Vlan ID | Cisco Systems 6500 specification

Chapter 2 Commands for the Catalyst 6500 Series Switch WebVPN Module

show webvpn platform gateway

This example shows how to display debug information for a specific gateway:

webvpn# show webvpn platform gateway s1 debug IP: 10.1.2.14, port: 443 rsa-general-purpose certificate trustpoint: mytp

Certificate chain for new connections: Certificate:

Key Label: mytp, 1024-bit, not exportable

Key Timestamp: 12:09:27 UTC Dec 25 2004

Serial Number: 0FE5 Root CA Certificate:

Serial Number: 01 Certificate chain complete

Admin Status: up

Operation Status: up

Service ID:		1	Bound ID: -1
Virtual IP:		10.1.2.14	Port	: 443
VLAN ID	:	0	MAC Address : 0000.0000.0000
State	:	PROXY VALID
Enabled	:	Yes

Secondary : No

Client NAT: disable

Server NAT: disable webvpn#

This example shows how to display status information for all CPUs for a specific gateway:

webvpn# show web	platform gateway s1 module all
FDU Service Entry
Service ID	:	1	Protocol	: 6
Virtual IP	:	64.102.223.140	Virtual port : 443
HTTP-redirect:		0
Hash Index	:	896	Conn Count	: 0
Bound ID	: -1		State	: UP
Service ID 1
IP address : 10.1.2.14 Port : 443
MSS : 1460
SYN timeout (s):		75
Idle timeout (s)		: 600
FIN wait timeout		(s) : 75

Reassembly timeout (s) : 60

Connection Rx Buffer Size : 32768

Connection Tx Buffer Size : 65536

TOS Carryover Disabled

Service entry in cpu 1:

Cipher suites: 0xF

Versions: 0x3

Options: 0x6

Current Certificate Index: 0x0 0x1 0x0 0x0 0x0 0x0 0x0

Certificate Index at 0 location: 0x0 0x0 0x0 0x0 0x0 0x0 0x0

Certificate Index at 1 location: 0x0 0x0 0x0 0x0 0x0 0x0 0x0

Flags: 0x201

Handshake timeout: 0 secs

Session timeout: 0 secs

Session cache size: 262144

webvpn#

Catalyst 6500 Series Switch WebVPN Module Command Reference—Release 1.1

	OL-7310-01	2-57

Image 57

Cisco Systems 6500 manual Vlan ID

Contents

Commands for the Catalyst 6500 Series Switch WebVPN Module Command Modes Command History DefaultsClear webvpn nbns Release Modification Clear webvpn platform Webvpn# clear webvpn platform Clears the statistics for a specific context Clear webvpn sessionUser name Specifies the user name Cifs Clear webvpn statsMangle Port-forward Terminal Crypto key export rsa pemUrl url 3des Key nametest-keys UsageGeneral Purpose Key General-keys Crypto key generateUsage-keys Exportable This example shows how to generate special-usage RSA keys This example shows how to generate general-purpose RSA keysCrypto key generate rsa usage-keys Release Modification Crypto key import rsa pem PEM-formatted RSA key to the WebVPN Services Module Crypto pki authenticate trustpoint-label Crypto pki authenticate Crypto pki certificate Defaults Command Modes Command History Usage Guidelines Wwbvpnconfig# crypto pki crl request Crypto pki crl requestCrypto pki crl request name Webvpnconfig# crypto pki enroll PROXY1 This example shows how to request a certificateCrypto pki enroll Crypto pki enroll trustpoint-label Crypto pki export pem Related Commands crypto pki import pem Crypto pki export pkcs12 Wwbvpnconfig# crypto ca export TP1 pkcs12 scp sky is blue This example shows how to export a PKCS12 file using SCPInclude the full path in the pkcs12filename value PKCS12 file Crypto pki import pem Usage Guidelines Examples Related Commands crypto pki export pem Crypto pki import pkcs12 Users/admin-1/pkcs12/TP2.p12 This example shows how to import a PKCS12 file using SCP Webvpnconfig# crypto pki profile enrollment test Crypto pki profile enrollmentCrypto pki profile enrollment label Crypto pki trustpoint Command Purpose and Guidelines Defaults Period minutes-1 Enrollment http-proxymode ra retryPeriod minutes count count url url Count count-10 Password password Certificate map mapname commandMatch certificate mapname map override Skip Subject-name line Usage ike ssl-client ssl-serverVrf vrf Debug webvpn Trace module module- FDU trace Event app next-hop tcp-Event debugging Ca-pool- CA Pool Cert- Certificate managementEvents- Events This example shows how to turn on tunnel debugging Usage Guidelines Nbns-list name no nbns-list name Nbns-list Master timeout Nbns-server ipaddrExit Policy group Banner value stringFilter tunnel ip-acl Timeout idle Functions file-accessHide-url-bar Nbns-list name Webvpnconfig-webvpn-group#svc address-pool ciscotunlpool Webvpnconfig# webvpn context cisco Specifies the default local port valid values are from 1 to Default local-portPort-forward Port-forward listname no port-forward listname Webvpn context Related Commands url-list Show webvpn context Show webvpn context nameWebvpn# show web context tunnel Show webvpn dispatch algorithm member stats Show webvpn dispatchAlgorithm Member Sslvpn CLB Member Table Show webvpn gateway Webvpn# show webvpn gateway s1 Admin Status upShow webvpn gateway name Webvpn# show webvpn gateway File Show webvpn installCsd Status Webvpn# show web install file \webvpn\stc\version.txt Show webvpn nbns context name all Show webvpn nbnsAll Show web nbns context all Show webvpn platform buffers Show webvpn-platform buffers module moduleShow webvpn-platform buffers module all Show webvpn platform context Show webvpn platform context name module moduleWebvpn# show webvpn platform context tunnel OL-7310-01 Show webvpn platform crash-info brief details Show webvpn platform crash-infoBrief Details Nvram Version This Core Didnt Crash Show webvpn platform gateway name debug module module Show webvpn platform gatewayDebug Module module Vlan ID Show webvpn platform mac address This command has no default settingsShow webvpn platform mac address Module Show webvpn platform policy ssl tcp name Show webvpn platform policySsl Tcp Show webvpn platform version Show webvpn platform versionWebvpn# show webvpn platform version Show webvpn platform vlan Show webvpn platform vlan vlan-idWebvpn# show webvpn platform vlan Show webvpn policy Related Commands webvpn policy sslGroup name Context name Tcp Context name Show webvpn sessionUser name Webvpn# show webvpn session context c1 Show webvpn stats Show webvpn stats typeWebvpn# show webvpn stats Mangling statistics Relative urls 15705 Absolute urls 41850 DPD Page TCP VCs Active VCs Aborted Conns Webvpn# show web stats context tunnel DPD Snmp-server enable This example shows how to enable Snmp informs This example shows how to enable trapsThis example shows how to enable authentication traps Command History Release Modification Command Modes WebVPN group context submodeSvc Dns-server primary secondary Command Purpose and Guidelines Default No rekey method Rekey method new-tunnel sslRekey time interval No rekey time Url-list listname no url-list listname Url-listHeading text Url-text text url-value url/exchage Related Commands webvpn context Specifies AAA configuration parameters for context Aaa authentication domain domain-listDefault-group-policy default-policy-name Webvpn context Login-message string InserviceNo login-message Password-prompt prompt Authenticate verify -Specifies the SSL Ssl authenticate verify all nonePolicy group policy-name Policy ssl policy-name Url-list listname Vrf-name vrf-nameColor Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Webvpnconfig-webvpn-context# url-list cisco 100 Webvpn gateway Secondary No policy tcpNo policy ssl Webvpnconfig# webvpn gateway common Webvpnconfig-webvpn-gateway#ip address 172.21.65.71 portContext and enter the gateway submode Webvpn policy ssl Timeout handshake timeout No session-cache enableTimeout session timeout absolute Help This example shows how to disable session-cache This example shows how to enable session-cacheWwbvpnconfig# webvpn policy ssl sslpl1 Wwbvpnconfig-ssl-policy#cipher RSAWITH3DESEDECBCSHA This example shows how to print out a help Related Commands show webvpn statsWwbvpnconfig-ssl-policy#timeout session 30000 absolute Timeout reassembly is 60 seconds Tos carryover is disabled Timeout syn is 75 secondsDefault Exit Webvpn policy tcp Delay-ack-timeout Delayed-ack-thresholdNo timeout fin-wait timeout-in-seconds No timeout inactivity timeout-in-seconds Form of this command to return to the default setting No timeout reassembly timeNo tos carryover Server to client connection, the server connection must be 111 112