HP VPN Firewall Appliances Getting Started Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

111

112

113

114

115

116

117

118

119

120

114

Usage guidelines

Command levels include four privileges: visit (0), monitor (1), system (2), and manage (3). You can

assign a privilege level according to the user's need. When logging in to the device, the user can access

the assigned level and all levels below it.

Level changes can cause maintenance, operation, and security problems. HP recommends that you use

the default command level or modifying the command level under the guidance of professional staff.

The command specified for the command-privilege command must be complete, and have valid

parameters. For example, the default level of the tftp server-address { get | put | sget } source-filename

[ destination-filename ] [ source { interface interface-type interface-number | ip source-ip-address } ]

command is 3. After the command-privilege level 0 view s h e l l t f t p 1.1.1.1 p u t a . c f g c o m m a n d i s e x e c u t e d ,

when users with the user privilege level of 0 log in to the device, they can execute the tftp server-address

put source-filename command (such as tftp 192.168.1.26 put syslog.txt), but cannot execute the

command with the get, sget or source keyword, and cannot specify the destination-filename argument.

The command specified for the undo command-privilege view command can be incomplete. For

example, after the undo command-privilege view system ftp command is executed, all commands

starting with the keyword ftp (such as ftp server acl, ftp server enable, and ftp timeout) are restored to

their default level. If you have modified the level of commands ftp server enable and ftp timeout, and you

want to restore only the ftp server enable command to its default level, use the undo command-privilege

view system ftp server command.

If you modify the command level of a command in a specified view from the default command level to a

lower level, you must modify the command levels of the quit command and the command used to enter

this view. For example, the default command level of commands

interface and sy

stem-

view is 2 (system

level). If you want to make the interface command available to the level 1 users, execute the following

three commands: command-privilege level 1 view shell system-view, command-privilege level 1 view

system interface gigabitethernet 0/1, and command-privilege level 1 view system quit. Then, the level 1

users can enter system view, execute the interface gigabitethernet0/1 command, and return to user view.

Examples

# Set the command level of the interface command to 0 in system view.

<Sysname> system-view

[Sysname] command-privilege level 0 view system interface

display clipboard

Use display clipboard to display data in the clipboard.

Syntax

display clipboard [ | { begin | exclude | include } regular-expression ]

Views

Any view

Default command level

1: Monitor level

Parameters

|: Filters command output by specifying a regular expression. For more information about regular

expressions, see the chapter on CLI in Getting Started Guide.

begin: Displays the first line that matches the specified regular expression and all lines that follow.