manualshive.com logo in svg

Nortel Contivity1510D, Справочник

Поделиться
Скачать
Nortel Contivity1510D Скачать руководство пользователя страница 152

152 Chapter 2 CLI Command Summary

311645-A Rev 00

Example

CES>show ip traffic

IP statistics:

               total 282511

              badsum    0

            tooshort    0

            toosmall    0

             badhlen    0

              badlen    0

         infragments    0

         fragdropped    0

         fragtimeout    0

             forward    0

         cantforward    3

        redirectsent    0

     unknownprotocol    6

           nobuffers   18

         reassembled    0

        outfragments    0

             noroute  125

          badoptions    0

          badversion    0

       zero src addr    3

        src=dst addr    0

      src addr error    0

     dest addr error    0

    mgmt filterdrops 6127

    intf filterdrops    0

   route filterdrops    0

            qosdrops    0

ICMP:

        27 calls to icmp_error

        0 error not generated because old message was icmp

        Output histogram:

                echo reply: 3

                destination unreachable: 27

        0 message with bad code fields

        0 message < minimum length

        0 bad checksum

        0 message with bad length

        Input histogram:

                echo reply: 10

                echo: 3

        3 message responses generated

UDP:

Содержание Contivity1510D

Страница 1: ...Version 3 5 Part No 311645 A Rev 00 December 2000 600 Technology Park Drive Billerica MA 01821 4130 Reference for the Contivity VPN Switch Command Line Interface...

Страница 2: ...rcial Computer Software Restricted Rights clause at FAR 52 227 19 Statement of Conditions In the interest of improving internal design operational function and or reliability Nortel Networks NA Inc re...

Страница 3: ...EN 55 022 Class A CISPR 22 Warning This is a Class A product In a domestic environment this product may cause radio interference in which case the user may be required to take appropriate measures Ach...

Страница 4: ...e use for any competitive analysis reverse engineer distribute or create derivative works from the Software or user manuals or any copy in whole or in part Except as expressly provided in this Agreeme...

Страница 5: ...unity If Licensee uses the Software within a country in the European Community the Software Directive enacted by the Council of European Communities Directive dated 14 May 1991 will apply to the exami...

Страница 6: ...E AND EXCLUSIVE AGREEMENT BETWEEN NORTEL NETWORKS AND LICENSEE WHICH SUPERSEDES ALL PRIOR ORAL AND WRITTEN AGREEMENTS AND COMMUNICATIONS BETWEEN THE PARTIES PERTAINING TO THE SUBJECT MATTER OF THIS AG...

Страница 7: ...tton 31 Nortel Networks Customer Service 32 Chapter 1 Introduction 33 Accessing the CLI 33 Access from a Telnet session 33 Access from the serial port menu 34 Command modes 34 User Exec Mode 35 Privil...

Страница 8: ...mand mode 44 Next command mode 44 Related commands 44 clear ip route 45 Syntax 45 Parameters 45 Default 45 Command mode 45 Next command mode 45 Warnings 45 Related commands 46 Example 46 clear logging...

Страница 9: ...ext command mode 50 Related commands 50 Examples 50 control 52 Syntax 52 Parameters 52 Command mode 52 Next command mode 52 Related commands 52 Examples 53 disable 54 Syntax 54 Parameters 54 Default 5...

Страница 10: ...exception backup 60 Syntax 60 Parameters 60 Default 60 Command mode 61 Next command mode 61 Related commands 61 Example 61 exit 62 Syntax 62 Parameters 62 Default 62 Command mode 62 Next command mode...

Страница 11: ...lt 67 Command mode 67 Next command mode 67 Prerequisites 67 Warnings 67 Related commands 68 Example 68 interface management 69 Syntax 69 Parameters 69 Command mode 69 Next command mode 69 Warnings 69...

Страница 12: ...mode 76 Warnings 76 Example 76 ldap server 77 Syntax 77 Parameters 77 Default 77 Command mode 77 Next command mode 77 Related commands 78 Example 78 ldap server source 79 Syntax 79 Parameters 79 Defa...

Страница 13: ...efault 83 Command mode 84 Next command mode 84 Warnings 84 Related commands 84 Example 84 logout 85 Syntax 85 Parameters 85 Command mode 85 Next command mode 85 Related commands 85 Example 85 more 86...

Страница 14: ...s 93 Related commands 93 Example 94 Comments 94 reload at 95 Syntax 95 Parameters 95 Default 96 Command mode 96 Next command mode 96 Prerequisites 97 Warnings 97 Related commands 97 Example 98 Comment...

Страница 15: ...105 Comments 105 reload no sessions 106 Syntax 106 Parameters 106 Default 107 Command mode 107 Next command mode 107 Prerequisites 108 Warnings 108 Related commands 108 Example 109 Comments 109 server...

Страница 16: ...16 Parameters 116 Default 116 Command mode 116 Response 116 Next command mode 116 Prerequisites 116 Warnings 117 Related commands 117 Example 117 Comments 117 server stop 117 Syntax 118 Parameters 118...

Страница 17: ...121 Command mode 121 Response 121 Next command mode 122 Warnings 122 Related commands 122 Example 123 show file systems 124 Syntax 124 Parameters 124 Default 124 Command mode 124 Next command mode 12...

Страница 18: ...mand mode 131 Example 131 show ip ospf 132 Syntax 132 Parameters 132 Default 132 Command mode 132 Response 132 Next command mode 132 Related commands 132 Example 133 show ip ospf database 134 Syntax 1...

Страница 19: ...Response 138 Next command mode 138 Related commands 138 Example 139 show ip rip 140 Syntax 140 Parameters 140 Default 140 Command mode 140 Response 140 Next command mode 141 Related commands 141 show...

Страница 20: ...mand mode 148 Related commands 148 Example 148 show ip route policies 149 Syntax 149 Parameters 149 Default 149 Command mode 149 Response 149 Next command mode 150 Related commands 150 Example 150 sho...

Страница 21: ...mand mode 156 Warnings 157 Related commands 157 Example 157 show logging config 158 Syntax 158 Parameters 158 Default 159 Command mode 159 Response 159 Next command mode 159 Related commands 159 Examp...

Страница 22: ...arameters 167 Default 167 Command mode 167 Response 168 Next command mode 168 Related commands 168 Example 168 Comments 169 show logging syslog 169 Syntax 169 Parameters 169 Default 170 Command mode 1...

Страница 23: ...mode 175 Related commands 175 Example 175 show version 175 Syntax 175 Parameters 175 Default 176 Command mode 176 Next command mode 176 Related commands 176 Example 176 snmp server contact 177 Syntax...

Страница 24: ...82 Related commands 182 Example 182 suffix remove 183 Syntax 183 Parameters 183 Default 183 Command mode 183 Next command mode 183 Related commands 183 Example 184 trace 185 Syntax 185 Parameters 185...

Страница 25: ...p 194 Purge Group 197 Delete Group 197 Delete All 198 Branch office commands 198 Add branch office connection 199 Modify branch office connection 202 Delete branch office connection 202 Add branch off...

Страница 26: ...26 Contents 311645 A Rev 00 Required fields for user and branch records 219 Group name syntax 220 Certificate Distinguished Name order 220 Index 221...

Страница 27: ...operation Documentation This document uses the following conventions to distinguish among notes of varying importance Note Take notice Notes contain helpful suggestions or references to materials con...

Страница 28: ...onfiguration screens Text This guide uses the following text conventions angle brackets Indicate that you choose the text to enter based on the description inside the brackets Do not type the brackets...

Страница 29: ...ook titles and variables in command syntax descriptions Where a variable is two or more words the words are connected by an underscore Example If the command syntax is show at valid_route valid_route...

Страница 30: ...ol ISDN Integrated Services Digital Network ISO International Organization for Standardization ITU T International Telecommunication Union Telecommunication Standardization Sector formerly CCITT MAC m...

Страница 31: ...al publications through the Internet at the www1 fatbrain com documentation nortel URL You can purchase Nortel Networks documentation sets CDs and selected technical publications through the Nortel Ne...

Страница 32: ...ing Nortel Networks Technical Solutions Centers An Express Routing Code ERC is available for many Nortel Networks products and services When you use an ERC your call is routed to a technical support p...

Страница 33: ...ss for example telnet 10 0 16 247 You then log into the switch using an account with administrator privileges for example Login admin Password Upon login the CLI prompt appears indicating that you are...

Страница 34: ...e CLI through the Serial Port menu if you have a serial port connection to the switch Select L from the Serial Port menu shown below to access the CLI Figure 1 Serial Port Menu Command modes The switc...

Страница 35: ...ands Table 1 CLI Modes Prompts and Access Mode Prompt Access User Exec Mode CES Login via Telnet with administrator name and password Privileged Exec Mode CES Enter the command enable at the User Exec...

Страница 36: ...owned and imported by RIP show ip rip interface Display info about interfaces configured for RIP show ip route Display IP routing table show ip route policies Display IP route policies show ip traffi...

Страница 37: ...ed Exec Mode commands The following table summarizes the Privileged Exec Mode commands Table 3 Privileged Exec Mode commands Command Description clear arp cache Clear ARP cache clear logging events Cl...

Страница 38: ...Configuration Mode commands The following table summarizes the Global Configuration Mode commands show logging events Show event log contents show logging history Show the logging history setting show...

Страница 39: ...elnet session Mini CLI reset Set switch system boot mode Mini CLI restore flash Restore factory default switch flash settings restore system Restore factory default switch configuration restrict Restr...

Страница 40: ...and control P or up arrow previous history command control Q escape sequence for unprintables control T transpose characters control U delete entire line control W delete word left of cursor control X...

Страница 41: ...tical order arp This command modifies the contents of the Address Resolution Protocol ARP cache On the Contivity VPN Switch only the no form of the de facto command is supported There is no command to...

Страница 42: ...42 Chapter 2 CLI Command Summary 311645 A Rev 00 Next command mode Global Configuration Related commands show arp clear arp cache...

Страница 43: ...m on the switch that is sounded under certain error conditions Syntax audible alarm no audible alarm Parameters None Default Audible alarm is enabled Command mode Global Configuration Next command mod...

Страница 44: ...dynamic entries from the ARP cache to clear the fast switching cache and to clear the IP route cache Syntax This command has no arguments or keywords clear arp cache Parameters None Default None Comm...

Страница 45: ...is command This command is intended as a troubleshooting tool for use when routing problems are being caused by the presence of a wrong route Syntax clear ip route address mask Parameters address The...

Страница 46: ...46 Chapter 2 CLI Command Summary 311645 A Rev 00 Related commands show ip route Example CES clear ip route 10 11 0 12...

Страница 47: ...used to clear the contents of the system events log Syntax clear logging events Parameters None Default None Command mode Privileged Exec Next command mode Privileged Exec Related commands show loggi...

Страница 48: ...iguration mode commands To exit this mode the user can enter control Z the exit command or the end command All global configuration commands are entered from the terminal Syntax configure terminal Par...

Страница 49: ...CLI commands that are available are disable enable exit reload reload at reload in reload no sessions Because none of the Global Configuration mode commands are allowed setting the switch into a restr...

Страница 50: ...d in the CLI only supports the boot safe and boot normal parameters show Display the current console mode setting Default The system boots in unrestricted mode where all commands are enabled Command m...

Страница 51: ...to RESTRICTED1 CES Exec commands disable Turn off privileged commands enable Turn on privileged commands exit Exit the Telnet session reload Stop and perform a cold restart These examples show the de...

Страница 52: ...y the currently existing control tunnels Control tunnels provide a secure means to manage the switch Syntax control help create delete show Parameters help If present the control command is not Execut...

Страница 53: ...Chapter 2 CLI Command Summary 53 Reference for the Contivity VPN Switch Command Line Interface Examples CES config control Help delete CES config control create CES config control show...

Страница 54: ...ummary 311645 A Rev 00 disable This command makes the CLI parser exit from Privileged Exec mode and return to user Exec mode Syntax disable Parameters None Default None Command mode Privileged Exec Ne...

Страница 55: ...Chapter 2 CLI Command Summary 55 Reference for the Contivity VPN Switch Command Line Interface Related commands configure enable end Example CES disable CES...

Страница 56: ...before they can enter privileged Exec mode This password is created when the administrator user account is set up using the Web management pages The user gets three attempts to enter the password Afte...

Страница 57: ...I Command Summary 57 Reference for the Contivity VPN Switch Command Line Interface Related commands configure disable enable password Example CES enable Password fred The password does not display CES...

Страница 58: ...assword is not different from the existing password a warning message is generated Syntax enable password password Parameters password The password is defined that the administrator types to enter ena...

Страница 59: ...S enable Password jane CES configure CES config enable password jane The enable password you have chosen is the same as your current password This is not recommended reenter the enable password This f...

Страница 60: ...password userpassword no exception backup 1 2 3 default exception backup Parameters 1 2 3 The number of backup FTP servers being modified defined undefined backup_ip_add The IP address for backup ser...

Страница 61: ...vity VPN Switch Command Line Interface Command mode Global configuration Next command mode Global configuration Related commands show exception backup Example CES config exception backup 1 12 0 44 129...

Страница 62: ...it any configuration mode or to close an active Telnet session if they use the command when in User Exec mode Syntax exit Parameters None Default None Command mode Available in all command modes Next...

Страница 63: ...rence for the Contivity VPN Switch Command Line Interface Related commands end Example CES config exit CES exit CES This example shows a user starting in Global configuration mode and using the exit c...

Страница 64: ...t in a command by entering a question mark If nothing matches the Help list is empty and you must back up until entering a question mark shows the available options Two styles of Help are provided 1 F...

Страница 65: ...ost address master slave1 slave2 port ssl port port_number bind dn bind_dn_value bind password bind_password no host master slave1 slave2 Parameters address The IP address for the LDAP server Can be a...

Страница 66: ...s access bind password A password must be used during connection to the FTP server Default Defaults to a non SSL connection made to port 389 If ssl port is specified without providing a port number va...

Страница 67: ...o the name in the DNS server to identify the management address of the switch that is located on the private network Syntax hostname string Parameters string The DNS name to assign to the switch This...

Страница 68: ...CLI Command Summary 311645 A Rev 00 Related commands no hostname ip domain name ip name server interface management Example CES config hostname MarketingCES This example assigns the name MarketingCES...

Страница 69: ...stemfor the services such as HTTP FTP SNMP and Telnet The IP address cannot be used for any other purpose Syntax interface management ip address address exit Parameters address The IP address that is...

Страница 70: ...Rev 00 Related commands ip http server Example CES config interface management Router config if ip address 10 0 3 33 Router config if exit This command assigns the IP address 10 0 3 33 to the switch...

Страница 71: ...r to enable or disable management of the switch using a Web browser If HTTP management is disabled the switch can still be managed using the Nortel Networks CLI Syntax ip http server no ip http server...

Страница 72: ...mmand Summary 311645 A Rev 00 Related commands interface loopback Example CES config no ip http server This command disables management of the switch using a Web browser The switch can still be config...

Страница 73: ...completed and the session is then terminated without any warning or message to the Telnet user If the session ID given by the administrator is not valid or is not for a Telnet session the command disp...

Страница 74: ...ES who 121 From 116 102 4 45 213 From 116 102 12 23 217 From 116 102 12 23 CES kill 213 CES who 121 From 116 102 4 45 217 From 116 102 12 23 This example shows a series of Telnet sessions active on th...

Страница 75: ...top Parameters help If present the ldap command is not Executed but some Help about the command is displayed on the terminal export Export the contents of the LDAP database to the named LDIF file The...

Страница 76: ...ally running Default None Command mode Global configuration Next command mode Global configuration Warnings LDAP server is currently running LDAP server is already running LDAP server is already stopp...

Страница 77: ...LDAP server can be internal to the switch being administered or can be an external server that is shared by one or more Contivities Syntax ldap server internal external Parameters internal Enter LDAP...

Страница 78: ...1 The prompt returns after the backup is completed then the administrator restarts the LDAP server CES config ldap server external Router config ldap domain delimiter suffix Router config ldap suffix...

Страница 79: ...by one or more Contivities Syntax ldap server source internal external Parameters internal Use the internal LDAP server for switch configuration data external Use the external LDAP server for switch c...

Страница 80: ...CLI Command Summary 311645 A Rev 00 Warnings External LDAP server not configured Cannot reach external LDAP server Related commands ldap server show ldap server Example See the example for the ldap se...

Страница 81: ...inistrator to use the Bulk Load facility to Execute a command file that has been previously copied to the switch using FTP The commands in the file can configure various settings on the switch This fa...

Страница 82: ...82 Chapter 2 CLI Command Summary 311645 A Rev 00 Prerequisites The LDAP server must be running Related commands ldap Example CES config load ide0 system test cmd...

Страница 83: ...rning is displayed if the level set with this command does not agree with the level required for syslog message forwarding as set in the logging facility syslog command Syntax logging history alerts e...

Страница 84: ...tion Warnings Does not agree with syslog forwarding settings Related commands show logging history logging facility syslog show logging syslog Example CES config logging history errors This command se...

Страница 85: ...n earlier versions of the switch software This command logs the administrator off the switch and terminates the Telnet session It is equivalent to using the exit command in User Exec mode Syntax logou...

Страница 86: ...t are 10KB or smaller If the user tries to use more on a file that is larger than 10KB an error message is displayed Syntax more ascii binary file Parameters ascii Display file in ASCII binary Display...

Страница 87: ...are in the range decimal 32 space to decimal 126 inclusive plus the characters t decimal 9 n decimal 10 and r decimal 13 Non printable characters are represented by a period in the ASCII part if the b...

Страница 88: ...0 0 Permit Key 2 0 0 0 255 0 0 Permit AccessLst abc Rule 2 0 0 0 255 0 0 Permit SourceAddr 2 0 0 0 AccessLst bar AccessLst bar Name bar AccessLst bar Rule 1 2 0 0 255 255 0 0 0 AccessLst bar Rule 1 2...

Страница 89: ...g facility It sends three 100 byte ping packets The ping command does not recognize DNS names with hyphens Syntax ping host address scr_host scr_address Parameters address The IP address of system to...

Страница 90: ...s 64 bytes from 122 104 11 112 icmp_seq 1 time 16 ms 64 bytes from 122 104 11 112 icmp_seq 2 time 16 ms 122 104 11 112 PING Statistics 3 packets transmitted 3 packets received 0 packet loss round trip...

Страница 91: ...ch operates normally In Safe mode the HTTP or FTP traffic is allowed No other VPN traffic is allowed through the secure management tunnel or the switch Syntax reload power off restart boot safe boot n...

Страница 92: ...occurs disable after restart Logins should not be permitted after the reboot This is intended to support system maintenance tasks after a reboot text If present this explains the reason for a reload c...

Страница 93: ...ec Prerequisites A named configuration file can only be used after it has been created Warnings Any warnings cause the command to fail The user must reenter the command after correcting the parameters...

Страница 94: ...eboots the switch from ide0 using the factory installed defaults and disabling logins after the reboot to allow for system maintenance Reason is to Upgrade software The user must press CR or any subse...

Страница 95: ...latest factory config name disable logins disable after restart text Parameters hh mm The time at which the shutdown will commence Values are based on a 24 hour clock If this time has already passed...

Страница 96: ...rmitted after the reboot This is intended to support system maintenance tasks after a reboot text If present this gives the reason for a reload command This reason will be displayed on the Admin Shutd...

Страница 97: ...s A named configuration file can only be used after it has been created Warnings Any warnings cause the command to fail The user must reenter the command after correcting the parameters in error Confi...

Страница 98: ...roceed with reload confirm y This reboots the switch from ide0 using the latest configuration and disabling logins after the reboot to allow for system maintenance Reason is to Backup LDAP database Co...

Страница 99: ...g reload command There can only be one pending reload at any given time When a reload has been canceled the details for the pending reload are displayed Syntax reload cancel Parameters None Default No...

Страница 100: ...ry 311645 A Rev 00 Next command mode Privileged ExecPrerequisites A reload must already have been scheduled Warnings No currently scheduled reload operation Related commands reload reload at reload in...

Страница 101: ...oad Explanation Backup LDAP database After Shutdown Restart Disable New Logins No Disable Logins after Restart Yes Boot Mode Normal Config File latest Boot Drive ide0 This example schedules a reload c...

Страница 102: ...ide1 config file latest factory config name disable logins disable after restart text Parameters hh mm The hours and minutes that must pass before the shutdown will start The allowed range is 00 01 t...

Страница 103: ...Logins should not be permitted after the reboot This is intended to support system maintenance tasks after a reboot text If present this explains the reason for a reload command This reason will be d...

Страница 104: ...file can only be used after it has been created Warnings Any warnings cause the command to fail The user must reenter the command after correcting the parameters in error Configuration file does not...

Страница 105: ...latest Boot Drive ide1 Proceed with reload confirm y This example command powers down the switch in eight hours time When the switch is powered up again it will reboot from ide1 Further logins are di...

Страница 106: ...nnected Syntax reload no sessions power off restart boot safe boot safe boot drive ide0 ide1 config file latest factory config name disable logins disable after restart text Parameters no sessions Ind...

Страница 107: ...ogins should not be permitted after the reboot This is intended to support system maintenance tasks after a reboot text If present this explains the reason for a reload command This reason will be dis...

Страница 108: ...ation file can only be used after it has been created Warnings Any warnings cause the command to fail The user must reenter the command after correcting the parameters in error Configuration file does...

Страница 109: ...ormal Config File latest Boot Drive ide0 Proceed with reload confirm y This example reboots the switch from ide0 using the latest configuration when there are no sessions connected to the switch New s...

Страница 110: ...mmand can be performed Syntax server backup filename Parameters filename The filename to which the LDAP database will be backed up The filename can have a maximum of 8 characters The file is stored in...

Страница 111: ...The internal LDAP server must be stopped before a backup command can be performed Warnings LDIF File xxxxxxxx already exists The LDAP server must be stopped before performing a backup Cannot backup L...

Страница 112: ...er backup jan102000 Server backup started to file ide0 system slapd ldif jan102000 Server backup completed Router config ldap server start Router config ldap exit This example shows the internal LDAP...

Страница 113: ...erformed The previous contents of the LDAP database is lost Syntax server restore filename Parameters filename The name of the LDIF file that should be restored into the LDAP database The filename can...

Страница 114: ...ver must be stopped before a restore command can be performed Warnings LDIF file filename not found The LDAP server must be stopped before performing a restore Cannot restore LDAP server backup in pro...

Страница 115: ...config ldap server restore jan031999 Server restore started from file ide0 system slapd ldif jan031999 Server restore completed Router config ldap server start Router config ldap exit This example sho...

Страница 116: ...er it has been stopped Syntax server start Parameters None Default None Command mode LDAP server configuration Response The switch outputs a confirmation message once the LDAP server has been restarte...

Страница 117: ...n progress Related commands ldap server internal server backup server restore server stop Example CES config ldap server internal Router config ldap server start The LDAP server has started Router con...

Страница 118: ...ne Default None Command mode LDAP server configuration Response The switch outputs a confirmation message when the LDAP server has stopped Next command mode LDAP server configuration Prerequisites The...

Страница 119: ...server start Example CES config ldap server internal Router config ldap server stop The LDAP server has stopped Router config ldap exit This example shows the internal LDAP server being stopped Comme...

Страница 120: ...nd displays the entries in the ARP table Syntax show arp Parameters None Default None Command mode Privileged Exec Next command mode Privileged Exec Related commands clear arp cache Example CES show a...

Страница 121: ...eption backup This command shows the current backup FTP servers that are defined for the switch Syntax show exception backup Parameters None Default None Command mode Global configuration Response Thi...

Страница 122: ...122 Chapter 2 CLI Command Summary 311645 A Rev 00 Next command mode Global configuration Warnings No backup FTP servers defined Related commands exception backup...

Страница 123: ...rname ContivityMainAdmin CES config no exception backup 3 CES config show exception backup Backup FTP Server 1 Server Address 12 230 111 10 Backup Filepath dev1 CES Backup Backup Interval 12 hours Ser...

Страница 124: ...nd details of available space remaining Syntax show file systems Parameters None Default None Command mode User Exec Next command mode User Exec Example CES show file systems File Systems Size b Free...

Страница 125: ...Command Line Interface show flash contents This command shows the current settings that are in flash for the switch This is equivalent to the Flash Contents button display on the Status Statistics Web...

Страница 126: ...126 Chapter 2 CLI Command Summary 311645 A Rev 00 Command mode User Exec Next command mode User Exec Related commands show version...

Страница 127: ...Allow L2TP tunnels True Allow IPsec tunnels True Allow QoS internal True Allow QoS admission True Allow RSVP True Allow RADIUS authentication True Allow LDAP authentication True Allow NT Domain authen...

Страница 128: ...trator to check on areas that may cause problems in the future as well as see where problems have been detected already Syntax show health alerts warnings disabled all Parameters alerts Causes conditi...

Страница 129: ...Next command mode Privileged Exec Related commands audible alarm Example CES show health warnings Alert LAN on slot 2 Interface 1 Device fei1 down Alert Auto backup servers Can t backup to 12 33 44 12...

Страница 130: ...s lists The CLI accepts names up to 50 characters long The maximum length of the CLI name is 50 characters not 64 as it is in the browser based GUI Syntax show ip access list Parameters access list Th...

Страница 131: ...Next command mode User Exec Example CES show ip access list name Standard IP access list TEST permit 2 2 0 0 wildcard bits 255 255 0 0 exact Standard IP access list TEST1 deny 3 3 0 0 wildcard bits 25...

Страница 132: ...ion about OSPF routing and the state of OSPF routing processes Syntax show ip ospf Parameters None Default None Command mode User Exec Response See the example for output from this command Next comman...

Страница 133: ...umber of external LSA 0 Link State Update Interval is 00H 30M Same for all areas Link State Age Interval is 01H 00M Same for all areas Number of Areas in this router is 3 3 Normal 0 Stub 0 nssa Area 0...

Страница 134: ...atabase for the switch It also delivers information about OSPF link state advertisements Syntax show ip ospf database Parameters None Default None Command mode User Exec Response See the example for o...

Страница 135: ...nk States Area 0 0 0 0 Link State ID Adv Router Age Seq Nbr CheckSum Links 15 62 250 250 15 62 250 250 1041 0x80000011 0xecf5 3 10 254 1 36 10 254 1 36 1001 0x8000001d 0xf39a 6 Displaying Summary Link...

Страница 136: ...interface This command displays information about interfaces that are configured for OSPF routing Syntax show ip ospf interface Parameters None Default None Command mode User Exec Response See the ex...

Страница 137: ...ands show ip ospf show ip ospf database show ip ospf neighbor Example CES show ip ospf interface IP Address CId Area ID Type State Cost Priority Router 15 60 150 150 17 0 0 0 0 BCAST DR 1 1 10 254 1 3...

Страница 138: ...nformation about OSPF neighbors on a per interface basis Syntax show ip ospf neighbor Parameters None Default None Command mode User Exec Response See the example for output from this command Next com...

Страница 139: ...namic Neighbors This example shows the IP address router id and state of the neighbors RouterID Pri State Dead Time Address Interface 10 0 62 182 1 FULL DR 00 00 20 10 0 62 182 10 0 4 41 10 0 16 36 1...

Страница 140: ...00 show ip rip This command displays general information about RIP routing and the state of RIP routing process and status Syntax show ip rip Parameters None Default None Command mode User Exec Respon...

Страница 141: ...nabled Trusted Neighbor Disabled Rip Domain 0 Triggered Update Off RouteChange 0x0 Query 0x0 Local Net 0x00000000 Mask 0x00000000 ClassMask 0x00000000 LocalCircuit 1 Node Wide Stats rn_rtid 0x00000000...

Страница 142: ...command provides information related to the RIP database for the switch It also delivers information about routes owned and imported by RIP Syntax show ip rip database Parameters None Default None Co...

Страница 143: ...ands show ip rip show ip rip interface show ip rip database Example CES show ip rip database This example shows routes owned by an RIP database Table 6 Circuit Address Mask Owner Cost Metric GW 1 192...

Страница 144: ...ormation about interfaces that are configured for RIP routing Syntax show ip rip interface Parameters None Default None Command mode User Exec Response See the example for output from this command Nex...

Страница 145: ...ce Example CES show ip rip interface This example shows the state of the configured interface Ip 10 0 15 146 Subnet 255 255 0 0 RipEnabled Yes IntfState UP Auth None Type ETH Cid 1 RxMode V2 TxMode V2...

Страница 146: ...e RTM routing table Each line of the output has the following format P TT a a a a n ad rm via nh nh nh nh d hh mm ss CircId nFormat CodeUsage P Authoring protocol TT Type a a a a Address n Number of b...

Страница 147: ...oute address mask Parameters If no parameters are specified all of the current contents are displayed address Display a specific host a a a a mask Display a specific route to address a a a a net mask...

Страница 148: ...0 0 1 0 00 58 36 CircId 1 D 10 0 4 41 32 0 0 via 127 0 0 1 0 00 58 36 CircId 1 D 11 0 0 0 16 0 0 via 11 0 4 41 0 00 58 36 CircId 9 D 11 0 4 41 32 0 0 via 127 0 0 1 0 00 58 36 CircId 9 CES show ip rou...

Страница 149: ...Switch Command Line Interface show ip route policies This command displays the contents of route policies in the routing protocol Syntax show ip route policies Parameters None Default None Command mod...

Страница 150: ...ommand mode User Exec Related commands show ip route Example CES show ip route policies ospf 0 interface 10 0 3 41 distribute list in TEST This example shows the accept route policy in OSPF on the int...

Страница 151: ...nterface show ip traffic This command displays statistics about IP traffic including packets sent and received and various errors Syntax show ip traffic Parameters None Default None Command mode User...

Страница 152: ...ments 0 noroute 125 badoptions 0 badversion 0 zero src addr 3 src dst addr 0 src addr error 0 dest addr error 0 mgmt filterdrops 6127 intf filterdrops 0 route filterdrops 0 qosdrops 0 ICMP 27 calls to...

Страница 153: ...ate acks 0 ack for unsent data 14578 packets 1713926 bytes received in sequence 0 completely duplicate packet 0 byte 0 packet with some dup data 0 byte duped 117 out of order packets 0 byte 0 packet 0...

Страница 154: ...displays information about VRRP status Syntax show ip vrrp interface Parameters interface Displays information about VRRP status of the specified interface Default None Command mode User Exec Respons...

Страница 155: ...eempt Advertisement interval 1 IP Address 10 0 20 186 Became master 1 times sent 0 Zero prio pkts recv d 0 Sent 436 advertisements recv d 0 No errors Virtual router 2 Current state is Backup priority...

Страница 156: ...r the internal and the external LDAP servers external Displays configuration and state for the external LDAP servers internal Displays configuration and state for the internal LDAP server Default If n...

Страница 157: ...DN cn Marketing Base Master Host Base DN ou Marketing o Nortel c US Master Host SSL Encrypt None Slave1 Host Address 16 211 17 100 Slave1 Host SSL Port 636 Slave1 Host Bind DN cn Marketing Slave1 Hos...

Страница 158: ...isplayed year The year for which the configuration log is to be displayed A four digit value normal Display normal events including user and system interactions that indicate switch activity urgent Di...

Страница 159: ...aults to today If the year portion of the date is omitted it defaults to the current year The display level defaults to normal Command mode Privileged Exec Response See the example for output from thi...

Страница 160: ...le setting IpxIntfOmCls IPXPublicAddress N A 09 54 31 tSerialConfig 0 Flash AdminUid changed from admin to sysadmin by use 09 54 31 tSerialConfig 0 Flash AdminPassword changed by user 09 54 31 tSerial...

Страница 161: ...s should only be used for troubleshooting as using them can significantly impact performance of the switch Once you set these options they remain on until cleared by a subsequent show logging events c...

Страница 162: ...eged Exec Response See the example for output from this command Next command mode Privileged Exec Warnings If the user chooses to track dropped IP or IPX packets a confirmation is requested due to the...

Страница 163: ...ter admin authenti 09 02 1999 12 04 03 0 Security 11 Session LOCAL admin 2877 server right MANAGE 09 02 1999 12 04 03 0 Security 11 Session LOCAL admin 2877 user group right MAN 09 02 1999 12 04 04 0...

Страница 164: ...3739424 Prv 00 Mgmt filter drop src 0x8f0f010a dst 09 02 1999 12 17 54 0 IPvfy 03739424 Prv 00 Mgmt filter drop src 0x8c10000a dst 09 02 1999 12 17 57 0 PaceJob 0 00 Calling 0x00ca012c passing 011b7b2...

Страница 165: ...s long example shows the amount of detail that is output by this command depending on the options chosen The second to last command disables tracking of IP drops and clears the event log so that no ou...

Страница 166: ...ogging history Logging history level is errors This example shows the output for a switch where the logging history is still the default value show logging security This command displays the contents...

Страница 167: ...Display events that an administrator should be aware of immediately In the output these events are marked with an asterisk Could indicate potential security or access problems Also display normal even...

Страница 168: ...Forcing admin to re supply userid 11 26 11 tEvtLgMgr 0 Security 12 Session LOCAL admin 2875 master admin authen 11 26 11 tEvtLgMgr 0 Security 12 Session LOCAL admin 2875 Management logged 11 48 39 tE...

Страница 169: ...yslog This command displays the contents of the system log The system log contains all system events that are considered significant enough to be written to disk including those displayed in the secur...

Страница 170: ...ort personnel Also display normal and urgent events all Display events for use of Nortel Networks support personnel used for troubleshooting the switch Includes every event that the switch generates A...

Страница 171: ...ion LOCAL admin 2880 master admin authen 15 09 12 tEvtLgMgr 0 Security 12 Session LOCAL admin 2880 Management logged 15 27 33 tEvtLgMgr 0 Security 13 Management Forced Admin User Off Due to Timeo 15 2...

Страница 172: ...through the output one screen at a time or quit and abandon the remainder of the output show reload This command displays information about any pending shutdowns that are scheduled on the switch This...

Страница 173: ...ad at reload in reload no sessions Example CES show reload Reload scheduled in 1 hour 45 minutes Explanation Load latest software patches After shutdown Restart Current logins Enabled Reboot logins Di...

Страница 174: ...ns details Show detailed information for the connections ipsec Show information for IPSec connections l2f Show information for L2F connections l2tp Show information for L2TP connections pptp Show info...

Страница 175: ...Example CES show sessions This command shows the administrator connections currently made to the switch Details include the number of current sessions as well as who is currently logged in to each ses...

Страница 176: ...uild Date Nov 18 2000 11 31 50 System Serial Number 12012 MAC Address 00 E0 7B 00 00 C0 BIOS 1 00 02 DI0 11 05 9612 40 54 bftarget uptime 016 days 01 hours 14 minutes Current Configuration File ide0 s...

Страница 177: ...rs the SysContact field in the MIB II MIB This field contains the name and contact information of the contact person for this switch Syntax snmp server contact text no snmp server contact Parameters t...

Страница 178: ...g too long must be 255 characters or less Related commands snmp server location text snmp server name text Example CES config snmp server contact Dial John Connolly at 1 800 555 1212 x 123 This exampl...

Страница 179: ...field in the MIB II MIB This field contains the physical location for this switch Syntax snmp server location text no snmp server location Parameters text String containing the physical location of t...

Страница 180: ...y 311645 A Rev 00 Related commands snmp server contact text snmp server name text Example CS config snmp server location Building 400 4th Floor Closet A122 This example sets the location string to Bui...

Страница 181: ...snmp server name This command sets or clears the SysName field in the MIB II MIB This field contains an administratively assigned name for this switch Syntax snmp server name text no snmp server name...

Страница 182: ...bal configuration Warnings Name string too long must be 255 characters or less Related commands snmp server contact text snmp server location text Example CES config snmp server name Contivity Chester...

Страница 183: ...for the switch It allows the administrator to remove the domain name suffix from the user ID before sending the user ID to the LDAP server for authentication Syntax suffix remove no suffix remove Par...

Страница 184: ...er config ldap no suffix remove Router config ldap domain delimiter suffix Router config ldap exit In this example the delimiter between the user ID and the domain name is set to the character and the...

Страница 185: ...ems The trace command does not recognize DNS names with hyphens Syntax trace ip host address hops number wait timeout Parameters host The trace packets to the system identified by this host name addre...

Страница 186: ...2 15 1 router a fred corp com 195 120 1 6 1000 msec 8 msec 4 msec 2 filter 1 jane fred com 195 120 16 2 8 msec 8 msec 8 msec 3 core2 seattle cw net 204 70 9 120 8 msec 4 msec 4 msec 4 internap seattle...

Страница 187: ...e listed by session ID The session ID values are fixed for the life of a session Syntax who ip_address Parameters ip_address A dotted IP address If present limits the output to Telnet sessions that ar...

Страница 188: ...188 Chapter 2 CLI Command Summary 311645 A Rev 00 Illegal IP address Related commands kill show sessions...

Страница 189: ...tions tunnel types and so forth The bulk load command is executed via the telnet interface by using the LOAD command The LOAD command has the following syntax LOAD name of file As the command executes...

Страница 190: ...The file is located in SYSTEM COMMAND directory on the boot disk The command file has the following characteristics The command file must conform to the 8 3 eight character prefix the character suffix...

Страница 191: ...ith different releases installed For example the following command file may be executed on a switch installed with versions 2 50 2 60 and 3 00 FILE_FORMAT 1 0 COMMAND ONE END FILE_FORMAT 2 0 COMMAND T...

Страница 192: ...s User commands allow an administrator to add or delete user records They also allow an administrator to add or delete user groups The supported user commands are ADD_USER DELETE_USER RESET_USER_CERTS...

Страница 193: ...ress mask IPSEC_UID IPSec User ID Required if not using certificates IPSEC_PSW IPSec password Required if not using certificates IPSEC_SUBJECTDN Subject distinguished name Required if using certificat...

Страница 194: ...ME User name Required END Add Group The ADD_GROUP command is used to add a group to the switch database COMMAND ADD_GROUP GROUP Group name Required END Modify Group The MODIFY_GROUP command is used to...

Страница 195: ...Idle timeout period hh mm ss format FORCED_LO_TIME Forced logout timeout hh mm ss format SPLIT_TUN Split tunneling Enable Disable SPLIT_TUN_NET Split tunnel network name ADDR_POOL Address pool name or...

Страница 196: ...ESP_NULLSHA1 ESP NULL Authentication Only with SHA1 Integrity Enable Disable ESP_NULLMD5 ESP NULL Authentication Only with MD5 Integrity Enable Disable AH_SHA1 AH Authentication Only HMAC SHA1 Enable...

Страница 197: ...NS Secondary DNS address SEC_WINS Secondary WINS address END Purge Group The PURGE_GROUP command is used to delete all users in a specified group If you do not specify a group the command purges all u...

Страница 198: ...ete branch office connections including control tunnel connections These commands also allow administrators to add and delete branch office groups The supported branch office commands are ADD_CONNECTI...

Страница 199: ...nection name Required SYSTEM_IP Contivity management IP address Required for Restricted tunnel LOCAL_ENDPOINT Local interface IP address Required REMOTE_ENDPOINT Remote interface IP address Required R...

Страница 200: ...ault Disable IPSec Authentication IPSEC_PSW IPSec password Required if not using certificates IPSEC_SUBJECTDN Subject distinguished name Required if using certificates and not IPSEC_ALTNAME IPSEC_ALTN...

Страница 201: ...types Required for PPTP L2TP PEER_PSW Tunnel authentication peer password PPTP L2TP tunnel types COMPRESSION PPTP L2TP compression Enable Disable PPTP L2TP tunnel types ENC_STATE_MODE PPTP L2TP Compre...

Страница 202: ...ME Name of existing Branch Office connection to modify Required SUBNET Remote Network subnet Required MASK Remote Network subnet mask Required REM_NET_COST Remote network cost Default 10 REM_NET_STATE...

Страница 203: ...ecified A group name is required COMMAND ADD_BRANCHGROUP GROUP Group name Required END Modify branch office group The MODIFY_BRANCHGROUP command is used to modify existing branch office groups All val...

Страница 204: ...IPSEC Attributes ESP_3SHA1 ESP Triple DES with SHA1 Integrity Enable Disable ESP_3MD5 ESP Triple DES with MD5 Integrity Enable Disable ESP_56SHA1 ESP 56 bit DES with SHA1 Integrity Enable Disable ESP...

Страница 205: ...Export default routes metric Enable Disable EXPORT_STATIC_ROUTE Export static routes metric Enable Disable EXPORT_BO_STATIC_ROUTE Export branch office static routes metric Enable Disable EXPORT_OSPF_...

Страница 206: ...of these values OSPF_PASS OSPF Authentication Password MD5_PASS OSPF MD5 password MD5_KEY OSPF MD5 Key END Contivity VPN Switch configuration commands Switch configuration commands allow the administ...

Страница 207: ...d END The DELETE_NETWORK command is used to delete an existing network definition COMMAND DELETE_NETWORK NET_NAME Name of existing network to delete Required END The MODIFY_NETWORK command is used to...

Страница 208: ...pe Static Pooled Port Required IN_START_IP Internal starting IP address Required IN_END_IP Internal ending IP address Required EX_START_IP External starting IP address Required EX_END_IP External endi...

Страница 209: ...ternal starting IP address Required IN_END_IP Internal ending IP address Required EX_START_IP External starting IP address Required EX_END_IP External ending IP address Required for Pooled NAT type EN...

Страница 210: ...sting address pool COMMAND DELETE_POOL IP_START Starting IP address Required IP_END Ending IP address Required END Filters Several bulk load commands are used to create and configure filters and filte...

Страница 211: ...Disable SNMP_SVC SNMP local service Enable Disable FTP_SVC FTP local service Enable Disable TELNET_SVC TELNET local service Enable Disable PING_SVC Ping local service Enable Disable RADIUS_SVC Radius...

Страница 212: ...on COMMAND CREATE_RULE RULE_NAME Rule name Required ADDR_NAME Address Name Default Any ACTION Rule action Permit Deny Default Deny DIRECTION Direction Inbound Outbound Default Inbound PROTOCOL Protoco...

Страница 213: ...EATE_ADDRESS ADDR_NAME Address Name Required IP_ADDR IP Address Required MASK Address mask Required END The CREATE_PORT command creates a new port definition to be used by a filter rule COMMAND CREATE...

Страница 214: ...Enable FTP_PSW Password for FTP host Default FTP_INTERVAL Time between backups hours Default 5 FTP_PATH Path where files are stored Default FTP_SERVER FTP Server 1 2 3 Default 1 END The DELETE_FTPSER...

Страница 215: ...port Default 514 SLOG_ENABLE Enable Syslog Server Default Enable SLOG_SERVER Syslog Server 1 2 3 4 Default 1 END The DELETE_SYSLOG command is used to remove an existing system log forwarding server CO...

Страница 216: ..._COMMUNITY SNMP Community name SNMP_ENABLE Enable SNMP Host Default Enable END The DELETE_SNMPHOST command is used to remove an existing SNMP Get or Trap host COMMAND DELETE_SNMPHOST SNMP_TYPE Get Tra...

Страница 217: ...re used to configure DHCP CONFIG_REMOTE_POOL CONFIG_DHCP DELETE_DHCP The CONFIG_REMOTE_POOL command is used to set the type of remote pool used by the switch either DHCP or Address Pools COMMAND CONFI...

Страница 218: ...ng of certain features will be supported in bulkload version 3 0 The following two commands allow the user to enable and disable a paid feature on the CES ENABLE_PAID_FEATURE DISABLE_PAID_FEATURE The...

Страница 219: ...y using the DELETE_USER or DELETE_CONNECTION command lessens the load on the LDAP server but it may increase the time required to execute the commands Required fields for user and branch records You m...

Страница 220: ...aving out the Base specifier For example Base Engineering is specified as Group ou Engineering Base Engineering Software is specified as Group ou Software ou Engineering Base Field Boston Sales is spe...

Страница 221: ...2 D DHCP 217 disable 54 documentation map 28 E enable 56 enable password 58 exception backup 60 exit 62 H help 64 host address 65 hostname 67 I interface management 69 ip http server 71 K kill 71 L ld...

Страница 222: ...se 142 show ip rip interface 144 show ip route 146 show ip route policies 149 show ip traffic 151 show ip vrrp 154 show ldap server 156 show logging config 158 show logging events 161 show logging his...

Отзывы:

Нет отзывов

Бренды по названию

Популярные бренды

Загрузить еще бренды