HP FlexFabric 12900 series Скачать руководство пользователя страница 75 | Manualshive

Страница: 75 / 268

background image

67

Rule Guidelines

Do not include the vertical bar (|),
greater-than sign (>), or double
greater-than sign (>>) when you

specify

display

commands in a

user role command rule.

The system does not treat the redirect signs and the parameters that follow
the signs as part of command lines. However, in user role command rules,

these redirect signs and parameters are handled as part of command

lines. As a result, no rule that includes any of these signs can find a match.
For example, "rule 1 permit command display debugging > log" can
never find a match. This is because the system has a

display debugging

command but not a

display debugging

> log

command.

Examples

# Permit the user role

role1

to execute the

display acl

command.

<Sysname> system-view

[Sysname] role name role1

[Sysname-role-role1] rule 1 permit command display acl

# Permit the user role

role1

to execute all commands that start with

display

.

[Sysname-role-role1] rule 2 permit command display *

# Permit the user role

role1

to execute the

radius scheme aaa

command in system view and use all

commands assigned to RADIUS scheme view.

[Sysname-role-role1] rule 3 permit command system ; radius scheme aaa

# Deny the access of

role1

to any read or write command of any feature.

[Sysname-role-role1] rule 4 deny read write feature

# Deny the access of

role1

to any read command of the feature

aaa

.

[Sysname-role-role1] rule 5 deny read feature aaa

# Permit

role1

to access all read, write, and execute commands of the feature group

security-features

.

[Sysname-role-role1] rule 6 permit read write execute feature-group security-features

# Permit

role1

to access all read and write MIB nodes starting from the node with OID 1.1.2.

[Sysname-role-role1] rule 7 permit read write oid 1.1.2

Related commands

•

display role

•

display role feature

•

display role feature-group

•

role

super

Use

super

to obtain another user role without reconnecting to the device.

Syntax

super

[

rolename

]

Views

User view

Predefined user roles

network-admin

«
...
73
74
75
76
77
...
»

Содержание FlexFabric 12900 series

Страница 1: ...HP FlexFabric 12900 Switch Series Fundamentals Command Reference Part number 5998 6229 Software version Release 1135 Document version 6W100 20150427 ...

Страница 2: ...MATERIAL INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE Hewlett Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing performance or use of this material The only warranties for HP products and services are set forth in the express warranty statements accompan...

Страница 3: ... mode 14 auto execute command 15 command accounting 17 command authorization 18 databits 18 display line 19 display telnet client 20 display user interface 21 display users 23 escape key 24 flow control 25 free line 26 free user interface 27 history command max size 28 idle timeout 28 line 29 line class 30 lock 31 parity 32 protocol inbound 33 screen length 34 send 35 set authentication password 3...

Страница 4: ...rule 63 super 67 super authentication mode 68 super default role 69 super password 70 vlan policy deny 71 vpn instance policy deny 72 FTP commands 74 FTP server commands 74 display ftp server 74 display ftp user 74 free ftp user 75 free ftp user ip 76 ftp server acl 76 ftp server dscp 77 ftp server enable 78 ftp timeout 78 FTP client commands 79 append 79 ascii 79 binary 80 bye 81 cd 81 cdup 82 cl...

Страница 5: ...e system management commands 111 cd 111 copy 113 delete 114 dir 116 fdisk 118 file prompt 120 fixdisk 120 format 121 gunzip 121 gzip 122 md5sum 123 mkdir 123 more 124 mount 126 move 126 pwd 127 rename 127 reset recycle bin 128 rmdir 129 sha256sum 129 tar create 130 tar extract 131 tar list 132 umount 132 undelete 133 Configuration file management commands 135 backup startup configuration 135 confi...

Страница 6: ... 163 display install active 163 display install committed 164 display install ipe info 166 display install package 167 display issu rollback timer 168 display issu state 169 display version comp matrix 170 install activate 172 install add 174 install commit 174 install deactivate 175 issu accept 176 issu commit 176 issu load 177 issu rollback 178 issu rollback timer 179 issu run switchover 180 Dev...

Страница 7: ...er interface 220 display transceiver manuinfo 221 display version 222 display version update record 222 exception filepath 223 header 224 job 225 memory threshold 226 memory threshold usage 227 monitor cpu usage enable 228 monitor cpu usage interval 229 monitor cpu usage threshold 230 password recovery enable 231 process core 232 reboot 233 reset scheduler logfile 235 reset version update record 2...

Страница 8: ...vi Support and other resources 254 Contacting HP 254 Subscription service 254 Related information 254 Documents 254 Websites 254 Conventions 255 Index 257 ...

Страница 9: ...erase delete exit quit hostname sysname logging info center no undo show display write save Views System view Predefined user roles network admin Parameters alias Specifies an alias a case sensitive string of 1 to 20 characters An alias cannot be alias or contain spaces command Specifies a command string Make sure the command string meets the syntax requirements Usage guidelines You can configure ...

Страница 10: ...12 Destination Mask Proto Pre Cost NextHop Interface 0 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 3 3 3 3 32 Static 60 0 192 168 1 62 GE0 0 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 169 254 0 0 24 Direct 0 0 169 254 0 188 GE0 0 169 254 0 0 32 Direct 0 0 169 254 0 188 GE0 0 ...

Страница 11: ...ession a case sensitive string of 1 to 256 characters Usage guidelines Use the begin exclude include regular expression option with a display command to filter the command output For more information about regular expressions see Fundamentals Configuration Guide Examples Display the lines that contain vlan in the running configuration Sysname display current configuration include vlan vlan 1 vlan ...

Страница 12: ...e VLAN 0999 8 Tagged ports None 9 Untagged ports 10 FortyGigE1 0 1 Display the first line that begins with user group in the running configuration and all of the following lines Sysname display current configuration by linenum begin user group 114 user group system 115 116 return display Use display to save the output from a display command to a separate file Syntax display command filename Views ...

Страница 13: ...edefined user roles network admin network operator Parameters command Specifies the keywords and arguments of a display command To display available keywords and arguments enter display filename Specifies the name of the file that is used to save the output a string of 1 to 63 characters Usage guidelines The display commands show the configuration statistics and states of the device You can use di...

Страница 14: ...tyGigE1 0 1 display alias Use display alias to display command aliases Syntax display alias alias Views Any view Predefined user roles network admin network operator Parameters alias Specifies a command alias If you do not specify this argument the command displays all command aliases Examples Display all command aliases Sysname display alias Index Alias Command key 1 access list acl 2 end return ...

Страница 15: ...atically saves commands you have successfully executed to the command history buffer for the current CLI session You can view them and execute them again By default the system can save up to 10 commands in the buffer You can use the history command max size command to change the buffer size Examples Display all commands saved in the command history buffer for the current CLI session Sysname displa...

Страница 16: ...y all commands saved in the command history buffer for all CLI sessions Sysname display history command all Date Time Terminal Ip User 03 16 2013 20 03 33 vty0 192 168 1 26 Cmd dis his all 03 16 2013 20 03 29 vty0 192 168 1 26 Cmd sys Related commands display history command display hotkey Use display hotkey to display hotkey information Syntax display hotkey Views Any view Predefined user roles n...

Страница 17: ...beginning of the line to the cursor CTRL_Y Delete all characters from the cursor to the end of the line CTRL_Z Return to the User View CTRL_ Kill incoming connection or redirect connection ESC_B Move the cursor back one word ESC_D Delete all characters from the cursor to the end of the word ESC_F Move the cursor forward one word Related commands hotkey hotkey Use hotkey to assign a command to a co...

Страница 18: ...d assigned to the hotkey To display system defined and configurable hotkeys use the display hotkey command Examples Assign the display tcp status command to the hotkey Ctrl T Sysname system view Sysname hotkey ctrl_t display tcp status Related commands display hotkey quit Use quit to return to the upper level view Syntax quit Views Any view Predefined user roles network admin network operator Usag...

Страница 19: ...disable to enable pausing between screens of output for the current session Syntax screen length disable undo screen length disable Default The default depends on the configuration of the screen length command in user line view The following are default settings for the screen length command Pausing between screens of output Displaying up to 24 lines on a screen Views User view Predefined user rol...

Страница 20: ...isable Related commands screen length system view Use system view to enter system view from user view Syntax system view Views User view Predefined user roles network admin network operator Examples Enter system view from user view Sysname system view System View return to User View with Ctrl Z Sysname ...

Страница 21: ...sers who log in after the configuration is completed Some login management commands are not supported in some user line views but can be configured in the corresponding user line class views However the commands do not take effect This chapter provides only remarks about commands that are not supported in user line view activation key Use activation key to define a shortcut key for starting a term...

Страница 22: ... Sysname quit 2 Log in again through the AUX line The following message appears Press ENTER to get started 3 Press Enter Pressing Enter does not start a session 4 Enter s A terminal session is started Sysname authentication mode Use authentication mode to set the authentication mode for a user line Use undo authentication mode to restore the default Syntax In non FIPS mode authentication mode none...

Страница 23: ...e line vty 0 Sysname line vty0 authentication mode password Sysname line vty0 set authentication password simple 321 Enable scheme authentication for user line VTY 0 set the username to 123 and the password to 321 and authorize the Telnet service and network admin user role to the user Sysname system view Sysname line vty 0 Sysname line vty0 authentication mode scheme Sysname line vty0 quit Sysnam...

Страница 24: ...xecuted If the command triggers another task the device does not close the user connection until the task is completed Typically you configure the auto execute command telnet X X X X command on the device so the device redirects a Telnet user to the host at X X X X In this case the connection to the current device is closed when the user terminates the Telnet connection to X X X X Examples Configu...

Страница 25: ...rver does not record executed commands Views User line view user line class view Predefined user roles network admin Usage guidelines When command accounting is enabled but command authorization is not every executed command is recorded on the HWTACACS server When both command accounting and command authorization are enabled only authorized commands that are executed are recorded on the HWTACACS s...

Страница 26: ...e command by the AAA scheme If the command authorization command is configured in user line class view Command authorization is enabled on all user lines in the class You cannot configure the undo command authorization command in the view of a user line in the class Examples Enable command accounting for VTY 0 so its user can execute only authorized commands that are permitted by the user role Sys...

Страница 27: ...e line aux0 databits 5 display line Use display line to display user line information Syntax display line number1 aux vty number2 summary Views Any view Predefined user roles network admin network operator Parameters number1 Specifies the absolute number of a user line The value range is 0 to 65 in standalone mode and 0 to 71 in IRF mode aux Specifies the AUX line vty Specifies the VTY line number...

Страница 28: ...e display line summary Line type AUX 0 XUXX XXXX Line type VTY 8 UUXU UUUU UXXX XXXX 24 XXXX XXXX XXXX XXXX 40 XXXX XXXX XXXX XXXX 56 XXXX XXXX XXXX XXXX 9 lines used U 63 lines not used X Table 3 Command output Fields Description number status The number indicates the absolute number of the first user line of the user line class The status indicates whether or not the user lines are being used X ...

Страница 29: ...isplay user interface to display user line information Syntax display user interface number1 aux vty number2 summary Views Any view Predefined user roles network admin network operator Parameters number1 Specifies the absolute number of a user line The value range is 0 to 65 in standalone mode and 0 to 71 in IRF mode aux Specifies the AUX line vty Specifies the VTY line number2 Specifies the relat...

Страница 30: ...ld Description Modem Whether the modem allows calling in or out By default this attribute is not configured and a hyphen is displayed In IRF mode display summary information about all user lines Sysname display user interface summary Line type AUX 0 XUXX XXXX Line type VTY 8 UXXX XXXX XXXX XXXX 24 XXXX XXXX XXXX XXXX 40 XXXX XXXX XXXX XXXX 56 XXXX XXXX XXXX XXXX 1 lines used U 71 lines not used X ...

Страница 31: ...ation 192 168 1 12 VTY 1 Location 192 168 1 26 Current operation user F Current operation user works in async mode The output shows that two users have logged in to the device one is using user line VTY 0 and the other yourself is using VTY 1 Your IP address is 192 168 1 26 Table 6 Command output Field Description Idx Absolute number of the user line Line Type and relative number of the user line ...

Страница 32: ...ation of the command For more information see the description of the command HP recommends that you use a key sequence as the shortcut key If you define a single character as the shortcut key pressing the key while a command is being executed stops the command If no command is being executed the result depends on the following If you are managing the local device pressing the key enters the charac...

Страница 33: ...onfigure the flow control mode Use undo flow control to restore the default Syntax flow control hardware none software undo flow control Default The flow control mode is none Views User line view Predefined user roles network admin Parameters hardware Performs hardware flow control none Disables flow control software Performs software flow control Usage guidelines This command is not supported in ...

Страница 34: ...e is 0 to 65 in standalone mode and 0 to 71 in IRF mode aux Specifies the AUX line vty Specifies the VTY line number2 Specifies the relative number of a user line The value ranges are as follows AUX line 0 to 1 in standalone mode and 0 to 7 in IRF mode VTY line 0 to 63 Usage guidelines This command does not release the line you are using Examples Release user line VTY 1 1 Display online users Sysn...

Страница 35: ...s AUX line 0 to 1 in standalone mode and 0 to 7 in IRF mode VTY line 0 to 63 Usage guidelines This command does not release the line you are using This is an older command reserved for backward compatibility purposes Although it has the same functionality and output as the free line command HP recommends you use the free line command Examples Release user line VTY 1 1 Display online users Sysname ...

Страница 36: ...ze of the buffer determines how many history commands the buffer can store To view stored history commands on your user line press the up arrow key or down arrow key or execute the display history command command Terminating a CLI session clears the commands in the history buffer This command is available in both user line view and user line class view If the setting in user line view is not the d...

Страница 37: ...isables the idle timeout function This command is available in both user line view and user line class view If the setting in user line view is not the default setting the setting in user line view takes effect If the setting in user line view is the default setting but the setting in user line class view is not the setting in user line class view takes effect Examples Set the idle timeout to 1 mi...

Страница 38: ...command to enter the user line view To configure the same settings for multiple user lines use this command to enter multiple user line views Examples Enter the view of user line AUX 0 Sysname system view Sysname line aux 0 Sysname line aux0 Enter the views of user lines VTY 0 to VTY 4 Sysname system view Sysname line vty 0 4 Sysname line vty0 4 Related commands line class line class Use line clas...

Страница 39: ...VTY line class view Sysname system view Sysname line class vty Sysname line class vty idle timeout 15 In AUX line class view configure character s as the shortcut key for starting a terminal session Sysname system view Sysname line class aux Sysname line class aux activation key s Sysname line class aux quit In AUX 0 line view restore the default shortcut key for starting a terminal session Sysnam...

Страница 40: ...t again To unlock the user line press Enter and enter the correct password Examples Lock the current user line and then unlock it Sysname lock Please input password 1 to 16 to lock current line Password Again locked The user line is locked To unlock it press Enter and enter the password Password Sysname parity Use parity to specify a parity check mode Use undo parity to restore the default Syntax ...

Страница 41: ... communicate Examples Configure user line AUX 0 to perform odd parity check Sysname system view Sysname line aux 0 Sysname line aux0 parity odd protocol inbound Use protocol inbound to enable a user line to support Telnet SSH or both protocols Use undo protocol inbound to restore the default Syntax In non FIPS mode protocol inbound all ssh telnet undo protocol inbound In FIPS mode protocol inbound...

Страница 42: ...es VTY 0 through VTY 4 to support only SSH Sysname system view Sysname line vty 0 4 Sysname line vty0 4 authentication mode scheme Sysname line vty0 4 protocol inbound ssh Enable scheme authentication for the VTY line class and enable the line class to support only SSH Disable authentication for VTY lines 0 through 4 Sysname system view Sysname line class vty Sysname line class vty authentication ...

Страница 43: ...ion use the screen length 0 or screen length disable command The screen length disable command is available in user view This command is available in both user line view and user line class view If the setting in user line view is not the default setting the setting in user line view takes effect If the setting in user line view is the default setting but the setting in user line class view is not...

Страница 44: ...tion please I will reboot the system in 3 minutes set authentication password Use set authentication password to set a password for password authentication Use undo set authentication password to remove the password Syntax set authentication password hash simple password undo set authentication password Default No password is set for password authentication Views User line view user line class vie...

Страница 45: ...enter the password hello to pass authentication Related commands authentication mode shell Use shell to enable the terminal service for a user line Use undo shell to disable the terminal service for a user line Syntax shell undo shell Default The terminal service is enabled on all user lines Views User line view user line class view Predefined user roles network admin Usage guidelines The undo she...

Страница 46: ...ronous serial interfaces include 300 bps 600 bps 1200 bps 2400 bps 4800 bps 9600 bps 19200 bps 38400 bps 57600 bps and 1 15200 bps The transmission rate varies with devices and configuration environments Usage guidelines This command is not supported in VTY line view The configuration terminal and the device must be configured with the same transmission rate to communicate Examples Set the transmi...

Страница 47: ...in an IPv4 network Syntax telnet remote host service port vpn instance vpn instance name source interface interface type interface number ip ip address dscp dscp value Views User view Predefined user roles network admin Parameters remote host Specifies the IPv4 address or host name of a remote host A host name can be a case insensitive string of 1 to 253 characters Valid characters for a host name...

Страница 48: ...st 1 1 1 2 using 1 1 1 1 as the source IP address for outgoing Telnet packets Sysname telnet 1 1 1 2 source ip 1 1 1 1 Related commands telnet client source telnet client source Use telnet client source to specify a source IPv4 address or source interface for outgoing Telnet packets when the device serves as a Telnet client Use undo telnet client source to remove the configuration Syntax telnet cl...

Страница 49: ...he default Syntax telnet server acl acl number undo telnet server acl Default No ACL is used to filter Telnet logins Views System view Predefined user roles network admin Parameters acl number Specifies an ACL by its number Basic ACL 2000 to 2999 Advanced ACL 3000 to 3999 Ethernet frame header ACL 4000 to 4999 Usage guidelines This command is not supported in FIPS mode Only one ACL can be used to ...

Страница 50: ...Predefined user roles network admin Parameters dscp value Specifies a DSCP value in the range of 0 to 63 Usage guidelines This command is not supported in FIPS mode The DSCP value is carried in the ToS field of an IP packet and it indicates the transmission priority of the packet Examples Set the DSCP value for IPv4 to use for outgoing Telnet packets to 30 on a Telnet server Sysname system view Sy...

Страница 51: ...t The terminal display type is ANSI Views User line view user line class view Predefined user roles network admin Parameters ansi Specifies the terminal display type ANSI vt100 Specifies the terminal display type VT100 Usage guidelines The device supports two terminal display types ANSI and VT100 HP recommends that you set the display type to VT100 on both the device and the configuration terminal...

Страница 52: ...dalone mode and 0 to 7 in IRF mode VTY line 0 to 63 last number2 Specifies the relative number of the last user line This number cannot be smaller than first number2 Usage guidelines To configure settings for a single user line use this command to enter the user line view To configure the same settings for multiple user lines use this command to enter multiple user line views This command is an ol...

Страница 53: ...ass view A setting in user line view takes effect immediately and affects the online user A setting in user line class view does not affect online users and takes effect only for users who log in after the configuration is completed This command is an older version of the line class command It is reserved for backward compatibility purposes Although it has the same function and output as the line ...

Страница 54: ... role name undo user role role name Default An AUX line user is assigned the user role network admin Users of other user lines are assigned the user role network operator Views User line view user line class view Predefined user roles network admin Parameters role name Specifies a user role name a case sensitive string of 1 to 63 characters The user role can be user defined or predefined network a...

Страница 55: ...47 Examples Assign user role network admin through the user line VTY 0 Sysname system view Sysname line vty 0 Sysname line vty0 user role network admin ...

Страница 56: ...escription of a user role Syntax description text undo description Default A user role does not have a description Views User role view Predefined user roles network admin Parameters text Specifies a user role description a case sensitive string of 1 to 128 characters Examples Configure the description as labVIP for the user role role1 Sysname system view Sysname role name role1 Sysname role role1...

Страница 57: ...rface20 VPN instance policy deny Permitted VPN instances vpn vpn1 vpn2 Rule Perm Type Scope Entity 1 permit RWX feature group abc 2 deny W feature ldap 3 permit command system radius sc 4 permit R xml element 5 permit RW oid 1 2 1 R Read W Write X Execute Table 7 Command output Field Description Role User role name Predefined user role names include network admin network operator level n where n r...

Страница 58: ... rules are identified by sys n where n represents an integer Perm Access control criterion permit User role has access to the specified items deny User role does not have access to the specified items Type Item category R Read only W Write X Execute Scope Rule control scope command Controls access to the command or commands as specified in the Entity field feature Controls access to the commands o...

Страница 59: ... display role feature Feature device Device configuration related commands Feature interface Interface related commands Feature syslog Syslog related commands Feature process Process related commands Display the commands of each feature Sysname display role feature verbose Feature device Device configuration related commands display clock R debugging dev W display debugging dev R display device R ...

Страница 60: ...e W system view clock protocol W system view password recovery W system view switch fabric removal signal suppression W system view rtm W system view rtm action W system view rtm running time W system view rtm commit W system view rtm user role W display rtm R system view probe W system view probe display system internal startup cache R system view probe view R system view probe list R system view...

Страница 61: ...s that start with display domain in user view system view user group All the commands that start with user group in system view and all the commands in user group view system view local user All the commands that start with local user in system view and all the commands in local user view display user group All the commands that start with display user group in user view display debugging local se...

Страница 62: ...ays the commands of each feature in the specified feature group If you do not specify a feature group this keyword enables displaying the commands of each feature in every feature group If you do not specify this keyword the command displays only the feature lists of feature groups Usage guidelines Feature groups L2 and L3 are predefined feature groups Examples Display the feature list of the feat...

Страница 63: ... command to add multiple features to a feature group Examples Add the security features AAA and ACL to the security group security features Sysname system view Sysname role feature group name security features Sysname featuregrp security features feature aaa Sysname featuregrp security features feature acl Related commands display role feature display role feature group role feature group interfac...

Страница 64: ...ate and remove operations are available only for logical interfaces Any change to a user role interface policy takes effect only on users who log in with the user role after the change Examples Enter user role interface policy view of role1 and deny role1 to access any interface Sysname system view Sysname role name role1 Sysname role role1 interface policy deny Sysname role role1 ifpolicy quit En...

Страница 65: ...ollowing operations to the interfaces in the permitted interface list Create remove or configure the interfaces Enter the interface views Specify the interfaces in feature commands The create and remove operations are available only for logical interfaces You can repeat the permit interface command to add permitted interfaces to a user role interface policy The undo permit interface command remove...

Страница 66: ... of VLANs accessible to a user role Use undo permit vlan to remove the permission for a user role to access specific VLANs Syntax permit vlan vlan id list undo permit vlan vlan id list Default No permitted VLANs are configured in user role VLAN policy view Views User role VLAN policy view Predefined user roles network admin Parameters vlan id list Specifies a space separated list of up to 10 VLAN ...

Страница 67: ...vlan policy deny Sysname role role1 vlanpolicy permit vlan 2 4 50 to 100 Sysname role role1 vlanpolicy quit Sysname role role1 quit 2 Verify that you cannot use the user role to work on any VLAN except VLANs 2 4 and 50 to 100 Verify that you can create VLAN 100 and enter the VLAN view Sysname vlan 100 Sysname vlan100 quit Verify that you can add port FortyGigE 1 0 1 to VLAN 100 as an access port S...

Страница 68: ...nce command removes the entire list of permitted VPNs if you do not specify any VPNs Any change to a user role VPN instance policy takes effect only on users who log in with the user role after the change Examples 1 Configure user role role1 Permit the user role to execute all commands available in system view and in the child views of system view Sysname system view Sysname role name role1 Sysnam...

Страница 69: ... range of 0 to 15 Views System view Predefined user roles network admin Parameters name role name Specifies a username The role name argument is a case sensitive string of 1 to 63 characters Usage guidelines You can create a maximum of 64 user roles in addition to the predefined user roles To change the permissions assigned to a user role you must first enter the user role view You cannot delete t...

Страница 70: ... name for the default user role The user role must already exist The argument is a case sensitive string of 1 to 63 characters If you do not specify this argument the default user role is network operator Usage guidelines The default user role feature assigns the default user role to AAA authenticated users if the authentication server does not assign any user roles to the users These users are al...

Страница 71: ...eature groups L2 and L3 you can create a maximum of 64 user role feature groups After you create a user role feature group you can use the display role feature command to display the features available in the system Then you can use the feature command to add features to the feature group Examples Create the feature group security features Sysname system view Sysname role feature group name securi...

Страница 72: ...ture name argument specifies a feature name If you do not specify a feature name you specify all the features in the system When you specify a feature you must enter the feature name as the name is displayed by display role feature including the case feature group feature group name Specifies a user defined or predefined feature group The feature group name argument represents the feature group na...

Страница 73: ...ompares an OID with the OIDs specified in rules and it uses the longest match principle to select a rule for the OID For example a user role cannot access the MIB node with OID 1 3 6 1 4 1 25506 141 3 0 1 if the user role contains rules configured by using the following commands rule 1 permit read write oid 1 3 6 rule 2 deny read write oid 1 3 6 1 4 1 rule 3 permit read write oid 1 3 6 1 4 If the ...

Страница 74: ...segment you can use an asterisk only at the end of the segment In the last segment you can use an asterisk in any position of the segment If the asterisk appears at the beginning you cannot specify any printable characters behind the asterisk For example the system command string represents all commands available in system view and all subviews of the system view The debugging event command string...

Страница 75: ... with display Sysname role role1 rule 2 permit command display Permit the user role role1 to execute the radius scheme aaa command in system view and use all commands assigned to RADIUS scheme view Sysname role role1 rule 3 permit command system radius scheme aaa Deny the access of role1 to any read or write command of any feature Sysname role role1 rule 4 deny read write feature Deny the access o...

Страница 76: ...l password is configured in the local then remote authentication local scheme A VTY user performs remote authentication An AUX user can obtain user role authorization by either entering a string or not entering anything Examples Obtain the user role network operator Sysname super network operator Password User privilege role is network operator and only those commands can be used that authorized t...

Страница 77: ...e device first performs local password authentication If no password is configured for the user role the device performs remote authentication For more information about AAA see Security Configuration Guide Examples Enable local only authentication for temporary user role authorization Sysname system view Sysname super authentication mode local Enable remote then local authentication for temporary...

Страница 78: ...r role Use undo super password to restore the default Syntax In non FIPS mode super password role rolename hash simple password undo super password role rolename In FIPS mode super password role rolename undo super password role rolename Default No password is set for a user role Views System view Predefined user roles network admin Parameters role rolename Specifies a user role a case sensitive s...

Страница 79: ...mples Set the password to 123456TESTplat for the user role network operator Sysname system view Sysname super password role network operator simple 123456TESTplat Set the password to 123456TESTplat in the interactive mode for the user role network operator Sysname system view Sysname super password role network operator Password Confirm Related commands super authentication mode super default role...

Страница 80: ...e1 to any VLAN Sysname system view Sysname role name role1 Sysname role role1 vlan policy deny Sysname role role1 vlanpolicy quit Enter user role VLAN policy view of role1 and deny the access of role1 to any VLAN except VLANs 50 to 100 Sysname system view Sysname role name role1 Sysname role role1 vlan policy deny Sysname role role1 vlanpolicy permit vlan 50 to 100 Related commands display role pe...

Страница 81: ...te remove or configure the VPN Enter the VPN instance view Specify the VPN in feature commands Any change to a user role VPN instance policy takes effect only on users who log in with the user role after the change Examples Enter user role VPN instance policy view of role1 and deny the access of role1 to any VPN Sysname system view Sysname role name role1 Sysname role role1 vpn instance policy den...

Страница 82: ... display ftp server Views Any view Predefined user roles network admin network operator Examples Display FTP server configuration and status information Sysname display ftp server FTP server is running User count 1 Idle timeout timer in minutes 30 Table 10 Command output Field Description User count Number of the current logged in users Idle timeout timer in minutes If no packet is exchanged betwe...

Страница 83: ...s shown below Sysname display ftp user UserName HostIP Port HomeDir user2 2000 2000 2000 1499 flash user2 2000 2000 2000 2000 2000 administra 100 100 100 100 10001 flash 123456789 123456789 123456789 tor 123456789 123456789 123456789 1234567 89 123456789 Table 11 Command output Field Description UserName Name of the user HostIP IP address of the user Port Port number of the user HomeDir Authorized...

Страница 84: ... the source IP address of an FTP connection You can use the display ftp user command to view the source IP addresses of FTP connections port port Specifies the source port of an FTP connection You can use the display ftp user command to view the source ports of FTP connections Examples Release the FTP connections established from IP address 192 168 20 184 Sysname free ftp user ip 192 168 20 184 Ar...

Страница 85: ...0 Sysname acl basic 2001 rule 1 deny source any Sysname acl basic 2001 quit Sysname ftp server acl 2001 ftp server dscp Use ftp server dscp to set the DSCP value for IPv4 to use for outgoing FTP packets on an FTP server Use undo ftp server dscp to restore the default Syntax ftp server dscp dscp value undo ftp server dscp Default IPv4 uses the DSCP value 0 for outgoing FTP packets on an FTP server ...

Страница 86: ...p timeout to set the idle timeout interval for FTP connections Use undo ftp timeout to restore the default Syntax ftp timeout minute undo ftp timeout Default The FTP idle timeout interval is 30 minutes Views System view Predefined user roles network admin Parameters minute Specifies an idle timeout interval in the range of 1 to 35791 minutes Usage guidelines If no packet is exchanged on an FTP con...

Страница 87: ...to add the content of a file on the FTP client to a file on the FTP server Syntax append localfile remotefile Views FTP client view Predefined user roles network admin Parameters localfile Specifies a local file on the FTP client remotefile Specifies a remote file on the FTP server Usage guidelines You can perform this operation only after you log in to the FTP server Examples Append the content o...

Страница 88: ...ransfers text files Examples Set the file transfer mode to ASCII ftp ascii 200 TYPE is now ASCII Related commands binary binary Use binary to set the file transfer mode to binary which is also called the flow mode Syntax binary Default The file transfer mode is binary Views FTP client view Predefined user roles network admin Usage guidelines You can perform this operation only after you log in to ...

Страница 89: ...e connection to the FTP server and return to user view ftp bye 221 Windows FTP Server WFTPD by Texas Imperial Software says goodbye Sysname Related commands quit cd Use cd to change the current working directory to another directory on the FTP server Syntax cd directory Views FTP client view Predefined user roles network admin Parameters directory Specifies the name of the target directory in the ...

Страница 90: ... 250 C DOCUMENTS AND SETTINGS ADMINISTRATOR desk 125X logfile is current directory Change the working directory to the subdirectory diagfile in the FTP root directory ftp cd diagfile 250 C diagfile is current directory Change the working directory to the upper directory of the current directory ftp cd 250 C DOCUMENTS AND SETTINGS ADMINISTRATOR desk 125X is current directory Change the working dire...

Страница 91: ...hout exiting FTP client view Syntax close Views FTP client view Predefined user roles network admin Usage guidelines You can perform this operation only after you log in to the FTP server Examples Terminate the connection to the FTP server without exiting the FTP client view ftp close 221 Windows FTP Server WFTPD by Texas Imperial Software says goodbye 221 Logout ftp Related commands disconnect de...

Страница 92: ...min Parameters remotefile Specifies the name of a file on the FTP server Usage guidelines You can perform this operation only after you log in to the FTP server To perform this operation you must have delete permission on the FTP server Examples Delete file b txt ftp delete b txt 250 File deleted from remote host dir Use dir to display detailed information about the files and subdirectories in the...

Страница 93: ... drwxrwxrwx 1 noone nogroup 0 Apr 8 15 15 rwxrwxrwx 1 noone nogroup 6324 Apr 8 14 48 1 txt rwxrwxrwx 1 noone nogroup 97401856 Feb 27 12 28 12900 ipe drwxrwxrwx 1 noone nogroup 0 Mar 26 14 30 Compatiable drwxrwxrwx 1 noone nogroup 0 Mar 26 14 30 Incompatiable drwxrwxrwx 1 noone nogroup 0 Apr 1 15 34 aa 226 Transfer finished successfully Save detailed information about file a txt to s txt ftp dir a ...

Страница 94: ...lient source Use display ftp client source to display the source address settings on the FTP client Syntax display ftp client source Views Any view Predefined user roles network admin network operator Examples Display the source address settings on the FTP client Sysname display ftp client source The source IP address of the FTP client is 1 1 1 1 ftp Use ftp to log in to an FTP server and enter FT...

Страница 95: ...mber The primary IPv4 address of this interface will be used as the source address for outgoing FTP packets If no primary IPv4 address is configured on the source interface the connection cannot be established ip source ip address Specifies an IPv4 address This address must have been configured on the device Usage guidelines This command is only applicable to IPv4 networks If no parameters are spe...

Страница 96: ...ssion fails ip source ip address Specifies the source IP address for outgoing FTP packets It must be the IPv4 address of an interface in up state Otherwise the transmission fails Usages guidelines If you execute this command multiple times the most recent configuration takes effect The source address specified with the ftp command takes precedence over the source address specified with the ftp cli...

Страница 97: ...nd 1 bytes in IMAGE Binary mode 226 Transfer finished successfully 1 bytes received in 0 00325 seconds 308 byte s Download file a txt to the folder test from the working directory accessed by the ftp command ftp get a txt flash test b txt 227 Entering Passive Mode 10 153 116 114 11 151 150 C DOCUMENTS AND SETTINGS ADMINISTRATOR desk 125X a txt file ready to send 6324 bytes in IMAGE Binary mode 226...

Страница 98: ...ame verbose cdup help put reset close lcd pwd restart Display the help information for the dir command ftp help dir dir list contents of remote directory Related commands lcd Use lcd to display the local working directory of the FTP client Use lcd directory to change the local working directory of the FTP client to the specified directory Use lcd to change the local working directory of the FTP cl...

Страница 99: ...ecifies the file name or directory on the FTP server localfile Specifies the local file used to save the displayed information Usage guidelines You can perform this operation only after you log in to the FTP server In FTP client view executing the ls command is the same as executing the dir command Examples Display detailed information about the files and subdirectories under the current directory...

Страница 100: ...log in to the FTP server You must have permission to perform this operation on the FTP server Examples Create subdirectory newdir in the current directory of the remote FTP server ftp mkdir newdir 257 newdir directory created newer Use newer to update a local file by using a remote file on the FTP server Syntax newer remotefile localfile Views FTP client view Predefined user roles network admin Pa...

Страница 101: ...edefined user roles network admin Parameters server address Specifies the IP address or host name of the FTP server service port Specifies the TCP port number of the FTP server in the range of 0 to 65535 The default value is 21 Usage guidelines After you issue this command the system will prompt you to enter the username and password After you log in to one FTP server you must disconnect from the ...

Страница 102: ...to change between active and passive modes This command is mainly used together with a firewall to control FTP session establishment between private network users and public network users Examples Set the FTP operation mode to passive ftp passive Passive mode on ftp passive Passive mode off put Use put to upload a file on the client to the remote FTP server Syntax put localfile remotefile Views FT...

Страница 103: ...yte s Upload the file a txt in the folder test from the working directory accessed by the ftp command Save the file as b txt on the FTP server ftp put flash test a txt b txt 227 Entering Passive Mode 10 153 116 114 11 201 150 C DOCUMENTS AND SETTINGS ADMINISTRATOR desk 125X b txt file ready to receive in ASCII mode 226 Transfer finished successfully 1 bytes sent in 0 000522 seconds 1 9 kbyte s In ...

Страница 104: ... to the FTP server and return to user view Syntax quit Views FTP client view Predefined user roles network admin Examples Terminate the connection to the FTP server and return to user view ftp quit 221 Windows FTP Server WFTPD by Texas Imperial Software says goodbye Sysname Related commands bye reget Use reget to get the missing part of a file from the FTP server Syntax reget remotefile localfile ...

Страница 105: ...3 kbytes to download 226 File successfully transferred 39058742 bytes received in 66 2 seconds 576 1 kbyte s rename Use rename to rename a file Syntax rename oldfilename newfilename Views FTP client view Predefined user roles network admin Parameters oldfilename Specifies the original file name newfilename Specifies the new file name Usage guidelines You can perform this operation only after you l...

Страница 106: ... retransmit a file Syntax restart marker Views FTP client view Predefined user roles network admin Parameters marker Specifies the retransmit marker Usage guidelines You can perform this operation only after you log in to the FTP server Support for this command varies with FTP servers Examples Retransmit the file h c 82 bytes from 2 bytes ftp restart 2 restarting at 2 execute get put or append to ...

Страница 107: ...es You can perform this operation only after you log in to the FTP server Examples Display the FTP related commands supported by the FTP ftp rhelp 214 The following FTP commands are recognized USER PASS NOOP QUIT SYST TYPE HELP CWD XCWD PWD CDUP XCUP XPWD LIST NLST MLSD PORT EPRT PASV EPSV REST RETR STOR APPE DELE MKD XMKD RMD XRMD ABOR SIZE RNFR RNTO 4 UNIX Type L8 Table 12 Command output Field D...

Страница 108: ... IPv6 REST Restarts RETR Downloads files STOR Uploads files APPE Appends uploading DELE Deletes files MKD Creates folders XMKD Extended command with the meaning of MKD RMD Removes folders XRMD Extended command with the meaning of RMD ABOR Aborts the transmission SIZE Size of the transmission file RNFR Original name RNTO New name rmdir Use rmdir to permanently delete a directory on the FTP server S...

Страница 109: ... to display FTP server status Use rstatus remotefile to display detailed information about a specific directory or file on the FTP server Syntax rstatus remotefile Views FTP client view Predefined user roles network admin Parameters remotefile Specifies a directory or file on the FTP server Usage guidelines You can perform this operation only after you log in to the FTP server Support for this com...

Страница 110: ...re fast stable FTP version is 2 0 6 211 End of status End of the display of FTP server status Display file a txt ftp rstatus a txt 213 Status follows rw r r 1 0 0 80 Jul 18 02 58 a txt 213 End of status Table 14 Command output Field Description 213 Status follows Beginning of the display of the file where 213 specifies the FTP command rw r r The first bit specifies the file type Common B Block c C...

Страница 111: ...ng off Store unique off Receive unique off Case off CR stripping on Ntrans off Nmap off Hash mark printing off Use of PORT cmds on Table 15 Command output Field Description Connected to 192 168 1 56 IP address of the FTP server that is connected to the FTP client Verbose on Bell off Prompting on Globbing off Displays debugging information Store unique off Receive unique off The name of the file on...

Страница 112: ...ange to another user account after login Syntax user username password Views FTP client view Predefined user roles network admin Parameters username Specifies the username of the target user account password Specifies the password of the target user account Usage guidelines You can perform this operation only after you log in to the FTP server The username and password of the target user account m...

Страница 113: ...rent FTP session It is lost after the session is disconnected Examples Disable the device from displaying detailed information about FTP operations ftp verbose Verbose mode off Execute the get command ftp verbose Verbose mode off ftp get a txt Enable the device to display detailed information about FTP operations ftp verbose Verbose mode on Execute the get command ftp get a txt 227 Entering Passiv...

Страница 114: ...in Parameters command name Specifies a command supported by the FTP client Usage guidelines In FTP client view entering is the same as executing the help command Examples Display all commands supported by the FTP client ftp Commands may be abbreviated Commands are append delete ls quit rmdir ascii debug mkdir reget status binary dir newer rstatus system bye disconnect open rhelp user cd get passiv...

Страница 115: ...le before starting the download operation The existing file is permanently deleted even if the download operation fails put Uploads a file sget Downloads a file and saves the file to memory before writing it to the destination folder The system starts to write the file to the destination folder only after the file is downloaded and saved to memory successfully If the destination folder already has...

Страница 116: ...ource command The source address specified with the tftp client source command applies to all TFTP connections The source address specified with the tftp command applies only to the current TFTP connection Examples Download the new bin file from the TFTP server at 192 168 1 1 and save it as new bin Sysname tftp 192 168 1 1 get new bin Press CTRL C to abort Total Received Xferd Average Speed Time T...

Страница 117: ...kets It must be the IPv4 address of an interface in up state Otherwise the transmission fails Usages guidelines If you execute this command multiple times the most recent configuration takes effect The source address specified with the tftp command takes precedence over the source address specified with the tftp client source command The source address specified with the tftp client source command...

Страница 118: ...2000 to 2999 Usages guidelines You can use an ACL to deny or permit the device s access to specific TFTP servers Examples Allow the device to access only the TFTP server at 1 1 1 1 Sysname System view Sysname acl number 2000 Sysname acl basic 2000 rule permit source 1 1 1 1 0 Sysname acl basic 2000 quit Sysname tftp server acl 2000 ...

Страница 119: ...ned user roles network admin Parameters directory Specifies the name of the destination directory in the format drive path For more information about how to enter the drive and path arguments see Fundamentals Configuration Guide If no drive information is provided the argument represents a folder or subfolder in the current directory Returns to an upper directory If the current working directory i...

Страница 120: ...he current working directory 1 View the chassis numbers and slot numbers of MPUs Sysname display irf Member Slot Role Priority CPU Mac 2 16 Standby 20 00e0 fc0f 8c0f 2 17 Standby 20 00e0 fc0f 8c1f 3 16 Master 20 00e0 fc0f 8c22 3 17 Standby 20 00e0 fc0f 8c32 indicates the device is the master indicates the device through which the user logs in The Bridge MAC of the IRF is 00e0 fc00 0a00 Auto upgrad...

Страница 121: ...TP server and save it locally To specify a file or directory use the following guidelines Location Name format Remarks On the device Use the file name guidelines in Fundamentals Configuration Guide N A On an FTP server Enter the URL in the format ftp FTP username password server address port number file path file name The username and password must be the same as those configured on the FTP server...

Страница 122: ...ne Copy test cfg from the working directory on TFTP server 1 1 1 1 and save it to the local current folder as testbackup cfg Sysname copy tftp 1 1 1 1 test cfg testbackup cfg Copy tftp 1 1 1 1 test cfg to flash testbackup cfg Y N y Copying file tftp 1 1 1 1 test cfg to flash testbackup cfg Done Copy test cfg from the current folder and save it to the working directory on TFTP server 1 1 1 1 as tes...

Страница 123: ...hat have the same name but reside in different directories both files are retained in the recycle bin If you successively delete two files that have the same name from the same directory only the file deleted last is retained in the recycle bin Examples In standalone mode remove file 1 cfg from the active MPU s flash root directory Sysname delete 1 cfg Delete flash 1 cfg Y N y Deleting file flash ...

Страница 124: ...r Use dir to display files or folders Syntax dir all file url all filesystems Views User view Predefined user roles network admin Parameters all Displays all files and folders in the current directory visible or hidden If you do not specify this option only visible files and folders are displayed file url Displays a specific file or folder The file url argument can use the asterisk as a wildcard F...

Страница 125: ...ir all In IRF mode display information about all files and folders on the global active MPU s storage media Sysname dir all Directory of flash In IRF mode display files and folders in the root directories of every storage medium in the IRF fabric Sysname dir all filesystems Directory of flash Directory of chassis1 slot1 flash In IRF mode display information about all files and folders in the stora...

Страница 126: ...ser roles network admin Parameters medium name Specifies the name of the storage medium to be partitioned partition number Specifies the number of partitions in the range of 1 to 4 Usage guidelines The Flash cannot be partitioned If the partition number argument is specified the storage medium is divided into the specified number of partitions Otherwise partitioning is performed in an interactive ...

Страница 127: ...32MB 96MB 128MB Press CTRL C to quit or Enter to use all available space 31 Enter 31 to set the size of the second partition to 31 MB The partition size must be greater than or equal to 32MB Partition 2 32MB 96MB 128MB Press CTRL C to quit or Enter to use all available space 1000 Enter 1000 to set the size of the second partition to 1000 MB The partition size must be less than or equal to 128MB Pa...

Страница 128: ...r operations Usage guidelines In quiet mode the system does not prompt for confirmation when a user performs a file or folder operation The alert mode provides an opportunity to cancel a disruptive operation Examples Set the file and folder operation mode to alert Sysname system view Sysname file prompt alert fixdisk Use fixdisk to check a storage medium for damage and repair any damage Syntax fix...

Страница 129: ...ium permanently deletes all files on the storage medium If a startup configuration file exists on the storage medium back it up if necessary To format a partitioned storage medium you must format the partitions individually You cannot use the format usb command to format the medium as a whole You can format a storage medium only when no one is accessing the medium Examples Format the Flash Sysname...

Страница 130: ...12 10 18 53 system bin gz 472972 KB total 472840 KB free 2 Decompress the file system bin gz Sysname gunzip system bin gz Decompressing file system bin gz Done 3 Verify the decompress operation Sysname dir system Directory of flash 1 rw 0 May 30 2012 11 42 25 system bin 472972 KB total 472844 KB free gzip Use gzip to compress a file Syntax gzip filename Views User view Predefined user roles networ...

Страница 131: ...to calculate the digest of a file Syntax md5sum file url Views User view Predefined user roles network admin network operator Parameters file url Specifies the name of a file Usage guidelines The digest can be used to verify the integrity of the file For example you can use this command to calculate the digest of a software image file and compare it with that provided on the HP website to identify...

Страница 132: ... the test subtest folder in the current directory Sysname mkdir test subtest Creating directory flash test subtest Done In standalone mode create the test folder on the flash memory of the standby MPU in slot 16 Sysname mkdir slot16 flash test Creating directory slot16 flash test Done In IRF mode create the test folder on the global active MPU Sysname mkdir test Creating directory flash test Done ...

Страница 133: ...re slot16 flash testcfg cfg version 7 1 045 Ess 1105 sysname Sysname telnet server enable More In IRF mode display the contents of the testcfg cfg file on the flash memory of the global standby MPU that resides in slot 16 of member device 2 Sysname more chassis2 slot16 flash testcfg cfg version 7 1 045 Ess 1105 sysname Sysname telnet server enable More In IRF mode display the contents of the testc...

Страница 134: ...r cards Performing an active standby switchover in standalone mode Performing a switchover between the global active MPU and a global standby MPU in IRF mode To mount a partitioned storage medium you must mount all the partitions individually instead of mounting the storage medium as a whole Examples In standalone mode mount a USB disk on the active MPU Sysname mount usb0 In standalone mode mount ...

Страница 135: ...the flash test sample txt file to flash and save it as 1 txt Sysname move test sample txt 1 txt Move flash test sample txt to flash 1 txt Y N y Moving file flash test sample txt to flash 1 txt Done Move the b cfg file to the folder test2 Sysname move b cfg test2 Move flash b cfg to flash test2 b cfg Y N y Moving file flash b cfg to flash test2 b cfg Done pwd Use pwd to display the current working ...

Страница 136: ...cycle bin to delete files from the recycle bin Syntax reset recycle bin force Views User view Parameters force Deletes all files in the recycle bin without prompting for confirmation If you do not specify this option the command prompts you to confirm the deletion Usage guidelines The delete file url command only moves a file to the recycle bin To permanently delete the file use the reset recycle ...

Страница 137: ...ust delete all files and subfolders in the directory permanently or move them to the recycle bin If you move them to the recycle bin executing the rmdir command permanently deletes them Examples Remove the subtest folder Sysname rmdir subtest Remove directory flash test subtest and the files in the recycle bin under this directory will be deleted permanently Continue Y N y Removing directory flash...

Страница 138: ...ving them archive file fileurl dest Specifies the archive file name If you specified the gz keyword the suffix of this argument must be tar gz If you did not specify the gz keyword the suffix of this argument must be tar verbose Displays the names of the successfully archived files and folders source fileurl source list 1 5 Specifies the files and folders to be archived The fileurl source list arg...

Страница 139: ...fy the screen keyword or the to directory name option the command extracts the archived files and folders and saves them to the same folder as the archive file Examples Extract files and folders and save them to the same folder as the archive file Sysname tar extract archive file a tar gz Extracting archive a tar gz Done Extract files and folders and display their content on the screen Sysname tar...

Страница 140: ...y the names of archived files and folders Sysname tar list archive file a tar gz a cfg Related commands tar create tar extract umount Use umount to unmount a hot swappable storage medium Syntax umount medium name Default A storage medium is automatically mounted and placed in mounted state Views User view Predefined user roles network admin Parameters medium name Specifies the name of a storage me...

Страница 141: ...ctive MPU Sysname umount usb0 In standalone mode unmount a USB disk from the standby MPU in slot 16 Sysname umount slot16 usb0 In IRF mode unmount a USB disk from the global active MPU Sysname umount usb0 In IRF mode unmount a USB disk from the global standby MPU that resides in slot 17 of member device 2 Sysname umount chassis2 slot17 usb0 Related commands mount undelete Use undelete to restore a...

Страница 142: ...e flash seclog directory to the recycle bin Method 1 Sysname undelete seclog startup cfg Undelete flash seclog startup cfg Y N y Undeleting file flash seclog startup cfg Done Sysname Method 2 Sysname cd seclog Sysname undelete startup cfg Undelete flash seclog startup cfg Y N y Undeleting file flash seclog startup cfg Done ...

Страница 143: ...aracters Valid characters include letters digits hyphens underscores _ and dots dest filename Specifies the target file name used for saving the file on the server The file name must use the cfg extension If you do not specify a target file name the source file name is used Usage guidelines This command is not supported in FIPS mode Examples Back up the main next startup configuration file to the ...

Страница 144: ...view Sysname configuration encrypt public key display current configuration Use display current configuration to display the running configuration Syntax display current configuration configuration module name interface interface type interface number Views Any view Predefined user roles network admin network operator Parameters configuration module name Displays feature configuration The module n...

Страница 145: ...ator return Display Ethernet interface configuration Sysname display current configuration interface fortygige 1 0 1 interface FortyGigE1 0 1 port link mode route return display current configuration diff Use display current configuration diff to display the configuration differences between the current startup configuration file and the next startup configuration file Syntax display current confi...

Страница 146: ...of the different command line in the next startup configuration file linenumber2 represents the line number of the different command line in the current startup configuration file number1 represents the total number of lines excerpted from the next startup configuration file for comparison The lines help you further locate the difference number2 represents the total number of lines excerpted from ...

Страница 147: ...ame d startup configuration display diff startup configuration configfile file name d current configuration Views Any view Predefined user roles network admin network operator Parameters configfile file name s Specifies the source configuration file for comparison configfile file name d Specifies the target configuration file for comparison current configuration Specifies the current startup confi...

Страница 148: ...Display the configuration differences between test cfg and testsys cfg Sysname display diff configfile test cfg configfile testsys cfg flash test cfg flash testsys cfg 6 7 6 7 stp global enable sysname test sysname test1 telnet server enable Display the configuration differences between test cfg and testsys cfg on the master and subordinate devices in an IRF fabric Sysname display diff configfile ...

Страница 149: ...nes help you further locate the difference number2 represents the total number of lines excerpted from the target configuration file for comparison The lines help you further locate the difference cmd cmd Different command lines in the compared configuration files The command line in the source configuration file is prefixed with a minus sign The command line in the target configuration file is pr...

Страница 150: ...ckup file 3 If both the main and backup startup configuration files are not available this command does not display anything Examples Display the contents of the configuration file for the next system startup Sysname display saved configuration Version 7 1 045 Ess 1105 sysname Sysname telnet server enable More Related commands reset saved configuration save display startup Use display startup to d...

Страница 151: ...flash startup cfg Next backup startup saved configuration file NULL Slot 16 Current startup saved configuration file flash startup cfg Next main startup saved configuration file flash startup cfg Next backup startup saved configuration file NULL Table 20 Command output Field Description MainBoard Displays the startup configuration files on the active MPU Current startup saved configuration file Co...

Страница 152: ...s startup saved configuration display this Use display this to display the running configuration in the current view Syntax display this Views Any view Predefined user roles network admin network operator Usage guidelines Use this command to verify the configuration you have made in a certain view Typically this command does not display parameters that are set to their default settings For some pa...

Страница 153: ...y deletes the next startup configuration files from both MPUs In IRF mode this command permanently deletes the next startup configuration files on all MPUs in the IRF fabric Delete a next startup configuration file if it is corrupted or does not match the software version You can delete the main the backup or both To delete a file that is set as both main and backup next startup configuration file...

Страница 154: ...ard Configuration file is cleared Chassis 2 Slot 16 Erase next configuration file successfully Related commands display saved configuration restore startup configuration Use restore startup configuration to download a configuration file from a TFTP server and specify it as the main next startup configuration file Syntax restore startup configuration from tftp server src filename Views User view Pr...

Страница 155: ...2 2 Please wait finished Now restoring the next startup configuration file from main board to backup board Please wait finished In IRF mode Download the configuration file config cfg from the TFTP server at 2 2 2 2 and specify the file as the main next startup configuration file Sysname restore startup configuration from 2 2 2 2 config cfg Restoring the next startup configuration file from 2 2 2 2...

Страница 156: ...is number slot slot number Saves the running configuration to an MPU If you do not specify this option or the all keyword the command saves the running configuration only to the global active MPU In IRF mode safely Saves the configuration file in safe mode If this keyword is not specified the device saves the configuration file in fast mode Safe mode is slower than fast mode but more secure In saf...

Страница 157: ...t configuration will be saved to flash backup cfg Continue Y N y Now saving current configuration to the device Saving configuration flash backup cfg Please wait Configuration is saved to flash successfully Save the running configuration to the main next startup configuration file without any confirmation required Sysname save force Validating file Please wait Configuration is saved to device succ...

Страница 158: ...saved configuration Default No configuration file is specified for the next startup Views User view Predefined user roles network admin Parameters cfgfile Specifies the name of a cfg file This cfg file must already exist in the root directory of the default storage medium backup Specifies the configuration file as the backup next startup configuration file main Specifies the configuration file as ...

Страница 159: ... up with the initial settings In an IRF fabric the device leaves the IRF fabric at startup and runs the initial settings If neither backup nor main is specified the startup saved configuration command specifies the main next startup configuration file Even though the main and backup next startup configuration files can be the same one specify them as separate files for high availability The undo s...

Страница 160: ...sh base filename bin format The file path must not include the chassis ID or slot ID feature feature package Specifies a space separated list of up to 30 bin feature image files Each feature image file name must be a case insensitive string The file names must use the flash base filename bin format The file path must not include the chassis ID or slot ID ipe filename Specifies an ipe Comware image...

Страница 161: ...name as the upgrade file already exists you must choose whether to overwrite the existing file The boot loader file command overwrites the entire startup software image list To add new startup feature images specify all feature image files including feature image files in the old startup software image list The new startup software image list will contain only the feature image files that are spec...

Страница 162: ...rtup images from the global active MPU to a standby MPU Syntax In standalone mode boot loader update all slot slot number In IRF mode boot loader update all chassis chassis number slot slot number Views User view Predefined user roles network admin Parameters all Upgrades the standby MPU In standalone mode all Upgrades all standby MPUs in the IRF fabric In IRF mode slot slot number Specifies the s...

Страница 163: ...Continue Y N y Updating Please wait Copying main startup software images to slot 16 Please wait Done Setting copied images as main startup software images for slot 16 Done Successfully updated the startup software images of slot 16 In IRF mode synchronize startup images from the global active MPU to the MPU in slot 16 on IRF member device 1 Sysname boot loader update chassis 1 slot 16 This command...

Страница 164: ...ge is stored in the Normal area and backed up to the Backup area At startup the system reads the BootWare image automatically from the Normal area If the image is inaccessible the system reads the BootWare image from the Backup area If the BootWare image in the Normal area is corrupted or requires a version rollback use the bootrom restore command to copy the BootWare image in the Backup area to t...

Страница 165: ... mode restore the entire BootWare image Sysname bootrom restore chassis 1 slot 17 This command will restore the Boot ROM file Continue Y N y Now restoring the Boot ROM please wait Done Related commands bootrom backup bootrom update Use bootrom update to load the BootWare image in a storage medium to the Normal area of BootWare Syntax In standalone mode bootrom update file file url slot slot number...

Страница 166: ...storage medium after completing the BootWare image upgrade Examples In standalone mode use the file a bin to upgrade the BootWare image Sysname bootrom update file flash a bin slot 17 This command will update the Boot ROM file on the specified board s Continue Y N y Now updating the Boot ROM please wait Done In IRF mode use the file a bin to upgrade the BootWare image Sysname bootrom update file f...

Страница 167: ...PU If you do not specify an MPU this command displays the software images on each MPU In standalone mode chassis chassis number slot slot number Specifies an IRF member device or an MPU in an IRF member device The chassis number argument represents the IRF member ID of the device The slot number argument represents the slot number of the MPU on the device If you do not specify an IRF member device...

Страница 168: ... slot Software images on chassis chassis id slot slot number In IRF mode this field displays the Comware images on a specific MPU The chassis ID represents the IRF member ID and the slot number represents the MPU s slot number Current software images Comware images that have been loaded Main startup software images Main Comware images for the next startup Backup startup software images Backup Comw...

Страница 169: ...nter to output the synchronization status to configuration terminals see Network Management and Monitoring Configuration Guide Examples Enable software auto update for the standby MPU Sysname system view Sysname version auto update enable Related commands version check ignore version check ignore Use version check ignore to disable startup software version check for the standby MPU at startup Use ...

Страница 170: ...for the standby MPU unless for software upgrade To make sure the standby MPU always runs the same software images as the active MPU configure both the version auto update enable command and the undo version check ignore command Examples Enable startup software version check for the standby MPU Sysname system view Sysname undo version check ignore Related commands version auto update enable ...

Страница 171: ...Displays detailed information If you do not specify this keyword the command displays only the names of the active software images Examples Display active software images Sysname display install active Active packages on chassis 1 slot 17 flash boot bin flash system bin Display detailed information about active software images Sysname display install active verbose Active packages on chassis 1 slo...

Страница 172: ...m slot n Active software images on the card in the specified slot of the specified member Package Detailed information about the software image Service name Image type boot Boot image system System image boot patch Patch image for the boot image system patch Patch image for the system image Supported board Cards supported by the software image the values vary with device models mpu MPU lpu Service...

Страница 173: ...mages and image sets see Fundamental Configuration Guide Examples Display the main startup software images Sysname display install committed Committed packages on chassis 1 slot 17 flash boot E1133 bin flash system E1133 bin Display detailed information about main startup software images Sysname display install committed verbose Committed packages on chassis 1 slot 17 flash boot E1133 bin Package ...

Страница 174: ...y install ipe info ipe filename Views Any view Predefined user roles network admin network operator Parameters ipe filename Specifies the name of an ipe file in the global active MPU s Flash root directory in the format flash xxx ipe or the name of an ipe file in a global standby MPU s Flash root directory in the format chassismslotn flash xxx ipe for example chassis1slot17 flash a ipe It can be a...

Страница 175: ...flash xxx bin for example chassis1slot17 flash a bin It can be a case insensitive string of 1 to 63 characters all Specifies all software image files in the root directories of the storage media on the master s active MPU verbose Displays detailed information If you do not specify this keyword the command displays only basic software image information Examples Display information about software im...

Страница 176: ...n the ongoing ISSU process The current remaining rollback time might be greater than the configured automatic rollback interval Examples Display automatic rollback timer information after the issu run switchover command is executed Sysname display issu rollback timer Rollback timer Working Rollback interval 45 minutes Rollback time remaining 40 minutes Display automatic rollback timer information ...

Страница 177: ... Current upgrading slot None Current version list boot 7 1 045 E1133 system 7 1 045 E1133 Current software images flash boot bin flash system bin Table 24 Command output Field Description ISSU state ISSU status Init The ISSU process has not started or has finished Loading The system is executing the issu load command Loaded The issu load command is completed Switching The system is executing the i...

Страница 178: ...ncompatible version the value of this field is Unknown Previous software images Software images running on the device before the ISSU If you execute this command on an original standby MPU during an ISSU for an incompatible version the value of this field is Unknown Upgrade version list Software versions to upgrade to If you execute this command on an original standby MPU during an ISSU for an inc...

Страница 179: ...ity information of the running software versions If you specify one or more file names the command displays the compatibility information of the specified software images Examples Display the compatibility information of flash boot e1 133 bin flash system e1 133 bin Sysname display version comp matrix file boot flash boot e1133 bin system flash system e1133 bin feature flash feature e1133 bin Veri...

Страница 180: ...e in the IRF fabric This field is displayed only for compatible versions in IRF mode Slot Slot number of the card This field is displayed only for compatible versions Upgrade Way ISSU method to be used for a compatible version Service Upgrade Service level incremental upgrade File Upgrade File level incremental upgrade ISSU Reboot Reboots CPUs to complete the upgrade Reboot Reboots the entire devi...

Страница 181: ...he specified files are not saved on the security engine to be upgraded the command copies the images to the security engine automatically In standalone mode follow these guidelines If you specify the active MPU the command takes effect on the active MPU and all LPUs If you specify the standby MPU the command takes effect only on the standby MPU In IRF mode follow these guidelines If you specify th...

Страница 182: ...storage medium on the master s active MPU in the format storage medium name for example flash or the name of a storage medium on any other MPU in the format chassism slotn storage medium name for example chassis1 slot1 flash Usage guidelines The software images decompressed from the ipe file will be saved to the root directory of the specified medium To view which software images are included in a...

Страница 183: ...in Parameters patch Specifies a patch image file filename Specifies the file path of a bin patch image file a case insensitive string The file must be stored in the root directory of a storage medium on an MPU The maximum length is 63 characters for the storage medium base filename bin segments of the file path For more information about specifying a file path see Managing the file system all Spec...

Страница 184: ...hout executing this command Examples Accept the upgrade Sysname issu accept Related commands issu load issu run switchover issu commit Use issu commit to complete an ISSU upgrade Syntax issu commit chassis chassis number Views User view Predefined user roles network admin Parameters chassis chassis number Specifies the member ID of the original master Usage guidelines This command ends the ISSU pr...

Страница 185: ...ilename system filename chassis chassis number issu load file ipe ipe filename chassis chassis number Views User view Predefined user roles network admin Parameters boot Specifies a boot image file system Specifies a system image file filename Specifies the name of a software image file in the root directory of the global active MPU s Flash in the format flash xxx bin It can be a case insensitive ...

Страница 186: ...uration lost Continue Y N y Verifying image file flash version e1133 ipe on slot 16 Done Decompressing file BOOT E1133 bin to flash BOOT E1133 bin Done Decompressing file SYSTEM E1133 bin to flash SYSTEM E1133 bin Done Decompression completed Do you want to delete flash version e1133 ipe now Y N n Upgrade summary according to following table flash BOOT E1133 bin Running Version New Version Release...

Страница 187: ...eboots automatically When an ISSU is in Committing state rollback is not supported A rollback performed for a multichassis IRF fabric after you execute the issu run switchover command cancels only the upgrades The master subordinate switchover operation is not canceled Examples Roll back to the original software versions Sysname issu rollback This command will quit the ISSU process and roll back t...

Страница 188: ...name issu rollback timer 50 Related commands issu rollback issu run switchover Use issu run switchover to perform a master subordinate switchover Syntax issu run switchover Views User view Predefined user roles network admin Usage guidelines The issu load command splits the IRF fabric into two fabrics with the upgraded member forming a new fabric The issu run switchover command reboots and upgrade...

Страница 189: ...ve standby MPU switchover Upgrading software images to compatible versions Continue Y N y Table 27 Command output Field Description Switchover Way Switchover method Active standby process switchover Switch from the active process to the standby process Global active standby MPU switchover Switch from the global active MPU to a global standby MPU For more information about the command output see Ta...

Страница 190: ...ate Specifies a date in the format MM DD YYYY or YYYY MM DD The YYYY value is in the range of 2000 to 2035 the MM value is in the range of 1 to 12 and the value range for DD depends on the month value Usage guidelines The UTC time together with the local time zone and daylight saving time determines the system time You can use the display clock command to view the system time A correct system time...

Страница 191: ...hange the system time at the CLI You must configure NTP to get the system time For more information about NTP see Network Management and Monitoring Configuration Guide Usage guidelines If you configure this command multiple times the most recent configuration takes effect Examples Configure the device to use the NTP time source Sysname system view Sysname clock protocol ntp clock summer time Use c...

Страница 192: ...econds segment is 0 hh mm 00 you can omit it If both the minutes and seconds segments are 0 hh 00 00 you can omit both of the segments For example to specify 08 00 00 you can enter 8 end date Specifies the end date in one of the following formats MM DD The MM value is in the range of 1 to 12 and the value range for DD depends on the month value month week date where month Takes January February Ma...

Страница 193: ...zone offset Specifies an offset to the UTC time in the format hh mm ss The hh value is in the range of 0 to 23 the mm value is in the range of 0 to 59 and the ss value is in the range of 0 to 59 The leading zero in a segment can be omitted If the seconds segment is 0 hh mm 00 you can omit it If both the minutes and seconds segments are 0 hh 00 00 you can omit both of the segments For example to sp...

Страница 194: ...job are uniquely identified by their IDs A command with a smaller ID is executed earlier If a command uses the ID of an existing command the existing command is replaced A job cannot contain any of these commands telnet ftp ssh2 or monitor process The system does not check the validity of the command argument You must make sure the command is supported by the device is input in the correct format ...

Страница 195: ...t info enable When a Telnet user logs in the following statement appears Copyright c 2010 2015 Hewlett Packard Development Company L P Without the owner s prior written consent no decompiling or reverse engineering shall be allowed Sysname When a console user quits user view the following message appears the device automatically tries to restart the console session Copyright c 2010 2015 Hewlett Pa...

Страница 196: ...ies a test by its name a case insensitive string of 1 to 31 characters Usage guidelines This command is available only when the device operates in standalone mode Before you execute this command start the device with factory defaults and verify that no service ports are connected to any cables and transceiver modules After you execute this command you must reboot the device Examples Run a global o...

Страница 197: ...the alarm information for all cards in the IRF fabric In IRF mode Examples In standalone mode Display alarm information Sysname display alarm Slot Level Info ERROR Fan 1 is faulty INFO Power 1 is absent Table 28 Command output Field Description Slot Slot number of the card with an alarm If the value is a hyphen the alarm was generated by the chassis In standalone mode Level Alarm severity Possible...

Страница 198: ...Syntax display clock Views Any view Predefined user roles network admin network operator Examples Display the system time and date when the local time zone is not specified Sysname display clock 10 09 00 UTC Fri 03 16 2012 Display the system time and date when the local time zone Z5 is specified Sysname display clock 15 10 00 Z5 Fri 03 16 2012 Time Zone Z5 add 05 00 00 Display the system time and ...

Страница 199: ...s Any view Predefined user roles network admin network operator Parameters slot slot number Specifies a card by its slot number If you do not specify this option the command displays the CPU usage statistics for all cards In standalone mode chassis chassis number slot slot number Specifies a card on an IRF member device by its slot number and the member ID If you do not specify this option the com...

Страница 200: ...nute 0 in last 5 minutes In IRF mode display the current CPU usage statistics for all cards Sysname display cpu usage Chassis 1 Slot 4 CPU 0 CPU usage 10 in last 5 seconds 10 in last 1 minute 10 in last 5 minutes Chassis 1 Slot 10 CPU 0 CPU usage 9 in last 5 seconds 9 in last 1 minute 9 in last 5 minutes Chassis 1 Slot 11 CPU 0 CPU usage 9 in last 5 seconds 9 in last 1 minute 9 in last 5 minutes C...

Страница 201: ...r roles network admin Parameters slot slot number Specifies a card by its slot number If you do not specify this option the command displays the CPU usage monitoring configuration on the active MPU In standalone mode cpu cpu number Specifies a CPU by its number The cpu number argument can only be 0 chassis chassis number slot slot number Specifies a card on an IRF member device If you do not speci...

Страница 202: ...r device by its slot number and the member ID If you do not specify this option this command displays the historical CPU usage statistics for all cards in the IRF fabric In IRF mode cpu cpu number Displays the historical CPU usage statistics The cpu number argument can only be 0 Usage guidelines The system regularly collects CPU usage statistics and saves the statistics in the history record area ...

Страница 203: ...for the entire system with the name SYSTEM in the last 60 minutes 5 12 minutes ago 10 13 minutes ago 15 14 minutes ago 10 15 minutes ago 5 16 and 17 minutes ago 10 18 minutes ago 5 19 minutes ago 2 or lower than 2 Other time Display the historical CPU usage statistics for process 1 Sysname display cpu usage history job 1 100 95 90 85 80 75 70 65 60 55 50 45 40 35 30 25 20 ...

Страница 204: ...les network admin network operator Parameters flash Specifies a Flash If you do not specify this keyword the command displays information about all cards on the device slot slot number Specifies a card by its slot number In standalone mode chassis chassis number Specifies an IRF member device by its member ID If you do not specify this option the command displays hardware information about all IRF...

Страница 205: ...escription Slot No Slot number of the card Brd Type Hardware type of the card Brd State Card status Standby The card is the standby MPU Master The card is the active MPU Absent The slot is not installed with a card Fault The card is faulty and cannot start up Normal The card is operating correctly Subslot Maximum number of subcards that the card supports The switch does not support subcards Sft Ve...

Страница 206: ... 2 12 NONE Absent 0 NONE None 2 13 NONE Absent 0 NONE None 2 14 NONE Absent 0 NONE None 2 15 NONE Absent 0 NONE None 2 16 NONE Absent 0 NONE None 2 17 LSX1SUP16A1 Standby 0 12900 1135 None The output shows that the IRF fabric has two member devices The card in slot 17 on member device 1 is the global active MPU The card in slot 17 on member device 2 is the global standby MPU Table 32 Command outpu...

Страница 207: ...pecify the chassis chassis number option If you specify the chassis chassis number option but do not specify the slot slot number option the command displays electronic label information for all cards on the specified member An electronic label is a profile for a device or card and contains the permanent configuration including the serial number manufacturing date MAC address and vendor name The d...

Страница 208: ... JG631A DEVICE_SERIAL_NUMBER 210231S902 MAC_ADDRESS 0004 7679 0A20 MANUFACTURING_DATE 2013 05 06 VENDOR_NAME HP Power 1 DEVICE_NAME HP 12900 2000W AC Power Supply JF429A DEVICE_SERIAL_NUMBER 210231AHHN MAC_ADDRESS 0000 FE91 3456 MANUFACTURING_DATE 2012 08 14 VENDOR_NAME HP Power 3 DEVICE_NAME HP 12900 2000W AC Power Supply JF429A DEVICE_SERIAL_NUMBER LBLNPW12S1 MAC_ADDRESS 0000 FE91 3456 MANUFACTU...

Страница 209: ... VENDOR_NAME HP Fan 2 DEVICE_NAME HP FlexFabric 12910 Spare Fan Assembly JG631A DEVICE_SERIAL_NUMBER 210231SF02 MAC_ADDRESS 0004 7679 0A20 MANUFACTURING_DATE 2013 05 06 VENDOR_NAME HP Power 1 DEVICE_NAME HP 12900 2000W AC Power Supply JF429A DEVICE_SERIAL_NUMBER 2102310HHN MAC_ADDRESS 0000 FE91 3456 MANUFACTURING_DATE 2012 08 14 VENDOR_NAME HP Power 3 DEVICE_NAME HP 12900 2000W AC Power Supply JF4...

Страница 210: ...manuinfo fan 2 Fan 2 DEVICE_NAME LSXE110FAN DEVICE_SERIAL_NUMBER 21031S679F MAC_ADDRESS 0004 7679 0A20 MANUFACTURING_DATE 2013 05 06 VENDOR_NAME HP In IRF mode display the electronic label information of fan 2 on IRF member device 1 Sysname display device manuinfo chassis 1 fan 2 Chassis 1 Fan 2 DEVICE_NAME LSXE110FAN DEVICE_SERIAL_NUMBER 21023S679F MAC_ADDRESS 0004 7679 0A20 MANUFACTURING_DATE 20...

Страница 211: ...lay the electronic label information of power supply 2 on IRF member device 1 Sysname display device manuinfo chassis 1 power 2 Chassis 1 Power 2 DEVICE_NAME LSTM2PSRA DEVICE_SERIAL_NUMBER 21031A0HHN MANUFACTURING_DATE 2012 08 11 VENDOR_NAME HP display diagnostic content Use display diagnostic content to display global on demand diagnostic test configuration Syntax In standalone mode display diagn...

Страница 212: ...ame display diagnostic content slot 16 verbose Diagnostic test suite attributes B Bootup test NA O Ondemand test NA M Monitoring test NA D Disruptive test Non disruptive test P Per port test NA A I Monitoring test is active Monitoring test is inactive NA Slot 16 Test name IPCMonitor Test attributes M PA Test interval 00 01 00 Min interval 00 01 00 Correct action NA Description A Real time test dis...

Страница 213: ...e related operating statistics infrastructure Displays operating statistics for the fundamental modules l2 Displays operating statistics for the Layer 2 features l3 Displays operating statistics for the Layer 3 features service Displays operating statistics for upper layer features filename Specifies a tar gz file to save the statistics to the file Usage guidelines For diagnostics or troubleshooti...

Страница 214: ...erature values Syntax In standalone mode display environment slot slot number In IRF mode display environment chassis chassis number slot slot number Views Any view Predefined user roles network admin network operator Parameters chassis chassis number Specifies an IRF member device by its member ID In IRF mode slot slot number Specifies a card by its slot number Usage guidelines In standalone mode...

Страница 215: ...nformation degree centigrade Chassis Slot Sensor Temperature Lower Warning Alarm Shutdown 1 4 hotspot 1 40 0 75 90 95 1 4 hotspot 2 46 0 75 90 95 1 4 hotspot 3 43 0 75 90 95 1 10 hotspot 1 43 0 75 90 95 1 10 hotspot 2 40 0 75 90 95 1 10 hotspot 3 42 0 75 90 95 1 17 inflow 1 42 0 57 72 77 1 17 hotspot 1 43 0 76 88 93 1 17 hotspot 2 40 0 76 88 93 2 4 hotspot 1 40 0 75 90 95 2 4 hotspot 2 46 0 75 90 ...

Страница 216: ...n MPU on an IRF member device The chassis number argument represents the member ID of the IRF member device The slot number argument represents the slot number of the MPU If you do not specify this option the command displays the directory for saving core files on the global active MPU In IRF mode cpu cpu number Specifies a CPU by its number Examples In standalone mode display the directory for sa...

Страница 217: ...n IRF mode fan id Specifies a fan by its ID Examples Display the operating states of all fans Sysname display fan Fan tray 1 Status Absent Fan tray 2 Status Normal Fan number 5 Fan mode Auto Airflow Direction Back to front Fan Status Speed rpm 1 Normal 7142 2 Fault 3546 3 Normal 1665 4 Fault 3578 5 Normal 1660 display memory Use display memory to display memory usage Syntax In standalone mode disp...

Страница 218: ...ry is measured in KB Slot 4 Total Used Free Shared Buffers Cached FreeRatio Mem 3415304 830292 2585012 0 0 13132 75 7 Buffers Cache 817160 2598144 Swap 0 0 0 Slot 10 Total Used Free Shared Buffers Cached FreeRatio Mem 1366400 506312 860088 0 0 13132 62 9 Buffers Cache 493180 873220 Swap 0 0 0 Slot 17 Total Used Free Shared Buffers Cached FreeRatio Mem 8143312 1168820 6974492 0 68 304148 85 6 Buffe...

Страница 219: ...cription Mem Memory usage information Total Total size of the physical memory space that can be allocated The memory space is virtually divided into two parts Part 1 is solely used for kernel codes and kernel management Part 2 can be allocated and used for such tasks as running service modules and storing files The size of part 2 equals the total size minus the size of part 1 Used Used physical me...

Страница 220: ... member ID If you do not specify this option the command displays the memory alarm thresholds and statistics for the global active MPU In IRF mode cpu cpu number Specifies a CPU by its number The cpu number argument must be 0 Usage guidelines For more information about memory alarms see log information containing MEM_EXCEED_THRESHOLD or MEM_BELOW_THRESHOLD Examples Display memory alarm thresholds ...

Страница 221: ...ower supply information Syntax In standalone mode display power power id In IRF mode display power chassis chassis number power id Views Any view Predefined user roles network admin network operator Parameters chassis chassis number Specifies an IRF member device by its member ID If you do not specify this option the command displays power supply information on all IRF member devices In IRF mode p...

Страница 222: ...n information for all jobs Examples Display the configuration information for all jobs Sysname display scheduler job Job name saveconfig copy startup cfg backup cfg Job name backupconfig Job name creat VLAN100 system view vlan 100 The output shows that the device has three jobs the first has one command the second has no command and the third has two commands Jobs are separated by blank lines disp...

Страница 223: ...le in bytes Schedule name Schedule to which the job belongs Execution time Time when the job was started Completion time Time when the job was completed If the job has never been executed or the job has no commands this field is blank Job output Commands in the job and their output Related commands reset scheduler logfile display scheduler reboot Use display scheduler reboot to display the automat...

Страница 224: ...c 27 10 44 42 2011 Last completion time Tue Dec 27 10 44 47 2011 Execution counts 1 Job name Last execution status shutdown Successful Table 36 Command output Field Description Schedule type Execution time setting of the schedule If no execution time is specified this field is not displayed Start time Time to execute the schedule for the first time If no execution time is specified this field is n...

Страница 225: ...te the display scheduler logfile command display statistic mode Use display statistic mode to display the current packet statistics collection mode Syntax display statistic mode Views Any view Predefined user roles network admin network operator Examples Display the current packet statistics collection mode Sysname display statistic mode The packet statistic mode is vsi Related commands statistic ...

Страница 226: ...iver module Usage guidelines Table 37 describes some common transceiver alarms If no error occurs None is displayed Table 37 Common transceiver alarms Field Remarks REFCLK Reference clock RX Received TX Transmitted TX bias high The transmitted bias current is high TX bias low The transmitted bias current is low Temp high The temperature is high Temp low The temperature is low Transceiver type and ...

Страница 227: ...ned user roles network admin network operator Parameters interface interface type interface number Specifies an interface by its type and number If no interface is specified this command displays the current values of the digital diagnosis parameters on every transceiver module Usage guidelines This command cannot display information about some transceiver modules Examples Display the current valu...

Страница 228: ...eiver interface to display the key parameters of transceiver modules Syntax display transceiver interface interface type interface number Views Any view Predefined user roles network admin network operator Parameters interface type interface number Specifies an interface by its type and number If you do not specify this option the command displays the key parameters of every transceiver module Exa...

Страница 229: ...ncluded in the bracket following the transfer distance value The following are the transfer media 9 um 9 125 um single mode fiber 50 um 50 125 um multi mode fiber 62 5 um 62 5 125 um multi mode fiber TP Twisted pair Digital Diagnostic Monitoring Support for the digital diagnosis function YES Supported NO Not supported display transceiver manuinfo Use display transceiver manuinfo to display the ele...

Страница 230: ...el information was written to the transceiver module display version Use display version to display system version information Syntax display version Views Any view Predefined user roles network admin network operator Examples Display system version information Sysname display version display version update record Use display version update record to display the startup software image upgrade hist...

Страница 231: ...date record exception filepath Use exception filepath to specify the directory for saving core files on an MPU Use undo exception filepath to remove the directory setting set the directory to NULL on an MPU Syntax exception filepath directory undo exception filepath directory Default The directory for saving core files is flash on an MPU Views User view Predefined user roles network admin Paramete...

Страница 232: ...r scheme authentication is performed for a login user motd Configures the greeting banner to be displayed before the legal banner appears Support for the keyword depends on the device model shell Configures the banner to be displayed before a non modem dial in user accesses user view text Specifies the banner message which can be entered in two formats For more information see Fundamentals Configu...

Страница 233: ... Telnet The login banner appears only when password or scheme login authentication has been configured Copyright c 2010 2015 Hewlett Packard Development Company L P Without the owner s prior written consent no decompiling or reverse engineering shall be allowed Welcome to legal header legal Press Y or ENTER to continue N to exit Welcome to login header login Password Welcome to motd header motd We...

Страница 234: ...emory threshold to set free memory thresholds Use undo memory threshold to restore the defaults Syntax In standalone mode memory threshold slot slot number cpu cpu number minor minor value severe severe value critical critical value normal normal value undo memory threshold slot slot number cpu cpu number In IRF mode memory threshold chassis chassis number slot slot number cpu cpu number minor min...

Страница 235: ... global active MPU In IRF mode cpu cpu number Specifies a CPU by its number The cpu number argument must be 0 Usage guidelines To ensure correct operation and improve memory utilization the system monitors the amount of free memory space in real time When a free memory threshold is exceeded the system sends an alarm notification or an alarm removed notification to affected feature modules or proce...

Страница 236: ...fies a CPU by its number The cpu number argument is fixed at 0 Usage guidelines The device samples memory usage at an interval of 1 minute If the sample is greater than the memory usage threshold the device sends a trap Examples Set the memory usage threshold to 80 Sysname system view Sysname memory threshold chassis 1 slot 2 cpu 1 usage 80 Related commands display memory threshold memory threshol...

Страница 237: ... The cpu number argument must be 0 Examples Enable CPU usage monitoring Sysname system view Sysname monitor cpu usage enable Related commands display cpu usage display cpu usage configuration display cpu usage history monitor cpu usage interval monitor cpu usage threshold monitor cpu usage interval Use monitor cpu usage interval to configure the interval at which the device samples CPU usage stati...

Страница 238: ...e interval at which the device samples CPU usage statistics as 5 seconds Sysname system view Sysname monitor cpu usage interval 5Sec Related commands display cpu usage display cpu usage configuration display cpu usage history monitor cpu usage enable monitor cpu usage threshold monitor cpu usage threshold Use monitor cpu usage threshold to set the CPU usage threshold Use undo monitor cpu usage thr...

Страница 239: ...U usage threshold the device sends a trap Examples Set the CPU usage threshold to 80 Sysname system view Sysname monitor cpu usage threshold 80 Related commands display cpu usage display cpu usage configuration display cpu usage history monitor cpu usage enable monitor cpu usage interval password recovery enable Use password recovery enable to enable password recovery capability Use undo password ...

Страница 240: ...name process name chassis chassis number slot slot number cpu cpu number Views User view Default The system generates a core file for the first exception of a process and does not generate any core files for subsequent exceptions of the process Predefined user roles network admin Parameters off Disables core file generation maxcore value Enables core file generation and sets the maximum number of ...

Страница 241: ...for the process dbmd and set the maximum number of core files to 5 Sysname process core maxcore 5 name dbmd Related commands exception filepath reboot Use reboot to reboot a card or the entire system In standalone mode Use reboot to reboot an IRF member device or all IRF member devices In IRF mode Syntax In standalone mode reboot slot slot number force In IRF mode reboot chassis chassis number slo...

Страница 242: ... the member ID or slot number option Examples Reboot the device when no configuration change has occurred since the last time you saved the running configuration Sysname reboot Start to check configuration with next startup configuration file please wait DONE This command will reboot the device Continue Y N y Now rebooting please wait If any configuration has changed reboot the device and save the...

Страница 243: ...boot chassis 2 This command will reboot the specified chassis Continue Y N y Now rebooting please wait In IRF mode reboot IRF member device 2 by force Sysname reboot chassis 2 force A forced reboot might cause the storage medium to be corrupted Continue Y N Now rebooting please wait In IRF mode reboot the LPU in slot 2 on IRF member device 2 Sysname reboot chassis 2 slot 2 This command will reboot...

Страница 244: ...global active MPU In IRF mode Syntax reset version update record Views System view Predefined user roles network admin Examples Clear the startup software image upgrade history records Sysname system view Sysname reset version update record Related commands display version update record scheduler job Use scheduler job to create a job and enter job view If the job already exists you enter job view ...

Страница 245: ... The size of the job execution log file is 16 KB Views System view Predefined user roles network admin Parameters value Sets the size of the job execution log file in KB The value range is 16 to 1024 Usage guidelines The job execution log file saves the execution information of jobs If the file is full old records will be replaced by new records If the size of the log information to be written to ...

Страница 246: ...rrent time a reboot occurs at the reboot time of the current day If the reboot time is earlier than the current time a reboot occurs at the reboot time the next day For data security if you are performing file operations at the reboot time the system does not reboot The device supports only one device reboot schedule If you configure both the schedule reboot delay and schedule reboot delay command...

Страница 247: ... configure both the schedule reboot delay and schedule reboot delay commands or configure one of the commands multiple times the most recent configuration takes effect Examples Configure the device to reboot after 88 minutes This example assumes that the current time is 1 1 48 a m on June 6 201 1 Sysname scheduler reboot delay 88 Reboot system at 13 16 06 06 2011 in 1 hours and 28 minutes Confirm ...

Страница 248: ... role command to assign user roles to the schedule You can assign up to 64 user roles to a schedule 6 In schedule view use the time at time once or time repeating command to specify an execution time for the schedule You can specify only one execution time per schedule Examples Create a schedule named saveconfig Sysname system view Sysname scheduler schedule saveconfig Related commands job time at...

Страница 249: ...own interval 100 statistic mode Use statistic mode to set the packet statistics collection mode Use undo statistic mode to restore the default Syntax statistic mode queue vsi undo statistic mode Default The packet statistics collection mode is vsi Views System view Predefined user roles network admin Parameters queue Collects outgoing packet statistics for interfaces on a per queue basis vsi Colle...

Страница 250: ...abric isolate chassis chassis number slot slot number channel channel number Default A switching fabric module is not isolated from the forwarding plane and forwards traffic Views System view Predefined user roles network admin Parameters slot slot number Specifies a switching fabric module by its slot number chassis chassis number slot slot number Specifies a switching fabric module on an IRF mem...

Страница 251: ...F mode isolate channel 1 on the switching fabric module in slot 10 of member device 1 Sysname system view Sysname switch fabric isolate chassis 1 slot 10 channel 1 The command will isolate the switch fabric or a channel from the system Continue Y N sysname Use sysname to set the device name Use undo sysname to restore the default Syntax sysname sysname undo sysname Default The default name is HP V...

Страница 252: ...le The device supports VXLAN only when it operates in standard mode For more information about VXLAN see VXLAN Configuration Guide The device supports EVI and FCoE only when it operates in advanced mode For more information about EVI see EVI Configuration Guide For more information about FCoE see FCoE Configuration Guide For an operating mode change to take effect you must perform the following ta...

Страница 253: ... Configures temperature alarm thresholds for hotspot sensors A hotspot sensor is typically near the chip that generates a great amount of heat and used to monitor the chip inflow Configures temperature alarm thresholds for inlet sensors An inlet sensor is near the air inlet and is used to monitor the ambient temperature sensor number Specifies a sensor by its number an integer starting from 1 Each...

Страница 254: ...mples In standalone mode set the low temperature threshold for hotspot sensor 1 on the card in slot 1 to 10 C 14 F the warning threshold to 70 C 158 F and the alarming threshold to 90 C 194 F Sysname system view sysname temperature limit slot 1 hotspot 1 10 70 90 In IRF mode set the low temperature threshold for hotspot sensor 1 on the card in slot 1 on IRF member device 1 to 10 C 14 F the warning...

Страница 255: ... Related commands scheduler schedule time once Use time once to specify one or more execution days and the execution time for a one time schedule Use undo time to remove the execution time configuration for a schedule Syntax time once at time month date month day week day week day 1 7 time once delay time undo time Default No execution time or day is specified for a schedule Views Schedule view Pr...

Страница 256: ...e schedule saveconfig time once at 15 00 Schedule starts at 15 00 5 11 2011 Configure the device to execute schedule saveconfig once at 15 00 on the coming 15th day in a month Sysname system view Sysname scheduler schedule saveconfig Sysname schedule saveconfig time once at 15 00 month date 15 Configure the device to execute schedule saveconfig at 12 00 p m on the coming Monday and Friday Sysname ...

Страница 257: ...k days Valid values include Mon Tue Wed Thu Fri Sat and Sun 1 7 means that you can specify 1 to 7 week days To specify multiple week days separate the values with spaces Usage guidelines The time repeating at time date interval interval time command configures the device to execute a schedule at an interval from the specified time on The time repeating at time month date month day last week day we...

Страница 258: ...sensitive string of 1 to 63 characters The user role can be user defined or predefined Predefined user roles include network admin network operator level 0 to level 15 and security audit Usage guidelines By assigning user roles to and removing user roles from a schedule you can control the commands to be executed in the schedule A schedule must have a minimum of one user role and can have up to 64...

Страница 259: ...251 Sysname schedule test display this scheduler schedule test user role network admin user role network operator user role rolename return Related commands command scheduler schedule ...

Страница 260: ...on 2 7 standard API Comware V7 extended API To return to user view from the Python shell enter exit Examples Enter the Python shell Sysname python Python 2 7 3 default Sep 22 2014 17 10 05 GCC 4 4 1 on linux2 Type help copyright credits or license for more information exit Sysname python filename Use python filename to execute a Python script Syntax python filename param Views User view Predefined...

Страница 261: ...rameters use spaces as the delimiter Usage guidelines You cannot perform any operation while a Python script is being executed by your command Make sure the statements in the script meet the syntax requirements The system stops executing a Python script if it finds a statement with syntax errors When executing a script the system uses the defaults for interactive statements The system does not sto...

Страница 262: ...ing you will receive email notification of product enhancements new driver versions firmware updates and other product resources Related information Documents To find related documents browse to the Manuals page of the HP Business Support Center website http www hp com support manuals For related documentation navigate to the Networking section and select a networking category For a complete list ...

Страница 263: ...eparated by vertical bars from which you select one choice multiple choices or none 1 n The argument or keyword and argument combination before the ampersand sign can be entered 1 to n times A line that starts with a pound sign is comments GUI conventions Convention Description Boldface Window names button names field names and menu items are in bold text For example the New User window appears cl...

Страница 264: ...r a unified wired WLAN module or the switching engine on a unified wired WLAN switch Represents an access point Represents a mesh access point Represents omnidirectional signals Represents directional signals Represents a security product such as a firewall UTM multiservice security gateway or load balancing device Represents a security card such as a firewall load balancing NetStream SSL VPN IPS ...

Страница 265: ... start test 188 dir 1 16 dir 84 disconnect 85 display begin exclude include 2 display by linenum 3 display 4 display 5 display alarm 189 display alias 6 display boot loader 159 display clock 190 display copyright 191 display cpu usage 191 display cpu usage configuration 193 display cpu usage history 193 display current configuration 136 display current configuration diff 137 display default config...

Страница 266: ... manuinfo 221 display user interface 21 display users 23 display version 222 display version comp matrix 170 display version update record 222 Documents 254 E escape key 24 exception filepath 223 F fdisk 1 18 feature 55 file prompt 120 fixdisk 120 flow control 25 format 121 free ftp user 75 free ftp user ip 76 free line 26 free user interface 27 ftp 86 ftp client source 87 ftp server acl 76 ftp se...

Страница 267: ...tup configuration 146 return 1 1 rhelp 99 rmdir 100 rmdir 129 role 61 role default role enable 62 role feature group 62 rstatus 101 rule 63 S save 147 scheduler job 236 scheduler logfile size 237 scheduler reboot at 237 scheduler reboot delay 238 scheduler schedule 239 screen length 34 screen length disable 1 1 send 35 set authentication password 36 sha256sum 129 shell 37 shutdown interval 240 spe...

Страница 268: ...source 108 tftp server acl 109 time at 246 time once 247 time repeating 248 U umount 132 undelete 133 user 104 user interface 44 user interface class 45 user role 250 user role 46 V verbose 105 version auto update enable 160 version check ignore 161 vlan policy deny 71 vpn instance policy deny 72 W Websites 254 ...

Отзывы:

Нет отзывов

Похожие инструкции для FlexFabric 12900 series

Бренд: Magnat Audio Страницы: 2

Бренд: Paradyne Страницы: 11

Бренд: Paradyne Страницы: 19

Бренд: Paradyne Страницы: 32

COMSPHERE 3550 Series

Бренд: Paradyne Страницы: 153

Jetstream CPX-1000

Бренд: Paradyne Страницы: 141

FrameSaver 9783

Бренд: Paradyne Страницы: 28

COMSPHERE 6800 Series

Бренд: Paradyne Страницы: 7

Бренд: Salusfin Страницы: 6

Бренд: BSS Audio Страницы: 20

Бренд: TP-Link Страницы: 176

Бренд: IMC Networks Страницы: 36

Бренд: Comway Страницы: 20

JetFusion 2100 Series

Бренд: Paradyne Страницы: 296

Бренд: TRENDnet Страницы: 10

Бренд: TP-Link Страницы: 17

CU8210-D001-0200

Бренд: Beckhoff Страницы: 25

Бренд: EINHELL Страницы: 32

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды