speaking it is not necessary to configure this command for the peer group because the IBGP peers are in its d...

Page 591: ...cy Description Using the peer route policy command you can configure the route policy for the import route and export route Using the undo peer route policy command you can cancel the route policy setting for the import and the export routes By default no routing policy is applied to a peer Example Apply route policy test policy to the received route 3Com bgp peer test route policy test policy imp...

Page 592: ...update interval Using the undo peer route update interval you can restore the default minimum BGP route update interval Example Configure the minimum time interval of BGP routing update as 10 seconds 3Com bgp peer test as number 100 3Com bgp peer test route update interval 10 4 1 45 peer timers Syntax peer group name peer address timers keepalive interval holdtime interval undo peer group name pee...

Page 593: ...Com bgp peer test timers 60 180 4 1 46 peer version Syntax peer group name peer address version version number undo peer group name peer address version version number View BGP view Parameter group name Group name peer address Peer s IP address version number BGP version number ranging from 2 to 4 By default it is 4 Description Using the peer version command you can configure the BGP version for t...

Page 594: ...sing the undo reflect between clients command you can disable route reflection function between the clients within the reflection group By default route reflection function is enabled This command must be configured to the router used as the route reflector For related commands see reflect cluster id peer reflect client Example Disable reflection between clients 3Com bgp undo reflect between clien...

Page 595: ...ill acts as the reflector ID of the group If there is more than one router reflector in a cluster all the router reflectors should be configured with the same cluster ID For related commands see reflect between clients peer reflect client Example 50 is used as group ID to identify this cluster 3Com bgp reflect cluster id 50 3Com bgp peer 172 38 160 10 reflect client 4 1 49 reset bgp Syntax reset b...

Page 596: ... and release the suppression on the suppressed routes For related commands see dampening display bgp routing table dampened Example Delete the route attenuation information of the route going to network 20 1 0 0 and release suppression for the suppressed route 3Com reset bgp dampening 20 1 0 0 255 255 0 0 4 1 51 reset bgp flap information Syntax reset bgp ip address flap information regular expres...

Page 597: ... Description Using the reset bgp flap information command you can reset the information of the flapping route Example Clear about all the flapping routes information passing access list 10 3Com reset bgp flap information acl 10 4 1 52 reset bgp group Syntax reset bgp group group name View All views Parameter group name name of the peer group Description Using the reset bgp group command you can re...

Page 598: ...on Using the synchronization command you can configure synchronization of IBGP and IGP Using the undo synchronization command you can cancel synchronization of IBGP and IGP By default synchronization is set Example None 4 1 54 table policy Syntax table policy policy name undo table policy View BGP view Parameter policy name Routing policy name 110 ...

Page 599: ...als is 180 seconds Description Using the timers command you can configure the Keepalive timer and Holdtime timer for BGP Using the undo timers command you can restore the default values of timers When a router establishes BGP connection successfully with peer routers it will send Keepalive messages to peers in a time interval set by the keepalive interval marking if the connection can still be kep...

Page 600: ...be marked invalid and disconnect the TCP connection The router can negotiate with its peer and set the holdtime to be the shorter one Example Set the Keepalive and Holdtime timers of the BGP to 180 seconds and 540 seconds respectively 3Com bgp timers 180 540 112 ...

Page 601: ...ing the apply as path command you can set the AS attributes of the advertisement route matching the if match sub statement and attach the AS number to the beginning of the AS path Using the undo apply as path command you can cancel the AS number in front of the AS path By default AS number is not configured If the conditions for matching in the routing policy are matched then change the AS attribu...

Page 602: ...an set the community attributes of the the if match sub statement of the advertisement routes matching Using the undo apply community command you can cancel the set BGP community attributes By default not to set the BGP community attributes If the match conditions in the routing policy are matched then set the BGP attribute For related commands see ip community list if match community route policy...

Page 603: ...he undo apply cost command you can cancel the cost attributes of the original route By default no cost is defined If the match conditions in the Route policy are matched then change the cost attribute of the send route Example Set the cost value for the original route 3Com route policy apply cost 10 5 1 4 apply ip next hop Syntax apply ip next hop ip address undo apply ip next hop View Routing pol...

Page 604: ...matches the rule defined by if match clause 3Com route policy apply ip next hop 10 0 0 1 5 1 5 apply local preference Syntax apply local preference value undo apply local preference View Routing policy view Parameter value New local preference ranging from 0 to 4294967295 Description Using the apply local preference command you can set the local preference value of source route Using the undo appl...

Page 605: ...e of the original route in the Route policy Using the undo apply origin command you can cancel the configuration of setting the origin attribute of the original route in the Route policy By default no origin is set If the match conditions in the Route policy are matched then change the Origin attribute in the send route Example Set the origin attribute of the original route in the Route policy 3Co...

Page 606: ...y apply ip next hop apply local preference apply cost apply origin Example Define an apply clause when it is used for routing information attribute setting set the tag value for the routing information to 100 3Com route policy apply tag 100 5 1 8 display ip ip prefix Syntax display ip ip prefix prefix list name View All views Parameter prefix list name Prefix list name Description Using the displa...

Page 607: ...f no policy name is specified all of the configured routing policies are displayed For related commands see route policy Example Display information of the routing policy whose name is map1 3Com display route policy map1 route policy map1 permit 10 apply aspath prepend 1 10 apply metric 10 apply tag 10000 matched 0 denied 0 5 1 10 filter policy export Syntax filter policy acl number ip prefix pref...

Page 608: ...cy rule is defined to filter the disqualified routing information during distribution of routes through the use of an ACL or address prefix list You can specify protocol so as to filter distributed routing information of protocol Under certain circumstances it may require to advise matched routing information only to prevent the neighboring router from learning certain routes In that context you m...

Page 609: ... you can cancel the filter Using the filter policy ip prefixt import command you can filter the global routing information received Using undo filter policy ip prefix import command you can cancel filtering the global routing information received Using the undo filter policy ip prefix import command you can or cancel the filtering Using the filter policy ip prefix gateway import command you can fi...

Page 610: ...filter rule whereby only routing information filtered through the prefix list 1 will be accepted by RIP 3Com rip filter policy ip prefix p1 import 5 1 12 if match as path Syntax if match as path aspath list number undo if match as path View Routing policy view Parameter aspath list number Autonomous system path access list ranging from 1 to 199 Description Using the if match as path command you ca...

Page 611: ...ify to conduct full match when a community more or less is considered as mismatching Description Using the ip match community command you can configure the community list number for matching in the routing policy Using the undo if match community command you can cancel the community list number By default no community list is defined For related commands see route policy ip community list Example ...

Page 612: ... matching cost value is configured Example Define the cost of the matched route in the route policy 3Com route policy test permit 10 3Com route policy if match cost 8 5 1 15 if match interface Syntax if match interface type number undo if match interface type number View Routing policy view Parameter type Interface type number Interface number Description Using the if match interface command you c...

Page 613: ...er ip prefix prefix list name undo if match ip address ip prefix View Routing policy view Parameter acl number Configured ACL number prefix list name Address prefix list name Description Using the if match ip address command you can configure the destination IP address range of the routes to be matched in Route policy Using the undo if match ip address command you can cancel the route destination ...

Page 614: ...u can configure the next hop to be matched in Route policy Using the undo if match ip next hop command you can cancel the next hop to be matched By default no matching next hop is defined Example Configure the rule of the next hop for the matched route in the route policy 3Com route policy test permit 10 3Com route policy if match ip next hop 3 5 1 18 if match route type Syntax if match route type...

Page 615: ...commands see if match interface if match ip address if match ip next hop if match cost if match tag route policy apply ip next hop apply local preference apply cost apply origin apply tag Example Define an if match clause permitting external OSPF routing information to pass this clause 3Com route policy if match route type external 5 1 19 if match tag Syntax if match tag tag value undo if match ta...

Page 616: ...Parameter prefix list name Specify the name of address prefix list which uniquely identifies an address prefix list index index number Specify the index number of an item in address prefix list The item with smaller index number is tested first If the index number is not specified the maximum index number in the address prefix list plus 10 will be adopted permit Permit those that match conditions ...

Page 617: ...that is an IP address will be permitted by the address prefix list as long as it is permitted by any of the items If an IP address is denied by all filtering items it will be denied by the address prefix list The address prefix range includes two parts that are decided by len and greater equal ge value less equal le value respectively If both parts are specified the IP must match both ranges in or...

Page 618: ...everal nodes each of which contains some if match and apply sub statements The if match sub statements define matching rules of the node and the apply sub statements define the actions to be performed on the matched routes The relations among various if match sub statements of a node are AND that is the route must match all the if match sub statements of the node The relations among various route ...

Page 619: ...lt interface command you can set default output interface of packets Using the undo apply default interface command you can cancel the preset default output interface of packets The apply default interface command is used to set default output interface for matched IP packets This command is used to set default output interface for the matched IP packets For related commands see apply ip precedenc...

Page 620: ...he undo apply interface command you can cancel the preset packet output interface This command is used to set output interface for the matched IP packets For related commands see apply ip precedence apply ip next hop apply default interface apply ip default next hop Example 3Com route policy apply interface serial 0 6 1 3 apply ip default next hop Syntax apply ip default next hop ip address undo a...

Page 621: ...hop Example 3Com route policy apply ip default next hop 1 1 1 1 6 1 4 apply ip next hop Syntax apply ip next hop ip address undo apply ip next hop View Routing policy view Parameter ip address IP address of the next hop Description Using the apply interface command you can set the next hop of packets Using the undo apply interface command you can cancel the preset next hop of packets This command ...

Page 622: ...et 6 network 7 Description Using the apply ip precedence command you can set the precedence for IP packets Using the undo apply ip precedence command you can cancel the preset packet precedence By default precedence is not configured for IP packets This command sets the apply sub statement of the policy that is sets precedence for the matched IP packets For related commands see apply interface app...

Page 623: ...and you can enable the ip policy routing debugging switch Using the undo debugging ip policy routing command you can disable the ip policy routing debugging switch Example None 6 1 7 if match ip address Syntax if match ip address acl number ip prefix prefix list name undo if match ip address ip prefix View Routing policy view Parameter acl number ACL number prefix list name Address prefix list nam...

Page 624: ...f match ip address 10 6 1 8 if match length Syntax if match length min len max len undo if match length View Routing policy view Parameter min len Minimum length of packets ranging from 0 to 65535 max len Maximum length of packets ranging from 0 to 65535 Description Using the if match length command you can configure matching conditions for the IP packet length Using the undo if match length comma...

Page 625: ... route policy you can cancel a local policy routing By default local policy routing is disabled This ip local policy route policy command is used to enable or disable local policy routing for the received packets It is recommended that users without special needs should not configure local policy routing For related commands see ip policy route policy Example Enable local policy routing on the int...

Page 626: ...y route policy command you can enable policy routing on the interface Using the undo ip policy route policy command you can cancel an existent policy routing from an interface By default the interface policy routing is prohibited For related commands see route policy Example Adopt policy routing AAA on the interface Ethernet 0 3Com Ethernet0 ip policy route policy AAA 138 ...

Page 627: ...ion Commands 10 2 1 PIM DM SM Protocol Configuration Commands 10 2 1 1 c bsr 10 2 1 2 c rp 11 2 1 3 debugging multicast forwarding 12 2 1 4 debugging multicast kernel routing 12 2 1 5 debugging pim common 13 2 1 6 debugging pim dm 13 2 1 7 debugging pim sm 14 2 1 8 display multicast forwarding table 15 2 1 9 display multicast routing table 16 2 1 10 display pim bsr info 17 2 1 11 display pim inter...

