HP StorageWorks Enterprise File Services WAN Accelerator 2.1.
Legal and notice information © Copyright 2006 Hewlett-Packard Development Company, L.P. © Copyright 2003–2006 Riverbed Technology, Inc. Hewlett-Packard Company makes no warranty of any kind with regard to this material, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing, performance, or use of this material.
Introduction CONTENTS Contents ......................................................................................................... 13 About This Guide................................................................................ 13 Types of Users .............................................................................. 13 Organization of This Guide .......................................................... 13 Document Conventions ..............................................................
Chapter 2 User-Mode Commands .............................................................. 23 enable .................................................................................................. 23 exit....................................................................................................... 23 ping ..................................................................................................... 24 tcpdump.............................................................................
show in-path........................................................................................ 41 show in-path cdp ................................................................................. 41 show in-path neighbor......................................................................... 42 show in-path oop-all-port.................................................................... 42 show in-path rules ...............................................................................
show service........................................................................................ 55 show service authentication ................................................................ 55 show service connection pooling ........................................................ 56 show service neural-framing............................................................... 57 show snmp .......................................................................................... 57 show ssh client ......
configuration fetch .............................................................................. 77 configuration jump-start...................................................................... 78 configuration merge ............................................................................ 78 configuration move ............................................................................. 79 configuration revert saved...................................................................
hardware ecc-mem-check enable........................................................ 90 hardware upgrade model..................................................................... 90 hostname ............................................................................................. 91 image boot........................................................................................... 91 image delete ........................................................................................ 91 image fetch.
ip in-path route.................................................................................. 108 ip name-server................................................................................... 109 ip route .............................................................................................. 109 ip security authentication policy ....................................................... 110 ip security encryption policy.............................................................
pfs auto-launch enable ...................................................................... 122 pfs configure ..................................................................................... 123 pfs enable .......................................................................................... 123 pfs local-password ............................................................................ 125 pfs security-sign ................................................................................
action-id arg-offset expr.................................................................... 139 protocol ms-sql rpc-act rule-id action-id........................................... 140 protocol ms-sql rpc-arg-act rule-id arg-offset expr........................... 141 protocol ms-sql rpc-arg rule-id arg-offset expr................................. 142 protocol ms-sql support-app ............................................................. 143 qos move-rule.................................................
stats clear-all ..................................................................................... 157 stats export ........................................................................................ 157 stats sample ....................................................................................... 157 stats settings bandwidth .................................................................... 158 tacacs-server host ..............................................................................
Appendix A HP EFS WAN Accelerator MIB ................................................ 173 Accessing the HP EFS WAN Accelerator Enterprise MIB .............. 173 SNMP Traps...................................................................................... 174 HP EFS WAN Accelerator Enterprise MIB...................................... 175 .............................................. 187 Default Ports .....................................................................................
12 CONTENTS
INTRODUCTION Introduction In This Introduction Welcome to the HP StorageWorks Enterprise File Services WAN Accelerator Command Line Interface Reference Manual. Read this introduction for an overview of the information provided in this guide and for an understanding of the documentation conventions used throughout.
Chapter 3, “Enable-Mode Commands,” provides a reference for enable-mode commands. Chapter 4, “Configuration-Mode Commands,” provides a reference for configuration-mode commands. Appendix A, “HP EFS WAN Accelerator MIB,” provides an example of the HP EFS WAN Accelerator Enterprise Simple Network Management Protocol (SNMP) Message Information Block (MIB).
Hardware and Software Dependencies The following table summarizes the hardware, software, and operating system requirements for the HP EFS WAN Accelerator CLI. HP EFS WAN Accelerator Command-Line Interface Hardware Requirements Software Requirements Operating System Requirements • An ASCII terminal or emulator that can connect to the serial console (9600 baud, 8 bits, no parity, 1 stop bit, and no flow control). • Secure Shell (ssh).
Antivirus Compatibility The HP EFS WAN Accelerator has been tested with the following antivirus software with no impact on performance: Network Associates (McAfee) VirusScan 7.0.0 Enterprise on the server Network Associates (McAfee) VirusScan 7.1.0 Enterprise on the server Network Associates (McAfee) VirusScan 7.1.0 Enterprise on the client Symantec (Norton) AntiVirus Corporate Edition 8.
HP StorageWorks Enterprise File Services Remote Copy Utility Reference Manual describes how to install and deploy the HP EFS Remote Copy Utility (HP EFS RCU). The HP EFS RCU is an optional utility of the HP EFS WAN Accelerator that copies, mirrors, and transparently prepopulates data. You can download the HP EFS RCU from the HP support site located at www.hp.com/ support.
Operating system type and revision level Detailed, specific questions HP Storage Web Site The HP web site has the latest information on this product, as well as the latest drivers. Access the storage site at: http://www.hp.com/country/us/eng/prodserv/storage.html. From this web site, select the appropriate product or solution.
In This Chapter 1 - USING THE COMMAND-LINE INTERFACE CHAPTER 1 Using the Command-Line Interface This chapter describes how to access and use the HP EFS WAN Accelerator commandline interface (CLI).
ssh admin@host.domain or ssh admin@ipaddress 3. You are prompted for the administrator password. This is the password you set during the initial configuration process. (The default password is password.) You can also log in as a monitor user (monitor. Monitor users cannot make configuration changes to the system. Monitor users can view reports and system logs. Overview of the CLI The CLI is divided into the following modes: User. When you start a CLI session, you begin in the default, user-mode.
Entering Commands tilden (config)# configure t You can press TAB to complete a CLI command automatically. Accessing Online Help At the system prompt, type the full or partial command string followed by a question mark (?). The CLI displays the command keywords or parameters for the command and a short description. To access online help • At the system prompt enter the following command: tilden (config) # show ? The CLI does not display the question mark.
Saving Configuration Changes The show configuration running command displays the current configuration of the system. When you make a configuration change to the system, the change becomes part of the running configuration. The change does not automatically become part of the configuration file in memory until you write the file to memory. If you do not save your changes to memory, they are lost when the system restarts.
In This Chapter To enter user-mode 2 - USER-MODE COMMANDS CHAPTER 2 User-Mode Commands This chapter is a reference for user-mode commands. User-mode commands allow you to enter enable-mode and perform standard network monitoring tasks. • Connect to the CLI. For detailed information, see “Connecting to the CLI” on page 19.
Example minna (config) # exit minna # ping Description Executes the HP EFS WAN Accelerator ping utility to send ICMP ECHO_REQUEST packets to network hosts for troubleshooting. The HP EFS WAN Accelerator ping command without any options pings from the primary or the auxiliary (aux) interface and not the in-path interfaces.
tcpdump Description TIP: You can write tcpdump output to a file using the -w option so that you can analyze it. Syntax tcpdump [] Parameters The tcpdump command takes the standard Linux options: -a Attempt to convert network and broadcast addresses to names. -c Exit after receiving count packets. -d Dump the compiled packet-matching code in a human readable form to standard output and stop. -dd Dump packet-matching code as a C program fragment.
0x10] 18:59:13.692513 minna.domain.com.ssh P 0:52(52) ack 1 win 5840 (DF) [dscp 18:59:13.702482 minna.domain.com.ssh P 0:52(52) ack 1 win 5840 (DF) [dscp > dhcp-22.domain.com.3277: 0x10] > dhcp-22.domain.com.3277: 0x10] tproxytrace Description Describes the HP EFS WAN Accelerator path in real time. Syntax tproxytrace [] Parameters The tproxytrace command takes the following options: -h (help). Print this help text. -i (iface). Use this interface to send probes on. -d (depth).
In This Chapter To enter enable-mode 3 - ENABLE-MODE COMMANDS CHAPTER 3 Enable-Mode Commands This chapter is a reference for enable-mode commands. Enable-mode commands are commands that display process information. 1. Connect to the CLI. For detailed information, see “Connecting to the CLI” on page 19. 2. To enter enable-mode, at the system prompt enter: host > enable host # To enter enable-mode, enter enable. For information about the enable command, see “enable” on page 23.
28 “show configuration full” on page 34 “show configuration running” on page 35 “show connection” on page 35 “show connections” on page 36 “show datastore” on page 38 “show email” on page 38 “minna # show email Mail hub: Domain: domain.com (default) Event emails Enabled: yes No recipients configured. Failure emails Enabled: yes No recipients configured.
“show protocol cifs” on page 51 “show protocol cifs internal” on page 51 “show protocol connection” on page 52 “show protocol mapi” on page 52 “show protocol ms-sql” on page 53 “show protocol ms-sql rules” on page 53 “show pfs all-info” on page 49 “show pfs configuration” on page 50 “show pfs state shares” on page 50 “show pfs stats shares” on page 51 “show qos rules” on page 54 “show radius” on page 54 “show raid diagram” on page 54 “show raid error-msg”
configure terminal Description Enables configuration from the terminal by entering the configuration subsystem. To exit the configuration subsystem, type exit. The no command option disables terminal configuration. Syntax configure terminal Parameters None Example minna # configure terminal minna (config) # debug generate dump Description Generates a file to debug the HP EFS WAN Accelerator.
Example minna #file debug-dump delete sysdump-minna-20040302-234632.tgz minna # Description Moves, deletes, or uploads HP EFS WAN Accelerator performance statistics in a comma separated value (CSV) file. You must export the performance statistics using the export stats command.
restart Description Restarts the HP EFS WAN Accelerator service. If the clean option is specified, the data store is cleared before restart occurs. Syntax restart [clean] Parameters clean Example Empties the data store before rebooting the system. minna # restart Terminating the process.... Relaunching the process. show aaa Description Displays the authentication methods used for log in.
show bootvar Parameters None Example minna # show bootvar Installed images: Partition 1: rbtsh/linux columbia Partition 2: rbtsh/linux Columbia Last boot partition: Next boot partition: #1 2004-02-07 19:24:24 root@test:CVS_TMS/HEAD #2 2004-02-13 17:30:17 root@test:CVS_TMS/HEAD 1 1 show cli Description Displays current CLI settings. Syntax show cli Parameters None Example minna # show cli Current inactivity timeout is 15 minutes show clock Description Displays current date and time.
interface primary ip address 10.0.0.3 /16 ## ## Routing configuration ## ip default-gateway "10.0.0.1" ## ## Other IP configuration ## hostname "minna" ip domain-list domain.com ip domain-list domain.com ip name-server 10.0.0.
show configuration running Displays running configuration settings. The show configuration running full command displays all settings, including default settings. Syntax show configuration running [full] Parameters full Example Displays complete running configuration settings. minna # show configuration running ## ## Network interface configuration ##(displays running configuration; this is a partial example.) show connection Description Displays information about a single connection.
show connections 36 Description Displays connections running through the HP EFS WAN Accelerator. A U is displayed next to the appliance name if the connection is in an unknown state.
Parameters Specifies the total active connections optimized. A U is displayed next to the appliance name if the connection is in an unknown state. passthrough Specifies the total connections passed through, unoptimized. A U is displayed next to the appliance name if the connection is in an unknown state. opening Specifies the total half-opened active connections. A halfopened connection is a Transmission Control Protocol (TCP) connection in which the connection has not been fully established.
Total: 2313 show datastore Description Displays current data store settings. Syntax show datastore Parameters None Example minna # show datastore Enable datastore wrap-around notification: Expected period (days) before datastore wrap-around: Automated Online datastore synchronization: Automated Online datastore server: Automated Online datastore peer ip address: Automated Online datastore port: Automated Online datastore reconnect seconds: no 1 no no 0.0.0.
show files debug-dump Displays HP EFS WAN Accelerator performance statistics in a Comma Separated Value (CSV) format. Syntax show files debug-dump Parameters Example Specifies the filename. meow-mix # show files debug-dump sysinfo-sysdump-meow-mix-20050725-183016.txt sysdump-meow-mix-20050606-140826.tgz show files stats Description Displays HP EFS WAN Accelerator performance statistics in a CSV format.
Parameters None Example minna # show hardware Hardware Revision: B Mainboard: Series 3000/5000 motherboard, ................. CMP-00072 Slot 0: 4 Port Copper GigE Network Bypass Card, ....... CMP-00074 Slot 1: (Empty) Slot 2: (Empty) Slot 3: (Empty) Slot 4: 6 Port SATA RAID I/O Card, .................... CMP-00014 Slot 5: (Empty) show hosts Description Displays system hosts. Syntax show hosts Parameters None Example minna # show hosts Hostname: minna Name server: 10.0.0.
show info Displays the system status, including the running state of the HP EFS WAN Accelerator. Syntax show info Parameters None Example minna # show info Status: Config: Appliance Up Time: Service Up Time: Temperature (C): Serial: Model: Revision: Version: minna # Healthy working 2d 3h 48m 22s 21h 35m 42s 43 S1200036332 5010 A rapanui-flamebox show in-path Description Displays current in-path configuration settings.
show in-path neighbor Description Displays current connection forwarding settings. For detailed information, see “inpath neighbor enable” on page 95. Syntax show in-path neighbor Parameters None Example minna # show in-path neighbor Connection forwarding Enabled: no Connection forwarding Port: 7850 Keepalive Count: 3 Keepalive Interval: 10 show in-path oop-all-port Description Displays ports for failover deployments using PBR with CDP to redirect traffic to the backup HP EFS WAN Accelerator.
Example show interfaces Description Displays the running state settings (which might be different due to Dynamic Host Configuration Protocol (DHCP)) and statistics. Syntax show interfaces [] | [brief | configured] Parameters Example Specifies the name of the interface. brief Displays the running state settings without statistics. configured Displays configured settings for the interface. minna # show interfaces Interface lo state Up: yes IP address: 127.0.0.1 Netmask: 255.0.
RX packets: RX mcast packets: RX discards: RX errors: RX overruns: RX frame: TX bytes: TX packets: TX discards: TX errors: TX overruns: TX carrier: TX collisions: Interface aux state Up: IP address: Netmask: Speed: Duplex: Interface type: MTU: HW address: RX bytes: RX packets: RX mcast packets: RX discards: RX errors: RX overruns: RX frame: TX bytes: TX packets: TX discards: TX errors: TX overruns: TX carrier: TX collisions: 7454 0 0 0 0 0 63464 559 0 0 0 0 0 yes UNKNOWN UNKNOWN ethernet 1500 00:E0:81:52:
default minna # 0.0.0.0 10.0.0.1 Description Displays IP Security Protocol (IPSec) settings. IPsec security support must also be running when IP security is enabled, if both are not enabled a problem could result with your security settings.
Name: myjob Comment: this is a text Absolute range: Commands: show info. show connections. show version. show jobs Description Displays a list of all jobs. Syntax show jobs Parameters None Example minna # show jobs % No jobs configured. show licenses Description Displays active licenses.
Example minna # show limit bandwidth Max rate: 4000 kb/s wan0_0 : disabled primary: disabled 3 - ENABLE-MODE COMMANDS show log Description Displays system logs. Syntax show log [continuous | files | matching] Parameters continuous Displays the log continuously, similar to the tail -f command. files Displays a list of log files or a specific log file. matching Displays a list of matching log files.
Log rotation frequency: daily minna # show ntp Description Displays Network Time Protocol (NTP) settings. Syntax show ntp Parameters None Example minna # show ntp NTP enabled: yes No NTP peers configured. NTP server: 192.6.38.127 (version 4) NTP server: 66.187.224.4 (version 4) NTP server: 66.187.233.4 (version 4) show out-of-path Description Displays current out-of path configuration settings.
show port-label Displays configured port labels. Syntax show port-label [] [Secure | Interactive] Parameters Specifies the port label name. Secure Specifies default port label for secure ports. The HP EFS WAN Accelerator automatically pass-through traffic on commonly secure ports (for example, ssh, https, and smtps). For a list of ports forwarded, see Appendix B, “HP EFS WAN Accelerator Ports.” If you do not want to forward secure ports, you must delete the default Secure in-path rule.
show pfs configuration Description Displays PFS configuration settings. Syntax show pfs configuration [filer |shares [local-name ]] Parameters Example filer Displays PFS settings for the HP EFS WAN Accelerator (the proxy-filer). shares [local-name ] Displays the PFS settings for all the shares or the local share specified. minna # show pfs configuration filer PFS enabled: yes Domain Name/Realm: perf1cs2.
show pfs stats shares Displays PFS share statistics. Syntax show pfs stats shares [local-name ] Parameters local-name Example Specifies the name of the local share for which to display statistics.
Max Random Read Ahead File Size: Max Random Read Ahead Sequence Window: Max Memory for File Data: DCE RPC Optimization: Holdback Overlapped Open: Idle FOI Optimization: Max Pending Queue Length: Use Allocation Block Size: Read Ahead Increment Size: Asynchronous Write Close Ok: Optimize invalid trans2 setfileinfo request: Prediction Enabled: Prediction Depth: Prediction Max Entries: Prediction Max Graphs: Prediction Max Last Pids: Prediction Threshold: Prediction Idle Timeout: Prediction Idle Timeout RTT Mul
NSPI Port: 7840 MAPI/Exchange 2003 Support: yes Description Displays the Microsoft Structured Query Language (MS-SQL) blade support settings. Syntax show protocol ms-sql Parameters None Example minna # show protocol ms-sql Enable entire MS-SQL blade: MS-SQL server port: MS-SQL number of preacknowledgement: MS-SQL prefetch fetch-next: yes 1433 5 yes show protocol ms-sql rules Description Displays the MS-SQL rules.
5 replace MSP_DATE_FIELDS (this is a partial example) show qos rules Description Displays Quality of Service (QoS) rules. Syntax show qos rules Parameters None Example minna # show qos rules Rule Source Destination Port DSCP ----- ------------------ ------------------ --------------- ---def all all all refl ---------------------------------------------------------------0 user added rule(s) show radius Description Displays Remote Authentication Dial-In User Service (RADIUS) configuration settings.
3 - ENABLE-MODE COMMANDS series 5000 layout: [=======][=======][=======][=======] [ 9 ][ 10 ][ N/A ][ S ] [=======][=======][=======][=======] -----------------------------------[=======][=======][=======][=======] [ 5 ][ 6 ][ 7 ][ 8 ] [=======][=======][=======][=======] ----------------------------------[=======][=======][=======][=======] [ 1 ][ 2 ][ 3 ][ 4 ] [=======][=======][=======][=======] show raid error-msg Description Displays the RAID disk drives that are not functioning.
Syntax show service authentication Parameters None Example minna # show service authentication Authentication Service: Not Enabled show service connection pooling 56 Description Displays the HP EFS WAN Accelerator connection pooling settings.
show service neural-framing Displays neural-framing settings. Syntax show service neural-framing Parameters None 3 - ENABLE-MODE COMMANDS Description minna # show service neural-framing Enable Computation of Neural heuristics: no minna # show snmp Description Displays current Simple Network Management Protocol (SNMP) server settings.
show stats Description Displays system statistics.
show tacacs Displays Terminal Access Controller Access Control System (TACACS+) settings. Syntax show tacacs Parameters None Example minna # show tacacs TACACS+ defaults: key: timeout: 3 retransmit: 1 No TACACS+ servers configured. 3 - ENABLE-MODE COMMANDS Description show tcp highspeed Description Displays high-speed TCP (HSTCP) settings. The HSTCP feature is only available on the HP EFS WAN Accelerator, model DL380-5010.
show version Description Displays the installed software version, including build number. Syntax show version [concise] Parameters concise Example Displays the installed software version without build information. #minna # show version Product name: rbtsh/linux Product release: columbia Build ID: #1 Build date: 2004-02-07 19:24:24 Built by: root@releng show version history Description Displays history of image upgrades. Syntax show version history Example #minna # show version history rbt_sh 2.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL 3 - ENABLE-MODE COMMANDS HTTPS enabled: yes HTTPS port: 443 Inactivity timeout: 15 minutes Session timeout: 60 minutes Session renewal threshold: 30 minutes 61
show web prefs Description Displays current Web preferences. Syntax show web prefs Parameters None Example minna # show web prefs Log: Lines Per Page: 100 slogin Description Enables log in to another shell using Secure Shell (ssh). To view options, enter slogin at the system prompt. Syntax slogin [] Parameters Example Specifies slogin options. To view options, enter slogin at the system prompt.
Parameters If you do not specify a filename, a filename is automatically created: reportname-data-time.csv. If you do not specify the file extension (.csv), it is automatically appended to the new file. Usage before
64 3 - ENABLE-MODE COMMANDS
In This Chapter Configuration-Mode Commands This chapter is a reference for configuration-mode commands. Configuration-mode commands set configuration properties for the HP EFS WAN Accelerator. To execute configuration-mode commands, you must first enter enable-mode. To enter configurationmode 1. Connect to the CLI. For detailed information, see “Connecting to the CLI” on page 19. 2. To enter enable-mode, at the system prompt enter: host> enable 3.
66 “clock set” on page 76 “clock timezone” on page 76 “configuration copy” on page 76 “configuration delete” on page 77 “configuration fetch” on page 77 “configuration jump-start” on page 78 “configuration merge” on page 78 “configuration move” on page 79 “configuration new” on page 80 “configuration revert saved” on page 80 “configuration switch-to” on page 80 “configuration upload” on page 81 “configuration write” on page 81 “datastore notification e
“file stats upload” on page 89 “file tcpdump” on page 89 “file tcpdump delete” on page 89 “file tcpdump upload” on page 90 “hardware ecc-mem-check enable” on page 90 “hardware upgrade model” on page 90 “hostname” on page 91 “image boot” on page 91 “image delete” on page 91 “image fetch” on page 91 “image install” on page 92 “image move” on page 92 “in-path cdp enable” on page 92 “in-path cdp holdtime” on page 93 “in-path cdp interval” on page 93 “i
68 “ip default-gateway” on page 107 “ip domain-list” on page 107 “ip host” on page 108 “ip in-path route” on page 108 “ip in-path-gateway” on page 108 “ip name-server” on page 109 “ip route” on page 109 “ip security authentication policy” on page 110 “ip security enable” on page 110 “ip security encryption policy” on page 110 “ip security peer ip” on page 111 “ip security pfs enable” on page 111 “ip security rekey interval” on page 112 “ip security sha
“ntp server” on page 120 “out-of-path enable” on page 121 “peer” on page 121 “pfs auto-launch enable” on page 122 “pfs configure” on page 123 “pfs enable” on page 123 “pfs local-password” on page 125 “pfs security-sign” on page 125 “pfs share cancel-event” on page 126 “pfs share configure” on page 126 “pfs share enable” on page 128 “pfs share manual-sync” on page 128 “pfs share modify” on page 128 “pfs share stop” on page 129 “pfs share sync” on page 1
70 “protocol ms-sql port” on page 138 “protocol ms-sql query-act rule-id action-id” on page 138 “protocol ms-sql query-arg-act rule-id action-id arg-offset expr” on page 139 “protocol ms-sql rpc-act rule-id action-id” on page 140 “protocol ms-sql rpc-arg rule-id arg-offset expr” on page 142 “protocol ms-sql rpc-arg-act rule-id arg-offset expr” on page 141 “protocol ms-sql rpc-rule rule-id app-name-regex” on page 142 “protocol ms-sql support-app” on page 143 “qos move-rule
“stats alarm linkstate enable” on page 156 “stats chd” on page 156 “stats clear-all” on page 157 “stats export” on page 157 “stats sample” on page 157 “stats settings bandwidth” on page 158 “tacacs-server host” on page 158 “tacacs-server key” on page 159 “tacacs-server retransmit” on page 160 “tacacs-server timeout” on page 160 “tcp connection send keep-alive” on page 160 “tcp connection send reset” on page 161 “tcp highspeed enable” on page 161 “terminal”
aaa authentication login default Description Configures Remote Authentication Dial-In User Service (RADIUS) or Terminal Access Controller Access Control System (TACACS+) login settings. The order in which the methods are specified is the order in which the authentication is attempted. The no aaa command option clears all authentication states and returns user authentication to the local username database.
Usage The order determines how the remote user mapping behaves. If the authenticated user name is valid locally, no mapping is performed.The setting has the following behaviors: remote-first. If a local-user mapping attribute is returned and it is a valid local user name, map the authenticated user to the local user specified in the attribute. If the attribute is not present or not valid locally, use the username specified by the default-user command. (This is the default behavior.) remote-only.
Syntax banner login motd Parameters Example Specifies the login or MOTD message. minna (config) # banner motd this is a test minna (config) # boot system Description Boots the specified partition the next time the HP EFS WAN Accelerator is rebooted. Syntax boot system Parameters Example Specifies the partition to boot: 1 or 2.
cli default auto-logout Sets keyboard inactivity time-out for automatic log out. The no command option disables the automatic logout feature. Syntax cli default auto-logout Parameters Example Specifies the number of minutes before log out occurs. minna (config) # cli default auto-logout 11 minna (config) # cli default paging enable Description Sets ability to view text, one screen at a time. The no command option disables paging.
Example minna (config) # cli session auto-logout 20 minna (config) # clock set Description Sets the system time and date. Syntax clock set { | } Parameters Example Specifies the hour, minutes, and seconds. Specifies the year, month, and day. minna (config) # clock set 12:34:55 minna (config) # clock timezone Description Sets the current time zone. The default value is Greenwich Mean Time (GMT-offset).
configuration delete Deletes a configuration file. For an example of usage, see “configuration merge” on page 78. Syntax configuration delete Parameters Example Specifies the name of the configuration file. minna (config) # configuration delete westcoast minna (config) # configuration fetch Description Downloads a configuration file over the network.
configuration jump-start Description Restarts the configuration wizard. Syntax configuration jump-start Parameters None Example minna (config) # configuration jump-start Configuration wizard. Step 1: Hostname? [telegraph] Step 2: Use DHCP? [no] Step 3: Primary IP address? [10.0.0.74] Step 4: Netmask? [255.255.0.0] Step 5: Default gateway? [10.0.0.1] Step 6: Primary DNS server? [10.0.0.2] Step 7: Domain name? [domain.
