Nortel Secure Router 2330/4134
Using the Command Line Interface Release: 10.2 Document Revision: 03.01
www.nortel.com
NN47263-506 .
Nortel Secure Router 2330/4134 Release: 10.2 Publication: NN47263-506 Document release date: 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved. While the information in this document is believed to be accurate and reliable, except as otherwise expressly agreed to in writing NORTEL PROVIDES THIS DOCUMENT "AS IS" WITHOUT WARRANTY OR CONDITION OF ANY KIND, EITHER EXPRESS OR IMPLIED. The information and/or products described in this document are subject to change without notice.
Nortel, Nortel Networks, the Nortel logo, and the Globemark are trademarks of Nortel Networks. THE SOFTWARE DESCRIBED IN THIS DOCUMENT IS FURNISHED UNDER A LICENSE AGREEMENT AND MAY BE USED ONLY IN ACCORDANCE WITH THE TERMS OF THAT LICENSE.
All other trademarks are the property of their respective owners.
.
3
.
Contents New in this release
5
Features 5 show system configuration 5 Other changes 5 Secure Router 2330 hardware 5
Introduction
7
CLI fundamentals
9
Top-level commands 10 Global commands 10 Configuration mode 11 Context-sensitive configuration commands 11 CLI user access levels 12 Multiple concurrent CLI users 12 Context-sensitive help 12 Command-specific help 13 Command tree 13 Navigation keys 14 Navigation commands 15 no command 15 Command abbreviations 15 Command history 15 Configuration file 15 Module slot and port numbering 16 Secure Router 4134 Voice Carrier medium module subslots 17
Boot CLI fundamentals
19
Boot CLI command list 19
Basic CLI operations Logging on 24 Configuring the router from a terminal 24 Configuring users 25 Modifying the administrator account user name 25 Modifying passwords for other users 26 Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
23
4 Modifying your own password 26 Saving the current configuration to file 27 Encrypting password display 28 Adding a header to the configuration file 28 Adding comments at the beginning of a configuration 28 Adding comments to the end of a configuration 29 Configuring the router using configuration files from flash 29 Configuring the router using configuration files from the network Configuring the timeout for console sessions 30 Displaying the console timeout 31 Displaying configured user accounts 31 Displaying connected users 31 Displaying user account for current session 31 Displaying running configuration 32 Displaying stored configuration 32 Displaying system configuration 32
File management Navigation 35 Copying files to and from compact flash or USB 35 Downloading files from the network to compact flash or USB 36 Uploading a file from compact flash or USB to the network 37 Formatting a compact flash or USB device 37 Renaming a file on compact flash or USB 38 Removing a file from compact flash or USB 38 Uploading the event log to the network 38 Displaying the file list from compact flash or USB 38 Displaying image file versions from compact flash or USB 39 Displaying Boot ROM file information 39
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
30
35
5
.
New in this release The following sections detail what’s new in Nortel Secure Router 2330/4134 — Using the CLI (NN47263-506).
ATTENTION In this document, the term Secure Router 2330/4134 is used interchangeably to refer to the Secure Router 2330 and the Secure Router 4134.
Features See the following sections for information about features changes:
show system configuration With release 10.2, the output of the show system configuration is modified so that the slot allocation is shown in consecutive order. For more information, see “Displaying system configuration” (page 32).
Other changes See the following sections for information about changes that are not feature-related:
Secure Router 2330 hardware This document is updated to refer to the new Secure Router 2330 hardware in addition to the existing Secure Router 4134 hardware. For information on port and slot numbering for the SR2330, see Figure 2 "Secure Router 2330 front panel" (page 17).
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
6 New in this release
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
7
.
Introduction This document describes the basic functionality and navigation of the Command Line Interface (CLI) for Secure Router 2330/4134 (SR2000/4134).
Navigation • • • •
“CLI fundamentals” (page 9) “Boot CLI fundamentals” (page 19) “Basic CLI operations” (page 23) “File management” (page 35)
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
8 Introduction
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
9
.
CLI fundamentals The command line interface (CLI) is the main, text-based interface for configuring, managing, and monitoring the Secure Router 2330/4134. You access the CLI through a direct connection to the console port, or remotely using Telnet. This section contains information about the basic CLI functionality with the Secure Router 2330/4134.
Navigation • • • • • • • • • • • • • • • •
“Top-level commands” (page 10) “Global commands” (page 10) “Configuration mode” (page 11) “Context-sensitive configuration commands” (page 11) “CLI user access levels” (page 12) “Multiple concurrent CLI users” (page 12) “Context-sensitive help” (page 12) “Command-specific help” (page 13) “Command tree” (page 13) “Navigation keys” (page 14) “Navigation commands” (page 15) “no command” (page 15) “Command abbreviations” (page 15) “Command history” (page 15) “Configuration file” (page 15) “Module slot and port numbering” (page 16)
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
10 CLI fundamentals
Top-level commands When you log on to the switch, you enter the top level of the CLI hierarchy. From this level, you can access various top-level commands, including debugging, system file configuration, password configuration, testing, and rebooting. The configure command is also available for entering the configuration mode, or configuring the switch from an existing configuration file. The following table lists the commands that are accessible only from the top level of the CLI. Table 1 Top-level commands Command
Definition
configure
Configure from [flash | network | terminal].
debug
Access debug commands.
file
Access file commands.
password
Change the user password.
reboot
Reboot the system.
test
Access test commands.
Global commands From the top level of the CLI, you can also access additional operational commands including clear, pin, save, show, telnet, and trace. These commands are available from any level of the CLI. The following table lists the global commands are available from any level of the CLI. Table 2 Global commands Command
Definition
clear
Access clear commands.
ping
Invoke ping to IP host.
ping6
Invoke pint to IPv6 host.
save
Save configuration to [local | network].
show
Access show commands.
telnet
Open a Telnet connection.
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Context-sensitive configuration commands
11
Table 2 Global commands (cont’d.) Command
Definition
trace
Trace the route to a destination address or host name.
trace6
Trace the route to an IPv6 destination address or host name.
Configuration mode To configure the router system parameters, you must enter the configuration mode using the configure terminal command. For example: SR4134#configure terminal SR4134/configure#
From the configuration mode, you can configure router system parameters for the SR2000/4134. You can also access configuration commands for specific interfaces, modules, or features. For detailed configuration commands, refer to
Context-sensitive configuration commands To configure parameters for certain interfaces, modules, or features, you must first select the desired object to configure. For example, you can select an interface from the configuration mode by entering the interface command. Or you can configure the firewall parameters by entering the firewall command. When you select a particular object, the CLI prompt level changes to display the object that is selected. Any subsequent commands that you enter apply only to the selected object until you exit the command level for that object. For example, the following displays the commands required to select Ethernet interface in slot 0, port 1 for configuration. SR4134#configure terminal SR4134/configure# interface ethernet 0/1 Configuring existing Ethernet interface SR4134/configure/interface/ethernet (0/1)#
The commands available differ depending on the particular object selected.
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
12 CLI fundamentals
CLI user access levels The CLI supports four levels of privilege. Privilege level
Privilege name
Definition
1 (highest)
PRIVILEGE_ADMIN
Admin level Can access any command and configure any feature in the router, including user configuration and administration.
2
PRIVILEGE_CONFIGURE
Configure level Can configure any feature. Cannot add or delete users.
3
PRIVILEGE_TEST
Test level Can only run diagnostic tests. Cannot access configuration commands.
4 (lowest)
PRIVILEGE_NORMAL
Normal level Can only enter show or display commands.
Multiple concurrent CLI users A single user can issue commands through the console interface. In addition, multiple concurrent users can telnet and issue commands.
ATTENTION To avoid multiple users from issuing configuration commands simultaneously, only one user is allowed to enter the configuration mode at one time. A console connection with a console timeout value of 0 seconds will prevent other users from entering the configuration mode indefinitely . To work around this issue, enter the debug clear_clisession command. To avoid this issue, you can also configure the console timeout (using the console_timeout command). Alternatively, if the active session that is locking other users out of the configuration mode is a Telnet session, you can disconnect the session using the clear telnet_session command. Use the show users command to identify the session to be cleared.
Context-sensitive help The CLI provides text-based, context-sensitive help. To access this help, enter a question mark (?) at the current command level, or after typing a partial or full command string. The CLI displays the commands available at that level, or the options available for the specified command. The following figure shows a sample output for the show ? command.
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Command tree 13
In addition, you can also manually scroll through the options available at the current command level or to complete a particular command string by repeatedly pressing the Tab key.
Command-specific help The help command displays help for the command specified in . This help provides the same description of command options available through context-sensitive help. However, command-specific help also provides a description of the command itself, as well as the correct syntax required for the command. The following figure shows a sample output for the help configure command.
Command tree The tree command displays a tree of all CLI commands associated with the current command mode or level. The following figure shows a sample output for the tree command.
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
14 CLI fundamentals
Navigation keys You can change the location of the cursor and edit commands in the CLI using the key combinations shown in the following table. The help edit command displays a table containing most of the information below. Table 3 help edit output Key stroke
Action
TAB
complete the command
Esc+B
go back one word
Esc+F
go forward one word
Esc+DEL
delete one word left to cursor
BackSpace
go back and delete one character
Ctrl+A
go back to the start of the line
Ctrl+B / Left arrow (←)
go back one character
Ctrl+D / DEL
•
delete a character OR
•
if the line is empty, go up one level
Ctrl+E
go forward to the end of the line
Ctrl+F / Right arrow (→)
go forward one character
Ctrl-K
delete the line ahead of the cursor
Ctrl+L
refresh the line
Ctrl+N / Down arrow (↓)
go to the next command in history
Ctrl+P / Up arrow (↑)
go to the previous command in history
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Configuration file 15
Table 3 help edit output (cont’d.) Key stroke
Action
Ctrl+U
delete the entire line
Ctrl+W
delete one word left to cursor
Ctrl+Z
exit to top level
Navigation commands The following commands provide additional navigation in the CLI. Table 4 Navigation commands Command
Definition
exit
Exit exits the specified number of command levels. When this command is executed from the top level, it terminates the CLI session.
pop
In configuration mode, the pop command sets the command level back to the main configuration mode level (SR4134/configure#.
no command The no command is always used as a prefix to a command to negate the action performed by that command. The no command removes or clears the configuration or operation controlled by the specified command.
Command abbreviations The SR2000/4134 accepts abbreviations for commands, as long as there is only one possible choice to complete the abbreviated command. For example, sh in 2/3 is an acceptable abbreviation for the show interface command.
Command history The CLI maintains a list of entered commands. From the command line, you can scroll through the list of previously executed commands by pressing the up arrow key (↑). The CLI stores a maximum of 100 commands.
Configuration file In addition to manual configuration, you can set the router system parameters using a configuration file stored in flash memory, or on a network server. This is useful for restoring a saved configuration to your router, or for copying a saved configuration to another router. Configuration files have a .cfg extension. Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
16 CLI fundamentals
Create a config file by using the save command.
Module slot and port numbering The SR2000/4134 supports a variety of modules, each with unique configuration requirements. To configure these modules, you must specify the slot in which the module is located, and typically the individual port on the module to configure, in the format slot/port. As shown in the following figure, the SR4134 chassis provides a slot numbering legend directly above Chassis SFP Ethernet ports 0/3 and 0/4. The legend shows how slots are numbered on the Secure Router 4134. Figure 1 Secure Router 4134 slot numbering legend
Slots 1 through 4 are Small Module slots, and slots 5 through 7 are Medium Module slots. If you insert a Large Module, it spans slots 6 and 7. In this case, the Large Module is identified in the Command Line Interface (CLI) as slot 6. The slot/port format also applies to the onboard Chassis Ethernet ports, but for these ports, the assigned slot number is 0. As a result, the rear panel Fast Ethernet management port is numbered 0/0, and the front panel Gigabit Ethernet ports are number 0/1 through 0/4. With the Secure Router 2330, all slots and ports are labelled directly on the chassis. The following figure shows the front panel of the Secure Router 2330.
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Module slot and port numbering
17
Figure 2 Secure Router 2330 front panel
The following table describes the built-in slots and ports available on the front panel of the Secure Router 2330. Table 5 Secure Router 2330 front panel description Item
Description
1
Small Module slot 1
2
Small Module slot 2
3
Small Module slot 3
4
Power input
5
Four Fast Ethernet ports (FE 0/1 through FE 0/4)
6
Two 10/100/1000Base-T ports (GE 0/5 and 0/6), which use dual RJ-45 connector with integrated Gigabit Ethernet magnetics
7
Two Small Form-factor Pluggable (SFP) ports (GE 0/7 and 0/8), for plug-in SFP modules
8
Console port
9
Compact Flash slot (CF1)
10
Ground lug
For more information about the supported modules for the SR2000/4134, see Nortel Secure Router 2330/4134 Installation — Hardware Components (NN47263-500).
Secure Router 4134 Voice Carrier medium module subslots The Voice Carrier medium module (VCMM) allows you to expand the number of available small slots on the SR4134. When installed in a medium slot, the module provides four additional subslots that can house up to four small FXS or FXO modules. Only FXS or FXO modules can be installed in the Voice Carrier module. The following figure shows the four-slot Voice Carrier medium module with slot covers installed and identifies the subslot numbers. To configure modules in the Voice Carrier medium module, you must specify the
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
18 CLI fundamentals
medium slot in which the Voice Carrier module is located, the subslot in which the FXS or FXO module is located, and typically the individual port on the module to configure, in the format slot/subslot/port. Figure 3 Voice carrier medium module subslot numbering
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
19
.
Boot CLI fundamentals The Boot command line interface (CLI) is a text-based interface that provides commands for configuring the router boot process. You can access the Boot CLI only through a direct connection to the console port and only during the boot process. To access the Boot CLI, during the boot process press any key until the boot prompt appears. This section contains information about the basic Boot CLI commands with the Secure Router 2330/4134. You can specify to boot the router from any of the following locations: TFTP, FTP, CF0, CF1, or USB. CF0 is the main internal Compact Flash memory where the system image and configuration files are stored. CF1 is the external Compact Flash slot.
Boot CLI command list The following table contains descriptions of the Boot CLI commands. Table 6 Boot CLI command list ?
print this list
@
boot (load and go)
p
print boot parameters
c
change boot parameters
g
go to address
d adrs[,n]
display memory
m
modify memory
f adrs, nbytes, value
fill memory
t adrs, adrs, nbytes
copy memory
e
print fatal exception
v
print boot logo with version
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
20 Boot CLI fundamentals
Table 6 Boot CLI command list (cont’d.) n netif
print network interface device address
available boot devices are: "tftp","ftp","cf0","cf1","usb" o
show bootrom header information
b
show file list in a USB device
B
format a USB device
L [0|1]
show file list in CF0 or CF1.
F [0|1]
format the CF0 or CF1
A
show simple PCI device scan result
T
dram test after cold reset
r
show current boot image (Golden/Normal)
R
select a boot image will be running at the next boot
s
show simple slot insertion status
w
print status of watchdog timer
V adrs, nbytes, value
clear NVRAM area with value
D
cold reset
X
reset to factory (NVRAM/CF)
Checksum enable: 0
disable checking image checksum
1
enable checking image checksum
Show header enable: 0
disable showing image header contents
1
enable showing image header contents
Save bootrom image: 0
autoupdate NORMAL boot area rom image by checking version autosync GOLDEN boot area rom image by checking baseline_version baseline_version : base version for updating GOLDEN boot
1
save boot image on the NORMAL flash area
2
save boot image on the GOLDEN flash area
3
No bootrom update
Boot image redundancy
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Boot CLI command list
21
Table 6 Boot CLI command list (cont’d.) NORMAL boot image
Default boot image saved on the NORMAL boot area
GOLDEN boot image
Backup boot image saved on the GOLDEN boot area GOLDEN image area should not be corrupted
From the CLI, you can view the configure boot parameters using the show boot command. You can also configure boot parameters using the boot_params command.
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
22 Boot CLI fundamentals
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
23
.
Basic CLI operations Perform the basic CLI operations to log on to the switch, configure the switch from a terminal, or configure the switch using saved configuration files from flash or the network.
Prerequisites •
Valid CLI username and password. (Default username is admin and default password is setup).
Navigation • • • • • • • • • • • • •
“Logging on” (page 24)
• • •
“Configuring the timeout for console sessions” (page 30)
“Configuring the router from a terminal” (page 24) “Configuring users” (page 25) “Modifying the administrator account user name” (page 25) “Modifying passwords for other users” (page 26) “Modifying your own password” (page 26) “Saving the current configuration to file” (page 27) “Encrypting password display” (page 28) “Adding a header to the configuration file” (page 28) “Adding comments at the beginning of a configuration” (page 28) “Adding comments to the end of a configuration ” (page 29) “Configuring the router using configuration files from flash” (page 29) “Configuring the router using configuration files from the network” (page 30)
“Displaying the console timeout” (page 31) “Displaying configured user accounts” (page 31) Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
24 Basic CLI operations
• • • • •
“Displaying connected users” (page 31) “Displaying user account for current session” (page 31) “Displaying running configuration” (page 32) “Displaying stored configuration” (page 32) “Displaying system configuration” (page 32)
Logging on Log on to the CLI to access the switch configuration commands. Procedure steps
Step
Action
1
After the SR2000/4134 powers on and the following login prompt appears: login enter the username (default is admin) The CLI prompts for the password: password:
2
Enter your user password (default is setup) --End--
For detailed information about configuring passwords and administering users, refer to Nortel Secure Router 2330/4134 — Commissioning (NN47263-500).
Configuring the router from a terminal Enter the configuration command mode from a console terminal or management workstation to manually configure the router system parameters. Procedure steps
Step
Action
1
To configure the router from a terminal, enter: configure terminal --End--
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Modifying the administrator account user name
25
Configuring users Configure additional usernames and passwords to provide access to the SR2000/4134 to others. To configure users, you must log in with level 1 user privileges using the administrator account. You can configure any new user to have a user privilege level from 2 to 4. The administrator account is the only account that has level 1 privileges. Procedure steps
Step
Action
1
To enter the configuration mode, enter: configure terminal
2
To create a user, enter: user []
The system prompts you to enter a password: Please enter new password:
3
Enter the password. The system prompts you to confirm the password: Please re-enter password:
4
Reenter the password. The system provides a system message confirming that the user has been added: password is set user is added
--End--
Modifying the administrator account user name Modify the administrator account user name. To modify the administrator user name, you must log in with level 1 user privileges using the administrator account (default user name is admin and password is setup). Procedure steps
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
26 Basic CLI operations
Step
Action
1
To enter the configuration mode, enter: configure terminal
2
To modify the administrator account name, enter: admin_name --End--
Modifying passwords for other users When you are logged in with level 1 privileges using the administrator user account, you can change the passwords of other users. Procedure steps
Step
Action
1
To change a user password, enter: password
The system prompts you for the user name: name:
2
Enter the user name. The system prompts you to enter the new password: new password:
3
Enter the new password. The system prompts you to reenter the new password: re-enter password:
4
Reenter the new password. The system confirms the password change: password has been changed
--End--
Modifying your own password When you are logged in using a non-administrator account, you can only change your own configured user password. Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Saving the current configuration to file 27 Procedure steps
Step
Action
1
To change the existing password for your account, enter: password
The system prompts you to enter the old password: old password:
2
Enter the old password. The system prompts you to enter the new password: new password:
3
Enter the new password. The system prompts you to reenter the new password: re-enter password:
4
Reenter the new password. The system confirms the password change: password has been changed
--End--
Saving the current configuration to file Save the current configuration to a .cfg file on the flash. Save your configuration to flash each time you make configuration changes to allow the system to boot from the latest configuration upon subsequent reboot. You can also save the configuration to a network location using TFTP, providing a backup of your configuration, or to copy the configuration to another router. Procedure steps
Step
Action
1
To save the current configuration file, enter: save {local | network } --End--
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
28 Basic CLI operations
Encrypting password display Encrypt the user passwords to ensure that no one can view them in plain text when they are displayed on screen, or viewed in the configuration file. Use the no form of the command to display passwords in plain text. Procedure steps
Step
Action
1
To enter the configuration mode, enter: configure terminal
2
To encrypt the passwords, enter: [no] secure_passwords --End--
Adding a header to the configuration file Add a header to add some descriptive information to the top of the configuration file. The maximum length of the header is 80 characters. Procedure steps
