Detailed instructions for use are in the User's Guide.
[. . . ] SPEED TOUCH 570
CLI Reference Guide
Wireless ADSL Router
3EC 16982 ADAA TCZZA Ed. 01
Status Change Note
Released BD F aa 39813
Short Title CD-RG AST570 CLI All rights reserved. Passing on and copying of this document, use and communication of its contents not permitted without written authorization from Alcatel.
2 / 268
3EC 16982 ADAA TCZZA Ed. 5 21 23 39 49 55 93 115 141 163 173 189 199 217 225 231 239 241 265
Index
3EC 16982 ADAA TCZZA Ed. [. . . ] SYNTAX:
firewall chain list
EXAMPLEINPUT/OUTPUT:
=>firewall chain list source, forward, sink =>firewall chain create chain Telnet =>firewall chain list Telnet, source, forward, sink =>firewall chain list Telnet, source, forward, sink =>
RELATED COMMANDS: firewall assign firewall chain create firewall chain delete
Assign a chain to an entry point. 01
7 Firewall Commands
firewall chain load
Load saved or default chain(s) configuration (with related rules). SYNTAX:
firewall chain load [file] [defaults] [file = <string>] [defaults = <yes|no>] The name of the chain configuration to be loaded. Not specifying this parameter loads the default configuration Load factory defaults (yes) or saved configuration (no). Not specifying this parameter loads the saved configuration OPTIONAL OPTIONAL
EXAMPLE:
=>firewall flush =>firewall load =>firewall chain list source, forward, sink =>firewall flush =>firewall chain load file TelConfig =>firewall chain list sink, forward, source, Telnet =>
RELATED COMMANDS: firewall assign firewall chain create firewall chain delete firewall chain list firewall chain save
Assign a chain to an entry point. 01
129 / 268
7 Firewall Commands
firewall chain save
Save all modifications entered by : firewall chain create, firewall chain delete . This command saves the information about chains, rules and their parameters. This is different from firewall save which saves only the association between hook(s) and chain(s), set by the firewall assign command. SYNTAX:
firewall chain save [file] [file = <string>] A name for the current chain configuration file to be saved. This parameter allows multiple chain configurations to be saved under different names. In case this parameter is not specified the configuration is saved as single configuration. OPTIONAL
EXAMPLE:
=>firewall flush =>firewall chain load file TelConfig =>firewall chain list Telnet, source, forward, sink =>firewall chain create chain NewTel =>firewall chain list NewTel, Telnet, source, forward, sink =>firewall chain save file NewTelcnf =>firewall flush =>firewall chain load file NewTelcnf =>firewall chain list sink, forward, source, Telnet, NewTel =>
RELATED COMMANDS: firewall assign firewall chain create firewall chain delete firewall chain list firewall chain load
Assign a chain to an entry point. Load saved or default chain configuration(s).
130 / 268
3EC 16982 ADAA TCZZA Ed. 01
7 Firewall Commands
firewall rule clear
Clear statistics for a given rule. SYNTAX:
firewall rule clear [chain] [index] [chain = <string>] [index = <number>] The name of the chain in which the rule is to be found. The index number (determined by the position) of the rule in the chain OPTIONAL OPTIONAL
EXAMPLE:
=>firewall rule stats Chain Telnet, index 0, packets 0, Chain Telnet, index 1, packets 0, Chain Telnet, index 2, packets 0, Chain source, index 0, packets 203, Chain source, index 1, packets 0, Chain source, index 2, packets 0, Chain forward, index 0, packets 0, Chain sink, index 0, packets 202, Chain sink, index 1, packets 0, Chain sink, index 2, packets 0, =>firewall rule clear chain=source =>firewall rule stats Chain Telnet, index 0, packets 0, Chain Telnet, index 1, packets 0, Chain Telnet, index 2, packets 0, Chain source, index 0, packets 11, Chain source, index 1, packets 0, Chain source, index 2, packets 0, Chain forward, index 0, packets 0, Chain sink, index 0, packets 409, Chain sink, index 1, packets 0, Chain sink, index 2, packets 0, => bytes 0 bytes 0 bytes 0 bytes 15229 bytes 0 bytes 0 bytes 0 bytes 10159 bytes 0 bytes 0 index=0 bytes 0 bytes 0 bytes 0 bytes 559 bytes 0 bytes 0 bytes 0 bytes 21535 bytes 0 bytes 0
RELATED COMMANDS: firewall rule create firewall rule delete firewall rule flush firewall rule list firewall rule stats
Create a rule. Show statistics for all (or a specified) chains' rules.
3EC 16982 ADAA TCZZA Ed. 01
131 / 268
7 Firewall Commands
firewall rule create
Create a rule. SYNTAX:
firewall rule create chain = <string> [index = <number>] [srcintf [!]= <string>] [srcintfgrp [!]= <{wan|local|lan}>] [srcbridgeport [!]= <number>] [src [!]= <ip-address>] [srcmsk = <ip-mask(dotted or cidr)>] [dstintf [!]= <string>] [dstintfgrp [!]= <{wan|local|lan}>] [dst [!]= <ip-address>] [dstmsk = <ip-mask(dotted or cidr)>] [tos [!]= <number{1-255}>] [prot [!]= <{tcp|udp|icmp|protocol}>] [syn <yes|no>] [urg <yes|no>] [ack <yes|no>] [srcport [!]= <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [srcportend = <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [dstport [!]= <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [dstportend = <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [icmptype [!]= <{echo-reply|destination-unreachable|source-quench| redirect|echo-request|router-advertisement| router-solicitation|time-e xceeded|parameter-problems| timestamp-request|timestamp-reply| information-request|information-reply| address-mask-request|address-mask-reply| icmpnumber}>] [icmpcode [!]= <number{0-15}>] [icmpcodeend = <number{0-15}>] [clink = <string>] action = <{accept|deny|drop|count}> The name of the chain to insert the rule in. The name of the interface the packet should [or should NOT] arrive on to make this rule apply. (NOT applicable if used in a chain assigned to the output hook) The interface group the packet should [or should NOT] arrive on. Choose between: G wan G local G lan (NOT applicable if used in a chain assigned to the output hook) REQUIRED OPTIONAL OPTIONAL
chain [index] [srcintf]
[srcintfgrp]
OPTIONAL
132 / 268
3EC 16982 ADAA TCZZA Ed. [. . . ] SYNTAX:
wireless long_retry_lim short_retry_lim long_retry_lim = <number{1-255}> A number between 1 and 255. REQUIRED Indicates the maximum number of transmission attempts that shall be made of a frame (with a length which is less or equal to rts_threshold), in case the acknowledgment is not received in time. By default the short retry limit is 8.
EXAMPLE:
=>wireless params TS Threshold : 2347 Short Retry Limit :8 Long Retry Limit :4 Fragmentation Threshold : 2346 Beacon Period : 80 =>wireless short_retry_lim short_retry_lim = 16 =>wireless params TS Threshold : 2347 Short Retry Limit : 16 Long Retry Limit :4 Fragmentation Threshold : 2346 Beacon Period : 80 =>
RELATED COMMANDS: wireless params wireless counters wireless rts_threshold wireless short_retry_lim
Show SpeedToucht570 wireless communication configuration. 01
257 / 268
17 Wireless Commands
wireless ssid
Set SpeedToucht570 WLAN Service Set Identifier. [. . . ]