Page 1
Reference for the BayStack Instant Internet Remote Access Commands Version 7.11 Part No. 302005-F November 2000 4401 Great America Parkway Santa Clara, CA 95054...
Nortel Networks NA Inc. does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein.
Page 3
Software is provided will be free from defects in materials and workmanship under normal use for a period of 90 days from the date Software is first shipped to Licensee. Nortel Networks will replace defective media at no charge if it is returned to Nortel Networks during the warranty period along with proof of the date of shipment.
Page 4
7. Term and termination. This license is effective until terminated; however, all of the restrictions with respect to Nortel Networks’ copyright in the Software and user manuals will cease being effective at the date of expiration of the Nortel Networks copyright; those restrictions relating to use and disclosure of Nortel Networks’ confidential information shall continue in effect.
Preface BayStack ™ access the Internet safely and efficiently using management tools for tracking and blocking user activities. Before you begin If you are responsible for configuring Instant Internet, you need to read this manual. The information in this manual can help you: •...
Preface Text conventions This manual uses the following text conventions: angle brackets (< >) Indicate that you choose the text to enter based on the bold courier text braces ({}) brackets ([ ]) ellipsis points (. . . ) Indicate that you repeat the last element of the command as 302005-F description inside the brackets.
Example: ipsec defaultnetwork <ipadr> Indicates system output, for example, prompts and system messages. Example: Instant Internet (tm) version 7.11 Copyright (c) 1995-2000 Nortel Networks Corporation ii> Shows menu paths. Example: File > Exit File menu. Separates choices for command keywords and arguments.
Page 16
Preface CHAP DDNS DHCP ICMP ISDN ITU-T PPPoE SNMP 302005-F Basic Rate Interface Central Daylight Time Challenge Handshake Authentication Protocol Channel Service Unit Dynamic Domain Name Service Data Encryption Standard Dynamic Host Configuration Protocol Domain Name Service Extended SuperFrame Format Eastern Standard Time Greenwich Mean Time Internet Control Message Protocol...
SPID Related publications For more information about using Instant Internet, refer to the following publications: • Important Notice for the BayStack Instant Internet Version 7.11 (Part number (307603-E) Provides instructions for viewing documentation and installing the Instant Internet software and third-party applications (Adobe Acrobat Reader, Netscape Communicator, and AniTa Terminal Emulator).
Page 18
Go to the Adobe Systems Web address www.adobe.com You can purchase selected documentation sets, CDs, and technical publications though the Internet at the 302005-F www25.nortelnetworks.com/library/tpubs/ to download a free copy of Acrobat Reader. www1.fatbrain.com/documentation/nortel/ URL. Find the URL.
How to get help If you purchased a service contract for your Nortel Networks product from a distributor or authorized reseller, contact the technical support staff for that distributor or reseller for assistance. If you purchased a Nortel Networks service program, contact one of the following...
Chapter 1 Using the Remote Administration utility This chapter explains how use Instant Internet’s remote administration utility to set up, view, or modify the unit configuration. There are two ways to use remote administration: out-of-band management and Telnet. Using out-of-band management Out-of-band management is only available on the Instant Internet 100-S and 400-S units.
Page 22
Chapter 1 Using the Remote Administration utility In the Instant Internet Setup software (Setup), you must activate the Telnet service so that the Instant Internet unit can accept connections from a remote Telnet application. To enable the Telnet service in Setup: From the Windows menu, choose Programs >...
Accessing and using the remote host If you plan to use the Telnet application provided with Instant Internet (called AniTa), then use the following steps; otherwise, set the port in your Telnet application to 23. For instructions on installing AniTa, refer to Chapter 4 of Installing the BayStack Instant Internet Management Software Version 7.11.
Chapter 1 Using the Remote Administration utility Figure 1 Command prompt BayStack Instant Internet(tm) version 7.11 Copyright (c) 1995-2000 Nortel Networks Corporation ii> Note: If you enter an incorrect password, the message “Incorrect Login” is displayed and you are prompted to enter a correct password.
• Commands are not case-sensitive. For example, same as DIALERD ISDN DOWN • The command line interpreter maintains a history of entered commands. Press the up arrow to place previously entered commands on the command line. • To interrupt the command, press [Ctrl] + C. •...
Page 26
Chapter 1 Using the Remote Administration utility 302005-F...
Chapter 2 Using configuration commands This chapter provides definitions and examples of Instant Internet’s remote access configuration commands for Telnet and out-of-band management. Commands take effect immediately but are not preserved if a restart is performed unless you enter the commit Available commands Instant Internet divides the remote access commands into three categories:...
Chapter 2 Using configuration commands Character commands The question mark ( Config commands Config commands are used to set up and manipulate interfaces. alias command command allows you to have two or more IP addresses and subnet alias masks for one physical interface. This capability is helpful because it provides a means for having both public and private IP addresses on the same LAN interface.
dhcp command Use the command to view the status of or configure the state of the dhcp Dynamic Host Configuration Protocol (DHCP) client. dhcp [configure <interface> renew <interface> release <interface> bootp <interface> Table 2 describes the Table 2 dhcp command options Option Definition Instructs the specified interface to DHCP to retrieve its IP address,...
Chapter 2 Using configuration commands dialerd command dialerd specified interface. dialerd [<interface> [answer backup command delay demand idletimeout <seconds> mode nodisable number down start stop]] Table 3 describes the Table 3 dialerd command options Option interface answer backup command delay 302005-F command displays or configures demand-dialing settings for the callback | disable | enable | only...
Page 31
Table 3 dialerd command options (continued) Option Definition Sets the dial and hang up thresholds and the demand timeout. demand dialthreshold must be in use before an additional interface can dial. hangupthreshold below which an interface hangs up. These options are relevant only when you use the PPP Multilink Protocol.
Chapter 2 Using configuration commands dns command Use the maintenance. server <ipadr> dns [add drop server <ipadr> cache flush suffix <suffix> ] Table 4 describes the Table 4 dns command options Option add server drop server cache flush suffix Example ii>...
encapsulation command encapsulation interface. This command is normally used only for synchronous interfaces (for example, V.35, X.21, T1, and E1). encapsulation [<interface> [ppp | framerelay | terminal] Table 5 describes the Table 5 encapsulation command options Option Definition The physical interface name. interface The ppp encapsulation protocol.
There is an implied deny at the end of each filter list. Packets matching the criteria are passed to the layer 4 switch. This option is useful only for Web traffic. Web traffic passed to the layer 4 switch can then be redirected to the transparent Web cache.
Page 35
Table 6 filter command options (continued) Option Definition Specifies matching criteria of source IP address, source port, or both. source address bits you want to allow or deny. ports deny. Specifies matching criteria of destination IP address, destination port, destination or both.
Page 36
Chapter 2 Using configuration commands Example 4 filter inet allow icmp Allows any ICMP traffic. Example 5 filter inet allow tcp dest 10.0.0.99:80 Allows TCP traffic destined to 10.0.0.99 port 80. Example 6 filter inet allow tcp source:1024-5000 dest 10.0.0.99:1024-5000 Allows TCP traffic with a source port from 1024 to 5000, destined to 10.0.0.90 with a port from 1024 to 5000.
Chapter 2 Using configuration commands Table 7 describes the Table 7 framerelay command options Option interface dlcilen inarp type hostname command hostname host name directly by providing the interface. If an interface is provided, a reverse name lookup is performed on the IP address of the interface.
Chapter 2 Using configuration commands ifconfig command ifconfig configuration. ifconfig [ <interface> [disable Table 10 describes the Table 10 ifconfig command options Option interface disable enable infilter hwaddress 302005-F command displays or sets parameters for the interface [ <hhmm> | clear] [ <hhmm>...
Page 41
Table 10 ifconfig command options (continued) Option Definition Sets the interface’s IP address and netmask. ipaddress ipadr netmask Sets the Maximum Transmission Unit (MTU) for a packet. (default: 1500) size - Sets the output filter applied to outgoing traffic. outfilter filterlist clear When...
Page 42
Chapter 2 Using configuration commands Example ii> ifconfig eth1 type Ethernet adminStatus inOctets inNUcastPkts inErrors outOctets outNUcastPkts outErrors eth2 type Ethernet adminStatus inOctets inNUcastPkts inErrors outOctets outNUcastPkts outErrors tok1 type Token Ring adminStatus inOctets inNUcastPkts inErrors outOctets outNUcastPkts outErrors ifconfig eth1 infilter net ifconfig eth1 ipaddress 10.160.92.1 255.255.255.0 ifconfig eth2 ipaddress 10.160.97.2 255.255.255.0 ifconfig tok1 ipaddress 10.160.96.1 255.255.255.0...
ip command command displays or sets the Internet Protocol (IP) parameters. ip [defaultnetwork <ipadr> forwarding on | off] Table 11 describes the Table 11 ip command options Option defaultnetwork forwarding Example ii> ip forwarding inReceives inAddrErrors inUnknownProtos inDelivers outDiscards reasmTimeout reasmOKs fragOKs fragCreates...
Chapter 2 Using configuration commands command in Utility shows several counters relating to errors that discard packets. Table 12 describes the ip counters. Table 12 ip counters Option inHdrErrors inAddrErrors inUnknownProtos Packet to machine’s address with protocol not TCP, UDP, or ICMP, inDiscards outDiscards outNoRoutes...
You can specify to use as many of the three encryption types or as many of the three authorization types as you like. You can also specify the order in which you would like these encryption or authorization types used. Table 13 describes the ipsec Table 13 ipsec command options...
Page 46
Chapter 2 Using configuration commands Table 13 ipsec command options (continued) Option remote encrypt authorize group timeout disconnect 302005-F Definition Specifies the subnet(s) that will be received over the tunnel. For more details, on how this option is used, refer to Using the BayStack Instant Internet Management Software Version 7.11.
ISDN is the aggregate of ISDN-B1 and ISDN-B2. isdn [<interface> [calltype <val> inboundvoice pots | dovbs number priority speed spid switch trace voice logging Reference for the BayStack Instant Internet Remote Access Commands Version 7.11 Chapter 2 Using configuration commands Definition Deletes the specified tunnel and removes the configuration settings.
Options listed include: none, auto, att, aus, dms, etsi, ins64, ltr6, net3, nil, nti, sing, vn3. Turns on D-Channel tracing. Note: Use this option only as directed by Nortel Networks support personnel. When voice is on, all outbound calls are no longer made as data calls, but as voice calls (data over voice).
Example ii> isdn isdn ISDN switch ni1 spid 015550000001 speed 128 channel 1=active call state=idle (0) channel 2=active call state=idle (0) name command command sets or displays the name of the unit. name name [<name>] Example ii> name name SERVER0000000...
Chapter 2 Using configuration commands Table 15 describes the Table 15 nat command options Option drop flush timeout 302005-F command options. Definition Adds a static network address translation entry. local - The legal (or public) IP address that will reach the Instant Internet unit.
ppp command command displays or sets the Point-to-Point Protocol (PPP) parameters. ppp <interface> authentication [local | remote ] disable | pap | chap | any dns on | off echo on | off mp on | off password <password> username <username> reset Table 16 describes the...
Table 17 describes the Table 17 pppoe command options Option Definition Specifies the name for the virtual pppoe interface. pppoe Specifies the name of the interface used for pppoe. interface Sets the demand timeout. The interface hangs up when the demand idletimeout Use the ppp command to assign a user name and password to the PPP protocol.
Chapter 2 Using configuration commands Table 18 describes the Table 18 route command options Option default drop Example ii> route Type localhost broadcast directed local remote directed local remote gateway gateway sync command command sets or displays the parameters for a synchronous (T1, V.35, sync or X.21) interface.
sync [<interface> clock framing format coding rate data autoloopback enable | disable crc4 nfas fractional Table 19 describes the sync Table 19 sync command options Option Definition The physical interface name. interface Specifies the source of the clock. clock (default: external) Selects the type of framing.
Chapter 2 Using configuration commands Table 19 sync command options (continued) Option autoloopback crc4 nfas fractional Example 1 sync t1 fractional 0xffffff Enables the use of all 24 channels. Example 2 sync t1 fractional 0x000fff Enables the use of channels 1 to12. Example 3 sync t1 framing ESF sync t1 coding b8zs...
Chapter 2 Using configuration commands Table 21 describes the Table 21 time command options Option hhmm timezone Example ii> time 1904 Wed Aug 9 19:04:00 2000 ii> time cst6cdt Wed Aug 9 19:04:00 2000 timezone option timezone display the current setting of the timezone option, use the stdoffset[dst[offset][,rule]] Table 22 describes the...
Table 22 timezone command options (continued) Option Definition Indicates the value that should be added to the local time to arrive at offset Coordinated Universal Time (UTC). The offset has the form hh[:mm[:ss]] for more information. Indicates when to change to and from daylight saving time (dst). rule The rule has the form “rule: date[/time],date[/time] option”...
Chapter 2 Using configuration commands • The format of the date may be shown in one of three ways. See more information. Table 23 timezone command date formatting methods Method Definition Indicates Julian day Leap days are not counted. That is, in all years (including leap years) February 28 is day 59 and March 1 is day 60.
Chapter 2 Using configuration commands Eastern Standard Time is 5 hours earlier than Coordinated Universal Time (UTC). Standard time and daylight saving time both apply to this locale. Eastern Daylight Time (EDT) is one hour ahead of standard time. Daylight saving time starts on the first (1) Sunday (0) of April (4) at 2:00 a.m.
Chapter 2 Using configuration commands Table 24 wan command options Option interface diffserve Example ii> wan T1 diffserve on Server commands Server commands are commands for servers that run in the unit. backup command backup connection if the first interface fails. If the first interface fails, Instant Internet attempts to establish a connection on the second interface.
chargend command chargend executes a diagnostic facility that accepts TCP connections on port 19 and sends data to the client at the maximum possible rate. chargend start | stop Example ii> chargend start dhcpd command command displays or configures the unit’s Dynamic Host dhcpd Configuration Protocol (DHCP) service.
Chapter 2 Using configuration commands Table 26 describes the Table 26 dhcpd command options Option start scope exclude lease domain relay delete wins node stop 302005-F command options. dhcpd Definition Starts the DHCP service. Note: You must use the start the DHCP service, which differs from many of the other services where the command is implied when any command is issued.
Chapter 2 Using configuration commands echod command command starts or stops the echo service. This diagnostic facility echod accepts TCP connections on port 7 and echoes all incoming data back to the sender. echod start | stop Example ii> echod start identd command identd servers with the actual name of the connecting client;...
ntpd command command provides a means for the user to select the external clock to ntpd be used for the unit’s time. The Instant Internet unit synchronizes time to this external clock using the NTP protocol. The clock is synchronized on a regular basis (every 12 hours), but provisions are included so that a demand-based Internet connection such as ISDN or analog is not initiated solely for the purpose of synchronizing the clock.
Chapter 2 Using configuration commands Example ii> plserver eth1 ripd command command configures the use of the Routing Information Protocol ripd (RIP). ripd [start accept drop multicast on | off refuse version stop] Table 28 describes the Table 28 ripd command options Option start accept...
Table 28 ripd command options (continued) Option Definition Cancels a previously entered refuse used to cancel all of the previously entered announcements are accepted from all interfaces. Specifies the version of RIP used by the unit. Note: Multicast is now version supported in version 2.
Chapter 2 Using configuration commands socksd command socksd socksd [start log on | off stop] Table 29 describes the Table 29 socksd command options Option start stop Example ii> socks Address 10.0.0.247 tcpserver command tcpserver (Setup, Admin, Monitor, Tools, and AutoLog) to communicate with the unit over IP.
telnetd command command starts or stops the Telnet service. telnetd telnetd [start port <value> rows <value> timeout <seconds> stop] Table 30 describes the Table 30 telnetd command options Option Definition Starts the Telnet service. start Sets the Telnet port. port value: The actual port number to be used.
Chapter 2 Using configuration commands webproxy command webproxy webproxy [start active on | off activetime <minutes_from_midnight_to_start_the_Active_Refresh> activeend <minutes_from_the_start_time_to_stop_the_Active_Refresh> activedays <bit_map_of_the_days_to_run_the_Active_Refresh> (bit 1=Sunday, 2=Monday, . . . 7=Saturday) address <proxy_address> binpercent <expiry_percent_for_binary> bintime <min_expiry_time_for_binary (in minutes)> bypass on | off on | off level 1 | 2 | 3 (conservative | moderate (default) | aggressive) binpercent, bintime, cgi, nocache, query, textpercent, and...
Page 73
Table 31 webproxy command options (continued) Option Definition Sets the number of minutes from midnight that you want to start the activetime active refresh. (default: 460 (8:00 AM)) minutes Refresh. Sets the number of minutes from the start time to stop the active activeend refresh.
Page 74
Chapter 2 Using configuration commands Table 31 webproxy command options (continued) Option level maxentries maxsize nocache port query 302005-F Definition Sets the expiration and request and response options for Instant Internet for binpercent bintime textpercent , and time (Conservative) - This level reduces Internet traffic with minimal risk of returning “stale”...
Page 75
Table 31 webproxy command options (continued) Option Definition Enables or disables the return of a potentially stale response from the refresh Web cache. A stale response may occur after the cache received an error from the real server trying to verify that it is up to date. Set this value to (default: on) Number of bytes reserved for use by other parts of the system.
Chapter 2 Using configuration commands Example ii> webproxy webproxy start transparent on webserver command webserver webserver [start Table 32 describes the Table 32 webserver command options Option start port stop Example ii> webserver webserver is running on port 80 winsockserver command winsockserver parameter specifies the IPX frame type.
Table 33 describes the Table 33 winsockserver command options Option interface Example winsockserver eth1 winsockserver eth1 802.3 winsockserver eth1 802.2 winsockserver eth1 SNAP Utility commands You can use the Utility commands to determine the status of processes on a particular unit or to control a Telnet or out-of-band management session. Utility commands are also useful to restart a unit or to start tracing and logging.
csu command command displays diagnostic information for the T1 channel service unit (CSU). This command provides information that is helpful in diagnosing T1 lines that are down or slow. csu <interface> Table 37 describes the Table 37 csu command option Option Definition The physical interface name.
Chapter 2 Using configuration commands Table 38 describes the Table 38 date command option Option mmddyyyy Example ii> date Wed Aug 16 15:56:35 2000 ii> date 02292000 Tue Aug 29 15:57:19 2000 dir command command displays the files in the temporary or nonvolatile storage. dir [<path>] Table 39 describes the...
Chapter 2 Using configuration commands memory command memory memory Example ii> memory bytes used 2191384 free 3123992 password command password password is case-sensitive and will allow up to 15 characters, including spaces. This command defines the new password immediately. The not required.
ping command command sends a packet to the specified host name or IP address. The ping option specifies the length to extend the packet beyond its normal header. length Note: Running the Telnet or out-of-band management session which could time out before the ping ping [<hostid>...
Chapter 2 Using configuration commands Table 40 ping command options (continued) Option control monitor background Example ii> ping 10.0.0.1 count 10 interval 3 pinging 10.0.0.1 succeeded Note: Press [Ctrl + C] to stop a restart command restart restart confirm Note: To perform a restart, you must spell out rows command command sets the number of rows of output displayed in a Telnet or rows...
sap command command displays a list of known Instant Internet units. Example ii> sap Time system command command displays the unit serial number, total installed memory, system firmware version, system start time, current system time, and system uptime. system Example ii>...
Chapter 2 Using configuration commands Table 41 describes the Table 41 trace command options Option interface flags file size Example ii> trace dialup io Tracing dialup ii> trace eth1: tracing off dialup: out+in eth2: tracing off 302005-F command options. trace Definition Specifies the name of the interface to be traced.
When attempting to debug problems with Admin access control lists, you can use the access trace log, which contains information about what was happening in the access control logic. The information from this trace is stored in the access.log file which can be retrieved with Setup.
Page 92
Index daylight savings time, setting 59 demand-dialing settings configuring for an interface 30 displaying for an interface 30 DHCP configuring for a client 29 configuring for a unit 63 viewing the status for a client 29 viewing the status for a unit 63 dhcp command bootp 29 configure 29...