Avaya Secure Router 3120 Command Reference Manual
  1. Manuals
  2. Brands
  3. Avaya Manuals
  4. Network Router
  5. Secure Router 3120
  6. Command reference manual
Avaya Secure Router 3120 Command Reference Manual

Avaya Secure Router 3120 Command Reference Manual

Modular system that converges routing, security and multimedia traffic
Hide thumbs Also See for Secure Router 3120:
1
2
Table Of Contents
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
Table of Contents

Advertisement

Quick Links

Download this manual See also: Installation Manual
Avaya Secure Router 3120 Command
Reference Guide
9.4
NN47260-500, 02.01
December 2010

Advertisement

Table of Contents
loading

Related Manuals for Avaya Secure Router 3120

Summary of Contents for Avaya Secure Router 3120

  • Page 1 Avaya Secure Router 3120 Command Reference Guide NN47260-500, 02.01 December 2010...
  • Page 2 Product provided by Avaya including the selection, arrangement and While reasonable efforts have been made to ensure that the design of the content is owned either by Avaya or its licensors and is information in this document is complete and accurate at the time of protected by copyright and other intellectual property laws including the printing, Avaya assumes no liability for any errors.

  • Page 3: Table Of Contents

    Contents Chapter 1: ABOUT THIS GUIDE.....................31 Organization..............................31 Notices................................32 Documentation..............................32 Secure Router Guides.............................32 Chapter 2: Avaya Secure Router 3120 Basics..............35 Default Login Parameters..........................35 Enable Telnet Server............................35 Enable Web User Interface..........................35 Chapter 3: COMMAND LINE INTERFACE................37 Command Types.............................37 Context-Sensitive Commands.........................37 Command Conventions...........................38 Abbreviated Commands..........................39...
  • Page 4 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 5 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 6 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 7 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 8 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 9 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 10 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 11 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 12 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 13 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 14 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 15 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 16 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 17 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 18 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 19 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 20 Syntax for TCP..............................703 Syntax for UDP.............................703 Syntax for ICMP............................703 Syntax for IP..............................703 Chapter 11: GENERIC ROUTING ENCAPSULATION COMMANDS........705 interface tunnel..............................705 interface tunnel ip............................705 interface tunnel ip unnumbered........................706 interface tunnel tunnel destination........................706 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 21 Chapter 13: ISDN........................733 switch-type..............................733 bundle................................734 link bri................................735 isdn................................735 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 22 Multicast Commands.............................764 ip multicast..............................764 configure ip multicast multipath........................764 configure ip multicast static interface group....................765 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 23 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 24 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 25 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 26 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 27 Chapter 21: TELNET......................915 telnet................................915 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 28 Chapter 23: TRACE.......................939 trace................................939 Chapter 24: FIREWALL COMMANDS...................941 firewall................................941 firewall dos-protect............................942 firewall dos-protect dns-replay-attack......................942 dos-protect source-routing..........................943 dos-protect syn-flooding..........................943 dos-protect win-nuke.............................943 dos-protect icmp-error...........................944 dos-protect ftp-bounce..........................944 dos-protect mime-flood..........................945 dos-protect ip-unaligned-timestamp......................945 dos-protect tcp-seq-number-predict......................946 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 29 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 30 Chapter 26: ALARMS AND STATISTICS................995 Alarms................................995 Statistics................................997 T1 Module Commands..........................1002 T1 Bit Error Rate Test Commands......................1002 Loopback Test.............................1002 BERT Test..............................1003 View Bert Test.............................1003 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 31: Chapter 1: About This Guide

    The Avaya Secure Router 3120 Command Reference Guide describes the Avaya Secure Router 3120 command line interface (CLI), providing both instructions and typical command syntax and examples. It complements the Secure Router 3120 Configuration Guide, which is used to configure and maintain your Secure Router.

  • Page 32: Notices

    Adobe Acrobat Reader installed on your system, you can obtain it free from the Adobe website: www.adobe.com.. Secure Router Guides SR3120 documentation includes the following: • SR3120 Quick Start Guide Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 33 • SR3120 Command Reference Guide This user guide explains how to configure Secure Routers using the CLI. • SR3120 Web UI User Guide This user guide explains how to configure Secure Routers using the WebUI. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 34 ABOUT THIS GUIDE Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 35: Chapter 2: Avaya Secure Router 3120 Basics

    Chapter 2: Avaya Secure Router 3120 Basics Default Login Parameters By default, the Avaya Secure Router 3120 ships with the following login parameters for all management methods: Username: admin Password: setup Note: Login information is case sensitive. Enable Telnet Server After upgrading the Secure Router 3120, telnet server is disabled by default.
  • Page 36 Avaya Secure Router 3120 Basics Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 37: Chapter 3: Command Line Interface

    Table 3: Context-Sensitive Command Sequence Context-Sensitive Command String Example Go into the configuration mode. SR>configure term Specify the type of interface (T1). SR/configure>module t1 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 38: Command Conventions

    In this example, the user enters the first word or argument "connections," appearing in normal type, and then only enters the value "4" of the second word or argument. Syntax: connections connections < n > Command execution: connections 4 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 39: Abbreviated Commands

    Abbreviated Commands You may enter commands by typing the first few characters of each word in a command string. The Avaya Secure Router 3120 recognizes the unique abbreviated entry and executes the command exactly as if you had entered it fully.

  • Page 40: Cli Navigation

    Command Help Command help is available for navigating the CLI command hierarchy and for assistance with specific commands. You may obtain help by using one of the three commands described below. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 41: Help

    (SR> or equivalent) prompt, the entire list of system commands appears. If you type tree within a command mode, such as SR/clear> tree, the commands associated with this command mode are shown. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 42 |-- static |-- dynamic |-- all |-- counters |-- bundle |-- address |-- port |-- static |-- dynamic |-- all |-- counters |-- all |-- dhcps |-- statistics |-- bindings |-- rtp Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 43 |-- dir |-- configure |-- secure_passwords |-- terminal |-- monitor |-- header |-- qos |-- REM |-- historical_stats |-- sample_interval |-- upload |-- ftp_parameters |-- REM_ |-- module |-- t3 |-- framing Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 44 |-- primary_server |-- secondary_server |-- src_address |-- auth_port |-- shared_key |-- time_out |-- retries |-- interface |-- ethernet |-- REM |-- description |-- encapsulation |-- speed |-- ip |-- address |-- access-group Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 45 |-- aaa |-- authentication |-- authorization |-- track |-- hold_down |-- interface |-- mhu |-- access_srvr_addr |-- dhcp_srvr_addr |-- auth_srvr_addr |-- dns_srvr_addr |-- ethernet |-- enable |-- redirect |-- cleanup_timer |-- delete_entry Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 46 |-- keepalive |-- fast_recovery |-- pvc |-- desc |-- shaping |-- policing |-- switch |-- ip |-- address |-- directed_broadcast |-- access-group |-- unreachables |-- redirects |-- map |-- red |-- tx_min_thresh Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 47 |-- sent-username |-- peer-name |-- authentication |-- peer-addr |-- src-addr |-- drop |-- red |-- tx_min_thresh |-- tx_max_thresh |-- wq_bias_factor |-- shutdown |-- qos |-- add_class |-- class |-- committed_rate |-- committed_rate_percent Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 48 |-- dns_srvr_port |-- send_client_info |-- send_router_info |-- nat |-- reverse |-- enable |-- ip |-- trans_addr |-- max_ports |-- max_entries |-- timeout |-- unregistered |-- pass_thru |-- pass-thru-multicast |-- trans_mode |-- address Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 49 |-- vlan |-- vlanid |-- vldid |-- vlan_ether_type |-- vld_ether_type |-- router_ip_addr |-- enable |-- mfr_e2e_enhanced |-- avc |-- cvc |-- diff_delay |-- sequence |-- null |-- ip |-- unreachables |-- console Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 50 |-- change |-- convert |-- encrypt |-- digest |-- telnet_banner |-- banner |-- banner1 |-- banner2 |-- telnet_timeout |-- admin_name |-- event |-- online |-- offline |-- boot |-- system |-- hdlc_error Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 51 |-- macentry |-- REM_ |-- layer3 |-- translation |-- enable |-- gateway |-- sntp |-- reverse_telnet |-- telnet_port |-- set_baud_rate |-- set_parity |-- set_data_bits |-- set_stop_bits |-- set_flow_control |-- telnet_timeout |-- enable Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 52 |-- probe-period |-- register-suppress-timeout |-- rp-switch-immediate |-- dr-switch-immediate |-- threshold-dr |-- threshold-rp |-- whole-packet-checksum |-- rp |-- interface |-- mode |-- hello-interval |-- hello-holdtime |-- hello-priority |-- join-prune-holdtime |-- join-prune-interval |-- boundary Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 53 |-- always_compare_med |-- distance |-- default_metric |-- redistribute |-- ospf |-- rip |-- static |-- connected |-- group |-- distribute_list |-- filter_list |-- remove_private_AS |-- next_hop_self |-- password |-- route_map |-- neighbor Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 54 |-- redistribute |-- bgp |-- connected |-- rip |-- static |-- timers |-- 1583Compatibility |-- rip |-- default_metric |-- redistribute |-- bgp |-- ospf |-- static |-- connected |-- mode |-- passive Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 55 |-- address |-- schedule |-- stealth-mode |-- dos-protect |-- syn-flooding |-- source-routing |-- win-nuke |-- ftp-bounce |-- icmp-error |-- dns-replay-attack |-- ip-unaligned-timestamp |-- tcp-seq-number-predict |-- tcp-seq-number-range |-- mime-flood |-- enable-all |-- timeout Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 56 |-- policy |-- packet |-- all |-- hello |-- dd |-- ls_request |-- ls_update |-- ls_ack |-- bgp |-- all |-- events |-- state |-- routes |-- packet |-- all |-- open Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 57 |-- show-mfc-stats |-- show-vifs |-- clear-mfc-stats |-- igmp |-- all |-- normal |-- state |-- packet |-- all |-- query |-- report |-- leave |-- candy |-- statshow |-- errshow |-- errclear Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 58 |-- filters |-- config |-- dhcp |-- redirect |-- snmp |-- cleanup |-- all |-- hash |-- disp_redirect_entries |-- dhcp_relay |-- enable_debug |-- display_dhcp_table |-- display_hash_statistics |-- qos |-- show-buf-mgmt-info |-- show-class Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 59 |-- vifs |-- route-limit |-- tcp |-- incomplete |-- access-lists |-- access-lists-rules |-- access-lists-stats |-- helper |-- nat |-- all |-- configuration |-- statistics |-- translations |-- address_pool |-- rtp |-- statistics Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 60 |-- rp |-- rp-set |-- statistics |-- timers |-- bsr-info |-- crp-info |-- dhcps |-- config |-- interfaces |-- statistics |-- bindings |-- address_pools |-- ssh |-- session |-- sessions |-- config Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 61 |-- user_accounts |-- users |-- whoami |-- boot_params |-- system |-- memory |-- flash |-- configuration |-- diagnostics |-- logging |-- console |-- syslog |-- commandLog |-- telnet |-- arp_timeout |-- temperature Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 62 |-- bundle |-- console |-- status |-- tacacs |-- radius |-- power |-- sntp |-- mhu |-- dhcp_relay |-- firewall |-- dos-protect |-- url-key-filter |-- ip-reassembly |-- logging |-- timeout |-- object Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 63 |-- file |-- rm |-- ls |-- version |-- format |-- copy |-- rename |-- download |-- copy_boot |-- compare_boot |-- invalidate_boot |-- show_boot |-- upload |-- event_log |-- flash_file |-- password Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 64 |-- flash_file |-- memory |-- terminal |-- mtrace |-- tclsh SR> The following sample tree output is from a Secure Router Secure Router 3120 with E1 and Serial modules installed: SR/configure> tree configure |-- secure_passwords |-- terminal |-- monitor |-- header...
  • Page 65 |-- access-group |-- directed_broadcast |-- multicast |-- mode |-- helper_address |-- proxy_arp |-- unreachables |-- redirects |-- mtu |-- qos |-- add_class |-- class |-- police |-- add_src_ip |-- add_dst_ip |-- add_port Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 66 |-- delete_entry |-- delete_all |-- set_timeout |-- community |-- auth_srvr_port |-- dns_srvr_port |-- send_client_info |-- send_router_info |-- nat |-- reverse |-- enable |-- ip |-- trans_addr |-- max_ports |-- max_entries |-- timeout Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 67 |-- tx_min_thresh |-- tx_max_thresh |-- wq_bias_factor |-- bridge |-- enable |-- vlan |-- vlanid |-- vldid |-- vlan_ether_type |-- vld_ether_type |-- router_ip_addr |-- nat |-- reverse |-- enable |-- ip |-- trans_addr Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 68 |-- committed_rate_percent |-- burst_rate |-- burst_rate_percent |-- police |-- priority |-- queue_buffers |-- add_src_ip |-- add_dst_ip |-- add_port |-- add_vlan_id |-- add_dscp |-- add_dot1p |-- delete_ip_address |-- delete_port |-- delete_vlan_id |-- delete_dscp Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 69 |-- address |-- port |-- debug |-- rtp |-- timeout |-- connections |-- REM_ |-- peer_addr |-- src_addr |-- track |-- hold_down |-- interface |-- adaptive_rate |-- loopback |-- ip |-- address Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 70 |-- console |-- aaa |-- authentication |-- authorization |-- snmp-server |-- REM |-- community |-- contact |-- location |-- chassis-id |-- enable |-- traps |-- config |-- environment |-- snmp |-- system Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 71 |-- alarm_relay |-- hdlc_error |-- hdlc_link_deactivate |-- mac_range |-- logging |-- console |-- syslog |-- host_ipaddr |-- enable |-- facility |-- auth |-- bootp |-- daemon |-- domainname |-- gated |-- kern Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 72 |-- set_stop_bits |-- set_flow_control |-- telnet_timeout |-- enable |-- ip |-- domain_name |-- host_add |-- pname_server |-- name_server |-- load_balance |-- multicast |-- multipath |-- static |-- interface |-- group |-- route Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 73 |-- hello-priority |-- join-prune-holdtime |-- join-prune-interval |-- boundary |-- cbsr |-- interface |-- period |-- holdtime |-- priority |-- crp |-- group-add |-- interface |-- period |-- holdtime |-- priority |-- ssm-range Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 74 |-- next_hop_self |-- password |-- route_map |-- neighbor |-- neighbor_group |-- ebgp_multihop |-- advertisement_interval |-- keep |-- description |-- password |-- distribute_list |-- filter_list |-- maximum_prefix |-- allowbadid |-- ignore_first_as |-- logupdown Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 75 |-- static |-- connected |-- mode |-- passive |-- distance |-- pacing |-- interface |-- mode |-- passive |-- split_horizon |-- authentication |-- metric |-- neighbor |-- distribute_list |-- timers |-- update Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 76 |-- tcp-seq-number-range |-- mime-flood |-- enable-all |-- timeout |-- general |-- service |-- url-key-filter |-- max-connection-limit |-- ip-reassembly |-- enable |-- packet-size |-- fragment-size |-- fragment-count |-- timeout |-- logging |-- vpn Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 77 |-- error |-- state |-- events |-- packet |-- ssh |-- statistics |-- ipshow |-- icmpshow |-- rtshow |-- tcpshow |-- udpshow |-- ipmuxshow |-- ipmuxclear |-- multicast |-- show-kmfc |-- show-mrt Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 78 |-- hash |-- bundle |-- debug |-- packet |-- hash |-- global |-- debug |-- packet |-- hash |-- rtp |-- tables |-- txtable |-- rxtable |-- statistics |-- mhu |-- static_host Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 79 |-- avc |-- bundle |-- tunnels |-- tunnel |-- version |-- date |-- mac |-- ip |-- dns |-- hosts |-- routes |-- rpf |-- mroute |-- mfc |-- interfaces |-- multicast Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 80 |-- groups |-- paths |-- summary |-- aggregate_address |-- rip |-- global |-- interface |-- all |-- ethernet |-- bundle |-- statistics |-- statistics |-- pim |-- global |-- interface |-- neighbors Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 81 |-- t1 |-- userstats |-- t3 |-- t1 |-- test |-- t3 |-- t1 |-- thresholds |-- t3 |-- t1 |-- chassis |-- fan-status |-- power-status |-- ftp |-- event_logs |-- cfg_log Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 82 |-- table |-- statistics |-- tagtable |-- policy |-- community_list |-- as_path |-- route_map |-- ip_access_list |-- aaa |-- authentication |-- login |-- protocols |-- authorization |-- commands |-- interface |-- ethernet Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 83 |-- loopback |-- line_t3 |-- payload_t3 |-- local_t3 |-- internal_t3 |-- remote |-- line_t3 |-- bert |-- t1 |-- loopback |-- line |-- payload |-- remote |-- line |-- payload |-- bert Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 84 |-- flash_file |-- memory |-- terminal |-- mtrace |-- tclsh SR> The following sample tree output is from a Secure Router Secure Router 3120 with E1 and Serial modules installed: SR/configure> tree configure |-- secure_passwords |-- terminal |-- monitor |-- header...
  • Page 85 |-- radius |-- primary_server |-- secondary_server |-- src_address |-- auth_port |-- shared_key |-- time_out |-- retries |-- interface |-- ethernet |-- REM |-- description |-- encapsulation |-- speed |-- ip |-- address Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 86 |-- gateway_address |-- aaa |-- authentication |-- authorization |-- track |-- hold_down |-- interface |-- mhu |-- access_srvr_addr |-- dhcp_srvr_addr |-- auth_srvr_addr |-- dns_srvr_addr |-- ethernet |-- enable |-- redirect |-- cleanup_timer Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 87 |-- dte |-- keepalive |-- fast_recovery |-- pvc |-- desc |-- shaping |-- policing |-- switch |-- ip |-- address |-- directed_broadcast |-- access-group |-- unreachables |-- redirects |-- map |-- red Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 88 |-- chap |-- sent-username |-- peer-name |-- authentication |-- peer-addr |-- src-addr |-- drop |-- red |-- tx_min_thresh |-- tx_max_thresh |-- wq_bias_factor |-- shutdown |-- qos |-- add_class |-- class |-- committed_rate Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 89 |-- auth_srvr_port |-- dns_srvr_port |-- send_client_info |-- send_router_info |-- nat |-- reverse |-- enable |-- ip |-- trans_addr |-- max_ports |-- max_entries |-- timeout |-- unregistered |-- pass_thru |-- pass-thru-multicast |-- trans_mode Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 90 |-- bridge |-- vlan |-- vlanid |-- vldid |-- vlan_ether_type |-- vld_ether_type |-- router_ip_addr |-- enable |-- mfr_e2e_enhanced |-- avc |-- cvc |-- diff_delay |-- sequence |-- null |-- ip |-- unreachables Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 91 |-- generate |-- change |-- convert |-- encrypt |-- digest |-- telnet_banner |-- banner |-- banner1 |-- banner2 |-- telnet_timeout |-- admin_name |-- event |-- online |-- offline |-- boot |-- system Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 92 |-- macbridge |-- enable |-- age |-- add |-- macentry |-- REM_ |-- layer3 |-- translation |-- enable |-- gateway |-- sntp |-- reverse_telnet |-- telnet_port |-- set_baud_rate |-- set_parity |-- set_data_bits Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 93 |-- join-prune-interval |-- mrt-period |-- mrt-stale-mult |-- mrt-spt-mult |-- probe-period |-- register-suppress-timeout |-- rp-switch-immediate |-- dr-switch-immediate |-- threshold-dr |-- threshold-rp |-- whole-packet-checksum |-- rp |-- interface |-- mode |-- hello-interval |-- hello-holdtime Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 94 |-- router |-- routerid |-- bgp |-- aggregate_address |-- always_compare_med |-- distance |-- default_metric |-- redistribute |-- ospf |-- rip |-- static |-- connected |-- group |-- distribute_list |-- filter_list |-- remove_private_AS Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 95 |-- priority |-- retransmit_interval |-- transmit_delay |-- poll_interval |-- redistribute |-- bgp |-- connected |-- rip |-- static |-- timers |-- 1583Compatibility |-- rip |-- default_metric |-- redistribute |-- bgp |-- ospf Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 96 |-- http-filter |-- smtp-filter |-- rpc-filter |-- service |-- address |-- schedule |-- stealth-mode |-- dos-protect |-- syn-flooding |-- source-routing |-- win-nuke |-- ftp-bounce |-- icmp-error |-- dns-replay-attack |-- ip-unaligned-timestamp |-- tcp-seq-number-predict Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 97 |-- timeout |-- logging |-- vpn |-- attacks |-- policy |-- policy |-- max-connection-limit |-- connection-rate |-- apply-object |-- policing |-- bandwidth |-- enable |-- tftp_server |-- gui |-- enable |-- motd_banner Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 98 COMMAND LINE INTERFACE Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 99: Chapter 4: Clear

    Chapter 4: CLEAR Use the clear commands to clear counters, files, logs, statistics, tables, and other data stored by Avaya Secure Routers 3120. The clear command clears data for both logical and physical interfaces as well as system features such as IP multiplexing, packet filtering, NAT, QoS, SNMP, and VLAN forwarding.

  • Page 100: Clear Cfg_Log

    The configuration log stores a history of system configuration events; it also records the use of either the save local or save network commands. syntax: cfg_log example: SR/clear> cfg_log related commands: configure network show configuration running show configuration stored save local applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 101: Clear Command_Log

    Resets the counters for the specified Ethernet interface. ethernets Resets the counters for all Ethernet interfaces. tunnel Resets the counters for the specified tunnel interface. tunnels Resets the counters for all of the tunnel interfaces. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 102: Clear Counters Avc

    < name > dlci < n > example: SR/clear> counters avc frame01 100 related commands: clear counters avcs clear counters bundle clear counters bundles clear counters Ethernet clear counters tunnel clear counters tunnels applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 103: Clear Counters Avcs

    This command clears transmission counters on a specific bundle. parameter definition bundle_name Bundle on which transmission counters will be cleared. syntax: counters bundle bundle_name < name > example: SR/clear> counters bundle Superior Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 104: Clear Counters Bundles

    SR/clear> counters bundles related commands: clear counters avc clear counters bundle clear counters Ethernet show interface bundles clear counters tunnel clear counters tunnels applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 105: Clear Counters Ethernet

    All modules clear counters Ethernets This command clears the transmission counters on all Ethernet ports. syntax: counters ethernets example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 106: Clear Counters Tunnel

    The name of the tunnel (up to eight characters). syntax: counters tunnel < tunnel_name > example: SR/clear> counters tunnel main related commands: clear counters avcs clear counters bundle clear counters bundles clear counters Ethernet applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 107: Clear Counters Tunnels

    All modules clear crypto This command accesses next-level commands for clearing security-related parameters. syntax: crypto example: SR/clear> crypto next-level commands clear crypto ike clear crypto ipsec clear crypto statistics applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 108: Clear Crypto Ike

    1: To clear all of the SA entries in the IKE table: SR/clear/> crypto ike sa all example 2: To clear all of the SA entries for a specified policy: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 109: Clear Crypto Ipsec

    Name of the policy from which the SA entries will be deleted syntax: sa policy-name < all | policy name> example 1: To clear all of the SA entries in the IPSec table: SR/clear> crypto ipsec sa all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 110: Clear Crypto Statistics

    Clears the firewall statistics. syntax:Synopsis clear firewall statistics example: To clear the firewall statistics: SR> clear firewall statistics clear fr This command accesses next-level commands for clearing the frame relay inverse ARP table. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 111: Clear Fr Invarp

    SR/clear> fr invarp TNET dlci 128 The example above clears inverse ARP data from PVC 128 on the TNET bundle. related commands: clear fr lmistats clear fr vcstats show fr invarp show fr invarp_int applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 112: Clear Fr Lmistats

    Configured bundle name dlci DLCI number; the range is 16 - 1022. stat_type Type of statistics RXMON INJECT 1490 all (default) syntax: vcstats < bundle_name > < dlci > [ stat_type ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 113: Clear Interface

    Ethernet applies to: All modules clear interface all This command accesses next-level commands for clearing counters on all bundles and all Ethernet ports. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 114: Clear Interface Avc

    The range is 16 - 1022. syntax: interface avc avc_name < name > dlci < n > example: host/clear> interface avc frame01 100 related commands: clear interface avcs clear interface bundle clear interface bundles Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 115: Clear Interface Avcs

    This command clears transmission counters on a specific bundle. parameter definition bundle_name Bundle on which transmission counters will be cleared. syntax: interface bundle bundle_name < name > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 116: Clear Interface Bundles

    This command clears the transmission counter on all interface bundles. syntax: interface bundles example: host/clear> interface bundles related commands: clear interface avc clear interface bundle clear interface ethernet show interface bundles applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 117: Clear Interface Ethernet

    All modules clear interface ethernets This command clears the transmission counters on all Ethernet ports. parameter definition ifnum Ethernet port on which transmission counters will be cleared (0 or 1). example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 118: Clear Interface Tunnel

    The name of the tunnel. syntax: tunnel tunnel_name example: host/clear> interface tunnel main related commands: clear interface tunnels applies to: All modules clear interface tunnels Resets the all of the tunnel interfaces counters to zero. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 119: Clear Ip

    All modules clear ip access-list This command accesses next level commands for clearing packet filter data. syntax: ip access-list Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 120: Clear Ip Access-List Counters

    < name | all > example: SR/clear/ip/access-list> counters Filter02 related commands: clear ip access-list statistics show ip access-list show ip access-list show ip access-list rules show ip access-list statistics applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 121: Clear Ip Access-List Statistics

    All modules clear ip dhcps binding This command accesses next-level commands for clearing DHCP server binding data from the system. syntax: ip dhcps binding Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 122: Clear Ip Dhcps Statistics

    All modules clear ip nat This command accesses next-level commands for clearing network address translation data from the system. syntax: ip nat example: SR/clear/ip> nat Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 123: Clear Ip Nat All

    All modules clear ip nat global This command accesses next-level commands to clear global NAT configuration. syntax: global example: SR/clear/ip/nat> global next-level commands clear ip nat global address Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 124: Clear Ip Nat Global Address

    SR/clear/ip/nat/global> address 10.10.10.5 applies to: All modules clear ip nat global all This command deletes all global NAT entries. syntax: example: SR/clear/ip/nat/global> all applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 125: Clear Ip Nat Global Counters

    All modules clear ip nat global port This command deletes static/dynamic port entries from the network address translation (NAT) table. parameter definition protocol_type Deletes TCP protocol for the specified port. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 126: Clear Ip Nat Global Static

    SR/clear/ip/nat/global> static applies to: All modules clear ip nat interface This command accesses next-level commands for clearing NAT data from Ethernet ports and bundles. syntax: interface example: SR/clear/ip/nat> interface Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 127: Clear Ip Nat Interface Bundle

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 128: Clear Ip Nat Interface Bundle Address

    All modules clear ip nat interface bundle all This command clears all NAT data from a bundle translation table. syntax: example: SR/clear/ip/nat/interface/bundle Austin> all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 129: Clear Ip Nat Interface Bundle Counters

    All modules clear ip nat interface bundle dynamic This command clears all dynamic IP addresses and port entries from a bundle translation table. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 130: Clear Ip Nat Interface Bundle Port

    Number of the port to be cleared from the NAT table. The range is 1 - 65535. syntax: port < tcp | udp > ip_address < IP address > port_number < n > example: SR/clear/ip/nat/interface/bundle Austin> port tcp 10.4.72.2 305 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 131: Clear Ip Nat Interface Bundle Static

    All modules clear ip nat interface ethernet This command accesses next-level commands for selecting an Ethernet port for NAT data removal. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 132: Clear Ip Nat Interface Ethernet Address

    IP address to be cleared from the NAT table. syntax: address ip_address < IP address > example: SR/clear/ip/nat/interface/ethernet 0> address 10.1.100.4 related commands: clear ip nat interface ethernet all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 133: Clear Ip Nat Interface Ethernet All

    All modules clear ip nat interface ethernet counters This command clears all NAT event counters on an Ethernet port. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 134: Clear Ip Nat Interface Ethernet Dynamic

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 135: Clear Ip Nat Interface Ethernet Port

    All modules clear ip nat interface ethernet static This command clears all static IP address and port entries from an Ethernet port translation table. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 136: Clear Ip Packet_Filter

    All modules clear ip packet_filter counters This command clears counters for specific or all filtering rule sets. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 137: Clear Ip Packet_Filter Statistics

    Bundle and PVC for which statistics will be cleared (frame relay). Clears all filtering statistics. syntax: ip packet_filter statistics < 0 | 1 | bundle | bundle : pvc | all > example 1: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 138: Clear Ipmux

    This command accesses next-level commands for clearing IP mux routing data. syntax: ipmux example: host/clear> ipmux related commands: clear ipmux routes applies to: All modules clear ipmux routes This command clears all static ipmux routes from the system. syntax: routes example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 139: Clear Ip Routes

    All modules clear ip rtp This command accesses next-level commands to clear RTP counters and tables. syntax: clear ip rtp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 140: Clear Ip Rtp Rxtable

    All modules clear ip rtp statistics This command clears the RTP statistics for the specified bundle. syntax: statistics interface < bundle name > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 141: Clear Ip Rtp Tables

    All modules clear ip rtp txtable This command clears the RTP transmit table for the specified bundle. syntax: txtable interface < bundle name > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 142: Clear Ip Ssh

    Depending on the system, one or more of the following interfaces types may be cleared: T1, E1, Clear Channel T3, Clear Channel T3, or a serial module that supports v.35 or x.21. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 143: Clear Module E1_Userstats

    The example above clears statistics from E1 link 1 for the module in slot 2. To see statistics before or after clearing them, use the show module userstats e1 command. related commands: show module userstats e1 applies to: E1 module, serial modules that support v.35 or x.21 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 144: Clear Module T1_Userstats

    T1 module, serial module that support v.35 or x.21 module Clear Channel T3 clear module ct3_userstats This command clears statistics in one or more CT3 links. parameter definition t3_identifier CT3 slot/port syntax: ct3_userstats t3_identifier Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 145: Clear Qos

    This command clears SNMP statistics. syntax: snmp_stats example: SR/clear> snmp_stats The example above clears all system SNMP statistics. To view the current SNMP statistics before clearing them, use the show snmp commands. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 146: Clear Telnet_Session

    Clears all entries in the VLAN management table. statistics Clears VLAN forwarding statistics. Choose a particular VLAN ID (number) or a range of VLAN IDs The range is 1 - 4095; the default is all. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 147: Clear Vlanfwd Macbridge

    This command accesses next-level commands to clear VLAN bridging counters and MAC entries. syntax: macbridge example: SR> clear vlanfwd macbridge next-level commands clear vlanfwd macbridge all clear vlanfwd macbridge dynamic clear vlanfwd macbridge static clear vlanfwd macbridge statistics applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 148: Clear Vlanfwd Macbridge All

    This command clears all dynamic MAC entries in the forwarding database. syntax: dynamic example: SR> clear vlanfwd macbridge dynamic related commands: clear vlanfwd macbridge all clear vlanfwd macbridge static clear vlanfwd macbridge statistics applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 149: Clear Vlanfwd Macbridge Static

    This command clears VLAN bridging statistics from all VLAN interfaces. syntax: statistics example: SR> clear vlanfwd macbridging statistics related commands: clear vlanfwd macbridge all clear vlanfwd macbridge dynamic clear vlanfwd macbridge static applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 150: Clear Vlanfwd Management

    [ vlan_id < n | n - n > ] example: SR> clear statistics 100 applies to: All modules clear vlanfwd table This command clears explicit forwarding entries in the vlan forwarding table. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 151: Clear Vldfwd

    This command accesses next-level vld forwarding clear commands. syntax: clear vldfwd example: SR> clear vldfwd next-level commands clear vldfwd statistics clear vldfwd table applies to: All modules clear vldfwd statistics This command clears vld forwarding statistics. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 152: Clear Vldfwd Table

    <200-300>; the default is all. syntax: table [ vld_id < n | n - n > ] example: SR> clear vldfwd table 125-200 related commands: clear vldfwd statistics applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 153: Clear Vrrp

    [ slot-no ] parameter definition slot-no Identifies the slot. The default is 0 for main Flash. Valid range is : 0 - 2. example: SR/erase> flash applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 154: Erase Flash-File-Name

    The above example clears the contents of the system.cfg file. To verify that you have cleared the configuration file, use the show configuration stored or the show flash command. The following screen shows the contents of system.cfg prior to clearing the file. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 155 6467513 FEB-04-2004 13:51:22 T1000.1223.Z 6771268 APR-01-2004 11:38:42 T1000.Z APR-01-2004 11:56:18 system.cfg FEB-05-2004 07:12:30 oldsystem.cfg 6500329 APR-01-2004 11:49:22 T1000.020404.Z > related commands: show configuration stored show flash NCM applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 156 CLEAR Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 157: Configuration Methods

    Chapter 5: CONFIGURE Use the configure commands to configure an Avaya Secure Router 3120. You also can use these commands to subsequently change a system that has been previously configured. Configuration Methods Before configuring a system, specify the source from which it will be configured. To do this, go to the main CLI prompt and enter one of the commands described below.

  • Page 158: Configure Gui

    SR> configure term Table 9: Configure Commands configure aaa configure admin_name configure arp configure arp_timeout configure autoconf configure boot configure crypto configure date configure echo_errored_cmd configure event configure fr configure ftp_server configure ftp_user Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 159: Configure Aaa

    This command accesses next-level commands to configure parameters for (AAA) Authentication, Authorization, and Accounting. syntax: example: SR/configure> aaa next-level commands configure aaa authentication configure aaa authorization Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 160: Configure Aaa Authentication

    A list of up to three authentication values, separated by slashes (/), indicating the order in which the methods are used for login Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 161: Configure Aaa Authentication Protocol

    Possible values are pap, chap, and ascii. syntax: [ no ] authentication protocol list_name <name | default> <protocol_list> example: SR/configure/aaa> authentication protocol default pap/ascii related commands: configure aaa authentication login applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 162: Configure Aaa Authorization

    This command globally enables the (AAA) Authentication, Authorization, and Accounting mechanism. parameter definition auth Enables RADIUS authentication radius Enables the RADIUS client syntax: [ no ] enable [ auth ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 163: Configure Aaa Radius

    All modules configure aaa radius auth_port This command configures the port used by the RADIUS server for authentication. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 164: Configure Aaa Radius Fallback

    Configures fallback for all console and Telnet sessions. The default is off. syntax: [ no ] fallback [ sessions < all > ] example 1: This example configures fallback only for the console connection. SR/configure/aaa/radius> fallback Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 165: Configure Aaa Radius Primary_Server

    The IP address of the primary RAIUS server. syntax: primary_server ipaddress example: SR/configure/aaa/radius> primary_server 142.134.14.100 related commands: configure aaa radius auth_port configure aaa radius fallback configure aaa radius retries configure aaa radius secondary_server configure aaa radius shared_key Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 166: Configure Aaa Radius Retries

    All modules configure aaa radius secondary_server This command configures the IP address of the secondary RADIUS server. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 167: Configure Aaa Radius Shared_Key

    The key is limited to a maximum of 48 characters. parameter definition shared_key key The value of the shared secret RADIUS key. syntax: shared_key key example: SR/configure/aaa/radius> shared_key ax17bfe related commands: configure aaa radius auth_port Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 168: Configure Aaa Radius Time_Out

    SR/configure/aaa/radius> time_out 30 related commands: configure aaa radius auth_port configure aaa radius fallback configure aaa radius primary_server configure aaa radius retries configure aaa radius secondary_server configure aaa radius shared_key applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 169: Configure Aaa Tacacs

    This command configures the IP address of the primary tacacs+ server. A primary tacacs+ server must be configured to enable tacacs+. parameter definition ipaddress The IP address of the primary tacacs+ server. syntax: [no] primary_server ipaddress <address> example: SR/configure/aaa/tacacs> primary_server 142.134.14.100 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 170: Configure Aaa Tacacs Retries

    [no] retries retries < n > example: SR/configure/aaa/tacacs> retries 5 related commands: configure aaa tacacs primary_server configure aaa tacacs secondary_server configure aaa tacacs server_port configure aaa tacacs shared_key configure aaa tacacs time_out applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 171: Configure Aaa Tacacs Secondary_Server

    This command configures the port on the tacacs+ server. parameter definition port The port on the tacacs+ server. Valid range is 1-65535. syntax: server_port port example: SR/configure/aaa/tacacs> server_port 6234 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 172: Configure Aaa Tacacs Shared_Key

    [no] shared_key key <string> example: SR/configure/aaa/tacacs> shared_key ax17bfe related commands: configure aaa tacacs primary_server configure aaa tacacs retries configure aaa tacacs secondary_server configure aaa tacacs server_port configure aaa tacacs time_out applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 173: Configure Aaa Tacacs Time_Out

    All modules configure admin_name This command changes the administrator log-in name (Level 1 access) to a user-specified name. The system default is Router. syntax: configure admin_name < new name > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 174: Configure Arp

    < hostip > < macaddress > [ flag < published | permanent > ] example: SR/configure> arp 10.22.22.22 11:22:33:44:55:66 published This example sets both the permanent and published flags. applies to: All modules configure arp_timeout This command configures ARP timeout. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 175: Configure Autoconf

    The example enables IP mux auto-configuration on the Secure Router. applies to: All modules Note: IP mux auto-configuration is only applicable when the Secure Router is operating in IP mux mode. Auto-configurations may be overwritten at connected Secure Routers. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 176: Configure Boot

    Chooses twisted pair cabling for the monitor port (impedance = 120 ohm). syntax: cabletype [ e1_port < 1 | 2 > < coaxial | twisted_pair >] | [ monitor_port < 1 | 2 > < coaxial | twisted_pair > ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 177: Configure Date

    SR/configure> date 01 07 2005 In this example, date is January 7, 2005. related commands: show date configure utc applies to: All modules configure echo_errored_cmd This command enables or disables reprinting of errored commands. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 178: Configure Event

    SR/configure> event next-level commands configure event offline configure event online applies to: All modules configure event offline This command disables the display of system events on your workstation as they occur. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 179: Configure Event Online

    Configures the backup interface for the primary interface specified with the nat-ip parameter of firewall policy. Use the no form of the command to remove the backup interface for the specified primary interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 180: Configure Firewall Policy

    Other modes of NAT can be achieved by creating the nat-pool and later attaching the same to the firewall policy traffic While configuring firewall policy for a self-traffic, specify self for the parameter traffic. By default firewall policy is transit. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 181 10.1.1.10 nat-port 8080 To add an outbound policy for an FTP application from private address (50.1.1.30 – 50.1.1.40) to any IP address. The public address is derived from the outgoing wan interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 182: Configure Fr

    Time interval for polling The range is 30 - 300 seconds; the default is 30 seconds. syntax: fr invarp interval < n > example: SR/configure> fr invarp 60 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 183: Configure Fr Mfr_E2E_Enhanced

    [ no ] fr mfr_e2e_enhanced example: SR/configure> fr mfr_e2e_enhanced related commands: configure fr invarp applies to: All modules configure ftp_server This command enables and disables the FTP server. syntax: [ no ] ftp_server Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 184: Configure Ftp_User

    All modules configure gui This command enables the Graphic User Interface (GUI) on supported platforms. This interface is available through HTTP using Internet Explorer (5.5+) and is therefore referred to Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 185: Configure Header

    Descriptive information 80 character (maximum) string enclosed in quotation marks syntax: header string < "string" > example: SR/configure> header "This file was originally activated on 10/17/00." applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 186: Configure Interface

    This command accesses next-level commands for configuring AVCs, WAN bundles, and Ethernet ports for operation. Sub-interfaces can be specified. syntax: interface example 1: SR/configure> interface example 2: To create sub-interface 1 on Ethernet1/0, at 192.168.1.20, enter: SR/configure> interface ethernet 1/0.1 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 187: Configure Interface Avc

    SR/configure> interface avc wan08 22 next-level commands configure interface avc bridge configure interface avc class configure interface avc cvc configure interface avc diff_delay configure interface avc enable configure interface avc fragment_size Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 188: Configure Interface Avc Bridge

    SR/configure/interface/avc wan08 22> bridge lan related commands: configure interface avc class configure interface avc cvc configure interface avc diff_delay configure interface avc enable configure interface avc fragment_size configure interface avc ip configure interface avc map Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 189: Configure Interface Avc Class

    If the total CIR is above the user-supplied threshold value, the AVC is up. syntax: class < A | B | C > [ < D | E > ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 190: Configure Interface Avc Cvc

    The range is 16 - 1022. bundle Name of the bundle the cvc belongs to syntax: cvc dlci < n > bundle < name > example: SR/configure/interface/avc wan08 22> cvc 22 wan03 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 191: Configure Interface Avc Diff_Delay

    16 command is used. parameter definition value Differential delay in milliseconds. The range is 10 - 128. syntax: [ no ] diff_delay [ value < n > ] example: SR/configure/interface/avc wan08 22> diff_delay 25 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 192: Configure Interface Avc Enable Avc

    This command enables individual AVCs of a frame relay bundle. syntax: [ no ] enable avc example: SR/configure/interface/avc wan08 22> enable avc related commands: configure interface avc enable cvc configure interface avc enable mfr_e2e_enhanced applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 193: Configure Interface Avc Enable Cvc

    CVCs (doesn't depend on LMI), software loopback detection, and differential delay calculations. Use the no form of this command to disable enhanced mode and configure standard FRF.15 mode. syntax: [ no ] enable mfr_e2e_enhanced Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 194: Configure Interface Avc Fragment_Size

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 195: Configure Interface Avc Ip Access-Group

    IP address of the AVC subnet mask Subnet mask of the AVC syntax: [ no ] ip address < IP address > subnet mask < subnet mask > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 196: Configure Interface Avc Ip Directed_Broadcast

    This command defines an interface where data on the AVC will be routed to and terminated. parameter definition primary Source forwarding gateway IP address secondary Source forwarding gateway IP address using alternate Eth0ernet The default is none. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 197: Configure Interface Avc Map

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 198: Configure Interface Avc Red Tx_Max_Thresh

    When the average queue size exceeds this threshold, RED starts dropping packets with a probability that increases linearly with the average queue size until the maximum threshold is reached. When the average queue size exceeds the maximum threshold, all packets are dropped. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 199: Configure Interface Avc Red Wq_Bias_Factor

    Router recommends that you do not change the wq_bias_factor value after setting it. parameter definition value The weighting factor for the average queue size calculation. The range is 3 - 20; the default is 5. syntax: wq_bias_factor wq_bias_factor value < n > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 200: Configure Interface Avc Seg_Threshold

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 201: Configure Interface Avc Sequence

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 202: Configure Interface Avc Vlan

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 203: Configure Interface Avc Vlan Router_Ip_Addr

    The Ethernet type in decimal format The range is 1 - 65535; the default is 33024 (0x8100). syntax: [ no ] vlan_ether_type vlan_ether_type < n > example: SR/configure/interface/avc north 16/vlan> vlan_ether_type 1500 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 204: Configure Interface Avc Vlan Vlanid

    The Ethernet type in decimal format The range is 1 - 65535; the default is 33024 (0x8100). syntax: [ no ] vld_ether_type vld_ether_type < n > example: SR/configure/interface/avc north 16/vlan> vld_ether_type 1500 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 205: Configure Interface Avc Vlan Vldid

    E1 bundles, each consisting of DS0 channels of a T1 or E1 link. A Secure Router can have up to 128 bundles per interface in any combination of single-T1, multiple-T1, and fractional T1 types. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 206 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 207: Configure Interface Bundle Bcp

    VLAN-tagged packets and automatically forward them. This follows IEEE 802 for tagged frames. parameter definition type LAN packets to be bridged (default). vlan VLAN packets to be bridged. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 208: Configure Interface Bundle Contact

    This command gives a brief description of the bundle. This entry is also optional and must be enclosed in quotation marks. parameter definition descr A description of the bundle Use up to 15 characters; enclose in quotation marks. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 209: Configure Interface Bundle Drop

    < ses | es | uas | eev | bes | bpv | lofc | css | oof | crc > drop_time < n > example: SR/configure/interface/bundle SF_01> drop ses 15 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 210: Configure Interface Bundle Encapsulation

    Use the configure interface bundle fr command to set up FR parameters for a fractional, single link, or multilink bundle. To verify bundle encapsulation settings, use the show interface bundle command. parameter definition encapsulation Type of encapsulation to be used (HDLC, PPP, or frame relay). syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 211: Configure Interface Bundle Fr

    All modules configure interface bundle fr enable This command accesses next-level commands for enabling or disabling an entire frame relay bundle, individual PVCs or all PVCs within a frame relay bundle. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 212: Configure Interface Bundle Fr Enable Fragment_Rfc1490

    All modules configure interface bundle fr enable interface This command enables or disables frame relay operation on the entire bundle. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 213: Configure Interface Bundle Fr Enable Pvc

    The pvc number (DLCI number 16 - 1024) used in this command is for a previously established pvc. configure interface bundle fr frame_size This command sets the maximum frame size for a frame relay bundle. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 214: Configure Interface Bundle Fr Interleave

    1490/2427 to stay within the max frame size. configure interface bundle fr interleave This command allows you to configure FRF.12 at the bundle level. parameter definition [no] enable Enables or disables voice/data interleaving Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 215: Configure Interface Bundle Fr Intf_Type

    Data communications equipment (DCE) Data terminal equipment (DTE) (default) Switched network-to-network interface (NNI) syntax: intf_type type < dce | dte | nni > example: SR/configure/interface/bundle SF_01/fr> intf_type dce applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 216: Configure Interface Bundle Fr Mfr

    Maximum number of additional times the system sends an acknowledgement request to a device before dropping a link from the bundle The range is 1 - 5 seconds; the default is 2 seconds. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 217: Configure Interface Bundle Fr Mfr Class

    This command sets the differential delay for a multilink frame relay bundle. parameter definition value Tolerance, in milliseconds, to differential delay between frame relay links Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 218: Configure Interface Bundle Fr Mfr Fragment_Size

    This command sets the hello message retransmission interval for a multilink frame relay bundle. This is the time interval between acknowledgement requests sent to destination devices. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 219: Configure Interface Bundle Fr Mfr Seg_Threshold

    < n > example: SR/configure/interface/bundle SF_01/fr> mfr seg_threshold 56 applies to: All modules Note: If the segmentation threshold you enter is greater than the frame size, the system disregards Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 220: Configure Interface Bundle Fr Pvc

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 221: Configure Interface Bundle Fr Pvc Bridge

    Interface is part of a trusted network untrusted Interface is part of a untrusted network Interface is part of a dmz network syntax: [ no ] crypto network_type < trusted | untrusted | dmz > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 222: Configure Interface Bundle Fr Pvc Desc

    This command enables or disables the current PVC (DLCI number) on the selected bundle. syntax: [ no ] enable example: SR/configure/interface/bundle SF_01/fr/pvc 19> enable applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 223: Configure Interface Bundle Fr Pvc Frf12

    This command requests that a specific PVC sends ICMP redirect messages when a better route exists for the destination IP address. syntax: [ no ] icmp redirect example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 224: Configure Interface Bundle Fr Pvc Icmp Unreachable

    SR/configure/interface/bundle SF_01/fr/pvc 19> ip next-level commands configure interface bundle fr pvc ip address configure interface bundle fr pvc ip access-group configure interface bundle fr pvc ip directed_broadcast configure interface bundle fr pvc ip source_forwarding Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 225: Configure Interface Bundle Fr Pvc Ip Access-Group

    The network 1.1.0.0 is utilized internally in the Secure Router. The user is prevented from configuring IP addresses within, or IP routes to, this network. parameter definition IP address IP address of the PVC netmask Subnet mask of the PVC type broadcast Broadcast interface Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 226: Configure Interface Bundle Fr Pvc Ip Directed_Broadcast

    Specifies an IP address to which data on a terminated PVC will be routed. parameter definition primary Source forwarding gateway IP address secondary Source forwarding gateway IP address using alternate Ethernet The default is none. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 227: Configure Interface Bundle Fr Pvc Map

    This command accesses next-level commands for enabling network address translation (NAT) on a frame relay PVC. Before using this command, be sure to give the PVC an IP address, using the configure interface bundle fr pvc ip address command. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 228: Configure Interface Bundle Fr Pvc Nat Address

    Local IP address global_address Global (public) IP address syntax: [ no ] address local_address < IP address > global_address < IP address > example: SR/configure/interface/bundle SF_01/fr/pvc 19/nat> address 10.10.1.4 150.157.99.1 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 229: Configure Interface Bundle Fr Pvc Nat Enable

    The IP address to which the bundle's IP address will be translated. syntax: ip old_ip_address < IP address > new_ip_address < IP address > example: SR/configure/interface/bundle SF_01/fr/pvc 19/nat> ip 140.141.99.28 140.110.87.14 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 230: Configure Interface Bundle Fr Pvc Nat Max_Entries

    IP address max_translations The maximum number of translations to support. syntax: max_ports ipaddress < IP address > max_translations < n > example: SR/configure/interface/bundle SF_01/fr/pvc 16/nat> max_ports 10.10.20.1 25 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 231: Configure Interface Bundle Fr Pvc Nat Pass_Thru

    SR/configure/interface/bundle SF_01/fr/pvc 19/nat> no pass-thru-multicast applies to: All modules configure interface bundle fr pvc nat port This command adds a static TCP or UDP address and port to the NAT table. parameter definition protocol_type Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 232: Configure Interface Bundle Fr Pvc Nat Reverse

    This translates the global addresses and ports in the PVC's translation table to local addresses and ports. syntax: [ no ] reverse example: SR/configure/interface/bundle SF_01/fr/pvc 19/nat> reverse applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 233: Configure Interface Bundle Fr Pvc Nat Timeout

    This command adds or deletes a NAT translation port IP address for a specific frame relay PVC. parameter definition ip_address IP address of a translation port syntax: [ no ] trans_addr ip_address < IP address > example: SR/configure/interface/bundle SF_01/fr/pvc 19/nat> trans_addr 101.2.4.9 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 234: Configure Interface Bundle Fr Pvc Nat Trans_Mode

    If this function is enabled, all registered local addresses will pass through without any packet modifications. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 235: Configure Interface Bundle Fr Pvc Policing

    [ no ] policing [ cir < n > ] [ bc < n > ] [be < n > ] [ de < de > ] example: SR/configure/interface/bundle SF_01/fr/pvc 19> policing cir 128000 bc 256000 be 32000 de applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 236: Configure Interface Bundle Fr Pvc Red

    Default maximum average queue length per PVC. The range is 10 - 511; the default is 15. syntax: tx_max_thresh value < n > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 237: Configure Interface Bundle Fr Pvc Red Tx_Min_Thresh

    PVC's output queue. The range is 3 - 7; the default is 5. syntax: tx_min_thresh value < n > example: SR/configure/interface/bundle SF_01/fr/pvc 19/red> tx_min_thresh 4 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 238: Configure Interface Bundle Fr Pvc Red Wq_Bias_Factor

    Maximum committed (guaranteed) transmission burst size on the PVC, in bits Generally, this value exceeds cir and may be a multiple of that value. bcmin Minimum committed burst size, in bits Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 239 WAN-FR link t1 1 encapsulation frelay intf_type dce lmi ansi exit lmi pvc 16 no frf12 shaping cir 0 bcmax 0 bcmin 0 be 1536000 ip address 192.168.2.137 255.255.255.252 map 192.168.2.138 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 240: Configure Interface Bundle Fr Pvc Switch

    This command accesses next-level commands to configure VLAN tagging parameters. syntax: vlan example: SR/configure/interface/bundle SF_01/fr/pvc 16> vlan next-level commands configure interface bundle fr pvc vlan router_ip_addr configure interface bundle fr pvc vlan vlanid Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 241: Configure Interface Bundle Fr Pvc Vlan Router_Ip_Addr

    The Ethernet type in decimal format The range is 1 - 65535; the default is 33024 (0x8100). syntax: [ no ] vlan_ether_type vlan_ether_type < n > example: SR/configure/interface/bundle wan1/fr/pvc 17/vlan> vlan_ether_type 350 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 242: Configure Interface Bundle Fr Pvc Vlan Vlanid

    The Ethernet type in decimal format The range is 1 - 65536; the default is 33024 (0x8100). syntax: [ no ] vld_ether_type vld_ether_type < n > example: SR/configure/interface/bundle wan1/fr/pvc 17/vlan> vld_ether_type 2009 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 243: Configure Interface Bundle Fr Pvc Vlan Vldid

    The range is 64 - 4500; the default is 1500. syntax: hdlc [ keepalive < n >] [ packet_type < broadcast | unicast > ] [ mtu < n > ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 244: Configure Interface Bundle Hdlc_Link_Activate

    This command allows links which have been shutdown because of excessive HDLC errors, to be brought back up without having affecting the rest of the bundle. syntax: hdlc_link_activate example: SR/configure/interface/bundle SF_01>hdlc_link_activate related commands: configure system hdlc_link_deactivate applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 245: Configure Interface Bundle Icmp

    This command sends ICMP redirect messages when a better route exists for a destination IP address. syntax: [ no ] redirect example: SR/configure/interface/bundle SF_01/icmp> redirect related commands: configure interface bundle icmp redirect applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 246: Configure Interface Bundle Icmp Unreachable

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 247: Configure Interface Bundle Ip Access-Group

    All modules configure interface bundle ip address This command assigns an IP address and subnet mask to a bundle. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 248: Configure Interface Bundle Ip Directed_Broadcast

    This command enables or disables forwarding of directed broadcasts from this interface. The default value for this command is enabled. syntax: [ no ] ip directed_broadcast example: For a frame relay bundle: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 249: Configure Interface Bundle Ip Multicast

    Pass OSPF and RIP (v2) packets. syntax: ip multicast < pass | block | ospfrip2 > example: SR/configure/interface/bundle SF_01> ip multicast block related commands: configure interface bundle ip address configure interface bundle ip access-group Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 250: Configure Interface Bundle Ip Source_Forwarding

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 251: Configure Interface Bundle Ip Unnumbered

    This command accesses next-level commands for assigning an IP address, configuring source forwarding, or enabling IP unnumbered link on a bundle. syntax: ipmux example: SR/configure/interface/bundle SF_01> ipmux next-level commands configure interface bundle ipmux address Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 252: Configure Interface Bundle Ipmux Address

    This command assigns a destination to which data received by a bundle will be forwarded. You can also use the configure interface bundle ip source_forwarding command for this purpose. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 253: Configure Interface Bundle Ipmux Unnumbered

    < ethernet0 | ethernet1 > example: SR/configure/interface/bundle SF_01> ipmux unnumbered ethernet0 related commands: configure interface bundle ipmux address configure interface bundle ipmux source_forwarding applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 254: Configure Interface Bundle Link

    64 kbps. inverted_data Whether or not to invert the data on all DS0 channels (optional entry). If inverted_data is not entered, the data will not be inverted on any DS0 channels. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 255: Configure Interface Bundle Link Serial

    Serial link to be assigned link_spec Specifies the serial module's slot and port to be configured. syntax: serial link_spec example: SR/configure/interface/bundle paultest> link serial 2/3 applies to: Serial modules that support v.35 or x.21 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 256: Configure Interface Bundle Link T1

    This example assigns DSO channels 1 to 6 and 10 to 15 of T1 link 1 to a fractional T1 bundle. All DSO channels on this bundle will operate at 56 kbps without data inversion. related commands: configure interface bundle link t3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 257: Configure Interface Bundle Link T3

    Specifies the module's slot and ports to be configured. speed Transmission speed for all time slots in the link (optional). Default is 64Kbps. invert_data Specifies whether the link is inverted data or not (optional). Default is no. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 258: Configure Interface Bundle Link_Restore

    If link_restore is set to manual and a T1 or E1 link is dropped from a bundle, reconfiguring link restore to automatic does not bring link back into bundle. User should restore any dropped links manually before reconfiguring for automatic link restore. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 259: Snmp Get

    When the time to live expires, the access rule denies access and the user must purchase additional connectivity time. Note: When MHU is enabled, NAT is not supported in the current version of the Avaya software. SNMP Set The SNMP set command configures the access rule for a specific IP address for a specific time.

  • Page 260: Configuring Mhu

    DHCP server performs DHCP address negotiations for both DHCP clients and DHCP proxy clients. The web server/authorization server provides IP addresses for redirected HTTP packets and sends the forced-first-page. The authorization server uses SNMP to authorize a client for network access. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 261: Configure Interface Bundle Mhu

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 262: Configure Interface Bundle Mhu Access_Srvr_Addr

    SR/configure/interface/bundle SanDiego/mhu> access_srvr_addr 10.1.1.99 related commands: configure interface bundle mhu auth_srvr_addr configure interface bundle mhu auth_srvr_port configure interface bundle mhu cleanup_timer configure interface bundle mhu community configure interface bundle mhu delete_all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 263: Configure Interface Bundle Mhu Auth_Srvr_Addr

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 264: Configure Interface Bundle Mhu Auth_Srvr_Port

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 265: Configure Interface Bundle Mhu Cleanup_Timer

    SR/configure/interlace/bundle SanDiego/mhu> cleanup_timer 60 related commands: configure interface bundle mhu access_srvr_addr configure interface bundle mhu auth_srvr_addr configure interface bundle mhu auth_srvr_port configure interface bundle mhu community configure interface bundle mhu delete_all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 266: Configure Interface Bundle Mhu Community

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 267: Configure Interface Bundle Mhu Delete_All

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 268: Configure Interface Bundle Mhu Delete_Entry

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 269: Configure Interface Bundle Mhu Dhcp_Srvr_Addr

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 270: Configure Interface Bundle Mhu Dns_Srvr_Addr

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 271: Configure Interface Bundle Mhu Dns_Srvr_Port

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 272: Configure Interface Bundle Mhu Enable

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 273: Configure Interface Bundle Mhu Ethernet

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 274: Configure Interface Bundle Mhu Redirect

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 275: Configure Interface Bundle Mhu Send_Client_Info

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 276: Configure Interface Bundle Mhu Send_Router_Info

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 277: Configure Interface Bundle Mhu Set_Timeout

    Enter a specific timeout value (number) syntax: set_timeout dhcp address < IP address > timeout < n > example: SR/configure/interface/bundle SanDiego/mhu> set_timeout 1200 related commands: configure interface bundle mhu access_srvr_addr configure interface bundle mhu auth_srvr_addr Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 278: Configure Interface Bundle Mlppp

    MLPPP sequence number length (short is 12 bits, long is 24 bits) The default is long. seg_threshold All packet fragments will be equal to or greater than seg_threshold. Packets less than 2 x seg_threshold will be Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 279: Configure Interface Bundle Nat

    [ no ] nat example: SR/configure/interface/bundle SF_01> no nat next-level commands configure interface bundle nat address configure interface bundle nat enable configure interface bundle nat ip configure interface bundle nat max_entries Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 280: Configure Interface Bundle Nat Address

    150.157.99.2 on the public network (Internet). If reverse translation is also enabled, the global address will also be translated back to the local address when data is received from the public network. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 281: Configure Interface Bundle Nat Enable

    Type no enable static or no enable dynamic to disable a previously enabled form of translation. parameter definition static Static address and port translation dynamic Dynamic port translation syntax: [ no ] enable < static | dynamic > example: SR/configure/interface/bundle SF_01/nat> enable dynamic Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 282: Configure Interface Bundle Nat Ip

    <IP address > new_ip_address < IP address> example: SR/configure/interface/bundle SF_01/nat> ip 140.141.99.29 140.110.100.10 related commands: configure interface bundle nat address configure interface bundle nat enable configure interface bundle nat max_entries configure interface bundle nat pass_thru Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 283: Configure Interface Bundle Nat Max_Entries

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 284: Configure Interface Bundle Nat Pass_Thru

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 285: Configure Interface Bundle Nat Pass-Thru-Multicast

    All modules configure interface bundle nat max_ports This command configures the maximum number of ports/translations to be supported for the translation address. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 286: Configure Interface Bundle Nat Port

    All modules configure interface bundle nat port This command adds static ports to a bundle for translation. Static ports may be added for both TCP- and UDP-protocol ports. parameter definition protocol_type Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 287 All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 288: Configure Interface Bundle Nat Reverse

    All modules configure interface bundle nat timeout This command sets the NAT timeout interval for dynamic translation entries for a bundle. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 289 All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 290: Configure Interface Bundle Nat Trans_Addr

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 291: Configure Interface Bundle Nat Trans_Mode

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 292: Configure Interface Bundle Nat Unregistered

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 293: Configure Interface Bundle Peer_Addr

    Disables magic number. syntax: ppp [ mtu < min - default - max >] [ mru < min - default - max > ] [magic_check < enable | disable >] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 294: Configure Interface Bundle Pppconfig

    SR3120 configure interface bundle pppconfig authentication Configures authentication type for PPP. parameter definition PAP authentication chap CHAP authentication Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 295: Configure Interface Bundle Pppconfig Chap

    SR3120 configure interface bundle pppconfig mtu-mru-magic Configures PPP parameters. parameter definition maximum transmission unit - range <min-def-max> Default: 64-1500-1600 maximum receive unit - range <min-def-max> Default: 64-1500-1600 magic_check magic number enable/disable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 296: Configure Interface Bundle Pppconfig Pap

    SR3120 configure interface bundle pppconfig peer-addr Assigns the peer ip address for PPP bundle parameter definition ip address configure the peer ip address of the bundle syntax: pppconfig peer-addr <address> example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 297: Configure Interface Bundle Pppconfig Src-Addr

    Commited rate, burst rate, priority, red, and ewf options can be configured only on outbound classes for interface bundle qos commands. syntax: example: SR/configure/interface/bundle SF_01> qos next-level commands configure interface bundle qos add_class Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 298: Configure Interface Bundle Qos Add_Class

    Burst (Peak) Rate as % of interface bandwidth Valid Range(s) : 1 - 100 priority Scheduling priority. Valid only for leaf classes. The range is 1 - 8. Supported for outbound traffic only. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 299 < vlan id > ] [ dscp < n > ] [ nat_ip < nat_ip address > ] [ mark_dscp < n > ] [mark_vlan < n > ] example: SR/configure/interface/bundle SF_01/qos> add_class eng3 r applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 300: Configure Interface Bundle Qos Class

    All modules configure interface bundle qos class This command accesses next-level commands to modify parameters of this traffic class. parameter definition class_name Name of class being modified. syntax: class class_name Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 301 All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 302: Configure Interface Bundle Qos Class Add_Dot1P

    "cs0-cs7." parameter definition ds_codepoint Specifies the DiffServ code point. The range is 0 - 7 syntax: add_dscp ds_codepoint < n > example 1: SR/configure/interface/bundle wan1/qos/class v100> add_dscp 11 example 2: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 303: Configure Interface Bundle Qos Class Add_Dst_Ip

    SR/configure/interface/bundle SF_01/qos/class eng3> add_dst_ip 10.1.4.0 255.255.255.0 example 2: SR/configure/interface/bundle SF_01/qos/class eng3> add_dst_ip default This example makes this class a default class. example 3: SR/configure/interface/bundle SF_01/qos/class eng3> add_dst_ip 10.1.4.1- 10.1.4.20 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 304: Configure Interface Bundle Qos Class Add_Port

    This command assigns a source IP address or a subnet to the specified class. parameter definition ip_address Source IP address to be added to a QoS class. netmask The subnet mask syntax 1: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 305: Configure Interface Bundle Qos Class Add_Vlan_Id

    SR/configure/interface/bundle SF_01/qos/class eng3> add_vlan_id 100 This example assigns vlan id "100" to the class eng3. example 2: SR/configure/interface/bundle SF_01/qos/class eng3> add_vlan_id default This example makes the class "eng3" the default class for VLAN Ids. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 306: Configure Interface Bundle Qos Class Burst_Rate

    New committed rate for a specified QoS class (entered in Kbps) This value cannot exceed the parent committed rate. syntax: committed_rate cr < n > example: SR/configure/interface/bundle SF_01/qos/class eng3> committed_rate 3000 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 307: Configure Interface Bundle Qos Class Delete_Dscp

    The subnet mask syntax: delete_ip_address ip_address < IP address > [ netmask < subnet mask > ] example 1: SR/configure/interface/bundle SF_01/qos/class eng3> delete_ip_address 10.1.3.0 This example deletes the IP address 10.1.3.0. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 308: Configure Interface Bundle Qos Class Delete_Port

    SR/configure/interface/bundle SF_01/qos/class eng3> delete_port default This example deletes the default port from this class. applies to: All modules configure interface bundle qos class delete_vlan_id This command deletes a VLAN identifier assigned to the specified class. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 309: Configure Interface Bundle Qos Class Enable

    Enable RED on class ds_red Enable DiffServ compliant WRED syntax: [ no ] enable red_type < red | ds_red > example: SR/configure/interface/bundle wan 1/qos/class v100> enable red applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 310: Configure Interface Bundle Qos Class Ewf

    This command marks all packets with a specific DiffServe code point. parameter definition ds_codepoint DiffServ code point value The range is 0 - 63. syntax: mark_dscp ds_codepoint < n > example: SR/configure/interface/bundle wan 1/qos/class v100> mark_dscp 10 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 311: Configure Interface Bundle Qos Class Nat_Ip

    This command tags all packets with a specific VLAN ID when VLAN tagging is enabled. parameter definition vlan_id The range is 1 - 4095. syntax: mark_vlan vlan_id < n > example: SR/configure/interface/bundle wan 1/qos/class v100> mark_vlan vlan_id 105 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 312: Configure Interface Bundle Qos Class Priority

    Min and max limits and the default value are indicated on the configuration display for the class. parameter definition maximum Maximum buffer limit value syntax: queue_buffers [ maximum < n > ] example: SR/configure/interface/bundle wan 1/qos/class v100> queue_buffers 70 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 313: Configure Interface Bundle Qos Class Red

    SR/configure/interface/bundle wan 1/qos/class v100> red minth 12 maxth 24 dscp af11 applies to: All modules configure interface bundle qos delete_all This command deletes all QoS classes configured for the specified bundle. syntax: delete_all example: SR/configure/interface/bundle SF_01/qos> delete_all applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 314: Configure Interface Bundle Qos Delete_Class

    If bandwidths are configured as a percentage, when the bandwidth of a multi-link bundle is modified by adding or removing links, the bandwidths will automatically be updated based on Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 315: Configure Interface Bundle Qos Police Rate

    Traffic policing is also supported on Ethernet interfaces. Traffic policing is implemented using a token bucket algorithm. Users will be able specify two parameters when configuring traffic policing, Rate (token fill rate) and Burst (number of tokens). Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 316: Configure Interface Bundle Red

    R1/configure/interface/bundle wan1/qos> class c3 R1/configure/interface/bundle wan1/qos/class c3> police rate 256 related commands: show configuration stored applies to: All modules configure interface bundle red This command accesses next-level commands for configuring RED on bundles. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 317: Configure Interface Bundle Red Tx_Max_Thresh

    The range is 2 - 511; the default is dependent upon the bandwidth of the bundle. syntax: tx_max_thresh value < n > example: SR/configure/interface/bundle SF_01/red> tx_max_thresh 14 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 318: Configure Interface Bundle Red Tx_Min_Thresh

    A high value reduces the probability of packet drops and increases the queue size, making it better for temporary traffic bursts. Router recommends that you do not change the wq_bias_factor value after setting it. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 319: Configure Interface Bundle Restore

    Requires you to restore the link manually via the configure interface bundle link_restore command. syntax: restore < automatic < n > | manual > example: SR/configure/interface/bundle SF_01> restore automatic 20 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 320: Configure Interface Bundle Rtp

    This command configures the maximum number of RTP connections for the bundle. parameter definition connections The number of connections The range is 1 - 512; the default is 512. syntax: [ no ] connections connections < n > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 321: Configure Interface Bundle Rtp Timeout

    All modules configure interface bundle shutdown This command shuts down a WAN bundle by stopping all data transmission over it. syntax: [ no ] shutdown Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 322: Configure Interface Bundle Src_Addr

    This command accesses next-level commands for configuring tracking parameters. syntax: track example: configure/interface/bundle wan1> track next-level commands configure interface bundle track hold_down configure interface bundle track interface Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 323: Configure Interface Bundle Track Hold_Down

    This command configures tracking on the interface. parameter definition bundle_name Name of bundle to be tracked syntax: track interface bundle_name example: configure/interface/bundle wan1> track interface wan1 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 324: Configure Interface Bundle Vlan

    This command configures a remote router IP address for a VLAN ARP request. syntax: [ no ] router_ip_addr ip_address < IP address > example: SR/configure/interface/bundle SF_01/vlan> router_ip_addr 150.42.3.2 related commands: configure interface bundle vlan vlanid Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 325: Configure Interface Bundle Vlan Vlan_Ether_Type

    The VLAN ID number The range is 1 - 4095. syntax: [ no ] vlanid vlanid < n > example: SR/configure/interface/bundle SF_01/vlan> vlanid 200 related commands: configure interface bundle vlan router_ip_addr Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 326: Configure Interface Bundle Vlan Vld_Ether_Type

    This command configures the vld tag for this interface. parameter definition vldid The vld id number The range is 1 -4095. syntax: [ no ] vld < n > example: SR/configure/interface/bundle wan1/vlan> vld 243 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 327: Configure Interface Ethernet

    This command provides a brief description for an Ethernet port. The descriptive string, enclosed in quotation marks, can have up to 15 characters. parameter definition descr Description Use up to 15 characters; enclose in quotation marks. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 328: Configure Interface Ethernet Dhcp_Relay

    If not specified, the giaddr field is marked with the IP address of interface. syntax: [ no ] dhcp_relay gateway_address < gateway IP address > example: SR/configure/interface ethernet 1/0> dhcp_relay gateway_address 100.4.3.2 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 329: Configure Interface Ethernet Dhcp_Relay Server_Address

    Enables encapsulation on the specified Ethernet interface or subinterface for VLAN traffic. parameter definition protocol dot1q Specifies a 802.1Q VLAN. vlanid Specifies the VLAN. Valid range is 1-4095. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 330: Configure Interface Ethernet Failover

    SR/configure/interface/ethernet 0> failover 5 applies to: All modules configure interface ethernet ip This command accesses next-level commands for allowing ICMP messages to be sent on an Ethernet port. syntax: example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 331: Configure Interface Ethernet Ip Redirect

    This command allows the Ethernet port to send IP unreachable messages when no route exists for a destination IP address. syntax: [ no ] unreachable example: SR/configure/interface/ethernet 0/ip> no unreachable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 332: Configure Interface Ethernet Ip

    This command applies a packet filtering rule set to an Ethernet port. You must first use the configure ip access-list commands to create the rule set. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 333: Configure Interface Ethernet Ip Address

    IP address of the Ethernet port (dotted decimal format) netmask Mask used to determine the subnet of the IP address. syntax: ip address ipaddress < IP address > netmask < subnet mask > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 334: Configure Interface Ethernet Ip Directed_Broadcast

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 335: Configure Interface Ethernet Ip Helper_Address

    Pass all multicast data packets. block Block all multicast data packets. ospfrip2 Pass OSPF and RIP(v2) packets. syntax: ip multicast mode < pass | block | ospfrip2 > example: SR/configure/interface/ethernet 0> ip multicast pass Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 336: Configure Interface Ethernet Ip Proxy_Arp

    All modules configure interface ethernet mtu This command configures the mtu for an Ethernet interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 337: Configure Interface Ethernet Nat

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 338: Configure Interface Ethernet Nat Address

    150.157.99.2 on the public network (Internet). applies to: All modules configure interface ethernet nat enable This command enables static address and port translation, and enables dynamic port translation on a bundle. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 339: Configure Interface Ethernet Nat Ip

    New global IP address to which the LAN port's current IP address will be translated. syntax: ip old_ip_address < IP address > new_ip_address < IP address > example: SR/configure/interface/ethernet 0/nat> ip 140.141.99.29 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 340: Configure Interface Ethernet Nat Max_Entries

    [ no ] pass_thru example: SR/configure/interface/ethernet 0/nat> no pass_thru applies to: All modules configure interface ethernet nat port This command adds static ports to an Ethernet port for translation. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 341: Configure Interface Ethernet Nat Reverse

    This translates the global addresses and ports in the Ethernet port translation table to local addresses and ports. This function is factory-disabled on all Secure Routers. syntax: [ no ] reverse example: SR/configure/interface/ethernet 0/nat> reverse applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 342: Configure Interface Ethernet Nat Timeout

    This command adds or deletes the NAT translation port IP address for a specific Ethernet port. parameter definition ip_address IP address of a translation port syntax: [ no ] trans_addr ip_address < IP address > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 343: Configure Interface Ethernet Nat Trans_Mode

    To disable this function, type no unregistered. If you do this, any local address (registered or unregistered) can be translated by adding the appropriate entries to the translation table or enabling dynamic port translation as previously described. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 344: Configure Interface Ethernet Qos

    All modules configure interface ethernet qos add_class This command adds a qos traffic class to the Ethernet interface. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 345 [ mark_dscp ] [ mark_vlan ] example: SR/configure/interface/ethernet 0/qos> add_class v1100 root-in related commands: configure interface ethernet qos class configure interface ethernet qos delete_all configure interface ethernet qos delete_class configure interface ethernet qos enable applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 346: Configure Interface Ethernet Qos Class

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 347: Configure Interface Ethernet Qos Class Add_Dscp

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 348: Configure Interface Ethernet Qos Class Add_Dst_Ip

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 349: Configure Interface Ethernet Qos Class Add_Port

    This command adds a source IP address or a source subnet to this traffic class. Note: The subnet always defaults to 32 bits for ranges (255.255.255.255). syntax: add_src_ip < ip_address > [ netmask ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 350: Configure Interface Ethernet Qos Class Add_Vlan_Id

    VLAN ID The range is 1 - 4095. Enter a number or a range of numbers, e.g., 100-120. syntax: add_vlan_id vlan_id < n | range > example: SR/configure/interface/ethernet 0/qos/class v1100> add_vlan_id 100-120 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 351: Configure Interface Ethernet Qos Class Delete_Dscp

    SR/configure/interface/ethernet 0/qos/class v1100> delete_dscp 49 related commands: configure interface ethernet qos class add_dscp configure interface ethernet qos class add_dst_ip configure interface ethernet qos class add_port configure interface ethernet qos class add_src_ip Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 352: Configure Interface Ethernet Qos Class Delete_Ip_Address

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 353: Configure Interface Ethernet Qos Class Delete_Port

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 354: Configure Interface Ethernet Qos Class Delete_Vlan_Id

    All modules configure interface ethernet qos class mark_dscp This command marks all packets with a specific DiffServe code point. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 355: Configure Interface Ethernet Qos Class Mark_Vlan

    This command tags packets with a specific VLAN ID when VLAN tagging is enabled. parameter definition vlan_id VLAN ID Enter a number or a range of numbers. The range is 1 - 4095. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 356: Configure Interface Ethernet Qos Delete_All

    This command deletes all QoS traffic classes on the interface. syntax: delete_all example: SR/configure/interface/ethernet 0/qos> delete_all related commands: configure interface ethernet qos add_class configure interface ethernet qos class configure interface ethernet qos delete_class configure interface ethernet qos enable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 357: Configure Interface Ethernet Qos Delete_Class

    This command enables desired feature on this interface. parameter definition feature Enable QoS on the interface Enable monitoring only on the interface direction outbound Outbound traffic only inbound Inbound traffic only syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 358: Configure Interface Ethernet Qos Police Rate

    Number of tokens specified in kilobits. Determines the maximum burst (in bits or bytes) permitted for the flow. burst-time Duration (based on the configured rate) in milliseconds. syntax: police rate <rate> [burst <rate> | burst-time <time>] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 359: Configure Interface Ethernet Rem

    All modules configure interface ethernet REM_ This command allows users to add comments (at the end of the Ethernet area of the configuration file) during a configuration session. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 360: Configure Interface Ethernet Shutdown

    To restore the port after shutting it down, log into the system from the RS-232 console port and type no ethernet shutdown at the configure/interface> prompt. syntax: shutdown example: SR/configure/interface/ethernet 0> shutdown applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 361: Configure Interface Ethernet Speed

    This command accesses next-level commands for configuring tracking parameters. syntax: track example: configure/interface/ethernet 0> track next-level commands configure interface ethernet track hold_down configure interface ethernet track interface applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 362: Configure Interface Ethernet Track Hold_Down

    This command configures tracking on the interface. parameter definition bundle_name Name of bundle to be tracked syntax: track interface bundle_name example: configure/interface/ethernet 0> track interface wan1 related commands: configure interface ethernet track hold_down Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 363: Configure Interface Ethernet Vlan

    The range is 1 - 65535; the default is 33024 (0x8100). syntax: [ no ] vlan_ether_type < n | n - n > example: SR/configure/interface/ethernet 1/vlan> vlan_ether_type 1172 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 364: Configure Interface Ethernet Vlan Vlanid

    The range is 1 - 65535; the default is 33024 (0x8100). syntax: [ no ] vld_ether_type < n | n - n > example: SR/configure/interface/ethernet 1/vlan> vlan_ether_type 1172 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 365: Configure Interface Ethernet Vlan Vldid

    < n > example: SR/configure/interface/ethernet 0> vrrp 10 next-level commands configure interface ethernet vrrp advertisement_interval configure interface ethernet vrrp authentication configure interface ethernet vrrp description configure interface ethernet vrrp enable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 366: Configure Interface Ethernet Vrrp Advertisement_Interval

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 367: Configure Interface Ethernet Vrrp Authentication

    All modules configure interface ethernet vrrp description This command assigns a description to the VRRP group. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 368: Configure Interface Ethernet Vrrp Enable

    This command enables a VRRP group. syntax: enable example: SR/configure/interface/ethernet 0/vrrp 10> enable related commands: configure interface ethernet vrrp advertisement_interval configure interface ethernet vrrp authentication configure interface ethernet vrrp description Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 369: Configure Interface Ethernet Vrrp Ipaddr

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 370: Configure Interface Ethernet Vrrp Learn_Adv_Internal

    This command configures the virtual router to prempt the current VRRP master if it has a higher priority than the current master. syntax: preempt example: SR/configure/interface/ethernet 0/vrrp 10> preempt Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 371: Configure Interface Ethernet Vrrp Priority

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 372: Configure Interface Ethernet Vrrp Track

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 373: Configure Interface Ethernet Vrrp_Mode

    Secure Routers support the creation of a maximum of 128 loopback interfaces. parameter definition loopback_name Name of the interface Enter a maximum of eight characters. syntax: loopback loopback_name < name > example 1: Local router command sequence: SR/configure/interface> loopback hilow Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 374: Configure Interface Loopback Ip Address

    < IP address > netmask < subnet mask > example: SR/configure/interface/loopback hilow> ip address 100.4.3.2 255.255.255.0 applies to: All modules configure interface null This command configures a null interface. syntax: interface null example: Router_ SR/configure> interface null Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 375: Configure Interface Null Ip Unreachables

    To view the IP parameters before or after configuring them, use the appropriate show ip commands. syntax: example: SR/configure> ip next-level commands configure ip access-group configure ip domain_name configure ip dos configure ip access-list Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 376: Configure Ip Access-Group

    Filters packets that are inbound. Filters packets that are outbound. syntax: access-group interface <bundle name | ethernet0 | ethernet1 > direction < in | out > example: SR/configure/ip> access-group ethernet0 in applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 377: Configure Ip Access-List

    This command adds a new rule to an IP packet filtering rule set. Each rule is added with an identifying line number for future editing or deletion. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 378 TCP flags by separating the above keywords with commas (no spaces allowed). This entry may be any of the following words: established Used to match an established connection (Cisco-compatible). Matches the TCP FIN header flag. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 379 | any destination < IP address > [ / < wildcard > ] | any [ precedence < 0 - 7 > ] [ tos < 0 - 15 > ] [ log < on | off > ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 380: Configure Ip Access-List Delete

    The line number of a specific rule set The range is 1 - 65535. syntax: delete rul_lineno < n > example: SR/configure/ip/access-list Rules_01> delete 3 related commands: configure ip access-list add configure ip access-list insert Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 381: Configure Ip Access-List Insert

    Optional entry for TCP and UDP protocols; allows the source port to be used for packet filtering. Use comparison symbols to specify ports as follows: Port number p, where n is 1- 65535. Excludes port p. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 382 [ no ] insert rule_lineno < 1 - 65535 > rul_action < permit | deny >protocol < tcp > source < IP address > [ / < wildcard > ] | any destination < IP address > [ / < wildcard > ] | any [ sport < 1- Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 383: Configure Ip Dhcps

    DHCP server. Use the configure ip dhcps relay to configure the addresses of relay agents. Use the configure ip dhcps remote_database command to configure a remote DHCP server database. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 384: Configure Ip Domain_Name

    This command assigns a domain name to the Secure Router. To view the IP domain name, use the show ip dns command. syntax: domain_name < name > example: SR/configure/ip> domain_name abcnetworks applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 385: Configure Ip Dos

    Drops all inbound ICMP packets. ping Drops all inbound PING packets. syntax: drop icmptypes < icmp | ping > example: SR/configure/ip/dos> drop ping applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 386: Configure Ip Dos Enable

    Use up to 255 characters. hostaddress IP address of the new host. syntax: host_add hostname < host name > hostaddress < IP address > example: SR/configure/ip> host_add mainsys 10.1.3.251 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 387: Configure Ip Load_Balance

    You can configure a maximum of three name servers; including a primary server, which is the first configured server. parameter definition ipaddress IP address of the host name server added to the list of name servers. syntax: name_server ipaddress < IP address > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 388: Configure Ip Nat

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 389: Configure Ip Nat Address

    This command adds or deletes a dynamic port translation IP address. syntax: [ no ] default_addr ip_address example: SR/configure/ip/nat> default_addr 10.10.10.3 Note: This command should be used in conjunction with the configure ip nat enable command. applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 390: Configure Ip Nat Enable

    2: SR/configure/ip/nat> enable address pool1 applies to: All modules configure ip nat interface This command adds or deletes global NAT for an interface. parameter definition interface ethernet0 Ethernet 0 interface Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 391: Configure Ip Nat Ip

    New translation IP address to use syntax: ip old_ip_address new_ip_address example: SR/configure/ip/nat> ip 100.10.10.14 100.100.10.1 applies to: All modules configure ip nat max_entries This command limits the number of translations that can occur. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 392: Configure Ip Nat Max_Ports

    SR/configure/ip/nat> max_ports 143.55.34.4 140 applies to: All modules configure ip nat pass_thru This command allows not-translated packets to pass through to the router. syntax: pass_thru example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 393: Configure Ip Nat Pass-Thru-Multicast

    This command names the address pool and accesses next-level commands to configure the address pool for dynamic address translation. syntax: pool < name > example: SR/configure/ip/nat> pool custpool1 next-level commands configure ip nat pool range applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 394: Configure Ip Nat Pool Range

    Specifies dynamic addressing translation entries for the port local_address The local IP address to translate. local_port The local port to translate. The range is 1 - 65535. global_address The global IP address to use for translation. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 395: Configure Ip Nat Reverse

    This command configures a timeout value for dynamic translation entries. parameter definition option_type Assigns TCP protocol translation entries to the configured timeout value Assigns UDP protocol translation entries to the configured timeout value Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 396: Configure Ip Nat Trans_Addr

    This command sets the translation mode to either OVERFLOW or ROUND_ROBIN. parameter definition tmode overflow Uses the next available translation address only if the current translation address ports have been used. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 397: Configure Ip Nat Unregistered

    This command defines the IP address of the primary DNS server. parameter definition ipaddress IP address of the primary name server. syntax: pname_server ipaddress < IP address > example: SR/configure/ip> pname_server 10.1.100.16 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 398: Configure Ip Route

    SR/configure/ip> route 10.1.200.0 255.255.0.0 10.2.71.5 2 example 2: Interface route: SR/configure/ip> route 10.1.200.0 255.255.255.0 wan1 2 example 3: Frame relay/pvc route: SR/configure/ip> route 10.1.200.0 255.255.255.0 wan1:17 2 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 399: Configure Ip Routing

    Then review the system configuration (in the new mode) to verify that all IP configurations and IP routes are still configured. syntax: ipmux example: SR/configure> ipmux next-level commands configure ipmux autoconf configure ipmux route configure ipmux src_fwd_gw applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 400: Configure Ipmux Autoconf

    < IP address > netmask < subnet mask > gwipaddr < gateway IP address > [ pvc ] SR/configure> ipmux route 10.2.100.16 255.0.0.0 10.2.100.30 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 401: Configure Ipmux Src_Fwd_Gw

    Specifies which slot (1 or 2) and which port is to be configured. syntax: module interface_type slot/port example: SR/configure> module T1 1/1 next-level commands configure module e1 configure module t1 configure module t3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 402: Configure Module E1

    E1 module, serial modules that support v.35 or x.21 configure module e1 alarms This command accesses next-level commands for configuring alarm thresholds. on an E1 link. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 403: Configure Module E1 Alarms Hierarchy

    If a user-defined threshold is exceeded, the system reports an alarm. These alarms indicate the possible deterioration of an associated E1 link. syntax: thresholds example: SR/configure/module/e1 (1/1-3)/alarms> thresholds next-level commands configure module e1 alarms thresholds user Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 404: Configure Module E1 Alarms Thresholds User

    Method of sampling, as follows: absolute The errored second or event count is compared directly to the specified threshold values, and the appropriate alarm type (rising or falling) is reported. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 405: Configure Module E1 Circuitid

    Optional circuit name for the E1 channel. syntax: circuitId cktid < name > Note: This command does not support the specifying of port ranges. Enter this command on a port-by-port basis. example: SR/configure/module/e1 (2/1-3)> circuitId Main01 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 406: Configure Module E1 Clock_Source

    SR/configure/module/e1 (2/1-3)> clock_source line related commands: configure module e1 alarms configure module e1 circuitId configure module e1 contactInfo configure module e1 description configure module e1 enable configure module e1 framing Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 407: Configure Module E1 Contactinfo

    E1 module, serial modules that support v.35 or x.21 configure module e1 description This command describes the E1 interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 408: Configure Module E1 Enable

    Alarm Indication Signal (AIS) to the far end and places the link out of service. To verify the in-service or out-of-service status of an E1 channel, use the show module configuration e1 command. syntax: [ no ] enable example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 409: Configure Module E1 Framing

    < crc | noncrc | disable > example: SR/configure/module/e1 (2/1-3)> framing noncrc next-level commands configure module e1 alarms configure module e1 clock_source configure module e1 enable configure module e1 framing configure module e1 linemode Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 410: Configure Module E1 Linemode

    E1 module, serial modules that support v.35 or x.21 configure module e1 name Configures the name for the E1 interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 411: Configure Module Serial

    E1 module, serial modules that support v.35 or x.21 configure module serial Configures the serial interface. parameter definition slot/port The name of the slot and port for the interface. syntax: slot/port v35 example: SR/configure/module> serial (2/3)/ Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 412: Configure Module Serial Cable_Type

    SR/configure/module/serial (2/3)> cable_type x21 Note: When the cable type is set to RS-232, the clock rate is checked and automatically reduced to 115,200 if currently set to higher. next-level commands configure module serial Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 413: Configure Module Serial Clock_Rate

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 414: Configure Module Serial Clock_Source

    Configures cyclical redundancy checks for the V.35 serial interface. parameter definition Specifies that the CRC is 16 (bit) or 32 (bit). Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 415: Configure Module Serial Data_Mode

    Specifies the data mode to be normal for normal data, or inverted for inverted data. syntax: data_mode data_mode example: SR/configure/module/serial (2/3)/v35> data_mode normal SR/configure/module/serial (2/3)/v35> data_mode inverted next-level commands configure module serial clock_rate configure module serial clock_source Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 416: Configure Module Serial Flow_Control

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 417: Configure Module Serial Mode

    Configures the serial mode to be either a DTE (data terminal equipment - for example, the Secure Router 3120) or DCE (data circuit-terminating equipment - typically a modem). parameter definition operation_mode Specify the operational mode to be either dte or dce.

  • Page 418: Configure Module T1

    T1s to be configured). parameter definition slot/port The slot and port number to be configured. The range is 1/1-8 or 2/1-8. syntax: module t1<slot/port>t1_no where t1_no is the <slot/port> number. example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 419: Configure Module T1 Alarms

    This command accesses next-level commands for configuring alarm reporting on a T1 link. syntax: alarms example: SR/configure/module/t1 1> alarms next-level commands configure module t1 alarms thresholds configure module t1 alarms hierarchy applies to: T1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 420: Configure Module T1 Alarms Hierarchy

    If a user-defined threshold is exceeded, the system reports an alarm. These alarms indicate the possible deterioration of an associated T1link. syntax: thresholds example: SR/configure/module/t1 1/3/alarms> thresholds next-level commands configure module t1 alarms thresholds user Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 421: Configure Module T1 Alarms Thresholds User

    The falling threshold value must be less than the rising threshold value above. The range is 0 - 2147483647. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 422: Configure Module T1 Circuitid

    Optional circuit name for the T1 channel syntax: circuitId cktId < name > Note: This command does not support the specifying of port ranges. Enter this command on a port-by-port basis. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 423: Configure Module T1 Clock_Source

    The desired clock source internal Secure Router's internal clock (default) line Clock recovered from the incoming T1 signal (loop timing) syntax: clock_source clock_source < internal | line > example: SR/configure/module/t1 1/3> clock_source line Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 424: Configure Module T1 Contactinfo

    This command does not support the specifying of port ranges. Enter this command on a port-by-port basis. example: SR/configure/module t1 1/3> contactInfo James Smythe related commands: configure module t1 alarms configure module t1 circuitID configure module t1 clock_source Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 425: Configure Module T1 Description

    This command does not support the specifying of port ranges. Enter this command on a port-by-port basis. example: SR/configure/module/t1-1> description xyzInc related commands: configure module t1 alarms configure module t1 circuitID configure module t1 clock_source configure module t1 contactInfo configure module t1 enable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 426: Configure Module T1 Enable

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 427: Configure Module T1 Framing

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 428: Configure Module T1 Linecode

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 429: Configure Module T1 Linemode

    T1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 430: Configure Module T1 Linemode Csu

    This command sets the amount of T1 signal equalization based on the cabling distance to the DSX cross-connect. parameter definition cable_length Cabling distance to DSX bay, as follows: 0 - 110 feet (default) 111 - 220 feet 221 - 330 feet 331 - 440 feet Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 431: Configure Module T1 Loopback_Framing

    400 - 533 feet 534 - 655 feet syntax: dsx cable_length < 1 | 2 | 3 | 4 | 5 > example: SR/configure/module/t1 1/3/linemode> dsx 2 related commands: configure module t1 linemode csu Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 432: Configure Module T1 Name

    T1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 433: Configure Module T1 Yellow_Alarm

    T1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 434: Configure Module T3

    Clear Channel T3 configure module t3 alarms This command accesses next-level commands for alarm reporting configuration on a Clear Channel T3 link. syntax: module t3 alarms example: SR/configure> module t3 1/1 alarms Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 435: Configure Module T3 Alarms Thresholds

    If a user-defined threshold is exceeded, the system reports an alarm. These alarms can indicate the possible deterioration of the Clear Channel T3. syntax: alarms thresholds example: SR/configure/module/t3 (1/1)> alarms thresholds next-level commands configure module t3 alarms thresholds user applies to: Clear Channel T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 436: Configure Module T3 Alarms Thresholds User

    The falling threshold value must be less than the rising threshold value above. The range is 0 - 2147483647. sampling type Method of sampling, as follows: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 437: Configure Module T3 Cable_Length

    Use 1 for 0 - 225 feet, or 2 for 226 - 450 feet. The default is 1. syntax: cable_length cable_length < 1 | 2 > example: SR/configure/module/t3 (1/1)> cable_length 2 related commands: configure module t3 alarms configure module t3 clock_source Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 438: Configure Module T3 Clock_Source

    SR/configure/module/t3 (1/1)> clock_source line related commands: configure module t3 alarms configure module t3 cable_length configure module t3 dsu configure module t3 framing configure module t3 enable configure module t3 name configure module t3 scramble Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 439: Configure Module T3 Dsu

    Note: It is strongly recommended that the user not use the bandwidth value reported by the vendor system as input for the Secure Router. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 440: Configured Bandwidth Versus Actual Bandwidth

    SR/configure/module/t3 (1/1)> dsu bandwidth next-level commands configure module t3 dsu bandwidth rate configure module t3 dsu bandwidth timeslots related commands: configure module t3 dsu mode applies to: Clear Channel T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 441: Configure Module T3 Dsu Bandwidth Rate

    Select a number within the range for the configured mode. Numbers within the 1 - 588 range are valid. 1- 147 Digital Link 1 - 14 Larscom 1 - 588 Adtran Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 442: Configure Module T3 Dsu Mode

    Digital Link This is the default value. Kentrox Larscom Adtran Verilink Router (Used for backward compatibility with pre-5.0 releases.) syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 443: Vendor Bandwidth Tables

    Actual Bandwidth DSU Bandwidth Value 300,746 601,492 902,239 1,202,985 1200 1,503,731 1500 1,804,477 1800 2,105,224 2100 2,405,970 2400 2,706,716 2700 3,007,462 3000 3,308,208 3300 3,608,955 3600 3,909,701 3900 4,210,447 4200 4,511,193 4500 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 444 9,623,879 9600 9,924,625 9900 10,225,371 10200 10,526,118 10500 10,826,864 10800 11,127,610 11100 11,428,356 1 1400 11,729,103 11700 12,029,849 12000 12,330,595 12300 12,631,341 12600 12,932,087 12900 13,232,834 13200 13,533,580 13500 13,834,326 13800 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 445 18,947,012 18900 19,247,758 19200 19,548,504 19500 19,849,250 19800 20,149,997 20100 20,450,743 20500 20,751,489 20800 21,052,235 21100 21,352,982 2 1400 21,653,728 21700 21,954,474 22000 22,255,220 22300 22,555,966 22600 22,856,713 22900 23,157,459 23200 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 446 28000 28,270,145 28300 28,570,891 28600 28,871,637 28900 29,172,383 29200 29,473,129 29500 29,773,876 29800 30,074,622 30100 30,375,368 30400 30,676,114 30700 30,976,861 31000 31,277,607 31300 31,578,353 31600 31,879,099 31900 32,179,845 32200 32,480,592 32500 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 447 37300 37,593,277 37600 37,894,024 37900 38,194,770 38200 38,495,516 38500 38,796,262 38800 39,097,008 39100 39,397,755 39400 39,698,501 39700 39,999,247 40000 40,299,993 40300 40,600,739 40600 40,901,486 40900 41,202,232 41200 41,502,978 41500 41,803,724 41800 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 448 25300 28,420,518 28400 31,578,353 31600 34,736,188 34700 37,894,024 37900 41,051,859 41100 44,209,694 44210 Table 12: Verilink DSU Timeslots Actual Bandwidth DSU Bandwidth Value 1,578,918 1600 3,157,835 3200 4,736,753 4700 6,315,671 6300 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 449 36300 37,894,024 37900 39,472,941 39500 41,051,859 41100 42,630,776 42600 44,209,694 44210 Table 13: Kentrox DSU Timeslots Actual Bandwidth DSU Bandwidth Value 1,500,000 1500 2,000,000 2000 2,500,000 2500 3,000,000 3000 3,500,000 3500 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 450 14000 14.5 14,500,000 14500 15.0 15,000,000 15000 15.5 15,500,000 15500 16.0 16,000,000 16000 16.5 16,500,000 16500 17.0 17,000,000 17000 17.5 17,500,000 17500 18.0 18,000,000 18000 18.5 18,500,000 18500 19.0 19,000,000 19000 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 451 29500 30.0 30,000,000 30000 30.5 30,500,000 30500 31.0 31,000,000 31000 31.5 31,500,000 31500 32.0 32,000,000 32000 32.5 32,500,000 32500 33.0 33,000,000 33000 33.5 33,500,000 33500 34.0- 34,000,000 34000 34.5 34,500,000 34500 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 452 827,052 902,239 977,425 1,052,612 1050 1,127,798 1130 1,202,985 1200 1,278,171 1280 1,353,358 1350 1,428,545 1430 1,503,731 1500 1,578,918 1580 1,654,104 1650 1,729,291 1730 1,804,477 1800 1,879,644 1880 1,954,850 1950 2,030,037 2030 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 453 3230 3,308,208 3310 3,383,395 3380 3,458,582 3460 3,533,768 3530 3,608,955 3610 3,684,141 3680 3,759,328 3760 3,834,514 3830 3,909,701 3910 3,984,887 3980 4,060,074 4060 4,135,261 4140 4,210,447 4210 4,285,634 4290 4,360,820 4360 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 454 5560 5,638,992 5640 5,714,178 5710 5,789,365 5790 7,864,551 5860 5,939,738 5940 6,014,924 6010 6,090,111 6090 6,165,297 6170 6,240,484 6240 6,315,671 6320 6,390,857 6390 6,466,044 6470 6,541,230 6540 6,616,417 6620 6,691,603 6690 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 455 7890 7,969,775 7970 8,044,961 8040 8,120,148 8120 8,195,334 8200 8,270,521 8270 8,345,708 8350 8,420,894 8420 8,496,081 8500 8,571,267 8570 8,646,454 8650 8,721,640 8720 8,796,827 8800 8,872,013 8870 8,947,200 8950 9,022,387 9020 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 456 10230 10,300,558 10300 10,375,745 10380 10,450,931 10450 10,526,118 10530 10,601,304 10600 10,676,491 10680 10,751,677 10750 10,826,864 10830 10,902,050 10900 10,977,237 10980 11,052,424 11050 11,127,610 11130 11,202,797 11200 11,277,983 11280 11,353,170 11350 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 457 12560 12,631,341 12630 12,706,528 12710 12,781,714 12780 12,856,901 12860 12,932,087 12930 13,007,274 13010 13,082,461 13080 13,157,647 13160 13,232,834 13230 13,308,020 13310 13,383,207 13380 13,458,393 13460 13,533,580 13530 13,608,766 13610 13,683,953 13680 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 458 14890 14,962,124 14860 15,037,311 15040 15,112,497 15110 15,187,684 15190 15,262,871 15260 15,338,057 15340 15,413,244 15410 15,488,430 15490 15,563,617 15560 15,638,803 15640 15,713,990 15710 15,789,176 15790 15,864,363 15860 15,939,550 15940 16,014,736 16010 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 459 17220 17,292,908 17290 17,368,094 17370 17,443,281 17440 17,518,467 17520 17,593,654 17590 17,668,840 17670 17,744,027 17740 17,819,213 17820 17,894,400 17890 17,969,587 17970 18,044,773 18040 18,119,960 18120 18,195,146 18200 18,270,333 18270 18,345,519 18350 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 460 19950 19,623,691 19620 19,698,877 19700 19,774,064 19770 19,849,250 19850 19,924,437 19920 19,999,624 20000 20,074,810 20070 20,149,997 20150 20,225,183 20230 20,300,370 20300 20,375,556 20380 20,450,743 20450 20,525,929 20530 20,601,116 20600 20,676,303 20680 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 461 21880 21,954,474 21950 22,029,661 22030 22,104,847 22100 22,180,034 22180 22,255,220 22260 22,330,407 22330 22,405,593 22410 22,480,780 22480 22,555,966 22560 22,631,153 22630 22,706,339 22710 22,781,526 22780 22,856,713 22860 22,931,899 22930 23,007,086 23010 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 462 24210 24,285,257 24290 24,360,444 24360 24,435,630 24440 24,510,817 24510 24,586,003 24590 24,661,190 24660 24,736,376 24740 24,811,563 24810 24,886,750 24890 24,961,936 24960 25,037,123 25040 25,112,309 25110 25,187,496 25190 25,262,682 25260 25,337,869 25340 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 463 26540 26,616,040 26620 26,691,227 26690 26,766,413 26770 26,841,600 26840 26,916,787 26920 26,991,973 26990 27,067,160 27070 27,142,346 27140 27,217,533 27220 27,292,719 27290 27,367,906 27370 27,443,092 27440 27,518,279 27520 27,593,466 27590 27,668,652 27670 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 464 28870 28,946,824 28950 29,022,010 29020 29,097,197 29100 29,172,383 29170 29,247,570 29250 29,322,756 29320 29,397,943 29400 29,473,129 29470 29,548,316 29550 29,623,503 29620 29,698,689 29700 29,773,876 29770 29,849,062 29850 29,924,249 29920 29,999,435 30000 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 465 31200 31,277,607 31280 31,352,793 31350 31,427,980 31430 31,503,166 31500 31,578,353 31580 31,653,539 31650 31,728,726 31730 31,803,913 31800 31,879,099 31880 31,954,286 31950 32,029,472 32030 32,104,659 32100 32,179,845 32180 32,255,032 32260 32,330,218 32330 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 466 33530 33,608,390 33610 33,683,576 33680 33,758,763 33760 33,833,950 33830 33,909,136 33910 33,984,323 33980 34,059,509 34060 34,134,696 34130 34,209,882 34210 34,285,069 34290 34,360,255 34360 34,435,442 34440 34,510,629 34510 34,585,815 34590 34,661,002 34660 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 467 35860 35,939,173 35940 36,014,360 36010 36,089,546 36090 36,164,733 36160 36,239,919 36240 36,515,106 36320 36,390,292 36390 36,465,479 36470 36,540,666 36540 36,615,852 36620 36,691,039 36690 36,766,225 36770 36,841,412 36840 36,916,598 36920 36,991,785 36990 Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 468 38190 38,269,956 38270 38,345,143 38350 38,420,329 38420 38,495,516 38500 38,570,703 38570 38,645,889 38650 38,721,076 38720 38,796,262 38800 38,871,449 38870 38,946,635 38950 39,021,822 39020 39,097,008 39100 39,172,195 39170 39,247,382 39250 39,322,568 39320 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 469: Configure Module T3 Enable

    40,751,113 40750 40,826,299 40830 configure module t3 enable This command enables T3 traffic directions. parameter definition options Transmit direction The default configuration is enabled. Receive direction The default configuration is enabled. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 470: Configure Module T3 Framing

    This command sets the Clear Channel T3 port framing mode, which can be either C-bit parity or M13. parameter definition framing c_bit C_BIT framing (default) M13 framing syntax: framing framing < c_bit | m13 > example: SR/configure/module/t3 (1/1)> framing m13 related commands: configure module t3 alarms Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 471: Configure Module T3 Name

    Clear Channel T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 472: Configure Module T3 Scramble

    This command accesses next-level commands for configuring a Channelized T3. parameter definition ct3_identifier Channelized T3 interface to be configured. syntax: module ct3 ct3_identifier < 1/1 | 2/1 > example: SR/configure> module ct3 1/1 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 473: Configure Module Ct3 Alarms

    Channelized T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 474: Configure Module Ct3 Alarms Heirarchy

    This command accesses next-level commands for configuring a Channelized T3. If a user- defined threshold is exceeded the system reports and alarm. These alarms can indicate the possible deterioration of the Channelized T3. syntax: alarms thresholds example: SR/configure/module/ct3 (1/1)> alarms thresholds Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 475: Configure Module Ct3 Alarms Thresholds User

    The falling threshold value must be less than the rising threshold value. The range is 0 - 2147483647 sampling type Method of sampling, as follows: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 476: Configure Module Ct3 Cable_Length

    2 for 226 - 450 feet. The default is 1. syntax: cable_length cable_length < 1 | 2 > example: SR/configure/module/ct3 (1/1)> cable_length 2 related commands: configure module ct3 alarms configure module ct3 clock_source Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 477: Configure Module Ct3 Clock_Source

    SR/configure/module/ct3 (1/1)> clock_source line related commands: configure module ct3 alarms configure module ct3 cable_length configure module ct3 enable configure module ct3 framing configure module ct3 t1 applies to: Channelized T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 478: Configure Module Ct3 Enable

    This command sets the Channelized T3 port framing mode, which can be either C-bit parity or M13. parameter definition framing c_bit - C_BIT framing (default)m13 - M13 framing syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 479: Configure Module Ct3 T1

    GENERATE mode Yellow Alarm detect - DETECT mode Yellow Alarm gen_det - GENERATE and DETECT mode Yellow Alarm disable - disable Yellow Alarm circuitID Circuit ID contactInfo Contact Info description Circuit Description Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 480: Configure Network

    Channelized T3 configure network This command sets the Secure Router 3120 parameters from a configuration file on a network server. This method downloads files via the TFTP protocol, then executes the commands from that file without operator intervention. Use the configure network command if you want to configure one or more Secure Routers with the same configuration.

  • Page 481: Configure Qos

    The name assigned to a new QoS class. The maximum number of characters allowed is 19. parent Name of the parent class; QoS classes are defined hierarchically. To add to the root, specify either root-in or root-out. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 482 [ cr ] [ br ] [ priority ] [ src_ip_address ] [ dst_ip_address ] [ netmask ] [ port ] [ vlan_id ] [ dscp ] [ dot1p ] [ nat_ip ] [ mark_dscp ] [ mark_vlan ] [ mark_dot1p ]<cr> example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 483: Configure Qos Historical_Stats

    It is an interactive command and prompts for the primary server's IP address, secondary server's IP address (optional), the user name, and password id. The configuration is stored in NVRAM and not in a configuration file, therefore, the specified values are stored across reboots. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 484: Configure Qos Historical_Stats Sample_Interval

    Enter a number: 5, 10, or 15). syntax: sample_interval interval < n > example: SR/configure/qos/historical_stats> sample interval 15 related commands: configure qos historical_stats ftp_parameters configure qos historical_stats upload applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 485: Configure Qos Historical_Stats Upload

    This command allows users to add comments (at the beginning of the QoS area of the configuration file) during a configuration session. Comments will appear after using the save local command. parameter definition comments 80-character (maximum) string enclosed in quotation marks. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 486: Configure Qos Rem

    REM_ "QoS policy reviewed on November 4, 2000.TVD 11:45." related commands: configure qos hist_stats configure qos hist_stats ftp_parameters configure qos add_class class_name parent configure qos REM show configuration stored Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 487: Configure Reverse_Telnet

    All modules configure reverse_telnet enable This command enables reverse telnet on the router. syntax: enable example: SR/configure/reverse_telnet> enable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 488: Configure Reverse_Telnet Set_Baud_Rate

    < n > example: SR/configure/reverse_telnet> set_baud_rate 65 related commands: configure reverse_telnet enable configure reverse_telnet set_data_bits configure reverse_telnet set_flow_control configure reverse_telnet set_parity configure reverse_telnet set_stop_bits configure reverse_telnet telnet_port configure reverse_telnet telnet_timeout applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 489: Configure Reverse_Telnet Set_Data_Bits

    All modules configure reverse_telnet set_flow_control This command sets the flow control for the second serial port. parameter definition flow_control No flow control. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 490: Configure Reverse_Telnet Set_Parity

    This command sets the parity for the second serial port. parameter definition parity No parity is configured. The default is 0. Odd parity is configured. Even parity is configured. syntax: set_parity parity < n > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 491: Configure Reverse_Telnet Set_Stop_Bits

    The range is 1 - 2; the default is1. syntax: set_stop_bits stop_bits < n > example: SR/configure/reverse_telnet> set_stop_bits 2 related commands: configure reverse_telnet enable configure reverse_telnet set_baud_rate configure reverse_telnet set_data_bits configure reverse_telnet set_flow_control configure reverse_telnet set_parity Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 492: Configure Reverse_Telnet Telnet_Port

    SR/configure/reverse_telnet> telnet_port 3500 related commands: configure reverse_telnet enable configure reverse_telnet set_baud_rate configure reverse_telnet set_data_bits configure reverse_telnet set_flow_control configure reverse_telnet set_parity configure reverse_telnet set_stop_bits configure reverse_telnet telnet_timeout applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 493: Configure Router

    Enables the specified routing protocol. Use this command to enter the specified router configuration mode. Refer to the SR3120 Routing Guide for examples. parameter definition Enables Border Gateway Protocol. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 494: Configure Secure_Passwords

    SR/configure> secure_passwords applies to: All modules configure shut This command disables the specified interface. By default, interfaces are enabled upon configuration. syntax: [no] shut example: SR/configure/module/t1 (2/1)> shut Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 495: Configure Snmp-Server

    REM configure snmp-server REM_ configure snmp-server trap-source configure snmp-server chassis-id configure snmp-server trap-host configure snmp-server trap-version applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 496: Configure Snmp-Server Community

    REM configure snmp-server REM_ configure snmp-server trap-source configure snmp-server chassis-id configure snmp-server trap-host configure snmp-server snmp-source configure snmp-server enable traps bundle applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 497: Configure Snmp-Server Contact

    All modules configure snmp-server location This command defines the SNMP host system location. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 498: Configure Snmp-Server Rem

    Comments will appear in the configuration file after using the save local command. parameter definition comments 80-character (maximum) string enclosed in quotation marks. syntax: REM < "string" > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 499: Configure Snmp-Server Rem

    Comments will appear in the configuration file after using the save local command. parameter definition comments 80-character (maximum) string enclosed in quotation marks. syntax: REM_ comments < "string" > example: SR/configure/snmp-server> REM_ "SNMP configured on November 4, 2000.TVD 11:00." Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 500: Configure Snmp-Server Chassis-Id

    Name of the host system syntax: chassis-id id < name > example: SR/configure/snmp-server> chassis-id sanjose_ca related commands: configure snmp-server community configure snmp-server contact configure snmp-server enable traps configure snmp-server location configure snmp-server REM Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 501: Configure Snmp-Server Enable Traps

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 502: Configure Snmp-Server Enable Traps Bgp

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 503: Configure Snmp-Server Enable Traps Bundle

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 504: Configure Snmp-Server Enable Traps Config

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 505: Configure Snmp-Server Enable Traps Environment

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 506: Configure Snmp-Server Enable Traps Failover

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 507: Configure Snmp-Server Enable Traps Frame_Relay

    All modules configure snmp-server enable traps ospf This command enables or disables OSPF related traps. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 508 Enables or disables OSPF virtual interface receive bad packet notification trap if_retransmit ifTxRetransmit Enables or disables OSPF interface retransmit notification trap virt_retransmit virtIfTxRetransmit Enables or disables OSPF virtual interface retransmit notification trap Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 509 All modules operating mode: Routing only. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 510: Configure Snmp-Server Enable Traps Snmp

    All modules configure snmp-server enable traps sntp This command enables or disables SNMP client traps for the simple network timing protocol. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 511: Configure Snmp-Server Enable Traps System

    Enables traps for Secure Router shutdowns. trap_login logon Enables traps for Secure Router logons. trap_logoff logoff Enables traps for Secure Router logoffs. trap_loginfail loginfail Enables traps for failed user login attempts. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 512: Configure Snmp-Server Enable Traps Vrrp

    This command enables or disables VRRP group traps. syntax: vrrp example: SR/configure/snmp/enable_trap> vrrp related commands: configure snmp-server enable traps bgp configure snmp-server enable traps bundle configure snmp-server enable traps config Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 513: Configure Snmp-Server Snmp-Source

    The IP address of the SNMP source host. syntax: snmp-source <IP address> example: SR/configure/snmp-server> source address 10.100.1.1 related commands: configure snmp-server community configure snmp-server contact configure snmp-server enable traps configure snmp-server location configure snmp-server REM configure snmp-server REM_ Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 514: Configure Snmp-Server Snmp-Enable

    REM configure snmp-server REM_ configure snmp-server trap-source configure snmp-server chassis-id applies to: All models Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 515: Configure Snmp-Server Trap-Host

    REM configure snmp-server REM_ configure snmp-server trap-source configure snmp-server chassis-id applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 516: Configure Snmp-Server Trap-Version

    This command configures SNMP trap messages so that they are sent to a specific IP address. Otherwise, traps will be sent to the system default address. parameter definition host IP address for the source of the SNMP trap messages. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 517: Configure Sntp

    The time, in seconds, in which the host responds. The default is 1024 seconds. syntax: [ no ] sntp [ server < IP address > ] [ timeout < n > ] example: SR/configure> sntp server 100.25.6.3 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 518: Configure Ssh_Keygen Change

    The type of conversion to perform, either secsh to convert from OpenSSH public key to SECSH public key or openssh to convert from unencrypted private or public SECSH key to OpenSSH. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 519: Configure Ssh_Keygen Digest

    The type of digest to generate, either fingerprint of bubblebabble. The default is fingerprint syntax: ssh_keygen digest keyfile <file_name> [digest < fingerprint | bubblebabble>] example: SR/configure> ssh_keygen digest tiara.pub fingerprint related commands:. configure ssh_keygen change Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 520: Configure Ssh_Keygen Encrypt

    SR/configure> ssh_keygen encrypt testfile related commands: configure ssh_keygen change configure ssh_keygen digest configure ssh_keygen generate applies to: All modules configure ssh_keygen generate This command generates host and user authentication keys. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 521: Configure Ssh_Server

    All modules configure ssh_server This command initializes SSH server settings. syntax: ssh_server example: SR/configure> ssh_server related commands: configure ssh_server authentication Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 522: Configure Ssh_Server Authentication

    [no] authentication method <password | publickey> example: SR/configure/ssh_server> no authentication password related commands: configure ssh_server cipher configure ssh_server compression configure ssh_server enable configure ssh_server hostfile configure ssh_server logevents configure ssh_server mac Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 523: Configure Ssh_Server Cipher

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 524: Configure Ssh_Server Compression

    All modules configure ssh_server enable This command enables or disables secure shell server. syntax: ssh_server [no] enable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 525: Configure Ssh_Server Hostfile

    The name of the file containing the public host key. syntax: ssh_server hostfile hostfile <filename> example: SR/configure/ssh_server> hostfile dsakey related commands: configure ssh_server authentication configure ssh_server cipher configure ssh_server compression Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 526: Configure Ssh_Server Logevents

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 527: Configure Ssh_Server Mac

    All modules configure ssh_server port This command specifies the port on which the SSH server will listen. parameter definition portno The port number. The default is 22. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 528: Configure Ssh_Server Restore

    This command restores the default values to all SSH configuration parameters. syntax: ssh_server restore example: SR/configure/ssh_server> restore related commands: configure ssh_server authentication configure ssh_server cipher configure ssh_server compression configure ssh_server hostfile configure ssh_server logevents Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 529: Configure Ssh_Server Sftpd

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 530: Configure Sys_Rem

    Comments will appear after using the save local command. parameter definition comments 80-character (maximum) string enclosed in quotation marks. syntax: SYS_REM_ comments < "comments" > example: SR/configure> SYS_REM_ "Everything left unchanged except IP filter. MNB 11/06/00 12:20." Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 531: Configure System

    This command configures the state of the alarm relay for non-alarm reporting. parameter definition state open Relay contacts are open when no Summary alarm is active closed Relay contacts are closed when no Summary alarm is active This is the default value. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 532: Configure System Carrier-Type

    Specifies a T1 carrier. Specifies an E1 carrier. syntax: carrier-type slot carrier example: SR/configure/system> carrier-type 1 t1 T1 carrier set for slot 1 related commands: configure system logging configure system mac_range Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 533: Configure System Hdlc_Error

    All modules configure system hdlc_link_deactivate This command is a system-wide setting which deactivates links when the excessive HDLC error threshold is exceeded. syntax: hdlc_link_deactivate example: SR/configure/system> hdlc_link_deactivate Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 534: Configure System Logging

    Users have the option of selecting which message types they wish to have sent to the console. All messages of the selected message type (and messages of greater severity) will be sent to the console. parameter definition level emergency Emergency messages are logged. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 535: Configure System Logging Syslog

    All modules configure system logging syslog This command accesses next-level commands for configuring syslog on the Secure Router. syntax: syslog example: SR/configure/system/logging> syslog next-level commandsc configure system logging syslog auth Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 536: Configure System Logging Syslog Auth

    The priorities are defined hierarchically by severity, with "emergency" messages being the most urgent and "debugging" messages being the least. parameter definition message type none Does not log messages of the specified facility. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 537: Configure System Logging Syslog Bootp

    Emergency messages are logged. alert Alert messages are logged, plus emergency messages. crit Critical messages are logged, plus all messages described above. Error messages are logged, plus all messages described above. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 538: Configure System Logging Syslog Bundle

    Critical messages are logged, plus all messages described above. Error messages are logged, plus all messages described above. warning Warning messages are logged, plus all messages described above (default). notice Notification messages are logged, plus all messages described above. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 539: Configure System Logging Syslog Daemon

    Logs only daemon informational and above messages debug Logs all daemon messages syntax: daemon message type < none | emerg | alert | crit | err | warning | notice | info | debug > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 540: Configure System Logging Syslog Domainname

    < none | emerg | alert | crit | err | warning | notice | info | debug > example: SR/configure/system/logging/syslog> domainname warning applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 541: Configure System Logging Syslog Enable

    Indicates system use sys13 Indicates system use sys14 Indicates system use local0 Locally defined messages local1 Locally defined messages local2 Locally defined messages local3 Locally defined messages local4 Locally defined messages Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 542: Configure System Logging Syslog Firewall

    This is the default. notice Notification messages are logged, plus all messages described above. infor Informational messages are logged, plus all messages described above. debug Debugging messages are logged, plus all messages described above. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 543: Configure System Logging Syslog Fr

    Debugging messages are logged, plus all messages described above. syntax: fr message type < none | emerg | alert | crit | err | warning | notice | info | debug > example: SR/configure/system/logging/syslog> fr notice applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 544: Configure System Logging Syslog Gated

    This command sets the HDLC facility logging message priority. The priorities are defined hierarchically by severity, with "emergency" messages being the most urgent and "informational" messages being the least. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 545: Configure System Logging Syslog Host_Ipaddr

    Syslog host IP address udp_portno Syslog host UDP port number The range is 1 - 65535; the default is 514. syntax: host_ipaddr host_ipaddr < IP address > [ udp_portno < n > ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 546: Configure System Logging Syslog Ipmux

    < none | emerg | alert | crit | err | warning | notice | info | debug > example: SR/configure/system/logging/syslog> ipmux none applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 547: Configure System Logging Syslog Kern

    This command configures user defined facility logging message priority. Priorities are defined hierarchically by severity, with "emergency" messages being the most urgent and "informational" messages being the least. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 548: Configure System Logging Syslog Mail

    Does not log mail messages emerg Logs only mail emergency messages alert Logs only mail alert and above messages crit Logs only mail critical and above messages Logs only mail error and above messages Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 549: Configure System Logging Syslog Ntp

    Logs only ntp warning and above messages This is the default configuration. notice Logs only ntp notification and above messages info Logs only ntp informational and above messages debug Logs all ntp messages syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 550: Configure System Logging Syslog Ppp

    < none | emerg | alert | crit | err | warning | notice | info | debug > example: SR/configure/system/logging/syslog> ppp warning applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 551: Configure System Logging Syslog Qos

    < none | emerg | alert | crit | err | warning | notice | info | debug > example: SR/configure/system/logging/syslog> qos notice applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 552: Configure System Logging Syslog System

    < none | emerg | alert | crit | err | warning | notice | info | debug > example: SR/configure/system/logging/syslog> system info applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 553: Configure System Mac_Range

    All modules Note: Be sure to designate at least one MAC address per Ethernet port for management purposes. configure system reset-to-factory This command returns the router to factory default settings. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 554: Configure System Routing

    To preserve your configuration settings, use the save local command prior to issuing the configure system routing command. To turn off routing, enter: SR/configure/system> no routing related commands: configure system alarm_relay configure system carrier_type configure system logging configure system mac_range applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 555: Configure Telnet_Banner

    The range is 0 - 3600 seconds; the default is 900 seconds. If 0 is entered, there will be no timeout configured. syntax: telnet_timeout timeout < n > example: SR/configure> telnet_timeout 1300 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 556: Configure Term

    This command enables or disables the show of debug information at a remote monitor that is accessing the network over a telnet connection. syntax: [ no ] monitor example: SR/configure/terminal> monitor applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 557: Configure Tftp_Server

    Default value. syntax: [ no ] user name < name > [ level < level > < 1 | 2 | 3 | 4 > ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 558: Configure Utc

    UTC minutes The number of minutes ahead or behind Greenwich. Valid range is 00 - 59. (Most timezones only need to set the number of hours of offset.) syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 559: Configure Vlanfwd

    This command accesses next-level commands for configuring VLAN forwarding. syntax: [ no ] vlanfwd example: SR/configure> vlanfwd next-level commands configure vlanfwd add configure vlanfwd enable configure vlanfwd ether_type configure vlanfwd management configure vlanfwd REM configure vlanfwd REM_ Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 560: Configure Vlanfwd Add

    [ no ] add vlanid vlan_id < n > interface < ethernet0 | ethernet1 | bundle name | bundle name:PVC number > example: SR/configure/vlanfwd> add vlanid 120 ethernet0 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 561: Configure Vlanfwd Add Vldid

    Also, when a save local command is executed after a no vlan enable command, the VLAN forwarding table and associated configuration will not be saved. syntax: [ no ] enable example 1: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 562: Configure Vlanfwd Ether_Type

    The range is 1 - 65535; the default is 33024 (0 x 8100). syntax: ether_type [ ether_type < n > ] example: SR/configure/vlanfwd> ether_type 33027 related commands: configure vlanfwd add configure vlanfwd enable configure vlanfwd management configure vlanfwd REM configure vlanfwd REM_ Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 563: Configure Vlanfwd Macbridge

    All modules configure vlanfwd macbridge add This command accesses next-level commands. syntax: example: SR/configure/vlanfwd/macbridge> add next-level commands configure vlanfwd macbridge add macentry applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 564: Configure Vlanfwd Macbridge Add Macentry

    The range is 1 - 1440; the default is 5 minutes. syntax: [ no ] age age < n > example: SR/configure/vlanfwd/macbridge> age 10 related commands: configure vlanfwd macbridge add Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 565: Configure Vlanfwd Macbridge Enable

    These commands allow users to enable in-band VLAN management: add a destination host to the VLAN management table, set the time for VLAN management entries, add default routes, enable and disable forwarding of untagged packets, and configure the VLAN management ID. syntax: management Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 566: Configure Vlanfwd Management Add_Host

    > mac_address < MAC address > example: SR/configure/vlanfwd/management> add_host 101.12.2.1 network_01 11:22:33:44:55:66 related commands: configure vlanfwd management aging_interval configure vlanfwd management default_route configure vlanfwd management disable_ipfwd configure vlanfwd management ip_interface Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 567: Configure Vlanfwd Management Aging_Interval

    [ aging_interval < n > ] example: SR/configure/vlanfwd/management> aging_interval 30 related commands: configure vlanfwd management add_host configure vlanfwd management default_route configure vlanfwd management disable_ipfwd configure vlanfwd management ip_interface configure vlanfwd management vlanid applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 568: Configure Vlanfwd Management Default_Route

    All modules Note: Both the gateway and interface must be on the same subnet. configure vlanfwd management disable_ipfwd This command enables or disables the forwarding of untagged IP packets. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 569: Configure Vlanfwd Management Ip_Interface Address

    < ip address > net mask < netmask > example: SR/configure/vlanfwd/management/ip_interface> address 10.1.1.1 24 applies to: All modules configure vlanfwd management vlanid This command configures the VLAN management ID. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 570: Configure Vlanfwd Rem

    Comments will appear after using the save local command. parameter definition comments 80-character (maximum) string enclosed in quotation marks. syntax: REM comments < "comments" > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 571: Configure Vlanfwd Rem

    All modules configure vlanfwd vld_ether_type This command globally configures the vld Ethernet type for the system. Unless a specific vld_ether_type is configured on an interface, this value is inherited. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 572 Set Ethernet type to 41216 (0xa100) for VLAN domain frames. SR/configure/vlanfwd> vld_ether_type 41216 example 2: Set the Ethernet type to default for VLAN domain frames. SR/configure/vlanfwd> no vld_ether_type 41216 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 573: Debug All

    Accesses system-level debug commands. ttcp Accesses commands to configure the ttcp server and client. vlan Accesses Virtual Local Area Network (VLAN) debug commands. debug all debug all This command disables all current debugging. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 574: Debug Crypto

    All modules debug crypto all This command enables or disables all IPSec and firewall debugging. syntax: [ no ] all example: Router1/debug/crypto> all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 575: Debug Crypto Ipsec

    All modules debug crypto ipsec This command enables or disables IPSec debugging. parameter definition mode ipsec IPSec debugging This is the default SPD debugging All IPSec debugging syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 576: Debug Dhcp_Relay

    SR/dubug> dhcp_relay next-level commands debug dhcp_relay display_dhcp_table debug dhcp_relay display_hash_statistics debug dhcp_relay enable_debug applies to: All modules debug dhcp_relay display_dhcp_table This command dumps the contents of the client hash table. syntax: display_dhcp_table Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 577: Debug Dhcp_Relay Display_Hash_Statistics

    SR/debug/dhcp_relay> display_hash_statistics related commands: debug dhcp_relay display_dhcp_table debug dhcp_relay display enable_debug applies to: All modules debug dhcp_relay enable_debug This command enables printing of client/relay debug messages. syntax: enable_debug example: SR/debug/dhcp_relay> enable_debug Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 578: Debug Firewall

    [ no ] firewall mode < ad | algs | ipreasm | fwatk | iapstats | all > example: Router1/debug> firewall fwatk applies to: All modules debug fr This command accesses next-level frame relay debug commands. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 579: Debug Fr Bundle-Info

    SR/debug/fr> debug fr bundle-info related commands: debug fr pvc-info debug fr packet applies to: All modules debug fr displayifinfo This command shows frame relay interface debug information. syntax: displayifinfo example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 580: Debug Fr Displayvcinfo

    All modules debug fr mfr bundle-buffers This command accesses next-level frame relay debug commands. syntax: debug fr mfr bundle-buffers example: SR/debug> debug fr mfr bundle-buffers Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 581: Debug Fr Mfr State-Machine

    All modules debug fr mfr states This command accesses next-level frame relay debug commands. parameter definition bundle-name Specifies the name of the bundle. syntax: debug fr mfr state <bundle-name> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 582: Debug Fr Packet

    All modules debug fr packet inverse-arp This command accesses next-level commands to enable or disable packet-level debugging. syntax: debug fr packet inverse-arp example: SR/debug/fr> debug fr packet inverse-arp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 583: Debug Fr Packet Lmi

    SR/debug/fr/packet> debug fr packet lmi rx applies to: All modules debug fr packet mfr This command accesses next-level commands to enable or disable packet-level debugging. syntax: debug fr packet mfr example: SR/debug/fr> debug fr packet mfr Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 584: Debug Fr Pvc-Info

    All modules debug framer This command accesses next-level E1 framer commands. syntax: framer example: SR/debug> framer next-level commands debug framer bert debug framer displayStatus Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 585: Debug Framer Bert

    (2^11 -1) pattern 2^15 (2^15 -1) pattern 2^23 (2^23 -1) pattern 2^20 (2^20 -1) pattern 1in7 (1 in 7 ) pattern 1in3 (1 in 3) pattern QRSS QRSS pattern (default) syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 586: Debug Framer Displaystatus

    This command shows the framer status. syntax: displayStatus example: SR/debug/framer> displayStatus related commands: debug framer bert debug framer dumpRegister debug framer dumpRegisters debug framer loopInward debug framer loopPayload debug framer sendAllOnes debug framer sendIdleCode Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 587: Debug Framer Dumpregister

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 588: Debug Framer Dumpregisters

    All modules debug framer loopInward This command configures the framer for inward loopback. parameter definition link_no Specifies the link number The range is 1 - 16. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 589: Debug Framer Looppayload

    Specifies the link number The range is 1 - 16. syntax: loopPayload link_no < n > example: SR/debug/framer> loopPayload 2 related commands: debug framer bert debug framer displayStatus Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 590: Debug Framer Sendallones

    SR/debug/framer> sendAllOnes 2 related commands: debug framer bert debug framer displayStatus debug framer dumpRegister debug framer dumpRegisters debug framer loopInward debug framer loopPayload debug framer sendIdleCode debug framer sendYellowAlarm applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 591: Debug Framer Sendidlecode

    All modules debug framer sendYellowAlarm This command sends a yellow alarm on the specified link. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 592: Debug Ip

    All modules debug ip This command accesses next-level ip/ipmux debug commands. syntax: example: SR/debug> ip next-level commands debug ip arp debug ip bgp debug ip dhcps Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 593: Debug Ip Bgp

    All modules debug ip bgp This command accesses next-level BGP4 debug commands. syntax: example: SR/debug/ip> bgp next-level commands debug ip bgp all debug ip bgp events debug ip bgp neighbor Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 594: Debug Ip Bgp All

    This command enables or disables all BGP4 debug commands. syntax: example: SR/debug/ip/bgp> all applies to: All modules debug ip bgp events This command enables debugging of BGP4 events. syntax: events example: SR/debug/ip/bgp> events applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 595: Debug Ip Bgp Neighbor

    SR/debug/ip/bgp> neighbor 132.46.23.10 open inbound applies to: All modules debug ip bgp packet This command accesses next-level BGP4 packet debug commands. syntax: packet example: SR/debug/ip/bgp> packet next-level commands debug ip bgp packet all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 596: Debug Ip Bgp Packet All

    All modules debug ip bgp packet keepalive This command displays debug information about BGP4 keepalive packets. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 597: Debug Ip Bgp Packet Open

    Inbound packets outbound Outbound packets syntax: open [ direction < inbound | outbound > ] example: SR/debug/ip/bgp/packet> open inbound related commands: debug ip bgp packet all debug ip bgp packet keepalive Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 598: Debug Ip Bgp Packet Update

    All modules debug ip bgp policy This command displays debug information about BGP4 policy configuration. syntax: policy Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 599: Debug Ip Bgp Routes

    This command displays debug information about BGP4 state machine transitions. syntax: state example: SR/debug/ip/bgp> state applies to: All modules debug ip bgp tasks This command displays debug information about BGP4 tasks. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 600: Debug Ip Bgp Timers

    This command accesses next-level commands to enable or disable DHCP server debug commands. syntax: dhcps example: SR/debug/ip> dhcps next-level commands debug ip dhcps all debug ip dhcps error debug ip dhcps events debug ip dhcps packet Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 601: Debug Ip Dhcps All

    All modules debug ip dhcps error This command enables or disables DHCP server error debug messages. syntax: error example: SR/debug/ip/dhcps> error Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 602: Debug Ip Dhcps Events

    All modules debug ip dhcps packet This command enables or disables debug information about all DHCP packet messages. Specify detailed (voluminous) or summary (condensed) information display. syntax: packet [ mode ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 603: Debug Ip Dhcps State

    This command enables or disables debug information about all DHCP state transitions. syntax: state example: SR/debug/ip/dhcps> state related commands: debug ip dhcps all debug ip dhcps error debug ip dhcps events debug ip dhcps packet applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 604: Debug Ip Ospf

    All modules debug ip ospf all This command enables or disables debug messages for all OSPF events. Note: The router must be in routing mode to access this debug command. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 605: Debug Ip Ospf Database

    This command enables or disables debug messages relating to the OSPF database operation. Note: The router must be in routing mode to access this debug command. syntax: database example: SR/debug/ip> ospf database related commands: debug ip ospf all debug ip ospf dr_election Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 606: Debug Ip Ospf Dr_Election

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 607: Debug Ip Ospf Packet

    All modules debug ip ospf packet This command accesses next-level commands to enable or disable debug messages for OSPF packets. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 608: Debug Ip Ospf Packet All

    The router must be in routing mode to access this debug command. parameter definition direction Packet direction inbound Inbound packets outbound Outbound packets syntax: all [ direction < inbound | outbound > ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 609: Debug Ip Ospf Packet Dd

    SR/debug/ip> ospf packet dd related commands: debug ip ospf packet all debug ip ospf packet hello debug ip ospf packet ls_ack debug ip ospf packet ls_request debug ip ospf packet ls_update Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 610: Debug Ip Ospf Packet Hello

    All modules debug ip ospf packet ls_ack This command enables or disables debug messages for OSPF link state acknowledgement packets. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 611: Debug Ip Ospf Packet Ls_Request

    This command enables or disables debug messages for OSPF link state request packets. Note: The router must be in routing mode to access this debug command. parameter definition direction Packet direction inbound Inbound packets outbound Outbound packets Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 612: Debug Ip Ospf Packet Ls_Update

    Inbound packets outbound Outbound packets syntax: ls_update [ direction < inbound | outbound > ] example: SR/debug/ip> ospf packet ls_update related commands: debug ip ospf packet all debug ip ospf packet dd Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 613: Debug Ip Ospf Policy

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 614: Debug Ip Ospf Spf

    All modules debug ip ospf spf_timing This command enables or disables SPF timing measurement. Note: The router must be in routing mode to access this debug command. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 615: Debug Ip Ospf State_Changes

    The router must be in routing mode to access this debug command. syntax: state_changes example: SR/debug/ip> ospf state_changes related commands: debug ip ospf all debug ip ospf database debug ip ospf dr_election Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 616: Debug Ip Ospf Summary

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 617: Debug Ip Rip

    This command enables or disables all RIP debug commands. Note: The router must be in routing mode to access this debug command. syntax: [ no ] all example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 618: Debug Ip Rip Detail

    The router must be in routing mode to access this debug command. syntax: detail example: SR/debug/ip> rip detail related commands: debug ip rip all debug ip rip flood debug ip rip packet debug ip rip state applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 619: Debug Ip Rip Flood

    The router must be in routing mode to access this debug command. parameter definition pkt_type The RIP debug packet type All packets send Packets sent receive Packets received summary Summary of updates Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 620: Debug Ip Rip State

    The router must be in routing mode to access this debug command. syntax: state example: SR/debug/ip> rip state related commands: debug ip rip all debug ip rip detail debug ip rip flood Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 621: Debug Ip Statistics

    All modules debug ip statistics icmpshow This command displays icmp statistics. syntax: icmpshow example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 622: Debug Ip Statistics Ipmuxclear

    SR/debug/ip> statistics ipmuxclear related commands: debug ip statistics icmpshow debug ip statistics ipmuxshow debug ip statistics ipshow debug ip statistics rtshow debug ip statistics tcpshow debug ip statistics udpshow applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 623: Debug Ip Statistics Ipmuxshow

    This command shows ip debug statistics. syntax: statistics ipshow example: SR/debug/ip> statistics ipshow related commands: debug ip statistics icmpshow debug ip statistics ipmuxclear debug ip statistics ipmuxshow Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 624: Debug Ip Statistics Rtshow

    All modules debug ip tcpshow This command shows tcp debug statistics. syntax: tcpshow Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 625: Debug Ip Udpshow

    SR/debug/ip> statistics udpshow related commands: debug ip statistics icmpshow debug ip statistics ipmuxclear debug ip statistics ipmuxshow debug ip statistics ipshow debug ip statistics rtshow debug ip statistics tcpshow applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 626: Debug Ip Vrrp

    This command enables or disables all VRRP debug messages. Note: The router must be in routing mode to access this debug command. syntax: [ no ] all example: SR/debug/ip> vrrp all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 627: Debug Ip Vrrp Error

    All modules debug ip vrrp events This command enables or disables all VRRP events debug messages. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 628: Debug Ip Vrrp Packet

    The VRRP packet type All packets ARP packets send Sent packets recv Received packets syntax: packet < pkt_type all | arp | send | recv > example: SR/debug/ip> vrrp packet arp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 629: Debug Ip Vrrp State

    All modules debug lance This command accesses next-level Ethernet debug commands. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 630: Debug Lance Errclear

    This command clears lance errors. syntax: errclear example: SR/debug/lance> errclear related commands: debug lance errshow debug lance statshow applies to: All modules debug lance errshow This command displays lance errors. syntax: errshow Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 631: Debug Lance Statshow

    [ ethernet_number < 0 | 1 > ] example: SR/debug/lance> statshow related commands: debug lance errclear debug lance errshow applies to: All modules debug mhu This command accesses next-level commands to enable or disable MHU debug commands. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 632: Debug Mhu All

    This command enables or disables all MHU debug messages. syntax: example: SR/debug/mhu> all related commands: debug mhu cleanup debug mhu config debug mhu dhcp debug mhu disp_redirect_entries debug mhu filters Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 633: Debug Mhu Cleanup

    _host applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 634: Debug Mhu Config

    _host applies to: All modules debug mhu dhcp This command enables or disables MHU debug messages for dhcp. syntax: dhcp example: SR/debug/mhu> dhcp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 635: Debug Mhu Disp_Redirect_Entries

    SR/debug/mhu> disp_redirect_entries related commands: debug mhu all debug mhu cleanup debug mhu config debug mhu dhcp debug mhu filters debug mhu hash debug mhu redirect debug mhu snmp debug mhu static _host Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 636: Debug Mhu Filters

    _host applies to: All modules debug mhu hash This command displays the MHU hash table. syntax: hash example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 637: Debug Mhu Redirect

    SR/debug/mhu> redirect related commands: debug mhu all debug mhu cleanup debug mhu config debug mhu dhcp debug mhu disp_redirect_entries debug mhu filters debug mhu hash debug mhu snmp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 638: Debug Mhu Snmp

    _host applies to: All modules debug mhu static_host This command enables or disables MHU debug messages for static hosts. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 639: Debug Nat

    All modules debug nat This command accesses next-level commands to enable or disable NAT debug commands. syntax: example: SR/debug> nat next-level commands debug nat global debug nat interface applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 640: Debug Nat Ethernet

    This command enables or disables internal NAT debug messages to the console. syntax: debug example: SR/debug/nat/interface etherent 0> debug related commands: debug nat ethernet hash debug nat ethernet packet applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 641: Debug Nat Ethernet Hash

    This command enables or disables NAT Ethernet packet debug messages to the management console. syntax: packet example: SR/debug/nat/interface etherent 0> packet related commands: debug nat ethernet debug debug nat ethernet hash applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 642: Debug Nat Global

    This command enables or disables internal NAT debug messages to the management console. syntax: debug example: SR/debug/nat/global> debug related commands: debug nat global hash debug nat global packet applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 643: Debug Nat Global Hash

    This command enables or disables NAT packet debug messages to the management console. syntax: packet example: SR/debug/nat/global> packet related commands: debug nat global debug debug nat global hash applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 644: Debug Nat Interface

    Use a maximum of eight characters. For frame relay bundles, use: bundle_name:pvc. syntax: bundle < bundle_name > example: SR/debug/nat/interface> bundle northwest next-level commands debug nat interface bundle debug debug nat interface bundle hash Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 645: Debug Nat Interface Bundle Debug

    This command dumps the NAT hash table to the management console. syntax: hash example: SR/debug/nat/interface/bundle northwest> hash related commands: debug nat interface bundle debug debug nat interface bundle packet applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 646: Debug Nat Interface Bundle Packet

    Next-level commands: access-list capture clean-up clear-stats dump enable max-sessions saveto show-config stats upload Applicable models: All models debug pcap access-list This command creates or modifies the IP access list Syntax: pcap <capname> access-list [add | insert | delete] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 647: Debug Pcap Clean-Up

    Syntax: pcap <capname> clear-stats Example: SR/debug/pcap test> clear-stats Applicable models: All models debug pcap dump This command displays the packet capture dump. Syntax: pcap <capname> dump Example: SR/debug/pcap test> dump Applicable models: All models Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 648: Debug Pcap Enable

    This command saves captured packets to a local file. Syntax: pcap <capname> saveto <filename> Parameter Description filename the filename for captured packets Example: SR/debug/pcap test> saveto test.log Applicable models: All models Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 649: Debug Pcap Show-Config

    IP address of the remote host Example: SR/debug/pcap test> upload 10.10.10.1 Applicable models: All models debug pcap capture This command accesses next-level pcap capture commands. Syntax: debug pcap capture <capname> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 650: Debug Pcap Capture Clear-Stats

    The number of packets to be captured. Syntax: pcap capture count [cnt] Parameter Description Number of packets to be captured. Valid range is 0 (all packets) to 10000 Example: SR/debug/pcap/capture count 9500 Applicable models: All models Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 651: Debug Pcap Capture Direction

    This command displays the packet capture dump. Syntax: pcap capture dump Example: SR/debug/pcap/capture> dump Applicable models: All models debug pcap capture filter The ACL applied for capturing packets on this interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 652: Debug Pcap Capture Show-Config

    Size of the packet capture buffer. Valid range: 64-5120KB Example: SR/debug/pcap/capture> size 64 Applicable models: All models debug pcap capture snaplen Sets the number of bytes to be captured. Syntax: pcap capture snaplen [lenpkt] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 653: Debug Pcap Capture Stats

    Syntax: pcap capture wrap Example: SR/debug/pcap/capture> wrap Applicable models: All models debug ppp This command accesses next-level commands to enable or disable PPP debug messages. syntax: example: SR/debug> ppp next-level commands debug ppp bcp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 654: Debug Ppp Bcp

    All modules debug ppp debug_link This command provides the ability to enable link level debugging on a per-link basis when multiple PPP/MLPPP bundles are configured. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 655: Debug Ppp Ipcp

    [ no ] debug_link link_num < n > example: SR/debug> ppp debug_link 00010001 applies to: All modules debug ppp ipcp This command shows IPCP debug information. syntax: ipcp example: SR/debug/ppp> ipcp related commands: debug ppp bcp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 656: Debug Ppp Lcp

    All modules debug ppp mlpinfo This command shows MLPPP information for a specified bundle. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 657: Debug Ppp Negotiation

    This command shows PPP the debug information associated with PPP negotiation (LCP/IPCP/ BCP). syntax: negotiation example: SR/debug/ppp> negotiation related commands: debug ppp bcp debug ppp ipcp debug ppp icp debug ppp mlpinfo debug ppp pppstates Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 658: Debug Qos

    All modules debug qos This command accesses next-level commands for debugging QoS functionality. syntax: example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 659: Debug Qos Buf_Mgmt_Info

    For frame relay, the pvc number syntax: buf_mgmt_info [ bundle_name < name > ] [ pvc < number > ] example 1: SR/debug/qos> buf_mgmt_info example 2: SR/debug/qos> buf_mgmt_info bundle wan1 example 3: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 660: Debug Qos Clear_Buf_Overruns

    SR/debug/qos> clear_buf_overruns related commands: debug qos buf_mgmt_info debug qos clear_sch_info debug qos clear_upload_counters debug qos hist_stats_upload_info debug qos show_buf_overruns debug qos show_intf_qos_info debug qos show_sch_info debug qos show_sch_list applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 661: Debug Qos Clear_Sch_Info

    All modules debug qos clear_upload_counters This command clears debug statistics related to uploading of historical statistics. syntax: clear_upload_counters example: SR/debug/qos> clear_upload_counters Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 662: Debug Qos Hist_Stats_Upload_Info

    SR/debug/qos> hist_stats_upload_info related commands: debug qos buf_mgmt_info debug qos clear_buf_overruns debug qos clear_sch_info debug qos clear_upload_counters debug qos show_buf_overruns debug qos show_intf_qos_info debug qos show_sch_info debug qos show_sch_list applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 663: Debug Qos Show_Buf_Overruns

    All modules debug qos show_intf_qos_info This command shows debug QoS configuration information for the interface. It displays "root class" information, the interface class list, and other details. syntax: show_intf_qos_info example: SR/debug/qos> show_intf_qos_info Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 664: Debug Qos Show_Sch_Info

    SR/debug/qos> show_sch_info related commands: debug qos buf_mgmt_info debug qos clear_buf_overruns debug qos clear_sch_info debug qos clear_upload_counters debug qos hist_stats_upload_info debug qos show_buf_overruns debug qos show_intf_qos_info debug qos show_sch_list Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 665: Debug Qos Show_Sch_List

    All modules debug rtp This command accesses next-level commands display RTP debug information. syntax: example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 666: Debug Rtp Rxtable

    All modules debug rtp statistics This command displays RTP statistics for the specified bundle interface. syntax: statistics interface < name > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 667: Debug Rtp Tables

    All modules debug rtp txtable This command displays the transmit table for the specified bundle interface. syntax: txtable interface < name > example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 668: Debug System

    All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 669: Debug System Clear_Crash_Dump

    All modules debug system clear_stats This command clears T1/T3 statistics. parameter definition slot_num Specify the slot number for the interface. syntax: clear_stats slot_num < 1 | 2 > example: SR/debug/system> clear_stats Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 670: Debug System Datapool_Display

    SR/debug/system> datapool_display related commands: debug system clear_crash_dump debug system clear_stats debug system display_overwrite_crash_dump debug system overwrite_crash_dump debug system print_stats debug system show_crash debug system stackpool_display applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 671: Debug System Display_Loaned_Common_Buffer

    This command displays the status of the overwrite crash dump. syntax: display_overwrite_crash_dump example: SR/debug/system> display_overwrite_crash_dump related commands: debug system clear_crash_dump debug system clear_stats debug system datapool_display debug system overwrite_crash_dump debug system print_stats debug system show_crash debug system stackpool_display Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 672: Debug System Overwrite_Crash_Dump

    All modules debug system print_stats This command shows T1/T3 statistics. syntax: print_stats slot_num < 1 | 2 > example: SR/debug/system> print_stats Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 673: Debug System Show_Crash

    [ info < detail | summary > ] example: SR/debug/system> show_crash detail related commands: debug system clear_crash_dump debug system clear_stats debug system datapool_display debug system display_overwrite_crash_dump debug system overwrite_crash_dump debug system print_stats Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 674: Debug System Stackpool_Display

    All modules debug ttcp This command accesses next-level commands to configure and debug the ttcp client and server. syntax: ttcp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 675: Debug Ttcp Ttcpclient

    < ip address > [ buflen < n > ] [ nbuf < n > ] [ bufalign < n > ] [ bufoffset < n > ] [ port < n > ] [ mode < sink | source > ] [ delay < n > ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 676: Debug Ttcp Ttcpserver

    [ buflen < n > ] [ bufalign < n > ] [ bufoffset < n > ] [ port < n > ] [ mode < sink | source > ] [ rcvwindsize < n > ] example: SR/debug/ttcp> ttcpserver bufoffset 1 next-level commands debug ttcp ttcpclient Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 677: Debug Virtual-Access Ppp

    T1, E1 module debug virtual-access pppoe This command provides diagnostic information on PPPoE processes. syntax: virtual-access pppoe example: SR/debug> virtual-access pppoe next-level commands debug virtual-access ppp applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 678: Debug Vlan

    All modules debug vlan vlanclear This command clears VLAN statistics. syntax: vlanclear example: SR/debug/vlan> vlanclear related commands: debug vlan vlanshow debug vlan vlantable debug vlan vlantagtable applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 679: Debug Vlan Vlanshow

    All modules debug vlan vlantable This command shows the VLAN forwarding table. syntax: vlantable example: SR/debug/vlan> vlantable related commands: debug vlan vlanclear debug vlan vlanshow debug vlan vlantagtable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 680: Debug Vlan Vlantagtable

    All modules debug vlan vlantagtable This command shows the VLAN tagged interfaces. syntax: vlantagtable example: SR/debug> vlantagtable related commands: debug vlan vlanclear debug vlan vlanshow debug vlan vlantable applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 681: Chapter 7: Dhcp

    This command configures the giaddr field of dhcp relayed packets. If not specified, the giaddr field is marked with the IP address of interface. Use the no form of this command to remove the configured gateway address. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 682: Configure Interface Ethernet Dhcp Server_Address

    SR/configure/interface ethernet 1/0> dhcp server_address 120.5.4.3 This example configures the server IP address 120.5.4.3 for dhcp relayed packets on Ethernet related commands: configure interface ethernet dhcp gateway_address applies to: All systems. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 683: Show Dhcp_Relay

    This command displays the relay state of the Ethernet interfaces. syntax: show dhcp_relay example: SR> show dhcp_relay This example shows the packet relay state for Ethernet interfaces as either enabled or disabled. applies to: All systems. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 684 DHCP Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 685: Chapter 8: Exit

    If you enter exit at the Router-T1> prompt, press either y to exit the system CLI or n to return to the Router-T1> prompt. applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 686: Shutdown

    EXIT shutdown Shuts down the router and terminates all processes. User connections to the router are terminated. syntax: shutdown example: SR> shutdown applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 687: Chapter 9: File

    IC or NCM modules. The file commands are not available to level 3 and level 4 users. Displays the contents of system flash. The command is equivalent to file ls. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 688: File Copy

    3-5 minutes per megabytes of data. Specify compact flash with /cf0 in the path name. Specify system flash with /flash1. Specify USB memory with /USB0. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 689: File Copy_Boot

    File name in flash file system syntax: copy_boot srcfile < name > [ slot_no < 0 | 1 | 2 > ] example: SR> file copy_boot bimage.bin applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 690: File Download

    This command formats main flash or compact flash. Specify compact flash with /cf0 in the path name. Specify system flash with /flash1. Specify USB memory with /USB0. syntax: format example: SR> file format applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 691: File Invalidate_Boot

    /cf0 CONTENTS OF /cf0: size date time name -------- ------ ------ -------- 1813 JAN-12-2005 15:18:00 system.cfg Total bytes: 1813 Bytes Free on /cf0: 63807488 related commands: applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 692: File Rename

    [ slot_no < 0 | 1 | 2 > ] parameter definition file_name The name of the file to be deleted. example: SR> file rm conf.bin 1 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 693: File Upload

    SR> file show_boot applies to: All modules file upload This command uploads files from an Avaya Secure Router 3120 to a network host. These commands use the TFTP protocol. syntax: upload example: SR> file upload next-level commands...

  • Page 694: File Upload Flash_File

    < IP address > srcfile < name > destfile < name > example: SR> file flash_file 10.2.200.1 system.cfg config01.cfg related commands: file upload event_log applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 695: File Version

    /cf0 in the path name. Specify system flash with /flash1. Specify USB memory with / USB0. syntax: version example: SR> file version related commands: show version applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 696 FILE Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 697: Chapter 10: Filter List

    Use comparison symbols to specify ports as follows: Port number p, where n is 1- 65535. Excludes port p. >p Any port number greater than p Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 698 Allows a logging message to be reported to the user when a rule match occurs (optional). Log the matching packet on. Log the matching packet off (default). expire The amount of time (in seconds) before a rule expires. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 699: Syntax For Tcp

    | any destination < IP address > [ / < wildcard > ] | any [ precedence < 0 - 7 > ] [ tos < 0 - 15 > ] [ log < on | off > ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 700: Configure Ip Access-List Delete

    The line number of a specific rule set The range is 1 - 65535. syntax: delete rul_lineno < n > example: SR/configure/ip/access-list Rules_01> delete 3 related commands: configure ip access-list add configure ip access-list insert Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 701: Configure Ip Access-List Insert

    Optional entry for TCP and UDP protocols; allows the source port to be used for packet filtering. Use comparison symbols to specify ports as follows: Port number p, where n is 1- 65535. Excludes port p. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 702 The range is 0 - 15. Allows a logging message to be reported to the user when a rule match occurs (optional). Log the matching packet on. Log the matching packet off (default) Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 703: Syntax For Tcp

    4 tos 6 The example above inserts a new rule, 4, behind existing rule 3 in the rule set. It also increments the line numbers of all successive rules in that set. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 704 FILTER LIST related commands: configure ip access-list add configure ip access-list delete applies to: All systems. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 705: Interface Tunnel

    Chapter 11: GENERIC ROUTING ENCAPSULATION COMMANDS Use the Generic Routing Encapsulation (GRE) commands to configure an tunnel interface on an Avaya Secure Router 3120. interface tunnel Names a tunnel interface. syntax: tunnel_name parameter definition tunnel_name Names can be up to eight characters in length...

  • Page 706: Chapter 11: Generic Routing Encapsulation Commands

    All modules interface tunnel tunnel destination Configures the IP address for the tunnel destination. The tunnel destination cannot be a point- to-point interface peer. It should be reachable through a physical interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 707: Interface Tunnel Tunnel Source

    The IP address for the end of the tunnel. example: To set the source IP address of the tunnel mainpipe to be 10.10.40.10, enter: SR/configure/interface/tunnel mainpipe> tunnel source 10.10.40.10 SR/configure/interface/ tunnel mainpipe> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 708: Interface Tunnel Keepalive

    Router to drop corrupted packets. To disable checksum use no tunnel checksum. syntax: [no] tunnel checksum example: To enable checksum tests on all traffic through the tunnel, enter: SR/configure/interface/tunnel mainpipe> tunnel checksum SR/configure/interface/tunnel mainpipe> applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 709: Interface Tunnel Tunnel Key

    Configure the tunnel encapsulation mode. syntax: [no] tunnel mode mode parameter definition mode The encapsulation method. Can be either GRE (the default) or IPIP (IP over IP). example: To configure GRE encapsulation, enter: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 710: Interface Tunnel Tunnel Protection

    Configures a tunnel interface to drop out-of-order datagrams. This command is turned off by default. Once enabled, use no tunnel sequence to disable. This command is included to provide compatibility with Cisco Systems. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 711: Interface Tunnel Tunnel Ttl

    Configures the Type of Service (ToS) value for the tunnel interface. If the ToS value is not specified, the ToS value of the inner IP header is copied to the GRE-IP header. Use the no form to disable this command. syntax: [no] tunnel tos <tosvalue> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 712: Interface Tunnel Crypto

    To enable the mainpipe tunnel interface for, trusted networks, enter: SR/configure/interface/tunnel mainpipe> crypto trusted SR/configure/interface/tunnel mainpipe> applies to: All modules interface tunnel ip Configures the behavior of Internet Protocol over the tunnel. syntax: [no] ip [redirect | unreachable] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 713: Interface Tunnel Shutdown

    To configure the mainpipe tunnel interface to be available or to restart it after stopping it, enter: SR/configure/interface/tunnel mainpipe> no shutdown To stop this interface, enter: SR/configure/interface/tunnel mainpipe> shutdown Remember that IP routes must be configured before the tunnel can pass traffic. applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 714: Show Ip Interfaces

    Destination Address: 192.169.125.10 Gateway: not available Protocol: IPIP TTL: 45 TOS: 100 Key Value: 884452 Checksum: enabled Sequence Datagrams: enabled Path MTU Discovery: enabled Mac Address: 00:00:23:00:60:03 SR/configure/interface/tunnel mainpipe> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 715: Show Interface Tunnels

    All modules clear counters tunnel Resets the tunnel counters to null. To clear all tunnel counters, use clear counters tunnels. syntax: tunnel tunnel_name parameter definition tunnel_name Specifies which tunnel counters to reset. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 716: Debug Ip Tunnel

    To set a debug keepalive process on all tunnels, enter: SR> debug ip tunnel keepalive SR> To debug all traffic on all tunnels, enter: SR> debug ip tunnel all SR> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 717: Chapter 12: Ipsec Commands

    Chapter 12: IPSEC COMMANDS Use the IPSec commands to configure an Avaya Secure Router 3120 with IP security protocol encryption. This is the recommended protection for networking communications. crypto Enters crypto mode and provides access to commands used in Router's IPSec VPN feature.

  • Page 718: Crypto Ike Policy

    Any valid local IP address. If no local interface is configured with this address, command execution will be failed. Default: None. example: SR> configure term SR/configure> crypto SR/crypto/ike> ike policy ToNetSc1 100.1.1.2 SR/crypto/ike/policy ToNetSc1> local-address 100.1.1.1 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 719: Crypto Ike Policy Local-Id

    [no] configure crypto ike policy <policy-name> <peer-address> remote-id remote-id-type data parameter definition [domain-name] Specifies a fully-qualified domain name string like [Router.com.] [emailid] Specifies a fully-qualified user name string, as per RFC 822, like [name@Router.com.] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 720: Crypto Ike Policy Mode

    Configures Perfect Forward Secrecy feature for an IKE policy. To reset the mode to the default value, use the no form. syntax: [no] configure crypto ike policy <policy-name><peer-address> pfs Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 721: Crypto Ike Policy Exchange-Type

    This policy is capable of responding to IKE negotiation, also it can initiate ike negotiation process. Default: both example: SR> configure term SR/configure> crypto SR/crypto/ike> policy ToNetSc1 100.1.1.2 SR/crypto/ike/policy ToNetSc1> exchange-type initiator-only applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 722: Crypto Ike Policy Key

    [no] configure crypto ike policy <policy-name><peer-address> proposal <proposal-priority> parameter definition <proposal-priority> Valid values are: 1-5. example: SR> configure term SR/configure> crypto SR/configure/crypto> ike policy toOpal 100.1.1.2 SR/crypto/ike/policy> proposal 1 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 723: Crypto Ike Policy Proposal Hash-Algorithm

    RSA and DSS are not supported in this release. example: SR> configure term SR/configure> crypto SR/configure/crypto> ike policy toOpal 100.1.1.1 SR/crypto/ike/policy toOpal 100.1.1.1> proposal 1 SR/crypto/ike/policy toOpal 100.1.1.1> authentication-method dss-signature applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 724: Crypto Ike Policy Proposal Dh-Group

    [des-cbc | 3des-cbc | aes128-cbc | aes192-cbc | aes256-cbc] parameter definition des-cbc . Data Encryption Standard algorithm with cipher block chaining mode. Default. 3des-cbc Triple DES algorithm with cipher block chaining. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 725: Crypto Ike Policy Proposal Hash-Algorithm

    SA or terminated. To reset the lifetime to the default value, use the no form. syntax: [no] configure crypto ike policy <policy-name> <peer-address> proposal <proposal priority> lifetime [seconds <secs> | kilobytes <kb>] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 726: Crypto Ipsec

    Define an IPSec policy for a dynamic IPSec SA. syntax: [no] configure crypto ipsec policy <policy-name> parameter definition <policy-name> Specifies an IPSec policy name. 1-8 characters. example: SR> configure term SR/configure> crypto SR/crypto/ipsec> policy ToNetSc1 100.1.1.2 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 727: Crypto Ipsec Policy Anti-Replay

    [sport <port-val>] - the source port number [dport <port-val>] - the destination port number example: SR> configure term SR/configure> crypto SR/crypto> ipsec policy ToNetSc1 100.1.1.1 SR/crypto/ipsec/policy ToNetSc1> match address 10.1.1.0 24 20.1.1.0 24 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 728: Crypto Ipsec Policy Enable

    1536-bit. Type of Diffie-Hellman prime modulus group that IKE will use for the PFS key exchange. This is the highest level of security and requires more process time than group 1 and group Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 729: Crypto Ipsec Policy Proposal

    Configures the IPSec authentication algorithm for a given proposal. To reset the authentication algorithm to the default value, use the no form. syntax: [no] configure crypto ipsec policy <name> <peer-address> proposal <priority> [protocol] hash- algorithm [md5-hmac | sha1-hmac] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 730: Crypto Ipsec Policy Proposal Encryption-Algorithm

    192-bit Advanced Encryption Standard. aes-256cbc 256-bit Advanced Encryption Standard. example: SR> configure term SR/configure> crypto SR/crypto> ipsec policy toOpal 100.1.1.1 SR/crypto/ipsec> proposal 1 SR/crypto/ipsec/proposal toOpal> encryption-algorithm 3des-cbc applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 731: Crypto Ipsec Policy Proposal

    IP address. The protection is offered for the complete packet. The default. transport Transport mode configuration. In transport mode, the old IP address will be retained and the hash (incase of AH) will be Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 732 The protection is offered only for the pay load. example: SR> configure term SR/configure> crypto SR/crypto> ipsec toOpal 100.1.1.1 SR/ crypto/ipsec> proposal 1 SR/crypto/ipsec/proposal 1> mode transport applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 733: Chapter 13: Isdn

    Switch type details are: User Side Network Side Variant Country CCITT World 4ESS ATT - North America 5ESS ATT - North America NT DMS 100 Avaya - North America France France Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 734: Bundle

    CCITT Management Functional Protocol CCITT applies to: T1, E1 module bundle Creates a logical bundle with "bundle-name". "no" form of this command will remove the logical bundle. syntax: bundle <bundle-name> <cr> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 735: Link Bri

    To add 64 kbps bri link to the bundle "wan1", execute the following command: SR/configure/interface bundle wan1/link bri 64 applies to: T1, E1 module isdn Configures the bundle with ISDN parameters. This is a command sub-tree. syntax: isdn Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 736: Spid1

    Configures the ISDN service profile identifier for BRI channel 2. SPID is used for defining the services subscribed by ISDN device. All the switch types don't support SPID. SPID is Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 737: Keep-Alive

    Valid range is 6000 - 60000 ms. example: To configure the LAPD keep alive time to 6000 milliseconds, execute the following command: SR/configure/interface bundle wan1/isdn/ keep-alive 6000 applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 738: Caller

    Note that, when ISDN device is connected to ISDN switch, which doesn't supply caller ID, all calls will be rejected. "no" form of this command will make all calls acceptable without Caller ID Check. syntax: caller <caller-number> <cr> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 739: Callednum

    A number limited to a maximum of 10 digits. example: To configure the bundle "wan1" with called number "1234567", execute the following command: SR/configure/interface bundle wan1/isdn/ callednum 1234567 applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 740: Answer1

    Letter X is the wildcard, whenever specified, will be replaced by the range of numbers 0 to 9. Note: Wild card support is planned for a future release. applies to:. T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 741: Answer2

    "1234569", execute the following command: SR/configure/interface bundle wan1/isdn/ answer1 called-party-number 123456X Letter X is the wildcard, whenever specified, will be replaced by the range of numbers 0 to 9. applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 742: Disconnect-Cause

    <username> password <password> <cr> parameter definition COMMANDS Any of the following commands can be used username -- configures chap username for PPP/MLPPP bundle password -- configures chap password for PPP/MLPPP bundle example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 743: Idle-Timeout

    To configure ISDN idle timeout for 10 minutes, execute the following command: SR/configure/interface bundle wan1/ isdn/ idle-timeout 10 Note: Due to the performance tuning, the idle-timer may not disconnect exactly at the specified timeout value. applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 744: Connect-Delay

    If call is active, "shutdown" will tear down the call. applies to: T1, E1 module show interface bundle Existing show interface bundle command will display the ISDN bundle related information. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 745: Show Interface Bundles

    Displays the switch-type configured and ISDN BRI interfaces on the router. syntax: show isdn global <cr> parameter definition global Displays ISDN global information. example: To see ISDN global information, enter: SR> show isdn global applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 746: Show Isdn Interfaces

    Controls ICMP traffic processing for unreachable destinations. example: To see the BRI interface related information for bundle "isdn1", execute the following command: SR>show isdn interface isdn1 applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 747: Show Isdn Statistics

    T1, E1 module clear isdn statistics Clears the BRI statistics information syntax: statistics <cr> example: To clear the BRI statistics, execute the following command: SR>clear isdn statistics applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 748: Debug Isdn

    SR> debug isdn all applies to: T1, E1 module debug ppp auth Debug authentication phase in (ML) PPP. syntax: auth [interface-name] <cr> parameter definition interface-name The name of the bundle. applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 749 T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 750 ISDN Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 751: Chapter 14: Multicast Commands

    Chapter 14: MULTICAST COMMANDS This chapter explains how to use the multicast commands in the 8.0 CLI. Use the multicast commands to configure an Avaya Secure Router 3120 for mtrace, Internet Group Management Protocol (IGMP), and sparse mode Protocol Independent Multicast (PIM).

  • Page 752: Ip Igmp Ignore-V2-Messages

    The default is: robustness value. Use the no form of the configuration to return to the default lastmember-query-count value. Note: Specifying a value in the no form has no effect on the configuration syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 753: Ip Igmp Last-Member-Query-Interval

    Specifies the value of the query interval in seconds. The Query Interval is the interval between General Queries sent by the Querier. It is encoded in the Query Interval Code (QQIC) field of Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 754: Ip Igmp Query-Response-Interval

    Specifying a value for time-seconds in the no form has no effect on the configuration. syntax: [no] ip igmp query-response-interval time-seconds parameter definition time-seconds 1 and 3174 seconds Note: This value must be less than or equal to the Query Interval. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 755: Ip Igmp Require-Router-Alert

    [no] ip igmp require-router-alert example: The following example turns require-router-alert on for interface ethernet0 and off for all other interfaces. SR/configure/ip/igmp/interface ethernet 1/0> require-router-alert SR/configure/ip/igmp/ interface ethernet 1/0> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 756: Ip Igmp Robustness

    This command is enabled by default. syntax: [no] ip igmp send-router-alert example: The following example turns the send-router-alert option on for ethernet1. SR/configure/ip/igmp/interface ethernet 1/1> send-router-alert SR/configure/ip/igmp/ interface ethernet 1/1> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 757: Ip Igmp Startup-Query-Count

    3376.) This value is encoded in the Max Resp Code field of Query messages. Use the no form of this configuration to return to the default value of Startup Query Interval. syntax: [no] ip igmp startup-query-interval time Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 758: Ip Igmp Version

    With the group address specified, clears the group regardless of the interface where the information came: syntax: [no ] clear ip igmp groups [interface <name>] [group-addr <addr>] [source-addr <source- addr> ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 759: Debug Ip Igmp All

    All modules debug ip igmp normal Enables all levels of diagnostics on IGMP. syntax: [no] ip igmp normal example: The following debugs normal IGMP traffic: SR/debug> ip igmp normal Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 760: Debug Ip Igmp Packet Query

    [no] ip igmp packet report [inbound | outbound] parameter definition inbound Debugs inbound report packets. outbound Debugs outbound report packets. example: The following debugs outbound report packets: SR/debug> ip igmp packet report outbound Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 761: Debug Ip Igmp Packet Leave

    Enables all levels of diagnostics on IGMP state-related events. syntax: [no] ip igmp state example: The following debugs IGMP state events: SR/debug> ip igmp state applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 762: Show Ip Igmp Groups

    SR/configure/ip/igmp> show ip igmp interface all IGMP interface ethernet 1/0 information interface: ethernet0 10.10.10.1/24, owner: IGMPV3 Querier: 10.10.10.1 (this system) Version: 2 Query Interval: 60 secs Query Response Interval: 300 secs Last member Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 763: Mtrace

    SR> mtrace 192.168.0.0 192.168.2.22 239.254.254.254 Mtrace from 192.168.2.0 to 192.168.2.22 via group 225.254.254.254 Querying full reverse path... 192.168.2.15 PIM thresh^ 0 0 ms 192.168.2.7 PIM thresh^ 0 2 ms 192.168.2.5 PIM thresh^ 0 674 ms Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 764: Multicast Commands

    Configures the router to do load splitting of multicast traffic over equal cost paths. By default, multipath is enabled with Highest Random Weight (HRW) method. Use the no form of the command to disable multipath. Enabling multipath without specifying the mode, enables Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 765: Configure Ip Multicast Static Interface Group

    Specifies the name of the interface, for example, ethernet1. group-addr Specifies the group address multicast address. source-addr Specifies the IP address of the source. example: The following example shows how to configure a static group membership. SR/configure/ip/multicast> static SR/configure/ip/multicast/static> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 766: Avaya Secure Router 3120 Command Reference Guide December

    This command displays the Multicast Forwarding Cache (MFC). Specifying a source and group address displays only the specific entry along with traffic statistics for it. syntax: show ip mfc [source <ip-address>] [group <ip-address>] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 767: Show Ip Mroute

    It displays the RPF interface, the unicast route and the associated unicast routing protocol. syntax: show ip rpf <ip-address> example: The following example shows how to see the reverse path forwarding information for the RP at 201.1.1.99: SR> show ip rpf 201.1.1.99 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 768: Clear Ip Multicast Vif-Statistics

    Clears traffic statistics associated with an MFC entry. syntax: clear ip mfc-statistics [group <ip-address>] [gmask <ip-mask>] [source <ip-address>] [smask <ip-mask>] example: SR> clear ip mfc-statistics group 229.1.1.1 source 10.1.6.9 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 769: Protocol Independent Multicast

    (*,G) or (S, G) entry, as specified by the message. The lifetime of this modification is specified by this command. If another Assert message does not refresh the Assert state before the lifetime expires, then the outgoing interface list reverts to its previous Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 770: Ip Pim Cbsr Interface

    All modules ip pim cbsr interface Sets the CBSR interface. Use the no form of this command to remove the configured bsr interface. syntax: [no] interface name [ dlci ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 771: Ip Pim Cbsr Holdtime

    SR/configure/ip/pim/cbsr> holdtime 33 SR/configure/ip/pim/cbsr> applies to: All modules ip pim cbsr period set the interval between originating bootstrap messages. (default:60). Use the no form of this command to set the default value. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 772: Ip Pim Cbsr Priority

    A set of routers within a domain are configured as candidate Rendezvous Points (C-RPs). This command configures the PIM router as a candidate RP for the group(s). This is a mode command and enters the CRP mode. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 773: Ip Pim Crp Interface

    Sets the group to advertise for candidate RP. Use the no form of this command to remove a group for CRP advertisement. syntax: [no] group-add address [ mask ] [ priority ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 774: Ip Pim Crp Holdtime

    [no] holdtime time parameter definition time The CRP holdtime in seconds. Valid range is: 1—65535 example: To set the holdtime to 200 seconds, enter: SR/configure/ip/pim/crp> holdtime 200 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 775: Ip Pim Crp Period

    CRP (default: 0). Use the no form of this command to set the default value. syntax: [no] priority number parameter definition value Default CRP priority. Valid range is: 0—255. example: To set the CRP priority to 45, enter: SR/configure/ip/pim/crp> priority 45 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 776: Ip Pim Hello-Holdtime

    The length of time to wait before sending out another hello message. Valid range is: 1—65535 seconds. example: To set the hello interval time to 145 seconds, enter: SR/configure/ip/pim> hello-interval 145 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 777: Ip Pim Hello-Priority

    The name (ethernet0, ethernet1 or bundle name) of the interface. dlci The data link connection identifier of the PVC. Valid range is 16-1022. example: To configure ethernet1 for PIM, enter: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 778: Ip Pim Interface Mode

    The hello hold time in seconds. Valid range is: 0—65535 example: To configure the hello holdtime to be 35 seconds, enter: SR/configure/ip/pim/interface ethernet 1/1> hello-holdtime 35 SR/configure/ip/pim/interface ethernet 1/1> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 779: Ip Pim Interface Hello-Interval

    [no] hello-priority priority parameter definition priority The hello priority. Valid range is: 1—4294967295 example: To set the hello priority, enter: SR/configure/ip/pim/interface ethernet 1/1> hello-priority 12 SR/configure/ip/pim/interface ethernet 1/1> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 780: Ip Pim Interface Join-Prune-Holdtime

    [no] join-prune-interval interval parameter definition interval The join-prune interval in seconds. Valid range is: 0—65535. example: To set the interval to two minutes, enter: SR/configure/ip/pim/interface ethernet 1/1> join-prune-interval 120 SR/configure/ip/pim/ interface ethernet 1/1> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 781: Ip Pim Interface Boundary

    The holdtime (in seconds) that is advertised in join/prune messages. Valid range is: 1— 65535 seconds. example: To set the holdtime to 30 seconds, enter: SR/configure/ip/pim> join-prune-holdtime 30 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 782: Ip Pim Join-Prune-Interval

    The mode of PIM used on the router. Mode takes two options, sparse to configure sparse mode, and dense which is not supported in this release. example: To configure the router for sparse mode PIM, enter: SR/configure/ip/pim> mode applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 783: Ip Pim Mrt-Period

    [no] ip pim mrt-spt-mult number parameter definition number an integer between 1 and 100 example: The following example configures the MRT SPT Mult value to be 25. SR/configure/ip/pim> mrt-spt-mult 25 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 784: Ip Pim Mrt-Stale-Mult

    Register message to the RP. Valid range is: 1—3600 seconds. The default is 5 seconds. example: The following example configures the probe period to 30 seconds. SR/configure/ip/pim> probe-period 30 SR/configure/ip/pim> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 785: Ip Pim Register-Suppress-Timeout

    Sets the static Rendezvous Point router address. Use the no form of this command to remove the configured static RP address. syntax: [no] rp address [ group-address ] [ group-mask ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 786: Ip Pim Rp-Switch-Immediate

    To turn on this feature, enter: SR/configure/ip/pim> rp-switch-immediate applies to: All modules ip pim ssm-range Configures a range of multicast addresses to be treated as SSM group addresses. (Default is 232/8). Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 787: Ip Pim Threshold-Dr

    To configure this router such that the data from S addressed to G must exceed an average of 1024 KBytes per second before an SPT switch is initiated, enter: SR/configure/ip/pim> threshold-dr 1024 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 788: Ip Pim Threshold-Rp

    [no] ip pim whole-pkt-checksum example: To specify that the message checksum will be calculated over the entire encapsulated packet, rather than just over the Register message header, enter: SR/configure/ip/pim> whole-packet-checksum applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 789: Show Ip Pim Global

    Specifies the interface. Use the keyword all to see information about all the PIM interfaces. detail The detail mode of the display. example: To see information for all interfaces, enter: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 790: Show Ip Pim Neighbors

    Displays PIM Rendezvous Point information. syntax: example: To see RP information, enter: SR/configure> show ip pim rp Group/Mask RP ------------------ --------------- 224.0.0.0/4 10.10.1.1 SR/configure> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 791: Show Ip Pim Rp-Set

    0 Recvd msgs bad checksum 0 Recvd msgsg bad version 0 Recvd register msgs 0 (0 bytes) Recvd registers wrong iif 0 Recvd bad registers 0 Sent register msgs 0 (0 bytes) SR/configure> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 792: Show Ip Pim Timers

    Candidate BSR Status: Disabled Candidate BSR Interface: NOT CONFIGURED Candidate BSR Priority: 45 Candidate BSR Period: 30 Candidate BSR Hold Time: 2048 Candidate BSR Admin Scope: Disabled No BSR's SR/configure/ip/pim> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 793: Clear Ip Pim Statistics

    Resets all PIM statistical information. syntax: statistics example: To reset PIM counters, enter: SR> clear ip pim statistics applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 794 MULTICAST COMMANDS Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 795: Chapter 15: Password

    Chapter 15: PASSWORD Use the password command change passwords on an Avaya Secure Router 3120. The new password is effective at the next login session. The password command is as follows: Table 18: Password Command password password This command changes the password on a Secure Router 3120.
  • Page 796 PASSWORD Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 797: Chapter 16: Ping

    Chapter 16: PING Use the ping command to verify connectivity between an Avaya Secure Router 3120 and other network hosts. The ping command is as follows: Table 19: Ping Command ping Note: You can stop pinging using the key combination, Ctrl+C.
  • Page 798 User pressed Ctrl + C & Got reply with ICMP type "Time Exceeded" Got reply from different hosts Any other ICMP type. To get more info try ping x.x.x.x verbose applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 799: Chapter 17: Pppoe

    T1, E1 module ip negotiated This command specifies that the IP address for the interface is obtained via PPP/IPCP (IP Control Protocol) address negotiation with the PPPoE server. syntax: ip negotiated Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 800: Ppp Authentication

    T1, E1 module ppp keepalive This command specifies the amount of time PPP should be keep up when there is no traffic. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 801: Pppoe Ac-Name

    SR/configure/interface/ virtual-access <name>> pppoe ac-name router1 next-level commands show interface virtual-access applies to: T1, E1 module pppoe ethernet This command allows the user to specify the Ethernet interface on which PPPoE is enabled. syntax: pppoe ethernet<number> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 802: Protocol Pppoe

    This command specifies the tunneling protocol, with an optional parameter client. syntax: protocol pppoe <client> parameter definition client Specifies the client (optional). example: SR/configure/interface/ virtual-access <name>> protocol pppoe next-level commands show interface virtual-access applies to: T1, E1 module Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 803: Chapter 18: Restart

    The system will caution you to save the current configuration before rebooting. reload This command reboots the Avaya Secure Router 3120 from the current NCM and IC boot parameters. Use this command to disconnect all users from the system and momentarily disrupts traffic through the system.
  • Page 804 RESTART applies to: All modules Note: The system will caution you to save the current configuration before rebooting. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 805: Chapter 19: Save

    A message confirming a successful save appears after the command is executed. parameter definition file Name of saved file syntax: save local file < name > ] example: SR> save local file d011899.cfg related commands: write memory Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 806: Write Memory

    The save network command uses tftp. Be sure that a destination file exists and you have proper permission. write memory This command saves a system configuration to flash memory. This command is equivalent to the save local command. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 807: Write Local

    A message confirming a successful save appears after the command is executed. parameter definition file Name of saved file syntax: write local file < name > ] example: SR> write local file d011899.cfg Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 808: Write Network

    All modules write terminal Displays the current configuration on the local host. This command is the same as show configuration running. syntax: write terminal Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 809 SR> write terminal related commands: cshow configuration running applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 810 SAVE Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 811: Chapter 20: Show

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 812: Show Aaa Authentication

    <login | protocol> example: SR/configure> show aaa authentication protocols Protocol List Name Protocols Order _____________________________________________ default NOT CONFIGURED applies to: All modules show aaa authorization commands Display configured AAA authorization lists. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 813: Show Aaa Interface

    <bundle | console | ethernet> example: SR/configure> show aaa interface ethernet 0/2 Authentication: ----------------------------------------------- Authorization: ----------------------------------------------- (AAA is not configured on this interface.) show aaa radius This command displays configured RADIUS information. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 814: Show Arp

    ------------------------------ Primary server : 0.0.0.0 Secondary server : 0.0.0.0 Server port : 49 Timeout in seconds : 5 Maximum retries : 2 SR/configure> applies to: All modules show arp This command displays the current Address Resolution Protocol (ARP) table. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 815: Show Arp_Timeout

    All modules show boot_params This command shows boot parameters for the system. parameter definition slot_no IC slot number (1 or 2) syntax: boot_params IC < 1 | 2 > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 816: Show Cfg_Log

    The show shows a date and time stamp for each change, the user who logged the change, and the local or network IP address the configuration file was saved to (if applicable). syntax: cfg_log example: SR/show> cfg_log related commands: clear cfg_file applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 817: Show Chassis

    Displays details about Avaya Secure Router 3120 chassis hardware, specifically, fans and power supplies. parameter definition fan status Displays the status of the system fans. slot_no Displays the status of the power supplies. syntax: <fan-status | power-status>...

  • Page 818: Show Crypto

    All modules show crypto dynamic clients Displays the remote access clients who logged in successfully. syntax: crypto dynamic clients example: SR> show crypto dynamic clients Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 819: Show Crypto Dynamic Ike Policy

    <policy-name> [<proposal priority(s)>] [detail] example: SR> show crypto ike policy toOpal 1 applies to: All modules show crypto ike This command accesses next-level commands for displaying IKE. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 820: Show Crypto Ike Policy

    Detail mode of the display syntax: policy policy-name [ proposal-priority ] [ detail ] example 1: Provides a brief display of all IKE policies in the router. Router1> show crypto ike policy all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 821: Show Crypto Ike Sa

    Detail mode of the display syntax: sa policy-name [ detail ] example 1: Provides a brief display of all IKE SAs in the router. Router1> show crypto ike sa all Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 822: Show Crypto Interfaces

    Router1> show crypto interfaces Table 27: screen display example > show crypto interfaces Interface Network Name Type --------- ------- > related commands: show crypto ike show crypto ipsec applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 823: Show Crypto Ipsec

    Displays all IPSec policies policy name Displays the specified IPSec policy proposal-priority Proposal 1 Proposal 2 Proposal 3 Proposal 4 Proposal 5 detail Detail mode of the display Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 824: Show Crypto Ipsec Sa

    This command displays either all SAs for a specified policy or all SAs in the IPSec table. parameter definition policy-name Displays all IPSec SAs policy name Displays all IPSec SAs for this policy detail Detail mode of the display Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 825: Show Date

    This command displays the date and time. syntax: date example: SR/show> date The following screen capture shows the date and time, the number of hours and minutes ahead of or behind the UTC also appears. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 826: Show Environment

    DHCP RELAY CONFIGURATION --------------------------- Ethernet 0: Disabled Ethernet 1: Disabled > applies to: All modules show environment This command displays the internal operating temperature of a Secure Router 3120. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 827: Show Event_Logs

    The latest 10 events appear, as shown in. To scroll through the log, 10 events at a time, type y, and then press Return at the "Display more events?" prompt. Or, to go back to the command prompt, type n, and press Return. syntax: event_logs example: SR/show> event_logs Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 828: Show Flash

    Bytes Free: 12648448 > next-level commands show fr avcs show fr cvcs show fr invarp show fr invarp_int show fr lmistats show fr pvcs show fr vcstats applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 829: Show Fr Avcs

    This command shows all CVCs configured on a Secure Router. This display includes the associated bundle information, virtual circuit ID (DLCI), status, policing, and IP address. syntax: fr cvcs example: SR> show fr cvcs Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 830: Show Fr Invarp

    < all | name > example: SR/show> fr invarp all related commands: show fr avcs show fr cvcs show fr invarp_int show fr lmistats show fr pvcs show fr vcstats Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 831: Show Fr Invarp_Int

    This command displays the LMI statistics for a bundle. Statistics include the number of received status inquiries and full status inquiries, the number of transmitted and received status inquiries, and the number of transmit-side updates. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 832: Show Fr Pvcs

    If the PVC is switched to another PVC, that PVC number will be shown. If the PVC terminates at a LAN, the PVC IP address is displayed. syntax: fr pvcs example: SR/show> fr pvcs related commands: show fr avcs show fr cvcs show fr invarp Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 833: Show Fr Vcstats

    < name > dlci < n > [ stat_type < 1 | 2 | 3 > ] example: SR/show> fr vcstats wan4 16 related commands: show fr avcs show fr cvcs show fr invarp show fr invarp_int show fr lmistats show fr pvcs Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 834: Show Ftp

    57sman Password: > applies to: All modules show hostname This command displays the system host name. The host name is visible as the main command prompt. syntax: hostname example: SR/show> hostname Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 835: Show Interface

    Information includes the status of the AVC, status of each CVC in the AVC, individual CVC counters, aggregated AVC counters, the status reporting mode for the AVC, RED configuration and statistics, VLAN tagging on the AVC (when enabled), and IP encapsulation information. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 836: Show Interface Bundle

    Name of bundle to be viewed. syntax: bundle < name > example: SR/show/interface> bundle Brussels related commands: show interface bundles show interface ethernet applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 837: Show Interface Ethernet

    Ethernet port to be viewed (0 or 1). syntax: ethernet <slot/port> example: SR/show/interface> ethernet 0 To clear the Ethernet port display counters, use the clear counters Ethernet command. related commands: clear counters Ethernet Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 838: Show Interface Ethernets

    All modules show interface virtual-access This command accesses PPPoE interface information. syntax: interface virtual-access example: SR/show> interface virtual-access next-level commands show virtual-access applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 839: Show Ip Dhcps Address_Pools

    All modules show ip dhcps address_pools This command displays the DHCP address pools. syntax: address_pools example: SR/show/ip> dhcps address_pools related commands: show ip dhcps bindings show ip dhcps configuration Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 840: Show Ip Dhcps Bindings

    All modules show ip dhcps configuration This command displays the DHCP configuration. syntax: configuration example: SR/show/ip> dhcps configuration Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 841: Show Ip Dhcps Interfaces

    All modules show ip dhcps statistics This command displays the DHCP server statistics. syntax: statistics example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 842: Show Ip Hosts

    SR/show/ip> dns related commands: show ip hosts applies to: All modules show ip hosts This command displays a list of configured hosts, along with their IP addresses. syntax: hosts example: SR/show/ip> hosts Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 843: Show Ip Interface

    All modules show ip interface This command displays Ethernet port IP routing data for the specified interface. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 844 (NAT) data. syntax: example: SR/show/ip> nat next-level commands show ip nat address_pool show ip nat all show ip nat configuration show ip nat statistics show ip nat translations applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 845: Show Ip Nat Address_Pool

    This command displays a summary of all stored NAT data. syntax: example: SR/show/ip/nat> all applies to: All modules show ip nat configuration This command shows global NAT data or NAT data for a specified interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 846: Show Ip Nat Statistics

    This command shows global NAT statistics or NAT statistics for a specified interface. parameter definition interface ethernet0 Ethernet 0 ethernet1 Ethernet 1 bundle_name Specific WAN bundle name bundle_name:pvc _number Bundle name:PVC number global Global NAT syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 847: Show Ip Nat Translations

    < ethernet0 | ethernet1 | bundle_name | bundle_name : pvc_number > example 1: This example shows NAT data for a specific interface. SR/show/ip/nat> translations ethernet0 example 2: This example shows global NAT data. SR/show/ip/nat> translations global applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 848: Show Ip Access-List

    Name of the filter set for which rules will be displayed. syntax: filter-list rulelist_name < name > example: SR/show/ip/access-list> filter-list Filter01 related commands: show ip access-list rules show ip access-list statistics Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 849: Show Ip Access-Lists-Rules

    All modules show ip access-list statistics This command shows IP filter statistics for an Ethernet port, a bundle, a PVC, or all interfaces. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 850: Show Ip Routes

    This command displays IP routing information. parameter definition network Network IP address mask Net mask address protocol All protocols Border Gateway protocol connected Connected routes ospf Open Shortest Path First protocol Routing Information protocol Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 851 "fib," then the display will show the route summary of FIB. Table 36: screen display example > show ip routes summary IP Routing Table Summary Route Source Number of Routes ------------ ---------------- connected static aggregate OSPF Total > Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 852 All modules show ip rtp This command accesses next-level commands for displaying RTP information. syntax: show ip rtp example: SR> show ip rtp applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 853: Show Ip Rtp Configuration

    < bundle name > example: SR/show/ip/rtp> statistics wan1 applies to: All modules show ipmux This command accesses next-level commands ipmux show commands. syntax: ipmux example: SR> show ipmux Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 854: Show Ipmux Acroutes

    All modules show ipmux interfaces This command shows configured interface information. parameter definition interface Interface name or type The default is all. syntax: interfaces [ interface < name > ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 855: Show Mac

    SR> show ipmux routes related commands: show ipmux acroutes show ipmux interfaces applies to: All modules show mac This command displays the MAC address assigned to a Secure Router. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 856: Show Module

    IP address does not match the DHCP address, the client is a static client. applies to: All modules show module This command accesses next-level commands for displaying interface card alarms, configurations, and statistics. syntax: module example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 857: Show Module Alarms

    SR/show/module> alarms In alarm displays, Off = No Alarm, On = Alarm in Progress. next-level commands show module alarms e1 show module alarms t1 show module alarms t3 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 858: Show Module Alarms E1

    [refresh_interval] <cr> example: SR/show/module/alarms> e1 1/1 refresh_interval 1 related commands: show module thresholds e1 applies to: E1 module how module alarms serial This command displays the alarms detected on a serial interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 859: Show Module Alarms T1

    To see the alarms in real-time, specify the desired refresh interval in minutes when entering this command. To return to the system command prompt, type q. parameter definition T1 link The range is 1/1-8 or 2/1-8. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 860: Show Module Alarms T3

    The slot (1 or 2) in which the module is located. Port numbering varies by module. refresh_interval How often, in minutes, the alarm display will be updated (optional entry; minimum is 1 minute). syntax: t3_identifier [ refresh_interval < n > ] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 861: Show Module Alarms Ct3

    The following command shows alarms at the T1 level: syntax: ct3_identifier:t1 [ refresh_interval < n > ] example: SR/show/module/alarms> ct3 1/1:5 In alarm displays, Off = No Alarm, On = Alarm in Progress. applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 862: Show Module Ansistats

    The slot (1 or 2) in which the module is located. Port numbering varies by module. interval_range Range of 15-minute intervals for which you wish to see a summary of statistics (1 - 96). syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 863: Show Module Ansistats T3

    This command displays ANSI statistics for a Channelized T3 interface. The display shows the current 15-minute interval statistics, the elapsed time in the current sampling interval, and the total counts for the past 8 hours. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 864: Show Module Attstats

    Channelized T3 show module attstats This command accesses next-level commands for displaying AT&T statistics. syntax: attstats example: SR/show/module> attstats next-level commands show module attstats t3 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 865: Show Module Configuration

    All modules show module configuration all This command shows the configuration for all T1 or E1 ports. syntax: example: SR> show module configuration all applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 866: Show Module Configuration E1

    SR/configure/module/serial (2/3)/v35> show module configuration serial 2/3 Serial interface 2/3 is ENABLED Current Serial Mode : v35 Operation Mode : DCE : CRC16 Clock Source : Internal Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 867: Show Module Configuration T1

    This command displays the configuration and status of a T1 interface. parameter definition slot/port The slot (1 or 2) in which the module is located. Port numbering varies by module. T1 link The range is 1/1-8 or 2/1-8. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 868: Show Module Configuration T3

    This command displays the configuration and status of a Channelized T3 interface at the T3 level. parameter definition Channelized T3 (1 or 2, depending upon the system) syntax: ct3 slot/port example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 869: Show Module Ietfstats

    All modules show module ietfstats e1 This command displays the IETF performance statistics for an E1 interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 870: Show Module Ietfstats T1

    The slot (1 or 2) in which the module is located. Port numbering varies by module. interval_range Range of 15-minute intervals for which you want to see a summary of statistics The range is 1 - 96. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 871: Show Module Ietfstats T3

    This command displays IETF performance statistics for a Channelized T3 interface. Statistics for multiple 15-minute intervals may be displayed by specifying the number of intervals (1 to 96) you wish to view. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 872: Show Module Itutstats

    This command accesses next-level commands that display the International Telecommunication Union statistics for an E1 port. syntax: itutstats example: AR1208-E/display/module> itutstats related commands: show module itutstats e1 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 873: Show Module Itutstats E1

    SR/show/module> test Table 38: E1 BERT Test Criteria on page 874 and Table 39: E1 Loopback Test Criteria page 874 summarize BERT and loopback information for E1 testing. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 874 Type of loop-up code sent to the far end (ANSI FDL or Inband). next-level commands show module test e1 show module test t1 show module test t3 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 875: Show Module Test E1

    The slot (1 or 2) in which the module is located. Port numbering varies by module. T1 link The range is 1/1-8 or 2/1-8. syntax: t1 t1_no where t1_no is the <slot/port> number. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 876: Show Module Test T3

    The slot (1 or 2) in which the module is located. Port numbering varies by module. syntax: t3 t3_no example: SR/show/module/test> t3 1/1 related commands: show module test t1 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 877: Show Module Test Ct3

    This command accesses next-level commands for displaying alarm thresholds. These displays show the threshold types, along with the user-defined rising and falling alarm thresholds, sampling intervals, and sample types for each threshold. syntax: thresholds example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 878: Show Module Thresholds E1

    SR/show/module/thresholds> e1 1/1 applies to: E1 module show module thresholds t1 This command displays the alarm threshold settings for a T1 interface. parameter definition T1 link The range is 1/1-8 or 2/1-8. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 879: Show Module Thresholds T3

    Clear Channel T3 show module thresholds ct3 This command displays the alarm threshold settings for a Channelized T3 interface. parameter definition Channelized T3 (1 or 2, depending upon the system) Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 880: Show Module Userstats

    To clear these statistics after viewing them, use the clear module t1_userstats command. syntax: userstats example: SR/show/module> userstats next-level commands show module userstats e1 show module userstats t1 show module userstats t3 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 881: Show Module Userstats E1

    (1 to 96) you wish to view. To clear these statistics after viewing them, use the clear module t1_userstats command. parameter definition T1 link The range is 1/1-8 or 2/1-8. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 882: Show Module Userstats T3

    Range of 15-minute intervals for which you wish to see a summary of statistics (1 - 96). syntax: t3 t3_no [ interval_range < n > ] example: SR/show/module/userstats> t3 1/1 interval_range 1-5 applies to: Clear Channel T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 883: Show Power

    SR/show/module/userstats> ct3 1/1:5 interval_range 1 applies to: Channelized T3 show power This command displays the type of power supply (AC, single DC, or dual DC) installed in the system. syntax: power example: SR/show> power Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 884: Show Qos

    Name of bundle containing QoS classes to be displayed. class Individual QoS class to be displayed The default is all. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 885: Show Qos Ethernet

    Table 42: screen display example > show qos ethernet 1 Interface: Ethernet 1 (Bandwidth = 100000Kbps) Interface Inbound Configuration & Statistics -------------------------------------------- Policing: off MON: off > applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 886: Show Qos Historical_Stats

    This command displays historical QoS statistics for the bundle or class. syntax: bundle < name > example: SR/show/qos/historical_stats> bundle wan1 related commands: show qos historical_stats configuration show qos historical_stats ethernet applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 887: Show Qos Historical_Stats Configuration

    This command displays historical QoS statistics for the Ethernet interface or class. parameter definition ethernet Ethernet 0 interface Ethernet 1 interface class QoS class name Enter a word. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 888: Show Redundancy

    Status: Active, processing live traffic Alarm Enabled: TRUE DS3 Tx: Enabled Data Loss Threshold: 500000 SR> example 2: For the backup router: SR> show redundancy SR> show redundancy =================== Redundancy Setting: =================== Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 889: Show Reverse_Telnet

    Baud Rate : 9600 Parity : No Parity Data Bits Stop Bits Flow Control : No Flow Control > applies to: All modules show running-config This command shows the running system configuration. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 890: Show Snmp

    All modules show snmp communities This command displays the current SNMP community names and access privileges. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 891: Show Snmp Trap-Source

    SR/show/snmp> trap-source applies to: All modules show snmp status This command displays the total number of SNMP data packets sent to and received from each trap host. syntax: status example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 892: Show Snmp Traps

    All modules show snmp trap-host This command displays the names and IP addresses of configured SNMP trap hosts. syntax: trap-host Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 893: Show Sntp

    To continue scrolling through this display, press any key. Or, to go back to the command prompt, type q, and press Return. parameter definition file name Name of file to be showed The default is system.cfg. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 894: Show System

    SR/show> system next-level commands show system logging commandLog show system logging console show system logging syslog applies to: All modules show system configuration This command displays the hardware configuration. syntax: configuration Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 895: Show System Diagnostics

    Table 44: screen display example > show system diagnostics System Diagnostics Results: DRAM Test: PASSED Flash Memory Test: PASSED Temperature Test: PASSED > related commands: show system configuration show system flash show system memory Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 896: Show System Flash

    All modules show system logging This command accesses next-level commands for displaying console logging message prioritization and syslog parameters. syntax: logging Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 897: Show System Logging Commandlog

    SR> show system logging commandLog applies to: All modules show system logging console This command displays console logging message prioritization. syntax: logging console example: SR/show> system logging console Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 898: Show System Logging Syslog

    This command displays DRAM memory usage data, including number of free and allocated bytes, number of fragmented memory blocks, average and maximum block sizes, and a cumulative summary of allocated memory. syntax: memory Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 899: Show Tech-Support

    Press 'y' to continue ? (y/n) : n SR> show tech-support WARNING:The system information will be stored in file. The process will take few minutes..Press 'y' to continue ? (y/n) : y > applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 900: Show Telnet

    SR> show temperature Temperature: Sensor Permissible Current Status ========================================================== Motherboard Location 1 10C - 50C 29C OK Motherboard Location 2 10C - 50C 28C OK Motherboard Location 3 10C - 50C 24C OK SR> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 901: Show Users

    SR/show> users Table 48: screen display example > show users ACTIVE USERS: NAME LOGIN TIME IPADDR +----------------------------------------------------+ 1 : user SAT MAY 08 15:47:16 2004 : CONSOLE +----------------------------------------------------+ > Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 902: Show User_Accounts

    1 : user +---------------------------------+ > related commands: show users configure user applies to: All modules Note: You must be logged in as the System Administrator (Level 1 access) to view this data. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 903: Show Version

    This command accesses next-level commands for viewing hardware and software design versions. syntax: version example: SR/show> version applies to: All modules show virtual-access Displays information about PPPoE traffic. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 904: Show Vlanfwd

    All modules show vlanfwd macbridge This command accesses next-level VLAN bridging show commands. syntax: macbridge Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 905: Show Vlanfwd Macbridge All

    SR> show vlanfwd macbridge all related commands: show vlanfwd macbridge config show vlanfwd macbridge dynamic show vlanfwd macbridge specific show vlanfwd macbridge static show vlanfwd macbridge statistics applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 906: Show Vlanfwd Macbridge Config

    All modules show vlanfwd macbridge dynamic This command shows information about all dynamically learned MAC entries in the forwarding database. syntax: dynamic example: SR> show vlanfwd macbridge dynamic Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 907: Show Vlanfwd Macbridge Specific

    All modules show vlanfwd macbridge static This command shows information about all static MAC entries in the forwarding database. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 908: Show Vlanfwd Macbridge Statistics

    • PktsForwardeded: The number of packets received on a given interface whose destination MAC addresses could be matched in the forwarding database, and therefore were selectively forwarded to a specific VLAN interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 909: Show Vlanfwd Management

    All modules show vlanfwd statistics This command shows if VLAN forwarding is enabled or disabled and the statistics for each VLAN ID. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 910: Show Vlanfwd Table

    This command shows the VLAN table. syntax: table example: SR> show vlanfwd table related commands: show vlanfwd management show vlanfwd statistics show vlanfwd tagtable applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 911: Show Vlanfwd Tagtable

    This command accesses next-level show commands for showing vldfwd information. syntax: vldfwd example: SR> show vldfwd related commands: show vldfwd statistics show vldfwd table show vldfwd tagtable applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 912: Show Vldfwd Statistics

    The range is 1 - 4095; the default is all. Enter a single vld_id <100> or a range of vld_ids < 200-300>. syntax: table [ vld_id < n | n - n > ] example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 913: Show Vldfwd Tagtable

    This command displays VRRP related information. parameter definition group VRRP group The range is 1 - 255; the default is all groups. interface ethernet0 Ethernet 0 interface ethernet1 Ethernet 1 interface Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 914: Show Whoami

    This command displays the current user name and access level. syntax: whoami example: SR/show> whoami Table 52: screen display example > show whoami you are Router, level 1 user > applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 915: Chapter 21: Telnet

    Chapter 21: TELNET Use the telnet command to telnet directly from one Avaya Secure Router 3120to another Secure Router 3120 (or network host). This feature eases network configuration by eliminating the need to exit the Router CLI before establishing a telnet session.
  • Page 916 TELNET Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 917: Chapter 22: Test

    ‘The range is 1 - 16, depending upon the system. syntax: e1 <slot/port> e1_no < n > example: SR/test> e1 1/1 next-level commands test e1 bert test e1 loopback applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 918: Test E1 Bert

    Before conducting a BERT test, activate an E1 line loopback at a remote system; the remote system will loop the the BERT pattern back to the Avaya Secure Router 3120 for bit error rate calculation. The bit error rate is an indicator of overall E1 quality. To activate a remote E1 loopback, use the test e1 loopback remote line command.

  • Page 919: Test E1 Loopback

    All modules test e1 loopback inward1 This command configures an E1 interface for local inward 1 loopback. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 920: Test E1 Loopback Inward1_Analog

    SR/test/e1 1/1> loopback inward1_analog related commands: test e1 loopback inward1 test e1 loopback inward2 test e1 loopback line test e1 loopback payload applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 921: Test E1 Loopback Inward2

    [ no ] loopback line example: SR/test/e1 1/3> loopback line To verify loopback status during the test, use the show module test e1 command. related commands: test e1 loopback inward1 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 922: Test E1 Loopback Payload

    All modules test t1 This command accesses next-level commands for conducting tests on a T1 interface. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 923: Test T1 Bert

    Before conducting a BERT test, activate a T1 line loopback at a remote system; the remote system will loop the BERT pattern back to the Secure Router 3120 for bit error rate calculation. The bit error rate is an indicator of overall T1 quality. To activate a remote T1 loopback, use the test t1 loopback remote line command.

  • Page 924: Test T1 Loopback

    T1 module, serial modules that support v.35 or x.21 test t1 loopback This command accesses next-level commands for activating and deactivating loopbacks on a T1 link. syntax: loopback example: SR/test/t1 1/1> loopback Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 925: Test T1 Loopback Line

    This command activates a local T1 payload loopback. The loopback sends the incoming T1 back to the remote system. The payload loopback corrects bipolar violations, CRC errors, and frame bit errors before returning the signal. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 926: Test T1 Loopback Remote

    SR/test/t1 1/1> loopback remote next-level commands test t1 loopback remote line test t1 loopback remote payload applies to: T1 module, serial modules that support v.35 or x.21 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 927: Test T1 Loopback Remote Line

    Upon detecting the loop-up code, the remote system removes BPVs, CRC errors, and frame bit errors before returning the signal to the Secure Router. The looped signal path allows you to conduct line testing. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 928 This command accesses next-level commands for conducting tests on a Clear Channel T3 interface. parameter definition t3_no Clear Channel T3 port to be tested. syntax: t3 t3 _no example: SR/test> t3 1/1 next-level commands test t3 loopback applies to: Clear Channel T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 929: Test T3 Loopback

    Channel T3 alarms are generated with this loopback in progress, the Clear Channel T3 is faulty. syntax: [ no ] loopback internal_t3 example: SR/test/t3 1/1> loopback internal_t3 To verify the loopback status during the test, use the show module test t3 command. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 930: Test T3 Loopback Line_T3

    The local loopback routes the Clear Channel output signal to the Clear Channel receiver for local testing. syntax: [ no ] loopback local_t3 example: SR/test/t3 1/1> loopback local_t3 To verify the loopback status during a test, use the show module test t3 command. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 931: Test T3 Loopback Payload_T3

    Clear Channel T3 test t3 loopback remote This command accesses next-level commands for activating Clear Channel T3 loopbacks on remote systems. syntax: loopback remote example: SR/test/t3 1/1> loopback remote Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 932: Test T3 Loopback Remote Line_T3

    This command accesses next-level commands for conducting tests on a Channelized T3 interface. parameter definition t3_identifier CT3 link(s) to test syntax: ct3 ct3_identifier where t3_identifier is the <slot/port> number. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 933: Test Ct3 Bert

    20 consecutive ones 2^23 Pseudorandom signal with no more than 22 consecutive zeros and no more than 23 consecutive ones This pattern provides the highest stress of all BERT patterns. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 934: Test Ct3 Loopback

    This command accesses next-level commands for activating and deactivating loopbacks on a Channelized T3 port. syntax: loopback example: SR/test/ct3 1/1> loopback next-level commands test ct3 loopback internal_ct3 test ct3 loopback line_t1 test ct3 loopback payload_t1 test ct3 loopback remote Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 935: Test Ct3 Loopback Line_Ct3

    [no] loopback line_t1 t1 example: SR/test/ct3 1/1> loopback line_t1 5 To verify the loopback status during the test, use the show module test ct3 command. related commands show module test ct3 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 936: Test Ct3 Loopback Payload_T1

    This command accesses next-level commands for activating Channelized T3 loopbacks on remote systems. syntax: loopback remote example: SR/test/ct3 1/1> loopback remote next-level commands test ct3 loopback remote line_ct3 test ct3 loopback remote line_t1 test ct3 loopback remote payload_t1 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 937: Test Ct3 Loopback Remote Line_Ct3

    This command configures a T1 in the CT3 for remote line loopback. syntax: line_t1 t1 [loopback_type] parameter description T1 number/range loopback_type Loopcode for LINE Loopback. (default: ansi_fdl) example: SR/test/ct3 1/1> loopback remote line_t1 5 loopback_type ansi_fdl Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 938: Test Ct3 Loopback Remote Payload_T1

    Loopcode for PAYLOAD Loopback. (default: ansi_fdl) example: SR/test/ct3 1/1> loopback remote payload_t1 5 loopback_type ansi_fdl related commands test ct3 loopback remote line_ct3 test ct3 loopback remote line_t1 applies to: Channelized T3 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 939: Chapter 23: Trace

    > ] [ probecnt < n > ] [ minttl < n > ] [maxttl < n > ] [ portno < n > ] [ symdisp < on | off > ] example: SR> trace dipaddress 10.1.2.1 timeout 10 probecnt 4 maxttl 6 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 940 TRACE Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 941: Chapter 24: Firewall Commands

    A label for map-name mode commands. example: To configure firewall global commands, enter: SR/configure> firewall global SR/configure/firewall global> To configure corporate firewall map-related commands, enter: SR/configure> firewall corp SR/configure/firewall corp> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 942: Firewall Dos-Protect

    To disable the DNS replay attack check, use the no form of the command. By default it is disabled. When this command is enabled, the DNS connection limit is 2,000. syntax: [no] dns-replay-attack example: SR/configure/firewall global/dos-protect> dns-replay-attack SR/configure/firewall global/dos-protect> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 943: Dos-Protect Source-Routing

    Band) data to an IP address of a Windows machine connected to a network and/or Internet. To disable the win nuke attack check, use the no form of the command. This command is disabled by default. syntax: [no] win-nuke Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 944: Dos-Protect Icmp-Error

    CPU resources. To disable the ftp bounce attack check, use the no form of this command. This command is disabled by default. syntax: [no] ftp-bounce example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 945: Dos-Protect Mime-Flood

    IP timestamp option not aligned on a 32-bit boundary. To disable IP unaligned timestamp checks, use the no form of this command. This command is disabled by default Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 946: Dos-Protect Tcp-Seq-Number-Predict

    The range can be configured with value between 20000 and 2147483647. To disable TCP sequence number range check, use the no form of this command. By default it is disabled. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 947: Dos-Protect Enable-All

    To enable all of the Denial of Service protections, enter: SR/configure/firewall global/dos-protect> enable-all applies to: All modules firewall hairpinning-SelfIp This command configures NAT hairpinning. Syntax: [no] hairpinning-selfip Example: SR/configure/firewall global> hairpinning-selfip Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 948: Firewall Logging

    The threshold for VPN logging. The range is 1—2147483647, the default is 100 packets. example: To configure the router to generate a log message for 10 VPN events, enter: SR/configure/firewall global/logging> vpn 10 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 949: Logging Attacks

    Use the no form of the command to reset to default values. By default, the threshold is configured as 1. syntax: [no] policy <count> parameter definition limit The threshold for policy logging. The range is 1—2147483647, the default is 1 packet. example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 950: Firewall Ip-Reassembly

    The oversized packet can be broken up into pieces small enough to pass. The IP reassembly feature allow the split packets to be reassembled upon delivery. syntax: [no] enable example: To enable IP reassembly, enter: SR/configure/firewall global/ip-reassembly> enable applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 951: Ip-Reassembly Packet-Size

    The length of the fragment header. The range is 1— 65535. The default is 28 bits. example: To set the fragment header to 5000 bits, enter: SR/configure/firewall global/ip-reassembly> fragment-size 5000 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 952: Ip-Reassembly Fragment-Count

    <time> parameter definition time A packet has to be reassembled before this amount of time expires. The valid range is 11—120 seconds, and the default is 60. example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 953: Firewall Timeout

    Specifies the User Datagram Protocol timeout. icmp Specifies the Internet Control Message Protocol timeout. tcp-reset Specifies the Transport Control Protocol reset timeout. ftp-inactivity Specifies how long the File Transport Protocol will wait for a response. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 954: Timeout Service

    The timeout value. The range is 0—65535 seconds. example: To create a UDP service named Test on port 4444, with a timeout value of 600 seconds, enter: SR/configure/firewall global/timeout> service Test udp 4444 600 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 955: Firewall Max-Connection-Limit

    To create a global object, enter: SR/configure/firewall global> object SR/configure/firewall global/object> To create an object specific to the corp map, enter SR/configure/firewall corp> object SR/configure/firewall corp/object> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 956: Firewall Stealth-Mode

    To disable the stealth mode on corp. Any one of the following commands can be executed. SR/configure/firewall corp> no stealth-mode corp SR/configure/firewall corp> no stealth-mode SR/configure/firewall global> no stealth-mode corp applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 957: Firewall Url-Key-Filter

    If created in a specific map, then this application filter can be applied to any number of policies, but only for this specific map. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 958 To create a map-specific FTP application filter named corpftp that allows permit, get, and ls commands, enter: SR/configure> firewall corp SR/configure/firewall corp> object SR/configure/firewall corp/ object> ftp-filter corpftp permit put get ls applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 959: Object Http-Filter

    To create a map-specific HTTP application filter named corphttp that allows all URLs but filters out Java applications and files with .exe extensions, enter: SR/configure/firewall corp/object> http-filter corphttp deny java *.exe Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 960: Object Nat-Pool

    All IP addresses are in IPv4 format. example: To configure a NAT pool of type one-to-one with a source address range (10.1.1.1 to 10.1.1.10) that will be translated to the address range (20.1.1.51 to 20.1.1.60), enter: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 961: Object Rpc-Filter

    Lists RPC numbers that are prohibited. Up to 25 numbers can be listed as strings separated by spaces. Enables or disables logging. example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 962: Object Smtp-Filter

    The name of the SMTP filter. permit Lists SMTP commands that are allowed. Includes: hello mail rcpt data quit send saml reset vrfy expn Enter commands as strings separated by a space. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 963: Object Schedule

    Firewall policies configured with schedule objects are only activated in the time defined in the schedule object. syntax: [no] schedule object-name [ week-day ] [ start-time ] [ end-time ] Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 964 To create a map-specific schedule object named getmail, starting at 9:00 AM and ending at 6:30 PM, Monday through Friday, enter: SR/configure> firewall corp SR/configure/firewall corp> object SR/configure/firewall corp/ object> schedule getmail week-day mon fri start-time 9 0 end-time 18 30 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 965: Object Service

    To create a map-specific service object named corpserv using TCP on port 2001, enter: SR/configure> firewall corp SR/configure/firewall corp> object SR/configure/firewall corp/ object> service corpserv tcp port 2001 applies to: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 966: Object Address

    To create a map-specific address object named corpaddr for IP address 10.1.1.10 and prefix length 32, enter: SR/configure> firewall corp SR/configure/firewall corp> object SR/configure/firewall corp/ object> address singAddr 10.1.1.10 32 Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 967: Firewall Interface

    To remove wan3 and the frame relay interface wan4 with pvc number 16 from the map internet, enter: SR/configure> firewall internet SR/configure/firewall internet> no interface wan3 wan4:16 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 968: Firewall Policy

    Can be one of: <src-start> <src-end> <dst-start> <dst-end> OR <src-port> <dst-port> traffic The type of traffic. Can be one of the following values: transit -- transit traffic (the default) Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 969 4 out> To modify the source and destination address configuration of an existing firewall policy, enter SR/configure/firewall corp> policy 4 out address 21.1.1.1 21.1.1.5 any any permit SR/ configure/firewall corp/policy 4 out> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 970: Policy Max-Connection-Limit

    Valid range is 1—29912. The default is the connection limit of the map. example: To limit the maximum number of connections to 20, enter: SR/configure/firewall corp/policy 4 out> max-connection-limit 20 applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 971: Policy Connection-Rate

    (disabled by default). syntax: [no] policing <packets-per-second> parameter definition packets-per-second Specifies the maximum number of packets per second. Valid range is 1—2147483647. example: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 972: Policy Enable

    SR/configure/firewall corp/policy 4 out > no bandwidth 4 applies to: All modules policy enable Disables or enables an existing policy of a specific map based on the requirement. By default the policy is enabled. syntax: [no] enable Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 973: Policy Apply-Object

    To apply the ftp-filter to the policy myftp, enter: SR/configure/firewall corp/policy 4 out> apply-object ftp-filter myftp applies to: All modules clear firewall statistics Clears the firewall statistics. syntax: clear firewall statistics example: To clear the firewall statistics, enter: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 974: Debug Firewall All

    To enable policy checks on the firewall (if disabled previously), enter: Router > no debug disable-firewall applies to: All modules debug firewall dos-protect Enables / disables dos-protect check debugging for firewall. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 975: Debug Firewall Ip-Reassembly

    Enables / disables packet debugging for firewall. syntax: [no] debug firewall packet example: :To debug packet processing on the firewall, enter: Router > debug firewall packet applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 976: Show Debug All

    To show debug details for the firewall, enter: SR/configure> show debug firewall applies to: All modules show firewall connections View the connection database. syntax: show firewall connections map-name [ summary ] [ address ] [ port ] [protocol] Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 977: Show Firewall Dos-Protect

    Displays the configured DoS-protect attack check settings. syntax: show firewall dos-protect example: :To see the DoS protection configuration, enter: Router > show firewall dos-protect DOS attack check Status ---------------- ------ syn flooding attack check enabled Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 978: Show Firewall Interface

    To view all the interfaces that are configured for security in the map corp, enter: Router > show firewall interface corp Interface Map Name --------- -------- ethernet1 corp SR> applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 979: Show Firewall Ip-Reassembly

    :To show current logging thresholds, enter: SR> show firewall logging SR> applies to: All modules show firewall max-connection-limit Displays the maximum number of connections originating from a given map. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 980: Show Firewall Nat-Failover

    Displays NAT (Network Address Translation) details. syntax: show firewall nat-translations map-name[ address ] [ port ][protocol] parameter definition map-name For a specific map - the name of that map. To name all maps, specify all. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 981: Show Firewall Object

    For global - the name of the keyword for global objects. For map - the name of an object. object-name The name of the object. example: :To view all the configured ftp-filter objects for the map corp, enter: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 982: Show Firewall Policy

    To view all the corp map firewall policies in brief mode, enter: SR> show firewall policy corp To view all the corp map firewall policies in detail mode, enter: SR> show firewall policy corp detail applies to: All modules Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 983: Show Firewall Statistics

    To see stealth-mode details, enter: SR> show firewall stealth-mode Map Name Stealth-mode -------- ------------ internet disable corp disable SR> applies to: All modules show firewall timeout View the timeout values for protocols and services. syntax: Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 984: Show Firewall Url-Key-Filter

    Displays the keywords configured for blocking in the URLs. syntax: show firewall url-key-filter example: To see key names for URL filtering, enter: SR> show firewall url-key-filter URL Key filtering enabled URL Keys ------- games movies SR> Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 985: Redundancy Protocol

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 986: Configure Interface Ethernet Vrrp Advertisement_Interval

    This command configures the VRRP authentication information. Once configured, all outgoing VRRP packets will have this authentication information and all packets received will be authenticated using this information. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 987: Configure Interface Ethernet Vrrp Description

    Description string describing group Enter a string up to 80 characters within quotation marks. syntax: description < "desc_string" > example: SR/configure/interface/ethernet 0/vrrp 10> description "virtual router for wan" Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 988: Configure Interface Ethernet Vrrp Enable

    All systems. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 989: Configure Interface Ethernet Vrrp Ipaddr

    All systems. configure interface ethernet vrrp learn_adv_internal This command configures the backup router to learn the advertisement interval from the master. syntax: learn_adv_interval example: SR/configure/interface/ethernet 0/vrrp 10> learn_adv_interval Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 990: Configure Interface Ethernet Vrrp Preempt

    Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 991: Configure Interface Ethernet Vrrp Priority

    All systems. configure interface ethernet vrrp track This command configures tracked interface and track priority. parameter definition intfname Interface name (e.g., ethernet0, ethernet1, or bundle name) Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 992: Configure Interface Ethernet Vrrp_Mode

    All systems. configure interface ethernet vrrp_mode This command configures VRRP mode. parameter definition mode vrrp mode VRRP mode 0 (Gratuitous ARP for an interface) This is the default. VRRP mode 1 (Active/Standby) Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 993: Show Vrrp

    Detailed mode syntax: vrrp [ group < n > ] [ interface < interface > ] [ mode < mode > ] example: SR> show vrrp detailed applies to: All systems. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 994 VIRTUAL ROUTER REDUNDANCY PROTOCOL Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 995: Chapter 26: Alarms And Statistics

    Receive Remote Alarm Indication. The far end system has detected a loss of T3 signal or Loss of Frame, and has sent a Yellow Alarm signal to the Avaya Secure Router 3120. RFEBE Receive Far End Block Errors. System has detected block errors in the incoming T3 signal.
  • Page 996 Loss of Frame, causing it to send a Yellow Alarm signal to the far end). This Yellow Alarm code is the same as the RRAI code described above. Avaya Secure Router 3120 Command Reference Guide December 2010...

  • Page 997: Statistics

    Type Description Coding Violations (excessive zeros or AMI bipolar violations). For a B8ZS-coded T1 signal, a CV is a bipolar violation that is not part of a valid zero-substitution code. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 998 Loss of Frame Count (number of times a LOF is detected). The alarm declaration and clearing times are defined in AT&T TR-54016. Controlled Slip Seconds. Number of seconds in which the system replicated or deleted one or more T1 frames of data. Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 999 Severely Errored Framing Seconds. A SEFS is a second with one or more Out of Frame defects or a detected incoming AIS. This item is not incremented during unavailable seconds. Unavailable Seconds (declared upon occurrence of 10 consecutive SESs). Avaya Secure Router 3120 Command Reference Guide December 2010...
  • Page 1000 Bursty Errored Seconds (number of 1-second intervals with more than 1 but less than 320 PCVs, no SEF events, and no AIS signal detection). This count is not advanced during a UAS state. 1000 Avaya Secure Router 3120 Command Reference Guide December 2010...

Table of Contents