Step
Action
1
To enter the configuration mode, enter: configure terminal
2
To add a header to the configuration file, enter: header ""
3
To save the header information to the configuration file, enter: save local --End--
Adding comments at the beginning of a configuration Add comments at the beginning of a configuration. The comments appear after saving the configuration using the save local command. The maximum length of the comment string is 80 characters. Procedure steps
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Configuring the router using configuration files from flash
Step
Action
1
To enter the configuration mode, enter:
29
configure terminal
2
To add comments at the beginning of a configuration, enter: SYS_REM "" --End--
Adding comments to the end of a configuration Add comments to the end of a configuration. The comments appear after saving the configuration using the save local command. The maximum length of the comment string is 80 characters. Procedure steps
Step
Action
1
To enter the configuration mode, enter: configure terminal
2
To add comments to the end of a configuration, enter: SYS_REM_ "" --End--
Configuring the router using configuration files from flash Copy a saved .cfg file from flash to the router to reinstate a previously saved configuration. Procedure steps
Step
Action
1
To configure the router using configuration files saved in flash, enter: configure flash
The router responds with the following prompt: filename:
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
30 Basic CLI operations
2
Enter the full file name, for example SR4134.cfg. --End--
Configuring the router using configuration files from the network Copy a .cfg file from the network to the router to reinstate a previously saved configuration. Procedure steps
Step
Action
1
To configure the router using configuration files saved in a network location, enter: configure network
The router responds with the following prompt: host: 2
Enter the DNS host name or IP address The router responds with the following prompt: filename:
3
Enter the full file name, for example SR4134.cfg. --End--
Configuring the timeout for console sessions Configure a timeout in seconds for console sessions. The default value is 900 seconds. Procedure steps
Step
Action
1
To enter the configuration mode, enter: configure terminal
2
To configure the timeout for a console session, enter: console_timeout --End--
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Displaying user account for current session
Displaying the console timeout Display the configured console timeout value. Procedure steps
Step
Action
1
To display the timeout value for console sessions, enter: show console_timeout --End--
Displaying configured user accounts Display configured users and their associated account levels. Procedure steps
Step
Action
1
To display all configured users and their associated account levels, enter: show user_accounts --End--
Displaying connected users Display users who are actively connected to the router. Procedure steps
Step
Action
1
To display all users who are actively connected to the router, enter: show users --End--
Displaying user account for current session Display the account used to log on to the router for the current session. Procedure steps
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
31
32 Basic CLI operations
Step
Action
1
To display the user account used for the current session, enter: show whoami --End--
Displaying running configuration Display the current running configuration. Procedure steps
Step
Action
1
To display the running configuration , enter: show configuration running --End--
Displaying stored configuration Display the configuration that is stored in Flash. Procedure steps
Step
Action
1
To display the stored configuration , enter: show configuration stored --End--
Displaying system configuration Display the system configuration. With release 10.2, the output of the show system configuration is modified so that the slot allocation is shown in consecutive order. Procedure steps
Step
Action
1
To display the system configuration , enter: Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Displaying system configuration show system configuration --End--
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
33
34 Basic CLI operations
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
35
.
File management Use the file management commands to manage files on the compact flash and USB, including copy, delete, download, and upload.
Navigation • •
“Copying files to and from compact flash or USB” (page 35)
• • • • • • • •
“Uploading a file from compact flash or USB to the network” (page 37)
“Downloading files from the network to compact flash or USB ” (page 36)
“Formatting a compact flash or USB device” (page 37) “Renaming a file on compact flash or USB” (page 38) “Removing a file from compact flash or USB” (page 38) “Uploading the event log to the network” (page 38) “Displaying the file list from compact flash or USB” (page 38) “Displaying image file versions from compact flash or USB” (page 39) “Displaying Boot ROM file information” (page 39)
Copying files to and from compact flash or USB Copy a file in compact flash memory or USB memory and assign the copy a new name. Procedure steps
Step
Action
1
To copy a file to or from compact flash or USB, enter:
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
36 File management file copy {/cf0/ | /cf1/ | /usb0/} {/cf0/ | /cf1/ | /usb0/} --End--
Table 7 Variable definitions Variable
Value
{/cf0/ | /cf1/ | /usb0/}
Specifies the source filename to be copied.
{/cf0/ | /cf1/ | /usb0/}
Specifies the destination filename.
Downloading files from the network to compact flash or USB Download a file from a remote host to compact flash or USB memory. You can transfer the file using either TFTP or FTP. If you use this command with an FTP server, you must specify the FTP user ID and password for authentication. Procedure steps
Step
Action
1
To download a file to compact flash or USB, enter: file download {/cf0/ | /cf1/ | /usb0/} --End--
Table 8 Variable definitions Variable
Value
Specifies the source host (server) IP or IPv6 address.
Specifies the path name of the source file.
{/cf0/ | /cf1/ | /usb0/}
Specifies the location and name of the file destination.
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Formatting a compact flash or USB device
37
Uploading a file from compact flash or USB to the network Upload a file from compact flash or USB memory to a remote host. You can transfer the file using either TFTP or FTP. If you use this command with an FTP server, you must specify the FTP user ID and password for authentication. Step
Action
1
To upload a file from compact flash or USB, enter: file upload {/cf0/ | /cf1/ | /usb0/} [] [] [] --End--
Table 9 Variable definitions Variable
Value
Specifies the destination host (server) IP or IPv6 address.
Specifies the destination path name for the file.
{/cf0/ | /cf1/ | /usb0/}
Specifies the source filename to be uploaded.
[]
Specifies the outgoing interface.
[]
Specifies the FTP user ID.
[]
Specifies the FTP password.
Formatting a compact flash or USB device Format the compact flash or USB memory. Procedure steps
Step
Action
1
To format the compact flash or USB, enter: file format [/cf0 | /cf1 | /usb0] --End--
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
38 File management
Renaming a file on compact flash or USB Rename a file on compact flash or USB Procedure steps
Step
Action
1
To rename a file on compact flash or USB, enter: file rename {/cf0/ | /cf1/ | /usb0/} --End--
Removing a file from compact flash or USB Remove a file from compact flash or USB Procedure steps
Step
Action
1
To remove a file from compact flash or USB, enter: file rm {/cf0/ | /cf1/ | /usb0/} --End--
Uploading the event log to the network Upload the event log to a network location. Step
Action
1
To upload the event log to a network location, enter: file upload_event_log --End--
Displaying the file list from compact flash or USB Display all files that are saved on the compact flash (CF0 or CF1) or USB. By default, CF0 files are shown. Procedure steps
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Displaying Boot ROM file information
Step
Action
1
To display the file list, enter: [show] file ls [/cf0 | /cf1 | /usb0] --End--
Displaying image file versions from compact flash or USB Display the image file versions that are saved on compact flash (CF0 or CF1) or USB. By default, CF0 files are shown. Procedure steps
Step
Action
1
To display the image file versions, enter: [show] file version [/cf0 | /cf1 | /usb0] --End--
Displaying Boot ROM file information the Display information about the Golden and Normal boot files. Procedure steps
Step
Action
1
To display the Boot ROM information, enter: file show_boot --End--
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
39
40 File management
Nortel Secure Router 2330/4134 Using the Command Line Interface NN47263-506 03.01 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved.
Nortel Secure Router 2330/4134
Using the Command Line Interface Release: 10.2 Publication: NN47263-506 Document revision: 03.01 Document release date: 7 September 2009 Copyright © 2007-2009 Nortel Networks. All Rights Reserved. While the information in this document is believed to be accurate and reliable, except as otherwise expressly agreed to in writing NORTEL PROVIDES THIS DOCUMENT "AS IS" WITHOUT WARRANTY OR CONDITION OF ANY KIND, EITHER EXPRESS OR IMPLIED. The information and/or products described in this document are subject to change without notice.
Nortel, Nortel Networks, the Nortel logo, and the Globemark are trademarks of Nortel Networks. THE SOFTWARE DESCRIBED IN THIS DOCUMENT IS FURNISHED UNDER A LICENSE AGREEMENT AND MAY BE USED ONLY IN ACCORDANCE WITH THE TERMS OF THAT LICENSE. All other trademarks are the property of their respective owners. To provide feedback or to report a problem in this document, go to www.nortel.com/documentfeedback. www.nortel.com