HP StorageWorks Enterprise File Services WAN Accelerator 2.1.7

HP StorageWorks
Enterprise File Services WAN Accelerator 2.1.7
Command-Line Interface
reference manual
*392361-004*
*392361–004*
Part number: 392361-004
Fourth edition: June 2006
Legal and notice information
© Copyright 2006 Hewlett-Packard Development Company, L.P.
© Copyright 2003–2006 Riverbed Technology, Inc.
Hewlett-Packard Company makes no warranty of any kind with regard to this material, including, but not limited to, the implied warranties of
merchantability and fitness for a particular purpose. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential
damages in connection with the furnishing, performance, or use of this material.
This document contains proprietary information, which is protected by copyright. No part of this document may be photocopied, reproduced, or
translated into another language without the prior written consent of Hewlett-Packard. The information is provided “as is” without warranty of any
kind and is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements
accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for
technical or editorial errors or omissions contained herein.
Linux is a trademark of Linus Torvalds in the United States and in other countries.
Microsoft, Windows, Windows NT, Windows 2000, Outlook, and Windows Internet Explorer are trademarks or registered trademarks of Microsoft
Corporation in the United States and in other countries.
UNIX is a registered trademark in the United States and in other countries, exclusively licensed through X/Open Company, Ltd.
Parts of this product are derived from the following software:
Apache © 2000-2003 The Apache Software Foundation. All rights reserved.
Boost Software © 2003 All rights reserved.
bsdstr.c, © 1998 Todd C. Miller (Todd.Miller@courtesan.com). All rights reserved.
Busybox, © Eric Andersen
Less © 1984-2002 Mark Nudelman
Libevent, © 2000-2002 Niels Provos. All rights reserved.
LibGD, Version 2.0 licensed by Boutell.Com, Inc.
Libtecla, © 2000, 2001 by Martin C. Shepherd. All rights reserved.
Linux Kernel, © Linus Torvalds
md5, md5.cc, © 1995 University of Southern California. All rights reserved. © 1991-2, RSA Data Security, Inc. All rights reserved.
my_getopt.{c,h}, © 1997, 2000, 2001, 2002, Benjamin Sittler. All rights reserved.
NET-SNMP: © 1989, 1991, 1992 by Carnegie Mellon University. All rights reserved.
OpenSSH, © 2002 Nils Nordman. All rights reserved.
OpenSSL © 1998, 1999, 2000 Thai Open Source Software Center Ltd & Clark Cooper © 2001, 2002
ptmalloc © 2001 Wolfram Gloger
sSMTP, © Mark Ryan, Hugo Haas, Christoph Lameter, and Dave Collier-Brown
Vixie-Cron, © 1988,1990,1993,1994 by Paul Vixie. All rights reserved.
Zile, © 1997-2001 Sandro Sigalam © 2003 Reuben Thomas. All rights reserved.
Zlib © 1995-2002 Jean-loup Gailly and Mark Adler
For detailed copyright and license agreements, see the HP StorageWorks Enterprise File Services WAN Accelerator Installation and Configuration
Guide. For modified source code (where required), see the HP technical support site at http://www.hp.com.
Certain libraries were used in the development of this software, licensed under GNU Lesser General Public License, Version 2.1, February 1999. For
the copyright and license agreement, see the HP StorageWorks Enterprise File Services WAN Accelerator Installation and Configuration Guide. For
a list of libraries and source material (where required), see the HP technical support site at
http://www.hp.com.
Enterprise File Services WAN Accelerator 2.1.7 Command-Line Interface reference manual
Introduction
CONTENTS
Contents
......................................................................................................... 13
About This Guide................................................................................ 13
Types of Users .............................................................................. 13
Organization of This Guide .......................................................... 13
Document Conventions ................................................................ 14
Hardware and Software Dependencies ............................................... 15
Ethernet Network Compatibility......................................................... 15
Antivirus Compatibility ...................................................................... 16
Additional Resources .......................................................................... 16
Related HP Documentation .......................................................... 16
Online Documentation.................................................................. 17
Related Reading............................................................................ 17
Contacting HP..................................................................................... 17
Technical Support ......................................................................... 17
HP Storage Web Site........................................................................... 18
HP NAS Services Web Site ................................................................ 18
............................................................................................................. 18
Chapter 1
Using the Command-Line Interface
.......................................... 19
Connecting to the CLI......................................................................... 19
Overview of the CLI ........................................................................... 20
Entering Commands............................................................................ 21
Accessing Online Help ....................................................................... 21
Error Messages.................................................................................... 21
Command Negation ............................................................................ 21
Saving Configuration Changes ........................................................... 22
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
1
Chapter 2
User-Mode Commands
.............................................................. 23
enable .................................................................................................. 23
exit....................................................................................................... 23
ping ..................................................................................................... 24
tcpdump............................................................................................... 25
tproxytrace .......................................................................................... 26
traceroute............................................................................................. 26
Chapter 3
Enable-Mode Commands
.......................................................... 27
configure terminal............................................................................... 30
debug generate dump .......................................................................... 30
disable ................................................................................................. 30
file debug-dump .................................................................................. 30
file stats ............................................................................................... 31
reload................................................................................................... 31
restart................................................................................................... 32
show aaa.............................................................................................. 32
show arp .............................................................................................. 32
show bootvar....................................................................................... 32
show cli ............................................................................................... 33
show clock .......................................................................................... 33
show configuration.............................................................................. 33
show configuration files...................................................................... 34
show configuration full ....................................................................... 34
show configuration running ................................................................ 35
show connection.................................................................................. 35
show connections ............................................................................... 36
show datastore..................................................................................... 38
show email .......................................................................................... 38
show files debug-dump ....................................................................... 39
show files stats .................................................................................... 39
show files tcpdump ............................................................................. 39
show hardware .................................................................................... 39
show hosts........................................................................................... 40
show images........................................................................................ 40
show info............................................................................................. 41
2
CONTENTS
show in-path........................................................................................ 41
show in-path cdp ................................................................................. 41
show in-path neighbor......................................................................... 42
show in-path oop-all-port.................................................................... 42
show in-path rules ............................................................................... 42
show interfaces.................................................................................... 43
show ip ................................................................................................ 44
show ip security .................................................................................. 45
show ip security peers......................................................................... 45
show job .............................................................................................. 45
show jobs ............................................................................................ 46
show licenses ...................................................................................... 46
show limit bandwidth.......................................................................... 46
show log .............................................................................................. 47
show logging....................................................................................... 47
show ntp .............................................................................................. 48
show out-of-path ................................................................................. 48
show peers........................................................................................... 48
show peer version ............................................................................... 48
show port-label.................................................................................... 49
show pfs all-info ................................................................................. 49
show pfs configuration........................................................................ 50
show pfs state shares........................................................................... 50
show pfs stats shares ........................................................................... 51
show protocol cifs ............................................................................... 51
show protocol cifs internal.................................................................. 51
show protocol connection ................................................................... 52
show protocol mapi............................................................................. 52
show protocol ms-sql .......................................................................... 53
show protocol ms-sql rules ................................................................. 53
show qos rules..................................................................................... 54
show radius ......................................................................................... 54
show raid diagram............................................................................... 54
show raid error-msg ............................................................................ 55
show running-config ........................................................................... 55
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
3
CONTENTS
show in-path peering rules .................................................................. 42
show service........................................................................................ 55
show service authentication ................................................................ 55
show service connection pooling ........................................................ 56
show service neural-framing............................................................... 57
show snmp .......................................................................................... 57
show ssh client .................................................................................... 57
show ssh server ................................................................................... 57
show stats ............................................................................................ 58
show tacacs ......................................................................................... 59
show tcp highspeed ............................................................................. 59
show terminal...................................................................................... 59
show usernames .................................................................................. 59
show version ....................................................................................... 60
show version history ........................................................................... 60
show wccp........................................................................................... 60
show web ............................................................................................ 60
show web prefs ................................................................................... 62
slogin................................................................................................... 62
stats export .......................................................................................... 62
Chapter 4
Configuration-Mode Commands
.............................................. 65
aaa authentication login default .......................................................... 72
aaa authorization map default-user ..................................................... 72
aaa authorization map order................................................................ 72
arp ....................................................................................................... 73
banner.................................................................................................. 73
boot system ......................................................................................... 74
clear arp-cache .................................................................................... 74
cli clear-history ................................................................................... 74
cli default auto-logout ......................................................................... 75
cli default paging enable ..................................................................... 75
cli session ............................................................................................ 75
clock set .............................................................................................. 76
clock timezone .................................................................................... 76
configuration copy .............................................................................. 76
configuration delete ............................................................................ 77
4
CONTENTS
configuration fetch .............................................................................. 77
configuration jump-start...................................................................... 78
configuration merge ............................................................................ 78
configuration move ............................................................................. 79
configuration revert saved................................................................... 80
configuration switch-to ....................................................................... 80
configuration upload ........................................................................... 81
configuration write.............................................................................. 81
datastore notification enable ............................................................... 81
datastore notification wrap-around ..................................................... 82
datastore receive port .......................................................................... 82
datastore send addr.............................................................................. 82
datastore sync enable .......................................................................... 83
datastore sync peer-ip ......................................................................... 83
datastore sync port .............................................................................. 84
datastore sync reconnect ..................................................................... 84
datastore sync server ........................................................................... 84
email domain....................................................................................... 84
email mailhub...................................................................................... 85
email notify events enable .................................................................. 85
email notify events recipient............................................................... 85
email notify failures enable................................................................. 86
email notify failures recipient ............................................................. 86
email send-test .................................................................................... 86
failover buddy addr ............................................................................. 86
failover buddy port.............................................................................. 87
failover enable..................................................................................... 87
failover master .................................................................................... 87
failover port......................................................................................... 88
file stats delete..................................................................................... 88
file stats move ..................................................................................... 88
file stats upload ................................................................................... 89
file tcpdump ........................................................................................ 89
file tcpdump delete.............................................................................. 89
file tcpdump upload ............................................................................ 90
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
5
CONTENTS
configuration new ............................................................................... 80
hardware ecc-mem-check enable........................................................ 90
hardware upgrade model..................................................................... 90
hostname ............................................................................................. 91
image boot........................................................................................... 91
image delete ........................................................................................ 91
image fetch.......................................................................................... 91
image install ........................................................................................ 92
image move......................................................................................... 92
in-path cdp enable ............................................................................... 92
in-path cdp holdtime ........................................................................... 93
in-path cdp interval ............................................................................. 93
in-path enable...................................................................................... 94
in-path interface enable....................................................................... 94
in-path interface vlan tag .................................................................... 94
in-path kickoff..................................................................................... 95
in-path neighbor enable....................................................................... 95
in-path neighbor ip address................................................................. 96
in-path neighbor keepalive count........................................................ 97
in-path neighbor keepalive interval .................................................... 97
in-path neighbor port........................................................................... 97
in-path oop all-port enable .................................................................. 97
in-path oop enable............................................................................... 98
in-path peering rule ............................................................................. 98
in-path peering move-rule................................................................. 100
in-path rule auto-discover ................................................................. 100
in-path rule deny ............................................................................... 102
in-path rule discard ........................................................................... 102
in-path rule fixed-target .................................................................... 103
in-path rule move .............................................................................. 105
in-path rule pass-through .................................................................. 105
in-path simplified routing ................................................................. 105
interface............................................................................................. 106
ip default-gateway............................................................................. 107
ip domain-list .................................................................................... 107
ip host................................................................................................ 108
ip in-path-gateway ............................................................................ 108
6
CONTENTS
ip in-path route.................................................................................. 108
ip name-server................................................................................... 109
ip route .............................................................................................. 109
ip security authentication policy ....................................................... 110
ip security encryption policy............................................................. 110
ip security peer ip.............................................................................. 111
ip security pfs enable ........................................................................ 111
ip security rekey interval................................................................... 112
ip security shared secret .................................................................... 112
job command..................................................................................... 112
job comment...................................................................................... 113
job date-time ..................................................................................... 113
job enable .......................................................................................... 114
job execute ........................................................................................ 114
job fail-continue ................................................................................ 115
job name............................................................................................ 115
license delete..................................................................................... 115
license install..................................................................................... 116
limit bandwidth max ......................................................................... 116
limit connection ................................................................................ 116
logging .............................................................................................. 117
logging files delete............................................................................ 117
logging files rotation criteria frequency............................................ 117
logging files rotation criteria size ..................................................... 118
logging files rotation force................................................................ 118
logging files rotation max-num......................................................... 118
logging local...................................................................................... 118
logging trap ....................................................................................... 119
ntpdate............................................................................................... 119
ntp disable ......................................................................................... 120
ntp enable .......................................................................................... 120
ntp peer.............................................................................................. 120
ntp server........................................................................................... 120
out-of-path enable ............................................................................. 121
peer.................................................................................................... 121
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
7
CONTENTS
ip security enable .............................................................................. 110
pfs auto-launch enable ...................................................................... 122
pfs configure ..................................................................................... 123
pfs enable .......................................................................................... 123
pfs local-password ............................................................................ 125
pfs security-sign ................................................................................ 125
pfs share cancel-event ....................................................................... 126
pfs share configure............................................................................ 126
pfs share enable................................................................................. 128
pfs share manual-sync....................................................................... 128
pfs share modify................................................................................ 128
pfs share stop..................................................................................... 129
pfs share sync.................................................................................... 129
pfs share verify.................................................................................. 130
pfs start.............................................................................................. 130
port-label ........................................................................................... 130
protocol cifs disable write optimization............................................ 131
protocol cifs enable ........................................................................... 131
protocol cifs opt-strict-lock enable ................................................... 131
protocol cifs prepop enable............................................................... 132
protocol cifs secure-sig-opt enable ................................................... 132
protocol connection lan receive buf-size .......................................... 132
protocol connection lan send buf-size............................................... 133
protocol connection wan receive def-buf-size .................................. 133
protocol connection wan send def-buf-size ...................................... 133
protocol mapi enable......................................................................... 134
protocol mapi 2k3 enable.................................................................. 134
protocol mapi nspi............................................................................. 134
protocol mapi nspi enable ................................................................. 135
protocol mapi port............................................................................. 135
protocol mapi prepop enable............................................................. 136
protocol ms-sql enable ...................................................................... 136
protocol ms-sql fetch-next enable..................................................... 137
protocol ms-sql num-preack ............................................................. 137
protocol ms-sql port .......................................................................... 138
protocol ms-sql query-act rule-id action-id....................................... 138
protocol ms-sql query-arg-act rule-id
8
CONTENTS
action-id arg-offset expr.................................................................... 139
protocol ms-sql rpc-act rule-id action-id........................................... 140
protocol ms-sql rpc-arg-act rule-id arg-offset expr........................... 141
protocol ms-sql rpc-arg rule-id arg-offset expr................................. 142
protocol ms-sql support-app ............................................................. 143
qos move-rule.................................................................................... 144
qos rule.............................................................................................. 144
radius-server host .............................................................................. 145
radius-server key............................................................................... 146
radius-server retransmit .................................................................... 146
radius-server timeout ........................................................................ 146
reset factory reload............................................................................ 147
segstore receive port ......................................................................... 147
segstore send addr ............................................................................. 147
service connection pooling ............................................................... 148
service default-port ........................................................................... 149
service enable.................................................................................... 149
service error reset.............................................................................. 149
service map-port................................................................................ 149
service neural-framing stats enable................................................... 150
service port........................................................................................ 151
snmp-server community.................................................................... 151
snmp-server contact .......................................................................... 151
snmp-server enable ........................................................................... 152
snmp-server host ............................................................................... 152
snmp-server listen enable.................................................................. 152
snmp-server listen interface .............................................................. 153
snmp-server location......................................................................... 153
ssh client generate identity user ........................................................ 153
ssh client user authorized-key rsakey sshv2 ..................................... 154
ssh server listen enable...................................................................... 154
ssh server listen interface .................................................................. 154
stats alarm ......................................................................................... 155
stats alarm linkstate enable ............................................................... 156
stats chd............................................................................................. 156
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
9
CONTENTS
protocol ms-sql rpc-rule rule-id app-name-regex ............................. 142
stats clear-all ..................................................................................... 157
stats export ........................................................................................ 157
stats sample ....................................................................................... 157
stats settings bandwidth .................................................................... 158
tacacs-server host .............................................................................. 158
tacacs-server key............................................................................... 159
tacacs-server retransmit .................................................................... 160
tacacs-server timeout ........................................................................ 160
tcp connection send keep-alive ......................................................... 160
tcp connection send reset .................................................................. 161
tcp highspeed enable ......................................................................... 161
terminal ............................................................................................. 162
username disable............................................................................... 163
username nopassword ....................................................................... 163
username password ........................................................................... 163
username password 0 ........................................................................ 164
username password 7 ........................................................................ 164
wccp enable....................................................................................... 164
wccp mcast-ttl ................................................................................... 165
wccp service group ........................................................................... 165
web auto-logout ................................................................................ 167
web enable ........................................................................................ 168
web http enable ................................................................................. 168
web http port ..................................................................................... 168
web httpd listen enable...................................................................... 168
web httpd listen interface .................................................................. 169
web https enable................................................................................ 169
web https port.................................................................................... 169
web prefs log lines ............................................................................ 170
web proxy host.................................................................................. 170
web session renewal.......................................................................... 170
web session timeout .......................................................................... 171
write memory .................................................................................... 171
write terminal .................................................................................... 171
10
CONTENTS
Appendix A HP EFS WAN Accelerator MIB
................................................ 173
Accessing the HP EFS WAN Accelerator Enterprise MIB .............. 173
SNMP Traps...................................................................................... 174
HP EFS WAN Accelerator Enterprise MIB...................................... 175
.............................................. 187
Default Ports ..................................................................................... 187
Commonly Optimized Ports ............................................................. 189
Commonly Excluded Ports ............................................................... 189
Interactive Ports Forwarded by the HP EFS WAN Accelerator ....... 189
Secure Ports Forwarded by the HP EFS WAN Accelerator ............. 190
Glossary
....................................................................................................... 193
Index
....................................................................................................... 197
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
11
CONTENTS
Appendix B HP EFS WAN Accelerator Ports
12
CONTENTS
INTRODUCTION
Introduction
In This
Introduction
Welcome to the HP StorageWorks Enterprise File Services WAN Accelerator
Command Line Interface Reference Manual. Read this introduction for an overview of
the information provided in this guide and for an understanding of the documentation
conventions used throughout. This introduction contains the following sections:
‹
“About This Guide,” next
‹
“Hardware and Software Dependencies” on page 15
‹
“Ethernet Network Compatibility” on page 15
‹
“Antivirus Compatibility” on page 16
‹
“Additional Resources” on page 16
‹
“Contacting HP” on page 17
About This Guide
The HP StorageWorks Enterprise File Services WAN Accelerator Command Line
Interface Reference Manual is a reference manual for the HP EFS WAN Accelerator
command-line interface (CLI) for the HP EFS WAN Accelerator. This manual lists
commands, syntax, parameters, and example usage.
Types of Users
This guide is written for storage and network administrators with familiarity
administering and managing networks using Common Internet File System (CIFS),
Hypertext Transport Protocol (HTTP), File Transfer Protocol (FTP), and Microsoft
Exchange.
Organization of
This Guide
The HP StorageWorks Enterprise File Services WAN Accelerator Command Line
Interface Reference Manual includes the following chapters:
‹
Chapter 1, “Using the Command-Line Interface,” describes how to connect and
use the CLI.
‹
Chapter 2, “User-Mode Commands,” provides a reference for user-mode
commands.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
13
‹
Chapter 3, “Enable-Mode Commands,” provides a reference for enable-mode
commands.
‹
Chapter 4, “Configuration-Mode Commands,” provides a reference for
configuration-mode commands.
‹
Appendix A, “HP EFS WAN Accelerator MIB,” provides an example of the HP
EFS WAN Accelerator Enterprise Simple Network Management Protocol
(SNMP) Message Information Block (MIB).
‹
Appendix B, “HP EFS WAN Accelerator Ports,”provides a list of default ports,
interactive, and secure ports automatically forwarded by the HP EFS WAN
Accelerator.
A glossary of terms follows the chapters, and a comprehensive index directs you to
areas of particular interest.
Document
Conventions
This manual uses the following standard set of typographical conventions to introduce
new terms, illustrate screen displays, describe command syntax, and so forth.
Convention
Meaning
italics
Within text, new terms and emphasized words appear in italic
typeface.
boldface
Within text, commands, keywords, identifiers (names of classes,
objects, constants, events, functions, program variables),
environment variables, filenames, Graphical User Interface (GUI)
controls, and other similar terms appear in bold typeface.
Courier
Information displayed on your terminal screen and information that
you are instructed to enter appear in Courier font.
KEYSTROKE
Keys that you are to press appear in uppercase letters in Helvetica
font.
<>
Within syntax descriptions, values that you specify appear in angle
brackets. For example:
interface <ipaddress>
[]
Within syntax descriptions, optional keywords or variables appear
in brackets. For example:
ntp peer <addr> [version <number>]
14
{}
Within syntax descriptions, required keywords or variables appear
in braces. For example:
{delete <filename> | upload <filename>}
|
Within syntax descriptions, the pipe symbol represents a choice to
select one keyword or variable to the left or right of the symbol.
(The keyword or variable can be either optional or required.) For
example:
{delete <filename> | upload <filename>}
INTRODUCTION
Hardware and Software Dependencies
The following table summarizes the hardware, software, and operating system
requirements for the HP EFS WAN Accelerator CLI.
HP EFS WAN Accelerator
Command-Line Interface
Hardware Requirements
Software Requirements
Operating System Requirements
• An ASCII terminal or emulator
that can connect to the serial
console (9600 baud, 8 bits, no
parity, 1 stop bit, and no flow
control).
• Secure Shell (ssh). Free ssh clients include
PuTTY for Windows computers, OpenSSH for
many Unix and Unix-like operating systems,
and Cygwin.
or
• A computer with a Secure Shell
(ssh) client that is connected by
an IP network to the HP EFS
WAN Accelerator Primary
interface.
Ethernet Network Compatibility
The HP EFS WAN Accelerator supports the following types of Ethernet networks:
‹
Ethernet Logical Link Control (LLC) (IEEE 802.2 - 2002)
‹
Fast Ethernet 100 Base-TX (IEEE 802.3 - 2002)
‹
Gigabit Ethernet over Copper 1000 Base-T and Fiber 1000 Base-SX (LC
connector) (IEEE 802.3 - 2002)
The Primary port in the HP EFS WAN Accelerator is 10 Base-T/100, Base-TX/1000,
and Base-T/SX Mbps (IEEE 802.3 -2002).
In-path HP EFS WAN Accelerator ports are 10/100/1000 Base-TX or Gigabit Ethernet
1000Base-T/SX (IEEE 802.3 – 2002) (depending on your order).
The HP EFS WAN Accelerator supports Virtual Local Area Network (VLAN) Tagging
(IEEE 802.1Q - 2003). It does not support the Cisco InterSwitch Link (ISL) protocol.
All copper interfaces are auto-sensing for speed and duplex (IEEE 802.3 - 2002).
The HP EFS WAN Accelerator auto-negotiates speed and duplex mode for all data
rates and supports full duplex mode and flow control (IEEE 802.3 – 2002).
The HP EFS WAN Accelerator with a Gigabit Ethernet card supports Jumbo Frames
on in-path and primary ports.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
15
INTRODUCTION
HP EFS WAN Accelerator
Component
Antivirus Compatibility
The HP EFS WAN Accelerator has been tested with the following antivirus software
with no impact on performance:
‹
Network Associates (McAfee) VirusScan 7.0.0 Enterprise on the server
‹
Network Associates (McAfee) VirusScan 7.1.0 Enterprise on the server
‹
Network Associates (McAfee) VirusScan 7.1.0 Enterprise on the client
‹
Symantec (Norton) AntiVirus Corporate Edition 8.1 on the server
The HP EFS WAN Accelerator has been tested with the following antivirus software
with a noticeable to moderate impact on performance:
‹
F-Secure Anti-Virus 5.43 on the client
‹
F-Secure Anti-Virus 5.5 on the server
‹
Network Associates (McAfee) NetShield 4.5 on the server
‹
Network Associates VirusScan 4.5 for multiplatforms on the client
‹
Symantec (Norton) AntiVirus Corporate Edition 8.1 on the client
Additional Resources
This section describes resources that supplement the information in this guide. It
contains the following sections:
Related HP
Documentation
16
‹
“Related HP Documentation” on page 16
‹
“Related Reading” on page 17
You can access the complete document set for the HP EFS WAN Accelerator from the
HP StorageWorks EFS WAN Accelerator Documentation Set CD-ROM, or on the HP
documentation support site located at http://www.hp.com/support/manuals:
‹
HP StorageWorks Enterprise File Services WAN Accelerator Installation and
Configuration Guide describes how to install and configure the HP EFS WAN
Accelerator.
‹
HP Enterprise File Services WAN Accelerator Management Console User Guide
describes how to use the HP EFS WAN Accelerator Management Console to
administer and monitor your HP system.
‹
HP StorageWorks Enterprise File Services WAN Accelerator Manager User
Guide describes how to install, configure, and administer a network made up of
multiple HP EFS WAN Accelerators using the HP StorageWorks Enterprise File
Services WAN Accelerator Manager.
‹
HP StorageWorks Enterprise File Services WAN Accelerator Deployment Guide
describes how to deploy the HP EFS WAN Accelerator in complex network
environments (for example, environments using Web Cache Communication
Protocol (WCCP), Policy Based Routing (PBR), and Layer-4 switches).
INTRODUCTION
HP StorageWorks Enterprise File Services Remote Copy Utility Reference
Manual describes how to install and deploy the HP EFS Remote Copy Utility (HP
EFS RCU). The HP EFS RCU is an optional utility of the HP EFS WAN
Accelerator that copies, mirrors, and transparently prepopulates data. You can
download the HP EFS RCU from the HP support site located at www.hp.com/
support.
‹
HP StorageWorks Enterprise File Services WAN Accelerator Bypass NIC
Installation Guide describes how to install bypass cards in the HP EFS WAN
Accelerator.
Online
Documentation
The HP EFS WAN Accelerator documentation set is periodically updated with new
information. To access the most current version of the HP EFS WAN Accelerator
documentation and other technical information, consult the HP documentation support
site located at http://www.hp.com/support/manuals.
Related
Reading
To learn more about network storage systems and network administration, consult the
following books:
‹
Microsoft Windows 2000 Server Administrator’s Companion by Charlie Russell
and Sharon Crawford (Microsoft Press, 2000)
‹
Common Internet File System (CIFS) Technical Reference by Storage Networking
Industry Association (Storage Networking Industry Association, 2002)
‹
TCP/IP Illustrated, Volume I, The Protocols by W. R. Stevens (Addison-Wesley,
1994)
‹
Internet Routing Architectures (2nd Edition) by Bassam Halabi (Cisco Press,
2000)
Contacting HP
This section describes how to contact HP.
Technical
Support
Telephone numbers for worldwide technical support are listed on the following HP
web site: http://www.hp.com/support. From this web site, select the country of origin.
For example, the North American technical support number is 800-633-3600.
NOTE: For continuous quality improvement, calls may be recorded or monitored.
Be sure to have the following information available before calling:
‹
Technical support registration number (if applicable)
‹
Product serial numbers
‹
Product model names and numbers
‹
Applicable error messages
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
17
INTRODUCTION
‹
‹
Operating system type and revision level
‹
Detailed, specific questions
HP Storage Web Site
The HP web site has the latest information on this product, as well as the latest drivers.
