Alcatel-Lucent OmniAccess 700 CLI Command Reference Manual Download | Manualshive

Page: 638 / 931

background image

firewall policy {in|out}

Except on the first page, right running head:
Heading1 or Heading1NewPage text (automatic)

605

Alcatel-Lucent

Beta

Beta

OmniAccess 700 CLI Command Reference Guide

FIREWALL

POLICY

{

IN

|

OUT

}

firewall policy

{

in

|

out

}

<policy-name>

D

ESCRIPTION

This command is used to attach a firewall policy to an interface in ‘in’ or ‘out’
direction. Firewall policy is applied to the ingress (incoming) traffic if “

in

” keyword

is used. Firewall policy is applied to the egress (outgoing) traffic if “

out

” keyword is

used.

Note:

Firewall policy will not take effect until it is bound to an interface.

P

ARAMETERS

D

EFAULT

V

ALUE

No default parameters.

E

XAMPLE

ALU(config)# interface GigabitEthernet7/0

ALU(config-if GigabitEthernet7/0)# firewall policy in P1

ICMP

-

BLOCK

-

TRACE

-

ROUTE

icmp-block-trace-route

D

ESCRIPTION

This command is not a default attack setting. The square brackets around the
whole command denotes that its optional. This implies that it is not set for
protection by default on the OA-700, but you can turn it on by explicitly adding the
above command in the user-defined attack prevention list.

P

ARAMETERS

None.

E

XAMPLE

ALU(config-firewall-attack-A1)# icmp-block-trace-route

Parameter

Description

in

Firewall policy is attached to the ingress traffic.

out

Firewall policy is attached to the egress traffic.

policy-name

Name of the firewall policy.

«
...
636
637
638
639
640
...
»

Summary of Contents for OmniAccess 700 CLI

Page 1: ...upport 800 995 2696 International Customer Support 818 878 4507 Internet service esd alcatel lucent com Website www alcatel lucent com Part No 060224 00 Rev B For final production import color definit...

Page 2: ...stallation instructions it may not function exactly to the said specifications Modifying the equipment without Alcatel Lucent s written authorization may result in the equipment no longer complying wi...

Page 3: ...Configuration and Monitoring 39 aaa authentication console 40 aaa authentication dot1x 40 aaa authentication enable 41 aaa authentication remotelogin 41 aaa authentication web 42 aaa authentication p...

Page 4: ...termark 66 mkdir 67 modem 67 no aaa authentication console 68 no aaa authentication dot1x 68 no aaa authentication enable 68 no aaa authentication remotelogin 68 no aaa authentication web 68 no aaa me...

Page 5: ...install 74 package install flash 76 package remove 77 ping 79 power 80 radius server 81 radius server auth port 82 radius server deadtime 82 radius server key 83 radius server retransmit 83 radius se...

Page 6: ...snmp view 115 show startup config 116 show system status 117 show tech support 118 show version 119 snmp agent 119 snmp enable 120 snmp disable 120 snmp server access 121 snmp server group 122 snmp s...

Page 7: ...face 141 vrrp group id authentication text 142 vrrp group id description 143 vrrp group ID ip address 143 vrrp group id IP ip address secondary 144 vrrp group id preempt 144 vrrp group id priority val...

Page 8: ...ree 174 no spanning tree vlan cost 174 no spanning tree vlan fwd time hello time max age priority 174 no spanning tree vlan port priority 174 no spanning tree vlan spanning disabled 174 show spanning...

Page 9: ...dot1x timeout reauth period 196 no dot1x timeout supp timeout 196 no dot1x timeout tx period 196 show dot1x 197 show dot1x interface switchport 198 show dot1x statistics 199 10 Port Monitoring 201 no...

Page 10: ...erial 228 linecode 229 loopback 230 no cablelength 230 no clocksource 230 no channel group 231 no encapsulation 231 no framing 231 no linecode 231 no loopback 231 no mtu 231 no shutdown 231 show contr...

Page 11: ...dte 252 frame relay lmi n392dte 252 frame relay lmi n393dte 253 no encapsulation frame relay 253 no frame relay interface dlci 253 no frame relay keepalive 254 no frame relay lmi type 254 no frame rel...

Page 12: ...66 ppp ipcp negotiate 266 ppp lcp echo interval 267 ppp lcp negotiate 267 ppp lcp max echo 268 ppp timeout restart interval 268 ppp timeout restart timer 269 ppp timeout max configure 269 ppp timeout...

Page 13: ...7 interface mlfr 298 mlfr ack interval 298 mlfr bid 299 mlfr hello interval 299 mlfr lid 300 mlfr retry count 300 no encapsulation mlfr 301 no frame relay interface dlci 301 no frame relay lmi type 30...

Page 14: ...list 324 match lists rulesets 324 no include 327 no list 328 no match list 328 no rule 329 show include 329 show list 330 show match list 331 show rule 332 Part 5 Routing Protocols 21 Protocol Indepe...

Page 15: ...st 364 set dampening 364 set local preference number value 365 set metric 366 set metric type 366 set origin 367 set weight 367 show access lists 368 show ip access lists 369 show ip as path access li...

Page 16: ...rce 388 no version 388 no ip rip v2 broadcast 388 offset list 389 passive interface 390 redistribute 391 router rip 392 show ip protocols 392 show ip rip database 394 show ip rip interfaces 395 show i...

Page 17: ...r activate 420 neighbor advertisement interval 420 neighbor capability 421 neighbor default originate 421 neighbor description 422 neighbor distribute list 423 neighbor ebgp multihop 424 neighbor filt...

Page 18: ...abr 456 area authentication 456 area default cost 457 area nssa 458 area range 459 area stub 460 area virtual link 461 auto cost 462 clear ip ospf 462 compatible RFC1583 463 default information origin...

Page 19: ...how ip ospf process interface 500 show ip ospf request list 501 show ip ospf retransmission list 502 show ip ospf route 503 show ip ospf summary address 503 show ip ospf virtual links 504 summary addr...

Page 20: ...t 528 ip pim sparse mode 529 no ip pim sparse mode 529 show ip igmp groups 530 show ip igmp interface 531 Multicast Global Commands 532 clear ip mroute 532 clear ip multicast traffic 532 show ip mrout...

Page 21: ...telnet 567 traceroute 568 Part 6 Network Security 28 Network Address Translation 571 Source Nat SNAT Configuration Commands 572 source nat 572 source nat host 573 source nat pool 574 source nat port r...

Page 22: ...r 595 no ip filter in out 595 no rule 595 no stateless 595 renumber 596 show ip filter 596 show ip filter statistics 597 stateless 598 Network Attack Prevention Configuration Commands 599 all 599 atta...

Page 23: ...22 show firewall session proto 623 show firewall session destination 624 show firewall session source 625 tcp fin no ack 625 tcp fin scan 626 tcp header frag 626 tcp invalid urgent offset 626 tcp null...

Page 24: ...cs 644 clear firewall alg noe subaddress mapping 645 match service noe 646 nat ip reserve port range 647 show firewall alg noe debug counters 648 show firewall alg noe statistics 649 show firewall alg...

Page 25: ...l check strict 673 no crypto ike dpd 673 no crypto ike key 673 no crypto ike policy 673 no crypto map 673 no dpd 674 no ike identity 674 no ipsec security association lifetime 674 no lifetime 674 no l...

Page 26: ...ntity 701 no ike policy 701 no ipsec profile 701 no lifetime 701 no pfs 702 no shutdown 702 no transform set 702 no tunnel destination 702 no tunnel source 702 pfs 703 show crypto ipsec profile 703 sh...

Page 27: ...how firewall intrusion snort statistics rule 723 show firewall intrusion snort update 724 show firewall policy 724 update 725 32 Generic Routing Encapsulation 727 interface tunnel 728 ip address 728 m...

Page 28: ...active calls 751 show admission control statistics cac 752 35 Telephony Services 753 outbound proxy address 754 no outbound proxy address 755 no ror callserver address 755 no telephony default dialpla...

Page 29: ...no bandwidth 784 no class 784 no class map 785 no fair queue 785 no frame relay qos bandwidth percent 785 no network control 785 no police 785 no policy map 785 no priority 785 no qos preclassify 785...

Page 30: ...ip dhcp option dns server 818 ip dhcp option domain name 819 ip dhcp option lease time 820 ip dhcp option log server 821 ip dhcp option ntp server 822 ip dhcp option routers 823 ip dhcp option subnet...

Page 31: ...er 835 no option time offset 835 no ip dhcp pool 835 no network 835 no range 836 range 836 service dhcp enable 837 service dhcp disable 837 show ip dhcp bindings 838 show ip dhcp options 839 show ip d...

Page 32: ...1 license install 862 license remove 864 list licenses 865 show licenses feature list 866 show licenses 867 Part 10 Lifeline Dedicated Management Framework 42 Lifeline 871 lifeline 872 lifeline exit 8...

Page 33: ...e peercache 885 cache timeout 885 delete acl 886 parse webcache configuration file 886 reprioritize access_rules 887 show webcache accel 887 show webcache access_log 888 show webcache access_rules 888...

Page 34: ...ing the OmniAccess 700 by using the Command Line Interface CLI All commands are described in alphabetical order They do not follow the sequence of configuration Each chapter includes table of paramete...

Page 35: ...show version update show environment show mem show proc etc Chapter 4 Virtual Router Redundancy Protocol chapter documents the commands for Virtual Router Redundancy Protocol VRRP These commands are u...

Page 36: ...nterface Chapter 15 Point to Point Protocol documents the CLI commands for the Point to Point Protocol PPP These commands are used to configure PPP encapsulation on a T1 or an E1 interface Chapter 16...

Page 37: ...mplexity of the topology and the stability of the network as it expands All the chapters in this part focus on configuring the routing services Chapter 21 Protocol Independent Features lists the proto...

Page 38: ...apter 31 Intrusion Detection System comprehends the commands to configure Intrusion Detection and Intrusion Prevention on the OA 700 Chapter 32 Generic Routing Encapsulation provides the commands for...

Page 39: ...nfiguration Protocol Relay focuses on DHCP Relay configuration commands and Chapter 40 DNS Domain Name Service Client documents the DNS Client configuration commands PART IX LICENSE MANAGER This part...

Page 40: ...d by you Square brackets enclose an optional element keyword or argument Braces enclose a mandatory element keyword or argument Line indicates an optional choice x y Square brackets enclosing keywords...

Page 41: ...us situations OBTAINING DOCUMENTATION Alcatel Lucent provides several ways to obtain technical assistance and other technical resources Documents can be downloaded from our support site service esd al...

Page 42: ...tel Lucent Technical Support Team provides 24 hour a day technical support services online and over the phone Alcatel Lucent US Customer Support 800 995 2696 International Customer Support 818 878 450...

Page 43: ...OmniAccess 700 CLI Command Reference Guide Left running head Chapter name automatic 10 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 44: ...tel Lucent 11 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements suc...

Page 45: ...Left running head Chapter name automatic 12 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 46: ...W The Command Line Interface CLI is the primary interface to access the OA 700 The CLI is the interface for console and connections via SSH Telnet and Modem The CLI which automatically starts once the...

Page 47: ...LI CONFIGURATION MODE In the configuration mode you can configure the OA 700 by creating a hierarchy of configuration statements using the CLI or by creating a text ASCII file that contains the statem...

Page 48: ...ither insert delete or modify the configuration Type the config terminal command to enter the Configuration Mode This mode is used to configure the system globally or to enter specific configuration m...

Page 49: ...commands ping and ssh are available The UM command set is a subset of the SUM command set UM is also the starting point for accessing the SUM command set USER MODE COMMAND SET Command in UM Descriptio...

Page 50: ...tered in either mode It is recommended to set up password authentication for users who need to access the SUM command set The SUM mode prompt consists of host name of the device followed by a pound si...

Page 51: ...S name to an IP address or vice versa package Package Manipulation ping Send echo messages power Control power on specified line card quit Quit this session reload Reboot the Chassis rmdir Delete dire...

Page 52: ...configuration these commands are stored across router reboots To access CM enter the following command in SUM EXAMPLE ALU configure terminal ALU config Enter configuration commands one per line End w...

Page 53: ...interface Select an interface to configure ip Global IP configuration sub commands ip policy Define Modify PBR policy key chain Key management license License operations line Configure a terminal lin...

Page 54: ...nning tree spanning tree configurations ssh SSH service tacacs server Modify TACACS query parameters telnet Telnet service tftp server To Provide TFTP service for file requests time range Define Modif...

Page 55: ...f mlfr100 The following command configures a E1 controller and channelized serial interface ALU config controller E1 0 0 ALU config controller E1 ALU config controller E1 exit ALU config ALU config in...

Page 56: ...ommand configures a sub interface on a channelized serial interface ALU config interface Serial 0 0 0 1 ALU config if Serial0 0 0 1 To exit from the S ICM and return to the ICM use the Exit command To...

Page 57: ...f you use Ctrl Z at the end of a command line in which a valid command is typed that command will be added to the running configuration file In other words using Ctrl Z is equivalent to hitting the En...

Page 58: ...g if GigabitEthernet7 0 Z ALU ALU configure Enter configuration commands one per line End with CNTL Z ALU config interface GigabitEthernet 7 0 ALU config if GigabitEthernet7 0 end ALU ALU configure En...

Page 59: ...command by using the context sensitive help feature ENABLE CLI HELP EXAMPLE ALU config service completion spacebar complete Enable Spacebar completion tab complete Enable Tab completion ALU config ser...

Page 60: ...called the Word Help EXAMPLE ALU config show i PRIVILEGE COMMANDS inband inband interfaces Display information for all interfaces internal Internal info ip IP information ip policy ip policy keyword...

Page 61: ...t IP access lists as path access list List AS path access lists community list List community list dhcp Dynamic Host Configuration Protocol commands filter filter details mroute Multicast multicast Mu...

Page 62: ...name The command is not executed until you use the Return or Enter key This way you can modify the command if the full command was not what you intended by the abbreviation If the CLI cannot complete...

Page 63: ...ight Arrow or Ctrl F Forward character Moves the cursor one character to the right Esc B Back word Moves the cursor back one word Esc F Forward word Moves the cursor forward one word Ctrl A Beginning...

Page 64: ...r Ctrl K Deletes all characters from the cursor to the end of the command line Esc D Deletes from the cursor to the end of the word Keystrokes Function Details Ctrl Y Recalls the most recent entry in...

Page 65: ...GigabitEthernet 7 0 8 exit 9 interface GigabitEthernet 7 0 10 ip address 10 91 0 24 24 11 top 12 configure t 13 interface GigabitEthernet 7 05B 14 interface GigabitEthernet 7 0 1 15 interface Gigabit...

Page 66: ...pes are obviously decided by the hardware In addition certain physical interface types support sub interfaces For example for 802 1Q VLANs and for Frame Relay 6 1007 DLCIs The sub interfaces for 802 1...

Page 67: ...ring of show interface counters never Queueing strategy fifo Output queue 0 0 size max 0 drops Input queue 0 0 size max 0 drops 5 minute input rate 0 bits sec 0 packets sec 5 minute output rate 0 bits...

Page 68: ...rruns 0 output errors 0 collisions 0 interface resets 0 output buffer failures 0 output buffers swapped out EXAMPLE 3 ALU show interfaces loopback1 is up line protocol is up Hardware is Loopback Inter...

Page 69: ...c 0 packets input 0 bytes 0 no buffer Received 0 broadcasts 0 runts 0 giants 0 throttles 0 input errors 0 CRC 0 frame 0 overrun 0 ignored 0 abort 0 packets output 0 bytes 0 underruns 0 output errors 0...

Page 70: ...1 up Down GigabitEthernet7 1 202 202 202 2 up Down Tunnel0 192 168 1 2 up Down Tunnel1 unassigned up Down Tunnel3 unassigned up Down Tunnel5 unassigned up Down mlppp1 unassigned Down Down CLEAR INTERF...

Page 71: ...AN INTERFACE EXAMPLE ALU config if GigabitEthernet7 0 shutdown ALU config if GigabitEthernet7 0 no shutdown Command in ICM Description shutdown This is entered in the Interface Configuration Mode Thi...

Page 72: ...ter documents the Command Line Interface CLI commands for configuring the basic functionalities at the system level This chapter includes tables of parameters default values and configuration examples...

Page 73: ...ARAMETERS EXAMPLE ALU config aaa authentication console m1 AAA AUTHENTICATION DOT1X aaa authentication dot1x method list name DESCRIPTION This command associates an already configured method list with...

Page 74: ...seeking access to Super User mode PARAMETERS EXAMPLE ALU config aaa authentication enable m1 AAA AUTHENTICATION REMOTELOGIN aaa authentication remotelogin method list name DESCRIPTION This command ass...

Page 75: ...ig aaa authentication web m1 AAA AUTHENTICATION PASSWORD PROMPT aaa authentication password prompt prompt text DESCRIPTION This command is used to customize the text which is displayed to request the...

Page 76: ...u1 AAA PRE AUTHENTICATION BANNER aaa authentication banner delimiter multi lined string delimiter DESCRIPTION This command is used to enter a descriptive message to be displayed before the user is as...

Page 77: ...scriptive message to be displayed after a successfully authenticated login PARAMETERS EXAMPLE ALU config aaa authentication success message Login attempt successfull Parameter Description delimiter De...

Page 78: ...ethods DESCRIPTION This command is used to configure a method list A method list can be successfully configured only if the lists do not contain any invalid method like empty radius TACACS groups etc...

Page 79: ...services AAA SERVER GROUP RADIUS aaa server group radius name DESCRIPTION This command is used to configure a RADIUS server group This command invokes the RADIUS Server Group mode Note You cannot ente...

Page 80: ...TACACS server group This command invokes the TACACS Server Group mode Note You cannot enter a TACACS server group as local or enable as they are reserved keywords for pre defined authentication metho...

Page 81: ...and key does not match with the one stored in the known_hosts file This mismatch can happen if the an IP address is assigned to a different host or if the key of the host is regenerated In such cases...

Page 82: ...ffer PARAMETERS None EXAMPLE ALU config clear logging CLEAR SESSION clear session session id DESCRIPTION The command clears the session corresponding to the AAA session ID provided This can be used to...

Page 83: ...is command allows you to set the RTC as well as the system s clock date and time The time must be specified as GMT The year range is between 2000 2036 PARAMETERS EXAMPLE ALU clock set 17 59 20 09 25 2...

Page 84: ...ig clock synchronize using ntp server 10 91 2 87 every 2 hours This command has no output To verify the settings use the show clock command described in this section Parameter Description ntp Network...

Page 85: ...used to copy the config file to the user area fpkey tftp or ftp server HTTP and HTTPS are not supported in this command ALU config copy running config tftp Address name of remote host 10 91 2 87 Remo...

Page 86: ...s in fpkey or user directory PARAMETERS EXAMPLE ALU config delete all fpkey DELETE CONFIG FILE delete config file file name DESCRIPTION This command is used to delete the configuration file from the a...

Page 87: ...ile name after fpkey keyword without any space PARAMETERS EXAMPLE ALU config delete fpkey backup_package DELETE USER delete user file name DESCRIPTION This command deletes the given file from the user...

Page 88: ...ll the directories and files configured in fpkey or user location If none of the options are given user is taken by default PARAMETERS EXAMPLE ALU config dir Permission Size Date modified Name drwx 30...

Page 89: ...the Privileged mode PARAMETERS EXAMPLE ALU config enable secret test Secret for level 15 is set ALU config enable password pass Secret for level 15 is set Parameter Description secret Use this keywor...

Page 90: ...sed to configure the system name By default the system name is ALU To give the system a more informative name use the hostname command PARAMETERS EXAMPLE ALU config hostname alcatel lucent HTTP http e...

Page 91: ...the DUT PARAMETERS EXAMPLE ALU config https enable LINE CONSOLE BAUDRATE line console baudrate 115200 19200 2400 38400 4800 57600 9600 DESCRIPTION This command is used to configure the baud rate PARAM...

Page 92: ...ommand is used to configure the timeout in minutes or seconds for SSH Telnet and Modem CLI sessions These sessions close if they are idle for the specified time A zero input specifies that the console...

Page 93: ...ERS DEFAULT VALUE The default time out is 20 minutes EXAMPLE ALU config line vty exec timeout 0 ALU config line vty exec timeout 45 15 LIST CONFIG FILES list config files DESCRIPTION This command is u...

Page 94: ...onfig directory PARAMETERS EXAMPLE ALU load config file config1 Loading config1 to running config Percent Complete LOGGING BUFFERED logging buffered priority 0 7 size 4 16384 DESCRIPTION This command...

Page 95: ...7 DESCRIPTION This command is used to display the log messages of the specified priority and higher on the console PARAMETERS EXAMPLE ALU config logging console priority 5 LOGGING ON logging on DESCR...

Page 96: ...ty is 5 and subtag is LOG To limit the number of messages coming from snort to say 5 in 2 seconds execute the following command ALU config logging rate limit 5 2 tag snort 2003 Dec 22 18 41 10 CLI 6 A...

Page 97: ...ING RATE LIMIT NO UNIQUE logging rate limit no unique DESCRIPTION This command restricts the number of messages in a given interval to that specified in the rate limiting command and prevents logging...

Page 98: ...AMETERS DEFAULT VALUE The default port is 514 and the default priority level is 7 EXAMPLE ALU config logging remote 1 1 1 1 SERVICE TIMESTAMPS LOG service timestamps log DESCRIPTION This command is us...

Page 99: ...AULT VALUE By default messages with a priority of 5 and lower will be logged EXAMPLE ALU config logging system LOGGING WATERMARK logging watermark 100 10000 DESCRIPTION To set a watermark level in ter...

Page 100: ...key Directory alutest ALU config mkdir user Directory alutest MODEM modem enable disable DESCRIPTION This command is used to enable or disable the modem port PARAMETERS DEFAULT VALUE By default the mo...

Page 101: ...TELOGIN no aaa authentication remotelogin method list name The no command removes the associated method list from the remote login client type NO AAA AUTHENTICATION WEB no aaa authentication web metho...

Page 102: ...ing prompted the password Remote clients will be denied access with the message No password Set This is the default behavior NO LINE CONSOLE EXEC TIMEOUT no line console exec timeout This command remo...

Page 103: ...ark This command disables the watermark functionality NO RADIUS SERVER no radius server ip address This command removes the RADIUS Server from the server group NO RADIUS SERVER AUTH PORT no radius ser...

Page 104: ...ll servers that do not have a server specific timeout value NO SERVICE TIMESTAMPS LOG no service timestamps log This command disables the date and time display in the log messages NO SNMP AGENT no snm...

Page 105: ...s server auth port 1 1000 The no command deletes the global TACACS auth port from the configuration and resets it to default for all servers that do not have a server specific port NO TACACS SERVER KE...

Page 106: ...80 EXAMPLE ALU config package backup ftp Remote Host 10 91 2 87 Remote Port Enter for default Path backup apps 2 2 25 1 npm Username Enter for none vinaykumar Password Backing up Applications package...

Page 107: ...site using ftp ALU config package install ftp Remote Host 10 91 0 87 Remote Port Enter for default Path Filename packages alu apps 2 1 22 1 npm Username Enter for none user1 Password Downloading remo...

Page 108: ...2 1 22 1 npm y n y Installing new release alu apps 2 1 22 1 npm OK Complete Deleting temporary file OK Do you want to set default immediately Yes Chassis will be rebooted automatically No Manually ru...

Page 109: ...npm The system will need to reboot after a flash upgrade Do you want to continue y n y Do you want to save config before proceeding y n n Verifying and Extracting LoL image Checking for free space in...

Page 110: ...ash updated successfully in slot 3 RELEASE HISTORY Release 2 3 parameter vrf vrf name was added PACKAGE REMOVE package remove package name DESCRIPTION This command removes the specified package Howeve...

Page 111: ...plication packages like 2 1 7 1 2 1 8 1 The package being set as default should exist in the system PARAMETERS EXAMPLE To set the package 2 1 23 1 as default ALU package set default 2 1 23 1 Do you wa...

Page 112: ...ATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU ping 192 168 10 121 Sending 5 64 byte ICMP Echos to 192 168 10 121 timeout is 10 seconds Success rate is 100 percent 5 5 round trip min avg max 0 124 0...

Page 113: ...Lucent POWER power slot slot number up down DESCRIPTION This command powers down a slot or attempts to power it up again if the slot has already been powered down PARAMETERS EXAMPLE ALU power slot 1...

Page 114: ...ADIUS server group PARAMETERS EXAMPLE ALU config srv grp rad1 radius server 1 1 1 1 Parameter Description ip address IP address of the remote RADIUS server to be added to the group auth port 1 6000 De...

Page 115: ...n port is 1812 EXAMPLE ALU config radius server auth port 1800 RADIUS SERVER DEADTIME radius server deadtime 1 1440 DESCRIPTION This command is used to specify a global deadtime value that will be app...

Page 116: ...empty string EXAMPLE ALU config radius server key test RADIUS SERVER RETRANSMIT radius server retransmit 1 100 DESCRIPTION This command is used to specify a global retransmit value that will be applie...

Page 117: ...config radius server timeout 10 RELOAD reload line DESCRIPTION To reload the system also referred to as a soft reboot PARAMETERS EXAMPLE ALU reload where s slot 7 Do you really want to reboot the Cha...

Page 118: ...irectory from the user area or fpkey PARAMETERS EXAMPLE ALU rmdir abc deleted directory abc SAVE RUNNING CONFIG save running config DESCRIPTION This command saves the running configuration to the star...

Page 119: ...configuration under the specified file name in the config directory PARAMETERS EXAMPLE ALU save running config my config Saving to my config SAVE LOGGING save logging DESCRIPTION This command is used...

Page 120: ...log messages to a file named logs in the ALU user area SAVE LOGGING PRIORITY save logging priority 0 7 DESCRIPTION This command is used to save the log messages of the specified priority and higher P...

Page 121: ...specified string PARAMETERS EXAMPLE ALU save logging string time This saves log messages with string time This is case sensitive SAVE LOGGING TAG save logging tag tag name DESCRIPTION This command sa...

Page 122: ...1 password pass1 username recovery password 5 034b6651566323f45a647d39e8548cb7 username superadmin password 5 8ec760e45da5b29afb19ed8d68a3eb5e aaa server group radius r1 radius server 10 91 3 84 key a...

Page 123: ...command displays the associations between client types and method lists PARAMETERS None EXAMPLE ALU config show aaa client methodlist associations aaa authentication remotelogin m2 aaa authentication...

Page 124: ...Server groups configured PARAMETERS None EXAMPLE ALU config show aaa radius aaa server group radius rad1 radius server 1 1 1 1 aaa server group radius rad3 radius server 1 1 1 1 auth port 300 SHOW AAA...

Page 125: ...all the currently logged in users PARAMETERS None EXAMPLE ALU config show aaa users Session ID UserName ClientType Remote Address 1 superadmin Console N A 2 guest SSH 10 91 2 87 3 firewall admin TELN...

Page 126: ...log Configuration logging on logging buffered priority 7 logging buffered size 10000 no logging console logging system 4 logging remote 10 91 0 94 port 514 priority 7 logging remote 10 91 0 173 port 5...

Page 127: ...login default local enable secret 5 b96bea0fa10dc5b85cd6b6078f16a356 username alu password 5 b96bea0fa10dc5b85cd6b6078f16a356 ip domain list alu com ip domain name ip name server 10 91 0 249 interfac...

Page 128: ...Reference Guide class class default police committed rate 750000 commit action transmit committed burst 144000 exceed action drop class exclude police map interface GigabitEthernet7 1 service policy o...

Page 129: ...em It does not indicate the liveness of the elements listed PARAMETERS EXAMPLE The first example is a typical card report In this case the switch card is in slot 24 ALU show chassis slot 24 Physical i...

Page 130: ...are version 2 2 68 Loader version 2 33 ALU OS version 2 3 1 30 MDC Serial number WL0544000288 Revision A00 Version 01 SE Services engine active Slot number 3 Part number 902601 90 Manufacturer ALU Des...

Page 131: ...mber 24 Part number 902613 90 Manufacturer ALU Description Switch card Serial number DD0504001023 Version 00 Revision Q LoL firmware version 2 2 68 Loader version 2 33 ALU OS version 2 3 1 30 FP Fan t...

Page 132: ...5 DESCRIPTION This command shows the environmental state of the various parts and modules in the system PARAMETERS EXAMPLE ALU show environment Chassis environment readings Report generated at Thu Apr...

Page 133: ...ature reading 30C card 44C svc eng SC Switch card Slot number 24 Liveness failures will report once PCI configuration status Ready Reported at Thu Apr 5 11 54 19 2007 5 seconds ago Temperature reading...

Page 134: ...Beta Beta OmniAccess 700 CLI Command Reference Guide SHOW LED show led DESCRIPTION This command displays the current state of the LEDs on the front panel and the switch card PARAMETERS None EXAMPLE A...

Page 135: ...4 console logging level errors 3 system logging level notifications 5 logging timestamp enabled 2005 Oct 13 03 31 06 CM 6 LOG LIVENESS 2 83000019 will report once on failure 2005 Oct 13 03 31 07 CM 6...

Page 136: ...he following example shows messages of priority 3 or higher ALU show logging priority 3 2005 Oct 13 04 41 30 MIM 1 LOG Interface GigabitEthernet7 0 changed state to down 2005 Oct 13 04 41 30 MIM 1 LOG...

Page 137: ...T 4 LOG EA 7 Cannot read temperature sensor SHOW LOGGING TAG show logging tag tag name DESCRIPTION Displays the log messages in reference to the tag value The tag is the module that generated the log...

Page 138: ...configured shared memory space etc PARAMETERS None EXAMPLE ALU config show memory total used free shared buffers cached Mem 380014592 180305920 199708672 0 176128 43839488 Swap 0 0 0 MemTotal 371108...

Page 139: ...stem 2 1 22 1 IPSec IPSec VPN service 2 1 22 1 Infrastructure Infrastructure components of the system 2 1 22 1 Management OOB Out Of Band Management 2 1 22 1 Management Tools Internal support tools 2...

Page 140: ...076 S pm A 330 root 2308 S vrrp 331 root 1384 S udp agent 332 root 1520 S statsagent 333 root 2368 S statlogd c 334 root 2388 S ribmgr ribmgr initial 335 root 2544 S srm srm initial 337 root 2308 S ac...

Page 141: ...can also be used to view the same output PARAMETERS None EXAMPLE ALU config show running config Current Configuration NVRAM config last updated at 06 25 14 GMT Wed Nov 08 2006 from line 0 Statlog Con...

Page 142: ...cess 740 780 EXAMPLE ALU config show snmp SNMP Configurations snmp trap enable snmp system contact support alcatel lucent com name alu1 snmp agent rocommunity private snmp trap 1 1 1 1 v1 test 10 snmp...

Page 143: ...Lucent SHOW SNMP ACCESS show snmp access DESCRIPTION This command displays the SNMP access configuration PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show snmp access Grou...

Page 144: ...RIPTION This command is used to view the SNMP configuration details PARAMETERS None EXAMPLE ALU config show snmp details SNMP status Enabled Traps Enabled System information System Contact support alc...

Page 145: ...ide Alcatel Lucent SHOW SNMP GROUP show snmp group DESCRIPTION This command displays the configuration of the configured SNMP groups PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU...

Page 146: ...show snmp stats DESCRIPTION This command displays the SNMP statistics PARAMETERS None EXAMPLE ALU config show snmp stats 560 SNMP packets input 0 Bad SNMP version errors 0 Unknown community names 0 B...

Page 147: ...his command displays the configuration of the configured SNMP users PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show snmp user User Name user123 Authentication Protocol MD5 Se...

Page 148: ...Beta OmniAccess 700 CLI Command Reference Guide SHOW SNMP VIEW show snmp view DESCRIPTION This command displays the SNMP view configuration PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMP...

Page 149: ...m startup The command write memory has to be entered to view the output of this command PARAMETERS None EXAMPLE ALU config show startup config NVRAM config last updated at 06 25 14 GMT Wed Nov 08 2006...

Page 150: ...atel Lucent Beta Beta OmniAccess 700 CLI Command Reference Guide SHOW SYSTEM STATUS show system status DESCRIPTION This command displays the status of the different cards in the system PARAMETERS None...

Page 151: ...show tech support command collectively shows the output of these commands show version show clock dir user cores show chassis show running config show controller show interfaces show vlan Brief show a...

Page 152: ...el Lucent Software Version 2 3 1 Build 31 Copyright c 2003 2008 by Alcatel Lucent Inc Built on Mon Dec 8 21 08 28 IST 2008 Flash version 2 2 68 SNMP AGENT snmp agent rocommunity rwcommunity community...

Page 153: ...ference Guide Alcatel Lucent SNMP ENABLE snmp enable DESCRIPTION This command is used to enable the SNMP service PARAMETERS None DEFAULT None EXAMPLE ALU config snmp enable SNMP DISABLE snmp disable D...

Page 154: ...ew RELEASE HISTORY Release 2 3 command was added Parameter Description group name The group associated with access control policy v1 v2c v3 SNMP version auth Provides authentication based on the MD5 o...

Page 155: ...onfigure a User Security Model USM group PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config snmp server group testgroup user123 security model v3 RELEASE HISTORY Release 2 3 command...

Page 156: ...123456 RELEASE HISTORY Release 2 3 command was added Parameter Description user name A string identifying the name of the SNMP user auth Indicates that the message sent on behalf of the user is to be...

Page 157: ...re a SNMP view PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config snmp server view view123 1 3 6 1 included RELEASE HISTORY Release 2 3 command was added Parameter Description view n...

Page 158: ...lucent com SNMP TRAP snmp trap ip address v1 v2c community string 1 65536 DESCRIPTION This command configures the trap destination where the agent will send the SNMP traps Note Cannot add more than 3...

Page 159: ...ss a remote computer by SSH PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ssh 172 25 19 1 root The authenticity of host 172 25 19 1 172 25 19 1 can t be established RSA key fing...

Page 160: ...172 25 19 1 RSA to the list of known hosts root 172 25 19 1 s password Last login Mon Dec 6 17 34 48 2004 root linux sw root exit logout Connection to 172 25 19 1 closed RELEASE HISTORY Release 2 3 pa...

Page 161: ...command is used to add the TACACS server of the specified IP address to a TACACS server group PARAMETERS EXAMPLE ALU config srv grp tac1 tacacs server 1 1 1 2 Parameter Description ip address IP addr...

Page 162: ...AMETERS DEFAULT VALUE The default authentication port is 49 EXAMPLE ALU config tacacs server auth port 100 TACACS SERVER KEY tacacs server key 5 string string DESCRIPTION This command is used to speci...

Page 163: ...ION This command is used to specify a global timeout value that will be applied to all the TACACS Groups provided there is no server specific timeout value configured PARAMETERS DEFAULT VALUE The defa...

Page 164: ...starts a telnet connection to a remote computer PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU telnet 10 91 0 1 RELEASE HISTORY Release 2 3 parameter vrf vrf name was added Parameter De...

Page 165: ...nd to enable disable the Telnet service to the DUT PARAMETERS EXAMPLE ALU telnet enable TERMINAL LENGTH terminal length 0 512 DESCRIPTION This command is used to set the terminal length for this sessi...

Page 166: ...ESCRIPTION This command displays the route taken by IP packets PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU traceroute 10 91 10 178 traceroute to 10 91 10 178 30 hops max 38 byte pack...

Page 167: ...no username user name secret 5 password DESCRIPTION This command is used to create a new user account and store the user password in an encrypted format PARAMETERS EXAMPLE ALU config username alu2 sec...

Page 168: ...and Reference Guide WRITE ERASE write erase DESCRIPTION This command is used to delete the startup config permanently The command erase startup config can also be used to delete the startup config per...

Page 169: ...System Configuration and Monitoring Left running head Chapter name automatic 136 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 170: ...mand Line Interface CLI commands for Virtual Router Redundancy Protocol VRRP These commands are used to configure VRRP on an interface This chapter includes table of parameters default values and conf...

Page 171: ...RRP MANAGEMENT ALL PROTOCOL VRRPFS debug vrrp management all protocol vrrpfs DESCRIPTION This command displays VRRP management debug messages PARAMETERS EXAMPLE ALU debug vrrp management all Parameter...

Page 172: ...primary IP address for the specified VRRP group on an interface VRRP group is disabled as a result NO VRRP GROUP ID IP no vrrp 1 8 ip ip address This command removes the primary IP address for the sp...

Page 173: ...face This command removes the tracking of the interface SHOW VRRP ALL show vrrp all brief DESCRIPTION This command displays a brief or detailed status of all the VRRP groups configured on the OA 700 P...

Page 174: ...cified interface in the brief format if specified PARAMETERS EXAMPLE ALU show vrrp interface GigabitEthernet 3 0 Interface GigabitEthernet3 0 Group 1 State is Master Virtual IP address is 10 1 1 1 Vir...

Page 175: ...This command is used in the Interface Configuration mode This command is used to set authentication for the VRRP group The authentication string can have a maximum of 8 characters Note The OA 700 sup...

Page 176: ...bitEthernet7 0 vrrp 7 description ALU vrrp VRRP GROUP ID IP ADDRESS vrrp 1 8 ip ip address DESCRIPTION This command enables VRRP for the specified group with the specified ID on the interface and spec...

Page 177: ...EEMPT vrrp 1 8 preempt DESCRIPTION This command is used in the Interface Configuration mode This command enables the preempt mode By enabling the preempt mode the configured router takes over as the m...

Page 178: ...1 8 timers advertise 1 255 msec 50 999 DESCRIPTION This command is used in the Interface Configuration mode This command configures the interval between successive advertisements by the master virtua...

Page 179: ...ation mode This command configures the backup virtual router to learn the advertisement interval used by the master virtual router Learning and millisecond timers are mutually exclusive That is learni...

Page 180: ...command is used in the Interface Configuration mode This command configures the interface to be tracked that can alter the priority level of a virtual router in a VRRP group The priority of the group...

Page 181: ...Virtual Router Redundancy Protocol Left running head Chapter name automatic 148 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 182: ...149 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such as page...

Page 183: ...Left running head Chapter name automatic 150 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 184: ...is chapter documents the Command Line Interface CLI commands for the Ethernet interfaces This guide includes table of parameters default values and configuration examples for the physical interface as...

Page 185: ...abitEthernet7 0 clear Clear counters on this interface confirm y ALU config CLEAR COUNTERS clear counters GigabitEthernet slot port subinterface_number DESCRIPTION This command is used in the Interfac...

Page 186: ...ommand configures duplex operation on an interface PARAMETERS None DEFAULT VALUE The default Duplex mode is auto EXAMPLE ALU config if GigabitEthernet7 0 duplex full FLOWCONTROL flowcontrol receive se...

Page 187: ...LE ALU config interface GigabitEthernet 7 0 ALU config if GigabitEthernet7 0 MTU mtu 64 1500 DESCRIPTION This command is entered in the Interface Configuration mode This command is used to configure t...

Page 188: ...E interface is auto NO FLOWCONTROL no flowcontrol receive send off on This command resets the configured flowcontrol on a GigE interface to its default By default the flowcontrol option is off NO MTU...

Page 189: ...set Encapsulation ARPA keepalive not set Auto duplex 1000Mb s 1000BaseTx Fx ARP type ARPA ARP Timeout never Last input never output never output hang never Last clearing of show interface counters ne...

Page 190: ...0 0 0 size max drops flushes Total output drops null 5 minute input rate 0 bits sec 0 packets sec 5 minute output rate 0 bits sec 0 packets sec 0 packets input 0 bytes Received 0 broadcasts 0 runts 0...

Page 191: ...c 0 packets sec 5985 packets input 674968 bytes 0 no buffer Received 12 broadcasts 2 runts 0 giants 24 input errors 21 CRC 0 frame 0 overrun 0 ignored 0 watchdog 4583 multicast 0 pause input 4766 pack...

Page 192: ...terface resets 0 babbles 0 late collision 0 deferred 1 lost carrier 2 no carrier 0 pause output 0 output buffer copied 0 interrupts 0 failures ALU SPEED speed 10 100 1000 auto DESCRIPTION This command...

Page 193: ...L3 Interface Commands Left running head Chapter name automatic 160 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 194: ...Interface CLI commands for Layer 2 switching These commands are used to configure switching on the L2 protocols This chapter includes the table of parameters default values and configuration examples...

Page 195: ...ETERS EXAMPLE ALU clear mac address table Dynamic DUPLEX duplex auto full half DESCRIPTION This command is entered in the Interface Configuration mode This command configures duplex operation on an in...

Page 196: ...TDOWN no shutdown This command is used to administratively bring up the interface NO SPEED no speed This command is entered in the Interface Configuration mode This command resets the interface speed...

Page 197: ...the interface SHOW CHASSIS show chassis DESCRIPTION This command displays all the cards configured on the OA 700 Issue this command to check if the L2 card is installed appropriately in the system PA...

Page 198: ...Serial number ND0533002043 Version 00 Revision A00 SC Switch card active Slot number 24 Part number 902613 90 Manufacturer ALU Description Switch card Serial number DD05XX000000 Version 00 Revision A...

Page 199: ...5 txload 0 255 rxload 0 255 loopback not set Keepalive not set Auto duplex Auto 1000BaseTx Fx Last input never output never output hang never Last clearing of show interface counters never Queueing st...

Page 200: ...Dynamic 0006 1bd4 3847 switchport0 0 10 Dynamic 0006 1bd4 655d switchport0 0 10 Dynamic 00c0 9f33 6d23 switchport0 0 10 Dynamic 00c0 9f33 6e54 switchport0 0 10 Dynamic 00c0 9f33 7c84 switchport0 0 10...

Page 201: ...nfig show vlan Brief VLAN_ID Status Interface name Mode 1 Inactive switchport0 2 No Mode switchport0 3 No Mode switchport0 4 No Mode switchport0 5 No Mode 10 Inactive switchport0 0 Access switchport0...

Page 202: ...gures the interface speed PARAMETERS None DEFAULT VALUE The default speed is auto PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config if switchport1 0 speed 100 RELEASE HISTORY Release 2 3 comma...

Page 203: ...S EXAMPLE ALU config if switchport0 0 switchport hybrid native vlan 7 SWITCHPORT MODE TRUNK HYBRID switchport mode trunk hybrid DESCRIPTION This command is used to configure the L2 interface in the tr...

Page 204: ...CLI Command Reference Guide SWITCHPORT TRUNK ALLOWED VLAN switchport trunk allowed vlan 2 4094 DESCRIPTION This command enables the trunk VLAN IDs of the port which are specified in the VLAN list PARA...

Page 205: ...Switching on L2 Ports Left running head Chapter name automatic 172 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 206: ...e Interface commands for Per VLAN Spanning Tree Protocol Plus PVST These commands are used to configure the Spanning Tree Protocol This chapter includes tables of parameters default values and configu...

Page 207: ...4 30 hello time 1 10 max age 6 40 priority 0 65535 The no command resets the PVST Forward time Hello time Maximum age Bridge priority to its default The default for each of the parameter is given bel...

Page 208: ...00 27 12 128 6 switchport0 3 128 5 128 4 DIS 0 00 11 8b 00 27 12 128 5 switchport0 4 128 4 128 4 DIS 0 00 11 8b 00 27 12 128 4 switchport0 5 128 3 128 4 DIS 0 00 11 8b 00 27 12 128 3 switchport0 6 128...

Page 209: ...mmary of the spanning tree information The show command can be entered either in the Super User mode or in any other higher level EXAMPLE 1 ALU show spanning tree summary Name Blocking Listening Learn...

Page 210: ...0 0 port 8 in Spanning tree 2 is Forwarding Port path cost 4 Port priority 128 Designated root has priority 2 address 00 07 50 0c a1 03 Designated bridge has priority 2 address 00 07 50 0c a1 03 Desig...

Page 211: ...sent 120 received 0 Interface switchport1 4 port 4 in Spanning tree 1 is Forwarding Port path cost 4 Port priority 128 Designated root has priority 32768 address 00 11 8b 00 27 12 Designated bridge ha...

Page 212: ...n the Configuration mode This command enables a spanning tree for VLAN PARAMETERS DEFAULT VALUE By default spanning tree is disabled EXAMPLE The following command enables the spanning tree for the def...

Page 213: ...he above command is used to prioritize an interface PARAMETERS DEFAULT VALUE Default value 4 EXAMPLE ALU config if switchport1 0 spanning tree vlan 100 cost 1000 SPANNING TREE VLAN FWD TIME HELLO TIME...

Page 214: ...o time 1 2 PARAMETERS DEFAULT VALUE The default for each of the parameter is given below Forward time 15 seconds Hello time 2 seconds Max age 20 seconds Priority 32768 EXAMPLE The following examples c...

Page 215: ...entered in the Interface mode This command is used to prioritize an interface Note When two bridges compete for position as the root bridge port priority command is used to prioritize an interface PV...

Page 216: ...PANNING TREE VLAN SPANNING DISABLED spanning tree vlan 1 4094 spanning disabled DESCRIPTION This command is entered in the Interface Configuration mode This disables the Spanning tree on a specified i...

Page 217: ...Per VLAN Spanning Tree Left running head Chapter name automatic 184 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 218: ...ING This chapter documents the Command Line Interface CLI commands for Integrated Routing and Bridging IRB This guide includes tables of parameters default values and configuration examples for config...

Page 219: ...interface vlan 100 SHOW INTERFACES VLAN show interfaces vlan 1 4094 DESCRIPTION This command displays the VLAN statistics of the VLAN ID specified on the interface PARAMETERS EXAMPLE ALU config show i...

Page 220: ...strategy fifo Output queue 0 0 size max 0 drops Input queue 0 0 size max 0 drops 5 minute input rate 0 bits sec 0 packets sec 5 minute output rate 0 bits sec 0 packets sec 2034961 packets input 0 byt...

Page 221: ...Integrated Routing and Bridging Left running head Chapter name automatic 188 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 222: ...ments the Command Line Interface CLI commands for IEEE 802 1X port based authentication on the OA 700 This guide includes tables of parameters default values and configuration examples for configuring...

Page 223: ...ot1x host mode multi host multi auth DESCRIPTION This command is entered in the Interface Configuration mode This command is used to allow multiple hosts clients or multiple authentication on an 802 1...

Page 224: ...E None EXAMPLE ALU config dot1x initialize interface switchport 5 0 DOT1X MAX REQUEST dot1x max request 1 10 DESCRIPTION This command is entered in the Interface Configuration mode This command sets t...

Page 225: ...VALUE The default authentication is forced authorized EXAMPLE ALU config if switchport5 0 dot1x port control auto DOT1X REAUTHENTICATION dot1x reauthentication DESCRIPTION This command is entered in t...

Page 226: ...is used to manually reauthenticate the clients connected to a port PARAMETERS DEFAULT VALUE None EXAMPLE ALU config dot1x re authenticate interface switchport 5 0 DOT1X SYSTEM AUTH CONTROL dot1x syste...

Page 227: ...seconds EXAMPLE ALU config if switchport5 0 dot1x timeout quiet period 50 DOT1X TIMEOUT REAUTH PERIOD dot1x timeout reauth period 1 65535 DESCRIPTION This command is entered in the Interface Configura...

Page 228: ...5 0 dot1x timeout supp timeout 40 DOT1X TIMEOUT TX PERIOD dot1x timeout tx period 1 3600 DESCRIPTION This command is entered in the Interface Configuration mode This command sets the number of seconds...

Page 229: ...resets to its default NO DOT1X REAUTHENTICATION no dot1x reauthentication This command is used to disable periodic reauthentication of the client NO DOT1X SYSTEM AUTH CONTROL no dot1x system auth cont...

Page 230: ...rt 5 0 802 1X is enabled on switchport5 0 reauth enabled Disable reauth period 3600 quiet period 60 tx period 30 supp timeout 30 server timeout 30 max req 2 operation_mode Single Host port control Aut...

Page 231: ...SHOW DOT1X INTERFACE SWITCHPORT show dot1x interface switchport slot port authenticated mac DESCRIPTION This command displays the mac address of the authenticated supplicant PARAMETERS EXAMPLE ALU sho...

Page 232: ...cs of all switchports or of a particular switchport PARAMETERS EXAMPLE show dot1x statistics interface switchport 5 0 802 1X is enabled on switchport5 0 Rx EAPOL EAPOL EAPOL EAPOL EAP EAP EAP start Lo...

Page 233: ...802 1X Port Based Authentication Left running head Chapter name automatic 200 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 234: ...documents the Command Line Interface CLI commands for port monitoring This chapter includes tables of parameters default values and configuration examples for configuring port monitoring as quick star...

Page 235: ...s entered in the Interface Configuration mode This command is used to configure port monitoring Specify the traffic to be monitored PARAMETERS DEFAULT VALUE By default the both egress and ingress traf...

Page 236: ...e SHOW PORT MONITOR show port monitor interface switchport slot port DESCRIPTION This command displays the port monitoring details on the specified port PARAMETERS EXAMPLE ALU config show port monitor...

Page 237: ...Port Monitoring Left running head Chapter name automatic 204 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 238: ...nt 205 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such as pa...

Page 239: ...Left running head Chapter name automatic 206 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 240: ...ing on whether you are configuring a T1 or an E1 controller The document is hence divided into commands relating to E1 controller and T1 controller separately E1 CLI Commands on page 208 and T1 CLI Co...

Page 241: ...troller in a specific slot PARAMETERS DEFAULT VALUE By default no card type is installed EXAMPLE The following example sets the card type of E1 controller OA config card type E1 0 Note The line card i...

Page 242: ...y or backup clocksource by the network clock select command it must be set for clocksource line Only one T1 or E1 controller at a time can recover network clock and distribute it to the internal clock...

Page 243: ...ace are shown To associate all the timeslots with the controller ALU config controller T1 channel group 0 timeslots 1 24 To associate contiguous timeslots with the controller ALU config controller T1...

Page 244: ...meslots 2 To configure multiple channel groups with contiguous values of timeslots ALU config controller T1 channel group 3 timeslots 10 13 To configure multiple channel groups with non contiguous val...

Page 245: ...ulation on the interface PARAMETERS DEFAULT VALUE Default is HDLC EXAMPLE The following example shows how to set the FR encapsulation ALU config if serial 0 0 0 encapsulation frame relay Parameter Des...

Page 246: ...no crc4 ALU config controller E1 no framing INTERFACE SERIAL interface Serial slot port channel DESCRIPTION This command is entered in the Configuration mode to configure a serial interface in the spe...

Page 247: ...ERS DEFAULT VALUE HDB3 line code is the default for E1 lines EXAMPLE ALU config controller E1 linecode hdb3 LINE TERMINATION line termination 75 120 DESCRIPTION This command is entered in the Controll...

Page 248: ...VALUE Loopback is disabled by default for E1 lines EXAMPLE The following example establishes a loopback of the incoming E1 signal on controller E1 at slot 1 and port 0 ALU config controller E1 loopbac...

Page 249: ...ALU config if Serial 0 0 0 mtu 1200 NO CLOCKSOURCE no clocksource The no keyword sets the clocksource to its default The default value for clocksource is internal NO CHANNEL GROUP no channel group 0 2...

Page 250: ...is HDB3 NO LINE TERMINATION no line termination The no command sets the impedance value to its default The default line termination value is 120 NO LOOPBACK no loopback This command disables the loop...

Page 251: ...ministratively down E1 1 1 is administratively down E1 1 2 is up Line Card type is Channelized E1 Line termination is 120ohm No Alarm Detected Framing is crc4 Line Code is hdb3 Clock Source is interna...

Page 252: ...0 sec Last input never output never output hang never Last clearing of show interface counters never Queueing strategy fifo Output queue 0 0 size max 0 drops Input queue 0 0 size max 0 drops Conversat...

Page 253: ...hutdown will administratively bring down the controller This command when entered in the interface configuration mode is used to shutdown the interface The keyword no will bring it up PARAMETERS EXAMP...

Page 254: ...ld out longer than 660 ft for a T1 trunk PARAMETERS DEFAULT VALUE Cablelength of long 0 db is the default for the T1 cards EXAMPLE The following example changes transmit attenuation of controller T1 o...

Page 255: ...e default length of the cable for a T1 interface is 110ft EXAMPLE The following example sets the transmit attenuation of controller T1 of slot 1 and port 1 to the appropriate levels for a cable betwee...

Page 256: ...lot PARAMETERS DEFAULT VALUE By default no card type is installed EXAMPLE The following example sets the card type of T1 controller OA config card type T1 0 Note The line card is not functional until...

Page 257: ...s with the serial interface are shown To associate all the timeslots with the controller ALU config controller T1 channel group 0 timeslots 1 24 To associate contiguous timeslots with the controller A...

Page 258: ...oller T1 channel group 3 timeslots 10 13 To configure multiple channel groups with non contiguous values of timeslots ALU config controller T1 channel group 2 timeslots 3 6 9 CLOCKSOURCE clocksource i...

Page 259: ...port DESCRIPTION This command is used in the Configuration mode PARAMETERS EXAMPLE ALU config controller T1 0 0 ALU config controller T1 Parameter Description E1 T1 Configures an E1 or T1 controller...

Page 260: ...ERS DEFAULT VALUE Default is HDLC encapsulation EXAMPLE ALU config interface Serial 0 0 0 ALU config if serial 0 0 0 encapsulation frame relay ALU config interface Serial 0 0 0 ALU config if serial 0...

Page 261: ...ing on T1 line is esf EXAMPLE ALU config controller T1 framing sf INTERFACE SERIAL interface serial slot port channel DESCRIPTION This command is entered in the Interface Configuration mode to configu...

Page 262: ...he line code type for a T1 line The T1 service provider determines which line code type ami or b8zs is required for your T1 circuit PARAMETERS DEFAULT VALUE The default linecode value is b8zs EXAMPLE...

Page 263: ...f the incoming E1 signal on controller T1 0 ALU config controller T1 1 0 ALU config controller T1 loopback network line NO CABLELENGTH no cablelength This command is used to restore the value to its d...

Page 264: ...command resets the framing value to its default NO LINECODE no linecode This command sets the line coding to its default value For b8zs the default line coding value is b8zs For hdb3 the default line...

Page 265: ...ow controller T1 1 0 is administratively down T1 1 1 is administratively down T1 1 2 is up Line Card type is Channelized T1 Cablelength is long 0db No Alarm Detected Framing is esf Line Code is b8zs C...

Page 266: ...0 sec Last input never output never output hang never Last clearing of show interface counters never Queueing strategy fifo Output queue 0 0 size max 0 drops Input queue 0 0 size max 0 drops Conversat...

Page 267: ...hutdown will administratively bring down the controller This command when entered in the interface configuration mode is used to shutdown the interface The keyword no will bring it up PARAMETERS EXAMP...

Page 268: ...r documents the CLI commands for the USP Line Card V 35 X 21 RS 232 This document includes tables of parameters default values and configuration examples for the V 35 X 21 RS 232 interface configurati...

Page 269: ...nters Serial 0 0 CLOCKRATE clockrate 64000 128000 256000 512000 1024000 2048000 DESCRIPTION Enter this command in the Interface Configuration mode This command configures the clock rate Note In RS 232...

Page 270: ...ig if Serial0 0 crc 16 INTERFACE SERIAL interface Serial slot port DESCRIPTION Enters Serial Interface Configuration mode This command is entered in the Configuration mode to configure a serial interf...

Page 271: ...ON This command inverts the transmit clock to correct phase shift between the clock and the data PARAMETERS None DEFAULT VALUE By default the transmit clock is not inverted EXAMPLE ALU config if Seria...

Page 272: ...e to set encapsulation on the serial interface PARAMETERS DEFAULT VALUE Default is HDLC EXAMPLE The following example sets the encapsulation to FR ALU config if serial 0 0 0 encapsulation frame relay...

Page 273: ...yer 2 payload PARAMETERS DEFAULT VALUE The default MTU is 1500 Mbps EXAMPLE ALU config if Serial 0 0 0 mtu 1200 NO CLOCKRATE no clockrate 64000 128000 256000 512000 1024000 2048000 The no command sets...

Page 274: ...protocol is up X 21 DTE Serial attached Internet address is 15 0 0 1 8 MTU 1500 bytes BW 2048 Kbit DLY 0 usec reliability 0 255 txload 0 255 rxload 0 255 loopback not set Encapsulation hdlc keepalive...

Page 275: ...5 output errors 0 collisions 0 interface resets 0 output buffer failures 0 output buffers swapped out 0 carrier transitions DCD up DSR up DTR up RTS up CTS up SHUTDOWN shutdown DESCRIPTION This comman...

Page 276: ...commands for High Level Data Link Control HDLC Protocol These commands are used to configure HDLC encapsulation on a T1 or an E1 interface This guide includes tables of parameters default values and c...

Page 277: ...LT VALUE HDLC is the default encapsulation on an interface EXAMPLE ALU config if Serial0 0 0 encapsulation hdlc HDLC KEEPALIVE hdlc keepalive 0 32767 DESCRIPTION Enter this command in the Interface Co...

Page 278: ...T VALUE By default bringing down of line protocol when the detected loopback is disabled EXAMPLE ALU config if Serial0 0 0 no hdlc down when looped DEBUG HDLC ALL debug hdlc all detail level 1 9 DESCR...

Page 279: ...g is disabled EXAMPLE ALU config debug hdlc keepalive NO DEBUG HDLC no debug hdlc all keepalive DESCRIPTION Enter this command in the Super User mode or Configuration mode This command is used to disa...

Page 280: ...EXAMPLE ALU config if Serial0 0 0 no encapsulation frame relay NO HDLC KEEPALIVE no hdlc keepalive This command resets the keepalive interval to its default which is 10 seconds SHOW INTERFACE show in...

Page 281: ...ng strategy fifo Output queue 0 0 size max 0 drops Input queue 0 0 size max 0 drops Conversations 0 0 0 0 active max active max total Reserved Conversations 0 0 allocated max allocated Available Bandw...

Page 282: ...nterface CLI commands These commands are used to configure FR encapsulation on a T1 or an E1 interface This guide includes tables of parameters default values and configuration examples for FR configu...

Page 283: ...terface to Frame Relay PARAMETERS None DEFAULT VALUE HDLC is the default encapsulation on an interface EXAMPLE ALU config if serial 0 0 0 encapsulation frame relay FRAME RELAY INTERFACE DLCI frame rel...

Page 284: ...ets the LMI keepalive interval to 12 ALU config if Serial0 0 0 frame relay keepalive 12 FRAME RELAY LMI TYPE frame relay lmi type ansi q933a DESCRIPTION This command sets the LMI type to either ANSI o...

Page 285: ...example sets the polling interval to 8 ALU config if Serial0 0 0 frame relay lmi n391dte 8 FRAME RELAY LMI N392DTE frame relay lmi n392dte 1 10 DESCRIPTION This command is entered in the Interface Co...

Page 286: ...ts count PARAMETERS DEFAULT VALUE The default value is 4 EXAMPLE The following example sets the DTE monitored events count to 7 ALU config if serial0 0 0 frame relay lmi n393dte 7 NO ENCAPSULATION FRA...

Page 287: ...lay lmi type The no command resets the LMI type to its default value The default LMI type is auto sense NO FRAME RELAY LMI N391DTE no frame relay lmi n391dte The no command sets the polling interval t...

Page 288: ...isc 0 Invalid dummy Call Ref 0 Invalid Msg Type 0 Invalid Status Message 0 Invalid Lock Shift 0 Invalid Information ID 0 Invalid Report IE Len 0 Invalid Report Request 0 Invalid Keep IE Len 0 Num Stat...

Page 289: ...MPLE The following example displays the status of the PVC identified by DLCI 200 ALU config if Serial0 0 0 show frame relay pvc interface Serial 0 0 0 PVC Statistics for interface Serial0 0 0 Frame Re...

Page 290: ...mands for the Point to Point Protocol PPP These commands are used to configure PPP encapsulation on a T1 or an E1 line card This guide includes table of parameters default values and configuration exa...

Page 291: ...tail level 1 9 DESCRIPTION This command shows all the debug messages pertaining to the PPP functionality PARAMETERS DEFAULT VALUE By default debug is disabled EXAMPLE ALU config debug ppp all Paramete...

Page 292: ...ECHO debug ppp echo output all log vty DESCRIPTION This command shows the LCP echo requests and reply messages PARAMETERS DEFAULT VALUE By default debug is disabled EXAMPLE ALU config debug ppp echo...

Page 293: ...ulation ppp NO DEBUG PPP no debug ppp echo all The no command disables the debug functionality By default debug is disabled NO ENCAPSULATION PPP no encapsulation ppp This command sets the encapsulatio...

Page 294: ...d sets the flag to reject the local IP address given to it by its peer during IPCP This is the default behavior NO PPP IPCP ADDRESS ACCEPT PEER no ppp ipcp address accept peer The no command sets the...

Page 295: ...T INTERVAL no ppp timeout restart interval The no command sets the LCP NCP restart interval to its default i e 30 seconds NO PPP TIMEOUT RESTART TIMER no ppp timeout restart timer The no command reset...

Page 296: ...PP authentication on the client side PARAMETERS EXAMPLE ALU config if Serial0 0 0 ppp authentication client password pass1 PPP AUTHENTICATION CLIENT USERNAME ppp authentication client username user na...

Page 297: ...rver side PARAMETERS EXAMPLE ALU config if Serial0 0 0 ppp authentication password pass1 PPP AUTHENTICATION USERNAME ppp authentication username user name DESCRIPTION This command is used to set a use...

Page 298: ...ven to it by the peer during IPCP PARAMETERS None DEFAULT VALUE By default the flag is set to reject the local IP address from the peer during IPCP EXAMPLE ALU config if Serial0 0 0 ppp ipcp address a...

Page 299: ...er PARAMETERS DEFAULT VALUE By default no IP address pool is configured for IPCP EXAMPLE ALU config if Serial0 0 0 ppp ipcp address pool local 10 10 10 10 PPP IPCP NEGOTIATE ppp ipcp negotiate DESCRIP...

Page 300: ...ault value is 10 seconds EXAMPLE ALU config if Serial1 0 0 ppp lcp echo interval 200 PPP LCP NEGOTIATE ppp lcp negotiate DESCRIPTION This command is used in the Interface Configuration mode This comma...

Page 301: ...maximum number of unanswered LCP echo requests to is default i e 5 EXAMPLE ALU config if Serial0 0 0 ppp lcp max echo 20 PPP TIMEOUT RESTART INTERVAL ppp timeout restart interval 0 255 DESCRIPTION The...

Page 302: ...ONFIGURE ppp timeout max configure 1 30 DESCRIPTION This command is used in the Interface Configuration mode This command sets the maximum number of configure request packets LCP or NCP sent without r...

Page 303: ...ial0 0 0 ppp timeout max failure 10 PPP TIMEOUT MAX TERMINATE ppp timeout max terminate 1 30 DESCRIPTION This command sets the maximum number of terminate request packets LCP or NCP sent without recei...

Page 304: ...P Open CHAP Client Open EAP Server Open IPCP Open Last input never output never output hang never Last clearing of show interface counters never Queueing strategy fifo Output queue 0 0 size max 0 drop...

Page 305: ...figuration Serial 0 0 0 LCP Max Echoes 5 LCP Echo Interval 60 sec LCP Restart Interval 30 sec IPCP pool IP address 50 51 52 54 IPCP local IP address from peer Reject IPCP peer IP address Reject PPP Re...

Page 306: ...tiated 1 PPP sessions received 1 PPP sessions successful 2 PPP sessions terminated 1 IN OUT LCP Configure Requests 2 2 LCP Configure Acks 2 2 LCP Configure Naks 0 0 LCP Configure Rejects 0 0 LCP Termi...

Page 307: ...Packets 0 0 IN OUT EAP Requests 0 4 EAP Responses 4 0 EAP Successes 0 2 EAP Failures 0 0 EAP Invalid Packets 0 0 SHOW PPP AUTHENTICATION CONFIGURATION show ppp authentication configuration interface...

Page 308: ...authentication for a specified interface PARAMETERS EXAMPLE ALU show ppp authentication statistics Serial 0 0 0 IN OUT PAP Authentication Requests 2 2 PAP Authentication Acks 2 2 PAP Authentication N...

Page 309: ...Reject IPCP peer IP address Reject SHOW PPP IPCP STATISTICS show ppp ipcp statistics interface name DESCRIPTION Displays detailed IPCP statistics for a specified interface PARAMETERS EXAMPLE ALU show...

Page 310: ...CP Echo Interval 60 sec LCP Restart Interval 30 sec SHOW PPP LCP STATISTICS show ppp lcp statistics interface name DESCRIPTION Displays detailed LCP statistics for a specified interface PARAMETERS EXA...

Page 311: ...ckets 0 0 SHOW PPP TIMEOUT CONFIGURATION show ppp timeout configuration interface name DESCRIPTION Displays the timer and counter configuration information for a specified interface PARAMETERS EXAMPLE...

Page 312: ...istics interface name DESCRIPTION Displays detailed statistics for PPP sessions for a specified interface PARAMETERS EXAMPLE ALU show ppp session statistics Serial 0 0 0 PPP data packets received 0 PP...

Page 313: ...Point to Point Protocol Left running head Chapter name automatic 280 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 314: ...Line Interface CLI commands for the Point to Point Protocol over Ethernet PPPoE These commands are used to configure PPPoE encapsulation on the Gigabit Ethernet GigE interface This chapter includes t...

Page 315: ...interface GigabitEthernet3 0 ALU config if GigabitEthernet3 0 encapsulation pppoe RELEASE HISTORY Release 2 3 command was introduced NO ENCAPSULATION PPPOE no encapsulation pppoe This command removes...

Page 316: ...pt is given up If the max retry value is set to 0 it keeps sending PADIs till it receives a PADO PARAMETERS DEFAULT VALUE The default max retry value is 0 PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPL...

Page 317: ...terface This command helps to terminate the existing PPPoE session if any and re negotiate the session Note PPPoE negotiation is automatically started when the link is administratively brought up on a...

Page 318: ...ets in the absence of a PADO PADS from a server This wait time is doubled after each retry Note However after three unanswered PADIs wait period is reset to retry timer If the retry timer value is set...

Page 319: ...ted by the PPPoE server PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config interface GigabitEthernet3 0 ALU config if GigabitEthernet3 0 pppoe service name ISP1 No...

Page 320: ...guration GigabitEthernet slot port DESCRIPTION This command displays the PPPoE specific configurations on the GigE interface PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show p...

Page 321: ...Point to Point Protocol over Ethernet PPPoE Left running head Chapter name automatic 288 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 322: ...for the Multilink Point to Point Protocol MLPPP These commands are used to configure Multilink PPP encapsulation on a T1 or E1 line card This guide includes table of parameters default values and con...

Page 323: ...APSULATION MLPPP encapsulation mlppp 1 256 DESCRIPTION This command is entered in the Interface Configuration mode This command sets MLPPP encapsulation on an interface The interface becomes a member...

Page 324: ...eshold on an MLPPP bundle PARAMETERS DEFAULT VALUE None EXAMPLE ALU config if mlppp100 mlppp load threshold high outbound 100 NO ENCAPSULATION MLPPP no encapsulation mlppp This command sets the encaps...

Page 325: ...255 Encapsulation mlppp loopback not set IPCP Initial Last input never output never output hang never Last clearing of show interface counters never 0 packets input 0 Control packets 0 Data packets 0...

Page 326: ...ON This command can be used in the Super User mode This command displays the PPP status on the member links of the specified MLPPP bundle interface PARAMETERS DEFAULT VALUE None EXAMPLE ALU config sho...

Page 327: ...Multilink Point to Point Protocol Left running head Chapter name automatic 294 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 328: ...r the Multilink Frame Relay Protocol MLFR These commands are used to configure Multilink Frame Relay encapsulation on a T1 or E1 line card This chapter includes table of parameters default values and...

Page 329: ...PARAMETERS DEFAULT VALUE The default encapsulation on a serial interface is HDLC EXAMPLE ALU config interface Serial1 0 0 ALU config if Serial1 0 0 encapsulation mlfr 100 FRAME RELAY INTERFACE DLCI f...

Page 330: ...ration mode This command is used to set the LMI type to either ANSI or Q933A PARAMETERS DEFAULT VALUE The default LMI type is auto sense Note LMI Autosense is activated by default as the system acts a...

Page 331: ...ULT VALUE None EXAMPLE ALU config interface mlfr 100 ALU config if mlfr100 MLFR ACK INTERVAL mlfr ack interval 1 10 DESCRIPTION This command is entered in the Interface Configuration mode This command...

Page 332: ...U config if mlfr100 mlfr bid alu1 MLFR HELLO INTERVAL mlfr hello interval 1 180 DESCRIPTION This command is entered in the Interface Configuration mode This command configures the hello interval PARAM...

Page 333: ...one EXAMPLE ALU config if Serial0 0 0 mlfr lid alu wan link MLFR RETRY COUNT mlfr retry count 1 5 DESCRIPTION This command is entered in the Interface Configuration mode This command configures the re...

Page 334: ...ense NO MLFR ACK INTERVAL no mlfr ack interval 1 10 This command resets the acknowledge interval to its default 4 seconds NO MLFR BID no mlfr bid name This command removes the configured bid name from...

Page 335: ...MI enq sent 26219 LMI stat recvd 325 LMI upd recvd 0 DTE LMI up LMI enq recvd 0 LMI stat sent 0 LMI upd sent 0 LMI DLCI 0 LMI type is CCITT q933a frame relay DTE MTU 1500 bytes BW 3072 Kbit DLY 0 usec...

Page 336: ...MLFR show mlfr 1 256 DESCRIPTION This command displays the protocol status on the member links of the specified MLFR bundle interface PARAMETERS EXAMPLE ALU show mlfr 1 MLFR bundle 1 link state inform...

Page 337: ...k_ack_sent 0 Rm_link_ack_rcvd 0 Hello_sent 55 Hello_rcvd 56 Hello_ack_sent 56 Hello_ack_rcvd 55 Last input never output never output hang never Last clearing of show interface counters never Queueing...

Page 338: ...I commands for the Link Fragmentation and Interleaving LFI These commands are used to configure LFI on Multilink Point to Point Protocol MLPPP or Frame Relay FR interface This chapter includes table o...

Page 339: ...the fragment delay on the MLPPP bundle interface PARAMETERS DEFAULT VALUE The default value of fragment delay is 0 i e no fragmentation will be performed PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPL...

Page 340: ...e policy map from the interface NO SLIPPAGE MRU no slippage mru The no command sets the slippage MRU to its default i e 32 MRU SERVICE POLICY service policy in out policy map name DESCRIPTION This com...

Page 341: ...n terms of MRU which represent number of fragments to be stored without getting reassembled Based on the slippage parameter configuration buffer is allocated on the receiver side PARAMETERS DEFAULT VA...

Page 342: ...xload 10 255 rxload 10 255 Encapsulation mlppp loopback not set IPCP Open Last input never output never output hang never Last clearing of show interface counters never 2 packets input 2 Control packe...

Page 343: ...fragment size 40 1600 end to end DESCRIPTION This command is entered in the Interface Configuration mode This command is used to configure the fragment size Minimum fragment size is 40 PARAMETERS DEF...

Page 344: ...no service policy in out policy map name The no command detaches the policy map from the interface NO SLIPPAGE MRU no slippage mru The no command sets the slippage MRU to its default i e 32 MRU SERVI...

Page 345: ...n the Interface Configuration mode This command specifies the number of fragments that can be buffered per Virtual Circuit VC PARAMETERS DEFAULT VALUE The default slippage MRU value is 32 MRU PLATFORM...

Page 346: ...tion and reassembly statistic for main interface PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show frame relay fragments Interface serial 1 0 0 Frags 90 fragmented 34 coul...

Page 347: ...RFACE Serial0 0 0 End to End Fragmentation Statistics Packets fragmented 10 Fragments Created 220 fragments failed 0 End to End Reassembly Statistics fragments received 220 fragments reassembled 220 f...

Page 348: ...LMI stat sent 0 LMI upd sent 0 LMI DLCI 0 LMI type is Autosense frame relay DTE Last input never output never output hang never Last clearing of show interface counters never Queueing strategy fifo O...

Page 349: ...Link Fragmentation and Interleaving LFI Left running head Chapter name automatic 316 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 350: ...ucent 317 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such as...

Page 351: ...Left running head Chapter name automatic 318 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 352: ...d Reference Guide CHAPTER 20 COMMON CLASSIFIERS This chapter explains the functionality and syntax of the OA 700 common classifier commands All commands are described in alphabetical order They do not...

Page 353: ...st m1 ALU config match list m1 ip prefix 192 168 1 0 24 host 192 168 1 72 ALU config match list m2 ALU config match list m2 tcp any any service ssh ALU config match list m2 tcp prefix 192 168 2 0 24 a...

Page 354: ...re used only for reference EX 3 Consider the following example with the necessary modes of configurations included ALU en ALU configure terminal ALU config list l1 host 192 168 0 4 prefix 192 168 0 1...

Page 355: ...the other list s name effectively extending the list by combining the elements in the other list as shown below ALU config list l1 interface GigabitEthernet 3 0 interface GigabitEthernet 7 0 ALU conf...

Page 356: ...onfig list L4 prefix 192 168 18 0 24 prefix 192 168 19 0 24 ALU config match list m1 ALU config match list m1 1 tcp list L3 list L4 service telnet ALU config match list m1 2 tcp list L3 list L4 servic...

Page 357: ...P etc You can define a rule with subnets host addresses or interfaces or list of any of them 1 65535 protocol source destination from port number to port number fields to be matched The following comm...

Page 358: ...n ip address prefix length dscp 0 63 dscp mnemonics fragment from 1 65536 ip precedence 0 7 precedence mnemonics length 1 1500 eq ge gt le lt range 1 1500 service 1 65536 protocol tos 0 15 tos mnemoni...

Page 359: ...p 0 63 dscp mnemonics Denotes the DSCP value fragment Used to match an IP fragment ip precedence 0 7 precedence mnemonics Specifies the IP Precedence length 1 1500 eq ge gt le lt range 1 1500 Specifie...

Page 360: ...st 10 tcp host 1 1 1 1 32 any from 6050 to 80 ALU config match list m1 1 udp list L3 list L4 service tftp ALU config match list test 2 icmp any any icmp type 1 ALU config match list test 10 protocol 1...

Page 361: ...The following example deletes the list L1 ALU config no list L1 NO MATCH LIST no match list name DESCRIPTION This command deletes the match list with reference to its name If a list is in use it cann...

Page 362: ...1 1 1 1 32 any from 6050 to 80 Now to delete the rule having rule number 10 use the no rule command ALU config match list m1 no rule 10 SHOW INCLUDE show include DESCRIPTION This command is entered wi...

Page 363: ...TERS EXAMPLE The following example displays details of all the lists configured ALU config show list list l1 host 5 5 5 5 host 4 4 4 4 prefix 6 6 6 0 24 list l2 host 5 3 4 6 prefix 1 10 10 0 24 The fo...

Page 364: ...mple displays details of all the match lists configured ALU config match list m1 show match list match list m1 1 icmp any any 2 tcp any any service http 3 ip any any type ftp match list m2 1 tcp any a...

Page 365: ...of the rule corresponding to the line rule number specified PARAMETERS EXAMPLE The following example displays the details of the rule in line number 2 ALU config match list m1 show rule 2 2 udp prefi...

Page 366: ...Lucent 333 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such...

Page 367: ...Left running head Chapter name automatic 334 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 368: ...ter lists the protocol independent commands that are generic across all routing protocols You are required to have a thorough knowledge of this chapter before you proceed to configure the RIP OSPF and...

Page 369: ...RS Parameter Description 100 199 2000 2699 Access list number 0 255 IP protocol number Access list is applied only If packet belongs to the specified protocol number deny Denies access for matching co...

Page 370: ...ddress log DESCRIPTION This command is used to configure a Standard Access list Standard Access list uses only source IP address PARAMETERS DEFAULT VALUE By default no access list is configured EXAMPL...

Page 371: ...uting table PARAMETERS None EXAMPLE ALU clear ip route DEFAULT METRIC default metric metric value DESCRIPTION Enter this command in Route Configuration mode This command causes the current routing pro...

Page 372: ...e for RIP or OSPF or BGP PARAMETERS DEFAULT VALUE RIP The default distance is 120 OSPF The default distance is 110 BGP The default distance is 20 for EBGP and 200 for IBGP EXAMPLE ALU config router ri...

Page 373: ...outes are those routes that are those learned from a neighbor external to the autonomous system You can specify a value between 1 255 Routes with a distance of 255 are not installed in the routing tab...

Page 374: ...ame function as the distance command used with an access list However the distance OSPF command allows you to set a distance for an entire group of routes rather than a specific route that matches an...

Page 375: ...stribute list in command is used to filter networks in received routing updates Note The OA 700 does not support the Distribute list feature in OSPF PARAMETERS DEFAULT VALUE None EXAMPLE ALU config ro...

Page 376: ...a rule for a Extended IP Access List You can configure multiple rules for an IP access list permit deny igre icmp ip ipinip pim rsvp tcp udp 0 255 any host host ip address source ip address prefix le...

Page 377: ...and TCP protocol Compares TCP UDP ports of the source destination ports When used after the source IP address source mask specifies a source port When used after the destination IP address destination...

Page 378: ...nfigure Standard IP Access list Rule This command is used to configure a rule for a Standard IP Access List You can configure multiple rules for an IP access list permit deny any host host ip address...

Page 379: ...gure AS path Access list PARAMETERS DEFAULT VALUE None EXAMPLE In the following example the ip as path access list command creates an as path access list named 1 to deny only those routes that include...

Page 380: ...T EXTENDED ip community list 100 199 deny permit regular expression DESCRIPTION Enter this command in the Configuration mode This command is used to configure a Extended Community list PARAMETERS DEFA...

Page 381: ...e EXAMPLE ALU config ip community list 1 permit internet Parameter Description 1 99 Standard community list number deny Denies access for matching conditions permit Permits access for matching conditi...

Page 382: ...to 23 Denies all network updates with a network mask length greater than 23 ALU config ip prefix list test permit 0 0 0 0 0 le 23 Parameter Description name Prefix list name 1 4294967294 Specifies the...

Page 383: ...IPTION Enter this command in the Configuration mode This command is used to configure a static route PARAMETERS DEFAULT VALUE By default no static route is configured EXAMPLE ALU config ip route 1 1 1...

Page 384: ...erfaces PARAMETERS DEFAULT VALUE None EXAMPLE Configuring a Serial Interface to be an unnumbered interface The IP address configured on the GigabitEthernet 7 0 interface is also assigned to the interf...

Page 385: ...LUE None EXAMPLE ALU config route map match as path 1 MATCH COMMUNITY match community 1 99 100 199 exact match DESCRIPTION This command is entered in the Route map Configuration mode This command matc...

Page 386: ...ist name DESCRIPTION This command is entered in the Route map Configuration mode This command is used to match a destination network number address that is permitted by a standard access list an exten...

Page 387: ...e PARAMETERS DEFAULT VALUE Routes are distributed freely without being required to match a next hop address EXAMPLE ALU config route map match ip next hop 1 Parameter Description 1 99 Standard IP acce...

Page 388: ...he specified advertised access lists prefix lists PARAMETERS DEFAULT VALUE None EXAMPLE ALU config route map match ip route source 5 Parameter Description 1 99 Standard IP access list number or name T...

Page 389: ...RIPTION Enter this command in the Router Configuration mode This command is used to configure the maximum number of parallel paths to be allowed in a routing table PARAMETERS DEFAULT VALUE By default...

Page 390: ...passive interface interface name DESCRIPTION Enter this command in the Router Configuration mode This command activates only those interfaces that need to have adjacencies set PARAMETERS DEFAULT VALU...

Page 391: ...e This command suppresses sending of routing updates through the specified interface PARAMETERS DEFAULT VALUE Routing updates are sent on the interface EXAMPLE ALU config router ospf1 passive interfac...

Page 392: ...ospf 1 65535 match external type1 type2 internal nssa external type1 type2 metric 0 4294967295 weight 0 65535 route map name DESCRIPTION Enter this command in Route Configuration mode PARAMETERS Para...

Page 393: ...bute bgp 1 route map test ALU config router bgp AS1 redistribute ospf 1 route map testospf weight 10 nssa external 1 2 Redistribute route if route is nssa external type 1 or type 2 metric Assigns the...

Page 394: ...If the match criteria are met for this route map and the permit keyword is specified the route map result is permit If the match criteria are not met and the permit keyword is specified the next rout...

Page 395: ...the BGP autonomous system path PARAMETERS DEFAULT VALUE Autonomous system path is not specified EXAMPLE ALU config route map set as path tag Parameter Description tag Converts the tag of a route into...

Page 396: ...No BGP communities attributes exist EXAMPLE ALU config route map set community 10 Parameter Description 1 4294967295 Specifies the community number AA NN Community number in aa nn format additive Add...

Page 397: ...20000 1 255 DESCRIPTION Enter this command in the Route Map Configuration mode This command sets BGP route dampening factors PARAMETERS Parameter Description 1 99 Standard community list number 100 19...

Page 398: ...ference 0 4294967295 DESCRIPTION Enter this command in the Route Map Configuration mode This command assigns a local preference to the BGP path PARAMETERS DEFAULT VALUE By default local preference val...

Page 399: ...bution PARAMETERS DEFAULT VALUE None EXAMPLE ALU config route map set metric 10 SET METRIC TYPE set metric type internal external type 1 type 2 DESCRIPTION Enter this command in the Route Map Configur...

Page 400: ...P route origin is set to EGP EXAMPLE ALU config route map set origin incomplete SET WEIGHT set weight 0 4294967295 DESCRIPTION Enter this command in the Route Map Configuration mode Use this command t...

Page 401: ...d displays the access list configuration PARAMETERS EXAMPLE ALU show access lists Standard IP access list 1 deny 1 0 0 0 0 255 255 255 0 packets Standard IP access list 2 permit 20 0 0 0 0 255 255 255...

Page 402: ...12 0 0 0 0 255 255 255 0 packets ALU SHOW IP AS PATH ACCESS LIST show ip as path access list 1 199 DESCRIPTION Enter this command in the Super User mode or Configuration mode This command displays the...

Page 403: ...rd access list 1 permit internet Community standard access list 2 permit no export ALU SHOW IP PREFIX LIST show ip prefix list prefix list name DESCRIPTION Enter this command in the Super User mode or...

Page 404: ...tion metric is 3 Redistributing External Routes from connected metric 3 static metric 4 Default version control send version 2 receive version 2 Automatic network summarization is in effect Outgoing u...

Page 405: ...ifies the time after which the individual routing information will be flushed out Outgoing update Specifies whether the outgoing filtering list has been set Incoming update Specifies whether the incom...

Page 406: ...N2 OSPF NSSA external type 2 route candidate default route Gateway of last resort is not set 5 0 0 0 24 is subnetted 3 subnets C 5 5 0 0 0 0 is directly connected Serial0 0 0 C 5 5 1 0 0 0 is directly...

Page 407: ...ted 1 subnet S 6 6 6 0 1 0 is directly connected Serial0 0 2 S 7 0 0 0 8 1 0 is directly connected Serial0 0 0 is directly connected Serial0 0 1 S 100 0 0 0 8 1 0 via 10 91 2 5 GigabitEthernet7 0 ALU...

Page 408: ...distribution 3 routes at length 8 1 route at length 16 226 routes at length 24 1 route at length 32 ALU EXAMPLE 5 ALU show ip route supernets only S 172 0 0 0 8 1 0 via 1 1 1 5 GigabitEthernet7 1 O E2...

Page 409: ...ip address access lists 1 Set clauses metric 10 route map testset permit sequence 10 Description Exit Policy Match clauses Set clauses metric 20 ALU Parameter Description route map Name of the route m...

Page 410: ...ATION PROTOCOL This chapter explains the function and syntax of the Router Information Protocol RIP commands It includes table of parameters default values and configuration examples for RIP configura...

Page 411: ...or of automatic summarization of the subnet routes into network level routes PARAMETERS None DEFAULT VALUE By default auto summary is enabled EXAMPLE ALU config router rip auto summary CLEAR IP RIP cl...

Page 412: ...fault information originate DEFAULT METRIC default metric 1 16 DESCRIPTION A default metric helps to solve the problem of redistributing routes with incompatible metrics Whenever metrics do not conver...

Page 413: ...nd in the Router Configuration mode This command is used to define an administrative distance PARAMETERS DEFAULT VALUE The default distance is 120 EXAMPLE ALU config router rip distance 130 10 0 0 0 8...

Page 414: ...ng advertised in updates PARAMETERS DEFAULT VALUE Disabled EXAMPLE ALU config router rip distribute list prefix prefix example in GigabitEthernet 7 0 Parameter Description 1 99 IP access list number 1...

Page 415: ...fig if GigabitEthernet7 0 ip rip authentication key chain allen IP RIP AUTHENTICATION MODE ip rip authentication mode md5 text DESCRIPTION Use the following command in the Interface Configuration mode...

Page 416: ...red on a per interface basis PARAMETERS DEFAULT VALUE Version 1 and Version 2 packets are received by default EXAMPLE ALU config if GigabitEthernet7 0 ip rip send version 1 2 IP SPLIT HORIZON ip split...

Page 417: ...PARAMETERS DEFAULT VALUE None EXAMPLE ALU config keychain allen key 100 ALU config keychain key 100 KEY CHAIN key chain key chain name DESCRIPTION Enter this command in the Configuration mode This co...

Page 418: ...mand is used to configure the password for the key PARAMETERS DEFAULT VALUE None EXAMPLE ALU config keychain key 100 key string sg123 NETWORK network network number DESCRIPTION This command is used in...

Page 419: ...1 NO AUTO SUMMARY no auto summary The no command disables auto summary and sends sub prefix routing information across classfull network boundaries NO DEFAULT INFORMATION ORIGINATE no default informat...

Page 420: ...MODE no ip rip authentication mode The no command sets the authentication mode to its default i e plain Text authentication NO IP SPLIT HORIZON no ip split horizon This command disables the split hori...

Page 421: ...the redistribution of routes NO TIMERS BASIC no timers basic This command removes the configured routing timers NO VALIDATE UPDATE SOURCE no validate update source Disables the validation of the sour...

Page 422: ...set list 1 in 2 Serial0 0 1 The syntax of the offset list says Examine RIP advertisements incoming from interface Serial0 0 1 For route entries matching the addresses specified in access list 1 add 2...

Page 423: ...onfiguration mode This command disables the sending of routing updates on specified interfaces and controls the set of interfaces with which to exchange routing updates PARAMETERS DEFAULT VALUE Routin...

Page 424: ...iguration mode This command is used to import routes from other routing protocols PARAMETERS DEFAULT VALUE None EXAMPLE ALU config router rip redistribute bgp 1 metric 10 Parameter Description bgp 1 6...

Page 425: ...in SUM can be used to verify summarization configuration as shown in the example below ALU show ip protocols Routing Protocol is rip Sending updates every 30 seconds next due in 27 seconds Invalid aft...

Page 426: ...current value of the holddown parameter flushed after 240 Specifies the time in seconds after which the individual routing information will be flushed out Outgoing update filter list is not set for al...

Page 427: ...cess 740 780 EXAMPLE ALU show ip rip database RIP Route Table 1 0 0 0 8 auto summary 1 1 1 0 24 directly connected GigabitEthernet7 0 10 0 0 0 8 auto summary 10 91 2 0 24 directly connected GigabitEth...

Page 428: ...Interface Table Interface Interface Address Interface Mask Send Ver Recv Ver Flags GigabitEthernet7 0 1 1 1 2 255 255 255 0 2 2 B S GigabitEthernet7 1 10 91 2 6 255 255 255 0 2 2 Flags U Unnumbered P...

Page 429: ...Access 740 780 EXAMPLE ALU show ip rip peers RIP Peer Table Peer Address Interface LastUpd sec Rcv Ver Bad Pkts BadRoutes 1 1 1 1 GigabitEthernet7 0 865 2 0 0 10 91 2 5 GigabitEthernet7 1 25 2 0 0 ALU...

Page 430: ...outes Held down 1 0 19 1 0 ALU RIP Interface Statistics Interface RIPv1 RIPv2 GigabitEthernet7 0 Routes learned 0 Updates sent 0 11 Bad msgs received 14 Trig Updates sent 0 2 Auth failures 0 Responses...

Page 431: ...el lucent Accept lifetime 00 00 00 01 Jan 2000 Infinite Valid Now Send lifetime 00 00 00 02 Feb 2001 Infinite Valid Now key chain alu2 key 2 key string lucent Accept lifetime Always Valid Always Valid...

Page 432: ...le and advertised as unreachable However the route is still used for forwarding packets The default is 180 seconds Holddown 0 4294967295 Interval in seconds during which routing information regarding...

Page 433: ...80 seconds holddown 180 seconds flush 240 seconds EXAMPLE ALU config router rip timers basic 10 30 30 30 VALIDATE UPDATE SOURCE validate update source DESCRIPTION Enter the command in the Router Confi...

Page 434: ...RIP process configured on the OA 700 sends only RIPv1 messages but receives both RIPv1 and RIPv2 messages PARAMETERS DEFAULT VALUE By default the software receives both RIP Version 1 and Version 2 pac...

Page 435: ...OADCAST RIP ip rip v2 broadcast DESCRIPTION Enter this command in the Interface Configuration mode This command is used to allow RIP Version 2 update packets to be sent as broadcast packets instead of...

Page 436: ...OTOCOL This chapter explains the syntax of the various commands needed to configure Border Gateway Protocol It includes table of parameters default values and configuration examples for BGP configurat...

Page 437: ...ommand in the Router Configuration mode This command specifies the type of address family to be created and changes the command mode to Address Family mode PARAMETERS None Note In the OA 700 currently...

Page 438: ...mode This command configures BGP aggregate entries PARAMETERS DEFAULT VALUE None EXAMPLE ALU config router bgp AS30 aggregate address 35 0 0 0 8 advertise map admap1 Parameter Description address Aggr...

Page 439: ...different AS If this command is enabled MED is compared among paths regardless of AS from which paths are received PARAMETERS None DEFAULT VALUE MEDs per paths from neighbors in different autonomous s...

Page 440: ...h for identical paths PARAMETERS None DEFAULT VALUE Cluster length is not compared for choosing the best path EXAMPLE ALU config router bgp AS30 bgp bestpath compare cluster length BGP BESTPATH COMPAR...

Page 441: ...h missing MED are cancelled EXAMPLE ALU config router bgp AS30 bgp bestpath med confed BGP CLIENT TO CLIENT REFLECTION bgp client to client reflection DESCRIPTION Enter this command in the Address Fam...

Page 442: ...d as the Cluster ID EXAMPLE ALU config router bgp AS30 bgp cluster id 50 BGP CONFEDERATION IDENTIFIER bgp confederation identifier 1 65535 DESCRIPTION Enter this command in the Router Configuration mo...

Page 443: ...r this command in the Address Family or Router Configuration mode This command enables BGP route flap dampening and changes various BGP route dampening factors PARAMETERS Parameter Description 1 65535...

Page 444: ...and in the Router Configuration mode This command configures the default local preference value In the best path selection process this attribute is used and route with highest local preference that s...

Page 445: ...EBGP peer that does not add its AS number at the beginning of AS Path in the incoming update packets PARAMETERS None DEFAULT VALUE Disabled EXAMPLE ALU config router bgp AS30 bgp enforce first as BGP...

Page 446: ...Restart timer 175 seconds State Route Keep timer 100 seconds EXAMPLE ALU config router bgp AS30 bgp graceful restart timer 100 150 BGP LOG NEIGHBOR CHANGES bgp log neighbor changes DESCRIPTION Enter t...

Page 447: ...U config router bgp AS30 bgp router id 1 1 1 1 BGP WRITE CONFIG bgp write config DESCRIPTION Enter this command in the Address Family or Router Configuration mode This command shows BGP specific confi...

Page 448: ...AMPENING clear ip bgp dampening ip address mask network number DESCRIPTION This command clears Border Gateway Protocol BGP route dampening information and activates the suppressed routes Enter the cle...

Page 449: ...filter list 1 199 regexp regular expression DESCRIPTION Enter this command in Super User mode This command clears BGP route flap statistics PARAMETERS Parameter Description in out Triggers inbound or...

Page 450: ...ip bgp peer group peer group name ipv4 unicast in out soft in out DESCRIPTION Enter this command in Super User mode This command clears IP BGP peer group PARAMETERS DEFAULT VALUE By default a reset is...

Page 451: ...bgp 1 1 1 1 DEFAULT INFORMATION ORIGINATE default information originate DESCRIPTION Enter this command in the Address Family or Router Configuration mode This command is used to configure BGP router t...

Page 452: ...mand displays the BGP communities in the AA NN format PARAMETERS None DEFAULT BGP communities are displayed in one 32 bit number format EXAMPLE ALU config ip bgp community new format ALU config show r...

Page 453: ...r 1 1 1 1 activate NEIGHBOR ADVERTISEMENT INTERVAL neighbor ip address peer group name advertisement interval 0 600 DESCRIPTION Enter this command in the Address Family or Router Configuration mode Th...

Page 454: ...onfig router bgp AS30 neighbor 1 1 1 1 capability graceful restart NEIGHBOR DEFAULT ORIGINATE neighbor ip address peer group name default originate DESCRIPTION Enter this command in the Address Family...

Page 455: ...ON Enter this command in the Router Configuration mode This command can be used to associate a description to a neighbor PARAMETERS DEFAULT There is no description of the neighbor EXAMPLE ALU config r...

Page 456: ...ion as specified in an access list PARAMETERS DEFAULT No BGP neighbor is specified EXAMPLE ALU config router bgp AS30 neighbor 1 1 1 1 distribute list 1 in Parameter Description ip address Neighbor s...

Page 457: ...AS30 neighbor 1 1 1 1 ebgp multihop 4 NEIGHBOR FILTER LIST neighbor ip address peer group name filter list 1 199 in out DESCRIPTION Enter this command in the Router Configuration mode This command us...

Page 458: ...peer group name local as 1 65535 DESCRIPTION Enter this command in the Router Configuration mode This command is used to enable local as feature for specified neighbor AS number specified in the comm...

Page 459: ...d from a neighbor PARAMETERS DEFAULT This command is disabled by default There is no limit on the number of prefixes EXAMPLE ALU config router bgp AS30 neighbor 1 1 1 1 maximum prefix 20000 50 Paramet...

Page 460: ...AS30 neighbor 1 1 1 1 next hop self NEIGHBOR PEER GROUP ADDING MEMBERS neighbor ip address peer group peer group name DESCRIPTION Enter this command in the Address Family or Router Configuration mode...

Page 461: ...bgp AS30 neighbor testpeergroup peer group NEIGHBOR PREFIX LIST neighbor ip address peer group name prefix list name in out DESCRIPTION Enter this command in the Address Family or Router Configuratio...

Page 462: ...NEIGHBOR REMOTE AS neighbor ip address peer group name remote as 1 65535 DESCRIPTION Enter this command in the Address Family or Router Configuration mode Configures a BGP neighbor and the AS to whic...

Page 463: ...EFAULT None EXAMPLE ALU config router bgp AS30 neighbor 1 1 1 1 remove private as NEIGHBOR ROUTE MAP neighbor ip address peer group name route map name in out DESCRIPTION Enter this command in the Add...

Page 464: ...CLIENT neighbor ip address peer group name route reflector client DESCRIPTION Enter this command in the Address Family or Router Configuration mode This command configures the neighbor as a BGP route...

Page 465: ...mmunity attribute is sent to any neighbor EXAMPLE ALU config router bgp AS30 neighbor 35 0 0 1 send community NEIGHBOR SHUTDOWN neighbor ip address peer group name shutdown DESCRIPTION Enter this comm...

Page 466: ...re configuration is disabled EXAMPLE ALU config router bgp AS30 neighbor 35 0 0 0 soft reconfiguration inbound NEIGHBOR TIMERS neighbor ip address peer group name timers 0 65535 0 65535 DESCRIPTION E...

Page 467: ...map name DESCRIPTION Enter this command in the Address Family or Router Configuration mode This command enables BGP routers to selectively advertise routes previously suppressed by the aggregate addre...

Page 468: ...ress of the interface connected to neighbor is used for TCP connection EXAMPLE ALU config router bgp AS30 neighbor 1 1 1 1 update source GigabitEthernet 7 0 NEIGHBOR VERSION neighbor ip address peer g...

Page 469: ...ip address peer group name weight 0 65535 DESCRIPTION Enter this command in the Address Family or Router Configuration mode This command sets the default weight fort the routes from a neighbor PARAMET...

Page 470: ...bgp AS30 network 35 0 0 0 8 ROUTER BGP router bgp as number DESCRIPTION This command is used in the Configuration mode This command enables BGP routing for the local AS and changes to RCM PARAMETERS P...

Page 471: ...111 111 111 Status codes s suppressed d damped h history valid best i internal Origin codes i IGP e EGP incomplete Prefix len Next Hop Metric LocPref Weight Path 1 0 0 0 8 1 1 1 2 200 100 70 100i 4 0...

Page 472: ...umber Network in the BGP routing table bestpaths BGP bestpaths table cidr only Displays routes with non natural masks only community Displays routes matching with the communities community list Displa...

Page 473: ...rnal Origin codes i IGP e EGP incomplete Prefix len Next Hop Metric LocPref Weight Path 1 0 0 0 8 1 1 1 2 200 100 70 100i 4 0 0 0 8 1 1 1 2 200 100 70 100i 5 0 0 0 8 1 1 1 2 200 100 70 100i 6 0 0 0 8...

Page 474: ...omplete Prefix len Next Hop Metric LocPref Weight Path 111 111 111 0 24 111 111 111 112 110 100 50 300 d 118 0 0 0 24 111 111 111 112 110 100 50 300 ALU SHOW IP BGP COMMUNITY show ip bgp community 1 4...

Page 475: ...0 8 1 1 1 2 200 70 100i 4 0 0 0 8 1 1 1 2 200 70 100i 5 0 0 0 8 1 1 1 2 200 70 100i 6 0 0 0 8 1 1 1 2 200 70 100i d 7 0 0 0 8 1 1 1 2 200 70 100i d 118 0 0 0 24 111 111 111 112 110 50 300 ALU SHOW IP...

Page 476: ...LU show ip bgp dampened paths BGP local router ID is 111 111 111 111 Status codes s suppressed d damped h history valid best i internal Origin codes i IGP e EGP incomplete Prefix len From Reuse Path d...

Page 477: ...ip bgp flap statistics ip address ip address mask cidr only regexp regexp filter list 1 199 DESCRIPTION Enter this command in Super User mode or Configuration mode This command displays the BGP flap s...

Page 478: ...d d damped h history valid best i internal Origin codes i IGP e EGP incomplete Prefix len From Flaps Duration Reuse Path d 7 0 0 0 8 1 1 1 2 2 00 10 48 00 17 50 100i d 118 0 0 0 24 111 111 111 112 1 0...

Page 479: ...received Received 342 messages 0 notifications 0 in queue Sent 333 messages 7 notifications 0 in queue Minimum time between advertisement runs is 30 seconds For Address Family IPv4 Unicast Route refre...

Page 480: ...s family IPv4 Unicast advertised and received Received 322 messages 1 notifications 0 in queue Sent 331 messages 8 notifications 0 in queue Minimum time between advertisement runs is 30 seconds For Ad...

Page 481: ...hat the TCP connection is up Neighbor capabilities BGP capabilities advertised and received from this neighbor Received Number of total BGP messages received from this peer including keepalives notifi...

Page 482: ...his peering session was last reset Connection state State of BGP peer Local host Local port Peering address of local router plus port Foreign host Foreign port Peering address of the neighbor iss Init...

Page 483: ...r Configuration mode This command displays all the BGP paths in the database PARAMETERS None EXAMPLE ALU show ip bgp paths Hash Refcount Metric Path 376 1 110 300 377 1 110 300 643 5 200 100i ALU Fiel...

Page 484: ...S DEFAULT VALUE None EXAMPLE ALU show ip bgp peer group internal SHOW IP BGP REGEXP show ip bgp regexp regular expression DESCRIPTION Enter this command in Super User mode or Configuration mode This c...

Page 485: ...hs 2 Dampened paths 3 Path attribute entries using 672 bytes of memory 2 Aspath entries using 614 bytes of memory 2 Community entries using 44 bytes of memory Neighbor V AS MsgRcvd MsgSent InQ OutQ Up...

Page 486: ...ALU config router bgp AS30 synchronization Up Down The length of time that the BGP session has been in the Established state or the current state if it is not Established State PfxRcd Current state o...

Page 487: ...e are global timers for BGP router Keepalive and holdtime configured for a neighbor take precedence PARAMETERS DEFAULT VALUE The default keepaalive interval is 60 seconds The default holdtime interval...

Page 488: ...SHORTEST PATH FIRST This chapter lists the commands to monitor and configure the OSPF protocol It includes table of parameters default values and configuration examples for OSPF configuration as quick...

Page 489: ...mand is used in the Router Configuration mode This command enables authentication for an OSPF area Use the message digest keyword to enable MD5 authentication The default authentication mode is Plain...

Page 490: ...nter this command in the Router Configuration mode This command specifies the cost for the default summary route sent into a stub or NSSA PARAMETERS DEFAULT VALUE Default cost is 1 EXAMPLE ALU config...

Page 491: ...s defined EXAMPLE ALU config router ospf 30 area 1 nssa Parameter Description 0 4294967295 OSPF area ID as a decimal value ip address OSPF area ID in IP address format no redistribution Used when the...

Page 492: ...tised PARAMETERS DEFAULT VALUE Disabled EXAMPLE ALU config router ospf 30 area 1 range 10 0 0 0 8 not advertise Parameter Description 0 4294967295 Identifier of the area about which the routes are to...

Page 493: ...d in the Router Configuration mode This command defines an area to be a stub area PARAMETERS DEFAULT VALUE No stub area is defined EXAMPLE ALU config router ospf 30 area 1 stub no summary Parameter De...

Page 494: ...ecified by router ID PARAMETERS DEFAULT VALUE None EXAMPLE ALU config router ospf 30 area 1 virtual link 202 202 202 5 Parameter Description 0 4294967295 Identifier for the OSPF stub area as a decimal...

Page 495: ...00 EXAMPLE ALU config router ospf 30 auto cost referenece bandwidth 100 CLEAR IP OSPF clear ip ospf 1 65535 process redistribution counters neighbor neighbor id interface name interface statistics hel...

Page 496: ...r RFC 1583 Enter this command in Router Configuration mode To minimize the chance of routing loops all OSPF routers in an OSPF routing domain should have RFC compatibility set identically Because of t...

Page 497: ...r ospf 30 default information originate always metric 100 Parameter Description always Always advertises the default route regardless of whether the software has a default route 0 16777214 Metric used...

Page 498: ...ALU config router ospf 30 default metric 60000 DISTANCE distance 1 255 ip address subnet mask ip address prefix length 1 99 1300 1999 DESCRIPTION This command is used in the Router Configuration mode...

Page 499: ...command is used in the Router Configuration mode This command is used to change the administrative distance for a given network PARAMETERS DEFAULT VALUE The default distance for each type is 110 EXAMP...

Page 500: ...tion message digest IP OSPF AUTHENTICATION KEY ip ospf authentication key 0 0 password key DESCRIPTION This command is used in the Interface Configuration mode This command assigns an authentication p...

Page 501: ...command PARAMETERS DEFAULT VALUE The default cost is calculated based on the interface bandwidth EXAMPLE ALU config if GigabitEthernet7 0 ip ospf cost 100 IP OSPF DATABASE FILTER ALL OUT ip ospf data...

Page 502: ...the ip ospf hello interval command On broadcast network the dead interval is 40 seconds EXAMPLE ALU config if GigabitEthernet7 0 ip ospf dead interval 50 IP OSPF FLOOD REDUCTION ip ospf flood reducti...

Page 503: ...config if GigabitEthernet7 0 ip ospf hello interval 20 IP OSPF MESSAGE DIGEST KEY ip ospf message digest key 1 255 md5 key DESCRIPTION This command is used in the Interface Configuration mode This com...

Page 504: ...ration mode Disables detection of OSPF MTU mismatch in Database Description Packets PARAMETERS None DEFAULT VALUE By default OSPF MTU mismatch detection is enabled EXAMPLE ALU config if GigabitEtherne...

Page 505: ...n broadcast IP OSPF PRIORITY ip ospf priority 0 255 DESCRIPTION This command is used in the Interface Configuration mode This command is used to set the router priority which helps determine the desig...

Page 506: ...PLE ALU config if GigabitEthernet7 0 ip ospf retransmit interval 6 IP OSPF TRANSMIT DELAY ip ospf transmit delay 1 65535 DESCRIPTION This command is used in the Interface Configuration mode This comma...

Page 507: ...G ADJACENCY CHANGES log adjacency changes detail DESCRIPTION This command is used in the Router Configuration mode This command is used to enable logging of adjacency changes PARAMETERS DEFAULT VALUE...

Page 508: ...e form of an integer from 1 to 65535 Neighbors with no specific cost configured will assume the cost of the interface based on the ip ospf cost command For point to multipoint interfaces the cost keyw...

Page 509: ...uter ospf 30 network 10 0 0 0 8 area 1 NO PASSIVE INTERFACE no passive interface GigabitEthernet Serial slot port Loopback 0 14487 default The no command enables sending of hello packets and routing u...

Page 510: ...ion for an OSPF area NO AREA DEFAULT COST no area 0 4294967295 ip address default cost 0 16777215 The no command removes the specific cost assigned to the default summary route used for the stub area...

Page 511: ...interface GigabitEthernet Serial slot port Loopback 0 14487 default DESCRIPTION This command is used in the Router Configuration mode This command suppresses sending of routing update packets and OSP...

Page 512: ...LE ALU config router ospf 30 router id 35 0 0 1 ROUTER OSPF router ospf 1 65535 DESCRIPTION Enter this command in the Configuration mode This command is used to configure an OSPF routing process PARAM...

Page 513: ...arrival 1 secs Number of external LSA 4 Checksum Sum 0x1c8fd Number of opaque AS LSA 0 Checksum Sum 0x0 Number of areas in this router is 2 2 normal 0 stub 0 nssa Full neighbors 2 External flood list...

Page 514: ...er ID Supports ABR and ASBR Number of ToS supported SPF schedule delay Delay time and hold time of SPF calculations Minimum LSA interval Minimum interval between link state advertisements Number of ex...

Page 515: ...via 2 2 2 1 GigabitEthernet 7 1 ABR Area 1 SPF 5 ALU Parameter Description 1 65535 Process ID This parameter when specified displays the internal OSPF routing table entries to an ABR and ASBR for the...

Page 516: ...cess id area id database external link state id show ip ospf process id area id database external link state id adv router ip address show ip ospf process id area id database external link state id se...

Page 517: ...database opaque link link state id adv router ip address show ip ospf process id area id database opaque link link state id self originate link state id show ip ospf process id area id database route...

Page 518: ...uter asbr summary Optional Displays information only about the Autonomous System Boundary Router ASBR summary LSAs link state id Shows the specified type of LSA with matching link state ID database su...

Page 519: ...nk States Area 1 Link ID ADV Router Age Seq Checksum 2 2 2 2 1 1 1 2 1747 0x80000001 0x4AA5 Summary Net Link States Area 1 Link ID ADV Router Age Seq Checksum 1 1 1 0 1 1 1 2 96 0x80000003 0x65AC Summ...

Page 520: ...Length 36 Network Mask 24 Metric Type 2 Larger than any link state path TOS 0 Metric 20 Forward Address 1 1 1 2 External Route Tag 0 LS age 690 Options No TOS capability No DC LS Type AS External Link...

Page 521: ...mmand ALU show ip ospf database network OSPF Router with ID 1 1 1 2 Process ID 1 Net Link States Area 0 Routing Bit Set on this LSA LS age 2459 Options No TOS capability No DC Opq Bit LS Type Network...

Page 522: ...following command show ip ospf database external adv router 1 1 1 2 OSPF Router with ID 1 1 1 2 Process ID 1 Type 5 AS External Link States LS age 1739 Options No TOS capability No DC LS Type AS Exter...

Page 523: ...Tag 0 ALU EXAMPLE 5 To see all router LSAs use the following command ALU show ip ospf database router OSPF Router with ID 1 1 1 2 Process ID 1 Router Link States Area 0 LS age 979 Options No TOS capab...

Page 524: ...umber of Links 1 Link connected to a Transit Network Link ID Designated Router address 2 2 2 1 Link Data Router Interface address 2 2 2 1 Number of TOS metrics 0 TOS 0 Metrics 1 Router Link States Are...

Page 525: ...m Link count 1 1 1 2 1 1 1 2 110 0x80000019 0xF2F0 1 Net Link States Area 0 Link ID ADV Router Age Seq Checksum 1 1 1 2 1 1 1 2 1135 0x80000004 0xBD46 Summary Net Link States Area 0 Link ID ADV Router...

Page 526: ...nd ALU show ip ospf database summary OSPF Router with ID 1 1 1 2 Process ID 1 Summary Net Link States Area 0 LS age 133 Options No TOS capability No DC Opq Bit LS Type Summary Links Network Link State...

Page 527: ...s ID 1 Interface GigabitEthernet 7 0 Queue length 1 Type LS ID ADV RTR Seq NO Age Checksum 1 1 1 1 2 1 1 1 2 0x8000001D 0 0x04EA ALU Parameter Description 1 65535 Process ID If this argument is includ...

Page 528: ...10 Dead 40 Wait 40 Retransmit 5 Hello due in 00 00 03 Neighbor Count is 1 Adjacent neighbor count is 1 Adjacent with neighbor 1 1 1 1 Backup Designated Router Suppress hello for 0 neighbor s Message...

Page 529: ...Area 0 Hello Packets Received 516 Hello Packets Sent 508 Database Description Packets Received 11 Database Description Packets Sent 9 LS Request Packets Received 1 LS Request Packets Sent 2 LS Update...

Page 530: ...ss Waiting Process GigabitEthernet7 0 20 GigabitEthernet7 0 20 loopback 9 loopback1 Transmit Delay Interface transmit delay interface state and router priority Designated Router Designated router ID a...

Page 531: ...ss Interface 1 1 1 1 1 FULL BDR 00 00 33 1 1 1 1 GigabitEthernet7 0 6 6 6 6 1 FULL BDR 00 00 37 2 2 2 1 GigabitEthernet7 1 router 2 EXAMPLE 2 ALU show ip ospf neighbor GigabitEthernet 7 1 Process ID 1...

Page 532: ...Neighbor is up for 00 31 32 retransmission queue length 0 number of retransmissions 0 Parameter Description Neighbor Neighbor router ID Interface address IP address of the interface In the area Area a...

Page 533: ...e Guide Alcatel Lucent SHOW IP OSPF PROCESS INTERFACE show ip ospf process interface DESCRIPTION This command displays the process interface table PARAMETERS None EXAMPLE ALU config router ospf 20 sho...

Page 534: ...1 1 1 2 Process ID 1 Neighbor 6 6 6 6 interface GigabitEthernet 7 1 address 2 2 2 2 Type LS ID ADV RTR Seq NO Age Checksum 1280 192 175 142 0 1 1 1 1 0x80000003 774 0x9FFB 1280 192 175 206 0 1 1 1 1 0...

Page 535: ...1 1 1 interface GigabitEthernet 7 0 address 1 1 1 2 Link state retransmission due in 4 sec Queue length 0 Type LS ID ADV RTR Seq NO Age Checksum Neighbor 6 6 6 6 interface GigabitEthernet 7 1 address...

Page 536: ...1 1 2 20 0 0 0 0 0 1 1 1 0 24 Ext 2 0 0 0 0 20 0 1 1 1 2 2 0 0 0 8 Summ 1 1 1 2 20 0 0 0 0 0 2 2 2 0 24 Ext 2 0 0 0 0 20 0 2 2 2 2 45 5 5 0 24 Ext 2 0 0 0 0 20 0 0 0 0 0 ALU SHOW IP OSPF SUMMARY ADDR...

Page 537: ...utput from the show ip ospf virtual links command ALU show ip ospf virtual links Virtual Link VLINK to router 6 6 6 6 is up Run as demand circuit DoNotAge LSA not allowed Transit area 1 via interface...

Page 538: ...neighbor through the virtual link Transmit Delay is 1 sec The transmit delay in seconds on the virtual link State POINT_TO_POINT The state of the OSPF neighbor Timer intervals The various timer interv...

Page 539: ...ummary route is advertised PARAMETERS DEFAULT VALUE None EXAMPLE ALU config router ospf 30 summary address 20 0 0 0 8 tag 20 ALU config router ospf 30 summary address 10 0 0 0 8 not advertise Paramete...

Page 540: ...CING timers lsa group pacing 10 1800 DESCRIPTION This command is used in the Router Configuration mode This command changes the group pacing of LSAs PARAMETERS DEFAULT VALUE The default lsa group paci...

Page 541: ...delay is 5 seconds Hold time between two SPFs is 10 seconds EXAMPLE ALU config router ospf 30 timers spf 20 10 Parameter Description 0 65535 spf delay Delay time in seconds between when OSPF receives...

Page 542: ...automatic 509 Alcatel Lucent Beta Beta OmniAccess 700 CLI Command Reference Guide WRITE OSPF write ospf DESCRIPTION Enter this command in the Router Configuration mode This command is used to view the...

Page 543: ...Open Shortest Path First Left running head Chapter name automatic 510 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 544: ...his chapter lists the commands to monitor and configure the Multicast Routing Protocols It includes table of parameters default values and configuration examples for Multicast Routing configuration as...

Page 545: ...igabitEthernet 3 0 1 1 1 1 CLEAR IP PIM STATE INFO clear ip pim state info group address source address DESCRIPTION Enter this command in the Super User mode or Configuration mode This command clears...

Page 546: ...EFAULT Disabled by default EXAMPLE ALU config ip multicast routing IP PIM BSR CANDIDATE ip pim bsr candidate interface name 0 30 0 255 DESCRIPTION Enter this command in the Configuration mode This com...

Page 547: ...XAMPLE ALU config if GigabitEthernet3 0 ip pim dr priority 2 IP PIM MESSAGE INTERVAL ip pim message interval 1 65535 DESCRIPTION Enter this command in the Configuration mode PIM router sends periodic...

Page 548: ...with all the routers on an interface EXAMPLE ALU config if Serial0 0 0 ip pim neighbor filter acc list1 IP PIM RP ADDRESS ip pim rp address ip address override DESCRIPTION Enter this command in the C...

Page 549: ...ects the RP with the highest priority If multiple routers are candidate RP for same group then BSR calculates the hash value and with the highest hash value becomes RP If more than one RP has the same...

Page 550: ...lt priority is 0 EXAMPLE ALU config ip pim rp candidate priority 10 IP PIM SPARSE MODE ip pim sparse mode DESCRIPTION Enter this command in the Interface Configuration mode This command is used to ena...

Page 551: ...e This command is used to configure the SPT threshold value PARAMETERS DEFAULT VALUE Switch to SPT just after receiving first packet That means 0 Kbps EXAMPLE ALU config ip pim spt threshold 100 group...

Page 552: ...ION PIM router sends periodic hello messages on all PIM enabled interfaces Use this command to configure this interval in seconds PARAMETERS DEFAULT VALUE The default query interval is 30 seconds EXAM...

Page 553: ...oldtime 150 v2 Info source 1 1 1 1 via bootstrap Uptime 00 00 32 expires 00 01 58 SHOW IP PIM BSR ROUTER show ip pim bsr router DESCRIPTION Enter this command in the Super User mode or Configuration m...

Page 554: ...etails like interface DR priority and current DR on the interface is displayed PARAMETERS EXAMPLE ALU show ip pim interface Address Interface Ver Nbr Query DR DR Mode Count Intvl Prior 3 3 3 4 Gigabit...

Page 555: ...faces To see neighbors on a specific interface use the interface name PARAMETERS EXAMPLE ALU show ip pim neighbor PIM Neighbor Table Neighbor Interface Uptime Expires Ver DR Address Prio Mode 8 8 8 8...

Page 556: ...This command displays the group to RP mapping table of PIM PARAMETERS EXAMPLE ALU config show ip pim rp mapping PIM Group to RP Mappings Group s 225 0 0 0 8 RP 1 1 1 1 v2 Info source 1 1 1 1 via boots...

Page 557: ...pim state info PIMv2 State information Flags M Nexthop from Mroute T Terminating K KeepAlive Timer Running S SPT bit set 224 1 1 1 JOINED 00 00 55 00 00 05 RP 5 5 5 5 flags Incoming interface GigabitE...

Page 558: ...s which are not permitted by access lists This restricts the host on a subnet joining only multicast groups that are permitted by access lists PARAMETERS DEFAULT VALUE None EXAMPLE ALU config if Gigab...

Page 559: ...bitEthernet3 0 ip igmp join group 226 2 2 2 IP IGMP LAST MEMBER QUERY COUNT ip igmp last member query count 1 7 DESCRIPTION Enter this command in the Interface Configuration mode Use this command to c...

Page 560: ...milliseconds EXAMPLE ALU config if GigabitEthernet3 0 ip igmp last member query interval 2000 IP IGMP QUERY INTERVAL ip igmp query interval 1 65535 DESCRIPTION Enter this command in the Interface Conf...

Page 561: ...p query max response time 20 IP IGMP QUERIER TIMEOUT ip igmp querier timeout 60 300 DESCRIPTION Enter this command in the Interface Configuration mode This command configures the time out value in sec...

Page 562: ...nter this command in the Interface Configuration mode This command is used to enable IGMP on an interface After enabling this command IGMP learns the multicast host information on given interface PARA...

Page 563: ...the multicast groups joined You can enter the interface name to see multicast groups on that interface PARAMETERS EXAMPLE ALU show ip igmp groups Interface Group Address Last Reporter Uptime Expires...

Page 564: ...values of the IGMP interface parameters PARAMETERS EXAMPLE ALU show ip igmp interface GigabitEthernet3 0 Internet address 7 7 7 3 Mask 255 255 255 0 Host version 2 Router Version 2 Query Interval 125...

Page 565: ...ION Enter this command in the Super User mode or Configuration mode This command clears multicast routing information PARAMETERS None EXAMPLE ALU clear ip mroute CLEAR IP MULTICAST TRAFFIC clear ip mu...

Page 566: ...it set 224 1 1 1 uptime 0 10 21 flags Rates Waiting for latest Incoming Interface GigabitEthernet3 1 RPF failures 0 Outgoing Interfaces 1 GigabitEthernet3 0 4 4 4 4 224 1 1 1 uptime 0 30 20 expired fl...

Page 567: ...ulticast traffic DESCRIPTION Enter this command in the Super User mode or Configuration mode This command displays the statistics of the multicast packets PARAMETERS None EXAMPLE ALU show ip multicast...

Page 568: ...POLICY BASED ROUTING This chapter lists the commands to configure Policy Based Routing PBR It includes table of parameters default values and configuration examples for PBR configuration as quick star...

Page 569: ...his command clears the statistics of all the IP policies configured in the system PARAMETERS EXAMPLE ALU config clear ip policy statistics IP POLICY ip policy name DESCRIPTION Enter this command in th...

Page 570: ...2 2 1 ALU config ip policy pbr1 20 match m1 m2 next hop 1 2 2 2 Parameter Description 1 65535 Denotes the routing policy rule number The range for the IP policy rule match all any match list name Thi...

Page 571: ...itEthernet3 1 ALU config interface GigabitEthernet3 1 ALU config if GigabitEthernet3 1 ip policy pbr1 NO IP POLICY no ip policy name force This command is used to delete an IP policy If the policy is...

Page 572: ...ser mode or Configuration mode This command is used to view all the IP policies configured in the system This command also displays interfaces on which these policies are applied PARAMETERS EXAMPLE AL...

Page 573: ...command is used to display the statistics of all the IP policies configured in the system This displays the number of packets that hit the rules in the IP policy and number of packets dropped PARAMETE...

Page 574: ...face CLI commands for Virtual Routing and Forwarding Customer Edge VRF CE These commands are used to configure VRF CE on an interface This chapter includes tables of parameters default values and conf...

Page 575: ...F and enters the address family configuration mode If the VRF name is not specified then the configurations are associated with the Default VRF PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPL...

Page 576: ...RIP Routing Configuration Mode This command associates the address family with the VRF and enters the VRF configuration mode PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config router...

Page 577: ...ified then the ARP entry is added to the specified VRF else it is added to the defualt VRF PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config arp vrf ALU vrf 10 91 0 21 0004 9BE9 C4A...

Page 578: ...he vrf ALU vrf RELEASE HISTORY Release 2 3 command was introduced CLEAR ARP TRAFFIC clear arp traffic vrf vrf name DESCRIPTION This command is used to clear the ARP statistics counters PARAMETERS PLAT...

Page 579: ...RIPTION This command clears the BGP connections If AS number is specified connection to the specified AS is cleared PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config clear ip bgp vr...

Page 580: ...0 780 EXAMPLE ALU config clear ip traffic vrf ALU vrf RELEASE HISTORY Release 2 3 command was introduced CLEAR IP ROUTE clear ip route vrf vrf name DESCRIPTION This command clears the IP routing table...

Page 581: ...DESCRIPTION Enter this command in the VRF Configuration mode This command is used to enter the description for a created VRF This is for user purpose only PARAMETERS PLATFORMS SUPPORTED OmniAccess 740...

Page 582: ...e VRF name is not specified then the routing entry is added to the corresponding Default VRF s routing table PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip route vrf ALU vrf 1...

Page 583: ...Lucent IP VRF ip vrf vrf name DESCRIPTION This command is used to configure a VRF This enters the VRF Configuration mode PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip vrf AL...

Page 584: ...ation mode This command is used to associate a VRF on an interface Note IP address configuration on the interface is removed when this command is executed Hence associate a VRF to an interface prior t...

Page 585: ...g connectivity PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ping vrf ALU vrf 1 2 3 1 RELEASE HISTORY Release 2 3 parameter vrf vrf name was added Parameter Description vrf name...

Page 586: ...not specified then the OSPF instance is associated with the Default VRF PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config router ospf 1 vrf ALU vrf ALU config router ospf 1 RELEASE...

Page 587: ...VRF PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show arp vrf ALU vrf Protocol Address Age min Hardware Addr Type Interface Internet 4 4 4 4 0011 8b00 8491 ARPA GigabitEthernet...

Page 588: ...p traffic vrf ALU vrf ARP Traffic statistics Request Recvd 0 Request Sent 6 Response Recvd 1 Response Sent 0 Rate limiting Request Not Answered 0 Request Not Sent 0 ADJ count exceeded 0 Errors Req Res...

Page 589: ...as introduced SHOW IP BGP COMMUNITY show ip bgp community vrf vrf name DESCRIPTION This command displays the routes that belong to specified BGP communities PARAMETERS PLATFORMS SUPPORTED OmniAccess 7...

Page 590: ...bgp community list vrf vrf name DESCRIPTION This command displays the routes that are permitted by the BGP community list PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show ip...

Page 591: ...p bgp flap statistics vrf vrf name DESCRIPTION This command displays the flap statistics of BGP routes PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show ip bgp flap statistics...

Page 592: ...EIGHBORS show ip bgp neighbors vrf vrf name DESCRIPTION This command is used to see the neighbors connection state in specified VRF PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config...

Page 593: ...eer group vrf vrf name DESCRIPTION This command displays the information about the given peer group PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show ip bgp peer group RELEASE...

Page 594: ...ble values Levels 4 Load balance span 16 IPC Connect 0 RIB Connected 0 Total leaves 12 Level 0 1 Level 1 4 Level 2 4 Level 3 3 Total branches 12 LB nodes 0 For Us adj 8 Connected rtes 2 Memory used 12...

Page 595: ...ilter list for all interfaces is not set Routing for Networks 4 0 0 0 8 Routing Information Sources Gateway Distance Last Update 4 4 4 1 110 00 05 56 Distance default is 110 Routing Protocol is bgp 10...

Page 596: ...candidate default route Gateway of last resort is not set 1 0 0 0 is variably subnetted 2 subnets 2 masks B 1 0 0 0 8 20 0 via 4 4 4 1 GigabitEthernet3 0 O 1 1 1 0 24 110 110 1 via 4 4 4 1 GigabitEthe...

Page 597: ...Frags 0 reassembled 0 timeouts 0 couldn t reassemble 0 fragmented 0 couldn t fragment 0 fragments created Sent 11 generated 11 forwarded 5 encapsulation failed 0 no route ICMP statistics Rcvd 5 total...

Page 598: ...ORTED OmniAccess 740 780 EXAMPLE ALU config show ip vrf interfaces ALU Interface IP Address VRF Protocol GigabitEthernet7 1 1 1 1 1 ALU Down ALU config show ip vrf interfaces ALU vrf Interface IP Addr...

Page 599: ...LATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ssh vrf ALU vrf 10 91 0 25 RELEASE HISTORY Release 2 3 parameter vrf vrf name was added Parameter Description vrf name Name of the VRF If the V...

Page 600: ...a remote system specified by the addresss PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config telnet vrf ALU vrf 10 91 0 22 RELEASE HISTORY Release 2 3 parameter vrf vrf name was add...

Page 601: ...or figuring out the path taken by the IP packet PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config traceroute vrf ALU vrf 1 2 3 1 RELEASE HISTORY Release 2 3 parameter vrf vrf name w...

Page 602: ...l Lucent 569 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such...

Page 603: ...Left running head Chapter name automatic 570 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 604: ...ADDRESS TRANSLATION This chapter provides Network Address Translation NAT Command Line Interface CLI commands The commands referring to the SNAT and DNAT are alphabetically arranged This guide provide...

Page 605: ...onfigure one or more rule associate match lists and set priority for the rule for the configured SNAT PARAMETERS DEFAULT VALUE None EXAMPLE ALU config nat N1 10 match m1 source nat Parameter Descripti...

Page 606: ...of the egress interface on which the NAT policy is applied will be used PARAMETERS Note Currently Hostname option is not supported Only host IP address can be configured DEFAULT VALUE None EXAMPLE ALU...

Page 607: ...no address is configured the IP address of the egress interface on which the NAT policy is applied will be used PARAMETERS DEFAULT VALUE None EXAMPLE ALU config nat N1 match m1 source nat pool l1 Para...

Page 608: ...ge PARAMETERS DEFAULT VALUE If no port range is specified a default port range of 2048 65535 is used EXAMPLE ALU config nat N1 match m1 source nat port range 2048 6000 Parameter Description 1 65535 Th...

Page 609: ...d the IP address of the egress interface on which the NAT policy is applied will be used PARAMETERS DEFAULT VALUE By default NAT enables dynamic mapping EXAMPLE ALU config nat N1 match m1 source nat s...

Page 610: ...s used to configure a DNAT with host IP address or an IP address pool PARAMETERS Note Presently Hostname option is not supported Only host IP address can be configured DEFAULT VALUE None EXAMPLE ALU c...

Page 611: ...ation nat host 192 168 10 91 port 100 ALU config nat N2 match m1 destination nat pool l1 port 100 Parameter Description 1 65535 The range for the NAT policy rule This rule number signifies the priorit...

Page 612: ...ng without port translation PARAMETERS DEFAULT VALUE None EXAMPLE ALU config nat N2 match m1 destination nat pool l1 static Parameter Description 1 65535 The range for the NAT policy rule This rule nu...

Page 613: ...ALU config ip nat snat ALU config nat snat match m1 bypass CLEAR IP NAT STATISTICS clear ip nat statistics nat policy name DESCRIPTION This command clears the statistics of a specific NAT policy PARA...

Page 614: ...lowing example clears the statistics of the NAT for interface GigabitEthernet7 0 ALU clear ip nat statistics GigabitEthernet7 0 in CHANGE change 1 65535 1 65535 DESCRIPTION Use this command to change...

Page 615: ...ity for NAT on the OA 700 PARAMETERS EXAMPLE ALU debug firewall nat IP NAT ip nat nat policy name DESCRIPTION This command is used to configure a NAT policy This command enters the NAT configuration m...

Page 616: ...ing HTTP responses are automatically allowed and translated even if there is a filter to block ALU config match list m1 ALU config match list m1 ip any any type ftp ALU config exit ALU config ip filte...

Page 617: ...e GigabitEthernet7 0 ALU config if GigabitEthernet7 0 no ip nat statistics out NO DEBUG FIREWALL NAT no debug firewall session filter nat attack alg intrusion selector saddr ip address daddr ip addres...

Page 618: ...he top level and if this NAT policy is not bound to any interface it deletes the NAT policy definition NO IP NAT STATISTICS IN OUT BOTH no ip nat statistics in out both This command is entered in the...

Page 619: ...e configured NATs or a specific NAT PARAMETERS EXAMPLE 1 The following example displays the details of all the NATs configured ALU show ip nat ip nat n1 10 match all m1 source nat ip nat n2 10 match m...

Page 620: ...statistics for the NATs configured or for a specific NAT policy PARAMETERS EXAMPLE The following example shows detailed statistics for the NAT policy n1 ALU show ip nat statistics n1 ip nat n1 Dropped...

Page 621: ...face PARAMETERS EXAMPLE The following example shows NAT statistics on a specified interface ALU show ip nat statistics GigabitEthernet7 0 Out ip nat n1 Dropped 0 Bypassed 0 Enqueued 0 10 match any m1...

Page 622: ...ds for configuring the filters firewall policies and DoS attack prevention Common Classification CC commands are used in these CLIs Refer to the Common Classifiers chapter to know more on Alcatel Luce...

Page 623: ...This command changes the priority of a configured filter rule PARAMETERS EXAMPLE Consider the following configuration ALU config ip filter f1 ALU config filter f1 10 match m1 deny 20 match m2 deny 30...

Page 624: ...ce name in out both filter name DESCRIPTION This command is used to clear the statistics of a filter on a particular interface PARAMETERS EXAMPLE ALU clear ip filter statistics GigabitEthernet7 0 in A...

Page 625: ...to debug only selected traffic PARAMETERS EXAMPLE The example below enables debugging for the source IP 10 91 0 52 ALU debug firewall selector saddr 10 91 0 52 IP FILTER ip filter name DESCRIPTION Ent...

Page 626: ...he deny keyword Parameter Description 1 65535 Denotes the filter rule number The range for the filter rule match match list name This command forms a match list of the Common classifiers that are pre...

Page 627: ...de This command is used to attach a filter to an interface in in or out direction Note Each interface can have one ingress and one egress filter PARAMETERS EXAMPLE The following example binds the filt...

Page 628: ...s to be first detached from its interface and then removed If the filter is attached to any of the interfaces it cannot be deleted In such a case to force deletion of a filter use the force command fr...

Page 629: ...r name DESCRIPTION This command displays the details of all the filters configured on the system If filter name is specified it displays the details for the specified filter PARAMETERS EXAMPLE Enter t...

Page 630: ...r this command in the Super User mode This command displays the statistics of a filter on a particular interface PARAMETERS EXAMPLE The following command displays the filter statistics ALU config show...

Page 631: ...Command Reference Guide Alcatel Lucent STATELESS stateless DESCRIPTION Enter this command in the Filter Configuration mode This command sets the filter behavior to stateless PARAMETERS None DEFAULT V...

Page 632: ...t and Optional attacks for an attack object PARAMETERS None EXAMPLE ALU config firewall attack A1 all The following are the Optional attacks that are not present in the default attack prevention list...

Page 633: ...olicy rule PARAMETERS EXAMPLE Consider the following configuration ALU config firewall ALU config firewall policy P1 ALU config firewall P1 10 match m1 permit 20 match m2 deny log 30 match m3 permit 4...

Page 634: ...r dport number output permanent all detail level DESCRIPTION This command turns on debugging for specified firewall features and IDS IPS The selector keyword allows you to debug only selected traffic...

Page 635: ...d ip rate threshold These attacks can be either manually turned on for detection or filters can be applied to block them For all rate limiting related attacks the default threshold is 2 packets per 20...

Page 636: ...Rate Limiting attacks ip tear drop ip tiny frag 50 64 icmp ping of death 50 65507 ip zero length icmp smurf attack ip land attack tcp xmas scan tcp_ invalid urgent offset tcp null scan tcp syn fin tc...

Page 637: ...o change these default values use this command PARAMETERS DEFAULT VALUE Default TCP value is 15 minutes Default UDP value is 5 minutes Default ICMP value is 30 seconds EXAMPLE ALU config firewall sess...

Page 638: ...o an interface PARAMETERS DEFAULT VALUE No default parameters EXAMPLE ALU config interface GigabitEthernet7 0 ALU config if GigabitEthernet7 0 firewall policy in P1 ICMP BLOCK TRACE ROUTE icmp block t...

Page 639: ...tack prevention list However if you do not want to use these default lists he can turn on only a selected number of attacks by using their respective keywords with parameters PARAMETERS DEFAULT VALUE...

Page 640: ...thin a defined interval The purpose of this scheme is to ping several hosts in the hope that one will reply thus uncovering an address to target resulting in system failure This command is included in...

Page 641: ...t to another broadcast function Most hosts on that IP network will take the ICMP echo request and reply to it with an echo reply each and multiply the traffic by the number of hosts responding To secu...

Page 642: ...revention list to secure the system from this attack PARAMETERS DEFAULT VALUE Number of the maximum fragments allowed in one ping packet default value is 50 Number of maximum length of the whole ping...

Page 643: ...MPLE ALU config firewall attack A1 icmp router advertisement ICMP SMURF ATTACK icmp smurf attack DESCRIPTION An assault on a network that floods it with excessive messages in order to impede normal tr...

Page 644: ...ack A1 ip land attack IP SOURCE ROUTING ip source routing DESCRIPTION Source routing is a technique whereby the sender of a packet can specify the route that a packet should take through the network A...

Page 645: ...irewall After gaining root access and taking over existing terminal and login connections intruders can gain access to remote hosts This command is not included in the default attack prevention list y...

Page 646: ...be passed because it didn t hit a match in the filter This can be avoided by including the above command with a specified minimum fragment size in the user defined attack prevention list or by just u...

Page 647: ...tack is prevented by use of the above command PARAMETERS None EXAMPLE ALU config firewall attack A1 ip zero length LOG log DESCRIPTION Enter this command in the Firewall Attack Sub Configuration mode...

Page 648: ...less keyword disables only the stateless default attacks NO FIREWALL POLICY IN OUT no firewall policy in out policy name Enter this command in the Interface Configuration mode This command detaches a...

Page 649: ...uration mode This command is used to attach an attack object to a firewall policy In the following example the attack object atk is configured to drop all the attacks ALU config firewall P1 match m1 a...

Page 650: ...to configure port scan attack for an attack object PARAMETERS EXAMPLE ALU config firewall attack A1 port scan RENUMBER renumber DESCRIPTION Enter this command in the Firewall Configuration mode Use th...

Page 651: ...he following syntax is used to view the details of attack A1 ALU show firewall attack A1 attack A1 udp port loopback 10 1000 udp flood 200 1000 tcp fin scan icmp ip address sweep 2 10 icmp dest unrch...

Page 652: ...ks configured for the system default attack object PARAMETERS None EXAMPLE ALU show firewall attack system default attack system default udp port loopback 10 1000 udp flood 200 1000 port scan 5 1000 t...

Page 653: ...TERS EXAMPLE To view the firewall policy details use the following syntax ALU show firewall policy P1 policy P1 10 match any dos attack P1 drop interface GigabitEthernet7 0 In SHOW FIREWALL POLICY SYS...

Page 654: ...IREWALL SESSION show firewall session DESCRIPTION Show command is issued in the Super User mode This command is used to view all the firewall sessions used by the system PARAMETERS None EXAMPLE The fo...

Page 655: ...FORMS SUPPORTED OmniAccess 740 780 EXAMPLE The following syntax is used to view the details of firewall session ALU config show firewall session detail ID 70 ICMP timeout 28 secs used by NAT Initiator...

Page 656: ...the firewall sessions with respect to the protocol type PARAMETERS EXAMPLE The following syntax is used to view the details of firewall session with respect to TCP protocol ALU config show firewall se...

Page 657: ...he Super User mode This command is used to view the firewall session details given the source address PARAMETERS EXAMPLE ALU config if GigabitEthernet7 1 show firewall session destination ip 10 91 0 1...

Page 658: ...address PARAMETERS EXAMPLE ALU config if GigabitEthernet7 1 show firewall session source 10 91 1 108 ID 70 ICMP timeout 25 secs used by NAT Initiator 10 91 1 108 13 10 91 0 1 13 Responder 10 91 0 1 34...

Page 659: ...attempt to bypass firewalls or intrusion detection systems This could lead to secure information also being passed through the filter To retain security this command also forms a part of the default a...

Page 660: ...this command in the user defined prevention list or by the default keyword PARAMETERS None EXAMPLE ALU config firewall attack A1 tcp null scan TCP SYN FIN tcp syn fin DESCRIPTION It has TCP packets wi...

Page 661: ...ices to the Internet community may be unable to provide services while under this attack and for some time after this attack ceases To protect the system from this attack use this command PARAMETERS D...

Page 662: ...seen with a sequence number of zero and the FIN URG and PUSH bits all set To avoid this attack include the above command PARAMETERS None EXAMPLE ALU config firewall attack A1 tcp xmas scan UDP FLOOD u...

Page 663: ...1 4294967295 DESCRIPTION A UDP packet travels between two echoing ports Such packets can bounce infinite number of times using up network bandwidth and CPU An intruder can cause problems by spoofing...

Page 664: ...is an attempt to connect two services which if enabled will engage in an indefinite communication with each other This will cause many frames to be unnecessarily transmitted and dramatically reduce th...

Page 665: ...me range t2 periodic daily 08 00 00 to 19 00 00 ALU config time range t3 periodic weekly wednesday 10 00 00 to 13 30 00 Parameter Description absolute hh mm ss mm dd yyyy Absolute time range This deno...

Page 666: ...time range configured on the system or a specific time range PARAMETERS EXAMPLE If t1 is a schedule then to view the particulars in it use the following command ALU show time range time range t1 abso...

Page 667: ...the the ALG SIP statistics PARAMETERS None EXAMPLE ALU config clear firewall alg sip statistics SHOW FIREWALL ALG DNS DEBUG COUNTERS show firewall alg dns debug counters DESCRIPTION This show command...

Page 668: ...S None EXAMPLE ALU config show firewall alg dns statistics Total DNAT Ordinary Queries 0 Total DNAT Inverse Queries 0 Total DNAT Ordinary Query Responses 0 Total DNAT Inverse Query Responses 0 Total n...

Page 669: ...l DNAT Port commands 0 Total Filter Port commands 0 Total SNAT Pasv Response commands 0 Total DNAT Pasv Response commands 0 Total Filter Pasv Response commands 0 Total Pinholes created 0 Total Pinhole...

Page 670: ...ALG statistics PARAMETERS None EXAMPLE ALU config show firewall alg rpc statistics Total SNAT RPC CALL Packets 0 Total DNAT RPC REPLY Packets 0 Total DNAT DUMP REPLY Packets 0 Total Pinholes created...

Page 671: ...al RTP Pinholes created 0 Total RTP Pinholes matched 0 Total RTP Pinholes timed out 0 Total RTCP Pinholes created 0 Total RTCP Pinholes matched 0 Total RTCP Pinholes timed out 0 SHOW FIREWALL ALG SIP...

Page 672: ...ons 0 Total RTP Pinholes created 2 Total RTP Pinholes freed 1 Total RTP Pinholes matched 1 Total RTP Pinholes timeout 0 Total RTCP Pinholes created 2 Total RTCP Pinholes freed 0 Total RTCP Pinholes ma...

Page 673: ...al SNAT Write commands 0 Total DNAT Write commands 0 Total Filter Write Commands 0 Total SNAT Read Commands 0 Total DNAT Read Commands 0 Total Filter Read commands 0 Total Pinholes created 0 Total Pin...

Page 674: ...CLI Command Reference Guide UDP ANY ANY SERVICE udp any any service dns nfs sip tftp DESCRIPTION This command is entered in the Match list mode This command is used to enable DNS NFS SIP or TFTP ALG P...

Page 675: ...pecific ALG rule configured PARAMETERS EXAMPLE The following example shows how to change the priority of an ALG rule ALU config customized service change 10 1 CUSTOMIZED SERVICE customized service DES...

Page 676: ...es to port 100 then the service is recognized as FTP and the ALG is invoked accordingly The standard port invocation of ALG is also active here ALU config match list m1 ALU config match list m1 tcp an...

Page 677: ...nt NOE ALG CONFIGURATION COMMANDS CLEAR FIREWALL ALG NOE STATISTICS clear firewall alg noe statistics DESCRIPTION This command is used to clear all the NOE ALG statistics PARAMETERS None PLATFORMS SUP...

Page 678: ...address DESCRIPTION This command is used to clear the sub address mappings for all the NOE phones Use IP address MAC address of the NOE phone to clear the sub address mappings for the specified phone...

Page 679: ...P traffic Note The match list configured should match the TFTP traffic PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config match list m1 ALU config match list m1 udp any any service t...

Page 680: ...ION This command is entered in the Configuration Mode This command is used to reserve NAT ports start port and end port for NOE traffic PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU co...

Page 681: ...nd is used to view the NoE ALG debug counters PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show firewall alg noe debug counters Total malloc passed noe sessions and calls...

Page 682: ...statistics PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show firewall alg noe statistics noe pinholes outstanding 0 noe sessions created 1 noe sessions released 0 noe ses...

Page 683: ...UPPORTED OmniAccess 740 780 EXAMPLE ALU config show firewall alg noe subaddress mapping Mac Address Phone IP Address Nat IP Address Sub Address 0080 9f6b f8be 1 1 1 3 135 254 162 29 01 0080 9f69 2f0b...

Page 684: ...eference Guide UDP ANY ANY TYPE NOE udp any any type noe DESCRIPTION Enter this command in the match list mode Use this command to classify the NOE signalling traffic PARAMETERS None PLATFORMS SUPPORT...

Page 685: ...Filter and Firewall Left running head Chapter name automatic 652 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 686: ...LI syntax of the various commands needed to configure IPsec This chapter includes table of parameters default values and configuration examples for IPsec configurations as quick start and reference in...

Page 687: ...e to be used during IKE negotiation PARAMETERS None DEFAULT VALUE If the authentication type is not explicitly configured by default pre shared is used EXAMPLE ALU config crypto ike policy P1 authenti...

Page 688: ...As corresponding to a specific SA index PARAMETERS EXAMPLE ALU clear crypto ipsec sa all ALU clear crypto ipsec sa 16 Note The sa index must be a valid sa index of an outbound SA CRYPTO CA CERT crypto...

Page 689: ...ALUCA CRYPTO CERTIFICATE DATABASE REFRESH crypto certificate database refresh DESCRIPTION This command adds the imported certificate or key to the IPsec database This operation need not be performed...

Page 690: ...certificate request req_Simpsom export ftp CRYPTO CERTIFICATE REQUEST GENERATE KEY NAME crypto certificate request name generate key name name ca name DESCRIPTION This command generates a CSR for the...

Page 691: ...IKE DPD INTERVAL crypto ike dpd interval 5 3600 timeout 5 72000 DESCRIPTION This command configures the DPD globally with the interval in seconds for which the keep alive messages will be sent and th...

Page 692: ...is used to configure a pre shared key The Pre shared key is used to authenticate peers This key should be same on both the IPsec gateways It is denoted in the form of a key string PARAMETERS Paramete...

Page 693: ...ret peer 202 54 30 100 CRYPTO IKE POLICY crypto ike policy name force DESCRIPTION This command configures an IKE policy PARAMETERS EXAMPLE ALU config crypto ike policy P1 ALU config crypto ike policy...

Page 694: ...de This command allows all connections associated with a crypto map to use a DPD policy that is different from the global policy PARAMETERS DEFAULT VALUE The default value for DPD timeout is three tim...

Page 695: ...MD5 and 256 bit AES encryption esp md5 des encapsulation with MD5 and 56 bit DES encryption esp sha1 3des encapsulation with SHA1 and three key Triple DES esp sha1 aes128 encapsulation with SHA1 and...

Page 696: ...P option is not supported PARAMETERS EXAMPLE ALU config crypto key export rsa examplekey tftp CRYPTO KEY GENERATE RSA crypto key generate rsa 512 4096 name bg DESCRIPTION This command generates an RSA...

Page 697: ...ap name ipsec ike ike policy name force DESCRIPTION Enter this command in the Configuration mode This command creates a crypto map and attaches an IKE policy to it Which traffic should be protected by...

Page 698: ...MAP crypto map map name DESCRIPTION Enter this command in the Interface Configuration mode This command attach a crypto map to an interface PARAMETERS EXAMPLE ALU config interface GigabitEthernet7 0...

Page 699: ...icate name import fpkey file path ftp tftp http https scp DESCRIPTION This command imports trusted peer certificates into the OA 700 Note Currently SCP option is not supported PARAMETERS EXAMPLE ALU c...

Page 700: ...certificate name delete DESCRIPTION This command deletes the specified peer certificate PARAMETERS EXAMPLE ALU config crypto peer certificate cert_Bouvier delete CRYPTO RSA KEY DELETE crypto rsa key...

Page 701: ...EXAMPLE ALU config crypto map exampleMap ike identity exampleIdentity IMPORT CA CERT import ca cert fpkey file path ftp tftp http https scp DESCRIPTION This command imports a CA certificate Note Curre...

Page 702: ...CA import crl ftp IMPORT SIGNED CERT import signed cert name fpkey file path ftp tftp http https scp DESCRIPTION This command imports an X 509 certificate signed by the CA from a remote location Note...

Page 703: ...8800 seconds There is no default value for IPsec security association lifetime in Kilobytes EXAMPLE ALU config crypto ike policy P1 ipsec security association lifetime kilobytes 5400 ALU config crypto...

Page 704: ...association lifetime PARAMETERS DEFAULT VALUE Lifetime has a default value of 28800 seconds There is no default value for lifetime in Kilobytes EXAMPLE ALU config crypto map exampleMap lifetime kilob...

Page 705: ...ETERS EXAMPLE ALU ike identity exampleidentity my ca CN ALU OU Certificate Authority C US MY CERT my cert name DESCRIPTION This command specifies the imported signed certificate to be used during IKE...

Page 706: ...This command makes the CRL policy lenient NO CRYPTO IKE DPD no crypto ike dpd This command disables DPD for IPsec globally This command is executed in the Configuration mode NO CRYPTO IKE KEY no cryp...

Page 707: ...command removes the IPsec security association lifetime in kilobytes value NO LIFETIME no lifetime kilobytes seconds If this command is entered in the Crypto Map mode the no command resets the seconds...

Page 708: ...configured for the IKE policy NO TRANSFORM SET no transform set This command detaches the specified transform set attached to a crypto map and applies the default transform set Note A transform set m...

Page 709: ...LE ALU ike identity exampleidentity peer ca CN ALU OU Certificate Authority C US PEER CERT peer cert name DESCRIPTION This command specifies the self signed peer s certificate This can be used if a tr...

Page 710: ...ouvier alu com PFS pfs group1 group2 group5 DESCRIPTION This command is entered in the IKE Policy mode This command is used to configure a PFS group Note If the PFS group is not explicitly configured...

Page 711: ...ypto map group2 PFS is used EXAMPLE ALU config crypto map exampleMap pfs group1 PROPOSAL proposal algo algo algo algo DESCRIPTION Use this command to configure a IKE proposal Options for algo are md5...

Page 712: ...ipsec security association lifetime seconds 28800 lifetime seconds 86400 pfs group2 crypto ike policy examplePolicy proposal sha1 aes256 ipsec security association lifetime seconds 28800 lifetime seco...

Page 713: ...81 70 90 1a 95 dd 79 44 c6 e3 1b c6 a3 ec d7 d5 18 9e c2 d0 14 a3 8c 35 c0 34 e1 9f ff 2c ae fd 0e b2 6f 5a 59 3e c8 67 e8 f8 a7 a2 ba 84 d9 e5 0a cc af e0 cf 67 36 a4 e6 f5 22 d5 88 72 3c aa 85 be 9...

Page 714: ...0M0CAwEAAaN6MHgwHQYDVR0OBBYEFAWY0iXTGBKhx0t6mNLYJXMra66xMEkGA1Ud IwRCMECAFAWY0iXTGBKhx0t6mNLYJXMra66xoSWkIzAhMRAwDgYDVQQDFAdDQV8w eDAxMQ0wCwYDVQQKEwROZXRkggEAMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQEE BQAD...

Page 715: ...9 f4 ef 13 df a7 e3 ee 28 32 b5 ef 06 e2 f8 c9 31 6d 44 44 81 d2 3f 49 82 c9 6b 5a d1 73 d0 7b af 3f 5e 82 34 15 54 49 a7 d3 5e 69 29 c4 72 57 25 6a ee 02 f8 2c dd 59 2f 03 ad Exponent 65537 0x10001 A...

Page 716: ...1 46 16 2006 GMT Signature Algorithm md5WithRSAEncryption 45 6b da 5f 10 09 77 7c 16 1e a4 c2 aa b6 3c 04 d1 ca 4c bc 9c 74 07 a7 a4 8a 09 cc ad e0 8b 9c 34 9d 05 c0 63 3b d7 01 9c e0 29 44 38 e4 f8 e...

Page 717: ...ig show crypto ike identity crypto ike identity someOtherIdentity peer id fqdn www simpsons com my id DN CN CM Burns O ALU C IN my cert cert_Burns crypto ike identity exampleIdentity peer id user fqdn...

Page 718: ...et1612 peer 10 10 1 2 ALU config show crypto ike key 3 3 3 3 crypto ike key linux123 peer 3 3 3 3 SHOW CRYPTO IKE POLICY show crypto ike policy name DESCRIPTION This command displays all the IKE polic...

Page 719: ...28600 lifetime seconds 2500 pfs group5 The following is an example of the crypto policy with default values ALU config show crypto ike policy crypto ike policy sample proposal sha1 aes128 ipsec securi...

Page 720: ...ntication algorithms used in negotiating SAs PARAMETER None EXAMPLE ALU show crypto ipsec sa GigabitEthernet3 1 Crypto Map ALU Match m1 Peer 60 60 60 2 INBOUND ESP Algo crypt DES CBC len 64 auth SHA1...

Page 721: ...ll the Transform sets configured if the transform set name is not specified If the Transform set name is specified it displays the details of the specified transform set PARAMETER EXAMPLE ALU show cry...

Page 722: ...tails of only that crypto map PARAMETER EXAMPLE In case no map name is specified all the crypto maps will be displayed ALU config show crypto map crypto map ALU2 ipsec ike ike peer 202 192 192 1 match...

Page 723: ...er 0 0x0 Signature Algorithm md5WithRSAEncryption Issuer C US ST Bedrock CN Fred Flintstone emailAddress fred flintstones com Validity Not Before Jun 22 06 56 13 2006 GMT Not After Jul 22 06 56 13 200...

Page 724: ...ig show crypto peer certificate cert_fred pem BEGIN CERTIFICATE MIIC7DCCAlWgAwIBAgIBADANBgkqhkiG9w0BAQQFADBeMQswCQYDVQQGEwJVUzEQ MA4GA1UECBMHQmVkcm9jazEYMBYGA1UEAxMPRnJlZCBGbGludHN0b25lMSMwIQYJ KoZIhv...

Page 725: ...show crypto rsa key exampleKey LENGTH 512 BEGIN RSA PRIVATE KEY MIIBOwIBAAJBALrzr88JSfTvE9 n4 4oMrXvBuL4yTFtRESB0j9JgslrWtFz0Huv P16CNBVUSafTXmkpxHJXJWruAvgs3VkvA60CAwEAAQJATCC1Q6p1qj68qgOU5kMK O1mlR...

Page 726: ...x2 Serial Number 8 0x8 Signature Algorithm md5WithRSAEncryption Issuer CN CA_0x01 O ALU Validity Not Before Jan 27 09 22 03 2006 GMT Not After Jan 27 09 22 03 2007 GMT Subject C US O ALU CN Bart Simps...

Page 727: ...QC686 PCUn07xPfp PuKDK1 7wbi MkxbUREgdI SYLJa1rRc9B7rz9egjQVVEmn015pKcRyVyVq7gL4LN1ZLwOt AgMBAAGjgaYwgaMwCQYDVR0TBAIwADAsBglghkgBhvhCAQ0EHxYdT3BlblNTTCBH ZW5lcmF0ZWQgQ2VydGlmaWNhdGUwHQYDVR0OBBYEFIh1LU...

Page 728: ...m1 1 ip prefix 1 0 0 0 8 prefix 3 0 0 0 8 ipsec Policy configuration crypto ike key linux peer 2 2 2 1 Key in Use by 1 cryptomap s crypto ike policy ike proposal md5 3des pfs group2 ipsec security as...

Page 729: ...CSR if generated on the OA 700 PARAMETER EXAMPLE ALU ca ALUCA subject name CN Bart Simpson O ALU C US TRANSFORM SET transform set name DESCRIPTION This command attaches a transform set to a crypto ma...

Page 730: ...commands relevant to IPsec tunnel interface configuration CRYPTO IPSEC PROFILE crypto ipsec profile name force DESCRIPTION This command is entered in the Configuration mode This command is used to con...

Page 731: ...only be attached to an IPsec profile if the Authentication type is rsa sig EXAMPLE ALU ipsec profile PF1 ike identity ID01 IKE POLICY ike policy name DESCRIPTION This command is entered in the IPsec P...

Page 732: ...ALUE None EXAMPLE ALU config interface Tunnel 1 ALU config if Tunnel1 IP ADDRESS ip address ip address subnet mask ip address prefix length DESCRIPTION This command is used to assign an IP address and...

Page 733: ...7 seconds 540 86400 DESCRIPTION This command is entered in the IPsec Profile Configuration mode This command configures lifetime for an IPsec profile Use Kilobytes keyword to configure lifetime in kil...

Page 734: ...POLICY no ike policy The no command detaches the specified IKE policy attached to the profile An IKE policy must be first detached from the profile to delete it globally NO IPSEC PROFILE no ipsec prof...

Page 735: ...g up the tunnel interface NO TRANSFORM SET no transform set The no command detaches the specified transform set attached to the profile and applies the default transform set A transform set must be fi...

Page 736: ...c profile group2 PFS is used EXAMPLE ALU ipsec profile PF1 pfs group2 SHOW CRYPTO IPSEC PROFILE show crypto ipsec profile profile name DESCRIPTION This command displays the IPsec profile details PARAM...

Page 737: ...AMETERS None EXAMPLE ALU config if Tunnel1 shutdown TRANSFORM SET transform set name DESCRIPTION This command is entered in the IPsec Profile Configuration mode This command is used to attach an alrea...

Page 738: ...ARAMETERS DEFAULT VALUE None EXAMPLE ALU config if Tunnel1 tunnel destination 2 2 2 3 TUNNEL SOURCE tunnel source ip address interface name DESCRIPTION This command sets the source IP address of the t...

Page 739: ...IP Security Virtual Private Network Left running head Chapter name automatic 706 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 740: ...hapter documents the Command Line Interface CLI commands for IDS Intrusion Detection System on an interface This chapter includes table of parameters default values and configuration examples for conf...

Page 741: ...0 Pkt Detected 0 CLEAR FIREWALL INTRUSION SNORT STATISTICS PREPROCESSOR clear firewall intrusion snort statistics preprocessor back orifice http inspect rpc stream4 DESCRIPTION Use this command to cl...

Page 742: ...SCRIPTION Use this command to clear group level Snort statistics PARAMETER EXAMPLE ALU clear firewall intrusion snort statistics rule all num class type class type1 Parameter Description 1 4294967295...

Page 743: ...nat attack alg intrusion selector saddr ip address daddr ip address protocol number sport number dport number output permanent all detail level DESCRIPTION This command turns on the debugging function...

Page 744: ...to attach a firewall policy to which an intrusion sensor is attached to an interface in in or out direction PARAMETERS Note Firewall policy will take effect once it is attached to an interface EXAMPL...

Page 745: ...ewall ALU config firewall intrusion sensor sensor1 snort threshold 10 1000 ALU config firewall intrusion sensor sensor1 INTRUSION SNORT intrusion snort DESCRIPTION Enter this command in the Firewall c...

Page 746: ...ARAMETER EXAMPLE ALU config firewall policy policy1 ALU config firewall policy1 1 match m1 intrusion sensor1 detection NO DEBUG TRACE FIREWALL INTRUSION SELECTOR no debug firewall session filter nat a...

Page 747: ...usion sensor if it is attached to a firewall policy Detach the sensor from the firewall policy before deleting it NO UPDATE no update passive rebuild Use this command to remove the scheduled Snort rul...

Page 748: ...usion snort rollback 2 3 1 RULE DETECTION rule detection category name classtype name priority high low medium DESCRIPTION This command is used in the Intrusion Snort Configuration mode This command e...

Page 749: ...sstype name priority high low medium sid 1 4294967295 DESCRIPTION This command is used in Intrusion Snort Configuration mode Use this command to enable Snort rules by Snort Rule ID SID class type prio...

Page 750: ...e the rule modify command Original rule alert tcp HOME_NET any EXTERNAL_NET any msg ATTACK RESPONSES directory listing flow from_server established content Volume Serial Number classtype bad unknown s...

Page 751: ...PARAMETER EXAMPLE ALU config firewall intrusion snort rule prevention category attack responses SHOW FIREWALL INTRUSION SENSOR show firewall intrusion sensor name DESCRIPTION Use this command to view...

Page 752: ...3 0 Current initial SHOW FIREWALL INTRUSION SNORT FILE LIST show firewall intrusion snort file filename list DESCRIPTION Use this command to display the contents of a specific snort rule file or list...

Page 753: ...ert ip EXTERNAL_NET any HOME_NET any msg DOS Jolt attack dsize 408 fragbits M reference cve 1999 0345 classtype attempted dos sid 268 rev 4 alert udp EXTERNAL_NET any HOME_NET any msg DOS Teardrop att...

Page 754: ...NORT STATISTICS show firewall intrusion snort statistics interface name DESCRIPTION Use this command to display Snort statistics on a specified interface PARAMETER EXAMPLE ALU show firewall intrusion...

Page 755: ...pect rpc stream4 DESCRIPTION Use this command to display statistics for a specific snort pre processor PARAMETER EXAMPLE ALU show firewall intrusion snort statistics preprocessor http inspect Paramete...

Page 756: ...y name classtype name priority high low medium DESCRIPTION This command is used to display Snort rule statistics PARAMETER EXAMPLE ALU show firewall intrusion snort statistics rule all Parameter Descr...

Page 757: ...the snort signature database update PARAMETER EXAMPLE ALU show firewall intrusion snort update report SHOW FIREWALL POLICY show firewall policy name DESCRIPTION This command is used to view firewall...

Page 758: ...n scheduled date and time PARAMETER Parameter Description instant Downloads the latest signature database and updates instantly daily Update the snort rule database every day weekly Sunday Monday Upda...

Page 759: ...ta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config firewall intrusion snort update instant https https uid pwd ids alu com sign...

Page 760: ...the Command Line Interface CLI commands for Generic Routing Encapsulation These commands are used to configure GRE on an interface This guide includes table of parameters default values and configurat...

Page 761: ...el 7 ALU config if Tunnel7 Note By default tunnel is configured in GRE mode IP ADDRESS ip address ip address subnet mask ip address prefix length DESCRIPTION This command is used to assigns an IP addr...

Page 762: ...n the GRE mode EXAMPLE ALU config if Tunnel7 mode gre NO SHUTDOWN no shutdown This command is used to administratively bring up the tunnel interface NO TUNNEL DESTINATION no tunnel destination ip addr...

Page 763: ...dministratively bring down the tunnel interface PARAMETERS None EXAMPLE ALU config if Tunnel7 shutdown TUNNEL DESTINATION tunnel destination ip address DESCRIPTION This command sets the destination IP...

Page 764: ...e default DF BIT value is clear EXAMPLE ALU config if Tunnel7 tunnel df bit clear TUNNEL SOURCE tunnel source ip address interface name DESCRIPTION This command sets the source IP address of the tunne...

Page 765: ...de This command allows to resolve the tunnel source and tunnel destination from the specified VRF instead of the VRF associated with the tunnel interface PARAMETERS DEFAULT VALUE None PLATFORMS SUPPOR...

Page 766: ...3 TRANSPARENT FIREWALL This chapter lists the commands to configure Transparent Firewall TF It includes table of parameters default values and configuration examples for TF configuration as quick star...

Page 767: ...his command is used to configure the TF feature on an interface incoming interface You can optionally apply a TF policy that defines the treatment of non IP and non ARP packets on the interface Note I...

Page 768: ...ipx nonip DESCRIPTION Enter this command in the TF Configuration mode This command is used to define how the non IP packets should be treated in a TF configuration Using this command other protocols...

Page 769: ...olicy attached to an interface if specified NO TRANSPARENT FORWARD FORCE no transparent forward name force This command is used to delete a TF policy If the policy is attached to any of the interfaces...

Page 770: ...d in the system If a TF policy is specified then the details of the specific TF policy is displayed This command also displays the interfaces on which these policies are applied PARAMETERS EXAMPLE ALU...

Page 771: ...tem If a policy name is specified then the statistics for the specified TF policy are displayed This displays the number of IP ARP IPX Appletalk other protocol packets excluding the above forwarded by...

Page 772: ...This chapter documents the Command Line Interface CLI commands for Call Admission Controller CAC This chapter includes table of parameters default values and configuration examples for CAC as a quick...

Page 773: ...n control DESCRIPTION This command is entered in the Configuration mode This command enters the Admission Control Configuration Mode This mode allows you to configure CAC specific configuration PARAME...

Page 774: ...c object name DESCRIPTION This command is entered in the Interface Configuration mode This command is used to enable CAC on an interface PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 74...

Page 775: ...object name DESCRIPTION This command is entered in the Admission Control Configuration Mode This command is used to create a CAC object PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 74...

Page 776: ...SION CONTROL CALL PRIORITY call admission control call priority DESCRIPTION This command is entered in the Admission Control Configuration Mode This command enters the Priority Configuration Mode PARA...

Page 777: ...on Control Priority Configuration mode This command is used to configure priority calls PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ac cac priority call ext...

Page 778: ...e name call id extension DESCRIPTION This command releases CAC resources bandwidth active count for the specified call or all calls on an interface This also releases CAC resources on the peer interfa...

Page 779: ...tics cac interface name DESCRIPTION This command clears the rejected call count on all the interfaces PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config clear admi...

Page 780: ...nd deletes the specified CAC object NO CALL ADMISSION CONTROL CALL PRIORITY no call admission control call priority This command is entered in the Admission Control Configuration Mode This command rem...

Page 781: ...t When bandwidth is configured bandwidth information is obtained from the corresponding egress QoS policy Note Currently CAC is supported only for SIP calls PARAMETERS DEFAULT VALUE None PLATFORMS SUP...

Page 782: ...nfiguration protocol information along with the bandwidth configuration for that protocol PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show admission control cac call admission...

Page 783: ...Y show admission control cac call priority DESCRIPTION This command displays the priority call configuration details PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show admi...

Page 784: ...ays all the active call information priority source IP dest IP call ID on all interfaces PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show admission control statistics active c...

Page 785: ...played PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show admission control statistics cac Interface GigabitEthernet7 0 Protocol SIP Call Threshold Statistics Call Threshold 10...

Page 786: ...he Command Line Interface CLI commands for Telephony Service feature on OA 700 This chapter includes table of parameters default values and configuration examples for Telephony Service as quick start...

Page 787: ...he Telephony Service Mode This command is used to configure the IP address of the outbound proxy PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU telephony service outb...

Page 788: ...LSERVER ADDRESS no ror callserver address ip address priority 1 5 vrf vrf name This command removes the IP address of the call server and its priority NO TELEPHONY DEFAULT DIALPLAN no telephony defaul...

Page 789: ...aintained by ROR and its priority PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU telephony service ror callserver address 100 0 0 10 priority 1 RELEASE HISTORY Releas...

Page 790: ...command is used to configure the interval in seconds at which the display messages is to be transmitted to the phones from the ROR module PARAMETERS DEFAULT VALUE The default ror display message inter...

Page 791: ...the response for the keep alive Retry Count X Retry After determines the time before the call servers are declared down PARAMETERS DEFAULT VALUE The default message type is options The default retry c...

Page 792: ...RAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show ror keep alive message details keep_alive_message type is REGISTER keep_alive_message retry count 3 keep_alive_message retr...

Page 793: ...omni telephony enable ror callserver address 100 0 0 10 priority 1 ror callserver address 100 0 0 11 priority 2 ror callserver address 100 0 0 12 priority 3 ror keep alive message register retry coun...

Page 794: ...mand Reference Guide SHOW TELEPHONY IDENTITY DETAILS show telephony identity details DESCRIPTION This command displays the IP address and name of the telephony client PARAMETERS None PLATFORMS SUPPORT...

Page 795: ...running call details DESCRIPTION This command displays call information caller and callee user name duration of the call and total number of calls PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 7...

Page 796: ...egistered with any call server is displayed This also displays total number of registered users PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show telephony registered user...

Page 797: ...lcatel Lucent Agent PolycomSoundPointIP SPIP_300 UA 2 1 3 0028 Expires 2008 11 27 12 54 46 User sij15 100 0 0 10 Contact sip sij15 3 3 3 236 Agent PolycomSoundPointIP SPIP_500 UA 2 1 3 0028 Expires 20...

Page 798: ...ress priority and status true false configured on the ROR PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show telephony status Call Server 100 0 0 10 Priority 1 Status True...

Page 799: ...configured OA 700 is in stand alone mode ALU telephony service show telephony status stand alone Mode enable Status Active RELEASE HISTORY Release 2 3 command was introduced TELEPHONY DEBUG LEVEL tele...

Page 800: ...Access 740 780 EXAMPLE 1 In the following example only 3 extension digits call will be successful All other calls will be dropped ALU telephony service telephony default dialplan dest num pattern 0 9...

Page 801: ...number of digits will be successful but calls with characters will be dropped ALU telephony service telephony default dialplan dest num pattern d 6 In the following example calls to phones having 3 ch...

Page 802: ...I Command Reference Guide TELEPHONY DISABLE telephony disable DESCRIPTION Enter this command in the Telephony Service Mode This command disables telephony functionality on OA 700 PARAMETERS None DEFAU...

Page 803: ...ny functionality on OA 700 Note When you execute this command if a valid license for Telephony Service is not installed the following message License not Available for telephony feature is displayed F...

Page 804: ...address and name of a telephony client PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU telephony service telephony identity address 3 3 3 50 name 2000 RELEASE HISTORY...

Page 805: ...ent TELEPHONY SERVICE telephony service DESCRIPTION Enter this command in the Configuration mode This command enters the Telephony Service Mode PARAMETERS None DEFAULT VALUE None PLATFORMS SUPPORTED O...

Page 806: ...configure dial plan rules for outgoing numbers You can configure three different dial plan rules PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 Parameter Description destination...

Page 807: ...call will be successfully forwarded to 3301 If 3301 is not registered with local call server then call will be forwarded to the configured IP address 3 3 3 124 The call will get dropped if there is no...

Page 808: ...Lucent 775 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such...

Page 809: ...Left running head Chapter name automatic 776 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 810: ...hapter documents the Command Line Interface CLI commands for Quality of Service QoS This guide includes table of parameters default values and configuration examples for QoS configurations as quick st...

Page 811: ...edited forwarding PARAMETERS None DEFAULT VALUE None EXAMPLE ALU config if Serial0 1 3 auto qos diff serv AUTO QOS TEMPLATE auto qos template diff serv voip policy map name DESCRIPTION This command is...

Page 812: ...ERS None DEFAULT VALUE None EXAMPLE ALU config if Serial0 1 3 auto qos voip BANDWIDTH bandwidth 101 700000000 percent 1 100 DESCRIPTION This command is entered in the class mode This command is used t...

Page 813: ...ass sub configuration mode inside the Policy map mode Note If no rule is associated with a class map and if you try to configure a class on that class map a warning is displayed Example ALU config qos...

Page 814: ...LE ALU config class map C1 match all ALU config qos C1 To Configure a Rule for the Class map 1 65535 match all any match list name This command is used to configure rules associate match lists and set...

Page 815: ...d ingress stats for interface GigabitEthernet 7 0 Success Cleared egress stats for interface GigabitEthernet 7 0 DESCRIPTION description line DESCRIPTION This command is used in the Policy map mode Th...

Page 816: ...PLE ALU config qos P1 C1 class class default ALU config qos P1 class default fair queue FRAME RELAY QOS BANDWIDTH PERCENT frame relay qos bandwidth percent 0 100 DESCRIPTION This command is used to co...

Page 817: ...SERV no auto qos diff serv This command disables Auto QoS Diff Serv on an interface NO AUTO QOS TEMPLATE no auto qos template diff serv voip policy map name This command removes the specified Auto QoS...

Page 818: ...bandwidth on the interface NO NETWORK CONTROL no network control This command removes the network control attribute of the traffic class NO POLICE no police This command removes the configured police...

Page 819: ...de fr fecn ip dscp ip precedence tos vlan 1p This command removes the packet marking configuration NO SERVICE POLICY no service policy in out policy map name This command detaches the policy map from...

Page 820: ...s command sets the QoS traffic policing parameters on the traffic class This command is used in the Class mode This command is used to apply policing on the traffic class The committed rate keyword is...

Page 821: ...ommand is used to configure a policy map PARAMETERS DEFAULT VALUE None EXAMPLE ALU config policy map P1 ALU config qos P1 PRIORITY priority DESCRIPTION This command is used in the Class mode Configure...

Page 822: ...RIPTION This command is entered in the class mode This command is used to set the traffic class as a priority class and configure bandwidth for the same Note You cannot mix the absolute bandwidth comm...

Page 823: ...faces PARAMETERS None DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config qos credits debug RELEASE HISTORY Release 2 3 command was added QOS PRECLASSIFY qos preclassify DESCR...

Page 824: ...min thresh 50 750 max thresh 150 950 Use this command to change the default ip dscp based WRED values This command populates the WRED values but does not enable the features To enable this use the ra...

Page 825: ...RANDOM DETECT IP PRECEDENCE Parameter Description ip dscp 0 63 min thresh 50 150 max thresh 150 750 This command configures the WRED parameters minimum threshold and maximum threshold for a particula...

Page 826: ...ecedence Min Threshold Max Threshold Drop Probability 0 50 150 10 1 50 150 10 2 50 150 10 3 50 150 10 4 50 150 10 5 50 150 10 6 50 150 10 7 50 150 10 8 50 150 10 9 50 150 10 10 50 150 10 11 50 150 10...

Page 827: ...34 50 150 10 35 50 150 10 36 40 120 10 37 50 150 10 38 32 96 10 39 50 150 10 40 50 150 10 41 50 150 10 42 50 150 10 43 50 150 10 44 50 150 10 45 50 150 10 46 50 150 10 47 50 150 10 48 50 150 10 49 50...

Page 828: ...he Interface Configuration mode This command is used to attach a policy map to an interface either in ingress or egress direction Note An empty policy can be attached to the interface as a policy map...

Page 829: ...quired here PARAMETERS DEFAULT VALUE None EXAMPLE Create policies p1 and p2 and configure traffic class c1 and c2 in each of the policy ALU conifg policy map p1 ALU config qos p1 class c1 ALU config q...

Page 830: ...s used to set the IP Precedence IP DSCP ToS flags on the matched packet FECN BECN DE bits marking on the FR interface and 802 1p marking on the VLAN interface PARAMETERS DSCP MNEMONICS Parameter Descr...

Page 831: ...IP PRECEDENCE MNEMONICS TOS MNEMONICS af13 14 af21 18 af22 20 af23 22 af31 26 af32 28 af33 30 af41 34 af42 36 af43 38 IP Precedence Mnemonics Values routine 0 priority 1 immediate 2 flash 3 flash over...

Page 832: ...fr fecn vlan 1p was added SHAPE shape committed rate 8000 10000000 committed burst 40 150000 peak rate 8000 10000000 excess burst 40 150000 DESCRIPTION This command is used in the Class mode This comm...

Page 833: ...match ip any any dscp af12 match ip any any dscp af13 bandwidth percent 20 queue limit 350 random detect ip dscp af11 min threshold 200 max threshold 300 random detect ip dscp af12 min threshold 150 m...

Page 834: ...0 random detect ip dscp af42 min threshold 150 max threshold 300 random detect ip dscp af43 min threshold 100 max threshold 300 random detect ip dscp class autoqos class ef match ip any any dscp ef pr...

Page 835: ...ch any 1 match any m1 m2 2 match any m2 m4 m5 SHOW POLICY MAP show policy map name DESCRIPTION This command shows the details of all or specified policy map configured in the system PARAMETERS DEFAULT...

Page 836: ...s ip dscp ip dscp Min Thresh Max Thresh Drop Probability be 50 150 10 af11 100 150 10 af12 75 150 10 af13 50 150 10 af21 100 150 10 af22 75 150 10 af23 50 150 10 af31 100 150 10 af32 75 150 10 af33 50...

Page 837: ...es total 0 packets transmitted 0 bytes transmitted 0 packets dropped 0 bytes dropped RED Class Random drops Tail drops Min Th Max Th Mark Prob be 0 0 50 150 1 10 af11 0 0 100 150 1 10 af12 0 0 75 150...

Page 838: ...2 match any 1 match any m1 class map 3 match any class map c5 match any 3 match any m1 policy map p1 description p1 is the name of the policy map class c1 priority shape committed rate 90000 committed...

Page 839: ...th config DESCRIPTION This command displays the bandwidth configuration details on the FR interfaces PARAMETERS None DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show q...

Page 840: ...d The order of display of running config is as follows Match lists Class maps Policy maps Interfaces where the QoS policy is attached PARAMETERS None DEFAULT VALUE None EXAMPLE ALU show qos running co...

Page 841: ...ection of the policy PARAMETERS DEFAULT VALUE None EXAMPLE ALU config show queuing interface GigabitEthernet 7 0 interface GigabitEthernet7 0 service policy in p1 description p1 is the name of the pol...

Page 842: ...uing statistics interface GigabitEthernet7 0 service policy in p1 class class default Packets dropped 0 Packets dequeued 0 Bytes dequeued 0 class c1 Packets dropped 0 Packets dequeued 0 Bytes dequeued...

Page 843: ...tunnel Tunnel 1 TUNNEL BANDWIDTH tunnel Tunnel 0 14487 bandwidth 101 700000000 percent 1 100 DESCRIPTION This command is used in the Policy map mode This command is used to configure bandwidth for the...

Page 844: ...Reference Guide QUEUE LIMIT queue limit 10 3500 DESCRIPTION This command is used in the Class mode This command sets a queue limit for the scheduler for the traffic class PARAMETERS DEFAULT VALUE By...

Page 845: ...Quality of Service Left running head Chapter name automatic 812 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 846: ...l Lucent 813 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such...

Page 847: ...Left running head Chapter name automatic 814 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 848: ...ION PROTOCOL SERVER This chapter documents the Command Line Interface CLI commands for DHCP Server This guide includes table of parameters default values and configuration examples for DHCP Server con...

Page 849: ...LU config dhcp pool p2 exclude ip 1 2 3 65 HOST host ip address mac address DESCRIPTION Enter this command in the DHCP Pool Configuration mode This command is used to statically bind an IP address wit...

Page 850: ...nfiguration mode This command is used to configure the boot file for a host PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option bootfile name boot_im...

Page 851: ...mand is used to configure the DNS server IP address to be used by the clients PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option dns server 1 2 2 2...

Page 852: ...on mode This command is used to configure the domain name to be used by the clients PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option domain name a...

Page 853: ...for which the clients can use the IP address assigned to them PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option lease time 1000250 RELEASE HISTORY...

Page 854: ...is command is used to configure the MIT LCS UDP log server IP address to be used by the clients PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option l...

Page 855: ...gure the IP address of the Network Time Protocol server to be used by the clients PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option ntp server 1 1...

Page 856: ...This command is used to configure the router in the subnet for which the DHCP is configured PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option route...

Page 857: ...mode This command is used to configure the client s subnet mask PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option subnet mask 255 255 255 0 RELEASE...

Page 858: ...e This command is used to configure the IP address domain name of the TFTP server PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option tftp server 3 2...

Page 859: ...de This command is used to determine the time variation from GMT in seconds PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp option time offset 100 RELEA...

Page 860: ...the boot file for a host PARAMETERS DEFAULT VALUE None EXAMPLE ALU config dhcp pool p1 option bootfile name boot_image OPTION DNS SERVER option dns server ip address DESCRIPTION Enter this command in...

Page 861: ...ERS DEFAULT VALUE None EXAMPLE ALU config dhcp pool p1 option domain name alu OPTION LEASE TIME option lease time 1 4294967295 DESCRIPTION Enter this command in the DHCP Pool Configuration mode This c...

Page 862: ...be used by the clients PARAMETERS DEFAULT VALUE None EXAMPLE ALU config dhcp pool p1 option log server 1 1 1 1 OPTION NTP SERVER option ntp server ip address DESCRIPTION Enter this command in the DHCP...

Page 863: ...the subnet for which the DHCP is configured PARAMETERS DEFAULT VALUE None EXAMPLE ALU config dhcp pool p1 option routers 1 1 1 1 OPTION SUBNET MASK option subnet mask subnet mask DESCRIPTION Enter thi...

Page 864: ...dress domain name of the TFTP server PARAMETERS DEFAULT VALUE None EXAMPLE ALU config dhcp pool p1 option tftp server 3 2 2 1 OPTION TIME OFFSET option time offset 1 4294967295 DESCRIPTION Enter this...

Page 865: ...ool This enters the DHCP pool sub configuration mode PARAMETERS DEFAULT VALUE None PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config ip dhcp pool p1 vrf alu vrf ALU config dhcp pool p1 RELEASE...

Page 866: ...ess Deletes the manual binding between the host and IP address specified for it NO IP DHCP OPTION BOOTFILE NAME no ip dhcp option bootfile name file name vrf vrf name Deletes the configured the boot f...

Page 867: ...er in the subnet for which the DHCP has been configured NO IP DHCP OPTION SUBNET MASK no ip dhcp option subnet mask subnet mask vrf vrf name Deletes the configured subnet mask for the pool NO IP DHCP...

Page 868: ...of the Network Time Protocol server NO OPTION ROUTERS no option routers ip address Deletes the configured router in the subnet for which the DHCP has been configured NO OPTION SUBNET MASK no option su...

Page 869: ...addresses within the network of the pool which are used to service DHCP requests from the clients Specification of range is mandatory for a network pool The range cannot include the network address a...

Page 870: ...le the DHCP service on the OA 700 PARAMETERS DEFAULT VALUE By default DHCP service is disabled EXAMPLE ALU config service dhcp enable SERVICE DHCP DISABLE service dhcp disable DESCRIPTION Enter this c...

Page 871: ...00 0f fe 3a 63 da Wed Jan 17 23 38 11 2007 DYNAMIC p1 203 196 196 74 00 0f ef 3b 63 de INFINITE MANUAL p2 ALU config show ip dhcp bindings dynamic IP Address Hardware Address Lease Expiration Type Poo...

Page 872: ...ll the DHCP global options configured PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config show ip dhcp options Routers 1 1 1 1 Domain Name Server 1 2 2 2 Log Server 1 1 1 1 NTP Server...

Page 873: ...ss 11 22 aa bb 55 ff Pool Name p1 Pool Network Number 1 2 3 0 Pool Network Mask 255 255 255 0 Number of leases 50 Pool Range 1 2 3 50 1 2 3 100 Boot File Name boot_image ALU config show ip dhcp pools...

Page 874: ...ess 700 CLI Command Reference Guide SHOW IP DHCP SERVER STATISTICS show ip dhcp server statistics DESCRIPTION This command shows the DHCP server statistics PARAMETERS None EXAMPLE ALU config show ip d...

Page 875: ...DHCP Dynamic Host Configuration Protocol Server Left running head Chapter name automatic 842 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 876: ...ROTOCOL SERVER This chapter documents the Command Line Interface CLI commands for TFTP Server This guide includes table of parameters default values and configuration examples for TFTP Server configur...

Page 877: ...as This command is used to remove the file from the tftp file list If a file is removed from the tftp file list then all its aliases are also removed SHOW TFTP FILES show tftp files DESCRIPTION This c...

Page 878: ...able the TFTP service on the OA 700 PARAMETERS DEFAULT VALUE By default the TFTP service is disabled EXAMPLE ALU config tftp server disable TFTP SERVER ENABLE tftp server enable DESCRIPTION Enter this...

Page 879: ...hrough the TFTP server Using the alias keyword you can create an alias for the file You can then download the file through this alias instead of its actual path This could be useful if the file s name...

Page 880: ...NFIGURATION PROTOCOL RELAY This chapter documents the Command Line Interface CLI commands for DHCP Relay This guide includes table of parameters default values and configuration examples for DHCP Rela...

Page 881: ...s can be configured on an interface PARAMETERS DEFAULT VALUE None EXAMPLE ALU config if GigabitEthernet3 0 ip dhcp relay 192 168 1 1 IP DHCP RELAY INTERFACE ip dhcp relay interface interface name DESC...

Page 882: ...RELAY INTERFACE no ip dhcp relay interface interface name This command is used to disable the relay of DHCP requests to the specified interface SHOW IP DHCP RELAY show ip dhcp relay interface name DE...

Page 883: ...DHCP Dynamic Host Configuration Protocol Relay Left running head Chapter name automatic 850 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 884: ...ICE CLIENT This chapter documents the Command Line Interface CLI commands for DNS Client This guide includes table of parameters default values and configuration examples for DNS Client as quick start...

Page 885: ...in list name DESCRIPTION Enter this command in the Configuration mode This command is used to add domain names to the domain list These are the domain names which are to be appended to the host names...

Page 886: ...used to enable the system to query the DNS server s for name address translation PARAMETERS None DEFAULT VALUE By default domain lookup is enabled EXAMPLE ALU config ip domain lookup IP DOMAIN NAME ip...

Page 887: ...used to configure the maximum time in seconds for which the dynamic host entries will be stored in DNS client cache Host entries will be stored for a time which is the minimum of the configured host...

Page 888: ...ary Secondary and tertiary name servers are tried only when the query sent to the primary server is not successful Prefer is the same as primary PARAMETERS DEFAULT VALUE None EXAMPLE ALU config ip nam...

Page 889: ...igured a host max age and resets to its default NO IP NAME SERVER no ip name server ip address prefer primary secondary tertiary This command is used to remove a name server If the ordinal is specifie...

Page 890: ...l Lucent 857 Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such...

Page 891: ...Left running head Chapter name automatic 858 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 892: ...his chapter documents the Command Line Interface CLI commands for License Manager This chapter includes tables of parameters default values and configuration examples for the license manager component...

Page 893: ...PTION This command is used to view the list of license files present on the system This command displays the same information as the list licenses command PARAMETERS None PLATFORMS SUPPORTED OmniAcces...

Page 894: ...pkey front panel USB It can also be sent to a remote location using FTP or TFTP PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config license backup ipsec740 lic user Backup license nam...

Page 895: ...displayed License already exists Overwrite n y PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE This is an example of installing a license file named ipsec740 lic from a remote location throu...

Page 896: ...7000214 Serial num 3 Details IP Security Encryption Attributes Name Value VALIDITY UNLIMITED 2 License for feature IDS UPDATE installed successfully Issued on Thu Aug 21 11 53 20 2008 Chassis ID WL053...

Page 897: ...nce confirmed this would delete the license file and withdraw the licenses for all related features PARAMETERS PLATFORMS SUPPORTED OmniAccess 740 780 EXAMPLE ALU config license remove ipsec740 lic WAR...

Page 898: ...Command Reference Guide LIST LICENSES list licenses DESCRIPTION This command is used to view the list of license files present on the system PARAMETERS None PLATFORMS SUPPORTED OmniAccess 740 780 EXAM...

Page 899: ...sent on the OA 700 The features shown require a license for their functioning The command also specifies whether a license has been installed for these features and if installed the command gives info...

Page 900: ...ense ipsec740 lic Issued on Thu Aug 21 11 53 20 2008 Chassis ID WL0537000214 Serial num 3 Details IP Security Encryption Attributes Name Value VALIDITY UNLIMITED 2 License for feature IDS UPDATE is va...

Page 901: ...License Manager Left running head Chapter name automatic 868 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent RELEASE HISTORY Release 2 3 command was introduced...

Page 902: ...Beta Beta For final production import color definitions from daldoc01 docteam templates framemaker book template color defs production colors fm Do not import other template elements such as page lay...

Page 903: ...Left running head Chapter name automatic 870 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 904: ...lear commands will be available However the success of these commands execution will vary widely depending upon the failed vs running software components The configuration commands will allow you to u...

Page 905: ...sed to enable or disable Lifeline functionality PARAMETERS DEFAULT By default this is enabled EXAMPLE ALU config lifeline enable ALU config lifeline disable LIFELINE EXIT lifeline exit DESCRIPTION Thi...

Page 906: ...nd adds a special Lifeline static route which allows you to configure a route to a management station well known to you PARAMETERS DEFAULT None EXAMPLE ALU config lifeline ip route 20 20 20 20 24 192...

Page 907: ...Serial4 0 2 1 SHOW LIFELINE IP ROUTE SLOT show lifeline ip route slot 0 7 DESCRIPTION This command is entered in the Lifeline mode This command displays all the routes that are cached by the Lifeline...

Page 908: ...the first page right running head Heading1 or Heading1NewPage text automatic 875 Alcatel Lucent Beta Beta OmniAccess 700 CLI Command Reference Guide Part 11 Application Hosting Application Services E...

Page 909: ...Left running head Chapter name automatic 876 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Page 910: ...chapter documents the Command Line Interface CLI commands for Web Cache This chapter includes tables of parameters default values and configuration examples for configuring the Web Cache as quick star...

Page 911: ...address DESCRIPTION This command is entered in the ASE Configuration mode This command configures the IP address for the ASE applications PARAMETERS EXAMPLE ALU config ase ase address 1 2 2 3 APPLICA...

Page 912: ...INSTALL application web cache install DESCRIPTION This command installs Web Cache Server PARAMETERS None DEFAULT VALUE None EXAMPLE ALU config ase application web cache install APPLICATION WEB CACHE S...

Page 913: ...ation web cache stop DESCRIPTION This command stops the Web Cache service PARAMETERS None DEFAULT VALUE None EXAMPLE ALU config ase application web cache stop APPLICATION WEB CACHE RESTART application...

Page 914: ...ache Server configuration PARAMETERS None DEFAULT VALUE None EXAMPLE ALU config ase application web cache save APPLICATION WEB CACHE UNINSTALL application web cache uninstall DESCRIPTION This command...

Page 915: ...e webcache cache accesscontrol ALU config webcache acl CACHE ADMIN cache admin DESCRIPTION This command enters in to the admin module PARAMETERS None EXAMPLE ALU config ase webcache admin ALU config w...

Page 916: ...module PARAMETERS None EXAMPLE ALU config webcache cache cachesize ALU config webcache size CACHE CACHETUNING cache cachetuning DESCRIPTION This command is used to enter in to the tuning module PARAME...

Page 917: ...e EXAMPLE ALU config webcache cache extfun ALU config webcache extfun CACHE MISCELLANEOUS cache miscellaneous DESCRIPTION This command enters in to the miscellaneous module PARAMETERS None EXAMPLE ALU...

Page 918: ...nce Guide CACHE PEERCACHE cache peercache DESCRIPTION This command enters in to the peercache mode PARAMETERS None EXAMPLE ALU config webcache cache peercache ALU config webcache peer CACHE TIMEOUT ca...

Page 919: ...src PARSE WEBCACHE CONFIGURATION FILE parse webcache configuration file DESCRIPTION This command is used to parse the Web Cache configuration file and outputs the error in configuration if any PARAME...

Page 920: ...Web Cache mode This command is used to reprioritize the access rules PARAMETERS None DEFAULT VALUE None EXAMPLE ALU config webcache reprioritize access_rules SHOW WEBCACHE ACCEL show webcache accel DE...

Page 921: ...http mail google com mail NONE text html 1172764443 700 59351 10 91 2 30 TCP_MISS 503 1487 GET http mail google com mail NONE text html 1172764443 700 101621 10 91 2 30 TCP_MISS 503 1487 POST http ma...

Page 922: ...cache ACL details PARAMETERS None EXAMPLE ALU config ase webcache show webcache acls acl ddd src 3 3 3 3 8 8 8 8 2 2 2 2 5 5 5 5 4 4 4 4 8 8 8 8 acl QUERY urlpath_regex cgi bin acl all src 0 0 0 0 0 0...

Page 923: ...announce_period 10 years announce_host tracker ircache net announce_port 3131 SHOW WEBCACHE DELAY_POOL_PARAMETERS show webcache delay_pool_parameters DESCRIPTION This command displays the web cache de...

Page 924: ...ignore_unknown_nameservers on digest_generation on digest_bits_per_entry not set using default value 5 digest_rebuild_period not set using default value 1 hour digest_rewrite_period not set using def...

Page 925: ...SCRIPTION This command displays the web cache external function configuration details PARAMETERS None EXAMPLE ALU config ase webcache show webcache extfun ftp_user Squid ftp_list_width 32 ftp_passive...

Page 926: ...AULT VALUE None EXAMPLE ALU config ase webcache show webcache misc dns_testnames netscape com internic net nlanr net microsoft com tcp_recv_buffer_size not set using default value 0 bytes memory_pools...

Page 927: ...efault value 0 0 0 0 snmp_outgoing_address not set using default value 255 255 255 255 as_whois_server whois ra net SHOW WEBCACHE NETWORK show webcache network DESCRIPTION This command displays the we...

Page 928: ...nfig ase webcache show webcache peer cache_peer 10 91 10 25 multicast 1025 1030 icp_query_timeout 0 maximum_icp_query_timeout 2000 mcast_icp_query_timeout 2000 dead_peer_timeout 10 seconds hierarchy_s...

Page 929: ...0 KB SHOW WEBCACHE TIMEOUTS show webcache timeouts DESCRIPTION This command displays the web cache timeout details PARAMETERS None EXAMPLE ALU config ase webcache show webcache timeouts forward_timeou...

Page 930: ...PARAMETERS None EXAMPLE ALU config ase webcache show webcache tuning No wais relay host defined wais_relay_port 0 request_header_max_size 20 KB request_body_max_size 20 kb quick_abort_min 16 KB quick_...

Page 931: ...Web Cache Server Left running head Chapter name automatic 898 Beta Beta OmniAccess 700 CLI Command Reference Guide Alcatel Lucent...

Reviews:

No comments

Related manuals for OmniAccess 700 CLI

Brand: Samsung Pages: 1

Brand: Cambium Networks Pages: 196

Brand: Cambium Networks Pages: 478

Brand: Cambium Pages: 301

Brand: Cambium Networks Pages: 287

Brand: Gemtek Systems Pages: 54

Brand: Linksys Pages: 30

Brand: Furuno Pages: 43

Brand: Air Live Pages: 74

Brand: Air Live Pages: 72

Brand: Air Live Pages: 74

Brand: Trust Pages: 19

Brand: ITTIM Technology Pages: 6

Brand: TECOM Pages: 54

WMC252-1W-1T-300

Brand: Interlogix Pages: 93

Brand: Ebyte Pages: 22

Brand: 3Jtech Pages: 3

Brand: Sitecom Pages: 43

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands