- DL manuals
- 3Com
- Network Router
- OfficeConnect 3CP4144
- Cli User's Manual
3Com OfficeConnect 3CP4144 Cli User's Manual
Summary of OfficeConnect 3CP4144
Page 1
Http://www.3com.Com/ officeconnect tm remote 812 adsl router cli user’s guide release 1.1.
Page 2
Ii 3com corporation 5400 bayfront plaza santa clara, california 95052-8145 copyright © 2000 3com corporation. All rights reserved. No part of this documentation may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation, or adaptation) with...
Page 3: Ontents
C ontents 1 a ccessing the c onfiguration i nterface establishing communications with the officeconnect remote 812 1 local connection 1 ibm-pc compatible computers 1 macintosh computers 1 unix-based computers 2 remote connection 2 2 cli c ommand c onventions and t erminology command structure 1 form...
Page 4
Instructions 1 setup script 1 password protection 2 which portions of the network do you want to configure? 2 quick setup identification information 2 quick setup management information 2 telnet information 3 quick setup ip information 3 quick setup ipx information 4 quick setup bridge information 5...
Page 5
Show ip settings 6 show ip routing settings 6 configuring an ip network over the lan 6 configuring ip rip on the lan 6 configuring ip for the remote site connection 7 configuring ip rip for a remote site 8 configuring static and framed ip routes 8 ip tools 9 address translation 9 network address tra...
Page 6
Setting date and time 24 setting system identification 24 configuring web browser and telnet login access 24 providing tftp access 25 setting password protection 25 introduction 26 filtering overview 26 officeconnect remote 812 filtering capabilities 27 filter classes 27 filter types 27 data filters...
Page 7
Applying a filter to an interface using cli 37 configuring a filter for a vc/remote site using cli 37 setting filter access using cli 38 managing filters using cli 38 displaying the managed filter list using cli 38 adding filters to the managed list using cli 38 removing a filter from an interface u...
Page 8
Add ipx route b-4 add ipx service [service_name] b-5 add ipx_route vc b-6 add ipx_service vc b-6 add nat tcp vc b-7 add nat udp vc b-7 add network service status b-8 add snmp community b-9 add snmp trap_community b-9 add syslog loglevel [loglevel] b-9 add tftp client b-9 add user [name] password [pa...
Page 9
Dial b-12 dial b-12 disable b-12 disable access b-12 disable bridge network b-12 disable bridge spanning_tree b-12 disable icmp b-13 disable interface b-13 disable ip forwarding b-13 disable ip network b-13 disable ip rip b-13 disable ip routing b-13 disable ip static_remote_routes b-13 disable ipx ...
Page 10
Enable security_option remote_user administration b-15 enable security_option snmp user_access b-15 enable snmp authentication traps b-15 enable telnet escape b-16 enable user b-16 enable vc b-16 exit cli b-16 hangup b-16 hangup interface b-16 hangup vc b-16 help b-16 help b-16 history b-16 history ...
Page 11
List networks b-20 list processes b-20 list ppp b-20 list services b-21 list snmp communities or list snmp trap_communities b-21 list syslog b-21 list tcp connections b-21 list tftp clients b-21 list udp listeners b-21 list users b-22 list vc b-22 login_required b-22 password b-22 paused commands b-...
Page 13
Show interface settings b-43 show ip counters b-43 show ip settings b-44 show ip network settings b-44 show ipx counters b-44 show ipx network counters b-45 show ipx network settings b-45 show ipx rip b-46 show ipx sap b-46 show ipx settings b-47 show memory b-47 show network settings b-47 show netw...
Page 14
Status b-54 cli exit commands b-54 bye, exit, leave, quit b-54 logout b-54 command features b-54 command retrieval b-54 positional help b-54 command completion b-54 output pause b-54 command kill b-54 comments b-55 3c om c orporation l imited w arranty fcc c lass a v erification s tatement fcc c las...
Page 15: Ccessing
1 a ccessing the c onfiguration i nterface this chapter explains how to attach to the configuration interface locally via the console port or remotely via a telnet session. This chapter also introduces you to the capabilities and conventions associated with management of your officeconnect remote 81...
Page 16
1-2 c hapter 1: a ccessing the c onfiguration i nterface unix-based computers kermit, minicom and tip are typical terminal emulation programs for unix-based computers. Depending on the platform you’re using, you may need to modify a configuration file for vt100 settings. Remote connection if you wan...
Page 17: Cli C
2 cli c ommand c onventions and t erminology this chapter describes the command syntax, conventions and terminology used within the command line interface. Reviewing and understanding this chapter is essential for you to understand subsequent chapters. Command structure format commands can be follow...
Page 18
2-2 c hapter 2: cli c ommand c onventions and t erminology may be a list of options you must choose from. When choosing an option, type the text of the option exactly. Names or strings ■ “double quotation marks” set off user-defined strings. If you want white space or special characters in a string,...
Page 19
Command structure 2-3 conventions conventions ■ most commands are not case sensitive. As a rule, only and [password] values require typing the correct case. ■ configuration changes occur immediately but are lost on reboot unless you save them. The save all command places configuration changes in fla...
Page 20
2-4 c hapter 2: cli c ommand c onventions and t erminology.
Page 21: Onfiguration
3 c onfiguration m ethods officeconnect remote 812 cli offers three setup choices, all of which are described in this section: the automated, quick setup method, the quickvc setup method, and the manual method. Review the capabilities of each below and decide which configuration method best suits yo...
Page 22
3-2 c hapter 3: c onfiguration m ethods manual setup instructions once you become familiar with the cli interface, you might find it more efficient to manage the officeconnect remote 812 manually. Manual configuration is most versatile in that you only enter commands that need to effectively change ...
Page 23: Uick
4 q uick s etup this chapter will describe in detail the operations of the quick setup program. It will identify the required information, steps involved, and sample output scripts from the execution of this program. Cli quick setup script introduction the cli quick setup program allows you to quick...
Page 24
4-2 c hapter 4: q uick s etup the officeconnect remote 812 quick setup allows you to setup a simple configuration for ip, ipx, and bridging. Please answer the following questions with "yes" or "no" to indicate which portions of the system you want to configure. When quick setup displays a question i...
Page 25
Cli quick setup script 4-3 along with a community name, you can limit access to a specific management station. "0.0.0.0" means any station. You also need to specify if this community can only read information, or read and write information. This completes the section on snmp management configuration...
Page 26
4-4 c hapter 4: q uick s etup you need to specify the framing for the ip network. It should be either "ethernet_ii" or "snap". You can use the routing information protocol (rip) to exchange routing information with other routers on the network. The officeconnect remote 812 can act as a dhcp server, ...
Page 27
Cli quick setup script 4-5 the network number is a non-zero hexadecimal number of up to 8 digits. You need to specify the framing for the ipx network. It should be one of the following: “ethernet_ii”, “snap”, “dsap”, “novell_8023.” quick setup bridge information the network name is used by the offic...
Page 28
4-6 c hapter 4: q uick s etup management information: console login required: yes console login password: password snmp management: snmp community: public snmp ip address: 0.0.0.0 snmp read&write: yes telnet management: telnet user: root telnet password: !Root i p information: ip network name: ip ip...
Page 29
Cli quick setup script 4-7 sample output display as quick setup executes ocr-dsl> set system name "name" ocr-dsl>set system location "vienna" ocr-dsl>set system contact "jc" ocr-dsl>enable command password “password” ocr-dsl>add snmp community public address 0.0.0.0 access rw ocr-dsl>enable security...
Page 30
4-8 c hapter 4: q uick s etup.
Page 31: Uick
5 q uick vc s etup this chapter will describe in detail the operations of the officeconnect remote 812 vc setup wizard program. It will identify the required information, steps involved, and sample output scripts from the execution of this program. Cli quickvc setup script introduction the cli quick...
Page 32
5-2 c hapter 5: q uick vc s etup the category of service and cell rate parameters only affect data transmitted from the officeconnect remote 812 to the remote site (upstream direction). The default value of ubr with a peak cell rate of 0 will attempt to use all available upstream bandwidth when tran...
Page 33
Cli quickvc setup script 5-3 the ip configuration for vc “name” is now complete. Ip configuration (network service rfc1483) network address translation (nat) allows a single wan-side ip address to be ‘shared’ by multiple lan-side devices. If you choose to run nat the wan interface must be numbered. ...
Page 34
5-4 c hapter 5: q uick vc s etup ipx routing (network service ppp) the ipx configuration for vc “name” is now complete. Ipx routing (network service rfc 1483) the ipx configuration for vc “name” is now complete. Bridging the officeconnect remote 812 can be configured to send and receive the routed (...
Page 35
Cli quickvc setup script 5-5 category of service: ubr peak cell rate: 0 ip: enabled local wan ip address: learned remote wan ip address: learned wan interface type: numbered address translation (nat): enabled rip: no remote is default gateway: yes ipx: enabled ipx wan network number: learned ipx wan...
Page 36
5-6 c hapter 5: q uick vc s etup.
Page 37: Anual
6 m anual s etup this chapter describes how to manually setup the officeconnect remote 812 for routing or bridging. Configuration overview the following steps provide an outline to follow when configuring the officeconnect remote 812 to route or bridge to remote networks. 1 determine how the officec...
Page 38
6-2 c hapter 6: m anual s etup remote site management each remote site that you want to connect to is accessed through a single atm virtual channel connection. To set up connections over the wan, a vc (remote site) profile must be created and edited. With this profile, you specify atm virtual channe...
Page 39
Remote site management 6-3 disable vc internet s et vc internet send_password testpassword enable vc internet configuring network service information a network service defines the data encapsulation and protocol characteristics for the connection between the officeconnect remote 812 and the remote s...
Page 40
6-4 c hapter 6: m anual s etup for svcs, there is not a fixed vpi/vci. Instead, a destination address is used to set up a path through the atm backbone network when the connection is to be established. Currently, the svc capability is disabled in the officeconnect remote 812. Atm category of service...
Page 41
Ip routing 6-5 to configure ip routing, ip must be defined on both the lan interface and one or more vc profiles. On the lan, an ip network must exist with a specified ip address and subnet mask. In the vc profile, ip routing needs to be enabled, and the remote router address, a remote subnet mask a...
Page 42
6-6 c hapter 6: m anual s etup you can specify the subnet in one of two ways: a class or numerical designation. If you specify a class c subnet mask, for instance, this command will generate a 255.255.255.0 subnet value for you. If you specify the number of bits (to be set to 1), the acceptable rang...
Page 44
6-8 c hapter 6: m anual s etup ■ to create a filter to block netbios file and printer sharing over the remote site connection, use the following command: add auto_filter vc_blk_netbios vc where is the vc remote site profile name. This command creates a filter which rejects incoming frames with desti...
Page 45
Address translation 6-9 the route will appear in the ip routing table. You can display all ip routes with the list ip routes command. ■ to delete an ip static route, use the command: delete ip route ■ to add a framed route that will be installed in the ip routing table when a connection is establish...
Page 46
6-10 c hapter 6: m anual s etup static nat port mappings or the nat default address need to be configured when an application will initiate a tcp or udp connection from the public network. If a public accessible server resides on a privately addressed lan, static ports can be defined for the applica...
Page 47
Dhcp 6-11 remember to save your configuration using the save all command before rebooting your officeconnect remote 812 so that your changes will be written to permanent flash memory. Monitoring nat the nat configuration is displayed when viewing the remote site configuration using the show vc comma...
Page 48
6-12 c hapter 6: m anual s etup ■ ip address pool, start and end address ■ ip subnet address mask ■ lease period ■ wins server addresses ■ dns server addresses the hostname is the base name assigned to the workstation . A numeric suffix is appended to the base name and incremented after each assignm...
Page 49
Dns 6-13 show dhcp server counters list dhcp server leases the dhcp server configuration is displayed with the show dhcp server settings command. Configuring the dhcp relay the officeconnect remote 812 can relay dhcp requests to up to two remote servers. The officeconnect remote 812 dhcp relay can b...
Page 50
6-14 c hapter 6: m anual s etup configuring dns ■ to enable dns functionality on the officeconnect remote 812, use the command: enable dns ■ to disable dns functionality, use the command: disable dns you can configure three global dns parameters that control the operation of the dns proxy. ■ number ...
Page 51
Ipx routing 6-15 add dns server primary_address secondary_address ■ to create an entry that will learn addresses using ppp, use the command: add dns server vc ■ to display the contents of the dns server table, use the command: list dns servers ■ to delete a domain entry, use the command: delete dns ...
Page 52
6-16 c hapter 6: m anual s etup to configure ipx routing, ipx must be defined on both the lan interface and one or more remote sites. On the lan, an ipx network must exist with a specified ipx network number. On the remote sites, ipx forwarding needs to be enabled, and the wan interface address need...
Page 53
Ipx routing 6-17 set vc ipx_address ■ to specify that the wan ipx network address should be learned via ppp you can enter ffffffff for the parameter: set vc ipx_address ffffffff ■ to specify that the interface is unnumbered you must enter 00000000 for the parameter. Set vc ipx_address 00000000 confi...
Page 54
6-18 c hapter 6: m anual s etup ■ to delete a framed route so that it no longer will be installed in the routing table when the connection is established use the command: delete ipx_route vc ipx_route remember to disable and then re-enable the vc profile for the change to take effect. Configuring ip...
Page 55
Bridging 6-19 the route will be removed from the ipx routing table when the vc profile is disabled. ■ to delete a framed route so that it no longer will be installed in the routing table when the connection is established use the command: delete ipx_service vc name type remember to disable and then ...
Page 56
6-20 c hapter 6: m anual s etup attached to a network segment. A data packet is not forwarded to another segment if its destination mac address resides on the same segment as its source. To efficiently separate traffic, the bridge maintains a bridge forwarding table. The table contains a list of mac...
Page 58
6-22 c hapter 6: m anual s etup the spanning tree priority is the priority assigned to a bridge that is running the spanning tree protocol. It is used for prioritizing the bridges when spanning tree is enabled. ■ to change the spanning tree priority, use the command: set bridge spanning_tree_priorit...
Page 59
System administration 6-23 the bridge firewall has three modes: 1 discard routed protocols: this is the default mode. If a protocol is configured for routing and a packet for that protocol type is received from the lan that is not addressed to the mac address of the officeconnect remote 812, it is d...
Page 60
6-24 c hapter 6: m anual s etup remember to save your configuration using the save all command before rebooting your officeconnect remote 812 so that your changes will be written to permanent flash memory. Setting date and time you can obtain the current date, time and system uptime using the comman...
Page 61
System administration 6-25 the name can be up to 32 characters long and the password can be up to 15 characters long. ■ to delete a login user, use the command: delete user ■ to change the password, use the command: set user password ■ to enable the use of cli for telnet users, issue the additional ...
Page 62
6-26 c hapter 6: m anual s etup enable command password or disable command password where password > is an alphanumeric string of 1 to 8 characters. The default password is “password.” be sure to save your configuration after entering a new password. ■ after logging in to the cli, you can exit the c...
Page 63
Officeconnect remote 812 filtering capabilities 6-27 packet filters control inter-network data transmission by accepting or rejecting the passage of specific packets through network interfaces based on packet header information. When data packets are received by a network interface such as an ethern...
Page 64
6-28 c hapter 6: m anual s etup advertisement filters advertisement filters operate on network protocol packets that contain varying information such as sap or rip. Filtering of these packets is performed by the specific protocol process. The following table describes the advertisement filters suppo...
Page 65
Creating filters using command line interface 6-29 creating filters using command line interface before creating a filter file, you should carefully identify the information you want to filter. Decide if you want a filter that discards packets (such as reject all ip packets whose ip source address i...
Page 66
6-30 c hapter 6: m anual s etup protocol rules you can define protocol rules within each protocol section in the filter file. Protocol rules determine which packets may and may not access the network. The rule syntax is: the line # range is 1-10. This means you can combine up to 10 rules to create a...
Page 67
Creating filters using command line interface 6-31 following rules are used: ip: 1 accept src-addr=xxx; 2 accept dst-addr=yyy; 999 deny; (this will only accept packets from the specified address(es); all other packets will be rejected.) the following table describes the keywords for each protocol se...
Page 68
6-32 c hapter 6: m anual s etup ■ value - the value (hex) to compare to the packet contents. For example, a generic bridge filter to prevent all ip packets from being bridged is: br-eth: 1 reject generic=>origin=frame/offset=12/length=2/mask=0xffff/value=0x0800; applying the rules using cli the foll...
Page 69
Creating filters using command line interface 6-33 ip: 1 reject protocol = tcp; ip rip packet filtering using cli routing information protocol (rip) packets are used to identify all attached networks as well as the number of router hops required to reach them. The responses are used to update a rout...
Page 70
6-34 c hapter 6: m anual s etup you can compare the source or destination ipx socket number contained in the packet to the socket number defined in the filter rules. You must specify the type of the comparison. For example, the following rule example accepts ipx packets with the ipx source socket nu...
Page 71
Creating filters using command line interface 6-35 1 accept generic=>origin=frame/offset=12/length=2/mask=0xffff/value=0x0800; # allow arp traffic 2 accept generic=>origin=frame/offset=12/length=2/mask=0xffff/value=0x0806; # allow ipx traffic 3 accept generic=>origin=frame/offset=12/length=2/mask=0x...
Page 72
6-36 c hapter 6: m anual s etup 11 from a machine that has access to the same network as the router, use a tftp command to transfer the filter file to the router flash memory. For example, from the workstation command line enter: tftp put 12 the router does not recognize a filter file stored in its ...
Page 73
Applying filters using cli 6-37 ■ most importantly, the router does not know which interface an outgoing packet came in through. If a potential intruder forges a packet with a false source address (in order to appear as a trusted host or network), there is no way for an output filter to tell if that...
Page 74
6-38 c hapter 6: m anual s etup setting filter access using cli when filters are assigned to both the wan interface and a vc/remote site profile, you need to tell the router which one to use using the filter access parameter. If filter access is on, the vc / remote site filters will override interfa...
Page 75
Managing filters using cli 6-39 set interface input_filter "" set interface output_filter "" the " " value represents a null value and removes the defined filter from the interface. For example, to remove an output filter from an interface named eth:1, you would use the following command: set interf...
Page 76
6-40 c hapter 6: m anual s etup.
Page 77: Configuration
A officeconnect remote 812 sample configuration this section describes a sample configuration which illustrates the following officeconnect remote 812 adsl router features: ■ address translation ■ internal dhcp server and dns proxy. ■ multiple remote sites, with different routing and bridging config...
Page 78
A-2 a ppendix a: officeconnect remote 812 sample configuration global configuration global configuration includes some optional “system” commands to identify the officeconnect remote 812’s name, location, and support contact. Next the remote access security option is enabled to allow remote cli acce...
Page 79
A-3 when a dns request is received from a locally attached workstation, the officeconnect remote 812 will search the local static table to find an entry. If one is not found, the request will be forwarded to a remote dns server. The dns server is selected by comparing the domain name within the requ...
Page 80
A-4 a ppendix a: officeconnect remote 812 sample configuration set vc internet ip enable ipx disable bridging disable set vc internet network_service ppp set vc internet send_name internet-user send_password 1a2b3c set vc internet atm vpi 0 vci 32 category_of_service unspecified pcr 0 set vc interne...
Page 81: Cli Command Description
B cli command description cli commands add use the add command to define: ■ networks you will connect to ■ hosts you need to access ■ snmp communities ■ users who will dial out, dial in, access the network, or use the cli note that some parameters have default values. Add access the access list defi...
Page 82
B-2 a ppendix b: cli command description command, and set user to specify the protocol and other parameters related to bridging. Add dns host address adds the named host to the local host table. When the system needs to resolve an address for an ip host name, the local host table is checked first, b...
Page 83
Cli commands b-3 add framed_route vc ■ ip_route [ip_address] ■ metric [number] adds a framed (static) network to the vc profile for wan connections. This method of creating a static route does not run rip to learn routes, so you must specify ip route and gateway addresses. See add ip route. Add ip d...
Page 84
B-4 a ppendix b: cli command description adds an entry to the ip routing table. Ip packets destined for networks that match this network will be routed to this address. The command list ip routes displays your currently defined routes. Add ipx network ■ address [ipx_address] ■ { interface [eth:1] } ...
Page 85
Cli commands b-5 add ipx service [service_name] ■ address [internal network number] ■ gateway [network_number.Mac_address] ■ metric [metric] ■ node [internal_node_number] ■ socket [socket_number] ■ type [service_type] adds a static ipx service (for the lan) to the ipx services table. You must supply...
Page 86
B-6 a ppendix b: cli command description add ipx_route vc ■ ipx_net [ipx_address] ■ metric [hop_count] ■ ticks [tick_number] adds an ipx route for the a user over the wan. Add ipx_service vc ■ ipx_net [ipx_address] ■ hops [number] ■ name [name] ■ node [internal_node_number] ■ socket [socket_number] ...
Page 87
Cli commands b-7 add nat tcp vc ■ private_address [ip_address] ■ private_port [number] ■ public_port [number] note: typically, the private and public port numbers are set to the same value. See “configuring network address translation’ in chapter 6 for an example in which they differ. Add nat udp vc...
Page 90
B-10 a ppendix b: cli command description adds a telnet user to the local user table. The list users command displays these parameters for all users. Add vc [name] creates a virtual channel (vc) profile. Each profile represents a connection to a remote site. The list vc command displays a list of al...
Page 91
Cli commands b-11 delete dns host deletes the specified host from the dns local host table. Use list dns hosts to view the dns local host table. After deletion, requests for that host will be processed through a dns server, instead of locally. Use list dns servers to see which servers are defined. D...
Page 92
B-12 a ppendix b: cli command description delete network service deletes the specified network service from the list of available services. You must use disable network service before deleting the service. You can see which services are available and active using list available services and list ser...
Page 93
Cli commands b-13 disable command password disables the console password feature. Disable icmp disables the internet control message protocol . Disable interface disables the specified interface. A disabled interface remains in the interface table, but will not transmit or receive any data. Use list...
Page 94
B-14 a ppendix b: cli command description disable security_option remote_user administration disables cli access to remote telnet users. All cli configuration must be done from the console port. You can use enable security_option remote_user administration to re-enable remote cli access. Disable snm...
Page 95
Cli commands b-15 enable interface enables the specified interface. Enabling an interface enables it to transmit and receive data. You can use list interfaces to see which interfaces are defined, and whether they are currently disabled. Enable ip forwarding enables all ip networks to forward (route)...
Page 96
B-16 a ppendix b: cli command description enable telnet escape if the telnet escape character was disabled by the disable telnet escape command, this command re-enables it. When enabled, telnet client users who press the telnet escape key during their session will get a telnet command line. By defau...
Page 97
Cli commands b-17 kill kill kills an active process. Use list processes to see which processes are currently active. You can only kill a process that you started. An example would be a ping that you started that you now wish to kill. List list access displays all ip subnet addresses in the access li...
Page 98
B-18 a ppendix b: cli command description list critical events displays the last ten critical status events, and the system time when each occurred. You can change which events are logged as critical, using the set facility command. The table displays the system, the up time, and the event. List dns...
Page 99
Cli commands b-19 ■ type - interface type: ethernet or token ring ■ if name - eth:1, da:1 or loopback list ip interface_block displays the ip addresses associated with each system interface. If the interface has a point-to-point connection, then the neighbor field contains the address of the remote ...
Page 100
B-20 a ppendix b: cli command description ■ nexthopnic - network address of the next router (the next hop to the destination), or the mac address for the local ipx nodes (on the lan) ■ gateway - address of the gateway to this network ■ metric ticks - number of hops through routers this network is di...
Page 101
Cli commands b-21 list services displays all network services you defined using the add network service command: ■ name - name of service ■ server type - type of service. For example: tftp ■ socket - tcp port number used by the service ■ close - reveals whether all connections close when you disable...
Page 102
B-22 a ppendix b: cli command description list users lists all users, showing: ■ user name - user designation you specified using add user ■ login service - the service used to login to the network (i.E. Telnet). ■ status - link status: active, inactive or disabled list vc lists all virtual channel ...
Page 103
Cli commands b-23 reboot reboot the system. If you have made any configuration changes, be sure to save all before rebooting. Also see the delete configuration command. Rename rename file renames files within the flash file system. The flash file system is a flat file system (no subdirectories). Use...
Page 104
B-24 a ppendix b: cli command description set bridge firewall [firewall_mode] sets the mode of the bridge firewall function. The three modes are completely described in chapter 6. ■ discard_routed_protocols - packets for routed protocols are not bridged. ■ fwd_unicast_packets_only - unicast packets ...
Page 106
B-26 a ppendix b: cli command description set dns ■ cache_size ■ number_retries ■ timeout sets the global parameters for dns; both the local dns hosts ( list dns host ) and the remote dns servers ( list dns servers ). Set facility loglevel [level] sets the severity reporting level for a facility. Th...
Page 108
B-28 a ppendix b: cli command description the following flags are for backward compatibility with rip version 1 when rip version 2 is selected as the routing protocol: ■ send compatibility - controls the selection of destination mac and ip addresses. It is enabled by default. When enabled, broadcast...
Page 110
B-30 a ppendix b: cli command description set ipx system ■ priority [priority level] ■ default_gateway [ipx_host_add] ■ initial_pool_address [ipx_addr] ■ pool_members [number] sets parameters for dynamic ipx networks. Set network service ■ server_type [server_type] ■ socket [socket_number] ■ data [“...
Page 112
B-32 a ppendix b: cli command description ■ transmit_authentication_name [name] specifies system contact information, which is displayed using show system . The user name is the remote account name. Location , name and contact names are limited to 64 characters. From managers on the network must mat...
Page 114
B-34 a ppendix b: cli command description default_route_ option when enabled, a default route is automatically created (by negotiation) with the remote router’s ip address. Destination_ address for an svc, this is the destination e.164 address to which a connection will be established. End_time this...
Page 116
B-36 a ppendix b: cli command description show show commands display details about system entities. Show access displays the current status of the access list feature. ■ administration status - indicates status of the access list feature. Options are enabled or disabled . ■ lan access - indicates wh...
Page 117
Cli commands b-37 ■ total time since system reboot (hours, minutes, seconds) ■ total time since last linkdown: ■ errored seconds since last link down: ■ total errored seconds in 15 minutes: ■ total errored seconds in previous 15 minutes: show adsl transceiver_status displays the current status of th...
Page 118
B-38 a ppendix b: cli command description ■ spanning tree forward delay - delay after coming up before learning, default is 15 ■ spanning tree priority - this bridge’s bid to be root bridge, default is 32768 ■ access macs only - this can be enabled or disabled. ■ spanning tree mode - sets spanning t...
Page 119
Cli commands b-39 ■ critical event sink - where critical events are logged, default is @file:/./log-file.Local ■ critical event backup - where critical events are logged, if the first destination fails, default is @file:/./old-log-file.Local show date displays the system date, time, and uptime . For...
Page 120
B-40 a ppendix b: cli command description show dhcp server counters displays various counters for the dhcp server. ■ lease requests received ■ lease accepts received ■ lease renewals received ■ lease refusals received ■ lease releases received ■ unrecognized packets received ■ lease offers transmitt...
Page 121
Cli commands b-41 ■ total response sent - sum of dns responses sent ■ responses from local processing - number of dns responses from local. ■ responses from remote processing - number of dns responses from remote. ■ success responses - successful responses to dns requests ■ error responses - sum of ...
Page 122
B-42 a ppendix b: cli command description ■ messages - icmp packets received. ■ errors - icmp packets received with errors. ■ destination unreachable - sum of icmp messages received when a router cannot forward a packet to its specified destination ■ time exceeded - sum of icmp messages generated by...
Page 123
Cli commands b-43 input counters ■ octets - bytes received ■ ucast - unicast packets received ■ multicast - multicast packets received ■ broadcast - broadcast packets received ■ discards - number of inbound packets which were chosen to be discarded even though no errors had been detected to prevent ...
Page 124
B-44 a ppendix b: cli command description ■ successfully delivered - number of packets successfully received output counters ■ total output datagrams - sum of datagrams transmitted ■ discarded - number of datagrams discarded ■ bad routes - number of datagrams with a bad route ■ fragments needing rea...
Page 125
Cli commands b-45 input counters ■ total packets received - sum of ipx packets received ■ header errors - sum of incoming packets discarded due to errors in their headers, including any ipx packet sized less than a minimum of 30 bytes ■ unknown sockets - sum of incoming packets discarded because the...
Page 126
B-46 a ppendix b: cli command description ■ frame type - frame type used by the interface (ethernet ii, snap, or loopback) ■ maximum packet size - maximum allowable packet size for this ipx network. Default is 1500. ■ status - operational state of the network ■ network delay (ticks) - time in number...
Page 127
Cli commands b-47 displays information about sap for ipx. Show ipx settings displays settings for dynamic ipx networks. You can modify these values using the set ipx system command. ■ default gateway - default ipx router address ■ max open sockets - maximum allowed number of open sockets to remote i...
Page 128
B-48 a ppendix b: cli command description ■ number active links - sum of active links using this ppp bundle ■ transmit packets - sum of packets transmitted over this bundle ■ bytes from upper layer - sum of bytes received from an upper layer application for transmission over this bundle. This counte...
Page 129
Cli commands b-49 ■ local endpoint length - maximum length of the local endpoint discriminator address, default is 6 ■ local endpoint id - value of the local endpoint discriminator address ■ remote endpoint class - value of the remote endpoint discriminator class, which indicates the type of address...
Page 130
B-50 a ppendix b: cli command description ■ remote to local compression protocol - authentication protocol used by the remote ppp entity when it authenticated the itself to the local ppp entity, pap is the default show ppp settings displays global settings for ppp. You can modify inbound authenticat...
Page 131
Cli commands b-51 ■ get response pdus - sum of snmp get-response pdus accepted and processed ■ trap pdus - sum of snmp trap pdus accepted and processed output counters ■ packets - sum of snmp packets transmitted ■ too big errors - sum of snmp pdus generated by snmp and for which the value of the err...
Page 132
B-52 a ppendix b: cli command description tcp counters ■ active opens - number of times tcp connections have made a direct transition to the syn-sent state from the closed state ■ passive opens - number of times tcp connections have made a direct transition to the syn-rcvd state from the listen stat...
Page 133
Telnet commands b-53 telnet telnet commands are available to users who dial in, and whose type is network (type parameter in add user ), whose host_type is prompt (host_type parameter in set login user ), and whose login_service is telnet (login_service parameter in set login user ). Telnet establis...
Page 134
B-54 a ppendix b: cli command description for example, to set the telnet escape character to control - x, type set_escape ^x . Status displays the ip address of the remote host and the value of the telnet escape character. Cli exit commands these commands are available to telnet users so they can di...
Page 135
Command features b-55 comments ; nothing following the semicolon will be processed. This is useful when you are writing cli script files. The do command runs a cli script..
Page 136
B-56 a ppendix b: cli command description.
Page 137
Lv a add command 2 address filtering, source and destination 26 address translation overview 9 pat 10 adsl reset b-22 advertisement filters 27 advertisement filters 27 applying a filter to an interface using cli 37 applying filters using cli 36 applying the rules using cli 31 assigning filters 36 at...
Page 138
Lvi d data filtering, input and output 26 data filters 27 date 23 defaults 7 dhcp configuration set dhcp mode b-23 set dhcp relay server1 b-23 set dhcp relay server2 b-24 set dhcp server b-24 overview 11 relay 13 server 11 statistics show dhcp server counters b-38 show dhcp server settings b-38 dhcp...
Page 139
Lvii i input data filters 27 interface 1, 3 interface filters 36 interfaces disable interface b-12 disable link_traps interface b-12 enable interface b-14 list active interfaces b-16 list interfaces b-17 list lan interfaces b-19 internet, viewing web resources 1 ip 3, 1, 3, 4 configuration add ip ne...
Page 140
Lviii ip source and destination port filtering using cli 32 ipx configuration add ipx network b-4 delete ipx network b-10 disable ipx network b-12 enable ipx network b-14 set ipx network b-28 show ipx network settings b-44 show ipx settings b-45 routing show ipx rip settings b-44 routing add ipx rou...
Page 141
Lix o output data filters 27 p package, what’s included 1 packet filters 26 password 2, 3 password b-21 password protection 25 password protection 2 passwords add user b-9 set ppp receive_authentication b-30 pc 1 port filtering 26 ppp dial-in set ppp receive_authentication b-30 show ppp settings b-4...
Page 142
Lx add snmp trap_community b-9 delete snmp community b-11 delete snmp trap_community b-11 disable link_traps interface b-12 disable security_option snmp user_access b-13 disable snmp authentication traps b-13 enable link_traps interface b-14 enable security_option snmp user_access b-14 enable snmp a...
Page 143
3com corporation l imited w arranty h ardware 3com warrants its hardware products to be free from defects in workmanship and materials, under normal use and service, for the following lengths of time from the date of purchase from 3com or its authorized reseller: if a product does not operate as war...
Page 144
Fcc c lass b s tatement this device complies with part 15 of the fcc rules. Operation is subject to the following two conditions: 1 this device may not cause harmful interference, and 2 this device must accept any interference received, including interference that may cause undesired operation. Warn...