Netopia CLI 874 Cli Reference Manual Download Page 140 | Manualshive

Page: 140 / 207

background image

2-128 Command Line Interface Commands Reference

ike

phase1

{

name

|

index

}

initial-contact

{

yes

|

no

}

show

ike

phase1

{

name

|

index

}

initial-contact

no

ike

phase1

{

name

|

index

}

initial-contact

These commands set or display the specified IKE Phase1 profile’s send initial-contact message setting.

ike

phase1

{

name

|

index

}

negotiation

{

normal

|

initiate-only

|

respond-only

}

show

ike

phase1

{

name

|

index

}

negotiation

These commands set or display the specified IKE Phase1 profile’s negotiation setting.

ike

phase1

{

name

|

index

}

pfs

{

yes

|

no

}

show

ike

phase1

{

name

|

index

}

pfs

no

ike

phase1

{

name

|

index

}

pfs

These commands set, display, or disable the specified IKE Phase1 profile’s per fect for ward secrecy setting.

ike

phase1

{

name

|

index

}

port policy

{

"strict"

|

"permissive"

}

show

ike

phase1

{

name

|

index

}

port policy

These commands set or display whether or not IKE requires packets to originate from the IANA por t (500).

ike

phase1

{

name

|

index

}

sa

lifetime

{

seconds

|

kbytes

} {

non-negative-integer

|

none

}

show

ike

phase1

{

name

|

index

}

sa

lifetime

[ {

seconds

|

kbytes

} ]

no

ike

phase1

{

name

|

index

}

sa

lifetime

[ {

seconds

|

kbytes

} ]

These commands set, display, or disable one or both of the specified IKE Phase1 profile’s two SA lifetimes (in
seconds and/or kilobytes protected). Specifying neither the keyword

seconds

nor the keyword

kbytes

with the

show variant of this command displays both lifetime values. The keyword

none

is equivalent to the value zero,

and indicates that there is no lifetime of the specified type. The Phase1 SA lifetime minimum is 300 (seconds)
and the maximum is 1 (leap) year (31622400 seconds).

Note:

It is a run-time checked error if both of the IKE Phase 1 profile’s SA lifetime values are set to zero or

none

.

ike

phase1

{

name

|

index

}

sa

use-policy

{

new-sas-immediately

|

old-sas-until-expired

}

show

ike

phase1

{

name

|

index

}

sa

use-policy

These commands set or display the specified IKE Phase1 profile’s SA use policy.

ike

phase1

{

name

|

index

}

vendor-id

{

yes

|

no

}

show

ike

phase1

{

name

|

index

}

vendor-id

no

ike

phase1

{

name

|

index

}

vendor-id

These commands set, display, or disable the specified IKE Phase1 profile’s send vendor-id payload setting.

«
...
138
139
140
141
142
...
»

Summary of Contents for CLI 874

Page 1: ...Command Line Interface Commands Reference Firmware Version 8 7 4 Motorola Netopia ENT Series Routers...

Page 2: ...ed or expressed including but not limited to the implied warranties of merchantability and fitness for a particular purpose Motorola may make improvements or changes in the product s described in this...

Page 3: ...Interface configuration commands 2 18 Virtual LAN VLAN configuration commands 2 36 RADIUS Authentication Profile configuration commands 2 39 NetBIOS configuration commands 2 41 Generic WAN Interface...

Page 4: ...nnections Configuration Commands 2 98 Default Profile Configuration Commands 2 100 Frame Relay Configuration Commands 2 101 Miscellaneous Commands 2 103 IP Network Address Translation NAT Commands 2 1...

Page 5: ...ds 3 22 GRE Connection Profile Configuration Commands 3 23 CompuServe Login 3 24 IPSec IKE 3 26 Chapter 4 Motorola Netopia Router Text Configuration Upload 4 1 TFTP Text Configuration Upload Overview...

Page 6: ...6 Command Line Interface Commands Reference...

Page 7: ...firmware version is noted the commands given are supported on all platforms New Commands in Firmware Version 8 7 4 Firmware Version 8 7 4 adds new and revised commands for the following IP multicast...

Page 8: ...ional elements are enclosed in square brackets Mutually exclusive elements are contained in braces and separated by vertical bars Arguments for which you supply values are in italics Examples of comma...

Page 9: ...ample the ethernet hublet is identified as interface ethernet 0 In some contexts only a WAN interface may be specified in which case the command syntax will specify wan id instead of the more general...

Page 10: ...s Key Function Control A Moves the cursor to the beginning of the command line Control E Moves the cursor to the end of the command line Control K Deletes all characters from the cursor to the end of...

Page 11: ...error messages Example If you enter the partial command show snmp the help facilty will prompt you with the appropriate keywords until the command is successfully entered show snmp error 103 incomple...

Page 12: ...1 6 Command Line Interface Commands Reference...

Page 13: ...ofile configuration commands on page 2 39 NetBIOS configuration commands on page 2 41 Generic WAN Interface configuration commands on page 2 43 Restricted WAN Interface configuration commands on page...

Page 14: ...ands on page 2 110 Backup Configuration Commands on page 2 115 Serial port modem backup configuration commands on page 2 118 RADIUS Authentication Configuration Commands on page 2 119 TACACS Authentic...

Page 15: ...sole timeout show preferences console timeout preferences date format mm dd yy dd mm yy yy mm dd show preferences date format preferences output format terse verbose show preferences output format pre...

Page 16: ...mp system location snmp system name string show snmp system name no snmp system name snmp system trap source address lan wan system syslog enable yes no no system syslog enable show system syslog enab...

Page 17: ...nd telnet resume 1 6 telnet terminate 1 6 telnet server port port number show telnet server port time hh mm am pm show time user name password no user name password MAC Address Security Commands secur...

Page 18: ...commands allow you to specify whether or not WAN configuration changes will take effect immediately When you specify no any changes you make to the WAN configuration except NAT will not take effect un...

Page 19: ...rences output format terse verbose show preferences output format The preferences output format command affects the format of the output from show commands When set to verbose the default the output f...

Page 20: ...am pm 24 hour show preferences time format These commands allow you to set or display your time formatting preferences for the router s system clock security password Enter old password old password...

Page 21: ...h Firmware Version 8 4 2 inform snmp system contact string show snmp system contact no snmp system contact These commands set display or clear the router s SNMP system contact sysContact string snmp s...

Page 22: ...hese commands are supported beginning with Firmware Version 8 2 These commands allow you to specify or show the UNIX syslog Facility facility values may be local0 through local7 system syslog log viol...

Page 23: ...nds allow you to suspend telnet sessions indicated by alphabetic letter a through z from the command line Telnet sessions specified by number 1 through 6 may be resumed or terminated The show command...

Page 24: ...MAC authentication applies only to the wireless interface on models so equipped If set to no packets received at all interfaces on the LAN are subject to the MAC filtering table security mac auth mac...

Page 25: ...w heartbeat client port heartbeat interval time in seconds show heartbeat interval time heartbeat count count show heartbeat count heartbeat sleep time time in seconds show heartbeat sleep time heartb...

Page 26: ...how the protocol to be used for the system heartbeat udp or tcp The heartbeat is a state machine If you select udp there are no connections to the server If the server address is known it simply sends...

Page 27: ...interval location These commands allow you to specify or show a location to be placed into the heartbeat Xml payload reset heartbeat This command allows you to restart the heartbeat sequence Tiered Co...

Page 28: ...le applications or audio and video services Multiple logical IP LAN support allows you to create additional IP routed LAN interfaces ALANs You can add edit or delete Additional LANs similarly to Conne...

Page 29: ...multicast fwd no interface ethernet 2 address serve enable no interface ethernet 2 address serve clients none interface ethernet 2 address serve dhcp lease time 1 interface ethernet 2 address serve ga...

Page 30: ...ion interface ethernet id mac address MAC address default show interface ethernet id mac address interface ethernet id mode autonegotiate 100full 100half 10full 10half 100full fixed 100half fixed 10fu...

Page 31: ...rver list show interface ethernet id ip nat server list interface ethernet id ip netbios proxy enable yes no no interface ethernet id ip netbios proxy enable show interface ethernet id ip netbios prox...

Page 32: ...nsmit interface ethernet id ip rip auth key id no interface ethernet id ip rip auth key id show config interface ethernet id ip rip auth key interface ethernet id ip rip auth key id start date date sh...

Page 33: ...nterface ethernet id address serve dhcp option 150 address show interface ethernet id address serve dhcp addresses show interface ethernet id ip dhcp client status interface ethernet id ip dhcp client...

Page 34: ...state insp router access interface ethernet id ip state insp tcp seq diff diff show interface ethernet id ip state insp tcp seq diff interface ethernet id ip state insp deny frag yes no on off no int...

Page 35: ...ip vrrp vrouter id adv intvl interface ethernet id ip vrrp vrouter id preempt mode enable no yes on off show interface ethernet id ip vrrp vrouter id preempt mode enable interface ethernet id ip vrrp...

Page 36: ...o set the primary subnet of the Ethernet interface to 192 168 1 1 with a Class C subnet mask interface ethernet 0 ip address 192 168 1 1 24 interface ethernet 0 ip address 192 168 1 1 255 255 255 0 To...

Page 37: ...allow you to set disable or show the multicast forwarding behavior on the specified Ethernet interface interface ethernet id ip igmp version v1 v2 v3 show interface ethernet id ip igmp version These...

Page 38: ...AN has no effect on the Microsoft Networking traffic interface ethernet id address serve dhcp enable yes no no interface ethernet id address serve dhcp enable show interface ethernet id address serve...

Page 39: ...the interface The default is no but if enabled will drop any RIP routes with non LANside information from RIP updates sent over the interface interface ethernet id ip rip receive no v1 v2 both v2 md5...

Page 40: ...w you to set or show an end time for the RIP 2 Authentication key s on the specified interface interface ethernet id rip auth key id end time mode infinite date show interface ethernet id ip rip auth...

Page 41: ...thernet id ip nat passthrough enable Note These commands are supported beginning with firmware version 8 2 These commands allow you to enable disable or show the NAT passthrough behavior for the speci...

Page 42: ...e router Otherwise you may specify one or more of the keywords bootp dhcp macip or wan in which case the address server will accept requests from only the specified types of clients If you specify the...

Page 43: ...lue The default gateway IP address for a particular subnet is either the router s default gateway if that gateway is on the specified subnet or the router s address on the subnet interface ethernet id...

Page 44: ...d Ethernet subnet primary and secondary The total number of addresses in all configured pools may not exceed 512 addresses If you specify the keyword auto instead of an IP address range the router wil...

Page 45: ...q diff These commands allow you to set or show TCP sequence difference acceptable for the specified interface The TCP sequence number difference maximum allowed value is 65535 If the value of tcp seq...

Page 46: ...he others are backups VRRP is a protocol that provides redundancy to routers within a local area network by allowing alternate paths for a PC without changing the IP address or MAC address by which th...

Page 47: ...is command allows you to delete a Virtual Router show interface ethernet id ip vrrp wan monitor enable yes no on off show interface ethernet id ip vrrp wan monitor enable These commands allow you to e...

Page 48: ...id by port based global no vlan id vlan id name name vlan id network none lan eth2 eth3 eth4 eth5 eth6 eth7 vlan id id 1 4094 supported in V8 6 1 vlan id 8021x authprofile authprofile tag name authpr...

Page 49: ...eless privacy to WPA 802 1x as well See Wireless Privacy Commands new and revised on page 2 91 If multiple SSIDs are split across several VLANs the VLANs must either all have 802 1x enabled with WPA 8...

Page 50: ...u to associate this VLAN with an inter VLAN routing group such that the specified VLAN can communicate with another VLAN in the same group VLANS that are not associated with the same inter VLAN routin...

Page 51: ...ith a free form name of up to 32 characters authprofile id remote server string This command allows you to specify the RADIUS server s IP address or fully qualified server name authprofile id remote s...

Page 52: ...ork Access Server NAS identifier The default NAS identifier is an ASCII representation of the server s base MAC address authprofile id radius port 1 65535 This command allows you to specify the RADIUS...

Page 53: ...elete or show whether NetBIOS scope is enabled NetBIOS Configuration Commands interface ethernet 0 address serve netbios mode type b node p node m node h node show interface ethernet 0 address serve n...

Page 54: ...rface ethernet 0 address serve netbios name server enable These commands allow you to set delete or show whether a NetBIOS name server address is served to NetBIOS clients interface ethernet 0 address...

Page 55: ...r itself Note atmfuni is accepted as a synonym for rfc1483 and frame relay is accepted as a synonym for rfc1490 For ppp the default mode is vcmux For rfc1483 the default mode for frame based SDSL R710...

Page 56: ...that we will be running at 1 5 MHz Restricted WAN Interface configuration commands interface adsl ethernet isdn sdsl id pppoe enable yes no no interface adsl ethernet isdn sdsl id pppoe enable show in...

Page 57: ...tain Networks central office equipment Example interface isdn 1 imux mode dml ISDN WAN Interface Configuration Commands Generic ISDN interface isdn id line type switched leased idsl ascend idsl cmn sh...

Page 58: ...atus String Meaning Inactive The interface is not yet active Waiting for rate negotiation The interface is in the process of sensing the data rate configured for the IDSL line at the central office Th...

Page 59: ...be populated with an ISDN wanlet at this time and the Motherboard id 0 is incapable of supporting ISDN internally Under many circumstances it is unnecessary to explicitly set the switch type particul...

Page 60: ...allow you to set change delete or show the directory numbers associated with the specified ISDN interface These commands apply only to switched ISDN The only currently supported id is 1 The string par...

Page 61: ...onfiguration Commands interface adsl id pvc vpi value vci value show interface adsl id pvc show interface adsl id status show interface adsl id statistics interface adsl id signaling mode fdm echo can...

Page 62: ...hese commands allow you to set or show the signalling mode on an ADSL interface fdm Frequency Division Multiplexing interface adsl id trellis coding yes no show interface adsl id trellis coding no int...

Page 63: ...ow interface sdsl id clock rate interface sdsl id operation mode generic lucent nokia eoc fast nokia fixed paradyne nortel newbridge default show interface sdsl id operation mode interface sdsl id pvc...

Page 64: ...rface Note The permissible values for rate specification depend on the type of SDSL WAN interface For frame based SDSL R7100 interfaces rate specification may be replaced with 160 208 320 416 784 1040...

Page 65: ...and correspond to the values available from the Data Rate pop up menu on the SDSL Line Configuration screen in the menu console These acceptable data rates are enumerated below as well Nokia Lucent P...

Page 66: ...1 show interface sdsl isdn id rfc1973 dlci These commands allow you to set or show an RFC 1973 DLCI for the SDSL or ISDN WAN interface Note that the only WAN interface modules that currently support R...

Page 67: ...le or show the priority queuing TOS setting for the specified WAN interface Status String Meaning Connected at xxx Kbps The interface is connected to the DSLAM at the specified speed Trying xxx Kbps T...

Page 68: ...oS control rules allow you to define streams for some protocols port ranges and between specific end point addresses diffserv rule id protocol tcp udp icmp other This command allows you to specify the...

Page 69: ...and allows you to specify the inside IP address for the rule id For outbound flows specify an IP address on your LAN For inbound flows this setting is ignored diffserv rule id outside ip y y y y This...

Page 70: ...of up to eight circuits tag interface adsl sdsl id pvc id tag tag tag show interface adsl sdsl id pvc id tag tag These commands allow you to set or show a permanent virtual circuit identified by tag...

Page 71: ...o the line rate VBR has two sub classes a VBR non real time VBR nrt Typical applications are non real time traffic such as IP data traffic This class yields a fair amount of Cell Delay Variation CDV b...

Page 72: ...le tag default show interface adsl sdsl id pvc id tag cp These commands allow you to set or show the connection profile assigned to the specified PVC Note default means that the router will use the fi...

Page 73: ...sdsl atm sdsl hdlc idsl cmn idsl leased idsl show interface dsl id line type These commands allow you to set or show the line type for the specified DSL interface DSL Line Type Interface Configuratio...

Page 74: ...clock source interface t1 id dle ppp hdlc rfc1490 show interface t1 id dle interface t1 id ds0 autodetect yes no show interface t1 id ds0 autodetect no interface t1 id ds0 autodetect interface t1 id f...

Page 75: ...word is assumed The rate clause is always optional If the rate clause is not present the value Nx64k is assumed unless the line encoding is AMI the count clause specifies two or more channels and the...

Page 76: ...Copper Mountain DSLAM T1 line card the keyword normal should be specified in all other situations interface t1 id prm enable yes no show interface t1 id prm enable no interface t1 id prm enable These...

Page 77: ...45 minutes prior to interval 1 Specifying the keyword total displays the total error statistics for the last 24 hours Example show interface t1 1 errors interval 1 15 minutes ending 16 32 44 Errored...

Page 78: ...he specified T1 interface Specifying local loopback puts the near end in local payload loopback mode Specifying remote loopback instructs the far end to put itself in payload loopback mode Specifying...

Page 79: ...ocal Payload Loopback Enabled Remote Line Loopback Enabled Remote Payload Loopback Enabled Clear No Loopback Enabled show interface t1 id loopback status This command displays the progress of the loop...

Page 80: ...rce address to an internally generated router service such that the service should not be routed by default over a force all IPSec tunnel Applicable internally generated router services are RADIUS TAC...

Page 81: ...uted over the IPSec tunnel If no is used with the commands the value goes back to the default 0 0 0 0 and no Examples RADIUS TACACS The remote server configuration controls the settings for both TACAC...

Page 82: ...figuration Commands igmp version v1 v2 v3 show igmp version igmp snooping yes no no igmp snooping show igmp snooping igmp robustness value no igmp robustness show igmp robustness igmp query intvl valu...

Page 83: ...ow igmp robustness These commands allow you to specify or show the Motorola Netopia Router s degree of sensitivity to lost packets IGMP can recover from robustness minus 1 lost IGMP packet The default...

Page 84: ...command is supported beginning with Firmware Version 8 7 4 This command allows you enable or disable wireless multicast to unicast if igmp snooping is set to yes The router replaces the multicast MAC...

Page 85: ...p gateway backup gateway ip addr no backup gateway ip addr show backup gateway ip ntp period value no ip ntp period show ip ntp period ip ntp servers ip addr1 ip addr2 no ip ntp servers show ip ntp se...

Page 86: ...t symbol and are not valid domain names ip gateway ip addr no ip gateway ip addr show ip gateway These commands allow you to set change delete or show the router s default gateway backup gateway ip ad...

Page 87: ...timezone show ip ntp timezone Note These commands are supported beginning with Firmware Version 8 3 3 These commands allow you to set disable or display your time zone You can specify the time zone as...

Page 88: ...identical route learned via RIP while an identical route learned via RIP takes precedence over a static route with low priority The keyword advertise controls whether or not the router will advertise...

Page 89: ...and whether or not you can configure a gen option of that type DHCP Gen Options commands ip dhcp gen option tag option 1 255 data type ascii hex dotted decimal data data ip dhcp gen option tag data t...

Page 90: ...address list Multiples of 4 Yes 43 Vendor specific String Yes 44 45 IP address list Multiples of 4 Yes 46 Unsigned 1 byte integer 1 Yes 47 String up to 100 characters N Yes 48 49 IP address list Multi...

Page 91: ...ss list Multiples of 4 Yes 86 87 Unicode String Multiples of 2 Yes 88 Encoded DN list N Yes 89 IP address list Multiples of 4 Yes 90 Complex N No 91 97 Undefined Weakly defined Yes 98 String up to 100...

Page 92: ...y or disable whether the default handling behavior for a particular option should be overridden by the specified gen option For most options this is irrelevant but at least the following options are h...

Page 93: ...option Adding a gen option to an option group does not preclude it from being added to another option group interface ethernet id address serve dhcp default option group option_group_tag show interfa...

Page 94: ...ommands allow you to specify display or disable a DHCP filterset named fs tag DHCP Option Filtersets commands ip dhcp filterset fs tag filter new last id 1 8 type dhcp option hw address requested opti...

Page 95: ...ing can contain multiple and wildcard substitutions This is supported only if the filter is of type dhcp option start address end address a client hardware address range This is supported only if the...

Page 96: ...rface ethernet id address serve dhcp filterset These commands allow you to set display or disable a DHCP filterset specified by fs tag for the Ethernet interface specified by id bridge dhcp filterset...

Page 97: ...30 and 65535 seconds ip state insp dos detect yes no show ip state insp dos detect Note These commands are supported beginning with Firmware Version 8 7 These commands allow you to set or show the sta...

Page 98: ...closed system wireless ssid string show wireless ssid wireless auto channel off at startup continuous no wireless auto channel show wireless auto channel wireless tx power full medium fair low minimal...

Page 99: ...wireless client when they scan for access points Therefore in order to connect the wireless client would already have to know the SSID This prevents casual intrusion Default is no Wireless Configurat...

Page 100: ...her Access Point activity If Access Point activity is detected on the same channel the Motorola Netopia Router will initiate a scan of the other channels locate a less active one and switch Once it ha...

Page 101: ...0 BD Free Watermark 336 Out of Packets 0 Out of BDs 0 TX Queue Full 0 wireless default channel no 1 14 show wireless default channel These commands allow you to specify or show a frequency range withi...

Page 102: ...eless wep encpt key hex_string show wireless wep encpt key 1 4 These commands allow you to specify or show the encryption keys 1 through 4 in hexadecimal Keys are entered using hexadecimal digits For...

Page 103: ...ecify or show a 32 character string or Network Name used to identify this WLAN Users must select or enter this string on their clients in order to become a part of this WLAN This is a change to the wi...

Page 104: ...aracter_string show wireless passphrase 1 57_character_string These commands allow you to set or show a passphrase when wireless privacy is set to wep auto off turn off privacy wep manual In this mode...

Page 105: ...ond ssid string no wireless second ssid show wireless second ssid wireless third ssid string no wireless third ssid show wireless third ssid wireless fourth ssid string no wireless fourth ssid show wi...

Page 106: ...s allow you to specify or show a 32 character string or Network Name used to identify this WLAN Users must select or enter this string on their clients in order to become a part of this WLAN The first...

Page 107: ...less first ssid privacy off wep manual wep auto wpa psk wpa 802 1x show wireless first ssid privacy These commands allow you to specify or show the privacy setting for the first and primary SSID Setti...

Page 108: ...selected as a privacy option for that SSID The default is all wireless first ssid psk string wireless second ssid psk string wireless third ssid psk string wireless fourth ssid psk string These comman...

Page 109: ...ommand allows you to remove a global ARP cache entry Note that this does not affect entries in the interface specific caches acquired via ARP requests and responses To flush the interface specific ARP...

Page 110: ...eout Default 600 secs 10 mins range 60 secs 6000 secs 1 100 mins system bridge timeout timeout This command allows you to set the timeout value for bridging table timeout Default 30 secs range 30 secs...

Page 111: ...ws First it will wait 0 to 60 seconds before starting then it will try three times to bring the connection up as quickly as possible Second on each successive retry after these first three attempts it...

Page 112: ...d Connection will be invoked schedule id start time HH MM am pm This command allows you to set the starting time and whether AM or PM for the specified Scheduled Connection You must enter the time in...

Page 113: ...tain Both of these commands are supported only on hardware that has a copper mountain SDSL IDSL or Ethernet WAN interface Frame Relay Configuration Commands frame relay dlci number tag tag ip addr 0 0...

Page 114: ...nds allow you to change or display the Frame Relay Local Management Interface LMI type The keywords ccitt and annexa are synonyms as are the keywords ansi and annexd frame relay tim none standard buff...

Page 115: ...ame receive tftp html server name file name noreboot receive tftp wan 1 2 firmware server name file name send tftp config server name file name show tftp last error show tftp status receive xmodem wan...

Page 116: ...mpletes statistics are displayed including the total number of ICMP echo requests sent and ICMP echo responses received the success rate as a percentage and the minimum average and maximum round trip...

Page 117: ...ecified If server name or file name are not already specified it is necessary to specify them Specifying them with this command will set them send tftp config server name file name The configuration f...

Page 118: ...Upgrade SUCCESSFUL Insufficient Memory Upgrade FAILED reset factory bridge router This command allows you to reset the router from the command line interface If the optional keyword factory is specif...

Page 119: ...Memory status Heap total bytes 7936960 free 4437424 allocated 3499536 System Packet Buffers total 1000 free 993 min 992 Image usage text 3931180 data 536336 bss 370412 Heap status peak usage 3520512...

Page 120: ...e experimental d development a alpha b beta or f final rr is the revision The firmware version string consists of a major version minor version point release version release stage and revision display...

Page 121: ...ware Version 8 3 3 These commands allow you to enable disable or show the status of Universal Plug and Play UPnP is a set of protocols that allows a PC to automatically discover other UPnP devices any...

Page 122: ...ddresses will be associated dynamically with private addresses you will define when you create a map tag is the name you assign to the range and it can contain up to 16 characters Example The followin...

Page 123: ...tly the default range is 49152 to 65535 inclusive If you specify 0 0 0 0 as the public address whatever address is negotiated by PPP or DHCP when the WAN connection is established this pool will adopt...

Page 124: ...ip addr and port or ports to a public address pub ip addr and the same port or ports In the Motorola Netopia router s earlier firmware releases this feature was called Exported Services Its primary u...

Page 125: ...s displayed Indefinitely long sessions greater than 10 hours are shown as 10h show ip nat translations LAN IP address Port WAN IP address Port Rem IP Address Port Dir Prot h mm 10 1 32 127 57037 10 1...

Page 126: ...nnection with the ALG The ALG determines if the connection should be allowed or not and then establishes a connection with the destination computer All communications go through two connections client...

Page 127: ...tic yes no backup show backup status backup no backup delay 1 65535 backup ping host ip address host name backup recovery delay 1 65535 backup recovery idle delay 1 65535 backup recovery idle only yes...

Page 128: ...etermine how long you want the system to wait before the primary WAN port becomes enabled after connectivity is restored ensuring that the backup connection is not merely briefly interrupted before th...

Page 129: ...te These commands are supported beginning with Firmware Version 8 6 1 These commands allow you to disable enable or show the status of RIP services on the primary WAN interface when the Router is in B...

Page 130: ...the string parameter are 9600 19200 38400 57600 115200 interface serial id modem init string string no interface serial id modem init string show interface serial id modem init string These commands a...

Page 131: ...fails using the local authentication database Specifying radius local serial only causes the router to attempt to authenticate a user first using the configured RADIUS server s and then if that fails...

Page 132: ...r is limited to 63 characters TACACS Authentication Configuration Commands Note The commands in this section are supported beginning with firmware version 8 4 and supplement the RADIUS server commands...

Page 133: ...ex More explanation follows the command itself compare op nc ne lt le eq ge gt port compare nc compare op digits filter id 1 255 new last IP Filterset Configuration Commands ip filterset fs tag in out...

Page 134: ...the filter either by id 1 or by the other special keyword last Subsequent filters can be added using either new or by the next integer filter id You can always specify the last filter in the set by u...

Page 135: ...nable show hardware acceleration enable These commands allow you to enable disable or show the status of hardware acceleration if the XL accelera tion encryption daughtercard is installed in the R Ser...

Page 136: ...scii key id hex key id string show ike phase1 name index identity remote local ike phase1 name index authentication method shared secret show ike phase1 name index authentication method ike phase1 nam...

Page 137: ...name index independent rekeys ike phase1 name index initial contact yes no show ike phase1 name index initial contact no ike phase1 name index initial contact ike phase1 name index negotiation normal...

Page 138: ...name index authentication method shared secret show ike phase1 name index authentication method These commands set or display the specified IKE Phase1 profile s authentication method Currently the on...

Page 139: ...dh 1024 bits dh 1536 bits show ike phase1 name index group These commands set or display the specified IKE Phase1 profile s Diffie Hellman group Note 1 and dh 768 bits 2 and dh 1024 bits and 5 and dh...

Page 140: ...nteger none show ike phase1 name index sa lifetime seconds kbytes no ike phase1 name index sa lifetime seconds kbytes These commands set display or disable one or both of the specified IKE Phase1 prof...

Page 141: ...teway IKE peer that supports them Default is no disabled show ike phase1 name index dead peer detection timeout ike phase1 name index dead peer detection timeout 3 65535 These commands allow you to sp...

Page 142: ...he glo bally configured RADIUS server database IF xauth mode is set to client it can only send the locally configured username password See RADIUS Authentication Configuration Commands on page 2 119 i...

Page 143: ...Motorola Netopia Router CLI Commands 2 131 Current Restrictions None...

Page 144: ...2 132 Command Line Interface Commands Reference...

Page 145: ...0 series and 3000 Enterprise series Router families Connection Profile Commands on page 3 2 PPTP commands on page 3 18 Manual connect disconnect commands on page 3 19 Backup configuration commands on...

Page 146: ...todetect Note The two commands above are supported beginning with firmware release 8 5 cp name index filterset string no cp name index filterset string show cp name index filterset cp name index ip ad...

Page 147: ...index ip multicast fwd yes no no cp name index ip multicast fwd show cp name index ip multicast fwd cp name index ip negotiate lan yes no no cp name index ip negotiate lan show cp name index ip negoti...

Page 148: ...ve name cp name index ppp authentication send receive password string no cp name index ppp authentication send receive password cp name index ppp usage 1 2 preemptible dynamic show cp name index ppp u...

Page 149: ...callback yes no no cp name index telco callback show cp name index telco callback cp name index ip nat enable yes no no cp name index ip nat enable show cp name index ip nat enable cp name index ip n...

Page 150: ...no cp name index pptp encryption cp name index pptp authentication send receive name string no cp name index pptp authentication send receive name show cp name index pptp authentication send receive...

Page 151: ...id end date cp id ip rip auth key id end time time show cp id ip rip auth key id end time cp id rip auth key id end time mode infinite date show cp id ip rip auth key id end time mode cp id rip auth k...

Page 152: ...osed list xposed list_name no cp name index ip state insp xposed list show cp name index ip state insp xposed list cp name index ip state insp tcp seq diff diff show cp name index ip state insp tcp se...

Page 153: ...pp send receive name string show cp name index l2tp authentication ppp send receive name cp name index l2tp authentication ppp send receive password string show cp name index l2tp authentication ppp s...

Page 154: ...ion Profile the menu console will name it Profile 1 by default you can rename it anything you want Nevertheless the router will always assign such a profile the index number 2 two Profiles added subse...

Page 155: ...d and cannot be used Also when a profile is created it inherits the global encapsulation type by default and thus it is not usually necessary to explicitly set this parameter Note atmfuni is accepted...

Page 156: ...P configuration structures now include a dhcp client mode setting that selects between the standard RFC 2131 standards based mode of operation the default and the cop per mountain or cmn proprietary m...

Page 157: ...s no no cp name index ip negotiate lan show cp name index ip negotiate lan These commands allow you to set delete or show whether the specified connection profile will attempt to negotiate the router...

Page 158: ...th v2 md5 This command allows you to set the RIP receive behavior when the profile is used for a WAN connection cp name index ip rip exclude wan routes no cp name index ip rip exclude wan routes show...

Page 159: ...if more than one channel is being used by the connection and traffic drops below a certain level for a certain amount of time a channel will be dropped The keywords dynamic and preemptible may be spec...

Page 160: ...ix and directory number to call back the device that originated the initial call This is useful when you want a particular party to be billed for WAN connections cp name index ip nat enable yes no Thi...

Page 161: ...me index connection demand yes no This command allows you to specify whether or not a connection profile will connect on demand cp name index connection timeout seconds This command allows you to spec...

Page 162: ...p name index pptp compression These commands allow you to specify or delete a PPTP compression algorithm either none or Standard LZS for a particular connection profile specified by name or index cp n...

Page 163: ...displayed This command returns immediately the connection disconnect process may still be in progress since it is asynchronous Backup configuration commands cp name index interface group primary backu...

Page 164: ...ASCII characters each IP NAT Passthrough Commands Note The commands in this section are supported beginning with Firmware Version 8 2 cp name index ip nat passthrough enable yes no no cp name index ip...

Page 165: ...shortened to two minutes This allows for timely updates of the host s IP address which will be a private IP address before the WAN connection is established After the WAN connection is established and...

Page 166: ...mands allow you to set disable or show the status of default mapping to router for the specified Connection Profile cp name index ip state insp deny frag yes no on off no cp name index ip state insp d...

Page 167: ...ssword string show cp name index l2tp authentication ppp send receive password These commands allow you to set or show the password as an alphanumeric string that the specified connection profile will...

Page 168: ...0 232 1 show cp name index gre key 0 232 1 These commands allow you to specify or show a 32 bit integer key value assigned to the GRE tunnel if zero the tunnel is considered not to have a key identifi...

Page 169: ...cp name index telco compuserve hostname no cp name index telco compuserve hostname cp name index telco compuserve username string show cp name index telco compuserve username no cp name index telco c...

Page 170: ...ameter The optional via section sets the next hop gateway cp name index ipsec ip modify net index remote members remote IPv4 addr1 nn remote IPv4 addr2 local members local IPv4 addr1 nn local IPv4 add...

Page 171: ...once It becomes an optional clause thereafter If the modify option is absent it means a new network configuration is added to the config area Its presence indicates a change to an existing network Ex...

Page 172: ...t cp name index ipsec encryption key 1234567890123456 1234567890123456 1234567890123456 This command allows you to specify the authentication key for an IPsec tunnel You must specify an authentication...

Page 173: ...y timeout 1 65535 show cp name index ipsec dead peer detection ping reply timeout cp name index ipsec idle timeout non negative integer none show cp name index ipsec idle timeout no cp name index ipse...

Page 174: ...ther or not peer is dead The IP address must belong to a tunnel s remote network which can be configured as a subnet an address range or an individual host in the IP options menu The subnet remote net...

Page 175: ...tunnel The value zero or the keyword none causes the SPI or SPIs to be permanently bound to the first remote peer that sends traffic through the tunnel using the SPI or SPIs If the IPSec key manager...

Page 176: ...me index ipsec ip Note This is an extended version of an existing CLI command The existing command is modified to allow a members specification to appear in the local clause and to allow for a host ad...

Page 177: ...ddress must belong to a tunnel s remote network A tunnel s remote network can be configured as a subnet an address range or an individual host The subnet remote network case also disallows the host pa...

Page 178: ...x ipsec mtu These commands allow you to specify or show a manual maximum transmission unit MTU also called Maximum Packet Size parameter for the specified Connection Profile The maximum value also the...

Page 179: ...elnet VT100 Command Line Console Serial or Telnet The supported character set for TFTP text configuration files is the set of US ASCII printable characters ASCII values from 32 to 126 inclusive includ...

Page 180: ...resented with a prompt The procedure for invoking the file transfer via the command line console is described in the section Miscellaneous Commands on page 2 103 To return to Menu mode hit Control N a...

Page 181: ...way to 163 176 224 1 ip gateway 163 176 224 1 set Rx and Tx RIP interface ethernet 0 ip rip receive both interface ethernet 0 ip rip transmit v1 set dns 1 and dns 2 ip dns 1 163 176 4 10 ip dns 2 163...

Page 182: ...ip addressing numbered cp 1 ip address remote 163 176 224 1 cp 1 ip mask local 255 255 255 0 cp 1 ip mask remote 255 255 255 0 cp 1 dle rfc1483 cp 1 dle ppp cp 1 ppp authentication pap cp 1 ppp authen...

Page 183: ...or indicates that the command line processor ran out of memory attempting to complete the requested operation This error should not occur under normal circumstances error 3 set operation failed This e...

Page 184: ...rror 121 illegal operation This error indicates that you attempted to perform an unsupported operation or one that does not make sense Example no version error 121 illegal operation clear version erro...

Page 185: ...lash immediately following the IP address followed by a value between 0 and 32 inclusive indicating the number of contiguous ones bits in the mask e g 24 Note that IP mask values entered in dotted qua...

Page 186: ...index out of bounds error 128 yes or no required This error indicates that a value other than yes or no was entered where only yes or no are acceptable Example cp 1 enable foo error 128 yes or no requ...

Page 187: ...ce ethernet 0 ip address 192 168 1 2 error 133 invalid address mask error 134 invalid keyword This error indicates either than you entered a keyword that is not a permissible or accepted keyword error...

Page 188: ...is error indicates that you attempted to enter a duplicate value where the same value entry is not permitted error 140 illegal hardware address This error indicates that you entered an improperly form...

Page 189: ...et 0 address serve helper 40 0 0 1 interface ethernet 0 address serve helper 50 0 0 1 error 143 can t add error 144 incomplete command This error indicates that you omitted a portion of the command Ex...

Page 190: ...hat you specified or implicitly referenced an unknown subnet Example show interface ethernet 0 ip address interface ethernet 0 ip address 192 168 1 1 24 interface ethernet 0 address serve range 192 16...

Page 191: ...162 3DES Keys must be 3 keys of exactly 16 hex digits each This error is generated if you try to set 3DES keys which requires 16 hex digits each using more or fewer than 16 or using more or fewer than...

Page 192: ...ort has not extension number set phonemap first error 256 Directory is full can t add new one error 257 Caller ID list is full error 258 Bad Caller ID error 259 No such carrier name error 260 Carrier...

Page 193: ...le you may have issued the interface sdsl id pvc command but the SDSL wan interface module in the specified slot is a frame based SDSL R7100 interface rather than a cell based SDSL R7200 interface err...

Page 194: ...net 0 address serve helper 50 0 0 1 error 102 can t delete error 103 incomplete command This error indicates that you omitted a portion of the command Example interface ethernet 0 ip error 103 incompl...

Page 195: ...index connection timeout seconds 3 17 cp name index dle 3 11 cp name index enable 3 11 cp name index filterset 3 12 cp name index frame relay dlci multicast number 3 15 cp name index frame relay dlci...

Page 196: ...x l2tp compression 3 23 cp name index l2tp ip partner 3 22 cp name index l2tp ip via 3 22 cp name index ppp authentication 3 14 3 15 cp name index ppp authentication type 3 14 cp name index ppp usage...

Page 197: ...e index independent rekeys 2 127 ike phase1 name index initial contact 2 128 ike phase1 name index mode 2 126 ike phase1 name index negotiation 2 128 ike phase1 name index pfs 2 128 ike phase1 name in...

Page 198: ...terface ethernet id ip rip auth key id start time 2 28 interface ethernet id ip rip exclude wan routes 2 27 interface ethernet id ip rip receive 2 27 interface ethernet id ip rip transmit 2 27 interfa...

Page 199: ...t 2 85 ip state insp udp timeout 2 85 ip state insp xposed addr 2 85 ipsec mtu 3 34 N cp 3 34 show cp 3 34 backup 2 116 no arp 2 97 no backup 2 115 no backup failure layer 2 delay 2 117 no backup gate...

Page 200: ...terface ethernet 0 address serve netbios scope enable 2 41 no interface ethernet 0 address serve range 2 32 no interface ethernet address serve dhcp default option group 2 81 no interface ethernet add...

Page 201: ...nable 2 109 no user 2 16 no vlan id 2 36 no vlan id interface cp 2 38 no vlan id interface ssid 2 38 no vlan id interface usb 0 2 38 no wireless auto channel 2 88 no wireless block bridging 2 94 no wi...

Page 202: ...ugh enable 3 20 show cp name index ip negotiate lan 3 13 show cp name index ip netbios proxy enable 3 14 show cp name index ip rip exclude wan routes 3 14 show cp name index ip state insp deny frag 3...

Page 203: ...ing sas 2 127 show ike phase1 name index dead peer detection enable 2 129 show ike phase1 name index dead peer detection timeout 2 129 show ike phase1 name index encryption 2 127 show ike phase1 name...

Page 204: ...show interface ethernet id ip dhcp client mode 2 24 show interface ethernet id ip dhcp client status 2 31 show interface ethernet id ip filterset 2 29 show interface ethernet id ip igmp version 2 25 s...

Page 205: ...64 show interface t1 id errors 2 65 show interface t1 id framing 2 64 show interface t1 id line status 2 67 show interface t1 id loopback mode 2 67 show interface t1 id loopback status 2 67 show inter...

Page 206: ...2 90 show wireless mac auth 2 90 show wireless mac deny 2 90 show wireless multiple ssid 2 94 show wireless passphrase 2 92 show wireless privacy 2 92 show wireless psk 2 92 show wireless second ssid...

Page 207: ...th ssid privacy 2 95 wireless fourth ssid psk 2 96 wireless fourth ssid wpaver 2 96 wireless mac allow 2 90 wireless mac auth 2 90 wireless mac delete 2 91 wireless mac deny 2 90 wireless multiple ssi...

Reviews:

No comments

Related manuals for CLI 874

Brand: Barracuda Networks Pages: 2

AirPlus DWL-810

Brand: D-Link Pages: 25

Brand: D-Link Pages: 12

Brand: A-Link Pages: 6

Brand: process-informatik Pages: 8

Parallel & Serial Port Checker PPC

Brand: B&B Electronics Pages: 4

Brand: WAGO Pages: 2

Brand: Conel Pages: 32

FlexNetwork 5130 Series

Brand: HPE Pages: 33

Brand: Pakedge Device & Software Pages: 14

Brand: INNOSILICON Pages: 11

Brand: MA lighting Pages: 49

Ether-GSH24T v3

Brand: AirLive Pages: 2

NetVanta Serial Dial Backup Interface Module (DIM) none

Brand: ADTRAN Pages: 2

JetStream T2600G-28TS

Brand: TP-Link Pages: 1136

Brand: RadioSPECTRAL Pages: 2

Brand: Tripp Lite Pages: 2

Brand: Allied Telesis Pages: 44

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands