Manuals / Carrier Access / Computer Equipment / Network Router

Carrier Access none manual Security-log

Models: none

1 496

Download 496 pages 60.9 Kb

Page 184

Global Configuration Mode

Global Configuration Commands

security-log

Use the security-logcommand to configure the security policy. To delete a security policy, see no security-logcommand on page 4-49.

Syntax: (config)# security-log setting enable

Field	Definition
Accepted Events

accepted-in-connections	Sessions originated from the Internet that have been allowed by
	the firewall.

accepted-out-	Sessions originated from the network that have been allowed by
connections	the firewall.

Blocked Events

blocked-conn-attempts	Sessions that have been blocked by the firewall.

blocked-fragments	Detection of fragmented packets when Block IP Fragments is
	enabled.

defrag-error	Detection of fragmented packets that cannot be properly
	reassembled.

echo-chargen	Detection of the Echo or Chargen DOS attacks.

icmp-flood	Detection of an ICMP flood DOS attack.

icmp-multicast	Detection of multicast ICMP packets, such as a ping to a subnet
	broadcast address.

icmp-redirect	Detection of improper ICMP redirect messages from the WAN.

icmp-replay	Detection of an ICMP Replay DOS attack.

multicast-broadcast	Detection of the Multicast or broadcast packets arriving at the
	WAN interface.

pkt-illegal-opts	Detection of IP packets with disallowed IP options: lsrr, ssrr, rr,
	timestamp, or error options.

spoofed-connection	Detection of IP address spoofing attacks.

syn-flood	Detection of the Syn Flood DOS attack.

udp-flood	Detection of a UDP Flood attack.

winnuke	Detection of the Winnuke DOS attack.

Other Events

connection-states	Session connection state detail.

rem-admin-attempts	Management sessions established.

Log Buffer

prevent-log-overrun	Stop logging firewall detail when the log is full. This prevents
	loosing early log entries, but will drop the later log entries.

Example: (config)# security-log accepted-out-connection enable

Supported Platforms: Adit 3104, Adit 3200, Adit 3500, MSR

4-58	Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) CLI

Image 184

Carrier Access none manual Security-log

Contents

Adit 3000 Series Multi-Service Router MSR Card Customer Support Corporate Contact InformationSupporting Software Versions Preface Preface Table of Contents Global Configuration Mode Configuration LCC Controller Mode Configuration T1 Controller ModeConfiguration Dial Peer FXS Mode Configuration Dhcp Pool Ethernet ModeConfiguration Dial Peer Trunk Mode Configuration Dial Peer VoIP Mode Configuration Ethernet Interface ModeConfiguration Multilink Interface Mode Configuration Serial Interface Mode Configuration IPSec Mode Configuration L2TPC Mode Configuration Ospf Mode Configuration Pptpc ModeConfiguration Radius Mode Configuration Pptps ModeConfiguration Vlan Mode Configuration Vlan Port Mode Configuration Voice Port ModeConfiguration Voice Port FXS Mode Configuration Voice Port Trunk ModeConfiguration Voice Service SIP Mode IndexXviii Introduction This ChapterOverview Prompt Identifier Configuration Mode Configuration Mode Link to Command Prompt DisplayedExample config# clock source 12 noneds1 1ds1 2ds1 3ds1 Example config# clock 12 source nonet1 portShortcuts User Mode Commands User ModeDate Enable End Exit Help History Ping Show Traceroute Enable Example adit 3500 enable Password Adit 3500#Date EndExit HelpHistory Ping Syntax ping address -i time -l size -n count -w timeoutstopStop Show Show alarms Show arp Syntax show arp alladdressethernet portAll Display entire ARP table AddressShow caclkcd Show caclkcd Example Adit 3500 show caclkcdShow config dynamic-dns Show controller lccSyntax show controller lcc number Example Adit MSR show controller lccSyntax show controller t1 port Show controller t1Example Adit 3500 show controller t1 Show digit-map Show dhcp-leasesSyntax show digit-map Example Adit 3500 show digit-map Show interface description Show interface multilink Show interface ethernetAdit 3104, Adit 3200, Adit 3500 Value must be Show interface serial Syntax show interface serial portExample Adit 3500 show interface serial Example Adit MSR show interface serialShow interface stats Example Adit MSR show interface statsSupported PlatformsAdit 3104, Adit 3200, Adit 3500, MSR Show ip ospf Syntax show ip ospf Example adit 3500 show ip ospfShow ip ospf database Example adit 3500 show ip ospf database Example adit 3500 show ip ospf database self-originateShow ip ospf interface Ethernet portSerial port Multilink portShow ip ospf neighbor Interface addressDetail Example adit 3500 show Ip ospf neighborShow licenses FirewallPri SipShow mac-address-table Example Adit 3500 show log t1 1 minorShow nat-fw Syntax show nat-fw Example Adit 3500 show nat-fwShow route Show port-triggerSyntax show route Example Adit 3500 show route Show service Syntax show service Example Adit 3500 show serviceShow users Show versionSyntax show users Example Adit 3500 show users Syntax show version Example Adit 3500 show versionExample Adit MSR show version Show voice-port fxs Syntax show voice-port fxsExample Adit 3500 show voice-port fxs Example Adit MSR show voice-port fxsSyntax show voice-port trunk port Show voice-port trunkExample Adit 3500 show voice-port trunk Example Adit MSR show voice-port trunk Traceroute Syntax traceroute Syntax traceroute addresshostnamestopUser Mode Privileged Mode Privileged Mode CommandsClear Clear arpClear caclkcd Clear ip ospf processConfigure terminal Copy defaultsCopy Copy pathCopy running-config Syntax # copy running-config path destination-pathDestination-path Example Adit 3500# date Wed Jan 12 103751Debug Debug portmon allDebug portmon rxtxboth Debug portmon detailBoth OffEthernet Debug portmon ethernetExample adit 3500# debug portmon ethernet 1 all Debug portmon management Syntax # debug portmon management hushoffHush Off Example adit 3500# debug portmon management hushDebug portmon multilink Syntax # debug portmon raw offon Debug portmon rawExample adit 3500# debug portmon raw off Port Debug portmon serialExample adit 3500# debug portmon 1 rip Syntax # debug trace casprisip enabletxrx Example adit 3500# debug trace cas enableDebug trace Example adit 3500# end UsernameAdit 3500# help Syntax # history Example adit 3500# history Log clear Syntax # log clear allfirewallprisipsystemt1lccLcc Example adit 3500# log clear firewallNo debug No debug portmonNo debug trace Cas Pri SipExample Adit 3500# ping Example Adit 3500# ping 192.168.1.1 -n 2 -lExample adit 3500# reload Going to reboot Restarting system ReloadShow Example adit 3500# show alarms major Syntax # show arp alladdressethernet port Example adit 3500# show arp ethernetExample adit 3500# show arp Example adit 3500# show arp all# show caclkcd Example adit 3500# show caclkcd Show config access-control Syntax # show config controller t1 port Example adit 3500# show config controller t1Dmz-host 192.168.1.200 enable Syntax # show config interface ethernet port Example adit 3500# show config interface ethernetSyntax # show config interface multilink port Example adit 3500# show config interface multilinkSyntax # show config interface serial port Example adit 3500# show config interface serialSyntax # show config ip dhcp ethernet port Example adit 3500# show config ip dhcp ethernetNetwork-object id 0 description NetworkObject1 ip-address Security-default typical Static-dns hostname test1 ip-address Syntax # show config voice-port fxs port Example adit 3500# show config voice-port fxsExample adit 3500# show config voice-port trunk Syntax # show config voice-port trunk portExample adit MSR# show config voice-port trunk Syntax # show controller lcc number Syntax # show controller t1 port Example adit 3500# show controller t1Syntax # show digit-map Example adit 3500# show digit-map Example Adit MSR# show interface description Syntax # show interface ethernet port Example adit 3500# show interface ethernetSyntax # show interface multilink port Example adit 3500# show interface multilinkExample adit 3500# show interface serial Syntax # show interface serial portExample adit MSR# show interface serial Syntax # show ip ospf Example adit 3500# show ip ospf Show ip ospf database Example adit 3500# show ip ospf database Example adit 3500# show ip ospf database self-originateExample adit 3500# show ip ospf interface ethernet Example adit 3500# show Ip ospf neighbor Example adit 3500# show ip ospf neighbor detailSyntax # show ipsec vpnipsecconnection-id Example adit 3500# show l2tpc Syntax # show l2tpc l2tpc connection-idExample adit 3500# show l2tpc l2tpc # show licenses Example adit 3500# show licensesExample adit 3500# show log t1 1 minor Syntax # show nat-fw Example adit 3500# show nat-fw Show port-trigger Example adit 3500# show pptpc Syntax # show pptpc pptpc connection-idExample adit 3500# show pptpc pptpc Syntax # show pptps Example adit 3500# show pptps Syntax # show route Example adit 3500# show routeShow running-config Privileged Mode Example adit MSR# show running-config Privileged Mode Privileged Mode Privileged Mode Supported Platforms Adit 3104, Adit 3200, Adit 3500, MSR # show service Example adit 3500# show service Syntax # show users Example adit 3500# show users Syntax # show version Example adit 3500# show versionExample Adit MSR# show version Example adit 3500# show voice-port fxs Syntax # show voice-port fxsExample adit MSR# show voice-port fxs Syntax # show voice-port trunk port Example adit 3500# show voice-port trunkExample adit MSR# show voice-port trunk Upgrade Syntax # upgrade ip-address address file filename checkSyntax # traceroute Syntax # traceroute addresshostnamestop Example Adit 3500# traceroute toPrivileged Mode Global Configuration Mode Commands for Entering Configuration Submodes Global Configuration Commands Access Access-controlLan Wan LanAccess-list Authentication login Syntax config# clock 12 source nonet1 portExample config# clock 1 source t1 Clock sourceController lcc Controller t1Date auto-time-update Date setNtp TodExample config# date summer-time 03 28 0000 10 28 0100 Date summer-timeDelete local-server Date timezoneDial-peer voice Dial-peer voice pots fxsDial-peer voice pots trunk Adit 3500 Range =Dmz-host Dial-peer voice voipUser Mode Commands Privileged Mode CommandsDynamic-dns backup-mx Syntax config# dynamic-dns interface eth-2mlink-1ser-nExample config# dynamic-dns interface ser-1 Dynamic-dnsDynamic-dns offline Dynamic-dns mail-exchangerDynamic-dns username Syntax config# exit Example config# exit Syntax config# end Example config# endDynamic-dns wildcard Config# help Or config# ? Config# helpHistory Syntax config# interface ethernet port Example config# interface ethernet Config-int-eth-1#Host-filter Interface ethernetInterface multilink Interface serialAdit 3104, Adit 3200, Adit 3500 Value must be Adit 3200, Adit 3500 Range =Ipsec authentication-retries Example config# ipsec authentication-retries 10 delayIpsec Ipsec key generate keyExample config# ipsec log ike msg-outp Ipsec log ikeIpsec net-to-host Ipsec log ipsecAny Ipsec net-to-net Ipsec replayIpsec vpnipsec Remote-ipIp domain-name Ip dhcp pool ethernetIp host Key L2tpcKey-code IpsecLocal-server NewLog lcc buffer LogLog lcc notify Log pri Log security bufferExample config# log security notify warn Example config# log sip buffer-fillLog security notify Log sipSyntax config# log system buffer kilobytes Example config# log system bufferExample config# log system notify error Log system bufferSyntax config# log t1 buffer kilobytes Example config# log t1 bufferExample config# log t1 notify warn Log t1 bufferMail-server authentication enable Mail-serverMail-server from-address Mail-server hostSyntax config# mail-server port port Example config# mail-server portMail-server port Mail-server usernameEnable Example config# nat-bypass ip-address 10.10.2.1 maskNat-bypass Network-objectNo access No commandsNo access-control No authentication login No access-listNo date auto-time-update No date summer-time No dial-peer voice pots fxsNo dial-peer voice pots trunk Adit 3500 Range =No dmz-host No dial-peer voice voipNo dynamic-dns No host-filter No ipsec authentication-retriesNo ipsec log ike No ipsec log ipsec Example config# no ipsec log ipsec tcNo ipsec replay No interface multilink No ipsec vpnipsecNo interface serial No key No ip dhcp pool ethernetNo l2tpc No mail-server authentication No local-serverNo log sip No nat-bypassNo network-object No port-trigger-serviceNo pptpc No remote-admin icmp No remote-admin snmpSyntax config# no pptps Example config# no pptps No pptpsNo remote-admin udp-trace No remote-admin telnetExample config# no remote-admin telnet primary-port Example config# no remote-admin web primary-port No remote-admin webNo router ospf Setting Syntax config# no security-log settingNo security-log No service Syntax config# no service service-idExample config# no service-id No snmp-serverNo time-range No static-dnsNo username No voice-codec No vlanNo voice-port trunk Pptpc Port-trigger servicePptps Remote-admin Remote-admin icmpRemote-admin snmp Radius-clientRemote-admin telnet Remote-admin udp-traceExample config# remote-admin telnet primary-port enable Primary-portExample config# remote-admin web primary-port enable Remote-admin webRouter ospf Security-default Typical defaultMaximum MinimumSecurity-log Service Snmp-server enable Snmp-serverSnmp-server community Server-src-portSnmp-server traps enable Snmp-server hostSnmp-server trusted-ip VersionStatic-dns Time-rangeAdmin UsernameVlan global MonitorVlan vlan-id Voice-codecSyntax config# voice-port fxs port Example config# voice-port fxs 1 config-vport-fxs-1#Voice-port global Voice-port fxsVoice-service sip Syntax config# voice-port trunk portExample config# voice-port trunk 1 config-vport-trk-1# Voice-port trunkLCC Controller Commands Configuration LCC Controller ModeDescription End Exit History No command Shutdown Example config-cont-lcc-1# description LCC#1 Syntax config-cont-lcc-n# description textDescription User Mode Commands Syntax config-cont-lcc-n# end Example config-cont-lcc-1# end No command No shutdownShutdown Configuration T1 Controller Mode T1 Controller CommandsSyntax config-cont-t1-n# description text Example config-cont-t1-1# description T1#1User Mode Commands Syntax config-cont-t1-n# ds0-group timeslots range Example config-cont-t1-1# ds0-group timeslotsSyntax config-cont-t1-n# end Example config-cont-t1-1# end Ds0-groupFdl FramingNone T1.403 EsfExample config-cont-t1-1# idle-pattern 0x7f Syntax config-cont-t1-n# idle-pattern numberIdle-pattern Lbo long LboLbo short Loopback LinecodeAmi B8zs Loopdetect No ds0-groupNo pri-group Csu Niu NoneNo tdm-group Pri-groupIn-out Example config-cont-t1-1# tdm-group timeslots 1-4 dir in-out Tdm-groupThreshold Configuration Dhcp Pool Ethernet Mode Dhcp Pool CommandsConfiguration Dhcp Pool Ethernet Mode Example config-dhcp-eth-1# end-address Syntax config-dhcp-eth-n# end-address addressEnd-address Example config-dhcp-eth-1# lease Syntax config-dhcp-eth-n# lease timeLease No relay No optionNo static-lease Option RelaySyntax config-dhcp-eth-n# start-address address Example config-dhcp-eth-1# start-addressStart-address Static-leaseSubnet-mask Wins serverConfiguration Dial Peer FXS Mode Dial Peer FXS CommandsBlock-out-caller-id Call-wait-caller-idCall-waiting Calling-party-discCodec preference Destination-pattern123 G711alawUser Mode Commands Syntax config-dpeer-fxs# end Example config-dpeer-fxs# end Syntax config-dpeer-fxs# fax-protocol nonepass-throught38 Example config-dpeer-fxs# fax-protocol noneFax-protocol Pass-throughExample config-dpeer-fxs# modem-protocol pass-though Syntax config-dpeer-fxs# modem-protocol nonepass-throughModem-protocol No block-out-caller-id No call-wait-caller-idNo call-waiting No calling-party-discNo sip-authentication Syntax config-dpeer-fxs# no codec preferenceExample config-dpeer-fxs# no codec preference No codec preferenceSip-authentication Sip-authentication enableSip-authentication password Sip-authentication usernameConfiguration Dial Peer Trunk Mode Dial Peer Trunk CommandsSyntax config-dpeer-trk# destination-pattern dest-pattern Example config-dpeer-trk# codec preference 1 g711alawExample config-dpeer-trk# destination-pattern 555$ User Mode Commands Syntax config-dpeer-trk# fax-protocol nonepass-throught38 Syntax config-dpeer-trk# end Example config-dpeer-trk# endExample config-dpeer-trk# fax-protocol none Syntax config-dpeer-trk# modem-protocol nonepass-through Example config-dpeer-trk# modem-protocol pass-thoughExample config-dpeer-trk# no codec preference Syntax config-dpeer-trk# no codec preferenceNo destination-pattern Syntax config-dpeer-trk# prefix prefix Example config-dpeer-trk# prefixPrefix PrefixExample config-dpeer-trk# strip-digits Syntax config-dpeer-trk# strip-digits numberStrip-digits Configuration Dial Peer VoIP Mode Dial Peer VoIP CommandsSyntax config-dpeer-voip# destination-pattern number Example config-dpeer-voip# destination-patternAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 10-3 Syntax config-dpeer-voip end Example config-dpeer-voip# end No prefix No session-targetSyntax config-dpeer-voip# prefix prefix Example config-dpeer-voip# prefixExample config-dpeer-voip# session-target ip-address Session-targetSyntax config-dpeer-voip# strip-digits number Example config-dpeer-voip# strip-digitsSyntax config-dpeer-voip# user-id user-id Example config-dpeer-voip# user-id testname10-8 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Ethernet Interface Mode Ethernet Interface CommandsSyntax config-int-eth-n# description text Example config-int-eth-1# description Eth#1Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 11-3 Syntax config-int-eth-n# end Example config-int-eth-1# end FirewallFull-duplex Half-duplexExample config-int-eth-1# ip address 192.168.2.100 mask Ip addressAuto SecondaryIp default-gateway Ip default-routeSyntax config-int-eth-n# ip default-gateway address Example config-int-eth-1# ip default-gatewaySyntax config-int-eth-n# ip mtu sizeauto Example config-int-eth-1# ip mtu autoIp mtu AutoMessage-digest Ip ospf authenticationNull Ip ospf cost Ip ospf authentication-keyIp ospf dead-interval Ip ospf disable Syntax config-int-eth-n# ip ospf hello-interval secondsExample config-int-eth-1# ip ospf hello-interval Ip ospf hello-intervalIp ospf priority Ip ospf transmit-delayIp ospf retransmit-interval Syntax config-int-eth-n# ip primary-dns address Example config-int-eth-1# ip primary-dnsIp primary-dns Ip proxy-arpIp rip enable Ip ripIp rip receive-version Ip rip send-versionSyntax config-int-eth-n# ip route-mode naptroute Example config-int-eth-1# ip route-mode naptIp route Ip route-modeIp secondary-dns MetricNo ip default-route No firewallNo ip address No ip dhcpNo ip ospf authentication No ip ospf authentication-keyNo ip ospf cost No ip ospf dead-intervalNo ip ospf disable Example config-int-eth-1# no ip ospf message-digest-keyNo ip ospf hello-interval No ip ospf message-digest-keyNo ip ospf transmit-delay No ip ospf priorityNo ip ospf retransmit-interval No ip primary-dnsNo ip proxy-arp No ip ripNo ip route No ip secondary-dnsNo schedule-availability No remote-adminNo sip-alg Renew ReleaseNo tos ip Syntax config-int-eth-n# schedule-availability time-range Example config-int-eth-1# schedule-availability time-rangeSchedule-availability Sip-algTos Speed100 Auto 11-26 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Multilink Interface Mode Multilink Interface CommandsSyntax config-int-mlink-n# description text Example config-int-mlink-1# description MLPPP1Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 12-3 12-4 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Example config-int-mlink-1# ip address 192.168.2.100 mask UnnumberedSyntax config-int-mlink-n# ip mtu sizeauto Example config-int-mlink-1# ip mtu autoAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 12-7 Syntax config-int-mlink-n# ip ospf cost cost Example config-int-mlink-1# ip ospf costSyntax config-int-mlink-n# ip ospf dead-interval seconds Example config-int-mlink-1# ip ospf dead-intervalSyntax config-int-mlink-n# ip ospf hello-interval seconds Example config-int-mlink-1# ip ospf hello-intervalSyntax config-int-mlink-n# ip ospf priority priority Example config-int-mlink-1# ip ospf priorityExample config-int-mlink-1# ip ospf retransmit-interval Syntax config-int-mlink-n# ip ospf transmit-delay secondsSyntax config-int-mlink-n# ip primary-dns address Example config-int-mlink-1# ip primary-dnsExample config-int-mlink-1# ip rip receive-version none 121or2Example config-int-mlink-1# ip rip send-version 2-bcast Syntax config-int-mlink-n# ip route-mode naptroute Example config-int-mlink-1# ip route-mode naptSyntax config-int-mlink-n# ip secondary-dns address Example config-int-mlink-1# ip secondary-dnsSyntax config-int-mlink-n# no ip address address Example config-int-mlink-1# no ip addressAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 12-15 Example config-int-mlink-1# no ip ospf message-digest-key Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 12-17 No ppp authentication Syntax config-int-mlink-n# no ip route dest-ip-addr gatewayExample config-int-mlink-1# no ip route 192.168.100.200 No ppp encryptionNo ppp password No ppp on-demandNo ppp qos interleaving No ppp username12-20 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Ppp exec-timeout Ppp authenticationPpp encryption Ppp link-fragmentation Ppp passwordPpp on-demand Ppp qos-interleaving Ppp restart-timerPpp time-btwn-reconnect Syntax config-int-mlink-n# ppp username username Example config-int-mlink-1# ppp username test-user-nameSyntax config-int-mlink-n# schedule-availability time-range Ppp usernameAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 12-25 12-26 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Serial Interface Mode Serial Interface CommandsSyntax config-int-ser-n# description text Example config-int-ser-1# description Serial1Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 13-3 Syntax config-int-ser-n# end Example config-int-ser-1# end Encapsulation pppAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 13-5 Syntax config-int-ser-n# ip mtu sizeauto Example config-int-ser-1# ip address 192.168.2.100 maskExample config-int-ser-1# ip mtu auto Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 13-7 Syntax config-int-ser-n# ip ospf cost cost Example config-int-ser-1# ip ospf costSyntax config-int-ser-n# ip ospf dead-interval seconds Example config-int-ser-1# ip ospf dead-intervalSyntax config-int-ser-n# ip ospf hello-interval seconds Example config-int-ser-1# ip ospf hello-intervalSyntax config-int-ser-n# ip ospf priority priority Example config-int-ser-1# ip ospf priorityExample config-int-ser-1# ip ospf retransmit-interval Syntax config-int-ser-n# ip ospf transmit-delay secondsSyntax config-int-ser-n# ip primary-dns address Example config-int-ser-1# ip primary-dnsSyntax config-int-ser-n# ip rip receive-version 121or2none Example config-int-ser-1# ip rip receive-version noneExample config-int-ser-1# ip rip send-version 2-bcast Syntax config-int-ser-n# ip route-mode naptroute Example config-int-ser-1# ip route-mode naptSyntax config-int-ser-n# ip secondary-dns address Example config-int-ser-1# ip secondary-dnsSyntax config-int-ser-n# multilink-group group-number Example config-int-ser-1# multilink-groupMultilink-group No encapsulation pppSyntax config-int-ser-n# no ip address address Example config-int-ser-1# no ip address13-16 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Example config-int-ser-1# no ip ospf message-digest-key Syntax config-int-ser-n# no ip route dest-ip-addr gateway Example config-int-ser-1# no ip route 192.168.100.200Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 13-19 13-20 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Ms-chap Syntax config-int-ser-n# ppp link-fragmentation number Example config-int-ser-1# ppp link-fragmentationSyntax config-int-ser-n# ppp password password Example config-int-ser-1# ppp username test-user-pswrdSyntax config-int-ser-n# ppp restart-timer seconds Example config-int-ser-1# ppp restart-timerSyntax config-int-ser-n# ppp time-btwn-reconnect seconds Example config-int-ser-1# ppp time-btwn-reconnectSyntax config-int-ser-n# schedule-availability time-range Example config-int-ser-1# schedule-availability time-rangeConfiguration IPSec Mode IPSec CommandsAuthentication Aggressive-modePre-shared Rsa-sigAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 14-3 Dpd-enable Dpd-delayDpd-timeout Encryption Hash GroupMd5 Sha Example config-ipsec-1# ip route metric Syntax config-ipsec n# ip route metric metricIp route metric Ipsec-conn Ipsec-manualLifetime Local-subnetSingle ip Subnet ipMax-retries ModeTransport TunnelNet-type Netbios remote-brc-addrDmz lan wan No dpd-delay No dpd-enableNo dpd-timeout No aggressive-modeExample config-ipsec-1# no encryption aes Syntax config-ipsec-n# no groupExample config-ipsec-1# no group No encryptionNo netbios Syntax config-ipsec-n# no hash md5shaExample config-ipsec-1# no hash md5 No hashNo reconnect No set-pfsNo transform-set Rekey ReconnectRemote-ip Example config-ipsec-1# schedule-availability rule1 Syntax config-ipsec-n# schedule-availability rule-idRemote-subnet Set-pfs Session-keyExample config-ipsec-1# transform-set esp-aes Transform-setExample of IPSec Connection Configuration 14-22 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration L2TPC Mode L2TPC CommandsConfiguration L2TPC Mode Syntax config-l2tpc-n# end Example config-l2tpc-1# end Example config-l2tpc-1# host-ip Syntax config-l2tpc-n# host-ip addressHost-ip Syntax config-l2tpc-n# ip mtu sizeauto Example config-l2tpc-1# ip address 192.168.2.100 maskExample config-l2tpc-1# ip mtu auto 15-6 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Syntax config-l2tpc-n# ip ospf authentication-key password Example config-l2tpc-1# ip ospf authentication-key pass777Syntax config-l2tpc-n# ip ospf cost cost Example config-l2tpc-1# ip ospf costSyntax config-l2tpc-n# ip ospf hello-interval seconds Example config-l2tpc-1# ip ospf hello-intervalSyntax config-l2tpc-n# ip ospf priority priority Example config-l2tpc-1# ip ospf prioritySyntax config-l2tpc-n# ip ospf retransmit-interval seconds Example config-l2tpc-1# ip ospf retransmit-intervalSyntax config-l2tpc-n# ip primary-dns address Example config-l2tpc-1# ip primary-dnsSyntax config-l2tpc-n# ip rip receive-version 121or2none Example config-l2tpc-1# ip rip receive-version noneExample config-l2tpc-1# ip rip send-version 2-bcast Local-secret Syntax config-l2tpc-n# metric metric Example config-l2tpc-1# metricSyntax config-l2tpc-n# no ip address address Example config-l2tpc-1# no ip address15-14 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 15-15 Syntax config-l2tpc-n# no ip ospf message-digest-key key-id Example config-l2tpc-1# no ip ospf message-digest-keySyntax config-l2tpc-n# no ip route dest-ip-addr gateway Example config-l2tpc-1# no ip route 192.168.100.200No ppp exec-timeout No ppp restart-timer No ppp time-btwn-reconnect15-20 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Example config-l2tpc-1# ppp authentication chap Syntax config-l2tpc-n# ppp encryption 40-bit128-bitExample config-l2tpc-1# ppp encryption 40-bit Syntax config-l2tpc-n# ppp exec-timeout minutesSyntax config-l2tpc-n# ppp password password Example config-l2tpc-1# ppp password test-user-pswrdSyntax config-l2tpc-n# ppp restart-timer seconds Example config-l2tpc-1# ppp restart-timerSyntax config-l2tpc-n# ppp time-btwn-reconnect seconds Example config-l2tpc-1# ppp time-btwn-reconnectSyntax config-l2tpc-n# ppp username username Example config-l2tpc-1# ppp username test-user-name15-24 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Ospf Mode Router Ospf CommandsArea authentication Area commandsMessage-digest Compatible rfc1583 16-4 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Syntax config-ospf# end Example config-ospf# end Syntax config-ospf# exit Example config-ospf# exit Config#Example config-ospf# network 192.168.1.1 0.0.0.255 area Network areaNo area No area authenticationNo area stub Example config-ospf# no network 192.168.1.1 0.0.0.255 area No compatible rfc1583No network area No router-idRouter-id Syntax config-ospf# router-id addressExample router-ospf# router-id Sample Configuration Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 16-11 16-12 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Pptpc Mode Pptp Client CommandsConfiguration Pptpc Mode Syntax config-pptpc-n# end Example config-pptpc-1# end Syntax config-pptpc-n# host-ip address Example config-pptpc-1# host-ipSyntax config-pptpc-n# ip mtu sizeauto Example config-pptpc-1# ip address 192.168.2.100 maskExample config-pptpc-1# ip mtu auto 17-6 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Syntax config-pptpc-n# ip ospf authentication-key password Example config-pptpc-1# ip ospf authentication-key pass777Syntax config-pptpc-n# ip ospf cost cost Example config-pptpc-1# ip ospf costSyntax config-pptpc-n# ip ospf hello-interval seconds Example config-pptpc-1# ip ospf hello-intervalSyntax config-pptpc-n# ip ospf priority priority Example config-pptpc-1# ip ospf prioritySyntax config-pptpc-n# ip ospf retransmit-interval seconds Example config-pptpc-1# ip ospf retransmit-intervalSyntax config-pptpc-n# ip primary-dns address Example config-pptpc-1# ip primary-dnsSyntax config-pptpc-n# ip rip receive-version 121or2none Example config-pptpc-1# ip rip receive-version noneExample config-pptpc-1# ip rip send-version 2-bcast Syntax config-pptpc-n# ip route-mode naptroute Example config-pptpc-1# ip route-mode naptSyntax config-pptpc-n# ip secondary-dns address Example config-pptpc-1# ip secondary-dnsSyntax config-pptpc-n# no ip address address Example config-pptpc-1# no ip address17-14 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Syntax config-pptpc-n# no ip ospf message-digest-key key-id Example config-pptpc-1# no ip ospf message-digest-key17-16 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Syntax config-pptpc-n# no ip route dest-ip-addr gateway Example config-pptpc-1# no ip route 192.168.100.20017-18 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 17-19 Syntax config-pptpc-n# ppp encryption 40-bit128-bit Example config-pptpc-1# ppp authentication chapExample config-pptpc-1# ppp encryption 40-bit Syntax config-pptpc-n# ppp exec-timeout minutes Example config-pptpc-1# ppp exec-timeoutSyntax config-pptpc-n# ppp password password Example config-pptpc-1# ppp password test-user-pswrdSyntax config-pptpc-n# ppp restart-timer seconds Example config-pptpc-1# ppp restart-timerSyntax config-pptpc-n# ppp time-btwn-reconnect seconds Example config-pptpc-1# ppp time-btwn-reconnectExample config-pptpc-1# schedule-availability time-range 17-24 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Pptps Mode Pptp Server CommandsConfiguration Pptps Mode Syntax config-pptps# end Example config-pptps# end Syntax config-pptps# end-address end-ip-addressExample config-pptps# end-address End-ip-addressSyntax config-pptps# idle-time seconds Example config-pptps# idle-timeIdle-time SecondsExample config-pptps# no ppp authentication Example config-pptps# no ppp encryptionNo idle-time 40-bitSyntax config-pptps# ppp encryption 40-bit128-bitstateful Example config-pptps# ppp authentication chapExample config-pptps# ppp encryption stateful Syntax config-pptps# start-address start-address Example config-pptps# start-addressStart-ip-address Enter the start IP address of the range18-8 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Radius Commands Configuration Radius ModeAuthentication End Exit History Host Key Syntax config-radius# authentication chapms-chapms-chapv2pap Example config-radius# authentication chapAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 19-3 Syntax config-radius# end Example config-radius# end Syntax config-radius# host address auth-port port Example config-radius# host 192.168.1.1 auth-portSyntax config-radius# key password Example config-radius# key testpswd19-6 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Vlan Mode Vlan Global CommandsConfiguration Vlan Mode Syntax config-vlan# end Example config-vlan# end Syntax config-vlan# exit Example config-vlan# exit Config#Syntax config-vlan# no port-dot1q ethernet port Example config-vlan# no port-dot1q ethernetSyntax config-vlan# no vlan entry Example config-vlan# no vlanAdit 3104 and Adit 3200 1.1, 1.2, 1.3, 1.4 Adit 3500 and MSR 1.1Adit 3104 and Adit 3200 1.1, 1.2, 1.3, 1.4 DisableAdit 3500 and MSR 1.1 Syntax config-vlan# tag-all disableenable Example config-vlan# tag-all enableSyntax config-vlan# vlan-feature disableenable Disable Disable Vlan feature Enable Enable Vlan feature20-8 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Vlan Port Commands Configuration Vlan Port ModeEnd Exit History No commands Port Priority Voip-interface Configuration Vlan Port Mode Syntax config-vlan-n# end Example config-vlan-100# end No port No voip-interfaceSyntax config-vlan-n# priority priority Example config-vlan-100# priority21-6 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Voice Port Commands Configuration Voice Port ModeDigit-map global End Exit History No digit-map global Tos Long-timeout Short-timeoutExample config-vport# digit-map mode long-timeout Digit-map globalAdit 3000 Rel .6 and MSR Card Rel 2.0 CLI 22-3 Syntax config-vport# end Example config-vport# end Syntax config-vport# exit Example config-vport# exit Config#No digit-map global Pattern numberRtp value hex-value Sip value hex-value22-6 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Voice Port FXS Mode Voice Port FXS CommandsExample config-vport-fxs-1# description VoiceP-#2 Syntax config-vport-fxs-n# description textComfort-noise Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 23-3 23-4 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Syntax config-vport-fxs-n# input-gain value Example config-vport-fxs-1# input-gainNo comfort-noise No echo-cancelNo per-line-logging Syntax config-vport-fxs-n# output-gain value Example config-vport-fxs-1# output-gainSyntax config-vport-fxs-n# signal ground-startloop-start Example config-vport-fxs-1# signal ground-startConfiguration Voice Port Trunk Mode Voice Port Trunk CommandsConnection lcc Connection t1Digit-map DefaultCustom 24-4 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Use the end command to exit the current Configuration mode Syntax config-vport-trk-n# input-gain value Example config-vport-trk-1# input-gainIsdn switch-type PRI Example config-vport-trk-1# isdn switch-type pri-ni2No connection lcc No connection t1No registration enable No digit-mapNo registration line No registration line enableNo registration line logging Syntax config-vport-trk-n# output-gain value Example config-vport-trk-1# output-gainRegistration line authentication Registration enableRegistration Registration line enable Registration line first-phone-numberExample config-vport-trk-1# signal immediate Registration line loggingExample config-vport-trk-1# trunk VPtrunk1 Syntax config-vport-trk-n# trunk trunk-idTrunk 24-16 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Configuration Voice Service SIP Mode Voice Service SIP CommandsExample config-voice-serv-sip# calling-party-disc Syntax config-voice-serv-sip# calling-party-disc durationConference Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 25-3 Dtmf Early-mediaInband Rfc2833Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI 25-5 Fax-protocol-t38 ecs Fax-protocol-t38 redundancyHs-redundancy Ls-redundancyFax-protocol-t38 signaling Feature-modeExample config-voice-serv-sip# gateway-ip Syntax config-voice-serv-sip# gateway-ip addressGateway-ip No conference No outbound-proxyNo prack No proxy-serverNo redundancy rollback-timer No session-timer modeNo redundancy filter-incoming No registration ignore-negotiatedPhone-number Outbound-proxyPrack Proxy-server Privacy-modeRfc3325 Example config-voice-serv-sip# proxy-type generic Example config-voice-serv-sip# redundancy advance-retriesProxy-type Redundancy advance-retriesRedundancy advance-timeout Example config-voice-serv-sip# redundancy advance-timeoutExample config-voice-serv-sip# redundancy primary-address Redundancy filter-incomingRedundancy rollback-timer Example config-voice-serv-sip# redundancy rollback-timerExample config-voice-serv-sip# redundancy secondary-address Redundancy secondary-addressRedundancy type Redundancy ttlNone Srv User Rtp-base-port Session-timer mode Session-timerSession-timer refresher Session-timer timeout Sip-portTransport Tcp Udp25-20 Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Index Index Adit 3000 Rel .6 and MSR Card Rel 2.0 CLI Index Index Index Index Index FXS Index Index Index Encapsulation ppp Index Index FXS 63,4-64