Avocent CYCLADES ACS 5000 Command Reference Manual
  1. Manuals
  2. Brands
  3. Avocent Manuals
  4. Network Hardware
  5. Cyclades ACS 5000 SERIES
  6. Command reference manual

Avocent CYCLADES ACS 5000 Command Reference Manual

Hide thumbs Also See for CYCLADES ACS 5000:
Table of Contents

Advertisement

Quick Links

CYCLADES
ACS 5000
®
Command Reference Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the CYCLADES ACS 5000 and is the answer not in the manual?

Questions and answers

Related Manuals for Avocent CYCLADES ACS 5000

Summary of Contents for Avocent CYCLADES ACS 5000

  • Page 1 CYCLADES ACS 5000 ® Command Reference Guide...

  • Page 2: Fcc Warning Statement

    FCC Warning Statement The Cyclades ACS 5000 advanced console server has been tested and found to comply with the limits for Class A digital devices, pursuant to Part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment.
  • Page 3 ACS 5000 Advanced Console Server Command Reference Guide Avocent, the Avocent logo, The Power of Being There, DSView and Cyclades are registered trademarks of Avocent Corporation or its affiliates in the U.S. and other countries. All other marks are the property of their respective owners.
  • Page 4 Instructions This symbol is intended to alert the user to the presence of important operating and maintenance (servicing) instructions in the literature accompanying the appliance. Dangerous Voltage This symbol is intended to alert the user to the presence of uninsulated dangerous voltage within the product’s enclosure that may be of sufficient magnitude to constitute a risk of electric shock to persons.

  • Page 5: Table Of Contents

    T A B L E O F C ON T E N T S Table of Contents Chapter 1: Using the Command Line Interface ............. 1 Overview ............................1 Understanding the CLI Utility ....................1 Accessing the CLI ........................1 Important features of the CLI utility...................
  • Page 6 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Authentication ..........................33 User access to serial ports......................36 NIS Client............................37 NIS Client Configuration......................37 nsswitch.conf..........................38 Kerberos Authentication ........................39 Kerberos server authentication with tickets support ..............39 Configuring the console server to use Kerberos tickets authentication ........40 Kerberos server authentication ....................
  • Page 7 Table of Contents Date and Time, Timezone and Daylight Saving ................83 Daylight Saving Time (DST)..................... 83 Network Time Protocol (NTP)....................85 Session Sniffing ..........................86 Data Buffering ..........................87 Ramdisk............................. 88 Linear vs. Circular buffering....................88 Menu Shell ............................89 Terminal Appearance ........................
  • Page 8 Cyclades ACS 5000 Advanced Console Server Command Reference Guide...

  • Page 9: Chapter 1: Using The Command Line Interface

    CHAPTER Using the Command Line Interface Overview ® The Cyclades ACS 5000 advanced console server command line interface (CLI) may be used for administration and maintenance of the ACS 5000 console server. CLI is comprised of a set of keywords nested in a hierarchy format. CLI allows the console server administrator to perform the same configuration tasks available through the web manager.

  • Page 10: Important Features Of The Cli Utility

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Remote users may access the console server CLI through SSH, by using a terminal emulation program to dial into an external modem or by creating a PPP connection with an external modem.

  • Page 11: Modes Of Operation

    Chapter 1: Using the Command Line Interface Modes of operation The following table describes the three modes of executing commands using the CLI utility. Table 1.1: Modes of Operation Mode Description Command Line CLI is invoked in the Linux shell with commands and parameters. For example: [root@CAS root]# bin/CLI config network hostsettings hostname <parameter>...

  • Page 12: Cli Navigation

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 1.1: Modes of Operation (Continued) Mode Description Interactive CLI is invoked and commands and parameters are entered in the Linux shell. CLI is active until the quit command is issued. For example, CLI>...

  • Page 13: Saving Cli Changes

    Chapter 1: Using the Command Line Interface Saving CLI changes Configuration changes made in any of the CLI modes are temporary. Changes are not activated and saved into the configuration files unless you run the commands described in the following table. Table 1.2: CLI Commands for Saving Configuration Changes Command Action...
  • Page 14 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 1.4: Command History Keys (Continued) Ctrl+p Move back through the history list, fetching the previous command (same as <up arrow key>). NOTE: The command history buffer is only available for the last 500 commands in the current session. The history is cumulative, so terminating the session does not clear the buffer.
  • Page 15 Chapter 1: Using the Command Line Interface Table 1.6: CLI Global Commands (Continued) show Displays the configuration parameter(s). When combined with a command name supported at the current level, the applicable information or parameter is displayed. CLI command arguments Command arguments are used when CLI is invoked in the command line mode in the Linux shell or in a batch mode Table 1.7: CLI Command Arguments Argument...
  • Page 16 Cyclades ACS 5000 Advanced Console Server Command Reference Guide...

  • Page 17: Chapter 2: Network Configuration

    From your terminal emulation application, log in to the console port as . The default root password is avocent NOTE: It is strongly recommended to change the default password to a new password before configuring the console server for secure access. To change a password, run the following command.

  • Page 18: Ipv4 And Ipv6 Addressing

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide -or- If you enter , you will be prompted to save your configuration after the following warning is displayed: (Note: If you are NOT connected to this unit through a console, and you have just reconfigured the IP of this unit, activating the new configurations may cause you to lose connection.

  • Page 19: Ipv4 Addressing

    Chapter 2: Network Configuration NOTE: If services not supporting IPv6 are needed, select Dual Stack (IPv4 and IPv6) and those services will be available for IPv4. IPv4 Addressing To enable IPv4 network addressing: From the shell prompt on your terminal, enter the following command. # CLI From the cli prompt, enter the following: cli>...
  • Page 20 Cyclades ACS 5000 Advanced Console Server Command Reference Guide • Virtual ports To enable IPv6 network addressing: From the shell prompt on your terminal, enter the following command. # CLI From the cli prompt, enter the following: cli> config network hostsettings ipmode dualstack This will enable both IPv4 and IPv6 network addressing.

  • Page 21: Ipv4 And Ipv6 Common Parameters

    Chapter 2: Network Configuration Table 2.2: IPv6 Specific Configurations (Continued) IPv6 Specific Level 1 IPv6 Specific Level 2 Description ipv6method Selects the way IPV6 addresses will be configured or obtained. stateless_only IPv6 local address will be dynamically obtained from an IPv6 Router in the local network – this method is to be used only if the two others are not available (local IPv6 addresses obtained by the router cannot be used outside the local network).

  • Page 22: Host Settings

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide NOTE: If the gateway address is IPV6 link_local (range identified by the first 10 bits equal to 1111111010), then the interface id is required: config network stroutes add default gateway <gateway_IP_address> interface <interface_ID>...

  • Page 23: Security Profiles

    Chapter 2: Network Configuration Table 2.3: Host Settings Parameters and Values (Continued) Parameter Level1 Parameter Level2 Value Description secdnsserver <IPv6_address>/<prefix_length> Secondary DNS Server (IPv4 or IPv6) primipaddress <nnn.nnn.nnn.nnn> Primary IP address (IPv4 specific) secipaddress <nnn.nnn.nnn.nnn> Secondary IP address (IPv4 specific) primsubnetmask <nnn.nnn.nnn.nnn>...

  • Page 24: Enable Serial Ports

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Enable or disable desired protocols or services. Refer to Table 2.5 for the list of parameters and values. custom> [parameter] <value> Activate and save your configuration. Table 2.5: Custom Security Profile Parameters...

  • Page 25: Vpn Configuration

    Chapter 2: Network Configuration Activate and save your configuration. VPN Configuration You can set up VPN connections to establish an encrypted communication between the console server and a host on a remote network. The encryption creates a security tunnel for dedicated communications.

  • Page 26: Snmp

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 2.6: VPN Parameters (Continued) Parameter Value Description leftsubnet <n.n.n.n/n> The netmask of the subnetwork where the host resides. rightsubnet NOTE: Use CIDR notation. The IP number followed by a slash and the number of ‘one’ bits in the binary notation of the netmask.
  • Page 27 (read only) • source (allowed host): 192.168.0.200 cli> config network snmp v1v2 add community avocent oid .1 permission ro source 192.168.0.200 Run the following commands to activate and save the configuration. In order to configure SNMP v3, enter the following command. Refer to Table 2.8 for a list of parameters.

  • Page 28: Hosts

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide cli> config network snmp v3 add username john password john1234 oid .1 permission ro Activate and save your configuration. Hosts To configure hosts: Add a host name with IP address. cli> config network hosttable add hostip <n.n.n.n> name [hostname] You may repeat this step as many times as necessary.

  • Page 29: Structure Of The Iptables

    Chapter 2: Network Configuration Structure of the iptables The iptables are structured in three levels: table, chain and rule. A table may contain several chains and each chain may contain several rules. Table The table indicates how the iptables works. There are currently three independent tables supported by the iptables but only two are used.
  • Page 30 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Configuring IP tables IPv4 Syntax # iptables -command chain rule-specification [-t table] [options] # iptables -E old-chain-name new-chain-name where, • table - May be filter or nat. If the option -t is not specified, the filter table is assumed.
  • Page 31 Chapter 2: Network Configuration Table 2.9: iptables Commands Options (Continued) Command Description -L - - list List all rules in the selected chain. If no chain is selected, all chains are listed. It is legal to specify the -Z (zero) option as well, in which case the chain(s) are automatically listed and zeroed.
  • Page 32 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 2.10: iptables Rules Specifications (Continued) Parameter Description - -destination[!]address[/mask] Destination specification. See the description of the -s (source) flag for a detailed description of the syntax. The flag - -dst is an alias for this option.

  • Page 33: Match Extensions

    Chapter 2: Network Configuration Table 2.10: iptables Rules Specifications (Continued) Parameter Description - -numeric Numeric output. IP addresses and port numbers are printed in numeric format. By default the program tries to display them as host names, network names or service, when applicable. - -exact Expand numbers.
  • Page 34 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 2.11: TCP Extensions (Continued) TCP extension Description [!] -- syn Only match TCP packets with the SYN bit set and the ACK and FIN bits cleared. Such packets are used to request TCP connection initiation; for...

  • Page 35: Multiport Extension

    Chapter 2: Network Configuration Multiport extension This module matches a set of source or destination ports. Up to 15 ports may be specified. It may only be used in conjunction with -m tcp or -m udp. Table 2.14: Multiport Extensions Multiport extension Description - -source-port [port[,port]]...
  • Page 36 Cyclades ACS 5000 Advanced Console Server Command Reference Guide user-defined chains which are only called from those chains. Several options control the nature of the error packet returned. Table 2.16: LOG Extension LOG extension Description - -reject-with type The type given may be icmp-net-unreachable, icmp-host-unreachable, icmp-port-...
  • Page 37 Chapter 2: Network Configuration the packet should be modified (and all future packets in this connection are also mangled) and rules should cease being examined. It takes one option. Table 2.18: DNAT Target DNAT target Description - -to-destination <ipaddr>[- This may specify a single new destination IP address, an inclusive range <ipaddr>][:port-port] of IP addresses and optionally, a port range (which is only valid if the rule also specifies -p tcp or -p udp).

  • Page 38: Static Routes

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide To configure firewall: fwset script Iptables rules are stored in /etc/network/firewall. The fwset script saves the iptables rules in /etc/network/firewall and saves it to Flash memory. fwset restore Restores the iptables’ rules previously saved in /etc/network/firewall to their original configuration.
  • Page 39 Chapter 2: Network Configuration Table 2.21: Routing Table Parameters (Continued) Parameter Description interf The interface to use for the route. Must be specified if a gateway is not. When a gateway is specified, the operating system determines which interface is to be used. Use the following command to configure static routes.
  • Page 40 Cyclades ACS 5000 Advanced Console Server Command Reference Guide...

  • Page 41: Chapter 3: Security

    CHAPTER Security This chapter describes the procedures for configuring authentication service(s) that the console server and its connected devices use. Authentication is the process by which the system, or more specifically, an authentication service such as Kerberos, LDAP or TACACS+, verifies the identity of users as well as confirms receipt of communication to authorized recipients.
  • Page 42 Execute the following command to configure authentication. Refer to Table 3.1 for authentication parameters and fallback mechanisms. cli> config security authentication authtype [parameter] Activate and save your configuration. Table 3.1: Cyclades ACS 5000 Console Server Serial Port and General Authentication Methods Authentication type Parameter Description...
  • Page 43 Chapter 3: Security Table 3.1: Cyclades ACS 5000 Console Server Serial Port and General Authentication Methods Authentication type Parameter Description None none Not a valid option when the serial port is configured for (Available for serial port Power Management protocol. The system defaults to Local authentication only.)

  • Page 44: User Access To Serial Ports

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide User access to serial ports To add groups and users: Enter the following command to create user groups and add members, if required. cli> config security addgroup groupname <group name> usernames <[name_1, name_2, .

  • Page 45: Nis Client

    # domainname [NIS domain name] Show or set the system's NIS/YP domain name, for example: # domainname avocent mycompany-nis Edit the /etc/yp.conf file. Configure the NIS server. For example, if the NIS server has the IP address 192.168.160.110, add the following line to the file.

  • Page 46: Nsswitch.conf

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide ypserver 192.168.160.110 Edit the /etc/nsswitch.conf file to include the NIS in the lookup order of the databases. Configure the parameter <all/sxx>.authype as local. To test the configuration: Start with the following command.

  • Page 47: Kerberos Authentication

    Chapter 3: Security Table 3.5: nsswitch.conf Parameters (Continued) Parameter Description UNAVAIL The service is permanently unavailable. TRYAGAIN The service is temporarily unavailable. The following examples illustrate the use of NIS to authenticate users. • Authenticate the user in the local database; if the user is not found, then use NIS. passwd: files nis shadow: files nis group: files nis...

  • Page 48: Configuring The Console Server To Use Kerberos Tickets Authentication

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide The login program or kinit decrypts the TGT using the user's key, which is computed from the user's password. The TGT, which is set to expire after a certain period of time, is stored in the credentials cache.
  • Page 49 Chapter 3: Security kadmin: ktadd host/acs48-2.cyclades.com kadmin: q To list all configured hosts in the Kerberos server, run the following command, which displays all hosts added through the ktadd command in the Kerberos server. # klist -k Configure hostname and domain name. # hostname acs48-2 # domainname cyclades.com To access the console server through rlogin and Telnet:...

  • Page 50: Kerberos Server Authentication

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide # klist Connect from the client to the console server through SSH. # ssh john@acs5048-2.cyclades.com Open an SSH session to one of the console server’s ports. # ssh john:7001@acs5048-2.cyclades.com RLOGIN to the console server with forwardable tickets.

  • Page 51: Ldap Authentication

    Chapter 3: Security Save your changes. # saveconf LDAP Authentication To configue LDAP authentication on the console server: Execute the following command. Refer to Table 3.6 for authentication parameters. cli> config security authentication [parameter] <value> Activate and save your configuration. Table 3.6: LDAP Authentication Parameters Parameter Value...
  • Page 52 Cyclades ACS 5000 Advanced Console Server Command Reference Guide To configure a TACACS+ authentication server: On the server, add raccess service to the user configuration. Define to which group or groups the user belongs. user = <username>{ global = cleartext “<password>”...
  • Page 53 Chapter 3: Security Table 3.7: Parameters for Specifying User Authorization on a TACACS+ Server (Continued) Parameter Description service = <authorization Specifies the authorization method used and whether the user is allowed or method> denied access when the raccess parameter is set on the console server. Only users who have this parameter set to raccess have authorization to access the specified ports.

  • Page 54: To Configure A Radius Authentication Server

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide To configure a RADIUS authentication server: On the Radius server, edit /etc/raddb/users and add a new string attribute (ATTRIBUTE Framed-Filter-Id) similar to the following example. groupuser1 Auth-Type= Local, Password =”xxxx” Service-Type=Callback-Framed-User, Callback-Number=”305”,...

  • Page 55: One Time Password (Otp) Authentication

    Chapter 3: Security Table 3.9: Radius Configuration Parameters (Continued) Parameter Value Description radiussvctype <yes/no> Set to “no” to authorize the ACS console server to retrieve the level of user based on the group_name attribute sent by the RADIUS server. Set to “yes” to authorize the ACS console server to retrieve the level of the user (admin or regular) based on the Service-Type attribute from the RADIUS server.
  • Page 56 Cyclades ACS 5000 Advanced Console Server Command Reference Guide • The main memory on the console server • NFS-mounted directory • Configure OTP for each user. The console server administrator must make sure each user who needs to use OTP has a local account on the console server and is registered with the OTP system.
  • Page 57 Chapter 3: Security Re-enter new password: users_passwd Execute the opiepasswd command to register a user and generate a default OPIE key. This command initializes the system information to allow using OPIE login. NOTE: You may use the -c option (console mode) if you have secure access to the console server. Running OPIE commands through an unsecured connection may reveal your password and compromise security.

  • Page 58: Shadow Passwords

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide To generate OTP passwords: Execute the command opiekey to generate passwords for the users. NOTE: Do not execute the opiekey command through dial-in or an unsecured remote connection such as Telnet.

  • Page 59: User Configured Digital Certificate

    Chapter 3: Security The Certificate Signing Request (CSR) generated by the command contains some personal or corporate information and its public key. Table 3.11: Required Information for the OpenSSL Package (etc/openssl.conf file by default) Parameter Description Country Name (2 letter code) The country code consisting of two letters.

  • Page 60: X.509 Certificate On Ssh

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide To generate a self-signed certificate: Open the /etc/req_key file and update the user data with your organization specific data. # vi /etc/req_key [ req ] default_bits = 1024 distinguished_name = cyclades...
  • Page 61 Chapter 3: Security To configure an X.509 certificate for SSH: Enter the following command to configure an X.509 certificate. See Table 3.12 for the list of parameters. cli> config security profile custom ssh ssh_x509 [parameter] <value> Table 3.12: X.509 Certificate Parameters Parameter Value CA_file...
  • Page 62 Cyclades ACS 5000 Advanced Console Server Command Reference Guide...

  • Page 63: Chapter 4: Accessing Connected Devices

    CHAPTER Accessing Connected Devices This chapter describes set up and configuration parameters for accessing serial ports and connected devices. Connection Profiles and Protocols The following table describes each connection profile and supported protocols. Table 4.1: Connection Profiles and Protocols Connection Supported Profile Protocol...

  • Page 64: Serial Ports General Parameters

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Serial ports general parameters To configure general parameters: Execute the following command for one or multiple serial ports. Refer to Table 4.2 for port configuration parameters. cli> config physicalports <'all' or range/list[1-4] general [parameter] <value>...
  • Page 65 Chapter 4: Accessing Connected Devices To configure other configuration parameters: Execute the following command for one or multiple serial ports. Refer to Table 4.3 for configuration parameters. cli> config physicalports <'all' or range/list[1-4] other [parameter] <value> Activate and save your configuration. Table 4.3: Other Serial Port Configuration Parameters Parameter Value...

  • Page 66: Accessing Serial Ports Using Ts_Menu

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide To open and close a Telnet session to a serial port: # telnet [hostname] [TCP port number] Table 4.4: Telnet Session Configuration Parameters Parameter Description hostname Workstation name or its IP address.
  • Page 67 Chapter 4: Accessing Connected Devices Calling ts_menu with specific parameters # ts_menu -u <user> [-l[c]] [-ro] [-s] [-auth] <console port> Table 4.6: ts_menu Parameters Parameter Description Invokes ts_menu as the user named by <user>. This requires a password to be -u <user>...
  • Page 68 Cyclades ACS 5000 Advanced Console Server Command Reference Guide To close the session from ts_menu (local): Enter the escape character shown when you connect to the port. In character/text mode, the Escape character is Ctrl+] Console escape commands are displayed.

  • Page 69: Configuration Examples

    Chapter 4: Accessing Connected Devices Table 4.8: ts_menu Configuration Parameters Parameter Value Description consolename <consolename> Name of the serial port to which you need to connect. list To display a list of the available serial ports. readonly To connect to the console of a server in read-only mode. Add the serial port name parameter: cli>...
  • Page 70 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Internet Figure 4.1: Example of CAS Configuration with Local Authentication Table 4.9: Example of CAS Configuration with Local Authentication Descriptions Item Description Item Description Servers on Serial Ports Ethernet Hub or Switch...
  • Page 71 Table 4.10: Example of CAS Configuration with Local and Remote Authentication Descriptions Item Description Item Description Servers on Serial Ports Ethernet Hub or Switch Cyclades ACS 5000 Console Server Remote Data Server Power Cable Ethernet Router Ethernet CAT 5 Cable Local User TACACS Server...
  • Page 72 Cyclades ACS 5000 Advanced Console Server Command Reference Guide # passwd <username> Make sure the physical connection between the console server and the servers is correct. Confirm the communication parameters (9600 bps, 8N1) are set on both the server and the console server.
  • Page 73 Description Item Description Terminals on Serial Port (dumb terminal or Ethernet Hub or Switch workstation running terminal application) Cyclades ACS 5000 Console Server Ethernet Router Power Cable Remote Servers Ethernet CAT 5 Cable To test a TS configuration: Create a new user in the local database.
  • Page 74 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Confirm that terminal communication parameters are set to the same as the console server. The console server default communication parameters are at 9600 bps, 8N1. Log in to the server with the newly created username and password.
  • Page 75 Figure 4.4: Example of Dial-in Access Profile Table 4.12: Example of Dial-in Access Profile Descriptions Item Description Item Description Dial-up Management Station Ethernet CAT 5 Cable Modem Ethernet Hub or Switch Cyclades ACS 5000 Console Server Ethernet Router Power Cable Remote Servers...
  • Page 76 Cyclades ACS 5000 Advanced Console Server Command Reference Guide...

  • Page 77: Chapter 5: Administration

    CHAPTER Administration Process Monitoring The command “w” displays information about the currently logged-in users and their processes. It calls two commands, w_ori and w_cas. The w_ori is the new name of the original command -w and the w_cas displays the CAS session’s information. The header of w_ori displays the current time, how long the system has been running, how many users are currently logged on (excluding the CAS users) and the system load averages for the past one, five and fifteen minutes.

  • Page 78: The Process Table

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide The Process Table The process table displays which processes are running. Type to see a table similar to ps -a the following. Table 5.1: Process Table VmSize State Command root /sbin/inetd...

  • Page 79: Syslog-Ng

    Chapter 5: Administration Syslog-ng Syslog-ng daemon reads log system console messages and log files on remote syslog servers as specified by its configuration file. In addition, syslog-ng may filter messages based on its content and perform an action, for example send an email or pager message. The /etc/syslog-ng/syslog- ng.conf file is used to perform specific configurations.
  • Page 80 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Define Sources source <identifier> { source-driver([params]); source driver([params]); ...}; where, • identifier - Uniquely identifies a given source. • source-driver - A method of retrieving a given message. • params - Each source-driver takes a required or an optional parameter.
  • Page 81 Chapter 5: Administration source s_kernel { file(‘/proc/kmsg’); }; • Receive messages from local syslogd clients. source sysl {unix-stream(‘/dev/log’);}; • Receive messages from remote syslogd clients. source s_udp { udp(ip(<cliente ip>) port(<udp port>)); }; • Listen to messages from all machines on UDP port 514. source s_udp { udp(ip(0.0.0.0) port(514));};...
  • Page 82 Cyclades ACS 5000 Advanced Console Server Command Reference Guide • To filter by level. filter f_level { level(<level name>);}; Examples: filter f_messages { level(info .. warn)}; filter f_emergency { level(emerg); }; filter f_alert { level(alert); }; • To filter by matching a string in the received message.
  • Page 83 Chapter 5: Administration Table 5.5: Destination Drivers Parameters (Syslog-ng Configuration) Option Description file This is one of the most important destination drivers in syslog-ng. It allows (filename[options]) you to output log messages to the named file. The destination filename may include macros (by prefixing the macro name with a '$' sign) which gets expanded when the message is written.
  • Page 84 Cyclades ACS 5000 Advanced Console Server Command Reference Guide The following is an example of how to send an email. destination <ident> { pipe(‘/dev/cyc_alarm’ template(‘sendmail <pars>’));}; where <ident> uniquely identifies the destination. Table 5.6: Send Email Parameters Email field Parameter To address -t <name>[,<name>]...
  • Page 85 Chapter 5: Administration The following example displays an email sent to z@none.com (SMTP's IP address 10.0.0.2) from the email address a@none.com with subject “ALARM”. The message carries the current date, hostname of the console server and the message received from the source. destination d_mail1 { pipe('/dev/cyc_alarm' template('sendmail -t z@none.com -f a@none.com -s \”ALARM\”...
  • Page 86 Cyclades ACS 5000 Advanced Console Server Command Reference Guide • 0 : specific trap • \"\" : host-uptime • .1.3.6.1.2.1.2.2.1.2.1 :interfaces.iftable.ifentry.ifdescr.1 • s : the type of the next field (it is a string) • \"<message - max. size 250 characters>\"...
  • Page 87 Chapter 5: Administration log { source(sysl); source(s_udp); filter(f_messages); destination(d_messages); }; • To send an email if message received from local syslog client has the string kernel panic. log { source(sysl); filter(f_kpanic); destination(d_mail1); }; • To send an email and pager if message received from local syslog client has the string “root”...

  • Page 88: Syslog Messages

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Syslog Messages The console server may generate syslog messages to enable system administrators to monitor system changes. Syslog messages are generated when specific actions are performed or certain conditions are met through user entered commands. The system generates and sends messages to a syslog server using the following format.

  • Page 89: Notifications And Alarms

    Chapter 5: Administration Notifications and Alarms System notifications allow an administrator to manage servers by filtering the messages generated from a server’s console port. It helps with sending email or pager notifications based on the server’s message content. Configuring alarm notification cli>...
  • Page 90 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 5.8: System Notifications Parameters (Continued) Parameter Level1 Parameter Level2 Value Description addsnmptrap <trigger string> Sends a SNMP trap to the configured server if the defined string appears. add Snmptrap> body <string>...

  • Page 91: Dual Power Management

    Chapter 5: Administration add Email>smtpport 25 add Email>subject "Testing Config" Activate and save your configuration. Dual Power Management The console server comes with two power supplies which it may self-monitor. If either of them fails, two actions are performed, sounding a buzzer and generating a syslog message. This automanagement may be disabled (no actions are taken) or enabled (default), any time by issuing the commands.
  • Page 92 Cyclades ACS 5000 Advanced Console Server Command Reference Guide cli> config administration date/time [parameter] <value> Table 5.9: Date and Time Configuration Parameters Parameter Value date <mm/dd/yy> time <hh:mm:ss> Enter the following command to set the timezone. For configuration parameters see Table 5.10.

  • Page 93: Network Time Protocol (Ntp)

    Chapter 5: Administration Table 5.10: Timezone Configuration Parameters (Continued) Parameter Parameter Level1 Level2 Value Description Standard 01h_east_GMT 14h_east_GMT 01h_west_GMT 12h_west_GMT The following are examples of configuring timezones. cli> config administration timezone custom acronym PDT cli> config runconfig cli> config savetoflash cli>...

  • Page 94: Session Sniffing

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide NOTE: To deactivate the NTP service you need to configure date by issuing the following command: cli> config administration date/time date <mm/dd/yyyy> Session Sniffing When multiple sessions are allowed for one serial port, the behavior of the console server is as follows.

  • Page 95: Data Buffering

    Chapter 5: Administration NOTE: Typing all.escape_char or sN.escape_char from the sniff session or send message mode makes the console server to show the previous menu. If you kill all regular sessions using option 4, your session initiates as a regular session automatically. To configure session sniffing: Execute the following command for one or multiple serial ports.

  • Page 96: Ramdisk

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide the parameter s1.data_buffering, though the value cannot be zero since a zero value turns off data buffering. The conf.nfs_data_buffering parameter format is, <server name or IP address>:<remote pathname> For example, if data buffering is enabled for port 1, the data is stored in the file ttyS1.data in local directory /var/run/DB or in remote server indicated by conf.nfs_data_buffering.

  • Page 97: Menu Shell

    Chapter 5: Administration Table 5.12: Data Buffering Configuration Parameters (Continued) Parameter Value Description showmenu file | fileanderase | no | Control the DB menu options. noerase | yes syslogserver <n.n.n.n> Defines the IP address of the Syslog server. syslogsize <record length in Maximum size of syslog data buffer message.
  • Page 98 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Type menush_cfg and use the available options to define a menu title and menu commands. ------------------------------------------------- MenuShell Configuration Utility ------------------------------------------------- Please choose from one of the following options: 1. Define Menu Title 2.
  • Page 99 Chapter 5: Administration Where <x> is the port number being configured. Activate and save the configuration changes. # runconf # saveconf...

  • Page 100: Terminal Appearance

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide To set up which servers the users may access: Enter the following command to set up a menu, which is prompted when you connect from a dumb terminal. Refer to Table 5.13 for configuration parameters.

  • Page 101: Sudo Configuration Group

    NOTE: As supplied, the console server (version 3.3 and greater) provides a user admin from the admin group with the password avocent. The username admin cannot be added or deleted from the web manager, or the CLI, so if a user with the username admin belonging to the admin group is required, a shell script must be executed by user root from the shell command line.

  • Page 102: Restoreconf Utility

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Syntax Enter the following at the shell prompt to see the syntax for the options: # saveconf --help Usage: Save to flash: saveconf Save to storage device: saveconf sd [default] [replace] Save to local file: saveconf local <FILE>...

  • Page 103: Crond

    Chapter 5: Administration Restore from SSH server : restoreconf ssh <FILE> <SSH_SERVER> <USER> Table 5.15: Restoreconf Utility and Storage Device Parameters Media Description local <File> Read the configuration from the path and local file. local <File> Read the configuration from the path and filename. ftp <remote path and filename>...
  • Page 104 Cyclades ACS 5000 Advanced Console Server Command Reference Guide • Status - Active or inactive. The script does not execute if inactive. • User - The process runs with the privileges of a valid local user. • Source - Pathname of the crontab file that specifies frequency of execution and the name of shell script.

  • Page 105: Clustering Using Ethernet Interface

    Figure 5.1: An Example on Using the Clustering Feature Table 5.16: Example of Using the Clustering Feature Descriptions Item Description Item Description Cyclades ACS 5000 Console Server Servers on Serial Ports Master: TCP Port Address Range: 7017 - 7032 Ethernet LAN IP: 20.20.20.1 Secondary IP: 209.81.55.110...
  • Page 106 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 5.16: Example of Using the Clustering Feature Descriptions (Continued) Item Description Item Description Cyclades ACS 5000 Console Server Management Workstation Master: IP Address: 20.20.20.10 Ethernet LAN IP: 20.20.20.3 Servers on Serial Ports...

  • Page 107: Chapter 6: Power Management

    In addition to Cyclades PM IPDUs, the following power distribution units are supported by the console server: • Avocent 1000/2000/3000 Power Management Power Distribution Units (PM PDUs) • Avocent SPC series power control devices ™ •...

  • Page 108: Ipdu Configuration And Management

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Configure the connection type SSH, Telnet or both for users to connect to the IPDU. cli> config physicalports <YY> general pmsessions <ssh|ssh_telnet|telnet> Define a unique name for each connected IPDU appliance.
  • Page 109 Chapter 6: Power Management • An IPDU appliance should have a unique name, referred to as an IPDU ID. • If the IPDU ID is not defined or is duplicated, the console server assigns a default name to an IPDU appliance. •...

  • Page 110: Pmmenu

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Activate and save your configuration. cli> config runconfig cli> config savetoflash To configure user access to outlets: Invoke the CLI utility and navigate to the pmdconfig directory. cli> config applications pmdconfig Enter one of the following strings to add or edit outlet groups.
  • Page 111 Prompts you to enter a list of outlet numbers. Lock lock <outlet list> Lock a set of outlets in On or Off state to avoid (Avocent PM PDU accidental changes. Prompts you to enter a list of and Cyclades <IPDU ID>[<outlet number>].
  • Page 112 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 6.1: pmMenu and pmCommand Commands (Continued) Menu Item Command Syntax Description Current Protection currentprotection Enable or disable current protection. This option is to (Avocent PM PDU {status|on|off} prevent the outlets from being turned on, if the current and Cyclades [<IPDU ID>]...
  • Page 113 Enter menu mode (from pmCommand only). Cold Start Delay coldstartdelay <IPDU ID> Set the duration of the cold start delay for the defined (Avocent PM <duration> PDU or all connected PDUs when one is not defined. PDU) Current Threshold currentthreshold <IPDU ID>...

  • Page 114: Pmcommand

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table 6.1: pmMenu and pmCommand Commands (Continued) Menu Item Command Syntax Description Voltage Info voltageinfo [reset] [<IPDU Display or clear the maximum/minimum/average ID> [<element>]] recorded voltage for the defined element, or all elements if one is not defined, to zero.
  • Page 115 Chapter 6: Power Management It was impossible to start a Power Management Session You can't access any Power Management functionality. Please contact your Console Server Administrator. If you can access outlet(s) but have no access to outlet(s) of a specific server, the following message appears.

  • Page 116: Ipdu Password

    IPDU Firmware Upgrade You may upgrade the firmware of a single or multiple daisy-chained IPDU power management appliances connected to a serial port of the console server. NOTE: The firmware upgrade is available for Avocent PM PDUs and for Cyclades PM IPDUs.

  • Page 117: Snmp Proxy

    NOTE: It is recommended that you run md5sum on the file after you download it and compare the md5sum output with the contents of the firmware md5 file on the avocent web site, to ensure that the firmware file you downloaded was not corrupted.
  • Page 118 Cyclades ACS 5000 Advanced Console Server Command Reference Guide • The number of IPDU units connected to a serial port in a daisy-chain configuration. • The instantaneous RMS current being drawn from each of the IPDU connected to a serial port.

  • Page 119: Appendices

    APP ENDICE S Appendices Appendix A: Additional Features and Applications Windows 2003 server management Emergency Management Services (EMS) is a new feature in the Windows 2003 Server that allows out-of-band remote management and system recovery tasks. All Emergency Management Services output is accessible using a terminal emulator connected to the server serial port.
  • Page 120 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table A.1: EMS Configuration Parameters and Switches (Continued) Parameter and Switches Description /baud_rate Specifies the baud rate to be used for redirection. Do not use if remotely administered output is being disabled. Valid values are: 9600, 19200, 38400, 57600, 115200.
  • Page 121 Appendices Table A.2: Machine Info Tags (Continued) Element Description <os-build-number> Is a numeric string that identifies a successive Windows Build. <os-product> Is the name of the Windows Server 2003 product currently running on this server. It is one of the following. •...
  • Page 122 Cyclades ACS 5000 Advanced Console Server Command Reference Guide The following elements are included in the <channel-switch> tag. Table A.3: Elements in the <channel-switch> Tag Element Description <application-type> Is a hexadecimal GUID signifying the application or tool that is running on the Windows Server platform and communicating via this active channel.
  • Page 123 Appendices Table A.3: Elements in the <channel-switch> Tag (Continued) Element Description <name> Is the system name of the active channel. For the GUI-mode Setup tool, they are the filenames where the data is written. • Debug Log (setuplog.txt) • Error Log (setuperr.log) •...
  • Page 124 Cyclades ACS 5000 Advanced Console Server Command Reference Guide The <BP> tag is emitted when the Windows server system halts such that only elements of the kernel are the most recently operating logic. Table A.4: <BP> Tags Description Element Description <INSTANCE CLASSNAME=>...
  • Page 125 Appendices filter f_windows_bluescreen { facility(local<conf.DB_facility>) and level(info)nd match("XML_MONITOR") and match("BLUESCREEN"); } ; - and - filter f_windows_boot { facility(local<conf.DB_facility>) and level(info) and match("XML_MONITOR") and not match("BLUESCREEN") and match("machine-info"); } ; Once the desired message is filtered, define which actions we would like to take. Syslog-ng creates macros that may give easy access for the administrators to access the xml information.
  • Page 126 Cyclades ACS 5000 Advanced Console Server Command Reference Guide For the f_windows_boot, the following macros are available. Table A.6: f_windows_boot Available Macros Macro Description Value to replace macro $<name> Machine name MY_WIN_SERVER $<guid> GUID that uniquely identifies this server. If 4c4c4544-8e00-4410-8045- no such value is available, all 0’s GUID...
  • Page 127 Appendices An example on how to use the macros In the following example, the console server sends an email to the administrator whenever a crash happens. The email should have the information about the reason of the crash, machine name and windows version information.
  • Page 128 Baseboard Management Controller (BMC) that may respond to IPMI commands out-of-band. The Cyclades ACS 5000 advanced console server has an implementation of IPMI over LAN, which allows the console server to control power on servers, and also to obtain sensor readings such as CPU temperature or fan speed.
  • Page 129 Appendices IPMI configuration This program lets you manage IPMI enabled devices locally remotely. These functions include printing FRU information, LAN configuration, sensor readings and remote chassis power control. IPMI [ipmitool] Syntax ipmitool [-hvV] -I interface -H hostname [-L privlvl] [-A authType] [- P password] <expression>...
  • Page 130 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Expressions Table A.9: IPMI Commands Expression Description Send a RAW IPMI request and print response Send an I2C Master Write-Read command and print response Configure LAN Channels chassis Get chassis status and set power state...
  • Page 131 Appendices Table A.10: IPMI CLI Configuration Parameters Parameter Value Description <alias> Add and configure an IPMI device. edit <alias> Edit the parameters of an IPMI enabled device. delete <alias> Remove an IPMI device. authtype Add an authentication method. none password password <password>...
  • Page 132 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Line printer daemon This feature implements the UNIX Line Printer Daemon (LPD) in the console server and may be used with local serial printers. It enables the console server to receive network print requests and service them using locally attached serial printers.

  • Page 133: Cas Port Pool

    Appendices Execute saveconf command to save the configuration in Flash. Check the console server configuration by entering the following command at your workstation. # lpr -P lp@<ACS IP address> <file that you want printer> CAS port pool CAS port pooling allows you to access a free serial port from a pool in addition to the original feature where you could access a specific serial port.
  • Page 134 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Alternately, you may access ttyS1 through the pool using TCP port 3000, IP 10.1.0.1 or alias pool- 1. If it is not free ttyS2 is automatically allocated. If ttyS2 is not free, then the connection is dropped.
  • Page 135 Appendices Billing The console server family of products may be used as an intermediate buffer to collect serial data (like billing tickets from a PBX), making them available for a posterior file transfer. Different ports may have simultaneous billing sessions. NOTE: Billing is supported only on ACS 5000 Advanced Console Servers running firmware version 3.3.x or earlier.
  • Page 136 Cyclades ACS 5000 Advanced Console Server Command Reference Guide To configure billing: Open the /etc/portslave/pslave.conf file and configure the following parameter according to your application. all.protocol - billing In the data buffering section of pslave.conf file configure the following parameters.
  • Page 137 Appendices -T timeout -i ip -n netmask -R route -u upload Any parameter that is not specified remains unchanged. The following parameters are configured by default for billing. sxx.authtype none sxx.protocol billing sxx.flow none sxx.dcd 0 sxx.sniff_mode no Select the -u option to execute the billing_upload_files.sh script. The script presents the following sequential menu where the upload options may be configured.

  • Page 138: Appendix B: Upgrades And Troubleshooting

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Appendix B: Upgrades and Troubleshooting Upgrades Below are the six files added to the standard Linux files in the /mnt/flash directory when an upgrade is needed. • boot_alt - alternate boot code •...

  • Page 139: Troubleshooting

    Appendices For example, the <zImage_filename.md5> text file contains information similar to the following. 5bcc7d9b3c61502b5c9269cbecd20317 /tftpboot/<zImage_filename> If the alphanuemeric string matches the downloaded file, execute the reboot command. After reboot, the console server is updated with the new firmware. Confirm by issuing the following command.
  • Page 140 Cyclades ACS 5000 Advanced Console Server Command Reference Guide 12. When the “Fast Ethernet” prompt appears, press Enter Fast Ethernet ((A)uto Neg, 100 (B)tH, 100 Bt(F), 10 B(t)F, 10 Bt(H)) [A] : The console server should begin to boot off the network and the new image is downloaded. At this point, follow the upgrade process to save the new zImage file into Flash again.
  • Page 141 Appendices To set a limit of bytes received by the interface per second: Run bootconf. Current configuration MAC address assigned to Ethernet [00:60:2e:00:16:b9] IP address assigned to Ethernet interface [192.168.160.10] Watchdog timer ((A)ctive or (I)nactive) [A] Firmware boot from ((F)lash or (N)etwork) [F] Boot type ((B)ootp,(T)ftp or Bot(H)) [T] Boot File Name [zvmppcts.bin] Server's IP address [192.168.160.1]...
  • Page 142 Cyclades ACS 5000 Advanced Console Server Command Reference Guide Table B.1: CPU LED Code Interpretation (Continued) Event CPU LED Morse code Flash Memory Error - Configuration S, L Ethernet Error S, S, L Network Boot Error S, S, S, S, L...

  • Page 143: Boot Configuration

    Appendices Boot configuration To configure boot parameters: Use the following command to configure the boot parameters of the console server. Refer to Table B.2 for the description of parameters. cli> config administration bootconfig [parameter] <value> Table B.2: CLI Boot Configuration Parameters Parameter Value Description...

  • Page 144: Backup Configuration

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Session Management cli> administration sessions [parameter] <value> Table B.3: CLI Session Management Parameters Parameter Value Description Kill <Serial Port To cancel a connection to the serial port <n> Number[1-1024]> LIst Lists the current sessions...

  • Page 145: Firmware Upgrade

    Appendices Firmware upgrade To upgrade the firmware on the console server: Enter the following command at the CLI prompt. cli> administration upgradefw ftpsite <n.n.n.n> username <name> password <password> filepathname <path> checksum <yes|no> As an example, the following parameters are used to show the command usage. FTP Server: 192.168.100.111 Path: /images/zImage User: john...

  • Page 146: Appendix C: Linux File Structure

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Appendix C: Linux File Structure The Linux file system is organized hierarchically, with the root directory represented by the forward slash (/) symbol. All folders and files are nested within each other below this base directory.
  • Page 147 Appendices Table C.2: File Manipulation Commands (Continued) Command Description mkdir directory_name Creates a directory named directory_name. • mkdir spot • Creates the directory spot in the current directory. • mkdir /tmp/snuggles • Creates the directory snuggles in the directory /tmp. rmdir directory_name Removes the directory indicated by directory_name.

  • Page 148: Appendix D: The Vi Editor

    Cyclades ACS 5000 Advanced Console Server Command Reference Guide Appendix D: The vi Editor To edit a file using the vi editor: # vi file_name The vi editor is a three-state line editor with command, line and editing modes. If in doubt as to which mode you are in, press the key, which brings you to the command mode.
  • Page 149 Appendices Once you have completed your file modification, enter the line mode by typing colon ( ) and one of the following commands. Table D.4: vi Line Mode Commands Command Description Saves the file (w is for write). Saves and closes the file (q is for quit). Closes the file without saving.

  • Page 150: Appendix E: Technical Support

    Appendix E: Technical Support Our Technical Support staff is ready to assist you with any installation or operating issues you encounter with your Avocent product. If an issue should develop, follow the steps below for the fastest possible service. To resolve an issue: Check the pertinent section of this manual to see if the issue can be resolved by following the procedures outlined.
  • Page 152 For Technical Support: www.avocent.com/support 590-814-501B...

Table of Contents

Save PDF