Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Getting Started Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
919293949596979899100
88
Command levels include four privileges: visit (0), monitor (1), system (2), and manage (3). You can
assign a privilege level according to the user's need. When logging in to the switch, the user can access
the assigned level and all levels below it.
Level changes can cause maintenance, operation, and security problem. HP recommends that you
use the default command level or that you modify the command level under the guidance of
professional staff.
The command specified in the command-privilege command must be complete, and has valid
arguments. For example, the default level of the tftp server-address { get | put | sget }
source-filename [ destination-filename ] [ source { interface interface-type interface-number | ip
source-ip-address } ] command is 3. After the command-privilege level 0 view s h e l l t f t p 1.1.1.1 p u t
a.cfg command is executed, when users with the user privilege level of 0 log in to the switch, they
can execute the tftp server-address put source-filename command (such as the tftp 192.168.1.26 put
syslog.txt command), but cannot execute the command with the get, sget or source keyword, and
cannot specify the destination-filename argument.
The command specified in the undo command-privilege view command can be incomplete. For
example, after the undo command-privilege view system ftp command is executed, all commands
starting with the keyword ftp (such as ftp server acl, ftp server enable, and ftp timeout) are restored
to their default level. If you have modified the level of commands ftp server enable and ftp timeout,
and you want to restore only the ftp server enable command to its default level, you should use the
undo command-privilege view system ftp server command
.
If you modify the command level of a command in a specified view from the default command level
to a lower level, remember to modify the command levels of the quit command and the
corresponding command used to enter this view. For example, the default command level of
commands interface and system-view is 2 (system level). If you want to make the interface
command available to the level 1 users, you need to execute the following three commands:
command-privilege level 1 view shell system-view, command-privilege level 1 view system
interface GigabitEthernet 3/0/1, and command-privilege level 1 view system quit. Then, the level
1 users can enter system view, execute the interface ethernet command, and return to user view.
Examples
# Set the command level of the interface command to 0 in system view.
<Sysname> system-view
[Sysname] command-privilege level 0 view system interface
display clipboard
Syntax
display clipboard [ | { begin | exclude | include } regular-expression ]
View
Any view
Default level
1: Monitor level
Parameters
|: Filters command output by specifying a regular expression. For more information about regular
expressions, see Getting Started Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.