User manual ZYXEL ZYWALL USG 300 CLI REFERENCE GUIDE
DON'T FORGET : ALWAYS READ THE USER GUIDE BEFORE BUYING !!!
If this document matches the user guide, instructions manual or user manual, feature sets, schematics you are looking for, download it now. Diplodocs provides you a fast and easy access to the user manual ZYXEL ZYWALL USG 300 CLI. We hope that this ZYXEL ZYWALL USG 300 CLI user guide will be useful to you.
Manual abstract: user guide ZYXEL ZYWALL USG 300 CLIREFERENCE GUIDE
Detailed instructions for use are in the User's Guide.
[. . . ] ZyWALL (ZLD)
CLI Reference Guide
Version 2. 00 7/2007 Edition 1
DEFAULT LOGIN
LAN Port 1
IP Address http://192. 168. 1. 1 User Name admin Password 1234
www. zyxel. com
About This User's Guide
About This User's Guide
This manual is designed to guide you through the configuration of your ZLD-based ZyWALL for its various applications using the CLI (Command Line Interface). Generally, it is organized by feature as outlined in the web configurator.
See the web configurator User's Guide for related information on all features.
Intended Audience This manual is intended for network administrators, or people who have a good knowledge of TCP/IP networking concepts and topology, who want to want to configure the ZyWALL using the CLI. 1 Read Chapter 1 on page 13 for how to access and use the CLI (Command Line Interface). 2 Read Chapter 2 on page 29 to learn about the CLI user and privilege modes. [. . . ] When the Drop DTR When Hang Up check box is selected, the ZyWALL uses this hardware signal to force the WAN device to hang up, in addition to issuing the drop command ATH.
33. 9. 3 Response Strings
The response strings tell the ZyWALL the tags, or labels, immediately preceding the various call parameters sent from the serial modem. The response strings have not been standardized; please consult the documentation of your serial modem to find the correct tags.
33. 9. 4 Dial-in Management Commands
The following table describes the commands available for dial-in management. You must use the configure terminal command to enter the configuration mode before you can use these commands.
Table 135 Command Summary: Dial-in Management
COMMAND dial-in [no] activate [no] answer-rings DESCRIPTION Enters sub-command mode. Sets how many times the ZyWALL lets the incoming dialin management session ring before processing it. description: You can use alphanumeric and ()+/ :=?!*#@$_%- characters, and it can be up to 60 characters long. The
[no] description description
[no] initial-string initial_string
no command removes the initial string.
initial_string: You can use up to 64 characters. [no] mute Stops the external serial modem from making audible sounds during a dial-in management session. Displays dial-in management settings.
[no] port-speed {9600 | 19200 | 38400 | 57600 | 115200} show dial-in
ZyWALL (ZLD) CLI Reference Guide
221
Chapter 33 System Remote Management
33. 9. 4. 1 Dial-in Management Command Examples The following commands show you how to set up dial-in management with the following parameters: active, port speed 57600, initial-string ATDT, and description "I am dial-in management".
Router# configure terminal Router(config)# dial-in Router(config-dial-in)# activate Router(config-dial-in)# port-speed 57600 Router(config-dial-in)# initial-string ATDT Router(config-dial-in)# description I am dial-in management Router(config-dial-in)# exit
33. 10 Vantage CNM
Vantage CNM (Centralized Network Management) is a browser-based global management solution that allows an administrator from any location to easily configure, manage, monitor and troubleshoot ZyXEL devices located worldwide. If you allow your ZyWALL to be managed by the Vantage CNM server, then you should not do any configurations directly to the ZyWALL (using either the web configurator or commands) without notifying the Vantage CNM administrator.
33. 10. 1 Vantage CNM Commands
The following table describes the commands available for dial-in management. You must use the configure terminal command to enter the configuration mode before you can use these commands.
Table 136 Command Summary: Vantage CNM
COMMAND [no] cnm-agent manager url DESCRIPTION Sets up the URL of the Vantage server that the ZyWALL registers with. Displays the Vantage CNM configuration.
[no] cnm-agent activate cnm-agent keepalive interval <10. . 90> [no] cnm-agent periodicinform activate cnm-agent periodic-inform interval <10. . 86400> cnm-agent trigger-inform [interval] [no] cnm-agent auth activate show cnm-agent configuration
222
ZyWALL (ZLD) CLI Reference Guide
Chapter 33 System Remote Management
33. 10. 1. 1 Vantage CNM Command Examples The following example turns on Vantage CNM management and sets the ZyWALL to register with a server at https://1. 2. 3. 4/vantage/TR069.
Router# configure terminal Router(config)# cnm-agent activate Router(config)# cnm-agent manager https://1. 2. 3. 4/vantage/TR069 Router(config)# show cnm-agent configuration Activate: YES ACS URL: https://1. 2. 3. 4/vantage/TR069 Keepalive: ENABLE Keepalive Interval: 60 Periodic Inform: DISABLE Periodic Inform Interval: 3600 Custom IP: NO HTTPS Authentication: NO Vantage Certificate: zw1050. cer456
33. 11 Language Commands
Use the language commands to display what language the web configurator is using or change it. You must use the configure terminal command to enter the configuration mode before you can use these commands.
Table 137 Command Summary: Language
COMMAND language <English | Simplified_Chinese | Traditional_Chinese> show language {setting | all} DESCRIPTION Specifies the language used in the web configurator screens. setting displays the current display language in the web configurator screens. all displays the available languages.
ZyWALL (ZLD) CLI Reference Guide
223
Chapter 33 System Remote Management
224
ZyWALL (ZLD) CLI Reference Guide
PART VII
Maintenance and Index
File Manager (227) Logs (245) Reports and Reboot (251) Diagnostics (255) Maintenance Tools (257) Command Index (327)
225
226
CHAPTER
34
File Manager
This chapter covers how to work with the ZyWALL's firmware, certificates, configuration files, custom IDP signatures, packet trace results, shell scripts and temporary files.
34. 1 File Directories
The ZyWALL stores files in the following directories.
Table 138 FTP File Transfer Notes
DIRECTORY FILE TYPE
A
FILE NAME EXTENSION bin cer conf rules
Firmware (upload only) Non-PKCS#12 certificates Configuration files IDP custom signatures Packet trace results (download only) Shell scripts Temporary system maintenance files and crash dumps for technical support use (download only)
cert conf idp packet_trace script tmp
. zysh
A. After you log in through FTP, you do not need to change directories in order to upload the firmware.
34. 2 Configuration Files and Shell Scripts Overview
You can store multiple configuration files and shell script files on the ZyWALL. When you apply a configuration file, the ZyWALL uses the factory default settings for any features that the configuration file does not include. Shell scripts are files of commands that you can store on the ZyWALL and run when you need them. When you run a shell script, the ZyWALL only applies the commands that it contains. You can edit configuration files or shell scripts in a text editor and upload them to the ZyWALL. Configuration files use a . conf extension and shell scripts use a . zysh extension.
ZyWALL (ZLD) CLI Reference Guide
227
Chapter 34 File Manager
These files have the same syntax, which is also identical to the way you run CLI commands manually. An example is shown below.
Figure 23 Configuration File / Shell Script: Example
# enter configuration mode configure terminal # change administrator password username admin password 4321 user-type admin # configure ge3 interface ge3 ip address 172. 23. 37. 240 255. 255. 255. 0 ip gateway 172. 23. 37. 254 metric 1 exit # create address objects for remote management / to-ZyWALL firewall rules # use the address group in case we want to open up remote management later address-object TW_SUBNET 172. 23. 37. 0/24 object-group address TW_TEAM address-object TW_SUBNET exit # enable Telnet access (not enabled by default, unlike other services) ip telnet server # open WAN-to-ZyWALL firewall for TW_TEAM for remote management firewall WAN ZyWALL insert 4 sourceip TW_TEAM service TELNET action allow exit write
While configuration files and shell scripts have the same syntax, the ZyWALL applies configuration files differently than it runs shell scripts. This is explained below.
Table 139 Configuration Files and Shell Scripts in the ZyWALL
Configuration Files (. conf) · · · Resets to default configuration. [. . . ] 103 transform-set esp_crypto_algo [esp_crypto_algo [esp_crypto_algo]] . . . . . . . . . . . . . . . 103 transform-set isakmp-algo [isakmp_algo [isakmp_algo]] . . . . . . . . . . . . . . . . . . . . . . . . . . . 101 trigger append incoming service_name trigger service_name . . . . . . . . . . . . . . . . . . . . . . . . 70 trigger delete <1. . 8> . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [. . . ]
DISCLAIMER TO DOWNLOAD THE USER GUIDE ZYXEL ZYWALL USG 300 CLI
Click on "Download the user Manual" at the end of this Contract if you accept its terms, the downloading of the manual ZYXEL ZYWALL USG 300 CLI will begin.