Page 628: ...ctions packet Enable IGMP packet debugging functions timer Enable IGMP timer debugging functions Description Using the debugging pim dm command you can enable IGMP debug packet switch Using the undo debugging pim dm command you can disable IGMP debug packet switch By default the system turns off IGMP debug packet switch Example None 1 1 2 display igmp group Syntax display igmp group group address ...

Page 629: ...rs Displayed with the Command display igmp group Domain Description Group address Multicast group address Uptime Time since the multicast group was found H M S Expires Record the predefined time to be deleted from IGMP group table H M S Last Reporter The last host which is reports as the multicast group membership 1 1 3 display igmp interface Syntax display igmp interface type number View All view...

Page 630: ...ing from 1 to 99 It defines a group range and only the hosts within this range can access the multicast group version Service version of the specified group which can be either version 1 or version 2 Description Using the igmp group policy command you can control the access of the router receiving multicast groups Using the undo igmp group policy command you can cancel the access of the router rec...

Page 631: ...he router interface as a member of multicast group Using the undo igmp host join command you can cancel the router interface from the group members If the equipment is configured as a group member and supports the protocol being sent to the group it has the response capability such as ping command Such equipment responds to the request packet answering information sent to IGMP where it locates For...

Page 632: ... 9 seconds 3Com Ethernet0 igmp max response time 9 1 1 7 igmp timer querier present Syntax igmp timer querier present seconds undo igmp timer querier present View Interface view Parameter seconds Timeout time of the subnet Querier The value shall be two times of the query interval at which IGMP query packet is sent ranging from 60 to 300 seconds The default value is 250 Description Using the igmp ...

Page 633: ...rier as 300 seconds 3Com Ethernet0 igmp timer querier present 300 1 1 8 igmp timer query Syntax igmp timer query seconds undo igmp timer query View Interface view Parameter seconds Query interval at which IGMP query packet is sent ranging from 1 to 65535 seconds The default value is 125 Description Using the igmp timer query command you can configure the query interval that the router sends IGMP p...

Page 634: ...un by router interface is Version 2 All the systems in the same segment shall support the same IGMP version because the routers are not able to check the version number of IGMP currently running on the interface Example It is specified to run IGMP version 1 on the Ethernet interface 3Com Ethernet0 igmp version 1 1 1 10 multicast routing enable Syntax multicast routing enable undo multicast routing...

Page 635: ...t Protocol By default the system disables multicast routing Only when the multicast route is enabled the router can receive the multicast packet Example Enable multicast routing 3Com multicast routing enable 9 ...

Page 636: ...r IP address will become BSR This paramter is 0 by default Description Using the c bsr command you can configure an interface as candidate BSR Using the undo c bsr command you can cancel the candidate BSR of certain interface PIM SM router can operate normally only if there is a unique BSR Bootstrap Router in PIM SM domain BSR is responsible for collecting and issuing RP packet The only acknowledg...

Page 637: ...d you can configure an interface as candidate RP Using the undo c rp command you can cancel an interface as candidate RP By default If the command is implemented without group policy this indicates the candidate RP will serve the whole group In PIM SM protocol RPT RP Path Tree created by the route multicast data takes RP Rendezvous Point as root and group members as leaves RP is elected through BS...

Page 638: ...of the group which the RP service 3Com acl 5 3Com acl 5 rule permit source 225 0 0 0 0 255 255 255 3Com pim c rp ethernet 0 group policy 5 2 1 3 debugging multicast forwarding Syntax debugging multicast forwarding View All views Parameter None Description Using the debugging multicast forwarding command you can enable the debugging information switch of multicast forwarding table Using the undo de...

Page 639: ...View All views Parameter all Enable the all the debugging information output of PIM events Enable the all the event debugging information output of PIM packets Enable the all the packet debugging information output of PIM timer Enable the timer debugging information output of PIM Description Using the debugging pim common command you can enable general debugging information switch of PIM Using the...

Page 640: ...nding all types of protocol packets send assert Enable debug switch for sending assert packet send graft Enable debug switch for sending graft packet send graft ack Enable debug switch for sending graft acknowledgement packet send join Enable debug switch for sending join coverage packet send prune Enable debug switch for sending prune packet timer Enable the debug packet switch of the timer warni...

Page 641: ... PIM SM debugging information switch Using the undo debugging pim sm command you can disable PIM SM debugging information switch By default the system turns off PIM SM debugging information switch Example None 2 1 8 display multicast forwarding table Syntax display multicast forwarding table group address source address View All views Parameter group address Multicast group address to be viewed so...

Page 642: ...ess Multicast group address to be viewed source address Multicast source address to be viewed Description Using the display multicast routing table command you can view multicast core route table information This command will display multicast core routing table If multicast group address parameters are specified only the multicast core routing table information of the specific group address will ...

Page 643: ... 1 11 Local host is BSR 2 1 11 display pim interface Syntax display pim interface type number View All views Parameter type Interface type number Interface number Description Using the display pim interface command you can view PIM configuration information of the interface This command will display PIM configuration information of all interfaces If parameters are specified only PIM configuration ...

Page 644: ...s Sparse PIM query interval is 30 seconds Total 0 PIM neighbor on interface PIM DR designated router is 30 30 30 30 PIM information of interface LoopBack1 IP address of the interface is 40 40 40 40 PIM is enabled on interface PIM version is 2 PIM mode is Sparse PIM query interval is 30 seconds Total 0 PIM neighbor on interface PIM DR designated router is 40 40 40 40 2 1 12 display pim neighbor Syn...

Page 645: ...ntry g G route entry group address Address of the multicast group source address IP address of the multicast source Description Using the display pim routing table command you can view PIM multicast routing table information This command will display PIM multicast routing table information including SPT and RPF information Example 3Com display pim routing table PIMSM Routing Table Total 0 RP 1 G 1...

Page 646: ... display pim rp info command you can view information of RP configured This command will display information of all RP configures If parameters are specified only RP information in the specified multicast group will be displayed Example 3Com display pim rp info PIM SM RP CONFIGURE information BSR is 3 3 3 3 Group MaskLen 224 0 0 0 4 RP 3 3 3 3 Version 2 priority 0 uptime from last update 21 56 to ...

Page 647: ...el the configured PIM domain border By default no PIM domain border is configured After the PIM domain border is configured PIM packets can pass the domain border except Bootstrap Message In this way the router running PIM SM can be divided into multiple domains The command establishes the PIM bootstrap packet border rather than broadcast border For related commands see c bsr Example Configure the...

Page 648: ...le 3Com Ethernet0 pim dm 2 1 18 pim sm Syntax pim sm undo pim sm View Interface view Parameter None Description Using the pim sm command you can enable the PIM Sparse protocol Using the undo pim sm command you can disable the PIM SM protocol By default the interface disables PIM SM protocol PIM SM protocol shall be configured on various interfaces respectively It is recommended that PIM SM protoco...

Page 649: ...ors Such time interval is specified by PIM query interval timer If the interface receives the packet Hello this indicates the interface has neighboring PIM router The interface will add this neighbor into its interface neighbor table If the interface hasn t received the packet Hello from the neighbor in its neighbor table within specified time it will assume that the neighbor has already left the ...

Page 650: ...source Using the undo spt switch threshold command you can restore the defaulted threshold value of the configuration switching from the shared tree to the shortest path tree By default threshold switching from the shared tree to the shortest path tree is 0 PIM SM router originally transfers multicast data packet through the shared tree But if the multicast data rate exceeds a certain threshold th...

Page 651: ...lay local user statistics 16 2 1 12 ip pool 17 2 1 13 local user callback number 18 2 1 14 local user call number 19 2 1 15 local user ftp directory 19 2 1 16 local user password 20 2 1 17 local user service type 21 2 1 18 radius retry 22 2 1 19 radius server 23 2 1 20 radius shared key 24 2 1 21 radius timer quiet 25 2 1 22 radius timer realtime accounting 25 2 1 23 radius timer response timeout ...

Page 652: ...ation 57 4 1 15 display ipsec statistics 57 4 1 16 encapsulation mode 58 4 1 17 encrypt card backuped 60 4 1 18 encrypt card disable 60 4 1 19 encrypt card enable 61 4 1 20 encrypt card reset 62 4 1 21 encrypt card set syslog 63 4 1 22 encrypt card set time 63 4 1 23 esp new authentication algorithm 64 4 1 24 esp new encryption algorithm 66 4 1 25 ipsec card proposal 67 4 1 26 ipsec policy interfa...

Page 653: ...ommands 89 5 1 1 authentication algorithm 89 5 1 2 authentication method 90 5 1 3 debugging ike 90 5 1 4 dh 91 5 1 5 display ike proposal 92 5 1 6 display ike sa 93 5 1 7 encryption algorithm 94 5 1 8 ike pre shared key 94 5 1 9 ike proposal 95 5 1 10 ike sa keepalive timer 96 5 1 11 reset ike sa 97 5 1 12 sa duration 98 3 ...

Page 654: ...minal user By default turn off the authentication function of the terminal user Five terminal user authentication functions can be configured to prevent unauthorized access Asynchronous port terminal user async Disconnected if authentication fails three times in remote view Console port terminal user con Control the login authentication at the Console port and the AUX port and require continuing a...

Page 655: ...n if authentication fails three times For related commands see local user callback number local user password local user call number local user ftp directory local user service type Example Turn on the Telnet terminal user authentication switch 3Com login telnet 5 ...

Page 656: ...switch By default the switch is shut down that is accounting must be performed on the user If the aaa accounting scheme optional command is configured when the RADIUS accounting server is not available or communication with the RADIUS accounting server fails then the user can continue to use the network resources Otherwise the user will be disconnected This command is often used in the case of aut...

Page 657: ...ult undo aaa authentication scheme local first is performed When AAA authentication local first is used the user is authenticated locally first If the authentication fails then authenticate the user by the methods in the configured authentication methods table The user having passed the authentication local first still needs to be accounted for charged via the RADIUS server If the accounting is un...

Page 658: ...g is unnecessary you don t need to configure the accounting server and you use the aaa accounting scheme optional command to fulfill this goal Only a login service authentication method list can be configured but you can use different names The subsequent authentication method list will cover the previous one And the login services using AAA all adopt this method list When you are configuring the ...

Page 659: ...ication method list defined by default will be adopted The default authentication method is local authentication In the AAA login authentication method list three authentication methods can be specified local radius and none local is an authentication method via the local database radius is an authentication method via the RADIUS server while none indicates that no authentication is conducted The ...

Page 660: ...dius and local authentication need to conduct accounting via the RADIUS server If accounting is unnecessary you don t need to configure the accounting server and you can use the aaa accounting scheme optional command to achieve the authentication Multiple PPP authentication method lists can be configured for different interfaces When you are configuring the authentication method list it is necessa...

Page 661: ...een the customer end and the AAA server Whether it can pass the authentication is determined by whether the username or password provided by the customer matches certain customer information record in the USER dictionary of the AAA authentication server Three authentication methods can be specified in AAA s PPP authentication local radius and none local is an authentication method via the local da...

Page 662: ...a authentication scheme ppp default radius local 2 1 5 aaa enable Syntax aaa enable undo aaa enable View System view Parameter None Description Using the aaa enable command you can enable AAA Using the undo aaa enable command you can disable AAA By default disable AAA Only when AAA is enabled can other parameters of AAA be configured Example Enable AAA 3Com aaa enable 2 1 6 debugging radius Syntax...

Page 663: ...Example None 2 1 7 display aaa user Syntax display aaa user View All views Parameter None Description Using the display aaa user command you can view information of a logon user According to the output information through this command the user can monitor the logon user and conduct AAA fault diagnosis Example 3Com display aaa user User Name UserID UserType IP Address AccountingTime Calling Number ...

Page 664: ...d command history of the login subscribers whose names have been specified name Specifies the subscribers whose information is to be displayed by name Description Using the display local user command history command you can display the recorded command history information of the login subscribers which includes user names of the login subscribers login times the last login time the number of comma...

Page 665: ... displayed by name Description Using the display local user login history command you can display the recorded login history information of the subscribers which mainly includes user name of login subscriber login times each login time each logout time and so on Example 3Com display local user login history all User mike total login 2 times Index Login Intface LogIn Time LogOut Time 1 Console 21 1...

Page 666: ...5 00 2 1 11 display local user statistics Syntax display local user statistics View All views Parameter None Description Using the display local user statistics command you can display the information of the abnormal errors that occur when the Router makes statistics on the login subscriber information Such information mainly includes user record full user command history queue full memory request...

Page 667: ...m view Parameter pool number Number of the IP address pool Ranging 0 to 99 that is 100 local IP address pools can be defined at maximum and there are 2048 addresses in one pool at most low ip address and high ip address Starting and ending IP address respectively in the IP address pool Description Using the ip pool command you can configure the local IP pool for allocating IP addresses for PPP use...

Page 668: ...cal user callback number command you can configure the callback user and callback number Using the undo local user callback number command you can cancel the callback user and callback number By default no user is configured This command can be used together with the local user password command For related commands see display local user local user password aaa authentication scheme ppp ppp callba...

Page 669: ... command can be used together with the local user password command It provides the ISDN user with double authentication that is password and calling id authentication If the call number is configured this indicates that calling id authentication for the user is necessary For related commands see diaplay local user local user password aaa authentication scheme ppp Example Add a user whose username ...

Page 670: ...TP user to access the directory is configured The command is reserved temporarily future extension For related commands see local user password aaa authentication scheme login Example None 2 1 16 local user password Syntax local user user password simple cipher password undo local user user View System view Parameter user Username ranging 1 to 32 characters password User password for authenticatio...

Page 671: ...om1 and password must be displayed in ciphered text 3Com local user 3Com1 password cipher 3Com1 2 1 17 local user service type Syntax local user user name service type exec administrator exec guest exec operator ftp ppp undo local user user View System view Parameter user Username of the authorized user ranging from 1 to 32 characters exec administrator Authorized administrator can use EXEC which ...

Page 672: ...e When multiple services are authorized to user it is necessary to configure over two types of parameters other than to use this command repeatedly Because the new service type will overwrite the old one instead of stacking the service type For related commands see local user password aaa authentication scheme login aaa authentication scheme ppp Example Enable administrator username 3Com password ...

Page 673: ... to 2 times 3Com radius retry 2 2 1 19 radius server Syntax radius server hostname ip address authentication port port number accouting port port number undo radius server hostname ip address View System view Parameter hostname The RADIUS server name ip address The RADIUS server ip address in dotted decimal authentication port Authentication port number specified The default value is 1812 accoutin...

Page 674: ...on server only and the authentication port number as 1000 3Com radius server 129 102 0 2 authentication port 1000 accouting port 0 2 1 20 radius shared key Syntax radius shared key string undo radius shared key View System view Parameter string Key of the RADIUS server ranging 1 to 16 characters Description Using the radius shared key command you can configure the key for the RADIUS server Using t...

Page 675: ...he RADIUS server fails like the line between NAS and RADIUS has a loosened screw or the RADIUS process fails to function the system will set its status as down After the resuming time configured above the system will set its status as up If the server in service now fails the system will auto check whether or not the original server can be put into service Example Configure 10 minutes as the resum...

Page 676: ...ery specified time If the real time accounting request fails the user will be processed based on the configuration condition of the aaa accounting scheme optional command If the aaa accounting scheme optional command is configured NAS will allow the user to continue using the network service otherwise NAS will disconnect the user Example Configure the timeout value to two minutes for transmitting ...

Page 677: ... timer response timeout 5 2 1 24 remote address Syntax remote address ip address pool pool number undo remote address View Interface view Parameter ip address IP address allocated for a PPP user pool number IP address pool number allocated for a PPP user Description Using the remote address command you can allocate IP addresses for PPP users Using the undo remote address command you can cancel the...

Page 678: ...3Com Command Reference Guide V1 00 Example Encapsulate PPP at interface Serial0 and allocate 129 102 0 1 for the peer PPP user 3Com Serial0 link protocol ppp 3Com Serial0 remote address 129 102 0 1 28 ...

Page 679: ... address match order Specifies the configuration order of ACL config Means the ACL adopts configuration sequence to match By default ACL adopts config sequence auto Means the ACL adopts automatic sequence match according to depth first Description Using the acl command you can add an ACL policy group and enter an ACL view If an ACL exists you can directly enter into the ACL policy group Using the ...

Page 680: ...P protocol information debugging of the firewall udp Enabling the UDP protocol information debugging of the firewall Description Using the debugging filter command you can enable the information debugging of the firewall Using the undo debugging filter command you can disable the corresponding information debugging of the firewall Example None 3 1 3 display acl Syntax display acl all acl number in...

Page 681: ...based on this rule the counter will increase by 1 By observing the counter you can see among the configured rules which rules are effective and which are basically ineffective For related commands see acl Example Display the currently used rule with a number of 100 3Com display acl 100 Using the normal packet filtering access rules now 100 deny icmp 10 1 0 0 0 0 255 255 any host redirect 3 matches...

Page 682: ...ethod is permit TimeRange packet filtering disable InBound 0 packets 0 bytes 0 permitted 0 packets 0 bytes 0 denied 52 packets 3679 bytes 88 permitted defaultly 7 packets 469 bytes 11 denied defaultly From 19 35 44 to 19 35 49 0 packets 0 bytes permitted 0 packets 0 bytes denied 0 packets 0 bytes permitted defaultly 0 packets 0 bytes denied defaultly OutBound 0 packets 0 bytes 0 permitted 7 packet...

Page 683: ...tr It is NOT in time ranges now The information above displays that the current time is not within the special timerange 3 1 6 display timerange Syntax display timerange View All views Parameter None Description Using the display timerange command you can view the timerange information that the packet filtering is effective This command is used to display if timerange packet filtering is currently...

Page 684: ...you can enable or disable the firewall By default Firewall is enabled This command is used to enable or disable the firewall and the corresponding result can be displayed via the display firewall command If time based packet filtering is adopted then this command is shut down when the firewall is shut down This command controls the general switch of the firewall When the firewall disable command i...

Page 685: ...e firewall in the case that the firewall is enabled If none of the access rules applied at the interface can judge if a packet is permitted or denied the default filter attribute will function If the default filter attribute is Permitted then the packet can pass otherwise it will be dropped Example Configure the default filter attribute to Permitted 3Com firewall default permit 3 1 9 firewall pack...

Page 686: ... need to use the keyword inbound If you want to filter the packets forwarded from an interface you need to use the keyword outbound If no direction is defined the system will take outbound as the keyword At most 20 rules of different types can be applied on the one direction of an interface The greater the rule sequence number is the higher the priority is When configuring the rules it is recommen...

Page 687: ...ecified then the counters of all the access rules are deleted For related commands see acl Example Clear the counters of all the access rules whose serial number is 100 3Com reset acl counters 100 Clear the counters of all the access rules currently in service 3Com reset acl counters 3 1 11 rule Syntax rule normal special permit deny source source addr source wildcard any rule normal special permi...

Page 688: ...ildcard Wildcard of destination address Inputting 0 means the wildcard is 0 0 0 0 source port Specify the source port information operator optional port operator If the protocol is TCP or UDP port comparison can be performed and the operation includes equal greater than less than not equal or range If the operator is range it should be followed by two ports port1 The number of the applied port whe...

Page 689: ...e icmp type icmp code logging you can add or edit an advanced ACL rule By default no ACL rule is defined For related commands refer to acl display acl Example Define an ACL whose rule ID is 188 and define a rule on the ACL to allow the host on the segment 129 9 0 0 to send WWW packet to the host on the segment 202 38 160 0 3Com acl 188 3Com acl 188 rule permit tcp source 129 9 0 0 0 0 255 255 dest...

Page 690: ... from 9pm to 8am you can set it to settr 21 00 23 59 0 00 8 00 Because both ends of the set time range belong to the same time range no switching will take place within the time range In addition this setting has withstood the Y2K test For related commands see timerange display timerange Example Configure the time range as 8 30 12 00 14 00 17 00 3Com settr 8 30 12 00 14 00 17 00 3 1 13 timerange S...

Page 691: ...tside the timerange normal are to be used according to the current time and the set time range The precision at which the system queries the time is 1 minute And the two ends of the set time range belong to the time range For related commands see settr display timerange Example Enable the timerange packet filter function 3Com timerange enable 41 ...

Page 692: ...dopted by AH Using the undo ah new authentication algorithm command you can restore the default value By default MD5 is adopted This command is applicable to the IPSec module of the operating system and crypto card AH does not have the encryption function and is only responsible for packet authentication HMAC algorithm uses encryption hashing function to authenticate the message and provides the i...

Page 693: ... be set as using the same authentication method For related commands see ipsec proposal proposal sa inbound outbound transform Example Configure IPSec proposal using AH and SHA1 3Com ipsec proposal trans1 3Com ipsec proposal trans1 transform ah new 3Com ipsec proposal trans1 ah new authentication algorithm sha1 hmac 96 4 1 2 debugging encrypt card Syntax debugging encrypt card all command error mi...

Page 694: ...d command you can disable the IPSec debugging information This command is applicable to crypto card Example None 4 1 3 debugging ipsec Syntax debugging ipsec misc packet sa View All views Parameter misc Enabling other IPSec information debugging packet Enabling IPSec packets debugging sa Enabling IPSec security association debugging Description Using the debugging ipsec command you can enable the ...

Page 695: ...ware address Besides it can be used to query the debugging status all the statistics and the statistic information one second before executing the command The information includes the number of packets bytes transmitted and received by the crypto cards and the number of packets discarded per second If the input slot number is greater than the number of the slots on the router the prompt Invalid en...

Page 696: ...rd 0x00d76d74 Next valid card 0x00d76d74 4 1 5 display encrypt card ipsec sa all Syntax display encrypt card ipsec sa all slot id View All views Parameter slot id The ID of the slot where the crypto card is located The value range is determined by the number of the slots on the router If no value is input the operation will be implemented on all the crypto cards Description Using the display encry...

Page 697: ...rypt card slot id 3 esp SAs proposal ESP ENCRYPT BLOWFISH proposal ESP AUTH MD5HMAC96 local address 2 2 2 2 peer address 2 1 1 1 sa timing remaining key lifetime bytes sec 1887436800 2592 spi 12345 0x3039 Encrypt card slot id 3 4 1 6 display encrypt card ipsec sa parameters Syntax display encrypt card ipsec sa parameters remote address ah esp spi number View All views Parameter remote address Dest...

Page 698: ... parameters 202 38 0 2 esp 54321 esp SAs proposal ESP ENCRYPT BLOWFISH proposal ESP AUTH MD5HMAC96 local address 2 1 1 1 peer address 2 2 2 2 sa timing remaining key lifetime bytes sec 1887436800 2611 spi 54321 0xd431 4 1 7 display encrypt card statistic Syntax display encrypt card statistic slot id View All views Parameter slot id The ID of the slot where the crypto card is located The value rang...

Page 699: ...istic Example Display the statistical information of crypto card processing 3Com display encrypt card statistic 3 Encrypt Card 3 security packets statistics input output security packets 1461643 1541828 input output security bytes 1050464778 1099263354 droped security packet detail no enough memory 0 can t find SA 0 queue is full 0 authen is failed 0 invalid length 0 replay packet 377 too long pac...

Page 700: ...ormal resetting the crypto card is resetting program updating the crypto card is updating unknown the unidentifiable error state and disable the crypto card is disabled If the input slot id is larger than the slot number of the router the system will prompt Invalid encrypt card slot id Example Display the operating status of the crypto card 3Com display encrypt card status Encrypt Card 2 status re...

Page 701: ... 02 01 Time 17 04 04 Encrypt card 3 receive add tdb cmd 4 1 10 display encrypt card version Syntax display encrypt card version slot id View All views Parameter slot id The ID of the slot where the crypto card is located The value range is determined by the number of the slots on the router If no value is input the operation will be implemented on all the crypto cards Description Using the display...

Page 702: ...en the information about all the IPSec policies whose name is policy name is displayed Description Using the display ipsec policy command you can view information about the IPSec policy This command is applicable to the IPSec module of the operating system brief command is for displaying brief information about all the IPSec policies whose display format is the brief format see the following examp...

Page 703: ... IPSec policies 3Com display ipsec policy brief IPSec Policy Name Mode ACL Proposal Local Address Remote address policy1 10 manual 101 tran1 202 38 163 1 202 38 162 1 Display information about all the IPSec policies 3Com display ipsec policy all ipsec policy name policy1 ipsec policy sequence 10 negotiation mode manual security acl 101 local address 202 38 163 1 remote address 202 38 162 1 proposa...

Page 704: ... the operating system This command displays the information about the proposal set If the name of the proposal set is not specified then information about all the proposal will be displayed For related commands see ipsec proposal display ipsec sa display ipsec policy Example Display the information about the IPSec proposal set 3Com display ipsec proposal proposal set name tran1 proposal set mode t...

Page 705: ...ss Specifying the destination address in the IP address format of A B C D protocol Specifying a protocol by inputting the ah or esp key word without case discrimination spi Specifying security parameter index SPI Description Using the display ipsec sa command you can view the relevant information about the SA This command is applicable to the IPSec module of the operating system brief command disp...

Page 706: ...und direction finally the ESP SA information including SPI proposal and SA life cycle in the Outbound direction For related commands see reset ipsec sa Example Display the brief information about all the SAs 3Com display ipsec sa brief Src Address Dst Address SPI Protocol Algorithm 202 38 162 1 202 38 163 1 54321 NEW_ESP E DES A HMAC SHA1 96 202 38 163 1 202 38 162 1 12345 NEW_ESP E DES A HMAC SHA...

Page 707: ... the operating system This command is used to display the global SA lifetime including the time based and traffic based types For related commands see ipsec sa global duration display ipsec sa display ipsec policy Example Display the global SA lifetime 3Com display ipsec sa duration ipsec sa duration 1843200 kilobytes ipsec sa duration 3600 seconds 4 1 15 display ipsec statistics Syntax display ip...

Page 708: ...lay IPSec packet statistics 3Com display ipsec statistics the security packet statistics input output security packets 5124 8231 input output security bytes 52348 64356 input output dropped security packets 0 0 dropped security packet detail no enough memory 0 can t find SA 0 queue is full 0 authen failed 0 invalid length 0 replay packet 0 too long packet 0 invalid SA 0 4 1 16 encapsulation mode S...

Page 709: ... gateway So an IP packet needs to be encrypted in tunnel mode that is a new IP header is added the IP packet encapsulated in tunnel mode is sent to another security gateway before it is decrypted The transport mode is suitable for communication between two hosts or for communication between a host and a security gateway like the network management communication between the gateway workstation and ...

Page 710: ...the IPSec handling will be shared by the normal crypto cards If all the crypto cards are abnormal no crypto cards can conduct the IPSec handling In this case given that the host has already been enabled to backup the crypto cards the IPSec module will replace the crypto cards to conduct IPSec handling on the packets if the IPSec module the operating system main software supports the encryption aut...

Page 711: ...ts you can set the crypto cards to be in disabled status disable the crypto cards to process data or enabled status It will facilitate the maintenance management and debugging For related commands see encrypt card enable Example Disable the crypto card in Slot 0 3Com encrypt card disable 0 4 1 19 encrypt card enable Syntax encrypt card enable slot id View System view Parameter slot id The ID of th...

Page 712: ...d reset 0 4 1 20 encrypt card reset Syntax encrypt card reset slot id all View System view Parameter slot id The ID of the slot where the crypto card is located the range is determined by the slot numbers of the router all Implement the operation on all the crypto cards Description Using the encrypt card reset command you can reset the crypto card This command is applicable to crypto cards This co...

Page 713: ...le or disable the realtime report log output By default all the realtime report log output of the crypto cards is disabled This command is applicable to crypto cards After the realtime report log output is enabled each piece of log information generated will be output to the terminal and whether it is displayed is determined by whether the terminal log display is enabled During the debugging of th...

Page 714: ... card is added During normal operation the crypto card synchronizes the system clock with the host periodically Example Synchronize the working time of the operating system on the crypto card of Slot 0 3Com encrypt card set time 0 4 1 23 esp new authentication algorithm Syntax esp new authentication algorithm md5 hmac 96 sha1 hmac 96 undo esp new authentication algorithm View IPSec proposal view p...

Page 715: ...tication secret key The security protection is provided mainly by HMAC and then MD5 algorithm By comparison MD5 is faster than SHA 1 while SHA 1 is more secure than MD5 ESP enables a packet to be encrypted and authenticated concurrently or it enables either of encryption and authentication The encryption and authentication algorithms used by ESP can not be set as vacant at the same time undo esp n...

Page 716: ...signed abroad It adopts 64bit packets algorithm and supports 128bit encryption key currently operating under CBC mode cast Packets encryption algorithm designed abroad It adopts 64bit packets algorithm and supports 128bit encryption key operating under CBC mode skipjack Packets encryption algorithm designed abroad It adopts 64bit packets algorithm and supports 80bit encryption key operating under ...

Page 717: ...ithms can satisfy the normal security requirements ESP enables a packet to be encrypted and authenticated concurrently or it enables either of encryption or authentication The encryption and authentication algorithms used by ESP cannot be set to a vacant value at the same time When not using encryption algorithm the system will automatically test whether ESP is using authentication algorithm If th...

Page 718: ...proposal and the corresponding encryption decryption and authentication process are fulfilled by the host Example Apply the security proposal set Policy 1 to the interface Serial0 3Com ipsec policy policy1 100 manual 3Com interface serial 0 3Com Serial0 ipsec policy policy1 4 1 26 ipsec policy interface view Syntax ipsec policy policy name undo ipsec policy View Interface view Parameter policy nam...

Page 719: ... from the interface it is necessary to use the firewall together with IPSec the firewall is for dropping all the packets that do not need to be encrypted The IPSec policy group being applied at the interface must be deleted before another group is applied at the interface For related commands see ipsec policy system view Example Apply an IPSec policy whose name is policy1 at Serial 0 3Com ipsec po...

Page 720: ...100 IPSec policies can be set at maximum In an IPSec policy the smaller the sequence number of an IPSec policy is the higher is its preference Apply an IPSec policy group at an interface means applying multiple IPSec policies in the group so that different data streams can be protected with different SAs The undo ipsec policy policy name command is used to cancel an IPSec policy whose name is poli...

Page 721: ...ines the protocol algorithm and encapsulation mode to be adopted by the use of the proposal set Before the IPSec policy uses a proposal set this proposal set must have already been set up The proposal set adopted by the IPSec policies at both ends of the security tunnel must be set as having the same protocol algorithm and encapsulation mode Each SA set up manually can only use one proposal set Ea...

Page 722: ... IKE mode dynamically Once the main link goes into down state the communication will be performed on the backup link automatically in this case a new SA pair corresponding to the backup link will be created including the SAs at the first stage and the second stage but the previous SA pair on the main link is not deleted in time Once the SA at the second stage on the main link timeouts and is relea...

Page 723: ...194303 in kilobyte By default it is 1843200 kilobytes Description Using the ipsec sa global duration command you can configure a global crypto SA lifetime Using the undo ipsec sa global duration command you can restore the default value of the lifetime of the global security association This command is applicable to the IPSec module of the operating system and crypto card All SAs that have not bee...

Page 724: ...lly set up that is the SA manually set up will never be invalidated For related commands see sa duration display ipsec sa duration Example Configure the global SA lifetime to 2 hours 3Com ipsec sa global duration time based 7200 Configure the global crypto SA lifetime to 10M bytes transmitted 3Com ipsec sa global duration traffic based 10000 4 1 31 proposal Syntax proposal proposal name1 proposal ...

Page 725: ...e security tunnel must be set as having the same protocol algorithm and encapsulation mode Example Configure a proposal set whose name is trans1 adopting ESP and the default algorithm And set an IPSec policy as using a proposal set whose name is trans1 3Com ipsec proposal trans1 3Com ipsec proposal trans1 transform esp new 3Com ipsec policy xian 100 manual 3Com ipsec policy xian 100 proposal trans...

Page 726: ...number View All views Parameter peer Destination IP address spi number Security parameter index Description Using the reset encrypt card sa parameters command you can cancel the specified security associations of all crypto cards This command is applicable to crypto card If you just want to output the needed information in the debugging process use the reset encrypt card sa parameters command to c...

Page 727: ...sing the reset encrypt card statistic command you can reset the statistical information in the process of the crypto card handling The command is applicable to the crypto card The crypto card records the protocol processing status since last clearance till the current enquiry of this time including the number of the received sent ESP AH packets For related commands see display encrypt card statist...

Page 728: ...n monitoring and locating problems In this case you can use the reset encrypt card syslog command to reset the information stored in the log buffer at the crypto card side in time For related commands see encrypt card set syslog display encrypt card syslog Example Cancel all the log information on the crypto card in Slot 0 3Com reset encrypt card syslog 0 4 1 36 reset ipsec sa Syntax reset ipsec s...

Page 729: ...ally This command is applicable to the IPSec module of the operating system This command is used to cancel a SA already set up manually or through IKE negotiation If a packet re triggers IKE negotiation after an SA set up through IKE negotiation is deleted IKE will reestablish an SA through negotiation If an SA set up manually is deleted the system will set up a new SA according to the parameter m...

Page 730: ...module of the operating system Clear IPSec message statistics and all the statistics are set to zero For related commands see display ipsec statistics Example Reset IPSec message statistics 3Com reset ipsec statistics 4 1 38 sa duration Syntax sa duration time based seconds traffic based kilobytes undo sa duration time based traffic based View IPSec policy view Parameter seconds Lifetime in the se...

Page 731: ...about to get invalid IKE will set up a new SA for IPSec negotiation So a new SA is ready before the existing one gets invalid Modifying the global lifetime will not affect an SA that has individually set up its own lifetime But the modified global lifetime will be used to set up a new SA in the future IKE negotiation The secret key in the SA is invalidated when the SA is invalidated A short lifeti...

Page 732: ...ters in the inbound and outbound directions outbound Setting the outbound SA parameter IPSec uses the outbound SA for handling the packet in the outbound direction it is necessary to set the SA parameters in the inbound and outbound directions ah Setting the parameter of the SA using AH If the IPSec proposal set used by the IPSec policy specifies to adopt AH the ah key word is used to set the para...

Page 733: ...he sa inbound outbound command you can configure the SA parameter Using the undo sa inbound outbound command you can cancel the SA parameter already set This command is applicable to the IPSec module of the operating system and crypto card This command is used for the IPSec policy in manual mode It is used to set the SA parameter manually and create a SA manually The IPSec policy in isakmp negotia...

Page 734: ...trans_ah 3Com ipsec proposal trans_ah transform ah new 3Com ipsec proposal trans_ah ah new authentication algorithm md5 hmac 96 3Com ipsec proposal trans_ah quit 3Com ipsec policy tianjin 100 manual 3Com ipsec policy tianjin 100 proposal trans_ah 3Com ipsec policy tianjin 100 sa inbound ah spi 10000 3Com ipsec policy tianjin 100 sa inbound ah hex key string 11223344556677889900112233445566 3Com ip...

Page 735: ...ccess control list will not be protected The access control list used by the IPSec policy does not decide which packets are permitted or denied at an interface Only the access control list directly applied at the interface will make such a decision For related commands see ipsec policy system view ipsec policy interface view tunnel local tunnel remote sa duration sa inbound outbound proposal Examp...

Page 736: ...ied in RFC2406 This command is applicable to the IPSec module of the operating system and crypto card The proposal sets used by the IPSec policy set at both ends of the security tunnel must be set as having the same security protocol For related commands see ipsec proposal ipsec policy system view ipsec policy interface view security acl tunnel local tunnel remote sa inbound outbound Example Confi...

Page 737: ...he IPSec policy in manual mode it is necessary to set the local address before the SA is created A security tunnel is set up between the local and peer end so the local address and remote address must be correctly configured before a security tunnel can be set up For related commands see ipsec policy system view ipsec policy interface view security acl tunnel remote sa duration sa inbound outbound...

Page 738: ...iver of ike negotiation will perform intiation negotiation and receipt negotiation according to this address Security policy in manual mode can only have one remote address When a new remote address is to be set the former one must be deleted first if configured The remote address must be set correctly between both ends of the security tunnel For related commands see ipsec policy system view ipsec...

Page 739: ...A 1 Description Using the authentication algorithm command you can configure the hash algorithm for an IKE Using the undo authentication algorithm command you can restore the default value By default the setting is sha that is SHA 1 This command is used to configure a hash algorithm for an IKE policy For related commands see ike proposal display ike proposal Example Configure the hash algorithm fo...

Page 740: ...pre shared key authentication This command is used to configure the authentication method used by an IKE policy Now 3Com s routers support the pre shared key authentication method It is necessary to set an authentication key when using the pre shared key authentication method For this please consult ike pre shared key For related commands see ike pre shared key ike proposal display ike proposal Ex...

Page 741: ...debugging sysdep Enabling information debugging related to system timer Enabling information debugging related to timer transport Enabling information debugging related to transport Description Using the debugging ike command you can enable the IKE information debugging Example None 5 1 4 dh Syntax dh group1 group2 undo dh View IKE proposal view Parameter group1 Specifying the 768 bit Diffie Hellm...

Page 742: ...tax display ike proposal View All views Parameter None Description Using display ike proposal command you can view the IKE IPSec policy display ike proposal displays IKE policies in priority order For example the encryption algorithm is DES CBC the hash algorithm is MD5 authentication is implemented in the share encryption key mode the DH group is MODP1024 and the life time is 5000 seconds For rel...

Page 743: ...parameter display ike sa displays the security tunnel list including peer address tunnel flags negotiation phase and DO The security tunnel and the SA are two different concepts The former is a two way tunnel and IPSec SA is a one way connection So a security tunnel is composed of one pair or several pairs of SAs For related commands see ike proposal Example Display the IKE SA parameter 3Com displ...

Page 744: ...an IKE policy Using the undo encryption algorithm command you can restore the default value By default the setting is des cbs that is 56 bit DES CBC encryption algorithm For related commands see ike proposal display ike proposal Example Configure 56 bit DES CBC encryption algorithm for IKE policy 1 3Com ike proposal 1 3Com ike proposal 1 encryption algorithm des cbc 5 1 8 ike pre shared key Syntax...

Page 745: ...ntication method otherwise this IPSec policy may not be used For related commands see authentication method Example Configure the authentication key to abcde for the peer 202 38 0 1 3Com ike pre shared key abcde remote 202 38 0 1 5 1 9 ike proposal Syntax ike proposal policy number undo ike proposal policy number View System view Parameter policy number IKE policy number which is any integer rangi...

Page 746: ... dh authentication algorithm sa duration Example Define an IKE policy 20 3Com ike proposal 20 5 1 10 ike sa keepalive timer Syntax ike sa keepalive timer interval timeout seconds undo ike sa keepalive timer interval timeout View System view Parameter interval Time interval at when the identity sends keepalive packets timeout Time interval at when SA keepalive packets timeout seconds Specific time ...

Page 747: ...alive function you are suggested to value the timeout timer three times more than the interval timer Example Configure the time interval to transmit keepalive packets as 100 seconds and timeout 300 seconds 3Com1 ike sa keepalive timer interval 100 3Com2 ike sa keepalive timer timeout 300 5 1 11 reset ike sa Syntax reset ike sa connection ike sa id all View All views Parameter connection ike sa id ...

Page 748: ...fetime for the security tunnel A long lifetime can save on the time for setting IPSec SA but a short lifetime guarantees higher security Before the lifetime for a SA expires a new SA will be negotiated for replacing the existing SA and the old SA will be automatically cleared when the SA lifetime expires Because IKE negotiation needs to undergo DH calculation it will take a long time on the low en...

Page 749: ...p 10 1 1 10 mandatory chap 11 1 1 11 mandatory lcp 11 1 1 12 reset l2tp tunnel 12 1 1 13 start l2tp 13 1 1 14 tunnel authentication 15 1 1 15 tunnel avp hidden 15 1 1 16 tunnel flow control 16 1 1 17 tunnel name 17 1 1 18 tunnel password 18 1 1 19 tunnel timer hello 19 Chapter 2 GRE Configuration Commands 20 2 1 GRE Protocol Configuration Commands 20 2 1 1 destination 20 2 1 2 display interfaces 2...

Page 750: ...g the allow l2tp virtual template command you can configure the name of the remote tunnel when accepting the call and the virtual template to be used Using the undo allow command you can cancel the name of the remote tunnel By default no call can be dialed in This command can only be configured on LNS It is a required configuration When L2TP group 1 default L2TP group number is used it is permitte...

Page 751: ...mote AS8010 Take L2TP group 1 as the default L2TP group to accept the L2TP tunnel connecting requests from any peer end and creates a virtual access interface according to virtual template 1 3Com l2tp group 1 3Com l2tp1 allow l2tp virtual template 1 1 1 2 debugging l2tp Syntax debugging l2tp all control error event hidden payload time stamp undo debugging l2tp all control error event hidden payloa...

Page 752: ...y l2tp session Syntax display l2tp session View All views Parameter None Description Using the display l2tp session command you can view the information about the current L2TP session The information output through this command helps the user diagnose L2TP faults For related commands see display l2tp tunnel Example Display the information of the current L2TP session 3Com display l2tp session Locoa...

Page 753: ...splay l2tp tunnel View All views Parameter None Description Using the display l2tp tunnel command you can view the information about the current L2TP tunnel The information output through this command helps the user diagnose L2TP faults For related commands see display l2tp session Example Display the information of the current L2TP tunnel 3Com display l2tp tunnel LocalID RemoteID RemName RemAddre...

Page 754: ...ix separator suffix separator delimiters View System view Parameter prefix separator Indicate that the specified delimiter is a prefix such as 3com com yaoxin suffix separator Indicate that the specified delimiter is a suffix such as yaoxin 3com com delimiters Identify the domain delimiter including and The string is of 1 to 4 characters Description Using the l2tp domain command you can configure ...

Page 755: ... a VPN tunnel connection with the LNS to which the user belongs A character serving as a prefix delimiter cannot serve as a suffix delimiter any longer and vice versa More specifically a character cannot serve as a prefix and a suffix delimiter at the same time For related commands see start l2tp Example Set the domain name to be the prefix that is separated from the username by the symbol 3Com l2...

Page 756: ...oup according to the dialed number only domain dnis Search for the L2TP group according to the domain name before according to the dialed number domain Search for the L2TP group according to the domain name only Description Using the l2tp match order command you can configure the searching order of the dialed number and the domain name criteria Using the undo l2tp match order command you can resto...

Page 757: ...ommands see l2tp domain Example Conduct the searching according to the domain name only 3Com l2tp match order domain 1 1 8 l2tp session limit Syntax l2tp session limit session number undo l2tp session limit View System view Parameter session number The maximum number of L2TP sessions at the local end which is an integer in the range from 1 to 2000 By default the maximum number of sessions is 1000 ...

Page 758: ... command you can create a L2TP group Using the undo l2tp group command you can cancel a L2TP group By default no L2TP group is created This command can be used on both LAC and LNS It is a required configuration The l2tp group command is used to create a L2TP group L2TP group 1 can serve as the default L2TP group After the L2TP group is deleted by using the undo l2tp group command all the configura...

Page 759: ...mplements the proxy authentication on Client LNS re authenticates the Client to improve the security If the mandatory chap command is used the VPN clients that connect with access server via initial tunnel will undergo twice authentications one is between clients and NAS Network Access Server and the other is betweem clients and LNS L2TP Network Server If some PPP Clients do not support re authent...

Page 760: ... session If the negotiation succeeds the NAS will initialize the tunnel connection and transfer to LNS the information received through negotiating with the client LNS can judge the validity of the user according to the received proxy authentication information The mandatory lcp command can be used to force the LCP re negotiation between LNS and Client ignoring the proxy authentication information...

Page 761: ...ere are multiple qualified tunnels with the same remote name but different IP addresses the first qualified tunnel connection will be cleared The matching sequence referred here is the same as the result of executing the display l2tp tunnel command For related commands see display l2tp tunnel Example Clear a tunnel connection whose peer end name is AS8010 3Com reset l2tp tunnel AS8010 1 1 13 start...

Page 762: ...ed as the special service number any accessing users dialing this number will be VPN users You can also specify a user to be a VPN user directly by the user s full name If the user is a VPN user the local end LAC will send a L2TP tunnel connecting request to one of the LNSs according to the LNS sequence configured Once LAC receives the response from LNS this LNS will become the peer end of the tun...

Page 763: ...el This command can be used on both LAC and LNS and is an optional configuration Normally both ends of the tunnel need to authenticate each other for security Tunnel authentication can be skipped in the case of testing network connectivity or receiving connection originated from an unknown peer end For related commands see tunnel password tunnel name Example Disable the authentication of the remot...

Page 764: ...assword transmitted in plain text during proxy authentication will be encrypted into AV pairs Hiding AV pairs in L2TP application is very useful when PAP or proxy authentication is used between LAC and LNS In actual configuration it is recommended to enable disable hiding AV pairs on both LAC and LNS at the same time Example Enable hiding AV pairs on L2TP group 1 3Com l2tp1 tunnel avp hidden 1 1 1...

Page 765: ... control Example Configure the tunnel receiving window of L2TP group 1 as 6 3Com l2tp1 tunnel flow control receive window 6 1 1 17 tunnel name Syntax tunnel name name undo tunnel name View L2TP group view Parameter name Identify the name of local tunnel It is a string of 1 to 30 characters Description Using the tunnel name command you can configure the name of the local tunnel Using the undo tunne...

Page 766: ...nnel password command you can configure the password used during tunnel authentication Using the undo tunnel password command you can cancel the password of the tunnel authentication By default the password of tunnel authentication is the router name This command can be used on both LAC and LNS and is an optional configuration When creating a L2TP group the local tunnel name and the tunnel passwor...

Page 767: ...mand you can configure the interval for sending Hello packets over an L2TP tunnel Using the undo tunnel timer hello command you can restore the interval for sending Hello packets over an L2TP tunnel to the default value This command can be used on both LAC and LNS and is an optional configuration The interval of sending Hello packets configured on LAC can be different from that on LNS The undo tun...

Page 768: ...ddress is input in format of the IP address It must be the same as the actual physical address of the remote port attached and it should be guaranteed that the route to this port is reachable Furthermore the destination address of the tunnel configured at the local end must be consistent with the source address of the remote tunnel For related commands see interface tunnel source Example Set up a ...

Page 769: ...dcast 0 drops 10 packets output 640 bytes 0 output errors 0 broadcast 0 no protocol Table 2 1 Description of display l2tp tunnel command Field Description Tunnel1 is up Tunnel 1 interface is in the state of UP line protocol is up Link layer protocol is in the state of UP Maximum Transmission Unit Maximum transmission unit Internet address IP address of network layer packets input packets output Nu...

Page 770: ...fault checksum check is disabled on tunnel interface RFC 1701 provides that if the Checksum bit is set in the GRE packet header then Checksum is valid The sender calculates the checksum based on the GRE header and payload and the receiver calculates the checksum based on the received packet and compares it with the checksum contained in the packet If they are the same the packet will be further pr...

Page 771: ...et then both the receiver and sender will authenticate the gre key Only when the gre keys set at both ends of the tunnel are the same will the authentication succeed otherwise the packet will be discarded For related commands see interface tunnel Example Set up a tunnel between RouterA and RouterB and the tunnel interfaces are tunnel0 and tunnel1 respectively It is required that the gre key be set...

Page 772: ...umbers for the packets received locally and de capsulated successfully the sequence number can be any integer ranging from 0 to 232 1 with that of the first packet being 0 After the tunnel is set up the sequence numbers will be counted in an accumulative and cyclic manner If the receiver receives a packet whose sequence number is less than or equal to the sequence number of the last packet this pa...

Page 773: ... specified tunnel interface By default no virtual tunnel interface is created This command is used to enter a specified tunnel interface view If the tunnel interface has not been created create it first The number of tunnels that can be virtually created depends on the total number of interfaces as well as the memory condition For related commands see source destination gre key gre checksum gre se...

Page 774: ...ied tunnel source address is input in the IP address format It must be the same as the actual physical port address Furthermore the source address of the tunnel configured at the local end must be consistent with the destination address of the remote tunnel For related commands see interface tunnel destination Example Configure tunnel0 in the router the actual exit for the packet encapsulated at t...

Page 775: ...y state down 5 1 1 6 standby state up 6 1 1 7 standby threshold 7 1 1 8 standby timer disable delay 8 1 1 9 standby timer enable delay 9 Chapter 2 VRRP Configuration Commands 10 2 1 VRRP Configuration Commands 10 2 1 1 debugging vrrp 10 2 1 2 display vrrp 10 2 1 3 vrrp authentication mode 11 2 1 4 vrrp vrid preempt mode 12 2 1 5 vrrp vrid priority 13 2 1 6 vrrp vrid timer advertise 13 2 1 7 vrrp v...

Page 776: ...dby Syntax debugging standby event packet View All views Parameter event Enable the event debugging packet Enable the packet debugging Description Using the debugging standby command you can enable the information debugging of standby center Example None 1 1 2 logic channel Syntax logic channel number undo logic channel number View System view 2 ...

Page 777: ...ndby center operating parameter for the logic channel you need to specify a logic channel number for an X 25 or frame relay virtual circuit or a Dialer Route Then use this command to enter the logic tunnel view For related commands see x25 map fr map dialer route Example Enter the view for Serial 0 and specify it as encapsulated with X 25 3Com interface serial 0 3Com Serial0 link protocol x25 Spec...

Page 778: ...ed standby interface By default no standby interface is specified A certain physical interface can be specified as a standby interface One main interface can have multiple standby interfaces which will be used according to their priorities that is the standby interface with higher priority is preferred to being used first Example Specify Serial 1 whose priority value is 50 as the standby interface...

Page 779: ...ber to the specific virtual circuit or Dialer Route For related commands see logic channel standby interface Example Specify logic channel 2 as the standby interfaces for Serial 0 whose priority value is 30 3Com Serial0 standby logic channel 2 30 1 1 5 standby state down Syntax standby state down times undo standby state down View Logic channel view Parameter times Number of calls ranging 0 to 655...

Page 780: ...e down to 4 3Com logic channel1 standby state down 4 1 1 6 standby state up Syntax standby state up seconds undo standby state up View Logic channel view Parameter seconds Status check interval in second ranging from 0 to 65535 being 1 by default Description Using the standby state up command you can configure the status check interval used to judge whether the logic channel is restored to up Usin...

Page 781: ...ntage of enabling standby interfaces and logic channels This value ranges from 0 to 99 disable threshold The lower limit percentage of disabling standby interfaces and logic channels This value ranges from 0 to 99 Description Using the standby threshold command you can configure the standby load balancing for an interface or a logic channel Using the undo standby threshold command you can cancel t...

Page 782: ...ndby timer disable delay View Interface view Logic channel view Parameter seconds The delay interval for the standby interface to switch to the main interface It ranges from 0 to 65535 seconds By default it is 0 second Description Using the standby timer disable delay command you can configure the delay interval for the standby interface to switch to the main interface Using the undo standby timer...

Page 783: ...delay interval for the main interface to switch to standby interface Using the undo standby timer enable delay command you can restore the default value of the delay interval for the main interface to switch to standby interface It is recommended to set the switching delay to prevent frequent main standby interface switching due to the instability of the interface status If the delay interval for ...

Page 784: ...gging vrrp Syntax debugging vrrp packet state View All views Parameter packet Enables the VRRP packet debugging state Enables the VRRP state debugging Description Using the debugging vrrp command you can enable the debugging of VRRP Example None 2 1 2 display vrrp Syntax display vrrp View All views Parameter None 10 ...

Page 785: ...ter or Backup 2 1 3 vrrp authentication mode Syntax vrrp authentication mode simple key undo vrrp authentication mode simple View Ethernet interface view Parameter simple Authentication type perform simple character authentication key Authentication key a character string with the length of 1 to 8 bytes Wherein the English characters are case insensitive Description Using the vrrp authentication m...

Page 786: ...yntax vrrp vrid virtual_router_id preempt mode timer delay seconds undo vrrp vrid virtual_router_id preempt mode View Ethernet interface view Parameter virtual_router_id Virtual Router ID namely VRRP backup group number ranging from 1 to 255 timer delay seconds Delay time in seconds with a value ranging from 1 to 255 Description Using the vrrp vrid preempt mode command you can configure the preemp...

Page 787: ...ority is 100 Description Using the vrrp vrid priority command you can configure the priority of a router in the backup group Using the undo vrrp vrid priority command you can restore the default value of priority Priority determines the position of a router in the backup group A higher priority means that the router has more possibility to become MASTER Priority 0 is reserved for some special usag...

Page 788: ...ithin the group by sending them VRRP packets regularly adver_interval If the BACKUP routers fail to receive the VRRP packets from MASTER over a certain period of time master_down_interval they reach the conclusion that the master routers are not functioning properly and will change their own state to MASTER The user can set timer adver_interval through this command and the value of timer master_do...

Page 789: ... can be provided not only when a router fails but also when certain network interface is DOWN After this command is configured if the monitored interface is DOWN the priority of the router will reduce and the priority of other member in the backup group will become the highest As a result it will become the new MASTER so as to achieve backup function Example Set and monitor the interface Serial 0 ...

Page 790: ...blish a backup group and can also be used to add virtual IP address to an existing backup group At most 16 virtual IP addresses can be added to a backup group The undo vrrp vrid virtual ip command can be used to delete an existing backup group or delete a certain virtual address in the backup group If the addresses of a backup group have all been deleted the system will automatically delete the ba...

Page 791: ... display qos cql 11 2 1 3 display qos pq 12 2 1 4 display qos pql 12 2 1 5 display qos wfq 13 2 1 6 qmtoken 14 2 1 7 qos cq 15 2 1 8 qos cql default queue 16 2 1 9 qos cql inbound interface 16 2 1 10 qos cql protocol 17 2 1 11 qos cql queue queue length 18 2 1 12 qos cql queue serving 19 2 1 13 qos fifo 20 2 1 14 qos pq 21 2 1 15 qos pql default queue 21 2 1 16 qos pql inbound interface 22 2 1 17 ...

Page 792: ...ll views Parameter type Interface type number Interface number Description Using the display qos car command you can view the CAR rule configuration status and operation statistical information of a certain interface or all interfaces Example 3Com display qos car interface e0 Interface Ethernet0 Direction Outbound Rule s If match ACL 101 CIR 150000 Bps CBS 155500 Bit EBS 0 Bit Conform Action pass ...

Page 793: ...command you can view a specified CAR rule or all CAR rules If the specified rule number does not exist no information will be displayed Example Display the first rule in CAR rule list 3Com display qos carl 1 List Params 1 Precedence 1 2 3 4 5 Display all access rules in CAR rule list 3Com display qos carl List Params 1 Precedence 1 2 3 4 5 2 MAC Address 22 22 22 22 22 22 1 1 3 display qos gts Synt...

Page 794: ... EBS 0 Bit Queue Length 1 Packet Queue Size 0 Packet Pass 1435 316222 Packets Bytes Discard 2181 2891372 Packets Bytes Delay 120 114233 Packets Bytes 1 1 4 display qos lr Syntax display qos lr interface type number View All views Parameter type Interface type number Interface number Description Using the display qos lr command you can view the configuration status and statistical information of ra...

Page 795: ...inbound interface data flow outbound Set rate limit on outbound interface data flow any Any packet acl Packet matching ACL Access Control List acl index The number of ACL rule which is defined by the qos cacl command ranging from 1 to 199 Carl The packets that match the committed access rate list carl index The number of committed access rate list cir committed rate Normal data flow rate ranging f...

Page 796: ... taken onto packets when data rates are not in conformity with committed rates Description Using the qos car command you can configure a CAR rule on a certain interface Using the undo qos car command you can cancel a CAR rule on a certain interface By default no CAR rule is configured on any interface This command is intended for the processing of IP packets only It can not function to process oth...

Page 797: ...rent precedence values have OR relations among themselves For the same carl index only one CAR rule can be specified The newly defined CAR rule will overwrite previously defined one However multiple CAR rules can be defined with various carl index For related commands see qos car display qos car Example None 1 1 7 qos gts Syntax qos gts any acl acl index cir committed rate cbs burst size ebs exces...

Page 798: ...th the qos gts acl command simultaneously This command can take effect only after the function of fast forwarding is disabled Example 1 Shape traffic for all packets on interface Ethernet 0 The normal data flow rate is 38 400bps In burst traffic a data block whose size is twice of the value of the normal flow rate can be processed Later when the data rate subsides to a normal rate which is less th...

Page 799: ...value of committed rate excess burst size The maximum size of data block in burst traffic ranging from 0 to 155 000 000bits By default the value of excess burst size is 0 Description Using the qos lr command you can configure the bandwidth of physical interface Using the undo qos lr command you can restore the default bandwidth of physical interface This command is used to limit the outbound data ...

Page 800: ...the display qos cq command you can view configuration status and statistical information of customized queue on a certain interface or all interfaces For related commands see qos cq Example Display configuration status and statistical information of customized queue on interface Ethernet 0 3Com display qos cq interface ethernet 0 Ethernet 0 Custom queueing CQL 1 Output queue size max drops Interfa...

Page 801: ...n Using the display qos cql command you can view the content of customized queue No default information will be displayed For related commands see qos cq qos cql Example Display customized queue 3Com display qos cql Current CQL Configuration List Queue Params 1 1 Length 1 1 1 Serving 1 1 10 Length 40 1 10 serving 1400 1 2 Inbound interface Serial0 1 3 Protocol ip acl 100 1 3 Protocol ip 1 1 Inboun...

Page 802: ...istical information of interface priority queue on a certain interface or all interfaces For related commands see qos pq Example Display configuration status and statistical information of priority queue on interface Ethernet 0 3Com display qos pq interface ethernet 0 Interface Ethernet0 Priority queueing PQL 1 Outbound queue Size Length Discards Top 0 20 0 Middle 0 40 0 Normal 0 60 0 Bottom 0 80 ...

Page 803: ...st Queue Params 10 Normal Protocol ip udp rip 10 Bottom Protocol ip greater than 65535 12 Middle DefaultQueue 12 Top Inbound interface Ethernet 0 12 Middle Inbound interface Tunnel0 2 1 5 display qos wfq Syntax display qos wfq interface type number View All views Parameter type Interface type number Interface number Description Using the display qos wfq command you can view the configuration statu...

Page 804: ...ge from 1 to 50 Description Using the qmtoken command you can configure the number of QoS sending tokens Using the undo qmtoken command you can disable the sending token function of QoS By default enable QoS sending token function In such operation as FTP transmission QoS queue may become invalid since the upper layer provides flow control function QoS sending token function provides a kind of tra...

Page 805: ...o qos cq command you can cancel the operation of applying the CQ list onto the interface By default congestion management policy on each interface is FIFO To make them work you should apply the customized queue lists on some certain interfaces Although each interface could apply only one list the same customized queue list can be applied on several interfaces so can multiple different customized q...

Page 806: ...ancel a rule You can define multiple rules for one custom queueing rule list and apply the list to a certain interface The system will match the packets according to the rule If a packet matches the rule it will enter the specified custom queue if it does not match any rule it will enter the default queue If no default custom queue is configured the default custom queue number will be 16 For relat...

Page 807: ...ncel a rule By default no classification rule is configured The system searches for matched rules according to the configuration sequence of the rules When the packet matches a certain rule the searching process comes to an end For related commands see qos cql default queue qos cql protocol qos cql queue serving qos cql queue length Example Specify one rule direct packets from interface Serial 0 i...

Page 808: ...ed The system searches for matched rules according to the configuration sequence of rules When the packet matches a certain rule the searching process comes to an end For related commands see qos cql default queue qos cql inbound interface qos cql queue serving qos cql queue queue length Example Configure IP packet defined by acl number 100 into customized queue 3 3Com qos cql 1 protocol ip acl 10...

Page 809: ...Example Specify packet length of customized queue 10 in list 1 as 40 3Com qos cql 1 queue 10 queue length 40 2 1 12 qos cql queue serving Syntax qos cql cql index queue queue number serving byte count undo qos cql cql index queue queue number serving View System view Parameter cql index Group number of customized list ranging from 1 to 16 queue number Queue number ranging from 0 to 16 byte count L...

Page 810: ... qos fifo queue length queue length undo qos fifo queue length View Interface view Parameter queue length The number of packets which can be contained in the FIFO queue ranging from 1 to 1 024 Description Using the qos fifo command you can configure the value of the FIFO queue length Using the undo qos fifo command you can restore the default value By default 75 packets can be contained in FIFO qu...

Page 811: ...ake them work you should apply the configured precedence lists on some certain interfaces Although each interface could apply only one list the same precedence list can be applied on several interfaces so can multiple different precedence lists be applied on different interfaces For related commands see qos pql default queue qos pql inbound interface qos pql protocol qos pql queue Example Apply pr...

Page 812: ...priority of the priority queue is normal The packets that do not match any rules in the priority queue that is not matching the protocol type and interface type will enter the default priority queue For related commands see qos pql inbound interface qos pql protocol qos pql queue display qos pql qos pq Example Specify the default queue of the first precedence queue list as bottom 3Com qos pql 1 de...

Page 813: ...e packet matches a certain rule the searching process comes to an end For related commands see qos pql default queue qos pql protocol qos pql queue qos pq Example Specify a rule packets from interface Serial 0 will be directed into queue middle 3Com qos pql 1 inbound interface serial 0 middle 2 1 17 qos pql protocol Syntax qos pql pql index protocol protocol name queue option queue top middle norm...

Page 814: ...can be processed into queue udp port 0 65535 With the source or destination UDP port of IP packet being the specified port the packet can be processed into priority queue Description Using the qos pql inbound interface command you can configure a priority queueing rule to the rule list to specify network protocol type which matches the packets Using the undo qos pql protocol command you can cancel...

Page 815: ...tained in the queue Using the undo qos pql queue queue length command you can cancel a rule Default length values of all precedence queues are listed as follows Table 2 2 Default value of precedence queue queue top middle normal bottom length 20 40 60 80 With a full queue the newly received packets will be discarded For related commands see qos pql default queue qos pql inbound interface qos pql p...

Page 816: ...u can configure WFQ Weighted Fair Queuing Using the undo qos wfq command you can restore the default congestion management policy By default the congestion management policy is FIFO The default max queue length is 64 packets The default total queue number is 256 dynamic queues With a non WFQ interface WFQ policy can be adopted on interface by using this command Meanwhile WFQ parameters can be spec...

Page 817: ... Description Using the display qos wred command you can view the WRED configuration status and statistical information on a certain interface or all interfaces Example 3Com display qos wred interface ethernet 0 Interface Ethernet0 Current WRED configuration Exponent 1 1 2 PrecedenceRandom Tail Low High Discard discard discard limit limit probability 0 0 0 10 30 10 1 0 0 10 30 10 2 0 0 10 30 10 3 0...

Page 818: ...ail packets WRED which cannot be used alone or with other queuing algorithm jointly can only be used together with WFQ Before the start up of WRED therefore WFQ must have been applied on the specified interface already Besides only on physical interfaces shall WRED be enabled which can not work on any logic interface For related commands see qos wfq qos wred display qos wred Example Apply WRED on ...

Page 819: ... discarded probability of each precedence Using the undo qos wred ip precedence command you can restore the default values of various WRED precedence parameters WRED parameters cannot be configured unless WRED is applied on interface by using the qos wred command What the threshold limits is the average queue length For related commands see qos wred display qos wred Example Set the bottom limit of...

Page 820: ...verage queue length which will be calculated by WRED Using the undo qos wred weighting constant command you can restore the default value of the exponent WRED parameters cannot be configured unless WRED is applied on interface by using the qos wred command For related commands see qos wred display qos wred Example Set the exponent of the 2 rooted average queue length on interface Ethernet 0 as 6 3...

Page 821: ...ialer route 13 1 1 14 dialer threshold 14 1 1 15 dialer timer compete 16 1 1 16 dialer timer enable 16 1 1 17 dialer timer idle 17 1 1 18 dialer timer wait carrier 18 1 1 19 dialer user 18 1 1 20 dialer group 19 1 1 21 dialer rule 20 1 1 22 display dialer interface 21 1 1 23 display dialer route 23 1 1 24 interface dialer 24 1 1 25 ppp callback 25 1 1 26 ppp callback ntstring 25 Chapter 2 Modem Co...

Page 822: ...3Com Router Command Reference Guide V1 00 2 1 8 script trigger init 32 2 1 9 script trigger login 33 2 1 10 script trigger logout 34 2 1 11 script string 34 2 1 12 sendat 37 2 1 13 start chat 38 2 ...

Page 823: ...packet View All views Parameter event Enable DCC event debugging packet Enable DCC packet debugging Description Using the debugging dialer command you can enable DCC debugging Example None 1 1 2 dialer autodial interval Syntax dialer autodial interval seconds undo dialer autodial interval View Physical or dialer interface view 3 ...

Page 824: ...ished Auto dial does not require packets for triggering and it will not automatically disconnect due to idle timeout once a connection has been established In other words the configuration of the dialer timer idle command is invalid for it For related commands see dialer route Example Set the DCC auto dial interval on Serial 0 to 60 seconds 3Com Serial0 dialer autodial interval 60 1 1 3 dialer bun...

Page 825: ...3Com Dialer1 dialer bundle 3 3Com Serial0 dialer bundle member 3 1 1 4 dialer bundle member Syntax dialer bundle member number priority priority undo dialer bundle member number View Physical interface view Parameter number Dialer bundle number ranging from 1 to 255 priority The priority of the physical interface in the dialer bundle ranges from 1 to 127 The physical interface with higher priority...

Page 826: ...see dialer bundle Example Make Bri1 a member of dialer bundle1 and dialer bundle2 and assigns it a priority of 50 3Com interface bri 1 3Com Bri1 dialer bundle member 1 priority 50 3Com Bri1 dialer bundle member 2 priority 50 1 1 5 dialer callback center Syntax dialer callback center user dial number undo dialer callback center View Physical or dialer interface view Parameter user Call back accordi...

Page 827: ...ly the router will first attempt to place a return call according to the first parameter If the callback attempt fails it will try the second parameter for callback For related commands see ppp callback ppp authentication mode Example Configure a remote username and set the router to call the user back 3Com local user 3Comb password 3Comb 3Com Serial0 dialer route ip 1 1 1 2 user 3Comb 8810052 3Co...

Page 828: ...arches corresponding dialer interface by matching the caller number with the dialer number command The dialer call in command is used to preprocess the ISDN call in number so as to determine whether the user with this number can be permitted to access If the PBX switch does not provide the caller number refuse the call directly For related commands see dialer callback center Example Configure the ...

Page 829: ...p on the dialer interface will place the call For related commands see interface dialer Example Assign Serial1 and Serial2 to dialer circular group1 3Com Serial1 dialer circular group 1 3Com Serial2 dialer circular group 1 1 1 8 dialer enable circular Syntax dialer enable circular undo dialer enable circular View Physical or dialer interface view Parameter None Description Using the dialer enable ...

Page 830: ... range is from 0 to 30 If it is on a CT1 PRI interface range is from 0 to 23 Description Using the dialer isdn leased command you can configure an ISDN B channel can be either the channel on a BRI or PRI interface to be the leased line Using the undo dialer isdn leased command you can cancel the setting By default no ISDN B channel is configured to be leased line The user can configure any ISDN B ...

Page 831: ...f PPP the remote user names which are obtained via PPP authentication and configured with dialer user respectively will decide which dialer interface will receive the incoming call In this case dialer user must be configured and dialer number can be configured optionally When dialer interfaces run link protocol of Frame Relay the calling numbers which are received from the incoming call and config...

Page 832: ...ity command you can configure a priority for a physical interface in a dialer circular group in the Circular DCC configuration Using the undo dialer priority command you can restore the default priority This command sets the order in which the available physical interfaces in a dialer circular group are used The physical interfaces with higher priority will be used first For related commands see d...

Page 833: ...e held in the buffer queue to wait for transmission as soon as the link is set up The setting of packets decides the queue length If the length is set to 0 the outgoing packets before the link on the interface is set up will be discarded Example Set the number of packets that can be buffered on Serial 1 to 10 3Com Serial1 dialer queue length 10 1 1 13 dialer route Syntax dialer route protocol next...

Page 834: ...Description Using the dialer route command you can configure calling one or multiple destination addresses or to receive calls from multiple remote ends on a DCC interface Using the undo dialer route command you can cancel a dialer route By default the system does not define dialer route To originate a call the parameter dial number should be used If the user keyword is used PPP authentication sho...

Page 835: ...he available links will be enabled to calls if traffic percentage is set to 0 If the ratio of the traffic on a link of a DCC interface to the bandwidth exceeds a defined threshold the second link will be enabled to implement MP binding with the first one When the ratio of traffic on the two links to the bandwidth exceeds a defined threshold the third link will be enabled so on and so forth On the ...

Page 836: ...te command you can restore the default interval Contention occurs if no free channel is available when DCC originates a call Normally after a link is set up timer idle timing will take effect However if a call to a different destination address is originated on this interface at this time contention will occur In this case DCC replaces the timer idle timing with the timer compete timing Example Se...

Page 837: ... Time that a link is allowed to be idle ranges from 0 to 65535 seconds By default seconds is 120 seconds Description Using the dialer timer idle command you can configure the interval that a link is allowed to be idle in other words the interval when there is no packets which comply with the permit statements transmitted after a call has been set up on the interface Using the undo dialer timer idl...

Page 838: ...rrier command you can configure the timeout time of wait carrier timer Using the undo dialer timer wait carrier command you can restore the default time of the timer Wait carrier timer begins to time after the DCC call is initiated If the call connection fails to be set up within the timeout time of this timer the call will be terminated If the connection for a call is not established yet within t...

Page 839: ...s which are obtained via PPP authentication and configured with dialer user respectively will decide which dialer interface will receive the incoming call When dialer interfaces run link protocol of Frame Relay the calling numbers which are received from incoming call and configured with dialer number respectively will decide which dialer interface will receive the incoming call In this case diale...

Page 840: ...ess control group Through the dialer rule command the user can associate a access control group with the acl command A DCC interface can only be the member of a access control group If it is configured to be a member of another access control group this configuration will replace the previous one Note In the default configuration of the interface dialer group is not configured The user must config...

Page 841: ...et for dial interfaces This command is used to set the DCC call packet triggering control to which a access control group corresponds And a dial interface can be placed in a access control group through the dialer group command Thereby the DCC call s packet triggering on the DCC interface can be controlled If a access control group cannot find the corresponding dialer rule DCC will regard the pack...

Page 842: ... 6688001 123 1 3 1 6688025 123 1 3 1 6688080 Idle timer 120 secs Compete timer 20 secs Wait for carrier timer 60 secs Enable timer 5 secs Autodial interval 300 secs The meanings of the above displayed information are shown in the following table Table 1 1 Information displayed by executing the display dialer interface command Field Description NextHop_address Remote address to which a dialer route...

Page 843: ...m0 static dialer route ip 115 1 1 1 6688037 on Dialer1 static dialer route ip 115 1 1 1 6688052 on Dialer1 static dialer static route ip 3 0 0 2 660300 on Serial1 Displays the dynamic dialer routes created by all the DDR interfaces 3Com display dialer route detail dynamic dialer route ip 155 1 1 1 6688037 on AnalogModem5 Dial out Use Sec 0Idleout Sec 81 Table 1 2 Information displayed by executing...

Page 844: ...e services provided by multiple physical interfaces and individual physical interfaces can provide services for multiple dialer interfaces at the same time Therefore authentication must be configured on these physical interfaces so as to use the user name of a dial in party to locate the corresponding dialer interface for the call In this mode physical interfaces and dialer interfaces are dynamica...

Page 845: ...allback command you can disable the interface to send or accept PPP callback requests By default sending or receiving callback request is disabled The callback function can be used to save the communication cost for the calling party in the case that the calling party pays the charge for calls For related commands see ppp callback ntstring Example Enable accepting callback request on Serial0 inter...

Page 846: ... ppp callback ntstring command you can cancel the configured callback dial number By default no callback dial number is set for the Windows NT server When a router functions as the callback server to call a Windows NT server this command should be configured if the server needs the router to send the callback number For related commands see ppp callback Example Set the dial number for a Windows NT...

Page 847: ...able Modem event debugging interface type number Interface name and number Description Using the debugging modem command you can enable Modem debugging According to the information output after executing this command the user can make sure whether the correct Modem script has been specified for a particular event Example None 2 1 2 modem Syntax modem in out View Interface asynchronous serial inter...

Page 848: ...ault both incoming and outgoing Modem calls are permitted on the interfaces This command can be used to set the authority of Modem dial in and dial out on an interface Example Enable receiving incoming Modem calls on Serial2 interface 3Com Serial2 modem in 2 1 3 modem auto answer Syntax modem auto answer undo modem auto answer View Interface asynchronous serial interface AUX or AM port view Parame...

Page 849: ...xample Set the Modem externally connected to the asynchronous serial interface Serial0 to operate auto answer mode 3Com Serial0 modem auto answer 2 1 4 modem login Syntax modem login undo modem login View Interface asynchronous serial interface AUX or AM port view Parameter None Description Using the modem login command you can configure authentication for modem dial in user Using the undo modem l...

Page 850: ...Modem initialization string in the system is AT C1 D2 S0 0 indicating locking the serial interface speed and enabling DCD Data Carrier Detected DTR Data Terminal Ready disconnection and non auto answering If this command is configured the AT command will be used to initialize the Modem before executing Modem dialing Normally the default Modem initialization string AT C1 D2 S0 0 in the system is en...

Page 851: ...g the undo script trigger connect command you can cancel this feature By default no Modem script is configured If this command is configured the specified script will be executed anytime when an incoming call connection is established For related commands see script string start chat script trigger login script trigger connect script trigger logout script trigger dial script trigger init Example S...

Page 852: ...ling For related commands see script string start chat script trigger login script trigger connect script trigger logout script trigger init Example Specify the script example to be used for DCC dialing 3Com Serial0 script trigger dial example 2 1 8 script trigger init Syntax script trigger init script name undo script trigger init View Interface asynchronous serial interface AUX or AM port view P...

Page 853: ... AM port view Parameter script name The name of Modem script Description Using the script trigger login command you can configure the Modem script that will be executed when an outgoing call connection is successfully established Using the undo script trigger login command you can cancel this feature By default no Modem script is configured If this command is configured the specified script will b...

Page 854: ... is executed when a link is reset Using the undo script trigger logout command you can cancel this feature By default no Modem script is configured If this command is configured the specified Modem script will be executed when a link is reset For example reset the Modem when the call on the interface is down For related commands see script string start chat script trigger login script trigger conn...

Page 855: ...ms the routers can negotiate the protocol to be encapsulated with the physical link and its operating parameters The Modem script format in common use is as follow send string1 receive string1 send string2 receive string2 Among the above format send string indicates a sending string receive string indicates a receiving string Normally send string and receive string appear in pairs and the script m...

Page 856: ...the device waits for receiving strings If no expected strings are received within the interval the execution of the script will be failed Once being set the setting will be valid till a new TIMEOUT is set All the strings and keywords in a script are case sensitive Both strings and keywords are separated by spaces If a space is contained in a string it should be put in the double quotation marks A ...

Page 857: ...e number For related commands see sendat start chat script trigger login script trigger connect script trigger logout script trigger dial script trigger init Example Define a Modem script 3Com script string example AT OK ATS0 1 OK 2 1 12 sendat Syntax sendat at string View Interface asynchronous serial interface AUX or AM port view Parameter at string AT command string which can be A and any strin...

Page 858: ...Example Send the audio dialing command and the dialing number is 169 3Com Async1 sendat ATDT169 2 1 13 start chat Syntax start chat script name View Interface asynchronous serial interface AUX or AM port view Parameter script name The name of Modem script Description Using the start chat command you can configure executing the specified Modem script on an interface This command provides the user w...

Page 859: ...Dial Up 3Com Serial0 start chat example 39 ...

Reviews:

No comments

Related manuals for 3C13612

D-Link DSL-500 Command Reference Manual preview
DSL-500
Brand: D-Link Pages: 15
D-Link DSN-4100 Series Quick Start Manual preview
DSN-4100 Series
Brand: D-Link Pages: 2
D-Link DWL-G550 Product Data Sheet preview
DWL-G550
Brand: D-Link Pages: 2
IBM 3708 Description preview
3708
Brand: IBM Pages: 342
H3C MSR 20-20 Supplementary Manual preview
MSR 20-20
Brand: H3C Pages: 6
3Com OfficeConnect 3CP4144 How To Set Up preview
OfficeConnect 3CP4144
Brand: 3Com Pages: 4
3Com OfficeConnect 3CP4144 Release Note preview
OfficeConnect 3CP4144
Brand: 3Com Pages: 2
H3C MSR 20-20 User Manual preview
MSR 20-20
Brand: H3C Pages: 60
H3C MSR 20 Series Manual preview
MSR 20 Series
Brand: H3C Pages: 149
3Com 3C13636 Installation Manual preview
3C13636
Brand: 3Com Pages: 27
3Com OfficeConnect 3C19500 User Manual preview
OfficeConnect 3C19500
Brand: 3Com Pages: 52
4RF Aprisa LTE Quick Start Manual preview
Aprisa LTE
Brand: 4RF Pages: 7
Accelerated 6330-MX User Manual preview
6330-MX
Brand: Accelerated Pages: 10
Accelerated 6300-CX Customer Setup Instructions preview
6300-CX
Brand: Accelerated Pages: 4
Idis DR-4100P Series Installation Manual preview
DR-4100P Series
Brand: Idis Pages: 30
Microsoft Azure StorSimple 8100 Hardware Installation Manual preview
Azure StorSimple 8100
Brand: Microsoft Pages: 12
Opengear IMG4216-25 Quick Start Manual preview
IMG4216-25
Brand: Opengear Pages: 2
ZyXEL Communications NBG-460N Manual preview
NBG-460N
Brand: ZyXEL Communications Pages: 5

Brands by name

Popular brands

Load more brands