manualshive.com logo in svg

Speed Touch 580, Cli Reference Manual

The Kenmore 580 is a versatile appliance designed for ease and convenience. Accessing its Owner's Manual is essential to make the most out of its features. Download the manual for free from our website to uncover how to optimize your Kenmore 580's potential.

Share
Download
background image

IDS Commands

E-DOC-CTC-20050531-0057 v1.0

357

IDS Commands

Introduction

This chapter describes the commands of the

ids

command group.

Contents

This chapter covers the following commands:

ids clear 

Reset the IDS statistics.

358

ids config 

Display/modify the Intrusion Detection System (IDS) configuration.

359

ids parser list 

Display the IDS parser configuration.

360

ids parser modify 

Modify the IDS parser configuration.

361

ids pattern clear 

Reset the pattern tracker.

362

ids pattern list 

Display the patterns in the pattern tracker.

363

ids pattern stats 

Display the pattern tracker statistics.

364

ids signature list

Displays the ids signature configuration

365

ids signature modify

Modify the states of the signatures.

366

ids threshold clear 

Reset the IDS thresholds to their default values.

367

ids threshold list 

Display the IDS thresholds.

368

ids threshold modify 

Modify the IDS thresholds.

369

Summary of Contents for 580

Page 1: ...SpeedTouch 580 Wireless Residential ADSL Gateway CLI Reference Guide Release R4 3 1 ...

Page 2: ......

Page 3: ...SpeedTouch 580 CLI Reference Guide R4 3 1 ...

Page 4: ...countries UNIX is a registered trademark of UNIX System Laboratories Incorporated Apple and Mac OS are registered trademarks of Apple Computer Incorporated registered in the United States and other countries Adobe the Adobe logo Acrobat and Acrobat Reader are trademarks or registered trademarks of Adobe Systems Incorpo rated registered in the United States and or other countries Netscape and Netsc...

Page 5: ... bundle attach 20 atm bundle config 21 atm bundle clear 22 atm bundle delete 23 atm bundle detach 24 atm bundle flush 25 atm bundle ifadd 26 atm bundle ifconfig 27 atm bundle ifdelete 28 atm bundle list 29 atm cac config 30 atm cac list 31 atm cac overbooking 32 atm debug aal5stats 33 atm debug gstats 34 atm debug portstats 35 atm oam config 36 atm oam list 37 atm oam modify 38 atm oam ping 39 atm...

Page 6: ...delete 55 atm qosbook ctdlist 56 atm qosbook delete 57 atm qosbook flush 58 atm qosbook list 59 AutoPVC Commands 61 autopvc config 62 autopvc list 63 Config Commands 65 config delete 66 config dump 67 config flush 68 config list 69 config load 70 config save 71 Connection Commands 73 connection appconfig 74 connection appinfo 76 connection applist 77 connection bind 78 connection bindlist 79 conne...

Page 7: ...1 dhcp client flush 103 dhcp client ifadd 104 dhcp client ifattach 105 dhcp client ifconfig 106 dhcp client ifdelete 108 dhcp client iflist 109 dhcp client ifrelease 110 dhcp client ifrenew 112 dhcp client debug clear 114 dhcp client debug stats 115 dhcp client debug traceconfig 116 dhcp relay add 117 dhcp relay config 118 dhcp relay delete 119 dhcp relay flush 120 dhcp relay ifconfig 121 dhcp rel...

Page 8: ...ver option tmpllist 144 dhcp server pool add 145 dhcp server pool config 146 dhcp server pool delete 148 dhcp server pool flush 149 dhcp server pool list 150 dhcp server pool optadd 151 dhcp server pool optdelete 152 dhcp server pool rtadd 153 dhcp server pool rtdelete 154 dhcp server pool ruleadd 155 dhcp server pool ruledelete 156 dhcp server rule add 157 dhcp server rule delete 158 dhcp server ...

Page 9: ...8 dsd debug proxy 189 dsd debug recycling 190 dsd debug stats 191 dsd intercept config 192 dsd intercept stats 194 dsd syslog config 195 dsd syslog list 196 dsd urlfilter config 197 dsd urlfilter rule add 198 dsd urlfilter rule delete 199 dsd urlfilter rule flush 200 dsd urlfilter rule list 201 dsd urlfilter rule modify 202 dsd webfilter cache flush 203 dsd webfilter cache stats 204 dsd webfilter ...

Page 10: ...st 227 dsd webfilter server modify 228 dsd webfilter standard category add 229 dsd webfilter standard category create 230 dsd webfilter standard category delete 231 dsd webfilter standard category flush 232 dsd webfilter standard category list 233 dsd webfilter standard category remove 234 dsd webfilter standard level add 235 dsd webfilter standard level delete 236 dsd webfilter standard level flu...

Page 11: ...eth flush 272 eth bridge clear 273 eth bridge config 274 eth bridge flush 275 eth bridge ifadd 276 eth bridge ifattach 277 eth bridge ifconfig 278 eth bridge ifdelete 280 eth bridge ifdetach 281 eth bridge iflist 282 eth bridge macadd 283 eth bridge macdelete 284 eth bridge maclist 285 eth bridge mcdadd 286 eth bridge mcddelete 287 eth bridge mcdlist 288 eth device ifconfig 289 eth device iflist 2...

Page 12: ... flush 316 firewall chain list 317 firewall debug clear 318 firewall debug stats 319 firewall debug traceconfig 320 firewall level add 321 firewall level delete 322 firewall level flush 323 firewall level list 324 firewall level modify 325 firewall level set 326 firewall rule add 327 firewall rule delete 329 firewall rule flush 330 firewall rule list 331 firewall rule modify 333 firewall rule debu...

Page 13: ...nds 357 ids clear 358 ids config 359 ids parser list 360 ids parser modify 361 ids pattern clear 362 ids pattern list 363 ids pattern stats 364 ids signature list 365 ids signature modify 366 ids threshold clear 367 ids threshold list 368 ids threshold modify 369 Interface Commands 371 interface list 372 IP Commands 373 ip arpadd 375 ip arpdelete 376 ip arplist 377 ip config 378 ip flush 380 ip if...

Page 14: ...00 ip auto ifattach 401 ip auto ifconfig 402 ip auto ifdelete 404 ip auto ifdetach 405 ip auto iflist 406 ip debug httpprobe 407 ip debug ping 408 ip debug sendto 409 ip debug stats 411 ip debug traceconfig 412 ip debug traceroute 413 IPQoS Commands 415 ipqos config 416 ipqos list 418 ipqos ef config 419 ipqos ef list 420 ipqos ef stats 421 ipqos queue clear 422 ipqos queue config 423 ipqos queue ...

Page 15: ... label rule debug stats 445 label rule debug traceconfig 446 Language Commands 447 language config 448 language delete 449 language list 450 MLP Commands 451 mlp flush 452 mlp import 453 mlp debug export 454 mlp debug stats 455 mlp debug traceconfig 456 mlp privilege add 457 mlp privilege addzone 458 mlp privilege config 459 mlp privilege delete 460 mlp privilege list 461 mlp privilege removezone ...

Page 16: ...PP Commands 485 ppp flush 486 ppp ifadd 487 ppp ifattach 488 ppp ifconfig 489 ppp ifdelete 493 ppp ifdetach 494 ppp iflist 495 ppp ifscan 496 ppp rtadd 497 ppp rtdelete 499 ppp relay flush 500 ppp relay ifadd 501 ppp relay ifdelete 502 ppp relay iflist 503 ppp relay sesslist 504 PPTP Commands 505 pptp ifadd 506 pptp flush 507 pptp list 508 pptp profadd 509 pptp profdelete 510 pptp proflist 511 Ser...

Page 17: ...ce system ifdelete 526 service system ipadd 527 service system ipdelete 528 service system list 529 service system mapadd 530 service system mapdelete 531 service system modify 532 Script Commands 533 script add 534 script delete 535 script flush 536 script list 537 script run 538 SNMP Commands 539 snmp config 540 snmp get 541 snmp getnext 542 snmp walk 543 snmp community add 544 snmp community de...

Page 18: ... Commands 563 system config 564 system flush 566 system locale 567 system reboot 569 system reset 570 system debug autosave 571 system debug stats 572 system ra config 573 system rtc synchronize 574 system rtc settime 575 Systemlog Commands 577 systemlog flush 578 systemlog show 579 systemlog send 580 UPnP Commands 581 upnp config 582 upnp flush 583 upnp list 584 User Commands 585 user add 586 use...

Page 19: ...ecmode config 607 wireless secmode wep 608 wireless secmode wpa psk 609 wireless stations list 610 wireless wds add 611 wireless wds config 612 wireless wds delete 613 wireless wds flush 614 wireless wds list 615 wireless wds scanresults 616 Abbreviations 617 System Logging Messages 621 Auto PVC Module 622 Configuration Module 622 DHCP Client Module 622 DHCP Relay Module 623 DHCP Server Module 623...

Page 20: ...SNTP Module 628 Software Module 629 UPnP Module 629 Wireless Module 629 Supported Key Names 631 Supported IP Protocols 632 Supported TCP UDP Port Names 633 Supported ICMP Type Names 636 Supported Facilities 637 Supported Severities 638 IP Precedence 638 Differentiated Services Code Point DSCP 639 ...

Page 21: ...y R4 3 1 For readability all are referred to as SpeedTouch throughout this document unless a specific variant is concerned Contents The CLI Reference Guide describes all the available CLI commands of the SpeedTouch per command group and in alphabetical order Each command is described in a systematic manner The full name of the CLI command including the group selection A short description of the CL...

Page 22: ...tive mutually exclusive elements Square brackets indicate optional elements Braces indicate a required choice Braces within square brackets indicate a required choice within an optional element string indicates that an alphanumerical string without blanks must be used quoted string indicates that an alphanumerical string with blanks can be used The string must be enclosed in quotes Documentation a...

Page 23: ...v1 0 3 ADSL Commands Contents This chapter covers the following commands adsl config Show set the Asymmetric Digital Subscriber Line ADSL configuration 4 adsl info Show ADSL statistics and information about the SpeedTouch DSL line status 6 ...

Page 24: ...dsl config opermode ansi g dmt_annex_a g lite multimode maxbitspertoneUS number 10 14 trace off on extendedBWmode number 0 2 opermode The operational mode of the SpeedTouch modem Choose between ansi g dmt_annex_a g lite multimode The default is multimode OPTIONAL maxbitspertoneUS A number between 10 and 14 bits per tone Represents the maximum number of bits which can be allocated to each ADSL DMT ...

Page 25: ...h modem Choose between ansi g dmt_annex_b multimode The default is multimode OPTIONAL maxbitspertoneUS A number between 10 and 14 bits per tone Represents the maximum number of bits which can be allocated to each ADSL DMT tone in the upstream direction The default is 13 OPTIONAL trace Enable disable adsl tracing OPTIONAL extendedBWmode Select either 0 1 or2 OPTIONAL If the command adsl config is e...

Page 26: ...following page adsl info adsl info Modemstate up Operation Mode G DMT Annex A POTS Overlay Mode Channel Mode fast Number of resets 1 Vendor ITU Local Remote Country 0f 0f Vendor ALCB ALCB VendorSpecific 0000 0000 StandardRevisionNr 01 01 Downstream Upstream Margin dB 25 31 Attenuation dB 26 15 Available Bandwidth Cells s Kbit s Downstream 7924 3360 Upstream 452 192 Transfer statistics Total since ...

Page 27: ...s of power 0 seconds Loss of link 0 seconds Errored seconds 0 seconds Far end failures current day Errored seconds 0 seconds Far end failures previous day Errored seconds 0 seconds Near end failures since reset Loss of frame 0 failures Loss of signal 0 failures Loss of power 0 failures Errored seconds 0 seconds Near end failures last 15 minutes Loss of frame 0 seconds Loss of signal 0 seconds Loss...

Page 28: ...ADSL Commands E DOC CTC 20050531 0057 v1 0 8 ...

Page 29: ...undle flush Flush all bundles 25 atm bundle ifadd Add an interface on a bundle 26 atm bundle ifconfig Configure an interface from a bundle 27 atm bundle ifdelete Remove an interface from a bundle 28 atm bundle list Display the current bundles 29 atm cac config Configure the ATM connection admission control 30 atm cac list Display all the CAC parameters 31 atm cac overbooking Configure ATM overbook...

Page 30: ... Delete an existing phonebook entry 48 atm phonebook flush Flush all the phonebook entries 49 atm phonebook list Display the current phonebook 50 atm qosbook add Add a new QoS book entry 51 atm qosbook config Modify the QoS book configuration 52 atm qosbook ctdadd Add a Connection Traffic Descriptor CTD 53 atm qosbook ctddelete Delete a CTD 55 atm qosbook ctdlist Display all CTDs 56 atm qosbook de...

Page 31: ...ATM Commands E DOC CTC 20050531 0057 v1 0 11 atm flush Flush all Asynchronous Transfer Mode ATM interfaces SYNTAX atm flush ...

Page 32: ...on will double as interface name REQUIRED atm iflist atm_0_35 dest atm_pvc_0_35 Retry 10 QoS default Encaps vcmux Fcs disabled Ulp mac Connection State connected atm ifadd intf RtPPPoA_atm atm iflist atm_0_35 dest atm_pvc_0_35 Retry 10 QoS default Encaps vcmux Fcs disabled Ulp mac Connection State connected RtPPPoA_atm dest none Retry 10 QoS default Encaps llc Fcs disabled Ulp ip Connection State ...

Page 33: ... default Encaps vcmux Fcs off Ulp mac Connection State connected RtPPPoA_atm dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs off Ulp ppp Connection State not connected atm ifattach intf RtPPPoA_atm atm iflist atm_0_35 dest atm_pvc_0_35 Retry 10 QoS default Encaps vcmux Fcs off Ulp mac Connection State connected RtPPPoA_atm dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs off Ulp ppp Connectio...

Page 34: ...ype of encapsulation to be used for this ATM interface Choose between llc Logical Link Control LLC Sub Network Access Protocol SNAP vcmux Virtual Channel MUltipleXing VCMUX The default is llc OPTIONAL fcs Enable or disable the inclusion of the Ethernet Frame Check Sequence FCS in the packet header on the WAN side only used for llc encapsulation for mac The default is disabled Note This parameter i...

Page 35: ...tm_pvc_8_35 Retry 10 QoS default Encaps llc Fcs disabled Ulp mac Connection State not connected atm ifconfig intf atm_8_35 dest atm_pvc_8_35 encaps vcmux ulp ppp atm iflist atm_0_35 dest atm_pvc_0_35 Retry 10 QoS default Encaps llc Fcs disabled Ulp mac Connection State connected atm_8_35 dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs disabled Ulp ppp Connection State not connected ...

Page 36: ..._35 dest atm_pvc_0_35 Retry 10 QoS default Encaps vcmux Fcs off Ulp mac Connection State connected RtPPPoA_atm dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs off Ulp ppp Connection State connected atm ifdelete intf RtPPPoA_atm atm iflist atm_0_35 dest atm_pvc_0_35 Retry 10 QoS default Encaps vcmux Fcs off Ulp mac Connection State connected atm ifadd Create a new ATM interface atm iflist Displa...

Page 37: ...S default Encaps vcmux Fcs off Ulp mac Connection State connected RtPPPoA_atm dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs off Ulp ppp Connection State connected atm ifdetach intf RtPPPoA_atm atm iflist atm_0_35 dest atm_pvc_0_35 Retry 10 QoS default Encaps vcmux Fcs off Ulp mac Connection State connected RtPPPoA_atm dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs off Ulp ppp Connection S...

Page 38: ...re shown OPTIONAL atm iflist atm_0_35 dest atm_pvc_0_35 Retry 10 QoS default Encaps vcmux Fcs off Ulp mac Connection State connected RtPPPoA_atm dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs off Ulp ppp Connection State connected atm iflist intf RtPPPoA_atm RtPPPoA_atm dest RtPPPoA Retry 10 QoS default Encaps vcmux Fcs off Ulp ppp Connection State connected atm ifadd Create a new ATM interfac...

Page 39: ... string name The name of the new bundle REQUIRED atm bundle add name myBundle atm bundle list myBundle Connection state not connected Retry 10 Policy priority Propagate disabled TX requested bytes 0 requested frames 0 TX bytes 0 frames 0 RX bytes 0 frames 0 atm bundle delete Delete a bundle of interfaces atm bundle list Display the current bundles ...

Page 40: ...m bundle attach name string name The name of the bundle to be attached REQUIRED atm bundle attach name myBundle atm bundle list myBundle Connection state connected Retry 10 Policy priority Propagate disabled TX requested bytes 0 requested frames 0 TX bytes 0 frames 0 RX bytes 0 frames 0 atm bundle detach Detach a bundle of interfaces ...

Page 41: ...kets of the same connection will be sent via the same interface The default is priority OPTIONAL propagate Enable or disable propagation of packets When propagation is enabled packets are sent via the first interface configured for that traffic If the interface goes down the next interface in the bundle will be used The default is disabled OPTIONAL retry A number between 0 and 65535 Represents the...

Page 42: ...0 22 atm bundle clear Clear the bundle statistics SYNTAX where atm bundle clear name string name The name of the bundle for which the statistics must be cleared Note If not specified the statistics for all the bundles will be cleared OPTIONAL ...

Page 43: ...tm bundle delete Delete a bundle of interfaces SYNTAX where RELATED COMMANDS atm bundle delete name string name The name of the bundle to be deleted REQUIRED atm bundle add Add a new bundle of interfaces atm bundle list Display the current bundles ...

Page 44: ...050531 0057 v1 0 24 atm bundle detach Detach a bundle of interfaces SYNTAX where RELATED COMMANDS atm bundle detach intf string intf The name of the bundle to be detached REQUIRED atm bundle attach Attach a bundle of interfaces ...

Page 45: ...ATM Commands E DOC CTC 20050531 0057 v1 0 25 atm bundle flush Flush all bundles SYNTAX atm bundle flush ...

Page 46: ... name of the ATM interface to be added REQUIRED index A number between 0 and 6 Represents the index of the ATM interface OPTIONAL atm bundle ifadd name myBundle intf myATMintf atm bundle list myBundle Connection state not connected Retry 15 Policy connection TX requested bytes 0 requested frames 0 TX bytes 0 frames 0 RX bytes 0 frames 0 Interface myATMintf State enabled Selector 0 15 TX bytes 0 fr...

Page 47: ...he name of the bundle from which an ATM interface must be configured REQUIRED intf The name of the ATM interface to be configured REQUIRED state Enable or disable the ATM interface The default is enabled OPTIONAL low A number between 0 and 15 Represents the low selector value Note This parameter must only be configured when the policy of the bundle is set to priority see atm bundle config on page ...

Page 48: ... string intf string name The name of the bundle from which an ATM interface must be removed REQUIRED intf The name of the ATM interface to be removed REQUIRED atm bundle iflist Test dest none Retry 10 QoS default Encaps llc Fcs off Ulp ip Connection State not connected atm bundle ifdelete intf Test atm bundle iflist atm bundle ifadd Add an interface on a bundle ...

Page 49: ...nection state not connected Retry 10 Policy priority TX requested bytes 0 requested frames 0 TX bytes 0 frames 0 RX bytes 0 frames 0 Interface Test State enabled Selector 0 15 TX bytes 0 frames 0 RX bytes 0 frames 0 RX discarded bytes 0 discarded frames 0 Disconnects 0 atm bundle add Add a new bundle of interfaces atm bundle delete Delete a bundle of interfaces ...

Page 50: ...l0 dsl1 atm2 atm3 aal5 atm5 or number state disabled enabled config port The port for which CAC is configured REQUIRED state Enable disable CAC for an ATM port REQUIRED Administrator atm cac config port dsl0 state enabled atm cac config port dsl0 state enabled Administrator atm cac list Display all the CAC parameters atm cac overbooking Configure ATM overbooking parameters ...

Page 51: ...strator atm cac list CAC port dsl0 state enabled CAC port dsl1 state enabled CAC port atm2 state enabled CAC port aal5 state disabled CAC port atm5 state disabled Overbooking realtime 0 non realtime 0 Administrator atm cac atm cac config Configure the ATM connection admission control atm cac overbooking Configure ATM overbooking parameters ...

Page 52: ...ED nrt A number between 0 and 1000 The non realtime overbooking percentage REQUIRED Administrator atm cac overbooking rt 20 nrt 500 Administrator atm cac list CAC port dsl0 state enabled CAC port dsl1 state enabled CAC port atm2 state enabled CAC port aal5 state disabled CAC port atm5 state disabled Overbooking realtime 20 non realtime 500 Administrator atm cac atm cac config Configure the ATM con...

Page 53: ...d Choose between DSL0 Or specify a port number dsl0 has port number 0 REQUIRED vpi A number between 0 and 15 Represents the Virtual Path Identifier VPI number for which statistics will be retrieved REQUIRED vci A number between 0 and 511 Represents the Virtual Channel Identifier VCI number for which statistics will be retrieved OPTIONAL clear Enable or disable clearing of the statistics after requ...

Page 54: ...e clearing of the statistics after request OPTIONAL admin atm debug gstats of received octets 1802 of transmitted octets 4346 of received cells 34 of transmitted cells 82 of unknown cells 0 of errors on the input 0 of errors on output 0 admin atm debug atm debug aal5stats Display ATM Adaptation Layer 5 AAL5 port specific ATM statistics atm debug portstats Display port specific ATM statistics ...

Page 55: ...e between DSL0 Or specify a port number dsl0 has port number 0 REQUIRED clear Enable or disable clearing of the statistics after request OPTIONAL atm debug portstats port dsl0 of received octets 1961 of transmitted octets 4717 of received cells 37 of transmitted cells 89 of unknown cells 0 of errors on the input 0 of errors on output 0 atm debug aal5stats Display ATM Adaptation Layer 5 AAL5 port s...

Page 56: ...er 0 or 1 Represents the Cell Loss Priority CLP bit value of the OAM cells The default is 1 OPTIONAL loopbackid A hexadecimal string Represents the loopback ID for processing of segment loopback cells The default is 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a OPTIONAL atm oam list Display the ATM OAM settings atm oam modify Modify the ATM OAM data blocking mode atm oam ping Send ATM loopback c...

Page 57: ...bit value 1 Loopback id 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a OAM data blocking mode Port dsl0 blocking Port dsl1 blocking Port atm2 blocking Port atm3 blocking Port aal5 blocking Port atm5 blocking atm oam config Modify the ATM Operation and Maintenance OAM settings atm oam modify Modify the ATM OAM data blocking mode atm oam ping Send ATM loopback cells ...

Page 58: ...mp CLP bit value 1 Loopback id 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a OAM data blocking mode Port dsl0 blocking Port dsl1 blocking Port atm2 blocking Port atm3 blocking Port aal5 blocking Port atm5 blocking atm oam modify port dsl1 blocking disabled atm oam list OAM config dump CLP bit value 1 Loopback id 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a 6a OAM data blocking mode Port dsl0 blo...

Page 59: ...successful sequence 1 time 37890 usec loopback successful sequence 2 time 39118 usec loopback successful sequence 3 time 39116 usec loopback successful sequence 4 time 39187 usec loopback successful sequence 5 time 38605 usec loopback successful sequence 6 time 38764 usec loopback successful sequence 7 time 38752 usec loopback successful sequence 8 time 38813 usec loopback successful sequence 9 ti...

Page 60: ...list atm oam cclist PORT 0 VPI 15 VCI 16 End2End Mode Auto Segment Mode Auto PORT 0 VPI 0 VCI 35 End2End Mode Auto Segment Mode Auto PORT 0 VPI 8 VCI 35 End2End Mode Auto Segment Mode Auto PORT 0 VPI 0 VCI 16 End2End Mode Auto Segment Mode Auto atm oam cc modify Modify CC on the connection atm oam cc send Send CC activate deactivate to connection ...

Page 61: ...IRED vci A number between 0 and 511 Represents the VCI Note For a Virtual Path VP cross connection use 0 or do not specify OPTIONAL transmit Enable or disable transmission of CC cells OPTIONAL receive Enable or disable loss of continuity OPTIONAL auto Enable or disable remote CC activation deactivation OPTIONAL span Select the CC span Choose between end2end monitoring occurs on the entire VC betwe...

Page 62: ...he VPI REQUIRED vci A number between 0 and 511 Represents the VCI Note For a VP cross connection use 0 or do not specify OPTIONAL span Select the CC span Choose between end2end monitoring occurs on the entire VC between two ATM end stations segment monitoring occurs on a VC segment between the SpeedTouch and a first hop ATM switch OPTIONAL action Activate or deactivate CC The default is deactivate...

Page 63: ...0 has port number 0 REQUIRED vpi A number between 0 and 15 Represents the VPI REQUIRED vci A number between 0 and 511 Represents the VCI Note For a VP cross connection use 0 or do not specify OPTIONAL atm oam vclb add port dsl0 vpi 0 vci 36 atm oam vclb list PORT 0 VPI 0 VCI 36 atm oam vclb add port dsl1 vpi 0 vci 37 atm oam vclb list PORT 0 VPI 0 VCI 36 PORT 1 VPI 0 VCI 37 atm oam vclb del Delete...

Page 64: ...fy a port number dsl0 has port number 0 REQUIRED vpi A number between 0 and 15 Represents the VPI REQUIRED vci A number between 0 and 511 Represents the VCI Note For a VP cross connection use 0 or do not specify OPTIONAL atm oam vclb list PORT 0 VPI 0 VCI 36 PORT 1 VPI 0 VCI 37 atm oam vclb del port dsl1 vpi 0 vci 37 atm oam vclb list PORT 0 VPI 0 VCI 36 atm oam vclb add Create a loopback connecti...

Page 65: ...clb list List all VC loopback connections SYNTAX EXAMPLE RELATED COMMANDS atm oam vclb list atm oam vclb list PORT 0 VPI 0 VCI 36 PORT 1 VPI 0 VCI 37 atm oam vclb add Create a loopback connection for VC atm oam vclb del Delete a loopback connection for VC ...

Page 66: ...e of a phonebook entry intended for the PPP to DHCP spoofing packet service must start with DHCP for example DHCP_Spoof01 REQUIRED addr The ATM address for this destination It is composed of a VPI and a VCI identifying ATM virtual channels In most cases the values are provided by the Service Provider Accepted VPI a number between 0 and 15 Accepted VCI a number between 0 and 511 REQUIRED atm phoneb...

Page 67: ...tm phonebook autolist Show the auto PVCs SYNTAX EXAMPLE RELATED COMMANDS Auto PVCs are only shown if they are supported by the Central Office DSLAM atm phonebook autolist atm phonebook autolist 8 35 atm phonebook list Display the current phonebook ...

Page 68: ...ket service atm phonebook delete name string name The name of the phonebook entry to be deleted Tip Use the command atm phonebook list to check whether the entry is in use Use 1 or not Use 0 REQUIRED atm phonebook list Name Use Address atm_pvc_0_35 1 0 35 RtPPPoA 0 8 35 atm phonebook delete name RtPPPoA atm phonebook list Name Use Address atm_pvc_0_35 1 0 35 atm phonebook add Add a new phonebook e...

Page 69: ...re in use cannot be flushed 2 This command does not impact previously saved configurations atm phonebook flush atm phonebook list Name Use Address atm_pvc_0_35 1 0 35 RtPPPoA 0 8 35 atm phonebook flush Some phonebook entries are still in use Entries that are in use cannot be deleted atm phonebook list Name Use Address atm_pvc_0_35 1 0 35 ...

Page 70: ...rrent phonebook SYNTAX EXAMPLE RELATED COMMANDS atm phonebook list atm phonebook list Name Use Address atm_pvc_0_35 1 0 35 RtPPPoA 0 8 35 atm phonebook add Add a new phonebook entry atm phonebook autolist Show the auto PVCs atm phonebook delete Delete an existing phonebook entry ...

Page 71: ... string name The name of the new QoS entry REQUIRED txctd The name of the Conformance Traffic Descriptor CTD for the transmit upstream direction OPTIONAL rxctd The name of the CTD for the receive downstream direction OPTIONAL atm qosbook list Name Ref Tx CTD Rx CTD default 3 default default atm qosbook delete Delete a QoS book entry atm qosbook list Display the QoS book ...

Page 72: ... is shown in Kbits or bytes cells the output is shown in cps or cells The default is bytes OPTIONAL atm qosbook ctdlist Name Ref Conf Peak Sust Burst Minrate Frame Cdvt RT FD Kbits Kbits bytes Kbits bytes default 2 UBR linerate 0 0 0 0 0 disabled disabled atm qosbook config format cells atm qosbook ctdlist Name Ref Conf Peak Sust Burst Minrate Frame Cdvt RT FD cps cps cells cps cells default 2 UBR...

Page 73: ...r second The default is 0 indicates linerate for UBR OPTIONAL sustrate A number between 0 and 27786 Represents the sustainable rate in kilobits per second VBR only The default is 0 OPTIONAL maxburst A number between 48 and 12240 Represents the maximum burst size in bytes VBR or GFR The default is 0 OPTIONAL realtime Enable or disable realtime traffic VBR only The default is disabled OPTIONAL atm q...

Page 74: ...matching multiple of 48 bytes as can be seen when displaying the profile via the command atm qosbook ctdlist burst 144 RELATED COMMANDS atm qosbook ctdadd name Medium conformance VBR peakrate 27786 sustrate 20000 maxburst 100 atm qosbook ctdlist Name Ref Conf Peak Sust Burst Minrate Frame Cdvt RT FD Kbits Kbits bytes Kbits bytes default 2 UBR linerate 0 0 0 0 0 disabled disabled Medium 0 VBR 27786...

Page 75: ...default is disabled OPTIONAL atm qosbook ctdlist Name Ref Conf Peak Sust Burst Minrate Frame Cdvt RT FD Kbits Kbits bytes Kbits bytes default 2 UBR linerate 0 0 0 0 0 disabled disabled High 0 CBR 27786 0 0 0 0 0 disabled disabled atm qosbook ctddelete name High atm qosbook ctdlist Name Ref Conf Peak Sust Burst Minrate Frame Cdvt RT FD Kbits Kbits bytes Kbits bytes default 2 UBR linerate 0 0 0 0 0 ...

Page 76: ... atm qosbook ctdlist atm qosbook ctdlist Name Ref Conf Peak Sust Burst Minrate Frame Cdvt RT FD Kbits Kbits bytes Kbits bytes default 2 UBR linerate 0 0 0 0 0 disabled disabled High 0 CBR 27786 0 0 0 0 0 disabled disabled atm qosbook ctdadd Add a Connection Traffic Descriptor CTD atm qosbook ctddelete Delete a CTD ...

Page 77: ...fault is disabled OPTIONAL atm qosbook list Name Ref Type TX peak sust burst RX peak sust burst framediscard Kbits Kbits bytes Kbits Kbits bytes default 3 ubr linerate 0 0 linerate 0 0 disabled TestVBR 0 vbr nrt 1500 1000 144 1500 1000 144 enabled atm qosbook delete name TestVBR atm qosbook list Name Ref Type TX peak sust burst RX peak sust burst framediscard Kbits Kbits bytes Kbits Kbits bytes de...

Page 78: ...ATM Commands E DOC CTC 20050531 0057 v1 0 58 atm qosbook flush Flush all the QoS book entries SYNTAX The flush command does not impact previously saved configurations atm qosbook flush ...

Page 79: ...m qosbook list atm qosbook list Name Ref Type TX peak sust burst RX peak sust burst framediscard Kbits Kbits bytes Kbits Kbits bytes default 3 ubr linerate 0 0 linerate 0 0 disabled TestVBR 0 vbr nrt 1500 1000 144 1500 1000 144 enabled atm qosbook add Add a new QoS book entry atm qosbook delete Delete a QoS book entry ...

Page 80: ...ATM Commands E DOC CTC 20050531 0057 v1 0 60 ...

Page 81: ...57 v1 0 61 AutoPVC Commands Introduction This chapter describes the commands of the autopvc command group Contents This chapter covers the following commands autopvc config Configure autopvc 62 autopvc list Show the retrieved information 63 ...

Page 82: ...r configuration active both ILMI VP VC 0 16 and pseudo ILMI VP VC 15 16 are enabled When the connection parameters are written to the MIB these parameters are used to configure phonebook entries qosbook profiles and bind bridge or PPPoE interfaces on top The default is passive OPTIONAL type Select the type of autopvc Choose between bridge pppoerelay an ETHoA interface will be created will be bound...

Page 83: ...viceConnInfoExtension AtmServiceTypeExtension AAL5ProfileExtension table Select the autopvc table for which the information must be shown Choose between Port AtmLayer Vpc Vcc Address AddressRegistrationAdmin AtmServiceType AtmServiceConnectionInfo AAL1Profile AAL34Profile AAL5Profile AAL2CommonProfile AAL2TrunkingProfile AAL2LESProfile AtmServiceConnInfoExtension AtmServiceTypeExtension AAL5Profil...

Page 84: ...AutoPVC Commands E DOC CTC 20050531 0057 v1 0 64 ...

Page 85: ...r covers the following commands config delete Delete a user configuration file 66 config dump Show the saved configuration file 67 config flush Flush the loaded configuration 68 config list Show the current configuration set 69 config load Load complete saved backup or default configuration file 70 config save Store the current configuration in a backup file 71 ...

Page 86: ...SYNTAX where RELATED COMMANDS config delete filename string filename Name of the user configuration file to be deleted Note If not specified all the user configuration files that were saved in the SpeedTouch permanent storage will be deleted OPTIONAL config dump Show the saved configuration file ...

Page 87: ...Config Commands E DOC CTC 20050531 0057 v1 0 67 config dump Show the saved configuration file SYNTAX RELATED COMMANDS config dump config delete Delete a user configuration file ...

Page 88: ...his flush command combines all the possible flush commands 2 This command does not affect saved configurations config flush flush_ip disabled enabled flush_ip Flush IP settings enabled or not disabled The default is disabled Note Not keeping the IP settings could cause lost IP connectivity in the LAN OPTIONAL ...

Page 89: ...set SYNTAX where RELATED COMMANDS config list templates disabled enabled templates List the template files disabled or not enabled The default is disabled OPTIONAL config load Load complete saved backup or default configuration file config save Store the current configuration in a backup file ...

Page 90: ...and string when loaded enabled or not disabled OPTIONAL filename Name of the configuration file to be loaded OPTIONAL ip rtlist Destination Source Gateway Intf Mtrc 10 0 0 0 24 10 0 0 0 24 10 0 0 140 eth0 0 172 16 0 5 32 0 0 0 0 0 172 16 0 5 cip1 0 10 0 0 140 32 0 0 0 0 0 10 0 0 140 eth0 0 127 0 0 1 32 0 0 0 0 0 127 0 0 1 loop 0 172 16 0 0 24 0 0 0 0 0 172 16 0 5 cip1 1 config load flush_ip no ip ...

Page 91: ...he backup file is saved in the SpeedTouch permanent storage This file can be downloaded via the SpeedTouch web pages or via an FTP session SYNTAX where RELATED COMMANDS config save filename string filename The filename for the backup file of the current configuration REQUIRED config list Show the current configuration set config load Load complete saved backup or default configuration file ...

Page 92: ...Config Commands E DOC CTC 20050531 0057 v1 0 72 ...

Page 93: ...n Clean the connection database by forcing timeouts 80 connection clear Kill all the connections 81 connection config Configure the connection handling 82 connection debug The connection debug commands 83 connection describe Describe the streams of a connection 84 connection flush Flush the current connection configuration 85 connection info Show all the registered modules with some info 86 connec...

Page 94: ...g Enable disabled floating port for IKE helper OPTIONAL tracelevel A number between 1 and 4 Represents the SIP trace level Choose between 1 feature errors 2 feature traces 3 all errors 4 all traces The default is 1 OPTIONAL connection applist Application Proto DefaultPort Traces Timeout IP6TO4 6to4 0 enabled unavailable PPTP tcp 1723 enabled unavailable ESP esp 0 unavailable 15 0 IKE udp 500 disab...

Page 95: ...Connection Commands E DOC CTC 20050531 0057 v1 0 75 RELATED COMMANDS connection appinfo Display CONN NAT application specific info connection applist List the available CONN NAT application helpers ...

Page 96: ...string application The name of a CONN NAT application helper Tip Use the command connection applist to obtain a list of CONN NAT application helpers REQUIRED connection appinfo application SIP SIP ALG session SIPALG pool 138 in use 0 bottom 138 connection appconfig Configure the available CONN NAT application helpers connection applist List the available CONN NAT application helpers ...

Page 97: ...IP udp 5060 disabled 6 0 trace level 1 JABBER tcp 5222 disabled 2 0 CU SeeMe udp 7648 enabled unavailable RAUDIO PNA tcp 7070 enabled unavailable RTSP tcp 554 enabled unavailable ILS tcp 389 unavailable 5 0 H245 tcp 0 unavailable 5 0 H323 tcp 1720 enabled unavailable IRC tcp 6667 enabled 5 0 LOOSE UDP udp 0 enabled 5 0 FTP tcp 21 enabled unavailable For some CONN NAT application helpers either tra...

Page 98: ...rs REQUIRED port The port number or port range this application handler should work on REQUIRED connection bindlist Application Proto Portrange Flags JABBER tcp 15222 JABBER tcp 5222 FTP tcp 21 IRC tcp 6660 IP6TO4 6to4 0 connection bind application IRC port 6750 connection bindlist Application Proto Portrange IRC tcp 6750 JABBER tcp 15222 JABBER tcp 5222 FTP tcp 21 IRC tcp 6660 IP6TO4 6to4 0 conne...

Page 99: ...ication Proto Portrange Flags LOOSE UDP udp 67 JABBER tcp 15222 JABBER tcp 5222 FTP tcp 21 IRC tcp 6660 6669 H323 tcp 1720 ILS tcp 1002 ILS tcp 389 RTSP tcp 554 RAUDIO PNA tcp 7070 CU SeeMe udp 7648 SIP udp 5060 IKE udp 500 ESP esp 0 PPTP tcp 1723 IP6TO4 6to4 0 connection bind Create a new CONN NAT application helper port binding connection unbind Delete an existing CONN NAT application helper por...

Page 100: ...SHED 15 7 INIT 16 192 168 1 64 1377 192 168 1 254 23 LocalNetwork 1390 tcp 0 RESP 17 192 168 1 254 23 192 168 1 64 1377 R loop 951 tcp 0 34 tcp ACTIVE TCPS_CLOSE_WAIT TCPS_FIN_WAIT_1 I 57 16 INIT 68 192 168 1 64 1417 192 168 1 254 21 LocalNetwork 11 tcp 0 RESP 69 192 168 1 254 21 192 168 1 64 1417 R loop 10 tcp 0 connection clean connection list ID proto state substate flags timeout 8 tcp ACTIVE T...

Page 101: ...Connection Commands E DOC CTC 20050531 0057 v1 0 81 connection clear Kill all the connections SYNTAX EXAMPLE connection clear connection clear Connection to host lost ...

Page 102: ...bes on idle connections The default is disabled OPTIONAL udptrackmode Select the User Datagram Protocol UDP connection tracking mode Choose between strict replies to a request from a client must be in a specific window to the client loose inbound packets are allowed on the port that was first used to start the communication with the server for example to allow a client of an online game to obtain ...

Page 103: ...he connection debug commands SYNTAX where EXAMPLE connection debug trace disabled enabled trace Enable or disable traces The default is disabled OPTIONAL connection debug connection traces disabled connection debug trace enabled connection debug connection traces enabled ...

Page 104: ...23 LocalNetwork 548 tcp 0 RESP 125 192 168 1 254 23 192 168 1 64 1979 R loop 396 tcp 0 connection describe id 62 ID proto state substate flags timeout 62 tcp ACTIVE TCPS_ESTABLISHED TCPS_ESTABLISHED 14 59 FW cache valid FP IDS NAT cache valid No translation INIT 124 192 168 1 64 1979 192 168 1 254 23 LocalNetwork 576 tcp 0 ROUTING cache valid FP gateway 127 0 0 1 LABEL cache valid FP no route labe...

Page 105: ...Connection Commands E DOC CTC 20050531 0057 v1 0 85 connection flush Flush the current connection configuration SYNTAX connection flush ...

Page 106: ...gistered connection modules Module FW holds private data F 10264 S 6592 Module IDS holds private data F 0 S 0 Module NAT holds private data F 0 S 0 Registered stream modules Module ROUTING holds private data F 10199 S 6657 Module LABEL holds private data F 22546 S 19870 Module IPQOS holds private data F 10202 S 6653 Module TRIGGER holds private data F 10202 S 6659 ...

Page 107: ...r A number between 1 and 2048 Represents the number of connections to be displayed Note If not specified all the connections will be displayed OPTIONAL connection list ID proto state substate flags timeout 58 tcp ACTIVE TCPS_ESTABLISHED TCPS_ESTABLISHED 15 7 INIT 116 10 0 0 1 1106 10 0 0 138 23 eth0 331 tcp 0 RESP 117 10 0 0 138 23 10 0 0 1 1106 R loop 229 tcp 0 ...

Page 108: ...Connection Commands E DOC CTC 20050531 0057 v1 0 88 connection refresh Invalidate all the cached decisions SYNTAX connection refresh ...

Page 109: ...ons 0 Number of idle connections 1 Number of TCP connections 2 Number of UDP connections 1 Number of ICMP connections 0 Number of non TCP UDP ICMP connections 0 Number of TCP open connections 0 Number of TCP established connections 1 Number of TCP closing connections 1 Stream cache statistics Maximum number of hash collisions 0 of hash entries with collisions 0 00 of hash entries unused 0 00 CONN ...

Page 110: ...pidle udpkill icmpkill ipidle ipkill timer The name of the connection idle timer to be reset Note If not specified all the timers will be reset to their default values REQUIRED connection timerconfig tcpidle 10 30 tcpneg 3 0 udp 1 19 icmp 2 0 ip 1 0 connection timerclear connection timerconfig tcpidle 15 0 tcpneg 2 0 udp 1 0 icmp 1 0 ip 1 0 connection timerconfig Configure the connection timeout h...

Page 111: ...he name of the connection idle timer ot be configured Choose between tcpidle tcpneg tcpkill udpidle udpkill icmpkill ipidle ipkill OPTIONAL value A number between 0 and 86400 seconds Represents the timer expire value OPTIONAL connection timerconfig tcpidle 15 0 tcpneg 2 0 udp 1 0 icmp 1 0 ip 1 0 connection timerconfig timer tcpidle value 360 connection timerconfig tcpidle 6 0 tcpneg 2 0 udp 1 0 ic...

Page 112: ...ation helpers REQUIRED port The port number or port range this application handler should work on REQUIRED connection bindlist Application Proto Portrange IRC tcp 6750 JABBER tcp 15222 JABBER tcp 5222 FTP tcp 21 IRC tcp 6660 IP6TO4 6to4 0 connection unbind application IRC port 6750 connection bindlist Application Proto Portrange JABBER tcp 15222 JABBER tcp 5222 FTP tcp 21 IRC tcp 6660 IP6TO4 6to4 ...

Page 113: ...cribes the commands of the cwmp CPE WAN Management Protocol command group Contents This chapter covers the following commands cwmp config Configure the cwmpd as seen from the ACS 94 cwmp traceconfig Enable or disable tracing 96 cwmp server config Configure the cwmpd as seen from the ACS 97 ...

Page 114: ...e cwmp daemon Choose between readonly full The default is readonly OPTIONAL periodicInform Set the periodicInform flag of the cwmp daemon Choose between enabled disabled The default is enabled OPTIONAL periodicInfInt A number of milliseconds Represents the interval between two periodicInform messages The default is 20000 OPTIONAL maxEnvelopes Set the maximum number of SOAP envelopes sent within on...

Page 115: ...flag of the cwmp daemon Choose between enabled disabled The default is enabled OPTIONAL cwmp config State disabled Mode readonly Max Envelopes 2 Connection Request Port 80 Periodic Inform enabled Periodic Inform Interval 20000 ms Connection Request enabled Connection Request UserName Connection Request PassWord Connection Request Path Digest Authentication Required enabled ...

Page 116: ...g OPTIONAL level Set the tracelevel 0 4 Choose between 0 no trace or debug message output 1 feature related warnings errors and exceptions black box debugging 2 feature related informational messages black box tracing 3 Design specific warnings errors and exceptions white box debugging 4 Design specific informational messages white box tracing OPTIONAL cwmp traceconfig State disabled Level 2 ...

Page 117: ... ACS server OPTIONAL port Set the port of the ACS server The default is 7002 OPTIONAL path Set the path of URL used to contact the ACS server OPTIONAL username Set the username for ACS Digest Authentication OPTIONAL password Set the password for ACS Digest Authentication OPTIONAL intf Set the interface used to contact the ACS server OPTIONAL cwmp server config ACS IP address 10 11 10 248 ACS port ...

Page 118: ...CWMP Commands E DOC CTC 20050531 0057 v1 0 98 ...

Page 119: ... DOC CTC 20050531 0057 v1 0 99 Debug Commands Introduction This chapter describes the commands of the debug command group Contents This chapter covers the following commands debug exec Execute a Trace Debug command 100 ...

Page 120: ...nds E DOC CTC 20050531 0057 v1 0 100 debug exec Execute a Trace Debug command SYNTAX where This command is for qualified personnel only debug exec cmd quoted string cmd A quoted Trace Debug command string REQUIRED ...

Page 121: ...Add a DHCP server to the DHCP server list 117 dhcp relay config Set the DHCP relay configuration settings 118 dhcp relay delete Delete a DHCP server from the DHCP server list 119 dhcp relay flush Flush the DHCP relay settings 120 dhcp relay ifconfig Configure a DHCP relay interface 121 dhcp relay iflist Show the configuration of the relay interfaces 122 dhcp relay list Display the DHCP server list...

Page 122: ... server pool 148 dhcp server pool flush Flush all DHCP server pools 149 dhcp server pool list List all DHCP server pools 150 dhcp server pool optadd Add an option instance to the DHCP server pool 151 dhcp server pool optdelete Delete an option instance from the DHCP server pool 152 dhcp server pool rtadd Add a route to the DHCP server pool 153 dhcp server pool rtdelete Delete a route from the DHCP...

Page 123: ...ommands E DOC CTC 20050531 0057 v1 0 103 dhcp client flush Delete all the DHCP leases attached to dynamic interfaces SYNTAX The flush command does not impact previously saved configurations dhcp client flush ...

Page 124: ...e created REQUIRED dhcp client iflist No dynamic interfaces defined dhcp client ifadd intf myPPP_ppp dhcp client iflist myPPP_ppp INIT flags uc dns rt IP address 0 0 0 0 HW address SpeedTouch 00 DHCP server 255 255 255 255 metric rt 1 DNS 1 Number of leases 1 Total size of table 36 in use 1 free 97 dhcp client ifdelete Delete a DHCP lease attached to a dynamic interface dhcp client iflist List all...

Page 125: ... 1 DNS 1 Number of leases 1 Total size of table 36 in use 1 free 97 dhcp client ifattach intf myPPP_ppp dhcp client iflist myPPP_ppp SELECTING flags bc dns rt IP address 0 0 0 0 HW address SpeedTouch 00 DHCP server 255 255 255 255 metric rt 1 DNS 1 trying to get a lease for 1 sec transmission of DISCOVER in 0 sec retransmission timeout 4 nbr of retransmissions 2 Number of leases 1 Total size of ta...

Page 126: ...ostname should not be associated with this lease OPTIONAL userid The user class identifier option to be associated with the lease OPTIONAL addr The preferred dynamic IP address OPTIONAL leasetime A number of seconds Represents the time in seconds the client wants to use an address The default is 7200 2 hours Note Specifying 0 makes the lease permanent OPTIONAL dns Accept DNS server IP addresses en...

Page 127: ...nbr of retransmissions 2 Number of leases 1 Total size of table 36 in use 1 free 97 dhcp client ifconfig intf myPPP_ppp clientid myClientID hostname myHostName userid myUserID addr 10 0 0 1 leasetime 0 dhcp client iflist myPPP_ppp INIT flags bc dns rt IP address 10 0 0 1 HW address SpeedTouch 00 90 d0 01 47 f1 DHCP server 10 10 1 1 hostname myHostName client identifier 00 myClientID user class ide...

Page 128: ...st myPPP_ppp INIT flags bc dns rt IP address 10 0 0 1 HW address SpeedTouch 00 90 d0 01 47 f1 DHCP server 10 10 1 1 hostname myHostName client identifier 00 myClientID user class identifier myUserID metric rt 1 DNS 1 Number of leases 1 Total size of table 36 in use 1 free 97 dhcp client ifdelete intf myPPP_ppp dhcp client iflist No dynamic interfaces defined dhcp client ifadd Create a DHCP lease f...

Page 129: ...myClientID user class identifier myUserID metric rt 1 DNS 1 Number of leases 1 Total size of table 36 in use 1 free 97 dhcp client iflist myPPP_ppp INIT flags bc dns rt IP address 10 0 0 1 HW address SpeedTouch 00 90 d0 01 47 f1 DHCP server 10 10 1 1 hostname myHostName client identifier 00 myClientID user class identifier myUserID metric rt 1 DNS 1 lease renewal in 5 days 1 h 26 min 45 sec lease ...

Page 130: ...HW address 00 90 d0 01 47 de DHCP server 255 255 255 255 hostname NewLease req leasetime 10800 s trying to get a lease for 8 min 32 sec transmission of DISCOVER in 57 sec retransmission timeout 64 nbr of retransmissions 14 Number of leases 1 Total size of table 19 in use 1 free 94 dhcp client ifattach intf NewETHoA dhcp client iflist NewETHoA SELECTING flags uc IP address 0 0 0 0 HW address 00 90 ...

Page 131: ...Es sent 0 INFORMs sent 0 Number of dynamic interfaces 1 Memory usage Table size of dyn leases 19 in use 1 free 94 dhcp client ifrelease intf eth0 CTRL Q STATE ACTIVATE STATE IDLE STATE ACTIVATE dhcc intf 1 releases 10 0 0 3 to server 10 10 1 1 dhcc 10 0 0 3 deleted ok STATE IDLE STATE ACTIVATE dhcc intf 1 in init state n_send broadcast triggered To be verified dhcc broadcast discover disabled intf...

Page 132: ...Lease req leasetime 10800 s lease renewal in 5 days 58 min 48 sec lease rebinding in 8 days 20 h 6 min 18 sec lease expires in 10 days 2 h 28 min 48 sec Number of leases 1 Total size of table 19 in use 1 free 94 dhcp client ifrenew intf NewETHoA dhcp client iflist NewETHoA SELECTING flags uc IP address 10 0 0 10 HW address 00 90 d0 01 47 de DHCP server 255 255 255 255 hostname NewLease req leaseti...

Page 133: ...new intf eth0 dhcp client stats DHCP client statistics Corrupted packet recv 0 OFFERs recv 1 ACKs recv 1 NAKs recv 0 Pure BOOTP REPLIES 0 Other message types 0 DISCOVERs sent 1 REQUESTs sent 1 DECLINEs sent 0 RELEASEs sent 1 INFORMs sent 0 Number of dynamic interfaces 1 Memory usage Table size of dyn leases 18 in use 1 free 94 CTRL Q STATE IDLE STATE ACTIVATE dhcc intf 1 renews lease 10 0 0 3 dhcc...

Page 134: ...ent 9 DECLINEs sent 0 RELEASEs sent 0 INFORMs sent 0 Number of dynamic interfaces 1 Memory usage Table size of dyn leases 19 in use 1 free 94 dhcp client debug clear dhcp client debug stats DHCP client statistics Corrupted packet recv 0 OFFERs recv 0 ACKs recv 0 NAKs recv 0 Pure BOOTP REPLIES 0 Other message types 0 DISCOVERs sent 0 REQUESTs sent 0 DECLINEs sent 0 RELEASEs sent 0 INFORMs sent 0 Nu...

Page 135: ...nt debug stats DHCP client statistics Corrupted packet recv 0 OFFERs recv 1 ACKs recv 1 NAKs recv 0 Pure BOOTP REPLIES 0 Other message types 0 DISCOVERs sent 244 REQUESTs sent 9 DECLINEs sent 0 RELEASEs sent 1 INFORMs sent 0 Number of dynamic interfaces 1 Memory usage Table size of dyn leases 19 in use 1 free 94 dhcp client debug clear Clear the DHCP client statistics ...

Page 136: ...nt trace configuration SYNTAX where EXAMPLE dhcp client debug traceconfig state disabled enabled state Enable or disable tracing The default is disabled OPTIONAL dhcp client debug traceconfig tracing disabled dhcp client debug traceconfig trace enabled dhcp client debug traceconfig tracing enabled ...

Page 137: ...s intf none string giaddr ip address addr The IP address of the DHCP server REQUIRED intf The name of the relay interface Note Use none to indicate that no interface is specified OPTIONAL giaddr The giaddr field to be used in relayed DHCP packets OPTIONAL dhcp relay delete Delete a DHCP server from the DHCP server list dhcp relay list Display the DHCP server list ...

Page 138: ... info status RFC3046 enabled or disabled The default is disabled OPTIONAL agentmismatch Forward drop DHCP reply packet when a relay agent info mismatch is detected RFC3046 enabled or not disabled The default is disabled OPTIONAL dhcp relay config Agent info status disabled Drop agent info mismatch status disabled dhcp relay config agentinfo enabled dhcp relay config Agent info status enabled Drop ...

Page 139: ...LATED COMMANDS dhcp relay delete addr ip address intf string addr The IP address of the DHCP server to be deleted REQUIRED intf The name of the dynamic interface Note Use none to indicate that no interface is specified OPTIONAL dhcp relay add Add a DHCP server to the DHCP server list dhcp relay list Display the DHCP server list ...

Page 140: ... Flush the DHCP relay settings SYNTAX EXAMPLE The flush command does not impact previously saved configurations dhcp relay flush dhcp relay list DHCP server Interface giaddr 127 0 0 1 eth0 192 168 1 254 dhcp relay flush dhcp relay list No dynamic interfaces defined ...

Page 141: ... DHCP request packet when the DHCP Relay Agent Option is enabled with the command dhcp relay config agentinfo enabled and the giaddr field is 0 RFC3046 enabled or not disabled The default is disabled OPTIONAL dhcp relay iflist eth0 admin state up oper state up max hops 4 trusted disabled remote id Internet_trigger admin state down oper state down max hops 4 trusted disabled remote id Internet admi...

Page 142: ...The name of the dynamic interface to be listed Note If not specified all the relay interfaces will be shown OPTIONAL dhcp relay iflist eth0 admin state up oper state up max hops 4 trusted disabled remote id Internet_trigger admin state up oper state up max hops 4 trusted enabled remote id Internet admin state down oper state down max hops 4 trusted disabled remote id ...

Page 143: ...splay the DHCP server list SYNTAX EXAMPLE RELATED COMMANDS dhcp relay list dhcp relay list DHCP server Interface giaddr 127 0 0 1 eth0 10 0 0 138 dhcp relay add Add a DHCP server to the DHCP server list dhcp relay delete Delete a DHCP server from the DHCP server list ...

Page 144: ...e DHCP relay statistics SYNTAX EXAMPLE dhcp relay debug stats dhcp relay debug stats DHCP relay statistics Client packet relayed 64 Server packet relayed 0 Bogus relay agent 0 Bogus giaddr recv 0 Corrupt agent option 0 Missing agent option 0 Bad circuit id 0 Missing circuit id 0 ...

Page 145: ...p relay debug traceconfig Modify the DHCP relay trace configuration SYNTAX where EXAMPLE dhcp relay debug traceconfig state disabled enabled state Enable or disable tracing The default is disabled OPTIONAL dhcp relay debug traceconfig Tracing disabled ...

Page 146: ...DHCP Commands E DOC CTC 20050531 0057 v1 0 126 dhcp server config Print the DHCP server configuration settings SYNTAX where dhcp server config state disabled enabled ...

Page 147: ...DHCP Commands E DOC CTC 20050531 0057 v1 0 127 dhcp server flush Flush all DHCP server pool and lease entries SYNTAX The flush command does not impact previously saved configurations dhcp server flush ...

Page 148: ...DHCP Commands E DOC CTC 20050531 0057 v1 0 128 dhcp server policy Print the DHCP server policy settings SYNTAX where dhcp server policy verifyfirst disabled enabled trustclient disabled enabled ...

Page 149: ... agent options dropped 0 Lease table got full no Ping table got full no Second dhcp server seen no Total size of lease table 32 in use 0 free 100 dhcp server debug clear dhcp server debug stats DHCP server state Running DHCP server statistics Corrupted packet recv 0 DISCOVER 0 REQUEST 0 DECLINE 0 RELEASE 0 INFORM 0 Pure BOOTP REQUESTS 0 Other message types 0 OFFERs sent 0 ACKs sent 0 NAKs sent 0 R...

Page 150: ...nt the number of IP address offers sent in reply to DHCP requests ACKs sent the number of ACKnowledgement replies sent to successfully configured DHCP clients NAKs sent the number of Not AcKnowledgement replies sent to wrongly configured DHCP clients Relay agent options dropped Lease table got full whether the maximum number of DHCP leases is reached or not Ping table got full whether the history ...

Page 151: ...DHCP Commands E DOC CTC 20050531 0057 v1 0 131 RELATED COMMANDS dhcp server debug clear Clear the DHCP server statistics ...

Page 152: ...server debug traceconfig Modify the DHCP server trace configuration SYNTAX where EXAMPLE dhcp server debug traceconfig state disabled enabled state Enable or disable tracing The default is disabled OPTIONAL dhcp server debug traceconfig Tracing disabled ...

Page 153: ...by the number of available IP addresses in the DHCP server pool Represents the IP address offset in the DHCP server pool preserved for this host Note Not specifying this parameter does not preserve an IP address for the host OPTIONAL leasetime A number of seconds Represents the time the host is allowed to use this address Note 0 means infinite leasetime OPTIONAL expiretime The time in seconds the ...

Page 154: ...DHCP Commands E DOC CTC 20050531 0057 v1 0 134 RELATED COMMANDS dhcp server lease delete Delete a DHCP server lease dhcp server lease list List all the DHCP server leases ...

Page 155: ...rver lease table index Tip Use the command dhcp server lease list to obtain a list of the index numbers of all current DHCP leases OPTIONAL dhcp server lease list Lease Pool TTL State Clientid 0 0 0 0 0 dhcp_pool_1 00 26 40 FREE 00 90 D0 12 34 56 1 10 0 0 1 local_pool 00 59 22 USED 01 23 45 67 89 AB dhcp server lease delete index 0 dhcp server lease list Lease Pool TTL State Clientid 1 10 0 0 1 lo...

Page 156: ...rver leases will be flushed OPTIONAL dhcp server lease list Lease Pool TTL State Clientid 0 0 0 0 0 dhcp_pool_1 00 26 40 FREE 00 90 D0 12 34 56 1 10 0 0 1 local_pool 00 59 22 USED 01 23 45 67 89 AB 2 10 0 0 101 local_pool 00 21 01 USED 01 23 89 AB 80 CD 3 10 0 0 132 local_pool 00 45 37 USED 09 D0 25 CE F1 31 5 10 0 0 5 local_pool 00 21 11 USED AB 33 A1 7C 89 DD 4 10 0 0 6 local_pool 00 59 01 USED ...

Page 157: ...HCP server lease table will be shown OPTIONAL dhcp server lease list Lease Pool TTL State Clientid 0 0 0 0 0 dhcp_pool_1 00 26 40 FREE 00 90 D0 12 34 56 1 10 0 0 1 local_pool 00 59 22 USED 01 23 45 67 89 AB 2 10 0 0 101 local_pool 00 21 01 USED 01 23 89 AB 80 CD 3 10 0 0 132 local_pool 00 45 37 USED 09 D0 25 CE F1 31 5 10 0 0 5 local_pool 00 21 11 USED AB 33 A1 7C 89 DD 4 10 0 0 6 local_pool 00 59...

Page 158: ...nds E DOC CTC 20050531 0057 v1 0 138 dhcp server option flush Flush all DHCP server option templates and instances SYNTAX The flush command does not impact previously saved configurations dhcp server option flush ...

Page 159: ...CP server option instance Format is type value where type is 8 bit 16 bit 32 bit addr ascii or byte_array Note The type must be identical to the type of the DHCP server option template Use the command dhcp server option tmpllist to obtain a list of DHCP server option templates REQUIRED dhcp server option instlist myInstance Tmpl name myTmpl 1 Use 0 Value 32 bit 64 dhcp server option instadd name y...

Page 160: ...tion instance to be deleted REQUIRED dhcp server option instlist yourInstance Tmpl name yourTmpl 2 Use 0 Value ascii 33 myInstance Tmpl name myTmpl 1 Use 0 Value 32 bit 64 dhcp server option instdelete name yourInstance dhcp server option instlist myInstance Tmpl name myTmpl 1 Use 0 Value 32 bit 64 dhcp server option instadd Add a DHCP server option instance dhcp server option instlist List all th...

Page 161: ...NTAX EXAMPLE RELATED COMMANDS dhcp server option instlist dhcp server option instlist yourInstance Tmpl name yourTmpl 2 Use 0 Value ascii 33 myInstance Tmpl name myTmpl 1 Use 0 Value 32 bit 64 dhcp server option instadd Add a DHCP server option instance dhcp server option instdelete Delete a DHCP server option instance ...

Page 162: ...er between 1 and 254 Specifies the DHCP server option code REQUIRED type Specifies the DHCP server option type Choose between 8 bit 16 bit 32 bit addr ascii byte_array REQUIRED dhcp server option tmpllist Name Option Type Use myTmpl 1 32 bit 0 dhcp server option tmpladd name yourTmpl optionid 2 type ascii dhcp server option tmpllist Name Option Type Use yourTmpl 2 ascii 0 myTmpl 1 32 bit 0 dhcp se...

Page 163: ...me The name of the DHCP server option template to be deleted REQUIRED dhcp server option tmpllist Name Option Type Use yourTmpl 2 ascii 0 myTmpl 1 32 bit 0 dhcp server option tmpldelete name yourTmpl dhcp server option tmpllist Name Option Type Use myTmpl 1 32 bit 0 dhcp server option tmpladd Add a DHCP server option template dhcp server option tmpllist List all the DHCP server option templates ...

Page 164: ...erver option templates SYNTAX EXAMPLE RELATED COMMANDS dhcp server option tmpllist dhcp server option tmpllist Name Option Type Use yourTmpl 2 ascii 0 myTmpl 1 32 bit 0 dhcp server option tmpladd Add a DHCP server option template dhcp server option tmpldelete Delete a DHCP server option template ...

Page 165: ...server pool add dhcp server pool list Pool Start End State PPP 0 dhcp_pool_1 0 0 0 0 0 0 0 0 FREE 1 My_LAN_Pool 10 0 0 1 10 0 0 254 USED 2 dhcp_pool_2 0 0 0 0 0 0 0 0 FREE 3 dhcp_pool_3 0 0 0 0 0 0 0 0 FREE dhcp server pool add name POOL_EXTRA1 dhcp server pool list Pool Start End State PPP 0 dhcp_pool_1 0 0 0 0 0 0 0 0 FREE 1 My_LAN_Pool 10 0 0 1 10 0 0 254 USED 2 dhcp_pool_2 0 0 0 0 0 0 0 0 FREE...

Page 166: ...owest IP address in the DHCP address range to use for leasing The default value of this parameter is 0 0 0 0 not specified which means that the lowest IP address of the pool will be defined by the remote server via Internet Protocol Control Protocol IPCP as soon as the Point to Point Protocol PPP IPCP subnetmasking connection is established OPTIONAL poolend The highest IP address in the DHCP addre...

Page 167: ...he IP address of the primary Windows Internet Naming Service WINS server for DHCP clients OPTIONAL secwins The IP address of the secondary WINS server for DHCP clients OPTIONAL leasetime A number of seconds Represents the time in seconds a client is allowed to use an address Note Specifying 0 makes the lease permanent OPTIONAL unnumbered Assign an IP address from this pool to the DHCP server enabl...

Page 168: ...mand dhcp server pool list to obtain a list of all current DHCP leases REQUIRED dhcp server pool list Pool Start End Intf State 0 LAN_Private 10 0 0 1 10 0 0 254 eth0 USED 1 My_Pool 192 6 11 101 192 6 11 254 eth0 USED dhcp server pool delete name My_Pool dhcp server pool list Pool Start End Intf State 0 LAN_Private 10 0 0 1 10 0 0 254 eth0 USED dhcp server pool add Add a DHCP server pool dhcp serv...

Page 169: ... pools SYNTAX EXAMPLE The flush command does not impact previously saved configurations dhcp server pool flush dhcp server pool list Pool Start End Intf State 0 LAN_Private 10 0 0 1 10 0 0 254 eth0 USED 1 My_Pool 192 6 11 101 192 6 11 254 eth0 USED dhcp server pool flush dhcp server pool list ...

Page 170: ...ame string name The name of the DHCP server pool to be shown Note If not specified all the DHCP server pools are shown OPTIONAL dhcp server pool list Pool Start End Intf State 0 LAN_Private 10 0 0 1 10 0 0 254 eth0 USED 1 My_Pool 192 6 11 101 192 6 11 254 eth0 USED dhcp server pool add Add a DHCP server pool dhcp server pool delete Delete a DHCP server pool ...

Page 171: ...ip Use the command dhcp server option instlist to obtain a list of DHCP server option instances REQUIRED dhcp server pool optadd name dhcp_pool_1 instname yourInstance dhcp server pool list name dhcp_pool_1 Pool Start End Intf State 1 dhcp_pool_1 0 0 0 0 0 0 0 0 lan1 FREE DHCP server 0 0 0 0 unnumbered Netmask 0 0 0 0 Leasetime infinite Gateway 0 0 0 0 DNS domain lan DNS metric 0 DNS address list ...

Page 172: ...server pool list name dhcp_pool_1 Pool Start End Intf State 1 dhcp_pool_1 0 0 0 0 0 0 0 0 lan1 FREE DHCP server 0 0 0 0 unnumbered Netmask 0 0 0 0 Leasetime infinite Gateway 0 0 0 0 DNS domain lan DNS metric 0 DNS address list 0 0 0 0 local DNS Option instance list Name Option yourInstance 2 yourTmpl dhcp server pool optdelete name dhcp_pool_1 instname yourInstance dhcp server pool list name dhcp_...

Page 173: ... mask dotted or cidr gateway ipaddress 0 name The name of the DHCP server pool to which a route must be added REQUIRED dst The IP destination address of the route for DHCP clients REQUIRED dstmsk The destination IP address mask OPTIONAL gateway The IP address of the next hop Must be directly connected to the DHCP client OPTIONAL dhcp server pool rtdelete Delete a route from the DHCP server pool ...

Page 174: ...tmsk ip mask dotted or cidr gateway ipaddress 0 name The name of the DHCP server pool from which a route must be deleted REQUIRED dst The IP destination address of the route for DHCP clients REQUIRED dstmsk The destination IP address mask OPTIONAL gateway The IP address of the next hop Must be directly connected to the DHCP client OPTIONAL dhcp server pool rtadd Add a route to the DHCP server pool...

Page 175: ...server pool ruleadd name string rulename string name The name of the DHCP server pool to which a selection rule must be added REQUIRED rulename The name of the DHCP server selection rule Tip Use the command dhcp server rule list to obtain a list of DHCP server rules REQUIRED dhcp server pool ruledelete Delete a selection rule from the DHCP server pool ...

Page 176: ...erver pool ruleadd name string rulename string name The name of the DHCP server pool from which a selection rule must be deleted REQUIRED rulename The name of the DHCP server selection rule to be deleted Tip Use the command dhcp server rule list to obtain a list of DHCP server rules REQUIRED dhcp server pool ruleadd Add a selection rule to the DHCP server pool ...

Page 177: ...ans for MAC address different from 00 9f aa bb cc dd name The name of the new DHCP server rule REQUIRED type Specify the DHCP server rule type Choose between vci vendor class identifier uci user class identifier mac MAC address REQUIRED vci The vendor class identifier string Note Only required when type vci REQUIRED uci The user class identifier string Note Only required when type uci REQUIRED mac...

Page 178: ...te Delete a DHCP server rule SYNTAX where RELATED COMMANDS dhcp server rule delete name string name A name of the DHCP server rule to be deleted REQUIRED dhcp server rule add Add a DHCP server rule for DHCP pool selection dhcp server rule list List all DHCP server rules ...

Page 179: ...DHCP Commands E DOC CTC 20050531 0057 v1 0 159 dhcp server rule flush Flush all the DHCP server rules SYNTAX dhcp server rule flush ...

Page 180: ...531 0057 v1 0 160 dhcp server rule list List all DHCP server rules SYNTAX RELATED COMMANDS dhcp server rule list dhcp server rule add Add a DHCP server rule for DHCP pool selection dhcp server rule delete Delete a DHCP server rule ...

Page 181: ... statistics 170 dns server debug stats Print the DNS server forwarder statistics 171 dns server debug spoof clear Clear the intercept cache table 172 dns server debug spoof getaddress Get the real ip for the given spoofed ip 173 dns server debug spoof getflags Get the error flags for the given spoofed ip 174 dns server debug spoof list List the intercept cache table 175 dns server debug spoof upda...

Page 182: ...presents the query timeout The default is 5 OPTIONAL retry A number between 0 and 10 Represents the number of query retries before giving up The default is 3 OPTIONAL search Use the search list to construct fully qualified domain names The default is disabled OPTIONAL list Specify a search list This is a slash separated list of domain name suffixes OPTIONAL trace Enable or disable verbose logging ...

Page 183: ...ddr The IP address of the DNS server to be added REQUIRED port The DNS server port number The default is 53 OPTIONAL dns client dnsadd addr 150 150 150 150 dns client dnslist Entry State Family Server 1 CONNECTED IP port 53 addr 127 0 0 1 2 CONNECTED IP port 53 addr 150 150 150 150 dns client dnsdelete Delete a DNS server dns client dnslist List all DNS servers ...

Page 184: ...of the DNS server to be deleted Tip Use the command dns client dnslist to obtain a list of DNS servers REQUIRED dns client dnslist Entry State Family Server 1 CONNECTED IP port 53 addr 127 0 0 1 2 CONNECTED IP port 53 addr 150 150 150 150 dns client dnsdelete index 2 dns client dnslist Entry State Family Server 1 CONNECTED IP port 53 addr 127 0 0 1 dns client dnsadd Add a DNS server dns client dns...

Page 185: ... all DNS servers SYNTAX EXAMPLE RELATED COMMANDS dns client dnslist dns client dnslist Entry State Family Server 1 CONNECTED IP port 53 addr 127 0 0 1 2 CONNECTED IP port 53 addr 150 150 150 150 dns client dnsadd Add a DNS server dns client dnsdelete Delete a DNS server ...

Page 186: ...DNS Commands E DOC CTC 20050531 0057 v1 0 166 dns client flush Remove all DNS servers SYNTAX dns client flush ...

Page 187: ...mmands E DOC CTC 20050531 0057 v1 0 167 dns client nslookup DNS lookup for a domain name or an address SYNTAX where dns client nslookup host string host The DNS domain name string for which to query REQUIRED ...

Page 188: ...ery timeout The default is 15 OPTIONAL suppress Suppress not more than the specified amount of remote DNS server errors The default is 0 OPTIONAL state Enable or disable the local DNS server forwarder The default is enabled OPTIONAL trace Enable or disable verbose logging The default is disabled OPTIONAL WANDownSpoofing Enable or disable DNS spoofing when no applicable forwarding route present The...

Page 189: ...DNS Commands E DOC CTC 20050531 0057 v1 0 169 dns server flush Flush all local DNS hosts and routes SYNTAX dns server flush ...

Page 190: ...NS packets forwarded 0 External answers received 0 Spoofed responses 0 Forward table full discard 0 Spurious answers 0 Unknown query types 0 dns server debug clear dns server debug stats Corrupted packets received 0 Local questions resolved 0 Local negative answers sent 0 Total DNS packets forwarded 0 External answers received 0 Spoofed responses 0 Forward table full discard 0 Spurious answers 0 U...

Page 191: ...ns server debug stats dns server debug stats Corrupted packets received 100 Local questions resolved 3 Local negative answers sent 1 Total DNS packets forwarded 0 External answers received 0 Spoofed responses 0 Forward table full discard 0 Spurious answers 0 Unknown query types 0 dns server debug clear Clear the DNS server forwarder statistics ...

Page 192: ...DNS Commands E DOC CTC 20050531 0057 v1 0 172 dns server debug spoof clear Clear the intercept cache table SYNTAX dns server debug spoof clear ...

Page 193: ...p for the given spoofed ip SYNTAX where EXAMPLE dns server debug spoof getaddress addr ip address addr The IP address of the spoofed server REQUIRED Administrator dns server debug spoof getaddress addr 198 18 1 1 dns server debug spoof getaddress addr 198 18 1 1 Resolved ip 0 0 0 0 Administrator ...

Page 194: ...d ip SYNTAX where EXAMPLE dns server debug spoof getflags addr ip address addr The IP address of the spoofed server REQUIRED Administrator dns server debug spoof dns server debug spoof getflags addr 192 168 1 254 dns server debug spoof getflags addr 192 168 1 254 Invalid spoofed ip Administrator dns server debug spoof ...

Page 195: ...spoof list Spoof IP FQDN Real IP Flags 198 18 1 1 eu thmulti com 0 0 0 0 Not resolved 198 18 1 2 thmulti com 0 0 0 0 Not resolved 198 18 1 3 com 0 0 0 0 Not resolved 198 18 1 4 edgmd588 eu thmulti com 0 0 0 0 Not resolved 198 18 1 5 edgmssus01 eu thmulti com 0 0 0 0 Not resolved 198 18 1 6 BOULSDCEU02 eu thmulti com 0 0 0 0 Not resolved 198 18 1 7 juleke nit 0 0 0 0 Not resolved ...

Page 196: ...ommands E DOC CTC 20050531 0057 v1 0 176 dns server debug spoof update Update the intercept cache table SYNTAX EXAMPLE dns server debug spoof update Administrator dns server debug spoof update Administrator ...

Page 197: ...r The IP address of the host OPTIONAL ttl A number between 0 and 2147483647 seconds Represents the lifetime of the host The default is 0 in other words no limit on the lifetime OPTIONAL dns server host add name myDNS addr 150 150 150 150 ttl 3600 dns server host list Address Hostname TTL s 150 150 150 150 myDNS 3600 local speedtouch 0 local dsldevice 0 dns server host delete Delete a local DNS hos...

Page 198: ... name The name of the DNS host to be deleted REQUIRED dns server host list Address Hostname TTL s 150 150 150 150 myDNS 3600 local speedtouch 0 local dsldevice 0 dns server host delete name myDNS dns server host list Address Hostname TTL s local speedtouch 0 local dsldevice 0 dns server host add Add a local DNS host dns server host list List all the local DNS hosts ...

Page 199: ...rver host flush Flush all the local DNS hosts SYNTAX EXAMPLE dns server host flush dns server host list Address Hostname TTL s 192 168 1 64 Unknown 00 10 a4 ad 32 cf 60 local dsldevice 1200 local speedtouch 1200 dns server host flush dns server host list ...

Page 200: ...cal DNS hosts SYNTAX EXAMPLE RELATED COMMANDS dns server host list dns server host list Address Hostname TTL s 192 168 1 64 Unknown 00 10 a4 ad 32 cf 60 local dsldevice 1200 local speedtouch 1200 dns server host add Add a local DNS host dns server host delete Delete a local DNS host ...

Page 201: ...omain The DNS domain label OPTIONAL metric A number between 0 and 100 Represents the metric weight factor for this DNS route The lower the metric the higher the weight OPTIONAL intf An interface name DNS queries will only be forwarded on the specified interface Note In no interface is specified DNS queries will be forwarded on all interfaces OPTIONAL dns server route add dns 150 150 150 150 src 10...

Page 202: ...ss dns The IP address of the DNS server for which the forwarding route must be deleted REQUIRED dns server route list DNS Server Source Domain Metric Intf State 150 150 150 150 10 0 0 0 8 myDNS 0 eth0 UP dns server route delete dns 150 150 150 150 dns server route list dns server route add Adds a DNS forwarding route dns server route list List all the DNS forwarding routes ...

Page 203: ... dns server route flush Flush all DNS forwarding routes SYNTAX EXAMPLE dns server route flush dns server route list DNS Server Source Domain Metric Intf State 150 150 150 150 10 0 0 0 8 myDNS 0 eth0 UP dns server route flush dns server route list ...

Page 204: ...S forwarding routes SYNTAX EXAMPLE RELATED COMMANDS dns server route list dns server route list DNS Server Source Domain Metric Intf State 150 150 150 150 10 0 0 0 8 myDNS 0 eth0 UP dns server route add Adds a DNS forwarding route dns server route delete Delete a DNS forwarding route ...

Page 205: ...y the HTTP Intercept log file 196 dsd urlfilter config Display modify the URL filtering configuration 197 dsd urlfilter rule add Add a rule 198 dsd urlfilter rule delete Delete a rule 199 dsd urlfilter rule flush Remove all current rules 200 dsd urlfilter rule list Display the list of current rules 201 dsd urlfilter rule modify Modify an existing rule 202 dsd webfilter cache flush Empty the intern...

Page 206: ...lush Flush the server list 226 dsd webfilter server list List all web filter servers 227 dsd webfilter server modify Modify a web filter server 228 dsd webfilter standard category add Add a category to a group 229 dsd webfilter standard category create Create a category or group 230 dsd webfilter standard category delete Delete a category or group 231 dsd webfilter standard category flush Delete a...

Page 207: ...7 dsd config Display modify the Differentiated Service Delivery DSD framework configuration SYNTAX where EXAMPLE dsd config state disabled enabled state Enable or disable the DSD framework The default is enabled REQUIRED dsd config State enabled ...

Page 208: ...0531 0057 v1 0 188 dsd debug connection list Display the internal connection pool usage SYNTAX where dsd debug connection list expand disabled enabled expand Enable or disable the expanded listing The default is disabled optional ...

Page 209: ...UDP port or number state Enable or disable fixed proxy redirecting The default is disabled OPTIONAL dest The destination IP address to which requests will be forwarded OPTIONAL port The port to be used for connecting to proxy Select one of the supported Transmission Control Protocol TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number OPTIONAL ds...

Page 210: ...ug recycling state disabled enabled interval number httpidle number otheridle number state Enable disable stream recycling OPTIONAL interval Time between successive activity checks OPTIONAL httpidle Minimal idle count for recycling filtered http streams OPTIONAL otheridle Minimal idle count for recycling other streams OPTIONAL ...

Page 211: ...91 dsd debug stats Display clear DSD framework and module statistics SYNTAX where dsd debug stats name intercept urlfilter recycling syslog all clear no yes name Specify the name of a module REQUIRED clear Clear the specified statistics REQUIRED ...

Page 212: ...oryerrorurl The destination URL when the connection to the category server failed OPTIONAL monitorintercepturl The destination URL when the request is intercepted by the monitor thread OPTIONAL urlblockedurl The destination URL when the requested URL is blocked OPTIONAL imageredirect Enable or disable substitution of blocked images The default is enabled OPTIONAL imageredirecturl The URL of the im...

Page 213: ...DSD Commands E DOC CTC 20050531 0057 v1 0 193 RELATED COMMANDS dsd intercept stats Display the HTTP Intercept statistics ...

Page 214: ...intercept stats Display the HTTP Intercept statistics SYNTAX EXAMPLE RELATED COMMANDS dsd intercept stats dsd intercept stats Total requests 2 Unauthorized requests 0 Request errors 2 dsd intercept config Display modify the HTTP Intercept configuration ...

Page 215: ...ule BlockCategory BlockIPAddress or BlockObscure event are logged errors only the HTTP requests that are blocked because of Server errors Category errors Monitor intercept loop detection bad requests or redirects by local policy rules intercepted only the HTTP requests that are blocked because of URLBlocked Server errors Category errors Monitor intercept loop detection bad requests or redirects by...

Page 216: ...ysUpTime 00 22 37 HTTPI src 10 0 0 1 src_port 1965 dst 141 11 196 35 dst_port 80 event Se rverConnect dst_name aWebsite com icons Button_Document gif 86 SysUpTime 00 22 59 HTTPI src 10 0 0 1 src_port 1968 dst 141 11 234 60 dst_port 80 event Se rverConnect dst_name anotherWebsite com rawgen asp dsd syslog config Display modify the HTTP Intercept logging configuration ...

Page 217: ...of HTTP requests via a proxy server The default is disabled OPTIONAL blockipaddress Enable or disable blocking of HTTP requests if host name is IP address The default is disabled OPTIONAL blockobscuredip Enable or disable blocking of HTTP requests if host name is believed to be an IP address The default is disabled OPTIONAL defaultaction Select the action to be performed when no filter is applicab...

Page 218: ...URL Choose between block accept redirect REQUIRED redirect The redirection URL Note This parameter is only required when the action is redirect REQUIRED dsd urlfilter rule add url www speedtouch com action redirect redirect www speedtouch be dsd urlfilter rule list Index Action Url Redirect 0 redirect www speedtouch com www speedtouch be Rule list statistics 1 present 128 total 0 0 used dsd urlfil...

Page 219: ...deleted REQUIRED url Definition of the URL filter OPTIONAL dsd urlfilter rule list Index Action Url Redirect 0 redirect www speedtouch com www speedtouch be 1 accept www baen com Rule list statistics 2 present 128 total 0 0 used dsd urlfilter rule delete index 1 dsd urlfilter rule list Index Action Url Redirect 0 redirect www speedtouch com www speedtouch be Rule list statistics 1 present 128 tota...

Page 220: ... urlfilter rule flush dsd urlfilter rule list Index Action Url Redirect 0 redirect www speedtouch com www speedtouch be 1 accept www baen com Rule list statistics 2 present 128 total 0 0 used dsd urlfilter rule flush dsd urlfilter rule list Index Action Url Redirect Rule list statistics 0 present 128 total 0 0 used ...

Page 221: ...es SYNTAX EXAMPLE RELATED COMMANDS dsd urlfilter rule list dsd urlfilter rule list Index Action Url Redirect 0 redirect www speedtouch com www speedtouch be 1 accept www baen com Rule list statistics 2 present 128 total 0 0 used dsd urlfilter rule add Add a rule dsd urlfilter rule delete Delete a rule ...

Page 222: ...ction URL Note This parameter is only required when the action is redirect REQUIRED dsd urlfilter rule list Index Action Url Redirect 0 redirect www speedtouch com www speedtouch be 1 accept www baen com Rule list statistics 2 present 128 total 0 0 used dsd urlfilter rule modify index 0 newurl www speed action redirect redirect www speedtouch be dsd urlfilter rule list Index Action Url Redirect 0 ...

Page 223: ...DSD Commands E DOC CTC 20050531 0057 v1 0 203 dsd webfilter cache flush Empty the internal cache SYNTAX dsd webfilter cache flush ...

Page 224: ...DSD Commands E DOC CTC 20050531 0057 v1 0 204 dsd webfilter cache stats Display the cache statistics SYNTAX where dsd webfilter cache stats expand disabled enabled expand OPTIONAL ...

Page 225: ...ilter SYNTAX where dsd webfilter config state enabled disabled serverunreachable block all accept all uncategorized block accept license none trial standard professional ticket string sessionkey string state serverunreachable REQUIRED uncategorized license OPTIONAL ticket sessionkey ...

Page 226: ...DSD Commands E DOC CTC 20050531 0057 v1 0 206 dsd webfilter list Display the web filter license state SYNTAX dsd webfilter list ...

Page 227: ...7 v1 0 207 dsd webfilter professional category add Add a category to a group SYNTAX where dsd webfilter professional category add destid number srcid number destid Destination category or group REQUIRED srcid Category ID to add REQUIRED ...

Page 228: ... category create Create a category or group SYNTAX where dsd webfilter professional category create id number name quoted string type category group id Unique local ID for the category group REQUIRED name Friendly name REQUIRED type Choose between category or group REQUIRED ...

Page 229: ...OC CTC 20050531 0057 v1 0 209 dsd webfilter professional category delete Delete a category or a group SYNTAX where dsd webfilter professional category delete id number id Unique local ID for the category group REQUIRED ...

Page 230: ...DSD Commands E DOC CTC 20050531 0057 v1 0 210 dsd webfilter professional category flush Delete all categories and groups SYNTAX dsd webfilter professional category flush ...

Page 231: ... DOC CTC 20050531 0057 v1 0 211 dsd webfilter professional category list List all categories and groups SYNTAX where dsd webfilter professional category list type category group type Choose between category or group ...

Page 232: ...0 212 dsd webfilter professional category remove Remove a category from a group SYNTAX where dsd webfilter professional category remove destid number srcid number destid Destination category or group REQUIRED srcid Category ID to add REQUIRED ...

Page 233: ...50531 0057 v1 0 213 dsd webfilter professional config Display modify a webfilter SYNTAX where dsd webfilter professional config listversion string validcatmask string listversion a string OPTIONAL validcatmask a string OPTIONAL ...

Page 234: ...nal level add index number name string text quoted string otherurls block accept index number Level index 1 for next available REQUIRED name string Content category level name REQUIRED text quoted string Friendly description OPTIONAL otherurls Choose between block and accept Block or allow requests that do not belong to a specific category OPTIONAL ...

Page 235: ...nal level delete index number name string text quoted string otherurls block accept index number Level index 1 for next available REQUIRED name string Content category level name REQUIRED text quoted string Friendly description OPTIONAL otherurls Choose between block or accept Block or allow requests that do not belong to a specific category OPTIONAL ...

Page 236: ...DSD Commands E DOC CTC 20050531 0057 v1 0 216 dsd webfilter professional level flush Delete all levels SYNTAX dsd webfilter professional level flush ...

Page 237: ...DSD Commands E DOC CTC 20050531 0057 v1 0 217 dsd webfilter professional level list Display the levels SYNTAX dsd webfilter professional level list ...

Page 238: ...professional level modify index number name string text quoted string otherurls block accept index number Level index 1 for next available name string Content category level name REQUIRED text quoted string Friendly description otherurls Choose between block or accept Block or allow requests that do not belong to a specific category OPTIONAL ...

Page 239: ... DOC CTC 20050531 0057 v1 0 219 dsd webfilter professional level set Set the current web filtering level SYNTAX where dsd webfilter professional level set name string name Name of the current category level REQUIRED ...

Page 240: ...SD Commands E DOC CTC 20050531 0057 v1 0 220 dsd webfilter professional rule clear Reset the level to a default rule SYNTAX where dsd webfilter professional rule clear level string level string REQUIRED ...

Page 241: ...DSD Commands E DOC CTC 20050531 0057 v1 0 221 dsd webfilter professional rule list List all the rules SYNTAX dsd webfilter professional rule list ...

Page 242: ...d webfilter professional modify Modify a rule SYNTAX where dsd webfilter professional modify level string id number action block accept level string Level name REQUIRED id number Server category ID REQUIRED action Choose between block accept OPTIONAL ...

Page 243: ...echo exec finger ftp ftp data gopher h323 httpproxy ike ils imap2 imap3 ingres net ipcserver ipx irc o irc u kerberos ldap login netbios dgm netbios ns netbios ssn netwall netware ip new rwho nfds nicname nntp ntalk ntp pcmailsrv pop2 pop3 printer qotd realaudio rip rtelnet rtsp sip smtp snmp snmptrap snpp sntp sql net sqlnet sqlserv sunrpc syslog systat talk telnet or number index The server inde...

Page 244: ... kerberos ldap login netbios dgm netbios ns netbios ssn netwall netware ip new rwho nfds nicname nntp ntalk ntp pcmailsrv pop2 pop3 printer qotd realaudio rip rtelnet rtsp sip smtp snmp snmptrap snpp sntp sql net sql net sqlserv sunrpc syslog systat talk or number listversion String OPTIONAL retries Number of server contact retries OPTIONAL servertimeout Cobion server timeout in seconds OPTIONAL t...

Page 245: ...main doom echo exec finger ftp ftp data gopher h323 httpproxy ike ils imap2 imap3 ingres net ipcserver ipx irc o irc u kerberos ldap login netbios dgm netbios ns netbios ssn netwall netware ip new rwho nfds nicname nntp ntalk ntp pcmail srv pop2 pop3 printer qotd realaudio rip rtelnet rtsp sip smtp snmp snmptrap snpp sntp sql net sql net sqlserv sunrpc syslog systat talk telnet or number index Ser...

Page 246: ...DSD Commands E DOC CTC 20050531 0057 v1 0 226 dsd webfilter server flush Flush the server list SYNTAX dsd webfilter server flush ...

Page 247: ...DSD Commands E DOC CTC 20050531 0057 v1 0 227 dsd webfilter server list List all web filter servers SYNTAX dsd webfilter server list ...

Page 248: ...omain doom echo exec finger ftp ftpdata gopher h323 httpproxy ike ils imap2 imap3 ingresnet ipcserver ipx irc o irc u kerberos ldap login netbios dgm netbios ns netbios ssn netwall netware ip new rwho nfds nicname nntp ntalk ntp pcmail srv pop2 pop3 printer qotd realaudio rip rtelnet rtsp sip smtp snmp snmptrap snpp sntp sql net sql net sqlserv sunrpc syslog systat talk telnet or number index Serv...

Page 249: ...7 v1 0 229 dsd webfilter standard category add Add a category to a group SYNTAX where dsd webfilter standard category add destid number srcid number destid The destination category or group REQUIRED srcid The category ID to add REQUIRED ...

Page 250: ...7 v1 0 230 dsd webfilter standard category create Create a category or group SYNTAX where dsd webfilter standard category create id number name quoted string id Unique local ID for the category group REQUIRED name Friendly name REQUIRED ...

Page 251: ...s E DOC CTC 20050531 0057 v1 0 231 dsd webfilter standard category delete Delete a category or group SYNTAX where dsd webfilter standard category delete id number id Unique local ID for the category group REQUIRED ...

Page 252: ...DSD Commands E DOC CTC 20050531 0057 v1 0 232 dsd webfilter standard category flush Delete all the levels SYNTAX dsd webfilter standard category flush ...

Page 253: ...DSD Commands E DOC CTC 20050531 0057 v1 0 233 dsd webfilter standard category list Display the levels SYNTAX dsd webfilter standard category list ...

Page 254: ... v1 0 234 dsd webfilter standard category remove Remove a category from a group SYNTAX where dsd webfilter standard category remove destid number srcid number destid Destination category or group REQUIRED srcid Category ID to add REQUIRED ...

Page 255: ... where dsd webfilter standard level add index number name string text quoted string otherurls block accept index Level index 1 for next available REQUIRED name Content category level name REQUIRED text Friendly description OPTIONAL otherurls Block or allow requests that do not belong to a specific category OPTIONAL ...

Page 256: ... where dsd webfilter standard level delete index number name string text quoted string otherurls block accept index Level index 1 for next available REQUIRED name Content category level name REQUIRED text Friendly description OPTIONAL otherurls Block or allow requests that do not belong to a specific category OPTIONAL ...

Page 257: ...DSD Commands E DOC CTC 20050531 0057 v1 0 237 dsd webfilter standard level flush Delete all levels SYNTAX dsd webfilter standard level flush ...

Page 258: ...DSD Commands E DOC CTC 20050531 0057 v1 0 238 dsd webfilter standard level list Display the levels SYNTAX dsd webfilter standard level list ...

Page 259: ... where dsd webfilter standard level modify index number name string text quoted string otherurls block accept index Level index 1 for next available REQUIRED name Content category level name REQUIRED text Friendly description OPTIONAL otherurls Block or allow requests that do not belong to a specific category OPTIONAL ...

Page 260: ...ands E DOC CTC 20050531 0057 v1 0 240 dsd webfilter standard level set Set current web filtering level SYNTAX where dsd webfilter standard level set name string name Name of the current category level REQUIRED ...

Page 261: ...DSD Commands E DOC CTC 20050531 0057 v1 0 241 dsd webfilter standard rule clear Reset level to default rule SYNTAX where dsd webfilter standard rule clear level string level Level name REQUIRED ...

Page 262: ...DSD Commands E DOC CTC 20050531 0057 v1 0 242 dsd webfilter standard rule list List all rules SYNTAX where dsd webfilter standard rule list level string level Level name OPTIONAL ...

Page 263: ... 0 243 dsd webfilter standard rule modify Modify a rule SYNTAX where dsd webfilter standard rule modify level string id number action block accept level Level name REQUIRED id Server category ID OPTIONAL action Block or allow rules REQUIRED ...

Page 264: ...DSD Commands E DOC CTC 20050531 0057 v1 0 244 ...

Page 265: ...his chapter describes the commands of the dyndns commnd group Contents This chapter covers the following commands dyndns add Add a dynamic DNS client 246 dyndns delete Delete a dynamic DNS client 247 dyndns flush Delete all the dynamic DNS clients 248 dyndns list List all the dynamic DNS clients 249 dyndns modify Modify a dynamic DNS client 250 dyndns host add Add a fully qualified host name 252 d...

Page 266: ... EXAMPLE RELATED COMMANDS dyndns add name string name The name of the new dynamic DNS client Note A maximum of 5 clients can be configured REQUIRED dyndns add name WAN dyndns list WAN INIT user password addr 0 0 0 0 dyndns delete Delete a dynamic DNS client dyndns list List all dynamic DNS clients ...

Page 267: ...nt SYNTAX where EXAMPLE RELATED COMMANDS dyndns delete name string name The name of the dynamic DNS client to be deleted REQUIRED dyndns list WAN INIT user password addr 0 0 0 0 dyndns delete name WAN dyndns list dyndns add Add a dynamic DNS client dyndns list List all dynamic DNS clients ...

Page 268: ...DynDNS Commands E DOC CTC 20050531 0057 v1 0 248 dyndns flush Delete all the dynamic DNS clients SYNTAX dyndns flush ...

Page 269: ...531 0057 v1 0 249 dyndns list List all the dynamic DNS clients SYNTAX EXAMPLE RELATED COMMANDS dyndns list dyndns list WAN INIT user password addr 0 0 0 0 dyndns add Add a dynamic DNS client dyndns delete Delete a dynamic DNS client ...

Page 270: ...namic DNS authentication OPTIONAL password The password for dynamic DNS authentication OPTIONAL group The dynamic DNS host group OPTIONAL mx The mail exchanger OPTIONAL backmx Set up the mail exchanger as a backup mail exchanger enabled or not disabled The default is disabled OPTIONAL wildcard Allow the use of hostname wildcards enabled or not disabled The default is disabled OPTIONAL offline Set ...

Page 271: ... 0 251 EXAMPLE dyndns list WAN INIT user password addr 0 0 0 0 dyndns modify name WAN intf RtPPPoE user DNSuser password _DEV_BA8C0C963BD84130 service gnudip dyndns list WAN RtPPPoE_ppp INIT options gnudip user my_DNS_user password addr 0 0 0 0 ...

Page 272: ...DNS host group Note A maximum of 4 different groups can be created REQUIRED name The name of an IP host to add Note A maximum of 20 hosts can be configured REQUIRED dyndns host add group local name localhost com dyndns host list local localhost com legend not initialised o update in progress v update successful x error dyndns host delete Delete a host name dyndns host list List all host names ...

Page 273: ...to be deleted REQUIRED dyndns host list local localhost com public publichost com legend not initialised o update in progress v update successful x error dyndns host delete name publichost com dyndns host list local localhost com legend not initialised o update in progress v update successful x error dyndns host add Add a fully qualified host name dyndns host list List all host names ...

Page 274: ...DynDNS Commands E DOC CTC 20050531 0057 v1 0 254 dyndns host flush Delete all hosts SYNTAX The hosts cannot be flushed if there is still a group referenced to the hosts dyndns host flush ...

Page 275: ...host names SYNTAX EXAMPLE RELATED COMMANDS dyndns host list dyndns host list local localhost com public publichost com legend not initialised o update in progress v update successful x error dyndns host add Add a fully qualified host name dyndns host delete Delete a host name ...

Page 276: ...erver members dyndns org port 80 request nic update update interval 0 retry interval 30 max retry 3 custom server members dyndns org port 80 request nic update update interval 0 retry interval 30 max retry 3 No IP server dynupdate no ip com port 80 request ducupdate php update interval 86400 retry interval 30 max retry 3 DtDNS server dtdns com port 80 request api autodns cfm update interval 86400 ...

Page 277: ...ect one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number OPTIONAL request The dynamic DNS request string OPTIONAL updateinterval A number between 0 and 2097120 seconds Represents the time interval before a dynamic update is sent to the dynamic DNS server Note The value 0 means disabled OPTIONAL retryinterval A number between ...

Page 278: ...retry interval 30 max retry 3 statdns server members dyndns org port 80 request nic update update interval 0 retry interval 30 max retry 3 custom server mydyndns org port 80 request hereiam update interval 2000000 retry interval 15 max retry 5 No IP server dynupdate no ip com port 80 request ducupdate php update interval 86400 retry interval 30 max retry 3 DtDNS server dtdns com port 80 request ap...

Page 279: ...roup Contents This chapter covers the following commands env flush Flush all the non system environment variables 260 env get Get the current value of an environment variable 261 env list Show all the currently available environment variables 262 env set Set an environment variable 263 env unset Delete a environment variable 264 ...

Page 280: ...E DOC CTC 20050531 0057 v1 0 260 Env Commands env flush Flush all the non system environment variables SYNTAX env flush ...

Page 281: ... current value of an environment variable SYNTAX where RELATED COMMANDS env get var string var The name of the environment variable Tip Use the command env list to obtain a list of all environment variables REQUIRED env list List all current environment variables ...

Page 282: ...Env Commands E DOC CTC 20050531 0057 v1 0 262 env list Show all the currently available environment variables SYNTAX RELATED COMMANDS env list env get Get the current value of an environment variable ...

Page 283: ...e Tip When creating an environment variable any name is allowed However spaces are NOT allowed and the name may NOT start with CONF HOST an underscore _ the dollar sign REQUIRED value A quoted translated string which defines the value of the environment variable Note The value of system variables built in variables with names starting with an underscore _ CONF or HOST cannot be changed REQUIRED en...

Page 284: ...ing with an underscore _ CONF or HOST cannot be unset changed or deleted REQUIRED env list _COMPANY_NAME THOMSON multimedia _COMPANY_URL http www speedtouch com _PROD_NAME SpeedTouch CONF_DATE March 2004 CONF_REGION World HOST_SETUP user env unset var CONF_REGION env list _COMPANY_NAME THOMSON multimedia _COMPANY_URL http www speedtouch com _PROD_NAME SpeedTouch CONF_DATE March 2004 HOST_SETUP use...

Page 285: ...dge interface configuration 278 eth bridge ifdelete Delete a bridge interface 280 eth bridge ifdetach Detach a bridge interface 281 eth bridge iflist Display the current bridge interfaces 282 eth bridge macadd Add a static MAC address to a bridge interface 283 eth bridge macdelete Remove a MAC address from the filtering database 284 eth bridge maclist Display the MAC address database 285 eth devic...

Page 286: ...531 0057 v1 0 266 eth ifadd Create a new ETH interface SYNTAX where RELATED COMMANDS eth ifadd intf string intf The name of the new ETH interface REQUIRED eth ifdelete Delete an ETH interface eth iflist Display the ETH interfaces ...

Page 287: ...OC CTC 20050531 0057 v1 0 267 eth ifattach Attach an ETH interface SYNTAX where RELATED COMMANDS eth ifattach intf string intf The name of the ETH interface to be attached REQUIRED eth ifdetach Detach an ETH interface ...

Page 288: ...f string dest string retry number 0 65535 intf The name of the ETH interface to be configured REQUIRED dest The destination interface for this ETH interface OPTIONAL retry A number between 0 and 65535 Represents the number of times the ETH connection setup should retry before giving up The default is 10 OPTIONAL ...

Page 289: ...v1 0 269 eth ifdelete Delete an ETH interface SYNTAX where RELATED COMMANDS eth ifdelete intf string intf The name of the ETH interface name to be deleted REQUIRED eth ifadd Create a new ETH interface eth iflist Display the ETH interfaces ...

Page 290: ...OC CTC 20050531 0057 v1 0 270 eth ifdetach Detach an ETH interface SYNTAX where RELATED COMMANDS eth ifdetach intf string intf The name of the ETH interface to be detached REQUIRED eth ifattach Attach an ETH interface ...

Page 291: ...he ETH interfaces SYNTAX where RELATED COMMANDS eth iflist intf string intf The name of the ETH interface to be displayed Note If not specified all the ETH interfaces will be displayed OPTIONAL eth ifadd Create a new ETH interface eth ifdelete Delete an ETH interface ...

Page 292: ...Eth Commands E DOC CTC 20050531 0057 v1 0 272 eth flush Flush all the ETH interfaces SYNTAX The flush command does not impact previously saved configurations eth flush ...

Page 293: ...Eth Commands E DOC CTC 20050531 0057 v1 0 273 eth bridge clear Clear the bridge statistics SYNTAX eth bridge clear ...

Page 294: ...conds Represents the lifetime of a dynamically learned Medium Access Control MAC address The default is 300 OPTIONAL filter The bridge filter to be applied for all Wide Area Network WAN bridge ports Choose between no_WAN_broadcast broadcasts from the SpeedTouch itself to the WAN are filtered out broadcasts from the LAN to the WAN are still passed through none no broadcasts are filtered out The def...

Page 295: ...Eth Commands E DOC CTC 20050531 0057 v1 0 275 eth bridge flush Flush bridge interfaces and parameters SYNTAX The flush command does not impact previously saved configurations eth bridge flush ...

Page 296: ...ridge ifadd Create a new bridge interface SYNTAX where RELATED COMMANDS eth bridge ifadd intf string intf The name of the new bridge interface REQUIRED eth bridge ifdelete Delete a bridge interface eth bridge iflist Display the current bridge interfaces ...

Page 297: ...1 0057 v1 0 277 eth bridge ifattach Attach a bridge interface SYNTAX where RELATED COMMANDS eth bridge ifattach intf string intf The name of the bridge interface to be attached REQUIRED eth bridge ifdetach Detach a bridge interface ...

Page 298: ...est The destination for this interface Typically an ATM or a physical interface name OPTIONAL portstate The bridge portstate for this interface Choose between disabled learning forwarding The default is forwarding OPTIONAL retry A number between 0 and 65535 Represents the number of times the SpeedTouch retries to set up a WAN connection before giving up The default is 10 OPTIONAL prioconfig The pr...

Page 299: ...none Connection State not connected Retry 10 Port Unassigned PortNr Unknown PortState forwarding eth bridge ifconfig intf BrEthoA_br dest BrEthhoA_atm eth bridge iflist OBC dest Internal BrEthoA_br dest BrEthhoA_atm Connection State not connected Retry 10 Port Unassigned PortNr Unknown PortState forwarding ...

Page 300: ...elete Delete a bridge interface SYNTAX where RELATED COMMANDS eth bridge ifdelete intf string intf The name of the bridge interface name to be deleted REQUIRED eth bridge ifadd Create a new bridge interface eth bridge iflist Display the current bridge interfaces ...

Page 301: ...1 0057 v1 0 281 eth bridge ifdetach Detach a bridge interface SYNTAX where RELATED COMMANDS eth bridge ifdetach intf string intf The name of the bridge interface to be detached REQUIRED eth bridge ifattach Attach a bridge interface ...

Page 302: ...ridge interfaces SYNTAX where RELATED COMMANDS eth bridge iflist intf string intf The name of the bridge interface to be displayed Note If not specified all bridge interfaces are shown OPTIONAL eth bridge ifadd Create a new bridge interface eth bridge ifdelete Delete a bridge interface ...

Page 303: ...f fa static 01 80 c2 00 00 00 permanent 01 80 c2 00 00 01 permanent 01 80 c2 00 00 02 permanent 01 80 c2 00 00 03 permanent 01 80 c2 00 00 0e permanent 01 80 c2 00 00 0f permanent 01 80 c2 00 00 10 permanent ff ff ff ff ff ff permanent eth bridge macadd intf ethport2 hwaddr 00 80 9f 01 23 45 eth bridge maclist 00 0d 9d 47 dd aa dynamic ethport1 300 seconds 00 80 9f 01 23 45 static 00 90 d0 72 88 6...

Page 304: ... 80 c2 00 00 02 permanent 01 80 c2 00 00 03 permanent 01 80 c2 00 00 0e permanent 01 80 c2 00 00 0f permanent 01 80 c2 00 00 10 permanent ff ff ff ff ff ff permanent eth bridge macdelete hwaddr 00 80 9f 01 23 45 eth bridge maclist 00 0d 9d 47 dd aa dynamic ethport1 00 90 d0 72 88 64 permanent 01 00 5e 00 00 67 static 01 00 5e 7f ff fa static 01 80 c2 00 00 00 permanent 01 80 c2 00 00 01 permanent ...

Page 305: ...2 permanent 01 80 c2 00 00 03 permanent 01 80 c2 00 00 04 permanent 01 80 c2 00 00 05 permanent 01 80 c2 00 00 06 permanent 01 80 c2 00 00 07 permanent 01 80 c2 00 00 08 permanent 01 80 c2 00 00 09 permanent 01 80 c2 00 00 0a permanent 01 80 c2 00 00 0b permanent 01 80 c2 00 00 0c permanent 01 80 c2 00 00 0d permanent 01 80 c2 00 00 0e permanent 01 80 c2 00 00 0f permanent 01 80 c2 00 00 10 perman...

Page 306: ...rated by dstintfs string or combination of strings separated by srcports The source bridge interfaces from which multicast packets must be dropped REQUIRED dstports The destination bridge interfaces for which the multicast packets must be dropped REQUIRED eth bridge mcddelete Delete a multicast group to be dropped from the database eth bridge mcdlist Display the multicast group to be dropped from ...

Page 307: ...cddelete Delete a multicast group to be dropped from the database SYNTAX RELATED COMMANDS eth bridge mcddelete eth bridge mcdadd Add a multicast group to be dropped to the database eth bridge mcdlist Display the multicast group to be dropped from the database ...

Page 308: ...mcdlist Display the multicast group to be dropped from the database SYNTAX RELATED COMMANDS eth bridge mcdlist eth bridge mcdadd Add a multicast group to be dropped to the database eth bridge mcddelete Delete a multicast group to be dropped from the database ...

Page 309: ...ode 100BaseTFD 100Mb s communication speed in full duplex mode or enter a number between 0 auto and 5 100BaseTFD The default is auto Note This value should never be changed except in case of communication problems OPTIONAL state Enable or disable the interface The default is enabled OPTIONAL eth device iflist Interface Type Result State ethif1 auto 100BaseTFD UP forwarding ethif2 auto 100BaseTFD U...

Page 310: ...ernet types do NOT match Result Type will equal unknown and no Ethernet connectivity will exist RELATED COMMANDS eth device iflist eth device iflist Interface Type Result State ethif1 auto 100BaseTFD UP forwarding ethif2 auto 100BaseTFD UP forwarding ethif3 auto 100BaseTFD UP forwarding ethif4 auto 100BaseTFD UP forwarding usbif1 UP forwarding wlif1 UP forwarding wlif2 UP forwarding wlif3 UP forwa...

Page 311: ...p flush Set all the ports to the default settings All the ports are placed in group 0 SYNTAX EXAMPLE eth switch group flush eth switch group list Group 0 Ports 4 Group 1 Ports 1 Group 2 Ports 2 3 eth switch group flush eth switch group list Group 0 Ports 1 2 3 4 ...

Page 312: ...witch group list List all the configured switch groups SYNTAX EXAMPLE RELATED COMMANDS eth switch group list eth switch group list Group 0 Ports 4 Group 1 Ports 1 Group 2 Ports 2 3 eth switch group move Move a specified port to a specified switch group ...

Page 313: ...er 0 3 port number 1 4 group A number between 0 and 4 Represents the group ID to which the port must be moved REQUIRED port A number between 01 and 4 Represents the port to be moved REQUIRED eth switch group list Group 0 Ports 1 2 3 4 eth switch group move group 3 port 1 eth switch group list Group 0 Ports 2 3 4 Group 3 Ports 1 eth switch group list List all the configured switch groups ...

Page 314: ...irror capture port number 1 4 port The port to be the Mirror Capture Port Note If no port number is specified then the port number of the Mirror Capture Port is shown REQUIRED eth switch mirror capture port 2 eth switch mirror capture Mirror capture port 2 eth switch mirror egress Enable or disable the specified port to be the Mirror Egress Port eth switch mirror ingress Enable or disable the spec...

Page 315: ...number 1 4 state enabled disabled port The port to be the Mirror Egress Port Note If no port number is specified then the port number of the current Mirror Egress Port is shown REQUIRED state Enable or disable the port as Mirror Egress Port The default is enabled OPTIONAL eth switch mirror egress port 1 eth switch mirror egress Egress mirror port 1 eth switch mirror egress Egress mirror port 1 eth...

Page 316: ...umber 1 4 state enabled disabled port The port to be the Mirror Ingress Port Note If no port number is specified then the port number of the current Mirror Ingress Port is shown REQUIRED state Enable or disable the port as Mirror Ingress Port The default is enabled OPTIONAL eth switch mirror ingress port 2 eth switch mirror ingress Ingress mirror port 2 eth switch mirror ingress Ingress mirror por...

Page 317: ...bes the commands of the expr command group Contents This chapter covers the following commands expr add Add a subexpression to an expression 298 expr delete Delete an expression 301 expr flush Flush all the expressions 302 expr list List the expressions 303 expr modify Modify an expression 306 ...

Page 318: ... name or number dstportend supported TCP UDP port name or number icmptype supported ICMP type name or number icmpcode number 0 15 icmpcodeend number 0 15 If a value is preceded by a it means NOT For example intfgroup wan means if the interface group is different from WAN name The name of an existing expression REQUIRED type The expression type Choose between intf ip serv REQUIRED addr The IP addre...

Page 319: ...Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number OPTIONAL srcportend The source TCP UDP port range end inclusive Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number OPTIONAL dstport The TCP UDP port or beginning of range the packet is ...

Page 320: ...t 1720 2 proto 17 dst prt 1718 3 proto 17 dst prt 1719 expr add name myEXPR type intf intf Internet intfgroup lan expr list name type use flags expression _myPPP_ppp intf 0 D 1 intf myPPP_ppp _eth0 intf 0 D 1 intf eth0 wan intf 0 1 intfgroup 0 lan intf 28 1 intfgroup 2 local intf 0 1 intfgroup 1 notwan intf 1 1 intfgroup 2 2 intfgroup 1 myEXPR intf 0 1 intf Internet intfgroup 2 _10 0 0 138 ip 0 D ...

Page 321: ...38 ip 0 D 1 addr 10 0 0 138 _192 168 1 254 ip 0 D 1 addr 192 168 1 254 DiffServ serv 0 1 dscp 0 sip serv 1 1 proto 17 dst prt 5060 2 proto 6 dst prt 5060 h323 serv 1 1 proto 6 dst prt 1720 2 proto 17 dst prt 1718 3 proto 17 dst prt 1719 expr delete name myEXPR expr list name type use flags expression _myPPP_ppp intf 0 D 1 intf myPPP_ppp _eth0 intf 0 D 1 intf eth0 wan intf 0 1 intfgroup 0 lan intf ...

Page 322: ...Expr Commands E DOC CTC 20050531 0057 v1 0 302 expr flush Flush all the expressions SYNTAX expr flush ...

Page 323: ...specified all the expressions will be listed OPTIONAL type The expression type Choose between intf ip serv Note If not specified the expressions of all types will be shown OPTIONAL format Select the output format of the list Choose between pretty the expressions are shown as intuitive output in clear text cli the expressions are shown via the CLI commands configuration The default is pretty OPTION...

Page 324: ...MP_LISTEN_sv_0 serv 1 D 1 proto 1 SENDTO_LISTEN_sv_0 serv 1 D 1 proto 17 PING_RESPONDER_sv_0 serv 1 D 1 proto 1 icmp type 8 HTTPI_sv_0 serv 1 D 1 proto 6 dst prt 8080 icmp serv 1 1 proto 1 igmp serv 2 1 proto 2 ftp serv 0 1 proto 6 dst prt 21 telnet serv 1 1 proto 6 dst prt 23 http serv 1 1 proto 6 dst prt 80 httpproxy serv 1 1 proto 6 dst prt 8080 https serv 1 1 proto 6 dst prt 443 RPC serv 0 1 p...

Page 325: ...roxy expr add name icmp type serv proto icmp expr add name igmp type serv proto igmp expr add name ftp type serv proto tcp dstport ftp expr add name telnet type serv proto tcp dstport telnet expr add name http type serv proto tcp dstport www http expr add name httpproxy type serv proto tcp dstport httpproxy expr add name https type serv proto tcp dstport 443 expr add name RPC type serv proto tcp d...

Page 326: ...t name or number dstportend supported TCP UDP port name or number icmptype supported ICMP type name or number icmpcode number 0 15 icmpcodeend number 0 15 If a value is preceded by a it means NOT For example intfgroup wan means if the interface group is different from WAN name The name of the expression to be modified REQUIRED type The expression type Choose between intf ip serv REQUIRED number Th...

Page 327: ... The TCP UDP port or beginning of range the packet is coming from Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the protocol number OPTIONAL srcportend The source TCP UDP port range end inclusive Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the protocol num...

Page 328: ...Expr Commands E DOC CTC 20050531 0057 v1 0 308 ...

Page 329: ...nfigure the firewall trace options 320 firewall level add Add a security level 321 firewall level delete Delete a security level 322 firewall level flush Flush the security level configuration 323 firewall level list List all the security levels 324 firewall level modify Configure a security level 325 firewall level set Set the security level or display the current security level 326 firewall rule...

Page 330: ...nations shown below SYN PSH SYN PSH URG SYN FIN SYN FIN PSH SYN FIN RST PSH FIN flag set without ACK All flags set No flags set exact check and permit only combinations of flag with the TCP state of a connection SYN request to open connection SYN ACK agree to open connection A PA AU PAU acknowledgement of receipt FA FAP FAU FAP FAPU FAU FPAU request to close connection R RA RP RU RPA RPU RAU RPAU ...

Page 331: ...wall Commands E DOC CTC 20050531 0057 v1 0 311 EXAMPLE firewall config firewall config state enabled keep disabled tcpchecks fast icmpchecks enabled logdefault disabled logthreshold enabled tcpwindow 65536 ...

Page 332: ...Firewall Commands E DOC CTC 20050531 0057 v1 0 312 firewall clear Flush the firewall configuration SYNTAX firewall clear ...

Page 333: ...firewall list Config State enabled Keep disabled TcpChecks fast TcpWindow 65536 IcmpChecks enabled LogDefault disabled LogThreshold enabled Modules Module State Text Hooks fire enabled Firewall Administration Module sink forward source host_service enabled Firewall Host Service Module forward level enabled Firewall Level Module forward system_service enabled Firewall System Service Module sink fir...

Page 334: ...tem forward_level system sink_system_service system forward_level_BlockAll system forward_level_Standard system forward_level_Disabled system firewall chain add chain myCHAIN firewall chain list Chains Name Description sink system forward system source system sink_fire system forward_fire system source_fire system forward_host_service system forward_level system sink_system_service system forward_...

Page 335: ...ice system forward_level system sink_system_service system forward_level_BlockAll system forward_level_Standard system forward_level_Disabled system myCHAIN user firewall chain delete chain myCHAIN firewall chain list Chains Name Description sink system forward system source system sink_fire system forward_fire system source_fire system forward_host_service system forward_level system sink_system_...

Page 336: ...Firewall Commands E DOC CTC 20050531 0057 v1 0 316 firewall chain flush Flush all chains SYNTAX firewall chain flush ...

Page 337: ...output in clear text cli the chains are shown via the CLI commands configuration The default is pretty OPTIONAL firewall chain list Chains Name Description sink system forward system source system sink_fire system forward_fire system source_fire system forward_host_service system forward_level system sink_system_service system forward_level_BlockAll system forward_level_Standard system forward_lev...

Page 338: ...P seq ack win errors detected 5 ICMP errors with partial info 0 ICMP errors without cause 0 ICMP replies without request 0 Packet replay errors 0 firewall debug clear firewall debug stats Statistics Used rule contexts 0 Total rule contexts 256 Total packets parsed 26 Packets parsed in hook sink 16 Packets parsed in hook forward 0 Packets parsed in hook source 10 Packets dropped in hook sink 0 Pack...

Page 339: ...ckets parsed 2554 Packets parsed in hook sink 1461 Packets parsed in hook forward 12 Packets parsed in hook source 1041 Packets dropped in hook sink 0 Packets dropped in hook forward 0 Packets dropped in hook source 0 TCP flag errors detected 14 TCP seq ack win errors detected 5 ICMP errors with partial info 0 ICMP errors without cause 0 ICMP replies without request 0 Packet replay errors 0 firewa...

Page 340: ...able tcpchecks traces The default is disabled OPTIONAL udpchecks Disable or enable udpchecks traces The default is disabled OPTIONAL icmpchecks Disable or enable icmpchecks traces The default is disabled OPTIONAL sink Specify the action traced by the firewall for sink traffic The default is none OPTIONAL forward Specify the action traced by the firewall for forward traffic The default is none OPTI...

Page 341: ...ot disabled The default is enabled OPTIONAL udptrackmode Select the UDP connection tracking mode Choose between strict replies to a request from a client must be in a specific window to the client loose inbound packets are allowed on the port that was first used to start the communication with the server for example to allow a client of an online game to obtin peer to peer information from other c...

Page 342: ...rewall level delete Delete a security level SYNTAX where RELATED COMMANDS firewall level delete name string name The name of the security level to be deleted REQUIRED firewall level add Add a security level firewall level list List all the security levels ...

Page 343: ...Firewall Commands E DOC CTC 20050531 0057 v1 0 323 firewall level flush Flush the security level configuration SYNTAX firewall level flush ...

Page 344: ... pretty cli format Select the output format in which the security levels must be shown Choose between pretty the security levels are shown as intuitive output in clear text cli the security levels are shown via the CLI commands configuration The default is pretty OPTIONAL firewall level add Add a security level firewall level delete Delete a security level ...

Page 345: ...only enabled or not disabled OPTIONAL udptrackmode Select the UDP connection tracking mode Choose between strict replies to a request from a client must be in a specific window to the client loose inbound packets are allowed on the port that was first used to start the communication with the server for example to allow a client of an online game to obtin peer to peer information from other clients...

Page 346: ...ewall level set Set the security level or display the current security level SYNTAX where firewall level set name string name The name of the security level to be set Note If no security level is specified the current security level will be shown OPTIONAL ...

Page 347: ...if_0 PING_RESPONDER_if_0 _Internet _lan1 _wan1 _dmz1 _guest1 dstip private ssdp_ip mdap_ip _10 0 0 138 _192 168 1 254 _192 168 2 254 _192 168 3 254 serv PPTPD_sv_0 PPTPGRE_sv_0 HTTP_sv_0 HTTPs_sv_0 RIP_sv_0 RIP Query_sv_0 DNS S_sv_0 DHCP R_sv_0 DHCP S_sv_0 SNMP_AGENT_sv_0 SSDP_sv_0 MDAP_sv_0 RAS_sv_0 SRAS_sv_0 ICMP_LISTEN_sv_0 SENDTO_LISTEN_sv_0 PING_RESPONDER_sv_0 FTP_sv_0 TELNET_sv_0 CWMP_server...

Page 348: ...me of the source interface expression OPTIONAL srcip The name of the source IP expression OPTIONAL dstintf The name of the destination interface expression OPTIONAL dstip The name of the destination IP expression OPTIONAL serv The name of the service expression OPTIONAL log Disable or enable logging is done when this rule applies OPTIONAL state Enable or disable this rule OPTIONAL action The actio...

Page 349: ... delete Delete a firewall rule SYNTAX where RELATED COMMANDS firewall rule delete chain string index number chain The name of the chain in which a rule must be deleted REQUIRED index The number of the rule in the chain REQUIRED firewall rule add Add a firewall rule ...

Page 350: ...57 v1 0 330 firewall rule flush Flush all firewall rules SYNTAX where firewall rule flush chain string chain The name of the chain for which the rules must be flushed Note If not specified the rules of all the chains will be flushed OPTIONAL ...

Page 351: ...pretty cli chain The name of the chain for which the rules must be listed Note If not specified the rules of all the chains are shown OPTIONAL format Select the output format in which the list must be shown Choose between pretty the list is shown as intuitive output in clear text cli the list is shown via the CLI commands configuration The default is pretty OPTIONAL ...

Page 352: ...ccept TELNET_sv_0 TELNET_if_0 15 CDE FTP accept FTP_sv_0 FTP_if_0 16 CDE HTTPs accept HTTPs_sv_0 HTTPs_if_0 17 CDE HTTP accept HTTP_sv_0 HTTP_if_0 forward 1 CDE link forward_fire 2 CDE link forward_host_service 3 CDE link forward_level forward_level 1 CDE link forward_level_Disabled forward_level_Disabled 1 C E AnyTraffic accept source 1 CDE link source_fire source_fire 1 C E AnyTraffic accept fir...

Page 353: ...n The name of the chain which contains the rule REQUIRED index The number of the rule in the chain REQUIRED newindex The number of the rule in the chain OPTIONAL name The name of the new rule OPTIONAL clink The name of the chain to be parsed when this rule applies OPTIONAL srcintf The name of the source interface expression OPTIONAL srcip The name of the source IP expression OPTIONAL dstintf The n...

Page 354: ...ts chain index packets bytes sink 1 0 0 2 4 192 forward 1 0 0 2 0 0 3 10 480 source 1 0 0 sink_fire 1 0 0 source_fire 1 0 0 forward_level 1 10 480 sink_system_service 1 1 48 2 0 0 16 0 0 17 2 96 forward_level_BlockAll 1 0 0 forward_level_Standard 1 0 0 forward_level_Disabled 1 10 480 firewall rule debug clear firewall rule debug stats chain index packets bytes sink 1 0 0 2 0 0 forward 1 0 0 2 0 0 ...

Page 355: ...Firewall Commands E DOC CTC 20050531 0057 v1 0 335 RELATED COMMANDS firewall rule debug stats Show the firewall rule statistics ...

Page 356: ...r of the rule in the chain Note If not specified the statistics for all the rules in the chain are shown OPTIONAL firewall rule debug stats chain index packets bytes sink 1 0 0 2 4 192 forward 1 0 0 2 0 0 3 10 480 source 1 0 0 sink_fire 1 0 0 source_fire 1 0 0 forward_level 1 10 480 sink_system_service 1 1 48 2 0 0 3 0 0 4 0 0 5 0 0 6 0 0 7 0 0 8 0 0 9 0 0 10 0 0 11 0 0 12 0 0 13 0 0 14 1 48 15 0 ...

Page 357: ...config Display or modify the rule trace configuration SYNTAX where EXAMPLE firewall rule debug traceconfig trace disabled enabled trace Enable or disable rule traces The default is disabled OPTIONAL firewall rule debug traceconfig firewall rule debug traceconfig state disabled ...

Page 358: ...Firewall Commands E DOC CTC 20050531 0057 v1 0 338 ...

Page 359: ...ng Protocol GRP configuration settings 340 grp flush Flush the GRP interface settings and parameters 341 grp rtlist Show the current routes in the GRP interfaces routing table 342 grp rip config Configure the RIP settings 343 grp rip flush Flush the RIP interface settings and global parameters 345 grp rip ifconfig Configure a RIP interface 346 grp rip show Show the RIP settings and the routes in t...

Page 360: ...tance of the connected route type The default is 0 OPTIONAL kdistance A number between 0 and 255 Sets the distance of the kernel route type The default is 1 OPTIONAL rdistance A number between 0 and 255 Sets the distance of the RIP route type The default is 120 OPTIONAL trace Enable or disable verbose console messaging The default is disabled OPTIONAL grp config Distance of the connected route typ...

Page 361: ...GRP Commands E DOC CTC 20050531 0057 v1 0 341 grp flush Flush the GRP interface settings and parameters SYNTAX grp flush ...

Page 362: ... The destination IP address mask either in dotted or in numerical cidr notation OPTIONAL grp rtlist Codes K kernel C connected S static R rip FIB route destination 10 0 0 0 24 Route type C distance 0 Nexthop LocalNetwork destination 10 0 0 0 24 Route type K distance 1 Nexthop 10 0 0 138 destination 127 0 0 0 8 Route type C distance 0 Nexthop loop destination 192 168 1 0 24 Route type C distance 0 ...

Page 363: ...specified as such The actual RIP version to be used is negotiated with the remote side rip_v1 RIP version 1 is used rip_v2 RIP version 2 is used The default is rip_v2 OPTIONAL defmetric A number between 1 and 16 hops Represents the default RIP metric for imported routes The default is 1 OPTIONAL updatetime A number between 1 and 3600 seconds Represents the update timer value of the RIP routing tab...

Page 364: ...s enabled Global RIP queries received 0 Global RIP route changes 0 Default version send rip_v2 receive rip_v2 Default redistribution metric is 1 Sending routing table updates every 30 seconds with 5 Route timeout after 180 seconds Route garbage collect after 120 seconds Import of connected routes is enabled Import of kernel routes is enabled Import of static routes is enabled Import of default ker...

Page 365: ...GRP Commands E DOC CTC 20050531 0057 v1 0 345 grp rip flush Flush the RIP interface settings and global parameters SYNTAX grp rip flush ...

Page 366: ... remote side rip_v1 RIP version 1 is used rip_v2 RIP version 2 is used rip_v1 2 RIP version 1 and RIP version 2 are used The default is rip_unspec OPTIONAL rxversion Configure the RIP receive version to be applied Choose between rip_unspec No RIP version is specified as such The actual RIP version to be used is negotiated with the remote side rip_v1 RIP version 1 is used rip_v2 RIP version 2 is us...

Page 367: ...DOC CTC 20050531 0057 v1 0 347 EXAMPLE grp rip ifconfig intf myPPP_ppp rip disabled txversion rip_unspec rxversion rip_unspec authmode none authstr passive disabled splithorizon enabled grp rip ifconfig intf myPPP_ppp ...

Page 368: ...nds Import of connected routes is enabled Import of kernel routes is enabled Import of static routes is enabled Import of default kernel route is enabled Import of default static route is enabled Export of RIP routes is enabled Export of default RIP route is enabled Transmission of default RIP route is enabled Intf Send Recv AuthMode Passive SplitHorizon BadPackets BadRoutes SentUpdates eth0 rip_u...

Page 369: ...er covers the following commands hostmgr add Add host device info to the host manager 350 hostmgr clear Remove all the hosts from the list 352 hostmgr config Configure the host manager parameters 353 hostmgr delete Delete the host device info from the host manager 354 hostmgr flush Flush the host manager configuration 355 hostmgr list List all the host devices 356 ...

Page 370: ...age_device ipintf string ethintf string physintf string mac_addr The MAC address of the host to be added REQUIRED ip_addr The host IP address OPTIONAL name The host name OPTIONAL type The host type Choose between generic_device desktop_computer laptop_computer set_top_box pda gaming_console phone mobile_phone printer mass_storage_device The default is Generic Device OPTIONAL ipintf The IP interfac...

Page 371: ...etwork ethif4 MyComputer hostmgr add mac_addr 00 10 a4 33 56 53 name Play type Playstation hostmgr list MAC address IP address Flags Type Intf Hw Intf Hostname 00 10 a4 33 56 53 0 0 0 0 Playstation ethif1 ethif1 Play 00 10 a4 ad 32 cf 192 168 1 64 C Generic Device LocalNetwork ethif4 MyComputer hostmgr delete Delete the host device info from the host manager hostmgr list List all the host devices ...

Page 372: ...NDS hostmgr clear hostmgr list MAC address IP address Flags Type Intf Hw Intf Hostname 00 10 a4 33 56 53 0 0 0 0 Playstation ethif1 ethif1 Play 00 10 a4 ad 32 cf 192 168 1 64 C Generic Device LocalNetwork ethif4 MyComputer hostmgr clear hostmgr list No hosts found hostmgr delete Delete the host device info from the host manager ...

Page 373: ... Enable or disable the host manager daemon The default is enabled OPTIONAL scantime A number between 10 an 600 seconds Represents the time between two scans The default is 30 seconds OPTIONAL autosave Enable or disable automatic saves to flash memory The default is enabled OPTIONAL trace Enable or disable the host manager traces The default is disabled OPTIONAL hostmgr config state enabled scantim...

Page 374: ...s Type Intf Hw Intf Hostname 00 10 a4 33 56 53 0 0 0 0 Playstation ethif1 ethif1 Play 00 10 a4 ad 32 cf 192 168 1 64 C Generic Device LocalNetwork ethif4 MyComputer hostmgr delete mac_addr 00 10 a4 fa 33 56 hostmgr list MAC address IP address Flags Type Intf Hw Intf Hostname 00 10 a4 ad 32 cf 192 168 1 64 C Generic Device LocalNetwork ethif4 MyComputer hostmgr add Add host device info to the host ...

Page 375: ...Hostmgr Commands E DOC CTC 20050531 0057 v1 0 355 hostmgr flush Flush the host manager configuration The host manager configuration is cleaned and returned to default values SYNTAX hostmgr flush ...

Page 376: ...r list hostmgr list MAC address IP address Flags Type Intf Hw Intf Hostname 00 10 a4 33 56 53 0 0 0 0 Playstation ethif1 ethif1 Play 00 10 a4 ad 32 cf 192 168 1 64 C Generic Device LocalNetwork ethif4 MyComputer hostmgr add Add host device info to the host manager hostmgr delete Delete the host device info from the host manager ...

Page 377: ...nfiguration 360 ids parser modify Modify the IDS parser configuration 361 ids pattern clear Reset the pattern tracker 362 ids pattern list Display the patterns in the pattern tracker 363 ids pattern stats Display the pattern tracker statistics 364 ids signature list Displays the ids signature configuration 365 ids signature modify Modify the states of the signatures 366 ids threshold clear Reset t...

Page 378: ...IDS Commands E DOC CTC 20050531 0057 v1 0 358 ids clear Reset the IDS statistics SYNTAX RELATED COMMANDS ids clear ids parser list Display the IDS parser configuration ...

Page 379: ...n System IDS configuration SYNTAX where EXAMPLE ids config state disabled enabled trace disabled enabled state Enable or disable IDS checks The default is enabled OPTIONAL trace Enable or disable tracing The default is disabled OPTIONAL ids config IDS configuration state enabled traces disabled ...

Page 380: ...360 ids parser list Display the IDS parser configuration SYNTAX where EXAMPLE ids parser list parser parser parser The name of the parser REQUIRED ids parser list parser state fragment enabled scan enabled dos enabled proto enabled rate enabled ...

Page 381: ...ength fragment size 0 log drop enabled fragment small fragment size 0 log drop enabled fragment fragment size overrun 0 log drop enabled fragment fragment overlap 0 log drop enabled fragment fragment out of order 0 log enabled ids parser modify parser fragment state disabled ids list Resources resource total maximum parsers 5 10 signatures 38 50 Signatures parser signature hits action state fragme...

Page 382: ... maximum number of hash collisions 1 of hash entries with collisions 0 09 of hash entries unused 99 31 ids pattern clear ids pattern stats Pattern tracker statistics memory 32768 bytes maximum number of patterns 512 number of active patterns 0 number of recycled patterns 0 number of pattern searches 0 number of new patterns 0 maximum number of hash collisions 0 of hash entries with collisions 0 00...

Page 383: ...DS pattern list that will be shown Choose between 10 100 full or alternatively specify a number The default is full OPTIONAL ids pattern list 1 40002 UDP count 1 period 00001564 00001565 2 30002 UDP 255 255 255 255 67 count 1 period 00001564 00001566 3 5000a UDP 255 255 255 255 count 1 period 00001411 00001425 ids pattern clear Reset the pattern tracker ids pattern stats Display the pattern tracke...

Page 384: ...cker statistics memory 32768 bytes maximum number of patterns 512 number of active patterns 8 number of recycled patterns 0 number of pattern searches 9 number of new patterns 8 maximum number of hash collisions 1 of hash entries with collisions 0 09 of hash entries unused 99 31 ids pattern clear Reset the pattern tracker ids pattern list Display the patterns in the pattern tracker ...

Page 385: ...can tcp_syn_scan stealth_tcp_null_scan stealth_tcp_fin_scan stealth_tcp_xmas_scan stealth_tcp_full_xmas_scan stealth_tcp_vecna_scan stealth_tcp_syn fin_scan udp_port_scan ping_sweep_scan tcp_syn_flood udp_flood ping_flood icmp_unreachable_storm smurf_broadcast_attack smurf_storm_attack fraggle_broadcast_attack fraggle_storm_attack land_attack signature The name of the signature OPTIONAL ids signat...

Page 386: ...ealth_tcp_fin_scan stealth_tcp_xmas_scan stealth_tcp_full_xmas_scan stealth_tcp_vecna_scan stealth_tcp_syn fin_scan udp_port_scan ping_sweep_scan tcp_syn_flood udp_flood ping_flood icmp_unreachable_storm smurf_broadcast_attack smurf_storm_attack fraggle_broadcast_attack fraggle_storm_attack land_attack state disabled enabled signature The name of the signature REQUIRED state The desired state of t...

Page 387: ...disabled 3 ids tcp rate 10 300 enabled 4 ids udp rate 1 200 disabled 5 ids icmp rate 1 200 disabled 6 ids ip rate 1 200 disable ids threshold clear ids threshold list index name window limit scaling 1 ids scan 20 20 enabled 2 ids flood 2 100 disabled 3 ids tcp rate 1 200 disabled 4 ids udp rate 1 200 disabled 5 ids icmp rate 1 200 disabled 6 ids ip rate 1 200 disabled ids threshold list Display th...

Page 388: ...st ids threshold list index name window limit scaling 1 ids scan 20 20 enabled 2 ids flood 2 100 disabled 3 ids tcp rate 1 200 disabled 4 ids udp rate 1 200 disabled 5 ids icmp rate 1 200 disabled 6 ids ip rate 1 200 disabled ids threshold clear Reset the IDS thresholds to their default values ids threshold modify Modify the IDS thresholds ...

Page 389: ...ing Enable or disable scaling of the threshold window OPTIONAL ids threshold list index name window limit scaling 1 ids scan 20 20 enabled 2 ids flood 2 100 disabled 3 ids tcp rate 1 200 disabled 4 ids udp rate 1 200 disabled 5 ids icmp rate 1 200 disabled 6 ids ip rate 1 200 disabled ids threshold modify index 3 window 10 limit 300 scaling enabled ids threshold list index name window limit scalin...

Page 390: ...IDS Commands E DOC CTC 20050531 0057 v1 0 370 ...

Page 391: ...E DOC CTC 20050531 0057 v1 0 371 Interface Commands Introduction This chapter describes the commands of the interface command group Contents This chapter covers the following commands interface list Display interfaces 372 ...

Page 392: ...cted 0 interface list expand enabled Name Type State Use UL Interfaces ethif1 physical connected 1 bridge Flags INTERNAL Phys intf 0 type eth speed 100 Mbps ethif4 physical connected 1 bridge Flags INTERNAL Phys intf 3 type eth speed 100 Mbps usbif1 physical connected 1 bridge Flags INTERNAL Phys intf 4 type usb speed 12 Mbps RELAY eth connected 1 Internet_ppp Flags INTERNAL DYNAMIC RELAY Eth port...

Page 393: ... an IP interface 389 ip ipconfig Modify an IP address configuration 390 ip ipdelete Remove an IP address from an IP interface 391 ip iplist Display all the configured IP addresses 392 ip mcadd Add a multicast address to a multicast capable interface 393 ip mcdelete Delete a multicast address to a multicast capable interface 394 ip mclist Display all multicast addresses 395 ip rtadd Add a route to ...

Page 394: ... 0057 v1 0 374 ip debug sendto Send UDP packets 409 ip debug stats Display IP statistics 411 ip debug traceconfig Display modify the IP stack trace configuration 412 ip debug traceroute Send ICMP UDP packets to trace the IP path 413 ...

Page 395: ...thernet MAC address of the entry to be added OPTIONAL ip arplist Interface IP address HW address Type 2 eth0 10 0 0 1 00 10 a4 ad 32 cf STATIC ip arpadd intf eth0 ip 10 0 0 2 ip arplist Interface IP address HW address Type 2 eth0 10 0 0 1 00 10 a4 ad 32 cf STATIC 2 eth0 10 0 0 2 00 00 00 00 00 00 DYNAMIC ip arpadd intf eth0 ip 10 0 0 3 hwaddr 00 a0 24 ae 66 e1 ip arplist Interface IP address HW ad...

Page 396: ...thernet MAC address of the entry to be deleted OPTIONAL ip arplist Interface IP address HW address Type 2 eth0 10 0 0 1 00 10 a4 ad 32 cf STATIC 2 eth0 10 0 0 2 00 00 00 00 00 00 DYNAMIC 2 eth0 10 0 0 3 00 a0 24 ae 66 e1 STATIC ip arpdelete intf eth0 ip 10 0 0 3 hwaddr 00 a0 24 ae 66 e1 ip arplist Interface IP address HW address Type 2 eth0 10 0 0 1 00 10 a4 ad 32 cf STATIC 2 eth0 10 0 0 2 00 00 0...

Page 397: ... arplist ip arplist Interface IP address HW address Type 2 eth0 10 0 0 1 00 10 a4 ad 32 cf STATIC 2 eth0 10 0 0 2 00 00 00 00 00 00 DYNAMIC 2 eth0 10 0 0 3 00 a0 24 ae 66 e1 STATIC ip arpadd Add an entry to the ARP cache of a broadcast Internet Protocol IP interface ip arpdelete Delete an entry from the ARP cache ...

Page 398: ... packets are packets with the route to follow specified in the header The default is disabled for security reasons OPTIONAL netbroadcasts Disable or enable net directed broadcasts The default is disabled In case netbroadcasts are allowed no traces of netbroadcasts are generated OPTIONAL ttl A number between 0 and 255 Represents the default Time To Live TTL for locally generated IP packets This par...

Page 399: ...ddress configuration of the SpeedTouch itself and besides the checking of traffic on a constants level additional checking is performed on the IP addresses that are determined by the configuration more specifically by the network The default is dynamic OPTIONAL mssclamping Disable or enable mss clamping for low MTU interfaces Enabling mss clamping assures that the size of a TCP packet never exceed...

Page 400: ...gurations for example from PPP or CIP links remain SYNTAX The flush command does not impact previously saved configurations The command ip flush deletes all local IP connectivity Do not use this command during an IP based local connection for example a Telnet CLI session or web based CLI access ip flush ...

Page 401: ... wan 1500 0 0 0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1500 84105 123358 0 UP 00 0e 50 0f fc 2c ip ifadd intf myIPintf dest RtPPPoE_eth ip iflist Interface Group MTU RX TX TX Drop Status HW address 0 loop local 65535 123966 75177 0 UP 00 0e 50 0f fc 2c 1 Internet wan 1500 0 0 0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1500 86589 125262 0 UP 00 0e 50 0f fc 2c 4 m...

Page 402: ...Internet wan 1500 0 0 0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1500 86589 125262 0 UP 00 0e 50 0f fc 2c 4 myIPintf wan 1500 0 0 0 DOWN 00 0e 50 0f fc 2c ip ifattach intf myIPintf ip iflist Interface Group MTU RX TX TX Drop Status HW address 0 loop local 65535 123966 75177 0 UP 00 0e 50 0f fc 2c 1 Internet wan 1500 0 0 0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1...

Page 403: ...ader to be used on this interface Note The default value depends on the connection and packet service for which the interface was created OPTIONAL status The administrative state of the interface Choose between down up OPTIONAL hwaddr The hardware address for example the Ethernet MAC address of this IP interface OPTIONAL group The group to which this interface belongs Can be used for firewalling f...

Page 404: ...c 2c ip ifconfig intf myIPintf mtu 1500 status up hwaddr 00 0e 50 0f fc 2c group wan linksensing enabled primary enabled ip ifconfig intf myIPintf ip iflist Interface Group MTU RX TX TX Drop Status HW address 0 loop local 65535 123966 75177 0 UP 00 0e 50 0f fc 2c 1 Internet wan 1500 0 0 0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1500 86589 125262 0 UP 00 0e 50 0f fc 2c 4 myIPintf ...

Page 405: ...0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1500 86589 125262 0 UP 00 0e 50 0f fc 2c 4 myIPintf wan 1500 0 0 0 UP 00 0e 50 0f fc 2c ip ifdelete intf myIPintf ip iflist Interface Group MTU RX TX TX Drop Status HW address 0 loop local 65535 123966 75177 0 UP 00 0e 50 0f fc 2c 1 Internet wan 1500 0 0 0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1500 86589 125262 0 UP 00...

Page 406: ...X unicastpkts 0 brcastpkts 0 TX unicastpkts 0 brcastpkts 0 droppkts 0 Oper state DOWN Admin State UP Flags PRIMARY ARP BROADCAST BOUND ARPTABLE MULTICAST LINKSENSING STATIC ip ifdetach intf myIPintf ip iflist expand enabled Interface Group MTU RX TX TX Drop Status HW address 0 loop local 65535 133683 83949 0 UP 00 0e 50 0f fc 2c BRHW address ff ff ff ff ff ff RX unicastpkts 1332 brcastpkts 0 TX un...

Page 407: ...ed OPTIONAL ip iflist Interface Group MTU RX TX TX Drop Status HW address 0 loop local 65535 123966 75177 0 UP 00 0e 50 0f fc 2c 1 Internet wan 1500 0 0 0 DOWN 2 RtPPPoE_ppp wan 1500 0 0 0 DOWN 3 LocalNetwork lan 1500 86589 125262 0 UP 00 0e 50 0f fc 2c 4 myIPintf wan 1500 0 0 0 UP 00 0e 50 0f fc 2c ip ifadd Create an IP interface ip ifdelete Delete an IP interface ip ifwait Wait for a status chan...

Page 408: ...terface name REQUIRED timeout A number between 1 and 600000 seconds Represents the timeout OPTIONAL adminstatus The administrative state of the interface Choose between down up OPTIONAL operstatus The operational state of the interface Choose between down up OPTIONAL linkstatus The link state of the interface Choose between down up OPTIONAL ip ifadd Create an IP interface ip ifdelete Delete an IP ...

Page 409: ...ypical net subnet routes automatically according to the default or specified subnet mask enabled or not disabled The default is disabled OPTIONAL ip iplist Interface Type IP address Point to point Mask 1 eth0 Ethernet 10 0 0 138 255 255 255 0 1 eth0 Ethernet 169 254 141 11 255 255 0 0 0 loop Ethernet 127 0 0 1 255 0 0 0 ip ipadd intf eth0 addr 10 0 0 2 24 addroute enabled ip aplist Interface Type ...

Page 410: ...this IP address the primary address for the interface enabled or not disabled The default is disabled OPTIONAL ip iplist Interface Type IP address Point to point Mask 1 eth0 Ethernet 10 0 0 138 255 255 255 0 1 eth0 Ethernet 169 254 141 11 255 255 0 0 0 loop Ethernet 127 0 0 1 255 0 0 0 ip ipconfig addr 169 254 141 11 preferred enabled primary enabled ip iplist Interface Type IP address Point to po...

Page 411: ...sk 1 eth0 Ethernet 10 0 0 2 255 255 255 0 1 eth0 Ethernet 10 0 0 138 255 255 255 0 1 eth0 Ethernet 169 254 141 11 255 255 0 0 0 loop Ethernet 127 0 0 1 255 0 0 0 ip ipdelete addr 10 0 0 2 ip iplist Interface Type IP address Point to point Mask 1 eth0 Ethernet 10 0 0 138 255 255 255 0 1 eth0 Ethernet 169 254 141 11 255 255 0 0 0 loop Ethernet 127 0 0 1 255 0 0 0 ip ipadd Assign an IP address to an ...

Page 412: ...COMMANDS ip iplist ip iplist Interface Type IP address Point to point Mask 2 LocalNetwork Ethernet 10 0 0 138 255 255 255 0 2 LocalNetwork Ethernet 192 168 1 254 255 255 255 0 0 loop Ethernet 127 0 0 1 255 255 255 255 ip ipadd Assign an IP address to an IP interface ip ipdelete Remove an IP address from an IP interface ...

Page 413: ...idr intf The IP interface name REQUIRED addr The multicast IP address REQUIRED mask The multicast IP address mask associated with this address Note Use 0 for promiscuous mode OPTIONAL ip mcadd intf ETHoA_1 addr 192 178 14 11 ip mclist Interface Address Mask 2 ETHoA_1 192 178 14 11 255 255 255 255 ip mcdelete Delete a multicast address to a multicast capable interface ip mclist Display all multicas...

Page 414: ...tf The IP interface name REQUIRED addr The multicast IP address REQUIRED mask The multicast IP address mask associated with this address Note Use 0 for promiscuous mode OPTIONAL ip mclist Interface Address Mask 2 ETHoA_1 192 178 14 11 255 255 255 255 ip mcdelete intf ETHoA_1 addr 192 178 14 11 ip mclist Interface Address Mask ip mcadd Add a multicast address to a multicast capable interface ip mcl...

Page 415: ...lticast addresses SYNTAX EXAMPLE RELATED COMMANDS ip mclist ip mclist Interface Address Mask 2 ETHoA_1 192 178 14 11 255 255 255 255 ip mcadd Add a multicast address to a multicast capable interface ip mcdelete Delete a multicast address to a multicast capable interface ...

Page 416: ...interface routes the outgoing IP interface name Note The parameters gateway and intf are mutually exclusive OPTIONAL srcintf Use this interface for source address selection OPTIONAL metric The metric for this route weight factor The lower the metric the higher the weight The default is 0 OPTIONAL ip rtlist Destination Label Gateway Intf Mtrc Status 10 0 0 0 24 10 0 0 140 eth0 0 UP 10 0 0 140 32 10...

Page 417: ...arameters gateway and intf are mutually exclusive OPTIONAL intf Only for special interface routes the outgoing IP interface name Note The parameters gateway and intf are mutually exclusive OPTIONAL ip rtlist Destination Label Gateway Intf Mtrc Status 10 0 0 0 24 10 0 0 140 eth0 0 UP 10 10 0 0 24 Interactive 10 0 0 140 eth0 0 UP 10 0 0 140 32 10 0 0 140 eth0 0 UP 127 0 0 1 32 127 0 0 1 loop 0 UP ip...

Page 418: ...y Interface Metric Status 10 0 0 138 32 127 0 0 1 loop 0 UP 127 0 0 1 32 127 0 0 1 loop 0 UP 10 0 0 0 24 10 0 0 138 eth0 0 UP ip rtlist expand enabled Destination Label Gateway Interface Metric Status Source selection 10 0 0 138 32 127 0 0 1 loop 0 UP default 127 0 0 1 127 0 0 1 32 127 0 0 1 loop 0 UP default 127 0 0 1 10 0 0 0 24 10 0 0 138 eth0 0 UP default 10 0 0 138 ip rtadd Add a route to the...

Page 419: ...IP Commands E DOC CTC 20050531 0057 v1 0 399 ip auto flush Flush the autoIP interfaces SYNTAX ip auto flush ...

Page 420: ... for which a link local address has to be allocated REQUIRED dest The preferred link local IP address OPTIONAL ip auto ifadd intf eth0 ip auto iflist eth0 INIT 0 0 0 0 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 0 collisions 0 ip auto ifdelete Delete an existing autoIP interface ip auto iflist Display the autoIP interfaces...

Page 421: ...ached REQUIRED ip auto iflist ipsec0 INIT 0 0 0 0 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 0 collisions 0 ip auto ifattach intf ipsec0 ip auto iflist ipsec0 SELECTING 169 254 80 236 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 2 collisions 0 ip a...

Page 422: ... address of the link local address pool The default is 169 254 254 254 OPTIONAL netmask The netmask of the link local IP address pool The default is 16 OPTIONAL claim A number between 0 and 65535 Represents the number of link local address selection retries before giving up The default is 10 OPTIONAL defence A number between 0 and 65535 Represents the number of times the link local address is defe...

Page 423: ...169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 0 collisions 0 ip auto ifconfig intf ipsec0 claim 5 probe 5 ip auto iflist ipsec0 INIT 0 0 0 0 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 5 defence 5 probe 5 interval 2 sec probes sent 0 collisions 0 ...

Page 424: ...ntf The name of the IP interface to be deleted REQUIRED ip auto iflist ipsec0 SELECTING 169 254 80 236 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 2 collisions 0 ip auto ifdelete intf ipsec0 ip auto iflist ip auto ifadd Create an autoIP interface ip auto iflist Display the autoIP interfaces ...

Page 425: ...ed REQUIRED ip auto iflist ipsec0 SELECTING 169 254 80 236 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 2 collisions 0 ip auto ifdetach intf ipsec0 ip auto iflist ipsec0 INIT 169 254 80 236 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 0 collisions 0 ...

Page 426: ... the autoIP interface to be listed Note If not specified all the autoIP interfaces are shown OPTIONAL ip auto iflist eth0 CLAIMED 169 254 138 1 poolstart 169 254 1 1 poolend 169 254 254 254 netmask 255 255 0 0 claim 10 defence 5 probe 4 interval 2 sec probes sent 2 collisions 0 ip auto ifadd Create an autoIP interface ip auto ifdelete Delete an existing autoIP interface ...

Page 427: ...onse back from the HTTP Server the probe retrieves the base HTML page only as body and does not request hyperlinks within this page The SpeedTouch will send the HTTP request receive the reply and report the RTT statistics including the size of the page returned ip debug httpprobe url string version 1 0 1 1 url The Uniform Resource Locator URL identifying the HTTP server REQUIRED version The versio...

Page 428: ...ng ICMP packets enabled or only send ICMP packets disabled The default is enabled OPTIONAL ip debug ping addr 10 0 0 148 listen disabled ip debug ping addr 10 0 0 148 listen enabled 9 bytes from 10 0 0 148 Echo Request ip debug ping addr 10 0 0 148 count 15 listen enabled 9 bytes from 10 0 0 148 Echo Request 9 bytes from 10 0 0 148 Echo Request 9 bytes from 10 0 0 148 Echo Request 9 bytes from 10 ...

Page 429: ...interval between two sent UDP packets The default is 100 OPTIONAL listen Listen for incoming ICMP packets enabled or only send ICMP packets disabled The default is disabled OPTIONAL srcaddr The IP source address to use OPTIONAL srcport The UDP source port number to use OPTIONAL dstport The UDP destination port number to send to REQUIRED dstintf The IP interface name By specifying the destination i...

Page 430: ...rcport 19 dstport 1025 ip debug sendto addr 10 0 0 148 listen on srcport 19 dstport 1025 1 bytes from 10 0 0 148 1025 41 A ip debug sendto addr 10 0 0 148 count 3 listen on srcport 19 dstport 1025 1 bytes from 10 0 0 148 1025 41 A 1 bytes from 10 0 0 148 1025 41 A 1 bytes from 10 0 0 148 1025 41 A ...

Page 431: ...ms received 8599 IP header errors 0 Datagrams forwarded 23 Datagram forwarding errors 3 Datagram forwarding resource errors 0 Total Fragments received 0 Fragments dropped due to resources or timeouts 0 Datagrams reassembled 0 Datagrams fragmented successfully 0 Datagram fragmentation errors 0 Total Datagram fragments created successfully 0 ...

Page 432: ...e default is none OPTIONAL forward Define the forward packets that will be traced The default is none OPTIONAL output Define the output packets that will be traced The default is none OPTIONAL drop Define the packet drops that will be traced The default is all OPTIONAL path Define the packet that will be path traced The default is none OPTIONAL mode Select the packet dump method Choose between lin...

Page 433: ... the traceroute packet s The default is 1 OPTIONAL interval A number between 100 and 10000000 milliseconds Represents the intermediate interval between two packets The default is 1000 OPTIONAL maxhops A number between 1 and 255 Represents the maximum number of routers through which a packet can pass The default is 30 OPTIONAL dstport A number between 1 and 65535 Represents the UDP destination port...

Page 434: ... 0057 v1 0 414 EXAMPLE ip debug traceroute addr 192 193 195 250 count 3 size 1 interval 1000 maxhops 30 dstport 33433 maxfail 5 type icmp utime yes ip debug traceroute addr 192 193 195 250 ttl 1 192 193 195 250 676 us 1351 us 648 us ...

Page 435: ...antiation 416 ipqos list Display the IPQoS configuration 418 ipqos ef config Configure the IPQoS Expedited Forwarding EF timer for an interface 419 ipqos ef list Display the IPQoS EF timers 420 ipqos ef stats Display the IPQoS EF timer statistics 421 ipqos queue clear Clear the IPQoS statistics 422 ipqos queue config Modify the IPQoS subqueue configuration 423 ipqos queue list Display the IPQoS su...

Page 436: ...0 maxbytes number 0 128 dest The destination interface for the IPQoS queues instantiation This is an ATM phonebook entry REQUIRED state Disable or enable IPQoS for the interface The default is disabled OPTIONAL discard Determines the packet discard strategy in case of congestion Choose between tail Tail Drop arriving packets will be dropped as soon as the destination queue is in an overflow state ...

Page 437: ...eue 2 used for WFQ or WRR The default is 25 OPTIONAL weight3 A number between 1 and 97 Represents the weight of queue 3 used for WFQ or WRR The default is 25 OPTIONAL weight4 A number between 1 and 97 Represents the weight of queue 4 used for WFQ or WRR The default is 25 OPTIONAL maxpackets A number between 0 and 250 Represents the maximum number of packets in all IPQoS queues instantiated for one...

Page 438: ...NDS ipqos list ipqos list Name State Discard Priority Size Size Rate Burst Weights Packets KBytes KBytes Weights atm_pvc_0_35 disabled early wfq 250 56 80 2 25 25 25 25 atm_pvc_8_35 enabled early wfq 250 56 80 2 25 25 25 25 ipqos config Configure IPQoS for a given destination interface for the IPQoS queues instantiation ...

Page 439: ...sabled OPTIONAL timeout A number between 100 and 10000 milliseconds Represents the timeout The default is 1000 OPTIONAL mtu A number between 68 and 65535 Represents the MTU of the IP interface in case of EF data The default is 1500 OPTIONAL ipqos ef list Interface State Timeout MTU ms bytes loop disabled 1000 65535 Rt_PPPoA2 disabled 1000 1500 eth0 disabled 1000 1500 ipqos ef config intf Rt_PPPoA2...

Page 440: ...AMPLE RELATED COMMANDS ipqos ef list ipqos ef list Interface State Timeout MTU ms bytes loop disabled 1000 65535 Rt_PPPoA2 enabled 1000 1500 eth0 disabled 1000 1500 ipqos ef config Configure the IPQoS Expedited Forwarding EF timer for an interface ipqos ef stats Display the IPQoS EF timer statistics ...

Page 441: ...F timer statistics SYNTAX EXAMPLE RELATED COMMANDS ipqos ef stats ipqos ef stats Interface State Remain ms loop active 900 Rt_PPPoA2 active 900 eth0 disabled 0 ipqos ef config Configure the IPQoS Expedited Forwarding EF timer for an interface ipqos ef list Display the IPQoS EF timers ...

Page 442: ... added marked removed dropped replaced PVC_1 0 1240 0 1240 0 0 0 1 0 0 0 0 0 0 2 0 0 0 0 0 0 3 234 0 234 0 0 0 4 0 0 0 0 0 0 5 1345 0 1345 0 0 0 ipqos queue clear ipqos queue stats Name Queue packets packets packets packets packets Marking added marked removed dropped replaced PVC_1 0 0 0 0 0 0 0 1 0 0 0 0 0 0 2 0 0 0 0 0 0 3 0 0 0 0 0 0 4 0 0 0 0 0 0 5 0 0 0 0 0 0 ipqos queue stats Show the IPQoS...

Page 443: ... 0 is the Best Effort queue OPTIONAL propagate Higher priority packets will be queued in a lower priority queue instead of being dropped as soon as the destination queue is in overflow state The packet will be put in a lower priority queue only once Choose between disabled or enabled The default is disabled Note The propagate flag for the lowest priority subqueue the Best Effort queue has no meani...

Page 444: ... number between 0 and 1000 Represents the maximum packet marking probability in parts per mille for early discard strategy The default is 1000 OPTIONAL ipqos queue list Name Queue Propagate ECN AckFilter Size Size Reserved Reserved Holdtime Markpro b Packets KBytes Packets KBytes usecs atm_pvc_0_35 0 disabled disabled 100 20 13 4 50000 1000 1 disabled disabled disabled 100 20 13 4 50000 1000 2 dis...

Page 445: ...tes usecs atm_pvc_0_35 0 disabled disabled 100 20 13 4 50000 1000 1 disabled disabled disabled 100 20 13 4 50000 1000 2 disabled disabled disabled 100 20 13 4 50000 1000 3 disabled disabled disabled 100 20 13 4 50000 1000 4 disabled disabled disabled 100 20 13 4 50000 1000 5 disabled disabled disabled 0 0 30 12 50000 1000 atm_pvc_8_35 0 disabled disabled 100 20 13 4 50000 1000 1 disabled disabled ...

Page 446: ... queues instantiation This is an ATM phonebook entry Note If not specified the IPQoS subqueue statistics for all the interfaces will be shown OPTIONAL ipqos queue stats Name Queue packets packets packets packets packets Marking added marked removed dropped replaced PVC_1 0 1240 0 1240 0 0 0 1 0 0 0 0 0 0 2 0 0 0 0 0 0 3 234 0 234 0 0 0 4 0 0 0 0 0 0 5 145 0 145 0 0 0 ipqos queue clear Clear the IP...

Page 447: ...in add Add a new label chain 434 label chain delete Delete a label chain 435 label chain flush Flush all label chains 436 label chain list Display a list of chains 437 label rule add Add a label rule 438 label rule delete Delete a label rule 440 label rule flush Flush all label rules 441 label rule list Display a list of label rules 442 label rule modify Modify a label rule 443 label rule debug cl...

Page 448: ... 0 disabled 0 0 disabled default increase default prioritize disabled disabled disabled tos 0 disabled 0 0 disabled label add name myLABEL label list Name Class Def Ack Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace DSCP overwrite dscp defclass disabled disabled disabled tos 0 disabled 0 0 disabled Interactive increase 8 8 disabled disabled disabled tos 0 disabled 0 0 disabled Managemen...

Page 449: ... 0 disabled 0 0 disabled VoIP overwrite 14 14 enabled enabled disabled tos 0 disabled 0 0 disabled default increase default prioritize disabled disabled disabled tos 0 disabled 0 0 disabled myLABEL ignore 0 0 disabled disabled disabled tos 0 disabled 0 0 disabled label delete name myLABEL force yes label list Name Class Def Ack Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace DSCP overwri...

Page 450: ...Label Commands E DOC CTC 20050531 0057 v1 0 430 label flush Flush all labels SYNTAX The flush command does not impact previously saved configurations label flush ...

Page 451: ...ractive increase 8 8 disabled disabled disabled tos 0 disabled 0 0 disabled Management increase 12 12 disabled disabled disabled tos 0 disabled 0 0 disabled Video increase 10 10 disabled disabled disabled tos 0 disabled 0 0 disabled VoIP overwrite 14 14 enabled enabled disabled tos 0 disabled 0 0 disabled default increase default prioritize disabled disabled disabled tos 0 disabled 0 0 disabled la...

Page 452: ...class and ackclass but use the class as set by Layer 2 VLAN user priority ATM QoS overwrite Change the class to defclass and ackclass overwriting the value set by Layer 2 VLAN user priority ATM QoS increase Change the class according to defclass and ackclass but only if the defclass value is higher than the class value already set by Layer 2 The default is ignore Note The class as set by Layer 2 i...

Page 453: ... and 255 Represents the TTL in the IP packet used for ttl overwrite The default is 0 OPTIONAL trace Enable or disable IP tracing for this label The default is disabled OPTIONAL label list Name Class Def Ack Bidirect Inherit Tosmark Type Value Ttlover Ttl Use Trace DSCP overwrite dscp defclass disabled disabled disabled tos 0 disabled 0 0 disabled Interactive increase 8 8 disabled disabled disabled...

Page 454: ...Description routing_labels system rt_user_labels user rt_default_labels user qos_labels system qos_user_labels user qos_default_labels user label chain add chain myChain label chain list Chains Name Description routing_labels system rt_user_labels user rt_default_labels user qos_labels system qos_user_labels user qos_default_labels user myChain user label chain delete Delete a label chain label ch...

Page 455: ...me Description routing_labels system rt_user_labels user rt_default_labels user qos_labels system qos_user_labels user qos_default_labels user myChain user label chain delete chain myChain label chain list Chains Name Description routing_labels system rt_user_labels user rt_default_labels user qos_labels system qos_user_labels user qos_default_labels user label chain add Add a new label chain labe...

Page 456: ...Label Commands E DOC CTC 20050531 0057 v1 0 436 label chain flush Flush all label chains SYNTAX label chain flush ...

Page 457: ...ion is shown via the CLI commands configuration The default is pretty OPTIONAL label chain list Chains Name Description routing_labels system rt_user_labels user rt_default_labels user qos_labels system qos_user_labels user qos_default_labels user label chain list format cli label chain add chain rt_user_labels label chain add chain rt_default_labels label chain add chain qos_user_labels label cha...

Page 458: ...ber of the rule before which the new rule must be added Tip Use the command label rule list to obtain the index number of the applicable rule OPTIONAL name The name of the new rule OPTIONAL clink The name of the chain to be parsed when this rule applies OPTIONAL srcintf The name of the source interface expression OPTIONAL srcip The name of the source IP expression OPTIONAL dstip The name of the de...

Page 459: ...fault wan label rule add chain myChain name myRule dstip 150 150 150 150 serv DiffServ log enabled state enabled label myLABEL label rule list Rules flags C Constant D Dynamic E Enable L Log Chain Nr Flags Rule routing_labels 1 CDE link rt_user_labels 2 CDE link rt_default_labels qos_labels 1 CDE link qos_user_labels 2 CDE link qos_default_labels qos_default_labels 1 C E VoIP sip 2 C E VoIP h323 3...

Page 460: ...qos_user_labels 2 CDE link qos_default_labels qos_default_labels 1 C E VoIP sip 2 C E VoIP h323 3 C E Interactive telnet 19 E Management icmp 20 C E Video rtsp 21 C E Video igmp 22 C E default default wan myChain 1 C EL myRule myLABEL DiffServ 150 150 150 150 label rule delete chain myChain index 1 label rule list Rules flags C Constant D Dynamic E Enable L Log Chain Nr Flags Rule routing_labels 1...

Page 461: ...label rules The chains themselves are not removed SYNTAX where The flush command does not impact previously saved configurations label rule flush chain string chain The name of the chain to be flushed Note If not specified all the rules for all the chains are flushed OPTIONAL ...

Page 462: ...e enabled label Interactive label rule add chain qos_default_labels index 9 serv pop3s log disabled state enabled label Interactive label rule add chain qos_default_labels index 10 serv pop3 log disabled state enabled label Interactive label rule add chain qos_default_labels index 11 serv pop2 log disabled state enabled label Interactive label rule add chain qos_default_labels index 12 serv httppr...

Page 463: ...the chain which contains the rule REQUIRED index The number of the rule in the chain REQUIRED newindex The new number of the rule in the chain OPTIONAL name The name of the new rule OPTIONAL clink The name of the chain to be parsed when this rule applies OPTIONAL srcintf The name of the source interface expression OPTIONAL srcip The name of the source IP expression OPTIONAL dstip The name of the d...

Page 464: ...he position of the rule in the chain Note If not specified the statistics for all the rules in a chain will be cleared OPTIONAL label rule debug stats chain qos_labels chain index packets bytes qos_labels 1 0 0 2 203 19146 label rule debug clear chain qos_labels label rule debug stats chain index packets bytes routing_labels 1 0 0 2 0 0 qos_labels 1 0 0 2 0 0 qos_default_labels 1 0 0 2 0 0 3 4 168...

Page 465: ...hown OPTIONAL index The index number of the rule for which the statistics must be shown Tip Use the command label rule list to obtain the index number of the applicable rule Note If not specified the statistics for all rules applicable to the specified chain are shown OPTIONAL label rule debug stats chain qos_labels chain index packets bytes qos_labels 1 0 0 2 167 15690 label rule debug stats chai...

Page 466: ...ceconfig Display or modify the rule trace configuration SYNTAX where EXAMPLE label rule debug traceconfig trace disabled enabled trace Disable or enable rule traces The default is disabled OPTIONAL label rule debug traceconfig label rule debug traceconfig state disabled ...

Page 467: ...oduction This chapter describes the commands of the language command group Contents This chapter covers the following commands language config Select a language 448 language delete Delete one or all language archives 449 language list List the available language archives 450 ...

Page 468: ...AX where EXAMPLE RELATED COMMANDS language config language string language Language code OSI language code 2 chars for language Example en for english OPTIONAL language config language en language delete Delete one or all language archives language list List the available language archives ...

Page 469: ...hives SYNTAX where RELATED COMMANDS language delete file string all yes no file The filename of the language archive to be removed OPTIONAL all Remove all languages archives yes or not no The default is no OPTIONAL language config Select a language language list List the available language archives ...

Page 470: ...archives SYNTAX EXAMPLE RELATED COMMANDS language list language list CODE LANGUAGE VERSION FILENAME en English 5 3 0 10 0 system The currently selected language is indicated by a next to the OSI language code language config Select a language language delete Delete one or all language archives ...

Page 471: ...55 mlp debug traceconfig Modify the MLP trace settings 456 mlp privilege add Add a privilege 457 mlp privilege addzone Add a zone to a privilege 458 mlp privilege config Modify a privilege 459 mlp privilege delete Delete a privilege 460 mlp privilege list Display the privileges 461 mlp privilege removezone Remove a zone from a privilege 462 mlp role add Add a role 463 mlp role addpriv Add a privil...

Page 472: ...MLP Commands E DOC CTC 20050531 0057 v1 0 452 mlp flush Flush all the Multi Level access Policies MLP structures SYNTAX mlp flush ...

Page 473: ... mlp import Import all the scores SYNTAX where RELATED COMMANDS mlp import trace disabled enabled full trace Select the import trace level Choose between disabled enabled full The default is disabled OPTIONAL mlp debug export Export all the scores ...

Page 474: ...MLP Commands E DOC CTC 20050531 0057 v1 0 454 mlp debug export Export all the scores SYNTAX RELATED COMMANDS mlp debug export mlp import Import all the scores ...

Page 475: ...s E DOC CTC 20050531 0057 v1 0 455 mlp debug stats Display MLP statistics SYNTAX EXAMPLE mlp debug stats mlp debug stats Roles cur free max 8 7 15 Privileges cur free max 35 25 60 ListItems cur free max 31 119 150 ...

Page 476: ...ug traceconfig Modify the MLP trace settings SYNTAX where EXAMPLE mlp debug traceconfig trace disabled enabled full trace Select the trace level Choose between disabled enabled full The default is disabled OPTIONAL mlp debug traceconfig mlp trace disabled ...

Page 477: ...escription anyaccess access All access privileges granted AP1 access LAN_Local_all AP2 access LAN_Local with all secured channels AP3 access LAN_Local with all channels access to sensitive files AP15 access WAN from all channels AP16 access LAN from HTTP HTTPs mlp privilege add name myPrivilege type access descr My access privilege mlp privilege list type access Privilege type Description anyacces...

Page 478: ... be added mlp privilege addzone name string zone string name The name of the privilege in which a zone must be added REQUIRED zone The name of the new zone REQUIRED mlp privilege list type access name myPrivilege verbose all myPrivilege access My access privilege mlp privilege addzone name myPrivilege zone channel_http mlp privilege list type access name myPrivilege verbose all myPrivilege access ...

Page 479: ...lege descr My test privilege score a12 def4 mlp privilege list verbose all anyaccess access All access privileges granted unsecure_connection channel_ftp channel_telnet channel_http channel_mdap channel_serial origin_lan origin_wan origin_local anyservice service All service privileges granted AP15 access WAN from all channels unsecure_connection channel_ftp channel_telnet channel_http channel_mda...

Page 480: ...ss to sensitive file AP10 access LAN access to sensitive file secured channels except telnet AP11 access All origins_noHTTP AP12 access All origins_from all secured channels no http AP13 access All origins_noHTTP access to sensitive files AP14 access All origins_secured channels access to sensitive files no http AP15 access WAN from all channels AP16 access LAN from HTTP HTTPs myPrivilege access M...

Page 481: ...e service Privilege type Description anyservice service All service privileges granted SP1 service Limited_Read SP2 service detailed_Read SP3 service Write_to_LAN SP4 service Write_FWD_RT_normal_FW_cfgs SP5 service cooperative_cfgs SP6 service Remote Configurations SP7 service Advanced sink source FW SP8 service Write_to_U_Connection SP9 service Write_to_Local SP10 service Simple_network_debugging...

Page 482: ...be removed mlp privilege removezone name string zone string name The name of the privilege in which a zone must be removed REQUIRED zone The name of the zone to be removed REQUIRED mlp privilege list name myPrivilege verbose all myPrivilege access My access privilege channel_http channel_serial mlp privilege removezone name myPrivilege zone channel_serial mlp privilege list name myPrivilege verbos...

Page 483: ...iew pages remote assistance via HTTP HTTPS from LAN LAN_Admin Administrator Only LAN related configurations from any Channel Origin WAN_Admin Administrator Only WAN related configurations from any Channels Origin mlp role create name myRole parent User descr My user access mlp role list Role parent Description root The superuser SuperUser root Any service and any access from LAN WAN LOCAL Technica...

Page 484: ...of the role REQUIRED access The name of the access privilege to be added REQUIRED service The name of the service privilege to be added REQUIRED mlp role list name myRole verbose all myRole User My user access mlp role addpriv name myRole access myPrivilege service SP7 mlp role list name myRole verbose all myRole User My user access myPrivilege SP7 mlp role removepriv Remove a privilege from a rol...

Page 485: ...the role to be configured REQUIRED parent The name of the parent role OPTIONAL descr The role description Note The maximum length is 63 characters OPTIONAL mlp role list name myRole verbose all myRole User My user access myPrivilege SP7 mlp role config name myRole parent Guest descr My user access mlp role list name myRole verbose all myRole Guest My user access myPrivilege SP7 ...

Page 486: ...r Only LAN related configurations from any Channel Origin WAN_Admin Administrator Only WAN related configurations from any Channels Origin myRole Guest My user access mlp role delete name myRole mlp role list Role parent Description root The superuser SuperUser root Any service and any access from LAN WAN LOCAL TechnicalSupport SuperUser Any service and any channels from WAN Administrator Technica...

Page 487: ...perUser Any service and any channels from WAN Administrator TechnicalSupport Any service and any access from LAN Local origin only PowerUser Administrator GUI Service overview page via http https from LAN origin User PowerUser GUI Overview pages remote assistance via HTTP HTTPS from LAN LAN_Admin Administrator Only LAN related configurations from any Channel Origin WAN_Admin Administrator Only WAN...

Page 488: ...e The name of the role REQUIRED access The name of the access privilege to be deleted REQUIRED service The name of the service privilege to be deleted OPTIONAL mlp role list name myRole verbose all myRole Guest My user access myPrivilege SP7 mlp role removepriv name myRole access myPrivilege mlp role list name myRole verbose all myRole Guest My user access mlp role addpriv Add a privilege to a rol...

Page 489: ... nat iflist Display the address translation configuration on all the interfaces 473 nat mapadd Add an address mapping to a Network Address Translation NAT enabled interface 474 nat mapdelete Delete an address mapping from a NAT enabled interface 477 nat maplist Display the address mapping for a NAT enabled interface 478 nat tmpladd Add an address mapping template 479 nat tmpldelete Delete an addre...

Page 490: ...ig Display modify global NAT configuration options SYNTAX where EXAMPLE nat config trace disabled enabled trace Enable or disable traces The default is disabled REQUIRED nat config NAT traces disabled nat config trace enabled nat config NAT traces enabled ...

Page 491: ...NAT Commands E DOC CTC 20050531 0057 v1 0 471 nat flush Flush the current NAT configuration SYNTAX nat flush ...

Page 492: ...on is disabled enabled Address translation is enabled transparent An inside address is translated into the same outside IP address In fact no translation happens and the IP packets passing through the SpeedTouch remain untouched The default is disabled REQUIRED nat iflist Interface NAT loop disabled myPPP_ppp disabled eth0 transparent nat ifconfig intf myPPP_ppp translation enabled nat iflist Inte...

Page 493: ...y the address translation configuration on all the interfaces SYNTAX EXAMPLE RELATED COMMANDS nat iflist nat iflist Interface NAT loop disabled Internet enabled RtPPPoE_ppp enabled LocalNetwork transparent nat ifconfig Modify address translation on an IP interface ...

Page 494: ...l only apply if the destination IP address is part of the outside address es Outbound Represents the address es to be used as source address after translation Allowed values are An IP address A B C D or A D meaning A 0 0 D A range of IP addresses A B C D E only for NAT An IP subnet A B C D M only for NAT REQUIRED for NAT maps and NAPT maps OPTIONAL for port shifting maps inside_addr The inside typ...

Page 495: ...rotocol to be used as filter for inbound outbound traffic The NAT map only applies if the protocol of the IP packet matches the map protocol Select an IP protocol see Supported IP Protocols on page 632 or alternatively type the protocol number The default is 0 meaning any protocol OPTIONAL outside_port The outside port number or range only for maps of type napt For a NAPT map Represents the range ...

Page 496: ...tside Address Inside Address Use 1 NAPT myPPP_ppp 100 100 100 1 unmapped 0 1 NAPT eth0 any 80 127 0 0 1 8080 0 2 NAPT eth0 any 1080 127 0 0 1 8080 0 3 NAPT eth0 any 8080 127 0 0 1 8080 0 maplist intf myPPP_ppp expand enabled Idx Type Interface Outside Address Inside Address Use 1 NAPT myPPP_ppp 100 100 100 1 unmapped 0 Access List 10 0 0 0 24 Foreign Address any Protocol any Flags Static Descripti...

Page 497: ...tside Address Inside Address Use 1 NAPT myPPP_ppp 100 100 100 1 unmapped 0 1 NAPT eth0 any 80 127 0 0 1 8080 0 2 NAPT eth0 any 1080 127 0 0 1 8080 0 3 NAPT eth0 any 8080 127 0 0 1 8080 0 nat mapdelete intf myPPP_ppp index 1 nat maplist Idx Type Interface Outside Address Inside Address Use 1 NAPT eth0 any 80 127 0 0 1 8080 0 2 NAPT eth0 any 1080 127 0 0 1 8080 0 3 NAPT eth0 any 8080 127 0 0 1 8080 ...

Page 498: ... Idx Type Interface Outside Address Inside Address Use 1 NAPT myPPP_ppp 100 100 100 1 unmapped 0 1 NAPT eth0 any 80 127 0 0 1 8080 0 2 NAPT eth0 any 1080 127 0 0 1 8080 0 3 NAPT eth0 any 8080 127 0 0 1 8080 0 maplist intf myPPP_ppp expand enabled Idx Type Interface Outside Address Inside Address Use 1 NAPT myPPP_ppp 100 100 100 1 unmapped 0 Access List 10 0 0 0 24 Foreign Address any Protocol any ...

Page 499: ...eter intf then the setting for this parameter is ignored OPTIONAL timeout A number between 0 and 6553 seconds Represents the lifetime for this template OPTIONAL type The type of NAT map to be used Choose between napt The map is a NAPT map or a port shifting NAT map nat The map is a basic NAT map or a two way NAT map OPTIONAL outside_addr The outside typically public IP address Inbound This map wil...

Page 500: ...o make use of this map Allowed values are An IP address A B C D or A D meaning A 0 0 D A range of IP addresses A B C D E An IP subnet A B C D M all addresses The default is the inside_addr OPTIONAL foreign_addr The range of destination addresses to which the mapping is restricted This parameter is used as filter for inbound outbound traffic Inbound This map only applies if the source IP address is...

Page 501: ...Represents the target TCP UDP ports to which the traffic has to be shifted Allowed values are TCP UDP port range P Q with Q P TCP UDP port number only for port shifting maps Note The size of inside_port must be identical to the size of outside_port REQUIRED for port shifting map nat tmpladd intf myPPP_ppp type napt outside_addr 100 100 100 1 nat tmpllist Idx Type Interface Ifgroup Outside Address ...

Page 502: ...ates REQUIRED nat tmpllist Idx Type Interface Ifgroup Outside Address Inside Address Use 1 NAPT any lan 100 200 100 1 unmapped 0 2 NAPT myPPP_ppp any 100 100 100 1 unmapped 0 nat tmpldelete index 1 nat tmpllist Idx Type Interface Ifgroup Outside Address Inside Address Use 1 NAPT myPPP_ppp any 100 100 100 1 unmapped 0 nat tmpladd Add an address mapping template nat tmpllist Display the address mapp...

Page 503: ...disable expanded listing The default is disabled OPTIONAL nat tmpllist Idx Type Interface Ifgroup Outside Address Inside Address Use 1 NAPT any lan 100 200 100 1 unmapped 0 2 NAPT myPPP_ppp any 100 100 100 1 unmapped 0 nat tmpladd Add an address mapping template nat tmpldelete Delete an address mapping template nat tmplinst Instantiate address mapping templates for a given dynamic address ...

Page 504: ... The outside IP address index key to instantiate for REQUIRED dynamic_addr The dynamic address to substitute the index key with REQUIRED nat tmplinst intf myPPP_ppp addr_index 100 100 100 1 dynamic_addr 200 200 200 1 nat tmpllist Idx Type Interface Ifgroup Outside Address Inside Address Use 1 NAPT myPPP_ppp any 100 100 100 1 unmapped 1 nat tmpladd Add an address mapping template nat tmpldelete Del...

Page 505: ...he PPP interfaces 495 ppp ifscan Scan a PPPoE interface for available Access Concentrator and Service names 496 ppp rtadd Add a route to the routing table when the PPP link comes up 497 ppp rtdelete Delete the route for a PPP link 499 ppp relay flush Remove all Ethernet interfaces from the PPP relay agent list and terminate all sessions 500 ppp relay ifadd Add an Ethernet interface to the PPP rela...

Page 506: ...PPP Commands E DOC CTC 20050531 0057 v1 0 486 ppp flush Flush all PPP interfaces SYNTAX The flush command does not impact previously saved configurations ppp flush ...

Page 507: ...m 10 term reason IPCP state initial retransm 0 term reason acname service ppp ifadd intf Rt_PPPoA ppp iflist Internet dest RELAY 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr savepwd demanddial dns metric 0 mru 1492 Tx inactivity 1200s left 0s auth auto user password admin state down oper state down link state not connected LCP state initial retransm 10 term reason IPC...

Page 508: ...h auto user johndoe ISP password admin state down oper state down link state not connected LCP state initial retransm 10 term reason IPCP state initial retransm 0 term reason ppp ifattach intf Rt_PPPoA ppp iflist Internet dest RELAY 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr savepwd demanddial dns metric 0 mru 1492 Tx inactivity 1200s left 0s auth auto user password...

Page 509: ...enabled silent disabled enabled echo disabled enabled mru number 293 8192 laddr ip address raddr ip address netmask ip mask dotted or cidr format cidr dotted none pool LAN_private none savepwd disabled enabled demanddial disabled enabled doddelay number 0 3600 primdns ip address secdns ip address dnsmetric number 0 100 idletime number 0 1000000 idletrigger RxTx Rx Tx unnumbered disabled enabled in...

Page 510: ...tween enabled the PPP connection is terminated on the Access Concentrator here the SpeedTouch itself disabled the SpeedTouch is PPP client The default is disabled OPTIONAL auth Select the authentication protocol Choose between pap Password Authentication Protocol PAP authentication will be forced chap Challenge Handshake Authentication Protocol CHAP authentication will be forced auto CHAP authenti...

Page 511: ...sk if a DHCP server pool is associated in other words if the pool parameter is specified OPTIONAL format The negotiated subnetmask specified in the netmask parameter is specified in the dotted format dotted or in Classless Inter Domain Routing CIDR format cidr The default is cidr OPTIONAL pool The name of the free DHCP server pool to which the acquired IP subnet must be assigned OPTIONAL savepwd S...

Page 512: ...e down oper state down link state not connected LCP state initial retransm 10 term reason IPCP state initial retransm 0 term reason acname service Rt_PPPoA dest 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr savepwd dns metric 0 mru 1500 auth auto user password admin state down oper state down link state not connected LCP state initial retransm 10 term reason IPCP state...

Page 513: ...tPPPoA_atm local disconnect 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr savepwd dns metric 0 mru 1500 auth auto user johndoe ISP password admin state down oper state down link state not connected LCP state initial retransm 9 term reason User kill IPCP state initial retransm 0 term reason ppp ifdelete intf Rt_PPPoA ppp iflist Internet dest RELAY 00 00 00 Retry 10 mode...

Page 514: ...hndoe ISP password admin state up oper state down link state connected LCP state reqsent retransm 5 term reason IPCP state initial retransm 0 term reason ppp ppp ifdetach intf Rt_PPPoA ppp iflist Internet dest RELAY 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr savepwd demanddial dns metric 0 mru 1492 Tx inactivity 1200s left 0s auth auto user password admin state down...

Page 515: ...200s left 0s auth auto user password admin state down oper state down link state not connected LCP state initial retransm 10 term reason IPCP state initial retransm 0 term reason acname service Rt_PPPoA dest RtPPPoA_atm 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr route savepwd dns metric 0 mru 1500 route dst 0 0 0 0 0 src 10 0 0 0 1 metric 1 auth auto user johndoe IS...

Page 516: ... number between 0 and 36000 seconds Represents the time to scan for services OPTIONAL ppp iflist myRtPPPoE dest RtPPPoE_eth 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr route savepwd dns metric 0 mru 1492 route dst 0 0 0 0 0 src 10 0 0 0 1 metric 1 auth auto user johndoe ISP password admin state down oper state down link state not connected LCP state initial retransm ...

Page 517: ...nection acts as default route dstmsk 0 Only the remote sub net is reachable dstmsk 1 The actual destination mask will be the default netmask applicable for destination IP address Only the single remote host is reachable dstmsk 32 Any valid contiguous netmask in case of Variable Length Subnet Masking VLSM OPTIONAL label The name of the label OPTIONAL src The IP source address specification for the ...

Page 518: ...ransm 10 term reason IPCP state initial retransm 0 term reason ppp rtadd intf Rt_PPPoA dst 0 0 0 0 0 src 10 0 0 0 1 ppp iflist Internet dest RELAY 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mru addr savepwd demanddial dns metric 0 mru 1492 Tx inactivity 1200s left 0s auth auto user password admin state down oper state down link state not connected LCP state initial retransm ...

Page 519: ...dr route savepwd dns metric 0 mru 1500 route dst 0 0 0 0 0 src 10 0 0 0 1 metric 1 auth auto user johndoe ISP password admin state down oper state down link state not connected LCP state initial retransm 9 term reason User kill IPCP state initial retransm 0 term reason ppp ppp rtdelete intf Rt_PPPoA ppp iflist Internet dest RELAY 00 00 00 Retry 10 mode IP routing flags echo magic accomp restart mr...

Page 520: ... CTC 20050531 0057 v1 0 500 ppp relay flush Remove all Ethernet interfaces from the PPP relay agent list and terminate all sessions SYNTAX The flush command does not impact previously saved configurations ppp relay flush ...

Page 521: ...PP relay agent list REQUIRED ppp relay iflist Interface HWaddr Status 1 ethoa_0_35 00 0e 50 0f fc 2d connected ppp relay ifadd intf ethoa_8_35 ppp relay iflist Interface HWaddr Status 1 ethoa_0_35 00 0e 50 0f fc 2d connected 2 ethoa_8_35 00 0e 50 0f fc 2d connected ppp relay ifdelete Delete an Ethernet interface from the PPP relay agent list ppp relay iflist Display all Ethernet interfaces added t...

Page 522: ...leted from the PPP relay agent list REQUIRED ppp relay iflist Interface HWaddr Status 1 ethoa_0_35 00 0e 50 0f fc 2d connected 2 ethoa_8_35 00 0e 50 0f fc 2d connected ppp relay ifdelete intf ethoa_8_35 ppp relay iflist Interface HWaddr Status 1 ethoa_0_35 00 0e 50 0f fc 2d connected ppp relay ifadd Add an Ethernet interface to the PPP relay list ppp relay iflist Display all Ethernet interfaces ad...

Page 523: ...ANDS ppp relay iflist intf The Ethernet interface to be added to the PPP relay agent list REQUIRED ppp relay iflist Interface HWaddr Status 1 ethoa_0_35 00 0e 50 0f fc 2d connected 2 ethoa_8_35 00 0e 50 0f fc 2d connected ppp relay ifadd Add an Ethernet interface to the PPP relay list ppp relay ifdelete Delete an Ethernet interface from the PPP relay agent list ...

Page 524: ... DOC CTC 20050531 0057 v1 0 504 ppp relay sesslist Add an Ethernet interface to the PPP relay list SYNTAX where ppp relay ifadd intf string intf The Ethernet interface to be added to the PPP relay agent list REQUIRED ...

Page 525: ... chapter covers the following commands pptp ifadd Add a Point to Point Tunneling Protocol PPTP profile 506 pptp flush Flush the complete PPTP configuration 507 pptp list Show the current PPTP configuration 508 pptp profadd Define a new PPTP profile 509 pptp profdelete Delete a PPTP profile 510 pptp proflist Display all the current PPTP profiles 511 ...

Page 526: ...P profile Choose between VC_MUX Network Layer Protocol IDentifiers NLPID The default is vcmux OPTIONAL ac The High level Data Link Control HDLC framing option applicable to PPTP interfaces using this PPTP profile Choose between always Before relaying the encapsulated PPP frames over the PPPoA link make sure that the address and control field 0xFF03 is always in front of the frames never Before rel...

Page 527: ...PPTP Commands E DOC CTC 20050531 0057 v1 0 507 pptp flush Flush the complete PPTP configuration SYNTAX The flush command does not impact previously saved configurations pptp flush ...

Page 528: ...ds E DOC CTC 20050531 0057 v1 0 508 pptp list Show the current PPTP configuration SYNTAX EXAMPLE pptp list pptp list Dialstr Destination QoS Encaps AC State User DIALUP_PPP3 default vcmux never CONNECTED 10 0 0 2 ...

Page 529: ...tween always Before relaying the encapsulated PPP frames over the PPPoA link make sure that the address and control field 0xFF03 is always in front of the frames never Before relaying the encapsulated PPP frames over the PPPoA link make sure the address and control field will never be found in front of the frames keep Do not change the frames arriving via the PPTP tunnel The default is never Note ...

Page 530: ...ring name The name of the PPTP profile to be deleted REQUIRED pptp proflist Profile QoS Encaps AC Relay_PPP1 default nlpid always PPTPLink default vcmux never pptp profdelete name PPTPLink pptp proflist Profile QoS Encaps AC Relay_PPP1 default nlpid always pptp profadd Define a new PPTP profile pptp proflist Display all the current PPTP profiles ...

Page 531: ...st Display all the current PPTP profiles SYNTAX EXAMPLE RELATED COMMANDS pptp proflist pptp proflist Profile QoS Encaps AC Relay_PPP1 default nlpid always PPTPLink default vcmux never pptp profadd Define a new PPTP profile pptp profdelete Delete a PPTP profile ...

Page 532: ...PPTP Commands E DOC CTC 20050531 0057 v1 0 512 ...

Page 533: ... services 520 service host stats Show the host service statistics 521 service host triggerlist List all triggers 522 service host rule add Create define a host service portmap 523 service host rule delete Delete a host service portmap 524 service system ifadd Add an interface group to the access list 525 service system ifdelete Delete an interface group from the access list 526 service system ipad...

Page 534: ... name The name of an existing host service REQUIRED host The IP address of the LAN device OPTIONAL log Enable or disable logging OPTIONAL service host assign name MSN Messenger host 192 168 1 64 service host list Service Name Host User Defined Mode Age of Empires unassigned server AIM Talk unassigned client Aliens vs Predator unassigned server MSN Messenger 192 168 1 64 server service host disable...

Page 535: ...515 service host config Get set global host service configuration options SYNTAX where EXAMPLE service host config trace disabled enabled trace Enable or disable traces The default is disabled REQUIRED service host config Service traces disabled l ...

Page 536: ... purposes custom The service is a user created service in other words a customized service The default is custom OPTIONAL service host list Service Name Host User Defined Mode Age of Empires unassigned server AIM Talk unassigned client MSN Messenger unassigned server service host add name myService service host list Service Name Host User Defined Mode Age of Empires unassigned server AIM Talk unas...

Page 537: ...ce host list Service Name Host User Defined Mode Age of Empires unassigned server AIM Talk unassigned client MSN Messenger unassigned server myService unassigned yes service host delete name myService service host list Service Name Host User Defined Mode Age of Empires unassigned server AIM Talk unassigned client MSN Messenger unassigned server service host add Add a host service service host list...

Page 538: ...bled OPTIONAL service host list Service Name Host User Defined Mode Age of Empires unassigned server AIM Talk unassigned client Aliens vs Predator unassigned server MSN Messenger 192 168 1 64 server service host disable name MSN Messenger service host list Service Name Host User Defined Mode Age of Empires unassigned server AIM Talk unassigned client Aliens vs Predator unassigned server MSN Messen...

Page 539: ...Service Commands E DOC CTC 20050531 0057 v1 0 519 service host flush Flush all host services SYNTAX service host flush ...

Page 540: ...d White unassigned server Buddy Phone unassigned client Bungie net unassigned server Citrix Metaframe unassigned client CU SeeMe unassigned client Dark Reign 2 unassigned server Westwood Online unassigned client Yahoo Messenger Chat unassigned server service host list name MSN Messenger Service Name MSN Messenger Host unassigned User Defined no Mode server Port 1863 for protocol tcp will be forwar...

Page 541: ...OC CTC 20050531 0057 v1 0 521 service host stats Show the host service statistics SYNTAX EXAMPLE service host stats service host stats Services 113 of 150 in use Service maps 225 of 300 in use Trigger ports 0 of 25 in use ...

Page 542: ...Service Commands E DOC CTC 20050531 0057 v1 0 522 service host triggerlist List all triggers SYNTAX EXAMPLE service host triggerlist service triggerlist Ip Triggerport Portrange Timeout ...

Page 543: ...port The inbound base port Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number Note If not specified baseport is equal to the first port of portrange OPTIONAL portrange The outbound port range REQUIRED triggerport The outbound trigger port Select one of the supported TCP UDP port names see Supported TCP UDP Port Names...

Page 544: ...rt The inbound base port Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number Note If not specified baseport is equal to the first port of portrange OPTIONAL portrange The outbound port range REQUIRED triggerport The outbound trigger port Select one of the supported TCP UDP port names see Supported TCP UDP Port Names o...

Page 545: ...ame Protocol SrcPort DstPort Group State 1 SIPPBX udp 5060 disabled Description SIP PBX registrar and proxy Properties server Managed parameters state port acl map log Source Ip Selection auto Interface Access List any Ip Access List any NAT Port List 5060 service system ifadd name SIPPBX group lan service system list name SIPPBX expand enabled Idx Name Protocol SrcPort DstPort Group State 1 SIPPB...

Page 546: ...ed Idx Name Protocol SrcPort DstPort Group State 1 SIPPBX udp 5060 disabled Description SIP PBX registrar and proxy Properties server Managed parameters state port acl map log Source Ip Selection auto Interface Access List lan Ip Access List any NAT Port List 5060 service system ifdelete name SIPPBX group lan service system list name SIPPBX expand enabled Idx Name Protocol SrcPort DstPort Group St...

Page 547: ...rt Group State 1 SIPPBX udp 5060 disabled Description SIP PBX registrar and proxy Properties server Managed parameters state port acl map log Source Ip Selection auto Interface Access List any Ip Access List any NAT Port List 5060 service system ipadd name SIPPBX ip 192 168 1 64 service system list name SIPPBX expand enabled Idx Name Protocol SrcPort DstPort Group State 1 SIPPBX udp 5060 disabled ...

Page 548: ...rt DstPort Group State 1 SIPPBX udp 5060 disabled Description SIP PBX registrar and proxy Properties server Managed parameters state port acl map log Source Ip Selection auto Interface Access List any Ip Access List 192 168 1 64 NAT Port List 5060 service system ipdelete name SIPPBX ip 192 168 1 64 service system list name SIPPBX expand enabled Idx Name Protocol SrcPort DstPort Group State 1 SIPPB...

Page 549: ... enabled 4 SLA_UDP_PING udp 7 enabled 5 SLA_ICMP_TRRT icmp 8 enabled 6 SLA_UDP_TRRT udp 33434 enabled 7 SYSLOG udp 514 enabled 8 HTTP tcp 80 enabled 9 HTTPs tcp 443 enabled 10 HTTPI tcp 8080 enabled 11 FTP tcp 21 enabled 12 TELNET tcp 23 enabled 13 RIP udp 520 520 enabled 14 RIP Query udp 520 enabled 15 DNS S udp 53 enabled 16 Dynamic DNS enabled 17 DHCP S udp 49152 disabled 18 SNMP_AGENT udp 161 ...

Page 550: ...DNS S SNMP_AGENT SSDP MDAP intf string port supported port or number name The name of the system service for this map REQUIRED intf The interface for this map REQUIRED port The port for this map Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number REQUIRED service system mapdelete Delete a port map for a system service...

Page 551: ...TELNET DNS S SNMP_AGENT SSDP MDAP intf string port supported port or number name The name of the system service for this map REQUIRED intf The interface for this map REQUIRED port The port for this map Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number REQUIRED service system mapadd Add a port map for a system servic...

Page 552: ...ort supported port or number srcintf string log disabled enabled forward disabled enabled name The name of the system service for this map REQUIRED state Disable or enable this system service OPTIONAL port The port for this map Select one of the supported TCP UDP port names see Supported TCP UDP Port Names on page 633 or alternatively specify the port number OPTIONAL srcintf The primary IP interfa...

Page 553: ... mechanism but is only used in the autoPVC ILMI mechanism Contents This chapter covers the following commands It is recommended not to change the default scripts script add Add a line to a script 534 script delete Delete a complete script or a line from a script 535 script flush Flush all scripts 536 script list Display a script or all scripts 537 script run Run a script 538 ...

Page 554: ...ANDS script add name string index number command quoted string name Name of the script in which a line must be added REQUIRED index Line number Note Use 0 to add a line OPTIONAL command Command REQUIRED script delete Delete a complete script or a line from a script script list Display a script or all scripts ...

Page 555: ...ED COMMANDS script delete name string index number name Name of the script to be deleted REQUIRED index Line number to be deleted Tip Use the command script list to view the line numbers Note If not specified the complete script will be deleted OPTIONAL script add Add a line to a script script list Display a script or all scripts ...

Page 556: ...Script Commands E DOC CTC 20050531 0057 v1 0 536 script flush Flush all scripts SYNTAX The flush command does not impact previously saved configurations script flush ...

Page 557: ...type any dynamic yes 2 bridge ifadd intf _auto_ 1_ 2 dest _auto_ 1_ 2 3 bridge ifconfig intf _auto_ 1_ 2 qos _auto_ 1_ 2 4 bridge ifattach intf _auto_ 1_ 2 Script autopvc_delete_bridge 0 bridge ifdetach intf _auto_ 1_ 2 1 bridge ifdelete intf _auto_ 1_ 2 2 phonebook delete name _auto_ 1_ 2 3 qosbook delete name _auto_ 1_ 2 Script autopvc_add_pppoerelay 0 qosbook add name _auto_ 1_ 2 class 3 tx_pea...

Page 558: ...ript run Run a script SYNTAX where script run name string pars string name Name of the script to be run Tip Use the command script list to obtain the names of the different scripts REQUIRED pars Parameters separated with comma For example a b c REQUIRED ...

Page 559: ...k Management Protocol SNMP parameters 540 snmp get Get from the supplied SNMP Object IDentifier OID 541 snmp getnext GetNext from the supplied SNMP OID 542 snmp walk Walk from the supplied SNMP OID 543 snmp community add Configure an SNMP community string 544 snmp community delete Delete an SNMP community string 545 snmp community list List all SNMP community strings 546 snmp community modify Modi...

Page 560: ...k Management Protocol SNMP parameters SYNTAX where snmp config sysContact quoted string sysName quoted string sysLocation quoted string sysContact The SNMP system contact The default is Service Provider OPTIONAL sysLocation The SNMP system location The default is Customer Premises OPTIONAL ...

Page 561: ...S snmp get ObjectId string ObjectID The Object Identifier Object ID to get from must include the instance which is 0 for scalar objects for example 1 3 6 1 2 1 1 1 0 sysDescription Note If not specified the sysDescription OID 1 3 6 1 2 1 1 1 0 is assumed Its value is SpeedTouch OPTIONAL snmp getnext GetNext from the supplied SNMP OID snmp walk Walk from the supplied SNMP OID ...

Page 562: ...NDS snmp getnext ObjectId string ObjectID The Object Identifier Object ID to getnext from for example 1 3 6 1 2 1 1 system returns sysDescription OPTIONAL snmp getnext ObjectId 1 3 6 1 2 1 1 4 0 VB_octetStr 1 3 6 1 2 1 1 5 0 Sascha snmp get Get from the supplied SNMP Object IDentifier OID snmp walk Walk from the supplied SNMP OID ...

Page 563: ...system group OPTIONAL snmp walk ObjectId 1 3 6 1 2 1 1 VB_octetStr 1 3 6 1 2 1 1 1 0 SpeedTouch VB_objId 1 3 6 1 2 1 1 2 0 1 3 6 1 4 1 637 61 2 VB_timeTicks 1 3 6 1 2 1 1 3 0 2927636 VB_octetStr 1 3 6 1 2 1 1 4 0 Service Provider VB_octetStr 1 3 6 1 2 1 1 5 0 Sascha VB_octetStr 1 3 6 1 2 1 1 6 0 Customer Premises VB_integer 1 3 6 1 2 1 1 7 0 72 snmp get Get from the supplied SNMP Object IDentifier...

Page 564: ...cess rights REQUIRED communityname Configure the SNMP community name REQUIRED snmp community add securityname RWCommunity communityname Please retype communityname for verification communityname snmp community add securityname RWCommunity communityname _DEV_2C6A78E1C41E7B01 snmp community add securityname ROCommunity communityname Please retype communityname for verification communityname snmp com...

Page 565: ...r the community name to be deleted Choose between RWCommunity read write access rights ROCommunity read only access rights REQUIRED snmp community list Read write SNMP community name Read only SNMP community name snmp community delete securityname ROCommunity snmp community list Read write SNMP community name Read only SNMP community name not specified snmp community add Configure an SNMP communit...

Page 566: ...st all SNMP community strings SYNTAX EXAMPLE RELATED COMMANDS snmp community list snmp community list Read write SNMP community name Read only SNMP community name snmp community add Configure an SNMP community string snmp community delete Delete an SNMP community string ...

Page 567: ...snmp community modify securityname RWCommunity ROCommunity communityname password securityname Configure access rights restrictions control for the community name Choose between RWCommunity read write access rights ROCommunity read only access rights REQUIRED communityname Configure the SNMP community name REQUIRED ...

Page 568: ...SNMP Commands E DOC CTC 20050531 0057 v1 0 548 ...

Page 569: ...oup Contents This chapter covers the following commands sntp add Add a Network Time Protocol NTP server to the NTP server list 550 sntp config Modify display the SNTP client configuration 551 sntp delete Delete an NTP server from the NTP server list 552 sntp flush Flush the NTP server list and the SNTP client configuration 553 sntp list List the NTP servers 554 ...

Page 570: ...OPTIONAL name The DNS name of NTP server to be added to list If both the IP address and the DNS name are provided the IP address is ignored Note This parameter is optional in this respect that either an IP address or the name of an NTP server must be specified OPTIONAL version The SNTP version of the NTP server Select either 1 2 3 or 4 following NTP server supported versions The default is 4 OPTIO...

Page 571: ...nable or disable the SpeedTouch SNTP client The default is enabled OPTIONAL poll A number between 1 and 60 minutes Represents the time interval for the SNTP client to poll the configured NTP server and if needed re synchronize its internal clock The default is 60 OPTIONAL sntp config SNTP configuration state enabled poll interval 60 minute s poll interval before first sync 60 minute s ...

Page 572: ...me of an NTP server must be specified OPTIONAL name The DNS name of the NTP server to be removed to the list Note This parameter is optional in this respect that either an IP address or the name of an NTP server must be specified OPTIONAL sntp list IP Address Version Status 100 101 110 111 4 contacting 100 101 110 113 4 Synchronized sntp del addr 100 101 110 111 sntp list IP Address Version Status...

Page 573: ...SNTP Commands E DOC CTC 20050531 0057 v1 0 553 sntp flush Flush the NTP server list and the SNTP client configuration SYNTAX sntp flush ...

Page 574: ...ent is unable to contact this NTP server It may be down or no end to end connectivity exists no connection no DSL Synchronized The SpeedTouch SNTP client was able to contact this NTP server If required the internal clock has been synchronized with this NTP server RELATED COMMANDS sntp list sntp list IP Address Version Status Name 100 101 110 111 4 contacting 100 101 110 112 4 Unable to contact 100...

Page 575: ...n up is required 556 software deletepassive Delete the passive software version 557 software duplicate Duplicate the active software version as the passive software version 558 software setpassive Mark a file as the passive software version 559 software switch Switch the active and passive versions and reboot the SpeedTouch 560 software upgrade Reboot the modem to initiate the SW upgrade 561 softw...

Page 576: ...e cleanup Check whether a disk clean up is required If necessary garbage collection is performed SYNTAX RELATED COMMANDS software cleanup software deletepassive Delete the passive software version software setpassive Mark a file as the passive software version ...

Page 577: ...e passive software version SYNTAX RELATED COMMANDS software deletepassive software cleanup Check whether a disk clean up is required software duplicate Duplicate the active software version as the passive software version software setpassive Mark a file as the passive software version ...

Page 578: ...he active software version as the passive software version SYNTAX RELATED COMMANDS software duplicate software cleanup Check whether a disk clean up is required software deletepassive Delete the passive software version software setpassive Mark a file as the passive software version ...

Page 579: ... uploaded software valid for the SpeedTouch can be marked as passive software SYNTAX where RELATED COMMANDS software setpassive file string file The filename without directory path of the software package REQUIRED software cleanup Check whether a disk clean up is required software deletepassive Delete the passive software version ...

Page 580: ...dTouch Because rebooting implies a flush of all non saved configurations it is highly recommended to save the current configuration for example via saveall or config save before executing a software switch SYNTAX RELATED COMMANDS software switch software version Display the software version system reboot Reboot the SpeedTouch ...

Page 581: ...ware Commands E DOC CTC 20050531 0057 v1 0 561 software upgrade Reboot the modem to initiate the SW upgrade New software available on a remote LAN host will be uploaded to the modem SYNTAX software upgrade ...

Page 582: ...Software Commands E DOC CTC 20050531 0057 v1 0 562 software version Display the software version SYNTAX software version ...

Page 583: ...system locale Set get the regional settings 567 system reboot Reboot the SpeedTouch 569 system reset Reset the SpeedTouch to its factory or ISP defaults and reboot the device 570 system debug autosave Autosave debugging commands 571 system debug stats Show the SpeedTouch CPU and memory statistics 572 system ra config Configure Remote management access parameters 573 system rtc synchronize Do a SNT...

Page 584: ... UPnP discovery The default is enabled OPTIONAL mdap Enable or disable proprietary discovery protocol The default is enabled OPTIONAL drst Enable or disable DrSpeedTouch access The default is disabled OPTIONAL led Set the system LED colour Choose between green solid green red solid red orange solid orange flash toggle between green and orange off LED is off The default is green OPTIONAL resetbutto...

Page 585: ...Commands E DOC CTC 20050531 0057 v1 0 565 EXAMPLE system config upnp discovery enabled mdap discovery enabled drst support disabled reset button enabled digest authentication enabled defaultconnection Internet ...

Page 586: ...t system configuration The system password and the system config settings dcache excluded are flushed SYNTAX EXAMPLE The flush command does not impact previously saved configurations system flush system flush Security notification Password changed use saveall to make it permanent ...

Page 587: ...e_format iso date time time date duration_format dhmmss hmmss dec_symbol Set the decimal symbol Choose between The default is OPTIONAL group_symbol Set the group symbol Choose between The default is OPTIONAL date_separator Set the date separator Choose between The default is OPTIONAL date_format Set the date format Choose between iso ddmmyyyy ddmmyy mmddyyyy mmddyy The default is ddmmyyyy Note dd ...

Page 588: ...t Set the date time format Choose between iso date time time date The default is date time OPTIONAL duration_format Set the duration format Choose between dhmmss hmmss The default is dhmmss Note d days h hours mm minutes ss seconds OPTIONAL system locale Decimal symbol Digit grouping symbol Date separator Date format ddmmyyyy Time format iso Date time format date time Duration format dhmmss ...

Page 589: ...nds E DOC CTC 20050531 0057 v1 0 569 system reboot Reboot the SpeedTouch SYNTAX EXAMPLE Non saved configuration settings will be lost after reboot system reboot system reboot lost session connectivity due to reboot ...

Page 590: ...WARNING The modem will be reset to factory defaults clearing all user and ISP settings Specifying factory yes deletes user and ISP specific settings Connectivity with the ISP network might be lost factory no deletes user specific settings only factory yes no no proceed no yes no system reset factory yes no no proceed no yes no system reset WARNING The modem will be reset to factory defaults cleari...

Page 591: ...stem Commands E DOC CTC 20050531 0057 v1 0 571 system debug autosave Autosave debugging commands SYNTAX where system debug autosave trace disabled enabled trace Enable or disable autosave traces OPTIONAL ...

Page 592: ...ION CHIP memory Memory used by the CPU first MB from the RAM not cached since it has to be realtime Application memory Memory used by the applications min The least amount of free memory detected during the uptime of the SpeedTouch system debug stats reset disabled enabled reset Reset the CPU statistics The default is disabled OPTIONAL ...

Page 593: ...cure disabled enabled port number timeout number secure Enable or disable https The default is enabled OPTIONAL port Set the destination port for remote access The default is 51003 OPTIONAL timeout Set the connection timeout in minutes OPTIONAL system ra config Remote management access configuration Remote access port 51003 Secure remote access enabled ...

Page 594: ...System Commands E DOC CTC 20050531 0057 v1 0 574 system rtc synchronize Do a SNTP update and synchronize the realtime clock SYNTAX system rtc synchronize ...

Page 595: ...ng disabled enabled date The system date formatted as dd mm yyyy Note If not specified the current date is preserved OPTIONAL time The system time formatted as hh mm ss Note If not specified the current time is preserved OPTIONAL timezone The system timezone formatted as or hh mm Valid timezones are possible from 12 00 to 14 00 with a resolution of 15 minutes Note If not specified the current time...

Page 596: ...System Commands E DOC CTC 20050531 0057 v1 0 576 ...

Page 597: ... command group Contents This chapter covers the following commands systemlog flush Flush all messages in the internal Syslog message buffer 578 systemlog show Show messages in the internal Syslog message buffer 579 systemlog send Send messages from the internal Syslog message buffer to a specified local or remote syslog server host 580 ...

Page 598: ...Systemlog Commands E DOC CTC 20050531 0057 v1 0 578 systemlog flush Flush all messages in the internal Syslog message buffer SYNTAX systemlog flush ...

Page 599: ...cified only the recent messages will be shown OPTIONAL syslog msgbuf show fac kern sev emerg hist enabled 0 SysUpTime 14 45 43 KERNEL Controlled restart after internal error or explicit system reboot 0 SysUpTime 02 58 18 KERNEL Controlled restart after internal error or explicit system reboot 0 SysUpTime 04 days 04 52 37 KERNEL Controlled restart after internal error or explicit system reboot 0 Sy...

Page 600: ...te If not specified the messages of all the facilities will be shown OPTIONAL sev Specify the lowest priority severity of the syslog messages to be shown All the syslog messages with severity as specified or higher will be shown Use one of the supported severity names see Supported Severities on page 638 Note If not specified the messages of all the severities will be shown OPTIONAL hist Show mess...

Page 601: ...s Introduction This chapter describes the commands of the upnp command group Contents This chapter covers the following commands upnp config Configure the UPnP parameter s 582 upnp flush Flush the UPnP configuration 583 upnp list List all registered devices 584 ...

Page 602: ...L writemode Choose the set of rules to limit remote access from UPnP Choose between full the host will accept all the UPnP SET and GET actions natonly GET and NAT related SET actions will be accepted all other actions will be ignored readonly the UPnP control point will only be able to retrieve information all the SET actions are ignored The default is natonly OPTIONAL safenat Enable or disable ch...

Page 603: ...UPnP Commands E DOC CTC 20050531 0057 v1 0 583 upnp flush Flush the UPnP configuration The UPnP configuration will be reset to the default configuration SYNTAX upnp flush ...

Page 604: ...rbose number 0 2 verbose Verbose level The default is 1 OPTIONAL upnp list device IGD xml Advertised on LocalNetwork 10 0 0 138 devices services Root Device urn schemas upnp org device InternetGatewayDevice 1 Service 1 urn upnp org serviceId layer3f Service 2 urn upnp org serviceId lanhcm Service 3 urn upnp org serviceId wancic Service 4 urn upnp org serviceId wandsllc RELAY Service 5 urn upnp org...

Page 605: ...escribes the commands of the user command group Contents This chapter covers the following commands user add Add a user 586 user config Modify a user 588 user delete Delete a user 589 user flush Flush the users 590 user list Display the users 591 user rights Display the session rights 593 ...

Page 606: ...aracters REQUIRED role The role name Tip Use the command mlp role list to obtain the role name see mlp role list on page 467 for more information REQUIRED hash2 The MD5 hash Note The maximum length is 32 characters OPTIONAL descr A user description Note The maximum length is 63 characters OPTIONAL defuser Set this user as the default user enabled or not disabled Note When the Web interface is acce...

Page 607: ...dministrator user list User Flags Role Administrator U Administrator tech R TechnicalSupport Administrator user add name JohnDoe password Please retype password for verification password role Administrator hash2 descr defuser defremadmin user add name JohnDoe password _CYP_x9O lhxuRyMME role Administrator Administrator user list User Flags Role Administrator U Administrator tech R TechnicalSupport...

Page 608: ...ole list on page 467 for more information OPTIONAL descr A user description Note The maximum length is 63 characters OPTIONAL defuser Set this user as the default user enabled or not disabled Note When the Web interface is accessed the account of this user will be used by default The user will not need to authenticate himself with user name or password The default is disabled OPTIONAL defremadmin ...

Page 609: ...rivileges user delete name string name The name of the user to be deleted REQUIRED Administrator user list User Flags Role Administrator U Administrator tech R TechnicalSupport JohnDoe Administrator Administrator user delete name JohnDoe Administrator user list User Flags Role Administrator U Administrator tech R TechnicalSupport Administrator user add Add a user user list Display the users ...

Page 610: ...The first user that logs on after initiating a new Telnet session will have the same administrative rights as a user with the role root user flush Administrator user list User Flags Role Administrator U Administrator tech R TechnicalSupport JohnDoe Administrator Administrator user flush Administrator user list Administrator Username ______ SpeedTouch 620 ___ _____ Version 5 3 0 10 _____ __ _ _____...

Page 611: ...ed all the users will be listed OPTIONAL channel The selected channel Choose between ftp telnet http mdap serial Note If not specified all the channels will be listed OPTIONAL origin The selected origin Choose between lan wan local Note If not specified all the origins will be listed OPTIONAL secure The selected security level Choose between disabled enabled Note If not specified all the security ...

Page 612: ...at w_frwl_norm w_frwl_adv w_frwe_mgnt w_ipsec w_certificates w_remote_mgnt w_local w_qos snd_lan snd_wan snd_local and_lan and_wan and_frwl and_local user_admin mlp_admin secure_ipsec_term secure_br cli cgi ftp mdap zone_45 zone_46 zone_47 zone_48 zone_49 zone_50 zone_51 zone_52 zone_53 zone_54 zone_55 zone_56 zone_57 zone_58 zone_59 zone_60 zone_61 zone_62 swk_activation sensitve_file zone_71 zon...

Page 613: ...ificates r_remote_mgnt r_local r_qos w_lan w_wan w_fs_passive w_rtg w_fwdg w_nat w_frwl_norm w_frwl_adv w_frwe_mgnt w_ipsec w_certificates w_remote_mgnt w_local w_qos snd_lan snd_wan snd_local and_lan and_wan and_frwl and_local user_admin mlp_admin secure_ipsec_term secure_br cli cgi ftp mdap zone_45 zone_46 zone_47 zone_48 zone_49 zone_50 zone_51 zone_52 zone_53 zone_54 zone_55 zone_56 zone_57 zo...

Page 614: ...User Commands E DOC CTC 20050531 0057 v1 0 594 ...

Page 615: ...3 wireless macacl list Show a list of all configured ACL entries 604 wireless macacl modify Modify an existing ACL entry 605 wireless macacl register Start a registration process only for register mode 606 wireless secmode config Configure show the security mode 607 wireless secmode wep Configure the WEP settings 608 wireless secmode wpa psk Configure the WPA PSK settings 609 wireless stations lis...

Page 616: ...lly allowed to be used may be restricted The default is auto OPTIONAL ssid The network name also known as Service Set ID SSID OPTIONAL any Make the SSID public or not Choose between enabled the SpeedTouch broadcasts its SSID and accepts every client disabled the SpeedTouch does not broadcast its SSID and accepts only those clients who have the correct SSID The default is enabled OPTIONAL interop S...

Page 617: ...y enabled Channel 1 auto RTS Threshold 2347 Short Retry Limit 7 Long Retry Limit 4 Beacon Period 100 Rate 54 Mbps Interoperability 802 11b g Protection auto Protection Mode rtscts Protection Trigger local overlap Shortslot auto Framebursting disabled Locale Europe Rate Set 1 b 2 b 5 5 b 6 9 11 b 12 18 24 36 48 54 Dtim interval 3 every 300 msec ...

Page 618: ...reshold 2347 Short Retry Limit 7 Long Retry Limit 4 Beacon Period 100 Rate 54 Mbps Interoperability 802 11b g Protection auto Protection Mode rtscts Protection Trigger local overlap Shortslot auto Framebursting disabled Locale Europe Rate Set 1 b 2 b 5 5 b 6 9 11 b 12 18 24 36 48 54 Dtim interval 3 every 300 msec wireless reset proceed enabled wireless ifconfig State enabled Network name SSID Spee...

Page 619: ...s E DOC CTC 20050531 0057 v1 0 599 wireless debug stats Show the transfer statistics SYNTAX EXAMPLE wireless debug stats wireless debug stats Good Rx Packets 1040 Bad Rx Packets 0 Good Tx Packets 1234 Bad Tx Packets 3 ...

Page 620: ...to be performed on ACL entry Choose between allow the wireless client is allowed entry deny the wireless client is not allowed entry REQUIRED name The name of the wireless client OPTIONAL wireless macacl list Station Name hardware address Permission ST120g 00 02 2d 5f b6 9e accept wireless macacl add hwaddr 01 67 d0 23 56 cd permission allow name Test2 wireless macacl list Station Name hardware ad...

Page 621: ...CL mode Choose between lock The ACL is locked No new entries are allowed in the ACL unlock Every wireless client can associate to the SpeedTouch register A wireless client is only added to the ACL after using the Register Button The default is unlock OPTIONAL wireless macacl config Access Control unlock wireless macacl config control register wireless macacl config Access Control register ...

Page 622: ...addr hardware address hwaddr The Ethernet MAC address of the ACL entry REQUIRED wireless macacl list Station Name hardware address Permission ST120g 00 02 2d 5f b6 9e accept Test2 01 67 d0 23 56 cd accept wireless macacl delete hwaddr 01 67 d0 23 56 cd wireless macacl list Station Name hardware address Permission ST120g 00 02 2d 5f b6 9e accept ...

Page 623: ... the ACL settings to factory defaults Choose between disabled enabled REQUIRED wireless macacl list Station Name hardware address Permission ST120g 00 02 2d 5f b6 9e accept wireless macacl flush proceed disabled wireless macacl list Station Name hardware address Permission ST120g 00 02 2d 5f b6 9e accept wireless macacl flush proceed enabled wireless macacl list No stations defined ...

Page 624: ... 0057 v1 0 604 wireless macacl list Show a list of all configured ACL entries SYNTAX EXAMPLE wireless macacl list wireless macacl list Station Name hardware address Permission ST120g 00 02 2d 5f b6 9e accept Test2 01 67 d0 23 56 cd accept ...

Page 625: ...ted REQUIRED permission The action to be performed on ACL entry Choose between allow the wireless client is allowed entry deny the wireless client is not allowed entry OPTIONAL name The name of the wireless client OPTIONAL wireless macacl list Station Name hardware address Permission ST120g 00 02 2d 5f b6 9e accept Test2 01 67 d0 23 56 cd deny wireless macacl modify hwaddr 01 67 d0 23 56 cd permis...

Page 626: ...who tries to assiociate with the SpeedTouch during this period and who has the correct wireless settings will be added to the ACL SYNTAX where EXAMPLE If the register mode is not enabled when the registration process is started a warning will be displayed wireless macacl register proceed disabled enabled proceed Confirm to start the registration process Choose between disabled enabled REQUIRED wir...

Page 627: ...otected Access WPA Pre Shared Key PSK The default is disable in other words by default there is no security This is to enable an easy first use OPTIONAL wireless secmode config No security enabled open authentication no data encryption wireless secmode config mode wep wireless secmode config Security level WEP encryption key 26FF871306 wireless secmode config mode wpa psk wireless secmode config S...

Page 628: ...ptionkey The secret key to be used for WEP encryption Two key lengths 64 or 128 bits and two formats alphanumeric or hexadecimal are permitted for 64 bit encryption the key must consist of 10 hexadecimal digits or 5 alphanumeric characters for 128 bit encryption the key must consist of 26 hexadecimal digits or 13 alphanumeric characters Note If no encryptionkey is filled in then the default encryp...

Page 629: ...filled in then the default presharedkey is used OPTIONAL encryption Select the data encryption protocol to be used Choose between TKIP the Temporal Key Integrity Protocol TKIP uses temporary keys derived from the PSK AES Advanced Encryption System AES The default is TKIP Note This is also the recommended setting OPTIONAL rekeysec A number between 0 and 20000 seconds Represents the interval between...

Page 630: ... 610 wireless stations list List the currently associated stations SYNTAX EXAMPLE wireless stations list wireless stations list Station Name Hardware Address Authentication ST120g 00 02 2D 5F B6 9E WEP 64 used Total number of associated stations 1 ...

Page 631: ... added wireless wds add bssid hardware address name quoted string bssid The WDS Base Service Set Identifier BSSID REQUIRED name A user specified reference name OPTIONAL wireless wds list SpeedTouch180 00 90 96 4F 38 E4 wireless wds add bssid 00 90 96 62 5d 69 name SpeedTouch Sascha wireless wds list SpeedTouch180 00 90 96 4F 38 E4 SpeedTouch Sascha 00 90 96 62 5D 69 ...

Page 632: ...abled enabled autoaccess disabled enabled state Enable or disable the WDS functionality The default is enabled OPTIONAL autoaccess Automatically grant WDS to other AP s enabled or not disabled The default is disabled in other words auto accept is disabled OPTIONAL wireless wds config State enabled Auto accept WDS disabled Own BSSID 00 90 96 52 2D 89 ...

Page 633: ...AX where EXAMPLE wireless wds delete bssid hardware address bssid The BSSID of the WDS station to be deleted REQUIRED wireless wds list SpeedTouch180 00 90 96 4F 38 E4 SpeedTouch Sascha 00 90 96 62 5D 69 wireless wds delete bssid 00 90 96 62 5d 69 wireless wds list SpeedTouch180 00 90 96 4F 38 E4 ...

Page 634: ...Wireless Commands E DOC CTC 20050531 0057 v1 0 614 wireless wds flush Flush all WDS stations SYNTAX wireless wds flush ...

Page 635: ...less Commands E DOC CTC 20050531 0057 v1 0 615 wireless wds list List the WDS stations SYNTAX EXAMPLE wireless wds list wireless wds list SpeedTouch180 00 90 96 4F 38 E4 SpeedTouch Sascha 00 90 96 62 5D 69 ...

Page 636: ... or not disabled The default is disabled OPTIONAL wireless wds scanresults rescan yes All associations with the AP will be lost due to the wireless network scan SSID channel bssid noise rssi SpeedTouchB39DEB 9 00 90 96 af 48 5a 89 dBm 76 dBm Protected Network 11 00 02 8a 37 01 c3 76 dBm 52 dBm Protected Network 11 00 02 2d 2d f9 e2 76 dBm 48 dBm SpeedTouchDE0566 1 00 30 f1 9f 06 0c 80 dBm 56 dBm ...

Page 637: ... Certificate Enrollment Protocol CHAP Challenge Handshake Authentication Protocol CIDR Classless Inter Domain Routing CLI Command Line Interface CLP Cell Loss Priority CO Central Office CPE Customer Premises Equipment CRL Certificate Revocation List CTD Conformance Traffic Descriptor CWMP CPE WAN Management Protocol DHCP Dynamic Host Configuration Protocol DN Distinguished Name DNS Domain Name Sys...

Page 638: ...ontrol Protocol LDAP Light weight Directory Access Protocol LLC Logical Link Control MAC Medium Access Control MC MultiCast MD5 Message Digest 5 MGCP Media Gateway Control Protocol MLP Multi Level access Policy MPLS Multiprotocol Label Switching MTU Maximum Transmission Unit NAPT Network Address and Port Translation NAT Network Address Translation NLPID Network Layer Protocol IDentifiers NTP Netwo...

Page 639: ...ement SMTP Simple Mail Transfer Protocol SNAP Sub Network Access Protocol SNMP Simple Network Management Protocol SNR Signal to Noise Ratio SNTP Simple Network Time Protocol SSH Secure SHell SSID Service Set IDentifier TCP Transmission Control Protocol TFTP Trivial File Transfer Protocol TKIP Temporal Key Integrity Protocol ToS Type of Service TTL Time To Live UA User Agent UDP User Datagram Proto...

Page 640: ...VP Virtual Path VPI Virtual Path Identifier VPN Virtual Private Networking WAN Wide Area Network WDS Wireless Distribution System WEP Wired Equivalent Privacy WFQ Weighted Fair Queueing WINS Windows Internet Naming Service WLAN Wireless LAN WPA Wi Fi Protected Access WRR Weighted Round Robin Abbreviation Description ...

Page 641: ...essages of the following modules Auto PVC Module 622 Configuration Module 622 DHCP Client Module 622 DHCP Relay Module 623 DHCP Server Module 623 Dyndns Module 624 Firewall Module 624 LOGIN Module 625 Kernel Module 625 Linestate Module 625 NAPT Module 625 PPP Module 626 PPTP Module 626 RIP Module 627 Routing Module 628 Session Module 628 SNTP Module 628 Software Module 629 UPnP Module 629 Wireless...

Page 642: ...TION conf_version upgraded to version version KERN INFO SYSTEM reset by user user_id to factory defaults user settings deleted Facility Severity Contents LOCAL2 WARNING DHCC lease ip address ip address bound to intf intf_id LOCAL2 WARNING DHCC intf intf_id renews lease ip address ip address LOCAL2 WARNING DHCC intf intf_id rebinds lease ip address ip address from server paratext Default Font ip ad...

Page 643: ...active interface intf_id LOCAL2 WARNING DHCR relay Dropping boot request packet with spoofed giaddr field from intf_id LOCAL2 WARNING DHCR relay Dropping boot request received on unknown interface from intf_id LOCAL2 WARNING DHCR relay Dropping boot request on inactive interface intf_id LOCAL2 WARNING DHCR relay Dropping boot request with invalid hops field on interface intf_id LOCAL2 WARNING DHCR...

Page 644: ...NS_ STR_ID Update failed for client dyndns_client incomplete configuration DYNDNS WARNING DYNDNS_ STR_ID Update failed for client dyndns_client message host hostname has not been updated DYNDNS WARNING DYNDNS_ STR_ID Update failed for client dyndns_client DYNDNS NOTICE DYNDNS_ STR_ID Host hostname has been updated successfully by dyndns_service DYNDNS WARNING DYNDNS_ STR_ID Authentication failed t...

Page 645: ...ICE LOGIN User logged in on connection_type ip address AUTH NOTICE LOGIN User user_id tried to log in on connection_type Facility Severity Contents KERN WARNING KERNEL cold reset KERN WARNING KERNEL warm reset KERN EMERG KERNEL Controlled restart after internal error or explicit system reboot Facility Severity Contents LOCAL5 NOTICE xDSL linestate up downstream bitrate_in kbit s upstream bitrate_o...

Page 646: ...ceived AUTH INFO PPP PAP Authenticate Request sent AUTH ERROR PPP PAP authentication failed intf name AUTH ERROR PPP CHAP authentication failed intf name AUTH INFO PPP CHAP authentication failed protocol reject server AUTH INFO PPP CHAP authentication failed protocol reject client AUTH DEBUG PPP CHAP Receive challenge rhost hostname AUTH INFO PPP CHAP Chap receive success authentication ok AUTH DE...

Page 647: ...solete command command name received LOCAL1 INFO RIP Unknown RIP command received LOCAL1 INFO RIP Response does not come from default RIP port LOCAL1 INFO RIP Datagram doesn t come from a valid neighbor ip address LOCAL1 INFO RIP Unsupported family from ip address LOCAL1 INFO RIP Network is net 127 class D or class E network LOCAL1 INFO RIP Address ip address is my own address net 0 or not unicast...

Page 648: ... rule_id Protocol protocol_name Src_ip ip_address Dst_ip ip_address Label label_name Facility Severity Contents AUTH NOTICE SESSION TIMEOUT Timeout after seconds sec Facility Severity Contents NTP WARNING SNTP Unable to contact server SNTP server ip NTP WARNING SNTP Server not synchronized SNTP server ip NTP WARNING SNTP Invalid response from server SNTP server ip NTP INFO SNTP Synchronized to ser...

Page 649: ...URITY UPnP action ActionName from ip ip_address Error_string Facility Severity Contents KERN INFO WIRELESS interface turned off KERN INFO WIRELESS interface turned on KERN INFO WIRELESS automatic channel selection done channel channel_number chosen KERN INFO WIRELESS automatic channel selection scan failed KERN INFO WIRELESS registration started PUSHBUTTON KERN INFO WIRELESS registered new station...

Page 650: ...System Logging Messages E DOC CTC 20050531 0057 v1 0 630 ...

Page 651: ...all the key names supported by the SpeedTouch that can be used for completing CLI command parameters Supported IP Protocols 632 Supported TCP UDP Port Names 633 Supported ICMP Type Names 636 Supported Facilities 637 Supported Severities 638 IP Precedence 638 Differentiated Services Code Point DSCP 639 ...

Page 652: ...50 Encapsulating Security Payload ESP ggp 3 Gateway Gateway Protocol GGP gre 47 General Routing Encapsulation GRE hmp 20 Host Monitoring Protocol HMP icmp 1 Internet Control Message Protocol ICMP igmp 2 Internet Group Management Protocol IGMP pup 12 PUP Protocol rdp 27 Reliable Data Protocol RDP rsvp 46 Resource Reservation Protocol RSVP tcp 6 Transmission Control Protocol TCP udp 17 User Datagram...

Page 653: ... time 37 Y Y Time nicname 43 Y Y Who Is dns 53 Y Y Domain Name System DNS domain 53 Y Y Domain Name System DNS sql net 66 Y Y Oracle SQL NET bootps 67 Y Y Bootstrap Protocol Server bootpc 68 Y Y Bootstrap Protocol Client tftp 69 Y Y Trivial File Transfer Protocol TFTP gopher 70 Y Y Gopher finger 79 Y Y Finger www http 80 Y Y World Wide Web WWW HTTP kerberos 88 Y Y Kerberos rtelnet 107 Y Y Remote T...

Page 654: ...Talk Name Binding Protocol NBP at echo 204 Y Y AppleTalk Echo at zis 206 Y Y AppleTalk Zone Information System ZIS ipx 213 Y Y Novell imap3 220 Y Y Internet Message Access Protocol IMAP v3 clearcase 371 Y Y ClearCase ulistserv 372 Y Y UNIX Listserv ldap 389 Y Y Lightweight Directory Access Protocol LDAP netware ip 396 Y Y Novell Netware over IP snpp 444 Y Y Simple Network Paging Protocol SNPP ike ...

Page 655: ...cpd uucp rlogin 540 Y Y uucpd remote login rtsp 554 Y Y Real Time Streaming Protocol RTSP whoami 565 Y Y whoami ipcserver 600 Y Y SUN IPC Server doom 666 Y Y Doom ID Software ils 1002 Y Y Internet Locator Service ILS h323 1720 Y Y H323 Host Call Secure nfsd 2049 Y Y NFS deamon sip 5060 Y Y Session Initiation Protocol SIP xwindows 6000 Y Y X windows irc u 6667 Y Y Internet Relay Chat IRC Protocol r...

Page 656: ...le source quench 4 Source Quench redirect 5 Redirect echo request 8 Echo router advertisement 9 Router Advertisement router solicitation 10 Router Solicitation time exceeded 11 Time Exceeded parameter problems 12 Parameter problems timestamp request 13 Timestamp timestamp reply 14 Timestamp Reply information request 15 Information Request information reply 16 Information Reply address mask request...

Page 657: ... 24 System daemons auth 32 Authorization messages syslog 40 Syslog daemon messages lpr 48 Line printer subsystem news 56 Network news subsystem uucp 64 UUCP subsystem cron 72 Clock daemon security 80 Security messages ftp 88 FTP daemon ntp 96 NTP subsystem audit 104 Log audit logalert 112 Log alert clock 120 Clock daemon local0 local1 local2 local3 local4 local5 local6 local7 128 136 144 152 160 1...

Page 658: ...importance emerg 0 Emergency conditions system unusable alert 1 Alert conditions immediate action is required crit 2 Critical conditions err 3 Error conditions warning 4 Warning conditions notice 5 Normal but significant conditions info 6 Informational messages debug 7 Debug level messages Precedence Number Routine 0 Priority 1 Immediate 2 Flash 3 Flash Override 4 CRITIC ECP 5 Internetwork Control...

Page 659: ...arding 31 011110 af32 Assured Forwarding 32 011100 af33 Assured Forwarding 33 011010 af21 Assured Forwarding 21 010110 af22 Assured Forwarding 22 010110 af23 Assured Forwarding 23 010010 af11 Assured Forwarding 11 001110 af12 Assured Forwarding 12 001100 af13 Assured Forwarding 13 001010 cs7 Class Selector 7 111000 cs6 Class Selector 6 110000 cs5 Class Selector 5 101000 cs4 Class Selector 4 100000...

Page 660: ...Supported Key Names E DOC CTC 20050531 0057 v1 0 640 ...

Page 661: ...l add 428 label chain add 434 label rule add 438 mlp privilege add 457 mlp role add 463 script add 534 service host add 516 service host rule add 523 snmp community add 544 sntp add 550 user add 586 wireless macacl add 600 wireless wds add 611 addpriv mlp role addpriv 464 addzone mlp privilege addzone 458 appconfig connection appconfig 74 appinfo connection appinfo 76 applist connection applist 77...

Page 662: ...mgr clear 352 ids clear 358 ids pattern clear 362 ids threshold clear 367 ipqos queue clear 422 label rule debug clear 444 config adsl config 4 atm bundle config 21 atm cac config 30 atm oam config 36 atm qosbook config 52 autopvc config 62 connection config 82 cwmp config 94 cwmp server config 97 delete 66 dhcp relay config 118 dhcp server config 126 dhcp server pool config 146 dns client config ...

Page 663: ...ool delete 148 dhcp server rule delete 158 dns server host delete 178 dns server route delete 182 dsd urlfilter rule delete 199 dsd webfilter professional category delete 209 dsd webfilter professional level delete 215 dsd webfilter server delete 225 dsd webfilter standard category delete 231 dsd webfilter standard level delete 236 dyndns delete 247 dyndns host delete 253 expr delete 301 firewall ...

Page 664: ... rule add 157 delete 158 flush 159 list 160 disable service host disable 518 dns client config 162 dnsadd 163 dnsdelete 164 dnslist 165 flush 166 nslookup 167 server config 168 debug clear 170 spoof clear 172 getaddress 173 getflags 174 list 175 update 176 stats 171 flush 169 host add 177 delete 178 flush 179 list 180 route add 181 delete 182 flush 183 list 184 dnsadd dns client dnsadd 163 dnsdele...

Page 665: ...rule clear 241 list 242 modify 243 dump config dump 67 duplicate software duplicate 558 dyndns add 246 delete 247 flush 248 host add 252 delete 253 flush 254 list 255 list 249 modify 250 service list 256 modify 257 E egress eth switch mirror egress 295 env flush 260 get 261 list 262 set 263 unset 264 eth bridge clear 273 config 274 flush 275 ifadd 276 ifattach 277 ifconfig 278 ifdelete 280 ifdetac...

Page 666: ...69 dns server host flush 179 dns server route flush 183 dsd urlfilter rule flush 200 dsd webfilter cache flush 203 dsd webfilter professional category flush 210 dsd webfilter professional level flush 216 dsd webfilter server flush 226 dsd webfilter standard category flush 232 dsd webfilter standard level flush 237 dyndns flush 248 dyndns host flush 254 env flush 260 eth bridge flush 275 eth flush ...

Page 667: ... ifattach 13 dhcp client ifattach 105 eth bridge ifattach 277 eth ifattach 267 ip auto ifattach 401 ip ifattach 382 ppp ifattach 488 ifconfig atm bundle ifconfig 27 atm ifconfig 14 dhcp client ifconfig 106 dhcp relay ifconfig 121 eth bridge ifconfig 278 eth device ifconfig 289 eth ifconfig 268 grp rip ifconfig 346 ip auto ifconfig 402 ip ifconfig 383 nat ifconfig 472 ppp ifconfig 489 wireless ifco...

Page 668: ...attach 401 ifconfig 402 ifdelete 404 ifdetach 405 iflist 406 config 378 debug httpprobe 407 ping 408 sendto 409 stats 411 traceconfig 412 traceroute 413 flush 380 ifadd 381 ifattach 382 ifconfig 383 ifdelete 385 ifdetach 386 iflist 387 ifwait 388 ipadd 389 ipconfig 390 ipdelete 391 iplist 392 mcadd 393 mcdelete 394 mclist 395 rtadd 396 rtdelete 397 rtlist 398 ipadd ip ipadd 389 service system ipad...

Page 669: ...st 227 dsd webfilter standard category list 233 dsd webfilter standard level list 238 dsd webfilter standard rule list 242 dyndns host list 255 dyndns list 249 dyndns service list 256 env list 262 eth switch group list 292 expr list 303 firewall chain list 317 firewall level list 324 firewall list 313 firewall rule list 331 hostmgr list 356 ids list 360 ids pattern list 363 ids threshold list 368 ...

Page 670: ... 222 dsd webfilter server modify 228 dsd webfilter standard rule modify 243 dyndns modify 250 dyndns service modify 257 expr modify 306 firewall level modify 325 firewall rule modify 333 ids threshold modify 369 label modify 432 label rule modify 443 service system modify 532 snmp community modify 547 wireless macacl modify 605 modifydsd webfilter standard level modify 239 move eth switch group mo...

Page 671: ...professional category remove 212 dsd webfilter standard category remove 234 removepriv mlp role removepriv 468 removezone mlp privilege removezone 462 reset system reset 570 wireless reset 598 rights user rights 593 rtadd dhcp server pool rtadd 153 ip rtadd 396 ppp rtadd 497 rtdelete dhcp server pool rtdelete 154 ip rtdelete 397 ppp rtdelete 499 rtlist grp rtlist 342 ip rtlist 398 ruleadd dhcp ser...

Page 672: ...n 562 stats connection stats 89 dhcp client debug stats 115 dhcp relay debug stats 124 dhcp server debug stats 130 dns server debug stats 171 dsd debug stats 191 dsd intercept stats 194 dsd webfilter cache stats 204 firewall debug stats 319 firewall rule debug stats 336 ids pattern stats 364 ip debug stats 411 ipqos ef stats 421 ipqos queue stats 426 label rule debug stats 445 mlp debug stats 455 ...

Page 673: ...ll debug traceconfig 320 firewall rule debug traceconfig 337 ip debug traceconfig 412 label rule debug traceconfig 446 mlp debug traceconfig 456 traceroute ip debug traceroute 413 triggerlist service host triggerlist 522 U unbind connection unbind 92 unset env unset 264 update dns server debug spoof update 176 upgrade software upgrade 561 upnp config 582 flush 583 list 584 user add 586 config 588 ...

Page 674: ...E DOC CTC 20050531 0057 v1 0 654 Index delete 613 flush 614 list 615 scanresults 616 wpa psk wireless secmode wpa psk 609 ...

Page 675: ......

Page 676: ...Need more help Additional help is available online at www speedtouch com THOMSON 2005 All rights reserved E DOC CTC 20050531 0057 v1 0 ...

Reviews:

No comments

Related manuals for 580

3Com OfficeConnect 3C855 Setting Up preview
OfficeConnect 3C855
Brand: 3Com Pages: 4
Banner SureCross DX80 Reference Manual preview
SureCross DX80
Brand: Banner Pages: 96
Yeastar Technology TB200 Installation Manual preview
TB200
Brand: Yeastar Technology Pages: 11
Nomadix NWCG User Manual preview
NWCG
Brand: Nomadix Pages: 204
3onedata GW1102-2DRS-485-TB-P Quick Installation Manual preview
GW1102-2DRS-485-TB-P
Brand: 3onedata Pages: 3
Opengear ACM7004-2-LMA Quick Start Manual preview
ACM7004-2-LMA
Brand: Opengear Pages: 4
Sygonix 1898921 RSL 433 MHz App Instruction Manual preview
1898921 RSL 433 MHz
Brand: Sygonix Pages: 45
Innovaphone IP 400 Administrator'S Manual preview
IP 400
Brand: Innovaphone Pages: 164
iSMA CONTROLLI iSMA-B-MG-IP User Manual preview
iSMA-B-MG-IP
Brand: iSMA CONTROLLI Pages: 29
BossPac WASP NEST4 User Manual preview
WASP NEST4
Brand: BossPac Pages: 27
YX YX 16-128 User Manual preview
YX 16-128
Brand: YX Pages: 51
YX MOIP 16-128 User Manual preview
MOIP 16-128
Brand: YX Pages: 54
DECODE DG100 User Manual preview
DG100
Brand: DECODE Pages: 34
ICPDAS GW-7472 Quick Start Manual preview
GW-7472
Brand: ICPDAS Pages: 7
Nexland WaveBase Pro Series User Manual preview
WaveBase Pro Series
Brand: Nexland Pages: 37
Cooper Bussmann 915U-2 User Manual preview
915U-2
Brand: Cooper Bussmann Pages: 115
Atmark Armadillo-IoT Gateway G3 Product Manual preview
Armadillo-IoT Gateway G3
Brand: Atmark Pages: 129
WAGO 750-658 Application Note preview
750-658
Brand: WAGO Pages: 16

Brands by name

Popular brands

Load more brands