H3C 20-20 Command Reference Manual Download Page 1247 | Manualshive

Page: 1247 / 2742

background image

1247

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp] ipv6-family

[Sysname-bgp-af-ipv6] peer 1:2::3:4 connect-interface loopback 0

peer default-route-advertise

Syntax

peer

{

group-name

|

ipv4-address

|

ipv6-address

}

default-route-advertise

[

route-policy

route-policy-name

]

undo peer

{

group-name

|

ipv4-address

|

ipv6-address

}

default-route-advertise

View

IPv6 address family view

Parameters

group-name

: Name of an IPv4 or IPv6 peer group, a string of 1 to 47 characters.

ipv4-address

: IPv4 address of a peer.

ipv6-address

: IPv6 address of a peer.

route-policy-name

: Route-policy name, a string of 1 to 19 characters.

Description

Use the

peer default-route-advertise

command to advertise a default route to

a peer/peer group.

Use the

undo peer default-route-advertise

command to disable advertising a

default route.

By default, no default route is advertised to a peer/peer group.

Using this command does not require the default route available in the routing
table. With this command used, the router sends the default route unconditionally
to the peer/peer group with the next hop being itself.

Examples

# Advertise a default route to peer 1:2::3:4.

<Sysname> system-view

[Sysname] bgp 100

[Sysname-bgp] ipv6-family

[Sysname-bgp-af-ipv6] peer 1:2::3:4 default-route-advertise

peer description (IPv6 address family view)

Syntax

peer

{

ipv6-group-name

|

ipv6-address

}

description

description-text

undo peer

{

ipv6-group-name

|

ipv6-address

}

description

View

IPv6 address family view

Parameters

ipv6-group-name

: Name of a peer group, a string of 1 to 47 characters.

«
...
1245
1246
1247
1248
1249
...
»

Summary of Contents for 20-20

Page 1: ...H3C MSR 20 30 50 Series Routers Command Reference Manual v1 00 MSR 20 Series Routers MSR 30 Series Routers MSR 50 Series Routers www 3Com com Part Number 10016323 Rev AA August 2007 ...

Page 2: ...y as provided in DFAR 252 227 7015 Nov 1995 or FAR 52 227 14 June 1987 whichever is applicable You agree not to remove or deface any portion of any legend provided on any licensed program or documentation contained in or delivered to you in conjunction with this User Guide Unless otherwise indicated 3Com registered trademarks are registered in the United States and may or may not be registered in ...

Page 3: ...fferential delay 115 display interface ima group 115 frame format 116 frame length 117 ima ima group 117 ima clock 118 ima standard 119 ima test 119 interface ima group 120 loopback 120 min active links 121 scramble 121 3 ATM E3 T3 INTERFACE CONFIGURATION COMMANDS cable 123 clock 123 frame format 124 loopback 125 scramble 125 4 ATM OC 3C STM 1 INTERFACE CONFIGURATION COMMANDS clock 127 frame forma...

Page 4: ...sl status 147 display dsl version 148 7 POS INTERFACE CONFIGURATION COMMANDS clock 151 crc 151 display interface pos 152 display ip interface pos 154 display ipv6 interface pos 154 flag 155 frame format 156 link protocol 157 loopback 157 mtu 158 scramble 158 threshold 159 8 GENERAL ETHERNET INTERFACE CONFIGURATION COMMANDS combo enable 161 description 161 display brief interface 162 display interf...

Page 5: ...0 CONFIGURATION COMMANDS FOR ETHERNET INTERFACES IN ROUTE MODE mtu 187 timer hold 187 11 FUNDAMENTAL SERIAL INTERFACE CONFIGURATION COMMANDS async mode 189 baudrate 189 clock serial interface view 190 code nrzi 192 country code 192 crc 193 detect 193 eliminate pulse 194 idle mark 195 invert receive clock 195 invert transmit clock 196 loopback 197 mtu on serial interfaces 197 physical mode 198 phy ...

Page 6: ...T1 PRI interface view 215 clock CT1 PRI interface view 216 code CT1 PRI interface view 217 controller t1 217 crc 218 data coding CT1 PRI interface view 218 display controller t1 219 error diffusion restraint config 222 error diffusion restraint enable 223 error diffusion restraint restart channel 224 fdl 224 frame format CT1 PRI interface view 225 idlecode CT1 PRI interface view 225 itf CT1 PRI in...

Page 7: ... 254 crc 255 display controller e3 255 e1 bert 257 e1 channel set 258 e1 set clock 258 e1 set frame format 259 e1 set loopback 260 e1 shutdown 260 e1 unframed 261 fe3 261 loopback CE3 interface view 263 national bit 263 using CE3 interface view 264 17 FUNDAMENTAL CT3 INTERFACE CONFIGURATION COMMANDS alarm CT3 interface view 265 bert CT3 interface view 266 cable CT3 interface view 267 clock CT3 int...

Page 8: ...display atm class 293 display atm interface 294 display atm map info 295 display atm pvc group 296 display atm pvc info 297 encapsulation 298 interface atm 299 ip precedence 299 map bridge 300 map ip 301 map ppp 302 mtu 303 oam ais rdi 304 oam frequency 305 oamping interface 306 pvc 306 pvc group 308 pvc max number 308 pvp limit 309 service cbr 310 service ubr 311 service vbr nrt 311 service vbr r...

Page 9: ...ace dialer 332 interface dialer 333 ppp callback 334 ppp callback ntstring 334 21 BASIC DLSW CONFIGURATION COMMANDS code nrzi 337 display dlsw circuits 337 display dlsw information 338 display dlsw remote 339 display dlsw reachable cache 340 display llc2 341 dlsw bridge set 342 dlsw enable 342 dlsw ethernet frame filter 343 dlsw local 344 dlsw reachable 345 dlsw reachable cache 346 dlsw remote 346...

Page 10: ...sdlc timer ack 368 sdlc timer lifetime 368 sdlc timer poll 369 sdlc window 369 sdlc xid 370 22 FRAME RELAY CONFIGURATION COMMANDS annexg 371 display fr compress 371 display fr dlci switch 372 display fr inarp info 373 display fr interface 373 display fr lmi info 374 display fr iphc 375 display fr map info 376 display fr map info pppofr 377 display fr pvc info 378 display fr statistics 379 display ...

Page 11: ...imer hello 406 mfr window size 406 shutdown 407 reset fr inarp 407 reset fr pvc 408 timer hold 408 x25 template 409 x25 template 409 23 GARP CONFIGURATION COMMANDS display garp statistics 411 display garp timer 411 garp timer 412 garp timer leaveall 413 reset garp statistics 414 24 GVRP CONFIGURATION COMMANDS display gvrp statistics 415 display gvrp status 416 gvrp 416 gvrp registration 417 25 HDL...

Page 12: ... translate x25 440 x25 alias policy 441 x25 call facility 442 x25 cug service 443 x25 default protocol 444 x25 hunt group 445 x25 ignore called address 446 x25 ignore calling address 446 x25 local cug 447 x25 map 448 x25 modulo 450 x25 packet size 451 x25 pvc 452 x25 queue length 453 x25 receive threshold 454 x25 response called address 455 x25 response calling address 455 x25 reverse charge accep...

Page 13: ... LINK AGGREGATION DEBUGGING COMMANDS debugging lacp packet 483 debugging lacp state 487 debugging link aggregation error 488 debugging link aggregation event 489 29 MODEM CONFIGURATION COMMANDS modem 491 modem auto answer 491 modem timer answer 492 sendat 493 service modem callback 495 30 PORT MIRRORING CONFIGURATION COMMANDS display mirroring group 497 mirroring group 497 mirroring group mirrorin...

Page 14: ...splay ppp compression iphc rtp 525 display ppp compression iphc tcp 525 display ppp compression stac lzs 526 ip tcp vjcompress 526 ppp compression iphc 527 ppp compression iphc rtp connections 528 ppp compression iphc tcp connections 529 ppp compression stac lzs 529 ppp mp lfi 530 ppp mp lfi delay per frag 531 reset ppp compression iphc 531 33 PPPOE SERVER CONFIGURATION COMMANDS display pppoe serv...

Page 15: ... 560 reset bridge address table 561 reset bridge traffic 561 x25 map bridge 562 37 ISDN CONFIGURATION COMMANDS dialer isdn leased ISDN BRI interface view 563 display isdn active channel 564 display isdn call info 564 display isdn call record 566 display isdn parameters 567 display isdn spid 568 isdn bch local manage 569 isdn bch select way 570 isdn caller number 570 isdn calling 571 isdn check cal...

Page 16: ... port 601 display stp history 601 display stp region configuration 602 display stp root 603 display stp tc 604 instance 605 region name 605 reset stp 606 revision level 607 stp 607 stp bpdu protection 608 stp bridge diameter 609 stp compliance 609 stp config digest snooping 610 stp cost 611 stp edged port 612 stp loop protection 613 stp max hops 613 stp mcheck 614 stp mode 615 stp no agreement che...

Page 17: ...rid vlan 641 port link type 642 port trunk permit vlan 642 port trunk pvid vlan 643 41 VOICE VLAN CONFIGURATION COMMANDS display voice vlan oui 645 display voice vlan state 646 voice vlan 646 voice vlan aging 647 voice vlan enable 648 voice vlan mac address 648 voice vlan mode auto 650 voice vlan security enable 650 42 PORT ISOLATION CONFIGURATION COMMANDS display port isolate group 653 port isola...

Page 18: ...ock 671 controller cpos 671 crc 672 display controller cpos 672 display controller cpos e1 674 display controller cpos t1 675 e1 channel set 677 e1 set clock 678 e1 set frame format 678 e1 set loopback 679 e1 shutdown 680 e1 unframed 680 flag 681 frame format 681 loopback 682 multiplex mode 682 shutdown 683 t1 channel set 684 t1 set clock 685 t1 set frame format 685 t1 set loopback 686 t1 shutdown...

Page 19: ...rp 704 display local proxy arp 704 51 DHCP SERVER CONFIGURATION COMMANDS bims server 705 bootfile name 706 dhcp enable 706 dhcp select server global pool 707 dhcp server detect 707 dhcp server forbidden ip 708 dhcp server ip pool 708 dhcp server ping packets 709 dhcp server ping timeout 709 dhcp server relay information enable 710 dhcp update arp 710 display dhcp server conflict 711 display dhcp s...

Page 20: ...erver detect 734 dhcp relay server group 734 dhcp relay server select 735 dhcp select relay 736 dhcp update arp 736 display dhcp relay 737 display dhcp relay security 737 display dhcp relay security statistics 738 display dhcp relay security tracker 738 display dhcp relay server group 739 display dhcp relay statistics 739 reset dhcp relay statistics 741 53 DHCP CLIENT CONFIGURATION COMMANDS displa...

Page 21: ...nbound packets 776 ip count interior threshold 777 ip count outbound packets 778 ip count rule 778 ip count timeout 779 reset ip count 779 59 IP ADDRESSING CONFIGURATION COMMANDS display ip interface 781 display ip interface brief 783 ip address 784 ip address unnumbered 785 60 IP PERFORMANCE CONFIGURATION COMMANDS display fib 787 display fib ip address 789 display fib statistics 789 display icmp ...

Page 22: ...cy based route statistics 812 display policy based route 813 if match acl 813 if match packet length 814 ip local policy based route 814 ip policy based route 815 policy based route 815 reset policy based route statistics 816 62 UDP HELPER CONFIGURATION COMMANDS display udp helper server 819 reset udp helper packet 819 udp helper enable 820 udp helper port 820 udp helper server 821 63 URPF CONFIGU...

Page 23: ...ddress flag 850 ipv6 nd autoconfig other flag 850 ipv6 nd dad attempts 851 ipv6 nd hop limit 851 ipv6 nd ns retrans timer 852 ipv6 nd nud reachable time 852 ipv6 nd ra halt 853 ipv6 nd ra interval 854 ipv6 nd ra prefix 854 ipv6 nd ra router lifetime 855 ipv6 neighbor 856 ipv6 neighbors max learning num 857 ipv6 pathmtu 857 ipv6 pathmtu age 858 reset dns ipv6 dynamic host 858 reset ipv6 fibcache 85...

Page 24: ...CONFIGURATION COMMANDS destination 881 display interface tunnel 882 display ipv6 interface tunnel 883 encapsulation limit 884 interface tunnel 884 mtu 885 source 886 tunnel protocol 887 69 IPV6 UNICAST POLICY ROUTING CONFIGURATION COMMANDS apply default output interface 889 apply destination based forwarding 889 apply ipv6 address default next hop 890 apply ipv6 address next hop 891 apply ipv6 pre...

Page 25: ... rta rtc server listen port 914 rta server enable 915 rta source ip 915 rta template 916 rta terminal 916 sendbuf bufsize 917 sendbuf threshold 918 tcp 918 testkey 919 update changed config 920 vty description 921 vty hotkey 921 vty password 922 vty rtc client remote 923 vty rtc server remote 923 vty screencode 924 vty telnet remote 925 vty tty remote 925 vty switch priority 926 vty switch thresho...

Page 26: ...P VPN instance view 956 bestroute med confederation BGP BGP VPN instance view 956 bgp 957 compare different as med BGP BGP VPN instance view 957 confederation id 958 confederation nonstandard 959 confederation peer as 959 dampening BGP BGP VPN instance view 960 default ipv4 unicast 961 default local preference BGP BGP VPN instance view 962 default med BGP BGP VPN instance view 962 default route im...

Page 27: ...ew 991 peer enable BGP view 992 peer fake as BGP BGP VPN instance view 992 peer filter policy BGP BGP VPN instance view 993 peer group BGP BGP VPN instance view 994 peer ignore BGP BGP VPN instance view 995 peer ip prefix 995 peer keep all routes BGP BGP VPN instance view 996 peer log change BGP BGP VPN instance view 997 peer next hop local BGP BGP VPN instance view 997 peer password 998 peer pref...

Page 28: ... 1039 cost style 1040 default route advertise IS IS view 1041 display isis brief 1042 display isis debug switches 1043 display isis graceful restart status 1043 display isis interface 1044 display isis license 1046 display isis lsdb 1047 display isis mesh group 1048 display isis name table 1049 display isis peer 1049 display isis route 1050 display isis spf log 1052 display isis statistics 1053 do...

Page 29: ...iew 1078 network entity 1079 preference IS IS view 1079 reset isis all 1080 reset isis peer 1081 set overload 1081 spf slice size 1082 summary IS IS view 1083 timer isp generation 1084 timer lsp max age 1085 timer lsp refresh 1085 timer spf 1086 virtual system 1087 75 IS IS DEBUGGING COMMANDS debugging isis 1089 76 OSPF CONFIGURATION COMMANDS abr summary OSPF area view 1107 area OSPF view 1108 asb...

Page 30: ... restart interval OSPF view 1135 host advertise 1135 import route OSPF view 1136 log peer change 1137 lsa arrival interval 1138 lsa generation interval 1139 lsdb overflow limit 1139 maximum load balancing OSPF view 1140 maximum routes 1140 network OSPF area view 1141 nssa 1141 opaque capability enable 1142 ospf 1143 ospf authentication mode 1143 ospf cost 1145 ospf dr priority 1146 ospf mib bindin...

Page 31: ... network 1171 peer 1172 preference 1172 reset rip statistics 1173 rip 1173 rip authentication mode 1174 rip input 1175 rip metricin 1176 rip metricout 1176 rip mib binding 1177 rip output 1177 rip poison reverse 1178 rip split horizon 1178 rip summary address 1179 rip triggered 1179 rip version 1180 silent interface RIP view 1181 summary 1182 timers 1182 trip retransmit count 1183 trip retransmit ...

Page 32: ...TING POLICY CONFIGURATION COMMANDS apply ip address next hop 1207 display ip ip prefix 1207 if match acl 1208 if match ip 1209 if match ip prefix 1209 ip ip prefix 1210 reset ip ip prefix 1211 80 IPV6 ROUTING POLICY CONFIGURATION COMMANDS apply ipv6 next hop 1213 display ip ipv6 prefix 1213 if match ipv6 1214 ip ipv6 prefix 1215 reset ip ipv6 prefix 1216 81 STATIC ROUTING CONFIGURATION COMMANDS de...

Page 33: ...ress family view 1240 import route IPv6 address family view 1240 ipv6 family 1241 network IPv6 address family view 1241 peer advertise community IPv6 address family view 1242 peer advertise ext community IPv6 address family view 1243 peer allow as loop IPv6 address family view 1243 peer as number IPv6 address family view 1244 peer as path acl IPv6 address family view 1245 peer capability advertise...

Page 34: ...cy export 1272 ipv6 filter policy import 1273 ipv6 import route 1274 ipv6 import route isisv6 level 2 into level 1 1275 ipv6 maximum load balancing 1276 ipv6 preference 1276 ipv6 summary 1277 isis ipv6 enable 1278 84 IPV6 OSPFV3 CONFIGURATION COMMANDS abr summary OSPFv3 area view 1279 area OSPFv3 view 1279 default cost 1280 default cost OSPFv3 area view 1280 display debugging ospfv3 1281 display o...

Page 35: ...display ripng interface 1312 display ripng route 1313 filter policy export 1314 filter policy import RIPng view 1314 import route 1315 maximum load balancing RIPng view 1316 preference 1316 ripng 1317 ripng default route 1318 ripng enable 1318 ripng metricin 1319 ripng metricout 1319 ripng poison reverse 1320 ripng split horizon 1320 ripng summary address 1321 timers 1322 86 IPV6 STATIC ROUTING CO...

Page 36: ...351 igmp group policy 1351 igmp last member query interval 1352 igmp max response time 1352 igmp require router alert 1353 igmp robust count 1354 igmp send router alert 1354 igmp static group 1355 igmp timer other querier present 1356 igmp timer query 1356 igmp version 1357 last member query interval 1357 max response time IGMP view 1358 require router alert IGMP view 1358 reset igmp group 1359 ro...

Page 37: ...terval PIM view 1388 c bsr priority PIM view 1388 c rp PIM view 1389 c rp advertisement interval PIM view 1390 c rp holdtime PIM view 1391 crp policy PIM view 1391 display pim bsr info 1392 display pim claimed route 1393 display pim control message counters 1394 display pim grafts 1396 display pim interface 1396 display pim join prune 1398 display pim neighbor 1399 display pim routing table 1401 d...

Page 38: ...iew 1423 ssm policy PIM view 1425 state refresh interval PIM view 1425 state refresh rate limit PIM view 1426 state refresh ttl PIM view 1426 static rp PIM view 1427 timer hello PIM view 1428 timer join prune PIM view 1428 timer spt switch PIM view 1429 91 IPV6 MULTICAST ROUTING AND FORWARDING CONFIGURATION COMMANDS display multicast ipv6 boundary 1431 display multicast ipv6 forwarding table 1431 ...

Page 39: ...458 timer other querier present MLD view 1458 timer query MLD view 1459 version MLD view 1460 93 IPV6 PIM CONFIGURATION COMMANDS bsr policy IPv6 PIM view 1461 c bsr IPv6 PIM view 1461 c bsr hash length IPv6 PIM view 1462 c bsr holdtime IPv6 PIM view 1463 c bsr interval IPv6 PIM view 1463 c bsr priority IPv6 PIM view 1464 c rp IPv6 PIM view 1464 c rp advertisement interval IPv6 PIM view 1465 c rp h...

Page 40: ...triggered hello delay 1492 probe interval IPv6 PIM view 1493 register policy IPv6 PIM view 1493 register suppression timeout IPv6 PIM view 1494 register whole checksum IPv6 PIM view 1495 reset pim ipv6 control message counters 1495 source lifetime IPv6 PIM view 1496 source policy IPv6 PIM view 1496 spt switch threshold IPv6 PIM view 1497 ssm policy IPv6 PIM view 1498 state refresh hoplimit 1499 st...

Page 41: ...cs lsp 1536 du readvertise 1538 du readvertise timer 1538 graceful restart MPLS LDP view 1539 graceful restart mpls ldp 1539 graceful restart timer neighbor liveness 1540 graceful restart timer reconnect 1540 graceful restart timer recovery 1541 hops count 1542 label advertise 1542 label distribution 1543 label retention 1544 loop detect 1545 lsp trigger 1545 lsr id 1546 md5 password 1547 mpls 154...

Page 42: ... mpls rsvp te reservation 1580 display mpls rsvp te rsb content 1581 display mpls rsvp te sender 1583 display mpls rsvp te statistics 1584 display mpls static cr lsp 1586 display mpls te cspf tedb 1587 display mpls te link administration admission control 1592 display mpls te link administration bandwidth allocation 1593 display mpls te tunnel 1594 display mpls te tunnel path 1596 display mpls te ...

Page 43: ...metric 1624 mpls te igp shortcut 1624 mpls te link administrative group 1625 mpls te loop detection 1625 mpls te max link bandwidth 1626 mpls te max reservable bandwidth 1626 mpls te metric 1627 mpls te path explicit path 1628 mpls te path metric type 1628 mpls te priority 1629 mpls te record route 1629 mpls te reoptimization user view 1630 mpls te reoptimization tunnel interface view 1630 mpls te...

Page 44: ...PLS L3VPN CONFIGURATION COMMANDS apply access vpn vpn instance 1671 default local preference BGP VPNv4 subaddress family view 1671 default med BGP VPNv4 subaddress family view 1672 description VPN instance view 1673 display bgp vpnv4 all routing table 1673 display bgp vpnv4 group 1675 display bgp vpnv4 network 1676 display bgp vpnv4 paths 1677 display bgp vpnv4 peer 1678 display bgp vpnv4 route di...

Page 45: ... 1706 policy vpn target 1707 reflect between clients 1708 reflector culster id 1708 refresh bgp vpn instance 1709 refresh bgp vpnv4 1710 reset bgp vpn instance 1710 reset bgp vpn instance dampening 1711 reset bgp vpn instance flap info 1711 reset bgp vpnv4 1712 route distinguisher VPN instance view 1712 route tag 1713 routing table limit 1714 rr filter 1715 sham link 1715 tnl policy VPN instance v...

Page 46: ... 1743 dvpn session dumb time 1744 dvpn session idle time 1745 ipsec profile tunnel interface view 1745 keepalive 1746 reset dvpn session 1747 tunnel protocol dvpn udp 1747 vam client 1748 103 GRE CONFIGURATION COMMANDS destination 1749 display interface tunnel 1750 display ipv6 interface tunnel 1751 encapsulation limit 1752 gre checksum 1752 gre key 1753 interface tunnel 1754 keepalive 1754 source...

Page 47: ...terface 1775 qos gts 1776 107 LINE RATE CONFIGURATION COMMANDS display qos lr interface 1779 qos lr interface view 1780 qos lr layer 2 interface view or port group view 1780 108 DEFINING CLASS COMMANDS display traffic classifier 1783 if match 1784 traffic classifier 1789 109 DEFINING TRAFFIC BEHAVIOR COMMANDS car 1791 display traffic behavior 1792 filter 1793 gts 1793 redirect 1794 remark atm clp ...

Page 48: ...13 CQ CONFIGURATION COMMANDS display qos cq interface 1817 display qos cql 1817 qos cq 1818 qos cql default queue 1819 qos cql inbound interface 1819 qos cql protocol 1820 qos cql queue 1821 qos cql queue serving 1822 114 WFQ CONFIGURATION COMMANDS display qos wfq interface 1823 qos wfq 1824 115 CBQ CONFIGURATION COMMANDS display qos cbq interface 1825 qos max bandwidth 1825 queue af 1826 queue ef...

Page 49: ... qos wred weighting constant 1850 122 WRED TABLE CONFIGURATION COMMANDS display qos wred table 1853 qos wred queue table 1854 qos wred apply 1854 queue 1855 123 MPLS QOS CONFIGURATION COMMANDS if match mpls exp 1857 qos cql protocol mpls exp 1857 qos pql protocol mpls exp 1858 remark mpls exp 1859 124 DAR CONFIGURATION COMMANDS dar max session count 1861 dar protocol 1861 dar protocol rename 1864 ...

Page 50: ...nbound interface 1888 fr del protocol 1889 fr pvc pq 1890 fr traffic policing 1891 fr traffic shaping 1891 fragment 1892 fr class 1892 pq 1893 pvc pq 1893 rtpq 1894 traffic shaping adaptation 1895 wfq 1896 126 802 1X CONFIGURATION COMMANDS display dot1x 1897 dot1x 1899 dot1x authentication method 1900 dot1x guest vlan 1901 dot1x handshake 1903 dot1x max user 1904 dot1x multicast trigger 1905 dot1x...

Page 51: ...oip 1930 cut connection 1931 display connection 1932 display domain 1933 display local user 1935 domain 1936 domain default 1937 idle cut 1938 ip pool 1938 level 1939 local user 1940 local user password display mode 1941 password 1941 self service url 1942 service type 1943 service type ftp 1944 service type ppp 1944 state 1945 work directory 1946 128 RADIUS CONFIGURATION COMMANDS accounting on en...

Page 52: ...975 display stop accounting buffer 1977 hwtacacs nas ip 1977 hwtacacs scheme 1978 key HWTACACS scheme view 1979 nas ip HWTACACS scheme view 1979 primary accounting HWTACACS scheme view 1980 primary authentication HWTACACS scheme view 1981 primary authorization 1982 reset hwtacacs statistics 1982 reset stop accounting buffer 1983 retry stop accounting HWTACACS scheme view 1983 secondary accounting ...

Page 53: ...MMANDS display mac authentication 2009 mac authentication 2010 mac authentication domain 2011 mac authentication timer 2012 mac authentication user name format 2013 reset mac authentication statistics 2014 133 NAT CONFIGURATION COMMANDS connection limit default action 2015 connection limit default amount 2015 connection limit enable 2016 connection limit policy 2016 display connection limit policy...

Page 54: ... 2045 certificate request mode 2046 certificate request polling 2046 certificate request url 2047 common name 2048 country 2048 crl check 2049 crl update period 2049 crl url 2050 display pki certificate 2050 display pki certificate access control policy 2052 display pki certificate attribute group 2052 display pki crl domain 2053 fqdn 2054 ip PKI entity view 2054 ldap server 2055 locality 2055 org...

Page 55: ...l server method 2078 reset portal connection statistics 2078 reset portal server statistics 2079 reset portal tcp cheat statistics 2079 136 RSH CONFIGURATION COMMANDS rsh 2081 137 COMMON CONFIGURATION COMMANDS display time range 2083 time range 2083 138 IPV4 ACL CONFIGURATION COMMANDS acl 2087 acl copy 2088 acl name 2089 description for IPv4 2090 display acl 2091 reset acl counter 2092 rule in bas...

Page 56: ...9 encapsulation mode 2130 encrypt card fast switch 2130 esp authentication algorithm 2131 esp encryption algorithm 2131 ike peer IPSec policy view IPSec policy template view 2132 ipsec binding policy 2133 ipsec cpu backup 2134 ipsec policy interface view 2135 ipsec policy system view 2136 ipsec policy isakmp template 2137 ipsec policy template 2137 ipsec proposal 2138 ipsec sa global duration 2139...

Page 57: ...erval 2166 interval time 2166 local 2167 local address 2167 nat traversal 2168 peer 2168 pre shared key 2169 remote address 2169 remote name 2170 reset ike sa 2170 sa duration 2171 time out 2172 142 SSH2 0 CONFIGURATION COMMANDS display public key local 2173 display public key peer 2174 display sftp client source 2175 display ssh client source 2176 display ssh server 2176 display ssh server info 2...

Page 58: ...3 ssh server enable 2194 ssh server rekey interval 2194 ssh user 2195 ssh2 2196 ssh2 ipv6 2197 143 SFTP CONFIGURATION COMMANDS bye 2201 cd 2201 cdup 2202 delete 2202 dir 2202 exit 2203 get 2203 help 2204 ls 2204 mkdir 2205 put 2205 pwd 2206 quit 2206 remove 2207 rename 2207 rmdir 2207 144 SSL CONFIGURATION COMMANDS ciphersuite 2209 client verify enable 2210 close mode wait 2210 display ssl client ...

Page 59: ... timer advertise 2233 vrrp vrid track 2233 vrrp vrid track interface 2234 vrrp vrid virtual ip 2235 147 VRRP CONFIGURATION COMMANDS FOR IPV6 display vrrp ipv6 2237 display vrrp ipv6 statistics 2238 reset vrrp ipv6 statistics 2240 vrrp ipv6 method 2240 vrrp ipv6 ping enable 2241 vrrp ipv6 vrid authentication mode 2242 vrrp ipv6 vrid preempt mode 2242 vrrp ipv6 vrid priority 2243 vrrp ipv6 vrid time...

Page 60: ...68 filename 2271 frequency 2271 history records 2272 http version 2273 next hop 2273 nqa 2274 nqa agent enable 2274 nqa agent max concurrent 2275 nqa schedule 2275 operation FTP test type view 2276 operation HTTP test type view 2276 operation interface 2277 password FTP test type view 2277 probe count 2278 probe packet interval 2279 probe packet number 2279 probe packet timeout 2280 probe timeout ...

Page 61: ...2301 display ntp service status 2302 display ntp service trace 2303 ntp service access 2304 ntp service authentication enable 2305 ntp service authentication keyid 2305 ntp service broadcast client 2306 ntp service broadcast server 2306 ntp service in interface disable 2307 ntp service max dynamic sessions 2308 ntp service multicast client 2308 ntp service multicast server 2309 ntp service refcloc...

Page 62: ...mp agent group 2338 snmp agent local switch fabricid 2339 snmp agent log 2339 snmp agent mib view 2340 snmp agent packet max size 2341 snmp agent sys info 2341 snmp agent target host 2342 snmp agent trap enable 2344 snmp agent trap if mib link extended 2345 snmp agent trap life 2346 snmp agent trap queue size 2346 snmp agent trap source 2347 snmp agent usm user 2347 155 FILE SYSTEM CONFIGURATION C...

Page 63: ...p user 2370 ftp server enable 2370 ftp timeout 2371 ftp update 2371 158 FTP CLIENT CONFIGURATION COMMANDS ascii 2373 binary 2373 bye 2374 cd 2374 cdup 2374 close 2375 debugging 2375 delete 2376 dir 2377 disconnect 2377 display ftp client configuration 2378 ftp 2378 ftp client source 2379 ftp ipv6 2380 get 2381 lcd 2382 ls 2382 mkdir 2383 open 2383 open ipv6 2384 passive 2385 put 2385 pwd 2386 quit...

Page 64: ...count 2410 display clipboard 2410 display clock 2411 display configure user 2411 display current configuration 2412 display diagnostic information 2414 display history command 2415 display hotkey 2415 display this 2416 display version 2417 header 2418 hotkey 2419 quit 2420 return 2421 super 2421 super password 2422 sysname 2423 system view 2424 163 INFORMATION CENTER CONFIGURATION COMMANDS display...

Page 65: ...et trapbuffer 2445 terminal debugging 2445 terminal logging 2446 terminal monitor 2447 terminal trapping 2447 164 USER INTERFACE CONFIGURATION COMMANDS acl 2449 activation key 2450 auto execute command 2451 authentication mode 2452 databits 2453 display history command 2454 display user interface 2454 display users 2456 escape key 2457 flow control 2458 free user interface 2459 history command max...

Page 66: ...c address timer 2483 166 POE CONFIGURATION COMMANDS apply poe profile 2485 display poe device 2486 display poe interface 2486 display poe interface power 2489 display poe power usage 2490 display poe pse 2491 display poe power 2492 display poe profile 2494 display poe profile interface 2496 poe disconnect 2496 poe enable 2497 poe enable pse 2498 poe legacy enable 2498 poe max power 2499 poe max po...

Page 67: ...sable 2523 acsei client debug enable 2523 acsei client debug show 2524 chkconfig acseid off 2524 chkconfig acseid on 2525 service acseid condrestart 2525 service acseid reload 2526 service acseid restart 2526 service acseid start 2527 service acseid status 2527 service acseid stop 2528 171 TRACK CONFIGURATION COMMANDS display track 2529 track 2529 172 IPX CONFIGURATION COMMANDS display ipx interfa...

Page 68: ...istics protocol 2551 173 VOIP CONFIGURATION COMMANDS address 2553 area 2554 area id 2554 busytone t th 2555 cid display 2556 cid receive 2556 cid send 2557 cid type 2557 cng on 2558 compression 2559 cptone country type 2564 cptone tone type 2566 default entity compression 2567 default entity payload size 2568 default entity vad on 2569 default subscriber line 2570 delay hold 2570 delay rising 2571...

Page 69: ...9 nlp on 2601 outband 2602 payload size 2602 plc mode 2603 receive gain 2604 register number 2605 reset voice cmc statistic 2605 reset voice ipp statistic 2606 reset voice iva statistic 2606 rtp payload type nte 2606 send busytone 2607 send ring 2608 shutdown voice entity view 2608 shutdown voice subscriber line view 2609 silence th span 2609 slic gain 2610 subscriber line 2610 timer dial interval...

Page 70: ...e 2634 select rule rule order 2638 select rule search stop 2639 select rule type first 2640 select stop 2641 send number 2642 substitute subscriber line view voice entity view 2643 substitute voice dial program view 2644 terminator 2645 175 E1 AND T1 CONFIGURATION COMMANDS ani 2647 ani offset 2648 answer enable 2648 callmode 2649 cas 2649 clear forward ack enable 2650 display voice subscriber line...

Page 71: ... 2680 fax baudrate 2683 fax ecm 2684 fax level 2685 fax local train threshold 2685 fax nsf on 2686 fax protocol 2687 fax train mode 2688 reset voice fax statistics 2689 voip h323 conf tcs t38 2689 177 H 323 CONFIGURATION COMMANDS area id 2691 display voice gateway 2691 gk client 2692 gk 2nd id 2693 gk id 2694 gk security call enable 2694 gk security register pwd 2695 gw address 2695 gw id 2696 ras...

Page 72: ...oice bandwidth 2717 vofr 2717 vofr frf11 timer 2719 180 VOICE RADIUS CONFIGURATION COMMANDS aaa client 2721 accounting 2721 accounting did 2722 acct method 2723 authentication 2724 authentication did 2724 authorization 2725 authorization did 2726 callednumber receive method 2727 card digit 2728 cdr 2728 display voice access number 2730 display voice call history record 2732 display voice radius st...

Page 73: ...out this guide Table 2 lists text conventions that are used throughout this guide Table 1 Notice Icons Icon Notice Type Description n Information note Information that describes important features or instructions c Caution Information that alerts you to potential loss of data or potential damage to an application system or device w Warning Information that alerts you to potential personal injury T...

Page 74: ...l interface cards and modules available with the router LMR Series Routers Cable Manual Describes the pinouts of the cables available for LMR series routers Release Notes Contains the latest information about your product If information in this guide differs from information in the release notes use the information in the Release Notes These documents are available in Adobe Acrobat Reader Portable...

Page 75: ...d hop 1565 address 2553 address 2711 adsl standard 144 adsl tx attenuation 144 aggregate 953 aging time 1999 ah authentication algorithm 2119 alarm CT3 interface view 265 alarm threshold 213 allow l2tp 1757 ani 2647 ani offset 2648 annexg 371 answer enable 2648 apply access vpn vpn instance 1671 apply as path 1187 apply comm list delete 1187 apply community 1188 apply cost 1189 apply cost type 119...

Page 76: ...99 auto execute command 2451 auto link 899 auto rp enable 1383 backup startup configuration 2361 balance BGP BGP VPN instance view 954 balance IPv6 address family view 1221 bandwidth based sharing 929 bandwidth reference IS IS view 1038 bandwidth reference OSPF view 1110 baudrate 189 bert CE3 Interface 253 bert CT1 PRI interface view 214 bert CT3 interface view 266 bestroute as path neglect BGP BG...

Page 77: ... view 215 check region configuration 597 checkzero 1161 checkzero 1309 chkconfig acseid off 2524 chkconfig acseid on 2525 cid display 2556 cid receive 2556 cid select mode 2712 cid send 2557 cid type 2557 ciphersuite 2209 cir 1876 cir allow 1877 circuit cost 1039 classifier behavior 1801 clear forward ack enable 2650 client enable 1731 client verify enable 2210 clock CE1 PRI interface view 202 clo...

Page 78: ... data send delay 902 databits 2453 data coding CT1 PRI interface view 218 data fill 2265 data flow format HWTACACS scheme view 1975 data flow format RADIUS scheme view 1951 data size 2266 debugging 2375 debugging 2403 debugging bgp 1021 debugging bgp all 1015 debugging bgp detail 1017 debugging bgp event 1018 debugging bgp graceful restart 1019 debugging bgp timer 1024 debugging bgp update 1025 de...

Page 79: ...on 631 destination 1749 destination 881 destination ip 2267 destination port 2267 detect 193 detect 2000 detect ais 204 dh 2154 dhcp enable 706 dhcp enable 729 dhcp relay address check 729 dhcp relay information enable 730 dhcp relay information format 730 dhcp relay information strategy 731 dhcp relay release ip 732 dhcp relay security static 732 dhcp relay security tracker 733 dhcp relay server ...

Page 80: ...able dampening parameter 1234 display bgp ipv6 routing table different origin as 1234 display bgp ipv6 routing table flap info 1235 display bgp ipv6 routing table label 1236 display bgp ipv6 routing table peer 1237 display bgp ipv6 routing table regular expression 1237 display bgp ipv6 routing table statistic 1238 display bgp l2vpn 1648 display bgp network 965 display bgp paths 966 display bgp pee...

Page 81: ...diagnostic information 2414 display dialer 331 display dlsw circuits 337 display dlsw information 338 display dlsw reachable cache 340 display dlsw remote 339 display dns domain 765 display dns dynamic host 765 display dns ipv6 dynamic host 829 display dns ipv6 server 829 display dns proxy table 766 display dns server 767 display domain 1933 display dot1x 1897 display dsl configuration 132 display...

Page 82: ... 2294 display ip policy based route 810 display ip policy based route setup 811 display ip policy based route statistics 812 display ip relay route 941 display ip relay tunnel 941 display ip routing table 929 display ip routing table acl 932 display ip routing table ip address 935 display ip routing table ip prefix 938 display ip routing table protocol 939 display ip routing table statistics 940 d...

Page 83: ...ary 475 display link aggregation verbose 476 display llc2 341 display load sharing ip address 942 display local proxy arp 704 display local user 1935 display logbuffer 2428 display logbuffer summary 2430 display logfile buffer 2430 display logfile summary 2431 display loopback detection 176 display mac address 2477 display mac address aging time 2478 display mac address mac learning 2478 display m...

Page 84: ... log 2023 display nat outbound 2024 display nat server 2025 display nat session 2025 display nat statistics 2026 display natpt address group 863 display natpt address mapping 863 display natpt aging time 864 display natpt all 865 display natpt frag sessions 866 display natpt session 867 display natpt statistics 867 display nqa 2268 display nqa server status 2289 display ntp service sessions 2301 d...

Page 85: ...n 533 display proxy arp 704 display public key local 2173 display public key peer 2174 display qos car interface 1769 display qos carl 1770 display qos cbq interface 1825 display qos cq interface 1817 display qos cql 1817 display qos gts interface 1775 display qos lr interface 1779 display qos map table 1839 display qos policy 1801 display qos policy interface 1803 display qos policy interface 188...

Page 86: ...ice call history record 2732 display voice call info 2576 display voice cmc 2577 display voice default all 2579 display voice entity 2581 display voice fax 2680 display voice gateway 2691 display voice ipp statistic 2581 display voice iva statistic 2583 display voice number substitute 2627 display voice radius statistic 2734 display voice sip call statistics 2699 display voice sip register state 2...

Page 87: ...0 enable log 1130 enable out of band resynchronization 1131 enable snmp trap updown 2335 enable traffic adjustment 1603 enable traffic adjustment advertise 1603 encap data enable 1371 encapsulation 298 encapsulation limit 1752 encapsulation limit 884 encapsulation mode 2130 encrypt card fast switch 2130 encryption algorithm 1725 encryption algorithm 2160 entity 2594 entity vofr 2714 error diffusio...

Page 88: ...irewall fragments inspect 1994 firewall ipv6 fragments inspect 1995 firewall packet filter 1996 firewall packet filter ipv6 1997 first rule 2629 fixdisk 2354 flag 155 flag 681 flash flood 1057 flow control 168 flow control 2458 flow interval 178 force metering enable 2656 format 2355 fqdn 2054 fr class 1886 fr compression frf9 385 fr compression iphc 385 fr congestion threshold 1886 fr de del 1887...

Page 89: ... sending enable 697 gre checksum 1752 gre key 1753 group BGP BGP VPN instance view 980 group IPv6 address family view 1240 group b enable 2656 group member 178 gts 1793 gvrp 416 gvrp registration 417 gw access number 2736 gw address 2695 gw id 2696 handshake timeout 2212 header 2418 hello option dr priority IPv6 PIM view 1479 hello option dr priority PIM view 1405 hello option holdtime IPv6 PIM vi...

Page 90: ...t 2165 ike sa nat keepalive timer interval 2166 ike peer IPSec policy view IPSec policy template view 2132 ima ima group 117 ima clock 118 ima standard 119 ima test 119 impedance 2598 import 1840 import route policy 1695 import route BGP BGP VPN instance view 981 import route IPv6 address family view 1240 import route IS IS view 1059 import route OSPF view 1136 import route RIP view 1170 import ro...

Page 91: ...meout active 2299 ip netstream timeout inactive 2300 ip policy based route 815 ip pool 1938 ip redirects enable 798 ip route static 1217 ip route static default preference 1220 ip rpf route static 1334 ip tcp vjcompress 526 ip ttl expires enable 798 ip unreachables enable 799 ip urpf 823 ip vpn instance 1696 ip precedence 299 ipsec binding policy 2133 ipsec cpu backup 2134 ipsec policy interface v...

Page 92: ...h select way 570 isdn caller number 570 isdn calling 571 isdn check called number 571 isdn check time 572 isdn crlength 573 isdn ignore connect ack 573 isdn ignore hlc 574 isdn ignore llc 575 isdn ignore sending complete 576 isdn L3 timer 577 isdn link mode 578 isdn number property 578 isdn overlap sending 582 isdn pri slipwnd size 583 isdn protocol mode 584 isdn protocol type 584 isdn q921 perman...

Page 93: ...ax transmission 353 llc2 modulo 354 llc2 receive window 354 llc2 timer ack 355 llc2 timer ack delay 355 llc2 timer busy 356 llc2 timer detect 356 llc2 timer poll 357 llc2 timer reject 358 load bandwidth 950 local 2167 local address 2167 locality 2055 local proxy arp enable 703 local user 1940 local user password display mode 1941 lock 2461 log enable 2006 logfile save 2444 log peer change IS IS vi...

Page 94: ... mfr stateup respond addlink 404 mfr timer ack 405 mfr timer hello 406 mfr window size 406 min active links 121 mirroring group 497 mirroring group mirroring port 498 mirroring group monitor port 499 mirroring port 500 mkdir 2205 mkdir 2355 mkdir 2383 mld 1448 mld enable 1448 mld fast leave 1449 mld group policy 1449 mld last listener query interval 1450 mld max response time 1451 mld require rout...

Page 95: ...on user view 1630 mpls te resv style 1631 mpls te retry 1631 mpls te route pinning 1632 mpls te signal protocol 1633 mpls te tie breaking 1633 mpls te timer auto bandwidth 1634 mpls te timer fast reroute 1635 mpls te timer retry 1635 mpls te tunnel id 1636 mpls te vpn binding 1636 mpls te enable 1637 msdp 1372 mtracert 1336 mtu MPLS L2VPN view 1667 mtu on serial interfaces 197 mtu 158 mtu 187 mtu ...

Page 96: ...er 2306 ntp service in interface disable 2307 ntp service max dynamic sessions 2308 ntp service multicast client 2308 ntp service multicast server 2309 ntp service refclock master 2309 ntp service reliable authentication keyid 2310 ntp service source interface 2310 ntp service unicast peer 2311 ntp service unicast server 2312 number match 2631 number priority 2632 number substitute 2632 oam ais rd...

Page 97: ...eer connect interface 1373 peer default route advertise BGP BGP VPN instance view 989 peer default route advertise 1247 peer default route advertise vpn instance 1699 peer description BGP BGP VPN instance view 990 peer description IPv6 address family view 1247 peer description 1374 peer ebgp max hop BGP BGP VPN instance view 991 peer ebgp max hop IPv6 address family view 1248 peer enable BGP view ...

Page 98: ...BGP BGP VPN instance view 1004 peer substitute as IPv6 address family view 1259 peer timer BGP BGP VPN instance view 1005 peer timer IPv6 address family view 1260 peer upe 1706 peer public key end 2179 permanent active 593 pfs 2140 phy mru 198 physical mode 198 pim 1410 pim bsr boundary 1411 pim dm 1411 pim hello option dr priority 1412 pim hello option holdtime 1413 pim hello option lan delay 141...

Page 99: ... aggregation 481 port isolate enable 653 port mapping 2006 power source 594 ppp account statistics enable 509 ppp authentication mode 510 ppp callback 334 ppp callback ntstring 334 ppp chap password 511 ppp chap user 511 ppp compression iphc 527 ppp compression iphc rtp connections 528 ppp compression iphc tcp connections 529 ppp compression stac lzs 529 ppp ipcp dns 512 ppp ipcp dns admit any 513...

Page 100: ...pq 1893 pvp limit 309 pwd 2206 pwd 2358 pwd 2386 qos apply policy interface view 1804 qos apply policy layer 2 interface view or port group view 1805 qos car 1770 qos carl 1772 qos cq 1818 qos cql default queue 1819 qos cql inbound interface 1819 qos cql protocol 1820 qos cql protocol mpls exp 1857 qos cql queue 1821 qos cql queue serving 1822 qos fifo queue length 1809 qos gts 1776 qos lr interfa...

Page 101: ...id 1799 remote address 523 remote address 2169 remotehelp 2386 remote ip 1556 remote name 2170 remove 2207 remove 2260 rename 2207 rename 2358 renew 2664 require router alert IGMP view 1358 require router alert MLD view 1456 resend interval 1734 reset acfp rule cache 2516 reset acl counter 2092 reset acl ipv6 counter 2107 reset arp 695 reset aspf session 2007 reset atm interface 112 reset bgp 1008...

Page 102: ...1342 reset multicast ipv6 forwarding table 1441 reset multicast IPv6 routing table 1441 reset multicast routing table 1343 reset nat session 2039 reset natpt dynamic mappings 875 reset natpt statistics 876 reset ospf counters 1153 reset ospf process 1153 reset ospf redistribution 1154 reset pim control message counters 1422 reset pim ipv6 control message counters 1495 reset policy based route stat...

Page 103: ... bypass route 2282 route policy 1205 router id 1010 router id 1265 router id 1305 route tag 1713 routing table limit 1714 rr filter 1715 rsh 2081 rta bind 913 rta rtc server listen port 914 rta server enable 915 rta source ip 915 rta template 916 rta terminal 916 rtp payload type nte 2606 rtpq 1894 rule access control policy view 2063 rule in advanced IPv4 ACL view 2094 rule in advanced IPv6 ACL v...

Page 104: ...restart 2526 service acseid start 2527 service acseid status 2527 service acseid stop 2528 service cbr 310 service modem callback 495 service ubr 311 service vbr nrt 311 service vbr rt 312 service type 1943 service type ftp 1944 service type ppp 1944 session 2214 set authentication password 2470 set overload 1081 sftp 2185 sftp client ipv6 source 2186 sftp client source 2187 sftp ipv6 2187 sftp se...

Page 105: ...iew 1498 ssm policy PIM view 1425 standby bandwidth 2219 standby interface 2220 standby routing group 655 standby routing rule 655 standby threshold 2221 standby timer delay 2222 standby timer flow check 2223 standby timer routing disable 656 standby track 2223 start l2tp 1764 startup saved configuration 2366 state 1945 state 1969 state 2063 state refresh hoplimit 1499 state refresh interval IPv6 ...

Page 106: ...ck 283 t1 set loopback 686 t1 show 284 t1 shutdown 285 t1 shutdown 686 t1 unframed 286 t1 unframed 687 tcp 918 tcp anti naptha enable 800 tcp ipv6 timer fin timeout 861 tcp ipv6 timer syn timeout 861 tcp ipv6 window 862 tcp mss 801 tcp state 801 tcp syn cookie enable 802 tcp timer check state 803 tcp timer fin timeout 803 tcp timer syn timeout 804 tcp window 805 tdm clock 2670 temperature alarm en...

Page 107: ...p 439 translate x25 440 transmit gain 2614 transmit priority 314 trip retransmit count 1183 trip retransmit timer 1184 trunk direction 2676 trunk id 2716 ts 2677 ttl 2285 ttl expiration 1563 ttl propagate 1564 tunnel authentication 1764 tunnel avp hidden 1765 tunnel flow control 1766 tunnel local 2150 tunnel name 1766 tunnel password 1767 tunnel remote 2151 tunnel select seq load balance number 17...

Page 108: ...on mode 2242 vrrp ipv6 vrid preempt mode 2242 vrrp ipv6 vrid priority 2243 vrrp ipv6 vrid timer advertise 2244 vrrp ipv6 vrid track 2245 vrrp ipv6 vrid virtual ip 2246 vrrp method 2229 vrrp ping enable 2230 vrrp un check ttl 2231 vrrp vrid authentication mode 2228 vrrp vrid preempt mode 2231 vrrp vrid priority 2232 vrrp vrid timer advertise 2233 vrrp vrid track 2233 vrrp vrid track interface 2234 ...

Page 109: ... 409 x25 timer hold 464 x25 timer idle 464 x25 timer tx0 465 x25 timer tx1 466 x25 timer tx2 466 x25 timer tx3 467 x25 vc per map 468 x25 vc range 468 x25 window size 469 x25 x121 address 470 x25 xot pvc 470 x25 template 409 x29 timer inviteclear time 472 ...

Page 110: ......

Page 111: ...and state information about interface ATM 2 0 Sysname display interface atm 2 0 Atm2 0 current state DOWN Line protocol current state DOWN Description Atm2 0 Interface The Maximum Transmit Unit is 1500 Internet protocol processing disabled AAL enabled AAL5 Maximum VCs 128 Current VCs 0 0 on main interface ATM over E1 Scramble enabled frame format crc4 adm code hdb3 clock slave Cable length long lo...

Page 112: ...ATM interface Description Use the reset atm interface command to clear the statistics on the PVCs created on an ATM interface or all the ATM interfaces Note that If you execute this command with an ATM interface specified this command displays the statistics on the PVCs created on the ATM interface If you execute this command with no ATM interface specified the statistics on the PVCs created on al...

Page 113: ...to restore the default By default long haul mode applies allowing of cable length mode adaptation In this case the long haul mode is adopted first If the cable is of short haul mode the system switches to the short haul mode automatically To have the system use the short haul mode use the cable short command Related command frame format Example Set the cable length of ATM E1 interface 5 0 to long ...

Page 114: ...rface 5 0 to master Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 clock master code Syntax In ATM E1 interface view code ami hdb3 In ATM T1 interface view code ami b8zs undo code View ATM E1 T1 interface view Parameter ami Sets the ATM E1 T1 line coding format as AMI hdb3 Sets the ATM E1 T1 line coding format as HDB3 b8zs Sets the ATM E1 T1 line coding format as B8ZS Description Use...

Page 115: ...ple Set the maximum differential delay for the member links in IMA group 1 to 25 milliseconds Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 ima ima group 1 Sysname Atm5 0 interface ima group 5 1 Sysname Ima group5 1 differential delay 25 display interface ima group Syntax display interface ima group group interfacenumber View Any view Parameter group interfacenumber IMA group interf...

Page 116: ...T_UP Ima Link state IMA Link Number 1 First Link 0 Test Status Disabled Last 300 seconds input rate 0 00 bytes sec 0 00 packets sec Last 300 seconds output rate 0 00 bytes sec 0 00 packets sec Input 0 packets 0 bytes 0 buffers 0 errors 0 crcs 0 lens 0 giants 0 pads 0 aborts 0 timeouts 0 overflows 0 overruns 0 no buffer Output 0 packets 0 bytes 0 buffers 0 errors 0 overflows 0 underruns frame forma...

Page 117: ...number of ATM cells in an IMA frame Description Use the frame length command to configure the number of ATM cells in an IMA frame Use the undo frame length command to restore the default that is 128 ATM cells in an IMA frame Example Set the number of ATM cells in an IMA frame to 64 on IMA group interface 1 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 ima ima group 1 Sysname Atm5 0 ...

Page 118: ...onfiguration In this mode all links in the IMA group share the same clock source which can be an external clock or the one extracted from a member link link number number Number of the E1 T1 link that provides the clock source It ranges from 0 to 7 itc Independent transmit clock configuration In this mode the links in the IMA group use at least two clock sources Description Use the ima clock comma...

Page 119: ...A group interface Use the undo ima standard command to restore the default By default V1 1 standard is adopted Example Configure to adopt V1 1 standard Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 ima ima group 1 Sysname Atm5 0 interface ima group 5 1 Sysname Ima group5 1 ima standard standard v11 ima test Syntax ima test link number number pattern id id undo ima test View IMA grou...

Page 120: ...are bidirectional This command tests only the connectivity of a link in its transmit direction to the other links in the IMA group in their receive direction Example Send test mode 0xAB over link 0 in IMA group interface 1 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 ima ima group 1 Sysname Atm5 0 interface ima group 5 1 Sysname Ima group5 1 ima test link number 0 pattern id ab int...

Page 121: ...E1 T1 interface 5 0 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 loopback payload min active links Syntax min active links number undo min active links View IMA group interface view Parameter number Number of links in the range 1 to 8 Description Use the min active links command to configure the minimum number of links required for the IMA group to work Use the undo min active link...

Page 122: ...crambling on the ATM E1 T1 interface This however does not affect cell headers Use the undo scramble command to disable payload scrambling By default payload scrambling is enabled on an ATM E1 T1 interface Example Enable payload scrambling on ATM interface 5 0 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 scramble ...

Page 123: ...d to configure the cable length of the ATM T3 interface Use the undo cable command to restore the default By default short haul mode applies Example Set the cable length of ATM T3 interface 5 0 to long haul Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 cable long clock Syntax clock master slave undo clock View ATM E3 T3 interface view Parameter master Sets the clock mode as master s...

Page 124: ...1 ADM g751 plcp Sets the framing format of ATM E3 to G 751 physical layer convergence protocol G 751 PLCP g832 adm Sets the framing format of ATM E3 to G 832 ADM cbit adm Sets the framing format of ATM T3 to C bit ADM cbit plcp Sets the framing format of ATM T3 to C bit PLCP m23 adm Sets the framing format of ATM T3 to M23 ADM m23 plcp Sets the framing format of ATM T3 to M23 PLCP Description Use ...

Page 125: ... Description Use the loopback command to configure the loopback mode on the ATM E3 T3 interface Use the undo loopback command to disable loopback By default loopback is disabled Example Enable external payload loopback on ATM E3 T3 interface 5 0 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 loopback payload scramble Syntax scramble undo scramble View ATM E3 T3 interface view Paramet...

Page 126: ...126 CHAPTER 3 ATM E3 T3 INTERFACE CONFIGURATION COMMANDS Example Disable payload scrambling on ATM E3 T3 interface 5 0 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 undo scramble ...

Page 127: ...CE set its clock mode to master When the interface is operating as DTE set its clock mode to slave When the ATM interfaces on two routers are connected directly through a fiber optic cable set the clock mode to master at one end and to slave at the other end Example Set the clock mode of ATM interface 5 0 to master Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 clock master frame for...

Page 128: ...ce atm 5 0 Sysname Atm5 0 frame format sdh loopback Syntax loopback cell local remote undo loopback View ATM OC 3c interface view STM 1 interface view Parameter cell Enables internal cell loopback local Enables internal loopback remote Enables external loopback Description Use the loopback command to configure the loopback mode on the ATM OC 3c STM 1 interface Use the undo loopback command to disa...

Page 129: ...g on the ATM OC 3c STM 1 interface This however does not affect cell headers Use the undo scramble command to disable payload scrambling By default payload scrambling is enabled on the ATM OC 3c STM 1 interface Example Enable payload scrambling on ATM interface 5 0 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 scramble ...

Page 130: ...130 CHAPTER 4 ATM OC 3C STM 1 INTERFACE CONFIGURATION COMMANDS ...

Page 131: ... attempt to reach an agreement If the training succeeds a communication connection is set up between the two parties Contrary to activation deactivation tears down the communication connection between the two parties To transmit services you need to re activate the interface The commands here are intended for test and diagnosis purposes Unlike the shutdown and undo shutdown commands the commands h...

Page 132: ...ake Status 00 0002 0000 0000 0000 0000 0000 0000 0000 0000 0000 10 0000 0008 0000 0000 0000 0000 0000 0000 0008 0000 20 0000 0000 0002 0002 0004 0010 Local Handshake Status 00 0002 0001 0000 0000 0000 0000 0034 003f 003f 003f 10 003f 003f 0003 0034 003f 003f 003f 003f 003f 0003 20 0000 0000 0003 0003 000f 0010 Remote Handshake Status 00 0002 0000 0000 0000 0000 0000 0030 003f 003f 003f 10 003f 000...

Page 133: ...ince last activation CRC 0 LOSW Defect 0 ES 0 SES 0 UAS 0 TX EOC 0 RX EOC 0 Line A status Xcvr Op State Data Mode Last Fail Op State 0x00 Frame Sync in sync Line Rate Kbps 2312 Wire Type 2 SNR Margin dB 16 30 Loop Attenuation dB 0 00 RecvGain dB 6 07 TxPower dBm 9 50 Power Backoff enable Power Backoff Level 5 Tip Ring Reversal Reversed FrmOH Stat 0x00 Rmt Encoder A 0x0000016e Target Margin Target ...

Page 134: ...tus Xcvr Op State Data Mode Last Fail Op State 0x00 Frame Sync in sync Line Rate Kbps 2312 Wire Type 4 SNR Margin dB 13 30 Loop Attenuation dB 0 00 RecvGain dB 5 86 TxPower dBm 9 50 Power Backoff enable Power Backoff Level 5 Tip Ring Reversal Reversed FrmOH Stat 0x00 Rmt Encoder A 0x0000016e Rmt Encoder B 0x00000331 Rmt NSF Cusdata 0x0000 Rmt NSF CusID 0x0000 Rmt Country Code 0x00b5 Rmt Provider C...

Page 135: ...d SES Severely error second count of severe errors per second UAS Unavailable second count of one second intervals for which the G SHDSL line is unavailable TX EOC Count of transmitted EOC cells RX EOC Count of received EOC cells Line A status State of wire pair A Xcvr Op State Data Mode Operating state of the receiver Last Fail Op State Operating state of the receiver when the last negotiation fa...

Page 136: ...B Version 0 0 CPLD Version 0 0 Driver Version 2 0 Hardware Version 1 0 ITU G991 2 ANNEX A Supported ITU G991 2 ANNEX B Supported Rmt Provider Code Remote code of the chip provider Rmt Vendor Data Remote code of the chip vendor Table 2 Description on the fields of the display dsl status command Field Description Table 3 Description on the fields of the display dsl version interface atm command Fiel...

Page 137: ...re your network is located When ATU C and ATU R use different standards G SHDSL cannot set up connection Example Configure G SHDSL interface ATM 5 0 to support annex A Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 shdsl annex a shdsl mode Syntax shdsl mode co cpe undo shdsl mode View ATM G SHDSL interface view Parameter co Specifies the central office CO mode cpe Specifies the custo...

Page 138: ...ower per unit density of frequency spectral as a function of the frequency PSD describes how the power of a time series is distributed with frequency Description Use the shdsl psd command to set PSD of the G SHDSL interface working as CPE It is not necessarily the same as the one set at CO Use the undo shdsl psd command to restore the default By default the PSD of the G SHDSL interface is in symme...

Page 139: ... G SHDSL interface is set to auto negotiation mode the single pair interface rate of four wire G SHDSL interface is set to 2 312 kbps four wire G SHDSL interface rate is 4 624 kbps Example Configure ATM 5 0 to operate in the auto negotiation mode Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 shdsl rate auto shdsl snr margin Syntax shdsl snr margin current current margin value snext ...

Page 140: ...in four wire enhanced mode the local end uses the four wire standard mode for negotiation When four wire auto switch mode is adopted the remote end can be set to operate in four wire enhanced mode or four wire standard mode 4 enhanced Four wire enhanced mode In this mode the two pairs of the four wires can start negotiation separately in addition the remote end must be set to operate in four wire ...

Page 141: ...141 Sysname system view Sysname interface atm 5 0 Sysname Atm5 0 shdsl wire 4 auto enhanced ...

Page 142: ...142 CHAPTER 5 G SHDSL INTERFACE CONFIGURATION COMMANDS ...

Page 143: ...f the training succeeds a communication connection is set up between the two parties for service transmission Contrary to activation deactivation tears down the communication connection between the two parties To transmit services you need to re activate the interface The commands here are intended for test and diagnosis purposes Unlike the shutdown and undo shutdown commands the commands here onl...

Page 144: ... command to restore the default that is auto negotiation Note that ADSL I module does not support G Lite G992 2 standard and T1 413 standard To bring the standard configured by the adsl standard command into effect immediately you need to re activate the interface by either the shutdown and undo shutdown commands or the activate and undo activate commands Example Apply the standard T1 413 to ATM i...

Page 145: ...his argument The maximum slot number differs with device models subslot subslot no list List of sub slot numbers representing multiple sub cards The argument subslot no list appears in the form of subslot no to subslot no 1 7 where subslot no is the sub slot number of a sub card in the range of 1 to the maximum sub slot number and 1 7 means that you can specify up to 7 slot numbers or slot number ...

Page 146: ...ue Y N y Board 2 upgrading BOOTROM please wait Sysname system view Sysname interface atm 2 0 Sysname Atm2 0 undo shutdown display dsl configuration Syntax display dsl configuration interface atm interface number View Any view Parameter interface number Specifies a DSL interface to view the configuration information about Description Use the display dsl configuration command to display the configur...

Page 147: ...terface to view the status information about Description Use the display dsl status command to display the status information of a specified DSL interface Example Display the status information of the ADSL interface ATM 2 0 Sysname display dsl status interface atm 2 0 Line Status Loss Of Signal Training Status Idle Active Params Near End Far End Standard G dmt G dmt SNR dB 0 0 0 0 Attn dB 0 0 0 0 ...

Page 148: ...error concerning signal Loss Of Power indicating an error concerning power supply Loss Of Signal Quality indicating an error concerning signal quality Unknown indicating an unknown error Training Status Training status of the ADSL interface which can be Idle indicating the interface is idle G 994 Training indicating a G 994 training G 992 Started indicating a G 992 training is launched G 922 Chann...

Page 149: ...3 ReAdsl2 ITU G992 5 Adsl2p Table 6 Description on the fields of the display adsl version command Field Description Adsl board chipset and version info The components of the interface board and the version DSL line Type Type of the user access line Chipset Vendor Identifier of the ADSL chipset vendor FW Release Identifier and version of the firmware DSP Version AFE Version PCB Version Driver Versi...

Page 150: ...150 CHAPTER 6 ADSL INTERFACE CONFIGURATION COMMANDS ...

Page 151: ...nternal clock signal Slave which uses line clock signal Similar to the DTE DCE model of synchronous serial interfaces POS interfaces need to choose a clock mode When a POS interface on the router is directly connected to another router the only requirement is that the two sides use different clock modes In connection to a switch however the switch is DCE and uses internal clock so the POS interfac...

Page 152: ...P Line protocol current state UP Description Pos0 0 0 Interface The Maximum Transmit Unit is 1500 Hold timer is 10 sec Internet Address is 13 13 13 14 8 Primary Link layer protocol is PPP LCP opened IPCP opened IP6CP opened Physical is Pos1 0 baudrate 155520000 Output queue Urgent queuing Size Length Discards 0 50 0 Output queue Protocol queuing Length 0 500 0 Output queue FIFO queuing Size Length...

Page 153: ...be OOF LOF and LOS Line layer alarms which could be AIS and RDI Path layer alarms which could be LOP AIS and RDI Received and transmitted C2 bytes C2 is the signal flag byte Received and transmitted J0 overhead bytes J0 is the section layer trace byte Received and transmitted J1 overhead bytes J1 is the path layer trace byte SDH error section layer line layer path layer SDH error counters or SONET...

Page 154: ... 13 13 13 8 Primary Broadcast address 13 255 255 255 The Maximum Transmit Unit 1500 bytes ip fast forwarding incoming packets state is Enabled ip fast forwarding outgoing packets state is Enabled input packets 5 bytes 420 multicasts 0 output packets 5 bytes 420 multicasts 0 TTL invalid packet number 0 ICMP packet input number 5 Echo reply 5 Unreachable 0 Source quench 0 Routing redirect 0 Echo req...

Page 155: ...her order path overhead byte used to indicate the multiplex structure of virtual container VC frames and property of payload It is a hexadecimal number in the range 0 to FF j0 flag value Regeneration section trace message a section overhead byte used to test continuity of the connection between two interfaces at the section level If the sdh keyword is configured the flag value argument is a string...

Page 156: ...tings of a sending POS interface and the receiving POS interface causes alarms Related command display interface pos Example Set the SDH overhead byte J0 of POS1 0 interface Sysname system view Sysname interface pos 1 0 Sysname Pos1 0 flag j0 sdh ff frame format Syntax frame format sdh sonet undo frame format View POS interface view Parameter sdh Sets framing format to synchronous digital hierarch...

Page 157: ...ocol of the interface ppp Specifies PPP as the link layer protocol of the interface Description Use the link protocol command to set the link layer protocol of the interface By default PPP is used Example Specify HDLC as the link protocol of interface POS 1 0 Sysname system view Sysname interface pos 1 0 Sysname Pos1 0 link protocol hdlc loopback Syntax loopback local remote undo loopback View POS...

Page 158: ...of the POS interface Use the undo mtu command to restore the default The MTU setting of the POS interface can affect the assembly and fragmentation of IP packets on it In QoS the length of queues is limited If MTU on the interface is too small there is likelihood for a large packet to be fragmented into so many fragments that the queue cannot hold them and as such discard them To avoid this situat...

Page 159: ...rface view Parameter value Integer in the range 3 to 9 Description Use the threshold command to set the SD signal degrade threshold or SF signal fail threshold for a POS interface Use the undo threshold command to restore the default If you execute the threshold command with the value argument set to X the value of the threshold specified can be obtained using this expression 10e X By default SD t...

Page 160: ...160 CHAPTER 7 POS INTERFACE CONFIGURATION COMMANDS Example Set the SD threshold to 10e 4 for POS 1 0 Sysname system view Sysname interface pos 1 0 Sysname Pos1 0 threshold sd 4 ...

Page 161: ... port is enabled the other will be automatically disabled By default the electrical port is enabled Related command display port combo and shutdown Example Specify to enable the electrical port of Gigabit Ethernet 1 0 and use double twisted pair cable Sysname system view Sysname interface gigabitethernet 1 0 Sysname GigabitEthernet1 0 combo enable copper Specify to enable the optical port of Gigab...

Page 162: ...on begin Displays all the configuration information in the line that contains the specified string and all the lines after this line include Displays information that contains the specified string exclude Displays information that does not contain the specified string text Regular expression in the range of 1 to 256 characters excluding spaces Table 8 Special characters used in regular expressions...

Page 163: ...Interface Link Speed Duplex Link type PVID Eth4 0 DOWN auto auto access 1 Eth4 1 DOWN auto auto access 1 Eth4 2 DOWN auto auto access 1 Eth4 3 DOWN auto auto access 1 Eth4 4 DOWN auto auto access 1 Eth4 5 DOWN auto auto access 1 Star which matches the occurrences of the character to the left for zero or multiple times zo matches z and zoo Plus which matches one or multiple occurrences of the chara...

Page 164: ...ified interface and related information If neither interface type nor interface number is specified all interface information will be displayed Table 9 Description on the fields of the display brief interface command Field Description The brief information of interface s under route mode Brief information of interface s in route mode Interface Interface name Link Interface physical link state whic...

Page 165: ...nput rate 0 00 bytes sec 0 bits sec 0 00 packets sec Last 300 seconds output rate 0 00 bytes sec 0 bits sec 0 00 packets sec Input 0 packets 0 bytes 0 buffers 0 broadcasts 0 multicasts 0 pauses 0 errors 0 runts 0 giants 0 crc 0 align errors 0 overruns 0 dribbles 0 drops 0 no buffers Output 0 packets 0 bytes 0 buffers 0 broadcasts 0 multicasts 0 pauses 0 errors 0 underruns 0 collisions 0 deferred 0...

Page 166: ... input errors 0 runts 0 giants 0 throttles 0 CRC 0 frame overruns 0 aborts ignored parity errors Output total 1395522 packets 183608303 bytes 13 broadcasts 1273860 multicasts 0 pauses Output normal 1395522 packets bytes 13 broadcasts 1273860 multicasts 0 pauses Output 0 output errors underruns 1 buffer failures 0 aborts 0 deferred 0 collisions 0 late collisions 0 lost carrier no carrier Output que...

Page 167: ... link type Interface link type which could be access trunk and hybrid Tagged VLAN ID Identify the VLANs that need Tag markers Untagged VLAN ID Identify the VLANs that do not need Tag markers Last 300 seconds input Average input rate over the last 300 seconds among which packets sec indicates the average input rate in terms of the average number of the packets received per second bytes sec indicate...

Page 168: ... the duplex mode for an Ethernet interface to the default By default the duplex mode for an Ethernet interface is auto Related command speed Example Configure the interface Ethernet 1 0 to work in full duplex mode Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 duplex full flow control Syntax flow control undo flow control View Ethernet interface view Input total Input norma...

Page 169: ...1 0 flow control interface Syntax interface interface type interface number View System view Parameter interface type interface number Interface type and interface number n Interface is identified by slot number interface number for example Ethernet 1 0 can be represented as 1 0 For ease of user input interface type can be abbreviated so long as it does not cause any confusion for example interfac...

Page 170: ...ace loopback testing will work in a full duplex mode The interface will return to its original state upon completion of the loopback testing Example Configure to enable loopback testing on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 loopback internal port link mode Syntax port link mode bridge route undo port link mode View Ethernet interface view Parameter ...

Page 171: ...nterface Ethernet1 0 port link mode bridge return n Use the display this command to display the current configurations reset counters interface Syntax reset counters interface interface type interface number View User view Parameter interface type Interface type interface number Interface number Description Use the reset counters interface command to reset statistics for a specified interface To s...

Page 172: ...to shut down the relative interface to make the modification work Example Shut down the interface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 shutdown Turn on the interface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 undo shutdown speed Syntax speed 10 100 1000 auto undo speed View Ethernet interface view Parameter 10 ...

Page 173: ...n peer Ethernet interfaces Note that the following The Combo port does not support the speed command The speed 1000 command is only applicable to Gigabit Ethernet interface Related command duplex Example Configure data rate for the interface Ethernet 1 0 to 100 Mbps Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 speed 100 ...

Page 174: ...174 CHAPTER 8 GENERAL ETHERNET INTERFACE CONFIGURATION COMMANDS ...

Page 175: ...e the default broadcast storm suppression ratio By default all broadcast traffic is allowed to go through an Ethernet interface that is broadcast traffic is not suppressed If you execute this command in Ethernet interface view the configuration takes effect only on the current interface If you execute this command in port group view the configuration takes effect on all the ports in the port group...

Page 176: ...display port Syntax display port hybrid trunk View Any view Parameter hybrid Displays the current Hybrid port s trunk Displays the current Trunk port s Description Use the display port command to display information on the current ports of a specified type including port name default VLAN ID and the VLAN ID of VLANs that the ports can pass through Example Display the current Hybrid port s Sysname ...

Page 177: ...nual port group including its name and the Ethernet interfaces included If you provide the all keyword this command displays the details of all the manual port groups including their names and the Ethernet interfaces included If no argument or keyword is specified this command displays the names of all the existing manual port groups Examples Display the names of all the manual port groups Sysname...

Page 178: ...escription Use the flow interval command to configure the time interval for collecting interface statistics Use the undo flow interval command to restore the default interval Example Set the time interval for collecting interface statistics to 100 seconds Sysname system view Sysname flow interval 100 group member Syntax group member interface list undo group member interface list View Port group v...

Page 179: ...n control enable command to restore the default By default loopback detection for a Trunk port or Hybrid port is disabled When the loopback detection is enabled if a port has been detected with loopback it will be shutdown A Trap message will be sent to the terminal and the corresponding MAC address forwarding entries will be deleted When the loopback detection is disabled if a port has been detec...

Page 180: ...ack a Trunk message will be sent to the terminal They will be shutdown if the loopback testing function is enabled on them In addition a Trap message will be sent to the terminal and the corresponding MAC address forwarding entries will be deleted Related command loopback detection control enable c CAUTION Loopback detection on a given port is enabled only after the loopback detection enable comma...

Page 181: ...rface view Parameter None Description Use the loopback detection per vlan enable command to enable loopback detection in all VLANs with Trunk ports or Hybrid ports Use the undo loopback detection per vlan enable command to enable loopback detection in the default VLAN with Trunk ports or Hybrid ports By default loopback detection is only enabled in the default VLAN s with Trunk ports or Hybrid por...

Page 182: ...ombo port does not support this command Example Configure the interface Ethernet 1 0 to use cross over cable Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 mdi across multicast suppression Syntax multicast suppression ratio pps max pps undo multicast suppression View Ethernet interface view port group view Parameter ratio Maximal ratio of multicast traffic to the total tran...

Page 183: ...lowed on Ethernet 1 0 to 5952 PPS Sysname system view Sysname interface ethernet 1 0 Sysname GigabitEthernet1 0 multicast suppression pps 5952 port group Syntax port group manual port group name aggregation agg id undo port group manual port group name View System view Parameter manual port group name Specifies the name of a manual port group a string of 1 to 32 characters aggregation agg id Speci...

Page 184: ... unicast suppression ratio By default all unicast traffic is allowed to go through an Ethernet interface that is unicast traffic is not suppressed If you execute this command in Ethernet interface view the configuration takes effect only on the current interface If you execute this command in port group view the configuration takes effect on all ports in the port group Note that when unicast traff...

Page 185: ...otal cable length When the cable is not functioning properly the cable length in the test result represents the length from the current interface to the failed position n The optical interface of a Combo port does not support this command A link in the up state goes down and then up automatically if you execute this command on one of the Ethernet interfaces forming the link Example Enable the virt...

Page 186: ...186 CHAPTER 9 CONFIGURATION COMMANDS FOR ETHERNET INTERFACES IN BRIDGE MODE ...

Page 187: ...MTU value Use the undo mtu command to restore MTU value n Limited to the QoS queue length for example the default length of an FIFO queue is 75 too small an MTU will result in too many fragments which will be discarded from the QoS queue In this case you can increase MTU or QoS queue length properly In Ethernet interface view you can use qos fifo queue length to change the QoS queue length For det...

Page 188: ...lt suppression time By default Layer 3 Ethernet link layer state change suppression time is set to 10 seconds Peer Ethernet interfaces have the same suppression time If both sides set their suppression time to 0 the link layer state change suppression time is disabled n You can increase the polling interval to reduce negative effect on network traffic due to the network time lag or heavy congestio...

Page 189: ...machine interaction protocol Protocol mode In this mode the interface uses configured link layer protocol parameters to set up link with the remote end after its physical link is set up Description Use the async mode command to set the operating mode of the current interface Use the undo async mode command to restore the default By default an asynchronous serial interface operates in protocol mode...

Page 190: ...ous serial interfaces depends on the applied physical electric specifications For V 24 DTE DCE the baud rate available ranges from 1 200 bps to 64 000 bps For V 35 DCE DCE X 21 DTE DCE EIA TIA 449 DTE DCE and EIA 530 DTE DCE the baud rate available ranges from 1 200 bps to 4 096 000 bps c CAUTION Take the physical electric specifications of the cable into consideration when setting the baud rate f...

Page 191: ...k of a DTE device can be either the transmitting or receiving clock of the DCE device so is the transmitting clock Therefore four clock options are available for a DTE device See Figure 1 Figure 1 Select a clock for a synchronous serial interface In the figure TxClk represents transmitting clock and RxClk receiving clock The following table gives the four clock selection options In the table the c...

Page 192: ...ace view Parameter area name Area name which can be australia austria belgium brazil bulgaria canada china czechoslovakia denmark finland france germany greece hongkong hungary india ireland israel italy japan korea luxembourg malaysia mexico netherlands new zealand norway philippines poland portugal russia singapore southafrica spain sweden switzerland taiwan united kingdom and united states Desc...

Page 193: ... default By default 16 bit CRC is adopted These two commands are not available to sub serial interfaces and synchronous asynchronous serial interfaces operating as asynchronous interfaces Example Configure to adopt 32 bit CRC Sysname system view Sysname interface serial 0 0 0 Sysname Serial0 0 0 crc 32 detect Syntax 1 Asynchronous serial interface detect dsr dtr undo detect dsr dtr 2 Synchronous s...

Page 194: ... detects the DSR signal in addition to the external cable The interface is regarded up only when the detected DSR signal is valid Otherwise it is regarded down When determining whether a synchronous serial interface is up or down the system by default detects the DSR signal DCD signal and presence of cable connection Only when the three signals are all valid will the interface be regarded up If le...

Page 195: ...x idle mark undo idle mark View Synchronous serial interface view Parameter None Description Use the idle mark command to set the line idle code of the synchronous serial interface to 0xFF Use the undo idle mark command to restore the default that is 0x7E In most cases a synchronous serial interface uses 0x7E to identify the idle state of the line You may need to set the line idle code to 0xFF how...

Page 196: ...view Sysname interface serial 2 0 Sysname Serial1 0 invert receive clock invert transmit clock Syntax invert transmit clock undo invert transmit clock View Serial interface view Parameter None Description Use the invert transmit clock command to invert the transmit clock signal on the DTE side synchronous serial interface Use the undo invert transmit clock command to restore the default By default...

Page 197: ...UX interface view AM interface view USB interface view Parameter size Maximum transmission unit MTU to be set for a serial interface in the range 128 to 1 500 in bytes Description Use the mtu command to set the MTU for a serial interface Use the undo mtu command to restore the default By default the MTU of a serial interface is 1 500 bytes Due to the length of Qos queue a packet may be discarded i...

Page 198: ...ce By default synchronous asynchronous serial interfaces are operating in synchronous mode Example Set synchronous asynchronous serial interface 2 0 to operate in asynchronous mode Sysname system view Sysname interface serial 2 0 Sysname Serial1 0 physical mode async phy mru Syntax phy mru size undo phy mru View Asynchronous serial interface view AUX interface view Parameter size Maximum receive u...

Page 199: ...ommand to restore the default By default RTS signal reverse is disabled This command is used in hardware flow control where the remote is not allowed to send data when the local end is doing that Example Reverse RTS signal Sysname system view Sysname interface serial 1 0 Sysname Serial1 0 reverse rts timer hold Syntax timer hold seconds undo timer hold View Serial interface view AUX interface view...

Page 200: ...g as DTE the serial interface determines its baud rate through negotiation with the DCE side The virtualbaudrate command however allows you to configure DTE side baudrate manually but the configured value must be the same as the one set at the DCE side After executing the virtualbaudrate command you need to shut down and then bring up the interface using the shutdown command and the undo shutdown ...

Page 201: ...erface E1 2 0 to short Sysname system view Sysname controller e1 2 0 Sysname E1 2 0 cable short channel set CE1 PRI interface view Syntax channel set set number timeslot list list undo channel set set number View CE1 PRI interface view Parameter set number The number of the channel set formed by bundling timeslots on the interface in the range 0 to 30 timeslot list list Specifies timeslots to be b...

Page 202: ...e and set number is the number of the channel set Only one timeslot bundling mode can be supported on a CE1 PRI interface at a time In other words this command cannot be used together with the pri set command Example Bundle timeslots 1 2 5 10 through 15 and 18 on CE1 PRI interface E1 2 0 into channel set 0 Sysname system view Sysname controller e1 2 0 Sysname E1 2 0 channel set 0 timeslot list 1 2...

Page 203: ... bipolar 3 HDB3 line code format Description Use the code command to set the line code format for the CE1 PRI interface Use the undo code command to restore the default that is HDB3 Keep the line code format of the interface in consistency with that used by the remote device Example Set the line code format of interface E1 2 0 to AMI Sysname system view Sysname controller e1 2 0 Sysname E1 2 0 cod...

Page 204: ... that is 16 bit CRC Example Apply 32 bit CRC to a serial interface formed on interface CE1 interface 2 0 in unchannelized mode Sysname system view Sysname controller e1 2 0 Sysname E1 2 0 using e1 Sysname E1 2 0 quit Sysname interface serial 2 0 0 Sysname Serial2 0 0 crc 32 detect ais Syntax detect ais undo detect ais View CE1 interface view PRI interface view Parameter None Description Use the de...

Page 205: ... framed Cable type is 75 Ohm unbalanced Frame format is no crc4 Line code is hdb3 Source clock is slave Idle code is 7e Itf type is 7e Itf number is 4 Loop back is not set Alarm State Receiver alarm state is None Historical Statistics Last clearing of counters Never Data in current interval 150 seconds elapsed 0 Loss Frame Alignment Secs 0 Framing Error Secs 0 CRC Error Secs 0 Alarm Indication Sec...

Page 206: ... 600 seconds and the error packet ratio threshold is 20 The setting of renew timer must be at least four times that of the error packet detect timer If the total number of the packets received during detect timer is less than 100 error packets are not counted Line Code Line code which can be AMI or HDB3 Idle Code Idle code which can be 0x7E or 0xFF Itf type Iterframe filling tag which can be 0x7E ...

Page 207: ...and to disable this function By default error packets diffusion restraint is enabled n The support of these two commands varies with device model These two commands apply to CT1 PRI interfaces and CE1 PRI interfaces only Example Enable error packets diffusion restraint Sysname system view Sysname error diffusion restraint enable error diffusion restraint restart channel Syntax error diffusion rest...

Page 208: ...4 Description Use the frame format command to set the framing format on the CE1 interface Use the undo frame format command to restore the default that is no CRC4 A CE1 PRI interface in CE1 mode supports both CRC4 and no CRC4 framing formats where CRC4 supports four bit CRC on physical frames while no CRC4 does not Example Set the framing format on interface E1 2 0 to CRC4 Sysname system view Sysn...

Page 209: ...o 0xFF by specifying the ff keyword Description Use the itf command to set the type of and the number of interframe filling tags on the CE1 PRI interface Two types of interframe filling tag are available 0x7E and 0xFF Use the undo itf command to restore the default By default interframe filling tag is 0x7E and the number of interframe filling tags is 4 Interframe filling tags are sent when no serv...

Page 210: ...PRI interface to form a serial interface and encapsulate it with PPP After you enable loopback on this serial interface it is normal that the state of the link layer protocol is reported down Example Set interface E1 2 0 in internal loopback mode Sysname system view Sysname controller e1 2 0 Sysname E1 2 0 loopback local pri set CE1 PRI interface view Syntax pri set timeslot list list undo pri set...

Page 211: ...he CE1 PRI interface where the serial interface is created Because a channel set and a PRI set cannot coexist on a CE1 PRI interface your PRI set creation attempt will fail if the channel set command is configured Example Bundle timeslots 1 2 and 8 through 12 into a PRI set on CE1 PRI interface E1 2 0 Sysname system view Sysname controller e1 2 0 Sysname E1 2 0 pri set timeslot list 1 2 8 12 reset...

Page 212: ... work in either E1 mode non channelized mode or CE1 PRI mode channelized mode In E1 mode the interface equals a 2 Mbps interface without timeslot division Its logical features are the same like those of a synchronous serial interface In CE1 PRI mode it is physically divided into 32 timeslots numbered 0 through 31 where timeslot 0 is used for FSC This interface can work as either a CE1 interface or...

Page 213: ... the loss of frame align LFA alarm threshold which can be level 1 level 2 level 3 and level 4 The level 1 keyword specifies to generate an LFA alarm when two of four frame alignment bits are lost The level 2 keyword specifies to generate an LFA alarm when two of five frame alignment bits are lost The level 3 keyword specifies to generate an LFA alarm when two of six frame alignment bits are lost T...

Page 214: ...BERT pattern which could be 2 15 or 2 20 2 15 Two to the fifteenth power length of transmitted BERT pattern in bits 2 20 Two to the twentieth power length of transmitted BERT pattern in bits time minutes Sets the duration in minutes of a BERT test The minutes argument ranges from 1 to 1 440 unframed Sets the test pattern to cover the overhead bits of the frame Description Use the bert command to s...

Page 215: ... 655 feet The options for this parameter include 133ft 266ft 399ft 533ft and 655ft The length parameter is selected depending on the actual transmission distance Description Use the cable command to set the cable attenuation and length on the CT1 PRI interface Use the undo cable command to restore the default that is long 0db You may use this command to adapt signal waveform to different transmiss...

Page 216: ...T1 PRI interface is physically divided into 24 timeslots numbered 1 through 24 In actual applications all the timeslots can be bundled into multiple channel sets For each channel set the system automatically creates a serial interface logically equivalent to a synchronous serial interface The serial interface is named in the form of serial interface number set number where interface number starts ...

Page 217: ...I line code format b8zs Adopts bipolar with 8 zero substitution B8ZS line code format Description Use the code command to set the line code format for the CT1 PRI interface Use the undo code command to restore the default that is B8ZS Keep the line code format of the interface in consistency with the one used on the remote device Example Set the line code format of the interface T1 2 0 to AMI Sysn...

Page 218: ...t CRC Example Apply 32 bit CRC to a serial interface formed on interface CT1 interface 2 0 Sysname system view Sysname controller t1 2 0 Sysname T1 2 0 channel set 1 timeslot list 2 6 Sysname T1 2 0 quit Sysname interface serial 2 0 1 Sysname Serial2 0 1 crc 32 data coding CT1 PRI interface view Syntax data coding inverted normal undo data coding View CT1 PRI interface view Parameter inverted Enab...

Page 219: ...ystem view Sysname controller t1 2 0 Sysname T1 2 0 data coding inverted display controller t1 Syntax display controller t1 interface number View Any view Parameter interface number Interface number In conjunction with the t1 keyword it specifies a CT1 PRI interface Description Use the display controller t1 command to display information about one specified or all CT1 PRI interfaces This command d...

Page 220: ...olations 0 Ais Alarm Secs 901 Los Alarm Secs 22 Slip Secs 901 Fr Loss Secs 0 Line Err Secs 0 Degraded Mins 0 Errored Secs 0 Bursty Err Secs 0 Severely Err Secs 901 Unavail Secs Data in Interval 2 0 Line Code Violations 0 Path Code Violations 0 Ais Alarm Secs 900 Los Alarm Secs 23 Slip Secs 900 Fr Loss Secs 0 Line Err Secs 0 Degraded Mins 0 Errored Secs 0 Bursty Err Secs 0 Severely Err Secs 900 Una...

Page 221: ...umber of detected synchronizations Time 0 minute s Time past 0 minute s The duration of the BERT test and the time that has elapsed Bit Errors since test started Number of bit errors received since the start of the BERT test Bits Received since test started Number of bits received since the start of the BERT test Bit Errors since latest sync Number of bit errors received since the last synchroniza...

Page 222: ...tatistical items are the same as those provided by the statistics spanning the current interval Data in Interval 2 0 Line Code Violations 0 Path Code Violations 0 Ais Alarm Secs 900 Los Alarm Secs 23 Slip Secs 900 Fr Loss Secs 0 Line Err Secs 0 Degraded Mins 0 Errored Secs 0 Bursty Err Secs 0 Severely Err Secs 900 Unavail Secs Statistics spanning the second interval The statistical items are the s...

Page 223: ... CT1 PRI interfaces and CE1 PRI interfaces only Example Set the error packet detect timer to 100 seconds the renew timer to 2400 seconds and the error packet ratio threshold to 15 Sysname system view Sysname error diffusion restraint config 100 2400 15 error diffusion restraint enable Syntax error diffusion restraint enable undo error diffusion restraint enable View System view Parameter None Desc...

Page 224: ...e model This command applies to CT1 PRI interfaces and CE1 PRI interfaces only Example Bring up channel Serial 2 0 0 assuming that the channel is shut down by the error packet diffusion restraint function Sysname system view Sysname error diffusion restraint restart channel serial 2 0 0 fdl Syntax fdl ansi att none undo fdl View CT1 PRI interface view Parameter ansi Implements ANSI T1 403 FDL att ...

Page 225: ...ltiple frames can share the same FSC and signaling information so that more significant bits are available for transmitting user data The use of ESF allows you to test the system without affecting the ongoing service Example Set the framing format of interface T1 2 0 to SF Sysname system view Sysname controller t1 2 0 Sysname T1 2 0 frame format sf idlecode CT1 PRI interface view Syntax idlecode 7...

Page 226: ... ff keyword On CT1 PRI interfaces the default interframe filling tag is 0x7E Description Use the itf command to set the type and the number of interframe filling tags on the CT1 PRI interface Two types of interframe filling tag are available 0x7E and 0xFF Use the undo itf command to restore the default By default the interframe filling tag is 0x7E the number of interframe filling tags is 4 Interfr...

Page 227: ...PPP After you enable loopback on this serial interface it is normal that the state of the link layer protocol is reported down Example Enabled remote loopback on interface T1 2 0 Sysname system view Sysname controller t1 2 0 Sysname T1 2 0 loopback remote pri set CT1 PRI interface view Syntax pri set timeslot list list undo pri set View CT1 PRI interface view Parameter list Specifies timeslots to ...

Page 228: ...where number is the number of the CT1 PRI interface on which the serial interface is created Because a channel set and a PRI set cannot coexist on a CT1 PRI interface your PRI set creation attempt will fail if the channel set command is configured Example Bundle timeslots 1 2 and 8 through 12 into a PRI set on CT1 PRI interface T1 2 0 Sysname system view Sysname controller t1 2 0 Sysname T1 2 0 pr...

Page 229: ...band llb down Sends in band LLB deactivation request code compliant with the ANSI or AT T implementation to remove loopback inband llb up Sends in band line loopback LLB activation request code compliant with the ANSI and AT T implementation to start remote loopback Description Use the sendloopcode command to send remote loopback control code By default no remote loopback control code is sent You ...

Page 230: ...COMMANDS The sending of remote loopback control code lasts five minutes without affecting the operation of other interfaces Example Send in band LLB activation request code Sysname system view Sysname controller t1 2 0 Sysname T1 2 0 sendloopcode inband llb up ...

Page 231: ...stem view Sysname interface serial 2 0 Sysname Serial2 0 crc 32 display fe1 Syntax display fe1 serial interface number View Any view Parameter serial interface number Specifies a serial interface If no interface is specified information on all the E1 F interfaces is displayed Description Use the display fe1 serial command to display the configuration and state information about the specified or al...

Page 232: ...pports long haul cables short Supports short haul cables Description Use the cable command to set the cable length for an E1 F interface Use the undo cable command to restore the default By default the long keyword applies Example Set the cable length type on E1 F interface Serial 2 0 to short Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 fe1 cable short fe1 clock Syntax fe1 c...

Page 233: ...source on E1 F interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 fe1 clock master fe1 code Syntax fe1 code ami hdb3 undo fe1 code View E1 F interface view Parameter ami Adopts AMI line code format hdb3 Adopts HDB3 line code format Description Use the fe1 code command to set the line code format for the E1 F interface Use the undo fe1 code command to restore th...

Page 234: ...o fe1 frame format View E1 F interface view Parameter crc4 Sets framing format to CRC4 no crc4 Sets framing format to no CRC4 Description Use the fe1 frame format command to configure the framing format of the E1 F interface Use the undo fe1 frame format command to restore the default that is no CRC4 An E1 F interface in framed mode supports both CRC4 and no CRC4 framing formats where CRC4 support...

Page 235: ...ew Sysname interface serial 2 0 Sysname Serial2 0 fe1 loopback local fe1 timeslot list Syntax fe1 timeslot list list undo fe1 timeslot list View E1 F interface view Parameter list Specifies timeslots to be bundled They are numbered 1 through 31 You may specify a single timeslot by specifying its number a range of timeslots by specifying a range in the form of number1 number2 or several discrete ti...

Page 236: ...18 on E1 F interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 fe1 timeslot list 1 2 5 10 15 18 fe1 idlecode Syntax fe1 idlecode 7e ff undo fe1 idlecode View E1 F interface view Parameter 7e Sets the line idle code to 0x7E ff Sets the line idle code to 0xFF Description Use the fe1 idlecode command to set the line idle code on the E1 F interface Two types of line...

Page 237: ... of interframe filling tags is 4 Interframe filling tags are sent when no service data is sent on the timeslots bundled into the logical channel on the E1 F interface Example Set the type of interframe filling tag to 0xFF on E1 F interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 fe1 itf type ff Set the number of interframe filling tags to five on E1 F interfac...

Page 238: ...ogically equivalent to a synchronous serial interface When it works in framed mode it is physically divided into 32 timeslots numbered 0 through 31 where timeslot 0 is used for synchronization Related command fe1 timeslot list Example Set E1 F interface Serial 2 0 to work in unframed mode Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 fe1 unframed ...

Page 239: ...ame system view Sysname interface serial 2 0 Sysname Serial2 0 crc 32 display ft1 Syntax display ft1 serial interface number View Any view Parameter serial interface number Specifies a serial interface If no interface is specified the information on all the T1 F interfaces is displayed Description Use the display ft1 serial command to display the configuration and state information about a T1 F in...

Page 240: ...al Statistics Last clearing of counters Never Data in current interval 285 seconds elapsed 0 Line Code Violations 0 Path Code Violations 0 Ais Alarm Secs 286 Los Alarm Secs 7 Slip Secs 286 Fr Loss Secs 0 Line Err Secs 0 Degraded Mins 0 Errored Secs 0 Bursty Err Secs 0 Severely Err Secs 286 Unavail Secs Data in Interval 1 0 Line Code Violations 0 Path Code Violations 0 Ais Alarm Secs 901 Los Alarm ...

Page 241: ...plb up 0 times fdl ansi plb down 0 times History of loopback code sending to the far end including the number of transmissions for each type of code and the type of the last sent code See ft1 sendloopcode on page 251 BERT state stopped not completed BERT state completed stopped administratively stopped or running Test pattern 2 15 Status Not Sync Sync Detected 0 Test pattern in use 2 15 in this sa...

Page 242: ...s Alarm Secs 901 Los Alarm Secs 22 Slip Secs 901 Fr Loss Secs 0 Line Err Secs 0 Degraded Mins 0 Errored Secs 0 Bursty Err Secs 0 Severely Err Secs 901 Unavail Secs Statistics spanning the first interval The statistical items are the same as those provided by the statistics spanning the current interval Data in Interval 2 0 Line Code Violations 0 Path Code Violations 0 Ais Alarm Secs 900 Los Alarm ...

Page 243: ...where on the line for example from the far end interface by placing the interface in a far end loopback You may view the state and result of the BERT test with the display ft1 serial command Example Run a 10 minute 2 20 BERT test on T1 F interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 ft1 bert pattern 2 20 time 10 ft1 cable Syntax ft1 cable long decibel shor...

Page 244: ...ure the clock source for the T1 F interface Use the undo ft1 clock command to restore the default that is line clock When the T1 F interface is working as DCE choose the internal clock for it When it is working as DTE choose the line clock for it When the T1 F interfaces on two routers are directly connected one interface must work in master clock mode to provide the clock source while the other i...

Page 245: ...ding normal command to disable user data inversion for a T1 F interface Use the ft1 data coding inverted command to enable user data inversion for a T1 F interface Use the undo ft1 data coding command to restore the default By default data inversion is disabled To prevent 7e in valid data from being taken for stuffing characters HDLC inserts a zero after every five ones in the data stream Then HDL...

Page 246: ...s overhead channel within the ESF format for transmitting performance statistics or loopback code You can however change the setting depending on the setting at the far end Example Implement ANSI T1 403 FDL on T1 F interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 ft1 fdl ansi ft1 frame format Syntax ft1 frame format esf sf undo ft1 frame format View T1 F inte...

Page 247: ...e to 0x7E ff Sets the line idle code to 0xFF Description Use the ft1 idlecode command to set the line idle code on the T1 F interface Two types of line idle code are available 0x7E and 0xFF Use the undo ft1 idlecode command to restore the default that is 0x7E The line idle code is sent in the timeslots that are not bundled into the logical channels on the interface Example Set the line idle code t...

Page 248: ...pe ff command if both the ft1 code ami command and the ft1 data coding inverted command are configured so that the T1 F interface can function normally Example Set the interframe filling tag to 0xFF on T1 F interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 ft1 itf type ff Set the number of interframe filling tags to five on T1 F interface Serial 2 0 Sysname sy...

Page 249: ...re bundled into an N 56 kbps bundle If 64k the default applies timeslots are bundled into an N 64 kbps bundle Description Use the ft1 timeslot list command to bundle timeslots on a T1 F interface Use the undo ft1 timeslot list command to restore the default By default all the timeslots on the T1 F interface are bundled to form a 1536 kbps interface Timeslot bundling results in interface rate chang...

Page 250: ...ord specifies to generate an LFA alarm when two of five frame alignment bits are lost The level 3 keyword specifies to generate an LFA alarm when two of six frame alignment bits are lost The level 4 keyword applies only to ESF frames It specifies to generate an LFA alarm when errors are detected in four consecutive ESF frames By default level 1 LFA alarm threshold applies los Sets a loss of signal...

Page 251: ...ck fdl ansi plb up Sends ANSI compliant payload loopback PLB activation request code in the FDL to start remote loopback fdl att plb down Sends AT T complaint PLB deactivation request code in the FDL to remove loopback fdl att plb up Sends AT T complaint PLB activation request code in the FDL to start remote loopback inband llb down Sends in band LLB deactivation request code compliant with the AN...

Page 252: ...ndwidth slots 1 through 24 In ESF framing both LLB code and PLB code are sent received in the FDL in ESF frames You can use this command only when the far end CT1 PRI interface can automatically detect loopback request code from the network Example Send in band LLB activation request code Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 ft1 sendloopcode inband llb up ...

Page 253: ...ramed Sets the overhead bits of the padding frames for BERT test Description Use the bert command to enable BERT test Use the undo bert command to disable BERT test Multiple BERT test modes exist as defined in ITU O 151 ITU O 153 and ANSI T1 403 1999 Currently 2 7 2 11 2 15 and QRSS are available on a CE3 interface To perform a BERT test the local end transmits test data stream which is returned a...

Page 254: ...to restore the default that is line clock The clock source is selected depending on the connected remote device If connected to a transmission device the local end uses the line clock If connected to a CE3 interface on another router the local end can use whichever clock so long as it is different from the one adopted at the remote end Example Use the internal clock as the clock source on CE3 inte...

Page 255: ...ramed using CT3 interface view Example Apply 32 bit CRC to a serial interface formed on interface E3 2 0 in unchannelized mode Sysname system view Sysname controller e3 2 0 Sysname E3 2 0 using e3 Sysname E3 2 0 quit Sysname interface serial 2 0 0 0 Sysname Serial2 0 0 0 crc 32 Apply 16 bit CRC to a serial interface formed on interface E3 2 0 in unchannelized mode Sysname system view Sysname contr...

Page 256: ...k not set E3 0 CE1 2 is up Frame format NO CRC4 clock slave loopback local E3 0 CE1 3 is up Frame format NO CRC4 clock slave loopback remote E3 0 CE1 4 is up Frame format CRC4 clock slave loopback not set E3 0 CE1 5 is up Frame format NO CRC4 clock slave loopback not set E3 0 CE1 6 is up Frame format NO CRC4 clock slave loopback not set E3 0 CE1 7 is up Frame format NO CRC4 clock slave loopback no...

Page 257: ...ng frames for BERT test Description Use the e1 bert command to enable BERT test for an E1 channel created on a CE3 interface Use the undo e1 bert command to disable BERT test Multiple BERT test modes exist as defined in ITU O 151 ITU O 153 and ANSI T1 403 1999 Currently 2 11 2 15 2 20 2 23 and QRSS are available on E1 channels created on CE3 interfaces To perform a BERT test the local end transmit...

Page 258: ...and to bundle timeslots on an E1 line Use the undo e1 channel set command to remove a timeslot bundle By default no timeslots are bundled into channel sets A CE3 interface can be channelized into 64 kbps lines and the timeslots on each E1 line can be bundled into up to 31 channels When an E1 line operates in framed CE1 mode you can bundle timeslots on it into channel sets For each channel set the ...

Page 259: ...nterface E3 2 0 Sysname system view Sysname controller e3 2 0 Sysname E3 2 0 e1 1 set clock slave e1 set frame format Syntax e1 line number set frame format crc4 no crc4 undo e1 line number set frame format View CE3 interface view Parameter line number E1 line number in the range 1 to 16 crc4 Sets the frame format to CRC4 no crc4 Sets the frame format to no CRC4 Description Use the e1 set frame fo...

Page 260: ...t an E1 line in a loopback mode on the E3 interface Use the undo e1 set loopback command to restore the default By default loopback is disabled on E1 lines If an E1 line encapsulated with PPP is in loopback mode it is normal that the state of the link layer protocol is reported down Example Set the first E1 line on interface E3 2 0 in internal loopback mode Sysname system view Sysname controller e...

Page 261: ... the range 1 to 16 Description Use the e1 unframed command to set an E1 line on the CE3 interface to work in unframed mode E1 mode Use the undo e1 unframed command to restore the default By default an E1 line operates in framed mode CE1 mode An E1 line in unframed mode does not contain the frame control information it cannot be divided into timeslots The system automatically creates a serial inter...

Page 262: ...ting varies with vendors You can use the fe3 command to make the device to be compatible with devices of other vendors operating in specific FE3 DSU modes Note that These two commands are only applicable to CE3 boards that support FE3 These two commands are only available in E3 mode As for the fe3 subrate command the actual subrate usually is not exactly the one set by the command That is after yo...

Page 263: ...terface Loopback is intended for test use Disable it otherwise If a CE3 interface encapsulated with PPP is placed in a loopback it is normal that the state of the link layer protocol is reported down Example Enable internal loopback on interface E3 2 0 Sysname system view Sysname controller e3 2 0 Sysname E3 2 0 loopback local national bit Syntax national bit 0 1 undo national bit View CE3 interfa...

Page 264: ...zed mode Description Use the using command to configure the operating mode of the CE3 interface Use the undo using command to restore the default that is channelized mode Only when the CE3 interface is working in channelized mode can you configure E1 lines When the CE3 interface is working in unchannelized mode the system automatically creates a serial interface numbered serial number 0 0 for it T...

Page 265: ...signal detection sending setting At the startup of your device periodical alarm signal detection is enabled on the CT3 interface When detecting LOS LOF or AIS signals the interface sends RAI signals to its peer Alarm state report for the interface is real time you may view that by performing the display controller t3 command The supported alarm signals LOS LOF AIS RAI FEBE and idle are ANSI T1 107...

Page 266: ...this pattern the presence of 14 consecutive zeros is not allowed time number Sets the duration of a BERT test in the range 1 to 1440 minutes unframed Sets the test pattern to cover the overhead bits of the frame Description Use the bert command to start a BERT test on the CT3 interface Use the undo bert command to stop the BERT test running on the CT3 interface ITU O 151 ITU O 153 and ANSI T1 403 ...

Page 267: ...ple Set the cable length to 50 feet 15 2 meters on interface T3 2 0 Sysname system view Sysname interface t3 2 0 Sysname T3 2 0 cable 50 clock CT3 interface view Syntax clock master slave undo clock View CT3 interface view Parameter master Adopts the internal clock as the clock source slave Adopts the line clock as the clock source Description Use the clock command to configure clock source for th...

Page 268: ...ler t3 Example Enter the view of interface T3 2 0 Sysname system view Sysname controller t3 2 0 Sysname T3 2 0 crc Syntax crc 16 32 none undo crc View Synchronous serial interface view Parameter 16 Adopts 16 bit CRC 32 Adopts 32 bit CRC none Adopts no CRC Description Use the crc command to configure CRC mode for the serial interface formed on CT3 interfaces Use the undo crc command to restore the ...

Page 269: ...n conjunction with the t3 keyword it specifies a CT3 interface Description Use the display controller t3 command to display state information about one specified or all CT3 interfaces In addition to the state information about the CT3 interface the command displays information about each T1 line on the CT3 interface if the interface is working in CT3 mode Example Display information about interfac...

Page 270: ...using inband signal last sent BERT state stopped not completed Test pattern 2 11 Status Not Sync Sync Detected 0 Time 0 minute s Time past 0 minute s Bit errors since test started 0 bits Bits received since test started 0 Kbits Bit errors since latest sync 0 bits Bits received since latest sync 0 Kbits Table 21 Description on the fields of the display controller t3 command Field Description T3 2 0...

Page 271: ...ctivate Periodical detection is enabled no code received now Periodical detection of FEAC is enabled This is the default applied at the startup of the router No FEAC signal is received now DS3 Line Loop Back Deactivate last received The FEAC signal received last time is DS3 Line Loop Back Deactivate BERT state stopped not completed BERT state completed stopped not completed or running Test pattern...

Page 272: ...rmation about the T1 line Framing format ESF or SF Clock source slave for the line clock and master for the internal clock Loopback Local remote payload or not set FDL Performance Report is disabled Transmission of PPR in the FDL is disabled You may enable that with the t1 set fdl ansi command Transmitter is sending RAI The transmitter of the T1 line is sending RAI signals When the T1 line receive...

Page 273: ...o remove the current FEAC settings FEAC is a channel formed by using the third C bit in the first subframe in C bit framing It is used to transmit alarm state signals for line test purpose or to transmit loopback control code for activating or deactivating far end loopback during a loopback test According to ANSI T1 107a the frame format used by FEAC channels is bit oriented protocol BOP At the st...

Page 274: ...3 2 0 Sysname T3 2 0 feac generate loopback ds3 line frame format CT3 interface view Syntax frame format c bit m23 undo frame format View CT3 interface view Parameter c bit Sets the framing format to C bit m23 Sets the framing format to m23 Description Use the frame format command to configure the framing format used by the CT3 interface Use the undo frame format command to restore the default tha...

Page 275: ...configure a CT3 interface to operate in the FT3 mode and set the DSU mode or the subrate Use the undo ft3 command to restore the default By default DSU mode 0 the Digital Link mode is adopted and the subrate is 44210 kbps FT3 Fractional T3 or Subrate T3 mode is a non standard E3 application mode In this mode the subrate level setting varies with vendors You can use the ft3 command to make the devi...

Page 276: ...o configure the loopback mode for a CT3 interface Use the undo loopback command to disable loopback By default loopback is disabled on CT3 interfaces Loopback is intended for test use Disable it otherwise If a CT3 interface encapsulated with PPP is placed in a loopback it is normal that the state of the link layer protocol is reported down Example Enable internal loopback on interface T3 2 0 Sysna...

Page 277: ...umber a string of 1 to 38 characters The default generator number is line generate Sends specified information with MDL messages which can be path idle signal and or test signal regularly Description Use the mdl command to configure MDL message detection sending on the CT3 interface Use the undo mdl command to remove the MDL settings Use the undo mdl detect command to disable the CT3 interface to ...

Page 278: ...and to enable the specified T1 line on the CT3 interface to detect send alarm signals Use the undo t1 alarm command to remove the alarm signal detection sending setting At the startup of the router periodical alarm signal detection is enabled on all T1 lines on the CT3 interface When a T1 line detects LOS LOF or AIS signals it sends RAI signals to its peer Alarm state report for the interface is r...

Page 279: ...tieth power length of the transmitted BERT pattern in bits 2 23 Two to the twenty third power length of the transmitted BERT pattern in bits qrss Two to the twentieth power length of the transmitted BERT pattern in bits In this pattern the presence of 14 or more consecutive zeros is not allowed time number Sets the duration of a BERT test in the range of 1 to 1440 minutes unframed Sets the test pa...

Page 280: ...ges from 0 to 23 timeslot list list Specifies timeslots to be bundled The list argument is timeslot numbers in the range of 1 to 24 You may specify a single timeslot by specifying a number a range of timeslots by specifying a range in the form of number1 number2 or several discrete timeslots by specifying number1 number2 number3 speed 56k 64k Speed of the timeslot bundle the channel set in kbps If...

Page 281: ...k inband line up Sends in band LLB activation request code compliant with the ANSI and AT T implementation to start remote loopback Description Use the t1 sendloopcode command to set the loopback mode of the specified far end T1 line Use the undo t1 sendloopcode command to remove the corresponding setting Loopback is an effective way of diagnosis You may place a far end device into loopback mode e...

Page 282: ...e undo t1 set clock command to restore the default that is line clock When a CT3 interface is working in channelized mode its T1 lines may use separate clocks Example Use the internal clock as the clock source on the first T1 line on interface T3 2 0 Sysname system view Sysname interface t3 2 0 Sysname T3 2 0 t1 1 set clock slave t1 set frame format Syntax t1 line number set frame format esf sf un...

Page 283: ...ack mode remote Sets the T1 line in external loopback mode remote Sets the T1 line in payload loopback mode Description Use the t1 set loopback command to set the loopback mode of a T1 line on the T3 interface Use the undo t1 set loopback command to disable the T1 line to loop back By default loopback is disabled on T1 lines Loopback is intended for test use Disable it otherwise If a T1 line encap...

Page 284: ...eriodical performance report PPR statistics or loopback code According to ANSI T1 403 the format of PPR is LAPD and the format of loopback code is BOP The t1 set fdl command only starts PPR transmission It cannot enable loopback code transmission or detection These two commands only apply to channelized T1 lines with their T1 frame format being ESF Example Set the FDL to be ANSI T1 403 compliant f...

Page 285: ...k state or mode local remote payload or not set FDL Performance Report is disabled Transmission of PPR in the FDL is disabled You may enable that with the t1 set fdl ansi command Transmitter is sending RAI The transmitter of the T1 line is sending RAI signals When the T1 line receives LOS LOF or AIS signals it sends RAI signals Receiver alarm state The type of alarm signal that the T1 line can rec...

Page 286: ... 0 t1 1 shutdown t1 unframed Syntax t1 line number unframed undo t1 line number unframed View CT3 interface view Parameter line number T1 line number in the range 1 to 28 Description Use the t1 unframed command to set a T1 line on the CT3 interface to work in unframed mode T1 mode Use the undo t1 unframed command to set the T1 line on the CT3 interface to work in framed mode CT1 mode By default T1...

Page 287: ...e undo using command to restore the default that is channelized mode You can configure T1 lines on CT3 interfaces operating in channelized mode only When a CT3 interface operates in unchannelized mode the system automatically creates a serial interface numbered serial number 0 0 for it This interface operates at 44 736 Mbps and is logically equivalent to a synchronous serial interface on which you...

Page 288: ...288 CHAPTER 17 FUNDAMENTAL CT3 INTERFACE CONFIGURATION COMMANDS ...

Page 289: ...oth channels on the ISDN BRI interface in external loopback This can send data from a line back to the line Use the undo loopback command to restore the default By default loopback is disabled on ISDN BRI interfaces c CAUTION The modules with loopback supported ISDN interfaces include 4BS MIM and 1BS1BU2BS2BU SIC In addition loopback is also supported by the fixed ISDN interfaces on your router if...

Page 290: ...290 CHAPTER 18 ISDN BRI INTERFACE CONFIGURATION COMMANDS ...

Page 291: ...oup of predefined parameters that can be used for ATM interface or PVC Related command atm class Example Create an ATM class named main and enter ATM class view Sysname system view Sysname atm class main Sysname atm class main atm class Syntax atm class atm class name undo atm class View ATM interface view PVC view Parameter atm class name Name of ATM class a string of 1 to 16 characters Descripti...

Page 292: ...wn otherwise goes up when the physical interface is up and a PVC is configured on the sub interface Use the undo atm link check command to restore the default By default the protocol of the ATM P2P sub interface goes up or comes down depending on whether the physical interface is up or down This command applies only to ATM P2P sub interfaces Example Enable the protocol state of ATM P2P sub interfa...

Page 293: ...to adopt the signal of the internal transmission clock Sysname system view Sysname interface atm 1 0 Sysname Atm1 0 clock master display atm class Syntax display atm class atm class name View Any view Parameter atm class name ATM class name a string of 1 to 16 characters Description Use the display atm class command to display the information about an ATM class Note that If you provide the atm cla...

Page 294: ...m VCs 1024 PVCs 5 MAPs 1 input pkts 11603 input bytes 426476 input pkt errors 37092 output pkts 14053 output bytes 519106 output pkt errors 0 Main interface Information PVCs 4 MAPs 1 input pkts 11603 input bytes 426476 input pkt errors 19210 output pkts 14053 output bytes 519106 output pkt errors 0 ATM interface Atm4 0 1 point to point State UP Sub interface Information PVCs 1 MAPs 0 input pkts 0 ...

Page 295: ...iew the map information on an ATM interface Note that Without an interface specified the system displays the map information for all ATM interfaces Without specifying the PVC name or the VPI VCI value pair the system displays the map information of all PVCs on the specified ATM interface Example Display map information for all ATM interfaces Sysname display atm map info Atm1 0 PVC 1 32 PPP Virtual...

Page 296: ...nge refer to Table 28 Description Use the display atm pvc group command to view the information about PVC Group Note that If no interface is specified the system displays PVC Group information on all ATM interfaces If the PVC name or the VPI VCI value pair is not specified the system displays information of all PVC Groups on the specified ATM interface Example Display the information about PVC Gro...

Page 297: ...ommand to view the information about PVC Note that Without an interface specified the system displays PVC information on all ATM interfaces Without a PVC name or a VPI VCI value pair specified the system displays all the PVC information on the specified ATM interface Example Display the PVC information on all ATM interfaces Sysname display atm pvc info VPI VCI STATE PVC NAME INDEX ENCAP PROT INTER...

Page 298: ...p encapsulation supports InARP If InARP is enabled you need to disable it before change AAL5 encapsulation to aal5mux or aal5nlpid An ATM PVC can carry multiple protocols simultaneously but certain types of encapsulations may not support some applications one or more of IPoA IPoEoA PPPoA and PPPoEoA When such cases occur the system gives a prompt Example Specify the AAL5 encapsulation of PVC 1 32 ...

Page 299: ... is p2mp n Two types of connections are available on ATM sub interface p2mp and p2p In p2mp connection you can create multiple PVCs on the sub interface In p2p connection you can create just one PVC on the sub interface Example Enter Atm1 0 interface Sysname system view Sysname interface atm 1 0 Sysname Atm1 0 Create and enter sub interface Atm1 0 1 and set its connection type to p2p Sysname syste...

Page 300: ...smitted over the primary PVC the one used when the PVC group is created in the PVC group If this command is configured and the default keyword is used which means the current PVC is set as the default PVC then all the IP packets without specified precedence levels will be transmitted over this PVC If this command is used without using the default keyword which means no PVC is taken as the default ...

Page 301: ...e VE interface Sysname Virtual Ethernet1 ip address 10 1 1 1 255 255 0 0 Sysname Virtual Ethernet1 quit Create PVC 1 102 on the ATM interface Atm2 0 Sysname interface atm 2 0 Sysname Atm2 0 pvc 1 102 Establish the IPoEoA mapping using the established VE interface in PVC view Sysname atm pvc Atm2 0 1 102 map bridge virtual ethernet 1 map ip Syntax In PVC view map ip ip address ip mask default inarp...

Page 302: ...packets must be sent for example to allow PIM multicast to create neighbor relationship with the router connected using the ATM interface Description Use the map ip command to create IPoA mapping for PVC Use the undo map ip command to delete the mapping By default no mapping is configured If a mapping is configured pseudo broadcast is not supported by default Before configuring InARP make sure the...

Page 303: ...me interface atm 1 0 Sysname Atm1 0 pvc 1 101 Create a PPPoA map using the VT interface created Sysname atm pvc Atm1 0 1 101 map ppp virtual template 10 mtu Syntax mtu mtu number undo mtu View Interface view Parameter mtu number MTU size on ATM interface in range of 128 to 2000 bytes Description Use the mtu command to set the size of maximum transmission unit MTU on ATM interface Use the undo mtu ...

Page 304: ... alarm cells received reaches the number specified by this argument The value range of this argument varies with device model Description Use the oam ais rdi command to modify the parameters related to AIS RDI alarm cell detection Use the undo oam ais rdi command to restore the default By default AIS RDI alarm cell detection is enabled which means a PVC goes down if the number of successive AIS RD...

Page 305: ... is 5 retry frequency Interval in seconds to send OAM F5 Loopback cell in retransmission detection before PVC status changes This argument ranges from 1 to 1 000 The system default is 1 Description Use the oam frequency command to enable the transmission and retransmission detection of OAM F5 Loopback cell as well as to modify the related parameters Use the undo oam frequency command to disable th...

Page 306: ...nsecutively in the range 1 to 1 000 The system default is 5 timeout OAM response timeout period in seconds in the range 1 to 30 The system default is 2 Description Use the oamping interface command to send OAM cells over the specified PVC on the specified ATM interface so as to check the link state If no response is received within the specified time this means that the link is bad or too busy tha...

Page 307: ...e PVC view on ATM interface or to add the specified PVC into PVC Group Use the undo pvc command to delete the specified PVC By default no PVC is created If you specified the pvc name argument when creating a PVC you can use the pvc pvc name vpi vci command to enter the view of that PVC You can use either the undo pvc pvc name vpi vci command or the undo pvc vpi vci command to delete that PVC The V...

Page 308: ...ype of ATM interface on page 307 Description Use the pvc group command to create a PVC group or enter PVC group view Use the undo pvc group command to delete the specified PVC Group In creating a PVC Group the pvc name argument or the vpi vci argument defines the primary PVC of the PVC Group Before creating a PVC group make sure the corresponding PVC exists The encapsulation command and the oam re...

Page 309: ...interface view Example Configure Atm 1 0 interface to support up to 1 024 PVCs Sysname system view Sysname interface atm 1 0 Sysname Atm1 0 pvc max number 1024 pvp limit Syntax pvp limit vpi output scr undo pvp limit vpi View ATM interface view Parameter vpi Virtual path identifier of ATM network its value ranges from 0 to 255 output scr Sustainable rate of ATM cell output in kbps For its detailed...

Page 310: ... 000 and the default is 500 μs This argument cannot be configured in ATM Class view Description Use the service cbr command to specify PVC service type as constant bit rate CBR By default the service type is UBR after creating a PVC You can use this command to set the PVC service type and the rate parameter The newly specified PVC service type will replace the existing service type You are recomme...

Page 311: ...fy the service type of PVC as unspecified bit rate UBR and specify the related rate parameters By default the service type is UBR after creating a PVC You can use this command as well as the service vbr nrt service vbr rt and service cbr commands to set the service type and the rate related parameters of a PVC A newly configured PVC service type overwrites the existing one Related command service ...

Page 312: ...overwrites the existing one Related command service ubr service vbr rt and service cbr Example Create a PVC named aa with the VPI VCI value of 1 101 Sysname system view Sysname interface atm 1 0 Sysname Atm1 0 pvc aa 1 101 Specify the service type of the PVC as VBR NRT and set the peak bit rate of ATM cell to 100 000 kbps the sustainable bit rate to 50 000 kbps and the maximum burst size to 320 ce...

Page 313: ...amed aa with the VPI VCI value of 1 101 Sysname system view Sysname interface atm 1 0 Sysname Atm1 0 pvc aa 1 101 Specify the service type of the PVC as VBR RT and set the peak cell rate of ATM to 100 000 kbps the sustainable cell rate to 50 000 kbps and the maximum burst size to 320 cells Sysname atm pvc Atm1 0 1 101 aa service vbr rt 100000 50000 320 shutdown Syntax shutdown undo shutdown View A...

Page 314: ...ion priority for an ATM PVC associated with the UBR VBR T or VBR NRT service At the time of bandwidth allocation the PVCs with higher priorities take precedence over those with lower priorities Use the undo transmit priority command to restore the default transmission priority By default the transmission priority of UBR service VBR NRT service and VBR RT service are 0 5 and 8 If you change the ser...

Page 315: ... the undo dialer bundle command to remove the association By default dialer interfaces are not associated with any dialer bundle in RS DCC This command applies only to dialer interfaces In addition a dialer interface can be associated with only one dialer bundle Related command dialer bundle member Example Associate dialer bundle 3 with interface Dialer1 Sysname system view Sysname interface diale...

Page 316: ...ler bundle member 1 priority 50 Sysname Bri1 0 dialer bundle member 2 priority 50 dialer callback center Syntax dialer callback center user dial number undo dialer callback center View Dial interface physical or dialer view Parameter user Sets the callback reference to user mode where DCC identifies which dial string is to be used for placing a return call by looking at the remote username configu...

Page 317: ...ame system view Sysname local user usera Sysname luser usera password simple usera Sysname luser usera service type ppp Sysname luser usera service type ppp callback number 8810048 Sysname luser usera quit Sysname interface serial 2 0 Sysname Serial2 0 ppp callback server Sysname Serial2 0 dialer callback center dial number dialer call in Syntax dialer call in remote number callback undo dialer ca...

Page 318: ...do dialer circular group View Dial interface physical view Parameter number Number of dialer circular group same as the one defined in the interface dialer command It ranges from 0 to 1023 Description Use the dialer circular group command to assign the physical interface to a dialer circular group in C DCC approach Use the undo dialer circular group command to remove the interface from the dialer ...

Page 319: ... enable circular View Dial interface physical or dialer view Parameter None Description Use the dialer enable circular command to enable circular dial control center C DCC Use the undo dialer enable circular command to disable C DCC By default C DCC is enabled on ISDN BRI and PRI interfaces but disabled on other interfaces You need to enable C DCC before you can use it To use resource shared DCC R...

Page 320: ... Use the undo dialer flow interval command to restore the default By default the traffic statistics interval for DCC is 20 seconds This command is only useful for traffic triggered dial in DCC For example when using traffic triggered MP link bundling with DCC you may need to configure DCC to send traffic statistics about dialup links at certain intervals to MP Related command dialer threshold Exam...

Page 321: ...er number Syntax dialer number dial number undo dialer number View Dial interface physical or dialer view Parameter dial number Dial string for calling a remote end a string of 1 to 30 characters Description Use the dialer number command to configure a dial number for placing calls to a single remote end Use the undo dialer number command to remove the configured dial string By default no dial num...

Page 322: ...h Use the undo dialer priority command to restore the default By default the priority of a physical interface in its dialer circular group is 1 This command sets the order in which the available physical interfaces in a dialer circular group are used The physical interface with higher priority is used first Related command dialer circular group Example Set the priority of interface Serial 2 0 in d...

Page 323: ...ter protocol Network protocol At present it can be ip only next hop address IP address of dialed destination mask network mask length Optional mask length of the IP address of the dialed destination in the range 0 to 32 If no mask length is specified the default 32 applies where the next hop address argument is handled as a host address If you want to set the next hop address argument to a network...

Page 324: ...must be configured You may configure multiple dialer routes on a dial interface or for a destination address for the backup purpose n If the dialer group command is not configured DCC will not dial Example Dial 888066 to set up link for packets destined to network 192 168 1 0 24 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 dialer route ip 192 168 1 0 mask 24 888066 Dial 88806...

Page 325: ...ibution on DCC links On the contrary when the percentage of the traffic on N which is an integer greater than 2 links to the bandwidth of N 1 links decreases under the defined traffic threshold the system automatically shuts down a link so on and so forth This ensures the efficient use of DCC links If you set the link load threshold to zero DCC brings up all available links when triggered by auto ...

Page 326: ...0 dialer timer autodial 60 dialer timer compete Syntax dialer timer compete seconds undo dialer timer compete View Dial interface physical or dialer view Parameter seconds Idle interval when contention occurs in the range 0 to 65535 seconds Description Use the dialer timer compete command to set the compete idle timer Use the undo dialer timer compete command to restore the default By default the ...

Page 327: ... enough time for a server to call back the interval between two calls on the client need to be at least 10 seconds longer than that of the server It is recommended that the interval on the server be set to 5 seconds the default and that on the client be set to 15 seconds Example Set the interval for DCC to make the next call attempt to 15 seconds Sysname system view Sysname interface serial 2 0 Sy...

Page 328: ...or call setup This argument ranges from 0 to 65 535 in seconds Description Use the dialer timer wait carrier command to set the wait carrier timer Use the undo dialer timer wait carrier command to restore the default The wait carrier timer defaults to 60 seconds Sometimes the time that DCC waits for a connection to be established may vary call by call To handle this situation you may use a wait ca...

Page 329: ... C DCC configurations on the interface Performing the undo dialer user command on a dialer interface can clear all configurations on it Related command ppp pap local user on page 522 and ppp chap user on page 511 Example Add a remote username routerb Sysname system view Sysname interface dialer 1 Sysname Dialer1 dialer user routerb dialer group Syntax dialer group group number undo dialer group Vi...

Page 330: ...s ACL number The acl number argument ranges from 2000 to 3999 An ACL number in the range 2000 to 2999 identifies a basic ACL an ACL number in the range 3000 to 3999 identifies an advanced ACL name acl name Specifies an ACL by its name Description Use the dialer rule command to set the condition for a DCC call to be placed for a dialer access group either by directly configuring a rule or by refere...

Page 331: ...pe interface number View Any view Parameter interface interface type interface number Specifies an interface by its type and number Description Use the display dialer command to display information about the specified or all DCC dial interfaces Example Display information about all DCC dial interfaces Sysname display dialer Dialer0 dialer type Dialer Dialer Route NextHop_address Dialer_Numbers Dia...

Page 332: ...eue FIFO queuing Size Length Discards 0 75 0 Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0 packets output 0 bytes 0 drops Enable Timer set by the dialer timer enable command Idle Timer set by the dialer timer idle command Wait for carrier Timer set by the dialer timer wait carrier command Total Channels Total nu...

Page 333: ...ultiple dialer interfaces at the same time Therefore authentication must be configured on these physical interfaces so as to use the username of a dial in party to locate the corresponding dialer interface for the call In this mode physical interfaces and dialer interfaces are dynamically bound Furthermore a dialer interface can only call a destination address as specified in the dialer number com...

Page 334: ... to specify the interface as the server or client to send or accept PPP callback requests Use the undo ppp callback command to disable the interface as the PPP callback server or client By default callback is disabled PPP callback adopts the client server model where the calling party is the callback client and the called party is the callback server The client first originates a call and the serv...

Page 335: ...calls to your router Use the undo ppp callback ntstring command to remove the dial string By default no callback dial string is configured for any Windows NT server When your router is functioning as a PPP callback client configure this command if a Windows NT Server requires PPP callback clients to send callback numbers Related command ppp callback Example Set the dial string for a Windows NT ser...

Page 336: ...336 CHAPTER 20 DCC CONFIGURATION COMMANDS ...

Page 337: ...erial interface The NRZ encoding scheme is generally used for synchronous serial interfaces of routers The serial interfaces of some SNA devices however use NRZI encoding Therefore the encoding scheme of routers should be changed according to the encoding schemes used on the connected devices Example Configure Serial 1 0 to use NRZI encoding Sysname system view Sysname interface serial 1 0 Sysname...

Page 338: ...The output information of the command helps the user to understand the condition of a DLSw virtual circuit Example Display DLSw capabilities exchange information DLSw Capabilities of local 1 1 1 1 Vendor ID OUI 00 16 e0 Version number 2 Release number 0 Initial Pacing Window 40 TCP sessions number 1 Multicast address None Version string 3Com OS software Version 5 00c01 Extended Release 1205 Standa...

Page 339: ...ommand displays the information all remote DLSw peers Example Display information about all the current remote peers Sysname display dlsw remote Remote peer type D Learning Dynamic C Configured by user Total peers number 5 IP Address frame in frame out frame drop port type state lifetime 128 10 45 10 0 0 0 2065 C CONNECT 00 00 00 128 10 46 78 2 2 0 2065 C DISCONNECT 00 00 00 130 20 45 12 2 2 0 206...

Page 340: ...of the remote peer D the remote peer was dynamically learned C the remote peer was manually configured Total peers number Total number of remote peers IP address Remote peer IP address if preceded by a this remote peer can establish a connection otherwise this remote peer is inactive and only serves as a backup frame in Number of frames the local peer has received from this remote peer frame out N...

Page 341: ...al peer Status Status of the reachability information Interface The interface through which information destined to the MAC address will be sent Remain time Remaining aging time REMOTE MAC addresses in cache Display the saved remote reachability information MAC address MAC address of the terminal that is reachable to the remote peer Status Status of the reachability information Peer The remote pee...

Page 342: ...nection the local bridge set needs to be mapped to DLSw through this command This command can be used repeated to map multiple bridge sets to DLSw For details about bridge set configuration refer to Bridging Configuration Commands on page 549 Example Map the bridge set by the ID of 20 connected to DLSw Sysname system view Sysname bridge enable Sysname bridge 20 enable Sysname dlsw bridge set 20 dl...

Page 343: ... number Layer 2 ACL number in the range of 4000 to 4999 inbound Specifies to apply the ACL for inbound traffic outbound Specifies to apply the ACL for outbound traffic Description Use the dlsw ethernet frame filter command to configure the DLSw router to filter Ethernet frames from or to the local SNA device by applying the specified ACL for inbound or outbound traffic Use the undo dlsw ethernet f...

Page 344: ...e default is 50 frames permit dynamic Permits non peer routers to initiate connections to establish peering relationships dynamically with this router It is not required to configure a remote peer for a router established as a local peer with this keyword included in the command vendor id DLSw vendor identifier in the range of 00 00 00 to ff ff ff The default is 00 e0 fc Description Use the dlsw l...

Page 345: ...ses of the router in the form of saps list saps value 1 120 where saps value must be an even number in the range of 0x10 to 0xFE and 1 120 means that you can specify up to 120 SAP addresses or SAP address ranges with this argument Description Use the dlsw reachable command to configure a local reachable MAC address or SAP addresses of the router Use the undo dlsw enable command to remove the reach...

Page 346: ...information from the reachable cache By default no remote reachability information is configured This configuration allows the router to send frames to a remote peer without first polling it When changes occur to the network of the remote peer the configured reachability information needs to be updated Example Add this remote reachability information to the reachable cache the IP address of the re...

Page 347: ... range of 1 to 5 The default is 3 Description Use the dlsw remote command to create a remote DLSw peer Use the undo dlsw remote command to remove a remote peer After a local peer is created a remote DLSw peer should be created to establish a TCP connection The following command specifies the IP address of the remote router with which a TCP connection is to be established After the configuration th...

Page 348: ...If the remote SNA device uses an SDLC link specify a compound MAC address in which the first five bytes are from the virtual MAC address configured in the sdlc mac map local command on the remote router and the last byte is the SDLC address of the local router Related command sdlc mac map remote Example Convert the Ethernet format MAC address 0012 3578 4521 to the token ring format Sysname system ...

Page 349: ...ansmission 10 dlsw multicast Syntax dlsw multicast multicast ip address interface interface type interface number undo dlsw multicast View System view Parameter multicast ip address Multicast IP address in the range of 224 0 10 0 to 224 0 10 191 The default is to 224 0 10 0 interface Specifies the interface through which DLSw v2 0 multicasts are sent interface type interface number Specifies an in...

Page 350: ...e default is 30 seconds local pending seconds Local pending time in seconds The effective range is 1 to 65 535 and effective the default is 30 seconds remote pending seconds Remote pending time in seconds The effective range is 1 to 65535 and the default is 30 seconds Description Use the dlsw timer command to configure DLSw timers Use the undo dlsw timer command to restore DLSw timers to the defau...

Page 351: ...nchronous serial interface is connected with an AS 400 device you need to change the idle time encoding scheme by using this command to improve the speed of polling the AS 400 device Example Configure synchronous serial interface Serial 2 0 to send 0xFF to indicate idle space between frames Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 idle mark link protocol sdlc Syntax link ...

Page 352: ...nge of 1 to 127 Description Use the llc2 max ack command to configure namely the maximum number of information frames the device can receive before it must send an acknowledgment to the peer router Use the undo llc2 max ack command to restore the default setting By default the maximum number of information frames the router can receive before it must send an acknowledgment is 3 Example Set the max...

Page 353: ... the undo llc2 max send queue command to restore the default setting By default the length of the LLC2 output queue is 50 Example Set the length of the LLC2 output queue to 30 on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 llc2 max send queue 30 llc2 max transmission Syntax llc2 max transmission retries undo llc2 max transmission View Ethernet interface view...

Page 354: ...o command to restore the default modulus of LLC2 By default the modulus of LLC2 is 128 LLC2 like X 25 uses modulus to number frames All frames sent are numbered incrementally and await an acknowledgment When the frame number reaches the configured value referred to as modulus value subsequent frames are numbered from 1 again For example if the modulus value is set to 8 frames are numbered 4 5 6 7 ...

Page 355: ... Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 llc2 receive window 10 llc2 timer ack Syntax llc2 timer ack mseconds undo llc2 timer ack View Ethernet interface view Parameter mseconds LLC2 acknowledgment waiting time in milliseconds The effective range is 1 to 60 000 Description Use the llc2 timer ack command to configure the LLC2 acknowledgment waiting time n...

Page 356: ...rnet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 llc2 timer ack delay 200 llc2 timer busy Syntax llc2 timer busy mseconds undo llc2 timer busy View Ethernet interface view Parameter mseconds LLC2 busy station polling interval in milliseconds The effective range is 1 to 60 000 The system default is 300 milliseconds Description Use the llc2 timer busy command to config...

Page 357: ...timer poll View Ethernet interface view Parameter mseconds LLC2 P F waiting time in milliseconds The effective range is 1 to 60 000 Description Use the llc2 timer poll command to configure the LLC2 P F waiting time namely the amount of time the router waits for an acknowledgment after sending a P frame Use the undo llc2 timer poll command to restore the default setting By default the LLC2 P F wait...

Page 358: ...time is 500 milliseconds Example Set the LLC2 REJ time to 2 000 milliseconds on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 llc2 timer reject 2000 reset dlsw circuits Syntax reset dlsw circuits circuit id View User view Parameter circuit id DLSw virtual circuit ID in the range of 0 to 0xFFFFFFFF Description Use the reset dlsw circuits command to clear DLSw v...

Page 359: ...a new TCP connection request to establish new TCP connection In the case of a remote peer dynamically learned this command disconnects the current TCP connection and deletes the remote peer Example Reset the TCP connections will all remote peers Sysname debugging dlsw tcp Sysname reset dlsw tcp DLSw_TCP 4 4 4 2 The remote peer is learned dynamically it will be deleted DLSW_TCP 4 4 4 3 Rebulid tcp ...

Page 360: ...s cannot be connected with one another Therefore the communication between the primary station and each secondary station can be guaranteed as long as each secondary device is identified with an SDLC address This command is used to specify an SDLC address for a virtual circuit which is unique on a physical interface The configured SDLC address on a synchronous serial interface is actually the addr...

Page 361: ...t enabled on the serial interface Before enabling DLSw forwarding on the serial interface enable SDLC as the link layer protocol on the interface With DLSw forwarding enabled on the SDLC interface all local SNA devices connected to the interface will be able to communicate with the remote device through DLSw Example Enable DLSw forwarding on Serial 2 0 Sysname system view Sysname interface serial ...

Page 362: ...e Serial2 0 sdlc mac map local 0000 e81c b600 sdlc mac map remote Syntax sdlc mac map remote mac addr sdlc addr undo sdlc mac map remote mac addr sdlc addr View Synchronous serial interface view Parameter mac addr MAC address of the SDLC peer to be configured sdlc addr SDLC address of the SDLC peer to be configured in the range of 0x01 to 0xFE Description Use the sdlc mac map remote command to con...

Page 363: ... 1 to 17 600 Description Use the sdlc max pdu command to configure the maximum SDLC PDU size namely the maximum size in bytes of a frame that the router can send not including the frame check sequence FCS start flag and ending flag fields Use the undo sdlc max pdu command to restore the default setting By default the maximum SDLC PDU size is 265 bytes The maximum PDU size of some PU2 0 devices is ...

Page 364: ... Maximum number of SDLC transmission retries in the range of 1 to 255 times Description Use the sdlc max transmission command to configure the maximum number of SDLC transmission retries namely the number of times a frame is retransmitted before an acknowledgment is received from the peer Use the undo sdlc max transmission command to restore the default setting By default the maximum number of SDL...

Page 365: ... Serial2 0 undo sdlc modulo sdlc sap map local Syntax sdlc sap map local lsap sdlc addr undo sdlc sap map local lsap sdlc addr View Synchronous serial interface view Parameter lsap SAP address in the range of 0x01 to 0xFE sdlc addr SDLC address in the range of 0x01 to 0xFE Description Use the sdlc sap map local command to configure the local SAP address to be used in SDLC to LLC2 frame format conv...

Page 366: ...format conversion Use the undo sdlc sap map remote command to restore the system default By default the SAP address of the remote DLSw device used in SDLC to LLC2 frame format conversion is 0x04 When an SDLC frame is converted to an LLC2 frame a SAP address is needed in addition to the MAC address Generally speaking the SAP address used by the SNA protocol is 0x04 0x08 or 0x0C Related command sdlc...

Page 367: ...e undo sdlc role command to remove the configured SDLC role By default the device has no role SDLC is an unbalanced link layer protocol That is the end systems across a TCP connection are not equal in the positions one is primary and the other is secondary The primary station whose role is primary plays a dominant role and controls the whole connection process The secondary station whose role is s...

Page 368: ...from the receiving secondary station after sending an information frame Use the undo sdlc timer ack command to restore the default setting By default the primary station acknowledgment waiting time is 3 000 milliseconds Example Set the primary station acknowledgment waiting time to 2 000 milliseconds on Serial 2 0 Sysname interface serial 2 0 Sysname Serial2 0 sdlc timer ack 2000 sdlc timer lifeti...

Page 369: ...he SDLC polling interval namely the amount of time the primary station waits between polling two secondary stations Use the undo sdlc timer poll command to restore the default setting By default SDLC polling interval is 1 000 milliseconds Example Set the SDLC polling interval to 200 milliseconds on Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 sdlc timer poll 200 sd...

Page 370: ... a 4 byte integer in the range of 1 to 0xFFFFFFFF The first 12 bits indicate the network address and the last 20 bits indicate the node number Description Use the sdlc xid command to configure the XID of the SDLC Use the undo sdlc xid command to delete the XID of the SDLC By default no SDLC XID is configured on a synchronous serial interface An XID identifies a device in an SNA system When configu...

Page 371: ...617 Annex G defines the way to transmit X 25 packets using FR virtual circuits Similar to normal X 25 interface an Annex G interface transmits receives X 25 PVC and X 25 SVC packets and can operate as an X 25 switching interface You can set LAPB X 25 related parameters for a virtual circuit by applying an X 25 template to it Example Create an Annex G DTE interface Sysname system view Sysname inter...

Page 372: ...itch command to display the information about the configured FR switching to check if the frame relay switching of a user is correctly configured The interface specified by interface type interface number can only be a main interface If no interface is specified this command displays the information about all the main interfaces Example Display the information of the configured FR switching Sysnam...

Page 373: ...erial2 0 DTE In ARP request Out ARP reply Out ARP request In ARP reply 0 0 1 1 display fr interface Syntax display fr interface interface type interface number interface number subnumber View Any view Table 40 Description on the fields of the display fr dlci switch command Field Description Frame relay switch statistics The statistics of frame relay switch Status The status of frame relay switchin...

Page 374: ...interface interface type interface number Specifies an interface by its type and number Description Use the display fr lmi info command to display the statistics of LMI protocol frame The LMI protocol maintains current frame relay link by sending status enquiry packets and status packets The displayed information helps you diagnose faults Example Display the statistics about LMI protocol frames Sy...

Page 375: ...ommand Field Description Frame relay LMI statistics for interface Serial2 1 DTE Q933 Terminal type and LMI protocol type for the frame relay interface T391DTE 10 hold timer 10 DTE side T 391 setting N391DTE 6 N392DTE 3 N393DTE 4 DTE side N 391 N 392 and N 393 settings out status enquiry 96 in status 85 Number of the state enquiry packets sent out through the interface and that of the state enquiry...

Page 376: ...y address mappings or the one for the specified interface This command displays whether the static address map entries are correct and whether dynamic address mapping operates normally Related command fr map ip fr inarp Example Display the frame relay address map table Table 44 Description on the fields of the display fr iphc command Field Description RTP header compression information Information...

Page 377: ...ange 0 to 1023 Description Use the display fr map info pppofr command to display current PPP over frame relay PPPoFR mappings and their states for the specified or all interfaces Example Display information about current PPPoFR mappings and their states Sysname display fr map info pppofr Fr Interface DLCI Fr State PPP Interface PPP Phase Serial2 0 100 down Virtual Template1 Phase 0 Serial2 1 200 d...

Page 378: ...I specified the displayed information covers all PVCs if with an interface a main interface or subinterface specified the displayed information covers only the PVCs on the interface and if with a DLCI specified the displayed information covers only the specified PVC Related command fr dlci Example Display the frame relay PVC table Sysname display fr pvc info PVC statistics for interface Serial2 0 ...

Page 379: ...cription on the fields of the display fr pvc info command Field Description PVC statistics for interface Serial2 0 DTE physical UP Display information about PVCs on the frame relay interface Serial 2 0 The interface operates in as a DTE The physical state of the interface is up DLCI 100 USAGE UNUSED 0000 INTERFACE Serial2 0 DLCI 100 was assigned to the PVC through negotiation of LMI with DCE end I...

Page 380: ...mum Transmit Unit is 1500 Hold timer is 10 sec Internet Address is 12 12 12 2 16 Primary Link layer protocol is FR IETF LMI DLCI is 0 LMI type is Q 933a frame relay DTE LMI status enquiry sent 435 LMI status received 435 LMI status timeout 0 LMI message discarded 0 Physical is MFR baudrate 2048000 bps Output queue Urgent queue Size Length Discards 0 50 0 Output queue Protocol queue Size Length Dis...

Page 381: ... up Link name Serial2 0 LMI status enquiry sent 435 LMI status received 435 Transmitted and received LMI status enquiry messages LMI status timeout 0 LMI message discarded 0 LMI timeout messages and dropped LMI messages Physical is MFR Physical interface is MFR Output queue Urgent queue Size Length Discards 0 50 0 Output queue Protocol queue Size Length Discards 0 500 0 Output queue FIFO queuing S...

Page 382: ...is in up state the bundle is flagged as up Moreover all bundle links should be tagged as down before the bundle is down fragment disabled Indicates whether the fragment is disabled disabled in this sample output MFR bundle fragment size Maximum fragment size allowed by the FR link Bundle name Name of multilink frame relay bundle Bundle links Physical interfaces of the links in the bundle Serial2 0...

Page 383: ...smitted and received Add_link reject messages Add_link_rej messages are sent notifying reject of the Add_link messages Remove_link TX RX Number of transmitted and received Remove_link messages Remove_link messages are sent notifying removal of a link from the bundle Remove_link_ack TX RX Number of transmitted and received Remove_link_ack messages Remove_link_ack messages are sent notifying receipt...

Page 384: ...ed settings X121 address X 121 address Modulo Window modulo which defaults to 8 Timers Idle Maximum idle period of SVCs T10 T20 Delay of the re start re transmission timer T11 T21 Delay of the call request transmission timer T12 T22 Delay of the reset request transmission timer T13 T23 Delay of the clear request transmission timer Channels Incoming only Channel range of incoming only calls Two way...

Page 385: ...int and point to multipoint Frame relay FRF 9 compression configuration differs depends on different types of interfaces For a point to point frame relay subinterface just use the fr compression frf9 command to configure on the subinterface view and FRF 9 compression function is enabled For a point to multipoint frame relay interface or subinterface whether to perform FRF 9 compression is determin...

Page 386: ...tion succeeds The negotiation fails if the number of FRF 20 control messages sent exceeds In this case compression configuration cannot take effect This command is only valid for RTP messages and TCP ACK messages You can specify FRF 20 FRF 20 IPHC compression function using either the fr compression iphc command or configuring static address mapping For detailed information about configuring stati...

Page 387: ...n the packets received on the interface in the range 16 to 1007 interface interface type interface number Specifies an interface by its type and number dlci out dlci DLCI in the sent packets It is in the range 16 to 1007 Description Use the fr dlci switch command to configure a static route for frame relay PVC switching Use the undo fr dlci switch command to delete a static route for frame relay P...

Page 388: ...the frame relay sends data over the interface it is necessary to map the network address to the DLCI numbers Such a map can be specified manually or can be completed via the function of automatic inverse address resolution Automatic inverse address resolution can be started by using the command If it is expected to enable the inverse address resolution function of all PVCs the command without any ...

Page 389: ...By default the frame relay interface type is DTE In frame relay there are two communicating parties namely the user side and network side The user side is called Data Terminal Equipment DTE and the network side is called Data Communications Equipment DCE In a frame relay network the interface between the frame relay switches is Network to Network Interface NNI and the corresponding interface adopt...

Page 390: ...cp include Includes TCP header compression when performing RTP compression Description Use the fr iphc command to enable IP header compression function including RTP TCP header compression Use the undo fr iphc nonstandard tcp include command to disable this function Use the undo fr iphc rtp connections tcp connections command to restore the default compression connection numbers of RTP and TCP By ...

Page 391: ...92dce Syntax fr lmi n392dce n392 value undo fr lmi n392dce View Interface view Parameter n392 value The Error threshold which ranges from 1 to 10 Description Use the fr lmi n392dce command to set N392 parameter at the DCE side Use the undo fr lmi n392dce command to restore the default By default the parameter value is 3 The DCE requires the DTE to send a Status Enquiry packet at regular interval s...

Page 392: ...ket the DCE will immediately send a Status Response packet If the DTE does not receive the response packet in the specified time it will record the error by adding 1 to the error count If the errors exceed the threshold the DTE will consider that the physical channels and all the DLCIs to be unavailable N392 and N393 together define the error threshold N393 indicates the event number observed and ...

Page 393: ...threshold N393 defines the event number observed and N392 defines the error threshold of that number N393 That is if the number of errors that occur to the DCE reaches N392 in N393 events DCE will consider the errors have reached the threshold and declare the physical channels and all DLCIs to be unavailable N392 at DCE side should be less than N393 at DCE side Example Set the operation of frame r...

Page 394: ... error count had exceeded the threshold and declare the physical channels and all DLCIs to be unavailable N392 at DTE side should be less than N393 at DTE side Example Set the operation of frame relay interface Serial 2 0 as the DTE mode and set N392 to 5 and N393 to 6 Sysname system view Sysname interface serial2 0 Sysname Serial2 0 link protocol fr Sysname Serial2 0 fr interface type dte Sysname...

Page 395: ...to restore the default By default the LMI protocol type is q933a LMI protocol is used to maintain frame relay protocol PVC table including notifying PVC increasing detecting PVC deleting monitoring PVC status changing and authenticating link integrity The system usually supports three standard LMI protocols ITU T Q 933 Appendix A ANSI T1 617 Appendix D and nonstandard compatible LMI protocol The b...

Page 396: ...nly FRF9 and IPHC can be adopted PVC groups does not support compression compression Enables frame relay compression frf9 Adopts payload compression iphc Adopts IP UDP or RTP header compression Description Use the fr map ip command to add an IP address map entry for frame relay Use the undo fr map ip command to remove an IP address map entry for frame relay By default no static address map entry e...

Page 397: ...er Use the undo map ppp command to cancel this map and thus eliminates this PPPoFR link Related command interface virtual template on page 1759 Example Map DLCI 100 to PPP and establish PPPoFR link on Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 fr map ppp 100 interface virtual template 1 fr switch Syntax fr switch name interface interface type interface number dlc...

Page 398: ...hus be realized In frame relay switching view the shutdown undo shutdown operation can be executed on a PVC Before you can enter frame relay switching view the PVC must have existed Example Create a PVC named pvc1 on the DCE serving as the switch which is from the DLCI 100 of serial interface 2 0 to the DLCI 200 of serial interface 2 1 Sysname system view Sysname fr switching Sysname fr switch pvc...

Page 399: ... no multilink frame relay interface or subinterface Before an MFR subinterface is created the MFR interface must be created first Before using the undo interface mfr command to delete an MFR interface you must delete all physical interfaces from the MFR interface For MFR interface if there is one bundle link is in up state the MFR physical state is up Moreover all bundle links should be tagged as ...

Page 400: ...psulate interface link layer protocol as frame relay By default the link layer protocol encapsulated on the interface is PPP The frame relay encapsulation can be either ietf or nonstandard IETF encapsulation conforms to RFC 1490 that is it supports the IETF standard and is compatible with dedicated encapsulation format of mainstream routers If you encapsulate a frame relay interface using any of t...

Page 401: ... command to apply a link layer protocol of non frame relay MFR to the interface After a physical interface is encapsulated as MFR format the interface belongs to MFR and is not allowed to be configured using the commands related to FR except MFR In addition the queue type on the interface can be configured as FIFO first in first out only even if the other queue types have been encapsulated on the ...

Page 402: ...ommand on the interface to validate the new BID Example Set the frame relay link MFR4 BID to bundle1 Sysname system view Sysname interface mfr 4 Sysname MFR4 mfr bundle name bundle1 mfr fragment Syntax mfr fragment undo mfr fragment View MFR interface view Parameter None Description Use the mfr fragment command to enable fragmentation on the MFR bundle Use the undo mfr fragment command to disable ...

Page 403: ...e link Serial 2 0 to be 70 bytes Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 mfr fragment size 70 mfr link name Syntax mfr link name name undo mfr link name name View Frame relay interface view Parameter name Name of a bundle link identification a string of 1 to 49 characters Description Use the mfr link name command to set the frame relay bundle link identification LID Use ...

Page 404: ... default the maximum times that a frame relay bundle link can resend hello message is twice The bundle link sustains link status by periodically sending hello message to the peer end If the times that a bundle link resends hello message reach the maximum without receiving acknowledgement from the peer the system will regard the link protocol on the bundle link to be malfunctioning Only after the l...

Page 405: ...e relay interface view Parameter seconds Time in seconds of waiting for hello acknowledgment message before resending hello message in the range 1 to 10 Description Use the mfr timer ack command to set the time of waiting for hello acknowledgment message before frame relay bundle link resends hello message Use the undo mfr timer ack command to restore the default By default time of waiting for hel...

Page 406: ...protocol fr mfr command is used to associate a frame relay bundle link interface with a frame relay bundle can this command be configured Example Set the bundle link Serial 2 0 to send hello message once every 15 seconds Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 mfr timer hello 15 mfr window size Syntax mfr window size number undo mfr window size View MFR interface view Pa...

Page 407: ...s from the DLCI 100 of Serial 2 0 to the DLCI 200 of Serial 2 1 and disable the current switching PVC Sysname system view Sysname fr switching Sysname fr switch pvc1 interface serial 2 0 dlci 100 interface ser ial 2 1 dlci 200 Sysname fr switching pvc1 shutdown reset fr inarp Syntax reset fr inarp View User view Parameter None Description Use the reset fr inarp command to clear the address mapping...

Page 408: ... Serial 2 0 Sysname reset fr pvc interface serial 2 0 timer hold Syntax timer hold seconds undo timer hold View Interface view Parameter seconds Value of T391 parameter at DTE side which ranges from 0 to 32767 in seconds 0 indicates that the LMI protocol is disabled Description Use the timer hold command to configure T391 parameter at the DTE side Use the undo timer hold command to restore the def...

Page 409: ...e view Example Apply the X 25 template named vofr to DLCI 100 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 fr dlci 100 Sysname fr dlci Serial2 0 100 x25 template vofr x25 template Syntax x25 template name undo x25 template name View System view Parameter Name Name of an X 25 template a string of 1 to 30 characters Description Use the x25 template command to create an X 25 tem...

Page 410: ...410 CHAPTER 22 FRAME RELAY CONFIGURATION COMMANDS Sysname system view Sysname x25 template vofr Sysname x25 vofr ...

Page 411: ...word argument combination is not specified this command displays the GARP statistics of all the ports If the interface interface list keyword argument combination is specified this command displays the GARP statistics of the specified ports Example Display statistics about GARP for port Ethernet 1 0 Sysname display garp statistics interface ethernet1 0 GARP statistics on port Ethernet1 0 Number of...

Page 412: ...arp Join Time 20 centiseconds Garp Leave Time 60 centiseconds Garp LeaveAll Time 1000 centiseconds Garp Hold Time 10 centiseconds garp timer Syntax garp timer hold join leave timer value undo garp timer hold join leave View Ethernet interface view port group view Parameter hold Sets the hold timer join Sets the join timer leave Sets the leave timer timer value Timer setting in centiseconds which m...

Page 413: ... of the leaveall timer must be a multiple of 5 and must be greater than the leave timer settings of all the ports Description Use the garp timer leaveall command to set the leaveall timer of GARP Use the undo garp timer leaveall command to restore the default This may fail if the default is less than the setting of the current leave timer By default the setting of the leaveall timer is 1000 centis...

Page 414: ...face interface list Specifies an Ethernet port list in the format of interface type interface number to interface type interface number 1 10 where 1 10 indicates that you can specify up to 10 port ranges A port range defined without the to interface type interface number portion comprises only one port Description Use the reset garp statistics command to clear GARP statistics of the specified or a...

Page 415: ...ics of all trunk ports will be displayed Otherwise only the GVRP statistics of all the specified trunk port will be displayed Example Display statistics about GVRP for trunk port Ethernet 1 0 Sysname display gvrp statistics interface ethernet 1 0 GVRP statistics on port Ethernet1 0 GVRP Status Enabled GVRP Running YES GVRP Failed Registrations 0 GVRP Last Pdu Origin 0000 0000 0000 GVRP Registratio...

Page 416: ... the gvrp command to enable GVRP Use the undo gvrp command to disable GVRP Disabling GVRP globally also disables it on all ports By default GVRP is disabled Configured in system view the setting is globally effective configured in Ethernet interface view the setting is effective on the current port only configured in port group view the setting is effective on all ports in the port group n To enab...

Page 417: ...eregister VLANs and to propagate both dynamic and static VLAN information Fixed Disables the port to dynamically register and deregister VLANs or propagate information about dynamic VLANs but allows the port to propagate information about static VLANs A trunk port with fixed registration type thus allows only manually configured VLANs to pass through even though it is configured to carry all VLANs...

Page 418: ...418 CHAPTER 24 GVRP CONFIGURATION COMMANDS ...

Page 419: ...n an interface Related command timer hold Example Configure HDLC encapsulation on interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 link protocol hdlc timer hold Syntax timer hold seconds undo timer hold View Interface view Parameter seconds Link status polling interval in seconds in the range 0 to 32767 Description Use the timer hold command to set the pollin...

Page 420: ...e polling interval on both the local and remote devices Setting it to zero disables link status check Example Set the link status polling interval to 100 seconds on interface Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 timer hold 100 ...

Page 421: ... an X 25 interface Annex G DLCI or XOT channel to the current hunt group Use the undo channel command to remove the specified interface Annex G DLCI or XOT channel from the current hunt group Related command x25 hunt group Example Add serial2 0 to the hunt group hg1 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 link protocol x25 Sysname Serial2 0 x25 x121 address 1111 Sysname ...

Page 422: ...ut 128 output 128 Channels Incoming only 0 0 Two way 1 1024 Outgoing only 0 0 Timers T10 60 T11 180 T12 60 T13 60 Idle_Timer 0 seconds New configuration will be effective after restart modulo 8 window sizes input 2 output 2 packet sizes input 128 output 128 Channels Incoming only 0 0 Two way 1 1024 Outgoing only 0 0 Statistic Restarts 0 Restart Collisions 0 Refused Incoming Call 0 Failing Outgoing...

Page 423: ... are 0 this section is disabled Timers T20 180 T21 200 T22 180 T23 180 T28 300 Idle_Timer 0 seconds Delay values of various timers of this X 25 interface in seconds New Configuration New configuration of this X 25 interface taking effect after next restart if this configuration is wrong the default value will be restored Restarts 0 Restart Collisions 0 Statistics of this X 25 interface including t...

Page 424: ...this interface LAPB format received quantity sent quantity invalid ns Error statistics of this interface LAPB including total of received information frames carrying erroneous sequence numbers invalid nr Error statistics of this interface LAPB including total of received information frames and monitoring frames carrying erroneous acknowledgment numbers link resets Restarting times of this interfac...

Page 425: ...r ports Example Display the CUG configuration on the router ports Sysname display x25 cug local cug X 25 Serial2 0 2 CUGs subscribed with no public access local cug 1 network cug 4 no incoming local cug 2 network cug 5 preferentiallocal cug 3 network cug 5 preferential display x25 hunt group info Syntax display x25 hunt group info hunt group name View Any view Table 56 Description on the fields of...

Page 426: ...ription Use the display x25 map command to display the X 25 address mapping table The X 25 address mapping can be configured in two methods using the x25 map command or using the x25 pvc command The display x25 map command can display all the address mappings Table 57 Description on the fields of the display x25 hunt group info command Field Description HG_ID hg1 The hunt group name is hg1 HG_Type...

Page 427: ...AD connection information Sysname display x25 pad UI INDEX130 From remote 22 connected to local 11 State Normal X 3Parameters In 1 1 2 0 3 2 4 1 5 0 6 0 7 21 8 0 9 0 10 0 11 14 12 0 13 0 14 0 15 0 16 127 17 21 18 18 19 0 20 0 21 0 22 0 X 3Parameters Out 1 1 2 0 3 2 4 1 5 0 6 0 7 21 8 0 9 0 10 0 11 14 12 0 13 0 14 0 15 0 16 127 17 21 18 18 19 0 20 0 21 0 22 0 Input Pkts total control 13 2 bytes 12 ...

Page 428: ...e Normal Connection of local X 121 address to remote X 121 address and the current connection state of the PAD Connection states Normal Connection is normal Closing Connection is being closed Exception Connection is abnormal X 3Parameters In Incoming X 3 parameter X 3Parameters Out Outgoing X 3 parameter Input Pkts total control 13 2 bytes 12 queue size max 0 200 Total number of packets received t...

Page 429: ...erial2 0 2 22 I Serial2 1 0 3 131 H hg1 4 132 T 123 123 123 123 5 133 T 123 123 123 123 6 111 222 333 T 4 4 4 4 Total of static svc is 6 The item type of SwitchTo meaning I interface H hunt group T xot display x25 vc Syntax display x25 vc lci View Any view Parameter lci Logical channel identifier in the range 1 to 4095 If not specified all VCs will be displayed Description Use the display x25 vc c...

Page 430: ...Serial2 0 SVC 1 State P4 transmit Map ip 10 1 1 2 to 130 Window size input 2 output 2 Packet Size input 128 output 128 Local PS 5 Local PR 5 Remote PS 5 Remote PR 4 Local Busy FALSE Reset times 0 Input Output DATA 5 5 INTERRUPT 0 0 RR 0 0 RNR 0 0 REJ 0 0 Bytes 420 420 Send Queue Current Max 0 200 Interface Serial2 1 0 SVC 10 State P4 transmit SVC Serial2 0 SVC 60 Window size input 2 output 2 Packe...

Page 431: ...4 transmit SVC state P4 transmission state Map ip 10 1 1 2 to 130 Address mapping XOT PVC Serial2 0 PVC 1 connected PVC from XOT to serial2 0 already established PVC XOT Serial2 0 1 1 1 1 PVC 1 connected PVC from serial2 0 to XOT already established PAD UI 130 From remote 130 connected to local 220 PAD User interface index 130 connection from remote X 121 address 130 to local X 121 address 220 Win...

Page 432: ...rial1 0 SVC 1024 20 1 1 1 102 2 NULL Serial1 0 PVC 1 20 1 1 1 104 2 display x25 xot Syntax display x25 xot View Any view Parameter None Description Use the display x25 xot command to display XOT X 25 over TCP connection information such as peer IP and port local IP and port keepalive setting of socket and incoming outgoing interface names Related command x25 switch svc xot x25 xot pvc Example Disp...

Page 433: ... calculated according to the MTU upper layer protocol and modulo as shows below The default value of N1 varies with MTU and modulo For example upon system initialization the upper layer protocol is IP modulo 8 and MTU 1500 so the default value of N1 is 1500 4 8 12032 If the modulo is set to 128 then the default value of N1 is 1500 5 8 12040 You can use the undo lapb max frame command to restore th...

Page 434: ...s 1 Sequence numbers will cycle within the range Modulo 8 is the basic mode It is sufficient for most links Related command lapb window size Example Set the LAPB frame numbering mode on Serial2 0 to modulo 8 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 lapb modulo 8 lapb retry Syntax lapb retry n2 value undo lapb retry View Interface view Parameter n2 value Value of LAPB N2 i...

Page 435: ...to restore their default values T1 is the retransmission timer When T1 expires DTE DCE will start retransmission The value of T1 shall be greater than the maximum time between the sending of a frame and the receiving of its response frame T2 is the reception timer When it expires the DTE DCE must send an acknowledgement frame so that this frame can be received before the peer DTE DCE T1 timer expi...

Page 436: ... Serial2 0 lapb window size 5 link protocol lapb Syntax link protocol lapb dce dte ip multi protocol View Interface view Parameter dce Specifies DCE mode of LAPB dte Specifies DTE mode of LAPB ip Specifies the upper layer protocol as IP multi protocol Specifies the upper layer protocol as multi protocol Description Use the link protocol lapb command to specify the link layer protocol of the interf...

Page 437: ...ncapsulate X 25 protocol on the specified interface By default the link layer protocol for the interface is PPP When the interface uses X 25 protocol it works in DTE IETF mode by default Note that When two Routers are connected via the X 25 public packet network they shall work as DTE and use IETF format If two Routers are directly connected one Router shall work as DTE the other as DCE Both parti...

Page 438: ...view Parameter local ip address Local IP address of the XOT connection local port Local port number of the XOT connection remote ip address Remote IP address of the XOT connection remote port Remote port number of the XOT connection Description For SVC use the reset xot command to clear an XOT link For PVC use the reset xot command to reset an XOT link When you clear or reset the XOT link you can ...

Page 439: ...terface view Parameter None Description Use the reset lapb statistics command to clear LAPB statistics Example Clear the LAPB statistics on Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 reset lapb statistics translate ip Syntax translate ip ip address port port number pvc interface type interface number pvc number x25 x 121 address undo translate ip ip address port ...

Page 440: ...route to forward the packets that the local device receives at 10 1 1 1 102 to the X 121 address 111 Sysname system view Sysname translate ip 10 1 1 1 port 102 x25 111 Configure an X2T forwarding route to forward the packets that the local device receives at 10 1 1 1 102 to PVC 1 on the interface Serial2 0 Sysname system view Sysname translate ip 10 1 1 1 port 102 pvc serial 2 0 1 translate x25 Sy...

Page 441: ... type of the alias There are 9 optional match types free Free match free ext Extended free match left Left alignment match left ext Extended left alignment match right Right alignment match right ext Extended right alignment match strict Strict match whole Whole match whole ext Extended whole match alias string Alias name a string of 1 to 17 characters Description Use the x25 alias policy command ...

Page 442: ...ption on the user facility option Option Description closed user group group number Specifies a closed user group CUG number for the X 25 interface The facility enables DTE to belong to one or more CUGs CUG allows the DTEs in it to communicate with each other but not to communicate with other DTEs The group number is in the range 0 to 9999 packet size input size output size Carries out maximum pac...

Page 443: ...ial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 x25 call facility packet size 512 512 Sysname Serial2 0 x25 call facility window size 5 5 x25 cug service Syntax x25 cug service incoming access outgoing access suppress all preferential undo x25 cug service View Interface view Parameter incoming access Incoming access policy outgoing access Outgoing access policy suppress ...

Page 444: ...les allowing them to pass and lets the outgoing calls without CUG facilities pass through If the suppress all parameter is chosen the system removes CUG facilities for the incoming calls with CUG facilities and makes call processing This parameter is ineffective to outgoing calls When the suppress preferential parameter is included if an incoming call with CUG facilities and the suppression rule i...

Page 445: ... robin vc number undo x25 hunt group hunt group name View System view Parameter hunt group name Name of a hunt group a string of 1 to 30 characters round robin Selects call channel using cyclic selection policy vc number Selects call channel using the policy of computing available logical channel Description Use the x25 hunt group command to create or enter an X 25 hunt group Use the undo x25 hunt...

Page 446: ...he calling request packet must carry the address However on some occasions the X 25 calling request does not have to carry the called calling DTE address in a specific network environment or as is required by the application This command enables users to specify whether the call request packet sent by X 25 in the device carries the called DTE address Related command x25 response called address x25...

Page 447: ...ll request packet from the X 25 interface Serial 2 0 not to carry the calling DTE address Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 x25 ignore calling address x25 local cug Syntax x25 local cug local cug number network cug network cug number no incoming no outgoing preferential undo x25 local cug cug number View Interface view Parameter local cug number Number of local cug...

Page 448: ...used at DCE side use the link protocol x25 dce command to set the interface as DCE Example Define the rule on the serial interface Serial2 0 the incoming calls with 100 local CUGs or 200 network CUGs are denied Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 x25 cug service Sysname Serial2 0 x25 local cug 100 network cug 200 no incoming x25 map Syntax x25 map protocol type proto...

Page 449: ...g from the address mapping packet size input size output size Carries out maximum packet size negotiation when initiating calls from the mapping It needs two parameters maximum input packet size and maximum output packet size which must range from 16 to 4096 bytes and must be the integer power of 2 reverse charge accept If a call initiated by the address mapping carries reverse charging request to...

Page 450: ...t Sysname interface serial2 0 Sysname Serial2 0 x25 map ip 20 30 4 1 x121 address 25112451 window size 4 4 broadcast Sysname Serial2 0 x25 map ip 20 30 4 8 x121 address 25112450 no callin x25 modulo Syntax x25 modulo 8 128 undo x25 modulo View Interface view Parameter 8 Uses modulo 8 mode 128 Uses modulo 128 mode Description Use the x25 modulo command to set the modulo mode of the X 25 interface U...

Page 451: ...put packet length in bytes its value ranges from 16 inclusive to 4096 inclusive and must be the integer power of 2 Description Use the x25 packet size command to set the maximum input and output packet lengths of X 25 interface Use the undo x25 packet size command to restore their default values By default the maximum input packet length is 128 bytes and the maximum output packet length is 128 byt...

Page 452: ...dtcp indicating that the upper layer network protocol is IP protocol and supports TCP head compressing protocol address Network protocol address of the peer end of the PVC x121 address x 121 address X 121 address of the peer end of this PVC option Attribute option of the PVC Detailed description of PVC options Description Use the x25 pvc command to configure a PVC route Use the undo x25 pvc comman...

Page 453: ...erial 2 0 as X 25 enable PVC channel range and set two PVCs Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 link protocol x25 Sysname Serial2 0 x25 vc range bi channel 8 1024 Sysname Serial2 0 x25 pvc 2 ip 202 38 168 1 x121 address 20112451 broadcast packet size 512 512 Sysname Serial2 0 x25 pvc 6 ip 202 38 168 3 x121 address 20112453 broadcast window size 5 5 x25 queue length S...

Page 454: ...e received before acknowledgement in the range 0 to input window size If it is set to 0 or the input window size this function will be disabled If it is set to 1 X 25 of the device will send an acknowledgement for each correctly received packet Description Use the x25 receive threshold command to set the maximum number of packets that can be received before X 25 sends the acknowledged packet Use t...

Page 455: ...ecify whether the packet carries the called DTE address Related command x25 response calling address x25 ignore called address x25 ignore calling address Example Specify that the call receiving packet of a call sent from the X 25 interface Serial 2 0 carries the called DTE address Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 x25 response called address x25 response calling ad...

Page 456: ...eter None Description Use the x25 reverse charge accept command to enable this interface to accept the call with the reverse charging request user facility Use the undo x25 reverse charge accept command to disable this function By default this function is disabled This function does not affect any call without reverse charging request If you enable this function on an X 25 interface all these call...

Page 457: ... it by its name in the commands x25 call facility or x25 map Related command x25 call facility x25 map Example Define two ROA lists and apply them to the interfaces Serial 2 0 and Serial 2 1 respectively Sysname system view Sysname x25 roa list list1 11 23 45 Sysname x25 roa list list2 345 Sysname interface serial 2 0 Sysname Serial2 0 x25 call facility roa list list1 Sysname Serial2 0 quit Sysnam...

Page 458: ...tch When PVC switching is configured the link layer protocol on the input and output interfaces must be X 25 Moreover the specified PVCs on the two interfaces are effective After configuring the PVC switching route the device will receive information from the PVC of the input interface and forward the information through the specified PVC of the output interface You can configure X 25 PVC switchin...

Page 459: ...itch svc Syntax x25 switch svc number x 121 address sub dest destination address sub source source address interface interface type interface number dlci dlci number undo x25 switch svc x 121 address sub dest destination address sub source source address interface interface type interface number View System view Parameter x 121 address Destination X 121 address a pattern matching string with 1 to ...

Page 460: ...to delete the SVC route A device with X 25 switching configured can act as a simple X 25 switch The output interface of the SVC switching can be an X 25 interface or FR interface Annex G DLCI The link layer of the output interface must be X 25 or FR with the Annex G DLCI configured for output Before using this command you should use the x25 switching command to enable X 25 switching By default no ...

Page 461: ...s a pattern matching string with 1 to 15 numeric characters For the specific description of pattern matching see Table 69 and Table 70 If no wildcard is used the X 121 address is must be exactly matched sub dest destination address X 121 address an alphanumeric string of 1 to 15 characters The system replaces the destination DTE address in the call request packet with the destination address sub s...

Page 462: ...ess with 8888 Sysname system view Sysname x25 switch svc 111 sub dest 9999 sub source 8888 hunt group hg1 x25 switch svc xot Syntax x25 switch svc x 121 address sub dest destination address sub source source address xot ip address 1 6 xot option undo x25 switch svc x 121 address sub dest destination address sub source source address xot ip address 1 6 View System view Parameter x 121 address Desti...

Page 463: ...arameter None Description Use the x25 switching command to enable the X 25 switching function Use the undo x25 switching command to disable this function which will not affect the established VC switching By default X 25 packet switching function is disabled X 25 packet switching is used to accept packets from an X 25 interface and send them to a certain interface based on the destination informat...

Page 464: ...iciency of the device Using this function can avoid this problem to a certain extent If the previous call failed at one destination the X 25 would not send calls to such a destination again within the specified time If this parameter is set to 0 it is equal to disabling the function In addition this function is only effective to the calls originating from the local That is to say this parameter is...

Page 465: ... maximum idle time of the SVC on the interface Serial 2 0 to 10 minutes Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 x25 timer idle 10 x25 timer tx0 Syntax x25 timer tx0 seconds undo x25 timer tx0 View Interface view Parameter seconds X 25 restart timer in seconds It ranges 0 to 1000 Description Use the x25 timer tx0 command to set the restart timer for DTE or DCE Use the und...

Page 466: ...me on a DTE is 200 seconds and that on a DCE is 180 seconds According to X 25 a timer should be started when the DTE sends a call request or the DCE sends a call indication If no peer acknowledgement is received after the timer timeout the sending end will take some measures to guarantee the normal proceeding of the local procedure This parameter specifies the time of this timer Related command x2...

Page 467: ...20 x25 timer tx3 Syntax x25 timer tx3 seconds undo x25 timer tx3 View Interface view Parameter seconds Time of the clear request indication sending timer in seconds ranging from 1 to 1000 Description Use the x25 timer tx3 command to set the clear request indication sending timer for DTE or DCE Use the undo x25 timer tx3 command to restore the default By default the clear timer on a DTE is 180 seco...

Page 468: ...x25 vc range bi channel ltc htc out channel loc hoc in channel lic hic bi channel ltc htc out channel loc hoc out channel loc hoc undo x25 vc range View Interface view Parameter bi channel ltc htc Lowest and highest two way channels of X 25 VC and its value ranges from 0 to 4095 If htc highest two way channel is set to 0 ltc lowest two way channel must also be set to 0 which indicates that the two...

Page 469: ...25 window size View Interface view Parameter input window size Size of input window When X 25 window modulo is 8 its value ranges from 1 to 7 When X 25 window modulo is 128 its value ranges from 1 to 127 output window size Size of output window When X 25 window modulo is 8 its value ranges from 1 to 7 When X 25 window modulo is 128 its value ranges from 1 to 127 Description Set calling request ind...

Page 470: ...ork the ISP must assign a valid X 121 address to it If two devices are only directly connected back to back you can randomly specify the valid X 121 address If you only want the device to work in switching mode the X 121 address needs not to be configured When you reconfigure an X 121 address for an X 25 interface you need not delete the original X 121 address because the new address will overwrit...

Page 471: ...5 xot pvc command to add a PVC route of XOT Use the undo x25 pvc command to delete the specified PVC route of XOT By default no PVC route of XOT is configured XOT X 25 Over TCP is a protocol to load X 25 packet over TCP Configuring the XOT switching PVC can connects the local X 25 network to the remote one over the IP network You can also configure the keepalive attribute to support link detection...

Page 472: ...r procedure Description Use the x29 timer inviteclear time command to set the delay waiting for response after the PAD clear procedure is initiated Upon expiration of this timer the server aborts the connection by force and starts X 25 clear procedures Use the undo x29 timer inviteclear time command to restore the default The default is 5 seconds The server of X 25 PAD may send an Invite Clear mes...

Page 473: ...y link aggregation interface Syntax display link aggregation interface interface type interface number to interface type interface number View Any view Parameter interface interface type interface number to interface type interface number Specifies a port range or a port if the to keyword and the second port are not specified Description Use the display link aggregation interface command to displa...

Page 474: ...Remote System ID 0x0 0000 0000 0000 Port Number 0 Port Priority 0 Oper key 0 Flag Display detailed information about link aggregation for port Ethernet 1 2 in a static aggregation group Sysname display link aggregation interface ethernet 1 2 Flags A LACP_Activity B LACP_timeout C Aggregation D Synchronization E Collecting F Distributing G Defaulted H Expired Ethernet1 2 Selected AggID 20 Local Por...

Page 475: ... the sending end considers that collection of incoming frames is enabled on the link 1 for true and 0 for false F indicates whether the sending system considers that distribution of outgoing frames is enabled on the link 1 for true and 0 for false G indicates whether the receive state machine of the sending system is using default operational partner information 1 for true and 0 for false H indica...

Page 476: ...e the display link aggregation verbose command to display detailed information about the specified or all link aggregation groups You may find that information about the remote system for a manual link aggregation group is either replaced by none or not displayed at all This is normal because this type of aggregation group has no knowledge of its partner Example Display detailed information about ...

Page 477: ...2768 2 ACDEF Remote Actor Partner Priority Oper Key SystemID Flag GE1 2 161 32768 1 0x8000 00e0 fc00 12b0 ACDEF GE1 3 164 32768 1 0x8000 00e0 fc00 12b0 ACDEF Aggregation ID 2 AggregationType Static Loadsharing Type NonS Aggregation Description System ID 0x8000 000f e219 57c3 Port Status S Selected U Unselected Local Port Status Priority Oper Key Flag GE2 1 U 32768 1 AG Remote Actor Partner Priorit...

Page 478: ... considers that distribution of outgoing frames is enabled on the link 1 for true and 0 for false G indicates whether the receive state machine of the sending system is using default operational partner information 1 for true and 0 for false H indicates whether the receive state machine of the sending system is in the expired state 1 for true and 0 for false If a flag bit is set to 1 the correspon...

Page 479: ...CP priority in the range 0 to 65535 Description Use the lacp system priority command to assign an LACP priority to the local system Use the undo lacp system priority command to restore the default By default system LACP priority is 32768 Example Assign LACP priority 64 to the local system Sysname system view Sysname lacp system priority 64 link aggregation group description Syntax link aggregation...

Page 480: ...range 1 to 144 manual Creates a manual link aggregation group static Creates a static LACP link aggregation group Description Use the link aggregation group mode command to create a link aggregation group Use the undo link aggregation group command to remove a link aggregation group Note that aggregation groups currently referenced by modules cannot be removed Related command display link aggregat...

Page 481: ... enter aggregation port group view Instead of being created administratively an aggregation port group is created automatically upon creation of a link aggregation group and assigned the ID of the link aggregation group In aggregation port group view you can configure aggregation related settings such as STP VLAN QoS GVRP and MAC address learning but cannot add or remove member ports Example Enter...

Page 482: ...COMMANDS Description Use the reset lacp statistics command to clear statistics about LACP on a specified port or ports Related command display link aggregation interface Example Clear statistics about LACP on all ports Sysname reset lacp statistics ...

Page 483: ...ce type interface number argument pairs around this keyword Description Use the debugging lacp packet command to enable debugging for LACP protocol packets on the specified port s Use the undo debugging lacp packet command to disable debugging for LACP protocol packets on the specified port s By default debugging for LACP protocol packets is disabled on a port If no port is specified the command a...

Page 484: ...e following fields tlv A value of 2 indicates that the information is about the peer port len The length of the Partner information sys pri The LACP priority of the system where the peer port resides sys mac The system MAC address of the system where the peer port resides key The value of the operation key of the peer port pri The LACP priority of the peer port p The peer port number state The cur...

Page 485: ...C address 00e0 fc02 0300 port operation key 0x1 port LACP priority 0x8000 port number 0x2 current LACP state flag of the port 0x45 Partner tlv 2 len 20 sys pri 0x0 sys mac 0000 0000 0000 key 0x0 pri 0x0 p 0x0 state 0x0 The peer port information carried in the packet was as follows length 20 system LACP priority 0x0 system MAC address 0000 0000 0000 port operation key 0x0 port LACP priority 0x0 por...

Page 486: ...ation key 0x1 port LACP priority 0x8000 port number 0x6 current LACP state flag of the port 0x3d Partner tlv 2 len 20 sys pri 0x8000 sys mac 00e0 fc02 0300 key 0x1 pri 0x8000 p 0x1 state 0xd The peer port information carried in the packet was as follows length 20 system LACP priority 0x0 system MAC address 00e0 fc02 0300 port operation key 0x1 port LACP priority 0x8000 port number 0x1 current LACP...

Page 487: ...for Partner churn state machine ptx Debugging for PTX state machine rx Debugging for RX state machine all Debugging for all the state machines Description Use the debugging lacp state command to enable debugging for LACP protocol state machines on the specified port s Use the undo debugging lacp state command to disable debugging for LACP protocol state machines on the specified port s By default ...

Page 488: ...e stimulation Lacp_Enabled RX state machine transited from the PORT_DISABLED state to the EXPIRED state The event that triggered the transition was the enabling of LACP Lacp_Enabled 0 1360862 Sysname LAGG 8 FSM Port Ethernet1 2 FSM Rx transfers from state EXPIRED to state CURRENT by the stimulation Pdu_Indicate RX state machine transited from the EXPIRED state to the CURRENT state normal running s...

Page 489: ...None Description Use the debugging link aggregation event command to enable debugging for link aggregation events Use the undo debugging link aggregation event command to disable debugging for link aggregation events By default debugging for link aggregation events is disabled Table 78 Description on the fields of debugging link aggregation error command Field Description File The program file tha...

Page 490: ...7f AL AL Partner ID Select Unselect Share Master ID Type Ports Ports Type Port 10 M none 1 0 NonS Ethernet1 1 Aggregation group 10 existed It contained Ethernet 1 1 Remove aggregation group 10 Sysname system view Sysname undo link aggregation group 10 0 91991886 Sysname LAGG 8 AggDel Link Aggregation 10 is deleted Aggregation group 10 was removed 0 91991961 Sysname LAGG 8 OperKeyDel Oper key 1 is ...

Page 491: ...interface Use the undo modem command to disable modem call in or call out By default both modem call in and call out are disabled on the interface Example Enable receiving incoming Modem calls on User interface 1 Sysname system view Sysname user interface tty 1 Sysname ui tty1 modem call in modem auto answer Syntax modem auto answer undo modem auto answer View User interface view Parameter None De...

Page 492: ...ent with the current answer state of the connected modem anomalies may occur You are not encouraged to configure this command Example Set the answer mode of the modem connected to the asynchronous serial interface User interface1 to auto Sysname system view Sysname user interface tty 1 Sysname ui tty1 modem auto answer modem timer answer Syntax modem timer answer time undo modem timer answer View ...

Page 493: ...e displayed as well n To accept AT commands from the modem you must first put the modem in AT command mode So sending commands in transmitting mode is invalid The sendat command can issue only one AT command at a time After Modem is configured with the AT command its operating state might be changed thus affecting the functions such as dialup Please use this function with caution under the guidanc...

Page 494: ...H0 hangs up a modem which is a default setting H1 disconnects a modem through off hook In Inquiries to display the modem product ID ROM checksum or ROM checksum status The n argument can be 0 3 1 2 4 5 or 9 I0 I3 displays the default speed and hardware version of controller in the modem I1 calculates and displays ROM checksum I2 checks ROM calculates and checks checksum and displays the informatio...

Page 495: ...e again after you switch to the command mode by executing the Escape Code command Qn Enables modem to send result codes The n argument can be 0 or 1 Q0 enables output result codes which is a default setting Q1 disables output result codes Sr n Sets the value of a specified register to be n You can use this command to modify the value of a specified register You can specify the register to be set b...

Page 496: ...k function of modems By default the callback function of modems is disabled When a modem line is active that is when the modem detects the carrier or data is being received you may enable callback As the service modem callback command uses modem scripts to implement callback before entering PPP it enables callback before accounting is started This can thus help you save cost Example Enable the cal...

Page 497: ...up type and is organized by mirroring group numbers Example Display the information about all the port mirroring groups Sysname display mirroring group local mirroring group 3 type local status active mirroring port Ethernet1 1 inbound Ethernet1 2 both monitor port Ethernet1 3 mirroring group Syntax mirroring group groupid local Table 81 Description on the fields of the display mirroring group com...

Page 498: ...port mirroring port list both inbound outbound View System view Parameter groupid Port mirroring group number The value range is 1 to 5 for MSR 20 and BSR 30 series routers and 1 to 10 for MSR 50 series routers mirroring port list List of ports to be added to the port mirroring group You can specify multiple ports by providing this argument in the form of interface type interface number to interfa...

Page 499: ...group 1 Sysname undo mirroring group 1 mirroring port ethernet 1 1 to ethe rnet 1 10 both Sysname undo mirroring group 1 mirroring port pos 5 1 to pos 5 2 both Sysname undo mirroring group 1 mirroring port cpos 6 1 to cpos 6 2 both mirroring group monitor port Syntax mirroring group groupid monitor port monitor port id undo mirroring group groupid monitor port monitor port id View System view Para...

Page 500: ...rs the inbound packets only outbound Mirrors the outbound packets only Description Use the mirroring port command to add the current port to a port mirroring group as a source mirroring port Use the undo mirroring port command to remove the configuration Note that If you do not specify the mirroring group groupid keyword argument combination these two commands apply to port mirroring group 1 Depen...

Page 501: ...and to add the current port to a port mirroring group as the destination mirroring port Use the undo monitor port command to remove the configuration If you do not specify the mirroring group groupid keyword argument combination the monitor port command adds the current port to port mirroring group 1 Note that Depending on device models you can add ports interfaces to local port mirroring groups a...

Page 502: ...502 CHAPTER 30 PORT MIRRORING CONFIGURATION COMMANDS ...

Page 503: ... is 10 sec Internet protocol processing disabled Link layer protocol is PPP LCP initial Physical is MP Output queue Urgent queue Size Length Discards 0 50 0 Output queue Protocol queue Size Length Discards 0 500 0 Output queue FIFO queuing Size Length Discards 0 75 0 Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0...

Page 504: ...e Protocol queue Size Length Discards 0 500 0 Output queue FIFO queuing Size Length Discards 0 75 0 Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0 packets output 0 bytes 0 drops Refer to Table 82 for the description on the other fields LCP initial Link control protocol LCP negotiation is complete Physical Physica...

Page 505: ...e 2005 03 13 19 54 23 60 Serial1 1 17 Up Time 2005 03 13 19 54 23 60 Serial1 1 18 Up Time 2005 03 13 19 54 23 60 Serial1 1 19 Up Time 2005 03 13 19 54 23 60 Serial1 1 20 Up Time 2005 03 13 19 54 23 60 Inactive member channels 4 members Serial1 1 21 inactive Serial1 1 22 inactive Serial1 1 23 inactive Serial1 1 24 inactive Table 83 Description on the fields of the display ppp mp command Field Descr...

Page 506: ...isplay virtual access va number dialer dialer number peer peer address user user name vt vt number View Any view Parameter va number VA interface number in the range 0 to 128 dial dialer number Specifies a dialer interface number which is in the range of 0 to 1023 peer peer address Specifies the IP address of the peer of the VA interface expressed in dotted decimal notation user user name Specifie...

Page 507: ...audrate 64000 Output queue Urgent queue Size Length Discards 0 50 0 Output queue Protocol queue Size Length Discards 0 500 0 Output queue FIFO queuing Size Length Discards 0 75 0 Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0 packets output 0 bytes 0 drops Refer to Table 82 for the description on the fields of th...

Page 508: ...d the VT is not being used Example Create VT 10 interface Sysname system view Sysname interface virtual template 10 Sysname Virtual Template10 ip address ppp negotiate Syntax ip address ppp negotiate undo ip address ppp negotiate View Interface view Parameter None Description Use the ip address ppp negotiate command to enable IP address negotiation on the local interface so that the local interfac...

Page 509: ...iew Sysname interface serial 1 0 Sysname Serial1 0 link protocol ppp ppp account statistics enable Syntax ppp account statistics enable undo ppp account statistics enable View Interface view Parameters None Description Use the ppp account statistics enable command to enable the PPP accounting statistics function Use the undo ppp account statistics enable command to disable the PPP accounting stati...

Page 510: ...ress pool in the specified domain If the username received includes a domain name this domain name will be used for authentication if the name does not exist authentication is denied Otherwise the domain name configured for PPP authentication will be used If the username does not include a domain name and the domain name configured for PPP authentication does not exist authentication is denied By ...

Page 511: ...ew Parameter cipher Indicates to display the password in ciphertext simple Indicates to display the password in plain text password Default CHAP password a string of 1 to 16 characters When the simple keyword is used this password is in plain text When the cipher keyword is used this password can either be in ciphertext or in plain text The plain text is a string of no more than 16 characters like...

Page 512: ... local username as Root when performing CHAP authentication Sysname system view Sysname interface serial 1 0 Sysname Serial1 0 ppp chap user Root ppp ipcp dns Syntax ppp ipcp dns primary dns address secondary dns address undo ppp ipcp dns primary dns address secondary dns address View Interface view Parameter primary dns address IP address of the primary DNS server secondary dns address IP address...

Page 513: ...he ppp ipcp dns admit any command to configure the device to passively accept the DNS server address assigned by the peer even without sending a DNS request Use the undo ppp ipcp dns admit any command to disable this function By default a device does not passively accept DNS server address assigned by the peer When a device is connected to another device for example a network access server of a se...

Page 514: ...evice to request its peer for the DNS server address actively through Serial 2 0 interface Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 ppp ipcp dns request ppp ipcp remote address forced Syntax ppp ipcp remote address forced undo ppp ipcp remote address forced View Interface view Parameter None Description Use the ppp ipcp remote address forced command to forbid the peer to ...

Page 515: ...e the link will go up The value ranges from 0 to 100 Description Use the ppp lqc command to enable PPP link quality control LQC Use the undo ppp lqc command to disable PPP link quality control By default PPP LQC is disabled By default the arguments resume percentage and close percentage are equal But in actual configuration the resume percentage must not be smaller than close percentage PPP LQC fu...

Page 516: ...s not until there are data to transmit will DDC brings the dial up line up again and LQC resumes to work Example Enable LQC on interface Serial 1 0 setting close percentage to 90 and resume percentage to 95 Sysname system view Sysname interface serial 1 0 Sysname Serial1 0 ppp lqc 90 95 ppp mp Syntax ppp mp undo ppp mp View Interface view Parameter None Description Use the ppp mp command to enable...

Page 517: ...iptor received when performing LCP negotiation Based on the username or endpoint descriptor the system can locate the specified VT interface and create a MP binding according to the configuration on the template Note that When MP binding is only based on descriptors users cannot be differentiated So to bind users to different groups use the keyword both in the command When MP binding is only based...

Page 518: ...e Set the maximum number of binding links to 12 Sysname system view Sysname interface virtual template 0 Sysname Virtual Template0 ppp mp max bind 12 ppp mp min bind Syntax ppp mp min bind min bind num undo ppp mp min bind View Dialer interface view Parameter min bind num Specifies the minimum number of links in an MP bundle in the range 1 to 128 Description Use the ppp mp min bind command to conf...

Page 519: ... ppp mp min fragment command to set the minimum size of MP outgoing packet to be fragmented Use the undo ppp mp min fragment command to restore the default that is 128 bytes If you do not want small packets to be fragmented you can specify the size argument to an appropriate value n If MP bundle is implemented through hardware CPOS chip for example the minimum fragment size varies with chips for e...

Page 520: ...o an MP group Logical interfaces such as Tunnel interfaces do not support this command Example Add interface Serial 3 0 to MP group 3 Sysname system view Sysname interface serial 3 0 Sysname Serial3 0 ppp mp mp group 3 ppp mp user Syntax ppp mp user username bind virtual template number undo ppp mp user username View System view Parameter username User name a string of 1 to 80 characters virtual t...

Page 521: ...te command to configure the VT interface number to be bound on the interface enabling the interface to work in MP mode Use the undo ppp mp command to remove MP binding of the interface making the interface to work in PPP mode By default MP binding on the interface is disabled and the interface works in PPP mode This command specifies the VT interface number to be bound on the interface In configur...

Page 522: ...ke aabbcc The ciphertext has a fixed length of 24 characters like _ TT8F Y5SQ Q MAF4 1 Description Use the ppp pap local user command to configure the username and password sent by the local device when it is authenticated by the peer device via the PAP method Use the undo ppp pap local user command to disable the configuration By default both the username and the password are empty When the local...

Page 523: ...gument ranges from 0 to 99 and defaults to 0 Description Use the remote address command to allocate IP address for the peer device Use undo remote address to remove the IP address allocated for the peer device By default an interface does not allocate IP address for the peer device If the pool number argument is not specified while using this command the global address pool 0 will be used by defau...

Page 524: ... restore the default value or 10 seconds If the timer is set to 0 seconds this means keepalive packets will not be sent out On slow links the seconds argument must not be too small As a slow link takes long to transmit large packets this may cause the sending and receiving of keepalive packet to be postponed If an interface does not receive keepalive packet from the peer device for many keepalive ...

Page 525: ...ase you can check the compression information on MP templates such as VT or Dialer When IPHC RTP header compression is applied on a normal PPP link the compression is performed on the physical link In this case you can check the compression information on the physical interfaces only Example Display statistics about IPHC RTP header compression Sysname display ppp compression iphc rtp display ppp c...

Page 526: ...ce type interface number Specifies an interface by its type and number Description Use the display ppp compression stac lzs command to view statistics about STAC LZS compression Note that When STAC LZS header compression is applied on an MP link the compression is performed on the VA virtual access interfaces In this case you can check the compression information on MP templates such as VT or Dial...

Page 527: ...andard Nonstandard encapsulation mode Description Use the ppp compression iphc command to enable IP header TCP header and RTP header mainly compression on the interface Use the undo ppp compression iphc command to disable IP header compression By default TCP header compression and RTP header compression are disabled Once IP header compression is enabled the header compression for TCP packets used ...

Page 528: ...nections allowed on an interface Use the undo ppp compression iphc rtp connections command to restore the default value which is 16 RTP is connection oriented the number of RTP connections that a link can accommodate is relatively large The compression algorithm however requires the device to maintain some information for each connection when compressing headers To restrict the memory load generat...

Page 529: ...ing headers To restrict the memory load generated by compression you can use the ppp compression iphc tcp connections command to limit the number of compression enabled TCP connections to three for example The packets on the fourth TCP connection are not compressed as a result The configuration takes effect only after you perform the shutdown and then the undo shutdown operations on the interface ...

Page 530: ...ou disable outbound fast forwarding before execute the ppp compression stac lzs command Note that If the configuration is applied on VT and Dialer interfaces ISDN and asynchronous dialer interfaces the configuration takes effect only after you shut down and then bring up the interfaces If the configuration is applied on a MP bundle you need to shut down and then bring up all the member interfaces ...

Page 531: ...ue or 10 ms Example Set the maximum time delay of LFI fragment of Virtual Template1 to 20 ms Sysname system view Sysname interface virtual template 1 Sysname Virtual Template1 ppp mp lfi delay per frag 20 reset ppp compression iphc Syntax reset ppp compression iphc interface type interface number View User view Parameter Interface type Interface number Specifies an Interface by its type and number...

Page 532: ...532 CHAPTER 32 PPP LINK EFFICIENCY MECHANISM CONFIGURATION COMMANDS ...

Page 533: ... Intf State OIntf RemMAC LocMAC 2 Virtual Template1 0 UP Ethernet1 0 0050 ba22 7369 00e0 fc08 f4de View the statistics of PPPoE session Sysname display pppoe server session packet SID RemMAC LocMAC InP InO InD OutP OutO OutD 1 0050ba1a02ce 0001af02a40f 42 2980 0 16 343 0 Table 84 Description on the fields of the display pppoe server session all command Field Description SID PPPoE session identifie...

Page 534: ...irtual Template1 with interface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 pppoe server bind virtual template 1 pppoe server log information off Syntax pppoe server log information off undo pppoe server log information off View System view Parameter None Description Use the pppoe server log information off command to disable the PPPoE server to display the ...

Page 535: ... Maximum number of sessions that can be established at a local MAC address in the range 1 to 4069 Description Use the pppoe server max sessions local mac command to set the maximum number of PPPoE sessions that can be established at a local MAC address Use the undo pppoe server max sessions local mac command to restore the default configuration By default the value of number is 100 Example Set the...

Page 536: ...undo pppoe server max sessions total View System view Parameter number Maximum number of PPPoE sessions that the system can establish which ranges from 1 to 65535 Description Use the pppoe server max sessions total command to set the maximum number of PPPoE sessions that the system can establish Use the undo pppoe server max sessions total command to restore the default configuration By default th...

Page 537: ...emplate interface Description Use the reset pppoe server command to terminate a PPPoE session on the server side Example Terminate the session established on virtual template interface 1 on the server side Sysname reset pppoe server virtual template 1 ...

Page 538: ...538 CHAPTER 33 PPPOE SERVER CONFIGURATION COMMANDS ...

Page 539: ... Example Display the summary of PPPoE session Sysname display pppoe client session summary There are 2 sessions in total ID Bundle Dialer Intf Client MAC Server MAC State 1 1 1 Eth1 0 00e0fc0254f3 00049a23b050 PPPUP 2 2 2 Eth1 0 00e0fc0254f3 00049a23b050 PPPUP Display the statistics of PPPoE session packet Sysname display pppoe client session packet PPPoE Client Session ID InP InO InD OutP OutO Ou...

Page 540: ...00 Only after idle timeout is configured will the parameter be enabled By default packets is 10 Description Use the pppoe client command to establish a PPPoE session and specify the dialer bundle corresponding to the session Use the undo pppoe client command to delete a PPPoE session By default no PPPoE session is configured An Ethernet interface can be configured with multiple PPPoE sessions whic...

Page 541: ...ion No matter a PPPoE session works in permanent on line mode or in packet triggering mode it will be deleted permanently by the undo pppoe client command If it is necessary to recreate a PPPoE session the user must reconfigure it Example Create a PPPoE session on the interface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 pppoe client dial bundle number 1 res...

Page 542: ...he reset pppoe client command and the undo pppoe client command lies in the former only temporarily terminates a PPPoE session while the latter permanently deletes a PPPoE session Example Clear all PPPoE sessions and re initiate PPPoE session later Sysname reset pppoe client all ...

Page 543: ...erface type interface number ccp chap compression iphc rtp tcp core event interface interface type interface number ip packet interface interface type interface number ipcp ipv6 ipv6cp ipx ipxcp lcp lqc mp mpls multicast packet interface interface type interface number mpls unicast packet interface interface type interface number mplscp osi npdu osicp pap scp vjcomp all error event packet state in...

Page 544: ...ror PPP error debugging event PPP event debugging packet PPP packet debugging state PPP state debugging interface type interface number Specifies an interface by its type and number Description Use the debugging ppp command to enable PPP debugging Use the undo debugging ppp command to disable PPP debugging By default all PPP debugging is disabled The following tables describe some significant outp...

Page 545: ...eceive Terminate Ack RTA A Terminate Ack packet was received from the peer Receive Unknown Code RUC An unknown packet was received from the peer Receive Code Reject Receive Protocol Reject RXJ RXJ A Code Reject or Protocol Reject packet was received from the peer RXJ indicates that the rejected options are within the scope of normal operation and thus the rejection is acceptable RXJ indicates that...

Page 546: ... Packet Serial2 0 Output LCP c021 Pkt Len 35 State reqsent code ConfReq 01 id 2a len 31 MRU 1 len 4 val 05dc AuthProto 3 len 4 PAP c023 MagicNumber 5 len 6 val 31180c00 MRRU 11 len 4 val 05dc Discri 13 len 9 val 01fa4d432c8451 Interface Serial 2 0 sent a 35 byte LCP packet The type of the packet is Configure Request its ID is 2a and its length is 31 bytes with the header removed The LCP state mach...

Page 547: ...547 the TLV length is four bytes and the desired MRRU is 05dc and the endpoint discriminator of MP the TLV length is 9 bytes and the value is 01fa4d432c8451 ...

Page 548: ...548 CHAPTER 35 PPP DEBUGGING COMMANDS ...

Page 549: ...onds Example Set the aging time of dynamic bridge table entries to 500 seconds Sysname system view Sysname bridge aging time 500 bridge bridge set enable Syntax bridge bridge set enable undo bridge bridge set enable View System view Parameters bridge set Bridge set number an integer in the range of 1 to 255 Description Use the bridge bridge set enable command to enable a bridge set Use the undo br...

Page 550: ... Use the bridge bridging command to enable bridging of the specified network layer protocol s on the specified bridge set Use the undo bridge bridging command to disable bridging of the specified network layer protocol s on the specified bridge set By default bridging of all network layer protocols is enabled Note that non routable packets will be discarded if bridging of IP or IPX is disabled in ...

Page 551: ... the bridge learning command to enable dynamic address learning to allow the specified bridge set to add dynamic address entries into the bridge table Use the undo bridge learning command to disable dynamic address learning By default dynamic address learning is enabled namely all bridge sets are allowed to add dynamic address entries into the bridge table Example Enable dynamic address learning S...

Page 552: ...rd frames with a destination MAC address of 0000 0000 0111 Sysname system view Sysname bridge 1 mac address 0000 0000 0111 permit interface ethernet 1 0 bridge routing Syntax bridge bridge set routing ip ipx undo bridge bridge set routing ip ipx View System view Parameters bridge set Bridge set number an integer in the range of 1 to 255 ip Specifies the Internet protocol IP ipx Specifies the inter...

Page 553: ... bridge set bridge set undo bridge set bridge set View Interface view Parameters bridge set Bridge set number an integer in the range of 1 to 255 Description Use the bridge set command to add the current interface into a bridge set Use the undo bridge set command to remove the current interface from a bridge set By default a bridge set does not contain any interface Example Add Ethernet1 0 into br...

Page 554: ...s MAC address in the format of H H H dynamic Displays the information about dynamically learned addresses in the bridge table static Displays the information about manually configured about addresses in the bridge table Description Use the display bridge address table command to view the bridge table information Example View the information about all the manually configured entries in the bridge t...

Page 555: ...ng interface total 2 interface s in the set Ethernet1 0 up Ethernet1 1 up Bridge set 2 configure bridge 2 enable bridging ip undo bridging ipx bridging others undo routing ip undo routing ipx bridge 2 learning interface total 2 interface s in the set Ethernet1 0 1 up Ethernet1 0 2 up Set Bridge set number Flag Flag can be any of the four values P PERMIT N DENY D DYNAMIC S STATIC P The permit rule ...

Page 556: ...is provided this command displays the statistics about all the bridged traffic on the device Example View the statistics information about bridged traffic that has passed Ethernet1 0 Sysname display bridge traffic interface ethernet 1 0 the statistic of interface Ethernet1 0 in bridge set 1 Input 10 total 1 bpdu 2 single 0 multi 0 broadcast 0 ip 0 ipx 0 other protocol 0 eth2 0 snap 0 dlsw 0 other ...

Page 557: ...otally 10 frames were received on this interface including one BPDU and two unicast packets Output Indicates what kinds of and how many frames were sent out on this interface Send way Indicates how frames were sent Discard Indicates why and how many frames were discarded 0 by import state The number of frames discarded due to abnormal inbound interface state 0 for local frame The number of frames ...

Page 558: ... State of the bridge template interface Line protocol current state State of the data link layer protocol UP DOWN Description Bridge template1 Interface Descriptive string of the interface The Maximum Transmit Unit MTU of the interface Internet Address is 2 0 0 1 30 IP address of the interface IP Packet Frame Type Packet encapsulation format Hardware Address Hardware address MAC address IPv6 Packe...

Page 559: ...fr interface type dce Sysname Serial2 0 fr dlci 50 Sysname Serial2 0 bridge set 1 Sysname Serial2 0 fr map bridge 50 broadcast interface bridge template Syntax interface bridge template bridge set undo interface bridge template bridge set View System view Parameters bridge set Bridge set number an integer in the range of 1 to 255 Description Use the interface bridge template command to create a br...

Page 560: ...hernet interface If the bridge set contains no Ethernet interfaces its bridge template interface will use the system default MAC address Related command interface bridge template n Different models of devices may have different deferent system default MAC addresses Refer to your specific device model Example Set the MAC address of the bridge template interface of bridge set 1 to 0000 0011 0011 Sys...

Page 561: ...dule interface type interface number Clears MAC address entry of the specified interface Description Use the reset bridge address table command to remove one or more dynamic bridge table entries Example Clear all dynamic entries about bridge set 1 from the bridge table Sysname reset bridge address table bridge set 1 reset bridge traffic Syntax reset bridge traffic bridge set bridge set dlsw interf...

Page 562: ...t Enables bridging of broadcasts to the X 25 destination Description Use the x25 map bridge command to create an X 25 to bridging mapping Use the undo x25 map bridge command to remove an X25 to bridging mapping By default no X 25 to bridging mappings exist Related command display x25 map on page 426 Example Create an X 25 to bridging mapping on Serial2 0 Sysname system view Sysname interface seria...

Page 563: ...ialer isdn leased number command to configure 64 kbps leased line connection Use the undo dialer isdn leased number command to remove 64 kbps leased line connection By default no ISDN leased line connection is configured You must manually remove the existing leased line configuration before switching from single B channel leased line to 128 kbps leased line n You cannot configure this command on t...

Page 564: ...operty Digital Call Type Out Calling Number Calling Subaddress Called Number 6688164 Called Subaddress UserName IP Address Start Time 05 04 30 14 27 52 Time Used 00 04 34 display isdn call info Syntax display isdn call info interface interface type interface number View Any view Parameter interface type interface number Specifies an interface by its type and number Table 94 Description on the fiel...

Page 565: ...E State TEI_UNASSIGNED Link Layer 8 TEI NONE State TEI_UNASSIGNED Network Layer 1 connection s Connection 1 CCIndex 0x0055 State Active CES 1 Channel 0x00000001 TEI 65 Calling_Num Sub Called_Num Sub 6688164 Table 95 Description on the fields of the display isdn call info command Field Description BRI 2 0 User side ACTIVE Interface BRI 2 0 is operating at the user side of ISDN the D channel is acti...

Page 566: ...n call record Call Calling Called Start Stop Seconds Type Number Number Time Time Used In 10660016 10660016 03 07 05 11 23 09 0 In 10660022 10660022 03 07 05 11 23 09 0 CCIndex Index of the call at the CC layer State Current state of the layer 3 link of the BRI interface It can be one of the following NULL CALL_INITIATED OVERLAP_SENDING OUTGOING_CALL_PROCEEDING CALL_DELIVERED CALL_PRESENT CALL_REC...

Page 567: ...the durations of system timers and frame size If only ISDN protocol is specified the system will display the default system parameters of ISDN Example Display the system parameters of the ISDN protocol DSS1 Sysname display isdn parameters dss1 DSS1 ISDN layer 2 system parameters T200 sec T201 sec T202 sec T203 sec N200 K Bri K Pri 1 1 2 10 3 1 7 DSS1 ISDN layer 3 system timers Timer Number Value s...

Page 568: ...BRI 1 0 Sysname display isdn spid interface bri 1 0 Interface Bri1 0 SPID Type AUTO SPID B1 SPID Num Neg State SPID_UNASSIGNED Init State INIT_NULL SPID B2 SPID Num Neg State SPID_UNASSIGNED Init State INIT_NULL Table 97 Description of the fields of the display isdn parameters command Item Description T200 sec Retransmit timer in seconds of the L2 protocol of ISDN T201 sec TEI test request retrans...

Page 569: ...s in most cases despite the ISDN module can provide the channel management function as well Configured with isdn bch local manage command the router operates in local B channel management mode to select available B channels for calls Despite this the connected exchange has higher priority in B channel selection If the B channel Table 98 Description on the fields of the display isdn spid interface ...

Page 570: ...em view Sysname interface bri 2 0 Sysname Bri2 0 isdn bch local manage isdn bch select way Syntax isdn bch select way ascending descending View ISDN interface view Parameter ascending Selects B channels in ascending order descending Selects B channels in descending order Description Use the isdn bch select way command to set a B channel selection method but it does not work when the switch manages...

Page 571: ...Calling number Description Use the isdn calling command to have the messages from a calling party to a called party carry the calling number This command mainly applies on BRI interfaces If a calling party has configured this command on its BRI interface the call party will be able to see the calling number by viewing the call history information Use the undo isdn calling command to delete calling...

Page 572: ...coming digital call if the calling party sends a wrong subaddress or does not send at all Example Check whether the called number carried by incoming digital calls is 66668888 on the interface BRI 1 0 Sysname system view Sysname interface bri 1 0 Sysname Bri1 0 isdn check called number 1 66668888 isdn check time Syntax isdn check time date time undo isdn check time View System view Parameter date ...

Page 573: ...from a remote device it can automatically identify the length of the call reference However some devices on the network do not have such capability In the event that the router is required to place calls to such a device connected to it you must configure the router to use the same call reference length configured on the connected device n You are not allowed to configure this command on an ISDN i...

Page 574: ... to configure this command on an ISDN interface if there is still a call on it This command can take effect only if it is configured when there is no call on the interface Alternatively you can manually disable the interface by executing the shutdown command configure the command and then enable the interface by executing the undo shutdown command The operations however will lead to the disconnect...

Page 575: ...isdn ignore hlc isdn ignore llc Syntax isdn ignore llc undo isdn ignore llc View ISDN interface view Parameter None Description Use the isdn ignore llc command to disable ISDN to carry the Lower Layer Compatibility LLC information element in the SETUP messages sent when placing voice calls Use the undo isdn ignore llc command to configure ISDN to carry the LLC information element in SETUP messages...

Page 576: ... As for the data exchange performed between a router and an ISDN switch the default is as follows For an incoming call the router checks the received Setup messages for the Sending Complete Information Element to determine whether or not the number is received completely If a Setup message does contain the Sending Complete Information Element the number is not received completely For outgoing call...

Page 577: ...ormation Element in the transmitted SETUP messages Sysname Bri1 0 isdn ignore sending complete outgoing isdn L3 timer Syntax isdn L3 timer timer name time interval undo isdn L3 timer all timer name View ISDN interface view Parameter timer name Name of a L3 timer of the ISDN protocol time interval Timer duration which can take on one of the values listed in the following table all Restores the defa...

Page 578: ...to configure a BRI interface to operate in the point to point mode Use the undo isdn link mode command to restore the default BRI interface operating mode By default a BRI interface operates in the point to multipoint mode in which a BRI interface operating on the network side can have multiple end devices attached to it Example Configure BRI1 0 interface to operate in the point to point mode Sysn...

Page 579: ...0 0 1 International number 0 1 0 National number 1 0 0 Subscriber number 0 0 0 0 Unknown 0 0 0 1 ISDN telephony numbering loan Recommendation E 164 E 163 1 0 0 1 Private numbering plan DSS1 0 0 0 Unknown 0 0 1 International number 0 1 0 National number 0 1 1 Network specific number 1 0 0 Subscriber number 1 1 0 Abbreviated number 1 1 1 Reserved for extension 0 0 0 0 Unknown 0 0 0 1 ISDN telephony ...

Page 580: ...ISDN numbering plan Rec E 164 1 1 0 1 0 0 1 Abbreviated number in private numbering plan NTT 0 0 0 Unknown 0 1 0 National number 0 1 1 Network specific number 1 0 0 Subscriber number 0 0 0 0 Unknown 0 0 0 1 ISDN telephony numbering plan Recommendation E 164 1 0 0 1 Private numbering plan QSIG 0 0 0 0 0 0 0 Unknown number in Unknown numbering plan 0 0 0 0 0 0 1 Unknown number in ISDN Telephony numb...

Page 581: ...s how to set number type and code scheme 0 0 1 1 0 0 1 Level 2 regional number in private numbering plan 0 1 0 1 0 0 1 Level 1 regional number in private numbering plan 0 1 1 1 0 0 1 PISN specific number in private numbering plan 1 0 0 1 0 0 1 Level 0 regional number in private numbering plan Table 100 Types and code schemes of ISDN numbers Protocol Field Bit value Definition Type Code scheme 8 7 ...

Page 582: ...ber property calling Remove the number type and code scheme for the calling numbers in incoming and outgoing calls undo isdn number property calling Set a number type and code scheme for the called numbers in incoming and outgoing calls isdn number property number property called Remove the number type and code scheme for the called numbers in incoming and outgoing calls undo isdn number property ...

Page 583: ... no call on the interface Alternatively you can manually disable the interface by executing the shutdown command configure the command and then enable the interface by executing the undo shutdown command The operations however will lead to the disconnection of the call existing on the interface n Overlap sending is only suitable for five ISDN protocols ANSI DSS1 ETSI NI and QSIG Example Apply the ...

Page 584: ...and to set the protocol mode for an ISDN interface Use the undo isdn protocol mode command to restore the default protocol mode By default an ISDN interface operates in the user side mode Example Set the protocol mode to network side mode for BRI 2 0 interface assuming that the interface is a BSV interface Sysname system view Sysname interface bri 2 0 Sysname Bri2 0 isdn protocol mode network isdn...

Page 585: ...the command and then enable the interface by executing the undo shutdown command The operations however will lead to the disconnection of the call existing on the interface Example Apply ISDN ETSI on interface BRI 1 0 Sysname system view Sysname interface bri 1 0 Sysname Bri1 0 isdn protocol type etsi isdn q921 permanent Syntax isdn q921 permanent undo isdn q921 permanent View ISDN BRI interface v...

Page 586: ...RESTART messages to the remote end before maintaining B channels Example Enable the PRI interface to send RESTART messages before maintaining B channels Sysname system view Sysname isdn send restart isdn spid auto_trigger Syntax isdn spid auto_trigger View ISDN BRI interface view Parameter None Description Use the isdn spid auto_trigger command to enable SPID auto negotiation once on the BRI inter...

Page 587: ...o disable the NIT mode on the BRI interface By default NIT mode does not apply on BRI interfaces Instead static SPID or dynamic SPID negotiation is applied On an NI compliant BRI interface calls can be placed only after the SPID negotiation or initialization is finished When the router is communicating with an NI compliant exchange that does not support SPID negotiation you can use this command to...

Page 588: ... You can use this command to modify the duration of TSPID This command applies only on NI compliant BRI interfaces Example Set the duration of TSPID on the interface BRI 1 0 to 50 seconds Sysname system view Sysname interface bri 1 0 Sysname Bri1 0 isdn spid timer 50 isdn spid service Syntax isdn spid service audio data speech undo isdn spid service View ISDN BRI interface view Parameter audio Sup...

Page 589: ...se the isdn spid resend command to set the number of INFORMATION message retransmission attempts for SPID negotiation or initialization on an NI compliant BRI interface Use the undo isdn spid resend command to restore the default number of INFORMATION message retransmission attempts on the interface On a BRI interface compliant with the ISDN protocol in North America calls can be placed only after...

Page 590: ... to place calls normally In addition when the router works with an ISDN NI compliant switch the DMS100 for example in North America you must use this command to configure a unique SPID and LDN for each B channel to ensure a successful MP channel call Otherwise only one B channel can be brought up Also note that both SPID and LDN are provided by your service provider and the configuration of LDN vo...

Page 591: ...mmand to configure a unique SPID and LDN for each B channel to ensure a successful MP channel call Otherwise only one B channel can be brought up Also note that both SPID and LDN are provided by your service provider and the configuration of LDN voids the configuration of the ISDN calling command By default both SPID and LDN for the B2 channel on the BRI interface are null This command applies onl...

Page 592: ...tatistics in the form of flow Use the isdn statistics stop command to stop making statistics Use the isdn statistics clear to clear the statistic information Example Start counting incoming and outgoing messages on CE1 PRI interface serial 1 0 15 Sysname system view Sysname interface serial1 0 15 Sysname Serial1 0 15 isdn statistics start After a while stop counting incoming and outgoing messages ...

Page 593: ... up and calling for MP fails By default all the B channels on the BRI interface use one TEI value Example Configure the router to request the connected switch for a new TEI value before calling to bring up a B channel Sysname system view Sysname interface bri 1 0 Router Bri1 0 isdn two tei permanent active Syntax permanent active undo permanent active View ISDN BRI interface view Parameter None De...

Page 594: ...the isdn q921 permanent command triggers the ISDN BRI interface to establish Q 921 links n The support for these two commands varies with device models Example Specify BRI 2 0 interface to be in permanent active state on physical layer assuming that the interface is a BSV interface and operating on network side Sysname system view Sysname interface bri 2 0 Sysname Bri2 0 isdn protocol mode network...

Page 595: ...ace view Parameters None Description Use the shutdown command to shut down an ISDN interface Use the undo shutdown command to bring up an ISDN interface By default an ISDN interface is up Examples Shut down BRI 2 0 Sysname system view Sysname interface bri 2 0 Sysname Bri2 0 shutdown Bring up BRI 2 0 Sysname system view Sysname interface bri 2 0 Sysname Bri2 0 undo shutdown ...

Page 596: ...596 CHAPTER 37 ISDN CONFIGURATION COMMANDS ...

Page 597: ...odulo and check region configuration Examples Activate MST region configuration manually Sysname system view Sysname stp region configuration Sysname mst region active region configuration check region configuration Syntax check region configuration View MST region view Parameters None Description Use the check region configuration command to view all the MST region configuration information inclu...

Page 598: ...Any view Parameters instance instance id Displays the spanning tree information of a particular MST instance The minimum value of instance id is 0 representing the common internal spanning tree CIST and the maximum value of instance id is 15 interface interface list Displays the spanning tree information on one or multiple ports You can provide up to 10 port lists by each of which you can specify ...

Page 599: ...CIST common root regional root the internal path cost from the device to the regional root CIST root port of the device and status of the BPDU guard function enabled or disabled CIST port parameters Port status role priority path cost designated bridge designated port edge port non edge port whether connecting to a point to point link maximum transmission rate transmit limit status of the root gua...

Page 600: ...l port command to view the information about abnormally blocked ports Any of the following reasons may cause a port to be abnormally blocked Root guard action Loop guard action MSTP BPDU format compatibility protection action Examples View information about abnormally blocked ports Sysname display stp abnormal port MSTID Blocked Port Reason 1 Ethernet1 0 ROOT Protected 2 Ethernet1 1 LOOP Protected...

Page 601: ...instance instance id history View Any view Table 104 Description on the fields of the display stp abnormal port command Field Description MSTID MST instance ID Blocked Port Name of blocked port which corresponds to the related MST instance Reason Reason that caused abnormal blocking of the port ROOT Protected root guard action LOOP Protected loop guard action Formatcompatibility Protected MSTP BPD...

Page 602: ...a spanning tree instance ID this command will display the historic port role calculation information of only this specified spanning instance in the timing of port role calculation Examples View the historic port role calculation information of the card on slot 1 in MSTP instance 2 Sysname display stp instance 2 history slot 1 STP slot 1 history trace Instance 2 Port Ethernet1 1 Role change ROOT D...

Page 603: ...rameters None Description Use the display stp root command to view the root bridge information of all MSTP instances Examples View the root bridge information of all MSTP instances Sysname display stp root MSTID Root Bridge ID ExtPathCost IntPathCost Root Port 0 0 0013 1923 da80 0 0 Table 107 Description on the fields of the display stp region configuration command Field Description Format selecto...

Page 604: ... sequenced by instance ID and by port name in each spanning tree instance If you specify a spanning tree instance ID this command will display the statistics of TC BPDUs received and sent by all ports in the specified spanning tree instance in port name order Examples View the statistics of TC BPDUs received and sent by all ports on the card on slot 1 in MSTP instance 0 Sysname display stp instanc...

Page 605: ...he specified VLAN s from the specified MST instance and map the removed VLAN s to the CIST MST instance 0 By default all VLANs are mapped to the CIST Notice that If you specify no VLAN in the undo instance command all VLANs mapped to the specified MST instance will be remapped to the CIST You cannot map the same VLAN to different MST instances If you map a VLAN that has been mapped to an instance ...

Page 606: ...rs the spanning tree statistics information on one or multiple ports You can provide up to 10 port lists by each of which you can specify an individual port in the form of interface type interface number or a port range in the form of interface type start interface number to interface type end interface number where the end port number must be greater than the start port number Description Use the...

Page 607: ... commands instance region name check region configuration vlan mapping modulo and active region configuration Examples Set the MSTP revision level of the MST region to 5 Sysname system view Sysname stp region configuration Sysname mst region revision level 5 stp Syntax stp enable disable undo stp View System view Ethernet interface view port group view Parameters enable Enables the MSTP feature di...

Page 608: ... enabled MSTP dynamically maintains spanning tree status of the corresponding VLANs based the received configuration BPDUs After being disabled it stops maintaining the spanning tree status Refer to Link Aggregation Configuration Commands on page 473 for information about port groups Related commands stp mode Examples Enable the MSTP feature globally Sysname system view Sysname stp enable Disable ...

Page 609: ...mers are related to the network size You can set these three timers indirectly by setting the network diameter Based on the network diameter you configured MSTP automatically sets an optimal hello time forward delay and max age for the device With the network diameter set to 7 the default the three timer are also set to their defaults Note that this configuration is effective for the CIST and root...

Page 610: ...liant BPDUs and sends when needed compatible format or 802 1s compliant BPDUs If the mode is set to legacy or dot1s on a port the port can only receive and send BPDUs of the specified format If the port is configured not to detect the packet format automatically while it works in the MSTP mode and if it receives a packet in the format other than as configured that port will become a designated por...

Page 611: ...ew Sysname stp config digest snooping Enable Digest Snooping on Ethernet 1 1 Sysname system view Sysname interface ethernet 1 1 Sysname Ethernet1 1 stp config digest snooping stp cost Syntax stp instance instance id cost cost undo stp instance instance id cost View Ethernet interface view port group view Parameters instance instance id Sets the path cost of the port s in a particular MST instance ...

Page 612: ...Syntax stp edged port enable disable undo stp edged port View Ethernet interface view port group view Parameters enable Configures the current port to be an edge port disable Configures the current port to be a non edge port Description Use the stp edged port enable command to configure the current port to be an edge port Use the stp edged port disable or undo stp edged port enable command to conf...

Page 613: ...roup view Parameters None Description Use the stp loop protection command to enable the loop guard function for a port or a group of ports Use the undo stp loop protection command to restore default loop guard setting for a port of a group of ports By default the loop guard function is disabled Note that configured in Ethernet interface view the setting is effective on the current port only config...

Page 614: ... device becomes the network diameter of that spanning tree and restricts the size of that spanning tree in the current MST region Devices other than the root bridge in an MST region use the maximum hops setting on the root bridge Examples Set the maximum hops of the MST region to 35 Sysname system view Sysname stp max hops 35 stp mcheck Syntax stp mcheck View System view Ethernet interface view Pa...

Page 615: ...configure the MSTP work mode of the device Use the undo stp mode command to restore the MSTP work mode to the default setting By default an MSTP compliant device works in MSTP mode Related commands stp mcheck stp Examples Configure the MSTP compliant device to work in STP compatible mode Sysname system view Sysname stp mode stp stp no agreement check Syntax stp no agreement check undo stp no agree...

Page 616: ...the default path cost for ports based on a private standard Description Use the stp pathcost standard command to specify a standard for the device to use when calculating the default path cost of the link connected with the device Use the undo stp pathcost standard command to restore the default setting of the calculation standard The default standard used by the device is legacy Note that if you ...

Page 617: ...ce to calculate the default path cost for ports based on IEEE 802 1t Sysname system view Sysname stp pathcost standard dot1t stp point to point Syntax stp point to point auto force false force true undo stp point to point View Ethernet interface view port group view 100Mbps Single Port Aggregated Link 2 Ports Aggregated Link 3 Ports Aggregated Link 4 Ports 19 19 19 19 200 000 100 000 66 666 50 000...

Page 618: ...the port group When connecting to a non point to point link a port is incapable of rapid state transition If the current port is the master port of aggregated ports or if it works in full duplex mode the link to which the current port connects is a point to point link We recommend that you use the default setting namely let MSTP detect the link status automatically This setting is effective to the...

Page 619: ...6 2006 Sysname MSTP 3 PFWD Instance 2 s Ethernet 1 2 has been set to forwarding state The information mentioned above shows that in instance 2 that state of both Ethernet 1 1 and Ethernet 1 2 has changed to forwarding stp port priority Syntax stp instance instance id port priority priority undo stp instance instance id port priority View Ethernet interface view port group view Parameters instance ...

Page 620: ... priority priority undo stp instance instance id priority View System view Parameters instance instance id Sets the priority of the current port s in a particular spanning tree instance The minimum value of instance id is 0 representing the CIST and the maximum value of instance id is 15 priority Port priority in the range of 0 to 61440 at the step of 4096 namely you can set up to 16 priority valu...

Page 621: ...view you can configure the parameters related the MST region including the region name VLAN to instance mapping and revision level Examples Enter MST region view Sysname system view Sysname stp region configuration Sysname mst region stp root primary Syntax stp instance instance id root primary undo stp instance instance id root View System view Parameters instance instance id MST instance ID in t...

Page 622: ...D in the range of 0 to 15 MST instance 0 represents the CIST Description Use the stp root secondary command to specify the current device as a secondary root bridge of the specified MST instance Use the undo stp root command to remove the current device as a secondary root bridge of the specified MST instance By default a device is not a secondary root bridge Note that If you do not provide instan...

Page 623: ...rt group view the setting is effective on all the ports in the port group Examples Enable the root guard function for port Ethernet 1 1 Sysname system view Sysname interface Ethernet 1 1 Sysname Ethernet1 1 stp root protection stp tc protection Syntax stp tc protection enable stp tc protection disable View System view Parameters None Description Use the stp tc protection enable command to enable t...

Page 624: ...od of time immediately after it receives TC BPDUs to 6 times Examples Set the maximum number of times the device deletes forwarding address entries within a certain period of time immediately after it receives TC BPDUs to 10 Sysname system view Sysname stp tc protection threshold 10 stp timer forward delay Syntax stp timer forward delay centi seconds undo stp timer forward delay View System view P...

Page 625: ...work in the stp bridge diameter bridge number command and let MSTP automatically calculate an optimal setting of these three timers Related commands stp timer hello stp timer max age and stp bridge diameter Examples Set the forward delay timer of the device to 2 000 centiseconds Sysname system view Sysname stp timer forward delay 2000 stp timer hello Syntax stp timer hello centi seconds undo stp t...

Page 626: ...p timer max age Syntax stp timer max age centi seconds undo stp timer max age View System view Parameters centi seconds Max age in the range 600 to 4 000 in centiseconds This argument must be a multiple of 100 Description Use the stp timer max age command to set the max age timer of the device Use the undo stp timer max age command to restore the max age timer of the device to the default setting ...

Page 627: ...p timer factor command to configure the timeout time of the device by setting the timeout factor Timeout time timeout factor 3 hello time Use the undo stp timer factor command to restore the timeout factor to the default setting By default the timeout factor of the device is set to 3 After the network topology is stabilized each non root bridge device forwards configuration BPDUs to the surroundin...

Page 628: ...e maximum transmission rate of all ports of the device is 10 Note that Configured in Ethernet interface view the setting is effective on the current port only configured in port group view the setting is effective on all the ports in the port group A larger maximum transmission rate value represents more MSTP packets that the port will send within each hello time but this means that more device re...

Page 629: ...ing modulo command you can quickly specify a VLAN for each MST instance This command maps each VLAN to the MST instance whose ID is VLAN ID 1 modulo 1 where VLAN ID 1 modulo is the modulo operation for VLAN ID 1 If the modulo value is 15 for example then VLAN 1 will be mapped to MSTI 1 VLAN 2 to MSTI 2 VLAN 16 to MSTI 1 VLAN 17 to MSTI 2 and so on Related commands region name revision level check ...

Page 630: ...630 CHAPTER 38 MSTP CONFIGURATION COMMANDS ...

Page 631: ...the undo description command to restore the default By default the descriptive string for a VLAN is the VLAN ID for example VLAN 0001 for a VLAN interface is name of the current VLAN interface for example Vlan interface1 Interface Example Assign a descriptive string RESEARCH for VLAN 1 Sysname system view Sysname vlan 1 Sysname vlan1 description RESEARCH Assign a descriptive string VLAN INTERFACE ...

Page 632: ...tput 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0 packets output 0 bytes 0 drops Table 111 Description on the fields of the display interface vlan interface command Field Description Vlan interface2 current state The physical state of a VLAN interface Line protocol current state The link layer protocol state of a VLAN interface Description The description of a VLAN interface The Max...

Page 633: ...e and interface number in which interface number is the main interface number whereas subnumber is the sub interface number ranging from 1 to 4 094 reserved Displays information of the reserved VLANs Protocol modules determine reserved VLANs according to function implementation and reserved VLANs serve protocol modules Reserved VLANs cannot be modified static Displays static VLAN information Descr...

Page 634: ...cannot be created Related command display interface vlan interface Example Create VLAN interface 2 Sysname system view Sysname vlan 2 Sysname vlan2 quit Sysname interface vlan interface 2 Sysname Vlan interface2 Table 112 Description on the fields of the display vlan command Field Description VLAN ID VLAN ID VLAN Type VLAN type static or dynamic Route interface Whether the VLAN interface is config...

Page 635: ...ximum of 32 IP addresses can be configured on a VLAN interface in which one is the primary IP address and all the rest are secondary IP addresses The total number of IP addresses on a VLAN interface varies by device Their relationship is illustrated as follows A newly configured main IP address will replace the original one if there is one Using the undo ip address command without any parameter in...

Page 636: ...he interface will resume Shutting down bringing up a VLAN interface does not affect any Ethernet ports in the VLAN The state of an Ethernet port does not change with the VLAN interface state Example Shut down the VLAN interface and then bring it up Sysname system view Sysname interface vlan interface 2 Sysname Vlan interface2 shutdown Sysname Vlan interface2 undo shutdown vlan Syntax vlan vlan id1...

Page 637: ...not create remove reserved VLANs that are reserved for specific function implementation Dynamic VLANs cannot be removed using the undo vlan command A VLAN associated with QoS policies cannot be removed Related command display vlan Example Enter VLAN 2 view Sysname system view Sysname vlan 2 Sysname vlan2 Create VLAN 4 through VLAN 100 Sysname system view Sysname vlan 4 to 100 Please wait Done ...

Page 638: ...638 CHAPTER 39 VLAN CONFIGURATION COMMANDS ...

Page 639: ...ort command to remove one Access port or a group of Access ports from a VLAN Note This command is only applicable to Access ports All ports have their default link type configured as Access however users can manually configure the port type For more information refer to port link type on page 642 Related command display vlan Example Add the ports from Ethernet 1 1 to Ethernet 1 3 to VLAN 2 Sysname...

Page 640: ...lan 3 port hybrid pvid vlan Syntax port hybrid pvid vlan vlan id undo port hybrid pvid View Ethernet interface view port group view Parameter vlan id VLAN ID in the range 1 to 4094 Description Use the port hybrid pvid vlan command to configure the default VLAN ID of the Hybrid port Use the undo port hybrid pvid command to restore the default VLAN 1 Execution of the undo vlan command on a Hybrid po...

Page 641: ...rrent Hybrid port to the specified VLAN s Use the undo port hybrid vlan command to remove the current Hybrid port from the specified VLAN s A hybrid port can belong to multiple VLANs and thus can allow packets of multiple VLANs to pass Repetitive execution of the port hybrid vlan vlan id list tagged untagged command will yield a set VLANs to which the Hybrid port belongs Configured in Ethernet int...

Page 642: ...orts in the port group Refer to Link Aggregation Configuration Commands on page 473 for information about port groups By default a port is an Access port Example Configure Ethernet 1 0 to be a Trunk port Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 port link type trunk port trunk permit vlan Syntax port trunk permit vlan vlan id list all undo port trunk permit vlan vlan i...

Page 643: ...name vlan all Please wait Done Sysname interface ethernet 1 0 Sysname Ethernet1 0 port link type trunk Sysname Ethernet1 0 port trunk permit vlan 2 4 50 to 100 Please wait Done port trunk pvid vlan Syntax port trunk pvid vlan vlan id undo port trunk pvid View Ethernet interface view port group view Parameter vlan id VLAN ID in the range of 1 to 4 094 Description Use the port trunk pvid vlan comman...

Page 644: ... default VLAN ID for the Trunk port of both the local device and remote device Otherwise the packets cannot be transmitted correctly Related command port link type Example Configure the default VLAN ID for the Trunk port Ethernet 1 0 as 100 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 port link type trunk Sysname Ethernet1 0 port trunk pvid vlan 100 ...

Page 645: ...ed command voice vlan voice vlan enable n As the first 24 bits of a MAC address in binary format an OUI address is a globally unique identifier assigned to a vendor by IEEE Example Display the OUI address of a voice VLAN Sysname display voice vlan oui Oui Address Mask Description 0001 e300 0000 ffff ff00 0000 Siemens phone 0003 6b00 0000 ffff ff00 0000 Cisco phone 0004 0d00 0000 ffff ff00 0000 Ava...

Page 646: ...1 4 MANUAL Ethernet1 5 AUTO voice vlan Syntax voice vlan vlan id enable Description Description of the OUI addresses that are allowed to pass Table 113 Description on the fields of the display voice vlan oui command Field Description Table 114 Description on the fields of the display voice vlan state command Field Description Voice VLAN status The current voice VLAN status that is whether it is en...

Page 647: ... voice vlan state Example Enable the voice VLAN feature on VLAN 2 assuming that VLAN 2 already exists Sysname system view Sysname voice vlan 2 enable voice vlan aging Syntax voice vlan aging minutes undo voice vlan aging View System view Parameter minutes Aging time of a voice VLAN in the range 5 to 43 200 minutes This value is 1 440 by default Description Use the voice vlan aging command to confi...

Page 648: ...automatic mode only The Trunk or Hybrid port can be configured with the voice VLAN feature The Access port cannot be configured with this feature Before enabling the voice VLAN feature on a port ensure that its is enabled globally first Only after the voice VLAN feature is enabled under both system view and Ethernet interface view will it functions properly Example Enable the voice VLAN attribute ...

Page 649: ...em default OUI addresses which can be removed or then added are illustrated in the following table Related command display voice vlan oui Example Configure the OUI address as 1234 1234 1234 the mask as ffff ff00 0000 and the descriptive string as phone A that is voice packets from Phone A with source MAC address being 1234 1234 1234 can pass through the voice VLAN Sysname system view Sysname voice...

Page 650: ...do voice vlan mode auto command to configure the voice VLAN working mode on a port to be manual By default the voice VLAN working mode is automatic The voice VLAN working mode of a port is independent of those of other ports Note that if a port is enabled with voice VLAN in manual mode you need to add the port to the voice VLAN manually to validate the voice VLAN Example Configure the voice VLAN w...

Page 651: ...ult the security mode of voice VLAN is enabled n The voice vlan security enable and undo voice vlan security enable commands take effect only after the voice VLAN attribute is enabled globally Example Disable the security mode of the voice VLAN Sysname system view Sysname undo voice vlan security enable ...

Page 652: ...652 CHAPTER 41 VOICE VLAN CONFIGURATION COMMANDS ...

Page 653: ...isolate group information Uplink port support NO Group ID 1 Ethernet1 1 Ethernet1 2 port isolate enable Syntax port isolate enable undo port isolate enable View Ethernet interface view port group view Parameter None Table 116 Description on the output information of the display port isolate group command Field Description Port isolate group information Information of the isolation group Uplink por...

Page 654: ... Configured in Ethernet interface view the setting is effective on the current port only configured in port group view the setting is effective on all ports in the port group Refer to Link Aggregation Configuration Commands on page 473 for information about port groups This command adds a port to the default isolation group 1 Example Add port Ethernet 1 0 to isolation group 1 Sysname system view S...

Page 655: ... undo standby routing group command to disable the dynamic route backup function By default the dynamic route backup function is disabled n Before enabling the dynamic route backup function on a dialup interface make sure that DCC has been enabled on the dialup interface Example Enable the dynamic route backup function on Bri 3 0 Sysname system view Sysname interface bri 3 0 Sysname Bri3 0 standby...

Page 656: ...mic route backup group 1 to monitor routes to the network segments 20 0 0 0 8 and 30 0 0 0 8 Sysname system view Sysname standby routing rule 1 ip 20 0 0 1 255 0 0 0 Sysname standby routing rule 1 ip 30 0 0 1 255 0 0 0 standby timer routing disable Syntax standby timer routing disable seconds undo standby timer routing disable View Interface view Parameter seconds Delay between primary link connec...

Page 657: ...ts or broadcast packets cannot be sent Description Use the broadcast limit link command to set the maximum number of links that can send multicast or broadcast packets in a VT Use the undo broadcast limit link command to restore the default setting When a VT has plenty of links the system performance will be decreased if all the links send multicast or broadcast packets In this case you can use th...

Page 658: ... seconds output 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0 packets output 0 bytes 0 drops display interface mfr Syntax display interface mfr mfr number View Any view Parameter mfr number Multilink frame relay MFR interface number which can be the number of any existing MFR interface Table 117 Description on the fields of the display interface loopback command Field Description cur...

Page 659: ...00 0 Output queue FIFO queuing Size Length Discards 0 75 0 Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0 packets output 0 bytes 0 drops Table 118 Description on the fields of the display interface mfr command Field Description current state Physical state of the interface UP DOWN Line protocol current state Stat...

Page 660: ...p group12 Interface The Maximum Transmit Unit is 1500 Hold timer is 10 sec Internet protocol processing disabled Link layer protocol is PPP LCP initial Physical is MP Output queue Urgent queue Size Length Discards 0 50 0 Output queue Protocol queue Size Length Discards 0 500 0 Output queue FIFO queuing Size Length Discards 0 75 0 Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds ou...

Page 661: ... 0 Sysname display interface null 0 NULL0 current state UP Line protocol current state UP spoofing Description NULL0 Interface The Maximum Transmit Unit is 1500 Internet protocol processing disabled Physical is NULL DEV Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packets sec 0 packets input 0 bytes 0 drops 0 packets output 0 bytes 0 drops Refer to Table 1...

Page 662: ...late command to view the state information about the existing VTs If you do not provide a VT number this command will display the state information about all the existing VTs Related command interface virtual template Example View the state information about VT 1 Sysname display interface virtual template 1 Virtual Template1 current state UP Table 119 Description on the fields of the display inter...

Page 663: ...view Parameter interface type interface number Interface type and interface number verbose Displays the detailed statistics Description Use the display mfr command to display the configuration information and statistics information about the MFR bundle and bundled links Example Display the configuration information and state information about all the MFR bundles and bundled links Sysname display m...

Page 664: ...nually VA interfaces will be removed due to underlying layer disconnection or user intervention Example View the state information about all the VA interfaces Sysname display virtual access vt 1 Virtual Template1 0 current state UP Line protocol current state UP Description Virtual Template1 0 Interface The Maximum Transmit Unit is 1500 Link layer protocol is PPP LCP opened MP opened IPCP opened O...

Page 665: ...e interface interface type interface number subnumber p2mp p2p command to create a WAN sub interface and enter WAN sub interface view Use the undo interface command to remove the specified sub interface Currently point to multipoint or point to point sub interfaces can be configured for ATM interfaces frame relay interfaces or X 25 interfaces By default point to multipoint sub interfaces are creat...

Page 666: ...4 096 sub interfaces Example Create a sub interface on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 1 Sysname Ethernet1 0 1 interface loopback Syntax interface loopback number undo interface loopback number View System view Parameter number Loopback interface number ranging from 0 to 1023 Description Use the interface loopback command to create a Loopback interface and enter the...

Page 667: ...ew Sysname interface mfr 3 Sysname MFR3 interface mp group Syntax interface mp group mp number undo interface mp group mp number View System view Parameter mp number MP group interface number ranging from 0 to 1023 Description Use the interface mp group command to create an MP group interface and enter the specified MP group interface view Use the undo interface mp group command to remove an MP gr...

Page 668: ... System view Parameter number VE interface number ranging from 0 to 1023 Description Use the interface virtual ethernet command to create a VE interface and enter the specified VE interface view Use the undo interface virtual ethernet command to remove the specified VE interface Example Create VE interface 12 Sysname system view Sysname interface virtual ethernet 12 Sysname Virtual Ethernet12 inte...

Page 669: ...o remove the specified VT Before removing a VT make sure that all the relevant VA interfaces are removed and this virtual interface is not being used Example Create VT 10 Sysname system view Sysname interface virtual template 10 Sysname Virtual Template10 ...

Page 670: ...670 CHAPTER 44 LOGICAL INTERFACE CONFIGURATION COMMANDS ...

Page 671: ...store the default that is slave When connected to a SONET SDH device the CPOS interface must use the slave clock because the SONET SDH network clock is more precise When the interface is directly connected to another CPOS interface with fiber optic you only need to configure them with different clock modes Example Set the clock mode of interface CPOS 1 0 to master Sysname system view Sysname contr...

Page 672: ... CRC word length for a synchronizing serial interface formed by CPOS interfaces Use the undo crc command to restore the default The CRC word length for a synchronizing serial interface formed by CPOS interfaces defaults to 16 bits Example Set the CRC word length to 16 bits for CPOS interface 1 0 Sysname system view Sysname controller cpos 1 0 Sysname Cpos1 0 e1 3 channel set 1 timeslot list 1 31 S...

Page 673: ...Alarm none Error 0 BIP 0 SEF Multiplex section Alarm none Error 0 BIP 0 REI Higher order path VC 3 1 Alarm none Error 0 BIP 0 REI Higher order path VC 3 2 Alarm none Error 0 BIP 0 REI Higher order path VC 3 3 Alarm none Error 0 BIP 0 REI Cpos4 0 CT1 1 is up Frame format ESF clock master loopback not set Cpos4 0 CT1 2 is up Frame format ESF clock master loopback not set Table 121 Possible error typ...

Page 674: ...mat SDH multiplex AU 3 clock master loopback not set Physical layer information of the CPOS interface the framing format is set to SDH AU 3 path is adopted master clock internal clock signal is used and loopback is disabled Tx J0 0x01 J1 NetEngine C2 0x02 The sent overhead bytes Rx J0 0x01 J1 NetEngine C2 0x02 The received overhead bytes Regenerator section Alarm and error statistics about the reg...

Page 675: ...er path VC 4 1 Alarm none Error 0 BIP 0 REI Lower order path Alarm none Error 0 BIP 0 REI Cpos2 0 CE1 1 is up Frame format NO CRC4 clock slave loopback not set E1 framer 1 1 1 1 Alarm none Error 0 FERR 0 FEBE 0 AERR In the output E1 framer 1 1 1 1 presents how the E1 channel is multiplexed 1 1 1 1 represents in order VC 4 number TUG 3 number TUG 2 number and TUG 12 number for an E1 channel display...

Page 676: ...ion Cpos4 0 current state The current physical state of the CPOS interface Frame format SDH multiplex AU 3 clock master loopback not set Physical layer information of the CPOS interface the framing format is set to SDH AU 3 path is adopted master clock internal clock signal is used and loopback is disabled Tx J0 0x01 J1 NetEngine C2 0x02 The sent overhead bytes Rx J0 0x01 J1 NetEngine C2 0x02 The ...

Page 677: ... document By default timeslot bundling is disabled on E1 channels When the E1 channel is channelized its timeslot 0 is used for synchronization and the other 31 timeslots can be bundled to form one or multiple serial interfaces These serial interfaces are numbered in the form of interface number channel number channel set number To guarantee the processing capacity of the system you can have only ...

Page 678: ... clock modes depending on connected devices For example when connected to a SONET SDH device an E1 channel should use the slave clock mode and when directly connected to another device with fiber optic it can use either mode so long as the mode is different from the one used at the opposite end Note that different E1 channels of the same CPOS physical interface are independent of one another in te...

Page 679: ...E1 channel remote Enables external loopback on the E1 channel Description Use the e1 set loopback command to configure the loopback mode of the E1 channel Use the undo e1 set loopback command to remove a loopback By default loopback is disabled You may test E1 channels in different depths by using the loopback command with different keywords In an internal loopback data of the sender is directly l...

Page 680: ...utdown e1 unframed Syntax e1 e1 number unframed undo e1 e1 number unframed View CPOS interface view Parameter e1 number Number of an E1 channel on the CPOS interface in the range 1 to 63 Description Use the e1 unframed command to set an E1 channel on the CPOS interface to operate in unframed mode that is E1 mode Use the undo e1 unframed command to restore the default that is channelized mode So fa...

Page 681: ...e system default is NetEngine c2 c2 value Specifies the path signal label byte The c2 value argument is a hexadecimal number in the range 0 to FF The system default is 0x02 Description Use the flag command to set the overhead byte of SONET SDH frames Use the undo flag command to restore the default SONET SDH frames provide a variety of overhead bytes for operation and maintenance OAM such as layer...

Page 682: ...ack local remote undo loopback View CPOS interface view Parameter local Internal loopback used for testing the physical interface itself remote External loopback used for testing the cable connected to the interface Description Use the loopback command to configure the loopback mode on the CPOS interface Use the undo loopback command to remove a loopback By default loopback is disabled Loopback is...

Page 683: ...oose to multiplex AUG to AU 4 or AU 3 by using the multiplex mode command When the CPOS interface is operating in SONET mode AUG can be multiplexed only to AU 3 and the multiplex mode command is invalid in this case Related command frame format Example In SDH mode multiplex AUG to AU 3 Sysname system view Sysname controller cpos 1 0 Sysname Cpos1 0 frame format sdh Sysname Cpos1 0 multiplex mode a...

Page 684: ...er1 number2 or multiple timeslots in the form of number1 number2 number3 speed 56k 64k Specifies how timeslots are bundled If the 56k keyword applies timeslots form an N 56 kbps bundle If 64k applies timeslots form an N 64 kbps bundle If the speed is not specified the default 64 kbps applies Description Use the t1 channel set command to bundle timeslots on the T1 channel Use the undo t1 channel se...

Page 685: ...ock mode and when directly connected to another device with fiber optic it can use either mode so long as the mode is different from the one used at the opposite end Note that different T1 channels of the same CPOS physical interface are independent of one another in terms of clock mode Example Set the clock mode of T1 channel 1 to master Sysname system view Sysname controller cpos 1 0 Sysname Cpo...

Page 686: ...les internal loopback payload Enables external payload loopback remote Enables external loopback Description Use the t1 set loopback command to configure the loopback mode of the T1 channel Use the undo t1 set loopback command to remove a loopback By default loopback is disabled Loopback is intended for test use Disable it otherwise Related command display controller cpos t1 Example Enable externa...

Page 687: ...ce in the range 1 to 84 Description Use the t1 unframed command to set a T1 channel on the CPOS interface to operate in unframed mode Use the undo t1 unframed command to restore the default that is channelized mode Like E1 channels T1 channels on CPOS interfaces support unframed clear channel mode and channelized mode In unframed mode a T1 channel can form a 1 544 Mbps serial interface without tim...

Page 688: ...688 CHAPTER 45 CPOS INTERFACE CONFIGURATION COMMANDS ...

Page 689: ...nformation Use the undo arp check enable command to disable the function allowing the device to learn multicast MAC addresses After the ARP entry check is disabled the device can learn the ARP entry with a multicast MAC address and you can also configure such a static ARP entry on the device By default ARP entry check is enabled Example Enable ARP entry check Sysname system view Sysname arp check ...

Page 690: ...he range 1 to 4094 interface type interface number Interface type and interface number vpn instance vpn instance name Name of a VLAN instance a case sensitive string of 1 to 31 characters Description Use the arp static command to configure a static ARP entry in the ARP mapping table Use the undo arp command to remove an ARP entry Note that A static ARP entry is effective when the device works norm...

Page 691: ...imer aging command to set aging time for dynamic ARP entries Use the undo arp timer aging command to restore the default By default the aging time for dynamic ARP entries is 20 minutes Related command display arp timer aging Example Set aging time for dynamic ARP entries to 10 minutes Sysname system view Sysname arp timer aging 10 display arp Syntax display arp all dynamic static vlan vlan id inte...

Page 692: ...d arp static reset arp Example Display the detailed information of all ARP entries Sysname display arp all verbose Type S Static D Dynamic IP Address MAC Address VLAN ID Interface Aging Type Vpn instance Name 20 1 1 1 00e0 fc00 0001 N A N A N A S test 193 1 1 70 00e0 fe50 6503 100 GE1 0 14 D No Vrf 192 168 0 115 000d 88f7 9f7d 1 GE1 1 18 D No Vrf 192 168 0 39 0012 a990 2241 1 GE1 2 20 D No Vrf Dis...

Page 693: ...e string for matching consisting of 1 to 256 characters Description Use the display arp ip address command to display the ARP entry for a specified IP address Related command arp static and reset arp Example Display the corresponding ARP entry for the IP address 20 1 1 1 Sysname display arp 20 1 1 1 Type S Static D Dynamic IP Address MAC Address VLAN ID Interface Aging Type 20 1 1 1 00e0 fc00 0001...

Page 694: ...that contain the specified string string A case sensitive string for matching consisting of 1 to 256 characters count Displays the number of ARP entries Description Use the display arp vpn instance command to display the ARP entries for a specified VPN instance Related command arp static and reset arp Example Display ARP entries for the VPN instance named test Sysname display arp vpn instance test...

Page 695: ...ears all ARP entries dynamic Clears all dynamic ARP entries static Clears all static ARP entries interface interface type interface number Clears the ARP entries for the interface specified by the argument interface type interface number Description Use the reset arp command to clear ARP entries except authorized ARP entries from the ARP mapping table Note that with interface interface type interf...

Page 696: ...696 CHAPTER 46 ARP CONFIGURATION COMMANDS ...

Page 697: ...and to restore the default By default a device cannot send gratuitous ARP packets when receiving ARP requests from another network segment Example Disable a device from sending gratuitous ARP packets Sysname system view Sysname undo gratuitous arp sending enable gratuitous arp learning enable Syntax gratuitous arp learning enable undo gratuitous arp learning enable View System view Parameter None ...

Page 698: ...8 CHAPTER 47 GRATUITOUS ARP CONFIGURATION COMMANDS By default the function is disabled Example Enable the gratuitous ARP packet learning function Sysname system view Sysname gratuitous arp learning enable ...

Page 699: ...he ARP source suppression function is disabled Related command display arp source suppression Example Enable the ARP source suppression function Sysname system view System View return to User View with Ctrl Z Sysname arp source suppression enable arp source suppression limit Syntax arp source suppression limit limit value undo arp source suppression limit View System view Parameter limit value Spe...

Page 700: ...rp source suppression Syntax display arp source suppression View Any view Parameter None Description Use the display arp source suppression command to display information about the current ARP source suppression configuration Example Display information about the current ARP source suppression configuration Sysname display arp source suppression ARP source suppression is enabled Current suppressio...

Page 701: ...bled from learning dynamic ARP entries Use the undo arp authorized enable command to disable authorized ARP on the interface which at the same time is enabled to learn dynamic ARP entries By default authorized ARP is not enabled on the interface Example Enable authorized ARP on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 arp authorized enable arp authorized ...

Page 702: ... time for authorized ARP entries Use the undo arp authorized time out command to restore the default By default the aging time for authorized ARP entries is 1200 seconds Example Configure the aging time for authorized ARP entries Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 arp authorized time out 120 ...

Page 703: ...ult proxy ARP is disabled Related command display proxy arp Example Enable proxy ARP on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 proxy arp enable local proxy arp enable Syntax local proxy arp enable undo local proxy arp enable View VLAN interface view Parameter None Description Use the local proxy arp enable command to enable local proxy ARP Use the undo ...

Page 704: ...display the proxy ARP status Related command proxy arp enable Example Display the proxy ARP status on Ethernet 1 0 Sysname display proxy arp interface ethernet 1 0 Interface Ethernet 1 0 Proxy ARP status disabled display local proxy arp Syntax display local proxy arp interface vlan interface vlan id View Any view Parameter interface vlan interface vlan id Displays the local proxy ARP status of the...

Page 705: ... to 65534 sharekey key Specifies a shared key for the BIMS server which is a string of 1 to 16 characters Description Use the bims server command to specify the IP address port number and shared key of a BIMS server in the DHCP address pool for the client Use the undo bims server command to remove specified BIMS server information from the DHCP address pool By default the related information of th...

Page 706: ...ootfile name is specified If you execute the bootfile name command repeatedly the latest configuration will overwrite the previous one Example Specify the bootfile name aaa in DHCP address pool 0 Sysname system view Sysname dhcp server ip pool 0 Sysname dhcp pool 0 bootfile name aaa dhcp enable Syntax dhcp enable undo dhcp enable View System view Parameter None Description Use the dhcp enable comm...

Page 707: ...e DHCP client the DHCP server will allocate an IP address from the address pool Use the undo dhcp select server global pool subaddress command to cancel the support for subaddress allocation By default the DHCP server is enabled on an interface Example Enable the DHCP server on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 dhcp select server global pool dhcp se...

Page 708: ...resses of the DHCP server interfaces Note that When you use the dhcp server forbidden ip command to exclude an IP address that is bound to a user from dynamic assignment the address can be still assigned to the user When you use the undo dhcp server forbidden ip command to remove the configuration the specified address address range must be consistent with the one specified in the dhcp server forb...

Page 709: ... ip pool 0 Sysname dhcp pool 0 dhcp server ping packets Syntax dhcp server ping packets number undo dhcp server ping packets View System view Parameter number Number of ping packets in the range of 0 to 10 If the ping timeout time is set to 0 the DHCP server will not perform any ping collision detection Description Use the dhcp server ping packets command to specify the maximum number of ping pack...

Page 710: ... response timeout time as 1000ms Sysname system view Sysname dhcp server ping timeout 1000 dhcp server relay information enable Syntax dhcp server relay information enable undo dhcp server relay information enable View System view Parameter None Description Use the dhcp server relay information enable command to enable the DHCP server to handle option 82 Use the undo dhcp server relay information ...

Page 711: ...nflicts ip address Displays conflict information for the IP address Description Use the display dhcp server conflict command to display information about IP address conflicts Related command reset dhcp server conflict Example Display information about all IP address conflicts Address Discover time 4 4 4 1 Apr 25 2007 16 57 20 4 4 4 2 Apr 25 2007 17 00 10 total 2 entry display dhcp server expired S...

Page 712: ...are address 4 4 4 6 3030 3066 2e65 3230 Apr 25 2007 17 10 47 Release 302e 3130 3234 2d45 7468 6572 6e65 7430 2f31 total 1 entry display dhcp server free ip Syntax display dhcp server free ip View Any view Parameter None Description Use the display dhcp server free ip command to display information about assignable IP addresses which have never been assigned Example Display information about assign...

Page 713: ...ion of a specified address pool The pool name is a string of 1 to 35 characters If no pool name is specified the binding information of all address pools is displayed Description Use the display dhcp server ip in use command to display the binding information of DHCP address pool s or an IP address Related command reset dhcp server ip in use Example Display the binding information of all DHCP addr...

Page 714: ...CLINE 0 DHCPRELEASE 3 DHCPINFORM 0 BOOTPREQUEST 0 BOOTP Reply 9 DHCPOFFER 3 DHCPACK 6 DHCPNAK 0 BOOTPREPLY 0 Bad Messages 0 Type Binding types including Manual Auto OFFERED and Auto COMMITTED Manual Static binding Auto OFFERED The binding sent in the DHCP OFFER message from the server to the client Auto COMMITTED The binding sent in the DHCP ACK message from the server to the client Table 128 Desc...

Page 715: ... all DHCP address pools Sysname display dhcp server tree all Global pool Pool name 0 network 20 1 1 0 mask 255 255 255 0 Sibling node 1 option 2 ip address 1 1 1 1 expired 1 0 0 Pool name 1 static bind ip address 10 10 1 2 mask 255 0 0 0 static bind mac address 00e0 00fc 0001 Manual The number of static bindings Expire The number of expired bindings BOOTP Request The number of DHCP requests sent f...

Page 716: ...s of the display dhcp server tree command Field Description Global pool Information of a address pool Pool name Address pool name network Network segment for address allocation static bind ip address 10 10 1 2 mask 255 0 0 0 static bind mac address 00e0 00fc 0001 The IP address and MAC address of the static binding Sibling node The sibling node of the current node nodes of this kind in the output ...

Page 717: ...mmand to remove the domain name suffix from a DHCP address pool The domain name suffix is not specified by default Related command dhcp server ip pool Example Specify the client domain name suffix as mydomain com in DHCP address pool 0 Sysname system view Sysname dhcp server ip pool 0 Sysname dhcp pool 0 domain name mydomain com expired Syntax expired day day hour hour minute minute unlimited undo...

Page 718: ...r 2 minute 3 gateway list Syntax gateway list ip address 1 8 undo gateway list ip address all View DHCP address pool view Parameter ip address 1 8 Gateway IP address 1 8 means you can specify up to eight gateway addresses separated by spaces all Specifies all gateway IP addresses to be removed Description Use the gateway list command to specify gateway address es in a DHCP address pool Use the und...

Page 719: ...ommand repeatedly the latest configuration will overwrite the previous one Related command dhcp server ip pool and netbios type Example Specify WINS server address 10 12 1 99 in DHCP address pool 0 Sysname system view Sysname dhcp server ip pool 0 Sysname dhcp pool 0 nbns list 10 12 1 99 netbios type Syntax netbios type b node h node m node p node undo netbios type View DHCP address pool view Para...

Page 720: ...cified by default Related command dhcp server ip pool and nbns list Example Specify the NetBIOS node type as b node in DHCP address pool 0 Sysname system view Sysname dhcp server ip pool 0 Sysname dhcp pool 0 netbios type b node network Syntax network ip address mask length mask mask undo network View DHCP address pool view Parameter ip address IP address range for dynamic allocation If no mask le...

Page 721: ...dicates you can specify up to 16 hex digit strings separated by spaces Each string contains 2 4 6 or 8 hex digits ip address ip address 1 8 Specifies IP addresses 1 8 indicates you can specify up to eight IP addresses separated by spaces Description Use the option command to configure a self defined DHCP option in a DHCP address pool Use the undo option command to remove a self defined DHCP option...

Page 722: ... all ip ip address pool pool name View User view Parameter all Clears the IP address dynamic binding information of all DHCP address pools ip ip address Clears the dynamic binding information of a specified IP address pool pool name Clears the dynamic binding information of a specified address pool The pool name is a string of 1 to 35 characters If no pool name is specified the dynamic binding inf...

Page 723: ...o specify the client ID of a static binding in a DHCP address pool Use the undo static bind client identifier command to remove the client ID of a static binding from a DHCP address pool By default no client ID is specified Note that Use the static bind client identifier command together with the static bind ip address command to accomplish a static binding configuration The ID of the static bindi...

Page 724: ...ommand to remove the IP address of a static binding from a DHCP address pool By default no IP address of a static binding in a DHCP address pool is specified Note that Use the static bind ip address command together with the static bind mac address or static bind client identifier command to accomplish a static binding configuration If the IP address of a static binding is an interface address of ...

Page 725: ... the static bind mac address or static bind client identifier command repeatedly the latest configuration will overwrite the previous one Relate command dhcp server ip pool static bind client identifier and static bind ip address Example Bind the client MAC address 0000 e03f 0305 to the IP address 10 1 1 1 with the mask 255 255 255 0 in DHCP address pool 0 Sysname system view Sysname dhcp server i...

Page 726: ...r ip address TFTP server IP address Description Use the tftp server ip address command to specify the TFTP server IP address in a DHCP address pool Use the undo tftp server ip address command to remove the TFTP server IP address from a DHCP address pool By default no TFTP server address is specified Using the tftp server ip address command repeatedly will overwrite the previous configuration Examp...

Page 727: ...ce config command to configure specified Option 184 contents in a DHCP address pool Use the undo voice config command to remove specified option 184 contents from a DHCP address pool By default no Option 184 content is configured Note that specifying the IP address of a network calling processor first is necessary to make other configured parameters take effect Example Configure Option 184 in DHCP...

Page 728: ...728 CHAPTER 51 DHCP SERVER CONFIGURATION COMMANDS ...

Page 729: ...None Description Use the dhcp enable command to enable DHCP Use the undo dhcp enable command to disable DHCP By default DHCP is disabled n For both DHCP server and relay agent configuration enabling DHCP first is necessary to make other configurations take effect Example Enable DHCP Sysname system view Sysname dhcp enable dhcp relay address check Syntax dhcp relay address check disable enable View...

Page 730: ...address check enable dhcp relay information enable Syntax dhcp relay information enable undo dhcp relay information enable View Interface view Parameter None Description Use the dhcp relay information enable command to enable the relay agent to support option 82 Use the undo dhcp relay information enable command to disable option 82 support By default option 82 support is disabled on DHCP relay ag...

Page 731: ...es the default normal padding format or with the keyword verbose node identifier restores the mac mode of the verbose padding format If configuring the handling strategy of the DHCP relay agent as replace you need to configure a padding format of option 82 If the handling strategy is keep or drop you need not configure any padding format If sub option 1 node identifier of Option 82 is padded with ...

Page 732: ...Ethernet1 0 dhcp relay information enable Sysname Ethernet1 0 dhcp relay information strategy keep dhcp relay release ip Syntax dhcp relay release ip client ip View System view Parameter client ip DHCP client IP address Description Use the dhcp relay release ip command to send a release request to a specified DHCP server for releasing a specified client IP address Example Send a release request to...

Page 733: ...c command to bind an interface to a static binding entry make sure that the interface is configured as a DHCP relay agent otherwise address entry conflicts may occur Related command display dhcp relay security Example Bind DHCP relay interface Ethernet 1 0 to IP address 10 10 1 1 and MAC address 0005 5d02 f2b3 of the client Sysname system view Sysname dhcp relay security static 10 10 1 1 0005 5d02...

Page 734: ... the dhcp relay server detect command to enable pseudo DHCP server detection Use the undo dhcp relay server detect command to disable pseudo DHCP server detection By default pseudo DHCP server detection is disabled Example Enable pseudo DHCP server detection Sysname system view Sysname dhcp relay server detect dhcp relay server group Syntax dhcp relay server group group ip ip address undo dhcp rel...

Page 735: ...Syntax dhcp relay server select group id undo dhcp relay server select View Interface view Parameter group id Specifies a DHCP group number to be correlated in the range of 0 to 19 The specified group must be an existing group containing at least a DHCP server Description Use the dhcp relay server select command to correlate specified interface s to a specified DHCP server group Use the undo dhcp ...

Page 736: ...ress pool to the client When the working mode of the interface is changed from DHCP server to DHCP relay agent neither the IP address leases nor the authorized ARP entries will be deleted However these ARP entries may conflict with the new static entries generated on the DHCP relay agent therefore you are recommended to delete the existing IP address leases when changing the interface working mode...

Page 737: ...ormation about DHCP server groups correlated to all interfaces Sysname display dhcp relay all Interface name Server group Ethernet1 1 2 display dhcp relay security Syntax display dhcp relay security ip address dynamic static View Any view Parameter ip address Displays the binding information of an IP address dynamic Displays information about dynamic bindings static Displays information about stat...

Page 738: ...Static Items 1 Dynamic Items 0 Temporary Items 0 All Items 1 display dhcp relay security tracker Syntax display dhcp relay security tracker View Any view Parameter None Table 132 Description on fields of the display dhcp relay security command Field Description IP Address Client IP address MAC Address Client MAC address Type Type of binding including dynamic and static Interface Layer 3 interface ...

Page 739: ...iption Use the display dhcp relay server group command to display the configuration information of a specified or all DHCP server groups Example Display IP addresses of DHCP servers in DHCP server group 1 Sysname display dhcp relay server group 1 No Group IP 1 1 1 1 1 2 1 1 1 2 display dhcp relay statistics Syntax display dhcp relay statistics server group group id all View Any view Parameter grou...

Page 740: ...DECLINE packets received 0 BOOTPREQUEST packets 0 DHCP packets received from servers 20 DHCPOFFER packets received 10 DHCPACK packets received 10 DHCPNAK packets received 0 BOOTPREPLY packets 0 DHCP packets sent to servers 20 DHCP packets sent to clients 20 Display DHCP packet statistics related to every server group on the relay agent Sysname display dhcp relay statistics server group all DHCP re...

Page 741: ...0 to 19 about which to remove statistics from the relay agent Description Use the reset dhcp relay statistics command to remove statistics from the relay agent If no server group is specified all statistics will be removed from the relay agent Related command display dhcp relay statistics Example Remove all statistics from the DHCP relay agent Sysname reset dhcp relay statistics ...

Page 742: ...742 CHAPTER 52 DHCP RELAY AGENT CONFIGURATION COMMANDS ...

Page 743: ...rface type interface number Specifies an interface of which to display DHCP client information Description Use the display dhcp client command to display DHCP client information If no interface interface type interface number is specified DHCP client information of all interfaces will be displayed Example Display DHCP client information of all interfaces Sysname display dhcp client Vlan interface1...

Page 744: ...hcp client command Field Description Vlan interface1 DHCP client information Information of the interface acting as the DHCP client Current machine state DHCP client current machine state Allocated IP The IP address allocated by the DHCP server Allocated lease The allocated lease time T1 The 1 2 lease time in seconds of the DHCP client IP address T2 The 7 8 lease time in seconds of the DHCP client...

Page 745: ...et1 0 ip address dhcp alloc n The DHCP snooping is supported only on the Layer 2 Ethernet interface DHCP Snooping supports no link aggregation If a Layer 2 Ethernet interface is added into an aggregation group DHCP Snooping configuration on it will not take effect When the interface is removed from the group DHCP Snooping can take effect The DHCP snooping enabled device does not work if it is betw...

Page 746: ...746 CHAPTER 53 DHCP CLIENT CONFIGURATION COMMANDS ...

Page 747: ... DHCP servers and does not record binding information about MAC addresses of DHCP clients and the obtained IP addresses By default DHCP snooping is disabled Related command display dhcp snooping Example Enable DHCP snooping Sysname dhcp snooping dhcp snooping trust Syntax dhcp snooping trust undo dhcp snooping trust View Layer 2 Ethernet interface view Parameter None Description Use the dhcp snoop...

Page 748: ... both in the DHCP ACK and DHCP REQUEST messages Example Display DHCP snooping address binding information Sysname display dhcp snooping DHCP Snooping is enabled The client binding table for all untrusted ports Type D Dynamic S Static Type IP Address MAC Address Lease VLAN Interface D 10 1 1 1 00e0 fc00 0006 286 1 Ethernet1 0 1 dhcp snooping item s found display dhcp snooping trust Syntax display d...

Page 749: ...Related command dhcp snooping trust Example Display information about trusted ports Sysname display dhcp snooping trust DHCP Snooping is enabled DHCP Snooping trust becomes active Interface Trusted Ethernet1 0 Trusted The above output shows that DHCP snooping is enabled DHCP snooping trust is active and port Ethernet 1 0 is trusted ...

Page 750: ...750 CHAPTER 54 DHCP SNOOPING CONFIGURATION COMMANDS ...

Page 751: ...ent Syntax display bootp client interface interface type interface number View Any view Parameter interface interface type interface number Displays the BOOTP client information of the interface Description Use the display bootp client command to display related information about a BOOTP client Note If interface interface type interface number is not specified the command will display information ...

Page 752: ... BOOTP Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ip address bootp alloc Table 137 Description on fields of the display bootp client command Field Description Ethernet1 0 BOOTP client information or Vlan interface1 BOOTP client information Information of the interface serving as a BOOTP client Allocated IP BOOTP client s IP address allocated by the BOOTP server Transact...

Page 753: ... debugging is disabled Table 138 Description on the fields of the debugging dhcp server packet command Field Description Rx Tx Receiving sending operation Interface InterfaceName Receiving interface Message type MessageType DHCP message type that is request or reply Hardware type HardwareType Hardware type of the DHCP client Hardware address length HardwareAddressLength Hardware address length of ...

Page 754: ...cessfully A static binding entry is found Assign Lease Type Lease from global pool Assign a lease from the global address pool The lease type can be Used Free and Timeout Reclaim conflicted IP Address from global pool Assign a lease from conflicted IP addresses in the global address pool Lease is exhausted The lease duration expires Acknowledge the DHCPREQUEST message The DHCP server returns an AC...

Page 755: ...CPS 7 DHCPS_DEBUG_COMMON DHCPServer Sending ICMP ECHOREQUEST to target IP 22 0 0 1 0 278312 Sysname DHCPS 7 DHCPS_DEBUG_COMMON DHCPServer Assign Free Lease from global pool Checking whether the IP address 22 0 0 1 is in use using ICMP before assigning it from the global address pool to the client 0 278406 Sysname DHCPS 7 DHCPS_DEBUG_COMMON DHCPServer ICMP ECHOREPLY received from Client IP 22 0 0 1...

Page 756: ...P address 0 0 0 0 Relay agent IP address 22 0 0 1 Client hardware address 00e0 fc14 1601 Server host name Not Configured Boot file name Not Configured DHCP message type DHCP Offer A DHCP OFFER message containing the IP address 22 0 0 2 was sent to the DHCP client 0 279016 Sysname DHCPS 7 DHCPS_DEBUG_COMMON DhcpServer Send DHCPOFFER to 00e0 fc14 1601 Vlan interface2 Offer I P 22 0 0 2 via 22 0 0 1 ...

Page 757: ...vel Parameters all All types of debugging for DHCP relay agent error DHCP relay agent error debugging event DHCP relay agent event debugging packet DHCP relay agent packet debugging client mac mac address Debugging for packets that the DHCP relay agent forwards for a specific DHCP client mac address is the MAC address of the DHCP client in the format of H H H Description Use the debugging dhcp rel...

Page 758: ...IPAddress IP address that the DHCP server assigns to the client DHCP message type DHCPmessagetype DHCP message type which can be DHCP Discover DHCP Offer DHCP Request DHCP Decline DHCP ACK DHCP NAK DHCP Release DHCP Inform Table 142 Description on the fields of the debugging dhcp relay event command Field Description interface Forwarding interface configured with DHCP relay agent CHardAddr Hardwar...

Page 759: ...rver group 0 The DHCP relay agent received a DHCP OFFER message and then broadcast it 0 230969 Sysname DHCPR 7 DHCPR_DEBUG_EVENT Begin to deal with DHCP Request packet 0 230969 Sysname DHCPR 7 DHCPR_DEBUG_PKTRXTX Rx DHCP request packet interface Vlan interface22 0 230969 Sysname DHCPR 7 DHCPR_DEBUG_PACKET From client to server Server group 0 Message type request Hardware type 1 Hardware address le...

Page 760: ...view Default Level 1 Monitor level Parameters all All types of debugging for DHCP BOOTP clients error Error debugging or debugging for unknown packets of DHCP BOOTP clients event DHCP BOOTP client event debugging packet DHCP BOOTP client packet debugging Description Use the debugging dhcp client command to enable DHCP BOOTP client debugging Use the undo debugging dhcp client command to disable DHC...

Page 761: ...sage to CPU for processing Notify route to add the default gateway ip address Notifies the routing module to add a default route Notify BIMS to connect BIMS server ip ip address port port sharekey sharekey Notifies the BIMS module that a connection has been established Move to BOUND state in millisecond milliseconds if no arp reply is received Changes to BOUND state within millisecond milliseconds...

Page 762: ...9 02 04 80 3C 10 00 00 00 00 20 B8 C4 B1 E4 B5 B1 C7 B0 C2 B7 BE 3D 20 00 30 30 65 30 2E 66 63 31 34 2E 31 36 30 31 2D 56 6C 61 6E 2D 69 6E 74 65 72 66 61 63 65 32 32 FF Warning Deleting the interface information of specified interface failed Failed to delete the user information on the specified interface Copying socket failed when send release packet Failed to copy the socket when sending the re...

Page 763: ...0 fc14 1601 Options 63 82 53 63 35 01 03 0C 06 63 6C 69 65 6E 74 32 04 16 00 00 02 36 04 0B 00 00 01 37 04 01 03 06 0F 39 02 04 80 3C 10 00 00 00 00 44 65 63 00 4E 6F 76 00 4F 63 74 00 3D 20 00 30 30 65 30 2E 66 63 31 34 2E 31 36 30 31 2D 56 6C 61 6E 2D 69 6E 74 65 72 66 61 63 65 32 32 FF 0 111218 Sysname DHCPC 7 DHCP_Client Vlan interface2 Sending DHCPREQUEST packet succeeded 0 111218 Sysname DHC...

Page 764: ...1421 Sysname DHCPC 7 DHCP_Client Vlan interface2 Move to BOUND state in 1 seconds if no arp reply is received If no ARP reply is received the state of the DHCP client will be changed to BOUND state after 1 second 0 112375 Sysname DHCPC 7 DHCP_Client Vlan interface2 Receive no arp reply for 22 0 0 2 begin to use the address Since no ARP reply is received the state of the DHCP client is changed to B...

Page 765: ... the display dns domain command to display the domain name suffixes Related command dns domain Example Display domain name suffixes Sysname display dns domain Type D Dynamic S Static No Type Domain name 1 S com display dns dynamic host Syntax display dns dynamic host View Any view Table 147 Description on fields of display dns domain command Field Description No Sequence number Type Type of domain...

Page 766: ...display dns proxy table View Any view Parameters None Description Use the display dns proxy table command to display the DNS proxy table Examples Display the DNS proxy table Sysname display dns proxy table Source IP Source Port Trans ID Server IP Aging 192 168 0 98 1030 24580 192 168 111 244 35 Table 148 Description on the field of the display dns dynamic host command Field Description No Sequence...

Page 767: ...arameter None Description Use the display ip host command to display the host names and corresponding IP addresses in the static DNS database Example Display the host names and corresponding IP addresses in the static DNS database Sysname display ip host Host Age Flags Address My 0 static 1 1 1 1 Aa 0 static 2 2 2 4 Table 150 Description on fields of the display dns server command Field Descriptio...

Page 768: ...domain name suffix with a domain name suffix specified or all domain name suffixes with no domain name suffix specified No domain name suffix is configured by default You can configure a maximum of 10 domain name suffixes Related command display dns domain Example Configure com as a DNS suffix Sysname dns domain com dns proxy enable Syntax dns proxy enable undo dns proxy enable View System view Ta...

Page 769: ...and to enable dynamic domain name resolution Use the undo dns resolve command to disable dynamic domain name resolution Dynamic domain name resolution is disabled by default Example Enable dynamic domain name resolution Sysname dns resolve dns server Syntax dns server ip address undo dns server ip address View System view Parameter ip address IP address of the DNS server Description Use the dns se...

Page 770: ... dots The host name must include at least one letter ip address IP address of the specified host in dotted decimal notation Description Use the ip host command to create a mapping between host name and IP address in the static resolving list Use the undo ip host command to remove the mapping No mappings are created by default You can configure only one mapping between IP address and host name For ...

Page 771: ... reset dns dynamic host command to clear the information in the dynamic domain name cache Related command display dns dynamic host Example Clear the information in the dynamic domain name cache Sysname reset dns dynamic host ...

Page 772: ...772 CHAPTER 57 DNS CONFIGURATION COMMANDS ...

Page 773: ... the interface packets refer to all incoming and outgoing IP packets If a firewall is configured only those valid packets can pass the firewall Description Use the display ip count command to display the statistics of the IP accounting about IP packets Example Display information about valid rule incompliant incoming IP packets Sysname display ip count inbound packets exterior 6 Inbound streams in...

Page 774: ...es ip count enable Syntax ip count enable undo ip count enable View System view Parameter None Description Use the ip count enable command to enable IP accounting Use the undo ip count enable command to disable IP accounting By default IP accounting is disabled Protocol Protocol carried in a packet Pkts Number of packets Bytes Number of bytes of packets Table 152 Description on the fields of the d...

Page 775: ...n the exterior table is 0 Rule incompliant packets are not to be counted IP packets are sorted as follows If a firewall is configured on an interface and incoming and outgoing IP packets are denied by the firewall these IP packets are counted in the firewall denied table If the source or destination IP address of the IP packets passing the interface in this case a firewall may be configured or not...

Page 776: ...0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ip count firewall denied outbound packets Specify not to count the outbound IP packets denied by the firewall on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 undo ip count firewall denied outbound packets ip count inbound packets Syntax ip count inbound packets undo ip count inbound packe...

Page 777: ...configure maximum number of accounting entries in the interior table Use the undo ip count interior threshold command to restore the default When doing this you are prompted to clear the table first if the number of accounting entries in the table is greater than the default By default maximum number of accounting entries in the interior table is 512 IP packets are sorted as follows If a firewall ...

Page 778: ...ccounting rules Example Count outgoing IP packets on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ip count outbound packets ip count rule Syntax ip count rule ip address mask mask length undo ip count rule ip address mask mask length View System view Parameter ip address IP address mask Subnet mask mask length Length of a subnet mask in the range of 0 to 32 De...

Page 779: ...IP accounting rule Sysname system view Sysname ip count rule 169 254 10 1 255 255 0 0 ip count timeout Syntax ip count timeout minutes undo ip count timeout View System view Parameter minutes Aging time in minutes for an accounting entry in the range of 60 to 10 080 Description Use the ip count timeout command to configure aging time for an IP accounting entry Use the undo ip count timeout command...

Page 780: ...ears the statistics from the firewall denied table exterior Clears the statistics from the exterior table interior Clears the statistics from the interior table Description Use the reset ip count command to clear the statistics of IP packets Example Clear the statistics of all IP packets Sysname reset ip count all ...

Page 781: ...ocol current state DOWN Internet Address is 1 1 1 1 8 Primary Broadcast address 1 255 255 255 The Maximum Transmit Unit 1500 bytes ip fast forwarding incoming packets state is Disable ip fast forwarding outgoing packets state is Disable input packets 0 bytes 0 multicasts 0 output packets 0 bytes 0 multicasts 0 ARP packet input number 0 Request packet 0 Reply packet 0 Unknown packet 0 TTL invalid p...

Page 782: ...t packets received on an interface Unicast packets bytes and multicast packets sent on an interface ARP packet input number 0 Request packet 0 Reply packet 0 Unknown packet 0 Total number of ARP packets received on an interface including ARP request packets ARP reply packets Unknown packets TTL invalid packet number Number of TTL invalid packets received on an interface ICMP packet input number 0 ...

Page 783: ...channel D channel instead of the ones used by the user channels B channels For details about CE1 PRI and CT1 PRI interfaces refer to Fundamental CE1 PRI Interface Configuration Commands on page 201 and Fundamental CT1 PRI Interface Configuration Commands on page 213 Related command display ip interface n E1 T1 interfaces are time slotted Using the pri set command can bind time slots of an E1 T1 in...

Page 784: ...s Use the undo ip address ip address mask mask length command to remove the primary IP address Use the undo ip address ip address mask mask length sub command to remove a secondary IP address By default no IP address is assigned to any interface When assigning IP addresses to an interface consider the following You can assign only one primary IP address to an interface Table 155 Description on fie...

Page 785: ...ss 202 38 160 1 255 255 255 0 sub ip address unnumbered Syntax ip address unnumbered interface interface type interface number undo ip address unnumbered View Interface view Parameter interface interface type interface number Specifies an interface from which the current interface can borrow an IP address Description Use the ip address unnumbered command to configure the current interface as IP un...

Page 786: ...786 CHAPTER 59 IP ADDRESSING CONFIGURATION COMMANDS ...

Page 787: ...ng containing 1 to 256 characters acl acl number Displays FIB information passing a specified ACL numbered from 2000 to 2999 ip prefix ip prefix name Displays FIB information passing a specified IP prefix list a string of 1 to 19 characters Description Use the display fib command to display FIB forward information If no parameters are specified all FIB information will be displayed Example Display...

Page 788: ...c R Reject L Generated by ARP or ESIS Destination Mask Nexthop Flag TimeStamp Interface Token 10 2 1 1 32 127 0 0 1 HU t 1150900568 InLoop0 invalid 127 0 0 0 8 127 0 0 1 U t 1150623094 InLoop0 invalid 127 0 0 1 32 127 0 0 1 HU t 1150623094 InLoop0 invalid Display FIB information passing the IP prefix list abc0 Sysname system view Sysname ip ip prefix abc0 permit 10 2 0 0 16 Sysname display fib ip ...

Page 789: ...ual to the mask that a user enters If no masks are specified FIB entries that match the natural network address and have the masks longer than or equal to the natural mask will be displayed Description Use the display fib ip address command to display FIB entries that match the specified destination IP address Example Display the FIB entries that match the natural network of 10 1 0 0 and have the ...

Page 790: ... 0 timestamp 0 information request 0 mask requests 0 mask replies 0 time exceeded 0 Output echo 10 destination unreachable 0 source quench 0 redirects 0 echo reply 5 parameter problem 0 timestamp 0 information reply 0 mask requests 0 mask replies 0 time exceeded 0 Table 157 Description on the fields of the display fib statistics command Field Description Route Entry Count Number of FIB entries Tab...

Page 791: ...53 17 56 1161 sndbuf 8192 rcvbuf 8192 sb_cc 0 rb_cc 0 socket option SO_KEEPALIVE SO_OOBINLINE SO_SENDVPNID SO_SETKEEPALIVE socket state SS_ISCONNECTED SS_PRIV SS_ASYNC Task VTYD 18 socketid 3 Proto 6 LA 10 153 17 99 23 FA 10 153 17 82 1121 sndbuf 8192 rcvbuf 8192 sb_cc 0 rb_cc 0 socket option SO_KEEPALIVE SO_OOBINLINE SO_SENDVPNID SO_SETKEEPALIVE socket state SS_ISCONNECTED SS_PRIV SS_ASYNC SOCK_D...

Page 792: ...0 0 0 0 FA 0 0 0 0 sndbuf 4194304 rcvbuf 4194304 sb_cc 0 rb_cc 0 socket option 0 socket state SS_PRIV SS_NBIO SS_ASYNC display ip statistics Syntax display ip statistics View Any view Parameter None Table 159 Description on the fields of the display ip socket command Field Description SOCK_STREAM TCP socket SOCK_DGRAM UDP socket SOCK_RAW raw IP socket Task Task number socketid Socket ID Proto Prot...

Page 793: ...r of packets with destination being local bad protocol Total number of unknown protocol packets bad format Total number of packets with incorrect format bad checksum Total number of packets with incorrect checksum bad options Total number of packets with incorrect option Output forwarding Total number of packets forwarded local Total number of packets sent from the local dropped Total number of pa...

Page 794: ... packets of data after window 0 0 bytes packets received after close 0 ACK packets 481 8776 bytes duplicate ACK packets 7 too much ACK packets 0 Sent packets Total 665 urgent packets 0 control packets 5 including 1 RST window probe packets 0 window update packets 2 data packets 618 8770 bytes data packets retransmitted 0 0 bytes ACK only packets 40 28 delayed Retransmitted timeout 0 connections dr...

Page 795: ...unsent Sent packets Total Total number of packets sent urgent packets Number of urgent packets sent control packets Number of control packets sent window probe packets Number of window probe packets sent in the brackets are resent packets window update packets Number of window update packets sent data packets Number of data packets sent data packets retransmitted Number of data packets retransmitt...

Page 796: ...one Description Use the display udp statistics command to display statistics of UDP packets Related command reset udp statistics Packets dropped with MD5 authentication Number of packets dropped with MD5 authentication Packets permitted with MD5 authentication Number of packets permitted with MD5 authentication Table 161 Description on the fields of the display tcp statistics command Field Descrip...

Page 797: ...roadcasts Use the undo ip forward broadcast command to disable an interface from forwarding directed broadcasts By default an interface is disabled from forwarding directed broadcasts Table 163 Description on the fields of the display udp statistics command Field Description Received packets Total Total number of UDP packets received checksum error Total number of packets with incorrect checksum s...

Page 798: ...ect packets This feature is enabled by default Example Disable sending ICMP redirection packets Sysname system view Sysname undo ip redirects ip ttl expires enable Syntax ip ttl expires enable undo ip ttl expires View System view Parameter None Description Use the ip ttl expires enable command to enable the sending of ICMP timeout packets Use the undo ip ttl expires command to disable sending ICMP...

Page 799: ...led the device will not send network unreachable and source route failure ICMP packets but still send other destination unreachable ICMP packets Example Disable sending ICMP destination unreachable packets Sysname system view Sysname undo ip unreachables reset ip statistics Syntax reset ip statistics View User view Parameter None Description Use the reset ip statistics command to clear statistics ...

Page 800: ...ple Display statistics of UDP traffic Sysname reset udp statistics tcp anti naptha enable Syntax tcp anti naptha enable undo tcp anti naptha enable View System view Parameter None Description Use the tcp anti naptha enable command to enable the protection against Naptha attack Use the undo tcp anti naptha enable command to disable the protection against Naptha attack By default the protection agai...

Page 801: ...t and IP packet head so the recommended maximum size of TCP packets is about 1200 bytes Example Set the maximum size of TCP packets to 300 bytes on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 tcp mss 300 tcp state Syntax tcp state closing established fin wait 1 fin wait 2 last ack syn received connection number number undo tcp state closing established fin wa...

Page 802: ... error will be prompted You can respectively configure the maximum number of TCP connections in each state If the maximum number of TCP connections in a state is 0 the aging of TCP connections in this state will not be accelerated Related command tcp anti naptha enable n This support for this command varies with devices Example Set the maximum number of TCP connections in the ESTABLISHED state to ...

Page 803: ...onnection state check interval is 30 seconds The device periodically checks the number of TCP connections in each state If it detects that the number of TCP connections in a state exceeds the maximum number it will accelerate the aging of TCP connections in such a state Note that you need to enable the protection against Naptha attack before executing this command Otherwise an error will be prompt...

Page 804: ...the synwait timer Related command tcp timer syn timeout and tcp window Example Set the length of the TCP finwait timer to 800 seconds Sysname system view Sysname tcp timer fin timeout 800 tcp timer syn timeout Syntax tcp timer syn timeout time value undo tcp timer syn timeout View System view Parameter time value Length of the TCP finwait timer in seconds ranging from 2 to 600 Description Use the ...

Page 805: ...ption Use the tcp window command to configure the receiving sending buffer size of TCP connection Use the undo tcp window command to restore the default The TCP receiving sending buffer is 8 KB by default Related command tcp timer fin timeout and tcp timer syn timeout Example Configure the receiving sending buffer of TCP connection as 3 KB Sysname system view Sysname tcp window 3 ...

Page 806: ...806 CHAPTER 60 IP PERFORMANCE CONFIGURATION COMMANDS ...

Page 807: ... set the default outgoing interface for matched packets Use the undo apply default output interface command to remove the configuration Using this command can set two outgoing interfaces at most for load sharing Related commands apply ip precedence apply ip address next hop apply output interface and apply ip address default next hop Examples Set the default outgoing interface for matched packets ...

Page 808: ...fault next hop to 1 1 1 1 for matched packets Sysname system view Sysname policy based route aa permit node 11 Sysname policy based route apply ip address default next hop 1 1 1 1 track 1 apply ip address next hop Syntax apply ip address next hop ip address track track entry number ip address track track entry number undo apply ip address next hop ip address ip address View policy based route view...

Page 809: ...d The precedences are listed in the following table Description Use the apply ip precedence command to set a precedence for matched packets Use the undo apply ip precedence command to remove the setting Related commands apply output interface apply ip address next hop apply default output interface and apply ip address default next hop Examples Set the precedence to 5 critical for matched packets ...

Page 810: ... configuration This command is used to specify interfaces two interfaces at most to send the matched IP packets Note that Two outgoing interfaces at most can be specified for matched IP packets For non P2P interfaces broadcast and NBMA interfaces such as Ethernet interface multiple next hops are available and thus packets may not be forwarded successfully n Non broadcast multi access NBMA network ...

Page 811: ...icy routing Description Use the display ip policy based route setup command to display the configuration of enabled policy routing Examples Display the configuration of policy routing enabled on interface Ethernet1 0 Sysname display ip policy based route setup interface ethernet 1 0 Interface Ethernet1 0 policy based routing configuration information policy based route pr01 permit node 1 if match ...

Page 812: ...rnet 1 0 Denied 0 Forwarded 0 Total denied 0 forwarded 0 policy based route pr01 The referenced policy name is pr01 permit node 1 The match mode is permit and the policy consists of only node 1 if match acl 3101 Packets satisfying ACL 3101 are matched apply output interface Ethernet1 0 The outgoing interface of matched packets is Ethernet1 0 Table 166 Description on fields of the display ip policy...

Page 813: ...umber in the range of 2000 to 3999 The number of a basic ACL ranges from 2000 to 2999 and that of an advanced ACL ranges from 3000 to 3999 Description Use the if match acl command to define an ACL match rule Use the undo if match acl command to remove the ACL match rule Related commands if match packet length Examples Permit the packets satisfying ACL 2010 Sysname system view Sysname policy based ...

Page 814: ...l Examples Permit the packets with a length from 100 to 200 bytes Sysname system view Sysname policy based route aa permit node 11 Sysname policy based route if match packet length 100 200 ip local policy based route Syntax ip local policy based route policy name undo ip local policy based route policy name View System view Parameters policy name Policy name which uniquely identifies a policy base...

Page 815: ...ommand to enable policy routing and reference a policy on the interface Use the undo ip policy based route command to disable interface policy routing Interface policy routing is disabled by default Note that You can only reference one policy when enabling policy routing on an interface The referenced policy filters incoming packets on the interface Related commands ip local policy based route Exa...

Page 816: ...t A policy consists of several nodes and a node consists of if match clauses and apply clauses The if match clauses define the match rules for the node and the apply clauses define the actions that should be taken for matched packets There is an AND relationship between the if match clauses of a node That is to say a packet must satisfy all matching rules specified by all if match clauses for the ...

Page 817: ...817 If no policy name is specified this command clears all the policy routing statistics Examples Clear all the policy routing statistics Sysname reset policy based route statistics ...

Page 818: ...818 CHAPTER 61 IP UNICAST POLICY ROUTING CONFIGURATION COMMANDS ...

Page 819: ...rwarded UDP packets on all interfaces Example Display the information of forwarded UDP packets on the interface Ethernet1 0 Sysname display udp helper server interface ethernet 1 0 Interface name Server address Packets sent Ethernet1 0 192 1 1 2 0 The information above shows that the IP address of the destination server corresponding to the interface Ethernet 1 0 is 192 1 1 2 and that no packets a...

Page 820: ... port port number dns netbios ds netbios ns tacacs tftp time View System view Parameter port number UDP port number with which packets need to be forwarded in the range of 1 to 65535 except 67 and 68 dns Forwards DNS data packets The corresponding UDP port number is 53 netbios ds Forwards NetBIOS data packets The corresponding UDP port number is 138 netbios ns Forwards NetBIOS name service data pa...

Page 821: ...undo udp helper server ip address View Interface view Parameter ip address IP address of the destination server in dotted decimal notation Description Use the udp helper server command to specify the destination server which UDP packets to be forwarded to Use the undo udp helper server command to remove the destination server No destination server is configured by default Currently you can configu...

Page 822: ...822 CHAPTER 62 UDP HELPER CONFIGURATION COMMANDS ...

Page 823: ...an advanced ACL the value ranges from 3000 to 3999 Description Use the ip urpf command to enable URPF check on the interface Use the undo ip urpf command to disable this function By default URPF check is disabled Example Enable strict URPF check on interface Ethernet 1 0 allowing special treatment to default route and referencing ACL 2999 Sysname system view Sysname interface ethernet 1 0 Sysname ...

Page 824: ...824 CHAPTER 63 URPF CONFIGURATION COMMANDS ...

Page 825: ...68 8 0 0 1 67 17 Eth1 0 Eth1 1 7 484 0 8 0 0 1 67 7 0 0 13 68 17 Eth1 1 Eth1 0 7 819 0 8 0 0 1 8 7 0 0 13 0 1 Eth1 2 Eth1 0 7 ip fast forwarding Syntax ip fast forwarding inbound outbound undo ip fast forwarding inbound outbound View Interface view Table 169 Description on the fields of the display ip fast forwarding cache command Field Description Index Unique entry index SIP Source IP address SP...

Page 826: ...mpression enabled PPP links c CAUTION In the case of load balancing using fast forwarding fast forwarding must be disabled in the corresponding direction of the interface The interface on which fast forwarding is enabled stops sending ICMP Redirect messages After fast forwarding is enabled on an interface no IP packet debugging information will be displayed for the interface that is the debugging ...

Page 827: ...forwarding cache View User view Parameter None Description Use the reset ip fast forwarding cache command to clear the information in the fast forwarding cache Example Clear the information in the fast forwarding cache Sysname reset ip fast forwarding cache ...

Page 828: ...828 CHAPTER 64 FAST FORWARDING COMMANDS ...

Page 829: ...amic host command no more than 21 characters can be displayed If the domain name exceeds the maximum length the first 21 characters will be displayed display dns ipv6 server Syntax display dns ipv6 server dynamic View Any view Parameter dynamic Displays the information of IPv6 DNS servers acquired dynamically through DHCP or other protocols Description Use the display dns ipv6 server command to di...

Page 830: ...atic Destination 1 PrefixLength 128 NextHop 1 Flag HU Label NULL Tunnel ID 0 TimeStamp Date 12 5 2004 Time 9 15 18 Interface InLoopBack0 Table 171 Description on the fields of the display dns ipv6 server command Field Description DNS Server Sequence number of the DNS server which is assigned automatically by the system starting from 1 Type Type of DNS server where S represents a statically configu...

Page 831: ... Any view Parameter None Description Use the display ipv6 host command to display the mappings between host names and IPv6 addresses in the static DNS database Example Display the mappings between host names and IPv6 addresses in the static DNS database Flag Route flag U Usable route G Gateway route H Host route B Blackhole route D Dynamic route S Static route Label Label Tunnel ID ID of a tunnel ...

Page 832: ...cified interface is displayed Note that If you have configured the time slots of a CE1 PRI or CT1 PRI interface as an ISDN PRI group using the pri set command then executing the display ip interface brief command only displays the time slot used by the control channel D channel instead of the ones used by the user channels B channels For details about CE1 PRI and CT1 PRI interfaces refer to Fundam...

Page 833: ... layer state of the interface IPv6 is enabled IPv6 packet forwarding state of the interface IPv6 packet forwarding is enabled in the example link local address Link local address configured for the interface Global unicast address es Aggregatable global unicast address es configured for the interface s valid lifetime Valid lifetime of the global unicast address statelessly auto configured preferre...

Page 834: ...om the first one containing the specified character string include Displays the neighbor entries containing the specified character string exclude Displays the neighbor entries without the specified character string string A case sensitive string consisting of 1 to 256 characters Description Use the display ipv6 neighbors command to display neighbor information Example Display all neighbor informa...

Page 835: ...otal number of neighbor entries acquired dynamically Table 176 Description on fields of the display ipv6 neighbors command Field Description IPv6 Address IPv6 address of a neighbor Link layer Link layer address MAC address of a neighbor VID VLAN to which the interface connected with a neighbor belongs Interface Interface connected with a neighbor State State of a neighbor including INCMP The addre...

Page 836: ...ress ZoneID PathMTU Age Type fe80 12 0 1300 40 Dynamic 2222 3 0 1280 Static display ipv6 socket Syntax display ipv6 socket socktype socket type task id socket id View Any view Parameter socktype socket type Displays the socket information of this type The socket type is in the range of 1 to 3 The value 1 represents a TCP socket 2 a UDP socket and 3 a raw IP socket task id Displays the socket infor...

Page 837: ...SEPORT SO_SENDVPNID socket state SS_PRIV SS_ASYNC SOCK_DGRAM SOCK_RAW display ipv6 statistics Syntax display ipv6 statistics View Any view Parameter None Table 178 Description on fields of the display ipv6 socket command Field Description SOCK_STREAM TCP socket SOCK_DGRAM UDP socket SOCK_RAW Raw IP socket Task Task ID of the created socket socketid ID assigned by the kernel to the created socket P...

Page 838: ... 0 ICMPv6 protocol Sent packets Total 0 unreached 0 too big 0 hopcount exceeded 0 reassembly timeout 0 parameter problem 0 echo request 0 echo replied 0 neighbor solicit 0 neighbor advert 0 router solicit 0 router advert 0 redirected 0 Send failed ratelimited 0 other errors 0 Received packets Total 0 checksum error 0 too short 0 bad code 0 unreached 0 too big 0 hopcount exceeded 0 reassembly timeo...

Page 839: ... reassembled packets Number of packets failing to be reassembled Number of packets whose reassembly times out ICMPv6 protocol Statistics of ICMPv6 packets Sent packets Total 0 unreached 0 too big 0 hopcount exceeded 0 reassembly timeout 0 parameter problem 0 echo request 0 echo replied 0 neighbor solicit 0 neighbor advert 0 router solicit 0 router advert 0 redirected 0 Send failed ratelimited 0 ot...

Page 840: ...bering 0 unknown info type 0 Deliver failed bad length 0 ratelimited 0 Statistics of received ICMPv6 packets including Total number of received packets Number of packets with checksum errors Number of too small packets Number of packets with error codes Number of packets whose destination is unreachable Number of too large packets Number of packets exceeding the hop limit Number of packets whose f...

Page 841: ... in sequence 0 0 bytes window probe packets 0 window update packets 0 checksum error 0 offset error 0 short error 0 duplicate packets 0 0 bytes partially duplicate packets 0 0 bytes out of order packets 0 0 bytes packets with data after window 0 0 bytes packets after close 0 ACK packets 0 0 bytes duplicate ACK packets 0 too much ACK packets 0 Statistics of received packets including Total number o...

Page 842: ... update packets 6 Number of data packets 7 Number of retransmitted packets 8 Number of ACK packets Retransmitted timeout Number of packets whose retransmission times out connections dropped in retransmitted timeout Number of connections dropped because of retransmission timeout Keepalive timeout Number of keepalive timeouts keepalive probe Number of keepalive probes Keepalive timeout so connection...

Page 843: ...t delivered input socket full 0 input packets missing pcb cache 0 Sent packets Total 0 Table 181 Description on fields of the display tcp ipv6 status command Field Description TCP6CB IPv6 address of the TCP control block hexadecimal Local Address Local IPv6 address Foreign Address Remote IPv6 address State IPv6 TCP connection status including Closed Listening Syn_Sent Syn_Rcvd Established Close_Wa...

Page 844: ...ss 2002 1 for a DNS server Sysname system view Sysname dns server ipv6 2002 1 ipv6 Syntax ipv6 undo ipv6 View System view Parameter None shorter than header Total number of UDP packets whose total length is less than specified by the packet header data length larger than packet Total number of packets whose data length exceeds that specified by the packet header unicast no socket on port Total num...

Page 845: ...on Use the ipv6 address command to configure an IPv6 site local address or aggregatable global unicast address for an interface Use the undo ipv6 address command to remove the IPv6 address from the interface By default no site local address or global unicast address is configured for an interface Note that except the link local address automatically configured and the one generated through statele...

Page 846: ...x length eui 64 undo ipv6 address ipv6 prefix prefix length eui 64 View Interface view Parameter ipv6 prefix prefix length IPv6 address prefix and prefix length They together specify the prefix of an IPv6 address in the EUI 64 format Description Use the ipv6 address eui 64 command to configure a site local address or global unicast address in the EUI 64 format for an interface Use the undo ipv6 ad...

Page 847: ...e interface ethernet 1 0 Sysname Ethernet1 0 ipv6 address fe80 1 link local ipv6 fibcache Syntax ipv6 fibcache undo ipv6 fibcache View System view Parameter None Description Use the ipv6 fibcache command to enable the caching function of the IPv6 FIB Use the undo ipv6 fibcache command to disable the caching function of the IPv6 FIB By default the caching function of the IPv6 FIB is disabled Note t...

Page 848: ... hash based ipv6 host Syntax ipv6 host hostname ipv6 address undo ipv6 host hostname ipv6 address View System view Parameter hostname Host name a string of up to 20 characters The character string can contain letters numerals _ or and must contain at least one letter ipv6 address IPv6 address Description Use the ipv6 host command to configure the mappings between host names and IPv6 addresses Use ...

Page 849: ...liseconds Example Set the capacity of the token bucket to 50 and the update period to 100 milliseconds Sysname system view Sysname ipv6 icmp error bucket 50 ratelimit 100 ipv6 icmpv6 multicast echo reply enable Syntax ipv6 icmpv6 multicast echo reply enable undo ipv6 icmpv6 multicast echo reply View System view Parameters None Description Use the ipv6 icmpv6 multicast echo reply enable command to ...

Page 850: ...flag View Interface view Parameter None Description Use the ipv6 nd autoconfig managed address flag command to set the managed address configuration M flag to 1 so that the host can acquire an IPv6 address through stateful autoconfiguration for example DHCP server Use the undo ipv6 nd autoconfig managed address flag command to restore the M flag to the default value 0 so that the host can acquire ...

Page 851: ...Ethernet1 0 undo ipv6 nd autoconfig other flag ipv6 nd dad attempts Syntax ipv6 nd dad attempts value undo ipv6 nd dad attempts View Interface view Parameter value Number of attempts to send an NS message for DAD in the range of 0 to 600 The default value is 1 When it is set to 0 the DAD is disabled Description Use the ipv6 nd dad attempts command to configure the number of attempts to send an NS ...

Page 852: ...r View Interface view Parameter value Interval for sending NS messages in milliseconds in the range of 1 000 to 3 600 000 Description Use the ipv6 nd ns retrans timer command to set the interval for sending NS messages The local interface sends NS messages at intervals of this value Furthermore the Retrans Timer field in RA messages sent by the local interface is equal to this value Use the undo i...

Page 853: ...t specified by the device By default the neighbor reachable time on the local interface is 30 000 milliseconds and the Reachable Timer field in RA messages is 0 Example Set the neighbor reachable time on Ethernet1 0 to 10 000 milliseconds Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ipv6 nd nud reachable time 10000 ipv6 nd ra halt Syntax ipv6 nd ra halt undo ipv6 nd ra ha...

Page 854: ...ue between the maximum interval and the minimum interval Use the undo ipv6 nd ra interval command to restore the default By default the maximum interval between RA messages is 600 seconds and the minimum interval is 200 seconds Note the following The minimum interval should be three fourths of the maximum interval or less The maximum interval for sending RA messages should be less than or equal to...

Page 855: ... RA messages Use the undo ipv6 nd ra prefix command to remove the prefix information from RA messages By default no prefix information is configured in RA messages and the IPv6 address of the interface sending RA messages is used as the prefix information Example Configure the prefix information for RA messages on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 i...

Page 856: ...nd number of a Layer 3 interface in a static neighbor entry Description Use the ipv6 neighbor command to configure a static neighbor entry Use the undo ipv6 neighbor command to remove a static neighbor entry Note that you can adopt the IPv6 address and link layer address of the Layer 3 VLAN interface or those of the VLAN port to configure a static neighbor entry If a static neighbor entry is confi...

Page 857: ... learned on a specified interface Use the undo ipv6 neighbors max learning num command to restore the default Example Set the maximum number of neighbors that can be dynamically learned on Ethernet1 0 to 10 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ipv6 neighbors max learning num 10 ipv6 pathmtu Syntax ipv6 pathmtu ipv6 address value undo ipv6 pathmtu ipv6 address View...

Page 858: ...a dynamic PMTU Use the undo ipv6 pathmtu age command to restore the default By default the aging time is 10 minutes Note that the aging time is invalid for a static PMTU Related command display ipv6 pathmtu Example Set the aging time for a dynamic PMTU to 40 minutes Sysname system view Sysname ipv6 pathmtu age 40 reset dns ipv6 dynamic host Syntax reset dns ipv6 dynamic host View User view Paramet...

Page 859: ...mation on all interfaces dynamic Clears the dynamic neighbor information on all interfaces interface interface type interface number Clears dynamic neighbor information on a specified interface static Clears the static neighbor information on all interfaces Description Use the reset ipv6 neighbors command to clear IPv6 neighbor information Example Clear neighbor information on all interfaces Sysna...

Page 860: ...v6 packets Example Clear the statistics of IPv6 packets and ICMPv6 packets Sysname reset ipv6 statistics reset tcp ipv6 statistics Syntax reset tcp ipv6 statistics View User view Parameter None Description Use the reset tcp ipv6 statistics command to clear the statistics of all TCP connections Example Clear the statistics of all TCP connections Sysname reset tcp ipv6 statistics reset udp ipv6 stat...

Page 861: ...of the finwait timer is 675 seconds Example Set the finwait timer length of TCP connections to 800 seconds Sysname system view Sysname tcp ipv6 timer fin timeout 800 tcp ipv6 timer syn timeout Syntax tcp ipv6 timer syn timeout wait time undo tcp ipv6 timer syn timeout View System view Parameter wait time Length of the synwait timer for TCP connections in seconds in the range of 2 to 600 Descriptio...

Page 862: ...ize of the TCP sending receiving buffer in KB kilobyte in the range of 1 to 32 Description Use the tcp ipv6 window command to set the size of the TCP sending receiving buffer Use the undo tcp ipv6 window command to restore the default By default the size of the TCP sending receiving buffer is 8 KB Example Set the size of the TCP sending receiving buffer to 4 KB Sysname system view Sysname tcp ipv6...

Page 863: ...rom 1 1 1 1 to 1 1 1 4 display natpt address mapping Syntax display natpt address mapping View Any view Parameter None Description Use the display natpt address mapping command to display the static and dynamic NAT PT mappings The displayed information does not include the information about port translation through the NAPT PT mechanism Example Display the static and dynamic NAT PT mapping Table 1...

Page 864: ...lue is 240 seconds finrst aging time value is 5 seconds frag aging time value is 5 seconds Table 184 Description on fields of the display natpt address mapping command Field Description NATPT address mapping v6bound view Displays the static and dynamic IPv6 to IPv4 mapping Type Indicates whether the connection is initiated by an IPv6 host or an IPv4 host If initiated by an IPv6 host the IPv6 addre...

Page 865: ...formation No Dynamic V6 Address Records Present NATPT Prefix Info Prefix Interface NextHop 2001 NATPT aging time value information tcp aging time value is 86400 seconds udp aging time value is 40 seconds icmp aging time value is 20 seconds dns aging time value is 10 seconds syn aging time value is 240 seconds icmp aging time value is 20 The timeout time for an ICMP packet is 20 seconds dns aging t...

Page 866: ...ions Syntax display natpt frag sessions View Any view Parameter None Description Use the display natpt frag sessions command to display the NAT PT fragment session information Example Display the NAT PT fragment session information Sysname display natpt frag sessions NATPT Fragment Session Info No IPV6Source IPV4Source PacketID IPV6Destination IPV4Destination No Fragment Sessions Present Table 186...

Page 867: ...sion Info No IPV6Source IPV4Source Pro IPV6Destination IPV4Destination No Sessions Present display natpt statistics Syntax display natpt statistics View Any view Parameter None Description Use the display natpt statistics command to display NAT PT statistics information The statistics information does not include information about port translation through NAPT PT mechanism Example Display NAT PT s...

Page 868: ...l Description Use the natpt address group command to configure a NAT PT address pool Use the undo natpt address group command to remove a specified NAT PT address pool Table 188 Description on fields of the display natpt statistic command Field Description Total Sessions Total number of sessions Expired Session Number of expired sessions Hits Number of successful NAT PT transactions Misses Number ...

Page 869: ...t aging time default dns finrst frag icmp syn frag tcp udp time value View System view Parameter default Restores the default NAT PT session timeout time dns Specifies the DNS packet timeout time in seconds in the range of 5 to 600 finrst Specifies the FIN packet timeout time in seconds in the range of 5 to 600 frag Specifies the FRAG packet timeout time in seconds in the range of 5 to 600 icmp Sp...

Page 870: ...g time icmp 45 natpt enable Syntax natpt enable undo natpt enable View Interface view Parameter None Description Use the natpt enable command to enable the NAT PT feature on an interface Use the undo natpt enable command to disable the NAT PT feature on an interface By default the NAT PT feature is disabled on an interface That is no NAT PT is implemented for packets received and sent on the inter...

Page 871: ...ix of the destination address of the packet complies with the format of the natpt prefix argument during a dynamic mapping on the IPv6 network side ipv4 address IPv4 address of the specified next hop to which an IPv6 packet is forwarded if the prefix of the destination address of the packet complies with the format natpt prefix for a dynamic IPv6 to IPv4 mapping Description Use the natpt prefix co...

Page 872: ...slated from an IPv6 packet to 0 Sysname system view Sysname natpt turn off tos natpt turn off traffic class Syntax natpt turn off traffic class undo natpt turn off traffic class View System view Parameter None Description Use the natpt turn off traffic class command to set the Traffic Class field in an IPv6 packet translated from an IPv4 packet to 0 Use the undo natpt turn off traffic class comman...

Page 873: ...ic command must be specified by the natpt prefix command in advance Example Use ACL 2000 to identify the source address of an IPv4 packet and add the NAT PT prefix 2001 to translate the source address into an IPv6 address Sysname system view Sysname natpt prefix 2001 Sysname natpt v4bound dynamic acl number 2000 prefix 2001 natpt v4bound static Syntax natpt v4bound static ipv4 address ipv6 address...

Page 874: ...be different from the NAT PT prefix but it is recommended to be the same as the NAT PT prefix Example Configure the static mapping from the source IPv4 address 2 3 4 9 to the destination IPv6 address 2001 1 Sysname system view Sysname natpt v4bound static 2 3 4 9 2001 1 natpt v6bound dynamic Syntax natpt v6bound dynamic acl6 number acl6 number prefix natpt prefix address group address group no pat...

Page 875: ...static ipv6 address ipv4 address View System view Parameter ipv6 address Source IPv6 address to be mapped ipv4 address IPv4 address to which an IPv6 address is mapped Description Use the natpt v6bound static command to configure the static IPv6 to IPv4 address mapping Use the undo natpt v6bound static command to remove the static IPv6 to IPv4 address mapping Example Configure the static mapping be...

Page 876: ...amic mappings reset natpt statistics Syntax reset natpt statistics View User view Parameter None Description Use the reset natpt statistics command to clear all NAT PT statistics information Example Clear all NAT PT statistics information Sysname reset natpt statistics ...

Page 877: ...v6 ipv6 address Syntax ipv6 address ipv6 address prefix length ipv6 address prefix length undo ipv6 address ipv6 address prefix length ipv6 address prefix length View Interface view Parameter ipv6 address IPv6 address for the interface prefix length Length of the prefix in bits in the range of 1 to 128 Description Use the ipv6 address command to configure a site local address or global unicast add...

Page 878: ...and to enable the device to automatically create a link local address for an interface Use the undo ipv6 address auto link local command to remove the automatically created link local address By default a link local address will automatically be generated when an IPv6 site local address or IPv6 global unicast address is configured for an interface Example Enable interface Ethernet 1 1 to create a ...

Page 879: ...ink local undo ipv6 address ipv6 address link local View Interface view Parameter ipv6 address IPv6 link local address The high order ten bits of an IPv6 link local address must be 1111111010 binary that is to say the first group of the IPv6 link local address must range from FE80 to FEBF hexadecimal Description Use the ipv6 address link local command to configure manually a link local address for...

Page 880: ...880 CHAPTER 67 DUAL STACK CONFIGURATION COMMANDS ...

Page 881: ...ess By default no destination address is configured for the tunnel interface Note that The destination address of a tunnel interface is the address of the peer interface receiving packets and is usually the source address of the peer tunnel interface Two or more tunnel interfaces using the same encapsulation protocol must have different source and destination addresses Related command interface tu...

Page 882: ...iption Tunnel0 Interface The Maximum Transmit Unit is 64000 Internet Address is 10 1 2 1 24 Primary Encapsulation is TUNNEL aggregation ID not set Tunnel source 192 13 2 1 destination 192 13 2 2 Tunnel keepalive disable Tunnel protocol transport GRE IP GRE key disabled Checksumming of GRE packets disabled Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packet...

Page 883: ...nfigured in tunnel interface view is displayed If device does not support aggregation ID not set is displayed Tunnel source Source address of a tunnel destination Destination address of a tunnel Tunnel keepalive disable Disables the keepalive function of the GRE so as not to detect the tunnel interface state Tunnel protocol transport Tunnel protocol and transport protocol GRE key disabled No key i...

Page 884: ...unnel 2 Sysname Tunnel2 tunnel protocol ipv6 ipv6 Sysname Tunnel2 encapsulation limit 3 interface tunnel Syntax interface tunnel number Table 190 Description on fields of the display interface tunnel command Field Description Tunnel0 current state UP The physical layer of the tunnel interface is reachable Line protocol current state UP The link layer of the tunnel interface is reachable IPv6 is en...

Page 885: ... created you must create it before entering tunnel interface view A tunnel interface number has only local significance and therefore the same interface number or different interface numbers can be set at both ends of a tunnel Related command display interface tunnel source destination and tunnel protocol Example Create the interface tunnel 3 Sysname system view Sysname interface tunnel 3 Sysname ...

Page 886: ... the undo source command to remove the configured source IP address By default no source address is configured for a tunnel interface Note that The source address of a tunnel interface is the address of the interface sending packets and is usually the destination address of the peer tunnel interface Two or more tunnel interfaces using the same encapsulation protocol must have different source addr...

Page 887: ...v6 over IPv6 tunnel mpls te Sets the tunnel to an MPLS TE tunnel Description Use the tunnel protocol command to configure the tunnel type Use the undo tunnel protocol to restore the tunnel type to the default By default the tunnel is GRE tunnel Note that A proper tunnel type can be selected for packet encapsulation according to the network topology and application The same tunnel type must be conf...

Page 888: ...888 CHAPTER 68 TUNNELING CONFIGURATION COMMANDS ...

Page 889: ...default outgoing interface This command only applies to packets not finding a match in the routing table You can specify up to five default outgoing interfaces implementing load balancing based on data streams Related command apply ipv6 precedence apply ipv6 address next hop apply output interface apply ipv6 address default next hop Example Set the default outgoing interface to the interface Seria...

Page 890: ...p ipv6 address undo apply ipv6 address default next hop ipv6 address View IPv6 policy based route view Parameter ipv6 address Default next hop Description Use the apply ipv6 address default next hop command to set a default next hop for matched IPv6 packets Use the undo apply ipv6 address default next hop command to remove the default next hop This command only applies to packets not finding a mat...

Page 891: ...pply default output interface and apply ipv6 address default next hop Example Set a next hop of 1 1 for matched IPv6 packets Sysname system view Sysname ipv6 policy based route aa permit node 11 Sysname pbr6 aa 11 apply ipv6 address next hop 1 1 apply ipv6 precedence Syntax apply ipv6 precedence type value undo apply ipv6 precedence View IPv6 policy based route view Parameter type Preference type ...

Page 892: ...ce interface type interface number View IPv6 policy based route view Parameter interface type interface number Specifies an interface Description Use the apply output interface command to set an outgoing interface for matched IPv6 packets Use the undo apply output interface command to remove the outgoing interface Note that Five outgoing interfaces at most can be specified and load balancing based...

Page 893: ...based route IPv6 Policy based routing configuration information ipv6 policy based route abc Node 1 permit apply output interface Ethernet1 0 display ipv6 policy based route Syntax display ipv6 policy based route View Any view Parameter None Description Use the display ipv6 policy based route command to display system and interface IPv6 policy routing information Example Display system and interfac...

Page 894: ...y routing configuration information Sysname display ipv6 policy based route setup local Local policy based routing configuration information ipv6 policy based route test Node 6 permit if match acl6 2000 Node 10 permit apply destination based forwarding Table 193 Description on fields of the display ipv6 policy based route command Field Description Local System policy routing pr02 Policy name Virtu...

Page 895: ...t denied 0 forwarded 0 if match acl6 Syntax if match acl6 acl6 number undo if match acl6 View IPv6 policy based route view Parameter acl6 number IPv6 ACL number in the range 2000 to 3999 The number of a basic IPv6 ACL ranges from 2000 to 2999 and that of an advanced IPv6 ACL ranges from 3000 to 3999 Description Use the if match acl6 command to define an IPv6 ACL match rule Use the undo if match ac...

Page 896: ...ket length match rule Use the undo if match packet length command to remove the match rule Related command if match acl6 Example Match the IPv6 packets with a length from 100 to 200 bytes Sysname system view Sysname ipv6 policy based route aa permit node 11 Sysname pbr6 aa 11 if match packet length 100 200 ipv6 local policy based route Syntax ipv6 local policy based route policy name undo ipv6 loc...

Page 897: ...nable IPv6 policy routing and reference a policy on the interface Use the undo ipv6 policy based route command to disable interface policy routing IPv6 interface policy routing is disabled by default Related command ipv6 local policy based route Example Enable IPv6 policy routing and reference a policy named AAA on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ...

Page 898: ...ses The if match clauses define the match rules for the node and the apply clauses define the actions that should be taken for matched packets Note that There is an AND relationship between the if match clauses of a node That is to say a packet must satisfy all matching rules specified by all if match clauses for the node before the action specified by the apply clause is taken There is an OR rela...

Page 899: ...d configure the teardown time in terminal template view With this function enabled if a terminal is disconnected from the router the terminal enters the state of DOWN and the router will automatically tear down the TCP connection to the front end processor FEP after the specified time period If the function is disabled the TCP connection will always remain Example Set the automatic link teardown t...

Page 900: ...tablishment time to 10 seconds Sysname system view Sysname rta template abc Sysname rta template abc auto link 10 bind vpn instance Syntax bind vpn instance vpn name undo bind vpn instance View Terminal template view Parameters vpn name VPN instance name a string of 1 to 31 case insensitive characters Description Use the bind vpn instance command to bind a VPN instance with the terminal template U...

Page 901: ... router and the FEP The supported encryption algorithm is AES advanced encryption standard and the supported key length is 128 bit Example Enable the data encryption between the router and the FEP Sysname system view Sysname rta template abc Sysname rta template abc data protect router unix data read block Syntax data read block undo data read block View Terminal template view Parameters None Desc...

Page 902: ... delay A router configured with data send delay begins to send the data received from a terminal to an FEP after the configured data send delay time expires Example Set the data send delay time to 50 milliseconds Sysname system view Sysname rta template abc Sysname rta template abc data send delay 50 display rta Syntax display rta all statistics terminal number brief detail statistics vty number V...

Page 903: ...ent or RTC server APP Name Application name It defaults to null APP State Application state Kept Linking Linked Disconnect meaning respectively not connected being connected connected disconnected Remote IP Remote IP address Source IP Source IP address namely the source IP address configured for the VTY under the terminal template Actual Source IP Actual source IP address namely the source IP addr...

Page 904: ...Y 1 TTY indicates the terminal access type and 1 the terminal number Interface Used Physical interface corresponding to the terminal number Current State Current terminal state Down OK and Menu respectively meaning physical connection down physical connection normal and menu state Flow Control Flow control for the current application Start or Stop meaning starting not to receive data from the FEP ...

Page 905: ...g remote data Receive Buffer Head Receive buffer head Receive Buffer Tail Receive buffer tail VTY APP Type State VTY list configured on the terminal VTY represents VTY number APP represents application Type represents application type State represents application state Table 198 Description on the fields of the display rta terminal number statistics command Field Description Receive from terminal ...

Page 906: ...established Terminal receive buffer is the buffer used on a router to store terminal data Example Configure not to clear the terminal receive buffer after the TCP connection is established Sysname system view Sysname rta template abc Sysname rta template abc driverbuf save driverbuf size Syntax driverbuf size number APP State Application state Table 200 Description on the fields of the display rta...

Page 907: ...le timeout Syntax idle timeout seconds undo idle timeout View Terminal template view Parameters seconds Connection idle timeout time in seconds ranging 10 to 3 600 Description Use the idle timeout command to set the TCP connection idle timeout time for terminal access Use the undo idle timeout command to restore the default By default the terminal access idle timeout time is 0 seconds that is the ...

Page 908: ...on Note The ASCII value of the hotkey must be different from that of any other hotkey configured on the device Otherwise hotkey conflicts will occur For example the hotkey value cannot be set to 17 or 19 because these two values are used for the hotkeys of flow control Using the hotkey may not get a response rapidly when the terminal displays too much data Before using this command make sure you e...

Page 909: ...or example Start terminals support E 8Q E 9Q E 10Q E 11Q E 12Q and E 13Q Example Configure a menu screencode of E 10Q Sysname system view Sysname rta template abc Sysname rta template abc menu screencode E 10Q print connection info Syntax print connection info undo print connection info View Terminal template view Parameters None Description Use the print connection info command to enable the prin...

Page 910: ...racters on the terminal Use the undo print information command to disable the router from printing characters on the terminal By default the router can print characters on the terminal You can use this command when the terminal is connected to a printer for printing Related command print connection info and print menu Example Disable the router from printing characters on the terminal Sysname syst...

Page 911: ...al template view Parameters chinese Prints prompt information in Chinese english Prints prompt information in English Description Use the print language command to set the language of the printed prompt information By default the prompt information is printed in Chinese on the terminal Example Set the language of the prompt information printed on the terminal to English Sysname system view Sysname...

Page 912: ... of any other hotkey configured on the device Otherwise hotkey conflicts will occur For example the hotkey value cannot be set to 17 or 19 because these two values are used for the hotkeys of flow control Using the hotkey may not get a response rapidly when the terminal displays too much data Example Configure the terminal redrawing hotkey as Ctrl A by setting its ASCII value to 1 Sysname system v...

Page 913: ... hotkey is configured After you press the terminal reset hotkey when a terminal fault occurs the router tears down and then reestablishes the TCP connection with the FEP Note that the ASCII value of the redrawing hotkey configured must be different from that of any other hotkey configured on the device Otherwise hotkey conflicts will occur For example the hotkey value cannot be set to 17 or 19 bec...

Page 914: ...ection is established otherwise no connection can be established between the router and the FEP n Only a MAC address or a character string can be configured at a time and the latest configured one takes effect The authentication type and character string configured on the router and FEP must be the same Otherwise the authentication fails and no connection can be established Example Bind the MAC ad...

Page 915: ... command to disable terminal access By default terminal access is disabled on the router Note that after terminal access is disabled the settings of template terminal and VTY will be kept Example Enable terminal access Sysname system view Sysname rta server enable rta source ip Syntax rta source ip ip address undo rta source ip View System view Parameters ip address Source IP address used for esta...

Page 916: ...ablished for this address to take effect Example Set the global TCP connection source IP address to 1 1 1 1 Sysname system view Sysname rta source ip 1 1 1 1 rta template Syntax rta template template name undo rta template template name View System view Parameters template name Terminal template name a string of 1 to 15 characters Description Use the rta template command to create a terminal templ...

Page 917: ...interfaces This command can be configured on a synchronous asynchronous serial interface only when the interface operates in the asynchronous mode Example Apply the terminal template abc with the terminal number of 1 on the interface Sysname system view Sysname interface async 1 1 Sysname rta async1 1 rta terminal abc 1 sendbuf bufsize Syntax sendbuf bufsize size undo sendbuf bufsize View Terminal...

Page 918: ...reshold specifies the maximum data in bytes that the send buffer can store Example Set the terminal send buffer threshold to 1 000 bytes Sysname system view Sysname rta template abc Sysname rta template abc sendbuf threshold 1000 tcp Syntax tcp keepalive time count nodelay recvbuf size recvsize sendbuf size sendsize undo tcp keepalive nodelay recvbuf size sendbuf size View Terminal template view P...

Page 919: ...ystem view Sysname rta template abc Sysname rta template abc tcp recvbuf size 512 Set the TCP send buffer size to 512 bytes Sysname system view Sysname rta template abc Sysname rta template abc tcp sendbuf size 512 Disable TCP delay Sysname system view Sysname rta template abc Sysname rta template abc tcp nodelay Set the TCP keepalive interval to 1 800 seconds and the number of keepalives to 2 Sys...

Page 920: ...tivity test hotkey as Alt A namely 1 96 13 Sysname system view Sysname rta template abc Sysname rta template abc testkey 1 96 13 update changed config Syntax update changed config View Terminal template view Parameters None Description Use the update changed config command to update template configurations If the template has been applied on the corresponding interface the configurations made in t...

Page 921: ...tion information of VTY 1 to chuxu Sysname system view Sysname rta template abc Sysname rta template abc vty 1 description chuxu vty hotkey Syntax vty vty number hotkey ascii code 1 3 undo vty vty number hotkey View Terminal template view Parameters vty number VTY number ranging 0 to 7 ascii code 1 3 ASCII value of the hotkey ranging 1 to 255 1 3 means that you can provide up to three ASCII values...

Page 922: ... abc Sysname rta template abc vty 1 hotkey 1 vty password Syntax vty vty number password simple cipher string undo vty vty number password View Terminal template view Parameters vty number VTY number ranging 0 to 7 simple Uses a plaint text password that is displayed in plain text cipher Uses a ciphertext password that is displayed in ciphertext string Password It is a plain text string of 1 to 16...

Page 923: ...ecified VTY Note that after this configuration no more Telnet VTYs TTY VTYs or RTC server VTYs can be configured in the template of the VTY Related command rta rtc server listen port and vty rtc server remote Example Create VTY 1 to serve as an RTC client setting the IP address of the corresponding RTC server to 1 1 1 1 the listening port of the RTC server to 9010 and the source IP address to be u...

Page 924: ... string Terminal screen code a string of 1 to 15 characters Description Use the vty screencode command to set the screen code for triggering screen saving Use the undo vty screencode command to cancel the screen code configured By default no screen code is configured for terminal screen saving Some types of terminals provide the screen saving function When such a terminal receives the specified sc...

Page 925: ... remote command to create a VTY for Telnet terminal access Use the undo vty command to remove the specified VTY Note that after this configuration no more RTC client VTYs or RTC server VTYs can be configured in the template of the VTY Example Create a VTY for Telnet terminal access setting the FEP IP address to 1 1 1 1 Sysname system view Sysname rta template abc Sysname rta template abc vty 1 tel...

Page 926: ...vty switch priority command to configure the RTC server to perform VTY switching based on priority Use the undo vty switch priority command to restore the default setting By default the VTY switching is performed not based on priority This command takes effect in RTC terminal access When VTY switching is performed based on priority the lower the VTY number the higher the priority if the VTY number...

Page 927: ...o switching is performed Note that this command takes effect only in RTC client terminal access After this configuration when an RTC client needs to initiate a connection to an RTC server it first initiates a connection to the RTC server with the lowest VTY number If the number of connection failures exceeds the threshold the RTC client initiates a connection to the RTC server with the second lowe...

Page 928: ...928 CHAPTER 70 TERMINAL ACCESS CONFIGURATION COMMANDS ...

Page 929: ...g When bandwidth based load sharing is disabled the packets are forwarded through all these interfaces in turn When bandwidth based load sharing is enabled the device calculates the packet forwarding proportion for each interface based on the bandwidths and then determines through which interfaces to forward the subsequent packets the number of packets already forwarded through these interfaces is...

Page 930: ... the routing table Use the display ip routing table verbose command to display detailed information about all routes in the routing table Examples Display brief information about active routes in the routing table Table 201 Special characters for regular expressions Character Meaning Remarks _ Underscore functions similarly as a wildcard and matches one of the following or a space the beginning of...

Page 931: ...ID 0x0 Label NULL State Active Adv Age 00h00m30s Tag 0 Destination 10 1 1 1 32 Protocol Direct Process ID 0 Preference 0 Cost 0 NextHop 127 0 0 1 Interface InLoopBack0 RelyNextHop 0 0 0 0 Neighbour 0 0 0 0 Tunnel ID 0x0 Label NULL State Active NoAdv Age 00h00m30s Tag 0 Destination 10 1 1 2 32 Protocol Direct Process ID 0 Preference 0 Cost 0 NextHop 10 1 1 2 Interface Serial2 0 RelyNextHop 0 0 0 0 ...

Page 932: ...ble acl acl number verbose View Any view Parameters acl number Basic ACL number in the range of 2000 to 2999 Table 203 Description on the fields of the display ip routing table verbose command Field Description Destination Destination address mask length Protocol Protocol that presents the route Process ID Process ID Preference Priority of the route Cost Cost of the route NextHop Address of the ne...

Page 933: ...ic 2000 rule deny source any Display brief information about active routes permitted by basic ACL 2000 Sysname acl basic 2000 display ip routing table acl 2000 Routes Matched by Access list 2000 Summary Count 6 Destination Mask Proto Pre Cost NextHop Interface 10 1 1 0 24 Direct 0 0 10 1 1 2 Vlan1 10 1 1 2 32 Direct 0 0 127 0 0 1 InLoop0 10 1 2 0 24 Direct 0 0 10 1 2 1 Eth1 0 10 1 2 1 32 Direct 0 ...

Page 934: ... 0x0 Label NULL State Active NoAdv Age 00h05m42s Tag 0 Destination 10 1 3 0 24 Protocol Direct Process ID 0 Preference 0 Cost 0 NextHop 10 1 3 1 Interface Eth1 1 RelyNextHop 0 0 0 0 Neighbour 0 0 0 0 Tunnel ID 0x0 Label NULL State Active Adv Age 00h05m31s Tag 0 Destination 10 1 3 1 32 Protocol Direct Process ID 0 Preference 0 Cost 0 NextHop 127 0 0 1 Interface InLoop0 RelyNextHop 0 0 0 0 Neighbour...

Page 935: ...estination is found For details refer to IS IS Configuration Commands on page 1037 and Multicast Routing and Forwarding Configuration Commands on page 1327 Int The route was discovered by an Internal Gateway Protocol IGP NoAdvise The route is not advertised when the router advertises routes based on policies NotInstall Normally the routes with the highest preference in the routing table are instal...

Page 936: ...g table ip address mask The system ANDs the input destination IP address with the input subnet mask and ANDs the destination IP address in each route entry with the input subnet mask If the two operations yield the same result for an entry and the entry is active with a subnet mask less than or equal to the input subnet mask the entry is displayed Only route entries that exactly match the input de...

Page 937: ...y Count 1 Destination Mask Proto Pre Cost NextHop Interface 11 1 1 0 24 Static 60 0 0 0 0 0 NULL0 Display route entries by specifying a destination IP address and mask Sysname display ip routing table 11 1 1 1 24 Routing Table Public Summary Count 3 Destination Mask Proto Pre Cost NextHop Interface 11 0 0 0 8 Static 60 0 0 0 0 0 NULL0 11 1 0 0 16 Static 60 0 0 0 0 0 NULL0 11 1 1 0 24 Static 60 0 0...

Page 938: ... for the follow up display of routing policies If the specified prefix list is not configured detailed information about all routes with the verbose keyword or brief information about all active routes without the verbose keyword is displayed Examples Configure a prefix list named test permitting routes with a prefix of 2 2 2 0 and a mask length between 24 and 32 Sysname system view Sysname ip ip ...

Page 939: ... isis ospf rip or static inactive Displays only inactive routes With this argument absent the command displays information about both active and inactive routes verbose Displays detailed routing information With this argument absent the command displays brief routing information Description Use the display ip routing table protocol command to display routing information of a specified routing prot...

Page 940: ...for a VPN instance The VPN instance name is a string of 1 to 31 characters Description Use the display ip routing table statistics command to display statistics about the public network routing table or a VPN routing table Examples Display statistics about the routes in the routing table Sysname display ip routing table statistics Proto route active added deleted freed DIRECT 24 4 25 1 0 STATIC 4 ...

Page 941: ...ip relay tunnel Syntax display ip relay tunnel View Any view Parameters None Description Use the display ip relay tunnel command to display recursive tunnel information deleted Number of routes marked as deleted which will be freed after a period freed Number of routes that got freed that is got removed permanently Total Sums for the numerical items above Table 205 Description on the fields of the...

Page 942: ...ame destination network Nexthop Packet s Bandwidth KB Flow s Interface 10 1 1 2 763851 100000 0 Ethernet0 0 0 10 1 2 2 1193501 155000 0 Atm1 0 0 10 1 3 2 15914 2048 0 Serial2 0 0 display ipv6 routing table Syntax display ipv6 routing table Table 207 Description on the fields of the display ip relay tunnel command Field Description Total Number of Relay tunnel Total number of recursive tunnels Dest...

Page 943: ...view Parameters acl6 number Basic IPv6 ACL number in the range 2000 to 2999 Verbose Displays both active and inactive verbose routing information permitted by the ACL Without this keyword only brief active routing information is displayed Description Use the display ipv6 routing table acl command to display routing information permitted by the IPv6 ACL If the specified IPv6 ACL is not available al...

Page 944: ...he specified destination IPv6 address Executing the command with different parameters yields different output display ipv6 routing table ipv6 address prefix length The system ANDs the input destination IPv6 address with the input prefix length and ANDs the destination IPv6 address in each route entry with the input prefix length If the two operations yield the same result for an entry and the entr...

Page 945: ...ay ipv6 routing table ipv6 address1 ipv6 address2 Syntax display ipv6 routing table ipv6 address1 prefix length1 ipv6 address2 prefix length2 verbose View Any view Parameters ipv6 address1 ipv6 address2 An IPv6 address range from IPv6 address1 to IPv6 address2 prefix length1 prefix length2 Prefix length in the range 0 to 128 verbose Displays both active and inactive verbose routing information Wit...

Page 946: ...mitted by the IPv6 prefix list abc2 Sysname display ipv6 routing table ipv6 prefix abc2 Routes Matched by Prefix list abc Summary Count 1 Destination 100 64 Protocol Static NextHop Preference 60 Interface NULL0 Cost 0 Refer to Table 209 for description about the above output display ipv6 routing table protocol Syntax display ipv6 routing table protocol protocol inactive verbose View Any view Param...

Page 947: ...tics command to display routing statistics including total route number added route number and deleted route number Examples Display routing statistics Sysname display ipv6 routing table statistics Protocol route active added deleted freed DIRECT 1 1 1 0 0 STATIC 3 0 3 0 0 RIPng 0 0 0 0 0 OSPFv3 0 0 0 0 0 IS ISv6 0 0 0 0 0 BGP4 0 0 0 0 0 Total 4 1 4 0 0 Table 210 Description on the fields of the d...

Page 948: ... RelayNextHop Tag 0H Neighbour ProcessID 0 Interface InLoopBack0 Protocol Direct State Active NoAdv Cost 0 Tunnel ID 0x0 Label NULL Age 22161sec display ipv6 relay route Syntax display ipv6 relay route Table 211 Description on the fields of the display ipv6 routing table verbose command Field Description Destination Destination IPv6 address PrefixLength Prefix length of the address Nexthop Next ho...

Page 949: ... fields of the display ipv6 relay route command Field Description Total Number of Relay route Total number of recursive routes Dest Mask Destination address mask of the recursive route Related instance id always 0 IPv6 supports public networks only Therefore the instance ID can be 0 only The number in the parentheses after the instance ID indicates the number of routes that have used the recursive...

Page 950: ...p address mask mask length reset load sharing statistics all View User view Parameters ip address Destination IP address in dotted decimal notation mask IP address mask in dotted decimal notation mask length IP address mask length in the range 0 to 32 Description Use the reset load sharing ip address command to clear the statistics of non balanced load sharing This command clears the load sharing ...

Page 951: ... the routing statistics of the specified routing protocol in the IPv6 routing table At present this argument can be bgp direct is is ospf rip or static Description Use the reset ip routing table statistics protocol command to clear routing statistics for the routing table or VPN routing table Examples Clear the routing statistics for the VPN instance Sysname1 Sysname reset ip routing table statist...

Page 952: ...952 CHAPTER 71 IP ROUTING TABLE COMMANDS Examples Clear the routing statistics of all the routing protocols in the routing table Sysname reset ipv6 routing table statistics protocol all ...

Page 953: ...ute policy name Sets the attributes of the summary route according to the routing policy the name of which is a string of 1 to 19 characters detail suppressed Only advertises the summary route suppress policy route policy name Suppresses specific routes defined in the routing policy the name of which is a string of 1 to 19 characters origin policy route policy name References the routing policy to...

Page 954: ...ad balancing in the range 1 to 8 When it is set to 1 no load balancing is available Description Use the balance command to configure the number of BGP routes for load balancing Use the undo balance command to disable load balancing detail suppressed This keyword does not suppress the summary route but it suppresses the advertisement of all the more specific routes To summarize only some specific r...

Page 955: ...P BGP VPN instance view Syntax bestroute as path neglect undo bestroute as path neglect View BGP view BGP VPN instance view Parameters None Description Use the bestroute as path neglect command to configure the BGP router to not evaluate the AS_PATH during best route selection Use the undo bestroute as path neglect command to configure the BGP router to take the AS_PATH as a factor during best rou...

Page 956: ... Sysname bgp 100 Sysname bgp bestroute compare med In BGP VPN instance view enable the comparison of MED for paths from each AS when selecting the best route The VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 bestroute compare med bestroute med confederation BGP BGP VPN instance view Syntax bestroute med confederation undo bestro...

Page 957: ...s been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 bestroute med confederation bgp Syntax bgp as number undo bgp as number View System view Parameters as number Specifies the local AS number from 1 to 65535 Description Use the bgp command to enable BGP and enter the BGP view Use the undo bgp command to disable BGP By default BGP is not ena...

Page 958: ...ystem view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 compare different as med confederation id Syntax confederation id as number undo confederation id View BGP view Parameters as number Number of the AS that contains multiple sub ASs in the range 1 to 65535 Description Use the confederation id command to configure a confederation ID Use the undo confederation id co...

Page 959: ...eration nonstandard undo confederation nonstandard View BGP view Parameters None Description Use the confederation nonstandard command to make the router compatible with routers not compliant with RFC3065 in the confederation Use the undo confederation nonstandard command to restore the default By default all routers in the confederation comply with RFC3065 All devices in the confederation should ...

Page 960: ... as number list argument is used all confederation peer sub ASs are removed Related commands confederation nonstandard and confederation id Examples Specify confederation peer sub ASs 2000 and 2001 Sysname system view Sysname bgp 100 Sysname bgp confederation id 10 Sysname bgp confederation peer as 2000 2001 dampening BGP BGP VPN instance view Syntax dampening half life reachable half life unreach...

Page 961: ...ommand to disable route dampening By default no route dampening is configured The command dampens only EBGP routes rather than IBGP routes Related commands reset bgp dampening reset bgp flap info display bgp routing table dampened display bgp routing table dampening parameter and display bgp routing table flap info Examples In BGP view configure BGP route dampening Sysname system view Sysname bgp ...

Page 962: ...67295 The larger the value is the higher the preference is Description Use the default local preference command to configure the default local preference Use the undo default local preference command to restore the default value By default the default local preference is 100 Using this command can affect BGP route selection Examples In BGP view set the default local preference to 180 Sysname syste...

Page 963: ... same the system first selects the route with the smallest MED as the best external route Examples In BGP view configure the default MED as 25 Sysname system view Sysname bgp 100 Sysname bgp default med 25 In BGP VPN instance view configure the default MED as 25 the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 default med 25 de...

Page 964: ... to 47 characters Description Use the display bgp group command to display the information of the peer group Examples Display the information of the peer group aaa Sysname display bgp group aaa BGP peer group is aaa remote AS 200 Type external Maximum allowed prefix number 4294967295 Threshold 75 Configured hold timer value 180 Keepalive timer value 60 Minimum time between advertisement runs is 30...

Page 965: ... Value Preferred value of the routes from the peer No routing policy is configured No routing policy is configured for the peer Members Detailed information of the members in the peer group Peer IPv4 address of the peer V BGP version running on peers AS AS number of the peers MsgRcvd Number of messages received MsgSent Number of messages sent OutQ Number of messages to be sent PrefRcv Number of pr...

Page 966: ...ask Mask Route policy Routing policy Short cut Short cut route Table 216 Description on the fields of the display bgp network command Field Description Table 217 Description on the fields of the display bgp paths command Field Description Address Route address in local database in dotted hexadecimal notation Hash Hash index Refcount Count of routes that referenced the path MED MED of the path Path...

Page 967: ...esh capability Address family IPv4 Unicast advertised and received Received Total 5 messages Update messages 1 Sent Total 4 messages Update messages 0 Maximum allowed prefix number 4294967295 Threshold 75 Minimum time between advertisement runs is 30 seconds Optional capabilities Route refresh capability has been enabled Peer Preferred Value 0 Routing policy configured No routing policy is configu...

Page 968: ...al Path Ogn 40 40 40 0 24 20 20 20 1 0 200 300i Peer optional capabilities Optional capabilities supported by the peer including BGP multiple extension and routing refresh Address family IPv4 Unicast Routes are advertised and received in the form of IPv4 unicast Received Total numbers of received packets and updates Sent Total numbers of sent packets and updates Maximum allowed prefix number Maxim...

Page 969: ...P learned through EGP incomplete learned by other means Network Destination network address Next Hop Next hop IP address MED MULTI_EXIT_DISC attribute LocPrf Local preference value PrefVal Preferred value of the route Path AS_PATH attribute recording the ASs the packet has passed to avoid routing loops PrefVal Preferred value Ogn Origin attribute of the route one of the following values i Indicate...

Page 970: ...l 1 BGP Local router ID is 2 2 2 2 Status codes valid best d damped h history i internal s suppressed S Stale Origin i IGP e EGP incomplete Network NextHop MED LocPrf PrefVal Path Ogn 10 1 5 0 24 10 1 1 1 0 65001 65004i Refer to Table 219 for description on the fields above display bgp routing table cidr Syntax display bgp routing table cidr View Any view Parameters None Description Use the displa...

Page 971: ...isplays the exactly matched routes Description Use the display bgp routing community command to display BGP routing information with the specified BGP community Examples Display routing information with the specified BGP community Sysname display bgp routing table community 11 22 BGP Local router ID is 10 10 10 1 Status codes valid best d damped h history i internal s suppressed S Stale Origin i I...

Page 972: ...h 3 3 3 0 30 1 2 3 4 0 4 4 0 0 20 1 2 3 4 0 4 5 6 0 26 1 2 3 4 0 BGP Local router ID is 30 30 30 1 Status codes valid best d damped h history i internal s suppressed S Stale Origin i IGP e EGP incomplete Network NextHop MED LocPrf PrefVal Path Ogn 30 30 30 0 24 0 0 0 0 0 0 i 40 40 40 0 24 0 0 0 0 0 0 i Refer to Table 219 for description on the fields above display bgp routing table dampened Syntax...

Page 973: ...Reuse Value 750 HalfLife Time in second 900 Suppress Limit 2000 display bgp routing table different origin as Syntax display bgp routing table different origin as View Any view Parameters None Table 220 Description on the fields of the display bgp routing table dampened command Field Description From IP address from which the route was received Reuse Reuse time of the route Table 221 Description o...

Page 974: ...mask length longer match View Any view Parameters as regular expression Displays route flap information that matches the AS path regular expression as path acl number Displays route flap information matching the AS path ACL The number is in the range 1 to 256 ip address Destination IP address mask Mask in dotted decimal notation mask length Mask length in the range 0 to 32 longer match Matches the...

Page 975: ...play bgp routing table peer command to display BGP routing information advertised to or received from the specified BGP peer Related commands display bgp peer Examples Display BGP routing information advertised to BGP peer 20 20 20 1 Sysname display bgp routing table peer 20 20 20 1 advertised routes Total Number of Routes 2 BGP Local router ID is 30 30 30 1 Status codes valid best d damped h hist...

Page 976: ...s codes valid best d damped h history i internal s suppressed S Stale Origin i IGP e EGP incomplete Network NextHop MED LocPrf PrefVal Path Ogn 40 40 40 0 24 30 30 30 1 0 0 300i Refer to Table 219 for description on the fields above display bgp routing table statistic Syntax display bgp routing table statistic View Any view Parameters None Description Use the display bgp routing table statistic co...

Page 977: ...4 family vpn instance vpn1 Sysname bgp vpn1 ebgp interface sensitive filter policy export BGP BGP VPN instance view Syntax filter policy acl number ip prefix ip prefix name export direct isis process id ospf process id rip process id static undo filter policy export direct isis process id ospf process id rip process id static View BGP view BGP VPN instance view Parameters acl number Number of an A...

Page 978: ... Sysname bgp 100 Sysname bgp filter policy 2000 export In BGP VPN instance view reference ACL 2000 to filter all outgoing redistributed routes the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 filter policy 2000 export filter policy import BGP BGP VPN instance view Syntax filter policy acl number ip prefix ip prefix name import ...

Page 979: ... BGP Graceful Restart capability Use the undo graceful restart command to disable BGP Graceful Restart capability By default BGP Graceful Restart capability is disabled n When a GR capable BGP speaker restarts the address family to which the speaker belongs can still maintain the forwarding state and send the End Of RIB marker but the BGP speaker may not maintain its forwarding table Examples Enab...

Page 980: ...iew Parameters timer Time to wait for the End of RIB marker in the range 3 to 300 seconds Description Use the graceful restart timer wait for rib command to configure the time to wait for the End of RIB marker Use the undo graceful restart timer wait for rib command to restore the default By default the time to wait for the End of RIB marker is 180 seconds n After a BGP session has been successful...

Page 981: ...S number 200 and add EBGP peers 10 1 1 1 and 10 1 2 1 into the group the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 group test external Sysname bgp vpn1 peer test as number 200 Sysname bgp vpn1 peer 10 1 1 1 group test Sysname bgp vpn1 peer 10 1 2 1 group test import route BGP BGP VPN instance view Syntax import route protoco...

Page 982: ...nd is incomplete Examples In BGP view redistribute routes from RIP Sysname system view Sysname bgp 100 Sysname bgp import route rip In BGP VPN instance view redistribute routes from RIP the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 import route rip log peer change Syntax log peer change undo log peer change View BGP view Par...

Page 983: ...icy applied to the route The name is a string of 1 to 19 characters Description Use the network command to inject a network to the local BGP routing table Use the undo network command to remove a network from the routing table By default no network route is injected Note that The network route must be in the local IP routing table and using a routing policy makes route management more flexible The...

Page 984: ...mmunity list if match community apply community Examples In BGP view advertise the community attribute to peer group test Sysname system view Sysname bgp 100 Sysname bgp peer test advertise community In BGP VPN instance view advertise the community attribute to peer group test the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 pe...

Page 985: ... BGP BGP VPN instance view Syntax peer group name ip address allow as loop number undo peer group name ip address allow as loop View BGP view BGP VPN instance view Parameters group name Name of a peer group a string of 1 to 47 characters ip address IP address of a peer number Specifies the repeating times of the local AS number in the range 1 to 10 The default number is 1 Description Use the peer ...

Page 986: ...ber of the peer or peer group in the range 1 to 65535 Description Use the peer as number command to specify the AS number for a peer peer group Use the undo peer as number command to delete the AS number of a peer group Use the undo peer command to delete a peer By default no AS number is configured for a peer peer group Examples In BGP view specify the AS number of the peer group test as 100 Sysn...

Page 987: ...ing is configured Related commands ip as path acl if match as path and apply as path Examples In BGP view reference the AS path ACL 1 to filter routes outgoing to the peer group test Sysname system view Sysname bgp 100 Sysname bgp peer test as path acl 1 export In BGP VPN instance view reference the AS path ACL 1 to filter routes outgoing to the peer group test the VPN has been created Sysname sys...

Page 988: ...er group name ip address capability advertise route refresh View BGP view BGP VPN instance view Parameters group name Name of a peer group a string of 1 to 47 characters ip address IP address of a peer Description Use the peer capability advertise route refresh command to enable the BGP route refresh capability Use the undo peer capability advertise route refresh command to disable the capability ...

Page 989: ...le BGP connections to another BGP router you need to specify on the local router the respective source interfaces for establishing TCP connections to the peers on the peering BGP router because the local BGP router may fail to establish TCP connections to the peers when using the outbound interfaces of the best routes as the source interfaces Examples In BGP view specify loopback 0 as the source i...

Page 990: ...is available in the routing table Examples In BGP view advertise a default route to peer group test Sysname system view Sysname bgp 100 Sysname bgp peer test default route advertise In BGP VPN instance view advertise a default route to peer group test the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 peer test default route adve...

Page 991: ...peer test description ISP1 peer ebgp max hop BGP BGP VPN instance view Syntax peer group name ip address ebgp max hop hop count undo peer group name ip address ebgp max hop View BGP view BGP VPN instance view Parameters group name Name of a peer group a string of 1 to 47 characters ip address IP address of a peer hop count Maximum hop count in the range 1 to 255 The default is 64 Description Use t...

Page 992: ...iption Use the peer enable command to enable the specified peer Use the undo peer enable command to disable the specified peer By default the BGP peer is enabled If a peer is disabled the router will not exchange routing information with the peer Examples Disable peer 18 10 0 9 Sysname system view Sysname bgp 100 Sysname bgp peer 18 10 0 9 group group1 Sysname bgp undo peer 18 10 0 9 enable peer f...

Page 993: ...peer test fake as 200 peer filter policy BGP BGP VPN instance view Syntax peer group name ip address filter policy acl number export import undo peer group name ip address filter policy acl number export import View BGP view BGP VPN instance view Parameters group name Name of a peer group a string of 1 to 47 characters ip address IP address of a peer acl number ACL number in the range 2000 to 3999...

Page 994: ...rs group name Name of a peer group a string of 1 to 47 characters ip address IP address of a peer as number AS number of the peer in the range 1 to 65535 Description Use the peer group command to add a peer to a peer group Use the undo peer group command to delete a specified peer from a peer group By default no peer is added into a peer group Examples In BGP view add the peer 10 1 1 1 to the EBGP...

Page 995: ... related routing information For a peer group this means all sessions with the peer group will be tore down Examples In BGP view disable session establishment with peer 10 10 10 10 Sysname system view Sysname bgp 100 Sysname bgp peer 10 10 10 10 ignore In BGP VPN instance view disable session establishment with peer 10 10 10 10 the VPN has been created Sysname system view Sysname bgp 100 Sysname b...

Page 996: ...oup test the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 peer test ip prefix list1 export peer keep all routes BGP BGP VPN instance view Syntax peer group name ip address keep all routes undo peer group name ip address keep all routes View BGP view BGP VPN instance view Parameters group name Name of a peer group a string of 1 ...

Page 997: ...mand to enable the logging of session state and event information for a specified peer or peer group Use the undo peer log change command to remove the configuration The logging is enabled by default Examples In BGP view enable the logging of session state and event information for peer group test Sysname system view Sysname bgp 100 Sysname bgp peer test log change In BGP VPN instance view enable ...

Page 998: ...er group test to the router itself the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 peer test next hop local peer password Syntax peer group name ip address password cipher simple password undo peer group name ip address password View BGP view BGP VPN instance view Parameters group name Name of a peer group a string of 1 to 47 ...

Page 999: ...assword simple aabbcc In BGP VPN instance view perform MD5 authentication on the TCP connection set up between the local router 10 1 100 1 and the peer router 10 1 100 2 the VPN has been created Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 peer 10 1 100 2 password simple aabbcc Perform the similar configuration on the peer Sysname system view Sysna...

Page 1000: ...fied in the routing policy is zero the routes matching it will also use the value set with the command For information about using a routing policy to set a preferred value refer to peer group BGP BGP VPN instance view on page 994 peer route policy BGP BGP VPN instance view on page 1002 export import in this document and apply preferred value on page 1194 Examples In BGP view configure the preferr...

Page 1001: ...tem view Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 peer test public as only peer reflect client BGP BGP VPN instance view Syntax peer group name ip address reflect client undo peer group name ip address reflect client View BGP view Parameters group name Name of a peer group a string of 1 to 47 characters ip address IP address of a peer Description Use the peer refl...

Page 1002: ...routes that can be received from a peer peer group Use the undo peer route limit command to restore the default The number is unlimited by default Examples In BGP view set the number of routes that can be received from peer 129 140 6 6 to 10000 Sysname system view Sysname bgp 109 Sysname bgp peer 129 140 6 6 as number 110 Sysname bgp peer 129 140 6 6 route limit 10000 In BGP VPN instance view set ...

Page 1003: ... policy Refer to route policy on page 1205 and if match interface on page 1200 Examples In BGP view apply routing policy test policy to routes outgoing to peer group test Sysname system view Sysname bgp 100 Sysname bgp peer test route policy test policy export In BGP VPN instance view apply routing policy test policy to routes outgoing to the peer group test the VPN has been created Sysname system...

Page 1004: ...Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 peer test as number 100 Sysname bgp vpn1 peer test route update interval 10 peer substitute as BGP BGP VPN instance view Syntax peer group name ip address substitute as undo peer group name ip address substitute as View BGP view BGP VPN instance view Parameters group name Name of a peer group a sting of 1 to 47 characters ip address IP add...

Page 1005: ... peer or peer group Use the undo peer timer command to restore the default By default the keepalive and holdtime are 60s and 180s respectively Note that The timer configured with this command is preferred to the timer configured with the timer command The holdtime interval must be at least three times the keepalive interval Related commands timer BGP BGP VPN instance view Examples In BGP view conf...

Page 1006: ... out the default value applies Description Use the preference command to configure preferences for external internal and local routes Use the undo preference command to restore the default For external preference internal preference and local preference the bigger the preference value is the lower the preference is and the default values are 255 255 130 respectively Examples In BGP view configure ...

Page 1007: ...cluster id cluster id undo reflector cluster id View BGP view Parameters cluster id Cluster ID of the route reflector an integer from 1 to 4294967295 the integer is translated into an IP address by the system or an IP address Description Use the reflector cluster id command to configure the cluster ID of the route reflector Use the undo reflector cluster id command to remove the configured cluster...

Page 1008: ... the refresh bgp command to perform soft reset on specified BGP connections Using this function can refresh the BGP routing table without tearing down BGP connections and apply a newly configured routing policy To perform BGP soft reset all routers in the network must support route refresh If a router not supporting route refresh exists in the network you need to configure the peer keep all routes...

Page 1009: ...iew Parameters ip address Destination IP address of a route mask Mask in dotted decimal notation mask length Mask length in the range 0 to 32 Description Use the reset bgp dampening command to clear route dampening information and release suppressed routes Related commands dampening BGP BGP VPN instance view display bgp routing table dampened Examples Clear damping information of route 20 1 0 0 16...

Page 1010: ...atistics of all routes matching AS path ACL 10 Sysname reset bgp flap info as path acl 10 reset bgp ipv4 all Syntax reset bgp ipv4 all View User view Parameters None Description Use the reset bgp ipv4 all command to reset all the BGP connections of IPv4 unicast address family Examples Reset all the BGP connections of IPv4 unicast address family Sysname reset bgp ipv4 all router id Syntax router id...

Page 1011: ...ummary automatic Syntax summary automatic undo summary automatic View BGP view BGP VPN instance view Parameters None Description Use the summary automatic command to enable automatic summarization for redistributed subnets Use the undo summary automatic command to disable automatic summarization By default automatic summarization is disabled Note that Neither the default route nor the routes impor...

Page 1012: ...he AS know the latest routing information When a BGP router receives an IBGP route it checks only whether the next hop is reachable by default If the synchronization is enabled the IBGP route is synchronized and advertised to EBGP peers only when the route is also advertised by IGP Otherwise the IBGP route cannot be advertised to EBGP peers Examples Enable the synchronization between BGP and IGP r...

Page 1013: ...ll the BGP peers while it becomes valid only after the corresponding BGP connections are reset Related commands peer timer BGP BGP VPN instance view Examples Configure keepalive interval and holdtime interval as 60s and 180s Sysname system view Sysname bgp 100 Sysname bgp timer keepalive 60 hold 180 In BGP VPN instance view configure keepalive interval and holdtime interval as 60s and 180s the VPN...

Page 1014: ...1014 CHAPTER 72 BGP CONFIGURATION COMMANDS ...

Page 1015: ...and to disable all BGP debugging By default all BGP debugging is disabled Note the following This command enables all BGP debugging which may cause heavy traffic and affect system performance therefore use this command only when necessary Disable debugging once the debugging operation is complete Examples Enable all BGP debugging while Device A and Device B are establishing an IBGP peer relationsh...

Page 1016: ... CAP Type 1 Multiprotocol CAP Len 4 IPv4 UNC 1 1 CAP Type 2 RouteRefresh CAP Len 0 Total CAPB Len 8 Total OPT Len 10 Total Message Len 39 Aug 24 15 32 02 630 2006 Sysname RM 6 RMDEBUG BGP 10 1 1 2 State is changed from ACTIVE to OPENSENT After the connection is established BGP sent an OPEN message to the peer Aug 24 15 32 02 630 2006 Sysname RM 6 RMDEBUG BGP 10 1 1 2 Recv OPEN Length 39 Version 4 ...

Page 1017: ...n Use the debugging bgp detail command to enable detailed debugging for BGP Use the undo debugging bgp detail command to disable detailed debugging for BGP Enabling debugging may affect system performance therefore use this command only when necessary Disable debugging once the debugging operation is complete By default detailed debugging for BGP is disabled Table 224 Description on the fields of ...

Page 1018: ...meters ipv4 address IPv4 address of a peer ipv6 address IPv6 address of a peer Description Use the debugging bgp event command to enable event debugging for BGP Use the undo debugging bgp event command to disable event debugging for BGP Received New VPNv4 Route with Ext Community NULL Ignoring Route Received a new VPNv4 route with Ext Community as NULL and therefore ignored the route Received VPNv...

Page 1019: ... State is changed from CONNECT to ACTIVE Aug 24 14 12 13 706 2006 Sysname RM 6 RMDEBUG BGP 10 1 1 2 State is changed from ACTIVE to OPENSENT Aug 24 14 12 13 706 2006 Sysname RM 6 RMDEBUG BGP 10 1 1 2 Current event is ReceiveOpenMessage BGP received an OPEN message Aug 24 14 12 13 706 2006 Sysname RM 6 RMDEBUG BGP 10 1 1 2 State is changed from OPENSENT to OPENCONFIRM The state has changed from OPE...

Page 1020: ... debugging once the debugging operation is complete By default this debugging is disabled Examples Enable BGP GR event debugging on the BGP GR Helper when the neighbor performs an active standby switchover Sysname debugging bgp graceful restart Aug 24 17 05 08 770 2006 Sysname RM 3 RMLOG BGP 10 1 1 1 State is changed from ESTABLISHED to IDLE Aug 24 17 05 08 786 2006 Sysname RM 6 RMDEBUG BGP_GR Pee...

Page 1021: ...ebugging route refresh Enables BGP Route Refresh message debugging receive Enables the debugging for received BGP packets send Enables the debugging for sent BGP packets verbose Displays detailed debugging information Description Use the debugging bgp command to enable debugging for specific BGP message types Use the undo debugging bgp command to disable debugging for specific BGP message types En...

Page 1022: ...en 8 Total OPT Len 10 Total Message Len 39 Information about the sent BGP Open message 0 2683500 4945 RM 6 RMDEBUG BGP 11 1 1 2 Recv OPEN Length 39 Version 4 Local AS 200 HoldTime 180 BGP ID 192 168 74 2 TotOptLen 10 OPT Type 2 Capability OPT Len 8 CAP Type 1 Multiprotocol CAP Len 4 Table 227 Description on the fields of the debugging bgp open command Field Description Version X BGP protocol versi...

Page 1023: ...ith following destinations Update message length 53 MED 0 Origin Incomplete AS Path 200 Next Hop 11 1 1 2 222 1 1 1 32 Information about the received BGP Update of a redistributed static route Device A and Device B has established a peer relationship On Device A enable debugging for the received BGP route refresh messages On Device B enable debugging for the sent BGP route refresh messages and exe...

Page 1024: ... command only when necessary and disable debugging once the debugging operation is complete Examples Configure BGP on Device A and specify BGP peer 2 2 2 2 Device B On Device B which is connected to Device A create no corresponding BGP peer Enable BGP timer debugging on Device A Sysname debugging bgp timer 0 92311078 Sysname RM 6 RMDEBUG BGP_TIMER CR Timer Expired for Peer 2 2 2 2 The ConnectRetry...

Page 1025: ...debugging for received BGP packets send Enables the debugging for sent BGP packets verbose Displays detailed debugging information Description Use the debugging bgp update command to enable debugging for BGP Update messages Use the undo debugging bgp update command to disable debugging for BGP Update messages By default this debugging is disabled Enabling debugging may affect system performance th...

Page 1026: ... Enables disables debugging for sent BGP updates verbose Displays detailed debugging information Description Use the debugging bgp update ipv4 command to enable debugging for BGP Update messages Use the undo debugging bgp update ipv4 command to disable debugging for BGP Update messages By default this debugging is disabled Enabling debugging may affect system performance therefore use this command...

Page 1027: ...date message length 56 Local Pref 100 MED 0 Origin Incomplete AS Path Next Hop 11 1 1 2 2 2 2 2 32 Sep 4 16 08 37 304 2006 Sysname RM 6 RMDEBUG BGP Recv UPDATE from 11 1 1 2 with following destinations Update message length 55 Local Pref 100 MED 0 Origin Incomplete AS Path Next Hop 11 1 1 2 11 1 1 0 24 Sep 4 16 08 37 304 2006 Sysname RM 6 RMDEBUG BGP Recv UPDATE from 11 1 1 2 with following destin...

Page 1028: ...system performance therefore use this command only when necessary and disable debugging once the debugging operation is complete By default this debugging is disabled Examples Device A and Device B have established an IPv6 BGP peer relationship Enable debugging for IPv6 BGP update messages Sysname debugging bgp update ipv6 Sep 4 16 17 20 642 2006 Sysname RM 3 RMLOG BGP 100 2 State is changed from ...

Page 1029: ...lt Level 1 Monitor level Parameters peer ipv4 address group name Enables disables BGP L2VPN Update message debugging for the specified peer peer group receive Enables disables the debugging for received BGP packets send Enables disables the debugging for sent BGP packets verbose Displays detailed debugging information Description Use the debugging bgp update l2vpn command to enable debugging for B...

Page 1030: ...set 0 label base 8192 Update messages in an L2VPN environment debugging bgp update label route Syntax debugging bgp update label route peer ipv4 address group name acl acl number ip prefix ip prefix name receive send verbose undo debugging bgp update label route peer ipv4 address group name receive send verbose View User view Default Level 1 Monitor level Parameters peer ipv4 address group name En...

Page 1031: ...en enabled on the connected interfaces Enable debugging for BGP labeled route update messages Sysname debugging bgp update route label Sep 4 16 14 32 16 2006 Sysname RM 6 RMDEBUG BGP Send UPDATE to peer 2 2 2 2 for following destinations Sep 4 16 14 32 16 2006 Sysname RM 6 RMDEBUG Origin Incomplete AS Path Next Hop 1 1 1 1 Local Pref 100 MED 0 111 1 1 1 32 1024 Sep 4 16 14 32 22 2006 Sysname RM 6 ...

Page 1032: ...ilters the output message debugging information with the specified IP prefix list receive Enables disables the debugging for the received BGP packets send Enables disables the debugging for the sent BGP packets verbose Displays detailed debugging information Description Use the debugging bgp update peer command to enable BGP update message debugging for the specified peer peer group Use the undo d...

Page 1033: ...undo debugging bgp update vpls command to disable debugging for BGP VPLS Update messages By default this debugging is disabled Enabling debugging may affect system performance therefore use this command only when necessary and disable debugging once the debugging operation is complete Examples In a VPLS environment Device A and Device B have established a BGP peer relationship Enable debugging for...

Page 1034: ...el Parameters vpn instance name Enables disables the BGP update message debugging for the specified VPN instance ip prefix ip prefix name Filters the output message debugging information with the specified IP prefix list peer ipv4 address group name Enables disables BGP update message debugging for the specified peer peer group receive Enables disables the debugging for received BGP packets send E...

Page 1035: ... command to enable debugging for BGP VPNv4 Update messages Use the undo debugging bgp update vpnv4 command to disable debugging for BGP VPNv4 Update messages By default this debugging is disabled Enabling debugging may affect system performance therefore use this command only when necessary and disable debugging once the debugging operation is complete Examples Device A and Device B have establish...

Page 1036: ... with following destinations Update message length 92 Local Pref 100 MED 0 Ext Community 1 1 Origin Incomplete AS Path Next Hop 2 2 2 2 111 2 2 2 32 RD 100 2 Label 1024 Sep 4 16 14 33 164 2006 Sysname RM 6 RMDEBUG BGP_L3VPN L3VPN Process IP Address 111 2 2 2 src instance VPNV4 dest instance red LocRemCross No Import Policy Route Added To Target Instance Update message information of VPNv4 ...

Page 1037: ...ecifies the system to check the configuration for the corresponding field of OSI in LSP n Whether a password should use ip or osi is not affected by the actual network environment Description Use the area authentication mode command to configure the area authentication mode to insert the area authentication password into all the sent level 1 packets LSP CSNP and PSNP in the predefined way and veri...

Page 1038: ... preference of interface cost set by the auto cost command is lower than that set by the circuit cost command The preference from high to low is the cost set by the isis cost command the global cost set by the circuit cost command the cost automatically calculated and the default cost When the cost style is wide or wide compatible the cost value of an interface is calculated by using the following...

Page 1039: ...interface bandwidth is in the range of 1 M to 10 M the interface cost is 60 if the interface bandwidth is in the range of 11 M to 100 M the interface cost is 50 if the interface bandwidth is in the range of 101 M to 155 M the interface cost is 40 if the interface bandwidth is in the range of 156 M to 622 M the interface cost is 30 if the interface bandwidth is in the range of 623 M to 2500 M the i...

Page 1040: ... wide wide compatible compatible narrow compatible relax spf limit undo cost style View IS IS view Parameters narrow Specifies to receive and send only packets of narrow cost style The narrow cost ranges from 0 to 63 wide Specifies to receive and send only packets of wide cost style The wide cost ranges from 0 to 16777215 compatible Specifies to receive and send both wide and narrow style packets ...

Page 1041: ...l 2 Specifies the level of the default route as Level 2 level 1 2 Specifies the level of the default route as Level 1 2 n If no level is specified a Level 2 default route is generated Description Use the default route advertise command to generate a Level 1 or Level 2 default route Use the undo default route advertise command to disable the function This function is disabled by default The Level 1...

Page 1042: ...display isis brief ISIS 1 Protocol Brief Information network entity 10 0000 0000 0001 00 is level level 1 2 cost style narrow preference 15 Lsp length receive 1497 Lsp length originate level 1 1497 level 2 1497 Timers spf slice size 0 lsp max age 1200 lsp refresh 900 Interval between SPFs 10 Table 233 Description on the fields of the display isis brief command Field Description network entity Netw...

Page 1043: ...isis graceful restart status level 1 level 2 process id vpn instance vpn instance name View Any view Parameters level 1 Displays the IS IS Level 1 Graceful Restart state level 2 Displays the IS IS Level 2 Graceful Restart state process id IS IS Process ID in the range 1 to 65535 vpn instance vpn instance name Name of a VPN instance a string of 1 to 31 characters Description Use the display isis gr...

Page 1044: ...rmation verbose Displays IS IS interface detail information tunnel Displays IS IS tunnel information process id IS IS process ID in the range of 1 to 65535 vpn instance name VPN instance name a string of 1 to 31 characters Description Use the display isis interface command to view IS IS enabled interface information The information displayed by this command includes interface name interface IP add...

Page 1045: ...Address 0000 5e19 6d00 IP Address 192 168 0 1 Secondary IP Address es IPV6 Link Local Address IPV6 Global Address es Csnp Timer Value L1 10 L2 10 Hello Timer Value L1 40 L2 10 Hello Multiplier Value L1 3 L2 30 Lsp Timer Value L12 1 Cost L1 10 L2 10 Priority L1 64 L2 64 Retransmit Timer Value L12 5 BFD Disabled Table 235 Description on the fields of the display isis interface command Field Descript...

Page 1046: ... Resource 1 1024 500 0 Max Paths Resource 1 6 3 0 Max IPv4 Rt Resource 400000 400000 400000 0 Max IPv6 Rt Resource 400000 400000 400000 0 ISIS Core License Values ________________________ Feature Name Active ISIS Protocol YES IPV6 YES RESTART YES TE YES MI YES Resource Name Current Value Max Processes Resource 500 Max Paths Resource 3 Max IPv4 Rt Resource 400000 Max IPv6 Rt Resource 400000 Hello M...

Page 1047: ... instance name a string of 1 to 31 characters Table 236 Description on the fields of the display isis license command Field Description ISIS Shell License Values License values of ISIS shell Feature Name Feature name Active Whether the state is active Controllable Whether support reading configuration through License file ISIS Protocol IS IS Protocol IPV6 Whether IPv6 is active or not RESTART Grac...

Page 1048: ...instance vpn instance name View Any view Parameters process id Specifies an IS IS process ID in the range of 1 to 65535 vpn instance name Specifies a VPN instance name in the range of 1 to 31 characters Description Use the display isis mesh group command to display IS IS mesh group Examples Add the Serial2 0 interface and Serial2 1 interface on a router to mesh group 100 Sysname system view Sysnam...

Page 1049: ...ples Configure a name for the local IS IS system Sysname system view Sysname isis Sysname isis 1 is name RUTA Configure a static mapping for the remote IS IS system 0000 0000 0041 Sysname isis 1 is name map 0000 0000 0041 RUTB Display the IS IS host name to system ID mapping table Sysname isis 1 display isis name table Name table information for ISIS 1 System ID Hostname Type 6789 0000 0001 RUTA D...

Page 1050: ... s IP address Examples Display detailed IS IS neighbor information Sysname display isis peer verbose Peer information for ISIS 1 System Id 0000 0000 0003 Interface Ethernet1 0 Circuit Id 0000 0000 0003 01 State Up HoldTime 8s Type L1 L1L2 PRI 64 Area Address es 10 Peer IP Address es 192 168 0 3 Uptime 00 14 03 Adj Protocol IPV4 display isis route Syntax display isis route ipv4 level 1 level 2 verb...

Page 1051: ...ISIS 1 ISIS 1 IPv4 Level 1 Forwarding Table IPV4 Destination IntCost ExtCost ExitInterface NextHop Flags 12 12 12 0 24 10 NULL Eth0 1 0 Direct D L 24 24 24 0 24 20 NULL Eth0 1 0 12 12 12 2 R L 2 2 2 2 32 10 NULL Eth0 1 0 12 12 12 2 R L 2 2 3 2 32 10 NULL Eth0 1 0 12 12 12 2 R L Flags D Direct R Added to RM L Advertised in LSPs U Up Down Bit Set ISIS 1 IPv4 Level 2 Forwarding Table IPV4 Destination...

Page 1052: ... 0 L1 IS_SPFTRIG_PERIODIC 2 0 13 55 43 L2 IS_SPFTRIG_PERIODIC 2 0 13 55 43 L1 IS_SPFTRIG_PERIODIC 2 0 11 54 12 L2 IS_SPFTRIG_PERIODIC 2 0 11 54 12 L1 IS_SPFTRIG_PERIODIC 2 0 12 7 24 L2 IS_SPFTRIG_PERIODIC 2 0 12 7 24 L1 IS_SPFTRIG_PERIODIC 2 0 12 21 24 L2 IS_SPFTRIG_PERIODIC 2 0 12 21 24 L1 IS_SPFTRIG_PERIODIC 2 0 12 35 24 L2 IS_SPFTRIG_PERIODIC 2 0 12 35 24 L1 IS_SPFTRIG_PERIODIC 2 0 12 49 24 L2 ...

Page 1053: ...S process including the number of routes learned from other IS IS routers the number of routes redistributed from other protocols and the number of LSP generated locally Examples Display IS IS statistic information Sysname display isis statistics Statistics information for ISIS 1 Level 1 Statistics Learnt routes information Total IPv4 Learnt Destinations 4 Total IPv6 Learnt Destinations 0 Imported...

Page 1054: ...s such as user918 A cipher password must be a string of 24 characters such as _ TT8F Y5SQ Q MAF4 1 ip Specifies to check the IP related fields in a LSP Table 242 Description on the fields of the display isis statistics command Field Description Statistics information for ISIS processid Statistics for the ISIS process Level 1 Statistics Level 1 Statistics Level 2 Statistics Level 2 Statistics Learn...

Page 1055: ...ing packets Sysname system view Sysname isis Sysname isis 1 domain authentication mode simple 123456 filter policy export IS IS view Syntax filter policy acl number ip prefix ip prefix name route policy route policy name export isis process id ospf process id rip process id bgp direct static undo filter policy export isis process id ospf process id rip process id bgp direct static View IS IS view ...

Page 1056: ...ly redistributed routing information satisfying certain conditions can be advertised You can use the filter policy command to reference filtering conditions Related commands filter policy import IS IS view Examples Reference ACL 2000 to filter outgoing redistributed routes Sysname system view Sysname isis Sysname isis 1 filter policy 2000 export filter policy import IS IS view Syntax filter policy...

Page 1057: ...2 View IS IS view Parameters flood count flooding count Specifies the maximum number of LSPs to be sent in the fast flooding process ranging from 1 to 15 The default is 5 max timer interval flooding interval Specifies the delay interval in milliseconds between when it is enabled and when it begins ranging from 10 to 50000 The default is 10 level 1 Specifies to configure fast flooding on level 1 on...

Page 1058: ...y By default IS IS Graceful Restart capability is disabled Examples Enable the Graceful Restart capability for IS IS process 1 Sysname system view Sysname isis 1 Sysname isis 1 graceful restart graceful restart interval IS IS view Syntax graceful restart interval interval value undo graceful restart interval View IS IS view Parameters interval value Graceful Restart interval in the range 30 to 180...

Page 1059: ...s in the network Copies of LSPs in the LSP databases in other routers which may look newer than LSPs generated by the restarting router after it initializes LSP fragment sequence numbers This may result in temporary blackholes until subsequent LSPs with higher sequence numbers are regenerated These blackholes can be avoided if the neighbors suppress advertising the previous adjacencies to the rest...

Page 1060: ... area the external type indicates the cost of routes between areas The type is external by default The keywords are valid only when the cost type is narrow narrow compatible or compatible level 1 Redistributes routes into the Level 1 routing table level 2 Redistributes routes into the Level 2 routing table If no level is specified the routes are redistributed into the Level 2 routing table by defa...

Page 1061: ...ter redistributed routes a string of 1 to 19 characters route policy route policy name Specifies the name of a routing policy that is used to filter redistributed routes a string of 1 to 19 characters tag tag Specifies a tag value from 1 to 4294967295 for redistributed routes Description Use the import route isis level 2 into level 1 command to redistribute routes from Level 2 to Level 1area Use t...

Page 1062: ... on each interface that needs to run the IS IS process Related commands isis enable network entity Examples Enable IS IS routing process 1 with the system ID being 0000 0000 0002 and area ID being 01 0001 Sysname system view Sysname isis Sysname isis 1 network entity 01 0001 0000 0000 0002 00 isis authentication mode Syntax isis authentication mode simple md5 password level 1 level 2 ip osi undo i...

Page 1063: ...er the password applies to both Level 1 and Level 2 and the system checks the OSI related fields in a LSP Related commands area authentication mode domain authentication mode n The level 1 and level 2 keywords are supported only on an Ethernet or GigabitEthernet interface of a router Before using the command with the keywords you need use the isis enable command to enable IS IS on the interface Ex...

Page 1064: ...l 2 0 is connected to a non backbone router in the same area Configure the link adjacency level of serial 2 0 as Level 1 to prevent sending and receiving Level 2 Hello packets Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 isis enable Sysname Serial2 0 isis circuit level level 1 isis circuit type Syntax isis circuit type p2p undo isis circuit type View Interface view Parameters...

Page 1065: ...Use the isis cost command to set the link cost of an interface for SPF calculation Use the undo isis cost command to restore the default No cost is configured by default If neither level 1 nor level 2 is included the cost applies to both level 1 and level 2 You are recommended to configure a proper link cost for each interface for optimal route selection Relate command circuit cost Examples Config...

Page 1066: ... level 1 level 2 undo isis dis priority level 1 level 2 View Interface view Parameters value Specifies a priority for DIS selection from 0 to 127 The default is 64 level 1 Applies the DIS selection priority to Level 1 level 2 Applies the DIS selection priority to level 2 If neither level 1 nor level 2 is specified in this command the DIS priority applies to both Level 1 and Level 2 Description Use...

Page 1067: ... on each interface that needs to run the IS IS process Related commands isis network entity Examples Create IS IS routing process 1 and enable it on the Serial2 0 interface Sysname system view Sysname isis 1 Sysname isis 1 network entity 10 0001 1010 1020 1030 00 Sysname isis 1 quit Sysname interface serial2 0 Sysname serial2 0 isis enable 1 isis mesh group Syntax isis mesh group mesh group number...

Page 1068: ...iew Examples Add the frame relay subinterface Serial2 1 1 to the mesh group 3 Sysname system view Sysname interface serial 2 1 Sysname Serial2 1 link protocol fr Sysname Serial2 1 quit Sysname interface serial 2 1 1 Sysname Serial2 1 1 isis mesh group 3 isis peer ip ignore Syntax isis peer ip ignore undo isis peer ip ignore View Interface view Parameters None Description Use the isis peer ip ignor...

Page 1069: ...hello packets n The feature is not supported on the loopback interface Examples Disable Serial 2 0 from sending and receiving hello packets Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 isis silent isis small hello Syntax isis small hello undo isis small hello View Interface view Parameters None Description Use the isis small hello command to configure the interface to send sm...

Page 1070: ...the interval for sending CSNP packets over broadcast network Use the undo isis timer csnp command to restore the default The default CSNP interval is 10 seconds n If no level is specified the CSNP interval applies to both Level 1 and Level 2 of the current ISIS process If a level is specified the interval applies to the level This command is not supported on the loopback interface This command onl...

Page 1071: ...ectively The point to point link however does not distinguish so you need not specify intervals respectively As the shorter the interval is the more system resources will be occupied you should configure a proper interval as needed Related commands isis timer holding multiplier Examples Configure Level 2 Hello packets to be sent every 20 seconds over the serial2 0 interface Sysname system view Sys...

Page 1072: ...adjust the Holddown time by changing either the hello interval or the number of Hello intervals on an interface Related commands isis timer hello Examples Configure the number of Level 2 Hello intervals as 6 for interface serial2 0 that is if no hello packet is received from the interface within 6 hello intervals its neighbor is considered dead Sysname system view Sysname interface serial2 0 Sysna...

Page 1073: ...timer retransmit command to configure the interval for retransmitting LSP packets over point to point link Use the undo isis timer retransmit command to restore the default of 5s You need not use this command over a broadcast link where no LSP response is required Related commands isis timer lsp n This command is not available in loopback interface view Configure a proper time to avoid unnecessary...

Page 1074: ...er Level 1 or Level 2 if there is only one area because there is no need for all routers to maintain two identical databases at the same time In this case you are recommended to configure all the routers as Level 2 in the IP network for scalability consideration Related commands isis circuit level Examples Configure the router to work in Level 1 Sysname system view Sysname isis Sysname isis 1 is l...

Page 1075: ... to remove the configuration By default no name is configured for a remote IS Examples Map the name RUTB to the remote IS 0000 0000 0041 Sysname system view Sysname isis Sysname isis 1 is name map 0000 0000 0041 RUTB is snmp traps enable Syntax is snmp traps enable undo is snmp traps View IS IS view Parameters None Description Use the is snmp traps enable command to enable the SNMP Trap function o...

Page 1076: ...djacency state changes Sysname system view Sysname isis Sysname isis 1 log peer change lsp fragments extend Syntax lsp fragments extend level 1 level 2 level 1 2 mode 1 mode 2 undo lsp fragments extend View IS IS view Parameters mode 1 Fragment extension mode 1 used on a network where some routers do not support LSP fragment extension mode 2 Fragment extension mode 2 used on a network where all ro...

Page 1077: ...e isis Sysname isis 1 lsp fragments extend mode 1 level 2 lsp length originate Syntax lsp length originate size level 1 level 2 undo lsp length originate level 1 level 2 View IS IS view Parameters size Specifies the maximum size in bytes of a LSP packet ranging from 512 to 16384 level 1 Applies the size to Level 1 LSP packets level 2 Applies the size to Level 2 LSP packets n If neither Level 1 nor...

Page 1078: ...view Sysname isis Sysname isis 1 lsp length receive 1024 maximum load balancing IS IS view Syntax maximum load balancing number undo maximum load balancing View IS IS view Parameters number Maximum number of equal cost load balanced routes in the range 1 to 8 Description Use the maximum load balancing command to configure the maximum number of equal cost load balanced routes Use the undo maximum l...

Page 1079: ...D The second part is the router s 6 byte system ID which is unique within the whole area and backbone area The third part is the 1 byte SEL that must be 00 Generally a router needs one NET In the case of repartitioning an area such as merging or splitting you can configure multiple NETs beforehand for the router to ensure correct and continuous routing Related commands isis isis enable Examples Sp...

Page 1080: ...reference of IS IS protocol as 25 Sysname system view Sysname isis Sysname isis 1 preference 25 reset isis all Syntax reset isis all process id vpn instance vpn instance name View User view Parameters process id Clears the data structure information of an IS IS process numbered from 1 to 65535 vpn instance name Clears the data structure information of a VPN instance named with a string of 1 to 31 ...

Page 1081: ... set overload on startup start from nbr system id timeout nbr timeout allow interlevel external undo set overload View IS IS view Parameters on startup Specifies to start the overload tag timeout timer upon system startup start from nbr system id Specifies to start the overload tag timeout timer when the router begins to establish the connection with a neighbor timeout Specifies the overload tag t...

Page 1082: ...ding Examples Set overload flag on the current router Sysname system view Sysname isis Sysname isis 1 set overload spf slice size Syntax spf slice size duration time undo spf slice size View IS IS view Parameters duration time Specifies the duration in milliseconds of each sliced SPF calculation ranging from 10 to 50000 Each sliced SPF calculation is ended when the duration time is reached If the ...

Page 1083: ... to summarize only the routes redistributed to Level 1 area level 1 2 Specifies to summarize all the routes redistributed to the Level 1 and Level 2 areas level 2 Specifies to summarize only the routes redistributed to the Level 2 area Description Use the summary command to configure a summary route Use the undo summary command to remove a summary route No summarization is configured by default If...

Page 1084: ...eration command to restore the default By default the LSP generation interval is 2 seconds n If only the maximum interval is specified this maximum interval is the LSP generation interval If both the maximum and initial intervals are specified the system can adjust the LSP generation interval upon topology changes When the topology is stable the initial interval applies as the LSP generation inter...

Page 1085: ...65535 Description Use the timer lsp max age command to set the LSP maximum aging time for the current router Use the undo timer lsp max age command to restore the default The default is 1200 seconds A router puts the specified LSP maximum aging time into an LSP before advertisement When the LSP is received by other routers the aging time will decrease as the time goes by If no update is received f...

Page 1086: ...mer spf View IS IS view Parameters maximum interval Specifies the maximum interval in seconds for SPF calculations ranging from 1 to 120 minimum interval Specifies the minimum interval in milliseconds for SPF calculations ranging from 10 to 60000 incremental interval Specifies the incremental interval in milliseconds for SPF calculations ranging from 10 to 60000 Description Use the timer spf comma...

Page 1087: ...rtual system id undo virtual system virtual system id View IS IS view Parameters virtual system id Virtual system ID of the IS IS process Description Use the virtual system command to configure a virtual system ID for the IS IS process No extended LSPs are generated without the virtual system ID Use the undo virtual system command to remove the virtual system ID Up to 50 virtual system IDs can be ...

Page 1088: ...1088 CHAPTER 74 IS IS CONFIGURATION COMMANDS ...

Page 1089: ...ral error graceful restart ha events interface information memory allocating miscellaneous errors receiving packet content self originate update sending packet content snp packet spf event spf summary spf timer task error timer traffic eng advertisement event update packet process id vpn instance vpn instance name View User view Default Level 1 Monitor level Parameters adjacency Enables IS IS adja...

Page 1090: ...ation summary spf timer Enables debugging for IS IS route calculation triggers task error Enables debugging for IS IS task errors timer Enables IS IS timer debugging traffic eng Enables debugging for IS IS traffic switch fabricering advertisement Enables debugging for IS IS traffic switch fabricering advertisement event Enables debugging for IS IS traffic switch fabricering events update packet En...

Page 1091: ...irc Type circuitType The received hello packet was rejected because the interface type point to point is wrong circuitName Interface name circuitType Interface type which can be L1 L2 or L12 helloType IIH request reserved circuit type Ignored IS IS received an IIH packet with interface type as reserved and therefore ignored it helloType Hello packet type LAN L1 LAN L2 or P2P Rxed helloType IIH wit...

Page 1092: ...Interface name helloType Level Mismatch Local Level circuitLevel Packet type mismatch helloType Hello packet type LAN L1 LAN L2 or P2P circuitLevelI Current level of the link It can be L1 L2 or L12 helloType No common protocol supported The received hello packet matched no protocol helloType Hello packet type LAN L1 LAN L2 or P2P Rxed LAN IIH from system systemId IS IS received an Ethernet IIH pac...

Page 1093: ...n interface IP of the IS ISv6 enabled interface is down CIRC Circ Up not processed Circuit already up The interface is already UP therefore no more interface UP requests are processed CIRC Circ Down not processed Circuit already Down The interface is already DOWN therefore no more interface DOWN requests are processed CIRC Join AllIS multicast address error An error occurred while the interface wa...

Page 1094: ...ld Description UPDT PDU length mismatch in SNP RecLen d EncodeLen d SNP packet length mismatch RECV PDU length mismatch in Hello PDU RecLen d EncodeLen d Hello packet length mismatch PROT ERR Wrong P2P IIH Hdr Length d It should be d Wrong P2P Hello packet header length PROT ERR Wrong LAN IIH Hdr Length d It should be d Wrong LAN Hello packet header length PROT ERR Wrong L1 2CSNP Hdr Length d It s...

Page 1095: ...smoothing HSB SMOOTH Failed to start Max LspGen timer Starting the maximum LSP generation interval timer failed in the smoothing HSB SMOOTH LSP Expired Purging LSP LSP expired in the smoothing therefore the LSP was being deleted HSB SMOOTH While LSDB Smoothing Failed to Start Lsp age timer Starting LSP age timer failed in LSDB smoothing HSB SMOOTH Batch Backup was Not Complete Resetting ISIS Batch...

Page 1096: ...uit IPv4 IPv6 Up circName Local interface is up IPv4 IPv6 circName Interface name UPDT Circuit IPv4 IPv6 Down circName Local interface is down IPv4 IPv6 circName Interface name UPDT Circuit Cost change process failed Changing the local interface cost failed UPDT Circuit Ipv4 v6 Addr add ipAddress The IPv4 IPv6 address was added to the interface ipAddress Interface IP address UPDT Circuit Ipv4 v6 A...

Page 1097: ...spId End LSP ID Rxed pduType From sourceId circuitName PDUs were received pduType PDU type which can be PSNP or CSNP sourceId Source NSAP address of the packet circuitName Name of the receiving interface SNP PDU Dropped SNP PDU was dropped Sending Level pduLevel PSNP PDU fails Sending a PSNP packet failed pduLevel PDU packet level which can be L1 or L2 Sending content on circuitName A PSNP packet ...

Page 1098: ... root node nexthopNum Number of nexthops of the node nbrNum Number of neighbors of the node parentNum Number of parent nodes ISPF NODE L sysLevel MT topoType Create NODE sourceId Dist distanceValue Nexthops nexthopNum Nbrs nbrNum Parents parentNum RmtNbr Tree Tent Direct Overload Del Isolated The local interface has become the DIS and SpfNode was created for the pseudonode sysLevel system level to...

Page 1099: ...evel MT topoType Adding Bcast ADJ sourceId A broadcast network adjacency is being added sysLevel system level topoType topology type sourceId source system ID ISPF LINK L sysLevel MT topoType Create New LINK sourceId destId OldCost oldCost NewCost newCost AttAdjs attAdjNum Ingore2way Tree Back Incr Decr Del Usage Nhop Involved NewPath A broadcast network link is being created sysLevel system level...

Page 1100: ...t distanceValue Nexthops nexthopNum Nbrs nbrNum Parents parentNum RmtNbr Tree Tent Direct Overload Del Isolated For the link of the local node the two way check was ignored distanceValue Cost to the root node nexthopNum Number of nexthops of the node nbrNum Number of neighbors of the node parentNum Number of parent nodes ISIS procId AREA Area address related information procId IS IS process ID ARE...

Page 1101: ...ion FWDB LIMIT Need to Process ISIS MaxRouteLimit Resume Restore the maximum routes in the route table in the case that the route table is not full Table 259 Description on the fields of the debugging isis spf timer command Field Description SPF TRIG SPF Scheduled Event before trigEvent Run Level levelType SPF schedule starts Triggered event and run level are displayed levelType Run level of SPF c...

Page 1102: ...ecause overload bit is set UPDT LSDB Enters Normal Over Load State The LSDB enters the overloaded state UPDT update process recovered from Normal Oload The LSDB leaves the overloaded state UPDT Rx IP change from config IP reachable TLV in the received LSP changed UPDT v4 v6 Default Info Origination Denied by Policy Default route information failed to pass the policy and therefore was not sent in a...

Page 1103: ...100 Old DIS null New DIS 0000 0000 0001 01 An L1 L2 neighbor relationship was established between Router A and Router B and a DIS election was performed VLAN interface 100 on Router A is connected to VLAN interface 100 on Router B An IS IS process is created on Router A and Router B respectively Enable interface circuit debugging for IS IS Disable IS IS and then enable it on VLAN interface 100 of ...

Page 1104: ...Vlan interface100 undo isis enable ISIS 1 UPDT Deleting from the LSP Neighbour option TLV 2 ISIS 1 UPDT Circuit Down Vlan100 ISIS 1 UPDT Deleting Address 100 1 1 0 from L1 LSPs TLV 128 ISIS 1 UPDT Deleting Address 100 1 1 0 from L2 LSPs TLV 128 The Neighbor TLV was deleted from the local LSPs and the reachable TLV with an IP prefix of 100 1 1 0 24 was deleted from the local L1 and L2 LSPs Sysname ...

Page 1105: ... EVE Adding To PATHS 0000 0000 0001 00 Cost 10 Number of next ho ps1 Preference 7 ISIS 1 SPF EVE Processing LSPs of System 0000 0000 0001 00 ISIS 1 SPF EVE Processing LSPs of Virtual System 0000 0000 0001 00 00 ISIS 1 SPF EVE Updating Level 2 Forwarding table ISIS 1 SPF EVE Level 2 SPF Run Completed ISIS 1 SPF EVE Processing the L3 Forward Tables ISIS 1 SPF EVE Beginning Updating the Ipv4 Default ...

Page 1106: ...1106 CHAPTER 75 IS IS DEBUGGING COMMANDS ...

Page 1107: ...rtises or not to advertise the summary route By default the summary route is advertised cost cost Specifies the cost of the summary route in the range 1 to 16777215 The default cost is to the biggest cost value among routes that are summarized Description Use the abr summary command to configure a summary route on the Area Border Router Use the undo abr summary command to remove a summary route By...

Page 1108: ...mat by the system or an IP address Description Use the area command to create an area and enter area view Use the undo area command to remove a specified area No OSPF area is created by default Examples Create Area0 and enter Area 0 view Sysname system view Sysname ospf 100 Sysname ospf 100 area 0 Sysname ospf 100 area 0 0 0 0 asbr summary Syntax asbr summary ip address mask mask length tag tag no...

Page 1109: ...a single route If the ASBR resides in an NSSA area it advertises the summary route in a Type 7 LSA into the area With the asbr summary command configured on an NSSA ABR it summarizes routes in Type 5 LSAs translated from Type 7 LSAs with a single route and advertises the summary route to other areas This command does not take effect on non NSSA ABRs With the undo asbr summary command used summariz...

Page 1110: ...dwidth reference OSPF view Syntax bandwidth reference value undo bandwidth reference View OSPF view Parameters value Specifies a bandwidth reference value for link cost calculation in the range 1 to 2147483648 Mbps Description Use the bandwidth reference command to specify a reference bandwidth value for link cost calculation Use the undo bandwidth reference command to restore the default value Th...

Page 1111: ... tag and the upper limit are 1 2 1 and 1000 by default Related commands import route OSPF view Examples Configure default parameters cost as 10 upper limit as 20000 tag as 100 and type as 2 for redistributed external routes Sysname system view Sysname ospf 100 Sysname ospf 100 default cost 10 limit 20000 tag 100 type 2 default cost OSPF area view Syntax default cost cost undo default cost View OSP...

Page 1112: ...ment only if the router has the default route configured cost cost Specifies the cost for the default route in the range 0 to 16777214 The default is 1 type type Specifies the ASE LSA type 1 or 2 which defaults to 2 route policy route policy name Specifies the route policy name a string of 1 to 19 characters If the default route matches the specified route policy the route policy affects some valu...

Page 1113: ... Parameters description Describes OSPF process in OSPF view or describes OSPF area in OSPF area view description is a string of up to 80 characters Description Use the description command to describe an OSPF process or area Use the undo description command to remove the description No description is configured by default Use of this command is only for identification of an OSPF process or area and...

Page 1114: ...asbr summary ip address mask mask length View Any view Parameters process id OSPF process ID in the range 1 to 65535 ip address Matched IP address in dotted decimal format mask IP address mask in dotted decimal format mask length Mask length in the range 0 to 32 bits Description Use the display ospf asbr summary command to display information about the redistributed routes that are summarized If n...

Page 1115: ...ospf brief command to display OSPF brief information If no OSPF process is specified brief information of all OSPF processes is displayed Examples Display OSPF brief information Table 263 Description on the fields of the display ospf asbr summary command Field Description Total Summary Address Count Total summary route number Net The address of the summary route Mask The mask of the summary route ...

Page 1116: ...68 1 1 Timers Hello 10 Dead 40 Poll 40 Retransmit 5 Transmit Del ay 1 Table 264 Description on the fields of the display ospf brief command Field Description RouterID Router ID of this router Border Router An ABR ASBR or NSSA ABR Route Tag The tag of redistributed routes Multi VPN Instance is not enabled The current OSPF process supports no multi VPN instance Applications Supported Applications su...

Page 1117: ... by this router Router 4 Network 0 Sum Net 0 Area Area ID in the IP address format Authtype Authentication type of the area Non authentication simple authentication or MD5 authentication Area flag The type of the area SPF scheduled Count SPF calculation count in the OSPF area Interface IP address of the interface Cost Interface cost State Interface state Type Interface network type MTU Interface M...

Page 1118: ...s Type OSPF packet type Input Packets received Output Packets sent Hello Hell packet DB Description Database Description packet Link State Req Link State Request packet Link State Update Link State Update packet Link State Ack Link State Acknowledge packet LSAs originated by this router LSAs originated by this router Router Type 1 LSA Network Type 2 LSA Sum Net Type 3 LSA Sum Asbr Type 4 LSA Exter...

Page 1119: ...uter ID confusion Packets with duplicate route ID OSPF bad packet Packets illegal OSPF bad version Packets with wrong version OSPF bad checksum Packets with wrong checksum OSPF bad area ID Packets with invalid area ID OSPF drop on unnumber interface Packets dropped on the unnumbered interface OSPF bad virtual link Packets on wrong virtual links OSPF bad authentication type Packets with invalid aut...

Page 1120: ...1 0 0 0 0 0 0 0 0 Area 0 0 0 1 IP Address Type State Cost Pri DR BDR 172 16 0 1 Broadcast DR 1 1 172 16 0 1 0 0 0 0 LS ACK Unknown LSA type LSAck packets with unknown LSA type LS REQ Empty request LSR packets with no request information LS REQ Bad request Bad LSR packets LS UPD LSA checksum bad LSU packets with wrong LSA checksum LS UPD Received less recent LSA LSU packets without latest LSA LS UP...

Page 1121: ...isplays Type9 LSA Opaque link LSA information in the LSDB opaque area Displays Type10 LSA Opaque area LSA information in the LSDB opaque as Displays Type11 LSA Opaque AS LSA information in the LSDB link state id Link state ID in the IP address format originate router advertising router id Specifies the IP address of the router by which to display information of LSAs advertised self originate Displ...

Page 1122: ...the LSDB Sysname display ospf 1 lsdb network OSPF Process 1 with Router ID 192 168 1 1 Area 0 0 0 0 Link State Database Type Network LS ID 192 168 0 2 Adv Rtr 192 168 2 1 LS Age 922 Len 32 Options E Seq 80000003 Chksum 0x8d1b Net Mask 255 255 255 0 Attached Router 192 168 1 1 Attached Router 192 168 2 1 Area 0 0 0 1 Link State Database Type Network LS ID 192 168 1 2 Adv Rtr 192 168 1 2 LS Age 782 ...

Page 1123: ... 2 1 192 168 0 1 Ethernet1 0 192 168 1 1 1 192 168 1 1 Ethernet1 1 Table 269 Description on the fields of the display ospf 1 lsdb network command Field Description Type LSA type LS ID DR IP address Adv Rtr Router that advertised the LSA LS Age LSA age time Len LSA length Options LSA options Seq LSA sequence number Chksum LSA checksum Net Mask Network mask Attached Router ID of the router that esta...

Page 1124: ...etailed information about the neighbor is displayed If neither interface nor neighbor ID is specified brief information about neighbors of the specified OSPF process or all OSPF process is displayed Examples Display detailed OSPF neighbor information Sysname display ospf peer verbose OSPF Process 1 with Router ID 1 1 1 1 Neighbors Area 0 0 0 0 interface 1 1 1 1 Ethernet0 1 0 s neighbors Router ID ...

Page 1125: ...ty Router priority DR The DR on the interface s network segment BDR The BDR on the interface s network segment MTU Interface MTU Dead timer due in 33 sec Dead timer times out in 33 seconds Neighbor is up for 93 12 38 The neighbor has been up for 93 12 38 Authentication Sequence Authentication sequence number Neighbor state change count Counts of neighbor state changes Table 272 Description on the ...

Page 1126: ...display ospf peer statistics command Field Description Area ID Area ID Down Under this state neighbor initial state the router has not received any information from a neighboring router for a period of time Attempt Available only in an NBMA network such as Frame Relay X 25 or ATM Under this state the OSPF router has not received any information from a neighbor for a period but can send Hello packe...

Page 1127: ...terface number Specifies an interface neighbor id Neighbor s router ID Description Use the display ospf retrans queue command to display retransmit list information If no OSPF process is specified retransmit list information of all OSPF processes is displayed Examples Display OSPF retransmit list information Sysname display ospf retrans queue OSPF Process 1 with Router ID 1 1 1 1 OSPF Retransmit L...

Page 1128: ...op Description Use the display ospf routing command to display routing table information If no OSPF process is specified routing table information of all OSPF processes is displayed Examples Display OSPF routing table information Sysname display ospf routing OSPF Process 1 with Router ID 192 168 1 2 Routing Tables Routing for Network Destination Cost Type NextHop AdvRouter Area 192 168 1 0 24 1562...

Page 1129: ...it Area 0 0 0 1 Timers Hello 10 Dead 40 Retransmit 5 Transmit Delay 1 Table 276 Description on the fields of the display ospf routing command Field Description Destination Destination network Cost Cost to destination Type Route type intra area Transit stub Inter area Type1 External Type2 External NextHop Next hop address AdvRouter Advertising router Area Area ID Total Nets Total routes Intra Area ...

Page 1130: ...ocess 1 Sysname system view Sysname ospf 1 Sysname ospf 1 enable link local signaling enable log Syntax enable log config error state undo enable log config error state View OSPF view Parameters config Enables configuration logging error Enables error logging state Enables state logging Description Use the enable command to enable specified OSPF logging Cost Interface route cost State Interface st...

Page 1131: ...nchronization OOB Resynch capability Use the undo enable out of band resynchronization command to disable the OSPF out of band resynchronization capability By default the capability is disabled Examples Enable the out of band resynchronization capability for OSPF process 1 Sysname system view Sysname ospf 1 Sysname ospf 1 enable link local signaling Sysname ospf 1 enable out of band resynchronizat...

Page 1132: ...rotocol process id undo filter policy export protocol process id View OSPF view Parameters acl number Number of the basic or advanced ACL used to filter routing information by destination address in the range 2000 to 3999 ip prefix name Name of the ip prefix list used to filter routing information by destination address a string of up to 19 characters protocol Specifies a protocol from which to fi...

Page 1133: ...outes a string of up to 19 characters gateway ip prefix name Name of an IP address prefix list used to filter routes received from the specified neighbors a string of up to 19 characters Description Use the filter policy import command to configure the filtering of incoming routes Use the undo filter policy import command to disable the filtering By default no filtering of incoming routes is confi...

Page 1134: ...the enable out of band resynchronization command If the keywords nonstandard and ietf are not specified when OSPF GR is enabled nonstandard is the default Related commands enable link local signaling enable out of band resynchronization opaque capability enable Examples Enable IETF Graceful Restart for OSPF process 1 Sysname system view Sysname ospf 1 Sysname ospf 1 opaque capability enable Sysnam...

Page 1135: ...Parameters interval value Specifies the Graceful Restart interval in the range 40 to 1 800 seconds Description Use the graceful restart interval command to configure the Graceful Restart interval Use the undo graceful restart interval command to restore the default Graceful Restart interval By default the Graceful Restart interval is 120 seconds Note that the Graceful Restart interval of OSPF cann...

Page 1136: ... Parameters protocol Redistributes routes from the specified protocol which can be bgp direct isis ospf rip or static process id Process ID in the range 1 to 65535 The default is 1 It is available only when the protocol is rip ospf or isis allow ibgp Allows to redistribute IBGP routes optional only when the protocol is bgp cost cost Specifies route cost in the range 0 to 16777214 which defaults to...

Page 1137: ...pe 2 external route is an EGP route which has low credibility so OSPF considers the cost from ASBR to a Type 2 external route is much bigger than the cost from the ASBR to an OSPF internal router Therefore the cost from an internal router to a Type 2 external route s destination equals the cost from the ASBR to the Type 2 external route s destination Related commands default route advertise OSPF v...

Page 1138: ...identical LSAs in milliseconds in the range 0 to 60000 Description Use the lsa arrival interval command to specify the minimum interval between two identical received LSAs Use the undo lsa arrival interval command to restore the default The interval defaults to 1000 milliseconds If an LSA that has the same LSA type LS ID originating router ID with the previous LSA is received within the interval t...

Page 1139: ...tion interval command to restore the default The LSA generation interval defaults to 5 seconds With this command configured when network changes are not frequent an LSA is generated at the initial interval If network changes become frequent LSA generation interval is incremented by a specified value each time a generation happens up to the maximum interval Related commands lsa arrival interval Exa...

Page 1140: ...ad balanced routes in the range 1 to 8 A maximum of 1 means no load balancing is enabled Description Use the maximum load balancing command to specify the maximum number of load balanced routes Use the undo maximum load balancing command to restore the default Examples Specify the maximum number of load balanced routes as 2 Sysname system view Sysname ospf 100 Sysname ospf 100 maximum load balanci...

Page 1141: ...255 255 Description Use the network command to enable OSPF on the interface attached to the specified network in the area Use the undo network command to disable OSPF on an interface By default an interface neither belongs to any area nor runs OSPF You can configure one or multiple interfaces in an area to run OSPF Note that the interface s primary IP address must fall into the specified network s...

Page 1142: ...te in a Type 3 summary LSA into the NSSA area In this way all the other summary LSAs are not advertised into the area Such an area is known as an NSSA totally stub area Description Use the nssa command to configure the current area as an NSSA area Use the undo nssa command to restore the default By default no NSSA area is configured All routers attached to an NSSA area must be configured with the ...

Page 1143: ...iption Use the ospf command to enable an OSPF process Use the undo ospf command to disable an OSPF process No OSPF process is enabled by default You can enable multiple OSPF processes on a router and specify different Router IDs for these processes When using OSPF as the IGP for MPLS VPN implementation you need to bind the OSPF process with a VPN instance Enabling OSPF first is required before per...

Page 1144: ...ing of up to 8 characters For cipher type password a plain password is a string of up to 8 characters and a cipher password is a string of up to 24 characters MD5 HMAC MD5 authentication For plain type password a plain password is a string of up to 16 characters For cipher type password a plain password is a string of up to 16 characters and a cipher password is a string of up to 24 characters Des...

Page 1145: ...t Sysname interface serial 2 0 Sysname Serial2 0 ospf authentication mode simple cipher abc ospf cost Syntax ospf cost value undo ospf cost View Interface view Parameters value Value of OSPF cost in the range 1 to 65535 Description Use the ospf cost command to set an OSPF cost for the interface Use the undo ospf cost command to restore the default OSPF cost for the interface By default an OSPF int...

Page 1146: ...y is 1 The bigger the value is the higher the priority This configuration is not supported on the NULL interface Examples Set the DR priority on the current interface to 8 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ospf dr priority 8 ospf mib binding Syntax ospf mib binding process id undo ospf mib binding View System view Parameters process id OSPF process ID in the ra...

Page 1147: ...o DD packets that is no real MTU is added Note that After a virtual link is established via a Virtual Template or Tunnel two devices on the link from different vendors may have different MTU values To make them consistent set the attached interface s default MTU to 0 This configuration is not supported on the NULL interface Examples Enable the interface to add the real MTU value into DD packets Sy...

Page 1148: ...ork type as NBMA If an NBMA network is fully meshed you can configure the network type for interfaces as NBMA If not you need to configure the network type as P2MP for two routers having no direct link to exchange routing information through another router When the network type of an interface is NBMA you need to use the peer command to specify a neighbor If only two routers run OSPF on a network ...

Page 1149: ...econds Sysname system view Sysname interface serial2 0 Sysname Serial2 0 ospf timer dead 60 ospf timer hello Syntax ospf timer hello seconds undo ospf timer hello View Interface view Parameters seconds Hello interval in seconds in the range 1 to 65535 Description Use the ospf timer hello command to set the hello interval on an interface Use the undo ospf timer hello command to restore the default ...

Page 1150: ...interface finds its neighbor is dead it will send hello packets at the poll interval Note that The poll interval is at least four times the hello interval This configuration is not supported on the NULL interface Related commands ospf timer hello Examples Set the poll timer interval on the current interface to 130 seconds Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ospf ...

Page 1151: ...seconds undo ospf trans delay View Interface view Parameters seconds LSA transmit delay time in seconds in the range 1 to 3600 Description Use the ospf trans delay command to set the LSA transmit delay time on an interface Use the undo ospf trans delay command to restore the default The delay time defaults to 1s Each LSA in the LSDB has an age incremented 1 by a second but a LSA is not aged out du...

Page 1152: ... need to specify neighbors and neighbor DR priorities on the routers After startup a router sends a hello packet to neighbors with DR priorities higher than 0 When the DR and BDR are elected the DR will send hello packets to all neighbors for adjacency establishment A router uses the priority set with the peer command to determine whether to send a hello packet to the neighbor rather than for DR e...

Page 1153: ...veral routing protocols find routes to the same destination the router uses the route found by the protocol with the highest priority Examples Set a priority of 150 for OSPF internal routes Sysname system view Sysname ospf 100 Sysname ospf 100 preference 150 reset ospf counters Syntax reset ospf process id counters neighbor interface type interface number router id View User view Parameters proces...

Page 1154: ...s The system prompts whether to reset OSPF process upon execution of this command Examples Reset all OSPF processes Sysname reset ospf process reset ospf redistribution Syntax reset ospf process id redistribution View User view Parameters process id OSPF process ID in the range 1 to 65535 Description Use the reset ospf redistribution command to restart route redistribution Examples Restart route r...

Page 1155: ...escription Use the silent interface command to disable specified interfaces from sending any OSPF packet Use the undo silent interface command to restore the default By default an interface sends OSPF packets A disabled interface is a Passive Interface which cannot send any Hello packet To make no routing information obtained by other routers on a network segment you can use this command to disabl...

Page 1156: ...maxagelsa LSA max age information nbrstatechange Neighbor state change information originatelsa Information about LSAs originated locally vifauthfail Virtual interface authentication failure information vifcfgerror Virtual interface configuration error information virifauthfail Virtual interface authentication failure information virifrxbadpkt Information about error packets received by virtual in...

Page 1157: ...terval command to restore the default The interval defaults to 5 seconds Based on its LSDB an OSPF router calculates the shortest path tree with itself being the root and uses it to determine the next hop to a destination Through adjusting SPF calculation interval you can protect bandwidth and router resources from being over consumed due to frequent network changes With this command configured wh...

Page 1158: ...figure area1 as a stub area Sysname system view Sysname ospf 100 Sysname ospf 100 area 1 Sysname ospf 100 area 0 0 0 1 stub stub router Syntax stub router undo stub router View OSPF view Parameters None Description Use the stub router command to configure the router as a stub router Use the undo stub router command to restore the default By default no router is configured as a stub router The rout...

Page 1159: ... the value on its virtual link neighbor The dead interval is at least four times the hello interval md5 MD5 authentication hmac md5 HMAC MD5 authentication simple Simple authentication key id Key ID for MD5 or HMAC MD5 authentication in the range 1 to 255 plain cipher Plain or cipher type If plain is specified only plain password is supported and displayed upon displaying the configuration file If...

Page 1160: ...sources are consumed A so small retransmission interval will lead to unnecessary retransmissions A big value is appropriate for a low speed link You need to specify an appropriate transmission delay with the trans delay keyword The authentication mode at the non backbone virtual link end follows the one at the backbone virtual link end The two authentication modes MD5 or Simple are independent and...

Page 1161: ...zero fields are non zero If all messages are trusty you can disable this feature to spare the processing time of the CPU Examples Disable the zero field check on RIP 1 messages for RIP process 100 Sysname system view Sysname rip 100 Sysname rip 100 undo checkzero default cost RIP view Syntax default cost value undo default cost View RIP view Parameters value Default metric of redistributed routes ...

Page 1162: ... RIP view Parameters value Cost of the default route in the range of 1 to 15 Description Use the default route originate cost command to advertise a default route with the specified metric to RIP neighbors Use the undo default route originate command to disable the sending of a default route By default no default route is sent to RIP neighbors The RIP router with this feature configured will not r...

Page 1163: ...180 sec s Suppress time 120 sec s Garbage collect time 120 sec s TRIP retransmit time 5 sec s TRIP response packets retransmit count 36 Silent interfaces None Default routes Disabled Verify source Enabled Networks 192 168 1 0 Configured peers None Triggered updates sent 0 Number of routes changes 0 Number of replies to queries 0 Table 278 Description on the fields of the display rip command Field ...

Page 1164: ...ransmit count Maximum retransmit times for update requests and responses Silent interfaces Number of silent interfaces which do not periodically send updates Default routes Indicates whether a default route is sent to RIP neighbors Verify source Indicates whether the source IP address is checked on the received RIP routing updates Networks Networks enabled with RIP Configured peers Configured neig...

Page 1165: ...display rip route Syntax display rip process id route statistics ip address mask mask length peer ip address View Any view Parameters process id RIP process number in the range of 1 to 65535 Table 280 Description on the fields of the display rip interface command Field Description Interface name The name of an interface running RIP Address Mask The IP address and Mask of the interface MetricIn Out...

Page 1166: ...02 34 0 0 0 8 21 0 0 23 1 0 RA 23 Peer 21 0 0 12 on Ethernet1 0 Destination Mask NextHop Cost Tag Flags Sec 56 0 0 0 8 21 0 0 12 1 0 RA 34 12 0 0 0 8 21 0 0 12 1 0 RA 12 Display routing information for network 56 0 0 0 8 of RIP process 1 Sysname display rip 1 route 56 0 0 0 8 Route Flags R RIP T TRIP P Permanent A Aging S Suppressed G Garbage collect Peer 21 0 0 23 on Ethernet1 0 Destination Mask ...

Page 1167: ... never expires A The route is aging S The route is suppressed G The route is in Garbage collect state Peer 21 0 0 23 on Ethernet1 0 Routing information learned on a RIP interface from the specified neighbor Destination Mask Destination IP address and subnet mask Nexthop Next hop of the route Cost Cost of the route Tag Route tag Flags Indicates the route state Sec Remaining time of the timer corres...

Page 1168: ... only the routes redistributed from the specified routing protocol Otherwise RIP filters all routes to be advertised If interface type interface number is specified RIP filters only the routes advertised by the specified interface Otherwise RIP filters routes advertised by all RIP interfaces Related commands acl on page 2087 import route RIP view and ip ip prefix on page 1210 Examples Reference AC...

Page 1169: ...Sysname system view Sysname rip 1 Sysname rip 1 filter policy 2000 import Reference IP prefix list abc on Ethernet1 1 to filter all received RIP routes Sysname rip 1 filter policy ip prefix abc import ethernet 1 1 host route Syntax host route undo host route View RIP view Parameters None Description Use the host route command to enable host route reception Use the undo host route command to disabl...

Page 1170: ...of 0 to 65 535 The default is 0 route policy route policy name Specifies a routing policy with 1 to 19 characters allow ibgp When the protocol argument is set to bgp allow ibgp is an optional keyword The import route bgp command only redistributes EBGP routes while the import route bgp allow ibgp command additionally redistributes IBGP routes which may cause routing loops Be cautious when using it...

Page 1171: ... load balancing command to specify the maximum number of load balanced routes Use the undo maximum load balancing command to restore the default Examples Specify the maximum number of load balanced routes as 2 Sysname system view Sysname rip Sysname rip 1 maximum load balancing 2 network Syntax network network address undo network network address View RIP view Parameters network address IP address...

Page 1172: ...IP view Parameters ip address RIP peer IP address in dotted decimal format Description Use the peer command to specify a neighbor in the non broadcast multi access NBMA network With this command used routing updates destined to the peer are unicast rather than multicast or broadcast Use the undo peer command to remove a neighbor By default no neighbor is specified In general it is not recommended ...

Page 1173: ...es to these routes The priority of other routes is the one set by the preference command If no priority is set for matched routes in the routing policy the priority of all routes is the one set by the preference command Examples Set the RIP route priority to 120 Sysname system view Sysname rip 1 Sysname rip 1 preference 120 reset rip statistics Syntax reset rip process id statistics View User view...

Page 1174: ...s not apply to interface parameters The configured interface parameters become invalid after you disable the RIP process Examples Create a RIP process and enter rip process view Sysname system view Sysname rip Sysname rip 1 rip authentication mode Syntax rip authentication mode md5 rfc2082 key string key id rfc2453 key string simple password undo rip authentication mode View Interface view Paramet...

Page 1175: ...amples Configure MD5 authentication on Ethernet1 0 with the key string being rose in the format defined in RFC 2453 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 rip version 2 Sysname Ethernet1 0 rip authentication mode md5 rfc2453 rose rip input Syntax rip input undo rip input View Interface view Parameters None Description Use the rip input command to enable the interfac...

Page 1176: ... interface is increased Related commands rip metricout Examples Configure an additional metric for routes received on Ethernet1 0 Sysname system view Sysname interface ethernet1 0 Sysname Ethernet1 0 rip metricin 2 rip metricout Syntax rip metricout value undo rip metricout View Interface view Parameters value Additional metric for outbound routes in the range of 1 to 16 Description Use the rip me...

Page 1177: ...d RIP process Use the undo rip mib binding command to restore the default By default MIB operations are bound to the RIP process with the smallest process ID Examples Configure RIP 100 to accept SNMP requests Sysname system view Sysname rip mib binding 100 Restore the default Sysname undo rip mib binding rip output Syntax rip output undo rip output View Interface view Parameters None Description U...

Page 1178: ...se function By default the poison reverse function is disabled Examples Enable the poison reverse function for RIP routing updates on Serial 2 0 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 rip poison reverse rip split horizon Syntax rip split horizon undo rip split horizon View Interface view Parameters None Description Use the rip split horizon command to enable the split h...

Page 1179: ...interface ethernet1 0 Sysname Ethernet1 0 rip split horizon rip summary address Syntax rip summary address ip address mask mask length undo rip summary address ip address mask mask length View Interface view Parameters ip address Summary IP address mask Subnet mask in dotted decimal format mask length Subnet mask length Description Use the rip summary address command to configure RIP 2 to advertis...

Page 1180: ... View Interface view Parameters 1 RIP version 1 2 RIP version 2 broadcast Sends RIP 2 messages in broadcast mode multicast Sends RIP 2 messages in multicast mode Description Use the rip version command to specify a RIP version for the interface Use the undo rip version command to remove the specified RIP version By default no RIP version is configured for an interface which uses the global RIP ver...

Page 1181: ...hernet1 0 to broadcast RIP 2 messages Sysname system view Sysname interface ethernet1 0 Sysname Ethernet1 0 rip version 2 broadcast silent interface RIP view Syntax silent interface all interface type interface number undo silent interface all interface type interface number View RIP view Parameters all Silents all interfaces interface type interface number Specifies an interface Description Use t...

Page 1182: ...all subnet routes can be broadcasted By default automatic RIP 2 summarization is enabled Enabling automatic RIP 2 summarization can reduce the size of the routing table to enhance the scalability and efficiency of large networks Related commands rip version Examples Enable RIP 2 automatic summarization Sysname system view Sysname rip Sysname rip 1 summary timers Syntax timers garbage collect garba...

Page 1183: ...ressed state only routes which come from the same neighbor and whose metric is less than 16 will be received by the router to replace unreachable routes The garbage collect timer defines the interval from when the metric of a route becomes 16 to when it is deleted from the routing table During the Garbage Collect timer length RIP advertises the route with the routing metric set to 16 If no routing...

Page 1184: ...tax trip retransmit timer retransmit time value undo trip retransmit timer View RIP view Parameters retransmit time value Interval in seconds for retransmitting an Update Request or Update Response in the range 1 to 3600 Description Use the trip retransmit timer command to configure the interval for retransmitting an Update Request or Update Response Use the undo validate source address command to...

Page 1185: ...s not recommended Examples Enable the source IP address validation on incoming messages Sysname system view Sysname rip rip 100 Sysname rip 100 validate source address version Syntax version 1 2 undo version View RIP view Parameters 1 Specifies the RIP version as RIP 1 2 Specifies the RIP version as RIP 2 RIP 2 messages are multicast Description Use the version command to specify a global RIP vers...

Page 1186: ... view On a ComwareV3 device you can only perform such configuration in interface view To enable a ComwareV5 device in the RIP 1 mode to interoperate with a ComwareV3 device in the RIP 2 broadcast mode you need to use the undo version command in RIP view and the undo rip version in interface view to remove related RIP version configuration from the ComwareV5 device For a ComwareV5 device the case t...

Page 1187: ...th command to remove the clause configuration No AS_PATH attribute is set by default With the replace keyword using the apply as path command replaces the original AS_PATH attribute with specified AS numbers Without the replace keyword using this command adds the specified AS numbers before the original AS_PATH attribute Examples Create routing policy policy1 with node 10 matching mode as permit I...

Page 1188: ...ysname route policy if match as path 1 Sysname route policy apply comm list 1 delete apply community Syntax apply community none additive community number 1 16 aa nn 1 16 internet no export subconfed no export no advertise additive undo apply community View Routing policy view Parameters none Removes community attributes of BGP routes community number Community sequence number in the range 1 to 42...

Page 1189: ...e for BGP routes passing AS path ACL 8 Sysname system view Sysname route policy setcommunity permit node 16 Sysname route policy if match as path 8 Sysname route policy apply community no export apply cost Syntax apply cost value undo apply cost View Routing policy view Parameters Increases cost value Decreases cost value cost Specifies a cost from 0 to 4294967295 Description Use the apply cost co...

Page 1190: ...n No cost type is set for routing information by default Examples Create routing policy policy1 with node 10 matching mode as permit If a route matches tag 8 set the cost type for the route to IS IS internal route Sysname system view Sysname route policy policy1 permit node 10 Sysname route policy if match tag 8 Sysname route policy apply cost type internal apply extcommunity Syntax apply extcommu...

Page 1191: ...evel 1 level 1 2 level 2 undo apply isis View Routing policy view Parameters level 1 Redistributes routes into IS IS level 1 area level 2 Redistributes routes into IS IS level 2 area level 1 2 Redistributes routes into IS IS level 1 and level 2 areas Description Use the apply isis command to redistribute routes into a specified ISIS level Use the undo apply isis command to remove the clause config...

Page 1192: ...h node 10 matching mode as permit If a route matches AS path ACL 1 set the local preference for the route to 130 Sysname system view Sysname route policy policy1 permit node 10 Sysname route policy if match as path 1 Sysname route policy apply local preference 130 apply mpls label Syntax apply mpls label undo apply mpls label View Routing policy view Parameters None Description Use the apply mpls ...

Page 1193: ... BGP routes Use the undo apply origin command to remove the clause configuration No origin attribute is set for routing information by default Related commands if match interface if match acl if match ip prefix if match ip next hop if match cost if match tag route policy apply ip address next hop apply local preference apply cost and apply tag Examples Create routing policy policy1 with node 10 ma...

Page 1194: ...e system view Sysname route policy policy1 permit node 10 Sysname route policy if match route type external type1or2 Sysname route policy apply preference 90 apply preferred value Syntax apply preferred value preferred value undo apply preferred value View Routing policy view Parameters preferred value Preferred value in the range of 0 to 65535 Description Use the apply preferred value command to ...

Page 1195: ...f the route to 100 Sysname system view Sysname route policy policy1 permit node 10 Sysname route policy if match route type external type1 Sysname route policy apply tag 100 display ip as path Syntax display ip as path as path acl number View Any view Parameters as path acl number AS path ACL number in the range of 1 to 256 Description Use the display ip as path command to display BGP AS path ACL ...

Page 1196: ...ity list if match community and apply community Examples Display the information of the BGP community list 1 Sysname display ip community list 1 Community List Number 1 permit 1 1 1 2 2 2 display ip extcommunity list Syntax display ip extcommunity list ext comm list number View Any view Parameters ext comm list number Extended community list number in the range of 1 to 199 Description Use the disp...

Page 1197: ...h as path as path number 1 16 undo if match as path as path number 1 16 View Routing policy view Parameters as path number AS path ACL number in the range of 1 to 256 1 16 Indicates the argument before it can be entered up to 16 times Description Use the if match as path command to specify AS path ACL s for matching against the AS path attribute of BGP routing information Use the undo if match as ...

Page 1198: ...if match community basic community list number adv community list number 1 16 View Routing policy view Parameters basic community list number Basic community list number in the range of 1 to 99 adv community list number Advanced community list number in the range of 100 to 199 whole match Specifies the exact match All and only the specified communities must be present 1 16 Indicates the argument b...

Page 1199: ...remove the match criterion The match criterion is not configured by default This command is one of the if match clauses of routing policy used for matching routes with the specified route cost Related commands if match interface if match acl if match ip prefix if match ip next hop if match tag route policy apply ip address next hop apply cost apply local preference apply origin and apply tag Examp...

Page 1200: ...1 16 undo if match interface interface type interface number 1 16 View Routing policy view Parameters interface type Interface type interface number Interface number 1 16 Indicates the argument before it can be entered up to 16 times Description Use the if match interface command to specify interface s for matching against the outbound interfaces of routing information Use the undo if match interf...

Page 1201: ...te type Syntax if match route type internal external type1 external type2 external type1or2 is is level 1 is is level 2 nssa external type1 nssa external type2 nssa external type1or2 undo if match route type internal external type1 external type2 external type1or2 is is level 1 is is level 2 nssa external type1 nssa external type2 nssa external type1or2 View Routing policy view Parameters internal...

Page 1202: ...meters value Specifies a tag value ranging from 0 to 4294967295 Description Use the if match tag command to specify a tag for matching against the tag field of the routes Use the undo if match tag command to remove the match criterion The match criterion is not configured by default Related commands if match interface if match acl if match ip prefix if match ip next hop if match cost route policy ...

Page 1203: ...eate an AS path ACL Use the undo ip as path command to remove an AS path ACL No AS path ACL is created by default Examples Create an AS path ACL numbered 1 permitting routing information whose AS_PATH starts with 10 Sysname system view Sysname ip as path 1 permit 10 ip community list Syntax ip community list basic comm list num deny permit community number list internet no advertise no export no e...

Page 1204: ...internet Routes with this attribute can be advertised to all the BGP peers By default all routes have this attribute no advertise Routes with this attribute will not be advertised to other BGP peers no export Routes with this attribute will not be advertised out the local AS or the confederation but can be advertised to other ASs in the confederation no export subconfed Routes with this attribute ...

Page 1205: ...ore it can be entered up to 16 times Description Use the ip extcommunity list to define an extended community list entry Use the undo ip extcommunity list command to remove an extended community list No extended community list is defined by default Examples Define extended community list 1 to permit routing information with RT 200 200 Sysname system view Sysname ip extcommunity list 1 permit rt 20...

Page 1206: ...licy routing It contains several nodes and each node comprises some if match and apply clauses The if match clauses define the matching criteria of the node and the apply clauses define the actions performed after a packet passes the filtering of the node The relation among the if match clauses of a node is logic AND namely all the if match clauses must be satisfied The filter relation among diffe...

Page 1207: ...ress next hop command to set a next hop when redistributing routes Related commands if match interface if match acl if match ip prefix if match ip next hop if match cost if match tag route policy apply local preference apply cost apply origin and apply tag Examples Create routing policy policy1 with node 10 matching mode permit If passing AS path ACL 1 a route s next hop is set to 193 1 1 8 Sysnam...

Page 1208: ...criterion No ACL match criterion is configured by default Related commands if match interface if match ip next hop if match cost if match tag route policy apply ip address next hop apply cost apply local preference apply origin apply tag Examples Create routing policy policy1 with node 10 matching mode as permit Define an if match clause to permit routes matching ACL 2000 Sysname system view Sysna...

Page 1209: ...match criterion The match criterion is not configured by default Related commands route policy Examples Create routing policy policy1 with node 10 matching mode as permit Define an if match clause to permit routing information whose next hop address matches IP prefix list p1 Sysname system view Sysname route policy policy1 permit node 10 Sysname route policy if match ip next hop ip prefix p1 if ma...

Page 1210: ...refix list as permit that is when a route to be filtered is in the range of the IPv4 prefix list the route passes the IPv4 prefix list without needing to enter the next item for testing If the route to be filtered is not in the prefix range it will enter the next item test deny Specifies the matching mode for the IPv4 prefix list as deny that is when a route to be filtered is in the IPv4 prefix li...

Page 1211: ...is specified as 0 0 0 0 0 then only the default routes will be matched To match all the routes use 0 0 0 0 0 less equal 32 Examples Create a routing policy named policy1 with node 10 matching mode as permit Define an IP prefix list named p1 to permit only the routes in the network segment 10 0 192 0 8 and with mask length 17 or 18 Sysname system view Sysname ip ip prefix p1 permit 10 0 192 0 8 gre...

Page 1212: ...1212 CHAPTER 79 IPV4 ROUTING POLICY CONFIGURATION COMMANDS ...

Page 1213: ...uting routes does not take effect Examples Create routing policy policy1 with node 10 matching mode permit If a route matches AS path ACL 1 set next hop 3ff3 506 1 for it Sysname system view Sysname route policy policy1 permit node 10 Sysname route policy if match as path 1 Sysname route policy apply ipv6 next hop 3ffe 506 1 display ip ipv6 prefix Syntax display ip ipv6 prefix ipv6 prefix name Vie...

Page 1214: ...fix name Specifies the name of a IPv6 prefix list for filtering a string of 1 to 19 characters Description Use the if match ipv6 command to configure a destination next hop or source address based match criterion for IPv6 routes Use the undo if match ipv6 command to remove the match criterion The match criterion is not configured by default Examples Create a routing policy named policy1 with node ...

Page 1215: ...hing mode for the IPv6 prefix list as deny that is if a route matches the IPv6 prefix list the route neither passes the filter nor enters the next node for test If not the route will enter the next item test ipv6 address prefix length Specifies an IPv6 prefix and prefix length with prefix length being in the range 0 to 128 When specified as 0 it matches the default route greater equal min prefix l...

Page 1216: ...ll the routes configure it as 0 less equal 128 Examples Permit the IPv6 addresses with mask length between 32 bits and 64 bits Sysname system view Sysname ip ipv6 prefix abc permit 0 greater equal 32 less equal 64 Deny the IPv6 addresses with prefix as 3FFE D00 32 prefix length greater than or equal to 32 bits Sysname system view Sysname ip ipv6 prefix abc deny 3FEE D00 32 less equal 128 reset ip ...

Page 1217: ...utes and their configurations you must reconf igure all static routes Are you sure Y N Y ip route static Syntax ip route static dest address mask mask length gateway address track track entry number interface type interface number vpn instance d vpn instance name gateway address track track entry number preference preference value tag tag value description description text undo ip route static des...

Page 1218: ...interface the next hop address must be specified vpn instance d vpn instance name Name of the destination VPN instance case sensitive If a destination VPN instance name is specified the router will search the output interface in the destination VPN instance based on the configured gateway address gateway address public Indicates that the specified gateway address is a public network address rather...

Page 1219: ...dress through PPP negotiation In this case you need only specify the output interface For NBMA and P2MP interfaces which support point to multipoint networks the IP address to link layer address mapping must be established in addition to IP route configuration In general it is recommended to configure the next hop IP address when you configure the output interface It is not recommended to specify ...

Page 1220: ...c default preference default preference value undo ip route static default preference View System view Parameters default preference value Default preference for static routes which is in the range of 1 to 255 Description Use the ip route static default preference command to configure the default preference for static routes Use the undo ip route static default preference command to restore the de...

Page 1221: ...lance command to restore the default The feature is not available by default Unlike IGP BGP has no explicit metric for making load balancing decision Instead it implements load balancing by defining its routing rule Related commands display ipv6 routing table on page 942 Examples Set the number of routes participating in IPv6 BGP load balancing to 2 Sysname system view Sysname bgp 100 Sysname bgp ...

Page 1222: ... as path neglect bestroute compare med IPv6 address family view Syntax bestroute compare med undo bestroute compare med View IPv6 address family view Parameters None Description Use the bestroute compare med command to enable the comparison of the MED for paths from each AS Use the undo bestroute compare med command to disable this comparison This comparison is not enabled by default Examples Comp...

Page 1223: ...af ipv6 bestroute med confederation compare different as med IPv6 address family view Syntax compare different as med undo compare different as med View IPv6 address family view Parameters None Description Use the compare different as med command to enable the comparison of the MED for paths from peers in different ASs Use the undo compare different as med command to disable the comparison The com...

Page 1224: ...the threshold are suppressed By default it is 2000 ceiling Specifies a ceiling penalty value from 1001 to 20000 The value must be bigger than the suppress value By default the value is 16000 route policy name Routing policy name a string of 1 to 19 characters half life reachable half life unreachable reuse suppress and ceiling are mutually dependent Once any one is configured all the others should...

Page 1225: ... making the route passing B preferred Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 default local preference 180 default med IPv6 address family view Syntax default med med value undo default med View IPv6 address family view Parameters med value MED value in the range 0 to 4294967295 Description Use the default med command to specify the default MED value Use the...

Page 1226: ...ers None Description Use the default route imported command to enable the redistribution of default route into the IPv6 BGP routing table Use the undo default route imported command to disable the redistribution By default the redistribution is not enabled Examples Enable the redistribution of default route from OSPFv3 into IPv6 BGP Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysna...

Page 1227: ...mand Field Description BGP peer group Name of the peer group remote AS AS number of the peer group Type Type of the peer group Maximum allowed prefix number Maximum allowed prefix number Threshold Threshold value hold timer value Holdtime Keepalive timer value Keepalive interval Minimum time between advertisement runs Minimum interval between advertisements Peer Preferred Value Preferred value of ...

Page 1228: ... to display IPv6 BGP path information If no parameter is specified all path information will be displayed Examples Display IPv6 BGP path information Sysname display bgp ipv6 paths Address Hash Refcount MED Path Origin 0x5917098 1 1 0 i 0x59171D0 9 2 0 100i Table 288 Description on the fields of the display bgp ipv6 network command Field Description BGP Local Router ID BGP Local Router ID Local AS ...

Page 1229: ... ipv6 peer BGP Local router ID 20 0 0 1 local AS number 100 Total number of peers 1 Peers in established state 1 Peer V AS MsgRcvd MsgSent OutQ PrefRcv Up Down State 20 21 4 200 17 19 0 3 00 09 59 Established Path AS_PATH attribute of the path recording the ASs it has passed for avoiding routing loops Origin Origin attribute of the route which can take on one of the following values i Indicates th...

Page 1230: ...story i internal s suppressed S Stale Origin i IGP e EGP incomplete Network 30 30 PrefixLen 64 NextHop 30 30 30 1 LocPrf PrefVal 0 Label NULL MED 0 Path Ogn i Network 40 40 PrefixLen 64 NextHop 40 40 40 1 LocPrf PrefVal 0 Label NULL MED 0 Path Ogn i Table 290 Description on the fields of the display bgp ipv6 peer command Field Description Peer IPv6 address of the peer V Peer BGP version AS AS numb...

Page 1231: ...k address PrefixLen Prefix length NextHop Next Hop MED MULTI_EXIT_DISC attribute LocPrf Local preference value Path AS_PATH attribute recording the ASs the packet has passed to avoid routing loops PrefVal Preferred value Label Label Ogn Origin attribute of the route which can take on one of the following values i Indicates that a route is interior to the AS Summary routes and the routes configured...

Page 1232: ... 13 times no advertise Displays routes not advertised to any peer no export Displays routes advertised outside the AS if there is a confederation it displays routes not advertised outside the confederation but to other sub ASs in the confederation no export subconfed Displays routes neither advertised outside the AS nor to other sub ASs if the confederation is configured whole match Displays the e...

Page 1233: ...view the routing information matching the specified IPv6 BGP community list Examples Display the routing information matching the specified IPv6 BGP community list Sysname display bgp ipv6 routing table community list 99 BGP Local router ID is 30 30 30 1 Status codes valid best d damped h history i internal s suppressed S Stale Origin i IGP e EGP incomplete Network 30 30 PrefixLen 64 NextHop 30 30...

Page 1234: ...commands dampening IPv6 address family view Examples Display IPv6 BGP routing dampening parameters Sysname display bgp ipv6 routing table dampening parameter Maximum Suppress Time in second 3069 Ceiling Value 16000 Reuse Value 750 HalfLife Time in second 900 Suppress Limit 2000 display bgp ipv6 routing table different origin as Syntax display bgp ipv6 routing table different origin as Table 292 De...

Page 1235: ...NULL MED 0 Path Ogn 300 i Refer to Table 291 for description on the fields above display bgp ipv6 routing table flap info Syntax display bgp ipv6 routing table flap info regular expression as regular expression as path acl as path acl number ipv6 address prefix length longer match View Any view Parameters as regular expression AS path regular expression to be matched as path acl number Number of t...

Page 1236: ...ters None Description Use the display bgp ipv6 routing table label command to display IPv6 BGP label routing information Examples Display IPv6 BGP label routing information Sysname display bgp ipv6 routing table label Total Number of Routes 1 Network Prefix NextHop Label 200 96 FFFF 2 1 1 1 NULL 1024 Table 294 Description on the fields of the display bgp ipv6 routing table flap info command Field ...

Page 1237: ... routing table peer command to display the routing information advertised to or received from the specified IPv4 or IPv6 BGP peer Examples Display the routing information advertised to the specified BGP peer Sysname display bgp ipv6 routing table peer 10 10 10 1 advertised routes Total Number of Routes 2 BGP Local router ID is 20 20 20 1 Status codes valid best d damped h history i internal s supp...

Page 1238: ...Label NULL MED 0 Path Ogn 100 i Refer to Table 291 for description on the fields above display bgp ipv6 routing table statistic Syntax display bgp ipv6 routing table statistic View Any view Parameters None Description Use the display bgp ipv6 routing table statistic command to display IPv6 BGP routing statistics Examples Display IPv6 BGP routing statistics Sysname display bgp ipv6 routing table st...

Page 1239: ... the specified protocol are filtered If no protocol is specified all redistributed routes will be filtered Examples Reference ACL6 2001 to filter all outbound IPv6 BGP routes Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 filter policy 2001 export filter policy import IPv6 address family view Syntax filter policy acl6 number ipv6 prefix ipv6 prefix name import undo...

Page 1240: ...escription Use the group command to create a peer group Use the undo group command to delete a peer group An IBGP peer group will be created if neither internal nor external is selected Examples Create an IBGP peer group named test Sysname system view Sysname bgp 100 Sysname ipv6 family Sysname bgp af ipv6 group test import route IPv6 address family view Syntax import route protocol process id med...

Page 1241: ...es redistributed using the import route command has the incomplete origin attribute Examples Redistribute routes from RIPng 1 Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 import route ripng 1 ipv6 family Syntax ipv6 family undo ipv6 family View BGP view Parameters None Description Use the ipv6 family command to enter IPv6 address family view Use the undo ipv6 fam...

Page 1242: ...dvertised must exist in the local IP routing table and using a routing policy makes route management more flexible The route advertised to the BGP routing table using the network command has the IGP origin attribute Examples Advertise the network 2002 16 into the IPv6 BGP routing table Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 network 2002 16 peer advertise co...

Page 1243: ...ters ipv4 address IPv4 address of a peer ipv6 address IPv6 address of a peer Description Use the peer advertise ext community command to advertise the extended community attribute to a peer peer group Use the undo peer advertise ext community command to remove the configuration By default no extended community attribute is advertised to a peer peer group Examples Advertise the extended community a...

Page 1244: ...mber allowed in the AS PATH of routes from peer 1 1 as 2 Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 peer 1 1 allow as loop 2 peer as number IPv6 address family view Syntax peer ipv6 group name ipv6 address as number as number undo peer ipv6 group name as number undo peer ipv6 address View IPv6 address family view Parameters ipv6 group name Name of a peer group ...

Page 1245: ...AS path ACL in the range 1 to 256 import Filters incoming routes export Filters outgoing routes Description Use the peer as path acl command to specify an AS path ACL to filter routes incoming from or outgoing to a peer peer group Use the undo peer as path acl command to remove the configuration By default no AS path list is specified for filtering Examples Specify the AS path ACL 3 to filter rout...

Page 1246: ...family view Parameters ipv6 group name Name of a peer group a string of 1 to 47 characters ipv6 address IPv6 address of a peer interface type interface number Specifies the type and name of the interface Description Use the peer connect interface command to specify the source interface for establishing TCP connections to an IPv6 BGP peer or peer group Use the undo peer connect interface command to...

Page 1247: ...dvertise a default route to a peer peer group Use the undo peer default route advertise command to disable advertising a default route By default no default route is advertised to a peer peer group Using this command does not require the default route available in the routing table With this command used the router sends the default route unconditionally to the peer peer group with the next hop be...

Page 1248: ...oup test external Sysname bgp af ipv6 peer test description ISP1 peer ebgp max hop IPv6 address family view Syntax peer ipv6 group name ipv6 address ebgp max hop hop count undo peer ipv6 group name ipv6 address ebgp max hop View IPv6 address family view Parameters ipv6 group name Name of a peer group a string of 1 to 47 characters ipv6 address IPv6 address of a peer hop count Maximum hop count in ...

Page 1249: ...4 peer or peer group Use the undo peer enable command to disable an IPv4 peer or peer group By default no IPv4 peer or peer group is enabled If an IPv4 peer or peer group is disabled the router will not exchange routing information with it Examples Enable peer 1 1 1 1 Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 peer 1 1 1 1 enable peer fake as IPv6 address famil...

Page 1250: ...ly view Parameters group name Name of an IPv4 or IPv6 peer group a string of 1 to 47 characters ipv4 address IPv4 address of a peer ipv6 address IPv6 address of a peer acl6 number IPv6 ACL number in the range 2000 to 3999 import Applies the filter policy to routes received from the peer peer group export Applies the filter policy to routes advertised to the peer peer group Description Use the peer...

Page 1251: ...r does not belong to any peer group Examples Create a peer group named test and add the peer 1 2 3 4 to the peer group Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 group test external Sysname bgp af ipv6 peer 1 2 3 4 as number 200 Sysname bgp af ipv6 peer 1 2 3 4 group test peer ignore IPv6 address family view Syntax peer ipv6 group name ipv6 address ignore undo ...

Page 1252: ... IPv4 or IPv6 peer group a string of 1 to 47 characters ipv4 address IPv4 address of a peer ipv6 address IPv6 address of a peer ipv6 prefix name IPv6 prefix list name a string of 1 to 19 characters import Applies the filtering policy to routes received from the specified peer peer group export Applies the filtering policy to routes advertised to the specified peer peer group Description Use the pe...

Page 1253: ...es command to disable this function By default the function is not enabled Examples Save routing information from peer 1 2 3 4 Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 peer 1 2 3 4 keep all routes peer label route capability IPv6 address family view Syntax peer ipv4 address label route capability undo peer ipv4 address label route capability View IPv6 address...

Page 1254: ...oup Use the undo peer log change command to remove the configuration The logging is enabled by default Examples Enable the logging of session state and event information of peer 1 2 3 4 Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 peer 1 2 3 4 log change peer next hop local IPv6 address family view Syntax peer ipv6 group name ipv6 address next hop local undo peer...

Page 1255: ...group Use the undo peer preferred value command to restore the default By default routes received from a peer or peer group have a preferred value of 0 Routes learned from peers each have an initial preferred value Among multiple routes to the same destination the route with the biggest value is selected Note that If you both reference a routing policy and use the command peer ipv6 group name ipv6...

Page 1256: ...nd to allow IPv6 BGP updates to a peer peer group to carry private AS numbers By default BGP updates carry the private AS number The command does not take effect if the BGP update has both the public AS number and private AS number The range of private AS number is from 64512 to 65535 Examples Carry no private AS number in BGP updates sent to the peer 1 2 3 4 Sysname system view Sysname bgp 100 Sy...

Page 1257: ...undo peer group name ipv4 address ipv6 address route limit View IPv6 address family view Parameters group name Name of an IPv4 or IPv6 peer group a string of 1 to 47 characters ipv4 address IPv4 address of a peer ipv6 address IPv6 address of a peer limit Specifies an upper limit from 1 to 10000 for address prefixes that can be received from the peer or peer group percentage Specifies the percentag...

Page 1258: ...utes to the peer group Description Use the peer route policy command to apply a routing policy to routes incoming from or outgoing to a peer or peer group Use the undo peer route policy command to remove the configuration By default no routing policy is specified for the peer group Use of the peer route policy command does not apply the if match interface clause defined in the routing policy Refer...

Page 1259: ...to the peer 1 2 3 4 as 10 seconds Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 peer 1 2 3 4 as number 100 Sysname bgp af ipv6 peer 1 2 3 4 route update interval 10 peer substitute as IPv6 address family view Syntax peer ipv6 group name ipv6 address substitute as undo peer ipv6 group name ipv6 address substitute as View IPv6 address family view Parameters ipv6 gro...

Page 1260: ...ldtime interval for a peer or peer group Use the undo peer timer command to restore the default keepalive interval defaults to 60 seconds and holdtime interval defaults to 180 seconds Note that The timer configured with this command is preferred to the timer configured with the timer command The holdtime interval must be at least three times the keepalive interval Related commands timer IPv6 addre...

Page 1261: ...wer the preference is The default values of external preference internal preference and local preference are 255 255 and 130 respectively Examples Configure preferences for EBGP IBGP and local routes as 20 20 and 200 Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 preference 20 20 200 reflect between clients IPv6 address family view Syntax reflect between clients un...

Page 1262: ...ector Use the undo reflector cluster id command to remove the configured cluster ID By default a route reflector uses its router ID as the cluster ID Usually there is only one route reflector in a cluster so the router ID of the route reflector identifies the cluster If multiple route reflectors are configured to improve the stability of the network you should use this command to configure the ide...

Page 1263: ...ions To perform IPv4 IPv6 BGP soft reset all routers in the network should support route refresh If a router not supporting route refresh exists in the network you need to use the peer keep all routes command on the local router to save all route updates before performing soft reset Examples Soft reset inbound IPv6 BGP connections Sysname refresh bgp ipv6 all import reset bgp ipv6 Syntax reset bgp...

Page 1264: ...nformation will be cleared Examples Clear the damping information of routes to 2345 64 and release suppressed routes Sysname reset bgp ipv6 dampening 2345 64 reset bgp ipv6 flap info Syntax reset bgp ipv6 flap info ipv6 address prefix length regexp as path regexp as path acl as path acl number View User view Parameters ipv6 address Clears the flap statistics for the specified IPv6 address prefix l...

Page 1265: ... If not the system will select a router ID automatically from the current interfaces IPv4 addresses The selection sequence is the highest IPv4 address of Loopback interfaces addresses then the highest IPv4 address of physical interfaces addresses if no Loopback interfaces are configured Only when the interface with the router ID is removed or the manually configured router ID is removed will the s...

Page 1266: ... Enable the route synchronization between IPv6 BGP and IGP Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 synchronization timer IPv6 address family view Syntax timer keepalive keepalive hold holdtime undo timer View IPv6 address family view Parameters keepalive Keepalive interval in seconds ranging from 1 to 21845 holdtime Holdtime interval in seconds ranging from ...

Page 1267: ...eer timer IPv6 address family view Examples Configure keepalive interval and holdtime interval as 60 and 180 seconds Sysname system view Sysname bgp 100 Sysname bgp ipv6 family Sysname bgp af ipv6 timer keepalive 60 hold 180 ...

Page 1268: ...1268 CHAPTER 82 IPV6 BGP CONFIGURATION COMMANDS ...

Page 1269: ...l 2 Displays Level 2 IPv6 IS IS routes only n If no level is specified both Level 1 and Level 2 namely Level 1 2 routing information will be displayed Description Use the display isis route ipv6 command to display IPv6 IS IS routing information Examples Display IPv6 IS IS routing information Sysname display isis route ipv6 Route information for ISIS 1 ISIS 1 IPv6 Level 1 Forwarding Table Destinati...

Page 1270: ...ised in LSPs U Up Down Bit Set Table 296 Description on the fields of the display isis route ipv6 command Field Description Destination IPv6 destination address prefix PrefixLen Length of the prefix Flag Flags Flag of routing information status D Direct route R The route has been added into the routing table L The route has been advertised in an LSP U Route leaking flag indicating the Level 1 rout...

Page 1271: ...ating a default route No IPv6 IS IS default route is generated by default With a routing policy you can configure IPv6 IS IS to generate the default route that must match the routing policy You can use the apply isis level 1 command in routing policy view to generate a default route in L1 LSPs or use the apply isis level 2 command in routing policy view to generate a default route in L2 LSPs and u...

Page 1272: ... isis 1 Sysname isis 1 network entity 10 0001 1010 1020 1030 00 Sysname isis 1 ipv6 enable ipv6 filter policy export Syntax ipv6 filter policy acl6 number ipv6 prefix ipv6 prefix name route policy route policy name export protocol process id undo ipv6 filter policy export protocol process id View IS IS view Parameters acl6 number Number of a basic or advanced IPv6 ACL used to filter redistributed ...

Page 1273: ...l be advertised You can configure the filtering conditions using the ipv6 filter policy command You can use the ipv6 filter policy export command which filters redistributed routes only when they are advertised to other routers in combination with the ipv6 import route command If no protocol is specified routes redistributed from all protocols are filtered before advertisement If a protocol is spe...

Page 1274: ...ilter the received routes Sysname system view Sysname isis Sysname isis 1 ipv6 filter policy 2003 import ipv6 import route Syntax ipv6 import route protocol process id allow ibgp cost cost level 1 level 2 level 1 2 route policy route policy name tag tag undo ipv6 import route protocol process id View IS IS view Parameters protocol Redistributes routes from a specified routing protocol which can be...

Page 1275: ...ause routing loops Therefore be cautious with this command Examples Configure IPv6 IS IS to redistribute static routes and sets the cost 15 for them Sysname system view Sysname isis Sysname isis 1 ipv6 import route static cost 15 ipv6 import route isisv6 level 2 into level 1 Syntax ipv6 import route isisv6 level 2 into level 1 filter policy acl6 number ipv6 prefix ipv6 prefix name route policy rou...

Page 1276: ...vel 1 ipv6 maximum load balancing Syntax ipv6 maximum load balancing number undo ipv6 maximum load balancing View IS IS view Parameters number Maximum number of equivalent load balanced routes Description Use the ipv6 maximum load balancing command to configure the maximum number of equivalent load balanced routes Use the undo ipv6 maximum load balancing command to restore the default n Configure ...

Page 1277: ...mmary ipv6 prefix prefix length avoid feedback generate_null0_route level 1 level 1 2 level 2 tag tag undo ipv6 summary ipv6 prefix prefix length level 1 level 1 2 level 2 View IS IS view Parameters ipv6 prefix IPv6 prefix of the summary route prefix length Length of the IPv6 prefix in the range of 0 to 128 avoid feedback Specifies to avoid learning summary routes via routing calculation generate_...

Page 1278: ...id undo isis ipv6 enable View Interface view Parameters process id IS IS process ID ranging from 1 to 65535 The default is 1 Description Use the isis ipv6 enable command to enable IPv6 for the specified IS IS process on the interface Use the undo isis ipv6 enable command to disable the configuration IPv6 is disabled on the interface by default Examples Enable global IPv6 create IS IS routing proce...

Page 1279: ...mary command to configure an IPv6 summary route on an area border router Use the undo abr summary command to remove an IPv6 summary route Then the summarized routes are advertised By default no route summarization is available on an ABR You can use this command only on an ABR to configure a summary route for the area The ABR advertises only the summary route to other areas Multiple contiguous netw...

Page 1280: ...t cost Syntax default cost value undo default cost View OSPFv3 view Parameters value Specifies a default cost for redistributed routes in the range of 1 to 16777214 Description Use the default cost command to configure a default cost for redistributed routes Use the undo default cost command to restore the default By default the default cost is 1 You need to configure the default cost value for re...

Page 1281: ...ea to configure the area as stub If multiple OSPFv3 processes are running use of this command takes effect only for the current process Related commands stub OSPFv3 area view Examples Configure Area1 as a stub area and specify the cost of the default route advertised to the stub area as 60 Sysname system view Sysname ospfv3 Sysname ospfv3 1 area 1 Sysname ospfv3 1 area 0 0 0 1 stub Sysname ospfv3 ...

Page 1282: ...s area is 1 SPF algorithm executed 1 times Number of LSA 2 These LSAs checksum Sum 0x20C8 Number of Unknown LSA 0 Table 298 Description on the fields of the display isofv3 command Field Description Routing Process OSPFv3 1 with ID 1 1 1 1 OSPFv3 process is 1 and router ID is 1 1 1 1 SPF schedule delay Delay interval of SPF calculation Hold time between SPFs Hold time between SPF calculations Minim...

Page 1283: ...k No backup designated router on this link Timer interval configured Hello 10 Dead 40 Wait 40 Retransmit 5 Hello due in 00 00 02 Neighbor Count is 1 Adjacent neighbor count is 1 These LSAs checksum Sum Sum of all LSAs checksum Number of Unknown LSA Number of unknown LSAs Table 298 Description on the fields of the display isofv3 command Field Description Table 299 Description on the fields of the d...

Page 1284: ...r LSAs link state id Link state ID an IPv4 address originate router router id The ID of the advertising router total Specifies to display all information in the LSDB Description Use the display ospfv3 lsdb command to display OSPFv3 LSDB information Examples Display OSPFv3 LSDB information Sysname display ospfv3 lsdb OSPFv3 Router with ID 5 5 5 5 Process 1 Link LSA Interface Ethernet1 0 Link State ...

Page 1285: ... Type Link LSA Link State ID 0 0 2 6 Originating Router 2 2 2 2 LS Seq Number 0x80000002 Checksum 0xEFFA Length 56 Priority 1 Options 0x000013 R E V6 Link Local Address FE80 1441 0 E213 1 Number of Prefixes 1 Prefix 2000 1 64 Prefix Options 0 Table 300 Description on the fields of the display isofv3 lsdb command Field Description Link LSA Type 8 LSA Link State ID Link State ID Origin Router Origin...

Page 1286: ... Router Originating Router LS Seq Number LSA Sequence Number Checksum LSA Checksum Length LSA Length Priority Router Priority Options Options Link Local Address Link Local Address Number of Prefixes Number of Prefixes Prefix Address prefix Prefix Options Prefix options Table 301 Description on the fields of the display ospfv3 lsdb command Field Description Table 302 Descriptions on the fields of t...

Page 1287: ...ce type interface number verbose peer router id View Any view Parameters process id Specifies the ID of an OSPFv3 process ranging from 1 to 65535 area Specifies to display neighbor information of the specified area area id The ID of an area a decimal integer that is translated into IPv4 address format by the system in the range of 0 to 4294967295 or an IPv4 address interface type interface number ...

Page 1288: ...mer due in 00 00 29 Neighbor is up for 00 06 28 Database Summary List 0 Link State Request List 0 Link State Retransmission List 0 Table 304 Description on the fields of the display isofv3 peer command Field Description Neighbor ID Neighbor ID Pri Priority of neighbor router State Neighbor state Dead Time Dead time remained Interface Interface connected to the neighbor Instance ID Instance ID Tabl...

Page 1289: ...306 Description on the fields of the display ospfv3 peer statistic command Field Description Area ID Area ID Down In this state neighbor initial state the router has not received any information from a neighboring router for a period of time Init In this state the router received a Hello packet from the neighbor but the packet gives no ID of the router Mutual communication is not available 2 Way I...

Page 1290: ...y the statistics of OSPFv3 link state request list Sysname display ospfv3 request list statistics OSPFv3 Router with ID 1 1 1 1 Process 1 Interface Neighbor LSA Count Eth1 0 2 2 2 2 0 display ospfv3 retrans list Syntax display ospfv3 process id retrans list statistics View Any view Parameters process id OSPFv3 process ID in the range 1 to 65535 Table 307 Description on the fields of the display os...

Page 1291: ...lay the statistics of OSPFv3 link state retransmission list Sysname display ospfv3 retrans list statistics OSPFv3 Router with ID 3 3 3 3 Process 1 Interface Neighbor LSA Count Eth1 0 1 1 1 1 0 display ospfv3 routing Syntax display ospfv3 process id routing ipv6 address prefix length ipv6 prefix prefix length abr routes asbr routes all statistics View Any view Table 309 Description on the fields of...

Page 1292: ...pe 1 external route IA Inter area route I Intra area route E2 Type 2 external route Selected route OSPFv3 Router with ID 1 1 1 1 Process 1 Destination 2001 64 Type I Cost 1 NextHop directly connected Interface Eth1 0 Display the statistics of OSPFv3 routing table Sysname display ospfv3 routing statistics OSPFv3 Router with ID 1 1 1 1 Process 1 OSPFv3 Routing Statistics Intra area routes 1 Inter ar...

Page 1293: ... topology Syntax display ospfv3 process id topology area area id View Any view Parameters process id Specifies the ID of an OSPFv3 process of which to display topology information ranging from 1 to 65535 area Display the topology information of the specified area Table 313 Description on the fields of the display ospfv3 statistics command Field Description Interface Interface name Instance Instanc...

Page 1294: ...0 Eth1 0 display ospfv3 vlink Syntax display ospfv3 process id vlink View Any view Parameters process id Specifies the ID of an OSPFv3 process ranging from 1 to 65535 Description Use the display ospfv3 vlink command to display OSPFv3 virtual link information If no process is specified virtual link information of all OSPFv3 processes is displayed Examples Display OSPFv3 virtual link information Sys...

Page 1295: ...ocess id Specifies to filter the routes of a RIPng process which in the range of 1 to 65535 bgp4 Specifies to filter BGP4 routes direct Specifies to filter direct routes static Specifies to filter static routes Description Use the filter policy export command to filter redistributed routes Table 315 Description on the fields of the display ospfv3 vlink command Field Description Virtual Link VLINK1...

Page 1296: ...000 quit Sysname ospfv3 Sysname ospfv3 1 filter policy 2001 export filter policy import OSPFv3 view Syntax filter policy acl6 number ipv6 prefix ipv6 prefix name import undo filter policy import View OSPFv3 view Parameters acl6 number Specifies an ACL number ranging from 2000 to 3999 ipv6 prefix ipv6 prefix name Specifies the name of an IPv6 prefix list a string of up to 19 characters Description ...

Page 1297: ...redistribute direct routes static Specifies to redistributes static routes cost value Specifies the cost for redistributed routes ranging from 1 to 16777214 It defaults to 1 type type Specifies the type for redistributed routes 1 or 2 It defaults to 2 route policy route policy name Specifies to redistribute only the routes that match the specified route policy route policy name is a string of up t...

Page 1298: ... changes of the current OSPFv3 process will display on the configuration terminal Examples Disable the logging on neighbor state changes of OSPFv3 process 100 Sysname system view Sysname ospfv3 100 Sysname ospfv3 100 undo log peer change maximum load balancing OSPFv3 view Syntax maximum load balancing maximum undo maximum load balancing View OSPFv3 view Parameters maximum Maximum number of load ba...

Page 1299: ...s configured in OSPFv3 view Otherwise you can find the process but which cannot generate any LSA Examples Enable the OSPFv3 process with process ID as 120 and configure the Router ID as 1 1 1 1 Sysname system view Sysname ospfv3 120 Sysname ospfv3 120 router id 1 1 1 1 ospfv3 area Syntax ospfv3 process id area area id instance instance id undo ospfv3 process id area area id instance instance id Vi...

Page 1300: ...e id View Interface view Parameters value OSPFv3 cost of the interface in the range 1 to 65535 instance id The instance ID of an interface in the range of 0 to 255 which defaults to 0 Description Use the ospfv3 cost command to configure the OSPFv3 cost on an interface of an instance Use the undo ospfv3 cost command to restore the default OSPFv3 cost on an interface of an instance By default a rout...

Page 1301: ...iew Sysname interface ethernet 1 0 Sysname Ethernet1 0 ospfv3 dr priority 8 instance 1 ospfv3 mtu ignore Syntax ospfv3 mtu ignore instance instance id undo ospfv3 mtu ignore instance instance id View Interface view Parameters instance id Instance ID in the range 0 to 255 which defaults to 0 Description Use the ospfv3 mtu ignore command to configure an interface to ignore MTU when sending DD packet...

Page 1302: ...t four times the Hello seconds value and must be identical on interfaces attached to the same network segment Related commands ospfv3 timer hello Examples Configure the OSPFv3 neighbor dead time as 80 seconds for an interface with instance 1 Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 ospfv3 timer dead 80 instance 1 ospfv3 timer hello Syntax ospfv3 timer hello seconds instan...

Page 1303: ...etransmit command to configure the LSA retransmission interval for an interface of an instance Use the undo ospfv3 timer retransmit command to restore the default The interval defaults to 5 seconds When a router sends a LSA to its neighbor it waits for an acknowledgement If receiving no acknowledgement after retransmission interval elapses it will retransmit the LSA The LSA retransmission interval...

Page 1304: ...s delay 3 instance 1 preference Syntax preference ase route policy route policy name preference undo preference ase View OSPFv3 view Parameters ase Applies the preference to OSPFv3 external routes If the keyword is not specified the preference applies to OSPFv3 internal routes route policy route policy name References a routing policy to set preference for specific routes The name is a string of 1...

Page 1305: ...ifferent processes have different Router IDs Related commands ospfv3 n By configuring different router IDs for different processes you can run multiple OSPFv3 processes on a router Examples Configure the Router ID as 10 1 1 3 for OSPFv3 process 1 Sysname system view Sysname ospfv3 1 Sysname ospfv3 1 router id 10 1 1 3 silent interface OSPFv3 view Syntax silent interface interface type interface nu...

Page 1306: ... spf timers View OSPFv3 view Parameters delay interval The interval in seconds between when OSPFv3 receives a topology change and when it starts SPF calculation in the range 1 to 65535 hold interval The hold interval in seconds between two SPF calculations in the range 1 to 65535 Description Use the spf timers command to configure the delay interval and hold interval for OSPFv3 SPF calculation Use...

Page 1307: ...1 as a stub area Sysname system view Sysname ospfv3 1 Sysname ospfv3 1 area 1 Sysname ospfv3 1 area 0 0 0 1 stub vlink peer OSPFv3 area view Syntax vlink peer router id hello seconds retransmit seconds trans delay seconds dead seconds instance instance id undo vlink peer router id hello retransmit trans delay dead View OSPFv3 area view Parameters router id Router ID for a virtual link neighbor hel...

Page 1308: ... Use the undo vlink peer command to remove a virtual link For a non backbone area without direct connection with the backbone area or for a backbone area that cannot maintain connectivity you can use the vlink peer command to create logical connectivity A virtual link can be considered as an interface with OSPFv3 enabled because parameters such as hello dead retransmit and trans delay are configur...

Page 1309: ...can enable the zero field check on RIPng packet headers If any such field contains a non zero value the RIPng packet will be discarded Examples Disable the zero field check on RIPng packet headers of RIPng 100 Sysname system view Sysname ripng 100 Sysname ripng 100 undo checkzero default cost RIPng view Syntax default cost cost undo default cost View RIPng view Parameters cost Default metric of re...

Page 1310: ...s Display the running status and configuration information of all configured RIPng processes Sysname display ripng RIPng process 1 Preference 100 Checkzero Enabled Default Cost 0 Maximum number of balanced paths 3 Update time 30 sec s Timeout time 180 sec s Suppress time 120 sec s Garbage Collect time 120 sec s Number of periodic updates sent 0 Number of trigger updates sent 0 Table 316 Descriptio...

Page 1311: ...cost 2 3FFE C00 C18 1 64 via FE80 200 5EFF FE04 B602 cost 2 3FFE C00 C18 1 64 via FE80 200 5EFF FE04 B601 cost 2 3FFE C00 C18 2 64 via FE80 200 5EFF FE04 B602 cost 2 3FFE C00 C18 3 64 via FE80 200 5EFF FE04 B601 cost 2 4000 1 64 via FE80 200 5EFF FE04 3302 cost 2 4000 2 64 via FE80 200 5EFF FE04 3302 cost 2 Number of periodic updates sent Number of periodic updates sent Number of trigger updates s...

Page 1312: ...the fields of the display ripng interface command Field Description Interface name Name of an interface running RIPng Link Local Address Link local address of an interface running RIPng Split horizon Indicates whether the split horizon function is enabled on Enabled off Disabled Poison reverse Indicates whether the poison reverse function is enabled on Enabled off Disabled MetricIn MetricOut Addit...

Page 1313: ... Dest 3FFE C00 C18 1 64 via FE80 200 5EFF FE04 B601 cost 2 tag 0 A 13 Sec Dest 3FFE C00 C18 3 64 via FE80 200 5EFF FE04 B601 cost 2 tag 0 A 13 Sec Peer FE80 200 5EFF FE04 3302 on Ethernet1 2 Dest 100 32 via FE80 200 5EFF FE04 3302 cost 2 tag 0 A 6 Sec Dest 4000 1 64 via FE80 200 5EFF FE04 3302 cost 2 tag 0 A 6 Sec Dest 4000 2 64 via FE80 200 5EFF FE04 3302 cost 2 tag 0 A 6 Sec Dest 4000 3 64 via F...

Page 1314: ...ting protocol is rip ospf or isis Description Use the filter policy export command to define an outbound route filtering policy Only routes passing the filter can be advertised in the update messages Use the undo filter policy export command to restore the default By default RIPng does not filter any outbound routing information With the protocol argument specified only routing information redistr...

Page 1315: ...l from which to redistribute routes Currently it can be bgp4 direct isisv6 ospfv3 ripng or static process id Process ID in the range of 1 to 65535 The default is 1 This argument is available only when the protocol is isisv6 ospfv3 or ripng cost Routing metric of redistributed routes in the range of 0 to 16 If cost value is not specified the metric is the default metric specified by the default cos...

Page 1316: ...ber of equal cost load balanced routes in the range 1 to 8 Description Use the maximum load balancing command to specify the maximum number of equal cost routes for load balancing Use the undo maximum load balancing command to restore the default n You need configure the maximum number according to the memory size Examples Set the maximum number of equal cost load balanced routes to 2 Sysname syst...

Page 1317: ... routing policy the one set by the preference command applies to all routes Examples Set the RIPng route priority to 120 Sysname system view Sysname ripng 100 Sysname ripng 100 preference 120 Restore the default RIPng route priority Sysname ripng 100 undo preference ripng Syntax ripng process id undo ripng process id View System view Parameters process id RIPng process number in the range of 1 to ...

Page 1318: ...r Use the undo ripng default route command to stop advertising and forwarding the default route By default a RIP process does not advertise any default route After you execute this command the generated RIPng default route is advertised in a route update over the specified interface This IPv6 default route is advertised without considering whether it already exists in local IPv6 routing table Exam...

Page 1319: ...in value undo ripng metricin View Interface view Parameters value Additional metric to received routes in the range of 0 to 16 Description Use the ripng metricin command to specify an additional metric for received RIPng routes Use the undo ripng metricin command to restore the default By default the additional metric to received routes is 0 Related commands ripng metricout Examples Specify the ad...

Page 1320: ...w Sysname interface ethernet 1 0 Sysname Ethernet1 0 ripng metricout 12 ripng poison reverse Syntax ripng poison reverse undo ripng poison reverse View Interface view Parameters None Description Use the rip poison reverse command to enable the poison reverse function Use the undo rip poison reverse command to disable the poison reverse function By default the poison reverse function is disabled Ex...

Page 1321: ...e 371 and LAPB and X 25 Configuration Commands on page 421 Examples Enable the split horizon function on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ripng split horizon ripng summary address Syntax ripng summary address ipv6 address prefix length undo ripng summary address ipv6 address prefix length View Interface view Parameters ipv6 address Destination IPv6...

Page 1322: ...o configure RIPng timers Use the undo timers command to restore the default By default the garbage collect timer is 120 seconds the suppress timer 120 seconds the timeout timer 180 seconds and the update timer 30 seconds RIPng is controlled by the above four timers The update timer defines the interval between update messages The timeout timer defines the route aging time If no update message rela...

Page 1323: ...mstances The lengths of these timers must be kept consistent on all routers and access servers in the network Examples Configure the update timeout suppress and garbage collect timers as 5s 15s 15s and 30s Sysname system view Sysname ripng 100 Sysname ripng 100 timers update 5 Sysname ripng 100 timers timeout 15 Sysname ripng 100 timers suppress 15 Sysname ripng 100 timers garbage collect 30 ...

Page 1324: ...1324 CHAPTER 85 IPV6 RIPNG CONFIGURATION COMMANDS ...

Page 1325: ...tes Sysname system view Sysname delete ipv6 static routes all This will erase all ipv6 static routes and their configurations you must reconfigure all static routes Are you sure Y N Y ipv6 route static Syntax For a broadcast interface Ethernet interface VLAN interface or NBMA interface X25 or frame relay interface ipv6 route static ipv6 address prefix length interface type interface number nexthop...

Page 1326: ... default IPv6 route If the destination address of an IPv6 packet does not match any entry in the routing table this default route will be used to forward the packet While configuring static routes you can configure either the output interface or the next hop address depending on the situations If the output interface is a broadcast interface such as an Ethernet interface a VLAN interface or an NBM...

Page 1327: ... address in the range of 4 to 32 The system default is 32 interface type interface number Specifies an interface by its type and number Description Use the display multicast boundary command to view the multicast boundary information on the specified interface or all interfaces Related command multicast boundary Example View the multicast boundary information on all interfaces in the public instan...

Page 1328: ...rce address For a multicast group address this argument has an effective value range of 4 to 32 for a multicast source address this argument has an effective value range of 0 to 32 The system default is 32 in both cases incoming interface Displays forwarding entries of which the incoming interface is the specified one register Specifies the register interface outgoing interface Displays forwarding...

Page 1329: ...d to indicate different states of S G entries Major values of this field are described in Table 322 Uptime Length of time for which the S G entry has been up in hours minutes seconds Timeout in Length of time in which the S G entry will expire in hours minutes seconds Incoming interface Incoming interface of the S G entry List of outgoing interface 1 Ethernet1 1 1 outgoing interface list Sequence ...

Page 1330: ...specified interface or all interfaces Related command multicast minimum ttl Example View the minimum TTL required for a multicast packet to be forwarded on all interfaces of the public instance Sysname display multicast minimum ttl Multicast TTL information of VPN Instance public net Interface TTL Eth1 0 5 Eth1 1 6 0x00008000 Indicates that the S G entry is in the smoothening process after active ...

Page 1331: ...ective value range of 4 to 32 for a multicast source address this argument has an effective value range of 0 to 32 The system default is 32 in both cases incoming interface Displays multicast routing entries of which the incoming interface is the specified one interface type interface number Specifies an interface by its type and number register Specifies the register interface of PIM SM outgoing ...

Page 1332: ...sk length Mask length of the multicast source address in the range of 0 to 32 Description Use the display multicast routing table static command to view the information of multicast static routes Example View all the multicast static routes in the public instance Sysname display multicast routing table static Multicast Routing Table of VPN Instance public net Routes 1 Mroute 10 10 0 0 16 Interafce...

Page 1333: ...ource address group address Multicast group address in the range of 224 0 1 0 to 239 255 255 255 Description Use the display multicast rpf info command to view the RPF information of a multicast source Related command display multicast routing table and display multicast forwarding table Table 325 Description on the fields of display multicast routing table static Field Description Mroute Multicas...

Page 1334: ...nstance name a case sensitive string of up to 31 characters source address Multicast source address mask Mask of the multicast source address mask length Mask length of the multicast source address in the range of 0 to 32 Table 326 Description on the fields of the display multicast rpf info command Field Description RPF information about source 192 168 1 55 Information of the RPF path to multicast...

Page 1335: ...ing table By default no multicast static route is configured Note that The arguments source address mask mask length protocol and policy name are critical elements in multicast static route configuration The variation of any of these three arguments results in a different configuration In the configuration you can use the display multicast routing table static command to check whether the multicas...

Page 1336: ...command to trace the path down which the multicast traffic from a given multicast source flows to the last hop router Note that if the last hop router address argument is given in the command to trace the path for a specific S G multicast stream the interface corresponding to the last hop router address must be the outgoing interface for the S G multicast stream otherwise the multicast traceroute ...

Page 1337: ...nd Field Description last hop router Last hop router 6 6 6 6 225 2 1 1 The S G multicast stream for which the forwarding path is being traced 1 5 5 5 8 The S G outgoing interface address of each hop starting from the last hop router Incoming interface address The address of the interface on which the S G packets arrive Previous hop router address The IP address of the router from which this router...

Page 1338: ...emoved Related command display multicast boundary Example Configure Ethernet 1 0 to be the forwarding boundary of multicast group 239 2 0 0 16 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 multicast boundary 239 2 0 0 16 multicast forwarding table downstream limit Syntax multicast forwarding table downstream limit limit undo multicast forwarding table downstream limit View...

Page 1339: ...ast forwarding table The value ranges from 0 to 900 Description Use the multicast forwarding table route limit command to configure the maximum number of route entries in the multicast forwarding table Use the undo multicast forwarding table route limit command to restore the system default By default the maximum number of route entries in the multicast forwarding table is 900 The system allowed m...

Page 1340: ...ffic is disabled Example Enable per source load splitting of multicast traffic in the public instance Sysname system view Sysname multicast load splitting source Enable per source load splitting of multicast traffic in VPN instance mvpn Sysname system view Sysname ip vpn instance mvpn Sysname vpn instance mvpn multicast load splitting source multicast longest match Syntax multicast longest match u...

Page 1341: ...ion Use the multicast minimum ttl command to configure the minimum TTL required for a multicast packet to be forwarded on the interface Use the undo multicast minimum ttl command to restore the system default By default the minimum TTL value required for a multicast packet to be forwarded is 1 Related command display multicast minimum ttl Example Set the minimum TTL required for a multicast packet...

Page 1342: ...Sysname vpn instance mvpn multicast routing enable reset multicast forwarding table Syntax reset multicast vpn instance vpn instance name all instance forwarding table source address mask mask mask length group address mask mask mask length incoming interface interface type interface number register all View User view Parameter vpn instance name VPN instance name a case sensitive string of up to 3...

Page 1343: ...ing table of the public instance Sysname reset multicast forwarding table 225 5 4 3 Clear the multicast forwarding entries related to multicast group 226 1 2 3 from the multicast forwarding table of VPN instance mvpn Sysname reset multicast vpn instance mvpn forwarding table 226 1 2 3 reset multicast routing table Syntax reset multicast vpn instance vpn instance name all instance routing table sou...

Page 1344: ...uting table command to clear multicast routing entries from the multicast routing table When a route entry is deleted from the multicast routing table the corresponding forwarding entry is also deleted from the multicast forwarding table Related command reset multicast forwarding table display multicast routing table and display multicast forwarding table Example Clear the route entries related to...

Page 1345: ...lays the detailed information of IGMP multicast groups Description Use the display igmp group command to view IGMP multicast group information Note that If you do not specify group address this command will display the IGMP information of all the multicast groups If you do not specify interface type interface number this command will display the IGMP multicast group information on all the interfac...

Page 1346: ...characters all instance Specifies all VPN instances interface type interface number Specifies an interface to display the IGMP configuration and operation information about If no interface is specified this command will display the related information of all IGMP enabled interfaces verbose Displays the detailed IGMP configuration and operation information Description Use the display igmp interface...

Page 1347: ...sion Version of IGMP currently running on the interface Value of query interval for IGMP in seconds IGMP query interval in seconds Value of other querier present interval for IGMP in seconds Other querier present interval in seconds Value of maximum query response time for IGMP in seconds Maximum response time for IGMP general queries in seconds Value of last member query interval in seconds IGMP ...

Page 1348: ...ument has an effective value range of 0 to 32 for a multicast group address this argument has an effective value range of 4 to 32 The system default is 32 in both cases Description Use the display igmp routing table command to view the IGMP routing table information Example View IGMP routing table information in the public instance Sysname display igmp routing table Routing table of VPN Instance p...

Page 1349: ... the upstream Related command igmp fast leave last member query interval n This command takes effect on all Layer 3 interfaces when executed in IGMP view Example Enable the fast leave function globally in the public instance Sysname system view Sysname igmp Sysname igmp fast leave igmp Syntax igmp vpn instance vpn instance name undo igmp vpn instance vpn instance name View System view Parameter vp...

Page 1350: ...routing enable Sysname vpn instance mvpn quit Sysname igmp vpn instance mvpn Sysname igmp mvpn igmp enable Syntax igmp enable undo igmp enable View Interface view Parameter None Description Use the igmp enable command to enable IGMP on the current interface Use the undo igmp enable command to disable IGMP on the current interface By default IGMP is disabled on all interfaces Note that IP multicast...

Page 1351: ...sending a Leave notification directly to the upstream Related command fast leave IGMP view and igmp last member query interval Example Enable fast leave for multicast group members on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 igmp fast leave igmp group policy Syntax igmp group policy acl number version number undo igmp group policy View Interface view Para...

Page 1352: ...nterval Syntax igmp last member query interval interval undo igmp last member query interval View Interface view Parameter interval IGMP last member query interval in seconds with an effective range of 1 to 5 Description Use the igmp last member query interval command to configure the last member query interval on the current interface Use the undo igmp last member query interval command to restor...

Page 1353: ... Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 igmp max response time 8 igmp require router alert Syntax igmp require router alert undo igmp require router alert View Interface view Parameter None Description Use the igmp require router alert command to configure the interface to discard IGMP messages that do not carry the Router Alert option Use the undo igmp require rout...

Page 1354: ... variable is 2 Related command robust count IGMP view igmp timer query igmp last member query interval igmp timer other querier present display igmp interface Example Set the IGMP querier robustness variable to 3 on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 igmp robust count 3 igmp send router alert Syntax igmp send router alert undo igmp send router alert...

Page 1355: ...cified multicast group Use the undo igmp static group command to remove the current interface as a statically connected member of the specified multicast group By default an interface is not a static member of any multicast group If the specified multicast address is in the SSM multicast address range and if a multicast source address is specified in the command multicasts carrying the S G entry n...

Page 1356: ...ameters in the above mentioned formula default to 60 seconds 2 times and 10 seconds respectively so the default other querier present interval 60 2 10 2 125 seconds Related command timer other querier present IGMP view igmp timer query igmp robust count igmp max response time display igmp interface Example Set the other querier present interval to 200 seconds on Ethernet 1 0 Sysname system view Sy...

Page 1357: ...the IGMP version on the current interface Use the undo igmp version command to restore the IGMP version to the system default The default IGMP version is version 2 Related command version IGMP view Example Set the IGMP version to IGMPv1 on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 igmp version 1 last member query interval Syntax last member query interval ...

Page 1358: ...erval undo igmp max response time View Public instance IGMP view VPN instance IGMP view Parameter interval Maximum response time for IGMP general queries in seconds with an effective range of 1 to 25 Description Use the max response time command to configure the maximum response time for IGMP general queries Use the undo max response time command to restore globally the maximum response time for I...

Page 1359: ... Sysname igmp require router alert reset igmp group Syntax reset igmp vpn instance vpn instance name all instance group all interface interface type interface number all group address mask mask mask length source address mask mask mask length View User view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters all instance Specifies all VPN instances all Spec...

Page 1360: ...tries for multicast group 225 0 0 1 on Ethernet 1 0 in the public instance Sysname reset igmp group interface ethernet 1 0 225 0 0 1 Clear the IGMP forwarding entries for multicast groups in the 225 1 1 0 24 segment on Ethernet 1 0 in the public instance Sysname reset igmp group interface ethernet 1 0 225 1 1 0 mask 24 robust count IGMP view Syntax robust count robust value undo robust count View ...

Page 1361: ...nd router alert command to globally disable the insertion of the Router Alert option into IGMP messages to be sent By default an IGMP message carries the Router Alert option Related command igmp send router alert require router alert IGMP view Example Globally disable the insertion of the Router Alert option in IGMP messages to be sent in the public instance Sysname system view Sysname igmp Sysnam...

Page 1362: ...ther querier present interval to 200 seconds in the public instance Sysname system view Sysname igmp Sysname igmp timer other querier present 200 timer query IGMP view Syntax timer query interval undo timer query View Public instance IGMP view VPN instance IGMP view Parameter interval IGMP query interval in seconds namely interval between IGMP general queries sent by the querier with an effective ...

Page 1363: ...range of 1 to 3 Description Use the version command to configure the global IGMP version Use the undo version command to restore the global IGMP version to the system default The default IGMP version is version 2 Related command igmp version Example Set the global IGMP version to IGMPv1 in the public instance Sysname system view Sysname igmp Sysname igmp version 1 ...

Page 1364: ...1364 CHAPTER 88 IGMP CONFIGURATION COMMANDS ...

Page 1365: ... the SA message cache mechanism in the public instance Sysname system view Sysname msdp Sysname msdp cache sa enable display msdp brief Syntax display msdp vpn instance vpn instance name all instance brief state connect down listen shutdown up View Any view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters all instance Specifies all VPN instances state Di...

Page 1366: ...s View Any view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters all instance Specifies all VPN instances peer address Specifies an MSDP peer to view the detailed status information about If you do not provide this argument this command will display the detailed status information of all MSDP peers Table 331 Description on the fields of the display msdp ...

Page 1367: ...ort policy none Information about SA Requests Policy to accept SA Request messages none Sending SA Requests status disable Minimum TTL to forward SA with encapsulated data 0 SAs learned from this peer 0 SA cache maximum for the peer none Input queue size 0 Output queue size 0 Counters for MSDP message Count of RPF check failure 0 Incoming outgoing SA messages 0 0 Incoming outgoing SA requests 0 0 ...

Page 1368: ...ges Filtering rule for receiving or forwarding SA messages from the specified MSDP peer Sending SA Requests status Whether enabled to send an SA request message to the designated MSDP peer upon receiving a new Join message Minimum TTL to forward SA with encapsulated data Minimum TTL of multicast packet encapsulated in SA messages SAs learned from this peer Number of cached SA messages SA cache max...

Page 1369: ...rmation of S G entries in the MSDP cache in the public instance Sysname display msdp sa cache MSDP Source Active Cache Information of VPN Instance public net MSDP Total Source Active Cache 5 entries MSDP matched 5 entries Source Group Origin RP Pro AS Uptime Expires 10 10 1 2 225 1 1 1 10 10 10 10 BGP 100 00 00 10 00 05 50 10 10 1 3 225 1 1 1 10 10 10 10 BGP 100 00 00 11 00 05 49 10 10 1 2 225 1 1...

Page 1370: ...cache in the public instance Sysname display msdp sa count MSDP Source Active Count Information of VPN Instance public net Number of cached Source Active entries counted by Peer Peer s Address Number of SA 10 10 10 10 5 Number of source and group counted by AS AS Number of source Number of group 3 3 Total 5 Source Active entries Table 334 Description on the fields of the display msdp sa count comm...

Page 1371: ...e acl acl number undo import source View Public instance MSDP view VPN instance MSDP view Parameter acl number Basic or advanced ACL number in the range of 2000 to 3999 A basic ACL is used to filter the multicast sources while an advanced ACL is used to filter the multicast sources or multicast groups If you do not provide this argument in your command no multicast source information will be adver...

Page 1372: ... name undo msdp vpn instance vpn instance name View System view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters Description Use the msdp command to enable MSDP in the public instance or the specified VPN instance and enter public instance or VPN instance MSDP view Use the undo msdp command to disable MSDP in the public instance or the specified VPN inst...

Page 1373: ...erface as the RP address of SA messages Use the undo originating rp command to restore the system default Be default the PIM RP address is used as the RP address of SA messages Example Specify the IP address of Ethernet 1 0 as the RP address of SA messages in the public instance Sysname system view Sysname msdp Sysname msdp originating rp ethernet 1 0 peer connect interface Syntax peer peer addres...

Page 1374: ...ss description text undo peer peer address description View Public instance MSDP view VPN instance MSDP view Parameter peer address MSDP peer address text Descriptive text a string of 1 to 80 characters case sensitive Description Use the peer description command to configure the description information for the specified MSDP peer Use the undo peer description command to delete the configured descr...

Page 1375: ...oup Grp1 peer minimum ttl Syntax peer peer address minimum ttl ttl value undo peer peer address minimum ttl View Public instance MSDP view VPN instance MSDP view Parameter peer address MSDP peer address ttl value Time to live TTL value in the range of 0 to 255 Description Use the peer minimum ttl command to configure the minimum TTL value of multicast packets encapsulated in SA messages Use the un...

Page 1376: ...sage is sent Note that before you can enable the device to send SA requests you must disable the SA message cache mechanism Related command cache sa enable Example Disable the SA message cache mechanism in the public instance and enable the router to send an SA request message to the MSDP peer 125 10 7 6 upon receiving a new Join message Sysname system view Sysname msdp Sysname msdp undo cache sa ...

Page 1377: ...es from the specified MSDP peer export Specifies to filter SA messages forwarded to the specified MSDP peer peer address MSDP peer address acl number Advanced ACL number in the range of 3000 to 3999 If you do not provide an ACL number all SA messages carrying S G entries will be filtered off Description Use the peer sa policy command to configure a filtering rule for receiving or forwarding SA mes...

Page 1378: ...d other SA requests will be ignored if you do not provide this argument all SA requests will be ignored Description Use the peer sa request policy command to configure a filtering rule for SA request messages Use the undo peer sa request policy command to remove the configured SA request filtering rule Be default SA request messages are not filtered Related command display msdp peer status Example...

Page 1379: ...eer Sysname reset msdp peer 125 10 7 6 reset msdp sa cache Syntax reset msdp vpn instance vpn instance name all instance sa cache group address View User view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters all instance Specifies all VPN instances group address Address of the multicast group related to which the S G entries are to be cleared from the MS...

Page 1380: ...information of the specified MSDP peer or all MSDP peers without resetting the MSDP peer s Example Clear the statistics information of the MSDP peer 125 10 7 6 in the public instance Sysname reset msdp statistics 125 10 7 6 shutdown MSDP View Syntax shutdown peer address undo shutdown peer address View Public instance MSDP view VPN instance MSDP view Parameter peer address MSDP peer address Descri...

Page 1381: ...e RP addresses pass the filtering will be accepted If multiple static RPF peers use the same filtering policy at the same time when a peer receives an SA message it will forward the SA message to the other peers 2 If you use the rp policy keyword for none of the static RPF peers according to the configuration sequence only the first static RPF peer whose connection is in the UP state will be activ...

Page 1382: ...ange is 1 to 60 Description Use the timer retry command to configure the interval between MSDP peer connection retries Use the undo timer retry command to restore the default setting By default the interval between MSDP peer connection retries is 30 seconds Related command display msdp peer status Example Set the MSDP peer connection retry interval to 60 seconds in the public instance Sysname syst...

Page 1383: ...tatic rp PIM view Example Enable auto RP in the public instance Sysname system view Sysname pim Sysname pim auto rp enable bsr policy PIM view Syntax bsr policy acl number undo bsr policy View Public instance PIM view VPN instance PIM view Parameter acl number Basic ACL number in the range of 2000 to 2999 When an ACL is defined the source keyword in the rule command specifies a legal BSR source ad...

Page 1384: ...rface number Specifies an interface by its type and number This configuration can take effect only if PIM SM is enabled on the interface hash length Hash mask length for RP selection calculation in the range of 0 to 32 If you do not include this keyword in your command the corresponding global setting will be used priority Priority of the C BSR in the range of 0 to 255 If you do not include this k...

Page 1385: ...n scope c bsr global Syntax c bsr global hash length hash length priority priority undo c bsr global View Public instance PIM view VPN instance PIM view Parameter hash length Hash mask length for RP selection calculation in the global scope zone in the range of 0 to 32 If you do not include this keyword in your command the corresponding global setting will be used priority Priority of the C BSR in...

Page 1386: ...ecified multicast group in the range of 0 to 32 If you do not include this keyword in your command the corresponding global setting will be used priority Priority of the C BSR in the BSR admin scope region corresponding to a multicast group in the range of 0 to 255 If you do not include this keyword in your command the corresponding global setting will be used A larger value of this argument means...

Page 1387: ...k length for RP selection calculation is 30 Related command c bsr PIM view c bsr global and c bsr group Example Set the global Hash mask length for RP selection calculation to 16 in the public instance Sysname system view Sysname pim Sysname pim c bsr hash length 16 c bsr holdtime PIM view Syntax c bsr holdtime interval undo c bsr holdtime View Public instance PIM view VPN instance PIM view Parame...

Page 1388: ...arameter interval Bootstrap interval in seconds with an effective range of 1 to 2 147 483 647 Description Use the c bsr interval command to configure the bootstrap interval namely the interval at which the BSR sends bootstrap messages Use the undo c bsr interval command to restore the default setting By default the bootstrap interval value is determined by this formula Bootstrap interval Bootstrap...

Page 1389: ...ies an interface the IP address of which will be advertised as a C RP address acl number Basic ACL number in the range of 2000 to 2999 This ACL defines a range of multicast groups the C RP is going to serve rather than defining a filtering rule Any group range matching the permit statement in the ACL will be advertised as an RP served group while configurations matching other statements like deny ...

Page 1390: ...c 2000 rule permit source 225 1 0 0 0 0 255 255 Sysname acl basic 2000 rule permit source 226 2 0 0 0 0 255 255 Sysname acl basic 2000 quit Sysname pim Sysname pim c rp ethernet 1 0 group policy 2000 priority 10 c rp advertisement interval PIM view Syntax c rp advertisement interval interval undo c rp advertisement interval View Public instance PIM view VPN instance PIM view Parameter interval C R...

Page 1391: ...the interval at which the BSR sends bootstrap messages The recommended C RP timeout setting is 2 5 times the bootstrap interval or longer Related command c rp PIM view and c bsr interval PIM view Example Set the global C RP timeout time to 200 seconds in the public instance Sysname system view Sysname pim Sysname pim c rp holdtime 200 crp policy PIM view Syntax crp policy acl number undo crp polic...

Page 1392: ...l adv 3000 quit Sysname pim Sysname pim crp policy 3000 display pim bsr info Syntax display pim vpn instance vpn instance name all instance bsr info View Any view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters all instance Specifies all VPN instances Description Use the display pim bsr info command to view the BSR information in the PIM domain and the ...

Page 1393: ...ticast source If you do not provide this argument this command will display the information about all unicast routes used by PIM Table 335 Description on the fields of the display pim bsr info command Field Description Elected BSR Address Address of the elected BSR Candidate BSR Address Address of the candidate BSR Priority BSR priority Hash mask length Hash mask length for RP selection calculatio...

Page 1394: ...face number message type assert bsr crp graft graft ack hello join prune state refresh View Any view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters all instance Specifies all VPN instances probe Displays the number of null register messages register Displays the number of register messages register stop Displays the number of register stop messages int...

Page 1395: ...e public net PIM global control message counters Received Sent Invalid Register 20 37 2 Register Stop 25 20 1 Probe 10 5 0 PIM control message counters for interface Ethernet1 0 Received Sent Invalid Assert 10 5 0 Graft 20 37 2 Graft Ack 25 20 1 Hello 1232 453 0 Join Prune 15 30 21 State Refresh 8 7 1 BSR 3243 589 1 C RP 53 32 0 Table 337 Description on the fields of display pim control message co...

Page 1396: ...00 00 24 00 00 02 display pim interface Syntax display pim vpn instance vpn instance name all instance interface interface type interface number verbose View Any view Parameter vpn instance name VPN instance name a case sensitive string of up to 31 characters all instance Specifies all VPN instances C RP C RP Adv messages Table 337 Description on the fields of display pim control message counters ...

Page 1397: ...1 2 PIM DR Priority configured 1 PIM neighbor count 1 PIM hello interval 30 s PIM LAN delay negotiated 500 ms PIM LAN delay configured 500 ms PIM override interval negotiated 2500 ms PIM override interval configured 2500 ms PIM neighbor tracking negotiated disabled PIM neighbor tracking configured disabled PIM generation ID 0xF5712241 PIM require generation ID disabled PIM hello hold interval 105 ...

Page 1398: ...e interval PIM neighbor tracking negotiated Negotiated neighbor tracking status enabled disabled PIM neighbor tracking configured Configured neighbor tracking status enabled disabled PIM generation ID Generation_ID value PIM require generation ID Rejection of Hello messages without Generation_ID enabled disabled PIM hello hold interval PIM neighbor timeout time PIM assert hold interval Assert time...

Page 1399: ... detailed information of join prune messages to send Description Use the display pim join prune command to view the information about the join prune messages to send Example View the information of join prune messages to send in the PIM SM mode in the public instance Sysname display pim join prune mode sm Vpn instance public net Expiry Time 50 sec Upstream nbr 10 1 1 1 Ethernet1 1 1 G join s 0 S G...

Page 1400: ...1 42 1 View the PIM neighbor information on Ethernet 1 0 of the public instance Sysname display pim neighbor interface ethernet 1 0 Total Number of Neighbors on this interface 3 Neighbor Interface Uptime Expires Dr Priority 101 110 110 150 Eth1 0 00 37 17 00 01 28 1 11 110 0 40 Eth1 1 00 33 20 00 01 25 1 11 110 0 20 Eth1 2 00 04 53 00 01 22 1 View the detailed information of the PIM neighbor whose...

Page 1401: ...es all VPN instances group address Multicast group address in the range of 224 0 0 0 to 239 255 255 255 source address Multicast source address mask Mask of the multicast group source address 255 255 255 255 by default mask length Mask length of the multicast group source address in the range of 0 to 32 The system default is 32 incoming interface Displays routing entries that contain the specified...

Page 1402: ...cifies multicast routing entries on routers directly connecting to the same subnet with the multicast source msdp Specifies routing entries learned from MSDP SA messages niif Specifies multicast routing entries containing unknown incoming interfaces nonbr Specifies routing entries with PIM neighbor searching failure rpt Specifies routing entries on RPT branches where S G prunes have been sent to t...

Page 1403: ...S G and G entries in the PIM routing table 172 168 0 2 227 0 0 1 An S G entry in the PIM routing table Protocol PIM mode PIM SM or PIM DM Flag Flag of the S G or G entry in the PIM routing table Uptime Length of time for which the S G or G entry has been existing Upstream interface Upstream incoming interface of the S G or G entry Upstream neighbor Upstream neighbor of the S G or G entry RPF prime...

Page 1404: ...f the RP the system will delete it Example View the RP information corresponding to the multicast group 224 0 1 1 in the public instance Sysname display pim rp info 224 0 1 1 Vpn instance public net BSR RP Address is 2 2 2 2 Priority 0 HoldTime 150 Uptime 03 01 10 Expires 00 02 30 RP mapping for this group is 2 2 2 2 View the RP information corresponding to all multicast groups in the public insta...

Page 1405: ...e Set the router priority for DR election to 3 in the public instance Sysname system view Sysname pim Sysname pim hello option dr priority 3 hello option holdtime PIM view Syntax hello option holdtime interval undo hello option holdtime View Public instance PIM view VPN instance PIM view Parameter interval PIM neighbor timeout time in seconds with an effective range of 1 to 65 535 Description Use ...

Page 1406: ...gth of time the device must wait upon receiving a prune message from downstream before taking the prune action Within this period of time if the device receives a prune override message from that downstream device the prune action will be cancelled Use the undo hello option lan delay command to restore the default setting By default the prune delay to 500 milliseconds This command is effective for...

Page 1407: ...ride interval interval undo hello option override interval View Public instance PIM view VPN instance PIM view Parameter interval Prune override interval in milliseconds with an effective range of 1 to 65 535 Description Use the hello option override interval command to configure the global value of the prune override interval Use the undo hello option override interval command to restore the defa...

Page 1408: ...and PIM SM Related command holdtime join prune PIM view pim holdtime join prune and pim holdtime assert Example Set the global value of the assert timeout time to 100 seconds in the public instance Sysname system view Sysname pim Sysname pim holdtime assert 100 holdtime join prune PIM view Syntax holdtime join prune interval undo holdtime join prune View Public instance PIM view VPN instance PIM v...

Page 1409: ...ve range of 100 to 8 100 Description Use the jp pkt size command to configure the maximum size of join prune messages Use the undo jp pkt size command to restore the default setting By default the maximum size of join prune messages is 8 100 bytes Related command jp queue size PIM view Example Set the maximum size of join prune messages to 1 500 bytes in the public instance Sysname system view Sys...

Page 1410: ...ll queue size the outgoing interface of the corresponding entry may have been pruned due to timeout before the last join prune message in a queue reaches the upstream device Related commands jp pkt size PIM view holdtime join prune PIM view pim holdtime join prune Example Configure a join prune messages to contain a maximum of 2 000 S G entries in the public instance Sysname system view Sysname pi...

Page 1411: ...nstance mvpn Sysname pim mvpn pim bsr boundary Syntax pim bsr boundary undo pim bsr boundary View Interface view Parameter None Description Use the pim bsr boundary command to configure a BSR admin scope region boundary on the current interface Use the undo pim bsr boundary command to remove the configured BSR admin scope region boundary By default no BSR admin scope region boundary is configured ...

Page 1412: ...r priority priority undo pim hello option dr priority View Interface view Parameter priority Router priority for DR election in the range of 0 to 4294967295 A larger value of this argument means a higher priority Description Use the pim hello option dr priority command to configure the router priority for DR election on the current interface Use the undo pim hello option dr priority command to res...

Page 1413: ...20 seconds on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 pim hello option holdtime 120 pim hello option lan delay Syntax pim hello option lan delay interval undo pim hello option lan delay View Interface view Parameter interval Prune delay in milliseconds with an effective range of 1 to 32 767 Description Use the pim hello option lan delay command to configu...

Page 1414: ...namely neighbor tracking is disabled Related command hello option neighbor tracking PIM view Example Disable join suppression on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 pim hello option neighbor tracking pim hello option override interval Syntax pim hello option override interval interval undo pim hello option override interval View Interface view Parame...

Page 1415: ... to configure the assert timeout time on the current interface Use the undo pim holdtime assert command to restore the default setting By default the assert timeout time is 180 seconds Related command holdtime join prune PIM view pim holdtime join prune and holdtime assert PIM view Example Set the assert timeout time to 100 seconds on Ethernet1 0 Sysname system view Sysname interface ethernet 1 0 ...

Page 1416: ...ne 280 pim require genid Syntax pim require genid undo pim require genid View Interface view Parameter None Description Use the pim require genid command enable rejection of hello messages without Generation_ID Use the undo pim require genid command to restore the default configuration By default hello messages without Generation_ID are accepted Example Enable Ethernet1 0 to reject hello messages ...

Page 1417: ...e fresh feature on the interface Use the undo pim state refresh capable command to disable the state fresh feature By default the state refresh feature is enabled Related command state refresh interval PIM view state refresh rate limit PIM view and state refresh ttl PIM view Example Disable state refresh on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 undo pi...

Page 1418: ...Hello interval in seconds with an effective range of 1 to 2 147 483 647 Description Use the pim timer hello command to configure on the current interface the interval at which hello messages are sent Use the undo pim timer hello command to restore the default setting By default hello messages are sent at the interval of 30 seconds Related command timer hello PIM view Example Set the hello interval...

Page 1419: ... View Interface view Parameter interval Maximum delay in seconds between hello messages with an effective range of 1 to 5 Description Use the pim triggered hello delay command to configure the maximum delay between hello messages Use the undo pim triggered hello delay command to restore the default setting By default the maximum delay between hello messages is 5 seconds Example Set the maximum del...

Page 1420: ...the permit statement of the ACL can be accepted by the RP Description Use the register policy command to configure an ACL rule to filter register messages Use the undo register policy command to remove the configured register filtering rule By default no register filtering rule is configured Related command register suppression timeout PIM view Example In the public instance configure the RP to ac...

Page 1421: ...ystem view Sysname pim Sysname pim register suppression timeout 70 register whole checksum PIM view Syntax register whole checksum undo register whole checksum View Public instance PIM view VPN instance PIM view Parameter None Description Use the register whole checksum command to configure the router to calculate the checksum based on the entire register message Use the undo register whole checks...

Page 1422: ...ontrol message counters command to reset PIM control message counters Example Reset PIM control message counters on all interfaces in the public instance Sysname reset pim control message counters source lifetime PIM view Syntax source lifetime interval undo source lifetime View Public instance PIM view VPN instance PIM view Parameter interval Multicast source lifetime in seconds with an effective...

Page 1423: ... source and group addresses and discards packets that fail the match If this command is executed repeatedly the last configuration will take effect Example In the public instance configure the router to accept multicast packets originated from 10 10 1 2 and discard multicast packets originated from 10 10 1 1 Sysname system view Sysname acl number 2000 Sysname acl basic 2000 rule permit source 10 1...

Page 1424: ...switches to the SPT immediately after it receives the first multicast packet from the RPT Note that To adjust the order of an existing ACL in the group policy list you can use the acl number argument to specify this ACL and set its order value This will insert the ACL to the position of order value in the group policy list The order of the other existing ACLs in the group policy list will remain u...

Page 1425: ...range to be 232 1 0 0 16 in the public instance Sysname system view Sysname acl number 2000 Sysname acl basic 2000 rule permit source 232 1 0 0 0 0 255 255 Sysname acl basic 2000 quit Sysname pim Sysname pim ssm policy 2000 state refresh interval PIM view Syntax state refresh interval interval undo state refresh interval View Public instance PIM view VPN instance PIM view Parameter interval State ...

Page 1426: ...tate refresh rate limit command to restore the default setting By default the device waits 30 seconds before receiving a new state refresh message Related command pim state refresh capable state refresh interval PIM view and state refresh ttl PIM view Example In the public instance configure the device to wait 45 seconds before receiving a new state refresh message Sysname system view Sysname pim ...

Page 1427: ...l system group 224 0 0 0 4 preferred Specifies to give priority to the static RP if the static RP conflicts with the dynamic RP If you do not include the preferred keyword in your command the dynamic RP will be given priority and the static RP takes effect on if no dynamic RP exists in the network or when the dynamic RP fails Description Use the static rp command to configure a static RP Use the u...

Page 1428: ...w Parameter interval Hello interval in seconds with an effective range of 1 to 2 147 483 647 Description Use the timer hello command to configure the hello interval globally Use the undo timer hello command to restore the default setting By default hello messages are sent at the interval of 30 seconds Related command pim timer hello Example Set the global hello interval to 40 seconds in the public...

Page 1429: ...scription Use the timer spt switch command to configure the interval between checks of the traffic rate threshold before RPT to SPT switchover Use the undo timer spt switch command to restore the default setting By default the traffic rate threshold is checked at an interval of 15 seconds before RPT to SPT switchover Before using this command be sure to use the spt switch threshold command to conf...

Page 1430: ...1430 CHAPTER 90 PIM CONFIGURATION COMMANDS ...

Page 1431: ...n on the specified interface or all interfaces Related command multicast ipv6 boundary Example Display the IPv6 multicast boundary information configured on all interfaces Sysname display multicast ipv6 boundary IPv6 multicast boundary information Boundary Interface FF03 16 Eth1 0 FF09 16 Pos5 0 display multicast ipv6 forwarding table Syntax display multicast ipv6 forwarding table ipv6 source addr...

Page 1432: ...ose outgoing interface is the specified ones exclude Displays the routing entries whose outgoing interface list OIL excludes the specified interface include Displays the routing entries whose OIL includes the specified interface match Displays the routing entries whose OIL includes and includes only the specified interface statistics Specifies to display the statistics information of the IPv6 mult...

Page 1433: ...oing interface outgoing interface type and number Matched 146754 packets 10272780 bytes Wrong If 0 packets Number of matched packets number of bytes number of packets with incoming interface errors Forwarded 139571 packets 9769970 bytes Number of forwarded IPv6 multicast packets number of bytes Table 347 Values and meanings of the Flags field Value Meaning 0x00000001 Indicates that a register stop...

Page 1434: ...th ipv6 group address prefix length incoming interface interface type interface number register outgoing interface exclude include match interface type interface number register View Any view Parameter ipv6 source address Multicast source address ipv6 group address IPv6 multicast group address in the range of FFxy 16 where x and y represent any hexadecimal number from 0 through F prefix length Pre...

Page 1435: ...ownstream interface 1 Ethernet1 1 display multicast ipv6 rpf info Syntax display multicast ipv6 rpf info ipv6 source address ipv6 group address View Any view Parameter ipv6 source address IPv6 multicast source address ipv6 group address IPv6 multicast group address in the range of FFxy 16 excluding FFx0 16 FFx1 16 FFx2 16 and FF0y where x and y represent any hexadecimal number from 0 to F Descript...

Page 1436: ...ength Prefix length of the IPv6 multicast group address in the range of 8 to 128 all Deletes all IPv6 multicast boundaries configured on the interface Description Use the multicast ipv6 boundary command to configure an IPv6 multicast forwarding boundary Table 350 Description on the fields of the display multicast ipv6 rpf info command Field Description RPF information about source 2001 101 RPF inf...

Page 1437: ...gured the previously configured B will be removed Related command display multicast ipv6 boundary Example Configure Ethernet 1 0 to be the forwarding boundary of the IPv6 multicast group FF03 101 16 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 multicast ipv6 boundary FF03 101 16 multicast ipv6 forwarding table downstream limit Syntax multicast ipv6 forwarding table downst...

Page 1438: ...to configure the maximum number of routing entries in the IPv6 multicast forwarding table Use the undo multicast ipv6 forwarding table route limit command to restore the maximum number of routing entries in the IPv6 multicast forwarding table to the system default By default the maximum number of routing entries in the IPv6 multicast forwarding table is 900 The allowable maximum number of routing ...

Page 1439: ... multicast ipv6 longest match View System view Parameter None Description Use the multicast ipv6 longest match command to configure route selection based on the longest match namely based on the prefix length Use the undo multicast ipv6 longest match command to remove the configuration of route selection based on the longest match By default routes are selected in order of routing entries Example ...

Page 1440: ...ysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 multicast ipv6 minimum hoplimit 8 multicast ipv6 routing enable Syntax multicast ipv6 routing enable undo multicast ipv6 routing enable View System view Parameter None Description Use the multicast ipv6 routing enable command to enable IPv6 multicast routing Use the undo multicast ipv6 routing enable command to disable IPv6 mult...

Page 1441: ...ce number Interface type and interface number register Specifies the register interface all Clears all forwarding entries from the IPv6 multicast forwarding table Description Use the reset multicast ipv6 forwarding table command to clear forwarding entries from the IPv6 multicast forwarding table When a forwarding entry is deleted from the IPv6 multicast forwarding table the corresponding routing ...

Page 1442: ...the specified one interface type interface number Interface type and interface number register Specifies a registration interface all Clears all routing entries from the IPv6 multicast routing table Description Use the reset multicast ipv6 routing table command to clear IPv6 routing entries from the IPv6 multicast routing table When a routing entry is deleted from the IPv6 multicast routing table ...

Page 1443: ...groups Description Use the display mld group command to view information of MLD multicast groups Note that If you do not specify an IPv6 multicast group address this command will display the MLD information of all the multicast groups If you do not specify interface type interface number this command will display the MLD multicast group information on all the interfaces If you do not specify the s...

Page 1444: ...alue of query interval for MLD in seconds 125 Value of other querier present interval for MLD in seconds 255 Value of maximum query response time for MLD in seconds 10 Value of startup query interval in seconds 31 Value of startup query count 2 General query timer expiry hours minutes seconds 00 00 23 Querier for MLD FE80 200 AFF FE01 101 this router MLD activity 1 joins 0 leaves Multicast ipv6 ro...

Page 1445: ...version running on the interface MLD group policy MLD group policy Value of query interval for MLD in seconds MLD query interval in seconds Value of other querier present interval for MLD in seconds MLD other querier present interval in seconds Value of maximum query response time for MLD in seconds Maximum response delay for general query messages in seconds Value of last listener query interval ...

Page 1446: ...the fast leave feature globally By default the fast leave feature is disabled that is the MLD querier sends a multicast address specific query upon receiving an MLD done message from a host instead of sending a leave notification directly to the upstream Related command mld fast leave and last listener query interval n This command takes effect on all Layer 3 interfaces when executed in MLD view E...

Page 1447: ...and display mld interface Example Globally set the last listener query interval to 3 seconds Sysname system view Sysname mld Sysname mld last listener query interval 3 max response time MLD view Syntax max response time interval undo max response time View MLD view Parameter interval Maximum response delay for MLD general query messages in seconds in the range of 1 to 25 Description Use the max re...

Page 1448: ...iew This command can take effect only after IPv6 multicast routing is enabled on the device Related command mld enable and multicast ipv6 routing enable on page 1440 Example Enter MLD view Sysname system view Sysname multicast ipv6 routing enable Sysname mld Sysname mld mld enable Syntax mld enable undo mld enable View Interface view Parameter None Description Use the mld enable command to enable ...

Page 1449: ...e the mld fast leave command to enable the fast leave function on the current interface for IPv6 multicast group members Use the undo mld fast leave command to disable the fast leave function on the current interface for IPv6 multicast group members By default the fast leave function for IPv6 multicast group members is disabled that is the MLD querier sends a multicast address specific query upon ...

Page 1450: ...ed in the MLDv2 report message instead of the source address in the IPv6 message Example Configure an IPv6 ACL so that hosts on the subnet attached to Ethernet 1 0 can join the IPv6 multicast group FF03 101 only Sysname system view Sysname acl ipv6 number 2005 Sysname acl6 basic 2005 rule permit source ff03 101 16 Sysname acl6 basic 2005 quit Sysname interface ethernet 1 0 Sysname Ethernet1 0 mld ...

Page 1451: ...s on the interface Use the undo mld max response time command to restore the default configuration By default the maximum response delay for MLD general query messages is 10 seconds The maximum response delay determines the time which the device takes to detect directly attached group members in the LAN Related command max response time MLD view mld timer other querier present and display mld inte...

Page 1452: ...robust count robust value undo mld robust count View Interface view Parameter robust value MLD querier robustness variable with an effective range of 2 to 5 The MLD robustness variable determines the number of general queries the MLD querier sends on startup and the number of MLD group specific queries the MLD querier sends upon receiving an MLD done message Description Use the mld robust count co...

Page 1453: ...ernet 1 0 Sysname Ethernet1 0 undo mld send router alert mld static group Syntax mld static group ipv6 group address source ipv6 source address undo mld static group all ipv6 group address source ipv6 source address View Interface view Parameter all Removes all static IPv6 multicast groups that the current interface has joined ipv6 group address IPv6 multicast group address in the range of FFxy 16...

Page 1454: ...mer other querier present View Interface view Parameter interval MLD other querier present interval in seconds in the range of 60 to 300 Description Use the mld timer other querier present command to configure the MLD other querier present interval on the current interface Use the undo mld timer other querier present command to restore the system default By default the MLD other querier present in...

Page 1455: ...store the default configuration By default the query interval is 125 seconds Related command mld timer query mld timer other querier present and display mld interface Example Set the query interval to 200 seconds on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 mld timer query 200 mld version Syntax mld version version number undo mld version View Interface vi...

Page 1456: ... to the upper layer protocol for processing Related command mld require router alert and send router alert MLD view Example Globally configure the device to discard MLD messages without the Router Alert option Sysname system view Sysname mld Sysname mld require router alert reset mld group Syntax reset mld group all interface interface type interface number all ipv6 group address prefix length ipv...

Page 1457: ...g entries on Ethernet 1 0 Sysname reset mld group interface ethernet 1 0 all Clear all MLD forwarding entries for the IPv6 multicast group FF03 101 10 on Ethernet 1 0 Sysname reset mld group interface ethernet 1 0 ff03 101 10 Clear all MLD forwarding entries for IPv6 multicast groups in the FF03 101 0 112 range on Ethernet 1 0 Sysname reset mld group interface ethernet 1 0 ff03 101 10 112 robust c...

Page 1458: ...able the insertion of the Router Alert option into MLD messages to be sent Use the undo send router alert command to globally disable the insertion of the Router Alert option into MLD messages to be sent By default MLD messages carry the Router Alert option Related command mld send router alert and require router alert MLD view Example Globally disable insertion of the Router Alert option into MLD...

Page 1459: ...resent timer query MLD view robust count MLD view max response time MLD view and display mld interface Example Set the MLD other querier present interval for non queriers to 200 seconds globally Sysname system view Sysname mld Sysname mld timer other querier present 200 timer query MLD view Syntax timer query interval undo timer query View MLD view Parameter interval Query interval namely amount o...

Page 1460: ... number MLD version number 1 or 2 Description Use the version command to configure the MLD version globally Use the undo version command to restore the default MLD version By default the MLD version is MLDv1 Related command mld version Example Globally set the MLD version to MLDv2 Sysname system view Sysname mld Sysname mld version 2 ...

Page 1461: ... command to remove the restriction of the BSR address range By default there are no restrictions on the BSR address range namely all the received BSR messages are regarded to be valid Example Configure a legal BSR address range so that only routers on the segment 2001 2 64 can become the BSR Sysname system view Sysname acl ipv6 number 2000 Sysname acl6 basic 2000 rule permit source 2001 2 64 Sysna...

Page 1462: ...v6 PIM view c bsr priority IPv6 PIM view and c rp IPv6 PIM view Example Configure the interface with an IPv6 address of 1101 1 as a C BSR Sysname system view Sysname pim ipv6 Sysname pim6 c bsr 1101 1 c bsr hash length IPv6 PIM view Syntax c bsr hash length hash length undo c bsr hash length View IPv6 PIM view Parameter hash length Hash mask length for RP selection calculation in the range of 0 to...

Page 1463: ...is 60 seconds so the default bootstrap timeout 60 2 10 130 seconds Related command c bsr IPv6 PIM view and c bsr interval IPv6 PIM view Example Set the bootstrap timeout time to 150 seconds Sysname system view Sysname pim ipv6 Sysname pim6 c bsr holdtime 150 c bsr interval IPv6 PIM view Syntax c bsr interval interval undo c bsr interval View IPv6 PIM view Parameter interval Bootstrap interval in s...

Page 1464: ...ption Use the c bsr priority command to configure the global C BSR priority Use the undo c bsr priority command to restore the default setting By default the C BSR priority is 0 Related command c bsr IPv6 PIM view Example Set the global C BSR priority to 5 Sysname system view Sysname pim ipv6 Sysname pim6 c bsr priority 5 c rp IPv6 PIM view Syntax c rp ipv6 address group policy acl6 number priorit...

Page 1465: ...mand to remove the related C RP configuration No C RPs are configured by default Note that If you do not specify an IPv6 multicast group range for the C RP the C RP will serve all IPv6 multicast groups If you wish a router to be a C RP for multiple group ranges you need to include these group ranges in multiple rules in the IPv6 ACL corresponding to the group policy keyword If you carry out this c...

Page 1466: ...nterval C RP timeout in seconds with an effective range of 1 to 65 535 Description Use the c rp holdtime command to configure the global C RP timeout time namely the length of time the BSR waits for a C RP Adv message from C RPs Use the undo c rp holdtime command to restore the default setting By default the C RP timeout time is 150 seconds Because a non BSR router refreshes its C RP timeout time ...

Page 1467: ...ast groups By default there are no restrictions on C RP address ranges and the address ranges of served groups namely all received C RP messages are assumed to be legal Example Configure a C RP address range so that only routers in the address range of 2001 2 64 can be C RPs Sysname system view Sysname acl ipv6 number 3000 Sysname acl6 adv 3000 rule permit ipv6 source 2001 2 64 Sysname acl6 adv 30...

Page 1468: ...al 60 Next advertisement scheduled at 00 00 48 display pim ipv6 claimed route Syntax display pim ipv6 claimed route ipv6 source address View Any view Table 354 Description on the fields of the display pim ipv6 bsr info command Field Description Elected BSR Address IPv6 address of the elected BSR Candidate BSR Address Address of the candidate BSR Priority BSR priority Hash mask length Hash mask len...

Page 1469: ...ers Syntax display pim ipv6 control message counters message type probe register register stop interface interface type interface number message type assert bsr crp graft graft ack hello join prune state refresh View Any view Parameter probe Displays the number of null register messages register Displays the number of register messages register stop Displays the number of register stop messages in...

Page 1470: ...age counters PIM global control message counters Received Sent Invalid Register 20 37 2 Register Stop 25 20 1 Probe 10 5 0 PIM control message counters for interface Ethernet1 0 Received Sent Invalid Assert 10 5 0 Graft 20 37 2 Graft Ack 25 20 1 Hello 1232 453 0 Join Prune 15 30 21 State Refresh 8 7 1 BSR 3243 589 1 C RP 53 32 0 Table 356 Description on the fields of the display pim ipv6 control m...

Page 1471: ...lar interface verbose Displays the detailed PIM information Description Use the display pim ipv6 interface command to view the IPv6 PIM information on the specified interface or all interfaces Example View the detailed IPv6 PIM information on Ethernet 1 0 C RP C RP Adv messages Table 356 Description on the fields of the display pim ipv6 control message counters command Field Description Table 357 ...

Page 1472: ...iption on the fields of the display pim ipv6 interface command Field Description Interface Interface name and its IPv6 address PIM version IPv6 PIM version PIM mode IPv6 PIM mode dense or sparse PIM DR IPv6 address of the DR PIM DR Priority configured Priority for DR election PIM neighbor count Total number of IPv6 PIM neighbors PIM hello interval Interval between IPv6 PIM hello messages PIM LAN d...

Page 1473: ...ighbor verbose Displays the detailed information of join prune messages to send Description Use the display pim join prune command to view the information about the join prune messages to send Example View the information of join prune messages to send in the IPv6 PIM SM mode Sysname display pim ipv6 join prune mode sm Expiry Time 50 sec Upstream nbr FE80 2E0 FCFF FE03 1004 Ethernet1 1 1 G join s ...

Page 1474: ...bors 2 Neighbor Interface Uptime Expires Dr Priority FE80 A01 101 1 Eth1 0 02 50 49 00 01 31 1 FE80 A01 102 1 Eth1 1 02 49 39 00 01 42 1 Table 359 Description on the fields of the display pim join prune command Field Description Expiry Time Expiry time of sending join prune messages Upstream nbr IPv6 address of the upstream IPv6 PIM neighbor and the interface connecting to it G join s Number of G ...

Page 1475: ...lays routing entries that contain the specified interface as the incoming interface interface type interface number Specifies an interface by its type and number register Specifies the register interface This keyword is valid only if mode type is not specified or is sm outgoing interface Displays routing entries that contain the specified interface as the outgoing interface include Displays routin...

Page 1476: ...e state machine FSM Description Use the display pim ipv6 routing table command to view IPv6 PIM routing table information Related command display multicast ipv6 routing table on page 1434 Example View the content of the IPv6 PIM routing table Sysname display pim ipv6 routing table Total 0 G entry 1 S G entry 2001 2 FFE3 101 Protocol pim dm Flag UpTime 00 04 24 Upstream interface Ethernet1 0 Upstre...

Page 1477: ...its for the next bootstrap message from the BSR if the bootstrap message does not contain information of the RP the system will delete it Example View the RP information corresponding to the IPv6 multicast group FF0E 101 Sysname display pim ipv6 rp info ff0e 101 PIM SM BSR RP information prefix prefix length FF0E 101 64 RP 2004 2 Priority 0 HoldTime 130 Uptime 00 05 19 Expires 00 02 11 RPF prime n...

Page 1478: ...acl6 number the embedded RP feature will be enabled for all the IPv6 multicast groups in the default embedded RP address scopes if you specify acl6 number the embedded RP feature will be enabled for only those IPv6 multicast groups that are within the default embedded RP address scopes and pass the ACL check When you use the undo embedded rp command without specifying acl6 number the embedded RP f...

Page 1479: ...ue of the router priority for DR election Use the undo hello option dr priority command to restore the default setting By default the router priority for DR election is 1 Related command pim ipv6 hello option dr priority Example Set the router priority for DR election to 3 Sysname system view Sysname pim ipv6 Sysname pim6 hello option dr priority 3 hello option holdtime IPv6 PIM view Syntax hello ...

Page 1480: ...me namely the length of time the device must wait upon receiving a prune message from downstream before taking the prune action Within this period of time if the device receives a prune override message from that downstream device the prune action will be cancelled Use the undo hello option lan delay command to restore the default setting By default the prune delay to 500 milliseconds Related comm...

Page 1481: ...ption override interval View IPv6 PIM view Parameter interval Prune override interval in milliseconds with an effective range of 1 to 65 535 Description Use the hello option override interval command to configure the global value of the prune override interval Use the undo hello option override interval command to restore the default setting By default the prune override interval is 2 500 millisec...

Page 1482: ...ysname system view Sysname pim ipv6 Sysname pim6 holdtime assert 100 holdtime join prune IPv6 PIM view Syntax holdtime join prune interval undo holdtime join prune View IPv6 PIM view Parameter interval Join prune timeout time in seconds with an effective range of 1 to 65 535 Description Use the holdtime join prune command to configure the global value of the join prune timeout time Use the undo ho...

Page 1483: ...m ipv6 Sysname pim6 jp pkt size 1500 jp queue size IPv6 PIM view Syntax jp queue size queue size undo jp queue size View IPv6 PIM view Parameter queue size Maximum number of S G entries in a join prune message in the range of 1 to 4 096 Description Use the jp queue size command to configure the maximum number of S G entries in a join prune message Use the undo jp queue size command to restore the ...

Page 1484: ... Configure a join prune messages to contain a maximum of 2 000 S G entries Sysname system view Sysname pim ipv6 Sysname pim6 jp queue size 2000 pim ipv6 Syntax pim ipv6 undo pim ipv6 View System view Parameter None Description Use the pim ipv6 command to enter IPv6 PIM view Use the undo pim ipv6 command to remove all configurations performed in IPv6 PIM view IPv6 multicast must be enabled on the d...

Page 1485: ...boundary of the BSR admin scope region Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 pim ipv6 bsr boundary pim ipv6 dm Syntax pim ipv6 dm undo pim ipv6 dm View Interface view Parameter None Description Use the pim ipv6 dm command to enable IPv6 PIM DM Use the undo pim ipv6 dm command to disable IPv6 PIM DM By default IPv6 PIM DM is disabled Note that IPv6 PIM DM cannot be ...

Page 1486: ...ion is 1 Related command hello option dr priority IPv6 PIM view Example Set the router priority for DR election to 3 on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 pim ipv6 hello option dr priority 3 pim ipv6 hello option holdtime Syntax pim ipv6 hello option holdtime interval undo pim ipv6 hello option holdtime View Interface view Parameter interval IPv6 PI...

Page 1487: ...rune delay to 500 milliseconds Related command pim ipv6 hello option override interval hello option override interval IPv6 PIM view and hello option lan delay IPv6 PIM view Example Set the prune delay time to 200 milliseconds on Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 pim ipv6 hello option lan delay 200 pim ipv6 hello option neighbor tracking Syntax pim ...

Page 1488: ...al on the current interface Use the undo pim ipv6 hello option override interval command to restore the default setting By default the prune override interval is 2 500 milliseconds Related command pim ipv6 hello option lan delay hello option lan delay IPv6 PIM view and hello option override interval IPv6 PIM view Example Set the prune override interval to 2 000 milliseconds on Ethernet 1 0 Sysname...

Page 1489: ...e view Parameter interval Join prune timeout time in seconds with an effective range of 1 to 65 535 Description Use the pim ipv6 holdtime join prune command to configure the join prune timeout time on the interface Use the undo pim ipv6 holdtime join prune command to restore the default setting By default the join prune timeout time is 210 seconds Related command holdtime assert IPv6 PIM view pim ...

Page 1490: ...ew Sysname interface ethernet 1 0 Sysname Ethernet1 0 pim ipv6 require genid pim ipv6 sm Syntax pim ipv6 sm undo pim ipv6 sm View Interface view Parameter None Description Use the pim ipv6 sm command to enable IPv6 PIM SM Use the undo pim ipv6 sm command to disable IPv6 PIM SM By default IPv6 PIM SM is disabled Related command pim ipv6 dm Example Enable IPv6 PIM SM on Ethernet 1 0 Sysname system v...

Page 1491: ...x pim ipv6 timer graft retry interval undo pim ipv6 timer graft retry View Interface view Parameter interval Graft retry period in seconds with an effective range of 1 to 65 535 Description Use the pim ipv6 timer graft retry command to configure the graft retry period Use the undo pim ipv6 timer graft retry command to restore the default setting By default the graft retry period is 3 seconds Examp...

Page 1492: ...une interval undo pim ipv6 timer join prune View Interface view Parameter interval Join prune interval in seconds with an effective range of 1 to 2 147 483 647 Description Use the pim ipv6 timer join prune command to configure on the current interface the interval at which join prune messages are sent Use the undo pim ipv6 timer join prune command to restore the default setting By default the join...

Page 1493: ...ysname Ethernet1 0 pim ipv6 trigged hello delay 3 probe interval IPv6 PIM view Syntax probe interval interval undo probe interval View IPv6 PIM view Parameter interval Register probe time in seconds with an effective range of 1 to 3 600 Description Use the probe interval command to configure the register probe time Use the undo probe interval command to restore the default setting By default the r...

Page 1494: ...13 64 Sysname system view Sysname acl ipv6 number 3000 Sysname acl6 adv 3000 rule permit ipv6 source 3 1 64 destination ff0e 13 64 Sysname acl6 adv 3000 quit Sysname pim ipv6 Sysname pim6 register policy 3000 register suppression timeout IPv6 PIM view Syntax register suppression timeout interval undo register suppression timeout View IPv6 PIM view Parameter interval Register suppression timeout in...

Page 1495: ...uter to calculate the checksum based on the entire register message Sysname system view Sysname pim ipv6 Sysname pim6 register whole checksum reset pim ipv6 control message counters Syntax reset pim ipv6 control message counters interface interface type interface number View User view Parameter interface type interface number Specifies to reset the IPv6 PIM control message counter on a particular ...

Page 1496: ...view Example Set the IPv6 multicast source lifetime to 200 seconds Sysname system view Sysname pim ipv6 Sysname pim6 source lifetime 200 source policy IPv6 PIM view Syntax source policy acl6 number undo source policy View IPv6 PIM view Parameter acl6 number Basic or advanced IPv6 ACL number in the range of 2000 to 3999 Description Use the source policy command to configure an IPv6 multicast data f...

Page 1497: ...ge is 1 to 4 194 304 This argument is not supported on a switch infinity Disables RPT to SPT switchover group policy acl6 number Uses this threshold for IPv6 multicast groups that match the specified IPv6 multicast policy In this option acl6 number refers to a basic IPv6 ACL number in the range of 2000 to 2999 If you do not include this option in your command the threshold will apply on all IPv6 m...

Page 1498: ...rst traffic rate configuration matched in sequence will take effect For a switch once an IPv6 multicast forwarding entry is created subsequent IPv6 multicast data will not be encapsulated in register messages before being forwarded even if a register outgoing interface is available Therefore to avoid forwarding failure do not include the infinity keyword in the spt switch threshold command on a sw...

Page 1499: ...refresh hoplimit hoplimit value undo state refresh hoplimit View IPv6 PIM view Parameter hoplimit value Hop limit value of state refresh messages in the range of 1 to 255 Description Use the state refresh hoplimit command to configure the hop limit value of state refresh messages Use the undo state refresh hoplimit command to restore the system default By default the hop limit value of state refre...

Page 1500: ...e refresh rate limit interval undo state refresh rate limit View IPv6 PIM view Parameter interval Time to wait before receiving a new refresh message in seconds and with an effective range of 1 to 65535 Description Use the state refresh rate limit command to configure the time the router must wait before receiving a new state refresh message Use the undo state refresh rate limit command to restore...

Page 1501: ...e the undo static rp command to configure a static RP By default no static RP is configured Note that IPv6 PIM SM or IPv6 PIM DM cannot be enabled on an interface that serves as a static RP When the IPv6 ACL rule applied on a static RP changes a new RP must be elected for all IPv6 multicast groups You can configure multiple static RPs by carrying out this command repeatedly However if you carry ou...

Page 1502: ...6 Sysname pim6 timer hello 40 timer join prune IPv6 PIM view Syntax timer join prune interval undo timer join prune View IPv6 PIM view Parameter interval Join prune interval in seconds with an effective range of 1 to 2 147 483 647 Description Use the timer join prune command to configure the join prune interval globally Use the undo timer join prune command to restore the default setting By defaul...

Page 1503: ...lt setting By default the traffic rate threshold is checked at an interval of 15 seconds before RPT to SPT switchover Before using this command be sure to use the spt switch threshold command to configure the traffic rate threshold that should trigger RPT to SPT switchover Otherwise the interval set in this command will be meaningless Related command spt switch threshold IPv6 PIM view Example Set ...

Page 1504: ...1504 CHAPTER 93 IPV6 PIM CONFIGURATION COMMANDS ...

Page 1505: ...group information for VPN Instance mvpn Share group 225 2 2 2 MTunnel address 1 1 1 1 display multicast domain vpn instance switch group receive Syntax display multicast domain vpn instance vpn instance name switch group receive brief active group group address sender source address vpn source address mask mask length mask vpn group address mask mask length mask View Any view Parameters vpn instan...

Page 1506: ... multicast domain vpn instance mvpn switch group receive MD switch group information received by VPN Instance mvpn Total 2 switch groups for 8 entries Total 2 switch groups for 8 entries matched switch group 226 1 1 0 ref count 4 active count 2 sender 172 100 1 1 active count 1 192 6 1 5 239 1 1 1 expire time 00 03 10 active 192 6 1 5 239 1 1 158 expire time 00 03 10 sender 181 100 1 1 active coun...

Page 1507: ...ed multicast source group address in the range of 0 to 32 the system default is 32 vpn group address VPN multicast group address in the range of 224 0 1 0 to 239 255 255 255 Description Use the display multicast domain vpn instance switch group send command to view the switch group information sent by the specified VPN instance in the MD Related commands display multicast domain vpn instance switc...

Page 1508: ...oups for 3 entries Total 2 switch groups for 3 entries matched 226 1 1 0 reuse_count 1 226 1 1 1 reuse_count 1 226 1 1 2 reuse_count 1 multicast domain holddown time Syntax multicast domain holddown time interval undo multicast domain holddown time View VPN instance view Parameters interval Backward MDT switching delay in seconds namely the delay time for multicast traffic to be switched from the ...

Page 1509: ...ommand to enable the switch group reuse log function Use the undo multicast domain log switch group reuse command to disable the switch group reuse log function By default the switch group reuse log function is disabled Note that this command cannot be configured without the previous share MDT configuration in the VPN instance Examples Enable the switch group reuse log function in VPN instance mvp...

Page 1510: ...N instance view To configure a new group address and MTI for a VPN instance you must remove the existing configuration The undo multicast domain share group command removes the configured MTI and the configurations the multicast domain switch group pool multicast domain log switch group reuse and multicast domain switch delay commands IP multicast routing must be enabled in the VPN instance before...

Page 1511: ... The start address of the switch group pool in the range of 224 0 1 0 to 239 255 255 255 mask Mask for addresses in the switch group pool in the range of 255 255 255 0 to 255 255 255 255 meaning the switch group pool contains 1 to 256 group addresses mask length Mask length for addresses in the switch group pool in the range of 24 to 32 meaning the switch group pool contains 1 to 256 group address...

Page 1512: ... overlap with that for any other VPN instance A new configuration with this command in the same VPN instance supersedes the existing configuration The threshold threshold value command option is not supported on a switch If you use the multicast domain switch group pool command on a switch share MDT to switch MDT switching will take place immediately after the switch receives multicast traffic for...

Page 1513: ...Basic Configuration Commands on page 2405 and Information Center Configuration Commands on page 2425 display mpls fast forwarding cache Syntax display mpls fast forwarding cache verbose View Any view Parameter verbose Displays detailed information Description Use the display mpls fast forwarding cache command to display information about the MPLS fast forwarding cache Example Display information a...

Page 1514: ...mand to display information about the ILM table With no incoming label specified the command displays the ILM entries of all incoming labels Examples Display the ILM entry with a specified incoming label Sysname display mpls ilm 1024 Inlabel In Interface Token VRF Index Oper LSP Type Swap Label 1024 S2 0 2 0 POP NORMAL 1 Record s Found Display all ILM entries Sysname display mpls ilm Inlabel In In...

Page 1515: ...d Sysname display mpls interface Interface Status TE Attr LSP Count CRLSP Count Eth1 0 Up En 0 0 Eth1 1 Up En 0 0 Display detailed information about MPLS enabled interface Ethernet 1 0 Sysname display mpls interface ethernet 1 0 verbose No 1 Interface Eth1 0 Status Down TE Attribute Disable LSPCount 0 CR LSPCount 0 FRR Disabled Table 367 Description on the fields of the display mpls ilm command Fi...

Page 1516: ... label command to display the status of one or more specified or all labels Example Display the status of a specified label Sysname display mpls label 1280 Label alloc state means not used means used Dynamic Label 1280 Display the status of all labels Sysname display mpls label all Label alloc state means not used means used Static Label 16 976 Dynamic Label 1024 1088 Status Status of the interfac...

Page 1517: ... will display all LDP information in detail Related command mpls ldp system view mpls ldp interface view Example Display all LDP information in detail Sysname display mpls ldp all verbose LDP Global Information Protocol Version V1 Neighbor Liveness 60 Sec Graceful Restart Off FT Reconnect Timer 60 Sec MTU Signaling On Recovery Timer 60 Sec LDP Instance Information Instance ID 0 VPN Instance Instan...

Page 1518: ...GR neighbor Keepalive timer Graceful Restart Whether GR is enabled FT Reconnect Timer FT reconnection timer of GR Recovery Timer Restore timer of GR MTU Signaling Whether MTU signaling is supported LDP Instance Information Information about LDP instances Instance ID Sequence number of the LDP instance VPN Instance Name of the LDP enabled VPN instance For the default instance nothing is displayed I...

Page 1519: ...ll vpn instance vpn instance name interface type interface number verbose begin exclude include regular expression display mpls ldp interface all verbose begin exclude include regular expression View Any view Parameter all Displays all information vpn instance name Name of the VPN instance a case sensitive string of 1 to 31 characters interface type interface number Specifies an interface by its t...

Page 1520: ...rfaces Sysname display mpls ldp interface verbose LDP Interface Information in Public Network Interface Name Ethernet1 0 LDP ID 172 17 1 1 0 Transport Address 172 17 1 1 Entity Status Active Interface MTU 1500 Configured Hello Timer 15 Sec Negotiated Hello Timer 15 Sec Configured Keepalive Timer 45 Sec Label Advertisement Mode Downstream Unsolicited Hello Message Sent Rcvd 591 1033 Message Count I...

Page 1521: ...e specified string regular expression Regular expression a string of 1 to 80 characters No blank space is acceptable Description Use the display mpls ldp lsp command to display information about LSPs established by LDP Table 372 Description on the fields of the display mpls ldp interface command Field Description Interface Name Name of an LDP enabled interface LDP ID LDP identifier Transport Addre...

Page 1522: ...w Parameter vpn instance name Name of the VPN instance a case sensitive string of 1 to 31 characters peer id LSR ID of the peer verbose Displays detailed information Filters the output information begin Begins with the specified string include Includes the specified string exclude Excludes the specified string regular expression Regular expression a string of 1 to 80 characters No blank space is a...

Page 1523: ...ff Peer Keepalive Timer 45 Sec Recovery Timer Reconnect Timer Peer Label Advertisement Mode Downstream Unsolicited Peer Discovery Source Ethernet1 0 Peer LDP ID 168 1 1 1 0 Peer Max PDU Length 4096 Peer Transport Address 168 1 1 1 Peer Loop Detection Off Peer Path Vector Limit 0 Peer FT Flag Off Peer Keepalive Timer 45 Sec Recovery Timer Reconnect Timer Peer Label Advertisement Mode Downstream Uns...

Page 1524: ...te ip Example Display information about remote peer BJI LDP Remote Entity Information Remote Peer Name BJI Remote Peer IP 3 3 3 3 LDP ID 1 1 1 1 0 Transport Address 1 1 1 1 Configured Keepalive Timer 45 Sec Configured Hello Timer 45 Sec Table 375 Description on the fields of the display mpls ldp peer verbose command Field Description Peer LDP ID LDP identifier of the peer Peer Max PDU Length Maxim...

Page 1525: ...with the specified string include Includes the specified string exclude Excludes the specified string regular expression Regular expression a string of 1 to 80 characters No blank space is acceptable Table 376 Description on the fields of the display mpls ldp remote peer command Field Description LDP Remote Entity Information Information about the remote LDP peer Remote Peer Name Name of the remot...

Page 1526: ...nt Rcvd 6 6 Message Count Label Advertisement Mode Downstream Unsolicited Label Resource Status Peer Local Available Available Peer Discovery Mechanism Extended Session existed time 000 00 01 DDD HH MM LDP Extended Discovery Source Remote peer 1 Addresses received from peer Count 2 10 1 1 1 1 1 1 1 Peer LDP ID 2 2 2 2 0 Local LDP ID 3 3 3 3 0 TCP Connection 3 3 3 3 2 2 2 2 Session State Operationa...

Page 1527: ...sent by the current LSR during the session Y Number of Keepalive messages received by the current LSR during the session Negotiated Keep Alive Timer Negotiated Keepalive timer Label Advertisement Mode Label advertisement mode of the session Label Resource Status Peer Local Status of the label resource of the peer and that of the local label resource Session FT Flag Whether GR FT is enabled on the ...

Page 1528: ...s 60 Sec Graceful Restart Off FT Reconnect Timer 60 Sec MTU Signaling On Recovery Timer 60 Sec LDP Instance Information Instance ID 1 VPN Instance vpn1 Instance Status Active LSR ID 1 1 1 9 Hop Count Limit 32 Path Vector Limit 32 Loop Detection Off DU Re advertise Timer 30 Sec DU Re advertise Flag On DU Explicit Request Off Request Retry Flag On Label Distribution Mode Ordered Label Retention Mode...

Page 1529: ...LSPs rsvp te Displays information about CR LSPs established by RSVP TE static Displays information about static LSPs static cr Displays information about static CR LSPs egress Displays information about LSPs taking the current LSR as egress ingress Displays information about LSPs taking the current LSR as ingress transit Displays information about LSPs taking the current LSR as transit LSR verbose...

Page 1530: ...2 Nexthop 127 0 0 1 In Label 3 Out Label NULL In Interface Serial2 0 Out Interface LspIndex 10241 Token 0 LsrType Egress Outgoing token 0 Label Operation POP Table 379 Description on the fields of the display mpls lsp command Field Description FEC Forwarding equivalence class In Out Label Incoming outgoing label In Out IF Incoming outgoing interface Route Distinguisher RD Vrf Name Name of the VPN ...

Page 1531: ... number Token Token the pubic network LsrType Role of the LSR for the LSP Outgoing Token Token inter AS VPN Table 380 Description on the fields of the display mpls lsp verbose command Field Description Table 381 Description on the fields of the display mpls lsp statistics command Field Description Lsp Type LSP Type Available LSP types are static LSP static CR LSP LDP LSP CR LDP CR LSP RSVP CR LSP ...

Page 1532: ... 1 1024 1 Record s Found Display all NHLFE entries Sysname display mpls nhlfe Out Interface Token Oper Nexthop Deep Stack S2 0 2 PUSH 88 1 1 2 1 1024 1 Record s Found display mpls route state Syntax display mpls route state vpn instance vpn instance name dest addr mask length View Any view Parameter vpn instance name Name of the VPN instance a case sensitive string of 1 to 31 characters dest addr ...

Page 1533: ...ose View Any view Parameter lsp name Name for the LSP a string of 1 to 15 characters exclude Excludes the specified FEC include Includes the specified FEC dest addr Destination IP address of the FEC mask length Length of the mask for the destination IP address in the range 0 to 32 verbose Displays detailed information Description Use the display mpls static lsp command to display information about...

Page 1534: ...type interface number all View Any view Table 384 Description on the fields of the display mpls static lsp command Field Description Name Name of the LSP FEC Forwarding equivalence class I O Label Incoming outgoing label I O If Incoming outgoing interface Stat Status of the LSP Table 385 Description on the fields of the display mpls static lsp verbose command Field Description No Sequence number L...

Page 1535: ...ce all Statistics for Interface IN Incoming Interface Ethernet1 0 Octets 0 Packets 0 Errors 0 Disables 0 Failed Label Lookup 0 Start Time 2004 04 28 10 23 55 End Time 2004 04 28 10 23 55 Statistics for Interface OUT Outgoing Interface Ethernet1 0 Octets 0 Packets 0 Errors 0 Disables 0 Start Time 2004 04 28 10 23 55 End Time 2004 04 28 10 23 55 Statistics for Interface IN Incoming Interface Etherne...

Page 1536: ...ming interface Octets Number of bytes received by the interface Packets Number of packets received by the interface Errors Number of inbound packet processing errors on the interface Disables Number of MPLS disables in the incoming direction of the interface Failed Number of packet label lookup failures in the incoming direction of the interface Start Time Start time for statistics on packets rece...

Page 1537: ...00 00 00 00 00 End Time 0000 00 00 00 00 00 Statistics for Lsp IN LSP Name LSP Index DynamicLsp 9218 InSegment Octets 0 Packets 0 Errors 0 Down 0 Start Time 0000 00 00 00 00 00 End Time 0000 00 00 00 00 00 Statistics for Lsp OUT LSP Name LSP Index DynamicLsp 9218 OutSegment Octets 0 Packets 0 Errors 0 Down 0 Start Time 2006 05 20 15 52 30 End Time 2006 05 20 15 52 30 Table 387 Description on the f...

Page 1538: ...u readvertise command to restore the default By default label readvertisement is enabled in DU mode Example Enable DU mode label readvertisement for the public network LDP Sysname system view Sysname mpls ldp Sysname mpls ldp du readvertise Enable DU mode label readvertisement for LDP instance named vpn1 Sysname system view Sysname mpls ldp vpn instance vpn1 Sysname mpls ldp vpn instance vpn1 du r...

Page 1539: ...restart MPLS LDP view Syntax graceful restart undo graceful restart View MPLS LDP view Parameter None Description Use the graceful restart command to enable MPLS LDP Graceful Restart GR Use the undo graceful restart command to disable MPLS LDP GR By default MPLS LDP GR is disabled Note that enabling and disabling GR may remove all the sessions and instances and the LSPs based on the sessions which...

Page 1540: ...ness time in the range 60 to 300 seconds Description Use the graceful restart timer neighbor liveness command to set the LDP neighbor liveness time Use the undo graceful restart timer neighbor liveness command to restore the default By default the LDP neighbor liveness time is 120 seconds Note that Modifying the LDP neighbor liveness time removes the existing sessions and the LSPs based on the ses...

Page 1541: ...e reestablished LSPs based on the sessions will be removed and need to be reestablished Example Set the FT reconnect time to 100 seconds Sysname system view Sysname mpls ldp Sysname mpls ldp graceful restart timer reconnect 100 graceful restart timer recovery Syntax graceful restart timer recovery timer undo graceful restart timer recovery View MPLS LDP view Parameter timer LDP recovery time in th...

Page 1542: ...p count for loop detection Use the undo hops count command to restore the default By default the maximum hop count for loop detection is 32 Note that You must configure the command before enabling LDP on any interface The maximum hop count dictates how fast LDP detects a loop Adjust this argument as required Related command loop detect path vectors Example Set the maximum hop count for loop detect...

Page 1543: ...the penultimate hop an implicit null label n The type of label for the egress to distribute depends on whether the penultimate hop supports PHP You must use the reset mpls ldp command to reset LDP sessions for the configuration to take effect Example Specify the egress to distribute an explicit null label to the penultimate hop Sysname system view Sysname mpls Sysname mpls label advertise explicit...

Page 1544: ...servative Works in conservative mode keeping only label to FEC bindings that are from its next hops for the FECs liberal Works in liberal mode keeping any received label to FEC binding regardless of whether the binding is from its next hop for the FEC or not Description Use the label retention command to configure the label retention mode Use the undo label retention command to restore the default...

Page 1545: ...twork LDP Sysname system view Sysname mpls ldp Sysname mpls ldp loop detect Enable loop detection for LDP instance named vpn1 Sysname system view Sysname mpls ldp vpn instance vpn1 Sysname mpls ldp vpn instance vpn1 loop detect lsp trigger Syntax lsp trigger all ip prefix prefix name undo lsp trigger all ip prefix prefix name View MPLS view Parameter all Specifies all FECs that is all static route...

Page 1546: ...ist affects only static routes and IGP routes For information about IP address prefix list refer to IP Addressing Configuration Commands on page 781 Example Specify LDP to allow all static and IGP routes to trigger LSP establishment Sysname system view Sysname mpls Sysname mpls lsp trigger all lsr id Syntax lsr id lsr id undo lsr id View MPLS LDP view MPLS LDP VPN instance view Parameter lsr id LD...

Page 1547: ...tion and set the password which must be the same as that configured on the peer Use the undo md5 password command to disable LDP MD5 authentication By default LDP MD5 authentication is disabled Changing of the password will cause the session to be reestablished and all existing LSPs related to the session to be deleted This command takes effect only when MPLS LDP is enabled in the corresponding vi...

Page 1548: ...ility You need to enable MPLS globally before enabling it for an interface You need to enter MPLS view to configure other MPLS commands Related command mpls lsr id Example Enable MPLS for the current node and enter MPLS view Sysname System view Sysname mpls lsr id 1 1 1 1 Sysname mpls Sysname mpls quit Enable MPLS for interface Ethernet 1 0 Sysname System view Sysname interface ethernet 1 0 Sysnam...

Page 1549: ...name mpls ldp Enable LDP for VPN instance vpn1 Sysname System view Sysname mpls ldp vpn instance vpn1 Sysname mpls ldp vpn instance vpn1 mpls ldp interface view Syntax mpls ldp undo mpls ldp View Interface view Parameter None Description Use the mpls ldp command to enable LDP on an interface Use the undo mpls ldp command to disable LDP on an interface By default LDP is disabled on an interface Aft...

Page 1550: ...sname Ethernet1 0 mpls ldp mpls ldp advertisement Syntax mpls ldp advertisement dod du undo mpls ldp advertisement View Interface view Parameter dod Works in downstream on demand DoD mode advertising a label to FEC binding in response to the explicit request of an upstream LSR du Works in downstream unsolicited DU mode advertising label to FEC bindings to LSRs without explicitly requesting binding...

Page 1551: ...p remote bji mpls ldp timer hello hold Syntax mpls ldp timer hello hold value undo mpls ldp timer hello hold View Interface view MPLS LDP remote peer view Parameter value Length of time for the Hello timer in the range 1 to 65 535 seconds Description Use the mpls ldp timer hello hold command to set the Hello timers Use the undo mpls ldp timer hello hold command to restore the defaults In interface...

Page 1552: ...nds Description Use the mpls ldp timer keepalive hold command to set the keepalive timers Use the undo mpls ldp timer keepalive hold command to restore the defaults In interface view you configure the link Keepalive timer in MPLS LDP remote peer view you configure the targeted Keepalive timer By default both the link Keepalive timer and targeted Keepalive timer are set to 45 seconds c CAUTION If m...

Page 1553: ... transport address command to configure the LDP transport addresses Use the undo mpls ldp transport address command to restore the defaults By default the transport addresses are both the MPLS LSR ID In interface view you configure the link Hello transport address in MPLS LDP remote peer view you configure the targeted Hello transport address Example On interface Ethernet 1 0 configure the link He...

Page 1554: ...on the LSR as the ID Related command display mpls interface Example Set the LSR ID to 3 3 3 3 Sysname system view Sysname mpls lsr id 3 3 3 3 mtu signalling Syntax mtu signalling undo mtu signalling View MPLS LDP view Parameter None Description Use the mtu signalling command to enable MTU signaling Use the undo mtu signalling command to disable MTU signaling By default MTU signaling is enabled Ena...

Page 1555: ... LDP Sysname system view Sysname mpls ldp Sysname mpls ldp path vectors 3 Set the path vector maximum hop count to 3 for LDP instance named vpn1 Sysname system view Sysname mpls ldp vpn instance vpn1 Sysname mpls ldp vpn instance vpn1 path vectors 3 ping lsp Syntax ping lsp a source ip c count exp exp value h ttl value m wait time r reply mode s packet size t time out v ipv4 dest addr mask length ...

Page 1556: ...d the mask The mask length argument ranges from 0 to 32 destination ip addr header Specifies the IP header destination address for the MPLS echo request message which can be any address on segment 127 0 0 0 8 that is any local loopback address te interface type interface number Specifies a tunnel interface by its type and number Description Use the ping lsp command to check the validity and reacha...

Page 1557: ...ldp remote bji remote ip 3 3 3 3 reset mpls fast forwarding cache Syntax reset mpls fast forwarding cache View User view Parameter None Description Use the reset mpls fast forwarding cache command to clear information in the MPLS fast forwarding cache Example Clear information in the MPLS fast forwarding cache Sysname reset mpls fast forwarding cache reset mpls ldp Syntax reset mpls ldp all vpn in...

Page 1558: ... 2 2 2 2 24 Reset the sessions with a specified peer Sysname reset mpls ldp peer 2 2 2 9 reset mpls statistics interface Syntax reset mpls statistics interface interface type interface number all View User view Parameter interface type interface number Specifies an interface by its type and number all Specifies all interfaces Description Use the reset mpls statistics interface command to clear MPL...

Page 1559: ...nmp agent trap enable mpls View System view Parameter None Description Use the snmp agent trap enable mpls command to enable the MPLS trap function Use the undo snmp agent trap enable command to disable the function By default the function is disabled Example Enable the MPLS trap function Sysname system view Sysname snmp agent trap enable mpls static lsp egress Syntax static lsp egress lsp name in...

Page 1560: ...e type interface number out label out label undo static lsp ingress lsp name View System view Parameter lsp name Name for the LSP a string of 1 to 15 characters dest addr Destination IP address of the LSP mask Mask of the destination IP address mask length Length of the mask for the destination address in the range 0 to 32 next hop addr Address of the next hop interface type interface number Speci...

Page 1561: ...string of 1 to 15 characters incoming interface interface type interface number Specifies an incoming interface by its type and number in label Incoming label value in the range 16 to 1023 next hop addr Address of the next hop outgoing interface interface type interface number Specifies an outgoing interface by its type and number out label Outgoing label value in the range 16 to 1023 Description ...

Page 1562: ...interval that is the interval for collecting statistics Use the undo statistics interval command to restore the default By default the interval is 0 Related command display mpls statistics interface display mpls statistics lsp Example Set the statistics interval to 30 seconds Sysname system view Sysname mpls Sysname mpls statistics interval 30 tracert lsp Syntax tracert lsp a source ip exp exp val...

Page 1563: ...to locate an MPLS LSP error Example Locate an error along the LSP to 3 3 3 9 on host 1 1 1 1 Sysname tracert lsp ipv4 3 3 3 9 32 LSP Trace Route FEC LDP IPV4 PREFIX 3 3 3 9 32 press CTRL_C to break TTL Replier Time Type Downstream 0 Ingress 10 4 5 1 1025 1 10 4 5 1 1 Transit 100 3 4 1 1024 2 100 1 4 2 63 Transit 100 1 2 1 3 3 100 1 2 1 129 Egress ttl expiration Syntax ttl expiration pop undo ttl e...

Page 1564: ...LS view Parameter public Enables MPLS IP TTL propagation for public network packets vpn Enables MPLS IP TTL propagation for VPN packets Description Use the ttl propagate command to enable MPLS IP TTL propagation for either public network packets or VPN packets Use the undo ttl propagate command to disable the function By default MPLS IP TTL propagation is enabled for only public network packets Re...

Page 1565: ...cates that the next hop is a loose node which is not necessarily directly connected to the specified node strict Indicates that the next hop is a strict node which must be directly connected to the specified node exclude Excludes the node identified by the ip address1 argument from the explicit path Excluded addresses are not considered in path calculation after Inserts the node identified by the ...

Page 1566: ... explicit path pathname View Any view Parameter pathname Specifies a path name a string of 1 to 31 characters Description Use the display explicit path command to display information about an explicit path If no path name is specified information about all explicit paths is displayed Example Display information about all explicit paths Sysname display explicit path Path Name ErHop Path1 Path Statu...

Page 1567: ...S process ID in the range 1 to 65535 vpn instance vpn instance name Specifies a VPN instance The vpn instance name argument is a string of 1 to 31 characters For the default VPN instance you do not need to configure this keyword and argument combination Description Use the display isis traffic eng advertisements command to display the latest TE information advertised by IS IS TE If no IS IS level ...

Page 1568: ...c BW Unresrv 7 0 Bytes sec TE Cost 10 Bandwidth Constraint Model Russian Doll Bandwidth Constraints BC 0 6250 Bytes sec BC 1 0 Bytes sec Local Overbooking Multiplier LOM 0 100 LOM 1 100 NBR 0000 0000 0004 00 COST 10 Admin Group 0x00000000 Interface IP Address 30 1 1 1 Peer IP Address 30 1 1 2 Physical BW 12500 Bytes sec Reservable BW 6250 Bytes sec Unreserved BW for Class Type 0 BW Unresrv 0 6250 ...

Page 1569: ...ad bit OL NLPID Network protocol type AREA ADDR IS IS area address INTF ADDR Interface address Router ID Router ID NBR Neighbor COST Cost Admin Group Link administrative group attribute Interface IP Address Interface IP address Physical BW Physical bandwidth Reservable BW Reservable bandwidth BW Unresrv 0 7 Available subpool bandwidths at eight levels TE Cost TE cost Bandwidth Constraint Model Ban...

Page 1570: ... 0000 0000 0003 00 0000 0000 0004 01 Type MULACC LinkID 30 1 1 2 0000 0000 0004 00 0000 0000 0004 01 Type MULACC LinkID 30 1 1 2 Total Number of TE Links in Level 2 Area 6 Num Active 6 display isis traffic eng network Syntax display isis traffic eng network level 1 level 1 2 level 2 process id vpn instance vpn instance name View Any view Parameter level 1 Displays the TE information of IS IS Level...

Page 1571: ...111 1111 1111 00 Link State 1 RouterId 89 2 2 2 Nbr 1111 1111 1113 00 Link State 1 Total Number of TE Networks in Level 2 Area 1 Num Active 1 display isis traffic eng statistics Syntax display isis traffic eng statistics process id vpn instance vpn instance name View Any view Parameter process id IS IS process ID in the range 1 to 65535 Table 391 Description on the fields of the display isis traff...

Page 1572: ...ic eng sub tlvs Syntax display isis traffic eng sub tlvs process id vpn instance vpn instance name View Any view Parameter process id IS IS process ID in the range 1 to 65535 vpn instance vpn instance name Specifies a VPN instance The vpn instance name argument is a string of 1 to 31 characters For the default VPN instance you do not need to configure this keyword and argument combination Descript...

Page 1573: ... Displays information that includes a defined regular expression exclude Displays information that excludes a defined regular expression regular expression Regular expression a string of 1 to 80 characters without spaces Description Use the display mpls rsvp te interface command to display RSVP TE configuration If the interface is not specified the global RSVP TE configuration is displayed Example...

Page 1574: ...d reservation message refresh interval in seconds Path and Resv message refresh retries count Number of Path and Resv message retransmissions Blockade Multiplier Blockade multiplier Graceful Restart State of GR enabled or disabled Restart Time GR restart interval in seconds Recovery Time GR recovery interval in seconds Table 395 Description on the fields of the display mpls rsvp te interface comma...

Page 1575: ...obally or for an interface Example Display RSVP TE information for interface Ethernet 1 0 Sysname display mpls rsvp te established interface ethernet 1 0 Interface Ethernet1 0 Token Bucket Rate 0 00 Peak Data Rate 0 00 Tunnel Dest 2 2 2 2 Ingress LSR ID 3 3 3 3 Local LSP ID 4 Session Tunnel ID 4 Next Hop Addr 80 4 1 1 Upstream Label 1024 Downstream Label 3 Table 396 Description on the fields of th...

Page 1576: ...ces Example Display information about RSVP TE neighbors on all interfaces Sysname display mpls rsvp te peer Interface Ethernet1 0 Neighbor Addr 80 4 1 1 SrcInstance 841 NbrSrcInstance 928 PSB Count 0 RSB Count 1 Hello Type Sent ACK Neighbor Hello Extension ENABLE SRefresh Enable NO Reliability Enable YES Graceful Restart State Ready Restart Time 200 sec Recovery Time 150 sec Interface Ethernet1 1 ...

Page 1577: ...ysname display mpls rsvp te psb content 19 19 19 19 1 0 29 29 29 29 The PSB Content Tunnel Dest 29 29 29 29 Session Tunnel ID 0 Tunnel ExtID 19 19 19 19 Ingress LSR ID 19 19 19 19 Local LSP ID 1 Previous Hop 101 101 101 1 Next Hop Incoming Outgoing Interface Ethernet1 0 RSB Count Number of reservation state blocks Hello Type Sent Type of hellos sent to the neighbor REQ ACK or NONE Neighbor Hello E...

Page 1578: ...ress in the format of X X X X Previous Hop Previous hop address in the format of X X X X In Label Incoming label Out Label Outgoing label Send message ID Instance of sent Message ID Resv Message ID Instance of received Message ID Setup Prio Session setup priority HoldPrio Session hold priority Session Flag Session flag local protection policy label SE style ERO Information Information about explic...

Page 1579: ...nformation about RSVP TE requests on all interfaces Sysname display mpls rsvp te request Interface Ethernet1 0 Tunnel Dest 2 2 2 2 Ingress LSR ID 3 3 3 3 Local LSP ID 4 Session Tunnel ID 4 NextHopAddr 80 4 1 1 SessionFlag SE Style desired Token bucket rate 0 00 Token bucket size 1000 00 Out Interface Ethernet1 1 Path message Path message sent from the interface to the next hop at X X X X Resource ...

Page 1580: ...rfaces Example Display information about RSVP TE reservations on interface Ethernet 1 0 Sysname display mpls rsvp te reservation interface ethernet 1 0 Interface Ethernet1 0 Tunnel Dest 29 29 29 29 Ingress LSR ID 19 19 19 19 LSP ID 1 Tunnel ID 1 Upstream Label Token bucket rate 0 00 Token bucket size 0 00 Display information about RSVP TE reservations on all interfaces Sysname display mpls rsvp te...

Page 1581: ... Displays information that excludes a defined regular expression regular expression Regular expression a string of 1 to 80 characters without spaces Description Use the display mpls rsvp te rsb content command to display information about RSVP TE reservation state blocks RSBs Example Display information about RSVP TE RSBs Sysname display mpls rsvp te rsb content 19 19 19 19 1 0 29 29 29 29 101 1 0...

Page 1582: ...SR ID in the format of X X X X Next Hop Next hop address in the format of X X X X Reservation Style Reservation style SE or FF Reservation Interface Reservation interface name Reserve Incoming Interface Incoming interface where the Resv message was received Message ID Message ID of the Refresh Reduction message Filter Spec Information Filter specifications The filter number Number of filters Ingre...

Page 1583: ...ation on interface Ethernet 1 0 Sysname display mpls rsvp te sender interface ethernet 1 0 Interface Ethernet1 0 Tunnel Dest 29 29 29 29 Ingress LSR ID 19 19 19 19 LSP ID 1 Session Tunnel ID 1 Session Name Tunnel0 Previous Hop Address 101 101 101 1 Token bucket rate 0 0 Token bucket size 0 00 Display the RSVP TE sender message information on all interfaces Sysname display mpls rsvp te sender Inter...

Page 1584: ...play global RSVP TE statistics Sysname display mpls rsvp te statistics global LSR ID 1 1 1 1 PSB Count 1 RSB Count 1 RFSB Count 0 TCSB Count 1 LSP Count 1 Total Statistics Information PSB CleanupTimeOutCounter 0 RSB CleanupTimeOutCounter 0 SendPacketCounter 55 RecPacketCounter 54 SendPathCounter 5 RecPathCounter 0 SendResvCounter 0 RecResvCounter 4 SendResvConfCounter 0 RecResvConfCounter 0 SendHe...

Page 1585: ...TearCounter 0 RecResvTearCounter 0 SendSrefreshCounter 0 RecSrefreshCounter 0 SendAckMsgCounter 0 RecAckMsgCounter 0 SendErrMsgCounter 0 RecErrMsgCounter 0 RecReqFaultCounter 0 Table 403 Description on the fields of the display mpls rsvp te statistics command Field Description LSR ID LSR ID PSB Count Number of PSBs RSB Count Number of RSBs RFSB Count Number of RFSBs TCSB Count Number of TCSBs LSP ...

Page 1586: ...e display mpls static cr lsp total statics cr lsp 1 RecAckCounter Number of received Ack messages SendPathErrCounter Number of transmitted PathErr messages RecPathErrCounter Number of received PathErr messages SendResvErrCounter Number of transmitted ResvErr messages RecResvErrCounter Number of received ResvErr messages SendPathTearCounter Number of transmitted PathTear messages RecPathTearCounter...

Page 1587: ...ranges from 0 to 4294967295 for IS IS it takes the value of 1 or 2 Table 404 Description on the fields of the display mpls static cr lsp command Field Description Name Static CR LSP name FEC Forwarding equivalence class FEC associated with the destination IP address of LSP I O Label Incoming outgoing label I O If Incoming outgoing interface Stat Current state of the CR LSP Table 405 Description on...

Page 1588: ...b command to display information about CSPF based TEDB by specified criteria Example Display TEDB information in network LSAs Sysname display mpls te cspf tedb network lsa Maximum Network LSA Supported 500 Current Total Network LSA Number 7 Id DR MPLS LSR Id DR Address IGP Process Id Area Neighbor 1 8 1 1 2 3 0 0 2 OSPF 100 0 1 1 1 1 2 1 1 1 8 1 1 2 2 2 1 1 1 3 0 0 3 OSPF 100 0 2 1 1 1 3 1 1 1 2 1...

Page 1589: ...ess IGP Process Id Area Neighbor 1 3 3 3 3 20 1 1 2 OSPF 100 1 2 2 2 2 3 3 3 3 2 3 3 3 3 20 1 1 2 ISIS 100 Level 1 3 3 3 3 2 2 2 2 Process Id IGP process ID Area Area to which the router belongs Neighbor Neighbor router ID Table 407 Description on the fields of the display mpls te cspf tedb all command Field Description ID Number MPLS LSR Id MPLS LSR ID IGP Interior gateway protocol OSPF or IS IS ...

Page 1590: ...erved for Class type 1 0 10 kbps 1 10 kbps 2 10 kbps 3 10 kbps 4 10 kbps 5 10 kbps 6 10 kbps 7 10 kbps MPLS LSR Id 1 1 1 1 IGP Type ISIS Process Id 100 MPLS TE Link Count 2 Link 1 Interface IP Address 2 0 0 33 2 0 0 35 2 0 0 36 Neighbor IP Address 2 0 0 2 2 0 0 42 2 0 0 43 2 0 0 44 2 0 0 45 2 0 0 46 2 0 0 47 2 0 0 32 2 0 0 33 Neighbor MPLS LSR Id 1 1 1 2 IGP Area Level 0 Link Type point to point L...

Page 1591: ... for Class type 0 0 0 kbps 1 0 kbps 2 0 kbps 3 0 kbps 4 0 kbps 5 0 kbps Table 409 Description on the fields of the display mpls te cspf tedb node command Field Description MPLS LSR Id MPLS LSR ID of node IGP_Type IGP type Process Id IGP process ID MPLS TE Link Count Number of MPLS TE links Link x Specific link with the bracketed x indicating the link number Interface IP Address Interface IP addres...

Page 1592: ... links of all interfaces Sysname display mpls te link administration admission control LspID In Out IF S H Prio CT BW kbps Table 410 Description on the fields of display mpls te cspf tedb interface Field Description MPLS LSR Id MPLS LSR ID of node IGP_Type IGP type Process Id IGP process ID MPLS TE Link Count Number of MPLS TE links Link x Specific link with the bracketed x indicating the link num...

Page 1593: ...ls te link administration bandwidth allocation Link ID Ethernet1 0 Physical Bandwidth Type0 0 kbits sec Physical Bandwidth Type1 0 kbits sec Reservable Bandwidth Type0 0 kbits sec Reservable Bandwidth Type1 0 kbits sec Downstream LSP Count 0 UpStream LSP Count 0 Downstream Bandwidth 0 kbits sec Upstream Bandwidth 0 kbits sec IPUpdown Link Status UP PhysicalUpdown Link Status UP TE CLASS CLASS TYPE...

Page 1594: ...it Displays tunnels created taking current device as a transit node egress Displays tunnels created taking current device as the egress name name Displays the tunnel with a particular name This could be a string of 1 to 63 characters configured as interface description or the interface name if no interface description is configured The tunnel name should be signaled to all hops Table 412 Descripti...

Page 1595: ...isplay information about MPLS TE tunnels The output may vary by signaling protocol Sysname display mpls te tunnel LSP Id Destination In Out If Name 1 1 1 9 1024 3 3 3 9 Eth1 0 Tunnel0 1 1 1 9 2048 3 3 3 9 Eth1 1 Tunnel0 Display detailed information about MPLS TE tunnels Sysname display mpls te tunnel verbose No 1 LSP Id 1 1 1 9 1024 Tunnel Name Tunnel0 Destination 3 3 3 9 In Interface Out Interfac...

Page 1596: ...p ID 1 1 1 9 10 Hop information Hop 0 192 1 1 1 Hop 1 12 1 1 2 Hop 2 10 202 2 2 Table 414 Description on the fields of the display mpls te tunnel verbose command Field Description No Number LSP Id LSP ID of tunnel Tunnel Name Tunnel name configured on the ingress node Destination Destination router ID In Interface Incoming interface Out Interface Outgoing interface Tunnel BW Tunnel bandwidth Class...

Page 1597: ...ls te tunnel interface command to display information about MPLS TE tunnel interfaces on this node Example Display information about MPLS TE tunnel interfaces on this node Sysname display mpls te tunnel interface Tunnel Name Tunnel0 Table 415 Description on the fields of the display mpls te tunnel path command Field Description Tunnel Interface Name Tunnel0 Tunnel interface name Tunnel0 in this sa...

Page 1598: ...BW Interfaces Protected VPN Bind Type NONE VPN Bind Value Car Policy Disabled Table 417 Description on the fields of display mpls te tunnel interface command Field Description Tunnel Name Tunnel name Tunnel Desc Tunnel description Tunnel State Desc Tunnel state description LSP ID LSP ID Session ID Session ID Admin State Administrative state Oper State Operation state Ingress LSR ID Ingress LSR ID ...

Page 1599: ... LSA s of the database BackUpBW Flag Backup bandwidth flag BackUpBW Type Backup bandwidth type BackUpBW Backup bandwidth Route Pinning Route pinning function Retry Limit Maximum number of setup retries Retry Interval Retry interval Reopt State of the reoptimization function Reopt Freq Reoptimization interval Back Up Type Backup path type Back Up LSPID Backup LSP ID Auto BW State of the automatic b...

Page 1600: ...nreserved BW 4 0 bytes sec Unreserved BW 5 0 bytes sec Unreserved BW 6 0 bytes sec Unreserved BW 7 0 bytes sec Bandwidth Constraints BC 0 bytes sec BC 1 bytes sec Local OverBooking Multipliers LOM 0 1 LOM 1 1 Table 418 Description on the fields of the display ospf mpls te command Field Description Area ID TE enabled OSPF area ID LSA Type LSA type which must be Opd Area carried in the Opaque LSA he...

Page 1601: ...rface Address Remote interface address TE Metric TE metric Maximum bandwidth Maximum bandwidth Maximum reservable bandwidth Maximum reservable bandwidth Admin Group Administrative group attribute Global Pool Global pool Unreserved BW 0 to 7 Available bandwidths at the eight levels in the global pool Sub Pool Subpool only significant for DS TE LSAs Unreserved BW 0 to 7 Available bandwidths at the e...

Page 1602: ...isplay tunnel info statistics Tunnel Allocation Method GLOBAL Avail Tunnel ID Value 262144 Total Tunnel ID Allocated 1 LSP 1 GRE 0 CRLSP 0 LOCAL IFNET 0 MPLS LOCAL IFNET 0 Type Approach to automatic route advertisement IGP shortcut or forwarding adjacency Neighbor ID Remote neighbor ID Cost Cost State State up or down Neighbor Ip Address Neighbor IP address Cost Type Cost type Hold time Hold time ...

Page 1603: ...PF Sysname system view Sysname ospf 100 Sysname ospf 100 enable traffic adjustment Enable IGP shortcut when the IGP protocol is IS IS Sysname system view Sysname isis 1 Sysname isis 1 enable traffic adjustment enable traffic adjustment advertise Syntax enable traffic adjustment advertise undo enable traffic adjustment advertise View OSPF view IS IS view Parameter None LSP Number of LSP tunnels GRE...

Page 1604: ...ent advertise Enable forwarding adjacency when the IGP protocol is IS IS Sysname system view Sysname isis 1 Sysname isis 1 enable traffic adjustment advertise explicit path Syntax explicit path pathname disable enable undo explicit path pathname View System view Parameter pathname Name of an explicit path for a tunnel a string of 1 to 31 characters disable Disables explicit routing enable Enables ...

Page 1605: ...ss specified by the ip address1 argument in the explicit path The specified IP addresses could be link IP addresses or router IDs of nodes include Includes the IP address specified by the ip address2 argument on the explicit path loose Indicates that the next hop is a loose node which is not necessarily directly connected to the specified node strict Indicates that the next hop is a strict node wh...

Page 1606: ...mpls mpls rsvp te Enable RSVP TE on interface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 mpls rsvp te mpls rsvp te authentication Syntax mpls rsvp te authentication cipher plain auth key undo mpls rsvp te authentication View Interface view Parameter cipher Indicates that the specified authentication key is a cipher text key plain Indicates that the specifie...

Page 1607: ... Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 mpls rsvp te authentication plain partner123 mpls rsvp te blockade multiplier Syntax mpls rsvp te blockade multiplier number undo mpls rsvp te blockade multiplier View MPLS view Parameter number Blockade multiplier in the range 3 to 255 Description Use the mpls rsvp te blockade multiplier command to configure the blockade mult...

Page 1608: ...aceful restart View MPLS view Parameters None Description Use the mpls rsvp te graceful restart command to enable the GR capability for MPLS RSVP TE Use the undo mpls rsvp te graceful restart command to disable MPLS RSVP TE GR By default GR capability is disabled for MPLS RSVP TE Note that you need to enable RSVP TE hello extension before enabling RSVP TE GR Examples Enable MPLS RSVP TE GR Sysname...

Page 1609: ...mpls rsvp te hello mpls rsvp te hello lost Syntax mpls rsvp te hello lost times undo mpls rsvp te hello lost View MPLS view Parameter times Maximum number of consecutive hello losses before an RSVP neighbor is considered dead in the range 3 to 10 Description Use the mpls rsvp te hello lost command to configure the maximum number of consecutive hello losses before an RSVP neighbor is considered dea...

Page 1610: ...multiplier command to configure the keep multiplier for the path state block PSB and reservation state block RSB Use the undo mpls rsvp te keep multiplier command to restore default The default keep multiplier is 3 The following equation determines the timeout time of the state stored in PSB and RSB Expired_Time keep multiplier 0 5 1 5 refresh time Where refresh time is the refresh interval for re...

Page 1611: ...y mpls rsvp te resvconfirm Syntax mpls rsvp te resvconfirm undo mpls rsvp te resvconfirm View MPLS view Parameter None Description Use the mpls rsvp te resvconfirm command to enable reservation confirmation on current node Use the undo mpls rsvp te resvconfirm command to disable reservation confirmation By default resource reservation confirmation is disabled After the mpls rsvp te resvconfirm com...

Page 1612: ...Syntax mpls rsvp te timer graceful restart recovery recovery time undo mpls rsvp te timer graceful restart recovery View MPLS view Parameters recovery time RSVP TE GR recovery interval in seconds in the range 60 to 300 Description Use the mpls rsvp te timer graceful restart recovery command to set the RSVP TE GR recovery interval Use the undo mpls rsvp te timer graceful restart recovery command to...

Page 1613: ...hello Syntax mpls rsvp te timer hello timevalue undo mpls rsvp te timer hello View MPLS view Parameter timevalue Hello interval in the range 1 to 60 seconds Description Use the mpls rsvp te timer hello command to configure the hello interval Use the undo mpls rsvp te timer hello command to restore the default The default hello interval is three seconds Before configuring this command enable the he...

Page 1614: ... range 1 to 10 The default is 1 retransmit value retrans timer value Initial retransmission interval in the range 500 to 3000 milliseconds The default is 500 milliseconds Description Use the mpls rsvp te timer retransmission command to enable RSVP message retransmission Use the undo mpls rsvp te timer retransmission command to restore the default By default RSVP message retransmission is disabled ...

Page 1615: ...mand enables MPLS TE globally and its undo form disables MPLS TE and removes all CR LSPs When performed in interface view the mpls te command enables MPLS TE on an interface and its undo form disables MPLS TE and removes all CR LSPs on the interface Before you can enable MPLS TE on an interface enable MPLS TE globally first c CAUTION After changing the MTU of an interface where MPLS TE is enabled ...

Page 1616: ... Description Use the mpls te affinity property command to configure the link affinity attribute of the tunnel Use the undo mpls te affinity property command to restore the default The default affinity attribute of the tunnel is 0x00000000 and the mask is 0x00000000 The affinity attribute of an MPLS TE tunnel identifies the properties of the links that the tunnel can use Related command mpls te lin...

Page 1617: ...matic bandwidth adjustment and output rate collection are disabled If automatic bandwidth adjustment is enabled bandwidth tuning happens every 24 hours without upper and lower bandwidth limits n Support for this command varies by default Automatic bandwidth adjustment cannot be used together with these commands mpls te reoptimization mpls te route pinning mpls te backup and mpls te resv style ff R...

Page 1618: ...dwidth View Tunnel interface view Parameter bandwidth Total bandwidth that the bypass tunnel also called the protection tunnel can protect in the range 1 to 32000000 kbps bc0 Indicates that only the LSPs using BC0 bandwidth global bandwidth can use the bypass tunnel bc1 Indicates that only the LSPs using BC1 bandwidth subpool bandwidth can use the bypass tunnel If neither BC0 nor BC1 is specified ...

Page 1619: ...m BC0 bc1 Obtains bandwidth from BC1 bandwidth Bandwidth needed by the MPLS TE tunnel in the range 1 to 32000000 kbps Description Use the mpls te bandwidth command to assign bandwidth to the MPLS TE tunnel Use the undo mpls te bandwidth command to restore the default By default no bandwidth is assigned to MPLS TE tunnels If neither the bc1 keyword nor the bc0 keyword is specified bandwidth is assi...

Page 1620: ...ources are increasing and decreasing Use the undo mpls te bandwidth change thresholds command to restore the default The default IGP flooding thresholds in both up and down directions are 10 Example On interface Ethernet 1 0 configure IGP to flood when the percentage of available bandwidth decrease reaches 100 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 mpls te bandwidth...

Page 1621: ... Example Enable CSPF Sysname system view Sysname mpls Sysname mpls mpls te cspf mpls te cspf timer failed link Syntax mpls te cspf timer failed link timer interval undo mpls te cspf timer failed link View MPLS view Parameter timer interval Failed link timer setting in the range 0 to 300 seconds The default is 10 seconds Description Use the mpls te cspf timer failed link command to configure the fa...

Page 1622: ...mand is not supported when the signaling protocol is CR LDP Fast reroute cannot be used together with the mpls te resv style ff command Example Reroute MPLS TE tunnel 0 to an available bypass tunnel in case the protected link or node that it traverses fails Sysname system view Sysname interface tunnel 0 Sysname Tunnel0 mpls te fast reroute mpls te fast reroute bypass tunnel Syntax mpls te fast rer...

Page 1623: ...terface ethernet 1 0 Sysname Ethernet1 0 mpls te fast reroute bypass tunnel tunnel 0 mpls te igp advertise Syntax mpls te igp advertise hold time value undo mpls te igp advertise View Tunnel interface view Parameter hold time value Sets the delay that IGP waits to notify IGP neighbors of the down event of the TE tunnel It ranges from 0 to 4294967295 milliseconds The default is 0 milliseconds Descr...

Page 1624: ...sign a metric to the MPLS TE tunnel Use the undo mpls te igp metric command to restore the default By default TE tunnels take their IGP metrics Example Assign MPLS TE tunnel 0 a relative metric of 1 for enhanced SPF calculation in IGP Sysname system view Sysname interface tunnel 0 Sysname Tunnel0 mpls te igp metric relative 1 mpls te igp shortcut Syntax mpls te igp shortcut isis ospf undo mpls te ...

Page 1625: ...ttribute bits with the corresponding link affinity attribute bits of an MPLS TE tunnel MPLS TE identifies the properties of the links that the MPLS TE tunnel can use Description Use the mpls te link administrative group command to configure the link administrative group attribute Use the undo mpls te link administrative group command to restore the default The default link administrative group att...

Page 1626: ... Parameter bandwidth value Maximum link bandwidth available for RSVP traffic in the range 1 to 32000000 kbps bc1 bc1 bandwidth Reservable bandwidth in kbps on the interface in the range 1 to bandwidth value Description Use the mpls te max link bandwidth bandwidth value command to configure maximum link bandwidth Use the undo mpls te max link bandwidth command to remove the configuration The config...

Page 1627: ...thernet 1 0 set maximum reservable bandwidth for MPLS TE to 1158 kbps and the reservable BC1 bandwidth to 200 kbps Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 mpls te max reservable bandwidth 1158 bc1 200 mpls te metric Syntax mpls te metric value undo mpls te metric View Interface view Parameter value TE metric of the link in the range 0 to 4294967295 Description Use th...

Page 1628: ...h path1 mpls te path metric type Syntax mpls te path metric type igp te undo mpls te path metric type View MPLS view tunnel interface view Parameter igp Uses IGP metric for tunnel routing te Uses TE metric for tunnel routing Description Use the mpls te path metric type command in MPLS view to specify the link metric type used for routing tunnels not configured with link metric type Use the mpls te...

Page 1629: ...ld priority Holding priority of the tunnel in the range 0 to 7 A lower numerical number indicates a higher priority If not configured it is the same as the setup priority Description Use the mpls te priority command to assign a setup priority and holding priority to the MPLS TE tunnel Use the undo mpls te priority command to restore the default By default both setup and holding priorities of TE tu...

Page 1630: ...nel 0 Sysname system view Sysname interface tunnel 0 Sysname Tunnel0 mpls te record route mpls te reoptimization user view Syntax mpls te reoptimization View User view Parameter None Description Use the mpls te reoptimization command to start reoptimizing all reoptimization enabled TE tunnels Example Start reoptimizing all reoptimization enabled TE tunnels Sysname mpls te reoptimization mpls te re...

Page 1631: ...tax mpls te resv style ff se undo mpls te resv style View Tunnel interface view Parameter ff Sets the resource reservation style to fixed filter FF se Sets the resource reservation style to shared explicit SE Description Use the mpls te resv style command to set the resource reservation style for the MPLS TE tunnel Use the undo mpls te resv style command to restore the default The default resource...

Page 1632: ...ated command mpls te timer retry Example Set the maximum number of tunnel setup retries to 10 Sysname system view Sysname interface tunnel 0 Sysname Tunnel0 mpls te retry 10 mpls te route pinning Syntax mpls te route pinning undo mpls te route pinning View Tunnel interface view Parameter None Description Use the mpls te route pinning command to enable route pinning Use the undo mpls te route pinni...

Page 1633: ... the tunnel to use Example Adopt CR LDP as the signaling protocol for establishing MPLS TE tunnel 0 Sysname system view Sysname interface tunnel 0 Sysname Tunnel0 mpls te signal protocol crldp mpls te tie breaking Syntax mpls te tie breaking least fill most fill random undo mpls te tie breaking View MPLS view tunnel interface view Parameter least fill Selects a path with the least bandwidth usage ...

Page 1634: ...ls configured with automatic bandwidth adjustment in the range 1 to 604800 seconds If it is not configured the default of 300 seconds applies You are recommended to use the default in normal cases Description Use the mpls te timer auto bandwidth command to enable automatic bandwidth adjustment and set the interval for output rate sampling for tunnels governed by automatic bandwidth adjustment Use ...

Page 1635: ...g timer Use the undo mpls te timer fast reroute command to disable FRP polling The default FRR polling timer is 300 seconds n This command is not supported when the signaling protocol is CR LDP Example Set the FRR polling timer to 120 seconds or 2 minutes Sysname system view Sysname mpls Sysname mpls mpls te timer fast reroute 120 mpls te timer retry Syntax mpls te timer retry second undo mpls te ...

Page 1636: ...tunnel and then reconfigure the tunnel giving it a new tunnel ID Examples Configure the tunnel ID as 100 Sysname system view Sysname interface tunnel 1 0 0 Sysname Tunnel1 0 0 mpls te tunnel id 100 mpls te vpn binding Syntax mpls te vpn binding acl acl number vpn instance vpn instance name undo mpls te vpn binding View Tunnel interface view Parameter acl number Referenced ACL number in the range 3...

Page 1637: ...SPF area view Parameter enable Enables the MPLS TE capability in the OSPF area Description Use the mpls te enable command to enable the MPLS TE capability in current OSPF area Use the undo mpls te command to disable the MPLS TE capability in current OSPF area By default the MPLS TE capability is disabled in OSPF areas For an OSPF area to support the MPLS TE capability its OSPF process must be avai...

Page 1638: ... a node on the explicit path By performing this command multiple times you may define all nodes that the explicit path must traverse in sequence By default next hops are strict hops on an explicit path Related command delete hop Example Exclude IP address 10 0 0 125 from the MPLS TE explicit path p1 Sysname explicit path p1 next hop 10 0 0 125 exclude opaque capability Syntax opaque capability ena...

Page 1639: ... reset mpls rsvp te statistics global reset mpls te auto bandwidth adjustment timers Syntax reset mpls te auto bandwidth adjustment timers View User view Parameter None Description Use the reset mpls te auto bandwidth adjustment timers command to reset the automatic bandwidth adjustment function This command clears information about output rate sampling and the remaining time for next bandwidth op...

Page 1640: ...stem view Sysname static cr lsp egress tunnel34 incoming interface serial 1 0 in label 233 static cr lsp ingress Syntax static cr lsp ingress tunnel name destination dest addr nexthop next hop addr outgoing interface interface type interface number out label out label value bandwidth bc0 bc1 bandwidth value undo static cr lsp ingress tunnel name View System view Parameter tunnel name Name of the t...

Page 1641: ...p transit tunnel name incoming interface interface type interface number in label in label value nexthop next hop addr outgoing interface interface type interface number out label out label value bandwidth bc0 bc1 bandwidth value undo static cr lsp transit tunnel name View System view Parameter Tunnel name Tunnel name comprising 1 to 15 characters next hop addr Next hop address outgoing interface ...

Page 1642: ...nstraint Sets the bandwidth constraint sub TLV lo multiplier Sets the sub TLV of local overbooking multiplier LOM unreserved bw sub pool Sets the sub TLV of unreserved subpool bandwidth value Sub TLV in the range 19 to 254 Description Use the te set subtlv command to configure the sub TLVs carrying the DS TE parameters As no standard is available for these sub TLVs you need to configure them manua...

Page 1643: ...ble IS IS TE Use the undo traffic eng command to restore the default By default IS IS TE is disabled n In order to enable IS IS TE you must use the cost style command to configure the cost style of the IS IS packet to wide compatible or wide compatible Refer to cost style on page 1040 Example Enable TE for Level 2 IS IS process 1 Sysname system view Sysname isis 1 Sysname isis 1 cost style compati...

Page 1644: ...1644 CHAPTER 96 MPLS TE CONFIGURATION COMMANDS ...

Page 1645: ...alue Incoming label in the range 16 to 1023 out label value Outgoing label in the range 16 to 1023 nexthop ip address Specifies the IP address of the next hop out interface interface type interface number Specifies the outgoing interface by its type and number control word Enables the control word option no control word Disables the control word option Description Use the ccc interface in label ou...

Page 1646: ... interface Syntax ccc ccc connection name interface interface type interface number out interface interface type interface number undo ccc ccc connection name View System view Parameter ccc connection name Name for the CCC connection a string of 1 to 20 characters It is used for uniquely identifying a CCC connection on a PE interface interface type interface number Specifies the interface for conn...

Page 1647: ... Create a CE named ce1 for a VPN Sysname system view Sysname mpls l2vpn vpn1 encapsulation ethernet Sysname mpls l2vpn vpn1 route distinguisher 100 1 Sysname mpls l2vpn vpn1 ce ce1 id 1 Sysname mpls l2vpn ce vpn1 ce1 Create a CE named ce2 for a VPN Sysname system view Sysname mpls l2vpn vpn1 encapsulation ethernet Sysname mpls l2vpn vpn1 route distinguisher 100 1 Sysname mpls l2vpn vpn1 ce ce1 id ...

Page 1648: ...mpls l2vpn vpn1 Sysname mpls l2vpn vpn1 ce ce1 Sysname mpls l2vpn ce vpn1 ce1 connection ce offset 1 interface serial 2 0 display bgp l2vpn Syntax display bgp l2vpn all group group name peer ip address verbose route distinguisher route distinguisher ce id ce id label offset label offset View Any view Parameter all Displays all L2VPN information group name Name of the peer group a string of 1 to 47...

Page 1649: ...er Local AS number Origin codes Route origin codes which can be i IGP Indicates that the network layer reachability information is from within the AS e EGP Indicates that the network layer reachability information is learned through EGP incomplete Indicates that the network layer reachability information is learned through other ways bgp l2vpn Number of BGP L2VPNs Route Distinguisher RD CE ID CE n...

Page 1650: ...red No routing policy is configured MsgSent Number of messages sent OutQ Number of messages waiting to be sent to the peer PrefRcv Number of prefixes received Up Down Duration that the BGP session is in the current status State Status of the peer Table 423 Description on the fields of the display bgp l2vpn peer verbose command Field Description Peer IP address of the peer Local IP address of the l...

Page 1651: ...s and that of received update messages Maximum allowed prefix number Maximum number of routes allowed Threshold Threshold value Routing policy configured Routing policy specified for the peer Table 424 Description on the fields of display bgp l2vpn route distinguisher Field Description BGP Local router ID BGP local router ID local AS number Local AS number Origin codes Route origin codes which can...

Page 1652: ... be i IGP Indicates that the network layer reachability information is from within the AS e EGP Indicates that the network layer reachability information is learned through EGP incomplete Indicates that the network layer reachability information is learned through other ways Route Distinguisher RD CE ID CE number in the VPN Label Offset Label offset Label Base Label base nexthop IP address of the ...

Page 1653: ...C connections Example Display information about CCC connection c1 Sysname display ccc ccc name c1 Name c1 Type remote State down Intf Serial2 0 up In label 100 Out label 200 Nexthop 20 1 1 1 Display information about all local CCC connections Sysname display ccc type local Name c2 Type local State up Intf1 Serial2 0 up Intf2 Serial2 1 up Display information about all CCC connections Sysname displa...

Page 1654: ... the state of UP down Specifies CCC interfaces in the state of DOWN Description Use the display l2vpn ccc interface vc type command to display information about specified L2VPN VC interfaces Example Display information about interfaces of any encapsulation types Sysname display l2vpn ccc interface vc type all Total ccc interface of CCC VC 3 Table 427 Description on the fields of the display ccc co...

Page 1655: ...info View Any view Parameter interface interface type interface number Specifies the interface connecting the CE by its type and number remote info Specifies Martini VCs from the remote peer Description Use the display mpls l2vc command to display information about Martini VCs configured on the router If you specify an interface the command displays information about Martini VCs configured on the ...

Page 1656: ...emote Remote C Remote Table 429 Description on the fields of the display mpls l2vc command Field Description total ldp vc Total number of Martini VCs Transport VC ID Remote VC ID Client Intf Interface connected with the CE VC State Status of the VC Local VC Label Local VC label Remote VC Label Remote VC label Tunnel Policy Tunnel policy configured Table 430 Description on the fields of the display...

Page 1657: ...s configured on a PE If you do not specify a VPN the command displays information about all L2VPNs Example Display the L2VPN export route target list Sysname display mpls l2vpn export route target list export vpn target list 755 7 888 8 Display information about all L2VPNs configured on the PE Table 431 Description on the fields of the display mpls l2vc remote info command Field Description total ...

Page 1658: ...3 Description on the fields of the display mpls l2vpn command Field Description VPN Number Number of created VPNs vpn name Name of the VPN encap type Encapsulation type route distinguisher RD mtu Maximum transmission unit ce L Local CE number ce R Remote CE number Table 434 Description on the fields of the display mpls l2vpn vpn name command Field Description VPN Name Name of the VPN Encap type En...

Page 1659: ...information about the connections that are up If you specify neither the down nor the up keyword the command displays detailed information about connections that are either up or down verbose Displays detailed information This keyword is valid only when displaying information about all connections in a VPN interface interface type interface number Specifies an interface by its type and number summ...

Page 1660: ... up 3 3 3 9 100 1 Serial2 0 For descriptions of the output fields of the command see Table 437 Display information about Kompella L2VPN connections on interface Serial 2 0 Sysname display mpls l2vpn connection interface Serial 2 0 Conn type remote Local vc state up Remote vc state up Local ce id 1 Local ce name ce1 Remote ce id 4 Intf state encap Serial2 0 up ppp Peer id 3 3 3 9 Route distinguishe...

Page 1661: ... state encap Interface name interface status interface encapsulation type Peer id IP address of the peer Route distinguisher RD Local vc label Local VC label Remote vc label Remote VC label Tunnel policy Name of the tunneling policy Tunnel type Type of the tunnel Tunnel ID ID of the tunnel Table 439 Description on the fields of mpls l2vpn connection summary Field Description connections Statistics...

Page 1662: ...n a string of 1 to 80 characters that cannot contain any blank space Description Use the display mpls l2vpn forwarding info command to display MPLS L2VPN forwarding information Example Display MPLS L2VPN forwarding information Sysname display mpls l2vpn forwarding info interface Serial 2 0 VCLABEL TUNNELTYPE ENTRYTYPE OUTINTERFACE 1025 LSP SEND Serial2 0 1 Record s Found display mpls static l2vc S...

Page 1663: ... vpn label 400 Tunnel Policy policy1 Tunnel Type lsp Tunnel ID 0x226013 l2vpn family Syntax l2vpn family Table 441 Description on the fields of the display mpls static l2vc command Field Description total connections Statistics about connection including the total number of connections number of connections that are up and number of connections that are down ce intfe CE interface State Status of t...

Page 1664: ...eer PE vc id VC ID of the L2VPN connection in the range 1 to 4294967295 tunnel policy name Tunneling policy for the VC a string of 1 to 19 characters control word Enables the control word option no control word Disables the control word option Description Use the mpls l2vc command to create a Martini L2VPN connection Use the undo mpls l2vc command to delete the Martini connection on the CE interfa...

Page 1665: ...e configuring the other L2VPN commands Example Enable MPLS L2VPN Sysname system view Sysname mpls l2vpn mpls l2vpn vpn name Syntax mpls l2vpn vpn name encapsulation atm aal5 ethernet fr hdlc ppp vlan control word no control word undo mpls l2vpn vpn name View System view MPLS L2VPN view Parameter vpn name Name for the VPN a case insensitive string of 1 to 31 characters that cannot include the chara...

Page 1666: ...vpn2 and enter MPLS L2VPN view Sysname system view Sysname mpls l2vpn vpn1 encapsulation ppp Sysname mpls l2vpn vpn1 mpls l2vpn vpn2 encapsulation ethernet Sysname mpls l2vpn vpn2 mpls static l2vc destination Syntax mpls static l2vc destination destination router id transmit vpn label transmit label value receive vpn label receive label value tunnel policy tunnel policy name control word no contro...

Page 1667: ... the control word option Example Create a static VC between CEs connected to different PEs Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 mpls static l2vc destination 1 1 1 1 transmit vpn label 111 receive vpn label 222 tunnel policy pol1 mtu MPLS L2VPN view Syntax mtu mtu undo mtu View MPLS L2VPN view Parameter mtu value MTU for the L2VPN It ranges from 128 to 1 500 and de...

Page 1668: ... of nn nn or IP address nn It can be a string of 3 to 21 characters An RD can be in either of the following formats 16 bit AS number 32 bit user defined number For example 101 3 32 bit IP address 16 bit user defined number For example 192 168 122 15 1 Description Use the route distinguisher command to configure an RD for the VPN Different VPNs on a PE must have different RDs while a VPN can have t...

Page 1669: ...ple 192 168 122 15 1 both Specifies both the export and import VPN extended communities This is the default export extcommunity Specifies the export VPN extended community import extcommunity Specifies the import VPN extended community all Specifies both the import and export VPN extended communities Description Use the vpn target command to associate a particular VPN with one or more VPN targets ...

Page 1670: ...1670 CHAPTER 97 MPLS L2VPN CONFIGURATION COMMANDS ...

Page 1671: ...nd to remove one or more VPN instances from the policy node You can set up to six VPN instances for one node in a policy Packets matching the criteria are forwarded by the first valid VPN instance routing table With no VPN instance name specified the undo apply access vpn vpn instance command removes all VPN instances from the FIB Note that the VPN instances you specify for the apply access vpn vp...

Page 1672: ...ing the route going through B to be preferred when more than one route is present Sysname system view Sysname bgp 100 Sysname ipv4 family vpnv4 Sysname bgp af vpnv4 default local preference 180 default med BGP VPNv4 subaddress family view Syntax default med med value undo default med View BGP VPNv4 subaddress family view Parameter med value MED value in the range 0 to 4 294 967 295 Description Use...

Page 1673: ...cidr community aa nn 1 13 no export subconfed no advertise no export whole match community list basic community list number whole match adv community list number 1 16 different origin as peer ip address advertised routes received routes statistic regular expression as regular expression statistic View Any view Parameter network address IP address of the destination segment mask length Length of th...

Page 1674: ...unity list number in the range 100 to 199 1 16 Specifies that the argument before it can be entered up to 16 times different origin as Displays information about routes with different AS origins peer ip address Specifies a peer by its IP address advertised routes Specifies the routing information sent to the specified peer received routes Specifies the routing information received from the specifi...

Page 1675: ...gp vpnv4 all routing table Field Description BGP Local router ID Router ID of the local BGP router Status codes Route status codes Valid values include valid Valid route best Best route d damped Route damped for route flap h history History route i internal Internal route s suppressed Suppressed route S Stale Stale route Origin Route origin codes Valid values include i IGP learned from the AS e EG...

Page 1676: ...ew Any view Table 444 Description on the fields of the display bgp vpnv4 group command Field Description BGP peer group Name of the BGP peer group remote AS number Number of the remote AS Type Type of the BGP peer group Maximum allowed prefix number Maximum number of routes that the VPN instance supports Threshold Threshold value Configured hold timer value Setting of the hold timer Keepalive time...

Page 1677: ...ll VPNv4 peers vpn instance name Name of the VPN instance a string of 1 to 31 characters as regular expression Regular expression for filtering the AS path information to be displayed Description Use the display bgp vpnv4 paths command to display the BGP VPNv4 AS path information Example Display the BGP VPNv4 AS path information of VPN instance vpn1 Sysname display bgp vpnv4 vpn instance vpn1 path...

Page 1678: ... information about BGP VPNv4 peers of VPN instance vpn1 Sysname display bgp vpnv4 vpn instance vpn1 peer BGP local router ID 2 2 2 2 Local AS number 100 Total number of peers 1 Peers in established state 1 Peer V AS MsgRcvd MsgSent OutQ PrefRcv Up Down State 10 1 1 1 4 200 24 29 0 1 00 18 47 Established Table 446 Description on the fields of the display bgp vpnv4 paths command Field Description Ad...

Page 1679: ...refresh capability has been enabled Peer Preferred Value 99 Routing policy configured No routing policy is configured Peer IP address of the peer V Version of BGP that the peer runs AS AS number of the peer group MsgRcvd Number of messages received MsgSent Number of messages sent OutQ Number of messages waiting to be sent to the peer PrefRcv Number of received prefixes Up Down Duration of the BGP ...

Page 1680: ...apability Received Total number of received messages and the number of received update messages Sent Total number of sent messages and the number of sent update messages Maximum allowed prefix number Maximum number of routes that the VPN instance supports Threshold Threshold value Minimum time between advertisement runs Minimum route advertisement interval Optional capabilities Local optional capa...

Page 1681: ...outing policy is configured Table 450 Description on the fields of display bgp vpnv4 all peer verbose Field Description Peer IP address of the peer Local IP address of the local router Type BGP type BGP version Version of BGP that the peer runs remote router ID Router ID of the remote router BGP current state Current status of BGP Up for Duration since the peer is established BGP current event Cur...

Page 1682: ..._PATH list The as path acl number argument ranges from 1 to 256 cidr Displays classless interdomain routing CIDR information community Displays routing information of the specified BGP community in the routing table aa nn 1 13 Community number Both the aa and nn parameters range from 0 to 65535 1 13 means that you can enter the parameter combination up to 13 times Sent Total number of sent message...

Page 1683: ...outes with different AS origins regular expression as regular expression Displays routing information matching the specified AS regular expression Description Use the display bgp vpnv4 route distinguisher routing table command to display the BGP VPNv4 routing information of a specified RD Related command route distinguisher VPN instance view Example Display the BGP VPNv4 routing information of RD ...

Page 1684: ...ocal BGP router Status codes Route status codes For valid values see Table 443 Origin Route origin codes For valid values see Table 443 Network Network address NextHop Address of the next hop Label recv app Incoming outgoing label MED Metric associated with the destination network LocPrf Local preference Total routes of vpn instance vpn1 Total number of routes of the specified VPN instance Table 4...

Page 1685: ...IGP e EGP incomplete Route Distinguisher 100 1 Network NextHop In Out Label i 123 1 1 1 1 1 1 1 NULL 1024 Total routes of vpn instance vpn1 4 Network NextHop In Out Label 10 1 1 0 0 0 0 0 1025 NULL 20 0 0 0 0 0 0 0 1026 NULL i 123 1 1 1 1 1 1 1 NULL 1024 124 1 1 1 0 0 0 0 1024 NULL Table 453 Description on the fields of display bgp vpnv4 routing table label Field Description Total number of routes...

Page 1686: ...ess Network mask in the format of X X X X longer prefixes Specifies to match the longest prefix as path acl as path acl number Filters routing information using the specified AS_PATH list The as path acl number argument ranges from 1 to 256 cidr Displays classless interdomain routing CIDR information community Displays routing information of the specified BGP community in the routing table aa nn 1...

Page 1687: ... matching the specified AS regular expression statistic Displays BGP VPNv4 route statistics Description Use the display bgp vpnv4 vpn instance routing table command to display the BGP VPNv4 routing information of a specified VPN instance Example Display the BGP VPNv4 routing information of VPN instance vpn1 Sysname display bgp vpnv4 vpn instance vpn1 routing table Total Number of Routes 5 BGP Loca...

Page 1688: ... that includes the specified string The string argument is case sensitive and consists of 1 to 256 characters Description Use the display fib vpn instance command to display information about the forwarding information base FIB of a VPN instance Example Display information about the FIB of VPN instance vpn1 Sysname display fib vpn instance vpn1 FIB Table For vpn1 Total number of Routes 2 NextHop A...

Page 1689: ...03 10 13 09 32 45 vpn2 33 3 2003 10 13 09 42 59 Display detailed information about a VPN instance Sysname display ip vpn instance instance name vpn1 VPN Instance Name and ID vpn1 1 Create time 2006 04 08 13 01 30 Up time 0 days 00 hours 11 minutes and 42 seconds Route Distinguisher 22 1 Export VPN Targets 3 3 5 5 Table 456 Description on the fields of the display fib vpn instance command Field Des...

Page 1690: ... ospf sham link OSPF Process 100 with Router ID 100 1 1 2 Sham Link Area RouterId Source IP Destination IP State Cost 0 0 0 1 100 1 1 2 3 3 3 3 5 5 5 5 P 2 P 10 Table 458 Description on the fields of display ip vpn instance instance name Field Description VPN Instance Name and ID Name and ID of the VPN instance CreateTime Time when the VPN instance was created Up time Duration of the VPN instance ...

Page 1691: ...policy tunnel select seq load balance number Example Display all tunneling policies Sysname display tunnel policy all Tunnel Policy Name Select Seq Load balance No RouterId Router ID of the sham link Source IP Source IP address of the sham link Destination IP Destination IP address of the sham link State Status of the sham link interface Cost Cost of the sham link Table 460 Description on the fiel...

Page 1692: ...ommand to configure an OSPF domain ID Use the undo domain id command to restore the default By default the OSPF domain ID is 0 With no parameter specified the undo domain id command deletes the primary domain ID Usually routes injected from PEs are advertised as External LSAs However routes to different destinations in the same OSPF domain must be advertised as Type 3 LSAs Therefore using the same...

Page 1693: ...y default all VPN instance routes permitted by the export target attribute can be redistributed Example Apply export routing policy poly 1 to VPN instance vpn1 Sysname system view Sysname ip vpn instance vpn1 Sysname vpn instance vpn1 export route policy poly 1 filter policy export BGP VPNv4 subaddress family view Syntax filter policy acl number ip prefix ip prefix name export direct isis process ...

Page 1694: ...tes that survive the filtering are advertised by MP BGP Example In BGP VPNv4 subaddress family view specify to filter routes to be advertised by MP BGP using ACL 2555 Sysname system view Sysname bgp 100 Sysname ipv4 family vpnv4 Sysname bgp af vpnv4 filter policy 2555 export filter policy import BGP VPNv4 subaddress family view Syntax filter policy acl number ip prefix ip prefix name import undo f...

Page 1695: ...ol provided by the extended community attributes is not enough An import routing policy may deny routes that are permitted by the import target attribute By default all routes permitted by the import target attribute can be redistributed into the VPN instance Example Apply import routing policy poly 1 to VPN instance vpn1 Sysname system view Sysname ip vpn instance vpn1 Sysname vpn instance vpn1 i...

Page 1696: ...tance name undo ip vpn instance vpn instance name View System view Parameter vpn instance name Name for the VPN instance a case sensitive string of 1 to 31 characters Description Use the ip vpn instance command to create a VPN instance and enter VPN instance view Use the undo ip vpn instance command to delete a VPN instance A VPN instance takes effect only after you configure an RD for it Related ...

Page 1697: ...BGP VPN instance view Sysname system view Sysname ip vpn instance vpn1 Sysname vpn instance vpn1 quit Sysname bgp 100 Sysname bgp ipv4 family vpn instance vpn1 Sysname bgp vpn1 peer advertise community BGP VPNv4 subaddress family view Syntax peer group name ip address advertise community undo peer group name ip address advertise community View BGP VPNv4 subaddress family view Parameter group name ...

Page 1698: ...ute of a received route and to set the allowed maximum number of repetitions Use the undo peer allow as loop command to remove the configuration Example In BGP VPNv4 subaddress family view allow the local AS number to appear repeatedly in the AS PATH attribute of a route received from peer 1 1 1 1 for up to twice Sysname system view Sysname bgp 100 Sysname ipv4 family vpnv4 Sysname bgp af vpnv4 pe...

Page 1699: ...d by peer group test Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpnv4 Sysname bgp af vpnv4 peer test as path acl 3 export peer default route advertise vpn instance Syntax peer group name ip address default route advertise vpn instance vpn instance name undo peer group name ip address default route advertise vpn instance vpn instance name View BGP VPNv4 subaddress family view Param...

Page 1700: ...e the peer enable command to enable a peer or peer group for an address family and enable the exchange of BGP routing information of the address family Use the undo peer enable command to disable the capability By default only IPv4 routing information is exchanged between BGP peers peer groups Example Configure peer 1 1 1 1 and enable the peer for the BGP VPNv4 subaddress family Sysname system vie...

Page 1701: ...path acl BGP VPNv4 subaddress family view Example Apply a filtering policy to filter the received routes of a peer group Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpnv4 Sysname bgp af vpnv4 peer test filter policy 2003 import peer group Syntax peer ip address group group name undo peer ip address group group name View BGP VPNv4 subaddress family view BGP L2VPN address family view...

Page 1702: ...the peer prefix name Name of the IP prefix list a string of 1 to 19 characters export Filters the routes to be advertised import Filters the received routes Description Use the peer ip prefix command to apply a route filtering policy based on IP prefix list to a peer or peer group Use the undo peer ip prefix command to remove the configuration By default no route filtering policy based on IP prefi...

Page 1703: ...ame bgp 100 Sysname bgp peer 2 2 2 2 label route capability peer next hop invariable BGP VPNv4 subaddress family view Syntax peer group name ip address next hop invariable undo peer group name ip address next hop invariable View BGP VPNv4 subaddress family view Parameter group name Name of the peer group a string of 1 to 47 characters ip address IP address of the peer Description Use the peer next...

Page 1704: ... local command to remove the configuration Example In BGP VPNv4 subaddress family view configure the device to use the local address as the next hop of a route when advertising it to peer group test Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpnv4 Sysname bgp af vpnv4 peer test next hop local In BGP L2VPN address family view configure the device to use the local address as the nex...

Page 1705: ...p address reflect client View BGP VPNv4 subaddress family view BGP L2VPN address family view Parameter group name Name of the peer group a string of 1 to 47 characters ip address IP address of the peer Description Use the peer reflect client command to configure the local device to be a route reflector RR and set a peer or peer group as the client of the RR Use the undo peer reflect client command...

Page 1706: ...olicy to a peer or peer group Use the undo peer route policy command to remove the application By default no routing policy is applied to a peer or peer group Example In BGP VPNv4 subaddress family view apply routing policy test policy to peer group test to filter the received routes Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpnv4 Sysname bgp af vpnv4 peer test route policy test ...

Page 1707: ...outes Use the undo policy vpn target command to disable the filtering permitting all VPNv4 routes Only VPNv4 routes with export route target attributes matching the local import route target attributes are added into the routing table By default the VPN target filtering function is enabled for received VPNv4 routes n The command applies to inter provider VPN option B schemes Example In BGP VPNv4 s...

Page 1708: ...baddress family view disable route reflection between clients Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpnv4 Sysname bgp af vpnv4 undo reflect between clients In BGP L2VPN address family view disable route reflection between clients Sysname system view Sysname bgp 100 Sysname bgp l2vpn family Sysname bgp af l2vpn undo reflect between clients reflector culster id Syntax reflector...

Page 1709: ...er id 50 refresh bgp vpn instance Syntax refresh bgp vpn instance vpn instance name ip address all external group group name export import View User view Parameter vpn instance name Name of the VPN instance a string of 1 to 31 characters ip address Performs a soft reset of the BGP connection with a BGP peer identified by this IP address all Performs a soft reset of all BGP VPN instance connections...

Page 1710: ...forms a soft reset in the inbound direction Description Use the refresh bgp vpnv4 command to perform a soft reset of BGP VPNv4 connections Example Perform a soft reset of all BGP VPNv4 connections in the inbound direction to make new configurations take effect Sysname refresh bgp vpnv4 all import reset bgp vpn instance Syntax reset bgp vpn instance vpn instance name as number ip address all extern...

Page 1711: ...X mask length Length of the network mask in the range 0 to 32 Description Use the reset bgp vpn instance dampening command to clear the route flap dampening information of a VPN instance Example Clear the route flap dampening information of VPN instance vpn1 Sysname reset bgp vpn instance vpn1 dampening reset bgp vpn instance flap info Syntax reset bgp vpn instance vpn instance name ip address fla...

Page 1712: ...entified by this number ip address Resets the VPNv4 connection with a BGP peer identified by this IP address group name Resets the VPNv4 connections with a BGP peer group identified by this name all Resets all BGP VPNv4 connections external Resets EBGP sessions of VPNv4 connections internal Resets IBGP sessions of VPNv4 connections Description Use the reset bgp vpnv4 command to reset BGP VPNv4 con...

Page 1713: ... value undo route tag View OSPF view Parameter tag value Tag for identifying injected VPN routes in the range 0 to 4294967295 Description Use the route tag command to configure the tag for identifying injected VPN routes Use the undo route tag command to restore the default The first two octets of the default tag is always 0xD000 while the last two octets is the AS number of the local BGP For exam...

Page 1714: ...SR20 and MSR30 series routers and 1 to 2048 for MSR50 series routers warn threshold Threshold for rejecting new routes It is expressed in the percentage of the specified maximum number of routes for the VPN instance It ranges from 1 to 100 simply alert Specifies that when the maximum number of routes exceeds the threshold the system still accepts routes and generates only a SYSLOG error message De...

Page 1715: ...route target extended community attribute Sysname system view Sysname bgp 100 Sysname bgp ipv4 family vpnv4 Sysname bgp af vpnv4 rr filter 10 In BGP L2VPN address family view create an RR group and configure it to automatically filter the incoming VPNv4 route update packets based on the route target extended community attribute Sysname system view Sysname bgp 100 Sysname bgp l2vpn family Sysname b...

Page 1716: ...d1 argument can be either a string of 1 to 8 characters in plain text or a string of 24 characters in cipher text md5 Uses MD5 algorithm for authentication hmac md5 Uses HMAC MD5 algorithm for authentication key id Authentication key ID of the interface in the range 1 to 255 It must be the same as that of the peer cipher Uses cipher text plain Uses plain text password2 Password string case sensiti...

Page 1717: ... selecting tunnels from the VPN tunnel management module an application can use the tunneling policy as the criterion With no tunneling policy associated with a VPN instance the default tunneling policy is used Related command tunnel select seq load balance number Example Associate VPN instance vpn2 with tunneling policy po1 Sysname system view Sysname tunnel policy po1 Sysname tunnel policy po1 t...

Page 1718: ... load balancing in the range 1 to 8 Description Use the tunnel select seq load balance number command to configure the preference order for tunnel selection and the number of tunnels for load balancing Use the undo tunnel select seq command to restore the default By default one LSP tunnel can be used That is only LSP tunnels can be used and the number of tunnels for load balancing is 1 Note that O...

Page 1719: ...VPN instance CE Sysname system view Sysname ospf 100 vpn instance vpna Sysname ospf 100 vpn instance capability simple vpn target VPN instance view Syntax vpn target vpn target 1 8 both export extcommunity import extcommunity undo vpn target all vpn target 1 8 both export extcommunity import extcommunity View VPN instance view Parameter vpn target 1 8 Adds the VPN target extended community attribu...

Page 1720: ...ormation to the destination VPN extended community and import routing information from the destination VPN extended community Description Use the vpn target command to associate the current VPN instance with one or more VPN targets Use the undo vpn target command to remove the association of the current VPN instance with VPN targets VPN target has no default You must configure it when creating a V...

Page 1721: ...e the undo authentication algorithm command to restore the default By default the authentication algorithm is SHA 1 Note that Priorities of authentication algorithms are decided by their configuration order Based on its authentication algorithm configuration a VAM server negotiates with a client to determine the authentication algorithm to be used between them Related command vam server vpn authen...

Page 1722: ...te clients using CHAP Sysname system view Sysname vam server vpn 1 Sysname vam server vpn 1 authentication method chap display vam server address map Syntax display vam server address map all vpn vpn name private ip private ip View Any view Parameter all Displays address mapping information about all registered VAM clients on the VAM server vpn vpn name Displays address mapping information about a...

Page 1723: ... display vam server statistic Syntax display vam server statistic all vpn vpn name View Any view Parameter all Displays the statistics of all clients registered on the VAM server vpn vpn name Displays the statistics of the VAM server in the specified VPN domain The vpn name argument indicates the VPN domain name a case insensitive string of 1 to 15 characters Description Use the display vam server...

Page 1724: ...spoke number 98 Registered hub number 2 Address resolution times 11 Succeeded resolution times 10 Failed resolution times 1 Table 463 Description on the fields of the display vam server statistic command Field Description VPN number Number of VPN domains on the VAM server Total spoke number Number of Spokes on the VAM server Total hub number Number of Hubs on the VAM server VPN name Name of the VP...

Page 1725: ...e adopted with their priorities from the highest to the lowest being AES 128 3DES and DES Note that Priorities of encryption algorithms are decided by their configuration order Based on its encryption algorithm configuration a VAM server negotiates with a client to determine the encryption algorithm to be used between them Related command vam server vpn Example Specifies to adopt AES 128 and 3DES ...

Page 1726: ...server vpn 1 Sysname vam server vpn 1 hub private ip 10 1 1 1 public ip 123 0 0 1 keepalive interval Syntax keepalive interval time interval undo keepalive interval View VPN domain view Parameter time interval Interval for sending keepalive message from VAM client It is in the range 5 to 60 seconds Description Use the keepalive interval command to configure the interval for sending keepalive messa...

Page 1727: ...nt regards that the connection is broken Use the undo keepalive retry command to restore to the default value By default the maximum number of attempts of sending keepalive message from VAM client is 3 Note that the VAM server sends this setting in a registration response to its clients All clients in a VPN have the same keepalive settings but if you change the keepalive settings of the server the...

Page 1728: ... vam server vpn pre shared key VAM client view authentication algorithm encryption algorithm Example Configure the pre shared key for VAM server to 123 which is displayed in plain text Sysname system view Sysname vam server vpn 1 Sysname vam server vpn 1 pre shared key simple 123 server enable Syntax server enable undo server enable View VPN domain view Parameter None Description Use the server en...

Page 1729: ... the VAM server function of all VPN domains or a specific VPN domain By default VAM server function is disabled Related command vam server vpn server enable Example Enable the VAM server function of all VPN domains Sysname system view Sysname vam server enable all vam server ip address Syntax vam server ip address ip address port port number undo vam server ip address View System view Parameter ip...

Page 1730: ...n Syntax vam server vpn vpn name undo vam server vpn vpn name View System view Parameter vpn name VPN domain name It is a case insensitive string containing 1 to 15 characters which can be A to Z a to z 0 to 9 hyphen sign and dot sign Description Use the vam server vpn command to create a VPN domain and enter its view If a VPN domain with the same name already exists executing this command will en...

Page 1731: ...on Use the undo client enable command to restore the default By default the VAM client function is disabled Related command vam client name and vam client enable Example Enable the VAM client function on client named spoke Sysname system view Sysname vam client name spoke Sysname vam client name spoke client enable display vam client Syntax display vam client address map fsm client name View Any v...

Page 1732: ...on of all VAM clients is displayed As for the arguments not specified or the information not obtained dynamically the corresponding information will not be displayed Example Display the status information of VAM client abc Sysname display vam client fsm abc Client name hub VPN name 1 Interface Tunnel0 Resend interval seconds 5 Client type Hub Username user1 Primary server 28 1 1 23 Current state O...

Page 1733: ...nge protocol packets Primary server Public IP address of the primary VAM server Current state Current authentication status of the VAM client Primary server IP address of the primary VAM server Holding time Period of time that the VAM client is up Encryption algorithm Negotiated encryption algorithm Authentication algorithm Negotiated authentication algorithm Secondary server Public IP address of ...

Page 1734: ...nd interval View VAM client view Parameter time interval Protocol packet retransmission interval in the range 3 to 30 seconds Description Use the resend interval command to configure the interval for the VAM client to resend VAM protocol packets Use the undo resend interval command to restore the default By default the retransmission interval is 5 seconds After sending protocol packets to the VAM ...

Page 1735: ...rver secondary ip address Example Specify public IP address 1 1 1 1 and port number 40000 for the primary VAM server Sysname system view Sysname vam client name abc Sysname vam client name abc server primary ip address 1 1 1 1 port 40000 server secondary ip address Syntax server secondary ip address ip address port port number undo server secondary ip address ip address View VAM client view Parame...

Page 1736: ...acters excluding special characters and cipher Displays a password in the cipher text mode simple Displays a password in the plain text mode String Password of a VAM client a case sensitive string of 1 to 63 characters Description Use the user command to configure a local username and password Use the undo user command to remove the configuration By default no local username or password is configu...

Page 1737: ...ed spoke Sysname system view Sysname vam client enable name spoke vam client name Syntax vam client name client name undo vam client name client name View System view Parameter client name Name of a VAM client a string of 1 to 31 case insensitive characters Valid characters are A through Z a through z 0 through 9 hyphen and dot Description Use the vam client command to create a VAM client and ente...

Page 1738: ...cters A through Z a through z 0 through 9 hyphen and dot Description Use the vpn command to specify the VPN that a VAM client belongs to Use the undo vpn command to remove the configuration By default a VAM client does not belong to any VPN Related command vam client name Example Specify the VAM client abc to belong to VPN 100 Sysname system view Sysname vam client name abc Sysname vam client name...

Page 1739: ...Note that if the profile name keyword is not specified this command will display information about all IPSec profiles Related command ipsec profile system view Example Display information about all IPSec profiles Sysname display ipsec profile IPsec profile abc Using interface Tunnel0 IPsec profile name abc mode dvpn tunnel local address 162 105 10 1 tunnel remote address dynamic perfect forward se...

Page 1740: ...ve a specified IPSec profile By Default no IPSec profile exists Note that Table 466 Description on the fields of the display ipsec profile command Field Description IPsec profile name Name of the IPSec profile mode Tunneling mode used by the IPSec profile tunnel local address Local address of the tunnel tunnel remote address Remote address of the tunnel perfect forward secrecy PFS feature that is ...

Page 1741: ...uration of an IPSec policy Some parameters are set to the default values Due to the dynamics of DVPN addresses the setting by the remote address keyword for the IKE peer that an IPSec profile references does not take effect on the initiator Example Create an IPSec profile named dvpnprofile and enter its view Sysname system view Sysname ipsec profile dvpnprofile Sysname ipsec profile dvpnprofile ...

Page 1742: ...1742 CHAPTER 101 IPSEC PROFILE CONFIGURATION COMMANDS ...

Page 1743: ...umber The interface must be of the type of tunnel private ip ip address Specifies the private IP address of the peer VAM client Description Use the display dvpn session to display information about the DVPN session list Example Display information about DVPN sessions associated with interface Tunnel0 Sysname display dvpn session interface tunnel 0 Interface Tunnel0 Total number 2 Private IP 10 0 0...

Page 1744: ...hat the VAM client triggers the quiet timer only when the attempts for tunneling the Hub reach the maximum value Table 467 Description on the fields of the display dvpn session command Field Description Interface DVPN tunnel interface Total number Total number of DVPN tunnels established on the tunnel interface Private IP Private address of the DVPN tunnel peer Public IP Public address of the DVPN...

Page 1745: ...atically if no data flows are transferred through a Spoke Spoke type DVPN tunnel during the idle timeout time Use the undo dvpn session idle time command to restore the default By default the idle timeout for a Spoke Spoke type DVPN tunnel is 300 seconds Note that all VAM clients in a VPN domain must have the same configuration Related command interface tunnel on page 884 and tunnel protocol on pa...

Page 1746: ...d interface tunnel on page 884 Example Specify to reference IPSec profile dvpnprofile on DVPN tunnel interface Tunnel0 to protect the DVPN tunnel Sysname system view Sysname interface tunnel 0 Sysname Tunnel0 tunnel protocol dvpn udp Sysname Tunnel0 ipsec profile dvpnprofile keepalive Syntax keepalive seconds times undo keepalive View Tunnel interface view Parameter seconds Interval in seconds for...

Page 1747: ...ifies the DVPN tunnels on the interface The interface type argument can only be tunnel private ip ip address Specifies the private IP address of the peer client Description Use the reset dvpn session command to remove DVPN tunnels connected with the current client Example Remove the Spoke Spoke tunnel on interface Tunnel0 whose peer private address is 169 254 0 1 Sysname reset dvpn session interfa...

Page 1748: ...sensitive string of 1 to 31 characters Description Use the vam client command to specify the VAM client to be referenced on a DVPN tunnel interface Use the undo vam client command to remove the VAM client By default a DVPN tunnel interface references no VAM client Note that a DVPN tunnel interface can reference only one VAM client Related command interface tunnel on page 884 and tunnel protocol on...

Page 1749: ...s of the peer interface receiving packets It is usually set to the source address of the peer tunnel interface Two or more tunnel interfaces using the same encapsulation protocol must have different source addresses and destination addresses Related command interface tunneland source Example Set Serial 2 0 193 101 1 1 of Sysname1 and Serial 2 0 192 100 1 1 of Sysname2 as the source destination int...

Page 1750: ...epalive disable Tunnel protocol transport GRE IP GRE key value is 123 Checksumming of GRE packets enabled Last 300 seconds input 0 bytes sec 0 packets sec Last 300 seconds output 0 bytes sec 0 packets sec 361 packets input 9953388 bytes 0 input error 361 packets output 30324 bytes 0 output error Table 468 Description on the fields of the display interface tunnel command Field Description Tunnel0 c...

Page 1751: ...interface destination Destination address of the tunnel interface Tunnel keepalive Whether the GRE keepalive function is enabled Tunnel protocol transport Tunnel protocol transport protocol GRE key Secret key for tunnel interfaces use Checksumming of GRE packets Whether GRE packet checksum is enabled Last 300 seconds input Amount of inbound traffic per second in the last five minutes in bytes and ...

Page 1752: ...m undo gre checksum View Tunnel interface view Table 469 Description on the fields of the display ipv6 interface tunnel command Field Description Tunnel0 current state Status of the physical layer of the tunnel interface UP or DOWN Line protocol current state Status of the link layer of the tunnel interface UP or DOWN IPv6 Whether IPv6 is enabled on the tunnel interface link local address Link loc...

Page 1753: ...sname2 Tunnel2 gre checksum gre key Syntax gre key key number undo gre key View Tunnel interface view Parameter key number Secret key for the GRE tunnel interface use in the range 0 to 4 294 967 295 Description Use the gre key command to configure a secret key for a GRE tunnel interface This weak security mechanism can prevent packets from being received mistakenly Use the undo gre key command to ...

Page 1754: ...cal significance Therefore both ends of a tunnel can have the same interface number or different interface numbers Related command source destination gre key gre checksum and tunnel protocol on page 887 Example Create an interface named Tunnel3 and enter its view Sysname system view Sysname interface tunnel 3 Sysname Tunnel3 keepalive Syntax keepalive seconds times undo keepalive View Tunnel inter...

Page 1755: ...view Sysname interface tunnel 0 Sysname Tunnel0 keepalive 20 5 source Syntax source ip address ipv6 address interface type interface number undo source View Tunnel interface view Parameter ip address Source IPv4 address for a tunnel interface Ipv6 address Source IPv6 address for a tunnel interface interface type interface number Type and number of the source interface for a tunnel interface The in...

Page 1756: ...gre command to set the GRE tunnel mode Use the undo tunnel protocol to restore the default By default the GRE tunnel mode is GRE over IPv4 Without the ipv6 keyword the command sets the GRE tunnel mode to GRE over IPv4 Select a tunnel mode according to the network topology and application Note that both ends of a tunnel must be configured with the same tunnel mode Otherwise packet delivery will fai...

Page 1757: ...do allow command to remove the configuration By default an LNS denies all incoming calls Note that The domain domain name combination is required in L2TP multi instance applications The remote remote name combination is optional for L2TP group 1 the default L2TP group number In other words for L2TP group 1 the syntax of the command is allow l2tp virtual template virtual template number remote remo...

Page 1758: ...any peer and create a virtual access interface based on virtual template 1 Sysname system view Sysname l2tp group 1 Sysname l2tp1 allow l2tp virtual template 1 display l2tp session Syntax display l2tp session View Any view Parameter None Description Use the display l2tp session command to display information about L2TP sessions Related command display l2tp tunnel Example Display information about ...

Page 1759: ...ate number Serial number for identifying the virtual interface template in the range of 0 to 1023 Description Use the interface virtual template command to create a virtual interface template and enter its view Use the undo interface virtual template command to remove a virtual interface template By default no virtual interface template exists Table 471 Description on the fields of the display l2t...

Page 1760: ...te1 l2tp enable Syntax l2tp enable undo l2tp enable View System view Parameter None Description Use the l2tp enable command to enable the L2TP function Use the undo l2tp enable command to disable the L2TP function By default the L2TP function is disabled You must enable L2TP before performing L2TP configurations Related command l2tp group Example Enable the L2TP function Sysname system view Sysnam...

Page 1761: ...xam enable command to disable the L2TP multi instance function By default the L2TP multi instance function is disabled Note that this command is available for only LNSs Related command l2tp enable Example Enable the L2TP multi instance function for the router Sysname system view Sysname l2tpmoreexam enable l2tp group Syntax l2tp group group number undo l2tp group group number View System view Para...

Page 1762: ...f the user Use the undo mandatory chap command to disable CHAP authentication on the LNS By default an LNS does not perform CHAP authentication of users An LNS authenticates the client in addition to the proxy authentication that occurs at the LAC for higher security If the mandatory chap command is used two authentications are performed for the clients connected to the VPN through an initialized ...

Page 1763: ...ient But the proxy authentication information of the NAS may be neglected Some PPP clients may not support LCP re negotiation In this case the LCP re negotiation will fail Related command mandatory chap Example Perform LCP negotiation by force Sysname system view Sysname l2tp group 1 Sysname l2tp1 mandatory lcp reset l2tp tunnel Syntax reset l2tp tunnel remote name tunnel id View User view Paramet...

Page 1764: ... tunneling requests to one or more IP addresses for one or more specified VPN users Use the undo start to remove the specified triggering condition Note that The start l2tp command is available for only LACs An LAC can initiate tunneling requests for users in a specified domain For example if the domain name of a company is aabbcc net users with such a domain name are considered VPN users You can ...

Page 1765: ...own tunnel peers Example Disable L2TP tunnel authentication Sysname system view Sysname l2tp group 1 Sysname l2tp1 undo tunnel authentication tunnel avp hidden Syntax tunnel avp hidden undo tunnel avp hidden View L2TP group view Parameter None Description Use the tunnel avp hidden command to specify to transfer attribute value pair AVP data in hidden mode Use the undo tunnel avp hidden command to ...

Page 1766: ... flow control function is disabled Example Enable the L2TP tunnel flow control function Sysname system view Sysname l2tp group 1 Sysname l2tp1 tunnel flow control tunnel name Syntax tunnel name name undo tunnel name View L2TP group view Parameter name Name for the tunnel at the local end a string of 1 to 30 characters Description Use the tunnel name command to specify the name of a tunnel at the l...

Page 1767: ...consists of 24 characters for example _ TT8F Y5SQ Q MAF4 1 Description Use the tunnel password command to specify the password for tunnel authentication Use the undo tunnel password command to remove the configuration By default the password for tunnel authentication is null Example Set the password for tunnel authentication to yougotit specifying to display the password in cipher text Sysname sys...

Page 1768: ...el timer hello command to restore the default By default the interval is 60 seconds You can set different hello intervals for the LNS and LAC Example Set the hello interval to 99 seconds Sysname system view Sysname l2tp group 1 Sysname l2tp1 tunnel timer hello 99 ...

Page 1769: ...information and running statistic information on each interface Sysname display qos car interface Ethernet1 0 Interface Ethernet1 0 Direction Inbound Rule s If match Any CIR 10 kbps CBS 2000 byte EBS 0 byte Green Action pass Red Action discard Green 0 0 Packets Bytes Red 0 0 Packets Bytes Direction Outbound Rule s If match ACL 2002 CIR 10 kbps CBS 1875 byte EBS 0 byte Green Action pass Red Action ...

Page 1770: ... action undo qos car inbound outbound any acl ipv6 acl number carl carl index View Interface view Parameters inbound Limits rate for the packets received by the interface CBS Committed Burst Size i e the depth of token bucket carrying burst traffic in byte EBS Excess Burst Size i e the size of the burst traffic exceeding the committed traffic in dual token bucket algorithm in byte Green Action Ope...

Page 1771: ...n taken on the packets when the traffic rate does not conform to CIR The default action is discard action Action taken on a packet which can be continue Has it to be dealt with by the next CAR policy discard Discards the packet pass Sends the packet remark dscp continue new dscp Remarks the packet with a new DSCP value and hands it over to the next CAR policy Ranges from 0 to 63 When it is display...

Page 1772: ... carl index precedence precedence value mac mac address dscp dscp list undo qos carl carl index View System view Parameters carl index CAR list number in the range 1 to 199 precedence value Precedence in the range 0 to 7 mac address Hexadecimal MAC address dscp list DSCP value list When it is displayed by a number it ranges from 0 to 63 when it is displayed as a character it can be valued af11 af1...

Page 1773: ...pecified for several times the system by default regards that only one DSCP value has been specified The DSCP values are related to one another in the way of OR Examples Configure CARL rule 1 with packet precedence 7 Sysname system view Sysname qos carl 1 precedence 7 ...

Page 1774: ...1774 CHAPTER 105 TRAFFIC POLICING TP CONFIGURATION COMMANDS ...

Page 1775: ...net1 0 Rule s If match ACL 2001 CIR 200 kbps CBS 50000 byte EBS 0 byte Queue Length 100 Packet Queue Size 70 Packet Passed 0 0 Packets Bytes Discarded 0 0 Packets Bytes Delayed 0 0 Packets Bytes Table 474 Description on the fields of the display qos gts command Field Description Interface Interface name consisting of interface type and interface number Rule s Matching rules of packets which can be...

Page 1776: ...en bucket algorithm in the range 0 to 19375000 bytes It defaults to 0 that is only one token bucket is used for policing queue length queue length The maximum length of the buffer in the range 1 to 1024 By default queue length is 50 Description Use the qos gts command to set shaping parameters for all or a specified type of traffic and perform traffic shaping Use the undo qos gts command to remove...

Page 1777: ...ACL rule 2001 at the Ethernet1 0 interface The normal traffic is 200 kbps The burst size twice of the normal traffic 50000 bytes is allowed at the first time Then packets are normally transmitted when the traffic is less than or equal to 200 kbps When the rate is larger than 200 kbps packets will be added to the buffer queue which is 100 long Sysname system view Sysname interface ethernet1 0 Sysna...

Page 1778: ...1778 CHAPTER 106 TRAFFIC SHAPING CONFIGURATION COMMANDS ...

Page 1779: ...os lr interface Interface Ethernet1 0 Direction Outbound CIR 10 kbps CBS 1875 byte EBS 0 byte Passed 0 0 Packets Bytes Delayed 0 0 Packets Bytes Active Shaping NO Direction Inbound CIR 10 kbps CBS 1875 byte EBS 0 byte Passed 0 0 Packets Bytes Delayed 0 0 Packets Bytes Active Shaping NO Table 475 Description on the fields of the display qos lr command Field Description Interface Interface name cons...

Page 1780: ...sed for policing Description Use the qos lr command to limit the transmitting or receiving rate of the interface Use the undo qos lr command to remove the limit Execute the command in interface view and the setting is effective on the current interface only Examples Limit packet forwarding rate of interface Ethernet1 0 to the normal rate 20 kbps The CBS value is 2000 bytes and the EBS value is 0 S...

Page 1781: ...st size configured by the user is not a specified one the system automatically selects the nearest one For a device which cannot be installed with an external interface module or when the number of the interfaces is 4 or 9 this argument is not supported ebs excess burst size This argument is not supported on the interface on a layer 2 module for a device which cannot be installed with an external ...

Page 1782: ...1782 CHAPTER 107 LINE RATE CONFIGURATION COMMANDS ...

Page 1783: ...ormation for all system predefined classes or all user predefined classes Examples Display configuration information about the class Sysname display traffic classifier user defined User Defined Classifier Information Classifier USER1 Operator AND Rule s if match ip precedence 5 Classifier database Operator AND Rule s if match acl 3131 if match inbound interface Ethernet1 0 Table 476 Description on...

Page 1784: ...le dscp list is the list of DSCP values and up to eight DSCP values can be input The DSCP value is in the range 0 to 63 When it is displayed in characters its value can be af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 cs1 cs2 cs3 cs4 cs5 cs6 cs7 default ef inbound interface interface type interface number Define inbound interface matching rule interface type interface number specifie...

Page 1785: ...iple commands which cannot be overwritten The match rules of the destination MAC address are only meaningful for interfaces of Ethernet type 3 Define source MAC address matching rule For a class you can configure multiple commands which cannot be overwritten The match rules of the source MAC address are only meaningful for interfaces of Ethernet type 4 Define matching rule for the class When defin...

Page 1786: ...values in one command If multiple 802 1p priorities of the same value are specified the system regards them as one Relation between different 802 1p priority values is OR 7 Define inbound interface matching rule For a class you can configure multiple commands which cannot be overwritten Before defining this matching rule make sure that the interface exists If the specified interface is a dynamic o...

Page 1787: ...which cannot be overwritten When the command is configured the vlan id values will be arranged automatically in ascending order Only when the specified VLAN ID values are identical with those in the rule sequence may be different can the command be deleted You may multiple VLAN ID values in one command If multiple VLAN IDs of the same value are specified the system regards them as one Relation bet...

Page 1788: ...ch any Define match rule of class2 and class1 must be used Therefore class1 is configured first The match rule of class1 is the IP precedence is 5 Sysname system view Sysname traffic classifier class1 Sysname classifier class1 if match ip precedence 5 Define the packet whose class is class2 match rule is class1 and destination MAC address is 0050 BA27 BED3 Sysname system view Sysname traffic class...

Page 1789: ...sifier class1 Sysname classifier class1 if match qos local id 3 Change the ACL of class 1 used for traffic classification from ACL 2008 to ACL 2009 Sysname system view Sysname traffic classifier class1 Sysname classifier class1 undo if match acl 2008 update 2009 traffic classifier Syntax traffic classifier tcl name operator and or undo traffic classifier tcl name View System View Parameters and Sp...

Page 1790: ...fault class ef af1 af2 af3 af4 ip prec0 ip prec1 ip prec2 ip prec3 ip prec4 ip prec5 ip prec6 ip prec7 mpls exp0 mpls exp1 mpls exp2 mpls exp3 mpls exp4 mpls exp5 mpls exp6 and mpls exp7 Related commands qos policy qos apply policy interface view classifier behavior Examples Define a class named as class1 Sysname system view Sysname traffic classifier class1 Sysname classifier class1 ...

Page 1791: ...cess burst size Excessive burst size in the range 0 to 19375000 bytes It defaults to 0 green Action conducted to packets when traffic of packets conforms to the CIR By default the action of green is pass red Action conducted to packets when traffic of packets does not conform to the CIR By default the action of red is discard action Action conducted on a packet which is divided into the following ...

Page 1792: ...he rate exceeds 200 kbps the IP precedence of the packet turns to 0 and the packet is transmitted Sysname system view Sysname traffic behavior database Sysname behavior database car cir 200 cbs 50000 ebs 0 green pass r ed remark prec pass 0 display traffic behavior Syntax display traffic behavior system defined user defined behavior name View Any view Parameters system defined Behavior pre defined...

Page 1793: ... delete the configuration Examples Configure the action of filtering discarded packets for traffic behavior Sysname system view Sysname traffic behavior database Sysname behavior database filter deny gts Syntax gts cir committed information rate cbs committed burst size ebs excess burst size queue length queue length Table 478 Description on the fields of display traffic behavior user defined Fiel...

Page 1794: ...direction of the interface Application of class based GTS policy including shape policy on an interface will cause the previously configured qos gts command ineffective If this command is frequently configured on the same traffic behavior the last configuration will overwrite the previous ones Related commands qos policy traffic behavior classifier behavior n IPv6 is not supported for traffic shap...

Page 1795: ... for traffic behavior to the interface Ethernet1 0 Sysname system view Sysname traffic behavior database Sysname behavior database redirect interface ethernet1 0 remark atm clp Syntax remark atm clp atm clp value undo remark atm clp View Traffic behavior view Parameters atm clp value Value of the cell loss priority CLP bit in ATM cells 0 or 1 Description Use the remark atm clp command to have the ...

Page 1796: ...is marked Related commands qos policy traffic behavior classifier behavior Examples Set the 802 1p priority value of the remarked packet to 2 Sysname system view Sysname traffic behavior database Sysname behavior database remark dot1p 2 remark dscp Syntax remark dscp dscp value undo remark dscp View Traffic behavior view Parameters dscp value DSCP value in the range 0 to 63 which can be any of the...

Page 1797: ...value undo remark fr de View Traffic behavior view Parameters fr de value Value of the DE flag bit in the FR packet 0 or 1 Description Use the remark fr de command to set the remarked DE bit of FR packets Use the undo remark fr de command to remove the setting By default no DE bit of FR packets is configured Related commands qos policy traffic behavior classifier behavior af32 011100 28 af33 01111...

Page 1798: ...P precedence remark is configured Related commands qos policy traffic behavior classifier behavior Examples Remark the IP precedence of the remarked IP packets to 6 Sysname system view Sysname traffic behavior database Sysname behavior database remark ip precedence 6 remark mpls exp Syntax remark mpls exp exp value undo remark mpls exp View Traffic behavior view Parameters exp value EXP domain val...

Page 1799: ... traffic behavior classifier behavior Examples Configure the qos local id value of remarked packet to 2 Sysname system view Sysname traffic behavior database Sysname behavior database remark qos local id 2 traffic behavior Syntax traffic behavior behavior name undo traffic behavior behavior name View System view Parameters behavior name Behavior name a string of characters in the range 1 to 31 Des...

Page 1800: ...1800 CHAPTER 109 DEFINING TRAFFIC BEHAVIOR COMMANDS Examples Define a traffic behavior named behavior1 Sysname system view Sysname traffic behavior behavior1 Sysname behavior behavior1 ...

Page 1801: ... command to remove the application of the class in the policy Each class in the policy can only be associated with one behavior If the class and traffic behavior specified when configuring this command do not exist the system will create an empty class and an empty traffic behavior The undo command is not used for the default class Related commands qos policy Examples Specify the behavior test for...

Page 1802: ...ined policy Sysname display qos policy user defined User Defined QoS Policy Information Policy test Classifier default class Behavior be none Classifier USER1 Behavior USER1 Marking Remark IP Precedence 3 Committed Access Rate CIR 200 kbps CBS 15000 byte EBS 0 byte Conform Action pass Exceed Action discard Expedited Forwarding Bandwidth 50 Kbps CBS 1500 Bytes Classifier database Behavior database ...

Page 1803: ...the configuration and operating state about the policy on the interface Ethernet 1 0 and PVC Sysname display qos policy interface Ethernet 1 0 Interface Ethernet1 0 Direction Outbound Policy test Classifier default class Matched 0 0 Packets Bytes Rule s if match any Behavior be Default Queue Flow Based Weighted Fair Queuing Max number of hashed queues 256 Matched 0 0 Packets Bytes Enqueued 0 0 Pac...

Page 1804: ...ed Forwarding Bandwidth 30 Kbps Matched 0 0 Packets Bytes Enqueued 0 0 Packets Bytes Discarded 0 0 Packets Bytes qos apply policy interface view Syntax qos apply policy policy name inbound outbound dynamic undo qos apply policy inbound outbound View Interface view Table 481 Description on the fields of the display qos policy interface command Field Description Interface Interface name consisting o...

Page 1805: ...ed with traffic behaviors specified using queue af queue ef queue wfq or gts Applying the policy on interface following these rules The VT interface referenced by common physical port and MP can apply the policy configured with various features including remark car gts queue af queue ef queue wfq wred etc The policy configured with TS e g gts and queue e g queue ef queue af queue wfq features cann...

Page 1806: ... policy USER1 in the inbound direction of interface Ethernet1 0 Sysname system view Sysname interface Ethernet1 0 Sysname Ethernet1 0 qos apply policy USER1 inbound qos policy Syntax qos policy policy name undo qos policy policy name View System view Parameters policy policy name Policy name a string of characters in the range 1 to 31 Description Use the qos policy command to define a policy and e...

Page 1807: ...1807 Sysname system view Sysname qos policy user1 Sysname qospolicy user1 ...

Page 1808: ...1808 CHAPTER 110 DEFINING POLICY COMMANDS ...

Page 1809: ...limit of a queue in the range 1 to 1024 By default the length is 75 Description Use the qos fifo queue length command to set the length limit of FIFO queue Use the undo qos fifo queue length command to restore the default value of the queue length Examples Set the length of FIFO queue to 100 Sysname system view Sysname interface Ethernet1 0 Sysname Ethernet1 0 qos fifo queue length 100 ...

Page 1810: ...1810 CHAPTER 111 FIFO QUEUING CONFIGURATION COMMANDS ...

Page 1811: ...ted commands qos pq Examples Display the PQ configuration and statistics at interface Ethernet 1 0 Sysname display qos pq interface ethernet 1 0 Interface Ethernet1 0 Priority queueing PQL 1 Outbound queue Size Length Discards Top 0 20 0 Middle 0 40 0 Normal 0 60 0 Bottom 0 80 0 display qos pql Syntax display qos pql pql number View Any view Table 482 Description on the fields of the display pq in...

Page 1812: ... to 16 Description Use the qos pq command to apply a group of priority list to an interface Use the undo qos pq command to restore the congestion management policy at the interface to FIFO By default the congestion management policy at the interfaces is FIFO Except for interfaces encapsulated with X 25 all physical interfaces can use PQ An interface can only use one group of priority lists This co...

Page 1813: ...ancel the configuration and restore the default value During traffic classification if a packet does not match any rule it will be put into the default priority queue For the same pql index repeated use of this command will set new default queue Related commands qos pql inbound interface qos pql protocol qos pql queue qos pq Examples Set the default queue of the packets matching no rules in PQL 12...

Page 1814: ... Create rule 12 making packets from interface serial 2 0 to be put into the middle queue Sysname system view Sysname qos pql 12 inbound interface serial2 0 middle qos pql protocol Syntax qos pql pql index protocol ip queue key key value queue bottom middle normal top undo qos pql pql index protocol ip queue key key value View System view Parameters pql index PQL index in the range 1 to 16 top midd...

Page 1815: ... Sysname system view Sysname qos pql 1 protocol ip acl 3100 queue top qos pql queue Syntax qos pql pql index queue bottom middle normal top queue length queue length undo qos pql pql index queue bottom middle normal top queue length View System view Parameters pql index PQL index in the range 1 to 16 queue length Four length values of priority queues in the range 1 to 1024 greater than Length 0 to...

Page 1816: ...e qos pql queue command to specify the maximum number of packets that can wait in each of the priority queues or the length of a PQ Use the undo qos pql queue command to restore to the default value of each PQ length If a queue is full any newly incoming packet will be dropped Related commands qos pql default queue qos pql inbound interface qos pql protocol qos pq Examples Specify the maximum numb...

Page 1817: ...ation and statistics of all interfaces will be displayed Related commands qos cq Examples Display CQ configuration and statistics at the interface Ethernet 1 0 Sysname display qos cq interface 1 0 Interface Ethernet1 0 Custom queueing CQL 1 Outbound queue Size Length Discards 0 0 20 0 1 0 20 0 2 0 20 0 3 0 20 0 4 0 20 0 5 0 20 0 6 0 20 0 7 0 20 0 8 0 20 0 9 0 20 0 10 0 20 0 11 0 20 0 12 0 20 0 13 ...

Page 1818: ...gement policy at the interface to FIFO By default the congestion management policy at the interfaces is FIFO Except for interfaces encapsulated with X 25 all physical interfaces can use CQ One interface can only use one group of customized queues This command can configure multiple classification rules for each group in the CQL During traffic classification the system matches packets along the rul...

Page 1819: ...h any rule it will go to the default queue Related commands qos cql inbound interface qos cql protocol qos cql queue serving qos cql queue qos cq Examples Assign default queue 2 to CQL 5 Sysname system view Sysname qos cql 5 default queue 2 qos cql inbound interface Syntax qos cql cql index inbound interface interface type interface number queue queue number undo qos cql cql index inbound interfac...

Page 1820: ...queue queue number undo qos cql cql index protocol ip queue key key value View System view Parameters cql index CQL index in the range 1 to 16 queue number Queue number in the range 0 to 16 ip Protocol name is IP queue key Associated key of a queue key value Matching rule of a queue associated key When protocol name is IP the values of queue key and key value are displayed in the following table T...

Page 1821: ... any IP packet that matches the ACL 3100 be put into queue 3 Sysname system view Sysname qos cql 5 protocol ip acl 3100 queue 3 qos cql queue Syntax qos cql cql index queue queue number queue length queue length undo qos cql cql index queue queue number queue length View System view Parameters cql index CQL index in the range 1 to 16 queue number Queue number in the range 0 to 16 queue length The ...

Page 1822: ...CQL index in the range 1 to 16 queue number Queue number in the range 0 to 16 byte count Number of bytes in packets that the given queue sends in each poll in the range 1 to 16 777 215 bytes The default setting is 1500 bytes Description Use the qos cql queue serving command to set the byte count of the packets sent from a given queue in each poll Use the undo qos cql queue serving command to resto...

Page 1823: ...face Sysname display qos wfq interface ethernet 1 0 Interface Ethernet1 0 Weighted Fair queueing Outbound queue Size Length Discards WFQ 0 100 0 Hashed by IP Precedence Hashed queues 0 0 128 Active Max active Total Table 485 Description on the fields of the display qos wfq interface command Field Description Interface Interface name consisting of interface type and interface number Outbound queue ...

Page 1824: ...is 256 Description Use the qos wfq command to apply WFQ to the interface or modify WFQ parameters on the interface Use the undo qos wfq command to restore the default congestion management mechanism FIFO Except for interfaces encapsulated with X 25 all physical interfaces can use WFQ When WFQ is not used on interface use the qos wfq command to enable the interface to use WFQ policy and specify WFQ...

Page 1825: ...y qos cbq interface command to display CBQ configuration information and operating status of the specified PVC on specified ATM interface or on all interfaces Examples Display CBQ configuration information and operating status of the specified PVC on specified ATM interface or on all interfaces Sysname display qos cbq interface Interface Ethernet11 0 Class Based Queuing Outbound queue Total Size D...

Page 1826: ... may trigger CBQ reconstruction thus resulting in CBQ s reallocation of queue width The modification of the baudrate or speed of a physical interface however does not trigger this reconstruction process To apply QoS policies to a logical interface properly you must use the shutdown command to shut down all the physical interfaces bound to the logical interface and then use the undo shutdown comman...

Page 1827: ...mples Configure traffic behavior named database and configure the minimum bandwidth of the traffic behavior to 200 kbps Sysname system view Sysname traffic behavior database Sysname behavior database queue af bandwidth 200 queue ef Syntax queue ef bandwidth bandwidth cbs burst pct percentage cbs ratio ratio undo queue ef View Traffic behavior view Parameters bandwidth Bandwidth in kbps in the rang...

Page 1828: ...ratio ratio CBS Interface available bandwidth percentage ratio 100 1000 For the absolute value form queue ef bandwidth bandwidth cbs burst CBS burst or bandwidth 25 if burst is not specified Related commands qos policy traffic behavior classifier behavior Examples Configure packets to enter priority queue The maximum bandwidth is 200 kbps and CBS is 5000 bytes Sysname system view Sysname traffic b...

Page 1829: ...do queue length command to delete configuration By default tail drop is configured This command can be used only after the queue af or queue wfq command has been configured The queue length which has been configured will be deleted when the undo queue af or undo queue wfq command is executed The queue length which has been configured will be deleted when the random drop mode is configured via the ...

Page 1830: ...pt WRED and count discard rate with IP precedence Sysname system view Sysname traffic behavior database Sysname behavior database queue wfq Sysname behavior database wred wred dscp Syntax wred dscp dscp value low limit low limit high limit high limit discard probability discard prob undo wred dscp dscp value View Traffic behavior view Parameters dscp value DSCP value in the range 0 to 63 which can...

Page 1831: ... limit low limit high limit high limit discard probability discard prob undo wred ip precedence precedence View Traffic behavior view Parameters precedence IP precedence in the range 0 to 7 low limit low limit Specifies the lower threshold in the range 1 to 1024 in terms of the number of packets The system default is 10 high limit high limit Specifies the upper threshold in the range 1 to 1024 in ...

Page 1832: ...stant View Traffic behavior view Parameters exponent Exponential in the range 1 to 16 It is 9 by default Description Use the wred weighting constant command to set exponential for the calculation of average queue length by WRED Use the undo wred weighting constant command to delete the configuration This command can be used only after the queue af command or the queue wfq command has been configur...

Page 1833: ...ority queue configuration and statistics on all interfaces Examples Display information of the current IP RTP Priority queue Sysname display qos rtpq interface Interface Ethernet1 0 Output queue RTP queue Size Max Outputs Discards 0 0 0 0 qos reserved bandwidth Syntax qos reserved bandwidth pct percent undo qos reserved bandwidth Table 486 Description on the fields of the display qos rtpq command ...

Page 1834: ...ved bandwidth allocated for RTP priority queue to 70 of the available bandwidth Sysname system view Sysname interface Serial1 0 Sysname Serial1 0 qos reserved bandwidth pct 70 qos rtpq Syntax qos rtpq start port first rtp port number end port last rtp port number bandwidth bandwidth cbs burst undo qos rtpq View Interface view Parameters start port first rtp port number Specifies the first UDP port...

Page 1835: ... to configure the bandwidth to be greater than 80 of the total bandwidth please first change the maximum reserved bandwidth via qos reserved bandwidth command In bandwidth allocation the bandwidth for data load IP header UDP header and RTP header is allocated except that for the Layer 2 frame header Therefore it is obligatory to reserve 20 of the total bandwidth Related commands qos reserved bandw...

Page 1836: ...1836 CHAPTER 116 RTP PRIORITY QUEUE CONFIGURATION COMMANDS ...

Page 1837: ...QoS queuing To resolve this problem the token transmission function of QoS was introduced This function provides a flow control mechanism at the underlying layer queuing level It can control the number of packets sent to the underlying interface queues based on the number of tokens If FTP applies you are recommended to set the number of tokens sent by an interface to 1 n After you configure this c...

Page 1838: ...1838 CHAPTER 117 QOS TOKEN CONFIGURATION COMMANDS ...

Page 1839: ...n information of all mapping tables will be displayed Related commands qos map table dot1p Ip Examples Display configuration information about the mapping table of 802 1p priority to local priority Sysname display qos map table dot1p dp MAP TABLE NAME dot1p lp TYPE pre define IMPORT EXPORT 0 2 1 0 2 1 3 3 4 4 5 5 6 6 7 7 Table 487 Description on the fields of the display qos map table command Fiel...

Page 1840: ...import import value list export export value undo import import value list all View Priority mapping table view Parameters import value list Maps input parameter list export value Maps export parameters all Deletes all parameters in this mapping table Description Use the import command to configure the parameters in the specified priority mapping table to define a mapping rule or a group of mappin...

Page 1841: ...802 1p priority to local priority The local priority corresponding to 802 1p priority 4 and 5 is local priority 1 Sysname system view Sysname qos map table dot1p lp Sysname maptbl dot1p lp import 4 5 export 1 4 4 5 5 6 6 7 7 Table 488 Parameters in the default mapping table 802 1p priority Local priority ...

Page 1842: ...1842 CHAPTER 118 PRIORITY MAPPING TABLE CONFIGURATION COMMANDS ...

Page 1843: ...of current port Use the undo qos priority command to restore to the default value Port group is supported if the number of the interfaces on a layer 2 module is 16 24 or 48 Execute the command in interface view and the setting is effective on the current interface only Execute the command in interface group view and the setting is effective on all interfaces in the interface group Examples Configu...

Page 1844: ...1844 CHAPTER 119 PORT PRIORITY CONFIGURATION COMMANDS ...

Page 1845: ...l interfaces will be displayed Examples Display the information about the port priority trust mode currently configured Sysname display qos trust interface ethernet 1 0 Interface Ethernet1 0 Port priority information Port priority 4 qos trust Syntax qos trust dot1p undo qos trust View L2 module Ethernet interface view port group view Parameters dot1p Specifies to trust 802 1p priority carried with...

Page 1846: ...s supported if the number of the interfaces on a layer 2 module is 16 24 or 48 Execute the command in interface view and the setting is valid on the current interface only Execute the command in interface group view and the setting is valid on all interfaces in the interface group Examples Configure the priority trust mode on the port Ethernet 1 0 to be 802 1p priority carried with the trust packe...

Page 1847: ...d interface Sysname display qos wred interface ethernet 1 0 Interface Ethernet1 0 Current WRED configuration Exponent 9 1 512 Precedence Low High Discard Random Tail Limit Limit Probability Discard Discard 0 10 30 10 0 0 1 100 1000 1 0 0 2 10 30 10 0 0 3 10 30 10 0 0 4 10 30 10 0 0 5 10 30 10 0 0 6 10 30 10 0 0 7 10 30 10 0 0 Table 490 Description on the fields of the display qos wred interface co...

Page 1848: ...fault IP precedence is used for calculating drop probability Description Use the qos wred enable command to apply WRED at an interface Use the undo qos wred enable command to restore the default dropping method High limit Higher limit for queue Discard probability Denominator for calculating drop probability Table 491 Description on the fields of the display qos wred interface command Field Descri...

Page 1849: ... limit Specifies the upper threshold in the range 1 to 1024 in terms of the number of packets The system default is 30 discard probability discard prob Specifies the denominator for drop probability in the range 1 to 255 The system default is 10 Description Use the qos wred dscp command to set the lower threshold the higher threshold and drop probability denominator for a specific DSCP value Use t...

Page 1850: ...edence command to configure the lower threshold the higher threshold and the drop probability denominator for an IP precedence value Use the undo qos wred ip precedence command to restore the default WRED parameters can be set only after the qos wfq command has been used to apply WFQ and the qos wred enable command has been used to apply IP precedence based WRED to the interface The thresholds lim...

Page 1851: ...ighting constant command to restore the default Before you can configure WRED parameters on an interface you must apply WRED with the qos wred enable command on it Related commands qos wred enable display qos wred interface Examples Set the exponent used to calculate average queue length to 6 on Ethernet1 0 Sysname system view Sysname interface ethernet1 0 Sysname Ethernet1 0 qos wfq queue length ...

Page 1852: ...1852 CHAPTER 121 WRED CONFIGURATION COMMANDS ...

Page 1853: ... configuration information of WRED table1 which is the list for configured WRED parameters Sysname display qos wred table 1 Table Name 1 Table Type EXP based WRED Exponent 6 Precedence LowLimit HighLimit DiscardProbability 0 0 0 10 1 0 0 10 2 0 0 10 3 0 0 10 4 0 0 10 5 0 0 10 6 0 0 10 7 0 0 10 Table 492 Description on the fields of the display qos wred table command Field Description Table name WR...

Page 1854: ... table By default no global WRED table exists It is not allowed to delete the table being used The queue based WRED table can be applied only on Layer 2 port on which the queue based WRED table can be applied only Related commands qos wfq qos wred enable display qos wred interface Examples Create queue based WRED table exp table1 Sysname system view Sysname qos wred queue table exp table1 Sysname ...

Page 1855: ...apply queue table1 queue Syntax queue queue value low limit low limit discard probability discard prob undo queue queue value all View WRED table view Parameters queue value Queue number which is applicable to L2 port only It ranges from 0 to 3 low limit low limit Lower threshold in the range 1 to 128 It defaults to 10 discard probability discard prob Denominator of drop probability each drop leve...

Page 1856: ...1856 CHAPTER 122 WRED TABLE CONFIGURATION COMMANDS Sysname system view Sysname qos wred queue table queue table1 Sysname wred table queue table1 queue 1 low limit 10 ...

Page 1857: ...d to delete the matching rule If this command is frequently configured under one class the last configuration will overwrite the previous ones Related commands traffic classifier Examples Define the rule to match the packet whose EXP is 3 or 4 Sysname system view Sysname traffic classifier database Sysname classifier database if match mpls exp 3 4 qos cql protocol mpls exp Syntax qos cql cql index...

Page 1858: ... the MPLS protocol CQL 10 and sets the queue 1 to correspond with EXP value 1 Sysname system view Sysname qos cql 10 protocol mpls exp 1 queue 1 qos pql protocol mpls exp Syntax qos pql pql index protocol mpls exp exp value queue top middle normal bottom undo qos pql pql index protocol mpls exp exp value View System view Parameters pql index Group number of priority queuing list PQL in the range 1...

Page 1859: ...op remark mpls exp Syntax remark mpls exp exp value undo remark mpls exp View Traffic behavior view Parameters exp value EXP value of MPLS in the range 0 to 7 Description Use the remark mpls exp command to configure the EXP value of remarked MPLS packet Use the undo remark mpls exp command to remove the configuration Related commands traffic classifier qos policy classifier behavior Examples Set E...

Page 1860: ...1860 CHAPTER 123 MPLS QOS CONFIGURATION COMMANDS ...

Page 1861: ...th DAR which also impacts working of other modules To avoid the case users can limit the maximum number of connections that can be recognized by DAR in order to save system resources When the connection number exceeds the maximum threshold DAR will not recognize it and directly mark it to be unrecognizable Examples Set the maximum number of connections recognizable by DAR to 1000 Sysname system vi...

Page 1862: ...t number and port max for the minimum port number The difference value between the maximum number and minimum number shall be smaller than 1000 i e port max port min 1000 The port number of other application protocols in the DAR feature cannot be within the range Table 493 Protocols of pre defined ports Protocol name Protocol type Pre defined port number BGP TCP UDP 179 Citrix TCP 1494 Citrix UDP ...

Page 1863: ...ure FTP TCP 990 Secure HTTP TCP 443 Secure IMAP TCP UDP 585 993 Secure IRC TCP UDP 994 Secure LDAP TCP UDP 636 Secure NNTP TCP UDP 563 Secure POP3 TCP UDP 995 Secure TELNET TCP 992 SIP TCP UDP 5060 Skinny TCP 2000 2001 2002 SMTP TCP 25 SNMP TCP UDP 161 162 SOCKS TCP 1080 Sqlnet TCP 1521 Sqlserver TCP 1433 SSH TCP 22 Streamwork UDP 1558 Sunrpc TCP UDP 111 Syslog UDP 514 Telnet TCP 23 Tftp UDP 69 Vd...

Page 1864: ...ser defined protocol which are user defined01 user defined02 user defined10 user defined name New name of the user defined protocol in the length of 1 to 14 characters The new name cannot be the same with any existing name and cannot be all total tcp udp ip or user defined01 user defined02 user defined10 Description Use the dar protocol rename command to rename the user defined protocol Use the un...

Page 1865: ...e data streams By default the function is disabled Examples Enable DAR packet statistics function on the interface Ethernet1 0 and set the interval to 7 minutes Sysname system view Sysname interface Ethernet 1 0 Sysname Ethernet1 0 dar protocol statistic flow interval 7 display dar information Syntax display dar information View Any view Parameters None Description Use the display dar information ...

Page 1866: ...ral application layer protocols Examples Display information about all protocols Sysname display dar protocol all Protocol TCP UDP Port bgp tcp 179 udp 179 bittorrent tcp range 6881 6889 citrix tcp 1494 udp 1604 cuseeme tcp 7648 7649 udp 7648 7649 24032 dhcp udp 67 68 dns tcp 53 udp 53 exchange tcp 135 fasttrack tcp 1214 finger tcp 79 ftp tcp 21 gnutella tcp 5634 6355 range 6346 6349 gopher tcp 70...

Page 1867: ... 512 513 514 rip udp 520 rsvp udp 1698 1699 rtcp rtp rtsp tcp 554 secure ftp tcp 990 secure http tcp 443 secure imap tcp 585 993 udp 585 993 secure irc tcp 994 udp 994 secure ldap tcp 636 udp 636 secure nntp tcp 563 udp 563 secure pop3 tcp 995 udp 995 secure telnet tcp 992 sip tcp 5060 udp 5060 skinny tcp 2000 2001 2002 smtp tcp 25 snmp tcp 161 162 udp 161 162 socks tcp 1080 sqlnet tcp 1521 sqlser...

Page 1868: ...cols Examples Display the rename information of user defined protocols Sysname display dar protocol rename Default Name User Defined Name user defined01 merry user defined02 user defined03 user defined04 user defined05 user defined06 user defined07 user defined08 user defined09 user defined10 Table 495 Description on the fields of the display dar protocol command Field Description Protocol Protoco...

Page 1869: ...t is bi directional in Displays the traffic on the inbound direction out Displays the traffic on the outbound direction Description Use the display dar protocol statistic command to display DAR packet statistics information Examples Display statistics information about all protocol packets Sysname display dar protocol statistic Interface Ethernet0 0 Port In Out Packet Count Byte Count Bit Rate Max...

Page 1870: ...0 the new names will apply if the protocols user defined01 to user defined10 are renamed in which unknown tcp indicates the irrecognizable TCP packet unknown udp indicates the irrecognizable UDP packet and unknown others indicates other irrecognizable IP packets The user defined01 user defined02 user defined10 are user defined protocol packets whose port numbers are invalid before the dar protocol...

Page 1871: ... to 32 characters See Table 498 for the matching rules of simple wildcard characters Description Use the if match protocol http command to configure HTTP matching rules Use the undo if match protocol http command to delete the rules By default no matching rule is configured Examples Define the class http class and configure the matching rule to be the HTTP packet with the host name abc com Table 4...

Page 1872: ...ed with spaces Description Use the if match protocol rtp command to configure RTP matching rules Use the undo if match protocol rtp command to delete the rules If no payload type is specified it matches all RTP packets By default no RTP matching rule is configured Examples Define the class rtp class1 and configure the matching rule to be the RTP packet in the audio payload type Sysname system view...

Page 1873: ...elete DAR protocol statistics information i e to restore the statistics to 0 Examples Delete FTP protocol statistics information of the interface Ethernet 1 0 Sysname reset dar protocol statistic protocol ftp interface Ethernet 1 0 Deletes all statistics information Sysname reset dar protocol statistic all reset dar session Syntax reset dar session View User view Parameters None Description Use th...

Page 1874: ...1874 CHAPTER 124 DAR CONFIGURATION COMMANDS ...

Page 1875: ...t FIFO queuing is adopted Examples Define a classifier named class 1 Sysname system view Sysname traffic classifier class1 Sysname classifier class1 quit Define a traffic behavior named behavior 1 Sysname traffic behavior behavior1 Sysname behavior behavior1 queue af bandwidth 56 Sysname behavior behavior1 quit Define a policy named policy 1 and associate class 1 with behavior Sysname qos policy p...

Page 1876: ...o restore the default value If the packet direction is not specified in configuration the parameter will be set in both inbound and outbound directions The committed burst size is the packet traffic that is committed to send on a FR network within an interval of Tc When there is no congestion on the network the FR network ensures this part of traffic could be sent successfully Related commands ebs...

Page 1877: ...fr class test1 Sysname fr class test1 cir 32000 cir allow Syntax cir allow inbound outbound committed information rate undo cir allow inbound outbound View Frame relay class view Parameters inbound Sets the CIR ALLOW of an inbound packet valid only when FRTP is enabled on the interface outbound Sets the CIR ALLOW of an outbound packet valid only when FRTS is enabled on the interface committed info...

Page 1878: ...circuit to the total queue length ranging from 1 to 100 By default it is 100 Description Use the congestion threshold command to enable congestion management function of FR virtual circuit Use the undo congestion threshold command to disable this function When the percentage of current queue length to the total queue length of virtual circuit exceeds the set congestion threshold it will be regarde...

Page 1879: ...q cql 10 display fr class map Syntax display fr class map fr class class name interface interface type interface number View Any view Parameters class name FR class name a string of 1 to 30 characters interface type interface number Specifies an interface by its type and number Description Use the display fr class map command to view information on FR class to interface map including DLCIs of inte...

Page 1880: ...tion on the fields of the display fr class map command Field Description Serial1 0 FR interface The first fr class FR class on FR interface Serial1 0 1 Subinterface on the FR interface The second fr class FR class on FR subinterface fr dlci 100 Serial1 0 Virtual circuit on FR interface specifying the virtual circuit belongs to the main interface or the subinterface The third fr class FR class asso...

Page 1881: ...ent type Three options are available FRF 12 FRF 11 Annex C and Motorola fragment size Fragment size in out drop Number of received fragment packets number of sent fragment packets number of discarded fragment packets Table 502 Description on the fields of the display fr fragment info interface Field Description Type Fragment type Three options are available FRF 12 FRF 11 Annex C and Motorola fragm...

Page 1882: ...fr switch Examples Display all FR PVC information Sysname display fr switch table all Switch Name Interface DLCI Interface DLCI State test MFR1 0 100 MFR1 1 101 UP display qos policy interface Syntax display qos policy interface interface type interface number dlci dlci number user defined inbound outbound View Any view Parameters interface type interface number Specifies an interface by its type ...

Page 1883: ... xujin Matched 0 0 Packets Bytes Operator Logic AND Rule s if match acl 2001 Behavior Assured Forwarding Bandwidth 10 Kbps Matched 0 0 Packets Bytes Enqueued 0 0 Packets Bytes Discarded 0 0 Packets Bytes Table 504 Description on the fields of the display qos policy interface command Field Description MFR1 0 DLCI 25 FR interface and virtual circuit with CBQ applied Direction Direction of the interf...

Page 1884: ...eued Number of enqueued packets or bytes Discarded Number of discarded packets or bytes Discard Method Discard method Assured Forwarding Information of assured forwarding queue Bandwidth The minimum bandwidth of an AF queue Table 504 Description on the fields of the display qos policy interface command Field Description Table 505 Description on the fields of the display qos pvc pq interface comman...

Page 1885: ...occurs on the network this part of excess traffic will be first discarded When this command is used the set EBS value will be valid in both inbound and outbound directions if the parameters inbound and outbound are not specified Related commands cbs cir allow cir Examples Set the EBS of the FR class named test1 to 32000 bits Sysname system view Sysname fr class test1 Sysname fr class test1 ebs 320...

Page 1886: ...ss command to create a FR class and enter FR class view Use the undo fr class command to delete a specified FR class By default no FR class is created Only after associating a FR class with an interface or virtual circuit and enabling the FR QoS function on the corresponding interface can the set FR class parameter take effect When a FR class is deleted the association between all interfaces or DL...

Page 1887: ... FR interfaces while the congestion threshold command is applied to FR virtual circuit n The command can only be used for FR DCE interfaces or NNI interfaces Related commands congestion threshold Examples Set to process the flag bit of a FR packet when the interface queue length exceeds 80 of the total length Sysname system view Sysname interface Serial 1 0 Sysname Serial1 0 fr congestion threshol...

Page 1888: ...m 1 to 10 interface type interface number Specifies an interface by its type and number Description Use the fr del inbound interface command to configure an interface based DE rule list For the packet received from the specified interface if it is forwarded from the router as a FR packet its DE flag bit is set to 1 before being forwarded Use the undo fr del inbound interface command to delete the ...

Page 1889: ...e or the related port number udp ports IP packets whose source or destination UDP port number are ports in the range 0 to 65535 The value of ports can be a port name or the related port number If optional parameters are not used it represents all IP packets Description Use the fr del protocol ip command to configure an IP based DE rule list The DE flag bit of the FR packet encapsulated with an IP ...

Page 1890: ...mand to set the queue type of a FR interface as PVC PQ PVC Priority Queuing and set queue length i e the maximum number of packets that can be held by a queue for each queue Use the undo fr pvc pq command to restore the queue type of the interface into FIFO By default the queuing type of a FR interface is FIFO After FRTS is enabled on an interface the queuing type of the interface can only be FIFO...

Page 1891: ... as a FR switching by using the fr switching command Related commands fr class Examples Enable the traffic policing function on the interface Serial 1 0 Sysname system view Sysname interface Serial 1 0 Sysname Serial1 0 fr traffic policing fr traffic shaping Syntax fr traffic shaping undo fr traffic shaping View Frame relay interface view MFR interface view Parameters None Description Use the fr t...

Page 1892: ...nction By default the fragmentation function on FR virtual circuit is disabled Related commands fr class Examples Configure fragment size as 128 in the FR class named test1 Sysname system view Sysname fr class test1 Sysname fr class test1 fragment 128 fr class Syntax fr class class name undo fr class class name View Frame relay DLCI view Frame relay interface view Parameters class name Name of a F...

Page 1893: ...R class Related commands fr class fr dlci Examples Associate the FR class named test1 with the FR virtual circuit whose DLCI is 200 Sysname system view Sysname interface Serial 1 0 Sysname Serial1 0 fr dlci 200 Sysname fr dlci Serial1 0 200 fr class test1 pq Syntax pq pql pql index undo pq View Frame relay class view Parameters pql index Group number of Priority Queuing ranging from 1 to 16 Descri...

Page 1894: ...r into the normal PVC PQ PVC PQ falls into four groups top middle normal and bottom PVC PQ is relative to DLCI After the queue of an interface is set as PVC PQ packets on each virtual circuit can enter only one type of PVC PQ Related commands fr pvc pq Examples Set packets sent by virtual circuit which is associated with the FR class named test1 to enter top PVC PQ Sysname system view Sysname fr c...

Page 1895: ... priority queue on the FR class named test1 with a bandwidth of 20 kbps Sysname system view Sysname fr class test1 Sysname fr class test1 rtpq start port 16383 end port 16384 bandwidth 20 traffic shaping adaptation Syntax traffic shaping adaptation becn percentage interface congestion number undo traffic shaping adaptation becn interface congestion View Frame relay class view Parameters becn Adjus...

Page 1896: ...he maximum number of packets allowed in the queue Packets exceeding this limitation will be discarded The permitted value ranges from 1 to 1024 with a default of 64 dynamic queues Total number of queues the value can be one of 16 32 64 128 256 512 1024 2048 and 4096 with the default of 256 Description Use the wfq command to set the queue type of the VC to be WFQ Use the undo wfq command to restore...

Page 1897: ...type Description Use the display dot1x command to display information about 802 1x including session information statistics or configuration With both the sessions keyword and the statistics keyword not provided this command displays 802 1x configuration information Related commands reset dot1x statistics dot1x dot1x retry dot1x max user dot1x port control dot1x port method dot1x timer Example Dis...

Page 1898: ...off checker is disabled Indicates whether the device is configured to get offline any user trying to login through a proxy Transmit Period Setting of the username request timeout timer Handshake Period Setting of the handshake timer Quiet Period Setting of the quiet timer Quiet Period Timer is disabled Indicates whether the quiet timer is enabled Supp Timeout Setting of the supplicant timeout time...

Page 1899: ... the port The value of 0 means that no guest VLAN is configured Max on line user number Maximum number of users supported on the port EAPOL Packet Number of EAPOL packets received Tx or sent Rx Sent EAP Request Identity Packets Number of EAP Request Identity packets sent EAP Request Challenge Packets Number of EAP Request Challenge packets sent EAP Success Packets Number of EAP Success packets sen...

Page 1900: ...s By default 802 1x is neither enabled globally nor enabled for any port Note that 802 1x must be enabled both globally in system view and for the intended ports in system view or interface view Otherwise it does not function You can configure 802 1x parameters either before or after enabling 802 1x Related command display dot1x Example Enable 802 1x for ports Ethernet 1 0 and Ethernet 1 5 to Ethe...

Page 1901: ...s 802 1x user information in the EAP attributes of RADIUS packets and sends the packets to the RADIUS server for authentication it does not need to repackage the EAP packets into standard RADIUS packets for authentication In this case you can configure the user name format command but it does not take effect Currently the device supports these EAP modes EAP TLS EAP TTLS EAP MD5 and PEAP Note that ...

Page 1902: ...n system view this command configures guest VLAN for all ports with interface list not provided and configures guest VLAN for specified with interface list provided In interface view you cannot specify the interface list argument and can only configure guest VLAN for the current port For the guest VLAN feature to take effect on a port make sure that 802 1x is enabled The port access control method...

Page 1903: ...1x guest vlan 3 dot1x handshake Syntax dot1x handshake undo dot1x handshake View Interface view Parameter None Description Use the dot1x handshake command to enable the online user handshake function so that the device can periodically send handshake messages to the client to check whether a user is online Use the undo dot1x handshake command to disable the function By default the function is enab...

Page 1904: ...type interface number represents the port number and 1 10 means that you can provide up to 10 port indexes port index lists for this argument The start port number must be smaller than the end number and the two ports must of the same type Description Use the dot1x max user command to set the maximum number of users to be supported simultaneously for specified or all ports Use the undo dot1x max u...

Page 1905: ...unction is enabled Related command display dot1x Example Disable the multicast trigger function for interface wlan ess 1 Sysname system view Sysname interface wlan ess 1 Sysname undo dot1x multicast trigger dot1x port control Syntax In system view dot1x port control authorized force auto unauthorized force interface interface list undo dot1x port control interface interface list In Ethernet interf...

Page 1906: ... 10 means that you can provide up to 10 port indexes port index lists for this argument The start port number must be smaller than the end number and the two ports must of the same type Description Use the dot1x port control command to set the access control mode for specified or all ports Use the undo dot1x port control command to restore the default The default access control mode is auto Relate...

Page 1907: ...ber represents the port number and 1 10 means that you can provide up to 10 port indexes port index lists for this argument The start port number must be smaller than the end number and the two ports must of the same type Description Use the dot1x port method command to set the access control method for specified or all ports Use the undo dot1x port method command to restore the default The defaul...

Page 1908: ...mber of attempts to send an authentication request to a supplicant Use the undo dot1x retry command to restore the default By default the authenticator can send an authentication request to a supplicant for up to twice Note that after sending an authentication request to a supplicant the authenticator may retransmit the request if it does not receive any response at an interval specified by the us...

Page 1909: ...ption Use the dot1x supp proxy check command to enable detection and control of users logging in through proxies for specified or all ports Use the undo dot1x supp proxy check command to disable the function for specified or all ports By default the function is disabled Note that This function requires the cooperation of the 802 1x client program of H3C In system view this command enables detectio...

Page 1910: ... 15 quiet period value Setting for the quiet timer in seconds It ranges from 10 to 120 and defaults to 60 server timeout value Setting for the server timeout timer in seconds It ranges from 100 to 300 and defaults to 100 supp timeout value Setting for the supplicant timeout timer in seconds It ranges from 10 to 120 and defaults to 30 tx period value Setting for the username request timeout timer i...

Page 1911: ...ts the request In addition to be compatible with clients that do not send EAPOL Start requests unsolicitedly the device multicasts EAP Request Identity frame periodically to detect the clients with the multicast interval defined by tx period Generally it is unnecessary to change the timers unless in some special or extreme network environments Related command display dot1x Example Set the server t...

Page 1912: ...e command clears 802 1x statistics on the specified ports With the argument unspecified the command clears global 802 1x statistics and 802 1x statistics on all ports Related command display dot1x Example Clear 802 1x statistics on port Ethernet 1 1 Sysname reset dot1x statistics interface ethernet 1 1 ...

Page 1913: ... to set the maximum number of accessing users allowed by an ISP domain Use the undo access limit or access limit disable command to remove the limitation By default there is no limit to the amount of supplicants in an ISP domain As the supplicants may compete for network resources setting a proper limit to the amount of accessing users helps in providing a reliable system performance Example Set a...

Page 1914: ...that for a specific access mode Local accounting is only for managing the local user connection number it does not provide the statistics function The local user connection number management is only for local accounting it does not affect local authentication and authorization With the access mode of login accounting is not supported for FTP services Related command authentication default authoriz...

Page 1915: ...AN access users By default the default accounting scheme is used for LAN access users Note that the RADIUS scheme specified for the current ISP domain must have been configured Related command accounting default radius scheme Example Configure the default ISP domain system to use the local accounting scheme for LAN access users Sysname system view Sysname domain system Sysname isp system accountin...

Page 1916: ... By default the default accounting scheme is used for login users Note that the RADIUS or HWTACACS scheme specified for the current ISP domain must have been configured Related command accounting default hwtacacs scheme radius scheme Example Configure the default ISP domain system to use the local accounting scheme for login users Sysname system view Sysname domain system Sysname isp system accoun...

Page 1917: ... accounting optional feature for users in domain aabbcc net Sysname system view Sysname domain aabbcc net Sysname isp aabbcc net accounting optional accounting portal Syntax accounting portal none radius scheme radius scheme name undo accounting portal View ISP domain view Parameter none Does not perform any accounting radius scheme radius scheme name Specifies a RADIUS scheme by its name which is...

Page 1918: ...acters Description Use the accounting ppp command to specify the accounting scheme for PPP users Use the undo accounting ppp command to restore the default By default the default accounting scheme is used for PPP users Note that the RADIUS or HWTACACS scheme specified for the current ISP domain must have been configured Related command accounting default hwtacacs scheme radius scheme Example Confi...

Page 1919: ...p command To implement accounting you must enable the accounting function and meanwhile have the accounting scheme configured Related command domain radius scheme Example In the default ISP domain system configure the RADIUS accounting scheme for VoIP users to rd Sysname system view Sysname domain system Sysname isp system accounting voip radius scheme rd attribute Syntax attribute access limit ma...

Page 1920: ... both range from 0 to 15 The value of port number ranges from 0 to 255 The ports bounded are determined by port number regardless of port type mac mac address Specifies the MAC address of the user in the format of H H H vlan vlan id Specifies the VLAN to which the user belongs The vlan id argument is in the range 1 to 4094 Description Use the attribute command to set some of the attributes for a L...

Page 1921: ...r a specific access mode Related command authorization default accounting default hwtacacs scheme radius scheme Example Configure the default ISP domain system to use the local authentication scheme for all types of users Sysname system view Sysname domain system Sysname isp system authentication default local Configure the default ISP domain system to use RADIUS authentication scheme rd for all t...

Page 1922: ...tem authentication lan access local Configure the default ISP domain system to use RADIUS authentication scheme rd for LAN access users and to use the local authentication scheme as the backup scheme Sysname system view Sysname domain system Sysname isp system authentication lan access radius scheme rd local authentication login Syntax authentication login hwtacacs scheme hwtacacs scheme name loca...

Page 1923: ...me domain system Sysname isp system authentication login radius scheme rd local authentication portal Syntax authentication portal none radius scheme radius scheme name undo authentication portal View ISP domain view Parameter none Does not perform any authentication radius scheme radius scheme name Specifies a RADIUS scheme by its name which is a string of 1 to 32 characters Description Use the a...

Page 1924: ...escription Use the authentication ppp command to specify the authentication scheme for PPP users Use the undo authentication ppp command to restore the default By default the default authentication scheme is used for PPP users Note that the RADIUS or HWTACACS scheme specified for the current ISP domain must have been configured Related command authentication default hwtacacs scheme radius scheme E...

Page 1925: ...P domain must have been configured You must have created a RADIUS scheme before using the authentication voip command To implement authentication you must enable the authentication function and meanwhile have the authentication scheme configured Related command domain radius scheme Example In the default ISP domain system configure the RADIUS authentication scheme for VoIP users to rd Sysname syst...

Page 1926: ...n default hwtacacs scheme hwtacacs scheme name local local none radius scheme radius scheme name local undo authorization default View ISP domain view Parameter hwtacacs scheme hwtacacs scheme name Specifies an HWTACACS scheme by its name which is a string of 1 to 32 characters local Performs local authorization none Does not perform any authorization In this case an authenticated user is automati...

Page 1927: ...t ISP domain system to use RADIUS authorization scheme rd for all types of users and to use the local authorization scheme as the backup scheme Sysname system view Sysname domain system Sysname isp system authorization default radius scheme rd local authorization lan access Syntax authorization lan access local none radius scheme radius scheme name local undo authorization lan access View ISP doma...

Page 1928: ...tacacs scheme name local local none radius scheme radius scheme name local undo authorization login View ISP domain view Parameter hwtacacs scheme hwtacacs scheme name Specifies an HWTACACS scheme by its name which is a string of 1 to 32 characters local Performs local authorization none Does not perform any authorization In this case an authenticated user is automatically authorized with the defa...

Page 1929: ...ization which means the user is trusted completely Here the user is assigned with the default privilege radius scheme radius scheme name Specifies a RADIUS scheme by its name which is a string of 1 to 32 characters Description Use the authorization portal command to specify the authorization scheme for portal users Use the undo authorization portal command to restore the default By default the def...

Page 1930: ... the authorization scheme for PPP users Use the undo authorization ppp command to restore the default By default the default authorization scheme is used for PPP users Note that the RADIUS or HWTACACS scheme specified for the current ISP domain must have been configured Related command authorization default hwtacacs scheme radius scheme Example Configure the default ISP domain system to use the lo...

Page 1931: ...plement authorization you must enable the authorization function and meanwhile have the authorization scheme configured Related command domain radius scheme Example In the default ISP domain system configure the RADIUS authorization scheme for voice users to rd Sysname system view Sysname domain system Sysname isp system authorization voip radius scheme rd cut connection Syntax cut connection acce...

Page 1932: ...The value range varies by device vlan vlan id Specifies all user connections in a VLAN The VLAN ID ranges from 1 to 4094 Description Use the cut connection command to tear down the specified connections forcibly This command is effective to LAN access portal and PPP user connections only Related command display connection service type Example Tear down all connections in ISP domain aabbcc net Sysn...

Page 1933: ...ains the domain name vlan vlan id Specifies all user connections in a VLAN The VLAN ID ranges from 1 to 4094 Description Use the display connection command to display information about specified or all AAA user connections n If no argument is specified this command displays information about all AAA user connections This command does not apply to FTP user connections Related command cut connection...

Page 1934: ...n User Template Idle cut Disable Self service Disable 1 Domain system State Active Access limit Disable Accounting method Required Default authentication scheme local Default authorization scheme local Default accounting scheme local Login Accounting scheme none Domain User Template Idle cut Disable Self service Disable Default Domain Name system Total 2 domain s 2 listed Table 508 Description on ...

Page 1935: ...ough the console port AUX port or Asyn port state active block Specifies all local users in the state of active or block A local user in the state of active can access network services while a local user in the state of blocked cannot user name user name Specifies all local users using the specified username The username is a case sensitive string of 1 to 55 characters and does not contain the dom...

Page 1936: ...an sign or at sign Description Use the domain isp name command to create an ISP domain and or enter ISP domain view Use the domain default command to specify the default ISP domain and enter ISP domain view Table 509 Description on the fields of display local user Field Description State Status of the local user active or block ServiceType Service types that the user can use ftp lan access pad ssh...

Page 1937: ...eter disable disables the configured default ISP domain enable Enables the configured default ISP domain isp name Name of an existing ISP domain a case insensitive string of 1 to 24 characters Description Use the domain default command to manually configure the system default ISP domain By default the default domain is named system Note that There must be only one default ISP domain When configure...

Page 1938: ...ut enable 50 ip pool Syntax ip pool pool number low ip address high ip address undo ip pool pool number View System view ISP domain view Parameter pool number Address pool number in the range 0 to 99 low ip address and high ip address Start and end IP addresses of the address pool Up to 1024 addresses are allowed for an address pool If you do not specify the end IP address there will be only one I...

Page 1939: ... 1 129 102 0 10 level Syntax level level undo level View Local user view Parameter level Priority level for the user which can be 0 for visiting level 1 for monitoring level 2 for system level and 3 for administration level A smaller number means a lower priority Description Use the level command to set the priority level of a user Use the undo level command to restore the default By default the u...

Page 1940: ...al or all all Specifies all users service type Specifies the users of a type dvpn refers to users using DVPN tunnel ftp refers to users using FTP lan access refers to users accessing the network through an Ethernet such as 802 1x users pad refers to users using x 25 PAD ppp refers to users using PPP ssh refers to users using SSH telnet refers to users using Telnet terminal refers to users logging ...

Page 1941: ... With the cipher force mode configured A local user password is always displayed in cipher text regardless of the configuration of the password command If you use the save command to save the configuration all existing local user passwords will still be displayed in cipher text after the device restarts even if you restore the display mode to auto Related command display local user password Exampl...

Page 1942: ...crypted into a password of 24 characters in cipher text and a password of 16 to 63 characters in plain text will be encrypted into a password of 88 characters in cipher text For a password of 24 characters if the system can decrypt the password the system treats it as a password in cipher text Otherwise the system treats it as a password in plain text Related command display local user Example Set...

Page 1943: ... of the self service server for changing the user password A user can change his or her password through the page Only authenticated users can select Service Change Password from the 802 1x client The option is gray and unavailable for unauthenticated users Example Enable the self service server localization function and specify the URL of the self service server for changing user password to http...

Page 1944: ...sname system view Sysname local user user1 Sysname luser user1 service type telnet service type ftp Syntax service type ftp undo service type ftp View Local user view Parameter None Description Use the service type ftp command to authorize a user to use the FTP service Use the undo service type ftp command to disable a user from using the FTP service By default no service is authorized to a user a...

Page 1945: ... service is authorized to a user if the PPP service is authorized callback without authentication is enabled no callback number is specified and the system does not authenticate the caller number of ISDN users Related command service type and service type ftp Example Authorize user user1 to use the PPP service and enable the callback without authentication feature Sysname system view Sysname local...

Page 1946: ...ory name undo work directory View Local user view Parameters directory name Name of the directory that FTP SFTP users are authorized to access a case insensitive string of 1 to 135 characters Description Use the work directory command to specify the directory accessible to FTP SFTP users Use the undo work directory command to restore the default By default FTP SFTP users can access the root direct...

Page 1947: ...1947 Sysname system view Sysname local user user1 Sysname luser user1 work directory cf ...

Page 1948: ...1948 CHAPTER 127 AAA CONFIGURATION COMMANDS ...

Page 1949: ...unction is disabled Note that This command is applicable to centralized devices only Execution of this command does not affect the results of other accounting on related commands such as accounting on enable send If the system has no authentication scheme enabled with the accounting on function when you execute the accounting on enable command you need to save the configuration and restart the dev...

Page 1950: ...ed devices only Execution of this command does not affect the results of other accounting on related commands such as accounting on enable That is execution of the undo accounting on enable interval command will not disable the accounting on function The retransmission interval configured with this command takes effect immediately Related command radius scheme accounting on enable Example In RADIU...

Page 1951: ...ommand radius scheme accounting on enable Example In RADIUS scheme rd set the maximum number of accounting on packet retransmission attempts to 10 Sysname system view Sysname radius scheme rd Sysname radius rd accounting on enable send 10 data flow format RADIUS scheme view Syntax data flow format data byte giga byte kilo byte mega byte packet giga packet kilo packet mega packet one packet undo da...

Page 1952: ...chemeName systemradius1 Index 0 Type extended Primary Auth IP 127 0 0 1 1 1 1 Port 1645 1812 State block active Primary Acct IP 127 0 0 1 1 1 1 1 Port 1646 1813 State bloc k active Second Auth IP 0 0 0 0 Port 1812 State block Second Acct IP 0 0 0 0 Port 1813 State block Auth Server Encryption Key Not configured Acct Server Encryption Key Not configured Accounting On packet disable send times 5 int...

Page 1953: ...ry accounting server active or block Auth Server Encryption Key Shared key of the authentication server Acct Server Encryption Key Shared key of the accounting server Accounting On packet disable The accounting on function is disabled send times Retransmission times of accounting on packets interval Interval to retransmit accounting on packets Interval for timeout second Timeout time in seconds Re...

Page 1954: ...cc 0 PKT response Num 0 Err 0 Succ 0 Session ctrl pkt Num 0 Err 0 Succ 0 Normal author request Num 0 Err 0 Succ 0 RADIUS sent messages statistic Auth accept Num 0 Auth reject Num 0 EAP auth replying Num 0 Account success Num 0 Account failure Num 0 Server ctrl req Num 0 RecError_MSG_sum 0 SndMSG_Fail_sum 0 Timer_Err 0 Alloc_Mem_Err 0 State Mismatch 0 Other_Error 0 Account failure Num 0 Server ctrl...

Page 1955: ...er of accounting requests Account off request Number of stop accounting requests PKT auth timeout Number of authentication timeout packets PKT acct_timeout Number of accounting timeout packets Realtime Account timer Number of realtime accounting requests PKT response Number of PKT responses Session ctrl pkt Number of session control packets Normal author request Number of normal authorization pack...

Page 1956: ...about the stop accounting requests buffered in the device by scheme session ID time range or user name n If receiving no response after sending a stop accounting request to a RADIUS server the device buffers the request and retransmits it You can use the retry stop accounting command to set the number of allowed transmission attempts Related command reset stop accounting buffer stop accounting buf...

Page 1957: ...key is configured Note that You must ensure that the same shared key is set on the device and the RADIUS server If authentication authorization and accounting are performed on two servers with different shared keys you must set separate shared key for each on the device Related command display radius scheme Example Set the shared key for authentication authorization packets to hello for RADIUS sch...

Page 1958: ...a physical interface failure The address of a loopback interface is recommended The nas ip command in RADIUS scheme view is only for the current RADIUS scheme while the radius nas ip command in system view is for all RADIUS schemes However the nas ip command in RADIUS scheme view overwrites the configuration of the radius nas ip command Related command radius nas ip Example Set the IP address for ...

Page 1959: ...the primary authentication authorization server port number UDP port number of the primary authentication authorization server which ranges from 1 to 65535 Description Use the primary authentication command to configure the IP address and UDP port of the primary RADIUS authentication authorization server Use the undo primary authentication command to restore the defaults By default the default IP ...

Page 1960: ...ening port of the RADIUS client is disabled The RADIUS client can either accept authentication authorization or accounting requests or process timer messages However it fails to transmit and receive packets to and from the RADIUS server The end account packets of online users cannot be sent out and buffered This may cause that the RADIUS server still has the user record after a user goes offline f...

Page 1961: ...annot reach the device as the result of a physical interface failure If you configure the command for more than one time the last configuration takes effect The nas ip command in RADIUS scheme view is only for the current RADIUS scheme while the radius nas ip command in system view is for all RADIUS schemes However the nas ip command in RADIUS scheme view overwrites the configuration of the radius...

Page 1962: ...r name format RADIUS scheme view retry display radius scheme display radius statistics Example Create a RADIUS scheme named radius1 and enter RADIUS scheme view Sysname system view Sysname radius scheme radius1 Sysname radius radius1 radius trap Syntax radius trap accounting server down authentication server down undo radius trap accounting server down authentication server down View System view P...

Page 1963: ...g buffer Syntax reset stop accounting buffer radius scheme radius scheme name session id session id time range start time stop time user name user name View User view Parameter radius scheme radius scheme name Specifies a RADIUS scheme by its name which is a string of 1 to 32 characters session id session id Specifies a session by its ID a string of 1 to 50 characters time range start time stop ti...

Page 1964: ...Maximum number of retransmission attempts in the range 1 to 20 Description Use the retry command to set the maximum number of RADIUS retransmission attempts Use the undo retry command to restore the default The default value for the retry times argument is 3 Note that Because RADIUS uses UDP packets to transmit data the communication is not reliable If the device does not receive a response to its...

Page 1965: ...est transmission attempts Once the limit is reached but the NAS still receives no response the NAS disconnects the user Suppose that the RADIUS server response timeout period is 3 seconds set with the timer response timeout command the timeout retransmission attempts is 3 set with the retry command and the real time accounting interval is 12 minutes set with the timer realtime accounting command a...

Page 1966: ...is means that for each stop accounting request if the device receives no response within 3 seconds it will initiate a new request If still no responses are received within 5 renewed requests the stop accounting request is deemed unsuccessful Then the device will temporarily store the request in the device and resend a request and repeat the whole process described above Only when 20 consecutive at...

Page 1967: ...e radius scheme radius1 Sysname radius radius1 secondary accounting 10 110 1 1 1813 secondary authentication RADIUS scheme view Syntax secondary authentication ip address port number undo secondary authentication View RADIUS scheme view Parameter ip address IP address of the secondary authentication authorization server in dotted decimal notation The default is 0 0 0 0 port number UDP port number ...

Page 1968: ...ion Use the security policy server command to configure the IP address of a security policy server Use the undo security policy server command to remove one or all configured IP addresses By default no IP address is configured for a security policy server Related command radius nas ip Example For RADIUS scheme radius1 set the IP address of a security policy server to 10 110 1 2 Sysname system view...

Page 1969: ...ry Sets the status of the primary RADIUS server secondary Sets the status of the secondary RADIUS server accounting Sets the status of the RADIUS accounting server authentication Sets the status of the RADIUS authentication authorization server active Sets the status of the RADIUS server to active namely the normal operation state block Sets the status of the RADIUS server to block Description Use...

Page 1970: ...mary accounting RADIUS scheme view secondary accounting RADIUS scheme view Example Set the status of the secondary server in RADIUS scheme radius1 to active Sysname system view Sysname radius scheme radius1 Sysname radius radius1 state secondary authentication active stop accounting buffer enable RADIUS scheme view Syntax stop accounting buffer enable undo stop accounting buffer enable View RADIUS...

Page 1971: ...quiet timer for the primary server that is the duration that the status of the primary server stays blocked before resuming the active state Use the undo timer quiet command to restore the default Related command display radius scheme Example Set the quiet timer for the primary server to 10 minutes Sysname system view Sysname radius scheme test1 Sysname radius test1 timer quiet 10 timer realtime a...

Page 1972: ... interval to 51 minutes for RADIUS scheme radius1 Sysname system view Sysname radius scheme radius1 Sysname radius radius1 timer realtime accounting 51 timer response timeout RADIUS scheme view Syntax timer response timeout seconds undo timer response timeout View RADIUS scheme view Parameter seconds RADIUS server response timeout period in seconds It ranges from 1 to 10 and defaults to 3 Descript...

Page 1973: ...out domain Excludes the ISP domain name from the username sent to the RADIUS server Description Use the user name format command to specify the format of the username to be sent to a RADIUS server By default the ISP domain name is included in the username Note that A username is generally in the format of userid isp name of which isp name is used by the device to determine the ISP domain to which ...

Page 1974: ...COMMANDS Example Specify the device to include the domain name in the username sent to the RADIUS servers for the RADIUS scheme radius1 Sysname system view Sysname radius scheme radius1 Sysname radius radius1 user name format without domain ...

Page 1975: ...giga packet Description Use the data flow format command to specify the unit for data flows or packets to be sent to a HWTACACS server Use the undo data flow format command to restore the default By default the unit for data flows is byte and that for data packets is one packet Related command display hwtacacs Example Define HWTACACS scheme hwt1 to send data flows and packets destined for the HWTA...

Page 1976: ...1 Quiet interval min 5 Realtime accounting interval min 12 Response timeout interval sec 5 Acct stop PKT retransmit times 100 Domain included Yes Data traffic unit B Packet traffic unit one packet Table 513 Description on the fields of the display hwtacacs command Field Description HWTACACS server template name Name of the HWTACACS scheme Primary authentication server Primary authentication server...

Page 1977: ...ay stop accounting buffer hwtacacs scheme hwt1 Total 0 record s Matched hwtacacs nas ip Syntax hwtacacs nas ip ip address undo hwtacacs nas ip View System view Parameter ip address IP address in dotted decimal notation It must be an address of the device and cannot be all 0s address all 1s address a class D address a class E address or a loopback address Description Use the hwtacacs nas ip command...

Page 1978: ...es However the nas ip command in HWTACACS scheme view overwrites the configuration of the hwtacacs nas ip command Related command nas ip HWTACACS scheme view Example Set the IP address for the device to use as the source address of the HWTACACS packets to 129 10 10 1 Sysname system view Sysname hwtacacs nas ip 129 10 10 1 hwtacacs scheme Syntax hwtacacs scheme hwtacacs scheme name undo hwtacacs sc...

Page 1979: ...o remove the configuration By default no shared key is configured Related command display hwtacacs Example Set the shared key for HWTACACS accounting packets to hello for HWTACACS scheme hwt1 Sysname system view Sysname hwtacacs scheme hwt1 Sysname hwtacacs hwt1 key accounting hello nas ip HWTACACS scheme view Syntax nas ip ip address undo nas ip View HWTACACS scheme view Parameter ip address IP a...

Page 1980: ...command hwtacacs nas ip Example Set the IP address for the device to use as the source address of the HWTACACS packets to 10 1 1 1 Sysname system view Sysname hwtacacs scheme hwt1 Sysname hwtacacs hwt1 nas ip 10 1 1 1 primary accounting HWTACACS scheme view Syntax primary accounting ip address port number undo primary accounting View HWTACACS scheme view Parameter ip address IP address of the serv...

Page 1981: ...he server It ranges from 1 to 65535 and defaults to 49 Description Use the primary authentication command to specify the primary HWTACACS authentication server Use the undo primary authentication command to remove the configuration Note that The IP addresses of the primary and secondary authentication servers cannot be the same Otherwise the configuration fails The HWTACACS service port configured...

Page 1982: ...secondary authorization servers cannot be the same Otherwise the configuration fails The HWTACACS service port configured on the device and that of the HWTACACS server must be consistent If you configure the command for more than one time the last configuration takes effect You can remove an authorization server only when no active TCP connection for sending authorization packets is using it Relat...

Page 1983: ...to clear the buffered stop accounting requests that get no responses Related command stop accounting buffer enable HWTACACS scheme view retry stop accounting HWTACACS scheme view display stop accounting buffer Example Clear the buffered stop accounting requests for HWTACACS scheme hwt1 Sysname reset stop accounting buffer hwtacacs scheme hwt1 retry stop accounting HWTACACS scheme view Syntax retry...

Page 1984: ...o 49 Description Use the secondary accounting command to specify the secondary HWTACACS accounting server Use the undo secondary accounting command to remove the configuration Note that The IP addresses of the primary and secondary accounting servers cannot be the same Otherwise the configuration fails The HWTACACS service port configured on the device and that of the HWTACACS server must be consi...

Page 1985: ...ed on the device and that of the HWTACACS server must be consistent If you configure the command for more than one time the last configuration takes effect You can remove an authentication server only when no active TCP connection for sending authentication packets is using it Related command display hwtacacs Example Configure the secondary authentication server Sysname system view Sysname hwtacac...

Page 1986: ...ame hwtacacs hwt1 secondary authorization 10 163 155 13 49 stop accounting buffer enable HWTACACS scheme view Syntax stop accounting buffer enable undo stop accounting buffer enable View HWTACACS scheme view Parameter None Description Use the stop accounting buffer enable command to enable the device to buffer stop accounting requests getting no responses Use the undo stop accounting buffer enable...

Page 1987: ...to set the quiet timer for the primary server that is the duration that the status of the primary server stays blocked before resuming the active state Use the undo timer quiet command to restore the default Related command display hwtacacs Example Set the quiet timer for the primary server to 10 minutes Sysname system view Sysname hwtacacs scheme hwt1 Sysname hwtacacs hwt1 timer quiet 10 timer re...

Page 1988: ...51 minutes for HWTACACS scheme hwt1 Sysname system view Sysname hwtacacs scheme hwt1 Sysname hwtacacs hwt1 timer realtime accounting 51 timer response timeout HWTACACS scheme view Syntax timer response timeout seconds undo timer response timeout View HWTACACS scheme view Parameter seconds HWTACACS server response timeout period in seconds It ranges from 1 to 300 and defaults to 5 Description Use t...

Page 1989: ...used by the device to determine the ISP domain to which a user belongs Some earlier HWTACACS servers however cannot recognize a username including an ISP domain name Before sending a username including a domain name to such a HWTACACS server the device must remove the domain name This command is thus provided for you to decide whether to include a domain name in a username to be sent to a HWTACACS...

Page 1990: ...1990 CHAPTER 129 HWTACACS CONFIGURATION COMMANDS ...

Page 1991: ...ring statistics on Ethernet 1 0 Sysname display firewall ethernet frame filter interface ethernet 1 0 Interface Ethernet1 0 In bound Policy acl 4000 From 2005 06 07 14 46 59 to 2005 06 07 16 16 23 0 packets 0 bytes 0 permitted 0 packets 0 bytes 0 denied 0 packets 0 bytes 0 permitted default 0 packets 0 bytes 0 denied default Totally 0 packets 0 bytes 0 permitted Totally 0 packets 0 bytes 0 denied ...

Page 1992: ...e display firewall statistics fragments inspect Fragments inspection is enabled The high watermark for clamping is 10000 The low watermark for clamping is 1000 Current records for fragments inspection is 0 firewall default Syntax firewall default permit deny Out bound Policy Indicates an outbound ACL rule has been configured on the interface Table 515 Description on the fields of display firewall ...

Page 1993: ...e system view Sysname firewall enable firewall enable Syntax firewall enable undo firewall enable View System view Parameter None Description Use the firewall enable command to enable the firewall Use the undo firewall enable command to disable the firewall By default the firewall is disabled Example Enable the firewall Sysname system view Sysname firewall enable firewall ethernet frame filter Syn...

Page 1994: ...ed by default Example Configure Ethernet frame filtering rules on the inbound direction of interface Ethernet 1 0 Sysname system view Sysname bridge enable Sysname bridge 1 enable Sysname interface ethernet 1 0 Sysname Ethernet1 0 bridge set 1 Sysname Etherhet1 0 firewall ethernet frame filter 4001 inbound firewall fragments inspect Syntax firewall fragments inspect undo firewall fragments inspect...

Page 1995: ...ragments inspect high low command to restore the default high and low watermark values By default the high watermark value is 2 000 and low watermark value is 1500 The low watermark value must be smaller than or equal to the high watermark value Related command firewall fragments inspect and firewall packet filter Example Set the high watermark for fragment inspection to 3 000 and low watermark to...

Page 1996: ...sensitive string of 1 to 32 characters that must start with an English letter a to z or A to Z To avoid confusion the word all cannot be used as the ACL name inbound Filters packets in the inbound direction outbound Filters packets in the outbound direction match fragments Specifies the fragment match mode for advanced ACLs only normally Specifies the normal match mode which is the default mode ex...

Page 1997: ...er ipv6 command to configure IPv6 packet filtering on the interface Use the undo firewall packet filter ipv6 command to remove the IPv6 packet filtering setting on the interface By default IPv6 packets are not filtered on the interface Example Configure IPv6 packet filtering for Ethernet 1 0 using IPv6 ACL 2500 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 firewall packet ...

Page 1998: ...ace type interface num View User view Parameter all Clears the firewall statistic information on all interfaces interface interface type interface num Clears the firewall statistic information of the specified interface Description Use the reset firewall statistics command to clear the statistic information of the firewall Example Clear the firewall statistic information of Ethernet 1 0 Sysname re...

Page 1999: ...e timeout of a UDP session seconds Idle timeout period of the session in seconds The effective range is 5 to 43 200 Description Use the aging time command to configure the SYN FIN wait timeout period of a TCP session or the idle timeout period of a TCP session UDP session Use the undo aging time command to restore the inactivity timeout period to the default value By default the SYN FIN TCP and UD...

Page 2000: ...ew System view Parameter aspf policy number ASPF policy number in the range of 1 to 99 Description Use the aspf policy command to create an ASPF policy and enter its view Use the undo aspf policy command to remove an ASPF policy A defined ASPF policy can be applied through its policy number Example Create an ASPF policy and enter the corresponding ASPF policy view Sysname system view Sysname aspf ...

Page 2001: ...F uses timeouts to manage the session status information of a protocol so as to determine when to terminate the status information management of a session or when to delete a session that cannot be normally established As a global configuration the setting of a timeout applies to all sessions to protect system resources from being maliciously seized A protocol idle timeout setting specified using ...

Page 2002: ...r Application Status 73A4844 1 1 1 50 1025 2 2 2 1 21 ftp FTP_CONXN_UP display aspf interface Syntax display aspf interface View Any view Parameter None Table 517 Description of the fields of the display aspf all command Field Description SYN timeout SYN timeout value of the TCP session FIN timeout FIN timeout of the TCP session TCP timeout Idle timeout of the TCP session UDP timeout Idle timeout ...

Page 2003: ...he display aspf policy command to view the information of an ASPF policy Example Display the configuration information of ASPF policy 1 Sysname display aspf policy 1 ASPF Policy Configuration Policy Number 1 Log disable SYN timeout 30 s FIN timeout 5 s TCP timeout 3600 s UDP timeout 30 s Detect Protocols ftp timeout 120 s tcp timeout 3600 s display aspf session Syntax display aspf session verbose ...

Page 2004: ...sponder tcp SeqNumber AckNumber 134665683 141385146 display port mapping Syntax display port mapping application name port port number Table 519 Description of the fields of the display aspf session command Field Description Initiator IP address and port number of the initiator of the session Responder IP address and port number of the responder of the session Application protocol Application prot...

Page 2005: ...ll aspf aspf policy number inbound outbound undo firewall aspf aspf policy number inbound outbound View Interface view Parameter aspf policy number Number of the ASPF policy in the range 1 to 99 inbound Applies ASPF policy to inbound packets outbound Applies ASPF policy to outbound packets Description Use the firewall aspf command to apply the specified ASPF policy on the specified direction of th...

Page 2006: ... display aspf all display aspf policy display aspf session and display aspf interface Example Enable the session logging function of the ASPF Sysname system view Sysname aspf policy 1 Sysname aspf policy 1 log enable port mapping Syntax port mapping application name port port number acl acl number undo port mapping application name port port number acl acl number View System view Parameter applica...

Page 2007: ...ort mapping Example Map port 3456 to the FTP protocol Sysname system view Sysname port mapping ftp port 3456 reset aspf session Syntax reset aspf session View User view Parameter None Description Use the reset aspf session command clear ASPF sessions Example Clear ASPF sessions Sysname reset aspf session ...

Page 2008: ...2008 CHAPTER 131 ASPF CONFIGURATION COMMANDS ...

Page 2009: ... the same type and the former must be greater than the latter Description Use the display mac authentication command to display global MAC authentication information or MAC authentication information about specified ports Example Display global MAC authentication information Sysname display mac authentication MAC address authentication is enabled User name format is MAC address like xxxxxxxxxxxx F...

Page 2010: ...Quiet period Setting of the quiet timer Server response timeout value Setting of the server timeout timer The max allowed user number Maximum number of users the device supports Current user number amounts to Total number of online users Current domain not configured use default domain Currently used ISP domain Silent Mac User info Information on users who are kept silent after failing MAC authent...

Page 2011: ...ou can configure MAC authentication parameters globally or for specified ports either before or after enabling MAC authentication If no MAC authentication parameters are configured before MAC authentication is enabled globally the default values are used You can enable MAC authentication for ports before enabling it globally However MAC authentication begins to function only after you also enable ...

Page 2012: ...t value Specifies the server timeout period in the range 100 to 300 seconds Description Use the mac authentication timer command to set the MAC authentication timers Use the undo mac authentication timer command to restore the defaults By default the offline detect interval is 300 seconds the quiet period is 60 seconds and the server timeout period is 100 seconds The following timers function in t...

Page 2013: ...the latter case the password must be a string of 1 to 63 characters in plain text mac address Adopts the user s source MAC address as the username which is case insensitive with hyphen Indicates that the MAC address must include like xx xx xx xx xx xx The letters in the address must be in lower case without hyphen Indicates that the MAC address must not include like xxxxxxxxxxxx The letters in the...

Page 2014: ...e interface list View User view Parameter interface interface list Specifies an Ethernet port list in the format of interface type interface number to interface type interface number 1 10 where 1 10 indicates that you can specify up to 10 port ranges A port range defined without the to interface type interface number portion comprises only one port Description Use the reset mac authentication stat...

Page 2015: ... defined in the connection limit policy Use the undo connection limit default command to restore the default By default connection limit is not enabled Example Configure the default connection limit action as permit Sysname system view Sysname connection limit default action permit connection limit default amount Syntax connection limit default amount upper limit max amount lower limit min amount ...

Page 2016: ...ection limit enable View System view Parameter None Description Use the connection limit enable command to enable the connection limit function Use the undo connection limit enable command to disable this function By default the connection limit function is disabled Once this function is enabled both the connection number and the connection rate are limited Example Enable the connection limit func...

Page 2017: ...connection limit mode and the maximum connection rate Additionally you can add or delete rules to from the policy Example Create a connection limit policy numbered 1 Sysname system view Sysname connection limit policy 1 display connection limit policy Syntax display connection limit policy policy number all View Any view Parameter policy number Number of a connection limit policy in the range 0 to...

Page 2018: ...t number range in a port range The value range of port number is 0 to 65 535 The value range of start port and end port is also 0 to 65 535 and the start port must be not greater than the end port vpn instance vpn instance name Specifies the MPLS VPN instance that a connection belongs to The vpn instance name argument ranges from 1 to 19 characters Absence of this keyword and argument indicates th...

Page 2019: ... s 1 from 202 110 10 10 to 202 110 10 15 Table 522 Description on the fields of the display connection limit statistics command Field Description source ip Source IP address dest ip Destination IP address dest port Destination port number vpn instance Name of the MPLS VPN instance that a connection belongs to amount Number of connections allowed to establish upper limit Upper limit of connections ...

Page 2020: ...at all Syntax display nat all Table 524 Description on the fields of the display nat aging time command Field Description NAT aging time value information NAT aging time values for various protocols tcp aging time value is 86400 seconds NAT aging time for TCP is 86 400 seconds udp aging time value is 300 seconds NAT aging time for UDP is 300 seconds icmp aging time value is 60 seconds NAT aging ti...

Page 2021: ... aging time value is 60 seconds pptp aging time value is 86400 seconds dns aging time value is 60 seconds tcp fin aging time value is 60 seconds tcp syn aging time value is 3600 seconds ftp ctrl aging time value is 7200 seconds ftp data aging time value is 300 seconds NAT log information log enable enable acl 2000 flow begin enable flow active 10 minutes Table 525 Description on some fields of the...

Page 2022: ...es GlobalAddr External IP address InsideAddr Internal IP address Vpn instance Layer 3 VPN to which the internal IP address belongs tcp aging time value is 86400 seconds The aging time for TCP is 86 400 seconds udp aging time value is 300 seconds The aging time for UDP is 300 seconds icmp aging time value is 60 seconds The aging time for ICMP is 60 seconds pptp aging time value is 86400 seconds The...

Page 2023: ...MPLS VPN instance Description Use the display nat connection limit command to display NAT connection limit statistics Example Display NAT connection limit statistics Sysname display nat connection limit source ip dest ip dest port vpn instance 192 168 0 210 NAT amount upper limit lower limit limit flag 2 50 20 0 display nat log Syntax display nat log View Any view Table 526 Description on the fiel...

Page 2024: ...AT address group 1 no pat Ethernet1 1 acl 2002 interface Table 527 Description on the fields of the display nat log command Field Description NAT log information NAT log configuration log enable enable acl 2000 Logging data flows matching acl 2000 flow begin enable Logging newly established sessions flow active 10 minutes Interval in logging active flows 10 minutes Table 528 Description on the fie...

Page 2025: ...s a string of 1 to 31 characters source global global address Displays NAT translation table entries for the specified external source IP address source inside inside address Displays NAT translation table entries for the specified internal source IP address destination dst address Displays NAT translation table entries for the specified destination IP address Description Use the display nat sessi...

Page 2026: ...ion table count 0 active session table count HASH by Internet side IP 0 Table 530 Description on the fields of the display nat session command Field Description Protocol Protocol number 1 represents ICMP GlobalAddr Port External IP address and port number after translation InsideAddr Port Internal IP address and port number before translation DestAddr Port Destination IP address and port number VP...

Page 2027: ...3 999 Only data flows that match this ACL are limited total NO PAT session table count Number of No PAT session entries total SERVER session table count Number of SERVER session entries total STATIC session table count Number of STATIC session entries total FRAGMENT session table count Number of FRAGRANT session entries total session table count HASH by Internet side IP Number of HASH entries calc...

Page 2028: ...ess 1 1 1 1 as 200 and 100 respectively Configure ACL 2001 defining that only connections initiated from 192 168 0 0 24 are limited This means that the number of user connections which initiated from 192 168 0 0 24 and connecting to public server 1 1 1 1 cannot exceed 200 Sysname system view Sysname acl number 2001 Sysname acl basic 2001 rule permit source 192 168 0 0 0 0 0 255 Sysname acl basic 2...

Page 2029: ...ve as the source address after address translation An equal start address and end address means there is only one IP address in the address pool Note that You cannot delete an address pool which has been associated with an ACL An address pool is not needed in the case of Easy IP where the interface s public IP address is used as the translated IP address n The volume of an address pool that is the...

Page 2030: ... udp Specifies the NAT aging time for UDP which defaults to 300 seconds seconds NAT aging time in the range 10 to 86 400 seconds 24 hours Description Use the nat aging time command to configure NAT aging time s The Hash table used in address translation is not permanent This command configures a Hash table life time for TCP UDP ICMP and other protocols respectively If the Hash table is not used wi...

Page 2031: ... policy number Number of the connection limit policy to be bound with the NAT module The value ranges from 0 to 19 Description Use the nat connection limit policy command to bind a connection limit policy with the NAT module Use the undo nat connection limit policy command to remove the configuration Note that A NAT module can be bound with only one policy The globally configured connection limits...

Page 2032: ...the undo nat log enable command to disable the NAT log function By default the NAT log function is disabled Example Enable the NAT log function Sysname system view Sysname nat log enable acl 2001 Disable the NAT log function Sysname system view Sysname undo nat log enable nat log flow active Syntax nat log flow active minutes undo nat log flow active View System view Parameter minutes Interval in ...

Page 2033: ...ion Use the nat log flow begin command to generate NAT logs while establishing a NAT session Use the undo nat log flow begin command to restore the default By default no log is generated when establishing a session Example Generate NAT log while establishing a session Sysname system view Sysname nat log flow begin nat outbound Syntax nat outbound acl number address group group number no pat undo n...

Page 2034: ... users who use these table entries cannot access external networks whereas other users are not affected You can also use the reset nat session command to clear all the NAT address translation table entries However use of this command will result in termination of address translation and all users will have to reestablish connections Users can make a proper choice as required When an ACL rule is no...

Page 2035: ...ial1 0 nat outbound 2001 nat outbound static Syntax nat outbound static undo nat outbound static View Interface view Parameter None Description Use the nat outbound static command to enable on an interface the one to one static NAT configured with the nat static command Use the undo nat outbound static command to cancel the one to one static NAT on the interface Example Configure one to one NAT an...

Page 2036: ...for external access interface Uses a specified interface address as the public IP address of an internal server This only applies to Easy IP interface type interface number Specifies the interface type and interface number Currently this interface must be an existing Loopback interface current interface Uses the current interface address as the public IP address of an internal server global port1 ...

Page 2037: ...onfigured on the interface that serves as the egress of an internal network and connects to the external networks Currently the device supports Easy IP which uses the interface address as the public IP address of internal servers To implement Easy IP on the current interface use key word current interface in the command To implement Easy IP on other interfaces you must specify an existing Loopback...

Page 2038: ...rface serial 1 0 Sysname Serial1 0 nat server vpn instance vrf10 protocol tcp globa l 202 110 10 10 1001 1100 inside 10 110 10 1 10 110 10 100 telnet Remove the WWW server using the following commands Sysname system view Sysname interface serial 1 0 Sysname Serial1 0 undo nat server protocol tcp global 202 110 10 1 0 8070 inside 10 110 10 10 www Remove the FTP server in VPN vrf10 using the followi...

Page 2039: ...net NAT The IP addresses of an internal network segment are mapped with the IP addresses of an external network segment Note that when configuring net to net NAT you must ensure that internal IP addresses fall in one network segment when ANDed with the external network mask Example Configure static NAT between 192 168 1 1 and 2 2 2 2 Sysname system view Sysname nat static 192 168 1 1 2 2 2 2 Confi...

Page 2040: ...lear the NAT log statistics Sysname reset userlog export reset userlog nat logbuffer Syntax reset userlog nat logbuffer View User view Parameter None Description Use the reset userlog nat logbuffer command to clear the NAT log buffer c CAUTION Clearing the NAT log buffer will remove all NAT logs in the buffer You are not recommended to use this command in normal situations Example Clear the NAT lo...

Page 2041: ... Related command userlog nat export source ip Example Export NAT logs to the NAT log server whose IP address is 169 254 1 1 2000 Sysname system view Sysname userlog nat export host 169 254 1 1 2000 userlog nat export source ip Syntax userlog nat export source ip ip address undo userlog nat export source ip View System view Parameter ip address Source IP address of the exported UDP packets Descript...

Page 2042: ...er of NAT logs is 1 Example Set the version number of NAT logs to 1 Sysname system view Sysname userlog nat export version 1 userlog nat syslog Syntax userlog nat syslog undo userlog nat syslog View System view Parameter None Description Use the userlog nat syslog command to export NAT logs to the information center Use the undo userlog nat syslog command to restore the default By default NAT logs...

Page 2043: ...the name of the certificate issuer subject name Specifies the name of the certificate subject dn Specifies the domain name of the entity ctn Specifies the contain operation equ Specifies the equal operation nctn Specifies the not contain operation nequ Specifies the not equal operation attribute value Value of the certificate attribute a case insensitive string of 1 to 128 characters all Specifies...

Page 2044: ...of abc Sysname pki cert attribute group mygroup attribute 2 issuer name f qdn nequ abc Create a certificate attribute rule specifying that the IP address in the alternative subject name cannot be 10 0 0 1 Sysname pki cert attribute group mygroup attribute 3 alt subject n ame ip nequ 10 0 0 1 ca identifier Syntax ca identifier name undo ca identifier View PKI domain view Parameter name Identifier o...

Page 2045: ... Specify the entity for certificate request as entity1 SysnameCA system view SysnameCA pki domain 1 SysnameCA pki domain 1 certificate request entity entity1 certificate request from Syntax certificate request from ca ra undo certificate request from View PKI domain view Parameter ca Indicates that the entity requests a certificate from a CA ra Indicates that the entity requests a certificate from...

Page 2046: ...es to display the password in clear text manual Specifies to request a certificate in manual mode Description Use the certificate request mode command to configure the certificate request mode Use the undo certificate request mode command to restore the default mode By default manual mode is used In auto mode an entity automatically requests a certificate from an RA or CA when it has no certificat...

Page 2047: ...ficate is signed Related command display pki certificate Example Specify the polling interval as 15 minutes and the maximum number of attempts as 40 Sysname system view Sysname pki domain 1 Sysname pki domain 1 certificate request polling interval 15 Sysname pki domain 1 certificate request polling count 40 certificate request url Syntax certificate request url url string undo certificate request ...

Page 2048: ...mple the user name Use the undo common name command to remove the configuration By default no common name is specified Example Configure the common name of an entity as test Sysname system view Sysname pki entity 1 Sysname pki entity 1 common name pki test country Syntax country country code str undo country View PKI entity view Parameter country code str Country code for the entity a 2 character ...

Page 2049: ...e has been revoked A revoked certificate is no longer trusted Example Disable CRL checking Sysname system view Sysname pki domain 1 Sysname pki domain 1 crl check disable crl update period Syntax crl update period hours undo crl update period View PKI domain view Parameter hours CRL update period in the range 1 to 720 hours Description Use the crl update period command to set the CRL update period...

Page 2050: ...ult no CRL distribution point URL is specified Note that when the URL of the CRL distribution point is not set you should acquire CA certificate and a local certificate and then acquire a CRL through SCEP Example Specify the URL of the CRL distribution point Sysname system view Sysname pki domain 1 Sysname pki domain 1 crl url ldap 169 254 0 30 display pki certificate Syntax display pki certificat...

Page 2051: ...bit Modulus 512 bit 00D41D1F Exponent 65537 0x10001 X509v3 extensions X509v3 Subject Alternative Name DNS hyf xxyyzz net X509v3 CRL Distribution Points URI http 1 1 1 1 447 myca crl Signature Algorithm md5WithRSAEncryption A3A5A447 4D08387D Table 532 Description on the fields of the display pki certificate command Field Description Version Version of the certificate Serial Number Serial number of ...

Page 2052: ...ypolicy rule 1 deny mygroup1 rule 2 permit mygroup2 display pki certificate attribute group Syntax display pki certificate attribute group group name all View Any view Parameter group name Name of a certificate attribute group a string of 1 to 16 characters all Specifies all certificate attribute groups Description Use the display pki certificate attribute group command to display the information ...

Page 2053: ...004 GMT CRL extensions X509v3 Authority Key Identifier keyid 0F71448E E075CAB8 ADDB3A12 0B747387 45D612EC Revoked Certificates Serial Number 05a234448E Revocation Date Sep 6 12 33 22 2004 GMT CRL entry extensions Serial Number 05a234448E Revocation Date Sep 6 12 33 22 2004 GMT CRL entry extensions Table 534 Description on the fields of display pki certificate attribute group Field Description attr...

Page 2054: ...N of an entity as pki domain name com Sysname system view Sysname pki entity 1 Sysname pki entity 1 fqdn pki domain name com ip PKI entity view Syntax ip ip address undo ip View PKI entity view Table 535 Description on the fields of the display pki crl domain command Field Description Version Version of the CRLs Signature Algorithm Signature algorithm adopted by the CRLs Issuer CA issuing the CRLs...

Page 2055: ...iew PKI domain view Parameter ip address IP address of the LDAP server in dotted decimal format port number Port number of the LDAP server in the range 1 to 65535 By default it is 389 version number LDAP version number either 2 or 3 By default it is 2 Description Use the ldap server command to specify an LDAP server for a PKI domain Use the undo ldap server command to remove the configuration By d...

Page 2056: ...pki entity 1 locality city organization Syntax organization org name undo organization View PKI entity view Parameter org name Organization name a case insensitive string of 1 to 31 characters No comma can be included Description Use the organization command to configure the name of the organization to which the entity belongs Use the undo organization command to remove the configuration By defaul...

Page 2057: ...ki certificate access control policy policy name all View System view Parameter policy name Name of the certificate attribute based access control policy a case insensitive string of 1 to 16 characters It cannot be a al or all all Specifies all certificate attribute based access control policies Description Use the pki certificate access control policy command to create a certificate attribute bas...

Page 2058: ...up named mygroup and enter its view Sysname system view Sysname pki certificate attribute group mygroup Sysname pki cert attribute group mygroup pki delete certificate Syntax pki delete certificate ca local domain domain name View System view Parameter ca Deletes the locally stored CA certificates local Deletes the locally stored local certificates domain name Name of the PKI domain whose certific...

Page 2059: ...entity name Name for the entity a case insensitive string of 1 to 15 characters Description Use the pki entity command to create a PKI entity and enter its view Use the undo pki entity command to remove a PKI entity By default no entity exists You can configure a variety of attributes for an entity in PKI entity view An entity is intended only for convenience of reference by other commands Example...

Page 2060: ...tificate ca domain cer pem pki request certificate domain Syntax pki request certificate domain domain name password pkcs10 filename filename View System view Parameter domain name Name of the PKI domain name a string of 1 to 15 characters password Password for certificate revocation a case sensitive string of 1 to 31 characters pkcs10 Displays the BASE64 encoded PKCS 10 certificate request filena...

Page 2061: ...er for certificate distribution Related command pki domain Example Retrieve the CA certificate from the certificate issuing server Sysname system view Sysname pki retrieval certificate ca domain 1 pki retrieval crl domain Syntax pki retrieval crl domain domain name View System view Parameter domain name Name of the PKI domain a string of 1 to 15 characters Description Use the pki retrieval crl com...

Page 2062: ...command pki domain Example Verify the validity of the local certificate Sysname system view Sysname pki validate certificate domain 1 root certificate fingerprint Syntax root certificate fingerprint md5 sha1 string undo root certificate fingerprint View PKI domain view Parameter md5 Uses an MD5 fingerprint sha1 Use a SHA1 fingerprint string Fingerprint to be used An MD5 fingerprint must be a strin...

Page 2063: ...dered invalid and denied permit Indicates that a certificate matching an attribute rule in the specified attribute group is considered valid and permitted group name Name of the certificate attribute group to be associated with the rule a case insensitive string of 1 to 16 characters It cannot be a al or all all Specifies all access control rules Description Use the rule command to create a certif...

Page 2064: ...racters No comma can be included Description Use the state command to specify the name of the state or province where an entity resides Use the undo state command to remove the configuration By default no state or province is specified Example Specify the state where an entity resides Sysname system view Sysname pki entity 1 Sysname pki entity 1 state Country ...

Page 2065: ...onfigurations interface interface type interface number Displays the ACLs on the specified interface Description Use the display portal acl command to display the ACLs on the specified interface Example Display all ACLs on Ethernet 1 0 Sysname display portal acl all interface ethernet 1 0 Ethernet1 0 portal ACL rule Rule 0 Inbound interface Ethernet1 0 Type static Action permit Source IP 0 0 0 0 M...

Page 2066: ...ction statistics interface ethernet 1 0 Interface Ethernet1 0 User state statistics State Name User Num VOID 0 DISCOVERED 0 WAIT_AUTHEN_ACK 0 WAIT_AUTHOR_ACK 0 WAIT_LOGIN_ACK 0 WAIT_ACL_ACK 0 WAIT_NEW_IP 0 Table 536 Description on the fields of the display portal acl command Field Description Rule Sequence number of the generated ACL which is numbered from 0 in ascending order Inbound interface In...

Page 2067: ... fields of the display portal connection statistics command Field Description User state statistics Statistics of portal users State Name Name of a user state User Num Number of users VOID Number of users in void state DISCOVERED Number of users in discovered state WAIT_AUTHEN_ACK Number of users in wait_authen_ack state WAIT_AUTHOR_ACK Number of users in wait_author_ack state WAIT_LOGIN_ACK Numbe...

Page 2068: ...n request message MSG_LOGIN_REQ Accounting request message MSG_LOGOUT_REQ Accounting stop request message MSG_LEAVING_REQ Leaving request message MSG_ARPPKT ARP message MSG_TMR_REQAUTH Authentication request timeout message MSG_TMR_AUTHEN Authentication timeout message MSG_TMR_AUTHOR Authorization timeout message MSG_TMR_LOGIN Accounting start timeout message MSG_TMR_LOGOUT Accounting stop timeout...

Page 2069: ...e ethernet 1 0 Interface portal configuration Ethernet1 0 Portal running Portal server servername Authentication type Direct Service type Normal Authentication network address 0 0 0 0 mask 0 0 0 0 Table 538 Description on the fields of the display portal free rule command Field Description Rule Number Number of an authentication free rule Source Source information in an authentication free rule IP...

Page 2070: ...11 portal Table 539 Description on the fields of the display portal interface command Field Description Interface portal configuration Portal configuration on an interface Ethernet 1 0 Portal state on an interface Portal server Portal server applied to an interface Authentication type Authentication mode enabled on an interface Service type Type of service Authentication network Information of an ...

Page 2071: ...the portal server statistics on Ethernet 1 0 Sysname display portal server statistics interface ethernet 1 0 Interface Ethernet1 0 Server name st Invalid packets 0 Pkt Name Total Discard Checkerr REQ_CHALLENGE 3 0 0 ACK_CHALLENGE 3 0 0 REQ_AUTH 3 0 0 ACK_AUTH 3 0 0 REQ_LOGOUT 1 0 0 ACK_LOGOUT 1 0 0 AFF_ACK_AUTH 3 0 0 NTF_LOGOUT 1 0 0 REQ_INFO 6 0 0 ACK_INFO 6 0 0 NTF_USERDISCOVER 0 0 0 NTF_USERIPC...

Page 2072: ...e portal server REQ_LOGOUT Logout request message the portal server sends to the access device ACK_LOGOUT Logout acknowledgment message the access device sends to the portal server AFF_ACK_AUTH Affirmation message the portal server sends to the access device after receiving an authentication success message NTF_LOGOUT Forced logout notification message the access device sends to the portal server ...

Page 2073: ... Interface Table 542 Description on fields of the display portal tcp cheat statistics command Field Description TCP Cheat Statistic TCP spoofing statistics Total Opens Total number of opened connections Resets Connections Number of the connections reset through RST packets Current Opens Number of active connections Packets Received Number of received packets Packets Sent Number of sent packets Pac...

Page 2074: ...ion The portal authentication subnet for direct authentication is any source IP address and the portal authentication subnet for re DHCP authentication is the one determined by the private IP address of the interface By default the portal authentication subnet is 0 0 0 0 0 meaning to authenticate users in all subnets Example Set the portal authentication subnet to 10 10 10 0 24 Sysname system view...

Page 2075: ...gth netmask any source any interface interface type interface number ip ip address mask mask length netmask any mac mac address undo portal free rule rule number all View System view Parameter rule number Number of an authentication free rule The value range varies with devices any Specifies no limitation on the keyword which comes before the any keyword ip ip address Specifies an IP address in an...

Page 2076: ... source interface is Ethernet 1 0 and destination IP address is any address will not trigger a portal authentication Sysname system view Sysname portal free rule 15 source ip 10 10 10 1 mask 24 interface ethernet 1 0 destination ip any portal resource name Syntax portal resource name resource name undo portal resource name View System view Parameter resource name Name of the resource to be protect...

Page 2077: ...ver Use the undo portal server command to delete the specified portal server or restore the default By default no portal server is configured Note that if the specified portal server exists but there is no user on the interface the specified portal server will be deleted if no parameter is specified when the undo portal server command is executed Otherwise the port and url parameters if specified ...

Page 2078: ...ded portal authentication Description Use the portal server command to enable portal authentication on the interface and specify the portal server to be referenced authentication mode and service type Use the undo portal command to disable portal authentication on the interface By default portal authentication is disabled Note that the specified portal server must exist Related command display por...

Page 2079: ...nterface type interface number View User view Parameter all Clears the portal server statistics on all interfaces interface interface type interface number Clears the portal server statistics on the specified interface Description Use the reset portal server statistics command to clear the portal server statistics on the specified interface or all interfaces Example Clear the portal server statist...

Page 2080: ...2080 CHAPTER 135 PORTAL CONFIGURATION COMMANDS ...

Page 2081: ...st You can operate on the RSH client to remotely execute the OS commands of the RSH server and query access information as well Example Display information about the directories and files on remote server 169 254 1 100 which is running Windows 2000 Sysname rsh 169 254 1 100 com dir Trying 169 254 1 100 Press CTRL K to abort Volume in drive C is SYSTEM Volume Serial Number is 2A0F 18DF Directory of...

Page 2082: ...exe 2003 06 21 10 32 69 632 wrshdrun exe 2004 01 02 15 54 196 608 wrshdsp exe 2004 01 02 15 54 102 400 wrshdnt exe 2001 07 30 18 05 766 wrshdnt ico 2004 07 13 09 10 3 253 INSTALL LOG 21 files 1 749 848 bytes 2 directories 2 817 417 216 bytes free Set the system time of remote server 169 254 1 100 which is running Windows 2000 Sysname rsh 169 254 1 100 command time Trying 169 254 1 100 Press CTRL K...

Page 2083: ... configuration and state of time range trname Sysname display time range trname Current time is 10 45 15 4 14 2005 Thursday Time range trname Inactive from 08 00 12 1 2005 to 23 59 12 31 2100 time range Syntax time range time name start time to end time days from time1 date1 to time2 date2 from time1 date1 to time2 date2 to time2 date2 undo time range time name start time to end time days from tim...

Page 2084: ...re hh is hours and mm is minutes Its value ranges from 00 00 to 23 59 The date1 argument specifies a date in MM DD YYYY or YYYY MM DD format where MM is the month of the year in the range 1 to 12 DD is the day of the month in the range 1 to 31 and YYYY is the year in the usual Gregorian calendar in the range 1970 to 2100 If not specified the start time is the earliest time available from the syste...

Page 2085: ...00 wednesday from 00 00 01 01 2004 to 23 59 12 31 2004 command You may create individual time ranges identified with the same name They are regarded as one time range whose active period is the result of ORing periodic ones ORing absolute ones and ANDing periodic and absolute ones Example Create an absolute time range named test setting it to become active from 00 00 on January 1 2003 Sysname syst...

Page 2086: ...2086 CHAPTER 137 COMMON CONFIGURATION COMMANDS ...

Page 2087: ...to 5999 name acl name Specifies the name of the ACL which is a case insensitive string of 1 to 32 characters It must start with an English letter and cannot be the English word of all to avoid confusion match order Sets the order in which ACL rules are matched This keyword is not available for user defined IPv4 ACLs auto Performs depth first match config Performs matching against rules in the orde...

Page 2088: ...v4 ACL but only when it is empty Example Create IPv4 ACL 2000 Sysname system view Sysname acl number 2000 Sysname acl basic 2000 Create IPv4 ACL 2002 giving the ACL a name of flow Sysname system view Sysname acl number 2002 name flow Sysname acl basic 2002 flow Enter the view of an IPv4 ACL that has no name by specifying its number Sysname system view Sysname acl number 2000 Sysname acl basic 2000...

Page 2089: ...ader ACLs 5000 to 5999 for user defined ACLs dest acl name Name for the new IPv4 ACL a case insensitive string of 1 to 32 characters It must start with an English letter and cannot be the English word of all to avoid confusion The system will automatically assign the new ACL a sequence number which is the smallest one among the available ones in the ACL range for the ACL type Description Use the a...

Page 2090: ...ned ACL view Parameter text ACL description a case sensitive string of 1 to 127 characters Description Use the description command to create an IPv4 ACL description to describe the purpose of the ACL for example Use the undo description command to remove the ACL description By default an IPv4 ACL has no description configured Example Create a description for IPv4 ACL 2000 Sysname system view Sysna...

Page 2091: ... range that 5000 to 5999 Description Use the display acl command to display information about the specified or all IPv4 ACLs This command displays ACL rules in the order in which the system compares a packet against them Example Display information about IPv4 ACL 2001 Sysname display acl 2001 Basic acl 2001 named flow 1 rule Acl s step is 5 rule 5 permit source 1 1 1 1 0 5 times matched rule 5 com...

Page 2092: ... specified or all IPv4 ACLs except for user defined ACLs Example Clear statistics about IPv4 ACL 2001 Sysname reset acl counter 2001 Clear statistics about IPv4 ACL flow Sysname reset acl counter name flow rule in basic IPv4 ACL view Syntax rule rule id deny permit fragment logging source sour addr sour wildcard any time range time name vpn instance vpn instance name undo rule rule id fragment log...

Page 2093: ...4 ACL rule or modify the rule if it has existed Use the undo rule command to remove a basic IPv4 ACL rule or parameters from the rule With the undo rule command if no parameters are specified the entire ACL rule is removed if other parameters are specified only the involved information is removed You will fail to create or modify a rule if its permit deny statement is exactly the same as another r...

Page 2094: ... addr sour wildcard argument specifies a source IP address in dotted decimal notation Setting the wildcard to a zero indicates a host address The any keyword indicates any source IP address destination dest addr dest wildcard any Specifies a destination address The dest addr dest wildcard argument specifies a destination IP address in dotted decimal notation Setting the dest wildcard to a zero ind...

Page 2095: ...UDP or TCP packets are matched The operator argument can be lt lower than gt greater than eq equal to neq not equal to and range inclusive range port1 port2 TCP or UDP port number represented by a number in the range 0 to 65535 TCP port number can be represented in words as follows chargen 19 bgp 179 cmd 514 daytime 13 discard 9 domain 53 echo 7 exec 512 finger 79 ftp 21 ftp data 20 gopher 70 host...

Page 2096: ... auto rather than config you cannot modify ACL rules Table 548 Parameters for advanced IPv4 ACL rules Parameter Function Description icmp type icmp type icmp code icmp message Specifies the ICMP message type and code The icmp type argument ranges from 0 to 255 The icmp code argument ranges from 0 to 255 The icmp message argument specifies a message name For available ICMP messages see Table 549 Ta...

Page 2097: ...est addr dest mask lsap lsap code lsap wildcard source mac sour addr source mask time range time name type type code type wildcard undo rule rule id View Ethernet frame header ACL view Parameter rule id Ethernet frame header ACL rule number in the range 0 to 65534 deny Defines a deny statement to drop matched packets permit Defines a permit statement to allow matched packets to pass cos vlan pri D...

Page 2098: ...rather than config you cannot modify ACL rules When defining ACL rules you need not assign them IDs The system can automatically assign rule IDs starting with 0 and increasing in certain rule numbering steps A rule ID thus assigned is greater than the current highest rule ID For example if the rule numbering step is five and the current highest rule ID is 28 the next rule will be numbered 30 For d...

Page 2099: ...fy a user defined ACL rule if its permit deny statement is exactly the same as another rule When defining user defined ACL rules you need not assign them IDs The system can automatically assign rule IDs starting with 0 and increasing in rule numbering steps of five A rule ID thus assigned is greater than the current highest rule ID For example if the current highest rule ID is 28 the next rule wil...

Page 2100: ...name system view Sysname acl number 3000 Sysname acl adv 3000 rule 0 permit ip source 1 1 1 1 0 Sysname acl adv 3000 rule 0 comment This rule is used in eth 1 Create a rule in ACL 4000 and define the rule description Sysname system view Sysname acl number 4000 Sysname acl ethernetframe 4000 rule 0 deny cos 3 Sysname acl ethernetframe 4000 rule 0 comment This rule is used in eth 1 Create a rule in ...

Page 2101: ...m five to two the rules are renumbered 0 2 4 6 and 8 Note that even if the current step is the default performing the undo step command can still result in rule renumbering Suppose that ACL 3001 adopts the default numbering step and contains two rules numbered 0 and 5 After you insert rule 1 and rule 3 the rules are numbered 0 1 3 and 5 If you perform the undo step command they will be renumbered ...

Page 2102: ...2102 CHAPTER 138 IPV4 ACL CONFIGURATION COMMANDS ...

Page 2103: ...n English letter and cannot be the English word of all to avoid confusion match order Sets the order in which ACL rules are matched auto Performs depth first match For how depth first match works refer to the IPv6 ACL Match Order section in accompanied ACL Configuration config Performs matching against rules in the order in which they are configured all All IPv6 ACLs Description Use the acl ipv6 c...

Page 2104: ...f an existing IPv6 ACL but only when it is empty Example Create IPv6 ACL 2000 Sysname system view Sysname acl ipv6 number 2000 Sysname acl6 basic 2000 Create IPv6 ACL 2002 giving the ACL a name of flow Sysname system view Sysname acl ipv6 number 2002 name flow Sysname acl6 basic 2002 flow Enter the view of an IPv6 ACL that has no name by specifying its number Sysname system view Sysname acl ipv6 n...

Page 2105: ...lish word of all to avoid confusion The system will automatically assign the new ACL a sequence number which is the smallest one among the available ones in the ACL range for the ACL type Description Use the acl ipv6 copy command to copy an existent IPv6 ACL namely the source IPv6 ACL to generate a new one namely the destination IPv6 ACL which is of the same type and has the same match order match...

Page 2106: ... purpose of the ACL for example Use the undo description command to remove the IPv6 ACL description By default an IPv6 ACL has no description configured Example Create a description for IPv6 ACL 2000 Sysname system view Sysname acl ipv6 number 2000 Sysname acl6 basic 2000 description This acl is used in eth 0 Create a description for IPv6 ACL 3000 Sysname system view Sysname acl ipv6 number 3000 S...

Page 2107: ...nt This rule is used in eth 1 reset acl ipv6 counter Syntax reset acl ipv6 counter acl6 number all name acl6 name View User view Parameter all All basic and advanced IPv6 ACLs acl6 number IPv6 ACL number It is a value in one of the following ranges 2000 to 2999 for basic IPv6 ACLs 3000 to 3999 for advanced IPv6 ACLs Table 550 Description on the fields of the display acl ipv6 command Field Descript...

Page 2108: ...hed packets permit Defines a permit statement to allow matched packets to pass fragment Indicates that the rule applies only to non first fragments The rule applies to both fragments and non fragments without this keyword logging Specifies to log matched packets The log provides information about ACL rule number whether packets are permitted or dropped upper layer protocol that IP carries source d...

Page 2109: ...gured in an ACL If the match order for this IPv6 ACL is auto rules are displayed in the depth first match order rather than by rule number Example Create rules in IPv6 ACL 2000 Sysname system view Sysname acl ipv6 number 2000 Sysname acl6 basic 2000 rule permit source 2030 5060 9050 64 Sysname acl6 basic 2000 rule 8 deny source fe80 5060 8050 96 rule in advanced IPv6 ACL view Syntax rule rule id d...

Page 2110: ...to 128 The any keyword indicates any IPv6 destination address dscp dscp Specifies a DSCP preference The dscp argument can be a number in the range 0 to 63 or in words af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 cs1 cs2 cs3 cs4 cs5 cs6 cs7 default or ef logging Specifies to log matched packets The log provides information about ACL rule number whether packets are permitted or denied...

Page 2111: ...lk 517 telnet 23 time 37 uucp 540 whois 43 or www 80 UDP port number can be represented in words as follows biff 512 bootpc 68 bootps 67 discard 9 dns 53 dnsix 90 echo 7 mobilip ag 434 mobilip mn 435 nameserver 42 netbios dgm 138 netbios ns 137 netbios ssn 139 ntp 123 rip 520 snmp 161 snmptrap 162 sunrpc 111 syslog 514 tacacs ds 65 talk 517 tftp 69 time 37 who 513 xdmcp 177 destination port operat...

Page 2112: ... For detailed information about step refer to step for IPv4 on page 2100 and step for IPv6 on page 2116 You may use the display acl ipv6 command to verify rules configured in an IPv6 ACL If the match order for this IPv6 ACL is auto rules are displayed in the depth first match order rather than by rule number Example Create a rule in IPv6 ACL 3000 to permit the TCP packets with the source address 2...

Page 2113: ... 64 bit destination address suffix 5 128 bit source address 6 128 bit destination address source source source prefix source source p refix any Specifies a source IPv6 address The source and source prefix arguments specify an IPv6 source address and its prefix length in the range 1 to 128 The any keyword indicates any IPv6 source address destination dest dest prefix dest dest prefix any Specifies ...

Page 2114: ...follows biff 512 bootpc 68 bootps 67 discard 9 dns 53 dnsix 90 echo 7 mobilip ag 434 mobilip mn 435 nameserver 42 netbios dgm 138 netbios ns 137 netbios ssn 139 ntp 123 rip 520 snmp 161 snmptrap 162 sunrpc 111 syslog 514 tacacs ds 65 talk 517 tftp 69 time 37 who 513 xdmcp 177 destination po rt operator port1 port2 Defines a UDP or TCP destination port against which UDP or TCP packets are matched t...

Page 2115: ... rule id comment View Basic IPv6 ACL view advanced IPv6 ACL view Parameter rule id IPv6 ACL rule number in the range 0 to 65534 text IPv6 ACL rule description a case sensitive string of 1 to 127 characters Description Use the rule comment command to create or modify a description for an existing IPv6 ACL rule for example to describe the purpose of the ACL rule or its attributes Use the undo rule c...

Page 2116: ...he default By default the rule numbering step is five When defining rules in an IPv6 ACL you do not necessarily assign them numbers The system can do this automatically in steps For example if the default step applies rules you created are numbered 0 5 10 15 and so on automatically One benefit of rule numbering step is that it allows you to insert new rules between existing ones as needed For exam...

Page 2117: ...ysname system view Sysname acl ipv6 number 2000 Sysname acl6 basic 2000 step 2 Set the rule numbering step to 2 for IPv6 ACL 3000 Sysname system view Sysname acl ipv6 number 3000 Sysname acl6 adv 3000 step 2 ...

Page 2118: ...2118 CHAPTER 139 IPV6 ACL CONFIGURATION COMMANDS ...

Page 2119: ... command to restore the default By default MD5 is used Note that you need to use the transform command to specify the security protocol as AH or both AH and ESP before specifying the authentication algorithm for AH Related command ipsec proposal and transform Example Configure IPSec proposal prop1 to use AH and SHA1 Sysname system view Sysname ipsec proposal prop1 Sysname ipsec proposal prop1 tran...

Page 2120: ...bled it takes over the responsibility of IPSec processing If the encryption switch fabric is disabled or has failed but the IPSec module backup function is enabled the IPSec module takes over the responsibility of IPSec processing if the IPSec module backup function is disabled the matched packets are discarded By default the encryption switch fabric is enabled Example Enable the encryption switch...

Page 2121: ...t the command displays detailed information about the specified IPSec policy group Related command ipsec policy system view Example Display brief information about all IPSec policies Sysname display ipsec policy brief IPsec Policy Name Mode acl ike peer name map 1 isakmp 3000 peerr1234567890 map 3 template mappp1234567890 1 isakmp 3000 peer mappp5432167890 1 template Table 559 Description on the f...

Page 2122: ...er 10 mode manual security data flow 100 tunnel local address 162 105 10 1 tunnel remote address 162 105 10 2 proposal name prop1 inbound AH setting AH spi 12345 0x3039 AH string key AH authentication hex key 1234567890123456789012345678901234567890 inbound ESP setting ESP spi 23456 0x5ba0 ESP string key ESP encryption hex key 1234567890abcdef1234567890abcdef1234567812345678 ESP authentication hex...

Page 2123: ...te that If you do not specify any keywords or parameters the command displays detailed information about all IPSec policy templates If you specify the name policy name combination but leave the seq number argument the command displays information about the specified IPSec policy template group Related command ipsec policy template Example Display brief information about all IPSec policy templates ...

Page 2124: ...thentication md5 hmac 96 encryption des display ipsec sa Syntax display ipsec sa brief duration policy policy name seq number remote ip address Table 562 Description on the fields of display ipsec policy template brief Field Description Policy template Name Name and sequence number of the IPSec policy template separated by hyphen acl Access control list referenced by the IPSec policy template Remo...

Page 2125: ...brief information about all SAs Sysname display ipsec sa brief Src Address Dst Address SPI Protocol Algorithm 10 1 1 1 10 1 1 2 300 ESP E DES A HMAC MD5 96 10 1 1 2 10 1 1 1 400 ESP E DES A HMAC MD5 96 Display the global SA lifetime settings Sysname display ipsec sa duration ipsec sa global duration traffic based 1843200 kilobytes ipsec sa global duration time based 3600 seconds Display detailed i...

Page 2126: ...for nat traversal N Table 565 Description on the fields of the display ipsec sa command Field Description Interface Interface referencing the IPSec policy path MTU Maximum IP packet length supported by the interface IPSec policy name Name of the IPSec policy used sequence number Sequence number of the IPSec policy mode IPSec negotiation mode connection id IPSec tunnel identifier encapsulation mode...

Page 2127: ...ion sec 36 300 session flow 8 times matched Sour Addr 15 15 15 1 Sour Port 0 Protocol 1 Dest Addr 15 15 15 2 Dest Port 0 Protocol 1 tunnel id 4 session idle time total duration sec 7 300 session flow 3 times matched Sour Addr 12 12 12 1 Sour Port 0 Protocol 1 Dest Addr 13 13 13 1 Dest Port 0 Protocol 1 Display information about the session with an IPSec tunnel ID of 5 sa remaining key duration Rem...

Page 2128: ...urity packets 0 0 dropped security packet detail not enough memory 0 can t find SA 0 queue is full 0 authentication has failed 0 wrong length 0 Table 566 Description on the fields of the display ipsec session command Field Description total sessions Total number of IPSec sessions tunnel id IPSec tunnel ID same as the connection id of the IPSec SA session idle time Idle duration of the IPSec sessio...

Page 2129: ... IPSec protected packets input output security bytes Number of inbound IPSec protected bytes and number of outbound IPSec protected bytes input output dropped security packets Number of inbound IPSec protected packets that are discarded by the device and number of outbound IPSec protected packets that are discarded by the device dropped security packet detail Detailed information about inbound out...

Page 2130: ...al prop2 to encapsulate IP packets in transport mode Sysname system view Sysname ipsec proposal prop2 Sysname ipsec proposal prop2 encapsulation mode transport encrypt card fast switch Syntax encrypt card fast swtich undo encrypt card fast switch View System view Table 568 Description on the fields of the display ipsec tunnel command Field Description Connection ID Connection ID used to uniquely i...

Page 2131: ...er md5 Uses the MD5 algorithm which uses a 128 bit key sha1 Uses the SHA1 algorithm which uses a 160 bit key Description Use the esp authentication algorithm command to specify the authentication algorithm for ESP Use the undo esp authentication algorithm command to configure ESP so that ESP does not perform authentication of packets By default the MD5 algorithm is used Related command ipsec propo...

Page 2132: ...ion algorithm command to configure ESP so that ESP does not encrypt packets By default the DES algorithm is used Note that 3DES is well suited for environments with high demand on confidentiality and security but it is comparatively slow in encryption DES is enough to satisfy normal security requirements ESP allows the encryption and or authentication of a packet ESP supports three IP packet prote...

Page 2133: ...rameter policy name Name of the IPSec policy a case insensitive string of 1 to 15 characters Valid characters are English letters and numbers No minus sign can be included seq number Sequence number of the IPSec policy in the range of 1 to 10000 with a smaller value indicating a higher priority primary Specifies the current encryption card as the primary card of the IPSec policy Description Use th...

Page 2134: ...f there is no primary card an IPSec policy or policy group prefers the first encryption card bound to it Once an IPSec policy or policy group takes a second encryption card as the primary card the new primary card begins to provide security services immediately Related command ipsec policy system view Example Bind the IPSec policy group named map to interface Encryp1 0 Sysname system view Sysname ...

Page 2135: ... an IPSec policy group Note that Only one IPSec policy group can be applied to an interface To apply another IPSec policy group to the interface you need to remove the original application and then apply the new one to the interface An IPSec policy group can be applied to more than one interface With an IPSec policy group applied to an interface the system uses each IPSec policy in the group to pr...

Page 2136: ...olicy command to delete the specified IPSec policies By default no IPSec policy exists Note that When creating an IPSec policy the generation mode will be manual if you do not specify it You cannot change the generation mode of an existing IPSec policy you can only delete the policy and then re create it with the new mode IPSec policies with the same name constitute an IPsec policy group An IPSec ...

Page 2137: ...otiation Use the undo ipsec policy command to delete an IPSec policy Note that Using the undo IPSec policy command without the seq number argument deletes an IPSec policy group In an IPSec policy an IPSec policy with a smaller sequence number has a higher priority Related command ipsec policy system view ipsec policy template Example Create an IPSec policy with the name policy2 and sequence number...

Page 2138: ...c policy template Example Create an IPSec policy template with the name template1 and the sequence number 100 Sysname system view Sysname ipsec policy template template1 100 Sysname ipsec policy template template1 100 ipsec proposal Syntax ipsec proposal proposal name undo ipsec proposal proposal name View System view Parameter proposal name Name for the proposal a case insensitive string of 1 to ...

Page 2139: ...ds and the traffic based global SA lifetime is 1 843 200 kilobytes Note that When negotiating to set up an SA IKE prefers the lifetime of the IPSec policy that it uses If the IPSec policy is not configured with its own lifetime IKE uses the global SA lifetime When negotiating to set up an SA IKE prefers the shorter one of the local lifetime and that proposed by the remote The SA lifetime applies t...

Page 2140: ...ellman group dh group2 Uses 1024 bit Diffie Hellman group dh group5 Uses 1536 bit Diffie Hellman group dh group14 Uses 2048 bit Diffie Hellman group Description Use the pfs command to enable and configure the perfect forward secrecy PFS feature so that the system uses the feature when employing the IPSec policy to initiate a negotiation Use the undo pfs command to remove the configuration By defau...

Page 2141: ...Description Use the proposal command to specify the IPSec proposal s for the IPSec policy to reference Use the undo proposal command to remove an IPSec proposal reference by the IPSec policy By default an IPSec policy references no IPSec proposal Note that You can specify only existing IPSec proposals when using this command A manual IPSec policy can reference only one IPSec proposal To replace a ...

Page 2142: ...s can also clear encryption card fast switching entries such as disabling the encryption card resetting the encryption card hot plugging the encryption card unbinding a policy and clearing the SA Related command display encrypt card fast switch Example Clear all encryption card fast switching entries sysname reset encrypt card fast switch reset ipsec sa Syntax reset ipsec sa parameters dest addres...

Page 2143: ...ce an SA set up through IKE negotiation is cleared the system will set up a new one through negotiation when a packet triggers an IKE negotiation As SAs appear in pairs if you specify the parameters keyword to clear the SA in one direction the SA in the other direction will also be cleared Related command display ipsec sa Example Clear all SAs Sysname reset ipsec sa Clear the SA with the remote IP...

Page 2144: ...atistics Syntax reset ipsec statistics View User view Parameter None Description Use the reset ipsec statistics command to clear IPSec message statistics and set all the statistics to zero Related command display ipsec statistics Example Clear IPSec message statistics Sysname reset ipsec statistics sa authentication hex Syntax sa authentication hex inbound outbound ah esp hex key undo sa authentic...

Page 2145: ...nel must be configured with the same key in the same format Related command ipsec policy system view Example Configure the authentication keys of the inbound and outbound SAs using AH as 0x112233445566778899aabbccddeeff00 and 0xaabbccddeeff001100aabbccddeeff00 respectively Sysname system view Sysname ipsec policy policy1 100 manual Sysname ipsec policy manual policy1 100 sa authentication hex inbo...

Page 2146: ... 7 200 seconds Sysname system view Sysname ipsec policy policy1 100 isakmp Sysname ipsec policy isakmp policy1 100 sa duration time based 7200 Set the SA lifetime for the IPSec policy to 20 Mbytes that is 20 480 kilobytes Sysname system view Sysname ipsec policy policy1 100 isakmp Sysname ipsec policy isakmp policy1 100 sa duration traffic based 20480 sa encryption hex Syntax sa encryption hex inb...

Page 2147: ...iew Sysname ipsec policy policy1 100 manual Sysname ipsec policy manual policy1 100 sa encryption hex inbound esp 1234567890abcdef Sysname ipsec policy manual policy1 100 sa encryption hex outbound esp abcdefabcdef1234 sa spi Syntax sa spi inbound outbound ah esp spi number undo sa spi inbound outbound ah esp View IPSec policy view Parameter inbound Specifies the inbound SA through which IPSec pro...

Page 2148: ...ual policy1 100 sa spi outbound ah 20000 sa string key Syntax sa string key inbound outbound ah esp string key undo sa string key inbound outbound ah esp View IPSec policy view Parameter inbound Specifies the inbound SA through which IPSec processes the received packets outbound Specifies the outbound SA through which IPSec processes the packets to be sent ah Uses AH esp Uses ESP string key Key st...

Page 2149: ... inbound ah abcdef Sysname ipsec policy manual policy1 100 sa string key inbound ah efcdab security acl Syntax security acl acl number undo security acl View IPSec policy view IPSec policy template view Parameter acl number Number of the ACL for the IPSec policy to reference in the range 3000 to 3999 Description Use the security acl command to specify the ACL for the IPSec policy to reference Use ...

Page 2150: ...rithms are DES and MD5 respectively If AH is used the default authentication algorithm is MD5 If both AH and ESP are used AH takes the authentication algorithm of MD5 by default while ESP takes the encryption algorithm of DES and uses no authentication algorithm by default The IPSec proposals at the two ends of an IPSec tunnel must use the same security protocol Related command ipsec proposal Exam...

Page 2151: ...ck0 quit Sysname ipsec policy policy1 100 manual Sysname ipsec policy manual policy1 100 tunnel local 10 0 0 1 tunnel remote Syntax tunnel remote ip address undo tunnel remote ip address View IPSec policy view Parameter ip address Remote address for the IPSec tunnel Description Use the tunnel remote command to configure the remote address of an IPSec tunnel Use the undo tunnel remote command to re...

Page 2152: ...ER 140 IPSEC CONFIGURATION COMMANDS Example Set the remote address of the IPSec tunnel to 10 1 1 2 Sysname system view Sysname ipsec policy policy1 10 manual Sysname ipsec policy policy1 10 tunnel remote 10 1 1 2 ...

Page 2153: ...orithm command to restore the default By default an IKE proposal uses the SHA1 authentication algorithm Related command ike proposal display ike proposal Example Set MD5 as the authentication algorithm for IKE proposal 10 Sysname system view Sysname ike proposal 10 Sysname ike proposal 10 authentication algorithm md5 authentication method Syntax authentication method pre share rsa signature undo a...

Page 2154: ...rtificate domain View IKE Peer view Parameter domain name Name of the PKI domain a string of 1 to 15 characters Description Use the certificate domain command to configure the PKI domain of the certificate when IKE uses digital signature as the authentication mode Use the undo certificate domain command to remove the configuration Related command authentication method on page 1721 and pki domain o...

Page 2155: ...0 Sysname system view Sysname ike proposal 10 Sysname ike proposal 10 dh group1 display ike dpd Syntax display ike dpd dpd name View Any view Parameter dpd name DPD name a string of 1 to 15 characters Description Use the display ike dpd command to display information about a specified or all DPDs Related command ike dpd Example Display information about all DPDs Sysname display ike dpd IKE dpd dpd...

Page 2156: ...e shared key 123 peer id type ip peer ip address 44 44 44 55 local ip address peer name nat traversal disable dpd dpd1 display ike proposal Syntax display ike proposal View Any view Parameter None Table 570 Description on the fields of the display ike peer command Field Description exchange mode IKE negotiation mode in phase 1 pre shared key Pre shared key used in phase 1 peer id type ID type used...

Page 2157: ...te address View Any view Parameter verbose Displays detailed information connection id Displays detailed information about IKE SAs by connection ID in the range 1 to 2000000000 remote address Displays detailed information about IKE SAs by remote address Description Use the display ike sa command to display information about the current IKE SAs Note that the command displays brief information about...

Page 2158: ...e MAIN Table 572 Description on the fields of the display ike sa command Field Description total phase 1 SAs Total number of SAs in phase 1 connection id Identifier of the IPSec tunnel peer Remote IP address of the SA flag Status of the SA RD READY the SA has been established ST STAYALIVE This end is the initiator of the tunnel negotiation RL REPLACED The tunnel has been replaced by a new one and ...

Page 2159: ...fe duration sec 86400 remaining key duration sec 82480 exchange mode MAIN diffie hellman group GROUP1 nat traversal NO Display detailed information about the IKE SA with the remote address of 4 4 4 5 Sysname display ike sa verbose remote address 4 4 4 5 connection id 2 transmitting entity initiator local ip 4 4 4 4 local id type IPV4_ADDR local id 4 4 4 4 remote ip 4 4 4 5 remote id type IPV4_ADDR...

Page 2160: ... view Parameter 3des cbc Uses the 3DES algorithm in CBC mode as the encryption algorithm The 3DES algorithm uses 168 bit keys for encryption aes cbc Uses the AES algorithm in CBC mode as the encryption algorithm The AES algorithm uses 128 bit 192 bit or 256 bit keys for encryption key length Key length for the AES algorithm which can be 128 192 or 256 bits and is defaulted to 128 bits des cbc Uses...

Page 2161: ... the undo exchange mode command to restore the default By default main mode is used Note that if the user at one end of an IPSec tunnel obtains IP address automatically for example a dial up user IKE negotiation mode must be set to aggressive In this case an SA can be created as long as the username and password are correct Related command id type Example Specify that IKE negotiation works in main...

Page 2162: ...cal name remote name remote address local address exchange mode Example Use the ID type of name in IKE negotiation Sysname system view Sysname ike peer peer1 Sysname ike peer peer1 id type name ike dpd Syntax ike dpd dpd name undo ike dpd dpd name View System view Parameter dpd name Name for the dead peer detection DPD a string of 1 to 15 characters Description Use the ike dpd command to create a ...

Page 2163: ...or Therefore make sure the local gateway name for a device is identical to the remote gateway name configured on its peer Related command remote name id type name Example Configure the local gateway name as app Sysname system view Sysname ike local name app ike next payload check disabled Syntax ike next payload check disabled undo ike next payload check disabled View System view Parameter None De...

Page 2164: ...al proposal number View System view Parameter proposal number IKE proposal number in the range 1 to 100 It also stands for the priority with a smaller value meaning a higher priority During an IKE negotiation the system matches IKE proposals by proposal number starting from the smallest one Description Use the ike proposal command to create an IKE proposal and enter IKE proposal view Use the undo ...

Page 2165: ...alive transmission function By default no keepalive packet is sent Note that the keepalive interval configured at the local end must be shorter than the keepalive timeout configured at the remote end Related command ike sa keepalive timer timeout Example Set the keepalive interval to 200 seconds Sysname system view Sysname ike sa keepalive timer interval 200 ike sa keepalive timer timeout Syntax i...

Page 2166: ...timer interval Syntax ike sa nat keepalive timer interval seconds undo ike sa nat keepalive timer interval View System view Parameter seconds NAT keepalive interval in seconds in the range 5 to 300 Description Use the ike sa nat keepalive timer interval command to set the NAT keepalive interval Use the undo ike sa nat keepalive timer interval command to disable the function By default no NAT keepa...

Page 2167: ...ulti subnet Sets the subnet type to multiple single subnet Sets the subnet type to single Description Use the local command to set the subnet type of the local gateway for IKE negotiation Use the undo local command to restore the default By default the subnet is a single one You can use this command to enable interoperability with a Netscreen device Example Set the subnet type of the local gateway...

Page 2168: ...name system view Sysname ike peer xhy Sysname ike peer xhy local address 1 1 1 1 nat traversal Syntax nat traversal undo nat traversal View IKE peer view Parameter None Description Use the nat traversal command to enable the NAT traversal function of IKE IPSec Use the undo nat traversal command to disable the NAT traversal function of IKE IPSec By default the NAT traversal function is disabled Exa...

Page 2169: ... 128 characters Description Use the pre shared key command to configure the pre shared key to be used in IKE negotiation Use the undo pre shared key command to remove the configuration Related command authentication algorithm on page 1721 Example Set the pre shared key used in IKE negotiation to abcde Sysname system view Sysname ike peer peer1 Sysname ike peer peer1 pre shared key abcde remote add...

Page 2170: ...r IKE negotiation a string of 1 to 32 characters Description Use the remote name command to configure the name of the remote gateway Use the undo remote name command to remove the configuration If the IKE negotiation initiator uses its gateway name for IKE negotiation that is the id type name command is configured on the initiator it sends the name as its identity to the peer whereas the peer uses...

Page 2171: ...hen you clear the SAs of phase 2 Related command display ike sa Example Clear the IPSec tunnel to 202 38 0 2 Sysname display ike sa conn id remote flag phase doi 1 202 38 0 2 RD ST 1 IPSEC 2 202 38 0 2 RD ST 2 IPSEC flag meaning RD READY ST STAYALIVE RL REPLACED FD FADING TO TIMEOUT Sysname reset ike sa 2 Sysname display ike sa conn id remote flag phase doi 1 202 38 0 2 RD ST 1 IPSEC flag meaning ...

Page 2172: ...ew Sysname ike proposal 10 Sysname ike proposal 10 sa duration 600 time out Syntax time out time out undo time out View IKE DPD view Parameter time out DPD packet retransmission interval in seconds in the range 1 to 60 Description Use the time out command to set the DPD packet retransmission interval for a DPD Use the undo time out command to restore the default By default the DPD packet retransmi...

Page 2173: ...type RSA Encryption Key Key code 30819F300D06092A864886F70D010101050003818D0030818902818100BC4C392A97 734A633BA0F1DB01F84EB51228EC86ADE1DBA597E0D9066FDC4F04776CEA3610D257 8341F5D049143656F1287502C06D39D39F28F0F5CBA630DA8CD1C16ECE8A7A65282F 2407E8757E7937DCCDB5DB620CD1F471401B7117139702348444A2D8900497A87B8D 5F13D61C4DEFA3D14A7DC07624791FC1D226F62DF3020301 0001 Time of Key pair created 19 59 17 200...

Page 2174: ...2A1B66E74E5D1E16693EB 374D677A7A6124EBABD59FE48796C56F3FF919F999AEB97D1F2B83D9B98AC09BC1F7 2E80DBE337CB29989A23378EB21C38EE083F11ED6DC8D4DBE001BA85450CEA071C2A 471C83761E4CF32C174B418612CDD597B441F0CAA05DC01CB93A0ABB247C06FB A4C79054 display public key peer Syntax display public key peer brief name publickey name View Any view Parameter brief Displays brief information about all public keys name p...

Page 2175: ... client source Syntax display sftp client source View Any view Parameter None Description Use the display sftp client source command to display the source IP address or source interface currently set for the SFTP client If neither source IP address nor source interface is specified for the SFTP client You didn t specify the source will be displayed Related command sftp client source Table 574 Desc...

Page 2176: ...le Display the source IP address of the SSH client Sysname display ssh client source The source IP address you specified is 192 168 0 1 display ssh server Syntax display ssh server status session View Any view Parameter status Displays the status information of the SSH server session Displays the session information of the SSH server Description Use the display ssh server command to display the st...

Page 2177: ...thentication timeout Authentication timeout period SSH server key generating interval SSH server key pair update interval SSH Authentication retries Maximum number of SSH authentication attempts SFTP Server Whether the SFTP server function is enabled SFTP Server Idle Timeout SFTP connection idle timeout period Table 577 Description on fields of the display ssh server session command Field Descript...

Page 2178: ...rmation command to display information about a specified or all SSH users With the username argument not specified the command displays information about all SSH users Related command ssh user Example Display information about all SSH users Sysname display ssh user information Total ssh users 2 Username Authentication type User public key name Service type yemx password putty stelnet sftp test pub...

Page 2179: ...ata It must be a hexadecimal string that is generated randomly by the SSH supported client software and coded compliant to PKCS Related command public key peer public key code end Example Enter public key code view to input the key Sysname system view Sysname public key peer key1 Sysname pkey public key public key code begin Sysname pkey key code 30819F300D06092A864886F70D010101050003818D003 08189...

Page 2180: ...e 30819F300D06092A864886F70D010101050003818D003 0818902818100C0EC8014F82515F6335A0A Sysname pkey key code EF8F999C01EC94E5760A079BD73E4F4D97F3500EDB308 C29481B77E719D1643135877E13B1C531B4 Sysname pkey key code FF1877A5E2E7B1FA4710DB0744F66F6600EEFE166F1B8 54E2371D5B952ADF6B80EB5F52698FCF3D6 Sysname pkey key code 1F0C2EAAD9813ECB16C5C7DC09812D4EE3E9A0B074276 FFD4AF2050BD4A9B1DDE675AC30CB020301 Sysn...

Page 2181: ... take a few minutes Press CTRL C to abort Input the bits in the modulus default 1024 Generating keys Create local DSA key pair Sysname system view Sysname public key local create dsa The range of public key size is 512 2048 NOTES If the key modulus is greater than 512 It will take a few minutes Press CTRL C to abort Input the bits in the modulus default 1024 Generating keys n Pressing CTRL C quits...

Page 2182: ...ses the format of OpenSSH ssh1 Uses the format of SSH1 ssh2 Uses the format of SSH2 filename Name of the file for storing public key Description Use the public key local export rsa command to display the local RSA public key on the screen or export it to a specified file If you do not specify the filename argument the command displays the local RSA public key on the screen otherwise the command ex...

Page 2183: ...t dsa openssh ssh2 filename View System view Parameter openssh Uses the format of OpenSSH ssh2 Uses the format of SSH2 filename Name of the file for storing public key The value range varies by devices Description Use the public key local export dsa command to display the DSA local public key on the screen or export it to a specified file If you do not specify the filename argument the command dis...

Page 2184: ...xKJPadu68HRKNl BnjXcitTQchQbzWCFLFqL6xLNolQOHgRx9ozAAAA FQDHcyGMc37I7pk7Ty3tMPSO2s6RXwAAAIEAgiaQCeFOxHS68pMuadOx8YUXrZWUGEzN OrpbsTV75MTPoS0cJPFKyDNNdAkkrOVnsZJliW8T6UILiLFs3ThbdABMs5xsCAhcJGs cXthI5HHbB y6IMXwb2BcdQey4PiEMA8ybMugQVhwhYhxz1tqsAo9LFYXaf0JRlxjMmw nu8AAACBAMoAntnKNEUhJUyMhEr0bji4MelDmsZyDaadRG7UONHs6gN 0aLYE ptjKQv esXdKbv FDnLq5C91bsBxXS3C1CEtF8ifxm60kUQz7T3R0 r5xEjRaFrwdxxTk9Vwpvz ...

Page 2185: ...rom the peer through FTP TFTP Example Import a peer public key named key2 from public key file key pub Sysname system view Sysname public key peer key2 import sshkey key pub sftp Syntax sftp server port number identity key dsa rsa prefer ctos cipher 3des aes128 des prefer ctos hmac md5 md5 96 sha1 sha1 96 prefer kex dh group exchange dh group1 dh group14 prefer stoc cipher 3des aes128 des prefer s...

Page 2186: ...HMAC algorithm from server to client defaulted to sha1 Description Use the sftp command to establish a connection to a remote IPv4 SFTP server and enter SFTP client view Note that when the client s authentication method is publickey the client needs to get the local private key for validation As the publickey authentication includes RSA and DSA algorithms you must specify an algorithm by using the...

Page 2187: ...ress interface interface type interface number Specifies a source interface by its type and number Description Use the sftp client source command to specify the source IPv4 address or interface of an SFTP client Use the undo sftp source interface command to remove the configuration By default a client uses the IP address or interface specified by the route to access the SFTP server Related command...

Page 2188: ...ferred key exchange algorithm defaulted to dh group exchange dh group exchange Key exchange algorithm diffie hellman group exchange sha1 dh group1 Key exchange algorithm diffie hellman group1 sha1 dh group14 Key exchange algorithm diffie hellman group14 sha1 prefer stoc cipher Preferred encryption algorithm from server to client defaulted to aes128 prefer stoc hmac Preferred HMAC algorithm from se...

Page 2189: ...server idle timeout Syntax sftp server idle timeout time out value undo sftp server idle timeout View System view Parameter time out value Timeout period in minutes It ranges from 1 to 35 791 Description Use the sftp server idle timeout command to set the idle timeout period for SFTP user connections Use the undo sftp server idle timeout command to restore the default By default the idle timeout p...

Page 2190: ...ey of the server is not configured and when logging into the server the client uses the IP address or host name used for login as the public key name Example Configure the public key of the server with the IP address of 192 168 0 1 to be key1 Sysname system view Sysname ssh client authentication server 192 168 0 1 assign rsa key key1 ssh client first time enable Syntax ssh client first time enable...

Page 2191: ...urce View System view Parameter ipv6 ipv6 address Specifies a source IPv6 address interface interface type interface number Specifies a source interface by its type and number Description Use the ssh client ipv6 source command to specify the source IPv6 address or source interface for the SSH client Use the undo ssh client ipv6 source command to remove the configuration By default the client uses ...

Page 2192: ...ssh server authentication retries times undo ssh server authentication retries View System view Parameter times Maximum number of authentication attempts in the range 1 to 5 Description Use the ssh server authentication retries command to set the maximum number of SSH connection authentication attempts which takes effect at next login Use the undo ssh server authentication retries command to resto...

Page 2193: ... command display ssh server Example Set the SSH user authentication timeout period to 10 seconds Sysname system view Sysname ssh server authentication timeout 10 ssh server compatible ssh1x enable Syntax ssh server compatible ssh1x enable undo ssh server compatible ssh1x View System view Parameter None Description Use the ssh server compatible ssh1x command to enable the SSH server to work with SS...

Page 2194: ... server rekey interval Syntax ssh server rekey interval hours undo ssh server rekey interval View System view Parameter hours Server key pair update interval in hours in the range 1 to 24 Description Use the ssh server rekey interval command to set the interval for updating the RSA server key Use the undo ssh server rekey interval command to remove the configuration By default the update interval ...

Page 2195: ...hich can be one the following password Performs password authentication any Performs either password authentication or publickey authentication The client tries publickey authentication first password publickey Performs both password authentication and publickey authentication A client running SSH1 client only needs to pass either type of authentication while a client running SSH2 client must pass...

Page 2196: ...sh user command Related command display ssh user information Example Create an SSH user named user1 and specify the service type as sftp the authentication method as publickey the work folder of the SFTP server as flash and assign a public key named key1 to the user Sysname system view Sysname ssh user user1 service type sftp athentication type public key assign publickey key1 work directory flash...

Page 2197: ... the client and the server Note that when the client s authentication method is publickey the client needs to get the local private key for validation As the publickey authentication includes RSA and DSA algorithms you must specify an algorithm by using the identity key keyword in order to get the correct data for the local private key Example Login to remote SSH2 server 10 214 50 51 setting the a...

Page 2198: ...p exchange sha1 dh roup1 Key exchange algorithm diffie hellman group1 sha1 dh roup14 Key exchange algorithm diffie hellman group14 sha1 prefer stoc cipher Preferred encryption algorithm from server to client defaulted to aes128 prefer stoc hmac Preferred HMAC algorithm from server to client defaulted to sha1 Description Use the ssh2 ipv6 command to establish a connection to an IPv6 SSH server and ...

Page 2199: ...2199 Preferred HMAC algorithm from server to client SHA1 96 Sysname ssh2 ipv6 2000 1 prefer kex dh group 1 prefer stoc cipher aes128 prefer ctos hmac md5 prefer stoc hmac sha1 96 ...

Page 2200: ...2200 CHAPTER 142 SSH2 0 CONFIGURATION COMMANDS ...

Page 2201: ...r sftp client bye Bye Sysname cd Syntax cd remote path View SFTP client view Parameter remote path Name of a path on the server Description Use the cd command to change the working path on a remote SFTP server With the argument not specified the command displays the current working path n You can use the cd command to return to the upper level directory You can use the cd command to return to the ...

Page 2202: ...Name of a file on the server 1 10 means that you can provide up to 10 filenames which are separated by space Description Use the delete command to delete a specified file from a server This command functions as the remove command Example Delete file temp c from the server sftp client delete temp c The following files will be deleted temp c Are you sure to delete it Y N y This operation may take a ...

Page 2203: ...rm detailed file and folder information under the current working directory sftp client dir rwxrwxrwx 1 noone nogroup 1759 Aug 23 06 52 config cfg rwxrwxrwx 1 noone nogroup 225 Aug 24 08 01 pubkey2 rwxrwxrwx 1 noone nogroup 283 Aug 24 07 39 pubkey1 rwxrwxrwx 1 noone nogroup 225 Sep 28 08 28 pub1 drwxrwxrwx 1 noone nogroup 0 Sep 28 08 24 new1 drwxrwxrwx 1 noone nogroup 0 Sep 28 08 18 new2 rwxrwxrwx...

Page 2204: ... c Local file temp c Downloading file successfully ended help Syntax help all command name View SFTP client view Parameter all Displays a list of all commands command name Name of a command Description Use the help command to display a list of all commands or the help information of an SFTP client command With neither the argument nor the keyword specified the command displays a list of all comman...

Page 2205: ...formation under the current working directory sftp client ls rwxrwxrwx 1 noone nogroup 1759 Aug 23 06 52 config cfg rwxrwxrwx 1 noone nogroup 225 Aug 24 08 01 pubkey2 rwxrwxrwx 1 noone nogroup 283 Aug 24 07 39 pubkey1 rwxrwxrwx 1 noone nogroup 225 Sep 28 08 28 pub1 drwxrwxrwx 1 noone nogroup 0 Sep 28 08 24 new1 drwxrwxrwx 1 noone nogroup 0 Sep 28 08 18 new2 rwxrwxrwx 1 noone nogroup 225 Sep 28 08 ...

Page 2206: ... file temp c Remote file temp1 c Uploading file successfully ended pwd Syntax pwd View SFTP client view Parameter None Description Use the pwd command to display the current working directory of a remote SFTP server Example Display the current working directory of the remote SFTP server sftp client pwd quit Syntax quit View SFTP client view Parameter None Description Use the quit command to termin...

Page 2207: ...The following files will be deleted temp c Are you sure to delete it Y N y This operation may take a long time Please wait File successfully Removed rename Syntax rename oldname newname View SFTP client view Parameter oldname Original file name or directory name newname New file name or directory name Description Use the rename command to change the name of a specified file or directory on an SFTP...

Page 2208: ...e SFTP server 1 10 means that you can provide up to 10 filenames that are separated by space Description Use the rmdir command to delete a specified directory from an SFTP server Example On the SFTP server delete directory temp1 in the current directory sftp client rmdir temp1 Directory successfully removed ...

Page 2209: ...ange algorithm of RSA the data encryption algorithm of DES_CBC and the MAC algorithm of SHA rsa_rc4_128_md5 Specifies the key exchange algorithm of RSA the data encryption algorithm of 128 bit RC4 and the MAC algorithm of MD5 rsa_rc4_128_sha Specifies the key exchange algorithm of RSA the data encryption algorithm of 128 bit RC4 and the MAC algorithm of SHA Description Use the ciphersuite command ...

Page 2210: ... server policy policy1 Sysname ssl server policy policy1 client verify enable close mode wait Syntax close mode wait undo close mode wait View SSL server policy view Parameter None Description Use the close mode wait command to set the SSL connection close mode to wait In this mode after sending a close notify message to a client the server does not close the connection until it receives a close n...

Page 2211: ...server policy policy name all View Any view Parameter policy name SSL server policy name a string of 1 to 16 characters all Displays information about all SSL server policies Description Use the display ssl server policy command to view information about a specified or all SSL server policies Example Display information about SSL server policy policy1 Sysname display ssl server policy policy1 SSL ...

Page 2212: ...ime is 3 600 seconds Example Set the handshake timeout time of SSL server policy policy1 to 3 000 seconds Sysname system view Sysname ssl server policy policy1 Sysname ssl server policy policy1 handshake timeout 3000 pki domain Syntax pki domain domain name Table 581 Description on the fields of the display ssl server policy command Field Description SSL Server Policy SSL server policy name PKI Do...

Page 2213: ...lient domain prefer cipher Syntax prefer cipher rsa_3des_ede_cbc_sha rsa_aes_128_cbc_sha rsa_aes_256_cbc_sha rsa_des_cbc_sha rsa_rc4_128_md5 rsa_rc4_128_sha undo prefer cipher View SSL client policy view Parameter rsa_3des_ede_cbc_sha Specifies the key exchange algorithm of RSA the data encryption algorithm of 3DES_EDE_CBC and the MAC algorithm of SHA Support for this keyword varies by device rsa_...

Page 2214: ...size timeout View SSL server policy view Parameter cachesize size Sets the maximum number of cached sessions in the range 100 to 1 000 timeout time Sets the caching timeout time in the range 1 800 to 72 000 seconds Description Use the session command to set the maximum number of cached sessions and the caching timeout time Use the undo session command to restore the default By default the maximum ...

Page 2215: ...name system view Sysname ssl client policy policy1 Sysname ssl client policy policy1 ssl server policy Syntax ssl server policy policy name undo ssl server policy policy name all View System view Parameter policy name SSL server policy name a case insensitive string of 1 to 16 characters which cannot be a al and all all Specifies all SSL server policies Description Use the ssl server policy comman...

Page 2216: ...SSL 3 0 tls1 0 Specifies TLS 1 0 Description Use the version command to specify the SSL protocol version for an SSL client policy Use the undo version command to restore the default By default the SSL protocol version for an SSL client policy is TLS 1 0 Example Specify the SSL protocol version for SSL client policy policy1 as SSL 3 0 Sysname system view Sysname ssl client policy policy1 Sysname ss...

Page 2217: ... s 9000 UsedBandWidth b s 8000 Table 582 Description on the fields of the display standby flow command Field Description Interfacename Name of the main interface Flow interval s Intervals for checking traffic on the main interface LastInOctets Sum of the octets received on the main interface until the last check LastOutOctets Sum of the octets sent on the main interface until the last check InFlow...

Page 2218: ...Down Indicates that the physical link is not available for data transmission for example because no cable connection is present Standby The state of the backup interface when the main interface is functioning Data transmission is disabled on the backup interface Table 584 Backup states of the main interface State Description MUP The main interface is working normally for data transmission MUPDELAY...

Page 2219: ...at the interface or the main interface of the interface or all backup interfaces of the interface are all removed U USED Indicates that the interface is being used as a main interface or backup interface D LOAD Indicates that the main interface participates in load sharing P PULLED Indicates that the interface board where the interface is located is removed Table 587 Load sharing states State Desc...

Page 2220: ...ed command standby interface Example Configure the available bandwidth used for setting the thresholds on the main interface Serial 2 0 for load sharing to 10000 kbps Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 standby bandwidth 10000 standby interface Syntax standby interface interface type interface number priority undo standby interface interface type interface number Vie...

Page 2221: ...m 1 to 99 disable threshold Specifies lower value of the load sharing threshold It indicates the percentage of the available main interface bandwidth that the traffic load must be less than for the backup interface in load sharing to shut down It ranges from 1 to 99 The disable threshold must be smaller than the enable threshold Description Use the standby threshold command to configure load shari...

Page 2222: ...e delay Specifies failover delay or the delay for the interface to switch its state from main to standby It ranges from 0 to 65535 seconds disable delay Fallback delay or the delay for the interface to switch from backup to main It ranges from 0 to 65535 seconds Description Use the standby timer delay command to set failover and fallback delays on the interface Use the undo standby timer delay com...

Page 2223: ...uted after backup interfaces are specified Related command standby interface Example Configure load sharing backup bandwidth and flow check interval on interface Serial 2 0 to 60 seconds Sysname system view Sysname interface serial 2 0 Sysname Serial2 0 standby timer flow check 60 standby track Syntax standby track track entry number undo standby track View Interface view Parameters track entry nu...

Page 2224: ...e main interface or a backup interface One interface can be associated with one Track object If you execute this command repeatedly on one interface the new configuration will overwrite the original one You can associate an interface with a nonexistent Track object The track function can take effect after the Track object is created with the track command Related commands standby interface track o...

Page 2225: ...n Use the display vrrp command to display the state information of VRRP If you do not specify verbose only the brief state information of VRRP is displayed If you specify both interface and standby group only the state information of the specified standby group is displayed if you only specify an interface the state information of all the standby groups on the interface is displayed if you specify...

Page 2226: ...p belongs VRID Number of the standby group Adver Timer VRRP advertisement interval Admin Status Administrative state UP or DOWN State Status of the router in the standby group master backup or initialize Config Pri Configured priority Run Pri Running priority Preempt Mode Preemption mode Delay Time Preemption delay Auth Type Authentication type Track IF The interface to be tracked It is displayed ...

Page 2227: ...Mismatch 0 Packet Length Errors 0 Address List Errors 0 Become Master 1 Priority Zero Pkts Rcvd 0 Advertise Rcvd 16 Priority Zero Pkts Sent 0 Advertise Sent 40 Interface Ethernet1 1 VRID 105 CheckSum Errors 0 Version Errors 0 Invalid Type Pkts Rcvd 0 Advertisement Interval Errors 0 IP TTL Errors 0 Auth Failures 0 Invalid Auth Type 0 Auth Type Mismatch 0 Packet Length Errors 0 Address List Errors 0...

Page 2228: ...andby groups on the device are cleared Example Clear the statistics about all the standby groups on the device Sysname reset vrrp statistics vrrp vrid authentication mode Syntax vrrp vrid virtual router id authentication mode md5 simple key undo vrrp vrid virtual router id authentication mode Auth Type Mismatch Number of packets with authentication failures due to mismatching authentication types ...

Page 2229: ...ode command to configure authentication mode and authentication key for the VRRP standby groups to send and receive VRRP packets Use the undo vrrp vrid authentication mode command to restore the default By default authentication is disabled Note that Before executing the command create a standby group on an interface and configure the virtual IP address of the standby group You may configure diffe...

Page 2230: ...l IP address and the MAC address before configuring a standby group Otherwise your configuration will fail Example Associate the virtual IP address of the standby group with the real MAC address of the routing interface Sysname system view Sysname vrrp method real mac vrrp ping enable Syntax vrrp ping enable undo vrrp ping enable View System view Parameter None Description Use the vrrp ping enable...

Page 2231: ... view Parameter virtual router id Virtual router ID or VRRP standby group number in the range 1 to 255 timer delay delay value Sets preemption delay The delay value argument ranges from 0 to 255 and defaults to 0 in seconds Description Use the vrrp vrid preempt mode command to enable preemption on the router and configure its preemption delay in the specified standby group Use the undo vrrp vrid p...

Page 2232: ...id priority View Interface view Parameter virtual router id VRRP standby group number in the range 1 to 255 priority value Priority value of the router in the specified standby group in the range 1 to 254 with a higher number indicating a higher priority Description Use the vrrp vrid priority command to configure the priority of the router in the specified standby group Use the undo vrrp vrid prio...

Page 2233: ... VRRP advertisements is 1 second Note that Before executing the command create a standby group on an interface and configure the virtual IP address of the standby group Routers in the same VRRP standby group must use the same Adver_Timer setting Example Set the master in standby group 1 to send VRRP advertisements at intervals of five seconds Sysname system view Sysname interface ethernet 1 0 Sysn...

Page 2234: ...is command can be nonexistent You can use the vrrp vrid track command to specify a Track object and then create the Track object using the track command n For details of the Track object refer to Track Configuration Commands on page 2529 Examples Configure to monitor Track object 1 on interface Ethernet 1 0 making the priority of standby group 1 on Ethernet 1 0 decrease by 50 when Track object 1 t...

Page 2235: ...faces should only be PPP protocol the dialer interface should function as the PPPoE client and operate in the permanent online mode and the BRI interface should work in the dedicated line mode Example On interface Ethernet 1 0 set the interface to be tracked as Serial 2 0 making the priority of standby group 1 on interface Ethernet 1 0 decrement by 50 when Serial 2 0 goes down Sysname system view ...

Page 2236: ...segment and are legal host addresses can the standby group operate normally If the configured virtual IP address and the interface IP address do not belong to the same network segment or the configured IP address is the network address or network broadcast address of the network segment that the interface IP address belongs to the state of the standby group is always initialize though you can perf...

Page 2237: ...he state information of VRRP for IPv6 If you do not specify verbose only the brief state information of VRRP is displayed If you specify both interface and standby group only the state information of the specified standby group is displayed if you only specify an interface the state information of all the standby groups on the interface is displayed if you specify neither the state information of ...

Page 2238: ...nterface to which the standby group belongs VRID Number of the standby group Adver Timer VRRP advertisement interval in centiseconds Admin Status Administrative state UP or DOWN State Status of the router in the standby group master backup or initialize Config Pri Configured priority Run Pri Running priority Preempt Mode Preemption mode Delay Time Preemption delay Auth Type Authentication type Tra...

Page 2239: ...Errors 0 Hop Limit Errors 0 Auth Failures 0 Invalid Auth Type 0 Auth Type Mismatch 0 Packet Length Errors 0 Address List Errors 0 Become Master 1 Priority Zero Pkts Rcvd 0 Advertise Rcvd 0 Priority Zero Pkts Sent 0 Advertise Sent 20 Interface Ethernet1 1 VRID 10 CheckSum Errors 0 Version Errors 0 Invalid Type Pkts Rcvd 0 Advertisement Interval Errors 0 Hop Limit Errors 0 Auth Failures 0 Invalid Au...

Page 2240: ... groups on the device are cleared Example Clear the statistics about all the standby groups on the device Sysname reset vrrp ipv6 statistics vrrp ipv6 method Syntax vrrp ipv6 method real mac virtual mac Invalid Auth Type Number of packets with authentication failures due to invalid authentication types Auth Type Mismatch Number of packets with authentication failures due to mismatching authenticat...

Page 2241: ...iguring a standby group Otherwise your configuration will fail Example Associate the virtual IP address of the standby group with the real MAC address of the routing interface Sysname system view Sysname vrrp ipv6 method real mac vrrp ipv6 ping enable Syntax vrrp ipv6 ping enable undo vrrp ipv6 ping enable View System view Parameter None Description Use the vrrp ipv6 ping enable command to enable ...

Page 2242: ...is disabled Note that Before executing the command create a standby group on an interface and configure the virtual IP address of the standby group You may configure different authentication types and authentication keys for the standby groups on an interface However the members of the same standby group must use the same authentication mode and authentication key Example Set the authentication mo...

Page 2243: ...on delay set if the backup member does not receive the packet from the master member duly it waits for a period to see whether it can receive any packet from the master If the specified period elapses but it still receives no packet from the master it becomes the master Note that before executing the command you need to create a standby group on an interface and configure the virtual IPv6 address ...

Page 2244: ...ipv6 vrid 1 priority 150 vrrp ipv6 vrid timer advertise Syntax vrrp ipv6 vrid virtual router id timer advertise adver interval undo vrrp ipv6 vrid virtual router id timer advertise View Interface view Parameter virtual router id VRRP standby group number in the range 1 to 255 adver interval Interval at which the master in the specified standby group sends VRRP advertisements It ranges from 100 to ...

Page 2245: ...d interface By default no interface is being tracked Note that Before executing the command create a standby group on an interface and configure the virtual IPv6 address of the standby group When the router is the owner of the IP address you cannot perform the configuration When the status of the tracked interface turns from down to up the corresponding router restores its priority automatically T...

Page 2246: ...be a link local address and only one such address is allowed in a standby group Use the vrrp ipv6 vrid virtual ip command to add a virtual IPv6 address to a standby group Use the undo vrrp ipv6 vrid command to remove a standby group Use the undo vrrp ipv6 vrid virtual router id virtual ip virtual address link local command to remove a virtual IPv6 address from a standby group After you remove all ...

Page 2247: ...w User view Parameter file file url Specifies a file name a string of 1 to 64 characters slot slot number Specifies the slot number of a card The value range varies with devices main Specifies a file as a primary boot file backup Specifies a file as a secondary boot file Description Use the boot loader command to specify a boot file on a card By default the boot file is specified as a primary boot...

Page 2248: ...ROM part Operates only the extension part of Boot ROM Boot ROM includes the basic part and the extension part Description Use the bootrom command to read restore back up or upgrade the Boot ROM program on a card or a device If the arguments all and part are not specified all contents of the Boot ROM program are operated n If the device does not support the Boot ROM extension the command does not s...

Page 2249: ...and primary secondary attribute of a BootROM file on a card or a device Related command boot loader Example Display the file adopted for the current and next boot of a device The prompt information of this command varies with devices Sysname display boot loader The boot file used this time flash current app attr Maincf main b in attribute main The boot file be used next time flash main app attr Ma...

Page 2250: ...iption Use the display cpu usage command to display the CPU usage statistics The system takes statistics of CPU usage at intervals usually every 60 seconds and saves the statistical results in the history record area The maximum number of records that can be saved depends on the device model display cpu usage number indicates the system displays number records from the newest last record display c...

Page 2251: ...ption on fields of the display boot loader command Field Description CPU usage info no idx Information of CPU usage records no The no 1 th record is currently displayed no numbers from 0 a smaller number equals a newer record idx index of the current record in the history record table If only the information of the current record is displayed no and idx are not displayed CPU Usage Stat Cycle CPU u...

Page 2252: ...ce Slot No Board Type Status Max Ports 0 AR49 45 RPU Board Normal 4 6 DFIC 24FSW Normal 26 11 FIX SNDE Normal 1 Display detailed information of cards on a device The displayed information varies with devices Sysname display device verbose Slot No Board Type Status Max Ports 0 AR49 45 RPU Board Normal 4 6 DFIC 24FSW Normal 26 11 FIX SNDE Normal 1 Slot 0 Status Normal Type AR49 45 RPU Board Hardware...

Page 2253: ...R 2 0 CPLD VER 2 0 DSP VER 2 0 DSP 0 Normal DSP 1 Normal DSP 2 Normal DSP 3 Normal Slot 6 Status Normal Type DFIC 24FSW Hardware 2 0 Driver 1 0 CPLD 1 0 Slot 11 Status Normal Type FIX SNDE Hardware 3 0 Driver 2 0 CPLD 131 0 Table 594 Description on fields on the display device command Field Description Slot No Slot number of a card Board Type Hardware type of a card Status Card status Maximum Port...

Page 2254: ...of the current card VCPM VCPM status PCB CPLD FPGA version of VCPM of the current main board VCPMA VCPM status PCB CPLD FPGA version of VCPM of the current interface card VPMx VPM status PCB CPLD DSP version of VPM of the current card DSP DSP status DSP version of the current card Table 594 Description on fields on the display device command Field Description Table 595 Cards that support manufactu...

Page 2255: ...perature information of all cards or subcards The displayed information depends on the device model Example Display the temperature information of cards Sysname display environment System Temperature information degree centigrade Board Temperature Lower limit Upper limit 0 53 10 70 1 42 10 70 2 38 10 70 3 40 10 70 SIC 2BSV DFIC 24O24S Table 595 Cards that support manufacture information display SI...

Page 2256: ...view Parameter None Description Use the display license command to display the software registration information of a device n Only users at monitor level or a higher level can execute this command Example Display the software registration information of a device Sysname display license Software license information Serial Number VZa47 6AbBh gtO9c K47A0 F79D8 dE84O tg2j0 Table 597 Description on fi...

Page 2257: ...r to display the status of the power supply of a device Example Display the status of the power supply of a device The displayed information varies with devices Table 598 Descriptions on the fields of the display license command Field Description Software license information Software license information of a device Serial Number Serial number of a device Register Date Register date and time Trade ...

Page 2258: ...lay the reboot type of the card in slot 2 of the device Sysname display reboot type slot 2 The rebooting type this time is Cold The above information indicates that the last reboot type of the device is Cold boot If it is displayed as Warm it indicates the reboot type is ware boot display schedule reboot Syntax display schedule reboot View Any view Parameter None Description Use the display schedu...

Page 2259: ...serial number of a device Sysname system view Sysname license register VZa47 6AbBh gtO9c K47A0 F79D8 dE84O tg2j0 Register successfully reboot Syntax reboot slot slot number View User view Parameter slot slot number Specifies the slot number of a card The value range varies with devices Description Use the reboot command to reboot a card or a device c CAUTION This command reboots the device thus re...

Page 2260: ... slot slot number Specifies the slot number of a card The value range varies with devices Description Use the remove command to remove a card n This command is supported only on MSR 50 series routers c CAUTION This command may cause a card unusable thus resulting in service interruption Use it with caution Use the remove slot command to remove a card before hot swapping it otherwise the device or ...

Page 2261: ...d the dd value depends on a specific month Description Use the schedule reboot at command to enable the scheduled reboot function and specify a specific reboot time and date Use the undo schedule reboot command to disable the scheduled reboot function By default the scheduled reboot function is disabled There are two cases if no specific reboot date is specified When the specified reboot time is l...

Page 2262: ...2006 06 06 in 0 hour s and 16 minute s confirm Y N If you have used the terminal logging command to enable the log display function on the terminal before setting a reboot time the system will automatically display related log information after you enter y By default the log display function is enabled Sysname Jun 6 11 43 11 629 2006 Sysname CMD 5 REBOOT vty0 192 168 1 54 Set schedule reboot param...

Page 2263: ...ile operations when the device is to be rebooted the system does not execute the command for the sake of security c CAUTION This command reboots the device after the specified delay time thus resulting in service interruption Please use it with caution Example Configure the device to reboot in 88 minutes supposing the current time is 11 48 Sysname schedule reboot delay 88 Reboot system at 13 16 20...

Page 2264: ...t number Slot number The value range varies with devices lower value Lower temperature limit in Celsius degrees in the range 0 to 30 upper value Upper temperature limit in Celsius degrees in the range 40 to 90 Description Use the temperature limit command to set the temperature alarm threshold on a card Use the undo temperature limit command to restore the temperature alarm threshold to the defaul...

Page 2265: ...larger than the fill data the system fills the character string cyclically to encapsulate the packet until it is full For example when the fill data is abcd and the size of a probe packet is 3 byte abc is used to fill the packet When the probe size is 6 byte abcdab is used to fill the packet Because the first five bytes of a probe packet in a UDP echo test have some specific usage the configured c...

Page 2266: ...s Sysname system view Sysname nqa entry admin test Sysname nqa admin test type icmp echo Sysname nqa admin test icmp echo data size 80 description any NQA test type view Syntax description text undo description View Any NQA test type view Parameter text Descriptive string of a test group in the range 1 to 200 characters It is case sensitive Description Use the description command to give a brief d...

Page 2267: ...type icmp echo Sysname nqa admin test icmp echo destination ip 10 1 1 1 destination port Syntax destination port port number undo destination port View TCP UDP echo UDP jitter test type view Parameter port number Destination port number of a test operation in the range 1 to 65535 Description Use the destination port command to configure a destination port number for a test operation Use the undo d...

Page 2268: ...yed Example Display the results of the last test Sysname display nqa result administrator jitter NQA entry admin administrator tag jitter test results Destination IP address 192 168 0 81 Send operation times 10 Receive response times 0 Min Max Average round trip time 0 0 0 Square Sum of round trip time 0 Last succeeded probe time 0 00 00 00 00 00 0 Extend results Packet lost in test 100 Failures d...

Page 2269: ...s due to other errors Failures due to other errors UDP jitter results UDP jitter test results available only in UDP jitter tests RTT number Number of response packets received SD max delay Maximum delay from the source to the destination DS max delay Maximum delay from the destination to the source Min positive SD Minimum positive jitter delay from the source to the destination Min positive DS Min...

Page 2270: ...negative jitter delays from the destination to the source Negative SD number Number of negative jitter delays from the source to the destination Negative DS number Number of negative jitter delays from the destination to the source Negative SD sum Sum of absolute values of negative jitter delays from the source to the destination Negative DS sum Sum of absolute values of negative jitter delays fro...

Page 2271: ...ransferred between the FTP server and the FTP client as config txt Sysname system view Sysname nqa entry admin test Sysname nqa admin test type ftp Sysname nqa admin test ftp filename config txt frequency Syntax frequency interval undo frequency View Any NQA test type view Response Roundtrip delay of a test packet in the case of a successful test timeout time in the case of timeout or 0 in the cas...

Page 2272: ...figure the interval between two consecutive tests as 1000 milliseconds Sysname system view Sysname nqa entry admin test Sysname nqa admin test type icmp echo Sysname nqa admin test icmp echo frequency 1000 history records Syntax history records number undo history records View Any NQA test type view Parameter number Maximum number of history records that can be saved in a test group in the range 0...

Page 2273: ... HTTP test Sysname system view Sysname nqa entry admin test Sysname nqa admin test type http Sysname nqa admin test http http version v1 0 next hop Syntax next hop ip address undo next hop View ICMP echo test type view Parameter ip address IP address of the next hop Description Use the next hop command to configure the next hop IP address for an IP packet Use the undo next hop command to remove th...

Page 2274: ...t group view Use the undo nqa command to remove the test group Note that if the test type has been configured for the test group you will directly enter NQA test type view when you execute the nqa command Example Create an NQA test group whose administrator name is admin and whose operation tag is test and enter NQA test group view Sysname system view Sysname nqa entry admin test Sysname nqa admin...

Page 2275: ...us from the end of a test to the beginning of the next test the NQA test is in the waiting status Example Configure the maximum number of the tests that the NQA client can simultaneously perform as 50 Sysname system view Sysname nqa agent max concurrent 50 nqa schedule Syntax nqa schedule admin name operation tag start time now lifetime forever undo nqa schedule admin name operation tag View Syste...

Page 2276: ...rever operation FTP test type view Syntax operation get put undo operation View FTP test type view Parameter get Obtains a file from the FTP server put Transfers a file to the FTP server Description Use the operation command to configure the FTP operation type Use the undo operation command to restore the default By default the FTP operation type is get Example Configure the FTP operation type as ...

Page 2277: ...rface number Type and number of the interface that is performing a DHCP test Description Use the operation interface command to specify the interface to perform a DHCP test Use the undo operation interface command to remove the configured interface to perform the DHCP test By default no interface is specified to perform a DHCP test Note that the specified interface must be up otherwise the test wi...

Page 2278: ... test type view Parameter times Number of probes in a test in the range 1 to 15 Description Use the probe count command to configure the number of probes in a test Use the undo probe count command to restore the default By default one probe is performed in a test For a TCP or DLSw test one probe means one connection For a UDP jitter test the number of packets sent in one probe depends on the probe...

Page 2279: ...re the default By default the interval for sending consecutive packets is 20 milliseconds Example Configure the interval for sending consecutive packets as 100 milliseconds Sysname system view Sysname nqa entry admin test Sysname nqa admin test type udp jitter Syaname nqa admin test udp jitter probe packet interval 100 probe packet number Syntax probe packet number packet number undo probe packet ...

Page 2280: ...nd to restore the default By default the timeout time in a UDP jitter test is 3000 milliseconds Example Configure the timeout time for waiting for responses in a UDP jitter test as 100 milliseconds Sysname system view Sysname nqa entry admin test Sysname nqa admin test type udp jitter Syaname nqa admin test udp jitter probe packet timeout 100 probe timeout Syntax probe timeout timeout undo probe t...

Page 2281: ...robe failures occurrences Number of consecutive probe failures in the range 1 to 16 action type Triggered action type defaulting to none none No actions trigger only Triggers collaboration between other modules only Description Use the reaction command to establish a collaboration entry to monitor the probe results of the current test group If the number of consecutive probe failures reaches the t...

Page 2282: ... the network management server if the total number of probe failures in an NQA test is larger than or equal to cumulate probe failures For one test the trap is sent only when the test is completed cumulate probe failures is the total number of consecutive probe failures in a test in the range 1 to 15 Description Use the reaction trap probe fail command to configure to send traps to network managem...

Page 2283: ...view Parameter interface type interface number Interface type and the interface number of the source interface of a probe packet Description Use the source interface command to specify the IP address of an interface as the source IP address of ICMP echo probe requests Use the undo source interface command to remove the IP address of an interface as the source IP address of ICMP echo probe requests...

Page 2284: ...probe request By default no source IP address is specified For an ICMP echo test if no source IP address is specified but the source interface is specified the IP address of the source interface is taken as the source IP address of ICMP probe requests Related command source interface Example Configure the source IP address of an ICMP echo probe request as 10 1 1 1 Sysname system view Sysname nqa e...

Page 2285: ... in the IP header in an NQA probe packet Use the undo tos command to restore the default By default the ToS field in the IP header of an NQA probe packet is 0 Example Configure the ToS field in a IP packet header in an NQA probe packet as 1 Sysname system view Sysname nqa entry admin test Sysname nqa admin test type icmp echo Sysname nqa admin test icmp echo tos 1 ttl Syntax ttl value undo ttl Vie...

Page 2286: ... test type icmp echo Sysname nqa admin test icmp echo ttl 16 type Syntax type dhcp dlsw ftp http icmp echo snmp tcp udp echo udp jitter View NQA test group view Parameter dhcp DHCP test dlsw DLSw test ftp FTP test http HTTP test icmp echo ICMP echo test snmp SNMP test tcp TCP test udp echo UDP echo test udp jitter UDP jitter test Description Use the type command to configure the test type of the c...

Page 2287: ...a admin test http url index htm username FTP test type view Syntax username username undo username View FTP test type view Parameter username Username used to log onto the FTP server a string of 1 to 32 characters It is case sensitive Description Use the username command to configure a username used to log onto the FTP server Use the undo username command to remove the configured username By defau...

Page 2288: ...a string of 1 to 31 characters It is case sensitive Description Use the vpn instance command to specify a VPN instance Use the undo vpn instance command to remove the specified VPN instance By default no VPN instance is specified Example Specify the VPN instance vpn1 Sysname system view Sysname nqa entry admin test Sysname nqa admin test type icmp echo Sysname nqa admin test icmp echo vpn instance...

Page 2289: ...r status Sysname display nqa server status nqa server is enabled tcp connect IP Address Port Status 2 2 2 2 2000 active udp echo IP Address Port Status 3 3 3 3 3000 inactive Table 602 Description on the fields of the display nqa server status command Field Description tcp connect NQA server status in the NQA TCP test udp echo NQA server status in the NQA UDP test IP Address IP address specified fo...

Page 2290: ...rver tcp connect ip address port number undo nqa server tcp connect ip address port number View System view Parameter ip address IP address specified for the TCP listening service on the NQA server port number Port number specified for the TCP listening service on the NQA server in the range 1 to 50000 Description Use the nqa server tcp connect command to create a TCP listening service on the NQA ...

Page 2291: ... Parameter ip address IP address specified for the UDP listening service on the NQA server port number Port number specified for the UDP listening service on the NQA server in the range 1 to 50000 Description Use the nqa server udpecho command to create a UDP listening service on the NQA server Use the undo nqa server udpecho command to remove the UDP listening service created Note that You need t...

Page 2292: ...2292 CHAPTER 150 NQA SERVER CONFIGURATION COMMANDS Sysname system view Sysname nqa server udp echo 169 254 10 2 9000 ...

Page 2293: ...80 1481 1500 1501 0 0 0 0 0 0 0 Protocol Total Packets Stream Packets Active sec Idle sec Streams Sec Sec stream stream stream Total 0 0 0 0 0 0 DstIP DstP SrcIP SrcP Pro Tos Interface Pkts 3 3 3 2 0 1 1 1 1 0 1 0 ET1 0 872 Table 603 Description on the fields of the display ip netstream cache command Field Description Stream active timeout minute Active aging timer for NetStream cache entries Stre...

Page 2294: ...y when the reset ip netstream statistics command otherwise the Last statistics reset time never field is displayed Last statistics reset time never Statistics have never been cleared IP packet number of different size Number of NetStream streams differentiated by packet size 1 80 81 552 553 576 577 612 613 1480 1481 1500 1501 Packet size range in bytes For example 1 80 means number of packets in s...

Page 2295: ...iption on the fields of the display ip netstream export command Field Description Version 5 export information Statistics for exported version 5 statistics packets Stream source interface Source interface of exported UDP packets Stream destination IP UDP Destination address and port number of exported UDP packets Exported stream number Number of exported streams Exported UDP datagram number failed...

Page 2296: ...urce AS number destination AS number inbound interface index and outbound interface index destination prefix Destination prefix aggregation by destination AS number destination address mask length destination prefix and outbound interface index prefix Source and destination prefix aggregation by combination of source AS number destination AS number source address mask length destination address ma...

Page 2297: ...em view and the IP address and port number in aggregation view are those configured by users in system view Note that Different destination hosts can be configured in different aggregation views You can configure up to two different destination hosts in one aggregation view Statistics packets for a single stream are sent to all destination hosts configured in system view Aggregation statistics pac...

Page 2298: ...1 0 ip netstream export version Syntax ip netstream export version version number origin as peer as undo ip netstream export version View System view Parameter version number Version number for NetStream UDP packets Currently version 5 is supported origin as Sets the type of AS number recorded in NetStream cache entries to origin peer as Sets the type of AS number recorded in NetStream cache entri...

Page 2299: ... the default Example Set the NetStream cache size to 5000 Sysname system view Sysname ip netstream max entry 5000 ip netstream timeout active Syntax ip netstream timeout active minutes undo ip netstream timeout active View System view Parameter minutes Sets the length of the active aging timer for NetStream cache entries in the range 1 to 60 minutes The default value is 30 minutes Description Use ...

Page 2300: ...tream timeout inactive command to restore the default Related command ip netstream timeout active c CAUTION You can configure the active aging timer and inactive aging timer at the same time When either one of them times out the entry ages out The time precision is 10 seconds Example Set the inactive aging timer to 60 seconds Sysname system view Sysname ip netstream timeout inactive 60 reset ip ne...

Page 2301: ...ected 4 candidate 5 configured Total associations 1 Table 605 Description on the fields of the display ntp service sessions command Field Description source IP address of the clock source reference Reference clock ID of the clock source 1 If the reference clock is the local clock the value of this field is related to the value of the stra field When the value of the stra field is 0 or 1 this field...

Page 2302: ...00 UTC Jan 1 1900 00000000 00000000 now The length of time in minutes from when the last NTP message was received or when the local clock was last updated to the current time The time is in second by default If the time length is greater than 2048 seconds it is displayed in minute if greater than 300 minutes in hour if greater than 96 hours in day offset The offset of the system clock relative to ...

Page 2303: ...o the local clock source Table 606 Description on the fields of the display ntp service status command Field Description Clock status Status of the system clock Clock stratum Stratum level of the local clock Reference clock ID After the system clock is synchronized to a remote time server or a local reference source this field indicates the address of the remote time server or the identifier of th...

Page 2304: ... query When a device receives an NTP request it will perform an access control right match and will use the first matched right n The ntp service access command provides only a minimum degree of security protection A more secure method is identity authentication Before specifying an ACL number in the ntp service access command make sure you have already created and configured this ACL Example Conf...

Page 2305: ...authentication Sysname system view Sysname ntp service authentication enable ntp service authentication keyid Syntax ntp service authentication keyid keyid authentication mode md5 value undo ntp service authentication keyid keyid View System view Parameter keyid Authentication key ID in the range of 1 to 4294967295 authentication mode md5 value Specifies to use the MD5 algorithm for key authentica...

Page 2306: ...oadcast client View Interface view Parameter None Description Use the ntp service broadcast client command to configure the device to work in the NTP broadcast client mode Use the undo ntp service broadcast client command to remove the device as an NTP broadcast client Example Configure the device to work in the broadcast client mode and receive NTP broadcast messages on Ethernet 1 1 Sysname syste...

Page 2307: ...tication ke yid 4 version 3 ntp service in interface disable Syntax ntp service in interface disable undo ntp service in interface disable View Interface view Parameters None Description Use the ntp service in interface disable command to disable an interface from receiving NTP messages Use the undo ntp service in interface disable command to restore the default By default all interfaces are enabl...

Page 2308: ...mic NTP sessions to 50 Sysname system view Sysname ntp service max dynamic sessions 50 ntp service multicast client Syntax ntp service multicast client ip address undo ntp service multicast client ip address View Interface view Parameter ip address Multicast IP address defaulting to 224 0 1 1 Description Use the ntp service multicast client command to configure the device to work in the NTP multic...

Page 2309: ...multicast server command to configure the device to work in the NTP multicast server mode Use the undo ntp service multicast server command to remove the device as an NTP multicast server Example Configure the device to work in the multicast server mode and send NTP multicast messages on Ethernet 1 0 to the multicast address 224 0 1 1 using key 4 for encryption and set the NTP version to 3 Sysname...

Page 2310: ...keyid keyid View System view Parameter keyid Authentication key number in the range of 1 to 4294967295 Description Use the ntp service reliable authentication keyid command to specify that the created authentication key is a trusted key When NTP authentication enabled a client can be synchronized only to a server that can provide a trusted authentication key Use the ntp service reliable authentica...

Page 2311: ...tication keyid keyid priority source interface interface type interface number version number undo ntp service unicast peer vpn instance vpn instance name ip address peer name View System view Parameter vpn instance vpn instance name Specifies a VPN instance by its name where vpn instance name is a string of 1 to 31 characters ip address IP address of the symmetric passive peer It must be a host a...

Page 2312: ...not include vpn instance vpn instance name in this command the command will remove the symmetric passive peer with the IP address of ip address in the public network Example Designate the device with the IP address of 10 1 1 1 as the symmetric passive peer of the local device and configure the local device to run NTP version 3 and send NTP messages through Ethernet 1 0 Sysname system view Sysname ...

Page 2313: ...unicast server command to remove an NTP server designated for the device No NTP server is designated for the device by default n If you specify a VPN instance name this VPN must exist and at least one local interface and the NTP server coexist in this VPN If multiple VPNs have been configured on the PE and you want to synchronize the PE to a PE or CE in one of these VPNs you need to provide vpn in...

Page 2314: ...2314 CHAPTER 152 NTP CONFIGURATION COMMANDS ...

Page 2315: ... enables risingOrFallingAlarm Latest value 0 Table 608 Description on the fields of the display rmon alarm command Field Description Alarm table Alarm entry index 1 in this example owned by Owner of the entry user1 in this example VALID Status of the entry identified by the index VALID means the entry is valid and UNDERCREATION means invalid You can use the display rmon command to view the invalid...

Page 2316: ...ration information displayed by the display current configuration command Related command rmon event Example Display the configuration of RMON event table Sysname display rmon event Event table 1 owned by user1 is VALID Description null Will cause log trap when triggered last triggered at 0days 00h 02m 27s When startup enables How can an alarm be triggered Latest value The last sampled value Table...

Page 2317: ...1 owned by user1 is VALID Generates eventLog 1 1 at 0days 00h 01m 39s Description The 1 3 6 1 2 1 16 1 1 1 4 1 defined in alarm table 1 less than or 100 with alarm value 0 Alarm sample type is absolute Generates eventLog 1 2 at 0days 00h 02m 27s Description The alarm formula defined in private alarm table 1 less than or 100 with alarm value 0 Alarm sample type is absolute display rmon history Synt...

Page 2318: ...he invalid entry and with the display current configuration and display this commands you cannot view the corresponding rmon commands Samples Interface The sampled interface Sampling interval Sampling interval buckets max History table size for the entry if the specified value of the buckets argument exceeds the history table size supported by the device the latter is displayed Latest sampled valu...

Page 2319: ...ll exist forever Latest value 0 utilization Bandwidth utilization during the sampling period Table 611 Description on the fields of the display rmon history command Field Description Table 612 Description on the fields of the display rmon prialarm command Field Description Prialarm table Index of the prialarm table owned by Owner of the entry user1 in this example VALID Status of the entry identif...

Page 2320: ...1023 0 1024 1518 0 When startup enables How can an alarm be triggered This entry will exist The lifetime of the entry which can be forever or span the specified period Latest value The last sampled value Table 612 Description on the fields of the display rmon prialarm command Field Description Table 613 Description on the fields of the display rmon statistics command Field Description Statistics e...

Page 2321: ... ranges from 0 to 65535 with 0 meaning no corresponding event is triggered and no event action is taken when an alarm is triggered etherStatsMulticastPkts The number of multicast packets received by the interface during the statistical period etherStatsUndersizePkts The number of undersize packets received by the interface during the statistical period etherStatsOversizePkts The number of oversize...

Page 2322: ...event entry1 argument If the falling threshold is reached triggers the event specified by the event entry2 argument n Before creating an alarm entry define the events to be referenced in the event table with the rmon event command When you create an entry if the values of the specified alarm variable alarm variable sampling interval sampling interval sampling type absolute or delta rising threshol...

Page 2323: ...mmunity name being trap community when the event occurs trap community represents the community name of the network management station that receives trap message a string of 1 to 127 characters owner text Owner of the entry a string of 1 to 127 characters It is case sensitive and space is supported Description Use the rmon event command to create an entry in the RMON event table Use the undo rmon ...

Page 2324: ...ed entry from the RMON history control table This command enables RMON to periodically sample and save for an interface data such as bandwidth utilization errors and total number of packets for later retrieval When you create an entry in the history table if the specified history table size exceeds that supported by the device the entry will be created However the validated value of the history ta...

Page 2325: ...ing interval Sampling interval in the range 10 to 65 535 seconds absolute changeratio delta Sets the sampling type to absolute delta or change ratio rising threshold threshold value1 event entry1 Sets the rising threshold where threshold value1 represents the rising threshold in the range 2 147 483 648 to 2 147 483 647 and event entry 1 represents the index of the event triggered when the rising t...

Page 2326: ...hold value1 and falling threshold threshold value2 are identical to those of the existing alarm entry the system considers their configurations the same and the creation fails You can create up to 50 pri alarm entries The rising alarm and falling alarm are alternate Example Create entry 5 in the private alarm table Calculate the private alarm variables with the 1 3 6 1 2 1 16 1 1 1 6 1 100 1 3 6 1...

Page 2327: ... RMON statistics group collects information on how a monitored port is being used and records errors Statistics include number of collisions CRC alignment errors number of undersize or oversize packets number of broadcasts number of multicasts number of bytes received number of packets received To display information for the RMON statistics table use the display rmon statistics command n Only one ...

Page 2328: ...2328 CHAPTER 153 RMON CONFIGURATION COMMANDS ...

Page 2329: ...ccess control Example Display the local SNMP agent switch fabric ID Sysname display snmp agent local switch fabricid SNMP local EngineID 800007DB7F0000013859 display snmp agent community Syntax display snmp agent community read write View Any view Parameter read Displays the information of communities with read only access right write Displays the information of communities with read and write acc...

Page 2330: ...ified Storage type nonVolatile Table 614 Descriptions on the fields of display snmp agent community Field Description Community name Community name Group name SNMP group name Acl The number of the ACL in use Storage type Storage type which could be volatile Information will be lost if the system is rebooted nonVolatile Information will not be lost if the system is rebooted permanent Modification p...

Page 2331: ...lay snmp agent mib view View name ViewDefault MIB Subtree iso Subtree mask Storage type nonVolatile View Type included View status active View name ViewDefault MIB Subtree snmpUsmMIB Subtree mask Storage type nonVolatile View Type excluded View status active View name ViewDefault MIB Subtree snmpVacmMIB Subtree mask Storage type nonVolatile View Type excluded View status active View name ViewDefau...

Page 2332: ...ects retrieved successfully 0 MIB objects altered successfully 0 GetRequest PDU accepted and processed 0 GetNextRequest PDU accepted and processed 0 GetBulkRequest PDU accepted and processed 0 GetResponse PDU accepted and processed 0 SetRequest PDU accepted and processed 0 Trap PDUs accepted and processed 0 Alternate Response Class PDUs dropped silently 0 Forwarded Confirmed Class PDUs dropped sil...

Page 2333: ...s which had noSuchName error status Number of PDUs with a noSuchName error SNMP PDUs which had tooBig error status Maximum packet size 1500 Number of PDUs with a tooBig error the maximum packet size is 1 500 bytes MIB objects retrieved successfully Number of MIB objects that have been successfully retrieved MIB objects altered successfully Number of MIB objects that have been successfully modified...

Page 2334: ...None Description Use the display snmp agent trap list command to display the modules that can send the Trap messages and whether their Trap sending is enabled or not If a module comprises of multiple sub modules then as long as one sub module has the sending of Trap messages enabled the whole module will be displayed as being enabled with the Trap sending Related command snmp agent trap enable Exa...

Page 2335: ...er name Displays SNMPv3 user information for a specified user name It is case sensitive group group name Displays SNMPv3 user information for a specified SNMP group name It is case sensitive Description Use the display snmp agent usm user command to display SNMPv3 user information Example Display SNMPv3 information for the user aa Sysname display snmp agent usm user username aa User name aa Group ...

Page 2336: ... function on an interface and use the snmp agent trap enable standard linkdown linkup command to enable this function globally Related command snmp agent target host snmp agent trap enable Example Enable the sending of linkup linkdown SNMP Trap messages on the port Ethernet 1 0 and use the community name public Sysname system view Sysname snmp agent trap enable Sysname snmp agent target host trap ...

Page 2337: ... with acl number indicating the ACL number in the range 2 000 to 2 999 mib view view name Specifies the MIB view name associated with community name where view name represents the MIB view name a string of 1 to 32 characters If no keyword is specified the default view is ViewDefault The view created by the system after SNMP agent is enabled Description Use the snmp agent community command to confi...

Page 2338: ...entication Specifies the security model of the SNMP group to be authentication only without privacy privacy Specifies the security model of the SNMP group to be authentication and privacy read view read view Read view a string of 1 to 32 characters write view write view Write view a string of 1 to 32 characters notify view notify view Notify view for sending Trap messages a string of 1 to 32 chara...

Page 2339: ...agent local switch fabricid command to restore the default By default the switch fabric ID of a device is the combination of company ID and device ID Device ID varies by product it could be an IP address a MAC address or a self defined string of hexadecimal numbers Notice that if the newly configured switch fabric ID is not the same as the one used for creating the USM user the user is invalid Rel...

Page 2340: ...luded view name oid tree mask mask value undo snmp agent mib view view name View System view Parameter excluded Indicates that not all nodes of the MIB tree are included in current view included Indicates that all nodes of the MIB tree are included in current view view name View name a string of 1 to 32 characters oid tree MIB subtree It can only be an OID string such as 1 4 5 3 1 or an object nam...

Page 2341: ...t in the range 484 to 17 940 The default value is 1 500 bytes Description Use the snmp agent packet max size command to configure the maximum number of bytes in an SNMP packet that can be received or sent by an agent Use the undo snmp agent packet max size command to restore the default packet size Example Configure the maximum number of bytes that can be received or sent by an SNMP agent to 1 042...

Page 2342: ...n touch with the manufacturer in case of network failures The system location information is a management variable under the system branch as defined in RFC1213 MIB it identifies the location of the managed object Example Configure the contact information as Dial System Operator at beeper 27345 Sysname system view Sysname snmp agent sys info contact Dial System Operator at beeper 27345 snmp agent ...

Page 2343: ... Use the snmp agent target host command to configure the related settings for a Trap target host Use the undo snmp agent target host command to remove the current settings To enable the device to send Traps you need to use the snmp agent target host command in combination with the snmp agent trap enable and the enable snmp trap updown commands Related command enable snmp trap updown snmp agent tra...

Page 2344: ...ding of LSP Trap packets ospf process id ospf trap list Enables the sending of OSPF Trap packets The parameter process id is the process ID and spf trap list is the Trap packet list standard Enables the sending of standard Trap packets authentication Enables the sending of authentication failure Trap packets in the event of authentication failure coldstart Sends coldstart Trap packets when the dev...

Page 2345: ...tem view Sysname snmp agent target host trap address udp domain 10 1 1 1 pa rams securityname public Sysname snmp agent trap enable standard authentication snmp agent trap if mib link extended Syntax snmp agent trap if mib link extended undo snmp agent trap if mib link extended View System view Parameter None Description Use the snmp agent trap if mib link extended command to extend the standard l...

Page 2346: ... time for SNMP Traps is 120 seconds Related command snmp agent trap enable snmp agent target host Example Configure the life time for Trap packets as 60 seconds Sysname system view Sysname snmp agent trap life 60 snmp agent trap queue size Syntax snmp agent trap queue size size undo snmp agent trap queue size View System view Parameter size The queue size for the Trap messages in the range 1 to 1 ...

Page 2347: ...nd to restore the default By default SNMP chooses the IP address of an interface to be the source IP address of the Trap message Use this command to trace a specific event by the source IP address of a Trap message n Before you can configure the IP address of a particular interface as the source IP address of the Trap message ensure that the interface already exists and that it has a legal IP addr...

Page 2348: ... SHA 96 auth password Authentication password a string of 1 to 64 characters privacy Specifies that the security mode is privacy aes128 Specifies the privacy protocol to be advanced encryption standard AES des56 Specifies the privacy protocol to be data encryption standard DES priv password The privacy password a string of 1 to 64 characters local Specifies to use a local switch fabric ID switch f...

Page 2349: ...ent community snmp agent local switch fabricid Example Add a user John to the SNMP group Johngroup Configure the security model to be authentication the authentication protocol to be HMAC MD5 96 and the authentication password to be hello Sysname system view Sysname snmp agent group v3 Johngroup Sysname snmp agent usm user v3 John Johngroup authentication mode md5 hello ...

Page 2350: ...2350 CHAPTER 154 SNMP CONFIGURATION COMMANDS ...

Page 2351: ... ASCII 128 or invisible characters ASCII 33 A filename cannot contain characters such as Space or can be included in a filename but it cannot be the first or the last character of the filename and there cannot be two consecutive s cd Syntax cd directory View User view Parameter directory Name of the target directory Description Use the cd command to change the current directory Example Change the ...

Page 2352: ... as wildcards For example to remove files with the expansion of txt you may use the delete txt command Description Use the delete command to remove a specified file from the storage device to the recycle bin where you can restore the file with the undelete command or permanently delete it with the reset recycle bin command The dir all command displays the files removed to the recycle bin These fil...

Page 2353: ...gfile 1 rw 16044820 Oct 30 2006 15 46 58 main bin 2 rwh 4 Oct 31 2006 14 08 16 snmpboots 3 rw 2012 Oct 30 2006 16 17 28 config cfg 4 rwh 828 Oct 30 2006 16 17 26 private data txt 5 drw Oct 31 2006 14 28 24 test 6 rw 16044820 Oct 31 2006 14 34 24 mytest bin 252344 KB total 220800 KB free File system type of cf FAT16 indicates this file is in the recycle bin execute Syntax execute filename View Syst...

Page 2354: ...out operations that may bring undesirable results such as file corruption or data loss quiet Disables the system to warn you about any operation Description Use the file prompt command to set a prompt mode for file operations By default the prompt mode is alert Note that when the prompt mode is set to quiet the system does not warn for any file operation To prevent undesirable consequents resulted...

Page 2355: ...e format cf All data on cf will be lost proceed with format Y N y Format cf completed mkdir Syntax mkdir directory View User view Parameter directory Name of a directory Description Use the mkdir command to create a subdirectory under the specified directory on the storage device The name of the subdirectory to be created must be unique under the specified directory This command does not allow you...

Page 2356: ... test application for you This file contains a summary of what you will find in each of the fi les that make up your test application Test dsp This file the project file contains information at the project lev el and is used to build a single project or subproject Other users can share the project dsp file but they should export the makefi les locally Display the content of the file testcfg cfg Sy...

Page 2357: ...device to function normally Before removing a mounted storage device from the system you should first unmount it to avoid damaging the device Related command umount n The support of this command varies with devices For a device supporting partitioning this command can only mount a partition device rather than the storage device Example Mount a CF card on a centralized device Sysname mount cf Mount...

Page 2358: ...on will fail Example Display the current path Sysname pwd cf rename Syntax rename fileurl source fileurl dest View User view Parameter fileurl source Name of the source file or directory fileurl dest Name of the target file or directory Description Use the rename command to rename a file or directory The target file name must be unique under the current path Example Rename the file sample txt as s...

Page 2359: ...ir command to remove a directory The directory must be an empty one If it is not first delete all files and subdirectory under it with the delete command Example Remove directory mydir Sysname rmdir mydir Rmdir cf mydir Y N y Removed directory cf mydir umount Syntax umount device View User view Parameter device Storage device name for example flash or cf on a device that does not support storage d...

Page 2360: ... system you should first unmount it to avoid damaging the device By default a storage device is in the mounted state You can use it without mounting it Related command mount Example Unmount a CF card on a device Sysname umount cf Umount cf successfully Apr 23 01 49 20 929 2003 System VFS 5 LOG cf umounted from slot 0 undelete Syntax undelete file url View User view Parameter file url Name of the f...

Page 2361: ...ify this filename the original filename will be used With a device that supports main backup function this command only backups the main configuration file for next startup With a device that does not support main backup function this command backups the configuration file for next startup Presently the device uses TFTP to implement backup operation Example Backup the configuration file for next s...

Page 2362: ... the display saved configuration command if you have saved the configuration file after the device starts up the information last saved in the configuration file is displayed Related command save reset saved configuration and display current configuration on page 2412 Example Display the configuration file saved in the storage device Sysname display saved configuration Version 5 20 Beta 1105 sysna...

Page 2363: ... startup Current startup saved configuration file cf config cfg Next main startup saved configuration file cf config cfg Next backup startup saved configuration file NULL reset saved configuration Syntax reset saved configuration backup main View User view Parameter backup Erases the backup configuration file main Erases the main configuration file Description Use the reset saved configuration com...

Page 2364: ...device is being cleared Please wait Configuration in the device is cleared restore startup configuration Syntax restore startup configuration from src addr src filename View User view Parameter src addr IP address or name of a TFTP server The address cannot be an IPv6 address src filename Filename of the configuration file to be downloaded from the specified server Description Use the restore star...

Page 2365: ... file Description Use the save command to save the current configuration to the specified configuration file If no filename is specified the system saves the configuration file in an interactive way In this way you can use the default path the configuration file for next startup or enter a filename to specify a new path but the suffix of the filename must be cfg and the path must be the path of th...

Page 2366: ...Validating file Please wait Now saving current configuration to the device Saving configuration cf testcfg cfg Please wait Configuration is saved to cf successfully Sysname Save the current configuration to the backup configuration file main backup attribute supported Sysname save backup The current configuration will be written to the device Are you sure Y N y Please input the file name cfg cf te...

Page 2367: ...main configuration file after the execution of the startup saved configuration cfgfile backup command the configuration file has both main and backup attributes For a backup configuration file after the execution of the startup saved configuration cfgfile main command the configuration file has both main and backup attributes If main backup attribute is not specified the file is set as a main conf...

Page 2368: ...2368 CHAPTER 156 CONFIGURATION FILE MANAGEMENT COMMANDS ...

Page 2369: ...command Related command ftp timeout and ftp update Example Display the FTP server configuration Sysname display ftp server FTP server is running Max user number 1 User count 1 Timeout value in minute 30 Put Method fast The output indicates that the FTP server is running with support to only one concurrent login user now one logged in user is present timeout of the user is 30 minutes and FTP update...

Page 2370: ...e released is transmitting a file the connection between the user and the FTP server is terminated after the file transmission Example Manually release the FTP connection established with username of ftpuser Sysname free ftp user ftpuser Are you sure to free FTP user ftpuser Y N y Sysname ftp server enable Syntax ftp server enable undo ftp server View System view Parameter None Description Use the...

Page 2371: ... the default After you log onto the FTP server you set up an FTP connection When the connection is disrupted the FTP server if not notified cannot realize that and maintains the connection all the same To address this problem you can set an idle timeout timer to have the FTP server disconnected if no information is received or and transmitted before the timer expires Example Set the idle timeout t...

Page 2372: ...APTER 157 FTP SERVER CONFIGURATION COMMANDS Use the undo ftp update command to restore the default namely the normal mode Example Set the FTP update mode to normal Sysname system view Sysname ftp update normal ...

Page 2373: ...escription Use the ascii command to set the file transfer mode to ASCII for the FTP connection FTP provides two file transfer modes ASCII and binary To transfer text files use the ASCII mode to transfer program files use the binary mode By default the file transfer mode is ASCII Example Set the file transfer mode to ASCII ftp ascii 200 Type set to A binary Syntax binary View FTP client view Parame...

Page 2374: ...iption Use the bye command to disconnect from the remote FTP server and exit to user view Example Terminate the connection with the remote FTP server and exit to user view ftp bye 221 Server closing cd Syntax cd pathname View FTP client view Parameter pathname Path name Description Use the cd command to change the current working directory on the remote FTP server You can use this command to acces...

Page 2375: ...ription Use the close command to terminate the connection to the FTP server but remain in FTP client view This command is equal to the disconnect command Example Terminate the connection to the FTP server and remain in FTP client view ftp close 221 Server closing ftp debugging Syntax debugging undo debugging View FTP client view Parameters None Description Use the debugging command to enable FTP c...

Page 2376: ... ASCII mode data connection for sample file The parsed reply is 150 FTPC File transfer started with the signal light turned on FTPC File transfer completed with the signal light turned off 226 Transfer complete FTP 3304 byte s received in 4 889 second s 675 00 byte s sec ftp delete Syntax delete remotefile View FTP client view Parameter remotefile File name Table 620 Description on the fields of t...

Page 2377: ...FTP server Use the dir remotefile localfile command to display the detailed information of the specified file or directory on the remote FTP server and save the displayed information into a local file specified by the localfile argument n The Is command can only display the names of files and directories whereas the dir command can display other related information of the files and directories suc...

Page 2378: ...n Currently this command displays the configuration information of the source address If the currently valid source address is the source IP address this command displays the configured source IP address if it is the source interface this command displays the configured source interface Related command ftp client source Example Display the current configuration information of the FTP client Sysnam...

Page 2379: ...mmand is higher than that with the ftp client source command If you specify the source address with the ftp client source command first and then with the ftp command the source address specified with the ftp command is used to communicate with the FTP server Related command ftp client source Example Log from the current device Sysname1 onto the device Sysname2 with the IP address of 192 168 0 211 ...

Page 2380: ...tes the original one and vice versa If the source address is specified with the ftp client source command and then with the ftp command the source address specified with the latter one is used to communicate with the FTP server The source address specified with the ftp client source command is valid for all ftp connections and the source address specified with the ftp command is valid only for the...

Page 2381: ...thout specifying any parameters you will simply enter the FTP client view without logging onto the FTP server If you specify the parameter you will be asked to enter the username and password for accessing the FTP server Example Log onto the FTP server with IPv6 address 3000 200 Sysname ftp ipv6 3000 200 Trying 3000 200 Press CTRL K to abort Connected to 3000 200 220 Welcome User 3000 200 none MY_...

Page 2382: ...e ls command to view the information of all the files and subdirectories under the current directory of the remote FTP server The file names and subdirectory names are displayed Use the ls remotefile command to view the information of a specified file or subdirectory Use the ls remotefile localfile command view the information of a specified file or subdirectory and save the result to a local file...

Page 2383: ...tp quit Sysname more aa txt logfile mkdir Syntax mkdir directory View FTP client view Parameter directory Directory name Description Use the mkdir command to create a subdirectory under the specified directory on the remote FTP server To do this you must be a user with the permission on the FTP server Example Create subdirectory mytest on the current directory of the remote FTP server ftp mkdir my...

Page 2384: ...arameter server address IP address or host name of the remote FTP server service port Port number of the remote FTP server in the range 0 to 65535 The default value is 21 i interface type interface number Specifies the egress interface by it type and number This parameter can be used only in case that the FTP server address is the link local address and the specified egress interface must have a l...

Page 2385: ... FTP passive is on put Syntax put localfile remotefile View FTP client view Parameter localfile Local file name remotefile Name of the file to be saved on the remote FTP server Description Use the put command to upload a file to the remote FTP server If no name is assigned to the file to be saved on the FTP server the name of the source file is used by default Example Upload source file cc txt to ...

Page 2386: ... command to disconnect from the remote FTP server and exit to user view Example Disconnect from the remote FTP server and exit to user view ftp quit 221 Server closing Sysname remotehelp Syntax remotehelp protocol command View FTP client view Parameter protocol command FTP command Description Use the remotehelp command to display the help information of FTP related commands supported by the remote...

Page 2387: ...is a list of available ftp commands The following is an available FTP command list Those with are not yet implemented Those commands with are not yet implemented USER Username PASS Password CWD Change the current working directory CDUP Change to parent directory SMNT File structure setting QUIT Quit REIN Re initialization PORT Port number PASV Passive mode TYPE Request type STRU File structure MOD...

Page 2388: ... the files in the remote recycle bin under the directory will be automatically deleted Example Delete the cf temp1 directory from the FTP server ftp rmdir cf temp1 200 RMD command successful user Syntax user username password View FTP client view NLST List file description SITE Orient a parameter SYST Display system parameters STAT State HELP Help NOOP No operation XCUP Extension command the same ...

Page 2389: ...gged onto the FTP server and relogs onto the current FTP server with the username of ftp2 Suppose username ftp2 and password 123123123123 have been configured on the FTP server ftp user ftp2 331 Password required for ftp2 Password 230 User logged in ftp verbose Syntax verbose undo verbose View FTP client view Parameter None Description Use the verbose command to enable the verbose function to disp...

Page 2390: ...2390 CHAPTER 158 FTP CLIENT CONFIGURATION COMMANDS ...

Page 2391: ... tftp client configuration The source IP address is 192 168 0 123 n Currently this command displays the source address configuration information If the currently valid source address is the source IP address the configured source IP address is displayed if the currently valid address is the source interface the configured source interface is displayed tftp server acl Syntax tftp server ipv6 acl ac...

Page 2392: ...2001 rule permit source 2030 5060 9050 64 Sysname acl6 basic 2001 quit Sysname tftp server ipv6 acl 2001 tftp Syntax tftp server address get put sget source filename destination filename source interface interface type interface number ip source ip address View User view Parameter server address IP address or host name of a TFTP server source filename Source file name destination filename Destinat...

Page 2393: ...ownloaded successfully Upload the config cfg file from the storage device to the default path of the TFTP server with the IP address of 192 168 0 98 and save it as config bak Specify the source IP interface to be Ethernet 1 0 Sysname tftp 192 168 0 98 put config cfg config bak source interface Ether net 1 0 File will be transferred in binary mode Sending file to remote tftp server Please wait Hard...

Page 2394: ...alid for the current tftp command Related command display tftp client configuration Example Specify the source IP address of the TFTP client to 2 2 2 2 Sysname system view Sysname tftp client source ip 2 2 2 2 Specify the source interface of the TFTP client to be Ethernet 1 0 Sysname system view Sysname ftp client source interface ethernet 1 0 tftp ipv6 Syntax tftp ipv6 tftp ipv6 server i interfac...

Page 2395: ...m a TFTP server or upload a specified local file to a TFTP server This command applies to IPv6 network Example Download filetoget txt from TFTP server Sysname tftp ipv6 fe80 250 daff fe91 e058 i ethernet 1 0 get fil etoget txt File will be transferred in binary mode Downloading file from remote tftp server please wait TFTP 32 bytes received in 5 second s File downloaded successfully ...

Page 2396: ...2396 CHAPTER 159 TFTP CLIENT CONFIGURATION COMMANDS ...

Page 2397: ...interface number Specifies the ICMP echo request sending interface by its type and number m interval Specifies the interval in milliseconds to send an ICMP echo response in the range 1 to 65535 The default value is 200 ms If a response from the destination is received within the timeout time the interval to send the next echo request equals the actual response period plus the value of interval If ...

Page 2398: ...vice Description Use the ping command to verify whether the destination device in an IP network is reachable and to display the related statistics Note that You must use the command in the form of ping ip ip instead of ping ip if the destination name is a key word such as ip Only the directly connected segment address can be pinged if the outgoing interface is specified with the i argument Example...

Page 2399: ...s or host name a string of 1 to 46 characters of the destination device i interface type interface number Specifies an outgoing interface by its type and number This parameter can be used only in case that the destination address is the link local address and the specified outgoing interface must have a link local address For the configuration of link local address see IPv6 Basics Configuration Co...

Page 2400: ...fault value is 33434 You do not need to modify this parameter q packet number Specifies the number of probe packets sent each time in the range 1 to 65535 The default value is 3 vpn instance vpn instance name Specifies the name of an MPLS VPN instance which is a string of 1 to 31 characters w timeout Specifies the packet timeout time in the range 1 to 65535 in milliseconds The default value is 500...

Page 2401: ...to 1 and must be less than the maximum TTL m max ttl Specifies the maximum TTL that is the maximum allowed number of hops for a packet in the range 1 to 255 It defaults to 30 and must be greater than the first TTL p port Specifies the UDP port number of the destination device in the range 1 to 65535 The default value is 33434 It is unnecessary to modify this parameter q packet number Specifies the...

Page 2402: ...2402 CHAPTER 160 SYSTEM MAINTAINING COMMANDS Sysname tracert ipv6 3002 1 traceroute to 3002 1 30 hops max 60 bytes packet 1 3003 1 30 ms 10 ms 10 ms 2 3002 1 10 ms 11 ms 9 ms ...

Page 2403: ...of their number and content You can use the debugging module name command to display the currently supported options Description Use the debugging command to enable the debugging of a specific module Use the undo debugging command to disable the debugging of a specific module By default debugging functions of all modules are disabled Note the following This command is intended for network administ...

Page 2404: ...gging Syntax display debugging interface interface type interface number module name View Any view Parameter interface interface type interface number Displays the debugging settings of the specified interface where interface type interface number represents the interface type and number module name Module name Description Use the display debugging command to display enabled debugging functions Re...

Page 2405: ... clock datetime command to set the current time and date The current time and date of the device must be set in an environment that requires the acquisition of absolute time You may choose not to provide seconds when inputting the time parameters After the configuration takes effect you can use the display clock command to view it Related command clock summer time one off clock summer time repeati...

Page 2406: ...of the start date to the end time of the end date Summer time adds the add time to the current time of the device Use the undo clock summer time command to cancel the configuration of the summer time After the configuration takes effect you can use the display clock command to view it Besides the time of the log or debug information is the local time of which the time zone and summer time have bee...

Page 2407: ... the format of HH MM SS hours minutes seconds The zeros in the argument can be omitted except for indicating 0 hours end date End date which can be set in two ways Enter the year month and date at one time in the format of MM DD YYYY months days years or YYYY MM DD Enter the year month and date one by one separated by spaces The year ranges from 2000 to 2035 the month can be January February March...

Page 2408: ... off clock timezone display clock Example For the summer time in abc2 between 06 00 00 on 08 01 2007 and 06 00 00 on 09 01 2007 and from 06 00 00 08 01 to 06 00 00 on 09 01 each year after 2007 set the system clock ahead one hour Sysname clock summer time abc2 repeating 06 00 00 08 01 2007 06 00 00 09 01 2007 01 00 00 clock timezone Syntax clock timezone zone name add minus zone offset undo clock ...

Page 2409: ...n the specified view Use the undo command privilege view command to restore the default By default the commands under each view have their respective command levels Generally do not modify the default command levels to avoid inconvenience to your maintenance and operation Command privilege falls into four levels visit monitor system and manage which are identified by 0 through 3 The administrator ...

Page 2410: ...nfigure user count command to restore the default configuration Two users are allowed to configure in system view by default Related command display configure user n The support for the command varies with devices When multiple users enter system view to configure certain attribute only the last configuration applies When the number of users has already reached the limit other users can not enter ...

Page 2411: ...lay clock View Any view Parameter None Description Use the display clock command to view the current system time and date The current system time and date are decided by the clock datetime clock summer time one off or clock summer time repeating clock timezone Refer to the Configuring the system clock section in the operation manual for the detailed rules Related command clock datetime clock summe...

Page 2412: ...arameters are used display the specified information For example isis Displays the isis configuration isp Displays the ISP configuration post system Displays the post system configuration radius template Displays the Radius template configuration system Displays the system configuration user interface Displays the user interface configuration controller Displays the controller configuration For ex...

Page 2413: ... regular expression Character Meaning Note Starting sign the string following it appears only at the beginning of a line Regular expression user matches a string begins with user not Auser Ending sign the string before it appears only at the end of a line Regular expression user matches a string ends with user not userA Left bracket used as a stack symbol in a program It is not recommended to user...

Page 2414: ...m At this time you can use the display diagnostic information command to collect prompt information of the commands display clock display version display device display current configuration Example Save the statistics of each module s running status in the system Sysname display diagnostic information Save or display diagnostic information Y save N display Y N y Please input the file name diag fl...

Page 2415: ...story command max size on page 2460 for related configuration Example Display validated history commands in current user view the display information varies with configuration Sysname display history command display history command system view vlan 2 quit display hotkey Syntax display hotkey View Any view Parameter None Description Use the display hotkey command to display hotkey information Examp...

Page 2416: ...ion ESC_B Move the cursor one word back ESC_D Delete remainder of word ESC_F Move the cursor forward one word ESC_N Move the cursor down a line ESC_P Move the cursor up a line ESC_ Specify the beginning of clipboard ESC_ Specify the end of clipboard display this Syntax display this by linenum View Any view Parameter by linenum Specifies to display the number of each line Description Use the displa...

Page 2417: ...e software Version 5 20 Beta 1202P02 Standard Copyright c 2004 2006 Hangzhou Huawei 3Com Technology Co Ltd All rights reserved H3C MSR30 20 uptime is 0 week 0 day 0 hour 17 minutes Last reboot 2006 10 19 13 11 33 System returned to ROM By Reboot Command CPU type FREESCALE MPC8541 833MHz 256M bytes DDR SDRAM Memory 4M bytes Flash Memory Pcb Version 3 0 Logic Version 1 0 Basic BootROM Version 2 07 E...

Page 2418: ...em Configuration for the detailed information Description Use the header command to create a banner Use the undo header command to clear a banner Example Configure a banner in user view Sysname system view Sysname header incoming Input banner text and quit with the character Welcome to incoming header incoming Sysname header legal Input banner text and quit with the character Welcome to legal head...

Page 2419: ...L Assigns the hot key Ctrl L to a command CTRL_O Assigns the hot key Ctrl O to a command CTRL_T Assigns the hot key Ctrl T to a command CTRL_U Assigns the hot key Ctrl U to a command command The command line associated with the hot key Description Use the hotkey command to assign a hot key to a command line Use the undo hotkey command to restore the default By default the system specifies correspo...

Page 2420: ...ine CTRL_F Move the cursor one character right CTRL_H Erase the character left of the cursor CTRL_K Kill outgoing connection CTRL_N Display the next command from the history buffer CTRL_P Display the previous command from the history buffer CTRL_R Redisplay the current line CTRL_V Paste text from the clipboard CTRL_W Delete the word left of the cursor CTRL_X Delete all characters up to the cursor ...

Page 2421: ...it Example Return to user view from Ethernet view Sysname interface ethernet 1 0 Sysname Ethernet1 0 return Sysname super Syntax super level View User view Parameter level User level in the range 0 to 3 Description Use the super command to switch from the current user level to a specified user level There are four levels of commands Visit involves commands for network diagnosis such as ping and tr...

Page 2422: ...switch to a higher user level however they need to enter the password The password can be set with the super password command If the entered password is incorrect or no password is configured the switch fails Therefore before switching to a higher user level users should configure the password needed Related command super password Example Set the user level to 2 the current user level is 3 Sysname...

Page 2423: ...d the configuration file saves a simple password If cipher is specified the configuration file saves a cipher password The user must always enter a simple password no matter simple or cipher is specified Cipher passwords are recommended as simple ones are easily getting cracked Example Set the password to abc in simple form for switching user level to 3 Sysname system view Sysname super password l...

Page 2424: ...ifying device name affects the prompt of the CLI For example if the device name is Sysname the prompt of user view is Sysname Example Set the name of the device to R2000 Sysname system view Sysname sysname R2000 R2000 system view Syntax system view View User view Parameter None Description Use the system view command to enter system view from the current user view Related command quit return Examp...

Page 2425: ...ame on page 2432 Description Use the display channel command to display channel information If no channel is specified information for all channels is displayed Example Display information for channel 0 Sysname display channel 0 channel number 0 channel name console MODU_ID NAME ENABLE LOG_LEVEL ENABLE TRAP_LEVEL ENABLE DEBUG_LEVEL ffff0000 default Y warnings Y debugging Y debugging Table 624 Info...

Page 2426: ...overwritten messages 740 channel number 4 channel name logbuffer Trap buffer channel name A specified channel name which varies with user s configuration For more information refer to info center channel name on page 2432 MODU_ID The ID of the module to which the information permitted through the current channel belongs NAME The name of the module to which the information permitted through the cur...

Page 2427: ... and channel name s used SNMP Agent channel number 5 channel name snmpagent The SNMP agent channel information including the channel number s and channel name s used Log buffer enabled max buffer size 1024 current buffer size 512 current messages 512 dropped messages 0 overwritten messages 740 channel number 4 channel name logbuffer The information of the log buffer channel including whether it is...

Page 2428: ...Displays log information that contains a specified character or string text Regular expression Table 627 Severity description Character Meaning Remarks emergencies 0 The system is unavailable alerts 1 Information that requires prompt reaction critical 2 Critical information errors 3 Error information warnings 4 Warnings notifications 5 Normal errors with important information informational 6 Infor...

Page 2429: ...mmand interface Aux0 The rest is omitted here Addition used to match a subexpression before it one or multiple times zo can map to zo and zoo but not z Hyphen It connects two values the smaller one before it and the bigger one after it to indicate a range together with For example 1 9 means numbers from 1 to 9 inclusive a h means from a to h inclusive Selects one character from the group For examp...

Page 2430: ...uffer Dropped messages The number of dropped messages Overwritten messages The number of overwritten messages when the buffer size is not big enough to hold all messages the latest messages overwrite the old ones Current messages The number of the current messages Table 629 Descriptions on the fields of the display logbuffer command Field Description Table 630 Descriptions on the fields of the dis...

Page 2431: ... Jun 20 10 52 48 495 2006 Sysname DEV 5 BOARD TEMP NORMAL The rest is omitted here display logfile summary Syntax display logfile summary View Any view Parameter None Description Use the display logfile summary command to display the configuration of the log file Example Display the configuration of the log file Sysname display logfile summary Log file is enabled Channel number 9 Log file size quo...

Page 2432: ...essages 0 Current messages 1 Dec 31 14 01 25 2004 Sysname DEV 2 LOAD FINISHED Trap 1 3 6 1 4 1 2011 2 23 1 12 1 20 frameIndex is 0 slotIndex 0 4 info center channel name Syntax info center channel channel number name channel name undo info center channel channel number View System view Table 632 Descriptions on the fields of the display trapbuffer command Field Description Trapping buffer configur...

Page 2433: ...annel View System view Parameter channel number Specifies a channel number in the range 0 to 9 channel name Specifies a channel name which could be a default name or one that is defined by the user The user needs to specify a channel name first before using it as a self defined channel name For more information refer to info center channel name on page 2432 Description Use the info center console ...

Page 2434: ...info center logbuffer channel channel number channel name size buffersize undo info center logbuffer channel size View System view Parameter buffersize Specifies the maximum number of log messages in a log buffer in the range 0 to 1 024 with 512 as the default value channel number A specified channel number in the range 0 to 9 channel name Specifies a channel name which could be a default name or ...

Page 2435: ...nable View System view Parameter None Description Use the info center logfile enable command to enable the output of system information to the log file Use the undo info center logfile enable command to disable the output of system information to the log file By default the output of system information to the log file is enabled n The support for the command varies with devices Example Enable the ...

Page 2436: ...ze quota size undo info center logfile size quota View System view Parameter size The maximum capacity of a disk in MB the default range varies with devices The value however cannot be smaller than 1MB and larger than 10 MB Description Use the info center logfile size quota command to set the maximum storage space reserved for a log file Use the undo info center logfile size quota command to resto...

Page 2437: ...ysname mkdir test Created dir cf test Set the directory to save the log file to cf test Sysname system View Sysname info center logfile switch directory cf test info center loghost Syntax info center loghost host ip channel channel number channel name facility local number undo info center loghost host ip View System view Parameter host ip The IP address of the log host channel Specifies the chann...

Page 2438: ...ng 1 1 1 1 16 Sysname system view Sysname info center loghost 1 1 1 1 info center loghost source Syntax info center loghost source interface type interface number undo info center loghost source View System view Parameter interface type interface number Specifies a source interface by its type and number Description Use the info center loghost source command to configure the source interface to ou...

Page 2439: ...ion to the monitor is enabled with a default channel name of monitor and a default channel number of 1 Note that the info center monitor channel command takes effect only after the information center is enabled with the info center enable command Example Set to output system information to the monitor through channel 0 Sysname system view Sysname info center monitor channel 0 info center snmp chan...

Page 2440: ...iew Parameter module name Specifies the output rules of the system information of the specified modules which vary with devices For instance if information on ARP module is to be output you can configure this argument as ARP default Specifies the output rules of the system information of all the modules allowed to output the system information This configuration varies with devices debug Debug inf...

Page 2441: ...ely set the output rules for a module you must use the module name argument to modify or remove the rules The new configuration by using the default keyword is invalid on the module Example Set the output channel for the log information of VLAN module to snmpagent and to output information with severity being emergencies Sysname system view Sysname info center source vlan channel snmpagent log lev...

Page 2442: ...ser s input is interrupted by system information then after the completion of system output the system will not display command line prompt but just print the user s input Example Enable synchronous information output Sysname system view Sysname info center synchronous Info center synchronous output is on The user receives trap messages when he she is about to display the configurations for an Eth...

Page 2443: ...00 to 59 and sss ranging from 0 to 999 yyyy Represents the year none Indicates no time information is provided Description Use the info center timestamp command to configure the time stamp format Use the undo info center timestamp command to restore the default By default the time stamp format for log trap and debug information is date Example Configure the time stamp for debug information as boot...

Page 2444: ...name Specifies a channel name which could be a default name or one that is defined by the user The user needs to specify a channel name first before using it as a self defined channel name For more information refer to info center channel name on page 2432 Description Use the info center trapbuffer command to enable information output to the trap buffer and set the corresponding parameters Use the...

Page 2445: ...le Set to manually save the log buffer contents into the log file Sysname logfile save reset logbuffer Syntax reset logbuffer View User view Parameter None Description Use the reset logbuffer command to reset the log buffer contents Example Reset the log buffer contents Sysname reset logbuffer reset trapbuffer Syntax reset trapbuffer View User view Parameter None Description Use the reset trapbuff...

Page 2446: ... the display of debug information on the current terminal Sysname terminal debugging Current terminal debugging is on terminal logging Syntax terminal logging undo terminal logging View User view Parameter None Description Use the terminal logging command to enable the display of log information on the current terminal Use the undo terminal logging command to disable the display of log information...

Page 2447: ...al monitor command automatically disables the monitoring of log trap and debug information By default the monitoring of the console is enabled and the monitoring of the terminal is disabled Example Enable the monitoring of system information on the current terminal Sysname terminal monitor Current terminal monitor is on terminal trapping Syntax terminal trapping undo terminal trapping View User vi...

Page 2448: ...splayed using the terminal trapping command only after the monitoring of system information is enabled on the current terminal first using the terminal monitor command Example Enable the display of trap information on the current terminal Sysname terminal trapping Current terminal trapping is on ...

Page 2449: ...st in the range 2000 to 4999 where 2000 to 2999 are the basic ACL number 3000 to 3999 are the advanced ACL number 4000 to 4999 are the layer 2 ACL number inbound Controls dial in for a user interface outbound Controls dial out for a user interface Description Use the acl command to reference an ACL to control dial in or dial out of the current users Use the undo acl command to remove the ACL For d...

Page 2450: ...e if you input an ASCII code value 97 the system will use its corresponding character a as the shortcut key if you input the string b c the system will use the first letter b as the shortcut key By default pressing the Enter key starts the terminal sessions However if you define a new shortcut key using the activation key command the Enter key no longer functions You can use the display current co...

Page 2451: ...ute command command the system automatically executes the command when a user logs on from the interface where the command is configured After the command is completed the connection breaks automatically A good example is configuring the auto execute command telnet command to let users telnet to the specified host automatically c CAUTION The auto execute command command may disable you from config...

Page 2452: ...n scheme Performs authorization and authentication of AAA For details about AAA refer to AAA Configuration Commands on page 1913 command authorization Performs command line authorization HWTACACS allows per command authorization An input command is executed only after it passes authorization For details about HWTACACS refer to HWTACACS Configuration Commands on page 1975 Description Use the authen...

Page 2453: ... is 321 Sysname system view Sysname user interface vty 0 Sysname ui vty0 authentication mode scheme Sysname ui vty0 quit Sysname local user 123 Sysname luser 123 password cipher 321 Sysname luser 123 service type telnet level 3 databits Syntax databits 5 6 7 8 undo databits View User interface view Parameter 5 Five data bits 6 Six data bits 7 Seven data bits 8 Eight data bits Description Use the d...

Page 2454: ...ry View Any view Parameter num1 Absolute number of a user interface The value range varies by device and normally starts from 0 num2 Relative number of a user interface in the following rules For the AUX port the value is 0 For the Console port the value is 0 For TTY user interfaces the value range varies with devices and normally starts from 1 For VTY user interfaces the value ranges from 0 to 4 ...

Page 2455: ...e type TTY 1 XXXX XXXX XXXX XXXX 17 XXXX XXXX XXXX XXXX 33 XXXX XXXX XXXX XXXX 49 XXXX XXXX XXXX XXXX 65 XXXX XXXX XXXX XXXX User interface type AUX 81 X User interface type VTY 82 XUXU U 3 character mode users U 83 UI never used X 3 total UI in use Table 634 Description on the fields of the display user interface command Field Description The current user interface is active F The current user in...

Page 2456: ... mode Table 635 Description on the fields of the display user interface summary command Field Description User interface type Type of user interface CON TTY AUX VTY 0 X 0 represents the absolute number of the user interface X means this user interface is not used U means this user interface is in use the number of the character X and U indicates the total number of user interfaces character mode u...

Page 2457: ... key if you input the string q c the system will use the first letter q as the shortcut key By default you can use Ctrl C to terminate a task After defining a new shortcut key using the escape key command the new shortcut key will take the place of Ctrl C to abort the task You can use the display current configuration command to display the shortcut key you have defined Example Define a as the esc...

Page 2458: ... of in or out in indicates passive flow control meaning flow on the local device is controlled by the remote device out indicates active flow control meaning the local device controls flow on the remote device flow control type1 and flow control type2 are mutually exclusive For example if flow control type1 takes the value of in flow control type2 can only take the value of out Description Use the...

Page 2459: ...lete flow control Sysname system view Sysname user interface console 0 Sysname ui console0 flow control software out hardware in Configure adopt software mode for both active and passive flow control in user interface view The device supports complete flow control Sysname system view Sysname user interface console 0 Sysname ui console0 flow control software Configure to adopt hardware mode for the...

Page 2460: ...name free user interface vty 0 Not allowed to clear current UI history command max size Syntax history command max size size value undo history command max size View User interface view Parameter size value History buffer size in the range 0 to 256 It defaults to 10 that is up to ten history commands can be stored Description Use the history command max size command to set the size of history comm...

Page 2461: ...dle or not Example Set the idle timeout timer to 1 minute and 30 seconds Sysname system view Sysname user interface console 0 Sysname ui console0 idle timeout 1 30 lock Syntax lock View User view Parameter None Description Use the lock command to set a password to prevent unauthorized users from operating under the active user interface After entering the lock command you are prompted to input a p...

Page 2462: ...o enable the modem to dial in or dial out Use the undo modem command to disable this function By default dial in and dial out are disabled on the modem n This command takes effect on the AUX port and other asynchronous interfaces only and cannot be applied to the Console port Example Set the modem dial in out attribute on TTY 1 Sysname system view Sysname user interface tty 1 Sysname ui tty1 modem...

Page 2463: ...er interface view Parameter time Timeout time in the range 1 to 60 seconds Description Use the modem timer answer command to set the timeout interval spent waiting for the carrier signal after the off hook action when setting up an incoming call connection Use the undo modem timer answer command to restore the default or 30 seconds n This command takes effect on the AUX port and other asynchronous...

Page 2464: ...nterface view Parameter all Supports all the protocols including Telnet SSH and PAD pad Supports PAD only ssh Supports SSH only telnet Supports Telnet only Description Use the protocol inbound command to enable the current user interface to support either Telnet PAD SSH or all of them By default all the protocols are supported The configuration takes effect next time you log in c CAUTION If SSH is...

Page 2465: ...e user interface Example Manually terminate a redirected Telnet connection Sysname system view Sysname user interface tty 1 Sysname ui tty1 redirect disconnect redirect enable Syntax redirect enable undo redirect enable View User interface view Parameter None Description Use the redirect enable command to enable redirection on the active asynchronous serial interface Use the undo redirect enable c...

Page 2466: ...ted Telnet connections Use the undo redirect listen port command to restore the default listening port The default number of the listening port for redirected Telnet connections equals absolute user interface number plus 2000 n The redirect commands are supported on the AUX and TTY user interfaces only Execute the command after using the redirect enable command to enable redirection on the user in...

Page 2467: ...t return deal from telnet Syntax redirect return deal from telnet undo redirect return deal from telnet View User interface view Parameter None Description Use the redirect return deal from telnet command to let the device that redirects Telnet connection process the carriage returns received from the Telnet client meaning to substitute 0x0d for 0x0d 0x0a and 0x0d 0x00 Use the undo redirect return...

Page 2468: ...al are not processed n The redirect commands are supported on the AUX and TTY user interfaces only Execute other redirect commands after using the redirect enable command to enable redirection on the user interface Example Enable the device that redirects Telnet connection to process the carriage returns received from the terminal Sysname system view Sysname user interface tty 1 Sysname ui tty1 re...

Page 2469: ...ength command to restore the default or 24 lines Multiple screen output is supported on the device If you press Space when information display pauses the system continues to display information of the next screen page This command sets the number of lines displayed on the next screen the displayed number of lines on the terminal however is decided by the specifications of the terminal For example ...

Page 2470: ...press Ctrl C to remove this operation when inputting messages Example Send the message hello abc to the Console user interface Sysname send console 0 Enter message end with CTRL Z or Enter abort with CTRL C hello abc Z Send message Y N y Sysname Message from con0 to con0 hello abc Sysname set authentication password Syntax set authentication password cipher simple password undo set authentication ...

Page 2471: ...xt password easily gets cracked Therefore you are recommended to use cipher text password Related command authentication mode Example Set the local authentication password for the user interface Console 0 to hello Sysname system view Sysname user interface console 0 Sysname ui console0 authentication mode password Sysname ui console0 set authentication password cipher hello After setting the passw...

Page 2472: ...hen a Telnet terminal logs in The connection was closed by the remote host speed in user interface view Syntax speed speed value undo speed View User interface view Parameter speed value Transmission rate in bps The transmission rates available with asynchronous serial interfaces include 300 bps 600 bps 1200 bps 2400 bps 4800 bps 9600 bps 19200 bps 38400 bps 57600 bps 115200 bps Note that the tran...

Page 2473: ...set the stop bits on the user interface Use the undo stopbits command to restore the default or one stop bit n The command is only applicable to asynchronous serial interfaces including AUX and Console ports Example Set the stop bits on the user interface to 1 5 Sysname system view Sysname user interface aux 0 Sysname ui aux0 stopbits 1 5 terminal type Syntax terminal type ansi vt100 undo terminal...

Page 2474: ...yntax user privilege level level undo user privilege level View User interface view Parameter level Command level in the range 0 to 3 n Command level is divided into four levels of visit monitor system and manage corresponding to the number 0 1 2 and 3 respectively The administrator can change the command level of a user when necessary Description Use the user privilege level command to configure ...

Page 2475: ...ge varies with devices and normally starts from 0 but cannot be smaller than the first num1 first num2 Relative number of the first user interface in the following rules For the AUX port the value is 0 For the Console port the value is 0 For TTY user interfaces the value range varies with devices and normally starts from 1 For VTY user interfaces the value ranges from 0 to 4 last num2 Relative num...

Page 2476: ...2476 CHAPTER 164 USER INTERFACE CONFIGURATION COMMANDS Sysname system view Sysname user interface vty 0 3 Sysname ui vty0 3 ...

Page 2477: ...e vlan id is in the range 1 to 4094 count Displays the total number of MAC addresses in the MAC address table mac address Specifies a MAC address in the format of H H H dynamic Displays dynamic MAC address entries Aging time is set for these entries static Displays static MAC address entries Similar to blackhole MAC address entries these entries do not age but you can add or remove them interface ...

Page 2478: ... address aging time 300s The above information indicates that the aging time of dynamic entries in the MAC address table is 300 seconds display mac address mac learning Syntax display mac address mac learning interface type interface number View Any view Parameter interface type interface number Specifies an interface by its type and number The MAC address learning status of the specified interfac...

Page 2479: ...thernet interface view Parameter dynamic Dynamic MAC address entries Aging time is set for these entries static Static MAC address entries Similar to blackhole MAC address entries these entries do not age but you can add or remove them mac address Specifies a MAC address in the format of H H H vlan vlan id Specifies the VLAN to which the Ethernet interface belongs vlan id is the specified VLAN ID ...

Page 2480: ...dress blackhole dynamic static mac address vlan vlan id undo mac address dynamic static mac address interface interface type interface number vlan vlan id undo mac address dynamic static interface interface type interface number View System view Parameter blackhole Blackhole MAC address entries These entries do not age but you can add or remove them The packets whose destination MAC addresses matc...

Page 2481: ...ration cannot survive a reboot save it after completing the configuration The dynamic entries however will be lost whether you save the configuration or not Related command display mac address Example Add a static entry for MAC address 00e0 fc01 0101 All frames destined to this MAC address are sent out of the interface Ethernet 1 1 which belongs to VLAN 2 Sysname system view Sysname mac address st...

Page 2482: ...ble forwarding View Ethernet interface view aggregation port group view Parameter count Maximum number of MAC addresses that can be learned on a port When the argument takes 0 the VLAN is not allowed to learn MAC addresses The value range for this argument varies with devices disable forwarding Disables forwarding of frames with unknown destination MAC addresses after the number of learned MAC add...

Page 2483: ...unt disable forwarding mac address timer Syntax mac address timer aging seconds no aging undo mac address timer aging View System view Parameter aging seconds Sets a aging time for dynamic MAC address entries in the range 10 to 4080 seconds no aging Sets dynamic MAC address entries not to age Description Use the mac address timer command to configure the aging timer for dynamic MAC address entries...

Page 2484: ...2484 CHAPTER 165 MAC ADDRESS TABLE MANAGEMENT CONFIGURATION COMMANDS ...

Page 2485: ...ply poe profile command to apply the PoE configuration file to the current PoE interface Use the undo apply poe profile command to remove the application of the PoE configuration file to the current PoE interface Note that the index number instead of the name of the PoE configuration file will be displayed when you execute the display this command Related command display poe profile and apply poe ...

Page 2486: ...terface number View Any view Parameter interface type interface number Interface type and interface number Description Use the display poe interface command to display the power information of the specified interface If no interface is specified the power information of all PoE interfaces is displayed Example Display the state of Ethernet 1 0 Sysname display poe interface ethernet 1 0 Port Power P...

Page 2487: ...tical PoE interface power deny The PSE refuses to supply power The power required by the powered device PD is higher than the configured power power itself The external equipment is supplying power for itself power limit The PSE is supplying a limited power The power required by the PD is higher than the configured power and the PSE still supplies the configured power Different models of device su...

Page 2488: ...e support different power supply modes Port Current Power Current power of a PoE interface including PD consumption power and transmission loss The transmission loss usually does not exceed one watt The specific loss depends on the device model Port Average Power Average power of a PoE interface Port Peak Power Peak power of a PoE interface Port Max Power Maximum power of a PoE interface Port Curr...

Page 2489: ...e power required by the powered device PD is higher than the configured power power itself The external equipment is supplying power for itself power limit The PSE is supplying a limited power The power required by the PD is higher than the configured power and the PSE still supplies the configured power Different models of device support different operating states IEEE class PD power class stipul...

Page 2490: ...ame display poe power usage PoE Current Power 600 W PoE Max Power 2000 W PoE Max Guaranteed Power 1000 W PoE Remaining Allocate Power 800 W PoE Remaining Guaranteed Power 600 W PoE Total Powered Port Number 60 Detailed power usage of PSE s PSE ID Max Current Peak Average Remaining Powered W W W W Guaranteed W PortNum 1 300 200 230 205 100 20 2 400 300 345 290 200 30 4 500 100 120 110 300 10 Table ...

Page 2491: ... Field Description PoE Current Power Total consumption power of the PSE PoE Max Power Maximum PoE power PoE Max Guaranteed Power Guaranteed maximum PoE power namely the maximum power supplied to critical PSEs PoE Remaining Allocate Power Remaining allocable PoE power Maximum PoE power the sum of the maximum power of all PoE enabled PSEs PoE Remaining Guaranteed Power Guaranteed remaining PoE power...

Page 2492: ...mpted yes The power of the PSE is preempted so that it can supply power although PoE is enabled for the PSE PSE Power Priority Power priority of the PSE PSE Current Power Current power of the PSE PSE Average Power Average power of the PSE PSE Peak Power Peak power of the PSE PSE Max Power Maximum power of the PSE PSE Remaining Guaranteed Guaranteed remaining power of the PSE Maximum power of the P...

Page 2493: ...rer Tyco Electronics Com Type PSE2500 B Status Normal Table 645 Description on fields of the display poe power command Field Description PoE Current Power Current PoE power PoE Average Power Average PoE power PoE Peak Power Peak PoE power PoE Max Power Maximum PoE power PoE Nominal Power Nominal PoE power PoE Current Current Current PoE current PoE Current Voltage Current PoE voltage PoE Input thr...

Page 2494: ... of the configurations and applications of existing PoE configuration files will be displayed Example Display all information of the configurations and applications of the current PoE configuration file Sysname display poe profile Poe profile Index ApplyNum Interface Configuration AA3456789012345 1 3 GE1 1 poe enable GE1 2 poe priority critical GE1 3 poe profileAA 2 1 GE1 24 poe enable poe max pow...

Page 2495: ...ortened form of the PoE interface to which the PoE configuration is applied Configuration Configurations of the PoE configuration file poe profile s created Number of PoE configuration files port s applied Sum of the number of PoE interfaces to which all PoE configuration files are respectively applied Table 647 Description on fields of the display poe profile index command Field Description Poe p...

Page 2496: ...ration file are applied successfully only the configurations that currently take effect on the interface are displayed poe disconnect Syntax poe disconnect ac dc undo poe disconnect Interface Shortened form of the PoE interface to which the PoE configuration is applied Configuration Configurations of the PoE configuration file port s applied Sum of the number of PoE interfaces to which all PoE con...

Page 2497: ...ect dc poe enable Syntax poe enable undo poe enable View PoE interface view PoE profile file view Parameter None Description Use the poe enable command to enable PoE on a PoE interface Use the undo poe enable command to disable PoE on a PoE interface By default PoE is disabled on a PoE interface c CAUTION If a PoE configuration file is already applied to a PoE interface you need to remove the appl...

Page 2498: ...e pse command to enable PoE for the PSE Use the undo poe enable pse command to disable PoE for the PSE By default PoE is disabled for the PSE n The support for this command varies with devices Example Enable PoE for PSE 2 Sysname system view Sysname poe enable pse 2 poe legacy enable Syntax poe legacy enable pse pse id undo poe legacy enable pse pse id View System view Parameter pse pse id Specifi...

Page 2499: ...e max power command to restore the default maximum power of a PoE interface By default the maximum power of the PoE interface is 15 400 milliwatts Example Set the maximum power of Ethernet 1 0 to 12 000 milliwatts Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 poe max power 12000 Set the maximum power of Ethernet 1 0 to 12 000 milliwatts through a PoE configuration file Sys...

Page 2500: ...pply to these PoE interfaces When the consumption power of all PDs connected to the PSE is greater than the maximum power of the PSE some PDs will be powered off The sum of the maximum power of all PSEs must be less than the maximum PoE power Related command poe priority system view Example Set the maximum power of PSE 2 to 150 watts Sysname system view Sysname poe max power 150 pse 2 poe mode Syn...

Page 2501: ... interface ethernet 1 0 Sysname Ethernet1 0 apply poe profile name abc poe pd description Syntax poe pd description string undo poe pd description View PoE interface view Parameter string Description of the PD connected to a PoE interface up to 80 characters Description Use the poe pd description command to configure a description for the PD connected to a PoE interface Use the undo poe pd descrip...

Page 2502: ... is power is first supplied to the PD connected to this critical PoE interface high Sets the power priority of a PoE interface to high low Sets the power priority of a PoE interface to low Description Use the poe priority command to configure a power priority level for a PoE interface Use the undo poe priority command to restore the default power priority level By default the power priority of a P...

Page 2503: ...poe priority pse pse id View System view Parameter critical Sets the power priority level of the PSE to critical The PSE whose power priority level is critical works in guaranteed mode that is power is first supplied to the PSE high Sets the power priority of the PSE to high low Sets the power priority of the PSE to low pse pse id Specifies a PSE ID The support for this argument varies with device...

Page 2504: ...se pse id View System view Parameter full Specifies to upgrade the PSE processing software in full mode when the software is unavailable refresh Specifies to upgrade the PSE processing software in refresh mode when the software is available filename Name of the upgrade file a string of 1 to 64 characters This file must be under the root directory of the file system of the device The extension of t...

Page 2505: ...reshold If the percentage of the power utilization always keeps above the alarm threshold the system does not send any Trap message Instead when the percentage of the power utilization drops below the alarm threshold the system sends a Trap message again Example Set the power alarm threshold of PSE 2 to 90 Sysname system view Sysname poe utilization threshold 90 pse 2 poe profile Syntax poe profil...

Page 2506: ...configuration file starting from 1 If a PoE configuration file is already applied to a PoE interface you cannot delete it To delete the file you must first execute the undo apply poe profile command to remove the application of the PoE configuration file to the PoE interface Example Create a PoE configuration file name it abc and specify the index number as 3 Sysname system view Sysname poe profil...

Page 2507: ...to the Linux OS on an OAP module You can press Ctrl k to return from the Linux OS on an OAP module to the command line interface on the router Example Switch from command line interface on the router to the OS on an OAP module Sysname oap connect slot 3 Connected to OAP Press Enter to log onto the Linux OS after the above prompt appears Red Hat Linux release 9 Shrike Kernel 2 4 20 8custom on an i6...

Page 2508: ... Before resetting an OAP module you are recommended to save the data on Linux OS and shut down the Linux OS to avoid service interruption and hardware data loss After the reset the Linux OS on the OAP module will be automatically rebooted Related command oap reload slot oap shutdown slot Example Restart the OAP module on slot 3 Sysname oap reboot slot 3 This command will recover the OAP from shutd...

Page 2509: ...lient info Syntax display acfp client info client id View Any view Parameters client id Displays information of the specified ACFP client where client id represents the ACFP client ID in the range of 1 to 2147483647 Description Use the display acfp client info command to display the information about the specified ACFP client s Note that If ACFP client ID is specified the information about the spe...

Page 2510: ...erface number Displays all the policies that use the specified interface destination interface for connecting to the ACFP client where interface type interface number is the interface type and interface number in interface interface type interface number Displays all the policies that use the specified interface as the inbound interface where interface type interface number is the interface type a...

Page 2511: ...the active or inactive policies If no argument is specified the command will display the information about all the policies Example Display the information about the effective policies for all the interfaces that use Ethernet 1 0 as the inbound interface Sysname display acfp policy info in interface ethernet 1 0 active ACFP policy total number 1 ClientID 1 Policy Index 2 Rule Num 20 ContextID 2007...

Page 2512: ...out interface keyword the command will display all the ACFP rule cache information Example Display all the ACFP rule cache information Sysname display acfp rule cache ACFP rule cache total items 2 Idx SIP Sport DIP DPort Pro InIf OutIf 1021 202 153 124 111 62534 202 124 152 234 32456 4 g0 2 e1 1 Precedence ToS DSCP Establish Fragment Action 7 15 Af12 false true redirect Idx SIP Sport DIP DPort Pro...

Page 2513: ...Use the display acfp rule info command to display ACFP rule information Idx Hash index SIP Source IP address SPort Source port number DIP Destination IP address DPort Destination port number Pro Protocol of the packet in the range of 0 to 255 InIf Inbound interface of the packet OutIf Outbound interface of the packet Precedence Packet precedence a number in the range of 0 to 7 Tos Type of service ...

Page 2514: ...olicy Index 1 Rule Index 1 SIP 192 168 132 122 SMask 0 0 0 255 SPort 65500 to 65535 DIP 192 168 112 115 DMask 0 0 0 255 DPort 65500 to 65535 Protocol ipinip Establish false Fragment false DSCP AF11 Action redirect Status inactive Table 653 Description on the fields of the display acfp rule info command Field Description In Interface Inbound interface of the packet Out Interface Outbound interface ...

Page 2515: ...umbers for other modes Action Action permit deny mirror and redirect Status Rule status active and inactive Table 653 Description on the fields of the display acfp rule info command Field Description Table 654 Description on the fields of the display acfp server info command Field Description Server Info Client working modes supported by the server Ipserver host mode Redirect redirect mode Mirror ...

Page 2516: ... type and interface number out interface interface type interface number Clears the ACFP rule cache for the specified outbound interface where interface type interface number is the interface type and interface number Description Use the reset acfp rule cache command to clear ACFP rule cache If you specify no inbound interface or outbound interface the ACFP rule cache on all the inbound interfaces...

Page 2517: ...erver Use the undo acsei server enable command to disable ACSEI server By default ACSEI server is disabled Examples Enable ACSEI server Sysname system view Sysname acsei server enable acsei server Syntax acsei server View System view Parameters None Description Use the acsei server command to enter ACSEI server view Examples Enter ACSEI server view Sysname system view Sysname acsei server Sysname ...

Page 2518: ...y default the sychronization timer is set to five minutes Examples Set the synchronization timer from ACSEI server to ACSEI client to 20 minutes Sysname system view Sysname acsei server Sysname acsei server acsei timer clock sync 20 acsei timer monitor Syntax acsei timer monitor seconds undo acsei timer monitor View ACSEI server view Parameters seconds Value of the monitor timer that is used for A...

Page 2519: ...i client close 1 acsei client reboot Syntax acsei client reboot client id View ACSEI server view Parameters client id ID of the ACSEI client to be restarted in the range of 1 to 10 Description Use the acsei client reboot command to restart ACSEI client Examples Restart the ACSEI client with ID of 1 Sysname system view Sysname acsei server Sysname acsei server acsei client reboot 1 display acsei cl...

Page 2520: ...D 1 Status Open MAC Address 00e0 fc0a c3ef Interface GigabitEthernet5 0 Last registered 02 08 2007 12 00 00 client ID 2 Status Open MAC Address 00e0 fa1e 03da Interface GigabitEthernet6 0 Last registered 02 08 2007 13 00 00 display acsei client info Syntax display acsei client info client id View Any view Parameters client id ID of an ACSEI client in the range 1 to 10 Description Use the display a...

Page 2521: ...F card 256 MB Memory 512 MB Harddisk 40 0 GB Display information about all ACSEI clients Sysname display acsei client info Total client Number 2 client ID 1 client Description Hardware System Software Application Software CPU Intel R Pentium R M processor 1 40GHz PCB Version 3 00 CPLD Version 1 00 Bootrom Version 1 12 CF card 256 MB Memory 512 MB Harddisk 40 0 GB client ID 2 client Description Har...

Page 2522: ...nd version of the ACSEI client CPU CPU information of the ACSEI client PCB Version PCB version of the ACSEI client CPLD Version CPLD version of the ACSEI client Bootrom Version Boot ROM version of the ACSEI client CF card CF card information of the ACSEI client Memory Memory information of the ACSEI client Harddisk Harddisk information of the ACSEI client Table 656 Description on the fields of the...

Page 2523: ...module For description on the oap connect slot command refer to oap connect slot on page 2507 acsei client debug disable Syntax acsei client debug disable View Any directory of the Linux system Parameters None Description Use the acsei client debug disable command to disable debugging for ACSEI client By default debugging for ACSEI client is disabled Examples The OAP module locates in slot 6 Disab...

Page 2524: ...SEI client debugging will be displayed ACSEI client debugging is displayed through a pipe therefore part of the debugging information may fail to be displayed when the pipe is full Examples Display the ACSEI client debugging information Sysname oap connect slot 6 Connected to OAP root localhost acsei client debug enable root localhost acsei client debug show chkconfig acseid off Syntax chkconfig a...

Page 2525: ... client automatically when the system is started up Sysname oap connect slot 6 Connected to OAP root localhost chkconfig acseid on service acseid condrestart Syntax service acseid condrestart View Any directory of the Linux system Parameters None Description Use the service acseid condrestart command to restart ACSEI client conditionally That is if ACSEI client is running this command stops the pr...

Page 2526: ...uration file only when the ACSEI client is started Otherwise you will fail to load the ACSEI client configuration file Examples Load the ACSEI client configuration file Sysname oap connect slot 6 Connected to OAP root localhost service acseid status acseic daemon pid 2849 is running root localhost service acseid reload Reloading configuration OK service acseid restart Syntax service acseid restart...

Page 2527: ...rvice acseid start command to start an ACSEI client By default the ACSEI client installed on the OAP module is started Examples Start an ACSEI client that is running Sysname oap connect slot 6 Connected to OAP root localhost service acseid start Starting acseic daemon Start an ACSEI client that is stopped Sysname oap connect slot 6 Connected to OAP root localhost service acseid start Starting acse...

Page 2528: ...rvice acseid stop View Any directory of the Linux system Parameters None Description Use the service acseid stop command to stop an ACSEI client By default the ACSEI client installed on the OAP is started Examples Stop an ACSEI client that is running Sysname oap connect slot 6 Connected to OAP root localhost service acseid status acseic daemon pid 2849 is running root localhost service acseid stop...

Page 2529: ...ack ID 1 Status Positive Reference Object NQA Entry admin test Reaction 10 track Syntax track track entry number nqa entry admin name operation tag reaction item num undo track track entry number Table 657 Description on the fields of the display track command Field Description Track ID ID of a Track object Status Status of a Track object Positive The Track object is normal Invalid The Track objec...

Page 2530: ... command to create the Track object associated with the specified Reaction entry of the NQA test group Use the undo track command to delete the created Track object By default no Track object is created Note that after a Track object is created you cannot modify it using the track command Related commands nqa schedule admin name operation tag start time now lifetime forever on page 2275 reaction i...

Page 2531: ...ng of IPX type 20 propagation packet is disabled Delay of this IPX interface in ticks is 1 SAP GNS response is enabled RIP packet maximum size is 432 bytes SAP packet maximum size is 480 bytes IPX encapsulation is Netware 802 3 0 received 2 sent 0 bytes received 74 bytes sent 0 RIP received 1 RIP sent 0 RIP discarded 0 RIP specific requests received 0 RIP specific responses sent 0 RIP general requ...

Page 2532: ...her the interface is enabled to respond to SAP GNS requests RIP packet maximum size Maximum size of RIP updating packet on the current interface SAP packet maximum size Maximum size of SAP updating packet on the current interface 0 received IPX packets received on the interface 2 sent IPX packets sent on the interface 0 bytes received IPX packet bytes received on the interface 74 bytes sent IPX pa...

Page 2533: ... 0000 0000 0000 Time 0 Interface 1 0020 9c68 448e Vlan interface1 State Active Protocol Static Preference 60 Ticks 1 Hops 1 Nexthop 2 000e 0001 0000 Time 0 Interface 2 0020 9c68 448f Vlan interface2 State Inactive Destination Network ID 0x2 Protocol Static Preference 60 Ticks 1 Hops 1 Nexthop 1 000e 0001 0000 Time 0 Interface 1 0020 9c68 448e Vlan interface1 State Active Table 659 Description on t...

Page 2534: ...ose keywords are not specified Example Display default IPX routing information Sysname display ipx routing table protocol default Default routing tables Summary count 0 Default routing tables status active Summary count 0 Default routing tables status inactive Summary count 0 display ipx routing table statistics Routes Total number of routes Destination Network ID Destination network ID of the rou...

Page 2535: ...name network network order network type type service type verbose View Any view Parameter inactive Displays inactive service information name name Displays the service information of a server The name is a string of 1 to 47 characters network network Displays service information on a network number which is a hexadecimal number in the range of 0x1 to 0xFFFFFFFF Leading 0s can be omitted Table 661 ...

Page 2536: ...l Recv If Interface from which the se rvice is received Number of Static Entries 2 Number of Dynamic Entries 0 Name Type NetId S Prn1 0005 000d S Prn2 0005 0008 Display detailed IPX service information Sysname display ipx service table verbose Abbreviation S Static Pref Preference Decimal NetId Network number NodeId Node address hop Hops Decimal Recv If Interface from which the se rvice is receive...

Page 2537: ... errors 0 bad hops 16 0 discarded hops 16 0 other errors 0 local destination 0 can not be dealt with Statistics of the received packets including the total number of received packets the number of padded packets the number of packets with wrong packet size the number of packets with encapsulation errors the number of packets with a hop number greater than 16 the number of packets with hop number e...

Page 2538: ...iguration Example Enable IPX Sysname system view Sysname ipx enable SAP 0 general requests received 0 specific requests received 0 GNS requests received 0 general responses sent 0 specific responses sent 0 GNS responses sent 0 periodic updates 0 errors Statistics of SAP packets including the number of received general request packets the number of received specific request packets the number of re...

Page 2539: ...ation format By default IPX frame encapsulation format is dot3 Ethernet_802 3 The command is only applicable to the layer 3 Ethernet interface and the VLAN interface Example Specify the IPX frame encapsulation format on the interface 1 0 as Ethernet_II Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ipx encapsulation ethernet 2 ipx netbios propagation Syntax ipx netbios prop...

Page 2540: ... of the interface By default no network ID is allocated to an interface that is IPX is still disabled on the interface after IPX is enabled in system view Example Assign network ID 675 to the interface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ipx network 675 ipx rip import route static Syntax ipx rip import route static undo ipx rip import route static Vi...

Page 2541: ...size of each routing information item is 8 bytes and the size of IPX header plus RIP header is 32 bytes So an updating packet can carry up to 50 routing information items at most Example Specify the maximum RIP updating packet size as 500 bytes on the interface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ipx rip mtu 500 ipx rip multiplier Syntax ipx rip mult...

Page 2542: ...ysname system view Sysname ipx rip multiplier 5 ipx rip timer update Syntax ipx rip timer update seconds undo ipx rip timer update View System view Parameter seconds RIP updating interval in seconds ranging from 10 to 60 000 Description Use the ipx rip timer update command to specify a RIP update interval Use the undo ipx rip timer update command to restore the default The default update interval ...

Page 2543: ...stination network 1 tick 1 18 second ranging from 1 to 65 534 The default is 1 When the tick value of the outgoing interface is modified the tick value of the corresponding static route will also be changed The ticks must be configured together with the hops hops Number of routers on the route to the destination network in the range 1 to 15 By default the value is 1 It must be configured together ...

Page 2544: ...w System view Parameter paths Maximum number of routes to the same destination including both static and dynamic routes in the range 1 to 255 Description Use the ipx route max reserve path command to specify the maximum number of routes to the same destination Use the undo ipx route max reserve path command to restore the default By default the value is 4 When the route number to the same destinat...

Page 2545: ...tax ipx sap gns disable reply undo ipx sap gns disable reply View Interface view Parameter None Description Use the ipx sap gns disable reply command to disable the interface from responding to IPX GNS requests Use the undo ipx sap gns disable reply command to enable the interface to respond to IPX GNS requests By default an interface is capable of responding to GNS requests Example Disable Ethern...

Page 2546: ... length undo ipx sap max reserve servers View System view Parameter length Maximum reserve queue length of the same type service information ranging from 1 to 2 048 Description Use the ipx sap max reserve servers command to specify the maximum reserve queue length of the same type service information Use the undo ipx sap max reserve servers command to restore the default By default the value is 2 ...

Page 2547: ...ost Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ipx sap mtu 674 ipx sap multiplier Syntax ipx sap multiplier multiplier undo ipx sap multiplier View System view Parameter multiplier Value multiplied by the updating interval to yield the aging interval for SAP service information items The value ranges from 1 to 1000 Description Use the ipx sap multiplier command to confi...

Page 2548: ...g interval as 300 seconds Sysname system view Sysname ipx sap timer update 300 ipx service Syntax ipx service service type server name network node socket hop hopcount preference preference undo ipx service service type server name network node preference preference all View System view Parameter service type Service type ranging from 0 to 0xFFFF A value of 0 indicates all service types server nam...

Page 2549: ... service information item Example Add a static service information item with the service type being 4 service name FileServer server network ID 130 node value 0000 0a0b abcd server hop 1 and server preference 60 Sysname system view Sysname ipx service 4 FileServer 130 0000 0a0b abcd 451 hop 1 preference 60 ipx split horizon Syntax ipx split horizon undo ipx split horizon View Interface view Parame...

Page 2550: ...rface Ethernet 1 0 Sysname system view Sysname interface ethernet 1 0 Sysname Ethernet1 0 ipx tick 5 ipx update change only Syntax ipx update change only undo ipx update change only View Interface view Parameter None Description Use the ipx update change only command to enable the triggered update feature on the current interface Use the undo ipx update change only command to disable the triggered...

Page 2551: ... 500 Description Use the ping ipx command to check host reachability and network connectivity in an IPX network Example Ping the destination address at 675 0000 a0b0 fefe Sysname ping ipx 675 0000 a0b0 fefe reset ipx statistics Syntax reset ipx statistics View User view Parameter None Description Use the reset ipx statistics command to clear IPX statistics Example Clear IPX statistics Sysname rese...

Page 2552: ...ve added deleted freed Direct 1 1 1 0 0 Static 9 9 14 5 5 RIP 0 0 0 0 0 Default 0 0 0 0 0 Total 10 10 15 5 5 Clear IPX static route statistics Sysname reset ipx routing table statistics protocol static This will erase the specific routing counters information Are you sure Y N y Sysname Display IPX routing statistics again and you can see the following changes Sysname dis ipx routing table statisti...

Page 2553: ... uses a gatekeeper GK to provide IP voice services sip Uses the SIP port port number Port number in the range of 1 to 65535 The default port number is 5060 proxy Uses the SIP proxy server to implement SIP message exchange Description Use the address command to configure a policy for the routing between the VoIP entity and the terminating voice gateway Use the undo address command to remove the rou...

Page 2554: ...Europe standard is used This command applies to 2 wire loop trunk subscriber line FXO only Once this command is configured the configuration will be effective to all the analog FXO voice cards on the device When an FXO interface card is connected to a common subscriber line of a program controlled switch if the user on the switch side hangs up first only by detecting the busy tone can the router k...

Page 2555: ... undo busytone t th View Analog FXO voice subscriber line view Parameter time threshold Number of busy tone periods for detection in the range of 2 to 12 A bigger value means a longer busy tone detection time Description Use the busytone t th command to configure the number of busy tone periods for detection Use the undo busytone t th command to restore the default By default the number of busy to...

Page 2556: ...iber line Use the undo cid display command to disable CID By default CID is enabled on an analog FXS voice subscriber line Example Enable CID on voice subscriber line 1 0 Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname voice line1 0 cid display cid receive Syntax cid receive undo cid receive View Analog FXO voice subscriber line view Parameter None Description Use...

Page 2557: ...FXO voice subscriber line view Parameter None Description Use the cid send command to enable the FXS or FXO voice subscriber line to send calling numbers to the remote end Use the undo cid send command to disable the FXS or FXO voice subscriber line from send calling numbers to the remote end By default the FXS or FXO voice subscriber line sends calling numbers to the remote end After you configur...

Page 2558: ...data message format SDMF If the remote end supports one format only you must use the same message format at the local end Example Set the format of the transmitted caller identification information to SDMF on voice subscriber line 1 0 Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname voice line1 0 cid type simple cng on Syntax cng on undo cng on View FXS FXO E M voi...

Page 2559: ...iority g711alaw G 711 A law codec defining the pulse code modulation technology requiring a bandwidth of 64 kbps usually adopted in Europe g711ulaw G 711μ law codec requiring a bandwidth of 64 kbps usually adopted in North America and Japan g723r53 G 723 1 Annex A codec requiring a bandwidth of 5 3 kbps g723r63 G 723 1 Annex A codec requiring a bandwidth of 6 3 kbps g726r16 G 726 Annex A codec It ...

Page 2560: ...er flexibility for application The voice quality provided by g729r8 and g729a is similar to the ADPCM of 32 kbps having the quality of a toll and also featuring low bandwidth lesser event delay and medium processing complexity hence it has a wide field of application Table 664 describes the relationship between codec algorithms and bandwidth Actual network bandwidth is related to packet assembly i...

Page 2561: ...terval 30 ms Table 667 G 723 r53 algorithm Packet assembly interval Bytes coded in a time unit Packet length bytes IP Network bandwidth IP Packet length bytes IP PPP Network bandwidth IP PPP Coding latency 30 ms 20 60 15 9 kbps 66 17 5 kbps 30 ms 60 ms 40 80 10 6 kbps 86 11 4 kbps 60 ms 90 ms 60 100 8 8 kbps 106 9 3 kbps 90 ms G 723 r53 algorithm media stream bandwidth 5 3 kbps minimum packet asse...

Page 2562: ...et length bytes IP Network bandwidth IP Packet length bytes IP PPP Network bandwidth IP PPP Coding latency 10 ms 40 80 64 kbps 86 68 8 kbps 10 ms 20 ms 80 120 48 kbps 126 50 4 kbps 20 ms 30 ms 120 160 42 7 kbps 166 44 3 kbps 30 ms 40 ms 160 200 40 kbps 206 41 2 kbps 40 ms 50 ms 200 240 38 4 kbps 246 39 4 kbps 50 ms G 726 r32 algorithm media stream bandwidth 32 kbps minimum packet assembly interval...

Page 2563: ...ssembly interval of 30ms Two communication parties can communicate normally only if they share some identical coding decoding algorithms If the codec algorithm between two connected devices is not consistent or the two devices share no common coding decoding algorithms the calling will fail Table 672 G 729 algorithm Packet assembly interval Bytes coded in a time unit Packet length bytes IP Network...

Page 2564: ...ype View Voice view Parameter country type locale Configure the current device to play the call progress tones of a specified country or regions Currently call progress tones of 64 countries or regions are supported Table 674 Countries or regions with supported call progress tones Code Country name including customization AR Argentina AU Australia AT Austria BE Belgium BR Brazil BG Bulgaria CA Can...

Page 2565: ...ds NZ New Zealand NG Nigeria NO Norway PK Pakistan PA Panama PH Philippines PL Poland PT Portugal RU Russian Federation SA Saudi Arabia SG Singapore SK Slovakia SI Slovenia ZA South Africa ES Spain SE Sweden CH Switzerland TH Thailand TR Turkey GB United Kingdom US United States UY Uruguay ZW Zimbabwe Table 674 Countries or regions with supported call progress tones Code Country name including cus...

Page 2566: ...ll busy tone congestion tone dial tone ringback tone special dial tone waiting tone amplitude value undo cptone tone type all busy tone congestion tone dial tone ringback tone special dial tone waiting tone amplitude View Voice view Parameter all All types of call progress tones busy tone Busy tone congestion tone Congestion tone dial tone Dial tone ringback tone Ringback tone special dial tone Sp...

Page 2567: ...ining the pulse code modulation technology requiring a bandwidth of 64 kbps usually adopted in Europe g711ulaw G 711μ law codec requiring a bandwidth of 64 kbps usually adopted in North America and Japan g723r53 G 723 1 Annex A codec requiring a bandwidth of 5 3 kbps g723r63 G 723 1 Annex A codec requiring a bandwidth of 6 3 kbps g726r16 G 726 Annex A codec It uses the adaptive differential pulse ...

Page 2568: ...name voice dial default entity compression 1st level g723r53 default entity payload size Syntax default entity payload size g711 g723 g726r16 g726r24 g726r32 g726r40 g729 time length undo default entity payload size g711 g723 g726r16 g726r24 g726r32 g726r40 g729 View Voice dial program view Parameter g711 Specifies the packetization period for g711 codec It can be 10 20 the default or 30 milliseco...

Page 2569: ...ial program view Parameter None Description Use the default entity vad on command to globally configure enabling silence detection as the default value Use the undo default entity vad on command to restore the fixed value i e disabling the silence detection to be the default value By default the silence detection is disabled The default entity vad on command is used to globally enable silence dete...

Page 2570: ...t subscriber line command to restore the default value You can use this command to increase the power of voice signal on the subscriber lines if the signal is too weak Related command transmit gain Example Configure a receiving gain of 9 0 dB on all subscriber lines Sysname system view Sysname voice setup Sysname voice default subscriber line receive gain 9 0 delay hold Syntax delay hold milliseco...

Page 2571: ...delay start mode The value ranges from 20 to 2 000 Description Use the delay rising command to configure a delay time from when the terminating side detects a seizure signal to when it sends a delay signal in the delay start mode Use the undo delay rising command to restore the default By default the delay time is 300 milliseconds Related command em signal Example Set the delay time from when the ...

Page 2572: ... dtmf 3000 delay send wink Syntax delay send wink milliseconds undo delay send wink View E M voice subscriber line view Parameter send wink milliseconds Specifies an interval in milliseconds from when the terminating side receives a seizure signal to when it sends a wink signal in the wink start mode The value ranges from 100 to 5 000 Description Use the delay send wink command to configure an int...

Page 2573: ...s in the wink start mode Related command em signal Example Set the duration the terminating side sends wink signals in the wink start mode to 700 milliseconds Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname voice line1 0 em signal wink Sysname voice line1 0 delay wink hold 700 delay wink rising Syntax delay wink rising milliseconds undo delay wink rising View E M ...

Page 2574: ...2000 delay start dial Syntax delay start dial seconds undo delay start dial View FXS FXO voice subscriber line view Parameter seconds Dial delay in seconds in the range of 0 to 10 Description Use the delay start dial command to configure the dial delay Use the undo delay start dial command to restore the default By default the dial delay is 1 second Example Set the dial delay on FXS subscriber lin...

Page 2575: ...escription text undo description View FXS FXO E M voice subscriber line view Parameter text Description string of voice subscriber line consisting of up to 80 characters Description Use the description command to configure a subscriber line description string Use the undo description command to delete the description By default no description is configured for the voice subscriber line You can use...

Page 2576: ... the call information table Description Use the display voice call info command to display the contents in the call information table Example Display the brief information of the call information table at a certain point of time Sysname display voice call info brief The information table for current calls in brief CALL 0 ViIfIndex 2884067 Module ID LGS CMC End Display the detailed information of t...

Page 2577: ...ormation related to CMC module Description Use the display voice cmc command to display messages which are related to CMC module These messages mainly contain call control block messages and statistic messages in which statistic messages can be classified and displayed according to the type of messages and the interaction with surrounding modules Example Display the information of the call control...

Page 2578: ...lay LGS statistics information related to the CMC module Sysname display voice cmc statistic lgs ACCP Message statistics between CMC and LGS Send SETUP message 0 Send SETUP_ACK message 0 Send ALERTING message 0 Send CONNECT message 0 Send RELEASE message 0 Send RELEASE_COMP message 0 Send INFORMATION message 0 Send SWITCH_CODEC message 0 Send FAXVOC_SWTH message 0 Send FAXVOC_SWTHACK message 0 Rec...

Page 2579: ...the call Call Leg Number Indicates the number of call legs of the call Active Service Indicates the number of services involved in the call Spl Protocol Indicates the type of protocol used in the call leg LocalRef Indicates the local call identifier of the call leg IfIndex Indicates the voice interface index connected to the call leg IpAddress Indicates the IP address connected to the call leg IpP...

Page 2580: ...729 30 system 30 Table 677 Description on fields of the display voice default command Field Description fax ecm ECM mode is used for Fax fax protocol t38 Fax protocol for intercommunication fax redundancy t38 hb redundancy Number of high speed redundant packets available for standard T 38 or T 38 fax redundancy t38 lb redundancy Number of low speed redundant packets available for standard T 38 or ...

Page 2581: ...will display a great deal of information So if you just want to view the configuration information of voice entities you can use the display voice entity command Example Display the configuration information of POTS voice entities Sysname display voice entity all Current configuration of entities entity 66 pots match template 6600 line 6 0 End display voice ipp statistic Syntax display voice ipp s...

Page 2582: ...ng 0 Send_Connect 0 Send_ReleaseComplete 0 Send_FacilityIndUserInput 0 Send_FacilityTCSRequest 0 Send_FacilityTCSAck 0 Send_FacilityTCSReject 0 Send_FacilityOLCRequest 0 Send_FacilityOLCAck 0 Send_FacilityOLCReject 0 Send_FacilityMSDRequest 0 Send_FacilityMSDAck 0 Send_FacilityMSDReject 0 Send_FacilityCLCRequest 0 Send_FacilityCLCAck 0 Send_FacilityStartH245 0 Send_Error 0 Recv_Setup 0 Recv_CallPr...

Page 2583: ...ges CallProceeding Statistics of CallProceeding messages Alerting Statistics of Alerting messages Connect Statistics of Connect messages ReleaseComplete Statistics of ReleaseComplete messages FacilityIndUserInput Statistics of UserInput messages FacilityTCSRequest Statistics of TCS Request messages FacilityTCSAck Statistics of TCS Acknowledgement messages FacilityTCSReject Statistics of TCS Reject...

Page 2584: ...oice subscriber line line number View Any view Parameter line number Subscriber line number Description Use the display voice subscriber line command to view the configuration information of the subscriber line such as the type status codec mode receive and transmit gain and so on Related command subscriber line Example Display the configuration information about E M voice subscriber line 5 0 Tabl...

Page 2585: ...Index 1 458 Index 2 9 Index 3 9 Index 4 9 Index 5 9 Index 6 3 Index 7 12 Index 8 12 Index 9 30 Index 10 300 Index 11 3200 Index 12 375 Timer Dial Interval 10 Timer Wait Digit 5 Timer Ring Back 60 Delay Send dtmf 300 E M Physical Wire 4 Wire E M Type V Slic Gain 0 8 db Physical Information Card Type E M Physical State 1 Logical State 1 Voice State Uninstall ResetCount 0 InPkts 0 OutPkts 0 InBytes 0...

Page 2586: ...Wire Cable type of analog E M voice interface E M Type Circuit type of analog E M voice interface Slic Gain SLIC gain configuration of analog E M voice interface Physical Information Physical statistics information Card Type Type of the voice interface card Physical State Physical state of the voice interface Logical State Logical state of the voice interface Voice State Call state on the voice in...

Page 2587: ...e IP packets that carry the RTP stream of VoIP voice entity to af41 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 2 voip Sysname voice dial entity2 dscp media af41 dtmf amplitude Syntax dtmf amplitude value undo dtmf amplitude View Voice view Parameter value DTMF amplitude in 0 1 dBm increments in the range of 9 0 to 7 0 Description Use the dtmf ampli...

Page 2588: ... level Use the undo dtmf sensitivity level command to restore the default detection sensitivity level By default the DTMF detection sensitivity level is high This command is valid only for FXS FXO interfaces Example Set the DTMF detection sensitivity level of voice subscriber line 1 0 to low Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname voice line1 0 dtmf sensit...

Page 2589: ... an integer in the range of 0 to 12 value Threshold corresponding to the specified index The value range varies with indexes For details see Table 682 According to the energy level of the row and column frequencies as well as the energy level of their double frequencies the system determines whether the input DTMF digit is valid The maximum energy of the input signal in the row frequency group is ...

Page 2590: ...st energy level from the column frequency group to COLMAX The ratio must be lower than this limit for the input signal to be recognized as a DTMF digit 18 to 3 dB with a default of 9 dB The smaller the value is the higher the detection reliability is However the sensitivity drops 6 The upper limit of ROW2nd ROWMAX An input signal is recognized as a DTMF digit only when ROW2nd ROWMAX 6 18 to 3 dB w...

Page 2591: ...cho canceller Syntax echo canceller enable tail length milliseconds undo echo canceller enable tail length View FXS FXO E M voice subscriber line view Parameter enable Enables the echo cancellation EC function 10 The frequency of the first extra frequency point specified for detection In addition it must be a frequency 100 Hz greater than or less than the row and column frequency groups 300 to 3 4...

Page 2592: ...r parameter Syntax echo canceller parameter convergence rate value max amplitude value mix proportion ratio value talk threshold value undo echo canceller parameter convergence rate max amplitude mix proportion ratio talk threshold View Voice view Parameter convergence rate value Sets the convergence rate of comfort noise amplitude It ranges from 0 to 511 The greater the value the quicker the conv...

Page 2593: ...e subscriber line view Parameter 2 wire Chooses the 2 wire analog E M wire scheme 4 wire Chooses the 4 wire analog E M wire scheme Description Use the em phy parm command to configure a wire scheme for the analog E M subscriber line Use the undo em phy parm command to restore the default By default the 4 wire analog E M cable is selected This command is only applicable only to the analog E M subsc...

Page 2594: ...mber Description Use the em signal command to configure a start mode for an analog E M voice subscriber line Use the undo em signal command to restore the default start mode By default the immediate start mode is selected for the analog E M subscriber line Related command delay Example Configure delay mode Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname voice line...

Page 2595: ...nnection is disabled As there is no ability negotiation for fast connection mode the ability confirmation of the two parties is determined by the called gateway When the router acts as an originating gateway you can set whether or not to apply fast connection mode for each originated call When the router acts as a terminating gateway the configuration of the voip called start command will determin...

Page 2596: ...mmand to configure the off hook mode for the FXO voice subscriber line Use the undo hookoff mode command to restore the default By default the FXO voice subscriber line operates in the immediate off hook mode Example Specify an FXO voice subscriber line to operate in the delay off hook mode Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname subscriber line 1 0 hookof...

Page 2597: ...XO voice subscriber line by restricting incoming calls The bound FXS and FXO voice subscriber lines must come from the same device Example Specify the delay off hook mode for the FXO voice subscriber line and bind FXS voice subscriber line 1 24 to the FXO voice subscriber line Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname subscriber line 1 0 hookoff mode delay b...

Page 2598: ...edance R700 700 ohm real impedance R750 750 ohm real impedance R800 800 ohm real impedance R850 850 ohm real impedance R900 900 ohm real impedance R950 950 ohm real impedance Description Use the impedance command to configure the current electrical impedance on an FXO voice subscriber line Use the undo impedance command to restore the default By default the electrical impedance on the FXO voice su...

Page 2599: ...mplate match string undo match template View POTS VoIP VoFR entity view Parameter match string Number template Its format is string T T with the maximum length of 31 characters The characters are described in the following Appears at the beginning of a calling number to indicate that the number is E 164 compliant Is the last character indicating the end of the number That means the entire called n...

Page 2600: ...4 but also an expression that can match a group of numbers such as 010 1 5 678 They Table 683 Meanings of the characters in string Character Meaning 0 9 Numbers from 0 to 9 Each means a digit and Each means a valid digit A wildcard It can match any digit of a valid number For example 555 matches any string that begins with 555 and with four additional characters The character or characters right i...

Page 2601: ...gure a match template for VoIP entity 10 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 010 voip Sysname voice dial entity10 match template 5557922 nlp on Syntax nlp on undo nlp on View Voice subscriber line view Parameter None Description Use the nlp on command to enable the EC nonlinear processing function on a voice interface Use the undo nlp on com...

Page 2602: ...el on Example Configure DTMF out of band transmission in the fast connection mode for VoIP voice entity 10 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 10 voip Sysname voice dial entity10 fast connect Sysname voice dial entity10 outband h225 payload size Syntax payload size g711 g723 g726r16 g726r24 g726r32 g726r40 g729 time length undo payload size ...

Page 2603: ...figure the voice packetization period for different codecs Use the undo payload size command to restore the default By default the voice packetization period for g971 is 20 milliseconds and that for g723 g726 and g726 is 30 milliseconds In voice dial program view you can configure global attributes for voice entities namely the default voice packetization period of the DSP for each codec Related c...

Page 2604: ...e range of 14 0 to 13 9 with one digit after the decimal point Description Use the receive gain command to configure the gain value at the voice subscriber line input end Use the undo receive gain command to restore the default By default the input gain on the voice interface is 0 dB This command is applicable to FXO FXS analog E M subscriber lines and digital E1 voice subscriber line When the voi...

Page 2605: ...ver cannot have the same number you cannot register a POTS entity with a GK and a SIP server at the same time In other cases you may need to register only some port numbers on the gateway with a GK or a SIP server to meet some special requirements You can use the undo register number command to specify the voice entity whose number does not need to be registered Related command match template Exam...

Page 2606: ...mmand to reset IPP statistics Related command display voice ipp statistic Example Clear IPP statistics Sysname reset voice ipp statistic reset voice iva statistic Syntax reset voice iva View User view Parameter None Description Use the reset voice iva statistic command to clear IVA statistics Related command display voice iva statistic Example Clear IVA statistics Sysname reset voice iva statistic...

Page 2607: ...ystem view Sysname voice setup Sysname voice dial program Sysname voice dial entity 10 voip Sysname voice dial entity10 rtp payload type nte 102 send busytone Syntax send busytone enable time seconds undo send busytone enable time View Analog FXO voice subscriber line view Parameter enable Enables busy tone sending on the FXO interface time seconds Duration of busy tone in seconds in the range of ...

Page 2608: ... voice entity to a trunk other than FXS voice subscriber line Example Enable the local end to play ringback tone Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 10 voip Sysname voice dial entity10 fast connect Sysname voice dial entity10 send ring shutdown voice entity view Syntax shutdown undo shutdown View POTS VoIP entity view Parameter None Descript...

Page 2609: ...to FXO FXS analog E M subscriber lines and E1 T1 voice subscriber line The POTS interface on the voice interface card will be down and there will be no sound on the connected telephone after the command shutdown is executed and whereas the specified voice subscriber line will be up after the undo shutdown command is executed Example Shut down voice subscriber line 1 0 Sysname system view Sysname v...

Page 2610: ...n to 10 seconds Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname voice line1 0 silence th span 20 10 slic gain Syntax slic gain 0 1 undo slic gain View Analog E M voice subscriber line view Parameter 0 Sets the output gain of the subscriber line interface circuit SLIC chip to 0 8 dB 1 Sets the output gain of the SLIC chip to 2 1 dB Description Use the slic gain com...

Page 2611: ...ial interval seconds undo timer dial interval View FXS FXO E M voice subscriber line view Parameter seconds Maximum interval in seconds for dialing the next digit in the range of 1 to 300 Description Use the timer dial interval command to configure the maximum interval for dialing the next digit Use the undo timer dial interval command to restore the default setting By default the maximum interval...

Page 2612: ...terminated Example Set the maximum interval between off hook and dialing the first digit to 10 seconds Sysname system view Sysname voice setup Sysname voice subscriber line 1 0 Sysname voice line1 0 timer first dial 15 timer hookoff interval Syntax timer hookoff interval milliseconds undo timer hookoff interval View FXO voice subscriber line view Parameter milliseconds Interval between on hook and...

Page 2613: ...ring back Syntax timer ring back seconds undo timer ring back View FXS FXO E M voice subscriber line view Parameter seconds Maximum duration in seconds of playing ringback tone in the range of 5 to 120 Description Use the timer ring back command to configure the maximum duration of playing the ringback tone Use the undo timer ring back command to restore the default By default the maximum duration...

Page 2614: ...tax transmit gain value undo transmit gain View FXS FXO E M voice subscriber line view Parameter value Voice output gain in dB in the range of 14 0 to 13 9 with one digit after the decimal point Description Use the transmit gain command to configure the voice subscriber line output end gain value Use the undo transmit gain command to restore the default value By default the output gain on the voic...

Page 2615: ...uter Being the called gateway it shall be decided whether or not to enable the tunnel function based on the status of the calling gateway That is if the function is enabled on calling gateway it will also be enabled on the called gateway Otherwise tunnel function is disabled on both sides To implement this function you need to carry out the voip called tunnel enable command to enable the fast conn...

Page 2616: ...1 0 Sysname voice line1 0 type 3 vad on Syntax vad on undo vad on View POTS VoIP VoFR entity view Parameter None Description Use the vad on command to enable voice activity detection VAD function Use the undo vad on command to disable silence detection function By default the silence detection function is disabled Note that G 711 codec does not support VAD The voice activity detection VAD discrimi...

Page 2617: ...in Hz in the range of 50 to 3 600 p1 Signal amplitude 1 in the range of 50 to 32 767 p2 Signal amplitude 2 in the range of 50 to 32 767 p3 Duration of a single tone in milliseconds in the range of 10 to 1 000 p4 Duration error of a single tone in milliseconds in the range of 0 to 500 p5 Duration of silence in milliseconds in the range of 10 to 1 000 p6 Duration error of silence in milliseconds in ...

Page 2618: ...busy tone detect auto 0 2 0 Save the frequency of the busy tone indexed as 0 duration limit of high low level duration error of high low level and duration difference of high low level Sysname system view Sysname voice setup Sysname voice vi card busy tone detect custom 2 0 99 450 450 8000 8000 800 300 500 500 500 vi card cptone custom Syntax vi card cptone custom busy tone congestion tone dial to...

Page 2619: ...ne type in the range of 0 to 3 Description Use the vi card cptone custom command to configure parameters for a customized call progress tone Use the undo vi card cptone custom command to remove the configuration By default no customized call progress tone is configured After you configure parameters for a customized call progress tone they do not take effect immediately They do only after you exec...

Page 2620: ...escription Use the voice setup command to enter voice view and enable voice services Example Enter voice view and enable voice services Sysname system view Sysname voice setup voip called tunnel enable Syntax voip called tunnel enable undo voip called tunnel enable View Voice view Parameter None Description Use the voip calledtunnel enable command to enable the tunnel function on the called gatewa...

Page 2621: ...ed in fast connection procedures the faculties of the two parties are determined by the GW If a router acts as a calling GW you can enable or disable fast connection for each channel of initiated calls If it acts as a called GW it will use or not use the fast connection mode to initialize calls depending on the parameters of the voip call start command in the case that the calling GW uses the fast...

Page 2622: ...ce voip timer voip to pots 3 vqa dscp Syntax vqa dscp media signal dscp value undo vqa dscp media signal View Voice view Parameter media Global DSCP value in the ToS field of the IP packets that carry RTP streams signal Global DSCP value in the ToS field of the IP packets that carry voice signaling dscp value DSCP value in the range 0 to 63 or the keyword af11 af12 af13 af21 af22 af23 af31 af32 af...

Page 2623: ...ame voice vqa dscp signal af41 vqa dsp monitor buffer time Syntax vqa dsp monitor buffer time time undo vqa dsp monitor buffer time View Voice view Parameter buffer time time Duration in milliseconds of monitoring DSP buffer data in the range 180 to 480 Description Use the vqa dsp monitor buffer time command to set duration of monitoring DSP buffered data Use the undo vqa dsp monitor buffer time c...

Page 2624: ...4 CHAPTER 173 VOIP CONFIGURATION COMMANDS Example Set the duration of monitoring DSP buffered data to 270 milliseconds Sysname system view Sysname voice setup Sysname voice vqa dsp monitor buffer time 270 ...

Page 2625: ...ginate calls string A character string consisting of 0123456789 Table 685 describes these characters Table 685 Description of characters in a string Character Meaning 0 9 Digits 0 through 9 and Indicates a valid digit each Wildcard which can match any valid digit For example 555 can match any number beginning with 555 and ending in four additional characters Indicates the sub expression before it ...

Page 2626: ...command match template on page 2599 Example Configure voice entity 2 to accept calls from the number 660268 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 2 pots Sysname voice dial entity2 caller permit 660268 Configure voice entity 2 to accept calls from the number beginning with 20 Sysname voice dial entity2 caller permit 20 dial prefix Syntax dial p...

Page 2627: ...r together through the FXO interface For details about number sending refer to send number on page 2642 When the number with a prefix exceeds 31 digits only the first 31 digits are sent Related command match template on page 2599 and send number Example Specify 0 as a prefix Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 3 pots Sysname voice dial entit...

Page 2628: ...ght left Reserves from right to left the digits which the dots correspond to in a number Description Use the dot match command to configure the dot match rule of the number substitution rule list Use the undo dot match command to restore the dot match rule to the default This command only applies to the rules of the number substitution rule list in current view By default the dot match rule is end...

Page 2629: ... preferred number substitution rule By default no preferred number substitution rule is configured In a voice call the system first uses the rule defined by the first rule command for number substitution If this rule fails to apply or is not configured it will try to apply all other rules in order until one or none of them applies Example Specify rule 4 in number substitution list 20 as the prefer...

Page 2630: ... Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial max call 1 5 max call in voice entity view Syntax max call set number undo max call View POTS VoIP VoFR voice entity view Parameter set number Number identifying a maximum call connection set number of the maximum call connection set configured in voice dial program view in the range of 1 to 2147483647 Descripti...

Page 2631: ...configure a global number match policy Use the undo number match command to restore the default number match policy By default the shortest number match policy is adopted Related command match template on page 2599 and terminator n If the longest number match policy is configured and the rule command with the input format argument ending in a dollar sign is carried out after a user dials a number ...

Page 2632: ...rogram Sysname voice dial number priority peer enable number substitute Syntax number substitute list number undo number substitute list number all View Voice dial program view Parameter list number Serial number of a number substitution rule list in the range of 1 to 2147483647 all Specifies all number substitution rule lists Description Use the number substitute command to create a number substi...

Page 2633: ...entities and the selection priority rules see select rule rule order on page 2638 select rule search stop on page 2639 and select rule type first on page 2640 the router will first select the voice entity with the highest priority to initiate a call When this voice entity fails the router will select a voice entity with the second highest priority to initiate a call Example Set the priority level ...

Page 2634: ...pe output number type numbering plan input numbering plan output numbering plan undo rule rule tag all View Voice number substitute view Parameter all Deletes all number substitution rules rule tag Number identifying a substitution rule in the range of 0 to 31 input number Input string of a number involved in number substitution in the format of string up to 31 characters The signs are explained a...

Page 2635: ...rgument are discarded 3 Extra dots in the input number argument are discarded If you use the dot match command to set the dot match rule to right left from right to left or left right from left to right and the number of dots in the input number argument is greater than or equal to that in the output number argument the dot handling includes two cases For the right left dot match rule digits which...

Page 2636: ...ut number type Type of an output number involved in number substitution For the values see Table 689 numbering plan Specifies a numbering plan input numbering plan Input numbering plan involved number substitution For the values see Table 690 Table 688 Input number type Number type Description abbreviated Abbreviated number any Any number international International number national National number...

Page 2637: ...on rules for number substitution rule list 1 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial number substitute 1 Configure number substitution rule 1 for number substitution rule list 1 as follows Input number 91 Output number 1 Sysname voice dial substitute1 rule 1 91 1 isdn ISDN telephone numbering plan national National numbering plan private Private number...

Page 2638: ...national Input numbering plan any Output numbering plan telex Sysname voice dial substitute1 rule 3 93 3 number type any intern ational numbering plan any telex select rule rule order Syntax select rule rule order 1st rule 2nd rule 3rd rule undo select rule rule order View Voice dial program view Parameter 1st rule First rule in the match order for voice entity selection The value ranges from 1 to...

Page 2639: ...n rule is applied there will be no voice entity selection conflict Therefore the random selection rule can only serve as a rule with the lowest priority or serve as a unique rule separately Related command select rule search stop select rule type first and priority Example Set the rules in the sequence of exact match priority longest idle time Sysname system view Sysname voice setup Sysname voice ...

Page 2640: ...s that are matched in accordance with rules Related command select rule rule order and select rule type first Example Configure the maximum number of voice entities found to 5 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial select rule search stop 5 select rule type first Syntax select rule type first 1st type 2nd type 3rd type undo select rule type first View...

Page 2641: ...iorities The system selects the first type first then the second type and finally the third type Related command select rule rule order and select rule search stop Example Configure the system to select VoIP voice entities in the order of VoIP POTS VoFR Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial select rule type first 2 1 3 select stop Syntax select stop ...

Page 2642: ...ommand to restore the default number sending mode By default the truncate mode is used Note that This command applies to only POTS voice entities This command is used to control how to send called numbers to PSTN You can specify to send some digits defined by the digit number argument from right to left or all digits of called numbers You can also specify to send truncated called numbers namely th...

Page 2643: ... bound to a voice subscriber line or voice entity That is to say no number substitution is performed Before carrying out the this command you must first use the number substitute list number command to configure a number substitution rule list in voice dial program view and then use the rule command to configure rules for the list n According to network requirements you can complete number substit...

Page 2644: ...7 Description Use the substitute command to bind the calling called number of incoming outgoing calls to the specified number substitution rule list Use the undo substitute incoming call command to remove the binding By default no number substitution rule list is bound That is to say no number substitution is performed You should follow these rules when using this command At most 32 number substit...

Page 2645: ...w Voice dial program view Parameter character Dial terminator which can be any of 0 through 9 pound sign or asterisk Description Use the terminator command to configure a special character as the dial terminator for length variable telephone numbers Use the undo terminator command to remove the dial terminator configuration By default no dial terminator is configured Related command match template...

Page 2646: ...2646 CHAPTER 174 DIAL PLAN CONFIGURATION COMMANDS ...

Page 2647: ...lling party information from the originating point By default the terminating point does not request calling party information from the originating point during call connection n Configure the local end with this command to support automatic number identification This command applies to R2 signaling only Normally the all keyword is configured Use the ka keyword only when required by the connected ...

Page 2648: ...te digits are collected By default the number of digits to be collected before the calling party information is 1 This command applies to R2 signaling only Related command cas timer reverse and renew Example Start requesting calling number or caller identifier after receiving three digits Sysname system view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set 0 timeslot list 1 31 signal r2 Sysna...

Page 2649: ...1 0 Sysname e1 1 0 timeslot set 0 timeslot list 1 31 signal r2 Sysname e1 1 0 cas 0 Sysname cas1 0 0 undo answer enable callmode Syntax callmode segment terminal undo callmode View R2 CAS view Parameter segment Specifies the connection mode for an R2 call as segment to segment terminal Specifies the connection mode for an R2 call as terminal to terminal Description Use the callmode command to conf...

Page 2650: ...ear forward ack enable undo clear forward ack enable View R2 CAS view Parameter None Description Use the clear forward ack enable command to enable the terminating point to respond with a clear back signal when the originating point the calling party disconnects a call Use the undo clear forward ack enable command to disable the terminating point to respond with a clear back signal when the origin...

Page 2651: ...criber line Syntax display voice subscriber line slot number ts set number 15 23 View Any view Parameter slot number Number of the voice subscriber line automatically created upon creation of a TS group or ISDN PRI set ts set number Number of the TS group that has been created 15 Indicates the subscriber line is created on an E1 interface 23 Indicates the subscriber line is created on a T1 interfa...

Page 2652: ...atus Status of the voice subscriber line Call Status Status of the voice protocol call Description Information about the voice subscriber line Private Line Private line dialup mode of the voice subscriber line Cng Comfort noise setting on the voice subscriber line The subscriber line s description The description of the subscriber line Echo Canceller Echo cancellation setting on the voice subscrib...

Page 2653: ...ing setting applies to transmitted R2 line signals ABCD ABCD bit pattern of R2 line signaling in the range of 0000 to 1111 Description Use the dl bits command to configure the ABCD bit pattern for R2 signals Use the undo dl bits command to restore the defaults This command applies to R2 signaling only You may need to use this command to accommodate to the ABCD bit pattern schemes used in different...

Page 2654: ...view Parameter None Description Use the dtmf enable command to set the way receiving and transmitting R2 signals to DTMF mode Use the undo dtmf enable command to restore the default By default multifrequency compelled MFC mode is adopted This command applies to R2 signaling only Related command timer dtmf Example Adopt DTMF mode to receive and send R2 signals Sysname system view Sysname controller...

Page 2655: ...enable Syntax final callednum enable undo final callednum enable View R2 CAS view Parameter None Description Use the final callednum enable command to enable the originating point to send a number terminator to the terminating point after it sends all digits of a called number After the terminating point receives this terminator it stops requesting the called number Use the undo final callednum en...

Page 2656: ...metering signal processing By default R2 metering signal processing is disabled This command applies to R2 signaling only When the terminating point supports metering signals the system may send a forced release signal instead of a clear back signal to release the line This is to avoid collision between the clear back signal sent by the called party and the metering signal Example Enable R2 meteri...

Page 2657: ... view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set 0 timeslot list 1 31 signal r2 Sysname e1 1 0 cas 0 Sysname cas1 0 0 group b enable line Syntax line slot number ts set number 15 23 undo line View POTS voice entity view Parameter slot number Number of the E1 T1 interface corresponding to a subscriber line ts set number Number of the TS group created on the E1 T1 interface 15 Indicates t...

Page 2658: ...tina Uses Argentinean R2 signaling standard australia Uses Australian R2 signaling standard bengal Uses Bengalee R2 signaling standard brazil Uses Brazilian R2 signaling standard china Uses Chinese R2 signaling standard custom Uses customized R2 signaling standard hongkong Uses Hongkong R2 signaling standard india Uses Indian R2 signaling standard indonesia Uses Indonesian R2 signaling standard it...

Page 2659: ...C and D signaling bits and other parameters depending on the default settings of configured national R2 signaling variants If the custom keyword is configured you can customize specific signaling exchange procedures and signal values in R2 signaling to accommodate to countries Related command register value and force metering enable Example Adopt Hongkong default R2 signaling Sysname system view S...

Page 2660: ...rface and 1 to 24 on a T1 interface You may specify a single timeslot by specifying a number a range of timeslots by specifying a range in the form of number1 number2 or several discrete timeslots by specifying number1 number2 number3 When the range argument is not specified only TS15 is bound Description Use the pri set command to bind timeslots on an E1 or T1 interface into a PRI set Use the und...

Page 2661: ...oller e1 1 0 Sysname e1 1 0 pri set timeslot list 1 2 8 12 re answer enable Syntax re answer enable undo re answer enable View R2 CAS view Parameter None Description Use the re answer command to enable the originating point to support re answer signal processing Use the undo re answer enable command to restore the default By default the originating point does not support re answer signal processin...

Page 2662: ... subscriber idle View R2 CAS view Parameter billingcategory value Specifies the billing category value in the range 1 to 16 It configures the KA signal in R2 signaling The KA signal is sent by the originating point forward to the originating toll office or originating international exchange to indicate calling category The signal provides two types of information for this call connection billing c...

Page 2663: ...d next called number signal value in the range 1 to 16 req nextcallingnum value Specifies the send next calling number signal value in the range 1 to 16 req switch groupb value Specifies the changeover to Group B signal value in the range 1 to 16 subscriber abnormal value Specifies the subscriber s line abnormal signal value in the range 1 to 16 subscriber busy value Specifies the subscriber s lin...

Page 2664: ...he callingcategory keyword but not the send billing category billingcategory signal Related command group b enable Example Request the originating point to send calling category by configuring a backward signal signal value 7 Sysname system view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set 0 timeslot list 1 31 signal r2 Sysname e1 1 0 cas 0 Sysname cas1 0 0 register value req callingcateg...

Page 2665: ... command takes either of the two values 0 for normal or 1 for inversion The default is 0000 that is inversion disabled Description Use the reverse command to configure line signal inversion mode Use the undo reverse command to invert ABCD bits of the current line signaling whose values are 1 after the reverse command is executed This command applies to R2 signaling only You may configure an interf...

Page 2666: ...mand allowing the terminating point not to acknowledge received seizure signals Related command timer dl seizure Example Disable the terminating point to send seizure acknowledgement signals Sysname system view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set 0 timeslot list 1 31 signal r2 Sysname e1 1 0 cas 0 Sysname cas1 0 0 undo seizure ack enable select mode Syntax select mode max maxpoll...

Page 2667: ...on Example Set the trunk routing mode for TS group 5 to max on interface E1 1 0 Sysname system view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set 5 timeslot list 1 31 signal r2 Sysname e1 1 0 cas 5 Sysname cas1 0 5 select mode max sendring ringbusy enable Syntax sendring ringbusy enable undo sendring ringbusy enable View R2 CAS view Parameter None Description Use the sendring ringbusy enab...

Page 2668: ... or 1 Description Use the signal value command to configure the ABCD bit patterns of idle receive receive seized idle transmit and transmit seized signals on the digital E M voice subscriber line Use the undo signal value command to restore the defaults By default the ABCD bit patterns of the receive idle signal and the transmit idle signal are 1101 and the ABCD bit patterns of the receive seized ...

Page 2669: ...acters such as pound signs and asterisks in addition to digits n You cannot use the special character command to assign a special character different signal values To ensure that the device can process calls correctly assign special characters different signal values Example Assign the pound sign the register signal code 11 Sysname system view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set ...

Page 2670: ...subscriber line 1 0 15 Sysname voice line1 0 15 tdm clock Syntax tdm clock internal line primary undo tdm clock View E1 T1 interface view Parameter internal Sets the time division multiplexing TDM clock source on the E1 T1 interface to internal crystal oscillator TDM clock The E1 T1 interface thus obtains clock from the crystal oscillator on the mainboard If it fails to do that the interface obtai...

Page 2671: ... internal This is to prevent frame slips and bit errors You can do this however if the remote E1 T1 interfaces adopt the line clock source When there is no VCPM on the mainboard the configuration of each MIM FIC is independent but only one interface is allowed to be set to line primary on the same device Example Set the TDM clock source on interface E1 1 0 to line clock Sysname system view Sysname...

Page 2672: ...should send back a seizure acknowledgement signal within the timeout time re answer time Timeout time in milliseconds of R2 re answer signal configured at the originating point in the range 100 to 60 000 milliseconds with a default of 1 000 The originating point releases the line if it does not receive another answer signal from the terminating point after it recognizes the clear back signal relea...

Page 2673: ...e this command you must configure the dtmf enable command Example Configure the R2 signaling to start sending DTMF signals 800 milliseconds later after receiving a seizure acknowledgement signal Sysname system view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set 0 timeslot list 1 31 signal r2 Sysname e1 1 0 cas 0 Sysname cas1 0 0 dtmf enable Sysname cas1 0 0 timer dtmf 800 timer register pul...

Page 2674: ...imer register complete group b Syntax timer register complete group b time undo timer register complete group b View R2 CAS view Parameter group b time Maximum time in milliseconds that the originating point waits for R2 Group B signals in the range of 100 to 90 000 Description Use the timer register complete group b command to configure the timeout value of R2 group B signals After the terminatin...

Page 2675: ...iseconds and that of playing the busy tone is 30 000 milliseconds This command applies to R2 signaling only Related command send ring on page 2608 Example Set the duration of playing the ringback tone to 10 000 milliseconds when R2 signaling is adopted Sysname system view Sysname controller e1 1 0 Sysname e1 1 0 timeslot set 0 timeslot list 1 31 signal r2 Sysname e1 1 0 cas 0 Sysname cas1 0 0 time...

Page 2676: ... signaling r2 Adopts ITU T Q 421 R2 digital line signaling This is the one most commonly used Description Use the timeslot set command to create a TS group and specify a signaling mode for it on the E1 T1 interface Use the undo timeslot set command to remove the TS group By default no TS group is configured Only after you create a TS group can you use the subscriber line command to enter subscribe...

Page 2677: ...r R2 signaling to operate normally for call connection you need to ensure that the trunking mode is incoming at one end of the trunk and outgoing at the other end If both ends are using bidirectional trunking mode use the select mode command to tune trunking policy This is to prevent timeslot contention In addition avoid using bidirectional trunking mode at one end and outgoing mode at the other e...

Page 2678: ...ecify a single timeslot by specifying a number a range of timeslots by specifying a range in the form of number1 number2 or several discrete timeslots by specifying number1 number2 number3 Examples are 1 14 15 17 31 Description Use the ts command to maintain the trunk circuit of specified timeslots n The ts query command is available in R2 CAS view digital E M CAS view and digital LGS CAS view Rel...

Page 2679: ...ies the maximum transmission rate of the fax The default value is voice 2400 Sets the maximum transmission rate to 2400 bps 4800 Negotiates the baud rate first in accordance with the V 27 fax protocol The maximum transmission rate is 4800 bps 9600 Negotiates the baud rate first in accordance with the V 29 fax protocol The maximum transmission rate to 9600 bps 14400 Negotiates the baud rate first i...

Page 2680: ...T 38 packets in the range of 0 to 2 lb redundancy number Number of redundant low speed T 38 packets in the range of 0 to 5 train mode Specifies the fax training mode By default the point to point training mode is adopted local Adopts local training ppp Adopts point to point training Description Use the default entity fax command to set fax parameters to the default values globally Use the undo def...

Page 2681: ...T38 0 FAX_VOIP_T38 0 Failure 0 FAX_VOFR_STANDARD_SWITCH 0 FAX_VOFR_FRF11_TRUNK 0 FAX_VOFR_FRF11_SWITCH 0 FAX_VOFR_MOTOROLA 0 FAX_VOIP_STDT38 0 FAX_VOIP_T38 0 Last Time 00 00 00 FAX_VOFR_STANDARD_SWITCH 00 00 00 FAX_VOFR_FRF11_TRUNK 00 00 00 FAX_VOFR_FRF11_SWITCH 00 00 00 FAX_VOFR_MOTOROLA 00 00 00 FAX_VOIP_STDT38 00 00 00 FAX_VOIP_T38 00 00 00 Processed Pages 0 FAX_VOFR_STANDARD_SWITCH 0 FAX_VOFR_...

Page 2682: ...Statistics of the number of connections released in the case that the DP does not start demodulation within the specified time WAIT_DP_BEG_MODULATE_TIMEOUT Statistics of the number of connections released in the case that the DP does not start modulation within the specified time WAIT_DP_END_DEMODULATE_TIMEOUT Statistics of the number of connections released in the case that the DP does stop demod...

Page 2683: ... is 14 400 bps and the fax protocol is V 17 If G 723 1 Annex A is adopted the fax baud rate is 4 800 bps and the fax protocol is V 27 If G 726 is adopted the fax baud rate is 14 400 bps and the fax protocol is V 17 If G 729 is adopted the fax baud rate is 9 600 bps and the fax protocol is V 29 Description Use the fax baudrate command to configure the maximum fax baud rate SPOOL_TIME_OVER Statistic...

Page 2684: ...nfigure the gateway to use the ECM mode by force Use the undo fax ecm command to restore the default By default the ECM mode is not used on the gateway The fax ecm command is used to perform the forced restriction on the gateway If the facsimile terminals at both ends support the ECM mode but the non ECM mode has been configured on the gateway side then the non ECM mode is selected If either or bo...

Page 2685: ...ect try to adjust the transmit energy level Example Set the transmit energy level of the gateway carrier to 20 dBm Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 4 pots Sysname voice dial entity4 fax level 20 fax local train threshold Syntax fax local train threshold threshold undo fax local train threshold View POTS VoIP VoFR entity view Parameter thr...

Page 2686: ...n View POTS VoIP entity view Parameter None Description Use the fax nsf on common to configure the signal transmission mode of fax capability as a nonstandard mode Use the undo fax nsf on command to restore the default transmission mode By default the standard signal transmission mode of fax capability is adopted In some cases such as encrypted fax both facsimile terminals adopt a nonstandard facu...

Page 2687: ...ion Use the fax protocol command to configure the type of protocol used for fax communication with other devices Use the undo fax protocol command to restore the default type of protocol used for fax communication with other devices With the T 38 protocol adopted if the call adopts H 323 the fax will use the standard T 38 negotiation mode stipulated by the H 323 if the call adopts SIP the fax will...

Page 2688: ...ld be disabled Example Set to 2 the number of high speed redundant packets sent via the T 38 fax protocol Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 4 pots Sysname voice dial entity4 fax protocol t38 hb redundancy 2 fax train mode Syntax fax train mode local ppp undo fax train mode View POTS VoIP VoFR entity view Parameter local Adopts the local tr...

Page 2689: ...ing the T 38 capability description in its capability set By default T 38 capability description is contained Because NetMeeting does not support T 38 capability description parsing you must disable the voice gateway in H 323 slow start mode from containing the T 38 capability description in its capability set to interwork with NetMeeting n This command has global significance The execution of thi...

Page 2690: ... CONFIGURATION COMMANDS Example Disable the voice gateway in H 323 slow start mode from containing T 38 capability description in its capability set Sysname system view Sysname voice setup Sysname voice undo voip h323 conf tcs t38 ...

Page 2691: ...ay Each area ID identifies a particular type of gateway for example 1 for the voice gateway and 2 for the video gateway depending on the agreement that the gateway and the gatekeeper reaches beforehand When a VoIP entity communicates with the gatekeeper the gatekeeper uses the received area ID to identify the type of the gateway You may assign up to 30 area IDs to the H 323 gateway Related command...

Page 2692: ... E164 ID 07552002 E164 ID 660019 Current GK information H323 ID 1962 E164 ID 1119 E164 ID 100 E164 ID 400 E164 ID 1234 E164 ID 07552001 E164 ID 07552002 E164 ID 660019 gk client Syntax gk client View Voice view Parameter None Table 697 Description on the fields of the display voice gateway command Field Description GW_Status Registration state of the gateway GK_ID ID of the gatekeeper with which t...

Page 2693: ...o 65535 The default is 1719 Description Use the gk 2nd id command to configure the secondary gatekeeper for the gateway Use the undo gk 2nd id command to remove the secondary gatekeeper By default no secondary gatekeeper is specified for the gateway For reliability sake a backup mechanism is provided for gatekeepers In case the communication with a primary gatekeeper is abnormal for example timeou...

Page 2694: ...e undo gk id command to remove the primary gatekeeper By default no primary gatekeeper is specified for the gateway Only after you configure the information of the primary gatekeeper can the gateway locate the gatekeeper for registration Related command area id gw id gk 2nd id gw address ras on Example Configure the primary server setting its IP address to 1 1 1 1 name to gk center and RAS port to...

Page 2695: ... passwords in ciphertext simple Displays passwords in plain text password A string of 1 to 16 characters excluding spaces Description Use the gk security register pwd command to configure a password for registration with the gatekeeper Use the undo gk security register pwd command to remove the registration password By default no registration password is configured on the voice gateway Note that m...

Page 2696: ...ce and in addition this address and the address of the peer H 323 entity a gatekeeper terminal or MCU are reachable to each other Related command area id gk 2nd id gk id gw address and ras on Example Bind the source IP address 1 1 1 1 to the voice gateway Sysname system view Sysname voice setup Sysname voice gk client Sysname voice gk gw address 1 1 1 1 gw id Syntax gw id namestring undo gw id Vie...

Page 2697: ...en the gatekeeper client function is active can the normal communication be maintained between the voice gateway and the gatekeeper When the function is inactive the voice gateway cannot set up connection with the gatekeeper The GK client can be enabled only after the GK and gateway related configurations are completed Related command gw id gw address and gk id Example Activate gatekeeper client S...

Page 2698: ...way Use the undo voip h323 descriptor command to restore the default H 323 descriptor By default the descriptor is Wqldg0Hcwfydz You are recommended to use the default descriptor If at both ends are the devices of H3C you are recommended to configure the same descriptor for them Example Configure an H 323 descriptor mystring for the voice gateway Sysname system view Sysname voice setup Sysname voi...

Page 2699: ...atistics of Stack TPT Message UDP TCP SCTP TLS Total InMsg 0 0 0 0 0 OutMsgSucc 0 0 0 0 0 OutMsgFail 0 0 0 0 0 TXN Message Inv_Cli NonInv_Cli Inv_Srv NonInv_Srv Create Succ 0 0 0 0 Create Fail 0 0 0 0 Terminal Abnom 0 0 0 0 Request Message Inv Ack Bye Can Opt Reg Inf Prk Upd In 0 0 0 0 0 0 0 0 0 Out 0 0 0 0 0 0 0 0 0 Response Message 1xx 2xx 3xx 4xx 5xx 6xx In 0 0 0 0 0 0 Out 0 0 0 0 0 0 Error Sta...

Page 2700: ...bnom Terminal exception Request Message Statistics of all SIP request messages including Inv Invite Ack Bye Can Cancel Opt Option Reg Register Inf Information Prk Prack Upd Update Each type of message can be displayed by In received Out sent Response Message Statistics of all SIP response messages including 1XX 2XX 3XX 4XX Cancel 5XX and 6XX Each type of message can be displayed by In received Out...

Page 2701: ...essages without headers rcvd Statistics of received messages without headers in SIP SDP decode failures Statistics of SDP decoding failures in SIP registration timeouts Statistics of registration timeouts in SIP retransmitted requests received Statistics of received transmission requests in SIP transaction timeouts Statistics of transaction timeouts in SIP Table 698 Description on fields of the di...

Page 2702: ... 1 2 Sysname voice dial entity10 outband sip proxy Syntax proxy ipv4 ip address port port number undo proxy ipv4 View SIP client view Parameter ipv4 ip address IPv4 address of the proxy server port port number Port number of the proxy server in the range of 1 to 65535 The default port number is 5060 Description Use the proxy command to configure proxy server information on the SIP UA Use the undo ...

Page 2703: ...ame voice sip Sysname voice sip sip server master 169 54 5 10 Sysname voice sip register enable on registrar ipv4 Syntax registrar ipv4 ip address port port number expires seconds slave undo registrar ipv4 slave View SIP client view Parameter ip address IP address of the registrar port port number Port number of the registrar in the range of 1 to 65535 The default port number is 5060 expires secon...

Page 2704: ... 169 54 5 10 port 1120 expires 120 reset voice sip Syntax reset voice sip View User view Parameter None Description Use the reset voice sip command to clear all the statistics about the SIP client Example Clear all the statistics about the SIP client Router reset voice sip sip Syntax sip View Voice view Parameter None Description Use the sip command to enter SIP client view Before you can configur...

Page 2705: ...ng a SIP request Sysname system view Sysname voice setup Sysname voice sip Sysname voice sip sip comp from sip comp agent Syntax sip comp agent product name product version undo sip comp agent View SIP client view Parameter agent product name product version Indicates the content of the User Agent header field in SIP request messages The product name and product version arguments respectively repr...

Page 2706: ... remove the configuration By default the Server header field in SIP response messages is not configured Examples Set the Server header field in SIP response messages to company 1 1 Sysname system view Sysname voice setup Sysname voice sip Sysname voice sip sip comp server company 1 1 sip domain Syntax sip domain domain name undo sip domain View SIP client view Parameter domain name Domain name of ...

Page 2707: ...source IP address is configured to be bound to the packets sent by the UA Note that the source IP address must be already assigned to a gateway interface You can use this command only when the SIP registration function is disabled Example Specify 1 1 1 1 as the source IP address bound to the packets sent by the UA Sysname system view Sysname voice setup Sysname voice sip Sysname voice sip source i...

Page 2708: ... to configure SIP authentication information Use the undo user command to restore the default By default the username and password in SIP client view are VOICE GATEWAY and VOICE SIP respectively while no SIP authentication information is configured in POTS entity view c CAUTION If realm is configured on the SIP UA ensure that the value is the same as that configured on the server Otherwise the SIP...

Page 2709: ... POTS entity you may use a number containing the wildcards of dot and T instead of using a standard E 164 number After enabling fuzzy telephone number registration the router retains the wildcard and substitutes the asterisk for the wildcard T when sending REGISTER messages You can use this command only when the SIP registration function is disabled n You may use fuzzy telephone number registratio...

Page 2710: ...2710 CHAPTER 178 SIP CONFIGURATION COMMANDS ...

Page 2711: ...umber of a VoFR entity in the range of 4 to 255 Description Use the address command to configure a channel to the peer voice gateway Use the undo address command to remove the configuration By default no channel to the peer voice gateway is configured Note that The FRF 11 sub channel number to be configured must be available That is the FRF 11 sub channel is not occupied A voice channel will be es...

Page 2712: ...fter the call is completed the frame relay will immediately remove the voice channel and release the corresponding FRF 11 sub channel The call control protocol used in the dynamic call mode is specified by executing the vofr command in interface DLCI view FRF 11 trunk mode A voice channel is established when you execute the address vofr static command The voice channel is directly used to establis...

Page 2713: ...1 0 fr dlci 100 Sysname fr dlci 100 cid select mode min poll display fr vofr info Syntax display fr vofr info serial interface number dlci number View Any view Parameter serial interface number Displays the FRF 11 sub channel information on a specified interface dlci number Virtual circuit number in the range of 16 to 1007 Description Use the display fr vofr info command to display the FRF 11 sub ...

Page 2714: ...ber Example Create a VoFR entity and number it 10 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 10 vofr outband vofr Syntax outband vofr undo outband View VoFR entity view Parameter None Description Use the outband vofr command to configure the out of band DTMF transmission mode Use the undo outband command to restore the default Table 700 Description...

Page 2715: ...kets carry a sequence number Routers of some manufacturers do not comply with the above rule but force VoFR packets to carry a sequence number when a specific codec is adopted If a call failure or severe voice distortion occurs when the device is interconnected with a router of a third party you can try making VoFR packets carry a sequence number The terminating voice gateway can determine whether...

Page 2716: ...me system view Sysname voice setup Sysname voice dial program Sysname voice dial entity 10 vofr Sysname voice dial entity10 timestamp trunk id Syntax trunk id string undo trunk id View VoFR entity view Parameter string PSTN dialed number a string of 1 to 31 characters Description Use the trunk id command to a PSTN dialed number in the FRF 11 trunk mode Use the undo trunk id command to restore the ...

Page 2717: ...y after the DLCI references such a frame relay class Otherwise no voice bandwidth will be available and call setup will fail Example Reserve a maximum bandwidth of 8 kbps for voice in frame relay class test1 view Sysname system view Sysname fr class test1 Sysname fr class test1 voice bandwidth 8000 reserved vofr Syntax vofr huawei compatible dce dte motorola compatible dce dte nonstandard compatib...

Page 2718: ...By default no VoFR operation mode is configured If the VoFR operation mode is set to Motorola compatible and the call mode is set to static FRF 11 trunk mode a call failure will occur In the Motorola compatible mode one DLCI can work in either the dynamic mode or the FRF 11 trunk mode In the Huawei compatible or Motorola compatible mode the T1 167 Annex G protocol is adopted In this case different...

Page 2719: ...length incoming calls are prohibited and received voice packets are dropped No signaling is exchanged in the FRF 11 trunk mode When one voice gateway receives the first voice packet from its peer voice gateway over a dedicated voice channel the former considers that a call is coming When either party involved in a call hangs up the peer voice gateway relative to the party who hangs up will still k...

Page 2720: ...2720 CHAPTER 179 VOFR CONFIGURATION COMMANDS ...

Page 2721: ...ble the RADIUS accounting function for users who dial some access number Use the undo accounting command to disable the RADIUS accounting function By default the RADIUS accounting function is disabled for users who dial access numbers On one voice gateway the RADIUS accounting function for one stage dialing users who dial a called number to originate a call after picking up the phone differs from ...

Page 2722: ...ounting did Syntax accounting did undo accounting did View Voice AAA client view Parameter None Description Use the accounting did command to enable the RADIUS accounting function for all one stage dialing users Use the undo accounting did command to disable the RADIUS accounting function By default the RADIUS accounting function is disabled for all one stage dialing users On one voice gateway the...

Page 2723: ...an Accounting_Start request or Accounting_Stop request to the RADIUS server before connecting or releasing a call and directly connects or releases the call without waiting for an acknowledgment from the RADIUS server stop only The voice gateway sends an Accounting_Stop request to the RADIUS server before releasing a call and directly releases the call without waiting for an acknowledgment from th...

Page 2724: ...IP calls If the authentication function is disabled users who dial the access number can directly make IP calls no matter whether they are legal The authentication function must be enabled before the authorization function When the authentication function is disabled the authorization function will automatically be disabled and meanwhile the authorization and undo authorization commands will be un...

Page 2725: ... and cannot make IP calls The authentication function must be enabled before the authorization function When the authentication function is disabled the authorization function will automatically be disabled and meanwhile the authorization did and undo authorization did commands will be unavailable Related command authorization did Example Enable the authentication function for one stage dialing us...

Page 2726: ... function for users who dial the access number 17909 Sysname voice dial anum17909 undo authorization authorization did Syntax authorization did undo authorization did View Voice AAA client view Parameter None Description Use the authorization did command to enable the authentication function for all one stage dialing users Use the undo authorization did command to disable the authorization functio...

Page 2727: ...e undo callednumber receive method command to restore the default By default users need to press the dial terminator after dialing all digits of a called number This command is applicable to both the one stage dialing process and two stage dialing process In the terminator mode the voice gateway can immediately originate a call only after users dial a called number and press the dial terminator an...

Page 2728: ...ocess by using the process config command Note that This command is used to configure the number of digits in a card number for the card number password process Once the number of digits is fixed all users who use the access number must enter a fixed length card number Otherwise the voice gateway will report an error The card digit command is available in access number view only after you use the ...

Page 2729: ...ng rule and the undo cdr all command to restore the values of buffer duration and threshold all to the defaults The voice gateway will save a certain amount of CDRs according to the configured rule When you set the number of CDRs that can be saved or the lifetime of CDRs the voice gateway will judge whether the existing CDRs will be deleted If so the voice gateway will prompt for confirmation and ...

Page 2730: ...on for all access numbers Related command gw access number and aaa client Example Display the configuration information and access numbers Sysname display voice access number AAA configuration accounting method start ack accounting did on authentication did off authorization did on call history rule cdr buffer 100 cdr duration 86400 cdr threshold 50 access number 17909 dialing process cardnumber a...

Page 2731: ...duration command cdr threshold CDR alarm threshold See cdr on page 2728 access number Access number for example 17909 See gw access number on page 2736 dialing process Two stage dialing process including card number password process caller number process caller number process with IVR See process config on page 2738 accounting Accounting function for two stage dialing users on Enabled off Disabled...

Page 2732: ... subscriber line of the voice gateway The value range of the line number argument varies with devices remote ip addr ip address Displays call records by callee s IP address The ip address argument represents a callee s IP address Description Use the display voice call history record command to display voice RADIUS call records If the ip address argument is specified the system displays call record...

Page 2733: ... 47 SendPackets 71 packages SendBytes 2982 bytes ReceivePackets 111 packages ReceiveBytes 4662 bytes Outgoing call leg 0 CalledNumber 2000 CallDuration 00h 00m 02s EncodeType G729R8 DecodeType G729R8 ReleaseCause Called hook on SignalType SIP IpAddress Port 1 1 1 19 5060 SetupTime Oct 20 2006 16 45 43 ConnectTime Oct 20 2006 16 45 45 ReleaseTime Oct 20 2006 16 45 47 SendPackets 111 packages SendBy...

Page 2734: ... sent SendBytes Bytes sent ReceivePackets Packets received ReceiveBytes Bytes received Outgoing call leg 0 Information of the outgoing call leg One call may involves multiple outgoing call legs 0 identifies one outgoing call leg CalledNumber Called number CallDuration Call duration EncodeType Encoding type DecodeType Decoding type ReleaseCause Call release cause SignalType Signaling protocol for e...

Page 2735: ...FaxVoiceSwitch 0 FaxTone 0 Table 703 Description on fields of the display voice radius statistic command Field Description VORDS AAA Messages from the voice RADIUS module to the AAA module Authen_Request Authentication_Request message Author_Request Authorization_Request message AcctReq_PstnCaller Accounting_Request message for PSTN caller AcctReq_VoipCaller Accounting_Request message for VoIP cal...

Page 2736: ...s numbers the voice gateway will give alarm information requiring you to make a confirmation You can press Y to delete all access numbers or press N to cancel the operation AcctRsp_PstnCaller Accounting_Response message for PSTN caller AcctRsp_VoipCaller Accounting_Response message for VoIP caller AcctRsp_PstnCalled Accounting_Response message for PSTN callee AcctRsp_VoipCalled Accounting_Response...

Page 2737: ...number 17909 Sysname voice dial anum17909 Add the access number 179 and enter access number view Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial gw access number 179 Sysname voice dial anum179 Delete the access number 17909 Sysname system view Sysname voice setup Sysname voice dial program Sysname voice dial undo gw access number 17909 Delete all access number...

Page 2738: ...ord for the access number 17909 Sysname voice dial anum17909 undo password digit process config Syntax process config callernumber cardnumber voice caller undo process config View Access number view Parameter callernumber Specifies the two stage dialing process as caller number process After a user dials an access number the voice gateway will continue to play dial tones prompting for a called num...

Page 2739: ...cess number the voice gateway will play prompt tones requiring the user to dial a called number In the card number password process with the authentication function disabled a user can enter any two numbers as a card number and password respectively to make an IP call as long as they meet the length requirements After a dialing process is specified parameters not related to the process are set to ...

Page 2740: ... refers to the number of redial attempts that is the number of dial attempts is the number of redial attempts plus 1 This command is unavailable in the caller number process For the card number password process you can use the redialtimes command to set times of reselecting a language and times of redialing a card number password or called number To make an IP call a user first dials an access num...

Page 2741: ...tlanguage View Access number view Parameter enable Enables the language selection function so that users can select a language to play prompt tones chinese Plays prompt tones in Chinese english Plays prompt tones in English Description Use the selectlanguage command to configure a language in which prompt tones are played in the caller number process with IVR Use the undo selectlanguage command to...

Page 2742: ...742 CHAPTER 180 VOICE RADIUS CONFIGURATION COMMANDS Sysname voice dial gw access number 17909 Sysname voice dial anum17909 process config voice caller Sysname voice dial anum17909 selectlanguage english ...

Reviews:

No comments

Related manuals for 20-20

Brand: D-Link Pages: 12

BB-HGW700A - Network Camera Router

Brand: Panasonic Pages: 10

Brand: Accelerated Pages: 10

Brand: Accelerated Pages: 4

Brand: BandLuxe Pages: 67

ROADRECORDER 8000

Brand: Safety Vision Pages: 40

Brand: Zonet Pages: 8

Brand: NEC Pages: 2

Brand: Idis Pages: 31

MasterBus Tanklevel Interface

Brand: Mastervolt Pages: 8

Brand: Variscite Pages: 18

Brand: UfiSpace Pages: 32

Blue Gate ISDN BRI Brave

Brand: Alphatech Pages: 6

Routers and Switches

Brand: Allied Telesis Pages: 15

Brand: Ruckus Wireless Pages: 4

WRT330N - Wireless-N Gigabit Gaming Router Wireless

Brand: Linksys Pages: 92

Brand: Xaptum Pages: 24

Brand: Alcatel-Lucent Pages: 612

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands