top-ssg140-> exec ?Īttack-db perform attack database update or checking As such, most administrators will rarely use it unless under the direction of JTAC. Typically, you use the exec command to manually force the device to execute a function that, under normal circumstances, happens automatically. The “root” admin is the only account with access to exec functions. The exec keyword has a limited but powerful set of options for managing a specific set of functions. We cover saving the image from a TFTP server later in this chapter, in Recipe 1.1. The administrator can save a copy of the image to a TFTP server or from a TFTP server: top-ssg140-> save software from flash to tftp 10.251.7.113 You can also manage the ScreenOS image via the save keyword. Save configurations (4103 bytes) to config.txt on TFTP server For example, you can have an off-box script run occasionally to log in to the device and run this command to back up the configuration: top-ssg140-> save config to tftp 10.251.7.113 config.txt Also note that the IP address for ethernet0/0 has reverted back to the ScreenOS default of 192.168.1.1/24.Īnother handy capability of save is that it allows you to save your configuration to a TFTP server. Notice that ScreenOS provides the administrator an opportunity to bail out of the reset process and save the configuration. If you forget this, and you reboot the firewall, those changes are lost. Any configuration change made via the console or a remote terminal session is not committed to flash memory until save is entered. You use the save keyword to manage the configuration stored in flash memory. Route-deny deny traffic routing back to this interface Protocol configure routing protocol parameters Manage-ip interface management ip address ![]() Group group interface into redundant interface top-ssg140-> set interface ethernet0/0 ?ĭescription configure interface description These changes occur in real time and have led many administrators to make a trip to the data center to log in via the console because an IP address or route was misconfigured or accidentally changed. The set and unset commands are the primary keywords for effecting change of the firewall configuration. Number of SW session: 56063, hw sess err cnt 0 OSPF disabled BGP disabled RIP disabled RIPng disabled mtraceīandwidth: physical 100000kbps, configured egress [gbw 0kbps mbwĬonfigured ingress mbw 0kbps, current bw 0kbps Web enabled, ident-reset disabled, SSL enabledĭNS Proxy disabled, webauth disabled, webauth-ip 0.0.0.0 Ping enabled, telnet enabled, SSH enabled, SNMP enabled Number 0, if_info 0, if_index 0, mode natĪdmin mtu 0, operating mtu 1500, default mtu 1500 ![]() top-ssg140-> get ?Īlg application layer gateway informationĪuth-server authentication server settings Also available is a very rich REGEX filtering function, which we will describe in more detail later in this section. You can filter the output from the get command to provide more concise output and then dump it to the screen (default behavior), or redirect it to a Trivial File Transfer Protocol (TFTP) server and text file for further analysis. Generally, you use the get keyword to show the status or value of some ScreenOS function, such as an interface, log buffer, or routing table.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |