D-Link DSR-1000 Reference Manual

Other manuals for DSR-1000: User Manual, User Manual, User Manual, Cli Reference Manual, User Manual, User Manual, User Manual, User Manual, Quick Installation Manual

Manual is about: Wireless N Services Router

Page of 129

Download

Print this page

Bookmark us

Unified Services Router

CLI Reference Guide

Release 1.05

Building Networks for People

Small Business Gateway Solution

DSR-150 / 150N / 250 / 250N / 500 / 500N /

1000 / 1000N

1 2 3 4 5 6 7 Next › »

Summary of DSR-1000

Page 1
Unified services router cli reference guide release 1.05 building networks for people small business gateway solution dsr-150 / 150n / 250 / 250n / 500 / 500n / 1000 / 1000n.
Page 3: Cli Reference Guide
Unified services router cli reference guide 1 cli reference guide dsr-150/150n/250/250n/500/500n/1000/1000n unified services router version 1.05 co p y rig h t © 2012 copyright notice th is p u b lic a t io n , in c lu d in g a ll p h o t o g ra p h s , illu s t ra t io n s a n d s o ft wa re , is p...
Page 4: Table Of Contents
Unified services router cli reference guide 2 table of contents chapter 1. Introduction ............................................................................................................................................ 8 1.1 accessing the cli ..................................................
Page 5
Unified services router cli reference guide 3 8.13 net dmz dhcp reserved_ip configure ......................................... 33 8.14 net dmz dhcp reserved_ip delet e ............................................... 33 8.15 net ethernet configure .......................................................
Page 6
Unified services router cli reference guide 4 8.56 net tahi add-default-route ................................................................... 71 8.57 net tahi add-rout e ................................................................... 71 8.58 net tahi del -route .................................
Page 7
Unified services router cli reference guide 5 9.30 security schedules add ..................................................................................................... 84 9.31 security schedules edit ................................................................................ 85 9.32 sec...
Page 8
Unified services router cli reference guide 6 10.22 system group add ............................................................................................................. 100 10.23 system group edit ........................................................................................ 100 ...
Page 9
Unified services router cli reference guide 7 12.15 vpn sslvpn resource configure delete .................................................. 113 12.16 vpn sslvpn resource delete ...................................................................... 114 12.17 vpn sslvpn policy add .......................
Page 10: Chapter 1. Introduction
Unified services router cli reference guide 8 chapter 1. Introduction th is d o c u me n t d e s c rib e s t h e c o mma n d lin e in t e rfa c e (cli) fo r ma n a g in g d-lin k's dsr- 1000n/ 1000/ 500n/ 500/ 250n / 250/ 150/ 150 n s e rie s o f ro u t e rs . Th e cli u s e r re q u ire s a d v an ...
Page 11: On The Cli
Unified services router cli reference guide 9 chapter 2. Basic commands available on the cli 2.1 context sensitive help [? ] - dis p la y c o n t e xt s e n s it iv e h e lp . Th is is e it h e r a lis t o f p o s s ib le c o mma n d c o mp le t io n s wit h s umma rie s , o r t h e fu ll s y n t ax...
Page 12: 2.5 Escape Sequences
Unified services router cli reference guide 10 2.5 escape sequences !! - su b s t it u t e t h e las t co mman d lin e. !N - su b s t it u t e t h e nt h co mman d lin e (ab s o lu t e as p er 'h is t o ry ' co mman d ). !-n - su b s t it u t e t h e co mman d lin e en t ered n lin es b efo re (rela...
Page 13: Categories:
Unified services router cli reference guide 11 chapter 3. Command hierarchy in cli 3.1 cli commands can be divided into 4 categories: glo b al co mman d s sh o w co mman d s ut ilit y co mman d s co n fig u rat io n co mman d s 3.2 the router configuration is divided into 5 branches: net : net wo rk...
Page 14: Cli
Unified services router cli reference guide 12 chapter 4. Global commands used in cli .E xit : exit t h is s e s s io n .H e lp : dis p la y a n o v e rv ie w o f t h e cli s y n t a x .T o p : re t u rn t o t h e d e fa u lt mo d e .Re b o o t : re b o o t t h e s y s t e m. .H is t o ry : dis p la...
Page 15: Cli
Unified services router cli reference guide 13 chapter 5. Show commands used in cli th e s h o w c o mma n d s fo r a ll t h e a b o v e me n t io n e d b ra n c h e s a re o u t lin e d in t h is s e c t io n . Th e c o mma n d s h o w n e t ? A t t h e cli p ro mp t wo u ld g iv e t h e d e s c ri...
Page 16
Unified services router cli reference guide 14 44 show net w an w an1 ipv4 . 45 show net w an w an1 ipv4 status display ipv4 w an1 information. 46 show net w an w an1 ipv4 setup display wan1 setup information. 47 show net w an w an2 . 48 show net w an w an2 ipv4 . 49 show net w an w an2 ipv4 status ...
Page 17
Unified services router cli reference guide 15 7 show security application_rules status display application rules status 8 show security firewall custom_service . 9 show security firewall custom_service setup display custom service configuration 10 show security firewall display firew all rules 11 s...
Page 18
Unified services router cli reference guide 16 23 show system traffic_meter setup display traffic meter configuration 24 show system usb display usb configuration 25 show system users system group display mode 26 show system group system user display mode 27 show system group specific display inform...
Page 19
Unified services router cli reference guide 17 21 show vpn sslvpn resource show sslvpn resource settings 22 show vpn sslvpn resource-object show sslvpn resource object settings 23 show vpn sslvpn users show sslvpn users mode 24 show vpn sslvpn users domains show sslvpn domains 25 show vpn sslvpn use...
Page 20: Cli
Unified services router cli reference guide 18 chapter 6. Utility commands used in cli th e c o mma n d u t il ? A t t h e cli p ro mp t wo u ld g iv e t h e d e scrip t ion o f a ll t h e u t ilit y c o mma n d s in t h e b ra n c h u t il, wh ic h is a s fo llo ws : sl no c o m m an d nam e pu r p...
Page 21: 6.6 Util Cat
Unified services router cli reference guide 19 6.6 util cat s.No com mand nam e description type and description 1 concatenate files and print on the standard output. String 6.7 util md5sum s.No com mand nam e description type and description 1 compute and check md5 message digest. String 6.8 util c...
Page 22: In Cli
Unified services router cli reference guide 20 chapter 7. Configure commands used in cli th e c o n fig u re c o mma n d s fo r a ll t h e b ra n c h e s me n t io n e d a b o v e a re d is c u s s e d in t h is s e c t io n . Th e c o mma n d n e t ? A t t h e cli p ro mp t wo u ld g iv e t h e d e...
Page 23
Unified services router cli reference guide 21 36 net lan ipv 6 . 37 net lan ipv 6 c onfigur e ipv 6 la n c onfiguration mode. 38 net lan ipv 6 pool . 39 net lan ipv 6 pool c onfigure ipv 6 la n c onfiguration add/edit mode. 40 net lan ipv 6 pool delete ipv 6 la n c onfiguration delete. 41 net intel...
Page 24
Unified services router cli reference guide 22 86 net w an pppoe pppoe c lient c onfigur ation mode 87 net w an pppoe configur e pppoe c lient c onfigur ation mode 88 net r outing protocol_binding pr otoc ol_binding r ules 89 net r outing protocol_binding add pr otoc ol_binding r ules c onfiguration...
Page 25
Unified services router cli reference guide 23 135 net tahi ipv 6 -up enable the ipv 6 s tack on the router. 136 net tahi ipv 6 -global-up enable the ipv 6 s tack on the router and adds global ip. 137 net tahi ipv 6 -alias-add(lan) a dd ipv 6 addr ess to lan interface. 138 net tahi ipv 6 -alias-del(...
Page 26
Unified services router cli reference guide 24 25 security firew all ipv4 enable firew all ipv4 rules configuration mode. 26 security firew all ipv4 disable firew all ipv4 rules configuration mode. 27 security firew all ipv4 delete firew all ipv4 rules configuration mode. 28 security firew all ipv4 ...
Page 27
Unified services router cli reference guide 25 sl no c o m m an d nam e pu r p ose 1 system logging facility configure facility logging configuration mode 2 system logging ipv4 configure firew all ipv4 logs configuration mode 3 system logging ipv6 configure firew all ipv6 logs configuration mode 4 s...
Page 28
Unified services router cli reference guide 26 l no c o m m an d nam e pu r p ose 1 v pn l2tp v pn polic y mode. 2 v pn l2tp s erver v pn polic y mode. 3 v pn l2tp s erver c onfigure l2tp s er ve r c onfiguration mode 4 v pn pptp c lient v pn polic y mode. 5 v pn pptp c lient configure pptp c lient ...
Page 29
Unified services router cli reference guide 27 32 v pn s s lvpn policy delete delete an s s lvpn policy 33 v pn s s lvpn c lient s s lv pn c lient configuration c ommands 34 v pn s s lvpn r oute s s lv pn r oute configuration c ommands 35 v pn s s lvpn r oute add a dd s s lvpn c lient r oute 36 v pn...
Page 30
Unified services router cli reference guide 28 th e c o mma n d d o t 11 ? A t t h e cli p ro mp t wo u ld g iv e t h e d e s c rip t io n o f a ll t h e c o n fig u ra t io n c o mma n d s in t h e b ra n c h d o t 11, wh ic h is a s fo llo ws : sl no c o m m an d nam e pu r p ose 1 dot11 access po...
Page 31: Under Branch Net
Unified services router cli reference guide 29 chapter 8. Configuration commands under branch net 8.1 net bandwidth profile enable sl no c o m m an d nam e de s cription t yp e and descrip tio n 1 enable enable or disable bandw idth profiles boolean (y/n) enable/ disable bandw idth profiles 8.2 net ...
Page 32
Unified services router cli reference guide 30 8.4 net bandwidth traffic_selector add s.No c o m m an d nam e de s cription t yp e and descrip tio n 1 s av e sav e tr affic selector c onfiguration c hanges. 2 ex it sav e tr affic selector c onfiguration c hanges and ex it c urrent mode. 3 c anc el r...
Page 33
Unified services router cli reference guide 31 8.6 net bandwidth traffic_selector delete s.No c o m m an d nam e de s cription t yp e and descrip tio n 1 it allow s to delete a tr affic selector for a bandw idth profile. Uns igned integer 8.7 net ddns wan1 configure s.No c o m m an d nam e de s crip...
Page 34: 8.12 Net Dmz Configure
Unified services router cli reference guide 32 2 s av e sav e dhcp res er v ed ips c onfiguration c hanges. 3 ex it sav e dhcp res er v ed ips c onfiguration c hanges and ex it c urrent mode. 4 c anc el roll bac k dhcp res er v ed ips c onf iguration changes. 5 ip_addr ess set ip a ddr ess to be r e...
Page 35
Unified services router cli reference guide 33 0- 255 8 ending_ip_address dhcp ending ip addr es s. Ip addr es s aaa.Bbb.Ccc.Ddd w here each part is in the r ange 0- 255 9 pr imar y _dns_server pr imar y dns addr es s. Ip addr es s aaa.Bbb.Ccc.Ddd w here each part is in the r ange 0- 255 10 s ec ond...
Page 36
Unified services router cli reference guide 34 8.15 net ethernet configure s.No com mand nam e description type and description 1 ethernet configuration mode. String 2 save save ethernet configuration changes 3 exit save ethernet configuration changes and exit current mode. 4 cancel roll back config...
Page 37
Unified services router cli reference guide 35 19 dns host_name configure dns settings. 20 dns host_name mapping configure dns host namemapping. 21 dns host_name mapping 1 configure dns host namemapping for ist row . 22 dns host_name mapping 2 configure dns host namemapping for 2nd row . 23 dns host...
Page 38
Unified services router cli reference guide 36 8.17 net lan ipv6 configure s.No com mand nam e description type and description 1 save save lan configuration changes. 2 exit save lan configuration changes and exit current mode. 3 cancel roll back lan configuration changes. 4 static set system lan se...
Page 39
Unified services router cli reference guide 37 abcd:abcd:abcd:abcd:abcd:abcd:abc d:abcd w here each part is in the range [0-9a-fa-f:] 7 prefix_value prefix length unsigned integer 8.19 net lan ipv6 pool delete s.No com mand nam e description type and description 1 ipv6 lan configuration delete. Ip a...
Page 40
Unified services router cli reference guide 38 10 enable intel_amt_reflector_destport 16995 enable/disable ports. Boolean choice 11 enable intel_amt_reflector_destport 9971 enable/disable ports. Boolean choice 12 intel_amt_reflector_srcport set port number for different ports 13 intel_amt_reflector_...
Page 41: 8.25 Net Mode Configure
Unified services router cli reference guide 39 unsigned integer 2 save save ip alias server configuration changes. 3 cancel roll back ip alias server configuration changes. 4 exit save ip aias server configuration changes and exit current mode. 5 interface select the interface for the ip aliasing wa...
Page 42
Unified services router cli reference guide 40 changes. 5 subnet_prefix this is the 64-bit subnet prefix that is assigned to the logical isatap subnet for this intranet. String 6 end_point_type this is the endpoint address for the tunnel that starts w ith this router. The endpoint can be the lan int...
Page 43
Unified services router cli reference guide 41 w here each part is in the range 0- 255 9 dhcpc mac_type select the mac address source types of mac address source 10 dhcpc mac_address valid mac address mac address aa:bb:cc:dd:ee:ff w here each part is in the range 00-ff 11 dhcpc hostname enter the ho...
Page 44
Unified services router cli reference guide 42 w here each part is in the range 0- 255 29 pppoe secondary_dns valid secondary dns server ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 30 pppoe get_ip_from_isp enter yes to get ip dynamically from isp if you have not bee...
Page 45
Unified services router cli reference guide 43 static ip address. The isp w ill automatically assign an dns address to the router using pptp netw ork protocol. Otherw ise enter no and give valid static dns addresses 48 pptp primary_dns valid primary dns server ip address ip address aaa.Bbb.Ccc.Ddd w...
Page 46
Unified services router cli reference guide 44 w here each part is in the range 0- 255 66 russ_pptp secondary_dns valid secondary dns server ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 67 russ_pptp mac_type select the mac address source types of mac address source 6...
Page 47
Unified services router cli reference guide 45 types of mac address source 85 l2tp mac_address enter valid mac address mac address aa:bb:cc:dd:ee:ff w here each part is in the range 00-ff 86 russ_l2tp if isp type selected is russian dual access l2tp, this field gives you options to configure russian...
Page 48
Unified services router cli reference guide 46 configure credentials 104 japanese_pppoe primary_profile configure the primary pppoe profile 105 japanese_pppoe primary_profile username enter the username to authenticate string 106 japanese_pppoe primary_profile passw ord enter the passw ord to authen...
Page 49
Unified services router cli reference guide 47 protocol. Otherw ise enter no and give valid static dns addresses 125 japanese_pppoe secondary_profile primary_dns valid primary dns server ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 126 japanese_pppoe secondary_profil...
Page 50
Unified services router cli reference guide 48 assign an ip address to the router using pppoe netw ork protocol. Otherw ise enter no and give valid static ip address 143 dual_pppoe static_ip valid ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 144 dual_pppoe subnet_mas...
Page 51
Unified services router cli reference guide 49 automatically assign an dns address to the router using dhcp netw ork protocol. Otherw ise enter no and give valid static dns addresses 7 dhcpc primary_dns valid primary dns server ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0...
Page 52
Unified services router cli reference guide 50 idle timeout value type. 27 pppoe get_dns_from_isp enter yes to get dns dynamically from isp if you have not been assigned any static ip address. The isp w ill automatically assign an dns address to the router using pppoe netw ork protocol. Otherw ise e...
Page 53
Unified services router cli reference guide 51 45 pptp subnet_mask if address mode is static,give subnet mask ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 46 pptp get_ip_from_isp enter yes to get ip dynamically from isp if you have not been assigned any static ip address.Otherw...
Page 54
Unified services router cli reference guide 52 valid static ip address 64 russ_pptp get_dns_from_isp enter yes to get dns dynamically from isp if you have not been assigned any static ip address. The isp w ill automatically assign an dns address to the router using pptp netw ork protocol. Otherw ise...
Page 55
Unified services router cli reference guide 53 dns addresses 82 l2tp primary_dns valid primary dns server ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 83 l2tp secondary_dns valid secondary dns server ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the ra...
Page 56
Unified services router cli reference guide 54 w here each part is in the range 0- 255 101 russ_l2tp mac_type select the mac address source types of mac address source 102 russ_l2tp mac_address enter valid mac address mac address aa:bb:cc:dd:ee:ff w here each part is in the range 00-ff 103 japanese_...
Page 57
Unified services router cli reference guide 55 122 japanese_pppoe secondary_profile connectivity_type enter the connectivity type isp connectivity types. 123 japanese_pppoe secondary_profile idletime enter the idle time idle timeout value type. 124 japanese_pppoe secondary_profile get_dns_from_isp e...
Page 58
Unified services router cli reference guide 56 ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 141 dual_pppoe secondary_dns valid secondary dns server ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 142 dual_pppoe get_ip_from_isp enter yes to get ip d...
Page 59
Unified services router cli reference guide 57 4 username enter the username required to log in to the isp. String 5 passw ord enter the passw ord required to login to the isp string 6 dial_number enter the number to dial to the isp string 7 authmethod select one of none, pap or chap authentication ...
Page 60
Unified services router cli reference guide 58 methods 12 loadbalancing failover_method dns 13 loadbalancing failover_method dns ipaddr_w an1 ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 14 loadbalancing failover_method dns ipaddr_w an2 ip address aaa.Bbb.Ccc.Ddd w here each pa...
Page 61
Unified services router cli reference guide 59 w here each part is in the range 0- 255 34 rollover failover_method ping ipaddr_w an3 ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 35 rollover failover_method retry_interval idle timeout value type. 36 rollover failover_method retr...
Page 62
Unified services router cli reference guide 60 4 isp_type set isp type isp types. 5 dhcpc set dhcpc configurations 6 dhcpc stateless_mode_enable set stateless mode stateless mode conf iguration. 7 dhcpc prefix_delegation_enable enable prefix delegation boolean choice 8 static set ipv6 address 9 stat...
Page 63
Unified services router cli reference guide 61 5 dhcpc set dhcpc configurations 6 dhcpc stateless_mode_enable set stateless mode stateless mode configuration. 7 dhcpc prefix_delegation_enable enable prefix delegation boolean choice 8 static set ipv6 address 9 static ip_address set ipv6 address ip ad...
Page 64
Unified services router cli reference guide 62 7 priority helps to determine the ospfv2 designated router for a netw ork.The router w ith the highest priority w ill be more eligible to become designated router. Setting the value to 0, makes the router ineligible to be come designated router. The def...
Page 65
Unified services router cli reference guide 63 8 dead_interval the number of seconds that a deviceâ€™s hello packets must not have been seen before its neighbors declare the ospf router dow n.This value must be the same for all routers attached to a common netw ork.The def aul t value is 40 seconds....
Page 66
Unified services router cli reference guide 64 12 staticip set static ip address ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 13 netmask set subnet mask ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 14 getdnsfromispenable enable/disable getdnsfromisp boolea...
Page 67
Unified services router cli reference guide 65 changes. 3 exit save protocol binding rules configuration changes and exit current mode. 4 cancel roll back configuration changes. 5 service available service service type 6 local_gatew ay local gatew ay type wan interface type 7 source_netw ork source ...
Page 68
Unified services router cli reference guide 66 12 destination_address_end ending ip of the destiation user ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0-255 8.45 net routing protocol_binding disable s.No com mand nam e description type and description 1 protocol_binding rules configu...
Page 69
Unified services router cli reference guide 67 firew all rule address type 8 destination_netw ork destination netw ork type firew all rule address type 9 source_address_start starting ip of the source netw ork ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0-255 10 source_address_end en...
Page 70
Unified services router cli reference guide 68 changes. 4 prefix_type option w hether to select the prefix type as 6to4 or global/local/isatap ipv6 prefix type 5 sla_id the sla id (site-level aggregation identifier) in the 6to4 address prefix is set to the interface id of the interface on w hich the...
Page 71
Unified services router cli reference guide 69 4 direction rip direction none, in only, out only, both. Rip direction 5 version rip version rip version 6 authentication_enable enable/disable authentication for rip- 2b/2m boolean choice 7 first_key first md5 key 8 first_key id_number first md5 key id...
Page 72
Unified services router cli reference guide 70 validity starts minute in the format mm(00- 59) 34 second_key valid_from second second in w hich md5 authentication key validity starts second in the format ss(00- 59) 35 second_key valid_to month month in w hich md5 authentication key validity ends mon...
Page 73: 8.57 Net Tahi Add-Route
Unified services router cli reference guide 71 3 exit save ipv6 static routes changes and exit current mode. 4 cancel roll back ipv6 route configuration changes. 5 destination_address set the ipv6 destination ip. Ip address abcd:abcd:abcd:abcd:abcd: abcd:abcd:abcd w here each part is in the range [0...
Page 74: 8.58 Net Tahi Del-Route
Unified services router cli reference guide 72 in the range [0-9a-fa-f:] 8.58 net tahi del-route s.No com mand nam e description type and description 1 add ipv6 route on lan interface. Ip address abcd:abcd:abcd:abcd:abcd:abc d:abcd:abcd w here each part is in the range [0-9a-fa-f:] ip address abcd:a...
Page 75: 8.64 Net Tahi Ping6
Unified services router cli reference guide 73 8.63 net tahi reachable-time s.No com mand nam e description type and description 1 set the reachable time of neighbour cache entries number in range of 30 to 150 8.64 net tahi ping6 s.No com mand nam e description type and description 1 ping6 on lan in...
Page 76: Under Branch Security
Unified services router cli reference guide 74 chapter 9. Configuration commands under branch security 9.1 security advanced_network attack_checks configure s.No com mand nam e description type and description 1 save save security checks configuration changes. 2 exit save security checks configurati...
Page 77: Allowedsubnets Add
Unified services router cli reference guide 75 9.3 security advanced_network igmp allowedsubnets add s.No com mand nam e description type and description 1 save save muticast source subnet configuration 2 exit save igmp configuration changes and exit current mode. 3 cancel roll back igmp configurati...
Page 78
Unified services router cli reference guide 76 8 ips_check_active dmz-w an enable or disable ips checks active betw een dmz and wan boolean choice 9.7 security application_rules add s.No com mand nam e description type and description 1 save save application rules configuration changes. 2 exit save ...
Page 79
Unified services router cli reference guide 77 9.9 security application_rules delete s.No com mand nam e description type and description 1 application rules rules configuration mode. Unsigned integer 9.10 security firewall custom_service add s.No com mand nam e description type and description 1 sa...
Page 80
Unified services router cli reference guide 78 1 custom services configuration mode. Unsigned integer 9.13 security firewall ipv4 configure s.No com mand nam e description type and description 1 save save firew all ipv4 rules configuration changes. 2 exit save firew all ipv4 rules configuration chan...
Page 81: Default_Outbound_Policy
Unified services router cli reference guide 79 24 dnat_port the port number to use for dnat, required if port forw arding is enabled port number 25 port_forw arding_enable enable/disable port forw arding based on this firew all rule configuration settings boolean choice 26 internal_ip_address send t...
Page 82
Unified services router cli reference guide 80 255 19 source_address_end ip of the source user ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 20 destination_address_start ip of the destination user ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 21 destination_...
Page 83
Unified services router cli reference guide 81 3 exit save firew all ipv4 rule reordering changes and exit current mode. 4 cancel roll back ipv4 rule reordering changes. 5 position new position for the rule unsigned integer 9.20 security firewall algs s.No com mand nam e description type and descrip...
Page 84
Unified services router cli reference guide 82 13 source_start_address ip of the source user ip address abcd:abcd:abcd:abcd:abcd:abcd:abcd:abcd w here each part is in the range [0-9a-fa-f:] 14 source_end_address ip of the source user ip address abcd:abcd:abcd:abcd:abcd:abcd:abcd:abcd w here each par...
Page 85: Default_Outbound_Policy
Unified services router cli reference guide 83 string 17 destination_start_address ip of the destination user ip address abcd:abcd:abcd:abcd:abcd:abcd:abcd:abcd w here each part is in the range [0-9a-fa-f:] 18 destination_end_address ip of the destiation user ip address abcd:abcd:abcd:abcd:abcd:abcd...
Page 86
Unified services router cli reference guide 84 9.28 security ids configure s.No com mand nam e description type and description 1 save save ids configuration changes. 2 exit save ids configuration changes and exit current mode. 3 cancel roll back ids configuration changes. 4 enable enable intrusion ...
Page 87
Unified services router cli reference guide 85 boolean choice 14 time_of_day scheduled time of day 15 time_of_day all_enable type of schedule activation for time of the day boolean choice 16 time_of_day start start time 17 time_of_day start mins minutes minute in the format mm(00- 59) 18 time_of_day...
Page 88
Unified services router cli reference guide 86 meridiem schedule meridiem types. 21 time_of_day end end time 22 time_of_day end mins minutes minute in the format mm(00- 59) 23 time_of_day end hours hours schedule time unit type. 24 time_of_day end meridiem meridiem schedule meridiem types. 9.32 secu...
Page 89
Unified services router cli reference guide 87 9.36 security mac_filter source delete s.No com mand nam e description type and description 1 source mac filter configuration mode. Unsigned integer 9.37 security ip_or_mac_binding add s.No com mand nam e description type and description 1 save save ip ...
Page 90: Configure
Unified services router cli reference guide 88 1 ip/mac binding configuration mode. Unsigned integer 9.40 security firewall vpn_passthrough configure s.No com mand nam e description type and description 1 save save vpn passthrough configuration changes. 2 exit save vpn passthrough configuration chan...
Page 91: Delete
Unified services router cli reference guide 89 3 exit save trusted domains configuration changes and exit current mode. 4 cancel roll back trusted domains configuration changes. 5 url trusted domain name string 9.44 security website_filter approved_urls delete s.No com mand nam e description type an...
Page 92: Disable
Unified services router cli reference guide 90 9.49 security website_filter blocked_keywords disable s.No com mand nam e description type and description 1 blocked keyw ords configuration mode. Unsigned integer.
Page 93: Under Branch System
Unified services router cli reference guide 91 chapter 10. Configuration commands under branch system 10.1 system logging ipv4 configure s.No com mand nam e description type and description 1 save save logging configuration changes. 2 exit save logging configuration changes and exit current mode. 3 ...
Page 94
Unified services router cli reference guide 92 10.2 system logging facility configure s.No com mand nam e description type and description 1 system logging facility configuration mode. Logging facility type. 2 save save log facility configuration changes. 3 exit save log facility configuration chang...
Page 95
Unified services router cli reference guide 93 23 syslog_server server_name4 server4 24 syslog_server server_name5 server5 25 syslog_server server_name6 server6 26 syslog_server server_name7 server7 27 syslog_server server_name8 server8 28 syslog_server server_name1 enable boolean choice y/n boolean...
Page 96: Configure
Unified services router cli reference guide 94 53 syslog_server server_name7 name set syslog server. Ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0-255 54 syslog_server server_name7 severity set syslog severity. Syslog server severity types 55 syslog_server server_name7 facility set s...
Page 97: Configure
Unified services router cli reference guide 95 10.6 system remote_management telnet configure s.No com mand nam e description type and description 1 save save access management changes for telnet. 2 exit save access management changes for telnet and exit current mode. 3 cancel roll back remote mgmt ...
Page 98: 10.10
Unified services router cli reference guide 96 3 exit save snmp v3 users configuration changes and exit current mode. 4 cancel roll back snmp v3 users configuration changes. 5 security_level authentication and privacy settings . Snmp security level type for snmpv3users list 6 authentication_algo cho...
Page 99: 10.13
Unified services router cli reference guide 97 4 cancel roll back snmp configuration changes. 5 agent the ip address of the snmp agent. Ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0-255 6 subnet_mask the netw ork mask used to determine the list of allow ed snmp managers. To allow any...
Page 100: 10.17
Unified services router cli reference guide 98 7 use_default_servers specify w hether to use system default ntp servers. Boolean choice 8 ntp_server1 set ntp server#1. String 9 ntp_server2 set ntp server#2 string 10 ntp_year set year for the date year 11 ntp_month set month for the date month in the...
Page 101: 10.18
Unified services router cli reference guide 99 10.18 system usb usb1 configure s.No com mand nam e description type and description 1 save save configurable wan settings. 2 exit save configurable wan settings and exit current mode. 3 cancel roll back configurable wan settings changes. 4 enable enabl...
Page 102: 10.22
Unified services router cli reference guide 100 6 capabilities the comma separated list of usertype numeric codes.: sslvpn:0 admin:3 guest:4 l2tp:7 pptp:8 local:9 captiveportal:10 string 7 grouptimeout enter the time out for group unsigned integer 10.22 system group add s.No com mand nam e descripti...
Page 103: 10.26
Unified services router cli reference guide 101 string 7 passw ord enter the passw ord here string 8 passw ord_confirm re-enter the passw ord here string 9 groupname enter the groupname here string 10 usertimeout enter the time out for group unsigned integer 10.26 system users edit s.No com mand nam...
Page 104: 10.30
Unified services router cli reference guide 102 10.30 system group groupaccesscontrol configure s.No com mand nam e description type and description 1 group access control configuration unsigned integer 2 save save group access control configuration changes. 3 exit save group access control configur...
Page 105: 10.34
Unified services router cli reference guide 103 1 save save group access control ip configuration changes. 2 exit save group access control ip configuration changes and exit current mode. 3 cancel roll back group access control ip configuration changes. 4 group_id group id unsigned integer 5 address...
Page 106: Under Branch Dot11
Unified services router cli reference guide 104 chapter 11. Configuration commands under branch dot11 11.1 dot11 profile add s.No com mand nam e description type and description 1 802.11 profile configuration mode. String 2 save save profile configuration changes 3 exit save profile configuration ch...
Page 107
Unified services router cli reference guide 105 wep key index type (1-4) string 11 w ep passphrase set wep passphrase to generate wep key from. Wep key index type (1-4) string 12 w pa set the wpa options. 13 w pa authentication set wpa authentication type. Wpa authentication types 14 w pa encryption...
Page 108
Unified services router cli reference guide 106 10 start hour setting the time limits. H(1-12) using 12 hour clock 11 stop hour setting the time limits. H(1-12) using 12 hour clock 12 start minute setting the time limits. Minute in the format mm(00-59) 13 stop minute setting the time limits. Minute ...
Page 109: 11.10
Unified services router cli reference guide 107 11.10 dot11 radio advanced configure s.No com mand nam e description type and description 1 save save advanced ap configuration changes 2 cancel roll back advanced ap configuration changes 3 exit save advanced ap configuration changes and exit current ...
Page 110: 11.13
Unified services router cli reference guide 108 accesspoint acl policy type 6 mac_address set accesspoint mac address. Mac address aa:bb:cc:dd:ee:ff w here each part is in the range 00-ff 11.13 dot11 accesspoint acl delete_mac_address s.No com mand nam e description type and description 1 delete acl...
Page 111: Under Branch Vpn
Unified services router cli reference guide 109 chapter 12. Configuration commands under branch vpn 12.1 vpn l2tp server configure s.No com mand nam e description type and description 1 save save l2tp server configuration changes. 2 cancel roll back l2tp server configuration changes. 3 exit save l2t...
Page 112
Unified services router cli reference guide 110 in the range 0-255 7 remote_subnet remote netw ork subnet mask unsigned integer 8 username username allocated to client string 9 passw ord passw ord allocated to client string 10 mppe_enable enable mppe encryption boolean choice 11 time_out time out un...
Page 113
Unified services router cli reference guide 111 12.5 vpn sslvpn portal-layouts add s.No com mand nam e description type and description 1 save save portal settings 2 exit save portal settings and exit current mode 3 cancel roll back portal settings changes 4 portal_name specify the portal name strin...
Page 114: 12.10
Unified services router cli reference guide 112 12.7 vpn sslvpn portal-layouts delete s.No com mand nam e description type and description 1 delete sslvpn portal layout unsigned integer 12.8 vpn sslvpn portal-layouts set-default s.No com mand nam e description type and des cription 1 set the portal ...
Page 115: 12.12
Unified services router cli reference guide 113 12.12 vpn sslvpn portforwarding hostconfig delete s.No com mand nam e description type and description 1 delete a host configuration rule unsigned integer 12.13 vpn sslvpn resource add s.No com mand nam e description type and description 1 save save ss...
Page 116: 12.16
Unified services router cli reference guide 114 1 delete an sslvpn resource object unsigned integer 12.16 vpn sslvpn resource delete s.No com mand nam e description type and description 1 delete an sslvpn resource unsigned integer 12.17 vpn sslvpn policy add s.No com mand nam e description type and ...
Page 117: 12.19
Unified services router cli reference guide 115 string 7 destination_objecttype destination object type sslvpn policy destination type 8 policy_name policy name string, max 128 characters and no ' or empty space or " 9 policy_address policy address ip address aaa.Bbb.Ccc.Ddd w here each part is in t...
Page 118: 12.21
Unified services router cli reference guide 116 12.21 vpn sslvpn route add s.No com mand nam e description type and description 1 save save sslvpn route settings 2 exit save sslvpn route settings and exit current mode 3 cancel roll back sslvpn route settings changes 4 destination_netw ork destinatio...
Page 119: 12.24
Unified services router cli reference guide 117 string 17 second_ldap_base_dn specify the ldap base domain name string 18 active_directory_domain specify the active directory domain string 19 second_active_directory_domain specify the active directory domain string 12.24 vpn sslvpn users domains edi...
Page 120: 12.25
Unified services router cli reference guide 118 12.25 vpn sslvpn users domains delete s.No com mand nam e description type and description 1 users domain delete mode string 12.26 vpn sslvpn users groups add s.No com mand nam e description type and description 1 save save users groups configuration c...
Page 121: 12.30
Unified services router cli reference guide 119 string 6 last_name specify the user's last name string 7 user_type specify the user type users type 8 group specify the user's group string 9 passw ord specify the user's passw ord string 10 confirm_passw ord confirm the user's passw ord string 11 idle...
Page 122: 12.32
Unified services router cli reference guide 120 12.32 vpn sslvpn users users browser_policies s.No com mand nam e description type and description 1 users brow sers policy configuration mode unsigned integer 2 save save users brow ser policy configuration changes. 3 exit save users brow ser policy c...
Page 123: 12.35
Unified services router cli reference guide 121 12.35 vpn sslvpn users users delete s.No com mand nam e description type and description 1 users delete mode unsigned integer 12.36 vpn ipsec policy configure s.No com mand nam e description type and description 1 vpn policy configuration mode string 2...
Page 124
Unified services router cli reference guide 122 depending upon protocol selected ipv4 or ipv6 22 general_local_subnet_mask subnet mask of the subnet used ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0-255 23 general_local_prefix_length prefix length of the ipv6 subnet used ipv6 prefix...
Page 125
Unified services router cli reference guide 123 40 manual_authentication_algorithm algorithm used to verify the integrity of the data. Vpn authentication algorithm 41 manual_authentication_key_in this is the integrity key (for esp w ith integrity-mode) for the inbound policy and depends on the algor...
Page 126
Unified services router cli reference guide 124 72 auto_phase1_auth_algorithm sha1 enable_sha1 enable sha1 authentication algorithm boolean choice 73 auto_phase1_auth_algorithm sha2-256 setting ike authentication algorithm 74 auto_phase1_auth_algorithm sha2-256 enable_sha2-256 enable sha2-256 authen...
Page 127: 12.37
Unified services router cli reference guide 125 105 auto_phase2_encryption_algorithm aes-ccm enable_aes-ccm enable aes-ccm encryption algorithm boolean choice 106 auto_phase2_encryption_algorithm aes-gcm setting ike encryption algorithm 107 auto_phase2_encryption_algorithm aes-gcm enable_aes-gcm ena...
Page 128: 12.38
Unified services router cli reference guide 126 12.38 vpn ipsec policy disable s.No com mand nam e description type and description 1 disable a vpn policy string 12.39 vpn ipsec policy delete s.No com mand nam e description type and description 1 delete a vpn policy string 12.40 vpn ipsec policy con...
Page 129
Unified services router cli reference guide 127 chapter 13. Configuration commands under branch radius 13.1 radius configure s.No c o m m an d nam e de s cription t yp e and descrip tio n 1 radius configuration mode. Ip address aaa.Bbb.Ccc.Ddd w here each part is in the range 0- 255 2 save save radi...