Netopia CLI 874 Скачать руководство пользователя страница 134 | Manualshive

Страница: 134 / 207

background image

2-122 Command Line Interface Commands Reference

ip

filterset

fs-tag

{

in

|

out

} [

filter

]

filter-id

[

enable

{

yes

|

no

}]

[

forward

{

yes

|

no

} | [

force-route

{

yes

|

no

]

force-route-gateway

ip-addr

}]

[{

call-placement

|

idle-reset

} {

no-change

|

disabled

}]

[

source

{

ip-addr

/

mask-bits

|

ip-addr

mask

}]

[

destination

{

ip-addr

/

mask-bits

|

ip-addr

mask

}]

[

tos

{

tos_value

tos-mask

tos_mask_value

} |

[

protocol

{

1..65535

|

any

|

gre

|

{ {

tcp

|

6

} [{

source

por t-compare

}] [{

destination

por t-compare

}]

[

established

|

all

] } |

{ {

udp

|

17

} [{

source

por t-compare

}] [{

destination

por t-compare

}]} |

{ {

icmp

|

1

} [{

type

por t-compare

}] [{

code

por t-compare

}]} } ]

no

ip

filterset

fs-id

[{

in

|

out

} [

filter-id

]]

show

ip

filterset

fs-id

[{

in

|

out

} [

filter-id

]]

set

A Filter set, as with NAT Ser ver and Rule Lists, is instantiated by creating its first contained object. This first
filter can be identified by its ones-based index, 1, or with the special

new

keyword. Subsequent modifications to

this filter, assuming no more filters have been added to the filter set yet, must be done by referring to the filter
either by id (1), or by the other special keyword

last

. Subsequent filters can be added using either

new

or by the

next integer filter id. You can always specify the last filter in the set by using

last

. It is an error to attempt to

create a new filter whose id is not 1 greater than the id of the last filter.

Using

new

and

last

allow you to create filter sets without using filter indices.

show

You can show the contents of all filter sets by typing:

show ip filterset

Or you can show the contents of a filter set by typing (for example):

show ip filterset "My Filters"

Or all of the input or output filters of a filter set by adding the {in | out} keyword:

show ip filterset "My Filters" in

Or a par ticular filter by specifying {in | out} and the tag:

show ip filterset "My Filters" in 3

Since the command line console is currently constrained to 78 characters per line, the show command breaks
each filter up into four separate lines, for example:

show ip filterset "Basic Firewall" in 2

ip filterset "Basic Firewall" in 2 enable yes forward no

ip filterset "Basic Firewall" in 2 source 0.0.0.0/0

ip filterset "Basic Firewall" in 2 destination 0.0.0.0/0

«
...
132
133
134
135
136
...
»

Содержание CLI 874

Страница 1: ...Command Line Interface Commands Reference Firmware Version 8 7 4 Motorola Netopia ENT Series Routers...

Страница 2: ...ed or expressed including but not limited to the implied warranties of merchantability and fitness for a particular purpose Motorola may make improvements or changes in the product s described in this...

Страница 3: ...Interface configuration commands 2 18 Virtual LAN VLAN configuration commands 2 36 RADIUS Authentication Profile configuration commands 2 39 NetBIOS configuration commands 2 41 Generic WAN Interface...

Страница 4: ...nnections Configuration Commands 2 98 Default Profile Configuration Commands 2 100 Frame Relay Configuration Commands 2 101 Miscellaneous Commands 2 103 IP Network Address Translation NAT Commands 2 1...

Страница 5: ...ds 3 22 GRE Connection Profile Configuration Commands 3 23 CompuServe Login 3 24 IPSec IKE 3 26 Chapter 4 Motorola Netopia Router Text Configuration Upload 4 1 TFTP Text Configuration Upload Overview...

Страница 6: ...6 Command Line Interface Commands Reference...

Страница 7: ...firmware version is noted the commands given are supported on all platforms New Commands in Firmware Version 8 7 4 Firmware Version 8 7 4 adds new and revised commands for the following IP multicast...

Страница 8: ...ional elements are enclosed in square brackets Mutually exclusive elements are contained in braces and separated by vertical bars Arguments for which you supply values are in italics Examples of comma...

Страница 9: ...ample the ethernet hublet is identified as interface ethernet 0 In some contexts only a WAN interface may be specified in which case the command syntax will specify wan id instead of the more general...

Страница 10: ...s Key Function Control A Moves the cursor to the beginning of the command line Control E Moves the cursor to the end of the command line Control K Deletes all characters from the cursor to the end of...

Страница 11: ...error messages Example If you enter the partial command show snmp the help facilty will prompt you with the appropriate keywords until the command is successfully entered show snmp error 103 incomple...

Страница 12: ...1 6 Command Line Interface Commands Reference...

Страница 13: ...ofile configuration commands on page 2 39 NetBIOS configuration commands on page 2 41 Generic WAN Interface configuration commands on page 2 43 Restricted WAN Interface configuration commands on page...

Страница 14: ...ands on page 2 110 Backup Configuration Commands on page 2 115 Serial port modem backup configuration commands on page 2 118 RADIUS Authentication Configuration Commands on page 2 119 TACACS Authentic...

Страница 15: ...sole timeout show preferences console timeout preferences date format mm dd yy dd mm yy yy mm dd show preferences date format preferences output format terse verbose show preferences output format pre...

Страница 16: ...mp system location snmp system name string show snmp system name no snmp system name snmp system trap source address lan wan system syslog enable yes no no system syslog enable show system syslog enab...

Страница 17: ...nd telnet resume 1 6 telnet terminate 1 6 telnet server port port number show telnet server port time hh mm am pm show time user name password no user name password MAC Address Security Commands secur...

Страница 18: ...commands allow you to specify whether or not WAN configuration changes will take effect immediately When you specify no any changes you make to the WAN configuration except NAT will not take effect un...

Страница 19: ...rences output format terse verbose show preferences output format The preferences output format command affects the format of the output from show commands When set to verbose the default the output f...

Страница 20: ...am pm 24 hour show preferences time format These commands allow you to set or display your time formatting preferences for the router s system clock security password Enter old password old password...

Страница 21: ...h Firmware Version 8 4 2 inform snmp system contact string show snmp system contact no snmp system contact These commands set display or clear the router s SNMP system contact sysContact string snmp s...

Страница 22: ...hese commands are supported beginning with Firmware Version 8 2 These commands allow you to specify or show the UNIX syslog Facility facility values may be local0 through local7 system syslog log viol...

Страница 23: ...nds allow you to suspend telnet sessions indicated by alphabetic letter a through z from the command line Telnet sessions specified by number 1 through 6 may be resumed or terminated The show command...

Страница 24: ...MAC authentication applies only to the wireless interface on models so equipped If set to no packets received at all interfaces on the LAN are subject to the MAC filtering table security mac auth mac...

Страница 25: ...w heartbeat client port heartbeat interval time in seconds show heartbeat interval time heartbeat count count show heartbeat count heartbeat sleep time time in seconds show heartbeat sleep time heartb...

Страница 26: ...how the protocol to be used for the system heartbeat udp or tcp The heartbeat is a state machine If you select udp there are no connections to the server If the server address is known it simply sends...

Страница 27: ...interval location These commands allow you to specify or show a location to be placed into the heartbeat Xml payload reset heartbeat This command allows you to restart the heartbeat sequence Tiered Co...

Страница 28: ...le applications or audio and video services Multiple logical IP LAN support allows you to create additional IP routed LAN interfaces ALANs You can add edit or delete Additional LANs similarly to Conne...

Страница 29: ...multicast fwd no interface ethernet 2 address serve enable no interface ethernet 2 address serve clients none interface ethernet 2 address serve dhcp lease time 1 interface ethernet 2 address serve ga...

Страница 30: ...ion interface ethernet id mac address MAC address default show interface ethernet id mac address interface ethernet id mode autonegotiate 100full 100half 10full 10half 100full fixed 100half fixed 10fu...

Страница 31: ...rver list show interface ethernet id ip nat server list interface ethernet id ip netbios proxy enable yes no no interface ethernet id ip netbios proxy enable show interface ethernet id ip netbios prox...

Страница 32: ...nsmit interface ethernet id ip rip auth key id no interface ethernet id ip rip auth key id show config interface ethernet id ip rip auth key interface ethernet id ip rip auth key id start date date sh...

Страница 33: ...nterface ethernet id address serve dhcp option 150 address show interface ethernet id address serve dhcp addresses show interface ethernet id ip dhcp client status interface ethernet id ip dhcp client...

Страница 34: ...state insp router access interface ethernet id ip state insp tcp seq diff diff show interface ethernet id ip state insp tcp seq diff interface ethernet id ip state insp deny frag yes no on off no int...

Страница 35: ...ip vrrp vrouter id adv intvl interface ethernet id ip vrrp vrouter id preempt mode enable no yes on off show interface ethernet id ip vrrp vrouter id preempt mode enable interface ethernet id ip vrrp...

Страница 36: ...o set the primary subnet of the Ethernet interface to 192 168 1 1 with a Class C subnet mask interface ethernet 0 ip address 192 168 1 1 24 interface ethernet 0 ip address 192 168 1 1 255 255 255 0 To...

Страница 37: ...allow you to set disable or show the multicast forwarding behavior on the specified Ethernet interface interface ethernet id ip igmp version v1 v2 v3 show interface ethernet id ip igmp version These...

Страница 38: ...AN has no effect on the Microsoft Networking traffic interface ethernet id address serve dhcp enable yes no no interface ethernet id address serve dhcp enable show interface ethernet id address serve...

Страница 39: ...the interface The default is no but if enabled will drop any RIP routes with non LANside information from RIP updates sent over the interface interface ethernet id ip rip receive no v1 v2 both v2 md5...

Страница 40: ...w you to set or show an end time for the RIP 2 Authentication key s on the specified interface interface ethernet id rip auth key id end time mode infinite date show interface ethernet id ip rip auth...

Страница 41: ...thernet id ip nat passthrough enable Note These commands are supported beginning with firmware version 8 2 These commands allow you to enable disable or show the NAT passthrough behavior for the speci...

Страница 42: ...e router Otherwise you may specify one or more of the keywords bootp dhcp macip or wan in which case the address server will accept requests from only the specified types of clients If you specify the...

Страница 43: ...lue The default gateway IP address for a particular subnet is either the router s default gateway if that gateway is on the specified subnet or the router s address on the subnet interface ethernet id...

Страница 44: ...d Ethernet subnet primary and secondary The total number of addresses in all configured pools may not exceed 512 addresses If you specify the keyword auto instead of an IP address range the router wil...

Страница 45: ...q diff These commands allow you to set or show TCP sequence difference acceptable for the specified interface The TCP sequence number difference maximum allowed value is 65535 If the value of tcp seq...

Страница 46: ...he others are backups VRRP is a protocol that provides redundancy to routers within a local area network by allowing alternate paths for a PC without changing the IP address or MAC address by which th...

Страница 47: ...is command allows you to delete a Virtual Router show interface ethernet id ip vrrp wan monitor enable yes no on off show interface ethernet id ip vrrp wan monitor enable These commands allow you to e...

Страница 48: ...id by port based global no vlan id vlan id name name vlan id network none lan eth2 eth3 eth4 eth5 eth6 eth7 vlan id id 1 4094 supported in V8 6 1 vlan id 8021x authprofile authprofile tag name authpr...

Страница 49: ...eless privacy to WPA 802 1x as well See Wireless Privacy Commands new and revised on page 2 91 If multiple SSIDs are split across several VLANs the VLANs must either all have 802 1x enabled with WPA 8...

Страница 50: ...u to associate this VLAN with an inter VLAN routing group such that the specified VLAN can communicate with another VLAN in the same group VLANS that are not associated with the same inter VLAN routin...

Страница 51: ...ith a free form name of up to 32 characters authprofile id remote server string This command allows you to specify the RADIUS server s IP address or fully qualified server name authprofile id remote s...

Страница 52: ...ork Access Server NAS identifier The default NAS identifier is an ASCII representation of the server s base MAC address authprofile id radius port 1 65535 This command allows you to specify the RADIUS...

Страница 53: ...elete or show whether NetBIOS scope is enabled NetBIOS Configuration Commands interface ethernet 0 address serve netbios mode type b node p node m node h node show interface ethernet 0 address serve n...

Страница 54: ...rface ethernet 0 address serve netbios name server enable These commands allow you to set delete or show whether a NetBIOS name server address is served to NetBIOS clients interface ethernet 0 address...

Страница 55: ...r itself Note atmfuni is accepted as a synonym for rfc1483 and frame relay is accepted as a synonym for rfc1490 For ppp the default mode is vcmux For rfc1483 the default mode for frame based SDSL R710...

Страница 56: ...that we will be running at 1 5 MHz Restricted WAN Interface configuration commands interface adsl ethernet isdn sdsl id pppoe enable yes no no interface adsl ethernet isdn sdsl id pppoe enable show in...

Страница 57: ...tain Networks central office equipment Example interface isdn 1 imux mode dml ISDN WAN Interface Configuration Commands Generic ISDN interface isdn id line type switched leased idsl ascend idsl cmn sh...

Страница 58: ...atus String Meaning Inactive The interface is not yet active Waiting for rate negotiation The interface is in the process of sensing the data rate configured for the IDSL line at the central office Th...

Страница 59: ...be populated with an ISDN wanlet at this time and the Motherboard id 0 is incapable of supporting ISDN internally Under many circumstances it is unnecessary to explicitly set the switch type particul...

Страница 60: ...allow you to set change delete or show the directory numbers associated with the specified ISDN interface These commands apply only to switched ISDN The only currently supported id is 1 The string par...

Страница 61: ...onfiguration Commands interface adsl id pvc vpi value vci value show interface adsl id pvc show interface adsl id status show interface adsl id statistics interface adsl id signaling mode fdm echo can...

Страница 62: ...hese commands allow you to set or show the signalling mode on an ADSL interface fdm Frequency Division Multiplexing interface adsl id trellis coding yes no show interface adsl id trellis coding no int...

Страница 63: ...ow interface sdsl id clock rate interface sdsl id operation mode generic lucent nokia eoc fast nokia fixed paradyne nortel newbridge default show interface sdsl id operation mode interface sdsl id pvc...

Страница 64: ...rface Note The permissible values for rate specification depend on the type of SDSL WAN interface For frame based SDSL R7100 interfaces rate specification may be replaced with 160 208 320 416 784 1040...

Страница 65: ...and correspond to the values available from the Data Rate pop up menu on the SDSL Line Configuration screen in the menu console These acceptable data rates are enumerated below as well Nokia Lucent P...

Страница 66: ...1 show interface sdsl isdn id rfc1973 dlci These commands allow you to set or show an RFC 1973 DLCI for the SDSL or ISDN WAN interface Note that the only WAN interface modules that currently support R...

Страница 67: ...le or show the priority queuing TOS setting for the specified WAN interface Status String Meaning Connected at xxx Kbps The interface is connected to the DSLAM at the specified speed Trying xxx Kbps T...

Страница 68: ...oS control rules allow you to define streams for some protocols port ranges and between specific end point addresses diffserv rule id protocol tcp udp icmp other This command allows you to specify the...

Страница 69: ...and allows you to specify the inside IP address for the rule id For outbound flows specify an IP address on your LAN For inbound flows this setting is ignored diffserv rule id outside ip y y y y This...

Страница 70: ...of up to eight circuits tag interface adsl sdsl id pvc id tag tag tag show interface adsl sdsl id pvc id tag tag These commands allow you to set or show a permanent virtual circuit identified by tag...

Страница 71: ...o the line rate VBR has two sub classes a VBR non real time VBR nrt Typical applications are non real time traffic such as IP data traffic This class yields a fair amount of Cell Delay Variation CDV b...

Страница 72: ...le tag default show interface adsl sdsl id pvc id tag cp These commands allow you to set or show the connection profile assigned to the specified PVC Note default means that the router will use the fi...

Страница 73: ...sdsl atm sdsl hdlc idsl cmn idsl leased idsl show interface dsl id line type These commands allow you to set or show the line type for the specified DSL interface DSL Line Type Interface Configuratio...

Страница 74: ...clock source interface t1 id dle ppp hdlc rfc1490 show interface t1 id dle interface t1 id ds0 autodetect yes no show interface t1 id ds0 autodetect no interface t1 id ds0 autodetect interface t1 id f...

Страница 75: ...word is assumed The rate clause is always optional If the rate clause is not present the value Nx64k is assumed unless the line encoding is AMI the count clause specifies two or more channels and the...

Страница 76: ...Copper Mountain DSLAM T1 line card the keyword normal should be specified in all other situations interface t1 id prm enable yes no show interface t1 id prm enable no interface t1 id prm enable These...

Страница 77: ...45 minutes prior to interval 1 Specifying the keyword total displays the total error statistics for the last 24 hours Example show interface t1 1 errors interval 1 15 minutes ending 16 32 44 Errored...

Страница 78: ...he specified T1 interface Specifying local loopback puts the near end in local payload loopback mode Specifying remote loopback instructs the far end to put itself in payload loopback mode Specifying...

Страница 79: ...ocal Payload Loopback Enabled Remote Line Loopback Enabled Remote Payload Loopback Enabled Clear No Loopback Enabled show interface t1 id loopback status This command displays the progress of the loop...

Страница 80: ...rce address to an internally generated router service such that the service should not be routed by default over a force all IPSec tunnel Applicable internally generated router services are RADIUS TAC...

Страница 81: ...uted over the IPSec tunnel If no is used with the commands the value goes back to the default 0 0 0 0 and no Examples RADIUS TACACS The remote server configuration controls the settings for both TACAC...

Страница 82: ...figuration Commands igmp version v1 v2 v3 show igmp version igmp snooping yes no no igmp snooping show igmp snooping igmp robustness value no igmp robustness show igmp robustness igmp query intvl valu...

Страница 83: ...ow igmp robustness These commands allow you to specify or show the Motorola Netopia Router s degree of sensitivity to lost packets IGMP can recover from robustness minus 1 lost IGMP packet The default...

Страница 84: ...command is supported beginning with Firmware Version 8 7 4 This command allows you enable or disable wireless multicast to unicast if igmp snooping is set to yes The router replaces the multicast MAC...

Страница 85: ...p gateway backup gateway ip addr no backup gateway ip addr show backup gateway ip ntp period value no ip ntp period show ip ntp period ip ntp servers ip addr1 ip addr2 no ip ntp servers show ip ntp se...

Страница 86: ...t symbol and are not valid domain names ip gateway ip addr no ip gateway ip addr show ip gateway These commands allow you to set change delete or show the router s default gateway backup gateway ip ad...

Страница 87: ...timezone show ip ntp timezone Note These commands are supported beginning with Firmware Version 8 3 3 These commands allow you to set disable or display your time zone You can specify the time zone as...

Страница 88: ...identical route learned via RIP while an identical route learned via RIP takes precedence over a static route with low priority The keyword advertise controls whether or not the router will advertise...

Страница 89: ...and whether or not you can configure a gen option of that type DHCP Gen Options commands ip dhcp gen option tag option 1 255 data type ascii hex dotted decimal data data ip dhcp gen option tag data t...

Страница 90: ...address list Multiples of 4 Yes 43 Vendor specific String Yes 44 45 IP address list Multiples of 4 Yes 46 Unsigned 1 byte integer 1 Yes 47 String up to 100 characters N Yes 48 49 IP address list Multi...

Страница 91: ...ss list Multiples of 4 Yes 86 87 Unicode String Multiples of 2 Yes 88 Encoded DN list N Yes 89 IP address list Multiples of 4 Yes 90 Complex N No 91 97 Undefined Weakly defined Yes 98 String up to 100...

Страница 92: ...y or disable whether the default handling behavior for a particular option should be overridden by the specified gen option For most options this is irrelevant but at least the following options are h...

Страница 93: ...option Adding a gen option to an option group does not preclude it from being added to another option group interface ethernet id address serve dhcp default option group option_group_tag show interfa...

Страница 94: ...ommands allow you to specify display or disable a DHCP filterset named fs tag DHCP Option Filtersets commands ip dhcp filterset fs tag filter new last id 1 8 type dhcp option hw address requested opti...

Страница 95: ...ing can contain multiple and wildcard substitutions This is supported only if the filter is of type dhcp option start address end address a client hardware address range This is supported only if the...

Страница 96: ...rface ethernet id address serve dhcp filterset These commands allow you to set display or disable a DHCP filterset specified by fs tag for the Ethernet interface specified by id bridge dhcp filterset...

Страница 97: ...30 and 65535 seconds ip state insp dos detect yes no show ip state insp dos detect Note These commands are supported beginning with Firmware Version 8 7 These commands allow you to set or show the sta...

Страница 98: ...closed system wireless ssid string show wireless ssid wireless auto channel off at startup continuous no wireless auto channel show wireless auto channel wireless tx power full medium fair low minimal...

Страница 99: ...wireless client when they scan for access points Therefore in order to connect the wireless client would already have to know the SSID This prevents casual intrusion Default is no Wireless Configurat...

Страница 100: ...her Access Point activity If Access Point activity is detected on the same channel the Motorola Netopia Router will initiate a scan of the other channels locate a less active one and switch Once it ha...

Страница 101: ...0 BD Free Watermark 336 Out of Packets 0 Out of BDs 0 TX Queue Full 0 wireless default channel no 1 14 show wireless default channel These commands allow you to specify or show a frequency range withi...

Страница 102: ...eless wep encpt key hex_string show wireless wep encpt key 1 4 These commands allow you to specify or show the encryption keys 1 through 4 in hexadecimal Keys are entered using hexadecimal digits For...

Страница 103: ...ecify or show a 32 character string or Network Name used to identify this WLAN Users must select or enter this string on their clients in order to become a part of this WLAN This is a change to the wi...

Страница 104: ...aracter_string show wireless passphrase 1 57_character_string These commands allow you to set or show a passphrase when wireless privacy is set to wep auto off turn off privacy wep manual In this mode...

Страница 105: ...ond ssid string no wireless second ssid show wireless second ssid wireless third ssid string no wireless third ssid show wireless third ssid wireless fourth ssid string no wireless fourth ssid show wi...

Страница 106: ...s allow you to specify or show a 32 character string or Network Name used to identify this WLAN Users must select or enter this string on their clients in order to become a part of this WLAN The first...

Страница 107: ...less first ssid privacy off wep manual wep auto wpa psk wpa 802 1x show wireless first ssid privacy These commands allow you to specify or show the privacy setting for the first and primary SSID Setti...

Страница 108: ...selected as a privacy option for that SSID The default is all wireless first ssid psk string wireless second ssid psk string wireless third ssid psk string wireless fourth ssid psk string These comman...

Страница 109: ...ommand allows you to remove a global ARP cache entry Note that this does not affect entries in the interface specific caches acquired via ARP requests and responses To flush the interface specific ARP...

Страница 110: ...eout Default 600 secs 10 mins range 60 secs 6000 secs 1 100 mins system bridge timeout timeout This command allows you to set the timeout value for bridging table timeout Default 30 secs range 30 secs...

Страница 111: ...ws First it will wait 0 to 60 seconds before starting then it will try three times to bring the connection up as quickly as possible Second on each successive retry after these first three attempts it...

Страница 112: ...d Connection will be invoked schedule id start time HH MM am pm This command allows you to set the starting time and whether AM or PM for the specified Scheduled Connection You must enter the time in...

Страница 113: ...tain Both of these commands are supported only on hardware that has a copper mountain SDSL IDSL or Ethernet WAN interface Frame Relay Configuration Commands frame relay dlci number tag tag ip addr 0 0...

Страница 114: ...nds allow you to change or display the Frame Relay Local Management Interface LMI type The keywords ccitt and annexa are synonyms as are the keywords ansi and annexd frame relay tim none standard buff...

Страница 115: ...ame receive tftp html server name file name noreboot receive tftp wan 1 2 firmware server name file name send tftp config server name file name show tftp last error show tftp status receive xmodem wan...

Страница 116: ...mpletes statistics are displayed including the total number of ICMP echo requests sent and ICMP echo responses received the success rate as a percentage and the minimum average and maximum round trip...

Страница 117: ...ecified If server name or file name are not already specified it is necessary to specify them Specifying them with this command will set them send tftp config server name file name The configuration f...

Страница 118: ...Upgrade SUCCESSFUL Insufficient Memory Upgrade FAILED reset factory bridge router This command allows you to reset the router from the command line interface If the optional keyword factory is specif...

Страница 119: ...Memory status Heap total bytes 7936960 free 4437424 allocated 3499536 System Packet Buffers total 1000 free 993 min 992 Image usage text 3931180 data 536336 bss 370412 Heap status peak usage 3520512...

Страница 120: ...e experimental d development a alpha b beta or f final rr is the revision The firmware version string consists of a major version minor version point release version release stage and revision display...

Страница 121: ...ware Version 8 3 3 These commands allow you to enable disable or show the status of Universal Plug and Play UPnP is a set of protocols that allows a PC to automatically discover other UPnP devices any...

Страница 122: ...ddresses will be associated dynamically with private addresses you will define when you create a map tag is the name you assign to the range and it can contain up to 16 characters Example The followin...

Страница 123: ...tly the default range is 49152 to 65535 inclusive If you specify 0 0 0 0 as the public address whatever address is negotiated by PPP or DHCP when the WAN connection is established this pool will adopt...

Страница 124: ...ip addr and port or ports to a public address pub ip addr and the same port or ports In the Motorola Netopia router s earlier firmware releases this feature was called Exported Services Its primary u...

Страница 125: ...s displayed Indefinitely long sessions greater than 10 hours are shown as 10h show ip nat translations LAN IP address Port WAN IP address Port Rem IP Address Port Dir Prot h mm 10 1 32 127 57037 10 1...

Страница 126: ...nnection with the ALG The ALG determines if the connection should be allowed or not and then establishes a connection with the destination computer All communications go through two connections client...

Страница 127: ...tic yes no backup show backup status backup no backup delay 1 65535 backup ping host ip address host name backup recovery delay 1 65535 backup recovery idle delay 1 65535 backup recovery idle only yes...

Страница 128: ...etermine how long you want the system to wait before the primary WAN port becomes enabled after connectivity is restored ensuring that the backup connection is not merely briefly interrupted before th...

Страница 129: ...te These commands are supported beginning with Firmware Version 8 6 1 These commands allow you to disable enable or show the status of RIP services on the primary WAN interface when the Router is in B...

Страница 130: ...the string parameter are 9600 19200 38400 57600 115200 interface serial id modem init string string no interface serial id modem init string show interface serial id modem init string These commands a...

Страница 131: ...fails using the local authentication database Specifying radius local serial only causes the router to attempt to authenticate a user first using the configured RADIUS server s and then if that fails...

Страница 132: ...r is limited to 63 characters TACACS Authentication Configuration Commands Note The commands in this section are supported beginning with firmware version 8 4 and supplement the RADIUS server commands...

Страница 133: ...ex More explanation follows the command itself compare op nc ne lt le eq ge gt port compare nc compare op digits filter id 1 255 new last IP Filterset Configuration Commands ip filterset fs tag in out...

Страница 134: ...the filter either by id 1 or by the other special keyword last Subsequent filters can be added using either new or by the next integer filter id You can always specify the last filter in the set by u...

Страница 135: ...nable show hardware acceleration enable These commands allow you to enable disable or show the status of hardware acceleration if the XL accelera tion encryption daughtercard is installed in the R Ser...

Страница 136: ...scii key id hex key id string show ike phase1 name index identity remote local ike phase1 name index authentication method shared secret show ike phase1 name index authentication method ike phase1 nam...

Страница 137: ...name index independent rekeys ike phase1 name index initial contact yes no show ike phase1 name index initial contact no ike phase1 name index initial contact ike phase1 name index negotiation normal...

Страница 138: ...name index authentication method shared secret show ike phase1 name index authentication method These commands set or display the specified IKE Phase1 profile s authentication method Currently the on...

Страница 139: ...dh 1024 bits dh 1536 bits show ike phase1 name index group These commands set or display the specified IKE Phase1 profile s Diffie Hellman group Note 1 and dh 768 bits 2 and dh 1024 bits and 5 and dh...

Страница 140: ...nteger none show ike phase1 name index sa lifetime seconds kbytes no ike phase1 name index sa lifetime seconds kbytes These commands set display or disable one or both of the specified IKE Phase1 prof...

Страница 141: ...teway IKE peer that supports them Default is no disabled show ike phase1 name index dead peer detection timeout ike phase1 name index dead peer detection timeout 3 65535 These commands allow you to sp...

Страница 142: ...he glo bally configured RADIUS server database IF xauth mode is set to client it can only send the locally configured username password See RADIUS Authentication Configuration Commands on page 2 119 i...

Страница 143: ...Motorola Netopia Router CLI Commands 2 131 Current Restrictions None...

Страница 144: ...2 132 Command Line Interface Commands Reference...

Страница 145: ...0 series and 3000 Enterprise series Router families Connection Profile Commands on page 3 2 PPTP commands on page 3 18 Manual connect disconnect commands on page 3 19 Backup configuration commands on...

Страница 146: ...todetect Note The two commands above are supported beginning with firmware release 8 5 cp name index filterset string no cp name index filterset string show cp name index filterset cp name index ip ad...

Страница 147: ...index ip multicast fwd yes no no cp name index ip multicast fwd show cp name index ip multicast fwd cp name index ip negotiate lan yes no no cp name index ip negotiate lan show cp name index ip negoti...

Страница 148: ...ve name cp name index ppp authentication send receive password string no cp name index ppp authentication send receive password cp name index ppp usage 1 2 preemptible dynamic show cp name index ppp u...

Страница 149: ...callback yes no no cp name index telco callback show cp name index telco callback cp name index ip nat enable yes no no cp name index ip nat enable show cp name index ip nat enable cp name index ip n...

Страница 150: ...no cp name index pptp encryption cp name index pptp authentication send receive name string no cp name index pptp authentication send receive name show cp name index pptp authentication send receive...

Страница 151: ...id end date cp id ip rip auth key id end time time show cp id ip rip auth key id end time cp id rip auth key id end time mode infinite date show cp id ip rip auth key id end time mode cp id rip auth k...

Страница 152: ...osed list xposed list_name no cp name index ip state insp xposed list show cp name index ip state insp xposed list cp name index ip state insp tcp seq diff diff show cp name index ip state insp tcp se...

Страница 153: ...pp send receive name string show cp name index l2tp authentication ppp send receive name cp name index l2tp authentication ppp send receive password string show cp name index l2tp authentication ppp s...

Страница 154: ...ion Profile the menu console will name it Profile 1 by default you can rename it anything you want Nevertheless the router will always assign such a profile the index number 2 two Profiles added subse...

Страница 155: ...d and cannot be used Also when a profile is created it inherits the global encapsulation type by default and thus it is not usually necessary to explicitly set this parameter Note atmfuni is accepted...

Страница 156: ...P configuration structures now include a dhcp client mode setting that selects between the standard RFC 2131 standards based mode of operation the default and the cop per mountain or cmn proprietary m...

Страница 157: ...s no no cp name index ip negotiate lan show cp name index ip negotiate lan These commands allow you to set delete or show whether the specified connection profile will attempt to negotiate the router...

Страница 158: ...th v2 md5 This command allows you to set the RIP receive behavior when the profile is used for a WAN connection cp name index ip rip exclude wan routes no cp name index ip rip exclude wan routes show...

Страница 159: ...if more than one channel is being used by the connection and traffic drops below a certain level for a certain amount of time a channel will be dropped The keywords dynamic and preemptible may be spec...

Страница 160: ...ix and directory number to call back the device that originated the initial call This is useful when you want a particular party to be billed for WAN connections cp name index ip nat enable yes no Thi...

Страница 161: ...me index connection demand yes no This command allows you to specify whether or not a connection profile will connect on demand cp name index connection timeout seconds This command allows you to spec...

Страница 162: ...p name index pptp compression These commands allow you to specify or delete a PPTP compression algorithm either none or Standard LZS for a particular connection profile specified by name or index cp n...

Страница 163: ...displayed This command returns immediately the connection disconnect process may still be in progress since it is asynchronous Backup configuration commands cp name index interface group primary backu...

Страница 164: ...ASCII characters each IP NAT Passthrough Commands Note The commands in this section are supported beginning with Firmware Version 8 2 cp name index ip nat passthrough enable yes no no cp name index ip...

Страница 165: ...shortened to two minutes This allows for timely updates of the host s IP address which will be a private IP address before the WAN connection is established After the WAN connection is established and...

Страница 166: ...mands allow you to set disable or show the status of default mapping to router for the specified Connection Profile cp name index ip state insp deny frag yes no on off no cp name index ip state insp d...

Страница 167: ...ssword string show cp name index l2tp authentication ppp send receive password These commands allow you to set or show the password as an alphanumeric string that the specified connection profile will...

Страница 168: ...0 232 1 show cp name index gre key 0 232 1 These commands allow you to specify or show a 32 bit integer key value assigned to the GRE tunnel if zero the tunnel is considered not to have a key identifi...

Страница 169: ...cp name index telco compuserve hostname no cp name index telco compuserve hostname cp name index telco compuserve username string show cp name index telco compuserve username no cp name index telco c...

Страница 170: ...ameter The optional via section sets the next hop gateway cp name index ipsec ip modify net index remote members remote IPv4 addr1 nn remote IPv4 addr2 local members local IPv4 addr1 nn local IPv4 add...

Страница 171: ...once It becomes an optional clause thereafter If the modify option is absent it means a new network configuration is added to the config area Its presence indicates a change to an existing network Ex...

Страница 172: ...t cp name index ipsec encryption key 1234567890123456 1234567890123456 1234567890123456 This command allows you to specify the authentication key for an IPsec tunnel You must specify an authentication...

Страница 173: ...y timeout 1 65535 show cp name index ipsec dead peer detection ping reply timeout cp name index ipsec idle timeout non negative integer none show cp name index ipsec idle timeout no cp name index ipse...

Страница 174: ...ther or not peer is dead The IP address must belong to a tunnel s remote network which can be configured as a subnet an address range or an individual host in the IP options menu The subnet remote net...

Страница 175: ...tunnel The value zero or the keyword none causes the SPI or SPIs to be permanently bound to the first remote peer that sends traffic through the tunnel using the SPI or SPIs If the IPSec key manager...

Страница 176: ...me index ipsec ip Note This is an extended version of an existing CLI command The existing command is modified to allow a members specification to appear in the local clause and to allow for a host ad...

Страница 177: ...ddress must belong to a tunnel s remote network A tunnel s remote network can be configured as a subnet an address range or an individual host The subnet remote network case also disallows the host pa...

Страница 178: ...x ipsec mtu These commands allow you to specify or show a manual maximum transmission unit MTU also called Maximum Packet Size parameter for the specified Connection Profile The maximum value also the...

Страница 179: ...elnet VT100 Command Line Console Serial or Telnet The supported character set for TFTP text configuration files is the set of US ASCII printable characters ASCII values from 32 to 126 inclusive includ...

Страница 180: ...resented with a prompt The procedure for invoking the file transfer via the command line console is described in the section Miscellaneous Commands on page 2 103 To return to Menu mode hit Control N a...

Страница 181: ...way to 163 176 224 1 ip gateway 163 176 224 1 set Rx and Tx RIP interface ethernet 0 ip rip receive both interface ethernet 0 ip rip transmit v1 set dns 1 and dns 2 ip dns 1 163 176 4 10 ip dns 2 163...

Страница 182: ...ip addressing numbered cp 1 ip address remote 163 176 224 1 cp 1 ip mask local 255 255 255 0 cp 1 ip mask remote 255 255 255 0 cp 1 dle rfc1483 cp 1 dle ppp cp 1 ppp authentication pap cp 1 ppp authen...

Страница 183: ...or indicates that the command line processor ran out of memory attempting to complete the requested operation This error should not occur under normal circumstances error 3 set operation failed This e...

Страница 184: ...rror 121 illegal operation This error indicates that you attempted to perform an unsupported operation or one that does not make sense Example no version error 121 illegal operation clear version erro...

Страница 185: ...lash immediately following the IP address followed by a value between 0 and 32 inclusive indicating the number of contiguous ones bits in the mask e g 24 Note that IP mask values entered in dotted qua...

Страница 186: ...index out of bounds error 128 yes or no required This error indicates that a value other than yes or no was entered where only yes or no are acceptable Example cp 1 enable foo error 128 yes or no requ...

Страница 187: ...ce ethernet 0 ip address 192 168 1 2 error 133 invalid address mask error 134 invalid keyword This error indicates either than you entered a keyword that is not a permissible or accepted keyword error...

Страница 188: ...is error indicates that you attempted to enter a duplicate value where the same value entry is not permitted error 140 illegal hardware address This error indicates that you entered an improperly form...

Страница 189: ...et 0 address serve helper 40 0 0 1 interface ethernet 0 address serve helper 50 0 0 1 error 143 can t add error 144 incomplete command This error indicates that you omitted a portion of the command Ex...

Страница 190: ...hat you specified or implicitly referenced an unknown subnet Example show interface ethernet 0 ip address interface ethernet 0 ip address 192 168 1 1 24 interface ethernet 0 address serve range 192 16...

Страница 191: ...162 3DES Keys must be 3 keys of exactly 16 hex digits each This error is generated if you try to set 3DES keys which requires 16 hex digits each using more or fewer than 16 or using more or fewer than...

Страница 192: ...ort has not extension number set phonemap first error 256 Directory is full can t add new one error 257 Caller ID list is full error 258 Bad Caller ID error 259 No such carrier name error 260 Carrier...

Страница 193: ...le you may have issued the interface sdsl id pvc command but the SDSL wan interface module in the specified slot is a frame based SDSL R7100 interface rather than a cell based SDSL R7200 interface err...

Страница 194: ...net 0 address serve helper 50 0 0 1 error 102 can t delete error 103 incomplete command This error indicates that you omitted a portion of the command Example interface ethernet 0 ip error 103 incompl...

Страница 195: ...index connection timeout seconds 3 17 cp name index dle 3 11 cp name index enable 3 11 cp name index filterset 3 12 cp name index frame relay dlci multicast number 3 15 cp name index frame relay dlci...

Страница 196: ...x l2tp compression 3 23 cp name index l2tp ip partner 3 22 cp name index l2tp ip via 3 22 cp name index ppp authentication 3 14 3 15 cp name index ppp authentication type 3 14 cp name index ppp usage...

Страница 197: ...e index independent rekeys 2 127 ike phase1 name index initial contact 2 128 ike phase1 name index mode 2 126 ike phase1 name index negotiation 2 128 ike phase1 name index pfs 2 128 ike phase1 name in...

Страница 198: ...terface ethernet id ip rip auth key id start time 2 28 interface ethernet id ip rip exclude wan routes 2 27 interface ethernet id ip rip receive 2 27 interface ethernet id ip rip transmit 2 27 interfa...

Страница 199: ...t 2 85 ip state insp udp timeout 2 85 ip state insp xposed addr 2 85 ipsec mtu 3 34 N cp 3 34 show cp 3 34 backup 2 116 no arp 2 97 no backup 2 115 no backup failure layer 2 delay 2 117 no backup gate...

Страница 200: ...terface ethernet 0 address serve netbios scope enable 2 41 no interface ethernet 0 address serve range 2 32 no interface ethernet address serve dhcp default option group 2 81 no interface ethernet add...

Страница 201: ...nable 2 109 no user 2 16 no vlan id 2 36 no vlan id interface cp 2 38 no vlan id interface ssid 2 38 no vlan id interface usb 0 2 38 no wireless auto channel 2 88 no wireless block bridging 2 94 no wi...

Страница 202: ...ugh enable 3 20 show cp name index ip negotiate lan 3 13 show cp name index ip netbios proxy enable 3 14 show cp name index ip rip exclude wan routes 3 14 show cp name index ip state insp deny frag 3...

Страница 203: ...ing sas 2 127 show ike phase1 name index dead peer detection enable 2 129 show ike phase1 name index dead peer detection timeout 2 129 show ike phase1 name index encryption 2 127 show ike phase1 name...

Страница 204: ...show interface ethernet id ip dhcp client mode 2 24 show interface ethernet id ip dhcp client status 2 31 show interface ethernet id ip filterset 2 29 show interface ethernet id ip igmp version 2 25 s...

Страница 205: ...64 show interface t1 id errors 2 65 show interface t1 id framing 2 64 show interface t1 id line status 2 67 show interface t1 id loopback mode 2 67 show interface t1 id loopback status 2 67 show inter...

Страница 206: ...2 90 show wireless mac auth 2 90 show wireless mac deny 2 90 show wireless multiple ssid 2 94 show wireless passphrase 2 92 show wireless privacy 2 92 show wireless psk 2 92 show wireless second ssid...

Страница 207: ...th ssid privacy 2 95 wireless fourth ssid psk 2 96 wireless fourth ssid wpaver 2 96 wireless mac allow 2 90 wireless mac auth 2 90 wireless mac delete 2 91 wireless mac deny 2 90 wireless multiple ssi...

Отзывы:

Нет отзывов

Похожие инструкции для CLI 874

Бренд: TDC Страницы: 27

Бренд: ZyXEL Communications Страницы: 125

Бренд: BSD Networks Страницы: 7

Compact NVR-AS 4000

Бренд: IndigoVision Страницы: 38

Бренд: DIGIWEB Страницы: 16

Бренд: iDirect Страницы: 72

Бренд: IBM Страницы: 72

Бренд: iNetVu Страницы: 20

NetCon FBR-1409TX

Бренд: LevelOne Страницы: 88

8-Port 10/100Mbps Fast Ethernet Switch

Бренд: Amer.com Страницы: 14

Бренд: Planet Страницы: 66

Routers and Switches

Бренд: Allied Telesis Страницы: 15

Cyclades CS4008

Бренд: Avocent Страницы: 2

Бренд: ZyXEL Communications Страницы: 12

Бренд: IEI Technology Страницы: 106

Бренд: TP-Link Страницы: 17

Бренд: ICP DAS USA Страницы: 8

Бренд: Commax Страницы: 122

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды