[Top] [Table Of Contents] [Prev] [Next] [Index]
6 out of 25 total pages

Global Settings 3

This chapter describes how to use the command line interface for global configuration. Detailed command definitions follow a command summary table. Detailed command definitions and summary tables are also provided for RADIUS, ChoiceNet, and SNMP configuration commands.

Global settings allow you to set default and alternate hosts, set gateways and metrics, set the name service used by the PortMaster 4, and set the administrative password of the PortMaster 4.

Displaying Global Information

To display information about your configuration, use the following global commands:

show all--see page 2-19
show global--see page 2-28

For general information about using the command line interface, refer to Chapter 1, "Introduction."

Summary of Global Commands

Table 3-1 contains the global configuration commands that affect the entire PortMaster 4, except for those commands marked with a leading bullet (.), which are global only for a specific module or board.

The following sections also cover global commands affecting the entire PortMaster 4:

RADIUS commands - see page 3-26
ChoiceNet commands - see page 3-30

SNMP commands - see page 3-32.

Table 3-1 Global Commands
	Command Syntax
	add ippool Name \|default	- see page 3-3
	clear alarms\|alarm Alarm-id \|all	- see page 3-33
	delete ippool Name \|default address-range Ipaddress \|all	- see page 3-4
	reset ippool	- see page 3-5
·	set assigned_address Ipaddress	- see page 3-5
	set call-check on\|off	- see page 3-6
	set chap on\|off	- see page 3-7
	set chassis pm4\|msm-rac	- see page 3-7
	set default on\|off\|broadcast\|listen	- see page 7-16
	set dhcp-server Ipaddress	- see page 3-8
	set domain String\|none	- see page 3-9
	set gateway Ipaddress [Metric]	- see page 7-11
	set host [1\|2\|3\|4] Ipaddress	- see page 3-10
	set ippool Name \|default Ipaddress /NM \|Ipaddress Netmask [Gateway ]	- see page 3-10
	set ippool Name default-gateway Gateway	- see page 3-12
	set ipx on\|off	- see page 3-13
	set ipxgateway Network\|Node Metric	- see page 3-14
·	set isdn-switch	- see page 15-5
	set local-ip-address [1\|2\|3\|4] Ipaddress	- see page 3-14
	set loghost Ipaddress	- see page 3-16
	set maximum pmconsole Number	- see page 3-17
	set nameserver [1\|2] Ipaddress	- see page 3-17
	set namesvc dns\|nis	- see page 3-18
	set netbios on\|off	- see page 3-19
	set pap on\|off	- see page 3-19
	set password [Password]	- see page 3-20
·	set pool Number	- see page 3-21
	set reported_ip Ipaddress	- see page 3-21
	set serial-admin on\|off	- see page 3-22
	set shutdown-temp Number	- see page 3-22
	set syslog Logtype {[disabled] [Facility.Priority]}	- see page 3-23
	set telnet Tport	- see page 3-25
	set user-netmask on\|off	- see page 7-11
	show alarms	- see page 3-37
	show all	- see page 2-19
	show global	- see page 2-28
	show table ippool	- see page 3-25

Global Commands

These commands are used to configure global settings on the PortMaster or on a particular module or board.

add ippool

This command adds a named IP pool to the IP pool table.

add ippool Name|default


Name	Name of the IP pool--a string of up to 31 characters.
default	Adds a default IP pool to the IP pool table.

Usage

The PortMaster 4 supports named IP pools on ComOS 4.1 and later releases. Named IP pools provide a global range of multiple dynamically assigned IP addresses within the PortMaster 4.

You can assign a gateway address to each range in a named IP pool, or assign a default gateway address for the entire named IP pool. Because you cannot create user profiles for IP pools in PortMaster user tables, you can only configure named IP pools using RADIUS.

To activate changes to a named IP pool configuration, use the reset ippool command.

Note ¯ To use IP pools, you must also add a corresponding RADIUS attribute to the RADIUS dictionary file. See the PortMaster 4 Configuration Guide for more information.

Example

Command> add ippool shelbyville
IP pool shelbyville successfully added

delete ippool

This command deletes an IP address from the specified named IP pool or the entire named IP pool.

delete ippool Name address-range Ipaddress |all

Name Name of the IP pool in the IP pool table--a string of up to 31 characters.

default Deletes the default IP pool from IP pool table.

Ipaddress IP address or range of IP addresses from the named IP pool.

all Deletes the entire named IP pool.

Name	Name of the IP pool in the IP pool table--a string of up to 31 characters.
default	Deletes the default IP pool from IP pool table.
Ipaddress	IP address or range of IP addresses from the named IP pool.
all	Deletes the entire named IP pool.

Usage

The PortMaster 4 supports named IP pools on ComOS 4.1 and later releases.

To activate changes to a named IP pool configuration, use the reset ippool command.

Examples

Command> delete ippool address-range livermore 192.168.1.0
Range 192.168.1.0 in livermore successfully deleted

Command> del ippool livermore all
Pool livermore successfully deleted

reset ippool

This command activates changes to a named IP pool configuration and converts IP address ranges as routes for propagation through routing protocols.

reset ippool

Usage

The PortMaster 4 supports named IP pools on ComOS 4.1 and later releases.

After you enter the reset ippool command, the new routing protocols can take a short while to replace the old routes.

Example

Command> reset ippool
IP Pool reset

set assigned_address

This command sets the base IP address of the assigned address pool.

Note ¯ You must first use the set view command to select a board for configuration.

set assigned_address Ipaddress


Ipaddress	Base IP address assigned. Set Ipaddress to 0.0.0.0 to deselect the assigned address.

Usage

The PortMaster allocates a pool of addresses starting at the assigned base address and counting up. The total number of addresses is equal to the number of ports configured for network dial-in. If someone dials in and requests an unused address from the pool, that is assigned. If someone dials in and requests any address, the next address from the pool is assigned. If someone disconnects, their address is placed at the end of the pool for reuse.

Note ¯ You must use the command save all and reset the slot after setting or changing the base IP address.

Example

Command 1> set assigned 172.16.200.220
First Assigned address changed from 0.0.0.0 to 172.16.200.220

set call-check

This command provides the choice of supporting or disabling the RADIUS call-check feature on the PortMaster 4 products that support ISDN PRI or in-band signaling.

set call-check on|off


on	Enables the call-check feature on the PortMaster connected to the PRI or in-band signaling interface.
off	Disables the call-check feature. This is the default.

Caution ¯ To support the call-check feature, you must configure RADIUS 2.1 Call-Check profiles; otherwise, the PortMaster issues a busy signal to every call. See the RADIUS for UNIX Administrator's Guide for more information.

Usage

The call-check feature enables user services without authenticating the user at the point of entry. Call-check is off by default. Use the show global command find out if call-check is enabled on your PortMaster.

Example

Command> set call-check on

Call Check changed from off to on

set chap

This command provides the choice of supporting or disabling the Challenge Handshake Authentication Protocol (CHAP) authentication for dial-in users.

set chap on|off


on	If PPP is detected on a port, the PortMaster allows the user to negotiate CHAP as the authentication protocol. This is the default.
off	CHAP authentication is disabled.

Usage

If you do not want to support CHAP authentication, you must set CHAP to off . With both PAP and CHAP off, the only authentication method allowed is a username-password login.

Example

Command> set chap off
CHAP authentication changed from on to off

set chassis

This command identifies the chassis to the PMVision application as either a PortMaster 4 or an AnyMedia^TM MultiService Module (MSM).

set chassis pm4|msm-rac


pm4	Identifies the chassis as a PortMaster 4. This is the default.
msm-rac	Identifies the chassis as an MSM.

Usage

The PortMaster 4 supports the set chassis command on ComOS 4.1 and later releases. To configure the PortMaster 4 in an MSM chassis using PMVision, you must first set the chassis to msm-rac .

If set to msm-rac , the PortMaster 4 displays the chassis type when you use the command show global . No additional chassis information is provided if you set the chassis to pm4 .

Note ¯ Use the save all command to save changes to nonvolatile RAM.

set dhcp-server

This command configures a PortMaster to forward a Dynamic Host Configuration Protocol (DHCP) request from a dial-in client to be forwarded to the specified DHCP server.

set dhcp-server Ipaddress

Ipaddress IP address or 39-character hostname--except for 255.255.255.255. You cannot forward a DHCP packet to the broadcast address.

Ipaddress	IP address or 39-character hostname--except for 255.255.255.255. You cannot forward a DHCP packet to the broadcast address.

Usage

This command is used to support the Cable Modem Telephone Return Interface Specification (CMTRIS) developed by Multimedia Cable Network System (MCNS) Partners Limited. This specification requires that a cable modem using the telephone interface as an upstream channel be able to request and receive the cable interface address and configuration information using a DHCP request.

ComOS modifies the received DHCP request by removing the broadcast address and replacing it with the DHCP server's address. This address enables the DHCP server to direct the response to the dial-in client of the cable modem. The DHCP server sends configuration information to the dial-in client of the cable modem to be used to configure the cable interface.

ComOS does not add routes to its table when forwarding or returning DHCP requests. It transparently forwards and returns DHCP requests from dial-in clients to the specified server.

For more information about using this command, refer to the PortMaster 4 Configuration Guide .

To view DHCP relaying information, use the command set console , followed by the command set debug 0x81 .

To disable DHCP reply information, set the IP address to 0.0.0.0.

Note ¯ This command does not support DHCP requests from the Ethernet or requests from a PortMaster 2Ei or Office Router OR-U.

set domain

This command sets the domain name to use with hostname lookups.

set domain String|none


String	Domain name. Maximum of 31 characters.
none	Disables the domain feature.

Usage

Enter the domain name of your network in this command after you have selected the Network Information Service (NIS) or Domain Name System (DNS) as your name service and have set a name server address.

Example

Command> set domain lucent.com
Domain changed from to lucent.com

set host

This command sets the default IP address or hostname for login sessions on the PortMaster 4.

set host [1|2|3|4] Ipaddress


1 \|2 \|3 \|4	Specifies alternate hosts, with the primary host being 1. The default is 1.
Ipaddress	IP address or hostname of a login host or device host.

Usage

Use this command only if you want the PortMaster to provide login or host device service. Setting host to 0.0.0.0 removes the entry.

Example

Command> set host 172.16.200.1

Default host changed from to 172.16.200.1

set ippool

This command adds a range of IP addresses to a named IP pool and assigns it an optional gateway address.

set ippool Name |default Ipaddress /NM|Ipaddress Netmask [Gateway ]

Name Name of the IP pool in the IP pool table--a string of up to 31 characters.

default Sets the PortMaster 4 to use the default IP pool in the IP pool table. The PortMaster 4 assigns a user an address from the IP range of the default IP pool only if both of the following are true:
· The Named-IP-Pool attribute is not configured in RADIUS.

· The Quad T1 or Tri E1 board's assigned IP range is set to 0.0.0.0.
See the PortMaster 4 Configuration Guide for more information.

Ipaddress/NM Specifies the range of named IP pool addresses.

Ipaddress Base IP address in dotted decimal notation for the range. The PortMaster 4 increments this IP address by 1 when assigning IP addresses to users.

/ NM Integer between 1 and 30. Because the PortMaster does not use the first and last addresses specified in a range, you cannot use the masks 31 and 32 because they contain two hosts or fewer.

Ipaddress Netmask Alternate method of specifying a named IP pool range.

Ipaddress Base IP address in dotted decimal notation for the range.

Netmask Netmask in dotted decimal notation.

Gateway Optional gateway IP address for the specified range in the IP pool expressed in dotted decimal notation. When the PortMaster receives a packet from a user with an assigned gateway address, the PortMaster forwards the packet to this gateway address instead of consulting its routing table. If no gateway is specified for the range, the PortMaster uses the default address assigned to the IP pool. If no default address is set for the IP pool, the PortMaster consults its routing table.

Name	Name of the IP pool in the IP pool table--a string of up to 31 characters.
default	Sets the PortMaster 4 to use the default IP pool in the IP pool table. The PortMaster 4 assigns a user an address from the IP range of the default IP pool only if both of the following are true: · The Named-IP-Pool attribute is not configured in RADIUS. · The Quad T1 or Tri E1 board's assigned IP range is set to 0.0.0.0. See the PortMaster 4 Configuration Guide for more information.
Ipaddress/NM	Specifies the range of named IP pool addresses.
	Ipaddress	Base IP address in dotted decimal notation for the range. The PortMaster 4 increments this IP address by 1 when assigning IP addresses to users.
	/ NM	Integer between 1 and 30. Because the PortMaster does not use the first and last addresses specified in a range, you cannot use the masks 31 and 32 because they contain two hosts or fewer.
Ipaddress Netmask	Alternate method of specifying a named IP pool range.
	Ipaddress	Base IP address in dotted decimal notation for the range.
	Netmask	Netmask in dotted decimal notation.
Gateway	Optional gateway IP address for the specified range in the IP pool expressed in dotted decimal notation. When the PortMaster receives a packet from a user with an assigned gateway address, the PortMaster forwards the packet to this gateway address instead of consulting its routing table. If no gateway is specified for the range, the PortMaster uses the default address assigned to the IP pool. If no default address is set for the IP pool, the PortMaster consults its routing table.

Usage

Note ¯ Do not use address pool ranges that overlap with local IP addresses.

The PortMaster 4 supports named IP pools on ComOS 4.1 and later releases. Up to eight ranges can be assigned to any single named IP pool. The PortMaster 4 assigns address ranges--except the first and last addresses--to users, using the first ranges before the latter ranges. Each range has a base address associated with it and is incremented to assign addresses. The number of addresses in a range is determined by the netmask.

To activate changes to a named IP pool configuration, you must use the reset ippool command.

Examples

1. The following example uses the format Ipaddress / NM to assign the of IP addresses of a range. Note that the 24-bit mask assigns 254 available IP addresses--the first and last addresses are not assigned to users.

Command> set ippool livermore address-range 192.168.1.0/24 10.34.56.78
Range 192.168.1.0/24 256 with gateway 10.34.56.78 add to livermore

2. The following example uses the format Ipaddress Netmask to assign a range of IP addresses to a named IP pool. No gateway address is specified for this range.

Command> set ippool livermore address-range 192.168.1.0 255.255.255.0
Range 192.168.1.0/24 256 with gateway 0.0.0.0 add to livermore

set ippool default-gateway

This command sets the default gateway address for an entire named IP pool.

set ippool Name default-gateway Gateway

Name Name of the IP pool in the IP pool table--a string of up to 31 characters.

Gateway Default gateway address for the named IP pool in dotted decimal notation.

Name	Name of the IP pool in the IP pool table--a string of up to 31 characters.
Gateway	Default gateway address for the named IP pool in dotted decimal notation.

Usage

The PortMaster 4 supports IP named pools on ComOS 4.1 and later releases.

You can assign a gateway address to each named IP pool, or assign a default gateway address for all named IP pools. The default gateway also functions as a crossbar IP address.

When a packet comes in from a user assigned a gateway address, the PortMaster forwards the packet to the gateway address instead of consulting its routing table. If a gateway address is not assigned to a range, the range uses the default gateway address of the named IP pool. If the named IP pool is not assigned a default address, then no crossbar IP is used and the PortMaster consults its routing table.

Example

Command> set ippool shelbyville default 192.168.1.1
Pool default gateway set to 192.168.1.1

set ipx

This command enables or disables PortMaster support for the Novell Internet Packet Exchange (IPX) protocol.

set ipx on|off


on	Enables support for the IPX protocol.
off	Disables support for the IPX protocol. This is the default.

Usage

Note ¯ The PortMaster 4 supports IPX protocols on ComOS 4.1 and later releases.

To enable support for IPX, you must use this command. After changing the IPX setting, you must use the save all command and reboot the PortMaster to make the change take effect.

Example

Command> set ipx on
IPX will be enabled after next reboot

set ipxgateway

This command sets a static default route for all IPX packets not routed by a more specific route.

set ipxgateway Network |Node Metric


Network	32-bit hexadecimal address of the IPX network of the gateway router.
Node	48-bit hexadecimal node address of the gateway router. This is usually the MAC address of the gateway router.
Metric	An integer with a value between 1 and 15 that determines the hop count.

Usage

Note ¯ The PortMaster 4 supports IPX protocols on ComOS 4.1 and later releases.

When troubleshooting IPX routing problems, you can reset the IPX gateway by resetting the network and node numbers to zeros. For more information on troubleshooting IPX routing problems, refer to the PortMaster Troubleshooting Guide .

Examples

Command> set ipxgateway tyche:010101010101 1

IPX Gateway set to tyche:010101010101, metric = 1

Command> set ipxgateway 00000000:000000000000

IPX gateway reset

set local-ip-address

This command assigns up to four local IP addresses to the PortMaster 4 that are not limited by network interface.

set local-ip-address [1|2|3|4] Ipaddress


1 \|2 \|3 \|4	Sets the local IP address for the PortMaster 4. The default local IP address is 1.
Ipaddress	IP address or hostname--up to 39 characters. Setting the IP address to 0.0.0.0 clears the local IP address.

Usage

Note ¯ Do not use local IP addresses that overlap address pool ranges.

The PortMaster 4 uses the local IP address as follows:

First, the PortMaster 4 can advertise its local IP addresses as host routes through configured routing protocols such as OSPF and RIP Version 2 (RIP-2), allowing PortMaster 4 services to be referenced to a particular IP address independent of any one network interface.
Second, the PortMaster 4 uses the local IP address to determine how it identifies itself during PPP negotiations for the IP Control Protocol (IPCP), and in the source address of an IP packet. For additional information, see the PortMaster 4 Configuration Guide .

If local addresses are set, the ifconfig command displays the logical interfaces as local10 , local11 , local12 , and local13 . To display logical interfaces, use the ifconfig command.

Examples

Command> set local-ip-address 10.112.34.17

set local-ip-address 10.112.34.17

Local IP Address (1) changed from 0.0.0.0 to 10.112.34.17

Command> set local-ip-address 2 192.168.54.6

set local-ip-address 2 192.168.54.6

Local IP Address (2) changed from 0.0.0.0 to 192.168.54.6

See Also

Command> set local-ip-address 10.112.34.17
set local-ip-address 10.112.34.17
Local IP Address (1) changed from 0.0.0.0 to 10.112.34.17

Command> set local-ip-address 2 192.168.54.6
set local-ip-address 2 192.168.54.6
Local IP Address (2) changed from 0.0.0.0 to 192.168.54.6

set Ether0 address - page 4-3
set reported_ip - page 3-21

set loghost

This command sets the IP address or name of the host to which the PortMaster sends syslog messages.

set loghost Ipaddress


Ipaddress	Loghost IP address or 39-character hostname. Set Ipaddress to 0.0.0.0 to deselect the host.

Usage

Informational syslog messages are sent to the host with the following defaults:

Facility--auth
Priority--info

Setting the IP address to 0.0.0.0 disables syslog at the PortMaster.

Note ¯ You must use the command save all and reboot the manager module after making changes to the loghost address. You can also use the reset nHandle command to reset the UDP port 514 connection.

RADIUS accounting provides a more complete method for logging usage information. Refer to the RADIUS for UNIX Administrator's Guide or the RADIUS for Windows NT Administrator's Guide for more information.

Note ¯ Do not use a loghost at a location configured for on-demand connections, because doing so will keep the connection up or bring up the connection each time a syslog message is queued for the syslog host.

Example

Command> set loghost 192.168.200.2
Loghost changed from 0.0.0.0 to 192.168.200.2

set maximum pmconsole

This command sets the maximum number of concurrent connections for management applications allowed into the PortMaster.

set maximum pmconsole Number


Number	The maximum number of concurrent connections to allow. Default is 1; maximum is 10.

Usage

The programs PMVision, ChoiceNet, pmreadconf , pmreadpass , pmcommand , pmreset , pminstall , and other applications connect to TCP port 1643 on the PortMaster. If you set the maximum number of connections to 2 or higher, more than one program can connect at the same time.

If you use ChoiceNet to download filters dynamically, be sure to set the maximum number of connections set to 10.

Note ¯ If two or more GUIs are used to configure the PortMaster 4 at the same time, each might not see the change made by the others.

All 1643 network connections must disconnect from the PortMaster for the new settings to take effect. Use the reset nHandle command to reset network handles. To view open network connections, use the show netconns command.

Example

Command> set maximum pmconsole 2
Maximum PMconsole sessions changed from 0 to 10

set nameserver

This command sets the name server IP address.

set nameserver [1|2] Ipaddress


1	Sets the primary name server. This is the default.
2	Sets an alternate name server.
Ipaddress	IP address in dotted decimal notation.

Usage

This command sets the server used for DNS or NIS hostname lookups. Setting Ipaddress to 0.0.0.0 cancels the setting.

Example

Command> set nameserver 172.16.200.2
Name Server changed from 0.0.0.0 to 172.16.200.2

set namesvc

This command sets the service (NIS or DNS) used for resolving hostnames.

set namesvc dns|nis


dns	Uses the Domain Name System (DNS) for hostname lookups.
nis	Uses the Network Information Service (NIS) for hostname lookups.

Usage

A name service should be selected only if users are prompted for hosts that require a name service for resolution to an IP address, or to display hostnames instead of addresses in the administrative command line interface. If the service is set to DNS, the PortMaster sends DNS server information to PPP dial-in users as specified in RFC 1877.

Example

Command> set namesvc dns
Name Service changed from NIS to DNS

set netbios

This command sets the NetBIOS parameter for use with IPX.

set netbios on|off


on	The PortMaster broadcasts type 20 packets.
off	Type 20 packets are not broadcast across the router. The default is off .

Usage

Note ¯ The PortMaster 4 supports IPX protocols on ComOs 4.1 and later releases.

Full NetBIOS protocol compliance requires that this command be set to on . The PortMaster then propagates and forwards type 20 broadcast packets across your IPX network. Be aware of this behavior before changing from the default of netbios off .

Example

Command> set netbios on
NetBIOS changed from off to on

set pap

This command provides the choice of accepting either Password Authentication Protocol (PAP) or CHAP authentication for dial-in users, or CHAP only.

set pap on|off


on	If PPP is detected on a port, the PortMaster allows the user to negotiate PAP as the authentication protocol. If PAP is refused, the user is prompted to authenticate with CHAP. This is the default.
off	The PortMaster does not request or accept PAP authentication.

Usage

With PAP set to off , the default is to support CHAP. If you do not want to support CHAP authentication, you must disable CHAP (see page 3-7).

Example

Command> set pap off
PAP authentication changed from on to off

set password

This command sets the PortMaster administrative password.

set password [Password]


Password	String of up to 15 characters. Default is no password.

Usage

When shipped, the PortMaster has no password. You must enter a password to protect the PortMaster administrative features. Using the command set password without a Password value erases the administrative password.

The password string cannot start with a question mark (?).

Example

Command> set password supercalifragil
!root password changed from to supercalifragil

set pool

This command explicitly sets the size of the assigned pool of IP addresses.

Note ¯ You must first use the set view command to select a board for configuration.

set pool Number


Number	Number of IP addresses to allocate to the pool. The valid range on a PortMaster 4 is from 0 to 96.

Usage

After you set or change the pool size of IP addresses, you must reset the slot for the change to take effect.

Example

Command> set pool 12
Assigned address pool size changed from 0 to 12

set reported_ip

This command reports an IP address different from the Ether0 address used during PPP negotiation and Serial Line Internet Protocol (SLIP) startup.

set reported_ip Ipaddress


Ipaddress	IP address.

Usage

The IP address of any PortMaster product can be used with this command. This feature is valuable for sites that require a number of PortMaster products to appear as a single IP address to other networks. With PPP, this information is placed in the startup message, and the PortMaster products report this address to other networks. With SLIP, this information is placed in the startup message.

Setting Ipaddress to 0.0.0.0 cancels the setting.

Example

Command> set reported_ip 172.16.200.1
Reported IP address changed from 0.0.0.0 to 172.16.200.1

set serial-admin

This command enables or disables administrative logins on the serial ports of the PortMaster.

set serial-admin on|off


on	Enables administrative logins on serial ports. This is the default.
off	Disables administrative logins on serial ports.

Usage

If administrative logins--!root --are disabled, you can still use port S0 (or C0) for !root login by setting the console DIP switch to the left (on) position.

Example

Command> set serial-admin off
Serial Administration changed from on to off

set shutdown-temp

This command manually sets the threshold temperature for all the boards and modules of the PortMaster 4.

set shutdown-temp Number

Number
Shutdown temperature--integer between 30° C and 90° C (86° F and 194° F).

Number	Shutdown temperature--integer between 30° C and 90° C (86° F and 194° F).

Usage

The PortMaster 4 supports the set shutdown-temp command on ComOS 4.1 and later releases.

Each board on the PortMaster 4 has a temperature sensor. The PortMaster 4 shuts down a board or module when the temperature of the board or module reaches the set threshold temperature.

To view the shutdown-temp setting, use the show global command .

For additional information about PortMaster 4 temperature management, see the PortMaster 4 Installation Guide . If the shutdown temperature is not set, the PortMaster 4 begins turning boards off when it reaches an internal temperature of 50° C (122° F) until the temperature goes below 45° C (113° F). Boards are turned off in order of slot number, with the highest-numbered slot being turned off first.

To turn on a board that has been turned off, use the set slot on command.

set syslog

This command changes the syslog settings for logged events.

set syslog Logtype {[disabled] [Facility.Priority]}


Logtype	Sets logging for the following five areas. Use the following keywords:
	admin-logins	!root and administrative logins.
	user-logins	Nonadministrative logins. You might want to disable this type of logging if you already use RADIUS accounting.
	packet-filters	Packets that match filter rules with the log keyword.
	commands	Every command entered at the command line interface.
	termination	More detailed information on how user sessions terminate.
disabled	Turns off logging for the Logtype specified.
Facility.Priority	Sets the facility and priority to be assigned to syslog messages. See Table 3-2 on page 3-24 and Table 3-3 on page 3-24 for Facility and Priority keywords. Enter the Facility and Priority keywords separated by a period (.) with no spaces.

Usage

The keywords to use for Facility and Priority are shown in Table 3-2 and Table 3-3. Lucent recommends that you use the auth facility or local0 through local7 facilities for receiving syslog messages from PortMaster products, but all the facilities listed in Table 3-3 are provided. See your operating system documentation for information on configuring syslog on your host.

Table 3-2 syslog Facility Keywords


Facility	Facility Number	Facility	Facility Number
kern	0	cron	15
user	1	local0	16
mail	2	local1	17
daemon	3	local2	18
auth	4	local3	19
syslog	5	local4	20
lpr	6	local5	21
news	7	local6	22
uucp	8	local7	23

Table 3-3


Priority	Priority Number	Typical Use
emerg	0	System is unusable.
alert	1	Action must be taken immediately.
crit	2	Critical messages.
err	3	Error messages.
warning	4	Warning messages.
notice	5	Normal but significant message.
info	6	Informational message.
debug	7	Debug-level messages.

syslog Priority Keywords

Example

Command> set syslog commands local0.debug
Syslog setting for commands changed from disabled to local0.debug

set telnet

This command sets the Telnet administrative port.

set telnet Tport


Tport	Telnet administrative port--a decimal 16-bit number from 0 to 65535. Default is 23.

Usage

This command allows the administrator to use the Telnet protocol to maintain the PortMaster. The value is a number from 0 to 65535. If set to 0, the PortMaster disables the Telnet administration function. Ports numbered 10000 through 10100 are reserved for outbound users and must not be used for this function.

The maximum number of concurrent Telnet sessions on the PortMaster 4 is 20.

Example

Command> set telnet 23
Setting Telnet Administration port to 23

show table ippool

This command displays the named IP pool configuration.

show table ippool

Example

Command> show table ippool

Name: livermore Default Gateway: 10.23.45.56

Address/netmask Gateway

------------------ --------------------

192.168.1.0/29 0.0.0.0

192.168.2.253/30 0.0.0.0

192.168.3.50/25 0.0.0.0

10.4.5.0/24 192.168.222.3

Command> show table ippool
Name: livermore	Default Gateway: 10.23.45.56

Address/netmask	Gateway
------------------	--------------------
192.168.1.0/29	0.0.0.0
192.168.2.253/30	0.0.0.0
192.168.3.50/25	0.0.0.0
10.4.5.0/24	192.168.222.3

Explanation

Name Name of IP pool.

Default Gateway Default gateway for the specified named IP pool.

Address/netmask Range of the named IP pool.

Gateway Specified gateway address for the named IP pool range.

Name	Name of IP pool.
Default Gateway	Default gateway for the specified named IP pool.
Address/netmask	Range of the named IP pool.
Gateway	Specified gateway address for the named IP pool range.

RADIUS Client Commands

The RADIUS commands in Table 3-4 configure the PortMaster to use a RADIUS server. RADIUS is consulted if a port is set for security on and a user is not found in the PortMaster user table. ChoiceNet client commands begin on page 3-30, and SNMP commands begin on page 3-32.

Table 3-4 RADIUS Client Configuration
Command Syntax
set accounting [1\|2\|3] Ipaddress [Uport]	- see page 3-27
set accounting count Number \|interval Seconds	- see page 3-28
set authentication_server [1\|2\|3] Ipaddress [Uport]	- see page 3-29
set secret String	- see page 3-30

The following commands configure the PortMaster as a RADIUS client. For RADIUS server configuration information, see the RADIUS for UNIX Administrator's Guide or the RADIUS for Windows NT Administrator's Guide.

set accounting

This command designates a host as the primary, secondary, or tertiary RADIUS accounting server.

set accounting [1|2|3] Ipaddress [Uport]


1	Designates the primary RADIUS server. This is the default.
2	If present, designates a host as the alternate accounting server.
3	If present, designates a host as the tertiary accounting server.
Ipaddress	IP address or 39-character hostname running a RADIUS accounting server on UDP port 1646.
Uport	Integer between 0 and 65535 that specifies the UDP port to be used for RADIUS accounting. Setting the port number to 0 or not specifying a port number sets the UDP port to 1646.

Usage

You can designate a primary RADIUS accounting server and up to two alternates, but you must assign a different iP address to each server. The accounting server daemon must be present on the host for the RADIUS accounting server to function correctly. Set Ipaddress to 0.0.0.0 to deselect the accounting server.

The PortMaster 4 uses one of the following criteria to determine whether to send accounting packets to a secondary accounting server instead of the primary accounting server:

The primary RADIUS accounting server does not respond within 10 minutes. The PortMaster retries the accounting server once every 45 seconds.
The primary RADIUS accounting server does not respond, and 50 accounting packets are waiting to be sent.

Examples

Command> set accounting 10.0.0.3

Accounting Server changed from 0.0.0.0 1646 to 10.0.0.3 1646

Command> set accounting 10.0.0.3 1813

Accounting Server changed from 10.0.0.3 1646 to 10.0.0.3 1813

Command> set accounting 2 10.0.0.4 1813

Alternate Accounting Server changed from 0.0.0.0 1646 to 10.0.0.4 1813

set accounting count|interval

This command sets the retry count and time interval for a PortMaster sending RADIUS accounting packets to the RADIUS server.

set accounting count Number |interval Seconds


count Number	Number of times the PortMaster 4 attempts to send a RADIUS accounting packet without acknowledgement from the RADIUS server. Number is an integer between 1 and 99.
interval Seconds	Elapsed time--in seconds--between attempts by the PortMaster to send a RADIUS accounting packet to the RADIUS server. Seconds is an integer between 1 and 255. The default is 30 seconds.

Usage

The PortMaster 4 supports this command on ComOS 4.1.1 and later releases.

The PortMaster 4 sends each RADIUS accounting packet to the RADIUS accounting server based on the number of seconds specified. The PortMaster continues to resend the accounting packet until it receives an acknowledgement from the RADIUS server or until the number of attempts reaches the count specified.

To view the accounting count and accounting interval settings, use the show global command.

Example

Command> set accounting count 45
Accounting retry count changed from 23 to 45

Command> set accounting interval 60
Accounting retry interval changed from 30 to 60 sec

set authentication_server

This command sets the primary, secondary, or tertiary RADIUS authentication server.

set authentication_server [1|2|3] Ipaddress


1	Designates the primary authentication server. This is the default.
2	If present, designates a host as the secondary authentication server.
3	If present, designates a host as the tertiary authentication server.
Ipaddress	IP address or 39-character hostname for a host running a RADIUS authentication server on UDP port 1645.
Uport	Integer between 0 and 65535 that specifies the UDP port to be used for RADIUS authentication. Setting the port number to 0 or not specifying a port number sets the UDP port to 1645.

[Uport ]

Usage

Set Ipaddress to 0.0.0.0 to deselect the primary authentication server. For more information about setting up a RADIUS authentication server, refer to the RADIUS for UNIX Administrator's Guide or the RADIUS for Windows NT Administrator's Guide.

You can also use the set alternate_auth_server command to set the secondary authentication server.

Examples

Command> set authentication 1 10.0.0.3

Authentication Server changed from 0.0.0.0 1645 to 10.0.0.3 1645

Command> set authentication 1 10.0.0.3 1812

Authentication Server changed from 10.0.0.3 1645 to 10.0.0.3 1812

set secret

This command sets the RADIUS shared secret.

set secret String


String	Shared secret, which has a maximum of 15 printable, nonspace ASCII characters. The string cannot begin with a question mark (?).

Usage

This value functions as the user's password in a RADIUS Access-Request, and must match the secret used by the RADIUS server.

Example

Command> set secret expli7%QZixZZy7
Authentication Secret successfully changed

ChoiceNet Client Commands

The ChoiceNet commands in Table 3-5 configure the PortMaster to use a ChoiceNet server for filter management.

Table 3-5 ChoiceNet Client Configuration
Command Syntax
set choicenet [1\|2] Ipaddress [Uport]	- see page 3-31
set choicenet-secret String	- see page 3-31
set debug choicenet on\|off	- see page 14-4

The following commands configure the PortMaster as a ChoiceNet client. For ChoiceNet server configuration, see the ChoiceNet Administrator's Guide.

set choicenet

This command designates a host as the primary or alternate ChoiceNet server.

set choicenet [1|2] Ipaddress [Uport]


1	Designates the primary ChoiceNet server. This is the default.
2	If present, designates a host as the alternate ChoiceNet server.
Ipaddress	IP address or 39-character hostname of the host running a ChoiceNet server on UDP port 1647.
Uport	Integer between 0 and 65535 that specifies the UDP port to be used for ChoiceNet. Setting the port number to 0 or not specifying a port number sets the UDP port to 1647.

Usage

You can designate both primary and alternate ChoiceNet servers, but do not set them to the same IP address.

Set Ipaddress to 0.0.0.0 to deselect the ChoiceNet server.

Examples

Command> set choicenet 10.0.0.5

ChoiceNet Server changed from 0.0.0.0 1647 to 10.0.0.5 1647

Command> set choicenet 10.0.0.5 6047

ChoiceNet Server changed from 10.0.0.5 1647 to 10.0.0.5 6047

set choicenet-secret

This command sets the ChoiceNet secret.

set choicenet-secret String


String	Shared secret. Maximum length is 15 printable, nonspace ASCII characters. The string cannot begin with a question mark (?).

Usage

The shared secret is used to authenticate communications between the PortMaster and the ChoiceNet server.

Example

Command> set choicenet-secret vizkaRg76poj
ChoiceNet Secret successfully changed

SNMP Commands

The commands in Table 3-6 allow you to configure the PortMaster as a Simple Network Management Protocol (SNMP) agent. Use SNMP writes only if you understand the risks involved.

Table 3-6 SNMP Commands
Command Syntax
add snmphost reader\|writer any\|none\|Ipaddress	- see page 3-32
clear alarms \|alarm {Alarm-id \|all }	- see page 3-33
delete snmphost reader\|writer\|Ipaddress	- see page 3-34
save snmp	- see page 3-35
set snmp on\|off	- see page 3-35
set snmp readcommunity\|writecommunity String	- see page 3-36
set sysname String	- see page 2-18
show alarms [Alarm-id]	- see page 3-37
show table snmp	- see page 3-38

add snmphost

This command allows you to control SNMP security by specifying the addresses of the read-and-trap hosts and/or write hosts that are permitted to access SNMP information.

add snmphost reader|writer any|none|Ipaddress


reader	Adds a read-and-trap host.
writer	Adds a write host.
any	All hosts using the correct read or write community string are permitted to read or write SNMP information.
none	No SNMP reads or writes are accepted by the PortMaster.
Ipaddress	IP address or hostname--up to 39 characters--of the read or write host.

Usage

The specification of read-and-trap host and write host allows another level of security beyond the community strings. If SNMP hosts are specified, each host wanting to access SNMP information must possess the correct community string and must also be on the read-and-trap host or write host list.

Example

Command> add snmphost reader 192.168.1.99
New SNMP reader 192.168.1.99 successfully added
Command> add snmphost writer none

clear alarms

This command deletes recorded instances of SNMP traps--notifications of certain events.

clear alarms|alarm {Alarm-id |all}

alarms Clears all alarms.

alarm Alarm-id Clears a specific instance of an alarm. Use the show alarms command to display alarm ID numbers.

alarm all Clears all alarms.

alarms	Clears all alarms.
alarm Alarm-id	Clears a specific instance of an alarm. Use the show alarms command to display alarm ID numbers.
alarm all	Clears all alarms.

Usage

A recorded instance of an alarm remains unless you use the command clear alarms.

Command> show alarms

Alarm Id

Age

Severity

Alarm Message

--------

------

---------

------------------------------------

4001608

3days:11

0

slot 1 T1 line(0) down

Command> clear alarm all

Command> show alarms

Alarm Id

Age

Severity

Alarm Message

Example

Command> show alarms
Alarm Id	Age	Severity	Alarm Message
--------	------	---------	------------------------------------
4001608	3days:11	0	slot 1 T1 line(0) down

Command> clear alarm all
Command> show alarms
Alarm Id	Age	Severity	Alarm Message

delete snmphost

This command deletes read-and-trap or write hosts that are allowed to access SNMP information.

delete snmphost reader|writer Ipaddress


reader	Use to delete a read-and-trap host.
writer	Use to delete a write host.
Ipaddress	IP address or hostname of the read-and-trap or write host.

Example

Command> delete snmphost reader 192.168.1.99
SNMP reader 192.168.1.99 successfully deleted

save snmp

This command saves the settings of the SNMP parameters in the SNMP table.

save snmp

Usage

This command writes the SNMP table settings to the nonvolatile RAM of the PortMaster. You can also use save all .

Example

Command> save snmp
SNMP table successfully saved

set snmp

This command allows you to enable or disable PortMaster support for SNMP monitoring.

set snmp on|off


on	Enables support for SNMP.
off	Disables support for SNMP. This is the default.

Usage

To enable support for SNMP, you must use set snmp on .

Note ¯ After enabling or disabling SNMP, you must use the save snmp or save all command and reboot the PortMaster before the change takes effect.

Example

Command> set snmp on
SNMP will be enabled after next reboot

set snmp readcommunity|writecommunity

This command sets the read and write community strings used for SNMP security.

set snmp readcommunity|writecommunity String


readcommunity	Sets the read community.
writecommunity	Sets the write community.
String	String up to 16 characters long. Default for read is public ; default for write is private .

Note ¯ Use of the default write community string (private ) is strongly discouraged. Because it is the default, it is known to all users and therefore provides no security. If possible, use some other value for the write community string.

Usage

Community strings allow you to control access to the Management Information Base (MIB) information on selected SNMP devices (such as the PortMaster).

A host must know the read community string to read the MIB information, and must know the write community string to set information on the SNMP agent.

Example

Command> set snmp read public
SNMP read community changed to: public

show alarms

This command displays instances of SNMP traps--notifications of certain events--that have occurred on the entire PortMaster 4.

show alarms|[Alarm-id]


Alarm-id	Number that identifies a specific instance of an alarm.

Usage

An alarm is an instance of a trap. The command show alarms generates a list of all traps that have occurred--except for recurring traps, which are summarized and identified by an asterisk (*). If SNMP is enabled and a reader is specified, the reader receives traps for the following:

Nonfunctioning T1, E1, or T3 lines
Modem failure
Removal of AC power supplies
Availability of DC power
Fan failure
Overheated line board slots
Lack of power to line board slots
Blown fuse

You can enter this command from any view.

Examples

Command> show alarms

Alarm Id

Age

Severity

Alarm Message

--------

------

---------

--------------------------------------

4763864

3 days

0

T1 line(0) down

Command> show alarms
Alarm Id	Age	Severity	Alarm Message
--------	------	---------	--------------------------------------
4763864	3 days	0	T1 line(0) down


Command> show alarm 4001608
------------------------ Alarm Details --------------------------
Alarm Id: 4001608	Alarm Message: slot 1 T1 line(0) down
Age in minutes: 3days	Alarm repeated: 1 times
Severity: 0	Reported: SNMP

show table snmp

This command shows the settings in the SNMP table.

show table snmp

Usage

The SNMP table contains the settings for the SNMP read and write communities. View the table to ensure that these communities are set to prevent unauthorized users from changing configuration information.

Example

Command> show table snmp
SNMP Readers (public): Any
SNMP Writers (private): None

Global Settings 3

Displaying Global Information

Summary of Global Commands

Global Commands

add ippool

Usage

Example

See Also

delete ippool

Usage

Examples

See Also

reset ippool

Usage

Example

See Also

set assigned_address

Usage

Example

See Also

set call-check

Usage

Example

See Also

set chap

Usage

Example

See Also

set chassis

Usage

See Also

set dhcp-server

Usage

See Also

set domain

Usage

Example

See Also

set host

Usage

Example

See Also

set ippool

Usage

Examples

See Also

set ippool default-gateway

Usage

Example

See Also

set ipx

Usage

Example

See Also

set ipxgateway

Usage

Examples

set local-ip-address

Usage

Examples Command> set local-ip-address 10.112.34.17 set local-ip-address 10.112.34.17 Local IP Address (1) changed from 0.0.0.0 to 10.112.34.17 Command> set local-ip-address 2 192.168.54.6 set local-ip-address 2 192.168.54.6 Local IP Address (2) changed from 0.0.0.0 to 192.168.54.6 See Also

set loghost

Usage

Example

See Also

set maximum pmconsole

Usage

Example

See Also

set nameserver

Usage

Example

See Also

set namesvc

Usage

Example

See Also

set netbios

Usage

Example

See Also

Examples

Command> set local-ip-address 10.112.34.17

set local-ip-address 10.112.34.17

Local IP Address (1) changed from 0.0.0.0 to 10.112.34.17

Command> set local-ip-address 2 192.168.54.6

set local-ip-address 2 192.168.54.6

Local IP Address (2) changed from 0.0.0.0 to 192.168.54.6

See Also

Example

Command> show table ippool

Name: livermore Default Gateway: 10.23.45.56

Address/netmask Gateway

------------------ --------------------

192.168.1.0/29 0.0.0.0

192.168.2.253/30 0.0.0.0

192.168.3.50/25 0.0.0.0

10.4.5.0/24 192.168.222.3

Explanation

Name Name of IP pool.

Default Gateway Default gateway for the specified named IP pool.

Address/netmask Range of the named IP pool.

Gateway Specified gateway address for the named IP pool range.

Command> show alarms

Alarm Id

Age

Severity

Alarm Message

--------

------

---------

------------------------------------

4001608

3days:11

0

slot 1 T1 line(0) down

Command> clear alarm all

Command> show alarms

Alarm Id

Age

Severity

Alarm Message

Example