HP StorageWorks Enterprise File Services WAN Accelerator 3.0.
Legal and notice information © Copyright 2007 Hewlett-Packard Development Company, L.P. © Copyright 2003–2007 Riverbed Technology, Inc. Hewlett-Packard Company makes no warranty of any kind with regard to this material, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing, performance, or use of this material.
Introduction CONTENTS Contents ......................................................................................................... 13 About This Guide................................................................................ 13 Types of Users .............................................................................. 13 Organization of This Guide .......................................................... 13 Document Conventions ..............................................................
exit....................................................................................................... 23 ping ..................................................................................................... 24 traceroute............................................................................................. 24 Chapter 3 Enable-Mode Commands .......................................................... 27 configure terminal......................................................................
show info............................................................................................. 42 show in-path........................................................................................ 42 show in-path ar-circbuf ....................................................................... 43 show in-path asym-route-tab............................................................... 43 show in-path neighbor.........................................................................
show protocol ms-sql .......................................................................... 55 show protocol ms-sql rules ................................................................. 56 show protocol nfs................................................................................ 56 show qos classification ....................................................................... 57 show qos dscp rules ............................................................................ 57 show radius .....
Chapter 4 Configuration-Mode Commands .............................................. 73 aaa authentication login default .......................................................... 80 aaa authorization map default-user ..................................................... 81 aaa authorization map order................................................................ 81 banner.................................................................................................. 82 boot system ..................
email notify events enable .................................................................. 95 email notify events recipient............................................................... 96 email notify failures enable................................................................. 96 email notify failures recipient ............................................................. 96 email send-test .................................................................................... 97 failover buddy addr .
in-path neighbor enable..................................................................... 108 in-path neighbor ip address............................................................... 109 in-path neighbor keepalive count...................................................... 109 in-path neighbor keepalive interval .................................................. 110 in-path oop enable............................................................................. 110 in-path peering rule ................
job execute ........................................................................................ 129 job fail-continue ................................................................................ 129 job name............................................................................................ 129 license delete..................................................................................... 130 license install................................................................................
protocol cifs oopen............................................................................ 150 protocol cifs oopen enable ................................................................ 151 protocol cifs prepop enable............................................................... 152 protocol cifs secure-sig-opt enable ................................................... 152 protocol connection lan send buf-size...............................................
qos classification enable ................................................................... 171 qos classification link-rate ................................................................ 171 qos classification rule add................................................................. 172 qos classification rule move.............................................................. 173 qos dscp edit-rule .............................................................................. 173 qos dscp move-rule ...
tacacs-server key............................................................................... 190 tacacs-server retransmit .................................................................... 191 tacacs-server timeout ........................................................................ 191 tcp connection send keep-alive ......................................................... 191 tcp highspeed enable ......................................................................... 193 terminal ............
Appendix B HP EFS WAN Accelerator Ports .............................................. 219 Default Ports ..................................................................................... 219 Commonly Optimized Ports ............................................................. 220 Commonly Excluded Ports ............................................................... 220 Interactive Ports Forwarded by the HP EFS WAN Accelerator ....... 221 Secure Ports Forwarded by the HP EFS WAN Accelerator .........
INTRODUCTION Introduction In This Introduction Welcome to the HP StorageWorks Enterprise File Services WAN Accelerator Command Line Interface reference manual. Read this introduction for an overview of the information provided in this guide and for an understanding of the documentation conventions used throughout.
Chapter 3, “Enable-Mode Commands,” provides a reference for enable-mode commands. Chapter 4, “Configuration-Mode Commands,” provides a reference for i commands. Appendix A, “HP EFS WAN Accelerator MIB,” provides an example of the HP EFS WAN Accelerator Enterprise Simple Network Management Protocol (SNMP) Message Information Block (MIB).
Hardware and Software Dependencies The following table summarizes the hardware, software, and operating system requirements for the HP EFS WAN Accelerator CLI. Software Requirements Operating System Requirements One of the following: Secure Shell (ssh). Free ssh clients include PuTTY for Windows computers, OpenSSH for many Unix and Unix-like operating systems, and Cygwin.
Antivirus Compatibility The HP EFS WAN Accelerator has been tested with the following antivirus software with no impact on performance: Network Associates (McAfee) VirusScan 7.0.0 Enterprise on the server Network Associates (McAfee) VirusScan 7.1.0 Enterprise on the server Network Associates (McAfee) VirusScan 7.1.0 Enterprise on the client Symantec (Norton) AntiVirus Corporate Edition 8.
HP StorageWorks Enterprise File Services WAN Accelerator Manager user’s guide describes how to install, configure, and administer a network made up of multiple HP EFS WAN Accelerators using the HP StorageWorks Enterprise File Services WAN Accelerator Manager.
NOTE: For continuous quality improvement, calls may be recorded or monitored. Be sure to have the following information available before calling: Technical support registration number (if applicable) Product serial numbers Product model names and numbers Applicable error messages Operating system type and revision level Detailed, specific questions HP Storage Web Site The HP web site has the latest information on this product, as well as the latest drivers.
In This Chapter 1 - USING THE COMMAND-LINE INTERFACE CHAPTER 1 Using the Command-Line Interface This chapter describes how to access and use the HP EFS WAN Accelerator command-line interface (CLI).
ssh admin@host.domain or ssh admin@ipaddress 3. You are prompted for the administrator password. This is the password you set in the configuration wizard. (The default password is password.) You can also log in as a monitor user (monitor). Monitor users cannot make configuration changes to the system. Monitor users can view reports and system logs. Overview of the CLI The CLI is divided into the following modes: User. When you start a CLI session, you begin in the default, user mode.
Entering Commands tilden (config)# configure t You can press TAB to complete a CLI command automatically. Accessing Online Help To access online help, at the system prompt, type the full or partial command string followed by a question mark (?). The CLI displays the command keywords or parameters for the command and a short description. To access online help • At the system prompt enter the following command: tilden (config) # show ? The CLI does not display the question mark.
Saving Configuration Changes The show configuration running command displays the current configuration of the system. When you make a configuration change to the system, the change becomes part of the running configuration. The change does not automatically become part of the configuration file in memory until you write the file to memory and disk. If you do not save your changes to memory and disk, they are lost when the system restarts.
In This Chapter To enter user mode 2 - USER-MODE COMMANDS CHAPTER 2 User-Mode Commands This chapter is a reference for user-mode commands. User-mode commands allow you to enter enable mode and perform standard network monitoring tasks. • Connect to the CLI. For detailed information, see “Connecting to the CLI” on page 19.
ping Description Executes the HP EFS WAN Accelerator ping utility to send ICMP ECHO_REQUEST packets to network hosts for troubleshooting. The HP EFS WAN Accelerator ping command without any options pings from the primary or the auxiliary (aux) interface but not the in-path interfaces.
Example minna # traceroute minna traceroute to minna.domain.com (10.0.0.3), 30 hops max, 38 byte packets 1 minna (10.0.0.3) 0.035 ms 0.021 ms 0.
26 2 - USER-MODE COMMANDS
In This Chapter To enter enable mode 3 - ENABLE-MODE COMMANDS CHAPTER 3 Enable-Mode Commands This chapter is a reference for enable-mode commands. Enable-mode commands are commands that display process information. 1. Connect to the CLI. For detailed information, see “Connecting to the CLI” on page 19. 2. To enter enable mode, at the system prompt enter: host > enable host # To exit enable mode, enter exit. For information about the exit command, see “exit” on page 23.
28 “show configuration full” on page 35 “show configuration running” on page 36 “show connection” on page 36 “show connections” on page 37 “show datastore” on page 38 “show email” on page 39 “show failover” on page 39 “show files debug-dump” on page 39 “show files sa” on page 40 “show files stats” on page 40 “show files tcpdump” on page 40 “show hardware” on page 41 “show hardware watchdog” on page 41 “show hosts” on page 41 “show images” on page 4
“show out-of-path” on page 50 “show peers” on page 51 “show peer version” on page 50 “show port-label” on page 51 “show pfs all-info shares” on page 52 “show pfs configuration” on page 52 “show pfs state shares” on page 53 “show pfs stats shares” on page 53 “show prepop” on page 53 “show protocol cifs” on page 54 “show protocol cifs oopen” on page 54 “show protocol connection” on page 54 “show protocol ftp” on page 55 “show protocol mapi” on page 55 “s
“show tcp reordering” on page 65 “show tcp statistics” on page 66 “show terminal” on page 66 “show usernames” on page 66 “show version” on page 66 “show version history” on page 67 “show wccp” on page 67 “show web” on page 67 “show web prefs” on page 68 “slogin” on page 68 “stats export” on page 68 “tcpdump” on page 69 “tproxytrace” on page 70 configure terminal Description Enables configuration from the terminal by entering the configuration subsystem.
Example minna # disable minna > Description Deletes, emails, and uploads dump files. Syntax file debug-dump {delete | email | upload } Parameters Example delete Specifies the system dump file to delete. email Specifies the system dump file to email. upload Specifies the system dump file to upload. minna # file debug-dump delete sysdump-minna-20040302-234632.
Syntax reload [clean [halt] | halt | force] Parameters Example clean [halt] Clears the data store and reboots or shuts down the system. The reload clean halt command clears the data store and shuts down the system. halt Shuts down the system. force Clears the data store, then reboots or shuts down the system. minna # reload The session will close. It takes about 2-3 minutes to reboot the appliance. restart Description Restarts the HP EFS WAN Accelerator service.
Syntax show arp [static] Parameters Example 3 - ENABLE-MODE COMMANDS static Displays static ARP addresses. minna # show arp ARP cache contents IP 10.0.0.1 maps to MAC 00:07:E9:70:20:15 IP 10.0.0.2 maps to MAC 00:05:5D:36:CB:29 IP 10.0.100.22 maps to MAC 00:07:E9:55:10:09 show banner Description Displays the contents of the login and message of the day (MOTD) banners configured for the Management Console.
Terminal width: Terminal length: Terminal type: Auto-logout: Paging: 80 columns 24 rows (none) disabled disabled CLI defaults for future sessions Auto-logout: disabled Paging: enabled show clock Description Displays current date and time. Syntax show clock Parameters None Example minna Time: Date: Zone: # show clock 19:31:43 2003/12/22 GMT-offset GMT show cmc Description Displays current EFS WAN Accelerator Manager settings.
show configuration files Description Displays current configuration files. Syntax show configuration files [] Parameters Example Specifies a particular configuration file. minna # show configuration files initial (active) initial.bak show configuration full Description Displays all configuration settings including the default settings.
show configuration running Description Displays running configuration settings. The show configuration running full command displays all settings, including default settings. Syntax show configuration running [full] Parameters full Example Displays complete running configuration settings. minna # show configuration running ## ## Network interface configuration ##(displays running configuration; this is a partial example.) show connection Description Displays information about a single connection.
show connections Description Displays connections running through the HP EFS WAN Accelerator. A U is displayed next to the appliance name if the connection is in an unknown state.
filter Filters connections according to string. For example, to filter by IP address (such as srcip or destip), the filter string is the IP address. sort-by srcip | srcport | destip | destport | peerip | peerport | app | reduction| bytes_in | bytes_out | starttime Sort results by the following states: • srcip. Sort connections by source Internet Protocol (IP) address. • srcport. Sort connections by source port. • destip. Sort connections by destination IP address. • peerip.
show email Displays current email settings. Syntax show email Parameters None Example minna # show email Mail hub: Domain: domain.com (default) Event emails Enabled: yes No recipients configured. Failure emails Enabled: yes No recipients configured. show failover Description Displays current failover device settings.
show files sa Description Displays HP EFS WAN Accelerator log files. Syntax show files sa [ | ] Parameters Example To display a list of log files, press ENTER after the command. To display the contents of the log file, specify the filename and press ENTER. minna # show files sa 2006.05.16.23.53.sar 2006.05.17.23.53.sar 2006.05.18.23.53.sar 2006.05.19.23.53.sar 2006.05.20.23.53.sar 2006.05.21.23.53.sar minna # show files 2006.05.21.23.53.
show hardware Displays hardware information. Syntax show hardware Parameters None Example minna # show hardware Hardware Revision: B Mainboard: Series 3000/5000 motherboard, ................. CMP-00072 Slot 0: 4 Port Copper GigE Network Bypass Card, ....... CMP-00074 Slot 1: (Empty) Slot 2: (Empty) Slot 3: (Empty) Slot 4: 6 Port SATA RAID I/O Card, .................... CMP-00014 Slot 5: (Empty) show hardware watchdog Description Displays hardware watchdog information.
Syntax show images Parameters None Example minna # show images Images available to be installed: webimage.tbz rbtsh/linux Vancouver #12 2004-07-15 11:54:52 root@test:CVS_TMS/HEAD image.img rbtsh/linux 1.
show in-path ar-circbuf Displays the buffer of the last n connections that were not optimized due to asymmetric routing (AR) (if any). Syntax show in-path ar-circbuf Parameters None Example minna # show in-path ar-circbuf Nothing present minna # show in-path asym-route-tab Description Displays the asymmetric routing table.
Keepalive Count: Keepalive Interval: 3 10 show in-path peering rules Description Displays current in-path peering rules for serial cluster deployments. Syntax show in-path peering rules Parameters None Example minna (config) # show in-path peering rules Rule Type Source Network Dest Network Port Peer Addr ----- ------ ------------------ ------------------ ----- ------------1 pass * * * 10.0.1.3 2 pass * * * 10.0.1.
show interfaces Displays the running state settings (The set of settings and statistics displayed varies when using DHCP) and statistics. Syntax show interfaces [] | [brief | configured] Parameters Example Specifies the interface name. For example, aux, lan0_0, wan0_0, primary, in-path0_0, lo brief Displays the running state settings without statistics. configured Displays configured settings for the interface.
TX carrier: TX collisions: Interface aux state Up: IP address: Netmask: Speed: Duplex: Interface type: MTU: HW address: RX bytes: RX packets: RX mcast packets: RX discards: RX errors: RX overruns: RX frame: TX bytes: TX packets: TX discards: TX errors: TX overruns: TX carrier: TX collisions: 0 0 yes UNKNOWN UNKNOWN ethernet 1500 00:E0:81:52:0E:21 0 0 0 0 0 0 0 0 0 0 0 0 0 0 show ip Description Displays Internet Protocol (IP) settings.
None Example minna # show ip flow-export Enabled: no minna # show ip security Description Displays IP Security Protocol (IPSec) settings. IPsec security support must also be running when IP security is enabled. If both are not enabled, a problem can result with your security settings.
Example minna # show job 10 Status: pending Name: myjob Comment: this is a test Absolute range: Commands: show info. show connections. show version. show jobs Description Displays a list of all jobs. Syntax show jobs Parameters None Example minna # show jobs % No jobs configured. show licenses Description Displays active licenses.
None Example minna # show limit bandwidth Max rate: 4000 kb/s wan0_0 : disabled primary: disabled 3 - ENABLE-MODE COMMANDS Parameters show limit connection Description Displays the current connection limit setting. Syntax show limit connection Parameters None Example minna # show limit connection Per source IP connection limit: 4096 show log Description Displays system logs.
Dec 22 20:07:12 localhost cli[555]: [cli.INFO]: user admin: Executing command: show log show logging Description Displays log settings. Syntax show logging Parameters None Example minna # show logging Local logging level: info Default remote logging level: info No remote syslog receivers configured. Number of archived log files to keep: 10 Log rotation frequency: daily minna # show ntp Description Displays Network Time Protocol (NTP) settings.
Parameters None Example minna # show peer version No peer setting defined. 3 - ENABLE-MODE COMMANDS show peers Description Displays connected HP EFS WAN Accelerators. Syntax show peers Parameters None Example minna # show peers IP Name 10.11.22.17 tcfe17 Model Version 2000 3.0-beta Licenses CIFS/MAPI/MS-SQL show port-label Description Displays configured port labels. Syntax show port-label [] [Secure | Interactive |RBT-Proto] Parameters Specifies the port label name.
3269, 3410, 3424, 3471, 3496, 3509, 3529, 3539, 3660-3661, 3713, 3747, 3864, 388 5, 3896-3897, 3995, 4031, 5007, 5061, 7674, 9802, 11751, 12109 show pfs all-info shares Description Displays all Proxy File Services (PFS) settings. Syntax show pfs all-info shares [local-name ] Parameters local-name Example Displays the PFS settings for the local share specified.
show pfs state shares Displays the current status of local shares. Syntax show pfs state shares [local-name ] 3 - ENABLE-MODE COMMANDS Description Parameters local-name Example Displays the PFS settings for local share specified.
Parameters all-info | configuration | stats | status Specifies which prepopulation settings to display: • all-info. Specifies complete prepopulation setting information. • configuration. Specifies prepopulation configuration information. • stats. Specifies prepopulation statistics. • status. Specifies prepopulation status. Example shares Specifies settings for all shares should be displayed.
None Example minna # show protocol connection LAN: Send socket buffer size: Receive socket buffer size: WAN: Default send socket buffer size: Default receive socket buffer size: 81920 bytes 32768 bytes 3 - ENABLE-MODE COMMANDS Parameters 262140 bytes 262140 bytes show protocol ftp Description Displays the File Transfer Protocol (FTP) settings.
MS-SQL number of preacknowledgement: 5 MS-SQL prefetch fetch-next: yes show protocol ms-sql rules Description Displays the MS-SQL rules. Syntax show protocol ms-sql rules [default-cmds | default-config] Parameters Example default-cmds Displays only the MS-SQL default commands. default-config Displays only the MS-SQL default configuration.
Parameters Displays information for the NFS server specified by . You can specify the following levels of detail: • full. Displays full details. • lookup-volumes. Displays a list of NFS server volumes that have been exported. • volume id . Displays details for the NFS server volume. servers {full} Example Displays NFS server settings.
Example minna # show qos dscp rules Rule Source Destination Port DSCP ----- ------------------ ------------------ --------------- ---def all all all refl ---------------------------------------------------------------0 user added rule(s) show radius Description Displays Remote Authentication Dial-In User Service (RADIUS) configuration settings. Syntax show radius Parameters None Example minna # show radius No radius settings.
show raid diagram Displays the physical layout of the RAID disks and the state of each drive: O = Online, F = Fail, R = Rebuild, M = missing, S = spare.
Logical Drives : 01 DRAM : 64MB Rebuild Rate : 30% Flush Interval : 4 secs Number Of Chnls : 1 Bios Status : Enabled Alarm State : Enabled Auto Rebuild : Enabled FW : SPAN-8, 40-LD BIOS Config AutoSelection : USER BIOS Echos Mesg : ON BIOS Stops On Error : ON Initiator Id : 16(Clustered Firmware) Board SN: {STX}33686018 ********************************************************************** show raid physical Description Displays RAID physical details.
show service Displays current state of the HP EFS WAN Accelerator service. Syntax show service Parameters None Example minna # show service Optimization Service: Running 3 - ENABLE-MODE COMMANDS Description show service connection pooling Description Displays the HP EFS WAN Accelerator connection pooling settings.
show service neural-framing Description Displays neural-framing settings. Syntax show service neural-framing Parameters None minna # show service neural-framing Enable Computation of Neural heuristics: no minna # show service ports Description Displays port settings. Syntax show service ports Parameters None minna # show service ports Service ports: 7800 (default) 7810 minna # show snmp Description Displays current Simple Network Management Protocol (SNMP) server settings.
show ssh server Displays the server settings. Syntax show ssh server Parameters None Example minna # show ssh server SSH server enabled: yes 3 - ENABLE-MODE COMMANDS Description show stats Description Displays system statistics.
Parameters alarm Displays alarm statistics. Specify alarm type or : , admission-conn, admission_mem, bypass, cpu_util_indiv, critical_temp, duplex, fs_mnt, halt_error, license, link_state, mismatch_peer, nfs_v2_v4, paging, pfs_config, pfs_disk_full, pfs_operation, power_supply, rcu_error, service_error, store_corruption, sw-version, warning_temp.
admission_mem: bypass: cpu_util_indiv: critical_temp: fs_mnt: halt_error: linkstate: paging: rcu_error: service_error: store_corruption: sw-version: warning_temp: license-status: is a partial example) ok ok ok ok ok ok (disabled) ok ok ok ok ok ok ok 3 - ENABLE-MODE COMMANDS Alarm Alarm Alarm Alarm Alarm Alarm Alarm Alarm Alarm Alarm Alarm Alarm Alarm Alarm (this show tacacs Description Displays Terminal Access Controller Access Control System (TACACS+) settings.
show tcp statistics Description Displays TCP statistics. Syntax show tcp statistics Parameters None minna # show tcp statistics 1948 packets received 2167 packets sent 0 packets retransmitted 0 packets fast retransmitted 0 timeouts 0 other TCP loss events show terminal Description Displays terminal settings.
Product release: Build ID: Build date: Built by: columbia #1 2006-02-07 19:24:24 root@releng 3 - ENABLE-MODE COMMANDS show version history Description Displays history of image upgrades. Syntax show version history Parameters None Example #minna # show version history rbt_sh 2.1.6 #37 2006-03-31 21:44:41 i386 root@munich:repository/ rapanui_37 show wccp Description Displays current Web Cache Communications Protocol (WCCP) settings.
show web prefs Description Displays current Web preferences. Syntax show web prefs Parameters None Example minna # show web prefs Log: Lines Per Page: 100 slogin Description Enables log in to another shell using Secure Shell (ssh). To view options, enter slogin at the system prompt. Syntax slogin [] Parameters Example Specifies slogin options. To view options, enter slogin at the system prompt.
Parameters If you do not specify a filename, a filename is automatically created: reportname-data-time.csv. If you do not specify the file extension (.csv), it is automatically appended to the new file. Usage before
Parameters The tcpdump command takes the standard Linux options: -a Attempt to convert network and broadcast addresses to names. -c Exit after receiving count packets. -d Dump the compiled packet-matching code in a human readable form to standard output and stop. -dd Dump packet-matching code as a C program fragment. -ddd Dump packet-matching code as decimal numbers (preceded with a count). -e Print the link-level header on each dump line. -E Use algo:secret for decrypting IPsec ESP packets.
Parameters Specifies the IP address and port. The tproxytrace command takes the following options: -h (help). Print this help text. -i (iface). Use this interface to send probes on. -d (depth). Probe to this depth of proxies. -s (source). Use this source IP address for probes. -t (timeout). Milliseconds per depth to listen for probe responses. -o (option). TCP option to use for probes. Example minna # tproxytrace 10.0.0.3:22 Probe from 10.0.0.3 (primary) to 10.0.0.
72 3 - ENABLE-MODE COMMANDS
In This Chapter Configuration-Mode Commands This chapter is a reference for configuration-mode commands. Configuration-mode commands set configuration properties for the HP EFS WAN Accelerator. To execute configuration-mode commands, you must first enter enable mode. To enter configuration mode 1. Connect to the CLI. For detailed information, see “Connecting to the CLI” on page 19. 2. To enter enable mode, at the system prompt enter: host> enable 3.
74 “clock set” on page 84 “clock timezone” on page 85 “configuration copy” on page 85 “configuration delete” on page 85 “configuration fetch” on page 86 “configuration jump-start” on page 86 “configuration merge” on page 87 “configuration move” on page 88 “configuration new” on page 88 “configuration revert saved” on page 89 “configuration switch-to” on page 89 “configuration upload” on page 89 “configuration write” on page 90 “datastore notification e
“file stats upload” on page 99 “file tcpdump” on page 100 “file tcpdump delete” on page 100 “file tcpdump upload” on page 100 “hardware ecc-mem-check enable” on page 101 “hardware upgrade model” on page 101 “hostname” on page 101 “image boot” on page 102 “image delete” on page 102 “image fetch” on page 102 “image install” on page 103 “image move” on page 103 “in-path asym-route-tab flush” on page 103 “in-path asym-route-tab remove” on page 103 “in-path
76 “in-path rule move” on page 117 “in-path rule pass-through” on page 117 “in-path simplified routing” on page 118 “interface” on page 118 “ip default-gateway” on page 119 “ip domain-list” on page 120 “ip flow-export” on page 120 “ip flow-export enable” on page 121 “ip host” on page 121 “ip in-path route” on page 122 “ip in-path-gateway” on page 122 “ip name-server” on page 123 “ip route” on page 123 “ip security authentication policy” on page 123
“logging trap” on page 133 “ntpdate” on page 133 “ntp disable” on page 133 “ntp enable” on page 134 “ntp peer” on page 134 “ntp server” on page 134 “out-of-path enable” on page 135 “peer” on page 135 “pfs domain” on page 136 “pfs enable” on page 137 “pfs settings” on page 138 “pfs share cancel-event” on page 139 “pfs share configure” on page 139 “pfs share manual-sync” on page 144 “pfs share modify” on page 144 “pfs share verify” on page 146 “p
78 “protocol mapi port” on page 156 “protocol mapi prepop enable” on page 156 “protocol ms-sql enable” on page 156 “protocol ms-sql fetch-next enable” on page 157 “protocol ms-sql num-preack” on page 158 “protocol ms-sql port” on page 158 “protocol ms-sql query-act rule-id action-id” on page 159 “protocol ms-sql query-arg-act rule-id action-id arg-offset expr” on page 160 “protocol ms-sql rpc-act rule-id action-id” on page 160 “protocol ms-sql rpc-arg rule-id arg-offs
“service enable” on page 178 “service error reset” on page 178 “service map-port” on page 178 “service neural-framing” on page 179 “service port” on page 180 “snmp-server community” on page 180 “snmp-server contact” on page 180 “snmp-server enable” on page 181 “snmp-server host” on page 181 “snmp-server listen enable” on page 181 “snmp-server listen interface” on page 182 “snmp-server location” on page 182 “ssh client generate identity user” on page 183 “s
“wccp mcast-ttl” on page 196 “wccp service-group routers ” on page 196 “web auto-logout” on page 198 “web enable” on page 198 “web http enable” on page 199 “web http port” on page 199 “web httpd listen enable” on page 199 “web httpd listen interface” on page 200 “web https enable” on page 200 “web https port” on page 200 “web prefs log lines” on page 201 “web proxy host” on page 201 “web session renewal” on page 201 “web session ti
aaa authorization map default-user Description The no command option disables user default mapping. Syntax [no] aaa authorization map default-user Parameters Example Specifies the user name for RADIUS or TACACS+ authentication: admin or monitor. minna (config) # aaa authorization map default-user admin minna (config) # aaa authorization map order Description Sets the order for remote to local user mappings for RADIUS or TACACS+ server authentication.
To set TACACS+ authorization levels (admin and read-only) to allow certain members of a group to log in, add the following attribute to users on the TACACS+ server: service = rbt-exec { local-user-name = "monitor" } where you replace monitor with admin for write access.
boot system Boots the specified partition the next time the HP EFS WAN Accelerator is rebooted. Syntax boot system 4 - CONFIGURATION-MODE COMMANDS Description Parameters Example Specifies the partition to boot: 1 or 2. minna (config) # boot system 1 minna (config) # clear arp-cache Description Clears dynamic entries in the ARP cache. This command does not delete static ARP entries configured with the arp command.
cli default paging enable Description Sets ability to view text one screen at a time. The no command option disables paging. Syntax cli default paging enable Parameters None Example minna (config) # cli default paging enable minna (config) # cli session Description Sets CLI options for the current session only. The no command option disables CLI option settings.
Parameters Specifies the hour, minutes, and seconds. Specifies the year, month, and day. 4 - CONFIGURATION-MODE COMMANDS Example minna (config) # clock set 12:34:55 minna (config) # clock timezone Description Sets the current time zone. The default value is Greenwich Mean Time (GMT-offset).
Parameters Example Specifies the name of the configuration file. minna (config) # configuration delete westcoast minna (config) # configuration fetch Description Downloads a configuration file over the network. Syntax configuration fetch Parameters Specifies the location of the configuration file to download in URL, scp://, or ftp:// format.
Example configuration merge Description Merges common configuration settings from one HP EFS WAN Accelerator to another. Use the configuration merge command to deploy a network of appliances. Set up a template HP EFS WAN Accelerator and merge the template with each HP EFS WAN Accelerator in the network.
The following configuration settings are merged when you run the configuration merge command: in-path, out-of-path, protocols, statistics, CLI, email, NTP and time, Web, SNMP, and alarm. Syntax configuration merge Parameters Usage Specifies the new configuration name.
Parameters 4 - CONFIGURATION-MODE COMMANDS Example Specifies the name of the new configuration file. minna (config) # configuration new westcoast minna (config) # configuration revert saved Description Reverts the active configuration to the last saved configuration.
Parameters Example Specifies the location of the configuration file to upload in URL, scp://, or ftp:// format. Uploads the configuration file to a remote host in URL, scp://, or ftp:// format. active Uploads the active configuration file.
Syntax [no] datastore notification wrap-around Parameters Example Specifies the number of days to elapse before sending an email message notifying you that the data in the data store has been replaced. minna (config) # datastore notification wrap-around 2 minna (config) # datastore receive port Description Receives the data store from another HP EFS WAN Accelerator.
NOTE: Data is replicated only from the master HP EFS WAN Accelerator to the backup; not vice versa. NOTE: All operations occur in the background and do not disrupt operations on any of the systems. The no command option disables data store synchronization. IMPORTANT: The HP EFS WAN Accelerators must be the same model; models running different versions of the software will not synchronize (for example v2.x to 3.x).
datastore sync peer-ip Description Sets the IP address for the peer HP EFS WAN Accelerator for which you want to push replicated data. HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL 93 4 - CONFIGURATION-MODE COMMANDS ## INPATH0_0 IP Address of Backup HP EFS WAN Accelerator minna (config) #failover enable minna (config) #no failover master ##Check Master-HP EFS WAN Accelerator minna (config) #show failover Enabled: yes Master: yes Local Port: 7820 Buddy IP Address: 192.148.
IMPORTANT: This must be the primary IP address of the backup HP EFS WAN Accelerator. Syntax datastore sync peer-ip Parameters Example Specifies the primary IP address of the backup HP EFS WAN Accelerator. minna (config) # datastore sync peer-ip 10.0.0.3 minna (config) # datastore sync port Description Sets the port for the peer HP EFS WAN Accelerator for which you want to push replicated data.
The no command option disables the synchronization server. [no] datastore sync server Parameters None Example minna (config) # datastore sync server minna (config) # 4 - CONFIGURATION-MODE COMMANDS Syntax email domain Description Set the domain for email notifications. Use the email domain command only if the email address does not contain the domain. The no command option disables the email domain.
Example minna (config) # email notify events enable minna (config) # email notify events recipient Description Sets the recipient for email notification. The no command option removes the email recipient. Syntax [no] email notify events recipient Parameters Example Specifies the email address of users to receive notification of events. minna (config) # email notify events recipient example@example.
email send-test Sends test email to all configured event and failure recipients. Syntax email send-test Parameters None Example minna (config) # email send-test minna (config) # 4 - CONFIGURATION-MODE COMMANDS Description failover buddy addr Description Sets the failover IP address. The failover HP EFS WAN Accelerator is the backup HP EFS WAN Accelerator. If the master HP EFS WAN Accelerator fails, the failover HP EFS WAN Accelerator takes over. The default value is 0.0.0.0.
Example minna (config) # failover buddy port 2515 minna (config) # failover enable Description Enables failover support. Failover support enables a failover (backup) HP EFS WAN Accelerator so that if the master HP EFS WAN Accelerator fails, the traffic is routed automatically through the failover (backup) HP EFS WAN Accelerator. Valid values must exist for the port, buddy address, and buddy port before this command can complete. The no command option disables failover support.
Example minna (config) # failover port 2515 minna (config) # Description Deletes statistics file. Syntax file stats delete 4 - CONFIGURATION-MODE COMMANDS file stats delete Parameters Example Specifies the statistics file to delete. minna (config) # file stats delete throughput minna (config) # file stats move Description Renames a statistics file.
Example minna (config) # file stats upload throughput http://www.test.com/stats minna (config) # file tcpdump Description Deletes or uploads a tcpdump file. Syntax file tcpdump {delete | upload } Parameters Example delete Deletes the tcpdump file. upload Uploads a tcpdump output file to a remote host.
Parameters Specifies the source file. Uploads a statistics file to a remote host in URL, scp://, or ftp:// format. minna (config) # file tcpdump upload dump http://www.test.com/stats minna (config) # hardware ecc-mem-check enable Description Enables Error-Correcting Code (ECC) memory check. The no command option disables ECC memory check.
Parameters Example Specifies the host name. Do not include the domain name. minna (config) # hostname park minna (config) # image boot Description Boots the specified system image by default. Syntax image boot Parameters Example Specifies the partition to boot: 1 or 2. minna (config) # image boot 1 minna (config) # image delete Description Deletes the specified software image.
image install Installs the software image onto a system partition. Syntax image install 4 - CONFIGURATION-MODE COMMANDS Description Parameters Example Specifies the software image filename. Specifies the partition number: 1, 2. minna (config) # image install version1.0 2 minna (config) # image move Description Moves or renames an inactive system image on the hard disk.
Example minna (config) # in-path asym-route-tab remove 10.0.0.0 minna (config) # in-path asymmetric routing detection enable Description Enables asymmetric routing, caching and detection in the HP EFS WAN Accelerator. The no command option disables asymmetric routing detection and caching. Asymmetric routing detects and reports asymmetric routing conditions and caches this information to avoid losing connectivity between a client and a server.
Example minna (config) # in-path asymmetric routing pass-through enable minna (config) # Description Enables Cisco Discovery Protocol (CDP) support on Policy Based Routing (PBR) deployments. Virtual in-path failover deployments require CDP on the HP EFS WAN Accelerator to bypass the HP EFS WAN Accelerator that is down. The no command option disables CDP. CDP is proprietary protocol used by Cisco routers and switches to obtain neighbor IP addresses, model, IOS version, and so forth.
The no command option resets the CDP refresh period to the default. For detailed information about how to configure an HP EFS WAN Accelerator for PBR with CDP, see the HP StorageWorks Enterprise File Services WAN Accelerator deployment guide. Syntax [no] in-path cdp interval Parameters Example Specifies the CDP interval in seconds. The default value is 1. minna (config) # in-path cdp holdtime 10 minna (config) # in-path enable Description Enables in-path support.
to set which VLAN to use when the HP EFS WAN Accelerator communicates with another HP EFS WAN Accelerator. It does not define which VLAN to optimize. To define which VLAN to optimize, you must define in-path rules and apply them to all VLANs or a specific VLAN. 4 - CONFIGURATION-MODE COMMANDS The no command option disables the VLAN support. Syntax [no] in-path interface vlan tag Parameters Example Specifies the in-path HP EFS WAN Accelerator for which the VLAN applies.
The no command option disables this feature. Syntax [no] in-path neighbor allow failure Parameters None Example minna (config) # in-path neighbor allow failure minna (config) # in-path neighbor enable Description Enables connection forwarding support in asymmetric networks. Connection forwarding forwards Transmission Control Protocol (TCP) connections in networks where the path from the client to the server is different from the server to the client.
in-path neighbor ip address Description The no command option removes the IP address for the neighbor HP EFS WAN Accelerator from the connection forwarding list. If you have one path from the client to the server and a different path from the server to the client, you need to enable in-path connection forwarding and configure the HP EFS WAN Accelerators to know about and communicate with each other.
in-path neighbor keepalive interval Description Sets the time interval between keep-alive messages with the neighbor HP EFS WAN Accelerator for connection forwarding. The no command option resets the interval to the default. Syntax [no] in-path keepalive interval Parameters Example Specifies the number of seconds between keep-alive messages. The default value is 10.
in-path peering rule Description The no command option disables the peering rule. You can provide increased optimization capacity by deploying several HP EFS WAN Accelerators back-to-back in an in-path configuration and create a serial cluster. IMPORTANT: Serial clusters are supported only on Model 5010s. Appliances in a cluster process the peering rules you specify in a spill-over fashion.
Example dest Specifies the destination network for this rule. dest-port Specifies the destination port for this rule. You can specify all for all ports or a port label. For detailed information about port labels, see “port-label” on page 147. rulenum Specifies the rule number.
neural-mode • never. Never use the Nagle algorithm. All the data is immediately encoded without waiting for timers to fire or application buffers to fill past a specified threshold. Neural heuristics are computed in this mode but are not used. • always. Always use the Nagle algorithm. This is the default setting (always wait 6 ms). All data is passed to the codec which attempts to coalesce consume calls (if needed) to achieve better fingerprinting.
in-path rule deny Denies connections for the source network and destination network. When packets for connections match the in-path rule, the HP EFS WAN Accelerator actively tries to reset the connection. The no command option disables the in-path deny rule. The no command option has the following syntax: no in-path .
Specifies the rule number: 1-N, start, or end. The rule inserts itself at the rule specified. For example, if rulenum is 3 then the new rule will be #3, the old #3 rule will be #4 and so forth. The start option specifies the rule to be the first rule, and end specifies it to be the last rule. srcaddr Specifies the source IP address. For example: 1.2.3.4/32 vlan Specifies the VLAN tag ID for which the rule applies.
neural-mode Enables neural framing in the HP EFS WAN Accelerator. Enabling neural framing makes your WAN more efficient by gathering data to select the optimal packet framing boundaries for Scalable Data Referencing (SDR). For different types of traffic, one algorithm may be better than others. There is a trade-off between the latency added to the connection and the compression and SDR performance. The choices are: • never. Never use the Nagle algorithm.
in-path rule move Moves an in-path rule. Syntax in-path rule move to 4 - CONFIGURATION-MODE COMMANDS Description Parameters Example Specifies the rule number or start or end. minna (config) # in-path rule move 25 to 10 minna (config) # in-path rule pass-through Description Adds an in-path, pass-through rule. Specify a subnet for which you do not want to optimize traffic. The no command option disables the in-path rule.
in-path simplified routing Description Enables simplified routing. Simplified routing collects the IP address for the next hop Media Access Control (MAC) address from each packet it receives to use in addressing traffic. Enabling simplified routing eliminates the need to add static routes when the HP EFS WAN Accelerator is in a different subnet from the client and server. The no command option disables simplified routing.
Parameters Specifies the interface name. For example, aux, lan0_0, wan0_0, primary, in-path0_0, lo. Each interface has the following configuration options: • dhcp. Enables Dynamic Host Configuration Protocol (DHCP) on the interface. The no option disables DHCP. • dhcp renew. Renews DHCP for this interface. The no option is invalid for this command. • duplex . Specifies the duplex speed: auto, full, half. The default value auto. The no option resets duplex to the default.
ip domain-list Description Adds a domain name to the domain list for resolving host names. The no command option removes a domain from the domain list. Syntax [no] ip domain list Parameters Example Specifies the domain name. minna (config) # ip domain-list example.com minna (config) # ip flow-export Description Configures NetFlow support.
Specifies whether only optimized traffic, all traffic, or only pass-through traffic is exported to the Netflow collector. The default value is Optimized. lan-addrs {off | on} Specifies whether the TCP IP addresses and ports reported for optimized flows should contain the original client and server IP addresses and not those of the HP EFS WAN Accelerator. The default is to show the IP addresses of the original client and server without the IP address of the HP EFS WAN Accelerators.
Example minna (config) # ip host park 10.10.10.1 minna (config) # ip in-path-gateway Description Configures the primary, in-path, default gateway. The no command option disables the default gateway. NOTE: The interface parameter is required for v2.x.x or later of the software; it is not required for software v1.2.x. Syntax [no] ip in-path-gateway Parameters Example Specifies the interface name. For example, aux, lan0_0, wan0_0, primary, in-path0_0.
Example minna (config) # ip in-path route 193.140.0.0 255.255.0.0 190.160.0.0 minna (config) # Description 4 - CONFIGURATION-MODE COMMANDS ip name-server Adds a DNS name server. The no command option removes a DNS name server. Syntax [no] ip name-server Parameters Example Specifies the name server IP address. minna (config) # ip name-server 10.10.10.1 minna (config) # ip route Description Adds a static route. The no command option disables the static route.
Parameters Specifies the primary policy (method 1): • hmac_md5. Message-Digest algorithm 5 (MD5) is a widely-used cryptographic hash function with a 128-bit hash value. The default value is hmac_md5. • hmac_sha1. Secure Hash Algorithm (SHA1) is a set of related cryptographic hash functions. SHA-1 is considered to be the successor to MD5. Example Specifies the secondary policy (method 2): hmac_md5, hmac_sha1.
ip security encryption policy Sets the encryption algorithms in order of priority. You must specify at least one algorithm. The algorithm is used to encrypt each packet sent using IPsec. Syntax ip security encryption policy [] Parameters Specifies the primary algorithm: • des. The Data Encryption Standard (DES). The default value is des. • null_enc. The null encryption algorithm. Example Specifies the alternate algorithm: des and null_enc.
The no command option disables Perfect Forward Secrecy. Syntax [no] ip security pfs enable Parameters None minna (config) # ip security pfs enable minna (config) # ip security rekey interval Description Sets the time between quick-mode renegotiation of keys by Internet Key Exchange (IKE). IKE is a method for establishing a security association (SA) that authenticates users, negotiates the encryption method, and exchanges a secret key.
The results of the job (the output and any error messages) are saved. Jobs can be canceled and rescheduled. In either of these cases, any previous output or error messages are cleared, and the job state is set to either inactive (if canceled) or pending (if rescheduled). An arbitrary number of CLI commands can be specified with a job and are executed in an order specified by sequence numbers. If a CLI command in the sequence fails, no further commands in the job are executed.
Example minna (config) # job 10 comment "this is a test" minna (config) # job date-time Description Sets the date and time for the scheduled job to execute. If the time specified is in the past, the job does not execute and is in the inactive state. An hour and minute must be specified; optionally, you can specify seconds or the date. The no command option disables the date and time settings.
Parameters minna (config) # job 10 enable minna (config) # job execute Description Forces an immediate execution of a job. The timer (if set) is cancelled. Syntax job execute Parameters Example Specifies the job identification number. minna (config) # job 10 execute minna (config) # job fail-continue Description Execute all commands in a job. The no command option disables this command.
Example minna (config) # job 10 name myjob minna (config) # license delete Description Deletes the specified license key. Syntax license delete Parameters Example Specifies the license key to delete. minna (config) # license delete SH10_B-0000-1-7F14-FC1F minna (config) # license install Description Installs a new software license key. Syntax license install Parameters Example Specifies the license key.
logging files delete Deletes a specified number of log files. Syntax logging files delete [oldest ] Parameters oldest Example Specifies the number of old log files to delete. The range is 1-10. minna (config) # logging files delete oldest 10 minna (config) # logging files rotation criteria frequency Description Sets the frequency of log rotation. The default value is weekly. The no command option resets the frequency to the default.
Parameters None Example minna (config) # logging files rotation force minna (config) # logging files rotation max-num Description Sets the maximum number of log files to keep locally. The default value is 10. The no command option resets the number to the default. Syntax [no] logging files rotation max-num Parameters Example Specifies the number of log files to keep locally. The range is 1-100.
logging trap Description The no command option sets the severity level for logging to none. Syntax [no] logging trap Parameters Specifies the logging severity level. The following levels are supported: • emerg. Emergency, the system is unusable. • alert. Action must be taken immediately. • crit. Critical conditions. • err. Error conditions. • warning. Warning conditions. • notice. Normal but significant condition. • info. Informational messages. • debug. Debug-level messages.
ntp enable Description Enables NTP support. The no command option disables NTP support. Syntax [no] ntp enable Parameters None Example minna (config) # ntp enable minna (config) # ntp peer Description Enables an NTP peer. The no command option disables an NTP peer. Syntax [no] ntp peer [version ] Parameters Example Specifies the NTP peer IP address. version Specifies the NTP version number.
out-of-path enable Description Enables an out-of-path configuration. The default value is false. 4 - CONFIGURATION-MODE COMMANDS The no command option disables out-of-path configuration. Syntax [no] out-of-path enable Parameters None Example minna (config) # out-of-path enable minna (config) # peer Description Configures minimum and maximum protocol version. The no command option resets the protocol version to the default.
After all the 1.2 HP EFS WAN Accelerators in the network have been upgraded to 2.0 or 2.1 HP EFS WAN Accelerators, the version commands can be removed: sh> no peer version min sh> no peer version max Because it might be difficult to maintain an up-to-date list of 1.2 HP EFS WAN Accelerators in the network, an effective strategy is to configure all 2.1 HP EFS WAN Accelerators to use version 5 protocol by default with all peers. This can be done by specifying 0.0.0.
list> | short-name | leave |rejoin login password | dclist | short-name | require} Requires domain check upon startup. join domain-name Specifies the Windows 2000 or above domain. The HP EFS WAN Accelerator host name must be in the DNS database for the HP EFS WAN Accelerator to join the domain. Host names with greater than 15 characters prevent the HP EFS WAN Accelerator from joining the domain.
LAN access to data residing across the WAN. Continuous access to files in the event of WAN disruption. Simplify branch infrastructure and backup architectures. NOTE: PFS is not supported on the Model 510. In Version 3.0, you no longer need to install the HP EFS Remote Copy Utility (HP EFS RCU) service on the server for synchronization purposes. All HP EFS RCU functionality has been moved to the HP EFS WAN Accelerator. When you upgrade from v2.x to v3.
Parameters Specifies the local administrator password. log-level <0-10> Specifies the log level: 0-10. The no command option resets the log level to the default. conn-timeout Specify the number of minutes after which to time-out idle connections. If there is no read or write activity on a mapped PFS share on a client machine, then the TCP connection times out according to the value set and the client has to re-map the share. The no command option resets the timeout to the default.
Version 2. Specify the server name and remote path for the share folder on the origin file server. With Version v2.x, you must have the RCU service running on a Windows server—this can be the origin file server or a separate server. HP recommends you upgrade your v2.x shares to 3.x shares so that you do not have to run the RCU on a server. IMPORTANT: If you have shares that were created with v2.
Parameters Specifies the local share name on the HP EFS WAN Accelerator. A local share is the data volume exported from the origin server to the HP EFS WAN Accelerator. version 2 Specifies software version 2 for your configured shares: remote-path server-name port interval full-interval start-time [comment ] Specify the server name and remote path for the share folder on the origin file server.
mode Specifies the mode: • broadcast. The share originates on the origin server and a readonly copy is available as a share on the branch-office HP EFS WAN Accelerator. The data is updated periodically on the HP EFS WAN Accelerator with the data from the origin server. You specify when and how frequently updates (that is, synchronization) are to occur and when you configure a share. IMPORTANT: For Broadcast mode: if you are performing directory moves regularly (for example, mv ./dir1/dir2 .
Specifies the login to be used to access the shares folder on the origin file server for Version 3.x shares only. server-password Specifies the password to be used to access the shares folder on the origin file server for Version 3.x shares only. interval Specify the interval that you want updates (synchronization) to occur. The first synchronization, or the initial copy, retrieves data from origin file server and copies it to the local disk on the HP EFS WAN Accelerator.
interval 5 start-interval 2006/06/06 02:02:02 comment test minna (config) # minna (config) pfs share manual-sync Description Manually synchronizes a PFS share on the HP EFS WAN Accelerator. Syntax pfs share manual-sync {local-name } Parameters local-name Example Specifies the local share name on the HP EFS WAN Accelerator. A local share is the data volume exported from the origin server to the HP EFS WAN Accelerator.
mode Specifies the mode: IMPORTANT: For Broadcast mode: if you are performing directory moves regularly (for example, mv ./dir1/dir2 ./dir3/dir2), incremental synchronization will not reflect these directory changes. You must perform a full synchronization more frequently to keep the PFS shares in synchronization with the remote site.
full-interval Specifies the frequency of updates (synchronization) in minutes for Version 2.x and 3.x shares. Specify the date and time that you want updates to start. Use full synchronization if performance is not an issue. The first synchronization, or the initial copy, retrieves data from origin file server and copies it to the local disk on the HP EFS WAN Accelerator. Subsequent synchronizations are based on the synchronization interval.
pfs start Starts the PFS service. Syntax pfs start Parameters None Example minna (config) # pfs start minna (config) # 4 - CONFIGURATION-MODE COMMANDS Description pfs workgroup account Description Sets a local workgroup account for the PFS share. If you configure PFS in Workgroup mode, the HP EFS WAN Accelerator does not need to join a domain. Workgroup accounts are used by clients when they connect to the HP EFS WAN Accelerator to access PFS shares.
If you want to change the unknown label to a name representing the port, you must add the port with new label. All statistics for this new port label are preserved from the time the port was discovered. The no command option disables the port label. Port labels are not case sensitive and can be any string consisting of letters, numbers, underscore ( _ ), or a hyphen ( - ).
Example minna (config) # prepop enable minna (config) # Description 4 - CONFIGURATION-MODE COMMANDS prepop share Configures prepopulation settings for a share. The no command option disables the prepopulation share.
minna (config) # prepop share modify remote-path /users sharing true syncing true frequency 6000 start-time 2006/08/01 00:00:00 minna (config) # protocol cifs dw-throttling enable Description Enables CIFS dynamic throttling mechanism which replaces the current static buffer scheme. If you enable CIFS dynamic throttling, it is activated only when there are sub-optimal conditions on the server side causing a back-log of writes messages; it does not have a negative effect under normal network conditions.
Enabling this feature on applications that perform multiple opens on the same file to complete an operation will result in a performance improvement (for example, CAD applications): Specify a list of extensions you want to optimize using overlapping opens. The default values are: doc, pdf, ppt, txt, xls. Specify a list of extension you do not want to optimize using overlapping opens. The default values are: ldb, mdb.
protocol cifs prepop enable Description Enables CIFS transparent prepopulation. The no command option disables transparent prepopulation. Syntax [no] protocol cifs prepop enable Parameters None Example minna (config) # protocol cifs prepop enable minna (config) # protocol cifs secure-sig-opt enable Description Disables SecuritySignature negotiations between a Windows client and the server. By default, the Secure-CIFS feature is disabled.
Parameters minna (config) # protocol connection lan receive buf-size 1000000 minna (config) # protocol connection lan send buf-size Description Sets the LAN send buffer size for HSTCP support. The no command option resets the buffer size to the default. You must increase your LAN buffer size to 1 MB. For detailed information about configuring HSTCP, see “tcp highspeed enable” on page 193.
protocol connection wan send def-buf-size Description Sets the WAN default-send buffer size for HSTCP support. The no command option resets the buffer size to the default. For detailed information about configuring HSTCP, see “tcp highspeed enable” on page 193. Syntax [no] protocol connection wan send def-buf-size Parameters Usage Specifies the WAN default-send buffer size. The default value is 262140.
Example minna (config) # protocol mapi 2k3 enable minna (config) # Description Sets the Name Service Provider Interface (NSPI) port. In certain situations (for example, clients connecting through a firewall), you might want to force a server to listen on a single pre-defined port so that access to ports can be controlled or locked down on the firewall. The no command option resets the NSPI port to the default value. In out-of-path deployments, if you want to optimize MAPI Exchange by destination port.
protocol mapi port Description Sets the incoming MAPI Exchange port. The default value is 7830. The no command option resets the MAPI port to the default value. Syntax [no] protocol mapi port Parameters Example Specifies the incoming MAPI port number. The default value is 7830. minna (config) # protocol mapi port 2125 minna (config) # protocol mapi prepop enable Description Enables MAPI transparent prepopulation support.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional services—improper use can result in undesirable effects. The no command option disables SQL blade support. You must restart the HP EFS WAN Accelerator service after enabling this feature. Syntax [no] protocol ms-sql enable Parameters None Example minna (config) # protocol ms-sql enable minna (config) # protocol ms-sql fetch-next enable Description Enables pre-fetching requests to request the next row in MS Project.
protocol ms-sql num-preack Description Specifies the maximum number of sp_execute (or save project) requests to preacknowledge before waiting for a server response to be returned. You can enable preacknowledgement if the client application does not need a result value from the server. For example, when you save a project in MS Project, server-side procedures are invoked many times to write or update database data.
Parameters minna (config) # protocol ms-sql port 2433 minna (config) # protocol ms-sql query-act rule-id action-id Description Specifies a query action when the corresponding query match occurs. The following types of actions can be specified: prefetch requests as specified in query argument actions. invalidate prefetched cache entries. The no command option disables the query action.
protocol ms-sql query-arg-act rule-id action-id arg-offset expr Description Specifies how the query arguments should be modified when prefetching queries. The no command option disables the SQL query argument. IMPORTANT: The commands for MS-SQL support must be implemented by HP professional services—improper use can result in undesirable effects. NOTE: If you are interested in enabling the MS-SQL blade for other database applications, contact HP professional services.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional services—improper use can result in undesirable effects. Syntax [no] protocol ms-sql rpc-act rule-id action-id [[num-reps | invalidate {flush-all | flush-rule}] [miss-policy | allow-preack {true | false} | allow-prefetch {true | false} | scope {sfe | cfe}]] Parameters Example rule-id Specifies the rule identification number that uniquely identifies the rule.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications, contact HP professional services. Syntax [no] protocol ms-sql rpc-arg-act rule-id arg-offset expr Parameters Example rule-id Specifies the rule identification number that uniquely identifies the rule. arg-offset Specifies the RPC argument parameter. expr Specifies the regular expression for the RPC value.
Example minna (config) # protocol ms-sql rpc-arg rule-id 2 action-id 1 argoffset 0 expr "replace select PROJ_READ_COUNT, PROJ_LOCKED, PROJ_READ_WRITE,PROJ_READ_ONLY, PROJ_ID, PROJ_MACHINE_ID, PROJ_DATA_SOURCE from MSP_PROJECTS where PROJ_NAME = '$1' " minna (config) # Description Specifies a RPC rule. The no command option disables the rule. IMPORTANT: The commands for MS-SQL support must be implemented by HP professional services—improper use can result in undesirable effects.
static minna (config) # protocol ms-sql support-app Description Specifies a regular expression (standard string) for an application name that can be optimized using the MS-SQL blade. The no command option removes the application from MS-SQL blade support. IMPORTANT: The commands for MS-SQL support must be implemented by HP professional services—improper use can result in undesirable effects.
The no command option resets the value of a given option. For example, no protocol nfs default server policy resets the policy to the default value.
NFS file system objects have owners and permissions and the NFS optimizer conforms to the file system permissions model by enforcing file server and volume policies. You must ensure that the policy is set correctly to Read-Only or Global Read-Write as appropriate. Setting the policy to Read-Only on a non read-only file system results in Read-Only file system (ROFS) errors.
protocol nfs max-directories Specifies, in bytes, the maximum size of NFS directories. Syntax [no] protocol nfs max-directories Parameters Example Specifies a number of bytes between 0 and 4294967295. minna (config) # protocol nfs max-directories 4294967295 minna (config) # protocol nfs max-symlinks Description Specifies, in bytes, the maximum size of NFS symbolic link directories. The no command option resets the size to the default.
The no command option disables the NFS server.
policy [custom | global_rw | home_dir] On the NFS server, sets one of the following policies: • Global Read-Write. Specifies a policy that provides a trade-off of performance for data consistency. All of the data can be accessed from any client, including LAN based NFS clients (which do not go through the HP EFS WAN Accelerators) and clients using other file protocols like CIFS. This option severely restricts the optimizations that can be applied without introducing consistency problems.
Example minna (config) # protocol nfs server volume id 21 minna (config) # protocol nfs v2-v4-alarm Description Enables the NFS v2 and v4 alarm. The no command option disables the alarm. Syntax [no] protocol nfs v2-v4-alarm Parameters None Example minna (config) # protocol nfs-v2-v4-alarm minna (config) # qos classification class Description Creates or modifies a QoS class. The no command options deletes the QoS class.
priority [realtime | interactive | business | normal | low] Specifies a minimum guaranteed QoS priority level: • Real-Time. Specifies real-time traffic class. Traffic that is your highest priority should be given this value. • Business Critical. Specifies the business critical traffic class. • Normal Priority. Specifies normal priority traffic class. • Low Priority. Specifies low priority traffic class. Priorities are listed in decreasing order of importance.
IMPORTANT: Different WAN interfaces can have different WAN bandwidths; this value must be correctly entered for QoS to function correctly. IMPORTANT: The percentage of excess bandwidth give to a class is relative to the percentage of minimum bandwidth allocated to the class. Syntax qos classification link-rate interface rate Parameters Example Specifies the interface for which to set the link rate. Specifies the link rate in kbps.
Specifies the port number. destination subnet Specifies the subnet and mask in the following format: 1.2.3.4/123. port Specifies the port number. dscp Optionally, specify a DSCP level (0-63). vlan Optionally, specify the VLAN tag ID. minna (config) # qos classification rule add rulenum 1 class-name WorldWide traffic-type passthrough source subnet 192.12.12.1 port 80 destination subnet 192.12.12.
Syntax [no] qos dscp move-rule Parameters Example Specifies the order in which rules are processed. minna (config) # qos dscp move-rule rulenum 3 minna (config) # qos dscp rule Description Maps a service port to a Quality of Service (QoS) Differentiated Services Code Point (DSCP) level based on the source IP subnet, the destination IP subnet, destination port, and rule number. Specifying the destination IP address enables you to apply different DSCP levels to different servers.
Specifies the port on which to monitor. To configure QoS mapping for the FTP data channel, specify port 20. To configure QoS mapping for the MAPI data channel, specify port 7830 and the corresponding DSCP level. The destination port can be a single port (number), a port label, or all specifies all ports. Specifies the DSCP level (0-63). Specifies the rule number to insert before. minna (config) # qos dscp rule src 10.0.0.4 dest 10.0.0.
If no radius-server host {hostname | ip-address} is specified, all radius configurations for the host are deleted. The no radius-server host {hostname | ipaddress} auth-port {port} command can be specified to refine which host is deleted, as the previous command deletes all RADIUS servers with the specified IP address. RADIUS servers are tried in the order they are configured. Example minna (config) # radius-server host 10.0.0.
The no command option resets the value to the default value. Syntax [no] radius-server timeout Example Sets the timeout for retransmitting a request to any RADIUS server. The range is 1-60. The default value is 3. minna (config) # radius-server timeout 30 minna (config) # service connection pooling Description Enables a pool of connections to a peer HP EFS WAN Accelerator. Connection pooling enables you to save an extra round-trip for the initial connection setup.
Example minna (config) # service default-port 7800 minna (config) # service enable Description Starts the HP EFS WAN Accelerator service. The no command option disables the HP EFS WAN Accelerator service (that is, it disables all the configured in-path IP addresses and ports, and you lose your connection to the HP EFS WAN Accelerator Manager).
You cannot map the following ports. Description 22 Reserved for Secure Shell (SSH). 80, 443, and 446 Reserved for the HP EFS WAN Accelerator Manager. 139, 445, and 977 Reserved for Proxy File Service (PFS). These ports are only excluded if you have PFS enabled. 7800-7899 Reserved by HP (except 7800 and 7810). 8777 Reserved for CIFS transparent prepopulation;. This port is excluded only if you have CIFS prepopulation enabled.
iterations Resets Iterations before determining heuristic. Used only with the no option. For example: no service-neural framing iterations stats enable Example Enables collection of neural-framing statistics. minna (config) # service neural-framing stats enable minna (config) # service port Description Sets a new service port to add for multiple service ports. Service ports are the ports used for inner connection between HP EFS WAN Accelerators.
The no command option disables the SNMP server contact. Syntax [no] snmp-server contact Example Specifies the user name of the SNMP server community contact. minna (config) # snmp-server contact john doe minna (config) # snmp-server enable Description Enables an SNMP server. The no command option disables the SNMP server or traps.
The no command option disables SNMP interface restrictions which causes the SNMP to accept connections from all interfaces. After you have enabled interface restrictions, you must specify which interfaces to accept connections using the snmp-server listen interface command. If the list of interfaces is empty, all interfaces are accepted. If the list of interfaces has at least one entry, then the server only listens on that subset of interfaces. NOTE: This option is available in the CLI only.
Syntax [no] snmp-server location Parameters Example Specifies the location of the system. 4 - CONFIGURATION-MODE COMMANDS minna (config) # snmp-server location 10.10.10.1 minna (config) # ssh client generate identity user Description Generates Secure Shell (ssh) client identity keys for the specifies user. Secure Shell provides secure login for Windows and Unix clients and servers.
After you have enabled interface restrictions, you must specify which interfaces to accept connections on using the ssh server listen interface command. If the list of interfaces is empty, all interfaces are accepted. If the list of interfaces has at least one entry, then the server listens on that subset of interfaces. NOTE: This option is available in the CLI only.
The no stats alarm enable command disables specific statistical alarms. Some alarms cannot be disabled. Syntax [no] stats alarm HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL 185 4 - CONFIGURATION-MODE COMMANDS NOTE: Critical temperature settings cannot be changed. Warning temperature settings can be changed.
Parameters Specifies the following types of alarms: • admission_conn. Cannot be disabled. Whether the system connection limit has been reached. Additional connections are passed through unoptimized. The alarm clears when the HP EFS WAN Accelerator moves out of this condition. • admission_mem. Cannot be disabled. Whether the system connection memory limit has been reached. Additional connections are passed through unoptimized.
• paging.Whether the system has reached the memory paging threshold. If 100 pages are swapped approximately every two hours the HP EFS WAN Accelerator is functioning properly. If thousands of pages are swapped every few minutes, then reboot the HP EFS WAN Accelerator. • pfs_disk_full. Whether you Proxy File Service (PFS) partition is full. • pfs_operation. Whether a synchronization operation has failed. If an operation failure is detected, attempt the operation again. • power_supply.
Example minna (config) # stats chd rbt_month minna (config) # stats clear-all Description Clears all statistics. Syntax stats clear-all Parameters None Example minna (config) # stats clear-all minna (config) # stats export Description Exports statistics. Syntax stats export csv after //- before //
- filename Parameters Specifies the format. csv Specifies the type of report to export: • cpu_util.
Parameters Specifies the type of statistic: admission_conn, admission_mem, bypass, cpu_util, duplex_aux, duplex_lan, duplex_pri, duplex_ wan, halt_error, memory, mismatch_peer, paging, raid_error, raid_warning, rbt, rbt_kernel, service_error, store-corruption, sw-version. clear Clears all statistics for type. interval Specifies the sampling interval for this set of samples.
Parameters Usage hostname < ip address> Specifies the TACACS+ server host name or IP address. auth-port Specifies the authorization port number. The default value is 49. timeout Sets the timeout for retransmitting a request to any TACACS+ server. The range is 1-60. The default value is 3. retransmit Specifies the number of times the client attempts to authenticate with any TACACS+ server. The default value is 1. The range is 0-5.
tacacs-server retransmit Description The no command option resets the value to the default value. Syntax [no] tacacs-server retransmit Parameters Example Specifies the number of times the client attempts to authenticate with any TACACS+ server. The range is 0-5. The default value is 1. minna (config) # tacacs-server retransmit 5 minna (config) # tacacs-server timeout Description Sets the timeout for retransmitting a request to any TACACS+ server.
Syntax tcp connection send keep-alive local-addr local-port remote-addr remote-port ]] local-addr local-port remote-addr remote-port ] Example Specifies local and remote HP EFS WAN Accelerator for which you want to terminate a connection. minna (config) # tcp connection send keep-alive local-addr 10.0.0.0 local-port 1240 remote-addr 10.0.0.
tcp highspeed enable Description The no command option disables HSTCP. HSTCP is activated for all connections that have a Bandwidth-Delay Product (BDP) larger than 100 packets. If you have a BDP of greater than 512 KB, and you are more interested in filling the WAN pipe than saving bandwidth, you should consider enabling HSTCP. HSTCP is available only on the Series 5000 and 6000. You need to carefully evaluate whether HSTCP will benefit your network environment.
Example minna (config) # tcp highspeed enable minna (config) # terminal Description Configures the terminal display settings. The no command option disables the terminal settings. Syntax [no] terminal {type | length | width } Parameters Example Specifies the terminal type. length Specifies the number of lines for the terminal. width Specifies the terminal width in characters.
username password Sets the password for the specified user. The password must be a minimum of six characters. The password is returned in cleartext format on the command line. Syntax username password Parameters Example Specifies the user login: admin or monitor. Specifies the password. The password must be at least six characters.
wccp enable Description Enables WCCP support. WCCP establishes and maintains the transparent redirection of selected types of traffic flowing through a group of routers. The selected traffic is redirected to a group of routers to reduce resource usage and lowering response times. The no command option disables WCCP support.
The no command option disables WCCP support. To enable WCCP, the HP EFS WAN Accelerator must join a service group at the router. A service group is a group of routers and HP EFS WAN Accelerators which define the traffic to redirect, and the routers and HP EFS WAN Accelerators the traffic goes through. To enable failover support with WCCP groups, define the service group weight to be 0 on the backup HP EFS WAN Accelerator.
Example priority Specifies the WCCP priority for traffic redirection. If a connection matches multiple service groups on a router, the router chooses the service group with the highest priority. The range is 0-255. The default value is 200. password Specifies the WCCP password. This password must be the same as the password on the router. (WCCP requires that all routers in a service group have the same password.) Passwords are limited to eight characters.
web http enable Description Enables the HTTP. The default value is true. Syntax [no] web http enable Parameters None Example minna (config) # web http enable minna (config) # web http port Description Sets the Web port. The no command option resets the Web port to the default value. Syntax [no] web http port Parameters Example Specifies the port number. The default value is 80.
web httpd listen interface Description Adds an interface to the Web server access restriction list. The no command option removes the Web interface. For example, to add an interface to the list to listen on: web httpd listen interface To remove an interface so that it is no longer listened to: no web httpd listen interface NOTE: This option is available in the CLI only.
Parameters 4 - CONFIGURATION-MODE COMMANDS Example Specifies the port number. minna (config) # web https port 8080 minna (config) # web prefs log lines Description Sets the number of lines per system log page. The no command option disables the number of log lines. Syntax [no] web prefs log lines Parameters Example Specifies the number of lines per log page.
Parameters Example Specifies the number of minutes. minna (config) # web session renewal 5 minna (config) # web session timeout Description Sets the session timeout value. This is the amount of time the cookie is active. The default value is 60 minutes. The no command option resets the session timeout to the default value. Syntax [no] web session timeout Parameters Example Specifies the number of minutes.
In This Appendix HP EFS WAN Accelerator MIB This appendix describes the HP EFS WAN Accelerator Enterprise Simple Network Management Protocol (SNMP) Message Information Base (MIB).
SNMP Traps The following table summarizes the Simple Network Management Protocol (SNMP) traps sent out from the HP EFS WAN Accelerator to configured trap receivers. Trap Description procCrash (enterprises.17163.1.1.4.1) A process has crashed and subsequently been restarted by the system. A system snapshot associated with this crash has been created on the appliance and is accessible via the CLI or Management Console. HP Technical Support may need this information to determine the cause of the crash.
Description admissionMemError (enterprises.17163.1.1.4.10) The appliance is optimizing traffic beyond its rated capability. During this event, the appliance will continue to optimize existing connections, but new connections will be passed through without optimization. admissionConnError (enterprises.17163.1.1.4.11) The appliance is optimizing a number of connections beyond its rated capability.
alarms OBJECT IDENTIFIER ::= { steelhead 4 } statistics OBJECT IDENTIFIER ::= { steelhead 5 } ---- SYSTEM --model OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Appliance model" ::= { system 1 } serialNumber OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Appliance serial number" ::= { system 2 } systemVersion OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "System software version string" ::= { system 3 } ---
"Current service status" ::= { status 3 } A - HP EFS WAN ACCELERATOR MIB serviceUptime OBJECT-TYPE SYNTAX TimeTicks MAX-ACCESS read-only STATUS current DESCRIPTION "Current service uptime" ::= { status 4 } procTable OBJECT-TYPE SYNTAX SEQUENCE OF ProcEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "List of managed processes" ::= { status 5 } procEntry OBJECT-TYPE SYNTAX ProcEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "Entry for one process" INDEX { procIndex } ::= { procTable 1 }
DESCRIPTION "Number of times process has crashed or exited unexpectedly" ::= { procEntry 4 } peerStatus OBJECT IDENTIFIER ::= { status 6 } peerTable OBJECT-TYPE SYNTAX SEQUENCE OF PeerEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "List of peers" ::= { peerStatus 1 } peerEntry OBJECT-TYPE SYNTAX PeerEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "Entry for one peer" INDEX { peerIndex } ::= { peerTable 1 } PeerEntry ::= SEQUENCE { peerIndex peerHostname peerVersion peerAddress peerMod
A - HP EFS WAN ACCELERATOR MIB peerModel OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Model of peer" ::= { peerEntry 5 } ---- CONFIG --activeConfig OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Current active configuration" ::= { config 1 } inpath OBJECT IDENTIFIER ::= { config 2 } inpathSupport OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "In-path support" ::= { inpath 1 } outofpath OBJECT IDENTIFIER ::
OBJECTS { procName } STATUS current DESCRIPTION "A procExit trap signifies that a process managed by PM has exited unexpectedly, but not left a core file. The variable sent with the notification indicates which process exited.
haltError NOTIFICATION-TYPE STATUS current DESCRIPTION "The service is halted due to a software error" ::= { alarmsPrefix 12 } scheduledJobError NOTIFICATION-TYPE STATUS current DESCRIPTION "A scheduled job has failed during execution" ::= { alarmsPrefix 14 } confModeEnter NOTIFICATION-TYPE STATUS current DESCRIPTION "A user has entered configuration mode" ::= { alarmsPrefix 15 } confModeExit NOTIFICATION-TYPE STATUS current DESCRIPTION "A user has exited configuration mode" ::= { alarmsPrefix 16 } linkErr
memoryError NOTIFICATION-TYPE STATUS current DESCRIPTION "A memory error has been detected on the appliance.
INDEX { cpuIndivId } ::= {cpuIndivUtilTable 1 } Unsigned32, Unsigned32, Unsigned32, Unsigned32, Unsigned32 A - HP EFS WAN ACCELERATOR MIB CPUIndivUtilEntry ::= SEQUENCE { cpuIndivIndex cpuIndivId cpuIndivIdleTime cpuIndivSystemTime cpuIndivUserTime } cpuIndivIndex OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS not-accessible STATUS current DESCRIPTION "Index for the table" ::= { cpuIndivUtilEntry 1 } cpuIndivId OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS not-accessible STATUS current DESCRIPTION "Index for the t
SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Current total number of pass-through connections" ::= { connectionCounts 2 } halfOpenedConnections OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Current total number of half-opened (optimized) connections" ::= { connectionCounts 3 } halfClosedConnections OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Current total number of half-closed (optimized) connections" ::= { connectionC
STATUS current DESCRIPTION "Total bytes WanToLan WAN side since last restart of service" ::= { bandwidthAggregate 2 } bwAggOutWan OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "Total bytes LanToWan WAN side since last restart of service" ::= { bandwidthAggregate 4 } bandwidthPerPort OBJECT IDENTIFIER ::= { bandwidth 2 } bwPortTable OBJECT-TYPE SYNTAX SEQUENCE OF BWPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "List of bandwidth ports" ::= { bandwidthPerPort 1
"Bytes WanToLan LAN side since last restart of service" ::= { bwPortEntry 2 } bwPortInWan OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "Bytes WanToLan WAN side since last restart of service" ::= { bwPortEntry 3 } bwPortOutLan OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "Bytes LanToWan LAN side since last restart of service" ::= { bwPortEntry 4 } bwPortOutWan OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "Bytes La
missTotal OBJECT-TYPE SYNTAX Counter64 MAX-ACCESS read-only STATUS current DESCRIPTION "Total number of datastore misses since last restart of service" ::= { datastore 2 } END HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL 217 A - HP EFS WAN ACCELERATOR MIB hitsTotal OBJECT-TYPE SYNTAX Counter64 MAX-ACCESS read-only STATUS current DESCRIPTION "Total number of datastore hits since last restart of service" ::= { datastore 1 }
218 A - HP EFS WAN ACCELERATOR MIB
In This Appendix HP EFS WAN Accelerator Ports This appendix describes the HP EFS WAN Accelerator default and supported secure ports.
IMPORTANT: For two HP EFS WAN Accelerators to optimize traffic, ports 7800 and 7810 must be passed through firewall devices located between the pair of HP EFS WAN Accelerators. Also, SYN and SYN/ACK packets with the TCP option 76 must be passed through firewalls for autodiscovery to function properly. For the HP StorageWorks Enterprise File ServicesWAN Accelerator Manager (EFS WAN Accelerator Manager), port 22 must be passed through the firewall for it to function properly.
Interactive Ports Forwarded by the HP EFS WAN Accelerator TIP: If you do not want to automatically forward these ports, simply delete the Interactive rule in the Management Console. The following table lists the interactive ports that are automatically forwarded by the HP EFS WAN Accelerator.
Secure Ports Forwarded by the HP EFS WAN Accelerator A default in-path rule with the port label Secure is automatically created in your system. This in-path rule automatically passes through traffic on commonly secure ports (for example, ssh, https, and smtps). TIP: If you do not want to automatically forward these ports, simply delete the Secure rule in the Management Console. The following table lists the common secure ports that are automatically forwarded by the HP EFS WAN Accelerator.
The following table contains the uncommon ports automatically forwarded by the HP EFS WAN Accelerator.
224 Type Port Description sdo-ssh 3897/tcp Simple Distributed Objects over SSH iss-mgmt-ssl 3995/tcp ISS Management Svcs SSL suucp 4031/tcp UUCP over SSL wsm-server-ssl 5007/tcp wsm server ssl sip-tls 5061/tcp SIP-TLS imqtunnels 7674/tcp iMQ SSL tunnel davsrcs 9802/tcp WebDAV Source TLS/SSL intrepid-ssl 11751/tcp Intrepid SSL rets-ssl 12109/tcp RETS over SSL B - HP EFS WAN ACCELERATOR PORTS
GLOSSARY Glossary ARP. Address Resolution Protocol. An IP protocol used to obtain a node's physical address. Bandwidth. The upper limit on the amount of data, typically in kilobits per second (kbps), that can pass through a network connection. Greater bandwidth indicates faster data transfer capability. Bit. A Binary digit. The smallest unit of information handled by a computer; either 1 or 0 in the binary number system. Blade.
FDDI. Fiber Distributed Data Interface. A set of American National Standards Institute (ANSI) protocols for sending digital data over fiber optic cable. FDDI networks are token-passing networks, and support data rates of up to 100 Mbps (100 million bits) per second. FDDI networks are typically used as backbones for WideArea Networks (WANs). Filer. An appliance that attaches to a computer network and is used for data storage. Gateway.
Internet. The collection of networks tied together to provide a global network that use the TCP/IP suite of protocols. IP. Internet protocol. Network layer protocol in the TCP/IP stack that enables a connectionless internetwork service. IPsec. Internet Protocol Security Protocol. A set of protocols to support secure exchange of packets at the IP layer. IPsec has been deployed widely to implement Virtual Private Networks (VPNs). IPsec supports two encryption modes: Transport and Tunnel.
state algorithms to send routing information to all nodes in an internetwork by calculating the shortest path to each node based on a topography of the Internet constructed by each node. Each router sends that portion of the routing table (keeps track of routes to particular network destinations) that describes the state of its own links. It also sends the complete routing structure (topography). Packet. A unit of information transmitted, as a whole, from one device to another on a network. Probe.
A aaa authentication login default 80 aaa authorization map default-user 81 aaa authorization map order 81 Additional resources 16 arp 82 B banner 82 boot system 83 C clear arp-cache 83 CLI command negation 21 connecting 19 online help 21 overview of 20 saving configurations 22 cli clear-history 83 cli default auto-logout 83 cli default paging enable 84 cli session 84 clock set 84 clock timezone 85 configuration copy 85 configuration delete 85 configuration fetch 86 configuration jump-start 86 configuration
FTP data channel, setting QoS for 174 H Hardware dependencies 15 hardware ecc-mem-check enable 101 hardware upgrade model 101 hostname 101 how 34 I image boot 102 image delete 102 image fetch 102 image install 103 image move 103 in-path asymmetric routing detection enable 104 in-path asymmetric routing pass-through enable 104 in-path asym-route-tab flush 103 in-path asym-route-tab remove 103 in-path cdp enable 105 in-path cdp holdtime 105 in-path cdp interval 105 in-path enable 106 in-path interface enable
Optimization policies, setting the FTP data channel 113, 116 Optimization policies, setting the MAPI data channel for 113, 116 out-of-path enable 135 Q qos classification class 170 qos classification enable 171 qos classification link-rate 171 qos classification rule add 172 qos classification rule move 173 qos dscp edit-rule 173 qos dscp move-rule 173 qos dscp rule 174 QoS, setting the FTP data channel 174 QoS, setting the MAPI data channel 174 R radius-server host 175 radius-server key 176 radius-server
show connections 37 show datastore 38 show email 39 show failover 39 show files debug-dump 39 show files sa 40 show files stats 40 show files tcpdump 40 show hardware 41 show hardware watchdog 41 show hosts 41 show images 41 show info 42 show in-path 42 show in-path ar-circbuf 43 show in-path asym-route-tab 43 show in-path cdp 43 show in-path neighbor 43 show in-path peering rules 44 show in-path rules 44 show in-path simplified routing 44 show interfaces 45 show ip 46 show ip flow-export 46 show ip securit
INDEX tcp connection send keep-alive 191 tcp connection send reset 192 tcp highspeed enable 193 tcpdump 69 terminal 194 tproxytrace 70 traceroute 24 Traps, summary of SNMP traps sent 204 U username disable 194 username nopassword 194 username password 195 username password 0 195 username password 7 195 Users, types of 13 W wccp enable 196 wccp mcast-ttl 196 web auto-logout 198 web enable 198 web http enable 199 web http port 199 web httpd listen enable 199 web httpd listen interface 200 web https enable 20
234 INDEX
