|
|
This chapter describes the commands used to configure Internet Protocol (IP) routing, such as IP static routes, Routing Information Protocol (RIP), and IP filters.
To reset a Dynamic Host Configuration Protocol (DHCP) address, use the reset dhcp address command.
REset DHcp ADress [ipaddress | ALl]None
System mode or profile mode
The following example resets a specific DHCP address:
Host:2503> reset dhcp address 10.0.0.3
The following example resets all DHCP addresses:
Host:2503> reset dhcp address all
set dhcp address
set dhcp dns
set dhcp gateway
set dhcp netmask
set dhcp server
set dhcp wins
show dhcp config
To delete an existing IP filter, use the reset ip filter command.
REset IP FIlter filter id | ALl| filter id | Clears the IP filter with this identification number, which was assigned by the router when the filter was created. |
| all | Clears all IP filters. |
None
Profile mode
Use this command to delete IP filters entered with the set ip filter command.
The following example deletes an IP filter with identification number 8 for profile 2503:
Host:2503> reset ip filter 8
The following example deletes all IP filters for profile 2503:
Host:2503> reset ip filter all
set ip filter
To delete an IP static route, use the reset ip route command.
REset IP ROUTE ALl | DEstination | network [/bits] [GAteway next hop]None
Profile mode
The following example deletes a static route for profile 2503:
Host:2503> reset ip route destination 250.250.250.1 gateway 150.150.150.1
set ip route
To disable a Port Address Translation (PAT) porthandler, use the reset ip pat porthandler command.
REset IP PAt POrthandler port number | ALl| port number | A decimal port number. |
| all | Disables all assigned porthandlers. |
None
System mode
Use this command to remove a specific porthandler or all porthandlers.
The following example disables all PAT porthandlers:
Host:2503> reset ip pat po all
To set the range of addresses (or address pool) to be used by the DHCP server for DHCP clients, use the set dhcp address command.
SEt DHcp ADress ipaddress count | ALl| ipaddress | The starting address of the pool. To delete the address pool, use 0.0.0.0. for the start ipaddress. |
| count | The number of IP addresses in the pool. The maximum number of IP addresses is 254 or the number of hosts available in the specified subnet. If the subnet exceeds 254, the table will range from the start address to the first 254 addresses on the subnet. |
| All | Removes all the leases of the IP addresses. |
Dependent on the DHCP parameters configured.
System mode
If the DHCP server is enabled and there are no DHCP parameters configured, a default address pool with start ipaddress as the LAN or Internal profile's IP (if non-zero) + 1 or 10.0.0.2. will be set. The count will be the minimum of 128 or the value limited by the IP and netmask.
To reset this value to the default value, enter:
Host> set dhcp address 0.0.0.0 128
The following is an example of a DHCP address pool. The DHCP address is 192.165.2.1. The count is 10.
Host> set dhcp address 192.165.2.1 10
reset dhcp
set dhcp dns
set dhcp gateway
set dhcp netmask
set dhcp server
set dhcp wins
show dhcp config
To specify the domain string for DHCP clients, use the set dhcp domain command.
SEt DHcp DOmain [string]| string | Domain string. To delete the domain name, use the null string ( ) or leave the field blank. |
None
System mode
The following is an example of a DHCP domain string:
Host> set dhcp domain cisco.com
reset dhcp
set dhcp address
set dhcp dns
set dhcp gateway
set dhcp netmask
set dhcp server
set dhcp wins
show dhcp config
To set the Domain Name Service (DNS) server address for DHCP clients, use the set dhcp dns command.
SEt DHcp DNs PRimary | SEcondary server_addrress| server_address | DNS server address in four-part dotted decimal format. |
None
System mode
To delete the DHCP DNS address, use 0.0.0.0 as the server address. The primary or secondary DNS can be set using the set dhcp dns command.
The following example configures the DHCP DNS server address:
Host> set dhcp DNS primary 150.150.10.47 Host> set dhcp DNS secondary 150.150.10.17
reset dhcp
set dhcp address
set dhcp dns
set dhcp gateway
set dhcp netmask
set dhcp server
set dhcp wins
show dhcp config
To specify the default gateway address for DHCP clients, use the set dhcp gateway command.
SEt DHcp GAteway PRimary | SEcondary ipaddress| ipaddress | Primary or secondary gateway address. To delete the gateway, use 0.0.0.0. for the IP address. |
If the DHCP server is enabled and there are no DHCP parameters configured, a default value of the LAN or Internal profile's IP (if non-zero) or 10.0.0.1 will be set.
System mode
Make sure the primary gateway address matches with the IP address of the LAN or Internal profile (whichever is configured) for proper operation.
The following example configures a DHCP gateway:
Host> set dhcp gateway primary 140.140.11.17 Host> set dhcp gateway secondary 140.140.11.18
reset dhcp
set dhcp address
set dhcp dns
set dhcp netmask
set dhcp server
set dhcp wins
show dhcp config
To add a character string value to the NetBIOS name, use the set dhcp netbios_scope command.
SEt DHcp NETBIOS_Scope [scope_id]| scope_id | A character string to be appended to the NetBIOS name. |
None
System mode
NetBIOS Scope, also known as TCP/IP Scope, adds a second element to the single-element NetBIOS computer name. The scope ID is a character string value appended to the NetBIOS name and is used for all NBT (NetBIOS over TCP/IP) communications from that computer. The character string can be multipart, and it is a limited method of creating isolated subnets based on NetBIOS names, using an extension to the name.
The following example adds a character string to the NetBIOS computer name:
Host> set dhcp netbios_scope cntrl
show DHCP config
To set the subnet mask for DHCP clients, use the set dhcp netmask command.
SEt DHcp NEtmask nnn.nnn.nnn.nnn| nnn.nnn.nnn.nnn | Subnet mask for the DHCP clients. Use a 32-bit quantity in four-part dotted decimal format. |
If the DHCP server is enabled and there are no DHCP parameters configured, a default value of the LAN or Internal profile's netmask or 255.0.0.0 is set.
System mode
Make sure the DHCP subnet mask matches with the LAN or Internal profiles (whichever is configured) for proper operation.
The following example configures a DHCP subnet mask:
Host> set dhcp netmask 255.255.255.0
reset dhcp
set dhcp address
set dhcp dns
set dhcp gateway
set dhcp server
set dhcp wins
show dhcp config
To enable the Dynamic Host Configuration Protocol (DHCP) server or DHCP relay agent, use the set dhcp server and relay command.
SEt DHcp [SErver | RElay ipaddress | OFf]| server | Serves the DHCP requests from the client directly. |
| relay | Relays the DHCP request to the specified DHCP server. |
| ipaddress | IP address of a DHCP server, where Cisco 700 series routers relay sending and receiving packets. |
| off | Disables the DHCP server and relay agent. |
Off
System mode
A limited DHCP Server implementation is provided. When this server function is enabled and configured, it assigns and manages IP addresses from a specified address pool to DHCP clients. The options supported by this server are sufficient for Windows 95 clients. If more IP addresses or options are required, a commercial DHCP Server (for example, Windows NT) should be used.
The router relays DHCP requests and responses between DHCP clients and a specified DHCP server. Use the set dhcp relay ipaddress command, where the IP address is the address of the server to which DHCP requests are forwarded.
The set dhcp server command enables the DHCP Server, with the following options:
| set dhcp address start_addr count | The range of address to be assigned to DHCP clients, where start_addr is the starting IP address and count is the number of addresses (from 1 to 256) to be assigned. (The default starting address is 10.0.0.2, with 10.0.0.1 assigned to the router.) |
| set dhcp netmask nnn.nnn.nnn.nnn | The subnet mask of the DHCP clients. |
| set dhcp gateway primary | secondary ip_address | The default gateway for the DHCP clients. |
| set dhcp dns primary | secondary ip_address | The Domain Name Servers (DNS) for the DHCP clients. |
| set dhcp wins primary | secondary ip_address | The WINS servers for the DHCP clients. |
| reset dhcp domain string | The domain string for the DHCP clients. |
| set dhcp address ip_address | all | Removes the lease of an IP address. If ALl is specified, all the leases are cleared. |
| show dhcp config | The current DHCP Server or Relay Agent configuration details. |
If the DHCP server is enabled and there are no DHCP parameters configured, a default IP address "x" is chosen. This is the LAN or Internal profiles IP if non-zero, or 10.0.0.1 if they are zero.
The following parameters are set:
IP routing is turned on for the LAN profile.
The following example turns on the DHCP server:
Host> set dhcp server
reset dhcp
set dhcp address
set dhcp dns
set dhcp gateway
set dhcp netmask
set dhcp wins
show dhcp config
To specify the WINS server for DHCP clients, use the set dhcp win command.
SEt DHcp WIns PRimary | SEcondary server_address| server_address | IP address of the primary/secondary WINS server. To delete the WINS server, use 0.0.0.0 for the IP address. |
None
System mode
The following example specifies a WINS server for a DHCP client:
host> set dhcp wins primary 140.10.6.5 host> set dhcp wins secondary 140.10.6.6
reset dhcp
set dhcp address
set dhcp dns
set dhcp gateway
set dhcp netmask
set dhcp server
show dhcp config
To set a static default route pointing at the router profile's connection interface, use the set gateway command.
SEt GAteway ipaddress| ipaddress | IP address of the profile's interface in four-part dotted decimal format. |
0.0.0.0
System mode
The following example configures a default static route to the Internal profile's connection:
Host> set gateway 150.150.10.10
To set the IP address for any interface, use the set ip address command.
SEt IP ADdress ipaddress| ipaddress | IP address for the interface in four-part dotted decimal format. To delete the IP address of an interface, use this command with 0.0.0.0 as the IP address. |
0.0.0.0
Profile mode
The following example configures the user-defined profile 2503 connection with an IP address:
Host:2503> set ip address 150.150.10.17
To set the cost metric to the next destination, use the set ip cost command.
SEt IP COst value| value | Number of routers between this router and the destination network. |
The default cost value is 1.
System or profile mode
Entering this command while in profile mode applies the cost to that profile's connection. Entering this command in system mode applies the cost to the Internal profile.
The following example configures profile 2503 with a cost parameter of 2:
Host:2503> set ip cost 2
To create an IP filter, use the set ip filter command.
SEt IP FIlter [[type] IN | OUt [SOurce = [NOT] address] [DEstination= [NOT] address]] | [IN | OUt [patternname]^8] [BLock | ACcept | DEmand | IGnore]No IP filters are configured.
Profile mode
IP filters can be created based on the source address, destination address, or existing byte patterns set by the set pattern command. Entering this command while in profile mode applies the IP filter to that profile connection. Entering this command in system mode applies the IP filter to the Internal profile.
When IP filter is set with type TCP and port 21(FTP), the FTP session fails because any TCP packet with a destination port other than 21 is filtered.
To ensure the FTP session is successful, do not specify the FTP port, for example:
host> set ip filter TCP out destination a.b.c.d/32:21 accept
Refer to the "Port Assignments" appendix for further information.
The maximum offset a byte pattern can have is 255 bytes from the reference point.
The maximum number of patterns that can be specified is 20.
Packets that do not match any filters are processed as follows:
An incoming packet addressed to TCP port 25 is accepted:
Host:2503> set ip filter tcp in source=198.95.216.125:25 accept
An incoming TCP packet, where the TCP data portion is the start width of the pattern defined by tcppat1, is blocked:
Host:2503> set ip filter in tcppat1 block
An outgoing TCP packet addressed to port 23 is blocked:
Host:2503> set pat1 pattern 00 17 offset 2 from TCPHDR Host:2503> set ip filter out pat1 block
The following example demonstrates the packet filtering process. A packet is compared with filter statements until it matches a filter or until all the filters have been tested.
system:2503> set ip filter out tcppat1 accept system:2503> set ip filter out udppat1 block system:2503> set ip filter out udppat2 accept
If the packet matches the first filter, it is accepted and forwarded (bringing up the WAN if necessary). If it matches the second filter, the packet is blocked. If it matches the third filter, it is accepted and forwarded. If the packet does not match any of the filters, it is blocked.
In the following example, if an outgoing packet matches the first filter, it is counted in the threshold values and forwarded (bringing up the WAN if necessary). If it matches the second filter, the packet is ignored with regards to the threshold values. If a packet matches the third filter, it is demanded, the WAN is brought up, the packet is forwarded, and the threshold value increments. If the packet does not match any of the filters, it is ignored.
system:2503> set ip filter out tcppat1 demand system:2503> set ip filter out udppat1 ignore system:2503> set ip filter out udppat2 demand
In the following example, an outgoing packet is compared with each filter. If the packet does not match any of the filters, it is blocked and ignored because an accept filter is defined.
system:2503> set ip filter out tcppat1 accept system:2503> set ip filter out udppat1 block system:2503> set ip filter out udppat2 demand system:2503> set ip filter out tcppat2 ignore
In the following example, an outgoing packet that does not match any of the filters is accepted and ignored because there is one demand filter defined.
system:2503> set ip filter out tcppat1 block system:2503> set ip filter out udppat1 demand system:2503> set ip filter out udppat2 ignore
reset ip filter
set pattern
show filter
show pattern
To set the type of encapsulation used for IP packets, use the set ip framing command.
SEt IP FRaming EThernet_II | NOne Ethernet_II for 3.x
None for 4.x user-defined profiles
Ethernet_II for 4.x LAN and Internal profiles
Profile mode
The router can be assigned an IP address from the remote device using Internet Protocol Control Protocol (IPCP) address negotiation. It supports IPCP options 1 and 3. (It does not support option 2, TCP/IP Header Compression.) IP unnumbered is supported. IPCP address negotiation is on by default in any profile configured for IP routing. This feature does not support assigning addresses to remote devices.
The following example configures profile 2503 for Ethernet II packet framing:
Host:2503> set ip framing ethernet
To enable IP multicast forwarding, use the set ip multicast command.
SEt IP MUlticast ON | OFF| on | Enable multicast. |
| off | Disable multicast. |
Multicast forwarding will be turned off.
Profile mode
Entering this command while in a particular profile enables the forwarding of multicast packets received from that interface to all the other interfaces that have IP multicast turned on.
For IP Multicast, the Cisco 700 software does not support IGMP (Internet Group Membership Protocol), PIM (Protocol Independence Multicast), DVMRP (Distance Vector Multicast Routing Protocol) protocols. It recognizes only the Multicast packets and forwards them to all active interfaces. However, as a router, the Cisco 700 software decrements the TTL (time to live) of Multicast packets. Most IP Multicast packets have a TTL of 1, which results in dropping these packets before they are forwarded to other active interfaces.
To overcome this limitation, it is recommended that the Multicast application generate packets with TTL values greater than 1. When the Cisco 700 software decrements the TTL, it remains a positive value to be forwarded to other interfaces.
To enable or disable spoofing for netbios, use the set netbios name spoofing command. Spoofing prevents unnecessary netbios name query request packets from being transmitted across the ISDN line.
SEt NETBIos Name Spoofing minutes | OFfminutes | Sets netbios name spoofing for an ISDN connection for a specified number of minutes. The range is 1 to 32,000 minutes. For an idle ISDN connection, if spoofing is already turned on, the spoofing time is reset to the number of minutes specified. If spoofing is turned off, spoofing does not start until the ISDN line is brought up. |
|---|---|
| off | Disables netbios name spoofing. |
Off
Profile mode
When a user turns on NetBIOS name spoofing on the outgoing user profile for the WINS server and a local WINS client sends a NetBIOS name query request packet, if the router has the answer to the query, it replies by sending a response packet. If the router does not have the answer to the query, the request is forwarded to the remote WINS server. When the answer comes back from the WINS server, it forwards the response to the local WINS client.
The router keeps a database of up to 100 NetBIOS name entries and has an aging scheme for out-of-date name entries. The aging timeout is four hours for each entry.
The following example enables NetBIOS name spoofing for one hour on the profile 2503:
Host:2503> set netbios name spoofing 60
set ip config
show netbios name spoofing
To set the subnet mask for an interface, use the set ip netmask command. To delete the subnet mask for an interface, enter this command with 0.0.0.0 as the subnet node.
SEt IP NEtmask mask| mask | Subnet mask for the profile interface. Use a 32-bit quantity in four-part dotted decimal format. |
0.0.0.0
System or profile mode
Entering this command while in profile mode applies the IP netmask to the connection created for that user. Entering this command in system mode applies the IP netmask to the Internal profile.
The following example configures the subnet mask for profile 2503:
Host:2503> set ip netmask 255.255.255.0
set subnet mask
To enable or disable the IP Port Address Translation (PAT), use the set ip pat command.
SEt IP PAt ON | OFf| on | PAT is enabled and will reset and flush the PAT internal tables. |
| off | PAT is disabled. |
Off
Profile mode
The set ip pat command turns IP update off and propagate on. PAT cannot be turned on at an internal, standard, or LAN profile for software Release 4.0(1). When PAT is turned on, the maximum number of user profiles is two.
The following example disables PAT:
Host:2503> set ip pat off
show ip pat
To set up the PAT porthandler for a decimal port number, use the set ip pat porthandler command.
SEt IP PAt POrthandler DEfault | TElnet | FTp | SMtp | WIns | HTtp | port_number ip address | OffNone
System mode
The port handler maps a public port to a private IP address. When a packet is received from the outside, Port Address Translation (PAT) compares the port number with an internally configured port handler list (15 entries, maximum), and if there is a port handler defined for this port, it routes the packet to the appropriate port handler. If there is a default port handler defined, it routes the packet there. If it fails to find entries for the above two cases, the router handles the packet itself.
The PAT feature enables local hosts with designated private IP addresses to communicate with the outside world. The router translates the source address of the IP header with a single, global, unique IP address before the packet is forwarded to the outside world. Likewise, IP packets on the return path go through address translations to the designated private IP addresses. When PAT is enabled, the transmission of RIP packets is automatically disabled to prevent leaking private IP addresses to the outside world.
This system mode command sets up a port handler for one of the IP applications defined by the mnemonics or for a decimal port number defined by port_number. For example, to define the port 21 (decimal) service handler (for private IP address 10.1.3.1), use set ip pat porthandler 21 10.1.3.1.
To undefine the port handler, use set ip pat porthandler 10.1.3.1 off.
There is a limit of 15 entries for this command.
Since PAT takes away the end-to-end significance of an IP address, there are limitations when PAT is enabled.
The following example is the PAT configuration used to translate traffic to and from an FTP Server with IP address 10.0.0.3 and a Web Server with IP address 10.0.0.5 that reside on the private LAN:
(System Level) Host> set system 760 Host> set user remote (User Profile) 760:remote> set active remote 760:remote> set ip routing on 760:remote> set ip pat on 760:remote> cd (System Level) Host> set ip pat porthandler ftp 10.0.0.3 Host> set ip pat porthandler http 10.0.0.5
show ip pat
set ip pat
To set the timeout value for port usage over Transmission Control Protocol (TCP), use the set ip pat tcptimeout command.
SEt IP PAt Tcptimeout minutes| minutes | Timeout value for TCP port usage. If the port is idle for the time selected, the connection is terminated. If there is activity on the port before the end of the timeout, the clock is reset to zero and restarts. |
30 minutes
System mode
The following example sets the TCP timeout for 60 minutes:
Host:2503> set ip pat tcptimeout 60
show ip pat
To set the timeout value for the port usage over User Datagram Protocol (UDP), use the set ip pat udptimeout command.
SEt IP PAt UDPTimeout minutes| minutes | The timeout value for the UDP port usage. If the port is idle for the time selected, the connection is terminated. If there is activity on the port before the end of the timeout, the clock is reset to zero and restarts. |
5 minutes
System mode
The following example sets the UDP timeout for 10 minutes:
Host:2503> set ip pat udptimeout 10
show ip pat
To set whether a route over the Ethernet interface is propagated in Routing Information Protocol (RIP) broadcast messages, use the set ip propagate command.
SEt IP PROpagate ON | OFfOn
System or profile mode
Entering this command while in profile mode applies the IP propagate parameters to that profile's connection. Entering this command in system mode applies the IP propagate parameters to the Internal profile.
The following example configures any route over the profile 2503 connection to be propagated in RIP broadcast messages:
Host:2503> set ip propagate on
To set whether Routing Information Protocol (RIP) packets are received, use the set ip rip receive command.
SEt IP RIp REceive BOth | V1 | V2 | OFfOff
System or profile mode
Entering this command while in profile mode applies the RIP receive parameters to that profile's connection. Entering this command in system mode applies the RIP receive parameters to the Internal profile.
The following example configures the connection for profile 2503 to block RIP packets:
Host:2503> set ip rip receive off
To set up the snapshot client parameters for a given profile, use the set ip rip snapshot client command.
SEt IP RIp SNapshot Client ACtive minutes QUiet minutes UPdate ON | OFfNone
Profile mode
Entering this command sets the client snapshot parameters for a given profile. These values are used when the set ip rip update command is set to snapshot.
To setup IP or IPX to use snapshot for routing, configure one device as a client and the other as a server and the two devices can communicate through the ISDN WAN. To configure the router as an IP snapshot client, use the set ip rip snapshot client active x quiet y update on command (x is the active time in minutes and y is the quiet time in minutes).
If update is turned on, the router sends an IP RIP packet as soon as the client enters active state and without waiting for the 30 second clock.
To configure a router as an IP snapshot server, use the set ip rip snapshot server active z update on command (z is the active time in minutes). Normally you set z equal to x so the client and server have the same active time.
Once both devices are configured and you reboot both devices, the client enters a pre-active state after 3 minutes. The 3-minute delay allows the WAN data stack to be initialized.
During the pre-active time, if update is on the client sends a RIP packet immediately. Otherwise it sends a RIP packet at the regular 30 second interval. The router waits up to 1 minute for a RIP packet from the server. If no rip packet is received, it repeats this send RIP packet and wait procedure three times, for a total of 3 minutes. Then it enters the active state. If a RIP packet is received from the server, it enters the active state immediately. This is done to synchronize the start of active time for both the client and the server. So it is better to configure both with the same active time and update on.
During the active time, both the client and server behave exactly like the command is set to periodic. RIP packets are exchanged every 30 seconds and aging of routes takes place. After the active time expires, both the client and server enter a post-active state and stay in this state for 3 minutes. During post-active state, no rip packets are sent and no aging of routes takes place. After the 3 minutes, the client and server enters the quiet state and the same behavior as in post-active state take place, no RIP packet and no aging.
At the end of quiet time, the client enters pre-active time and the cycle is repeated. So for the client, other than the initial 3 minutes delay, it goes through pre-active, active, post-active, quiet process. For the server, it is passive, it goes through active, post-active, and stays in quiet until it receives a RIP packet from the client, then it enters the active state.
So remember that there is an initial 3 minutes wait before the client enters the pre-active state. Most users set up snapshot client and expect it to start right away. They forget there is this initial 3 minutes delay at the start. If you set the active time to x minutes, the active time used is x+1 minutes. This was done to synchronize with Cisco IOS.
You can use the show ip rip snapshot command to show your snapshot configuration and monitor the state of the client or server.
The following example shows the configuration of the profile user 1 as a snapshot client that has an active period of 10 minutes, and a quiet period of 60 minutes, and sends routing information as soon as it enters the active period.
Host> cd user1 Host:user1> set ip rip snapshot client act 10 quiet 60 update on
set ip rip update
To set the snapshot server parameters for a given profile, use the set ip rip snapshot server command.
SEt IP RIp SNapshot SErver ACtive minutes UPdate ON | OFfNone
Profile mode
Entering this command sets the server snapshot parameters for a given profile. These values will be used when the set ip rip update command is set to snapshot.
The following example shows the configuration of the profile user 1 as a snapshot server that has an active period of 10 minutes, and a quiet period of 60 minutes, and sends routing information as soon as it enters the active period:
Host> cd user1 Host:user1> set ip rip snapshot server active 10 update on
set ip rip update
To enable IP RIP route summarization, use the set ip rip summarization command.
SEt IP RIp SUmmarization AUto | OFfOff
Profile mode
Route summarization is provided on IP RIP Version 2 (only Version 2 provides the required subnet mask information).
The following example shows route summarization set to be across classful boundaries to a single route based on the classful boundary:
Host> cd user1 Host> cd user1 set ip rip summarization auto
To specify when Routing Information Protocol (RIP) packets will be sent, use the set ip rip update command.
SEt IP RIp UPdate PEriodic | DEmand | SNapshot | LInkup | OFfRIP sends information about your router to other routers. Each entry in a RIP routing table provides a variety of information, including the ultimate destination, and the next hop on the way to that destination, and a metric.
Off
System or profile mode
Entering this command while in profile mode applies the IP update parameters to that profile's connection. Entering this command in system mode applies the IP update parameters to the Internal profile.
The IP RIP Update Linkup option for IP RIP enables better interoperability between the router and Cisco IOS. If the IP RIP update is set to link up for a WAN profile, the IP RIP data is sent as soon as a connection is established and again every 30 seconds for as long as the connection exists. If the connection does not exist, no RIP data is sent. This prevents the line from being brought up by RIP packets where the update is periodic.
The following example configures profile 2503 for sending RIP packets on demand:
Host:2503> set ip rip update demand
To specify which version of IP RIP (1 or 2) packets are used when sending RIP packets, use the set ip rip version command.
SEt IP RIp VErsion 1 | 2 | BOth| 1 | Sends RIP version 1 packets. |
| 2 | Sends RIP version 2 packets. |
| both | Sends both version 1 and 2 packets. |
RIP version 1 packets
Profile mode
The following example configures profile 2503 to send RIP version 2 packets:
Host:2503> set ip rip version 2
set ip route
To define a static IP route, use the command set ip route.
SEt IP ROUTE DEstination network [/bits] GAteway nexthop [PRopagate = ON | OFf] [COst = value]No static routes are defined.
Profile mode
The following example configures a static IP route for profile 2503:
Host:2503> set ip route destination 198.95.217.0/24 gateway 198.95.217.1 propagate on cost 2
reset ip route
To enable or disable IP routing, use the set ip routing command.
SEt IP ROuting ON | OFf| on | Enables IP routing on the profile's interface. |
| off | Disables IP routing on the profile's interface. |
Off
Profile mode
Any profile that has IP routing enabled must have a network address assigned using the set ip address command.
The following example enables IP routing for profile 2503:
Host:2503> set ip routing on
set ip address
To set the subnet mask for an interface, use the set subnet mask command. To delete the subnet mask for an interface, use this command with 0.0.0.0 as the IP address mask.
SEt SUBnet ipaddressmask| ipaddressmask | Subnet mask for the profile interface. Use a 32-bit quantity in four part dotted decimal format. |
0.0.0.0
System or profile mode
Entering this command while in profile mode applies the subnet mask to that profile's interface. Entering this command in system mode applies the subnet mask to the Internal profile.
The following example configures the subnet mask for profile 2503:
Host:2503> set subnet mask 255.255.255.0
set ip netmask
To display the DHCP configuration, use the show dhcp config command.
SHow DHcp COnfigThis command has no keywords or arguments.
None
System mode
The show dhcp config command displays all of the DHCP-related settings.
The following example shows output from the show dhcp config command in system mode for the 760 and 770 series:
Host> show dhcp config Environment DHCP Server ON DHCP Relay OFF IP Address Pool Start IP Address 10.0.0.2 Count 128 Subnet Mask 255.0.0.0 DNS Configuration Primary DNS Server 171.69.2.132 Secondary DNS Server NONE Domain "" Gateways Primary Gateway 10.0.0.1 Secondary Gateway NONE WINS Configuration Primary WINS Server 171.69.2.87 Secondary WINS Server NONE Address In Use IP Address Mac Addressandto Quit or for MORE0 IP addresses allocated, 128 free Router>
reset dhcp
set dhcp address
set dhcp dns
set dhcp gateway
set dhcp netmask
set dhcp server
set dhcp wins
To display the IP configuration for one or all profiles, use the show ip configuration command.
SHow IP COnfiguration [ALl]| all | Displays the IP configuration for all profiles. |
System or profile mode
Use this command while in profile mode to display the IP configuration for that profile. Use this command in system mode or with the keyword all to display the IP configurations for all profiles.
The following example shows the output of the show ip configuration command for profile 2503:
Host:2503> sh ip config all Profile Routing Frame IP Address Netmask RIP TX RX Prop Cost ------------------------------------------------------------------------ LAN ON ETH2 153.50.6.27 255.255.255.128 V2 PER V2 ON 1 3274 ON IPCP 1.1.1.2 255.0.0.0 V2 PER V2 ON 1 gold ON IPCP 128.16.32.13 255.255.255.252 V2 DEM V2 ON 1 silver ON IPCP 15.16.193.6 255.255.248.0 V2 DEM V2 ON 1 copper ON IPCP 144.254.4.1 255.255.252.0 V2 DEM V2 ON 1 brass ON IPCP 131.108.2.160 255.255.255.0 V2 DEM V2 ON 1 Profile PAT Multicast Summarization Netbios Spoofing/Left(min) ------------------------------------------------------------------- LAN OFF OFF AUTO OFF /0 3274 OFF OFF AUTO 30 /0 gold OFF OFF AUTO 150 /0 silver OFF OFF AUTO 10 /0 copper OFF OFF AUTO 20 /0 brass OFF OFF AUTO OFF /0
describes the fields shown in the display.
set user
set ip routing
set ip framing
set ip address
set ip netmask
set subnet mask
set ip rip version
set ip rip update
set ip rip receive
set ip propagate
set ip cost
set netbios name
To display the IP filters for one or all profiles, use the show ip filter command.
SHow IP FIlter [ALl]| all | Displays IP filters for all profiles. |
None
System or profile mode
Use this command while in profile mode to display IP filters for that profile. Use this command in system mode or with the keyword all to display IP filters for all profiles.
The following is a example of the show ip filter command for profile 2503:
Host:2503> show ip filter all IP Type Filter Profile ID Dir Type Action Addresses --------------------------------------------------- ios1 1 IN TCP BLOCK SRC 150.150.150.1/24 IOS700 1 OUT UDP BLOCK SRC 171.69.2.91/32 DST 172.22.17.215/32 IP Generic Filter Profile ID Dir Type Action Patterns ------------------------------------------------------- IOS700 2 OUT TCPDATA BLOCK SRC 150.150.150.1/24 ios2 1 IN UDPHDR ACCEPT SRC 172.22.17.215/32
Table 6-1 describes the fields shown in the display.
set ip filter
To display the IP Port Address Translation (PAT) statistics and the currently active translated sessions, use the show ip pat command.
SHow IP PAtThis command has no keywords or arguments.
None
System mode
The following is a example of the show ip pat command:
Host> show ip pat Port Handler Service ------------------------------------- 0 10.1.1.1 DEFAULT 23 Router TELNET 67 Router DHCP Server 68 Router DHCP Client 69 Router TFTP 80 Router HTTP 161 Router SNMP 162 Router SNMP-TRAP 520 Router RIP
To display the current snapshot parameters, use the show ip rip snapshot command.
SHow IP RIp SNapshot [ALl]| all | Displays current snapshot parameters for all profiles. |
None
System or profile mode
The following example shows the output from the show ip rip snapshot command:
Host> show ip rip snapshot Profile Snapshot Active Quiet Update State ------------------------------------------------------------------- LAN NONE 0 0 OFF 3274 SERVER 5 0 ON ACTIVE gold CLIENT 5 3 ON QUIET silver NONE 0 0 OFF copper NONE 0 0 OFF brass NONE 0 0 OFF
Table 6-3 describes snapshot parameters field descriptions.
| Field | Description |
|---|---|
| Profile | The profile to which the parameters apply. |
| Snapshot | Specifies whether snapshot is Off (none) or is acting as a client or a server for this connection. |
| Active | The active period in minutes. |
| Quiet | The quiet period in minutes. |
| Update | Can be On or Off. Update On configures the client or server to send routing information as soon as it enters the active period. Update Off configures the client or server to wait for the periodic update to send the routing information after it enters the active period. |
| State | There are four states: pre-active, active, post-active, and quiet. |
To display IP routes for one or all profiles, use the show ip route command.
SHow IP ROute [ALl]| all | Displays IP routes for all profiles. |
None
System or profile mode
Use this command in profile mode to display IP routes for that profile. Use this command in system mode or with the keyword all to display IP routes for all profiles.
The following is a example of the show ip route all command:
Host> show ip route all Profile Type Destination Bits Gateway Prop Cost Source Age ----------------------------------------------------------- JohnS NET 150.150.217.0 24 1.1.1.5 ON 3 RIP 0 JohnS NET 150.150.219.0 24 1.1.1.5 ON 3 RIP 0 JohnS NET 150.150.216.0 24 1.1.1.5 ON 2 RIP 0 JohnS NET 177.3.0.016.0 1.1.1.5 ON 3 RIP 0 Internal NET 149.7.0.0 16 DIRECT ON 1 DIRECT 0
describes the fields shown in the display.
set ip route
To display all the NETBIOS names in the router database, use the show netbios name command.
SHow NETBIos Nameminutes | Enables netbios spoofing for an idle ISDN connection for a specified number of minutes. The range is 1 to 32,000 minutes. |
|---|---|
| off | Disables netbios spoofing. |
None
System mode
Spoofing prevents unnecessary packets from being transmitted across the ISDN line. When a local WINS client sends a NetBIOS name query request packet, if the router has the answer to the query, the router replies by sending out a response packet in place of the server. If the router does not have the answer, it forwards the query packets to the WINS server. When the answer comes back, it forwards the response to the client and saves a copy in its local database. The router keeps a local database of up to 100 WINS name entries and has an aging scheme for the out-of-date name entries. The entry is aged out of the database after four hours. When NetBIOS name spoofing expires on one profile, the local database is cleared, if no other spoofing activity is detected.
The following example shows the output from the show netbios name command:
Host> show netbios name Name IP Address Group/Unique -------------------------------------------------- user1-pc 0x20 171.69.91.47 U user2-pc 0x20 171.69.91.46 U department 1 0x1c 172.88.77.66 G 171.11.22.33 171.44.55.66 system1c 0x00 192.22.87.65 U Total Name: 4
| Field | Description |
|---|---|
| Name | NetBIOS name. The end of the name includes the 16th byte of the name printed as a hex number. |
| IP Address | IP address of the systems that have registered this name. |
| Group/Unique | A unique name or group name. |
set ipx spoofing
set netbios name spoofing
|
|