|
|
This section is used to modify global device parameters such as the device name, password, route filters, and other informational data.
configure GeneralAfter entering the configure command for the section, enter one or more of the following keywords.
The DeviceName keyword sets the system name. The maximum name length is 32 characters. | |
The Password keyword is used to set the device password. The password is required for logging into the device using a console or as a telnet client. This login level will allow a user to display tables and statistics, but does not permit a user to view or make any changes to the configuration. The password is stored as clear text and may have a maximum length of 8 characters. | |
The EnablePassword keyword is used to set the password which enables supervisor mode. The password is required for viewing or making changes to the device's configuration. If no EnablePassword is created, then the Password will be used. The password is stored as clear text and may have a maximum length of 8 characters. | |
RadiusLogin = {On | Off} | The RadiusLogin keyword allows telnet and console logins to be authenticated with a RADIUS server. If RadiusLogin is On, the device will not perform internal password authentication using the Password or the EnablePassword. Only RADIUS authentication will be done, so communication with a RADIUS server must be set up using the Radius section. The RadiusShowName and RadiusEnableName keywords must also be set and the RADIUS server must have two password and name pairs configured so that the two different levels of access can be provided. The default is Off. |
RadiusShowName = String | The RadiusShowName keyword sets the user name which will be sent to a RADIUS server for authentication. If this name and the entered password are validated, then the user will be able to display statistics and tables, but will not be able to view or make changes to the configuration. The string may be between 1 and 16 characters. |
RadiusEnableName = String | The RadiusEnableName keyword sets the user name which will be sent to a RADIUS server for authentication. If this name and the entered password are validated, then the user will be able to view and make changes to the configuration. The string may be between 1 and 16 characters. |
TelnetFilter = String | The TelnetFilter keyword allows a named set of IP packet filtering rules to be applied to all Telnet packets which come into the device. This can be used to block unauthorized Telnet access to the device. Any packet not explicitly allowed by the rule set is dropped silently. Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. If no string is specified, then no filtering takes place. This feature can be used to turn off a filter set (or sets) without deleting the keyword. See the IP Filter section for a definition of the rules that may be included in an IP packet filter. |
ANSPCompatible = {On | Off} | |
AppleTalkPhase2Timeout = Number | The AppleTalkPhase2Timeout keyword is used to set the timeout for the AARP (Apple Address Resolution Protocol) address claim which probes made at device startup time. The value specified will be added to the standard 2 seconds. This may be necessary on AppleTalk networks which include WAN bridges. On these networks, it may take longer than 2 seconds for a node on the far side of a WAN bridge connection (logically still on the same AppleTalk internet) to respond to an AARP address claim made by the device, therefore leaving an opportunity for a duplicate address to be used by the device. |
IPBlockSourceRouting = {On | Off} | The IPBlockSourceRouting keyword is used to block source-routed IP packets through the device. |
IPLogSourceRouting = {On | Off} | The IPLogSourceRouting keyword is used to log source-routed packets that have been blocked. This keyword is only valid if the IPBlockSourceRouting keyword has been enabled. |
IPRouteFilters = String | The IPRouteFilters keyword is used to set the IP Route filter list. More than one filter may be listed in the value for this keyword, but only one keyword may exist in the configuration. IP route filtering rules are specified in the IP Route Filter section. |
IPXRouteFilters = String | The IPXRouteFilters keyword is used to set the IPX Route filter list. More than one filter may be listed in the value for this keyword, but only one keyword may exist in the configuration. IPX route filtering rules are specified in the IPX Route Filter section. |
IPXSAPFilters = String | The IPXSAPFilters keyword is used to set the IPX SAP filter list. More than one filter may be listed in the value for this keyword, but only one keyword may exist in the configuration. IPX SAP filtering rules are specified in the IPX SAP Filter section. |
RIPv2Password = String | The RIPv2Password keyword sets the password used to authenticate IP routing information sent and received by RIP version 2. The string may be between 1 and 16 characters. |
ConfiguredOn = String | The ConfiguredOn keyword is set by the device to the current time when a configuration is saved. If no time is set, the device will set the string to "Time server not configured." See the Time Server section or the sys clock command.) |
ConfiguredFrom = String | The ConfiguredFrom keyword is set by the device when a configuration is saved. |
ConfigFile = String | The ConfigFile keyword is set by the management software and exists for informational purposes only. It can be used to help track the source (e.g., a file name) of a configuration. |
DeviceType = String | The DeviceType keyword is set by the device when a configuration is saved. It is needed by CompatiView to determine what type of device a configuration is for. |
IPsecGateway = IP Address | Identify the Internet gateway address where you want the concentrator to send all VPN traffic from the VPN-only port, such as Ethernet 1 on a VPN 5001 concentrator. This router IP address must be on the same subnet as the VPN-only port. You can only specify one IPsec gateway for the concentrator. |
The following example shows a default General section.
[ General ] DeviceType = MicroRouter 2220R ConfiguredOn = 02/28/99 14:54:40 ConfiguredFrom = Command Line, from Console DeviceName = "INI Old Router" Password = letmein
The following example shows a device which has RADIUS authentication enabled.
[ General ] DeviceType = MicroRouter 2220R ConfiguredOn = 03/30/99 16:33:27 ConfiguredFrom = Command Line, from Console DeviceName = "ROR 2220" RadiusLogin = On RadiusShowName = LRicardo RadiusEnableName = Lucy
| Command | Description |
|---|---|
configure Radius | Configures the concentrator for communication with a RADIUS server for user authentication |
configure Time Server | Configures the concentrator for communication with a time server |
edit config IP Route Filter | Creates IP route filters |
edit config IPX Route Filter | Creates IPX route filters |
edit config IPX SAP Filter | Creates IPX server filters |
show version | Shows general device information |
sys clock | Sets the time on the concentrator |
Posted: Wed Sep 27 10:42:49 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.