User manual ALCATEL-LUCENT SPEEDTOUCH 570 1

[. . . ] SPEED TOUCH 570 CLI Reference Guide Wireless ADSL Router 3EC 16982 ADAA TCZZA Ed. 01 Status Change Note Released BD F aa 39813 Short Title CD-RG AST570 CLI All rights reserved. Passing on and copying of this document, use and communication of its contents not permitted without written authorization from Alcatel. 2 / 268 3EC 16982 ADAA TCZZA Ed. 5 21 23 39 49 55 93 115 141 163 173 189 199 217 225 231 239 241 265 Index 3EC 16982 ADAA TCZZA Ed. [. . . ] SYNTAX: firewall chain list EXAMPLEINPUT/OUTPUT: =>firewall chain list source, forward, sink =>firewall chain create chain Telnet =>firewall chain list Telnet, source, forward, sink =>firewall chain list Telnet, source, forward, sink => RELATED COMMANDS: firewall assign firewall chain create firewall chain delete Assign a chain to an entry point. 01 7 Firewall Commands firewall chain load Load saved or default chain(s) configuration (with related rules). SYNTAX: firewall chain load [file] [defaults] [file = <string>] [defaults = <yes|no>] The name of the chain configuration to be loaded. Not specifying this parameter loads the default configuration Load factory defaults (yes) or saved configuration (no). Not specifying this parameter loads the saved configuration OPTIONAL OPTIONAL EXAMPLE: =>firewall flush =>firewall load =>firewall chain list source, forward, sink =>firewall flush =>firewall chain load file TelConfig =>firewall chain list sink, forward, source, Telnet => RELATED COMMANDS: firewall assign firewall chain create firewall chain delete firewall chain list firewall chain save Assign a chain to an entry point. 01 129 / 268 7 Firewall Commands firewall chain save Save all modifications entered by : firewall chain create, firewall chain delete . This command saves the information about chains, rules and their parameters. This is different from firewall save which saves only the association between hook(s) and chain(s), set by the firewall assign command. SYNTAX: firewall chain save [file] [file = <string>] A name for the current chain configuration file to be saved. This parameter allows multiple chain configurations to be saved under different names. In case this parameter is not specified the configuration is saved as single configuration. OPTIONAL EXAMPLE: =>firewall flush =>firewall chain load file TelConfig =>firewall chain list Telnet, source, forward, sink =>firewall chain create chain NewTel =>firewall chain list NewTel, Telnet, source, forward, sink =>firewall chain save file NewTelcnf =>firewall flush =>firewall chain load file NewTelcnf =>firewall chain list sink, forward, source, Telnet, NewTel => RELATED COMMANDS: firewall assign firewall chain create firewall chain delete firewall chain list firewall chain load Assign a chain to an entry point. Load saved or default chain configuration(s). 130 / 268 3EC 16982 ADAA TCZZA Ed. 01 7 Firewall Commands firewall rule clear Clear statistics for a given rule. SYNTAX: firewall rule clear [chain] [index] [chain = <string>] [index = <number>] The name of the chain in which the rule is to be found. The index number (determined by the position) of the rule in the chain OPTIONAL OPTIONAL EXAMPLE: =>firewall rule stats Chain Telnet, index 0, packets 0, Chain Telnet, index 1, packets 0, Chain Telnet, index 2, packets 0, Chain source, index 0, packets 203, Chain source, index 1, packets 0, Chain source, index 2, packets 0, Chain forward, index 0, packets 0, Chain sink, index 0, packets 202, Chain sink, index 1, packets 0, Chain sink, index 2, packets 0, =>firewall rule clear chain=source =>firewall rule stats Chain Telnet, index 0, packets 0, Chain Telnet, index 1, packets 0, Chain Telnet, index 2, packets 0, Chain source, index 0, packets 11, Chain source, index 1, packets 0, Chain source, index 2, packets 0, Chain forward, index 0, packets 0, Chain sink, index 0, packets 409, Chain sink, index 1, packets 0, Chain sink, index 2, packets 0, => bytes 0 bytes 0 bytes 0 bytes 15229 bytes 0 bytes 0 bytes 0 bytes 10159 bytes 0 bytes 0 index=0 bytes 0 bytes 0 bytes 0 bytes 559 bytes 0 bytes 0 bytes 0 bytes 21535 bytes 0 bytes 0 RELATED COMMANDS: firewall rule create firewall rule delete firewall rule flush firewall rule list firewall rule stats Create a rule. Show statistics for all (or a specified) chains' rules. 3EC 16982 ADAA TCZZA Ed. 01 131 / 268 7 Firewall Commands firewall rule create Create a rule. SYNTAX: firewall rule create chain = <string> [index = <number>] [srcintf [!]= <string>] [srcintfgrp [!]= <{wan|local|lan}>] [srcbridgeport [!]= <number>] [src [!]= <ip-address>] [srcmsk = <ip-mask(dotted or cidr)>] [dstintf [!]= <string>] [dstintfgrp [!]= <{wan|local|lan}>] [dst [!]= <ip-address>] [dstmsk = <ip-mask(dotted or cidr)>] [tos [!]= <number{1-255}>] [prot [!]= <{tcp|udp|icmp|protocol}>] [syn <yes|no>] [urg <yes|no>] [ack <yes|no>] [srcport [!]= <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [srcportend = <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [dstport [!]= <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [dstportend = <{ftp|ftp-data|telnet|mail|smtp|dns|domain|tftp|port}>] [icmptype [!]= <{echo-reply|destination-unreachable|source-quench| redirect|echo-request|router-advertisement| router-solicitation|time-e xceeded|parameter-problems| timestamp-request|timestamp-reply| information-request|information-reply| address-mask-request|address-mask-reply| icmpnumber}>] [icmpcode [!]= <number{0-15}>] [icmpcodeend = <number{0-15}>] [clink = <string>] action = <{accept|deny|drop|count}> The name of the chain to insert the rule in. The name of the interface the packet should [or should NOT] arrive on to make this rule apply. (NOT applicable if used in a chain assigned to the output hook) The interface group the packet should [or should NOT] arrive on. Choose between: G wan G local G lan (NOT applicable if used in a chain assigned to the output hook) REQUIRED OPTIONAL OPTIONAL chain [index] [srcintf] [srcintfgrp] OPTIONAL 132 / 268 3EC 16982 ADAA TCZZA Ed. [. . . ] SYNTAX: wireless long_retry_lim short_retry_lim long_retry_lim = <number{1-255}> A number between 1 and 255. REQUIRED Indicates the maximum number of transmission attempts that shall be made of a frame (with a length which is less or equal to rts_threshold), in case the acknowledgment is not received in time. By default the short retry limit is 8. EXAMPLE: =>wireless params TS Threshold : 2347 Short Retry Limit :8 Long Retry Limit :4 Fragmentation Threshold : 2346 Beacon Period : 80 =>wireless short_retry_lim short_retry_lim = 16 =>wireless params TS Threshold : 2347 Short Retry Limit : 16 Long Retry Limit :4 Fragmentation Threshold : 2346 Beacon Period : 80 => RELATED COMMANDS: wireless params wireless counters wireless rts_threshold wireless short_retry_lim Show SpeedToucht570 wireless communication configuration. 01 257 / 268 17 Wireless Commands wireless ssid Set SpeedToucht570 WLAN Service Set Identifier. [. . . ]