F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Network Management Command Reference-6PW100
Table Of Contents
- Title Page
- Table of Contents
- Ethernet interface configuration commands
- Bulk interface configuration commands
- IPv4 addressing configuration commands
- VLAN configuration commands
- MAC address table configuration commands
- Spanning tree configuration commands
- active region-configuration
- check region-configuration
- display stp
- display stp abnormal-port
- display stp bpdu-statistics
- display stp down-port
- display stp history
- display stp region-configuration
- display stp root
- display stp tc
- instance
- region-name
- reset stp
- revision-level
- stp bpdu-protection
- stp bridge-diameter
- stp compliance
- stp config-digest-snooping
- stp cost
- stp edged-port
- stp enable
- stp loop-protection
- stp max-hops
- stp mcheck
- stp mode
- stp no-agreement-check
- stp pathcost-standard
- stp point-to-point
- stp port priority
- stp priority
- stp region-configuration
- stp root primary
- stp root secondary
- stp root-protection
- stp tc-protection
- stp tc-protection threshold
- stp timer forward-delay
- stp timer hello
- stp timer max-age
- stp timer-factor
- stp transmit-limit
- vlan-mapping modulo
- PPP configuration commands
- PPP configuration commands
- display ppp user bind
- ip address ppp-negotiate
- ip pool
- link-protocol ppp
- ppp accm
- ppp account-statistics enable
- ppp account-statics extend remote-address
- ppp acfc local
- ppp acfc remote
- ppp authentication-mode
- ppp chap password
- ppp chap user
- ppp ipcp dns
- ppp ipcp dns admit-any
- ppp ipcp dns request
- ppp ipcp remote-address forced
- ppp pap local-user
- ppp pfc local
- ppp pfc remote
- ppp timer negotiate
- ppp user bind enable
- ppp user bind virtual-template
- remote address
- timer hold
- VT interface configuration commands
- PPP configuration commands
- PPPoE configuration commands
- Layer 2 forwarding configuration commands
- DHCP server configuration commands
- bims-server
- bootfile-name
- dhcp enable (for DHCP server)
- dhcp server apply ip-pool
- dhcp select server global-pool
- dhcp server client-detect enable
- dhcp server detect
- dhcp server forbidden-ip
- dhcp server ip-pool
- dhcp server ping packets
- dhcp server ping timeout
- dhcp server relay information enable
- dhcp server threshold
- display dhcp server conflict
- display dhcp server expired
- display dhcp server free-ip
- display dhcp server forbidden-ip
- display dhcp server ip-in-use
- display dhcp server statistics
- display dhcp server tree
- dns-list
- domain-name
- expired
- forbidden-ip
- gateway-list
- nbns-list
- netbios-type
- network
- network ip range
- network mask
- next-server
- option
- reset dhcp server conflict
- reset dhcp server ip-in-use
- reset dhcp server statistics
- static-bind client-identifier
- static-bind ip-address
- static-bind mac-address
- tftp-server domain-name
- tftp-server ip-address
- vendor-class-identifier
- DHCP relay agent configuration commands
- dhcp enable (for DHCP relay agent)
- dhcp relay address-check enable
- dhcp relay check mac-address
- dhcp relay client-detect enable
- dhcp relay information circuit-id format-type
- dhcp relay information circuit-id string
- dhcp relay information enable
- dhcp relay information format
- dhcp relay information remote-id format-type
- dhcp relay information remote-id string
- dhcp relay information strategy
- dhcp relay release ip
- dhcp relay security static
- dhcp relay security refresh enable
- dhcp relay security tracker
- dhcp relay server-detect
- dhcp relay server-group
- dhcp relay server-select
- dhcp select relay
- display dhcp relay information
- display dhcp relay security
- display dhcp relay security statistics
- display dhcp relay security tracker
- display dhcp relay server-group
- display dhcp relay statistics
- reset dhcp relay statistics
- DHCP client configuration commands
- IPv4 DNS configuration commands
- DDNS configuration commands
- ARP configuration commands
- Gratuitous ARP configuration commands
- Proxy ARP configuration commands
- Flow classification configuration commands
- QoS policy commands
- Traffic policing commands
- IP forwarding basics commands
- IP forwarding mode configuration commands
- Static routing configuration commands
- RIP configuration commands
- checkzero
- default cost (RIP view)
- default-route
- display rip
- display rip database
- display rip interface
- display rip route
- filter-policy export (RIP view)
- filter-policy import (RIP view)
- host-route
- import-route (RIP view)
- maximum load-balancing (RIP view)
- network
- output-delay
- peer
- preference
- reset rip process
- reset rip statistics
- rip
- rip authentication-mode
- rip bfd enable
- rip bfd enable destination
- rip default-route
- rip input
- rip metricin
- rip metricout
- rip mib-binding
- rip output
- rip poison-reverse
- rip split-horizon
- rip summary-address
- rip version
- silent-interface (RIP view)
- summary
- timers
- validate-source-address
- version
- OSPF configuration commands
- abr-summary (OSPF area view)
- area (OSPF view)
- asbr-summary
- authentication-mode
- bandwidth-reference (OSPF view)
- default
- default-cost (OSPF area view)
- default-route-advertise (OSPF view)
- description (OSPF/OSPF area view)
- display ospf abr-asbr
- display ospf asbr-summary
- display ospf brief
- display ospf cumulative
- display ospf error
- display ospf interface
- display ospf lsdb
- display ospf nexthop
- display ospf peer
- display ospf peer statistics
- display ospf request-queue
- display ospf retrans-queue
- display ospf routing
- display ospf vlink
- display router id
- enable link-local-signaling
- enable log
- enable out-of-band-resynchronization
- filter
- filter-policy export (OSPF view)
- filter-policy import (OSPF view)
- host-advertise
- import-route (OSPF view)
- ispf enable
- log-peer-change
- lsa-arrival-interval
- lsa-generation-interval
- lsdb-overflow-limit
- maximum load-balancing (OSPF view)
- network (OSPF area view)
- nssa
- opaque-capability enable
- ospf
- ospf authentication-mode
- ospf bfd enable
- ospf cost
- ospf dr-priority
- ospf mib-binding
- ospf mtu-enable
- ospf network-type
- ospf packet-process prioritized-treatment
- ospf timer dead
- ospf timer hello
- ospf timer poll
- ospf timer retransmit
- ospf trans-delay
- peer
- preference
- reset ospf counters
- reset ospf process
- reset ospf redistribution
- rfc1583 compatible
- router id
- silent-interface (OSPF view)
- snmp-agent trap enable ospf
- spf-schedule-interval
- stub (OSPF area view)
- stub-router
- transmit-pacing
- vlink-peer (OSPF area view)
- IS-IS configuration commands
- Feature and hardware compatibility
- area-authentication-mode
- auto-cost enable
- bandwidth-reference (IS-IS view)
- circuit-cost
- cost-style
- default-route-advertise (IS-IS view)
- display isis brief
- display isis debug-switches
- display isis graceful-restart status
- display isis interface
- display isis lsdb
- display isis mesh-group
- display isis name-table
- display isis peer
- display isis route
- display isis spf-log
- display isis statistics
- domain-authentication-mode
- filter-policy export (IS-IS view)
- filter-policy import (IS-IS view)
- flash-flood
- import-route (IS-IS view)
- import-route isis level-2 into level-1
- import-route limit (IS-IS view)
- isis
- isis authentication-mode
- isis circuit-level
- isis circuit-type p2p
- isis cost
- isis dis-name
- isis dis-priority
- isis enable
- isis mesh-group
- isis mib-binding
- isis peer-ip-ignore
- isis silent
- isis small-hello
- isis timer csnp
- isis timer hello
- isis timer holding-multiplier
- isis timer lsp
- isis timer retransmit
- is-level
- is-name
- is-name map
- is-snmp-traps enable
- log-peer-change (IS-IS view)
- lsp-fragments-extend
- lsp-length originate
- lsp-length receive
- maximum load-balancing (IS-IS view)
- network-entity
- preference (IS-IS view)
- priority high
- reset isis all
- reset isis peer
- set-overload
- summary (IS-IS view)
- timer lsp-generation
- timer lsp-max-age
- timer lsp-refresh
- timer spf
- virtual-system
- Feature and hardware compatibility
- BGP configuration commands
- Feature and hardware compatibility
- aggregate
- balance (BGP/BGP-VPN instance view)
- bestroute as-path-neglect (BGP/BGP-VPN instance view)
- bestroute compare-med (BGP/BGP-VPN instance view)
- bestroute med-confederation (BGP/BGP-VPN instance view)
- bgp
- compare-different-as-med (BGP/BGP-VPN instance view)
- confederation id
- confederation nonstandard
- confederation peer-as
- dampening (BGP/BGP-VPN instance view)
- default ipv4-unicast
- default local-preference (BGP/BGP-VPN instance view)
- default med (BGP/BGP-VPN instance view)
- default-route imported (BGP/BGP-VPN instance view)
- display bgp group
- display bgp network
- display bgp paths
- display bgp peer
- display bgp peer received ip-prefix
- display bgp routing-table
- display bgp routing-table as-path-acl
- display bgp routing-table cidr
- display bgp routing-table community
- display bgp routing-table community-list
- display bgp routing-table dampened
- display bgp routing-table dampening parameter
- display bgp routing-table different-origin-as
- display bgp routing-table flap-info
- display bgp routing-table label
- display bgp routing-table peer
- display bgp routing-table regular-expression
- display bgp routing-table statistic
- display router id
- ebgp-interface-sensitive
- filter-policy export (BGP/BGP-VPN instance view)
- filter-policy import (BGP/BGP-VPN instance view)
- group (BGP/BGP-VPN instance view)
- ignore-first-as
- import-route (BGP/BGP-VPN instance view)
- ipv4-family vpn-instance
- log-peer-change
- network (BGP/BGP-VPN instance view)
- network short-cut (BGP/BGP-VPN instance view)
- peer advertise-community (BGP/BGP-VPN instance view)
- peer advertise-ext-community (BGP/BGP-VPN instance view)
- peer allow-as-loop (BGP/BGP-VPN instance view)
- peer as-number (BGP/BGP-VPN instance view)
- peer as-path-acl (BGP/BGP-VPN instance view)
- peer bfd
- peer capability-advertise conventional
- peer capability-advertise orf
- peer capability-advertise orf non-standard
- peer capability-advertise route-refresh
- peer capability-advertise suppress-4-byte-as
- peer connect-interface (BGP/BGP-VPN instance view)
- peer default-route-advertise (BGP/BGP-VPN instance view)
- peer description (BGP/BGP-VPN instance view)
- peer ebgp-max-hop (BGP/BGP-VPN instance view)
- peer enable (BGP/BGP-VPN instance view)
- peer fake-as (BGP/BGP-VPN instance view)
- peer filter-policy (BGP/BGP-VPN instance view)
- peer group (BGP/BGP-VPN instance view)
- peer ignore (BGP/BGP-VPN instance view)
- peer ip-prefix
- peer keep-all-routes (BGP/BGP-VPN instance view)
- peer log-change (BGP/BGP-VPN instance view)
- peer next-hop-local (BGP/BGP-VPN instance view)
- peer password
- peer preferred-value (BGP/BGP-VPN instance view)
- peer public-as-only (BGP/BGP-VPN instance view)
- peer reflect-client (BGP/BGP-VPN instance view)
- peer route-limit (BGP/BGP-VPN instance view)
- peer route-policy (BGP/BGP-VPN instance view)
- peer route-update-interval (BGP/BGP-VPN instance view)
- peer substitute-as (BGP/BGP-VPN instance view)
- peer timer (BGP/BGP-VPN instance view)
- preference (BGP/BGP-VPN instance view)
- reflect between-clients (BGP view/BGP-VPN instance view)
- reflector cluster-id (BGP view/BGP-VPN instance view)
- refresh bgp
- reset bgp
- reset bgp dampening
- reset bgp flap-info
- reset bgp ipv4 all
- router id
- router-id
- summary automatic
- synchronization (BGP view)
- timer (BGP/BGP-VPN instance view)
- Feature and hardware compatibility
- Basic IP routing configuration commands
- Policy-based routing configuration commands
- apply default output-interface
- apply ip-address default next-hop
- apply ip-address next-hop
- apply ip-precedence
- apply output-interface
- apply output-interface ip-address next-hop dhcpc
- display ip policy-based-route
- display ip policy-based-route setup
- display ip policy-based-route statistics
- display policy-based-route
- if-match acl
- if-match packet-length
- ip local policy-based-route
- ip policy-based-route
- policy-based-route
- reset policy-based-route statistics
- Multicast routing and forwarding configuration commands
- delete ip rpf-route-static
- display multicast boundary
- display multicast forwarding-table
- display multicast routing-table
- display multicast routing-table static
- display multicast rpf-info
- ip rpf-route-static
- mtracert
- multicast boundary
- multicast forwarding-table downstream-limit
- multicast forwarding-table route-limit
- multicast load-splitting
- multicast longest-match
- multicast routing-enable
- reset multicast forwarding-table
- reset multicast routing-table
- IGMP configuration commands
- display igmp group
- display igmp host interface
- display igmp interface
- display igmp proxying group
- display igmp routing-table
- display igmp ssm-mapping
- display igmp ssm-mapping group
- display igmp ssm-mapping host interface
- fast-leave (IGMP view)
- host-tracking (IGMP view)
- igmp
- igmp enable
- igmp fast-leave
- igmp group-limit
- igmp group-policy
- igmp host-tracking
- igmp last-member-query-interval
- igmp max-response-time
- igmp proxying enable
- igmp proxying forwarding
- igmp require-router-alert
- igmp robust-count
- igmp send-router-alert
- igmp ssm-mapping enable
- igmp startup-query-count
- igmp startup-query-interval
- igmp static-group
- igmp timer other-querier-present
- igmp timer query
- igmp version
- last-member-query-interval (IGMP view)
- max-response-time (IGMP view)
- require-router-alert (IGMP view)
- reset igmp group
- reset igmp ssm-mapping group
- robust-count (IGMP view)
- send-router-alert (IGMP view)
- ssm-mapping (IGMP view)
- startup-query-count (IGMP view)
- startup-query-interval (IGMP view)
- timer other-querier-present (IGMP view)
- timer query (IGMP view)
- version (IGMP view)
- PIM configuration commands
- auto-rp enable
- bsm-fragment enable (PIM view)
- bsr-policy (PIM view)
- c-bsr (PIM view)
- c-bsr admin-scope (PIM view)
- c-bsr global
- c-bsr group
- c-bsr hash-length (PIM view)
- c-bsr holdtime (PIM view)
- c-bsr interval (PIM view)
- c-bsr priority (PIM view)
- c-rp (PIM view)
- c-rp advertisement-interval (PIM view)
- c-rp holdtime (PIM view)
- crp-policy (PIM view)
- display pim bsr-info
- display pim claimed-route
- display pim control-message counters
- display pim grafts
- display pim interface
- display pim join-prune
- display pim neighbor
- display pim routing-table
- display pim rp-info
- hello-option dr-priority (PIM view)
- hello-option holdtime (PIM view)
- hello-option lan-delay (PIM view)
- hello-option neighbor-tracking (PIM view)
- hello-option override-interval (PIM view)
- holdtime assert (PIM view)
- holdtime join-prune (PIM view)
- jp-pkt-size (PIM view)
- jp-queue-size (PIM view)
- pim
- pim bsr-boundary
- pim dm
- pim hello-option dr-priority
- pim hello-option holdtime
- pim hello-option lan-delay
- pim hello-option neighbor-tracking
- pim hello-option override-interval
- pim holdtime assert
- pim holdtime join-prune
- pim neighbor-policy
- pim require-genid
- pim sm
- pim state-refresh-capable
- pim timer graft-retry
- pim timer hello
- pim timer join-prune
- pim triggered-hello-delay
- probe-interval (PIM view)
- prune delay (PIM view)
- register-policy (PIM view)
- register-suppression-timeout (PIM view)
- register-whole-checksum (PIM view)
- reset pim control-message counters
- source-lifetime (PIM view)
- source-policy (PIM view)
- spt-switch-threshold (PIM view)
- ssm-policy (PIM view)
- state-refresh-interval (PIM view)
- state-refresh-rate-limit (PIM view)
- state-refresh-ttl
- static-rp (PIM view)
- timer hello (PIM view)
- timer join-prune (PIM view)
- MSDP configuration commands
- cache-sa-enable
- display msdp brief
- display msdp peer-status
- display msdp sa-cache
- display msdp sa-count
- encap-data-enable
- import-source
- msdp
- originating-rp
- peer connect-interface
- peer description
- peer mesh-group
- peer minimum-ttl
- peer password
- peer request-sa-enable
- peer sa-cache-maximum
- peer sa-policy
- peer sa-request-policy
- reset msdp peer
- reset msdp sa-cache
- reset msdp statistics
- shutdown (MSDP view)
- static-rpf-peer
- timer retry
- IPv6 basics configuration commands
- display ipv6 fib
- display ipv6 fib ipv6-address
- display ipv6 interface
- display ipv6 neighbors
- display ipv6 neighbors count
- display ipv6 neighbors vpn-instance
- display ipv6 pathmtu
- display ipv6 prefix
- display ipv6 socket
- display ipv6 statistics
- display tcp ipv6 statistics
- display tcp ipv6 status
- display udp ipv6 statistics
- ipv6
- ipv6 address
- ipv6 address prefix-number
- ipv6 address anycast
- ipv6 address auto
- ipv6 address auto link-local
- ipv6 address eui-64
- ipv6 address link-local
- ipv6 fib-loadbalance-type hash-based
- ipv6 hoplimit-expires enable
- ipv6 icmp-error
- ipv6 icmpv6 multicast-echo-reply enable
- ipv6 mtu
- ipv6 nd autoconfig managed-address-flag
- ipv6 nd autoconfig other-flag
- ipv6 nd dad attempts
- ipv6 nd hop-limit
- ipv6 nd ns retrans-timer
- ipv6 nd nud reachable-time
- ipv6 nd ra halt
- ipv6 nd ra interval
- ipv6 nd ra no-advlinkmtu
- ipv6 nd ra prefix
- ipv6 nd ra router-lifetime
- ipv6 neighbor
- ipv6 neighbor stale-aging
- ipv6 neighbors max-learning-num
- ipv6 pathmtu
- ipv6 pathmtu age
- ipv6 prefix
- ipv6 redirects enable
- ipv6 unreachables enable
- local-proxy-nd enable
- proxy-nd enable
- reset ipv6 neighbors
- reset ipv6 pathmtu
- reset ipv6 statistics
- reset tcp ipv6 statistics
- reset udp ipv6 statistics
- tcp ipv6 timer fin-timeout
- tcp ipv6 timer syn-timeout
- tcp ipv6 window
- DHCPv6 configuration commands
- DHCPv6 common configuration commands
- DHCPv6 server configuration commands
- address range
- display ipv6 dhcp pool
- display ipv6 dhcp prefix-pool
- display ipv6 dhcp server
- display ipv6 dhcp server conflict
- display ipv6 dhcp server expired
- display ipv6 dhcp server ip-in-use
- display ipv6 dhcp server pd-in-use
- display ipv6 dhcp server statistics
- dns-server
- domain-name
- ds-lite address
- network
- ipv6 dhcp option-group
- ipv6 dhcp pool
- ipv6 dhcp prefix-pool
- ipv6 dhcp server
- ipv6 dhcp server enable
- option
- option-group
- prefix-pool
- reset ipv6 dhcp server conflict
- reset ipv6 dhcp server expired
- reset ipv6 dhcp server ip-in-use
- reset ipv6 dhcp server pd-in-use
- reset ipv6 dhcp server statistics
- sip-server
- static-bind address
- static-bind prefix
- temporary address range
- DHCPv6 relay agent configuration commands
- DHCPv6 client configuration commands
- IPv6 DNS configuration commands
- IPv6 static routing configuration commands
- RIPng configuration commands
- Feature and hardware compatibility
- checkzero
- default cost (RIPng view)
- display ripng
- display ripng database
- display ripng interface
- display ripng route
- enable ipsec-policy (RIPng view)
- filter-policy export (RIPng view)
- filter-policy import (RIPng view)
- import-route
- maximum load-balancing (RIPng view)
- preference
- reset ripng process
- reset ripng statistics
- ripng
- ripng default-route
- ripng enable
- ripng ipsec-policy
- ripng metricin
- ripng metricout
- ripng poison-reverse
- ripng split-horizon
- ripng summary-address
- timers
- Feature and hardware compatibility
- OSPFv3 configuration commands
- Feature and hardware compatibility
- abr-summary (OSPFv3 area view)
- area (OSPFv3 view)
- bandwidth-reference
- default cost
- default-cost (OSPFv3 area view)
- default-route-advertise
- display ospfv3
- display ospfv3 interface
- display ospfv3 lsdb
- display ospfv3 lsdb statistics
- display ospfv3 next-hop
- display ospfv3 peer
- display ospfv3 peer statistic
- display ospfv3 request-list
- display ospfv3 retrans-list
- display ospfv3 routing
- display ospfv3 statistics
- display ospfv3 topology
- display ospfv3 vlink
- enable ipsec-policy (OSPFv3 area view)
- filter-policy export (OSPFv3 view)
- filter-policy import (OSPFv3 view)
- import-route (OSPFv3 view)
- log-peer-change
- maximum load-balancing (OSPFv3 view)
- ospfv3
- ospfv3 area
- ospfv3 bfd enable
- ospfv3 cost
- ospfv3 dr-priority
- ospfv3 ipsec-policy
- ospfv3 mtu-ignore
- ospfv3 network-type
- ospfv3 peer
- ospfv3 timer dead
- ospfv3 timer hello
- ospfv3 timer retransmit
- ospfv3 timer poll
- ospfv3 trans-delay
- preference
- router-id
- silent-interface(OSPFv3 view)
- spf timers
- stub (OSPFv3 area view)
- vlink-peer (OSPFv3 area view)
- Feature and hardware compatibility
- IPv6 IS-IS configuration commands
- IPv6 BGP configuration commands
- Feature and hardware compatibility
- aggregate (IPv6 address family view)
- balance (IPv6 address family view/IPv6 BGP-VPN instance view)
- bestroute as-path-neglect (IPv6 address family view)
- bestroute compare-med (IPv6 address family view)
- bestroute med-confederation (IPv6 address family view)
- compare-different-as-med (IPv6 address family view)
- dampening (IPv6 address family view)
- default local-preference (IPv6 address family view/IPv6 BGP-VPN instance view)
- default med (IPv6 address family view/IPv6 BGP-VPN instance view)
- default-route imported (IPv6 address family view/IPv6 BGP-VPN instance view)
- display bgp ipv6 group
- display bgp ipv6 network
- display bgp ipv6 paths
- display bgp ipv6 peer
- display bgp ipv6 peer received ipv6-prefix
- display bgp ipv6 routing-table
- display bgp ipv6 routing-table as-path-acl
- display bgp ipv6 routing-table community
- display bgp ipv6 routing-table community-list
- display bgp ipv6 routing-table dampened
- display bgp ipv6 routing-table dampening parameter
- display bgp ipv6 routing-table different-origin-as
- display bgp ipv6 routing-table flap-info
- display bgp ipv6 routing-table label
- display bgp ipv6 routing-table peer
- display bgp ipv6 routing-table regular-expression
- display bgp ipv6 routing-table statistic
- filter-policy export (IPv6 address family view/IPv6 BGP-VPN instance view)
- filter-policy import (IPv6 address family view/IPv6 BGP-VPN instance view)
- group (IPv6 address family view)
- import-route (IPv6 address family view/IPv6 BGP-VPN instance view)
- ipv6-family
- network (IPv6 address family view/IPv6 BGP-VPN instance view)
- peer advertise-community (IPv6 address family view)
- peer advertise-ext-community (IPv6 address family view)
- peer allow-as-loop (IPv6 address family view)
- peer as-number (IPv6 address family view)
- peer as-number (IPv6 BGP-VPN instance view)
- peer as-path-acl (IPv6 address family view)
- peer bfd (IPv6 address family view/IPv6 BGP-VPN instance view)
- peer capability-advertise orf
- peer capability-advertise orf non-standard (IPv6 address family view)
- peer capability-advertise route-refresh
- peer capability-advertise suppress-4-byte-as (IPv6 address family view)
- peer capability-advertise suppress-4-byte-as (IPv6 BGP-VPN instance view)
- peer connect-interface (IPv6 address family view)
- peer default-route-advertise
- peer description (IPv6 address family view)
- peer ebgp-max-hop (IPv6 address family view)
- peer enable (IPv6 address family view)
- peer fake-as (IPv6 address family view)
- peer filter-policy (IPv6 address family view)
- peer group (IPv6 address family view)
- peer ignore (IPv6 address family view)
- peer ipv6-prefix
- peer ipsec-policy (IPv6 address family view)
- peer keep-all-routes (IPv6 address family view)
- peer label-route-capability (IPv6 address family view)
- peer log-change (IPv6 address family view)
- peer next-hop-local (IPv6 address family view)
- peer password
- peer preferred-value (IPv6 address family view)
- peer preferred-value (IPv6 BGP-VPN instance view)
- peer public-as-only (IPv6 address family view)
- peer reflect-client (IPv6 address family view)
- peer route-limit (IPv6 address family view)
- peer route-policy (IPv6 address family view)
- peer route-policy (IPv6 BGP-VPN instance view)
- peer route-update-interval (IPv6 address family view)
- peer substitute-as (IPv6 address family view)
- peer timer (IPv6 address family view)
- preference (IPv6 address family view/IPv6 BGP-VPN instance view)
- reflect between-clients (IPv6 address family view)
- reflector cluster-id (IPv6 address family view)
- refresh bgp ipv6
- reset bgp ipv6
- reset bgp ipv6 dampening
- reset bgp ipv6 flap-info
- router-id
- synchronization (IPv6 address family view)
- timer (IPv6 address family view)
- Feature and hardware compatibility
- IPv6 routing table displaying commands
- IPv6 policy-based routing configuration commands
- Feature and hardware compatibility
- apply default output-interface
- apply ipv6-address default next-hop
- apply ipv6-address next-hop
- apply ipv6-precedence
- apply output-interface
- display ipv6 config policy-based-route
- display ipv6 policy-based-route
- display ipv6 policy-based-route setup
- display ipv6 policy-based-route statistics
- if-match acl6
- if-match packet-length
- ipv6 local policy-based-route
- ipv6 policy-based-route (interface view)
- ipv6 policy-based-route (system view)
- reset ipv6 policy-based-route statistics
- Feature and hardware compatibility
- IPv6 multicast routing and forwarding configuration commands
- display multicast ipv6 boundary
- display multicast ipv6 forwarding-table
- display multicast ipv6 routing-table
- display multicast ipv6 rpf-info
- multicast ipv6 boundary
- multicast ipv6 forwarding-table downstream-limit
- multicast ipv6 forwarding-table route-limit
- multicast ipv6 load-splitting
- multicast ipv6 longest-match
- multicast ipv6 routing-enable
- reset multicast ipv6 forwarding-table
- reset multicast ipv6 routing-table
- IPv6 PIM configuration commands
- bsm-fragment enable (IPv6 PIM view)
- bsr-policy (IPv6 PIM view)
- c-bsr (IPv6 PIM view)
- c-bsr admin-scope (IPv6 PIM view)
- c-bsr hash-length (IPv6 PIM view)
- c-bsr holdtime (IPv6 PIM view)
- c-bsr interval (IPv6 PIM view)
- c-bsr priority (IPv6 PIM view)
- c-bsr scope
- c-rp (IPv6 PIM view)
- c-rp advertisement-interval (IPv6 PIM view)
- c-rp holdtime (IPv6 PIM view)
- crp-policy (IPv6 PIM view)
- display pim ipv6 bsr-info
- display pim ipv6 claimed-route
- display pim ipv6 control-message counters
- display pim ipv6 grafts
- display pim ipv6 interface
- display pim ipv6 join-prune
- display pim ipv6 neighbor
- display pim ipv6 routing-table
- display pim ipv6 rp-info
- embedded-rp
- hello-option dr-priority (IPv6 PIM view)
- hello-option holdtime (IPv6 PIM view)
- hello-option lan-delay (IPv6 PIM view)
- hello-option neighbor-tracking (IPv6 PIM view)
- hello-option override-interval (IPv6 PIM view)
- holdtime assert (IPv6 PIM view)
- holdtime join-prune (IPv6 PIM view)
- jp-pkt-size (IPv6 PIM view)
- jp-queue-size (IPv6 PIM view)
- pim ipv6
- pim ipv6 bsr-boundary
- pim ipv6 dm
- pim ipv6 hello-option dr-priority
- pim ipv6 hello-option holdtime
- pim ipv6 hello-option lan-delay
- pim ipv6 hello-option neighbor-tracking
- pim ipv6 hello-option override-interval
- pim ipv6 holdtime assert
- pim ipv6 holdtime join-prune
- pim ipv6 neighbor-policy
- pim ipv6 require-genid
- pim ipv6 sm
- pim ipv6 state-refresh-capable
- pim ipv6 timer graft-retry
- pim ipv6 timer hello
- pim ipv6 timer join-prune
- pim ipv6 triggered-hello-delay
- probe-interval (IPv6 PIM view)
- prune delay (IPv6 PIM view)
- register-policy (IPv6 PIM view)
- register-suppression-timeout (IPv6 PIM view)
- register-whole-checksum (IPv6 PIM view)
- reset pim ipv6 control-message counters
- source-lifetime (IPv6 PIM view)
- source-policy (IPv6 PIM view)
- spt-switch-threshold (IPv6 PIM view)
- ssm-policy (IPv6 PIM view)
- state-refresh-hoplimit
- state-refresh-interval (IPv6 PIM view)
- state-refresh-rate-limit (IPv6 PIM view)
- static-rp (IPv6 PIM view)
- timer hello (IPv6 PIM view)
- timer join-prune (IPv6 PIM view)
- MLD configuration commands
- display mld group
- display mld host interface
- display mld interface
- display mld proxying group
- display mld routing-table
- display mld ssm-mapping
- display mld ssm-mapping group
- display mld ssm-mapping host interface
- fast-leave (MLD view)
- host-tracking (MLD view)
- last-listener-query-interval (MLD view)
- max-response-time (MLD view)
- mld
- mld enable
- mld fast-leave
- mld group-limit
- mld group-policy
- mld host-tracking
- mld last-listener-query-interval
- mld max-response-time
- mld proxying enable
- mld proxying forwarding
- mld require-router-alert
- mld robust-count
- mld send-router-alert
- mld ssm-mapping enable
- mld startup-query-count
- mld startup-query-interval
- mld static-group
- mld timer other-querier-present
- mld timer query
- mld version
- require-router-alert (MLD view)
- reset mld group
- reset mld ssm-mapping group
- robust-count (MLD view)
- send-router-alert (MLD view)
- ssm-mapping (MLD view)
- startup-query-count (MLD view)
- startup-query-interval (MLD view)
- timer other-querier-present (MLD view)
- timer query (MLD view)
- version (MLD view)
- Routing policy configuration commands
- Common routing policy configuration commands
- apply as-path
- apply comm-list delete
- apply community
- apply cost
- apply cost-type
- apply extcommunity
- apply isis
- apply ip-precedence
- apply local-preference
- apply origin
- apply preference
- apply preferred-value
- apply tag
- continue
- display ip as-path
- display ip community-list
- display ip extcommunity-list
- display route-policy
- if-match as-path
- if-match community
- if-match cost
- if-match extcommunity
- if-match interface
- if-match route-type
- if-match tag
- ip as-path
- ip community-list
- ip extcommunity-list
- route-policy
- IPv4 routing policy configuration commands
- IPv6 routing policy configuration commands
- Common routing policy configuration commands
- SSL configuration commands
- Support and other resources
- Index
123
Usage guidelines
If you run the ppp authentication-mode command with the domain keyword specified, you must
configure an address pool in the corresponding domain. You can use the display domain command to
display the domain configuration.
If you configure the ppp authentication-mode command without specifying the domain name, the system
checks the username for domain information. If the username contains a domain name, the domain will
be used for authentication. If the domain does not exist, the user's access request will be denied. If the
username does not contain a domain name, the default domain is used. You can use the domain default
command to configure the default domain. If no default domain is configured, the default domain system
is used by default.
PPP authentication falls into the following categories:
• PAP—Two-way handshake authentication. The password used is in plain text.
• CHAP—Three-way handshake authentication. The password is in cipher text.
• MS-CHAP—Three-way handshake authentication. The password is in cipher text.
• MS-CHAP-V2—Three-way handshake authentication. The password is in cipher text.
You can configure several authentication modes simultaneously. In addition, you can also use the AAA
authentication algorithm list (if defined) to authenticate users.
In any PPP authentication mode, AAA determines whether a user can pass the authentication through a
local authentication database or an AAA server. For more information about AAA authentication, see
Access Control Configuration Guide.
For authentication on a dialup interface, configure authentication on both the physical interface and the
dialer interface. When a physical interface receives a DCC call request, it first initiates PPP negotiation
and authenticates the dial-in user, and then passes the call to the upper layer protocol.
Examples
# Configure interface Virtual-Template 1 to authenticate the peer device by using PAP.
<Sysname> system-view
[Sysname] interface Virtual-Template 1
[Sysname-Virtual-Template1] ppp authentication-mode pap domain system
# Configure interface Virtual-Template 1 to authenticate the peer device by using PAP, CHAP, and
MS-CHAP.
<Sysname> system-view
[Sysname] interface Virtual-Template 1
[Sysname-Virtual-Template1] ppp authentication-mode pap chap ms-chap domain system
Related commands
• domain default (Access Control Command Reference)
• local-user (Access Control Command Reference)
• ppp chap password
• ppp chap user
• ppp pap local-user
ppp chap password
Use ppp chap password to set the password for CHAP authentication.