The following configuration settings are merged when you run the configuration merge command: in-path, out-of-path, protocols, statistics, CLI, email, NTP and time, Web, SNMP, and alarm. Syntax configuration merge Parameters Usage Specifies the new configuration name.
configuration new Description Creates a new, blank configuration file. Syntax configuration new Parameters Example Specifies the name of the new configuration file. minna (config) # configuration new westcoast minna (config) # configuration revert saved Description Reverts the active configuration to the last saved configuration.
configuration upload Uploads the configuration file. Syntax configuration upload [] | [] | [active] Parameters Example Specifies the location of the configuration file to download in URL, scp:// , or ftp:// format. Uploads the configuration file to a remote host in URL, scp://, or ftp:// format. Uploads the active configuration file.
datastore notification wrap-around Description Sets the number of days to elapse before sending an email message notifying you that the data in the data store has been replaced. The no command option disables notification wrap-around. Syntax datastore notification wrap-around Parameters wrap-around Example Specifies the number of days to elapse before sending an email message notifying you that the data in the data store has been replaced.
Parameters Specifies the IP address of the remote HP EFS WAN Accelerator. Specifies the port of the remote HP EFS WAN Accelerator. For example, on the new appliance: datastore receive port 7600 On the existing appliance: Usage datastore send addr port 7600 Example minna (config) # datastore send addr 10.0.0.03 minna (config) # datastore sync enable Description Enables automatic data store synchronization.
datastore sync port Description Sets the port for the peer HP EFS WAN Accelerator for which you want to replicate data on. Syntax datastore sync port Parameters Example Specifies the port of the peer HP EFS WAN Accelerator. The default value is 7744. minna (config) # datastore sync port 1234 minna (config) # datastore sync reconnect Description Sets the reconnection interval for data store synchronization. The no command option disables the reconnection interval.
Parameters 4 - CONFIGURATION-MODE COMMANDS Example Specifies the domain for email notifications (only if the email address does not contain it). minna (config) # email domain example.com minna (config) # email mailhub Description Specifies the Simple Mail Transfer Protocol (SMTP) server for email notifications. The no command option disables the SMTP server.
email notify failures enable Description Enables email notification of HP EFS WAN Accelerator failures such as core dumps. The no command option disables the email notification of failures. Syntax email notify failures enable Parameters None Example minna (config) # email notify failures enable minna (config) # email notify failures recipient Description Sets the recipient for email notification of HP EFS WAN Accelerator failures such as core dumps.
Parameters 4 - CONFIGURATION-MODE COMMANDS Example Specifies the IP address for the failover, backup appliance. The default value is 0.0.0.0. minna (config) # failover buddy addr 10.10.10.1 minna (config) # failover buddy port Description Sets the buddy, failover port. The buddy HP EFS WAN Accelerator is the failover (backup) HP EFS WAN Accelerator. If the master HP EFS WAN Accelerator fails the failover HP EFS WAN Accelerator takes over. The default value is 7820.
Parameters None Example minna (config) # failover master minna (config) # failover port Description Sets the local failover port. The failover HP EFS WAN Accelerator is the backup HP EFS WAN Accelerator. The default value is 7820. The no command option resets the local failover port to the default value. Syntax failover port Parameters Example Specifies the port number. minna (config) # failover port 2515 minna (config) # file stats delete Description Deletes statistics file.
file stats upload Uploads a statistics report file to a remote host Syntax file stats upload Parameters Example Specifies the source filename. Uploads a statistics file to a remote host in URL, scp://, or ftp:// format. minna (config) # file stats upload throughput http://www.test.
file tcpdump upload Description Upload a statistics report file to a remote host Syntax file tcpdump upload Parameters Example Specifies the source file. Uploads a statistics file to a remote host in URL, scp://, or ftp:// format. minna (config) # file tcpdump upload dump http://www.test.
hostname Sets the host name for this HP EFS WAN Accelerator. The no command option removes the hostname for this HP EFS WAN Accelerator. Syntax hostname Parameters Example Specifies the host name. Do not include the domain name. minna (config) # hostname park minna (config) # image boot Description Boots the specified system image by default. Syntax image boot Parameters Example Specifies the partition to boot: 1 or 2.
Parameters Example Specifies the location of the software image in URL, scp://, or ftp:// format. A carriage return downloads the image and gives it the same name it had on the server. Specifies the image filename. minna (config) # image fetch http://www.domain.com/v.1.0 version1.0 minna (config) # image install Description Installs the software image onto a system partition.
For detailed information about how to configure an HP EFS WAN Accelerator for PBR with CDP, see the HP StorageWorks Enterprise File Services WAN Accelerator Deployment Guide. in-path cdp enable Parameters None Example minna (config) # in-path cdp enable minna (config) # 4 - CONFIGURATION-MODE COMMANDS Syntax in-path cdp holdtime Description Configures the hold-time for CDP. This refresh period allows for a quick recovery in failover deployments with PBR and CDP.
Parameters Example Specifies the CDP interval in seconds. The default value is 1. minna (config) # in-path cdp holdtime 10 minna (config) # in-path enable Description Enables in-path support. An in-path configuration is a configuration in which the HP EFS WAN Accelerator is in the direct path of the client and the server. The no command option disables in-path support.
Parameters Specifies the in-path HP EFS WAN Accelerator for which the VLAN applies. Specifies the VLAN identification number. The VLAN identification number is a value with a range from 0-4094 (0 specifies no tagging). minna (config) #in-path interface in_path0_0 vlan 26 minna (config) # in-path kickoff Description Resets open connections upon start up. The no command option disables the in-path kickoff feature.
If there are more than two possible paths, additional HP EFS WAN Accelerators must to be installed on each path and configured as neighbors. Neighbors are notified in parallel so that the delay introduced at connection setup is equal to the time it takes to get an acknowledgement from the furthest neighbor. For detailed information about connection forwarding deployments and how to configure them, see the HP StorageWorks Enterprise File Services WAN Accelerator Deployment Guide.
in-path neighbor keepalive count Sets the keep-alive messages before terminating connections with the neighbor HP EFS WAN Accelerator for TCP connection forwarding. Syntax in-path keepalive count Parameters Example Specifies the number of keep-alive messages. The default value is 3.
Virtual in-path failover deployments require CDP on the HP EFS WAN Accelerator to bypass the HP EFS WAN Accelerator that is down. CDP is proprietary protocol used by Cisco routers and switches to obtain neighbor IP addresses, model, IOS version, and so forth. The protocol runs at the Open System Interconnection (OSI) layer 2 using the 802.3 Ethernet frame.
In serial cluster or cascade deployments: A cluster can be created on either the client side or on the server side. The peering rules table is a ordered list of rules and the first rule that matches the rule is applied. In the case of a cascade cluster, only pass-through peering rules are used.
in-path peering move-rule Description Moves an in-path peering rule in serial cluster deployments. Syntax in-path peering move-rule to Parameters Example Specifies the rule number. minna (config) # in-path peering move-rule 3 to 1 in-path rule auto-discover Description Adds an in-path, auto-discovery rule. The HP EFS WAN Accelerator automatically intercepts and optimizes traffic on all IP addresses (0.0.0.0) and ports (all).
neural-mode • never. Never use the Nagle algorithm. All the data is immediately encoded without waiting for timers to fire or application buffers to fill past a specified threshold. Neural heuristics are computed in this mode but are not used. • always. Always use the Nagle algorithm. This is the default setting (always wait 6 ms). All data is passed to the codec which attempts to coalesce consume calls (if needed) to achieve better fingerprinting.
in-path rule deny Description Denies connections for the source network and destination network, when packets for connections match the in-path rule the HP EFS WAN Accelerator actively tries to reset the connection. Syntax in-path rule deny {scraddr dstaddr dstport rulenum } [vlan ] Parameters Example srcaddr Specifies the source IP address. dstaddr Specifies the destination IP address.
Parameters srcaddr Specifies the source IP address. dstaddr Specifies the destination IP address. dstport Specifies the destination port for this rule. The destination port can be a single port (number), a port label, or all specifies all ports. srcaddr Specifies the source IP address. rulenum Specifies the rule number: 1-N, start, or end. The rule inserts itself at the rule specified.
neural-mode Enables neural framing in the HP EFS WAN Accelerator. Enabling neural framing makes your WAN more efficient by gathering data to select the optimal packet framing boundaries for Scalable Data Referencing (SDR). For different types of traffic, one algorithm may be better than others. There is a trade-off between the latency added to the connection and the compression and SDR performance. The choices are: • never. Never use the Nagle algorithm.
in-path rule move Moves an in-path rule. Syntax in-path rule move to 4 - CONFIGURATION-MODE COMMANDS Description Parameters Example Specifies the rule number or start or end. minna (config) # in-path rule move 25 to 10 minna (config) # in-path rule pass-through Description Adds an in-path, pass-through rule. Specify a subnet for which you do not want to optimize traffic. The no command option disables the in-path rule.
when the HP EFS WAN Accelerator is in a different subnet from the client and server. The no command option disables simplified routing. Without simplified routing if an HP EFS WAN Accelerator is installed in a different subnet from the client or server you must define one router as the default gateway and static routes for the other routers so that traffic is not redirected back through the HP EFS WAN Accelerator.
Parameters Specifies the interface name: aux, lan0_0, wan0_0, primary, in-path0_0. Each interface has the following configuration options: • dhcp. Enables Dynamic Host Configuration Protocol (DHCP) on the interface. • dhcp renew. Renews DHCP for this interface. • duplex . Specifies the duplex speed: auto, full, half. The default value auto. • ip address . Specifies IP address for the interface. • mtu . Configures the Maximum Transmission Unit (MTU).
ip host Description Adds an entry to the static host table. The no command option removes an entry from the static host table. Syntax ip host Parameters Example Specifies the host name. Specifies the IP address. minna (config) # ip host park 10.10.10.1 minna (config) # ip in-path-gateway Description Configures the primary, in-path, default gateway. The no command option disables the default gateway. NOTE: The interface parameter is required for version 2.x.
Parameters Specifies the interface name: aux, lan0_0, wan0_0, primary, inpath0_0. Specifies the network prefix. Specifies the netmask. Specifies the next hop IP address in this route or WAN gateway. Usage In-path interfaces use routes from an in-path route table. To configure in-path routes you set a new in-path route that points to your WAN gateway.
ip security authentication policy Description Sets the authentication algorithms in order of priority. You must specify at least one algorithm. The algorithm is used to guarantee the authenticity of each packet. Syntax ip security authentication policy [] Parameters Specifies the primary policy (method 1): • hmac_md5. Message-Digest algorithm 5 (MD5) is a widely-used cryptographic hash function with a 128-bit hash value. The default value is hmac_md5. • hmac_sha1.
Syntax ip security encryption policy [] Parameters Specifies the primary algorithm: • des. The Data Encryption Standard (DES). The default value is des. • null_enc. The null encryption algorithm. Example Specifies the alternate algorithm: des and null_enc. minna (config) # ip security encryption policy des minna (config) # ip security peer ip Description Sets the peer HP EFS WAN Accelerator for which you want to make a secure connection.
ip security rekey interval Description Sets the time between quick-mode renegotiation of keys by Internet Key Exchange (IKE). IKE is a method for establishing a security association (SA) that authenticates users, negotiates the encryption method, and exchanges a secret key. IKE uses public key cryptography to provide the secure transmission of a secret key to a recipient so that the encrypted data can be decrypted at the other end. The default value is 240.
The no job command command option deletes the CLI command from the job. The no job command option removes all statistics associated with the specified job. If the job has not executed, the timer event is cancelled. If the job was executed, the results are deleted along with the job statistics. Syntax job command Parameters Example Specifies the job identification number.
Syntax job date-time-pairs : [] | [] Parameters Example Specifies the job identification number. : [] | [] Specifies the date and time for the job to execute. An hour and minute must be specified; optionally, you can specify seconds or the date. minna (config) # job 10 date-time-pairs 04:30:23 minna (config) # job enable Description Enables CLI command execution (that is, a job) for a specified time in the future.
Parameters minna (config) # job 10 execute minna (config) # job fail-continue Description Execute all commands in a job. The no command option disables this command. Syntax job fail-continue Parameters Example Specifies the job identification number. minna (config) # job 10 fail-continue minna (config) # job name Description Specifies a name for the job. The no command option deletes the job name.
license install Description Installs a new software license key. The no command option disables this command. Syntax license install Parameters Example Specifies the license key. minna (config) # license install SH10_B-0000-1-7F14-FC1F minna (config) # limit bandwidth max Description Enables bandwidth thresholds on the specified interface at the specified speed. The no command option disables the bandwidth thresholds.
Syntax limit connection Parameters Example Specifies the number of connections. The default value is 4096. minna (config) # limit connection 3000 minna (config) # logging Description Adds a remote syslog server to the system. The no command option removes a remote syslog server from the system. Syntax logging [trap ] Parameters Example Specifies the IP address for the System Log (syslog) server.
Example minna (config) # logging files rotation criteria frequency weekly minna (config) # logging files rotation criteria size Description Sets the size, in MB, of the log file before rotation occurs. The default value is 0 (unlimited). Syntax logging files rotation criteria size Parameters Example Specifies the size of the log file to save in MB.
Parameters Specifies the logging severity level. The follow severity levels are supported: 4 - CONFIGURATION-MODE COMMANDS • emerg. Emergency, the system is unusable. • alert. Action must be taken immediately. • crit. Critical conditions. • err. Error conditions. • warning. Warning conditions. • notice. Normal but significant condition. • info. Informational messages. • debug. Debug-level messages.
Example minna (config) # ntpdate 10.10.10.1 minna (config) # ntp disable Description Disables NTP support. The no command option enables NTP support. Syntax ntp disable Parameters None Example minna (config) # ntp disable minna (config) # ntp enable Description Enables NTP support. The no command option disables NTP support. Syntax ntp enable Parameters None Example minna (config) # ntp enable minna (config) # ntp peer Description Enables an NTP peer.
Parameters Specifies the NTP server to synchronize with. version Specifies the version number for NTP. You do not need to specify the version number for the no ntp server command. minna (config) # ntp server 10.10.10.1 minna (config) # out-of-path enable Description Enables an out-of-path configuration. The default value is false. The no command option disables out-of-path configuration.
Version 2.1 HP EFS WAN Accelerators do not require any configuration changes because the 2.1 appliances understand the protocols used in the 1.2 appliances. However, as the client-side HP EFS WAN Accelerator, by default 2.1 HP EFS WAN Accelerator will initiate connections with the server-side HP EFS WAN Accelerator using the new version 6 service protocol. This disrupts connectivity with any 1.2 server-side HP EFS WAN Accelerator peers. To remedy this situation, 2.
Example minna (config) # pfs auto-launch enable pfs configure Configures the proxy file share on the HP EFS WAN Accelerator. PFS is not supported on the Model 500, 510. These models do not have the necessary disk capacity to perform PFS. PFS supports only Windows 2000 and above domains For detailed information about PFS, see the HP StorageWorks Enterprise File Services WAN Accelerator Deployment Guide.
NOTE: PFS is not supported on the Model 500, 510. These models do not have the necessary disk capacity to perform PFS. PFS supports only Windows 2000 and above domains PFS is not appropriate for all network environments. For example, in a collaborative work environment when there are many users reading, writing, and updating a common set of files and records you should consider not enabling PFS. You must carefully evaluate whether PFS is suitable for your network needs.
Syntax pfs enable Parameters None Example minna (config) # pfs enable minna (config) # pfs local-password Description Sets the local administrator password for PFS support. Syntax pfs local-password Parameters Example Specifies the local administrator password for PFS. minna (config) # pfs local-password pfstest minna (config) # pfs security-sign Description Specifies the definition of Windows Secure Message Block (SMB) signing on your client machine.
pfs share cancel-event Description Cancels a PFS file share on the HP EFS WAN Accelerator. Syntax pfs share cancel-event {local-name } Parameters local-name Example Specifies the local share name on the HP EFS WAN Accelerator. A local share is the data volume exported from the origin server to the HP EFS WAN Accelerator.
Parameters Specifies the local share name on the HP EFS WAN Accelerator. A local share is the data volume exported from the origin server to the HP EFS WAN Accelerator. remote-path Specifies the path name for the share on the origin server. server-name Specifies the server name of the origin server. This is the server typically located at a data center which hosts the origin file volumes. mode Specifies the mode: • broadcast.
pfs share enable Description Enables a PFS share. The no command option disables the proxy-file share. Syntax pfs share enable local-name Parameters local-name Example Specifies the local name of the share on the HP EFS WAN Accelerator to enable. minna (config) # pfs share enable test minna (config) # pfs share manual-sync Description Manually synchronizes a PFS share on the HP EFS WAN Accelerator.
Parameters Specifies the local name of the share on the HP EFS WAN Accelerator to modify. mode A local or broadcast share can have its mode downgraded to standalone. A standalone share cannot have its mode changed. frequency Specifies how frequently you want to propagate shares: • For a local mode the minimum is 60 seconds; there is no upper limit. • For broadcast mode the minimum is 1800 seconds; there is no upper limit. • The frequency is not applicable to standalone shares.
pfs share verify Description Verifies a PFS share. Syntax pfs share verify local-name Parameters local-name Example Specifies the name of the share. minna (config) # pfs share verify local-name test minna (config) # pfs start Description Starts the PFS service. Syntax pfs start Parameters None Example minna (config) # pfs start minna (config) # port-label Description Sets a port label for a series of ports. The no command option disables the port label.
(config)# port-label FOO port 2-9,14 If you want to add some more ports to the FOO port label: (config)# port-label FOO port 10-20 Example minna (config) # port-label foo ports 22,443,990-995,3077-3078 minna (config) # protocol cifs disable write optimization Description Disables Common Internet File System (CIFS) write-through. The no command option enables CIFS write-through.
protocol cifs prepop enable Description Enables CIFS transparent prepopulation. The no command option disables transparent prepopulation. Syntax protocol cifs prepop enable Parameters None Example minna (config) # protocol cifs prepop enable minna (config) # protocol cifs secure-sig-opt enable Disables SecuritySignature negotiations between a Windows client and the server. By default the Secure-CIFS feature is disabled.
Example minna (config) # protocol connection lan receive buf-size 1000000 minna (config) # Description Sets the LAN send buffer size for HSTCP support. You must increase your LAN buffer size to 1 MB. For detailed information about configuring HSTCP, see “tcp highspeed enable” on page 161. Syntax protocol connection lan send buf-size Parameters Example Specifies the WAN default-send buffer size. The default value is 81920.
Syntax protocol connection wan send def-buf-size Parameters Usage Specifies the WAN default-send buffer size. The default value is 262140. To configure your WAN buffer size you must: increase the WAN buffers to 2 Bandwidth Delay Product (BDP) or 10 MB. You can calculate the BDP WAN buffer size.
listen on a single pre-defined port so that access to ports can be controlled or locked down on the firewall. The no command option disables NSPI support. Port 135. The Microsoft end-point mapper port Port 7830. The HP EFS WAN Accelerator port used for Exchange traffic Port 7840.
Parameters Example Specifies the incoming MAPI port number. The default value is 7830. minna (config) # protocol mapi port 2125 minna (config) # protocol mapi prepop enable Description Enables MAPI transparent prepopulation support. Transparent prepopulation allows email data to be delivered between an Exchange server and the client-side HP EFS WAN Accelerator while the Outlook client is offline.
Syntax protocol ms-sql enable Parameters None protocol ms-sql fetch-next enable Description Enables pre-fetching requests to request the next row in MS Project. The server-side HP EFS WAN Accelerator pre-fetches sequential row results and the client-side HP EFS WAN Accelerator caches them. You decide which cursors or queries are cacheable. The no ms-sql fetch-next command option removes pre-fetching requests.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications, contact HP professional services. Syntax protocol ms-sql num-preack Parameters > Specifies the maximum number of pre-acknowledgements. The default value is 5. minna (config) # protocol ms-sql num-preack 5 minna (config) # protocol ms-sql port Description Specifies the server port to listen on for SQL requests. The default port is 1433. The no command option disables the SQL server port.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional services—improper use can result in undesirable effects. Syntax protocol ms-sql query-act rule-id action-id {num-reps miss-policy | invalidate {flush-all miss-policy | flush-rule miss-policy }} Parameters rule-id Specifies the rule identification number that uniquely identifies the rule.
Parameters Example rule-id Specifies the rule identification number that uniquely identifies the rule. action-id Specifies the action identification number that uniquely identifies this action within the rule. arg-offset Specifies the SQL query argument to be modified. expr Specifies the SQL query expression.
Parameters Specifies the rule identification number that uniquely identifies the rule. action-id Specifies the action identification number that uniquely identifies this action within the rule. num-reps Specifies how many times the action is to be repeated invalidate Invalidates the specified action: flush-all or flush-rule. flush-all miss-policy Specifies the cache miss policy. flush-rule miss-policy Specifies the cache rule policy.
protocol ms-sql rpc-arg rule-id arg-offset expr Description Specifies how the RPC argument should be modified when prefetching queries. The no command option disables the RPC argument. IMPORTANT: The commands for MS-SQL support must be implemented by HP professional services—improper use can result in undesirable effects. NOTE: If you are interested in enabling the MS-SQL blade for other database applications, contact HP professional services.
[rpc-query-regex ] | [cursor-type ]]} Parameters Specifies the rule identification number that uniquely identifies the rule. app-name-regex Specifies the client application name (standard string expression). rpc-id Specifies the RPC identifier. num-params Specifies the expected number of parameters in the SQL query. rpc-name-regex Specifies the RPC name (standard string expression).
Parameters Example Specifies the name of the application to be supported by the MS-SQL blade. minna (config) # protocol ms-sql support-app msproject minna (config) # qos move-rule Description Moves a QoS rule to the rule number specified. Syntax qos move-rule Parameters Example Specifies the rule number to insert before.
Syntax qos rule src dest [dest-port ] dscp rulenum Parameters Specifies the source IP subnet. You can use wild cards in this field. Specifies the destination IP subnet. You can use wild cards in this field. dest-port Specifies the port on which to monitor. To configure QoS mapping for the FTP data channel, specify port 20. To configure QoS mapping for the MAPI data channel, specify port 7830 and the corresponding DSCP level.
If no radius-server host {hostname | ip-address} is specified, all radius configurations for the host are deleted. The no radius-server host {hostname | ipaddress} auth-port {port} command can be specified to refine which host is deleted, as the previous command deletes all RADIUS servers with the specified IP address. RADIUS servers are tried in the order they are configured. Example minna (config) # radius-server host 10.0.0.
Parameters 4 - CONFIGURATION-MODE COMMANDS Example Sets the timeout for retransmitting a request to any RADIUS server. The range is 1-60. The default value is 3. minna (config) # radius-server timeout 30 minna (config) # reset factory reload Description Resets system to factory defaults and reboots the system.
service connection pooling Description Enables a pool of connections to a peer HP EFS WAN Accelerator. Connection pooling enables you to save an extra round-trip for the initial connection setup. Connection pooling is useful for protocols which open a number of short lived connections such as Hypertext Transport Protocol (HTTP). The no command option disables connection pooling. NOTE: Any change in the connection pooling parameter requires you to restart the HP EFS WAN Accelerator service.
service default-port Sets the default service port you want to use for connection pooling. Syntax service default-port 4 - CONFIGURATION-MODE COMMANDS Description Parameters Example Specifies the new port. minna (config) # service default-port 7800 minna (config) # service enable Description Starts the HP EFS WAN Accelerator service.
In the out-of-path deployment, you define which port to listen to on the server HP EFS WAN Accelerator and you define an in-path fixed-target rule on the client HP EFS WAN Accelerator to point to the service ports for the traffic you want to apply QoS to. You cannot map the following ports. Syntax Port Description 22 Reserved for Secure Shell (SSH). 80, 443, and 446 Reserved for the HP EFS WAN Accelerator Manager. 139, 445, and 977 Reserved for Proxy File Service (PFS).
service port Description You can configure multiple service ports on the server-side of the network for multiple QoS mappings. You define a new service port and then map CIFS ports to that port, so that QoS configuration settings that are on the router are applied to that service port. The no command option disables the service port. Syntax service port Parameters Example Specifies the new port to add. The default service ports are 7800 and 7810.
snmp-server enable Description Enables an SNMP server. The no command option disables the SNMP server or traps. Syntax snmp-server enable [traps] Parameters None Example minna (config) # snmp-server enable minna (config) # snmp-server host Description Sets the SNMP server host, traps, and version. The no command option disables the SNMP server host.
snmp-server listen interface Description For example, to add an interface to the list to listen on: snmp-server listen interface To remove an interface so that it is no longer listened to: no ssh server listen interface NOTE: This option is available in the CLI only. Syntax snmp-server listen interface Parameters Example Specifies a comma separated list of IP addresses. minna (config) # snmp-server listen interface 10.0.0.1, 10.0.0.
Example minna (config) # ssh client generate user test minna (config) # ssh client user authorized-key rsakey sshv2 Description Sets the RSA (Rivest-Shamir-Adleman) encryption method by RSA Security and authorized-key for the specified Secure Shell (ssh) user. The no command option disables the authorized-key encryption method. Syntax ssh client user authorized-key rsakey sshv2 Parameters Example Specifies the public key for ssh version 2 for the specified ssh user.
ssh server listen interface To remove an interface so that it is no longer listened to: no ssh server listen interface 4 - CONFIGURATION-MODE COMMANDS NOTE: This option is available in the CLI only. Syntax ssh server listen interface Parameters Example Specifies a comma separated list of IP addresses. minna (config) # ssh server listen interface 10.1.1.1, 10.0.0.
Syntax stats alarm { } Specifies the following types of alarms: bypass (configures all states for alarms), cpu_util_indiv, duplex_pri (primary), duplex_aux (auxiliary), duplex_lan (LAN), duplex_wan (WAN), halt_error, mismatch_peer (peer mismatch), paging (memory paging), service_error (HP EFS WAN Accelerator service error), store_corruption (data store corruption), sw_version (software version mismatch), warning_temp (CPU temperature).
Example minna (config) # stats chd rbt_month minna (config) # Description Clears all statistics. Syntax stats clear-all Parameters None Example minna (config) # stats clear-all minna (config) # 4 - CONFIGURATION-MODE COMMANDS stats clear-all stats export Description Exports statistics. Syntax stats export csv after //- before //
- filename Parameters Specifies the format.
Parameters Example type Specifies the type of statistic: admission_conn, admission_mem, bypass, cpu_util, duplex_aux, duplex_lan, duplex_pri, duplex_ wan, halt_error, memory, mismatch_peer, paging, raid_error, raid_warning, rbt, rbt_kernel, service_error, store-corruption, sw-version. clear Clears all statistics for type. interval Specifies the sampling interval for this set of samples.
Parameters Specifies the TACACS+ server host name or IP address. auth-port Specifies the authorization port number. The default value is 49. timeout Sets the timeout for retransmitting a request to any TACACS+ server. The range is 1-60. The default value is 3. retransmit Specifies the number of times the client attempts to authenticate with any TACACS+ server. The default value is 1. The range is 0-5. To disable retransmissions set it to 0.
tacacs-server retransmit Description Specifies the number of times the client attempts to authenticate with any TACACS+ server. The default value is 1. The range is 0-5. To disable retransmissions set it to 0. The tacacs-server retransmit command can be overridden in a tacacs-server host command. The no command option resets the value to the default value.
Example minna (config) # tcp connection send keep-alive local-addr 10.0.0.0 local-port 1240 remote-addr 10.0.0.1 local-port 1300 minna (config) # Description Configures TCP connection tools for debugging HP EFS WAN Accelerators. Terminates connections between HP EFS WAN Accelerators so that you can debug connection problems in your network.
You need to carefully evaluate whether HSTCP will benefit your network environment. To enable HSTCP you must disable the Lempel-Ziv (LZ) compression and Scalable Data Referencing (SDR). With SDR your throughput will bottleneck between 100 and 150 Mbps, which cancels out the benefit of HSTCP. For someone with an Optical Carrier-3 line or faster, turning off SDR makes sense and allows HSTCP reach its full potential.
Syntax terminal {type | length | width } Parameters Specifies the terminal type. length Specifies the number of lines for the terminal. width Specifies the terminal width in characters. Example 4 - CONFIGURATION-MODE COMMANDS minna (config) # terminal type vt100 length 20 width 180 minna (config) # username disable Description Disables the user account so that no one can log in with a password.
Parameters Example Specifies the user login: admin or monitor. Specifies the password. The password must be at least 6 characters. minna (config) # username admin password xyzzzZ minna (config) # username password 0 Description Sets the password for the specified user. The password must be a minimum of 6 characters.The password is returned in cleartext format on the command line.
so that the HP EFS WAN Accelerators do not have to be physically in-path but can be virtually in-path. That is, the HP EFS WAN Accelerators are configured to be physically out-of-path devices while optimizing traffic as if they were in-path devices. to redirect traffic to an HP EFS WAN Accelerator or group of HP EFS WAN Accelerators to provide load balancing and failover support.
To enable failover support with WCCP groups, define the service group weight to be 0 on the backup HP EFS WAN Accelerator. If one HP EFS WAN Accelerator has a weight 0, but another one has a non-zero weight, the HP EFS WAN Accelerator with weight 0 does not receive any redirected traffic. If all the HP EFS WAN Accelerators have a weight 0, the traffic is redirected equally among them.
Specifies the combination of src-ip-hash, dst-ip-hash, src-porthash, dst-port-hash, ports-dest, ports-source that define the fields the router hash on and if certain ports should be redirected. ports Specifies a comma separated list of up to 7 ports that the router will redirect. Use only if ports-dest or ports-source service flag is set. priority Specifies the WCCP priority for traffic redirection.
web enable Description Enables the HP EFS WAN Accelerator Manager. The default value is true. The no command option disables the HP EFS WAN Accelerator Manager. Syntax web enable Parameters None Example minna (config) # web enable minna (config) # web http enable Description Enables the HTTP. The default value is true. The no command option disables the HP EFS WAN Accelerator Manager.
NOTE: This option is available in the CLI only. web http listen enable Parameters None Example minna (config) # web http listen enable minna (config) # 4 - CONFIGURATION-MODE COMMANDS Syntax web httpd listen interface Description Adds an interface to the Web server access restriction list. The no command option removes the Web interface.
Syntax web https port Parameters Example Specifies the port number. minna (config) # web https port 8080 minna (config) # web prefs log lines Description Sets the number of lines per system log page. The no command option disables the number of log lines. Syntax web prefs log lines Parameters Example Specifies the number of lines per log page.
Parameters minna (config) # web session renewal 5 minna (config) # web session timeout Description Sets the session timeout value. This is the amount of time the cookie is active. The default value is 60 minutes. The no command option resets the session timeout to the default value. Syntax web session timeout Parameters Example Specifies the number of minutes.
172 4 - CONFIGURATION-MODE COMMANDS
In This Appendix HP EFS WAN Accelerator MIB This appendix describes the HP EFS WAN Accelerator Enterprise Simple Network Management Protocol (SNMP) Message Information Block (MIB).
SNMP Traps The following table summarizes the Simple Network Management Protocol (SNMP) traps sent out from the HP EFS WAN Accelerator to configured trap receivers. Trap Description procCrash (enterprises.17163.1.1.4.1) A process has crashed and subsequently been restarted by the system. A system snapshot associated with this crash has been created on the appliance and is accessible via the CLI or Management Console. HP Technical Support may need this information to determine the cause of the crash.
Description admissionMemError (enterprises.17163.1.1.4.10) The appliance is optimizing traffic beyond its rated capability. During this event, the appliance will continue to optimize existing connections, but new connections will be passed through without optimization. admissionConnError (enterprises.17163.1.1.4.11) The appliance is optimizing a number of connections beyond its rated capability.
-Steelhead OBJECT IDENTIFIER ::= { products 1 } ---- Steelhead --system OBJECT IDENTIFIER ::= { Steelhead 1 } status OBJECT IDENTIFIER ::= { Steelhead 2 } config OBJECT IDENTIFIER ::= { Steelhead 3 } alarms OBJECT IDENTIFIER ::= { Steelhead 4 } statistics OBJECT IDENTIFIER ::= { Steelhead 5 } ---- SYSTEM --model OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Appliance model" ::= { system 1 } serialNumber OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DE
STATUS current DESCRIPTION "System clock time" ::= { status 1 } A - HP EFS WAN ACCELERATOR MIB health OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Current health" ::= { status 2 } serviceStatus OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Current service status" ::= { status 3 } serviceUptime OBJECT-TYPE SYNTAX TimeTicks MAX-ACCESS read-only STATUS current DESCRIPTION "Current service uptime" ::= { status 4 } procTable OBJECT-TYPE SYN
MAX-ACCESS read-only STATUS current DESCRIPTION "Unique name of process" ::= { procEntry 2 } procStatus OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Current state of process" ::= { procEntry 3 } procNumFailures OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Number of times process has crashed or exited unexpectedly" ::= { procEntry 4 } peerStatus OBJECT IDENTIFIER ::= { status 6 } peerTable OBJECT-TYPE SYNTAX SEQUENCE OF PeerEntry MAX-ACCES
"Hostname of peer" ::= { peerEntry 2 } A - HP EFS WAN ACCELERATOR MIB peerVersion OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "System software version of peer" ::= { peerEntry 3 } peerAddress OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-only STATUS current DESCRIPTION "IP address of peer" ::= { peerEntry 4 } peerModel OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "Model of peer" ::= { peerEntry 5 } ---- CONFIG --activeConfig OBJECT-TYPE
--- ALARMS --alarmsPrefix OBJECT IDENTIFIER ::= { alarms 0 } procCrash NOTIFICATION-TYPE OBJECTS { procIndex, procName } STATUS current DESCRIPTION "A procCrash trap signifies that a process managed by PM has crashed and left a core file. The variable sent with the notification indicates which process crashed.
storeCorruption NOTIFICATION-TYPE STATUS current DESCRIPTION "The data store is corrupted" ::= { alarmsPrefix 9 } admissionConnError NOTIFICATION-TYPE STATUS current DESCRIPTION "Admission control connections alarm has been triggered" ::= { alarmsPrefix 11 } haltError NOTIFICATION-TYPE STATUS current DESCRIPTION "The service is halted due to a software error" ::= { alarmsPrefix 12 } serviceError NOTIFICATION-TYPE STATUS current DESCRIPTION "There has been a service error.
MAX-ACCESS read-only STATUS current DESCRIPTION "Fifteen-minute CPU load in hundreths" ::= { cpuLoad 3 } cpuUtil1 OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Percentage CPU utilization, aggregated across all CPUs, rolling average over the past minute" ::= { cpuLoad 4 } connectionCounts OBJECT IDENTIFIER ::= { statistics 2 } optimizedConnections OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Current total number of optimized connections" ::=
::= { connectionCounts 6 } bandwidth OBJECT IDENTIFIER ::= { statistics 3 } bwAggInLan OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Total bytes WanToLan LAN side since last restart of service" ::= { bandwidthAggregate 1 } bwAggInWan OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Total bytes WanToLan WAN side since last restart of service" ::= { bandwidthAggregate 2 } bwAggOutLan OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS curre
bwPortInWan bwPortOutLan bwPortOutWan Unsigned32, Unsigned32, Unsigned32 } bwPort OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Port" ::= { bwPortEntry 1 } bwPortInLan OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Bytes WanToLan LAN side since last restart of service" ::= { bwPortEntry 2 } bwPortInWan OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Bytes WanToLan WAN side since last restart of service" ::= { b
misses OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Total number of misses since last restart of service" ::= { datastore 4 } END HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL 185 A - HP EFS WAN ACCELERATOR MIB hitsDisk OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Total number of hits on disk since last restart of service" ::= { datastore 3 }
186 A - HP EFS WAN ACCELERATOR MIB
In This Appendix HP EFS WAN Accelerator Ports This appendix describes the HP EFS WAN Accelerator default and supported secure ports. It contains the following sections: “Default Ports,” next “Commonly Optimized Ports” on page 189 “Commonly Excluded Ports” on page 189 “Interactive Ports Forwarded by the HP EFS WAN Accelerator” on page 189 “Secure Ports Forwarded by the HP EFS WAN Accelerator” on page 190 Default Ports The following table summarizes HP EFS WAN Accelerator default ports.
Accelerator Manager (CMC), port 22 must be passed through the firewall for it to function properly.
Commonly Optimized Ports Although these ports can vary according to your requirements, the following ports are commonly optimized and monitored for in-path and out-of-path configurations: 21 (FTP) 80 (HTTP) 139 (CIFS:NETBIOS) 445 (CIFS:TCP) 1433 (SQL:TDS) 7830 (MAPI) Commonly Excluded Ports This section summarizes the ports that are commonly excluded from optimization in the HP EFS WAN Accelerator.
The following table lists the interactive ports that are automatically forwarded by the HP EFS WAN Accelerator. Port Description 7 TCP ECHO 23 Telnet 37 UDP/Time 107 Remote Telnet Service 513 Remote Login 514 Shell 1494 Cytrix 2598 Cytrix 3389 MS WBT Server, TS/Remote Desktop 5631 PC Anywhere 5900-5903 VNC 6000 X11 Secure Ports Forwarded by the HP EFS WAN Accelerator A default in-path rule with the port label Secure is automatically created in your system.
Port Description sshell 614/tcp SSLshell ldaps 636/tcp ldap protocol over TLS/SSL (was sldap) ftps-data 989/tcp ftp protocol, data, over TLS/SSL ftps 990/tcp ftp protocol, control, over TLS/SSL telnets 992/tcp telnet protocol over TLS/SSL imaps 993/tcp imap4 protocol over TLS/SSL pop3s 995/tcp pop3 protocol over TLS/SSL (was spop3) l2tp 1701/tcp l2tp pptp 1723/tcp pptp tftps 3713/tcp TFTP over TLS The following table contains the uncommon ports automatically forwarded by the
192 Type Port Description jt400-ssl 3471/tcp jt400-ssl seclayer-tls 3496/tcp securitylayer over tls vt-ssl 3509/tcp Virtual Token SSL Port jboss-iiop-ssl 3529/tcp JBoss IIOP/SSL ibm-diradm-ssl 3539/tcp IBM Directory Server SSL can-nds-ssl 3660/tcp Candle Directory Services using SSL can-ferret-ssl 3661/tcp Candle Directory Services using SSL linktest-s 3747/tcp LXPRO.
GLOSSARY Glossary ARP. Address Resolution Protocol. An IP protocol used to obtain a node's physical address. Bandwidth. The upper limit on the amount of data, typically in kilobits per second (kbps), that can pass through a network connection. Greater bandwidth indicates faster data transfer capability. Bit. A Binary digit. The smallest unit of information handled by a computer; either 1 or 0 in the binary number system. Blade.
FDDI. Fiber Distributed Data Interface. A set of American National Standards Institute (ANSI) protocols for sending digital data over fiber optic cable. FDDI networks are token-passing networks, and support data rates of up to 100 Mbps (100 million bits) per second. FDDI networks are typically used as backbones for WideArea Networks (WANs). Filer. An appliance that attaches to a computer network and is used for data storage. Gateway.
Internet. The collection of networks tied together to provide a global network that use the TCP/IP suite of protocols. IP. Internet protocol. Network layer protocol in the TCP/IP stack that enables a connectionless internetwork service. IPsec. Internet Protocol Security Protocol. A set of protocols to support secure exchange of packets at the IP layer. IPsec has been deployed widely to implement Virtual Private Networks (VPNs). IPsec supports two encryption modes: Transport and Tunnel.
state algorithms to send routing information to all nodes in an internetwork by calculating the shortest path to each node based on a topography of the Internet constructed by each node. Each router sends that portion of the routing table (keeps track of routes to particular network destinations) that describes the state of its own links. It also sends the complete routing structure (topography). Packet. A unit of information transmitted, as a whole, from one device to another on a network. Probe.
A aaa authentication login default 72 aaa authorization map default-user 72 aaa authorization map order 72 aaa interfaces 73 Additional resources 16 arp 73 B banner 73 boot system 74 C clear arp-cache 74 CLI command negation 21 connecting 19 online help 21 overview of 20 saving configurations 22 cli clear-history 74 cli default auto-logout 75 cli default paging enable 75 cli session paging enable 75 clock set 76 clock timezone 76 configuration copy 76 configuration delete 77 configuration fetch 77 configura
H Hardware dependencies 15 hardware ecc-mem-check enable 90 hardware upgrade model 90 hostname 91 how 33 I image boot 91 image delete 91 image fetch 91 image install 92 image move 92 in-path cdp enable 92 in-path cdp holdtime 93 in-path cdp interval 93 in-path enable 94 in-path interface enable 94 in-path interface vlan tag 94 in-path kickoff 95 in-path neighbor enable 95 in-path neighbor ip address 96 in-path neighbor keepalive count 97 in-path neighbor keepalive interval 97 in-path neighbor port 97 in-pat
Q qos move-rule 144 qos rule 144 QoS, setting the FTP data channel 144 QoS, setting the MAPI data channel 144 R radius-server host 145 radius-server key 146 radius-server retransmit 146 radius-server timeout 146 Related reading 17 reload 31 reset factory reload 147 restart 32 INDEX pfs local-password 125 pfs remove share 123, 125, 126 pfs security-sign 125 pfs share cancel-event 126 pfs share configure 123, 126 pfs share enable 128 pfs share manual-sync 128 pfs share modify 128 pfs share stop 129 pfs shar
show out-of-path 48 show peer version 48 show peers 48 show pfs all-info 49 show pfs configuration 50 show pfs state shares 50 show pfs stats shares 51 show port label 49 show protocol cifs internal 51 show protocol connection 52 show protocol mapi 52 show protocol ms-sql 53 show protocol ms-sql rules 53 show radius 54 show raid error-msg 55 show service 55, 56 show service neural-framing 57 show tacacs 59 show tcp highspeed 59 show terminal 59 show version history 60 SNMP MIB, accessing 173 snmp server lis