Access the storage site at: http://www.hp.com/country/us/eng/prodserv/storage.html.
From this web site, select the appropriate product or solution.
HP NAS Services Web Site
The HP NAS Services site allows you to choose from convenient HP Care Pack
Services packages or implement a custom support solution delivered by HP ProLiant
Storage Server specialists and/or our certified service partners. For more information
see us at: http://www.hp.com/hps/storage/ns_nas.html.
18
INTRODUCTION
In This Chapter
1 - USING THE COMMAND-LINE
INTERFACE
CHAPTER 1
Using the Command-Line
Interface
This chapter describes how to access and use the HP EFS WAN Accelerator commandline interface (CLI). This chapter includes the following sections:
‹
“Connecting to the CLI,” next
‹
“Overview of the CLI” on page 20
‹
“Entering Commands” on page 21
‹
“Accessing Online Help” on page 21
‹
“Error Messages” on page 21
‹
“Command Negation” on page 21
‹
“Saving Configuration Changes” on page 22
Connecting to the CLI
This section assumes you have already performed the initial setup of the HP EFS WAN
Accelerator using the configuration wizard. For detailed information, see the HP
StorageWorks Enterprise File Services WAN Accelerator Installation and
Configuration Guide.
To connect the CLI
1. You can connect to the CLI using one of the following options:
‹
An ASCII terminal or emulator that can connect to the serial console. It must
have the following settings: 9600 baud, 8 bits, no parity, 1 stop bit, and no flow
control.
‹
A computer with a Secure Shell (ssh) client that is connected to the HP EFS
WAN Accelerator Primary port (in rare cases, you might connect through the
Auxiliary port).
2. At the system prompt, enter the following command:
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
19
ssh admin@host.domain
or
ssh admin@ipaddress
3. You are prompted for the administrator password. This is the password you set
during the initial configuration process. (The default password is password.)
You can also log in as a monitor user (monitor. Monitor users cannot make
configuration changes to the system. Monitor users can view reports and system logs.
Overview of the CLI
The CLI is divided into the following modes:
‹
User. When you start a CLI session, you begin in the default, user-mode. From
the user-mode, you can run common network tests such as ping. To exit usermode, enter exit at the command line.
‹
Enable. To access all commands, you must enter enable-mode. From enablemode, you can enter any enable-mode command or enter configuration-mode.
You must be an administrator user to enter enable-mode.
NOTE: You cannot enter enable-mode if you are a monitor user. For detailed information about
administrator and monitor users, see the HP EFS WAN Accelerator Management Console User
Guide.
‹
Configuration. To make changes to the running configuration, you must enter
configuration-mode. To save configuration changes to memory, you must enter
the write memory command. To enter configuration-mode, you must first be in
enable-mode. To exit this mode, enter exit at the command line.
The commands available to you depend on which mode you are in. Entering a question
mark (?) at the system prompt provides a list of commands for each command-mode.
Mode
Access Method
System Prompt
Exit Method
Description
user
Each CLI session begins
in user-mode.
host >
exit
• Perform common
network tests, such as
ping.
enable
Enter the enable
command at the system
prompt while in usermode.
host #
disable
• Restart and reboot the
system.
configuration
20
Enter the configure
terminal command at
the system prompt while
in enable-mode.
no enable
Note: To exit the
system, enter the exit
command.
host (config) #
exit
• Display system
information.
• Verify configuration
information.
• Configure system
parameters.
1 - USING THE COMMAND-LINE INTERFACE
Entering Commands
tilden (config)# configure t
You can press TAB to complete a CLI command automatically.
Accessing Online Help
At the system prompt, type the full or partial command string followed by a question
mark (?). The CLI displays the command keywords or parameters for the command
and a short description.
To access online help
• At the system prompt enter the following command:
tilden (config) # show ?
The CLI does not display the question mark.
Error Messages
If at any time the system does not recognize the command or parameter, it displays the
following message:
tilden (config) # logging files enable
% Unrecognized command "enable".
Type "logging files?" for help.
If a command is incomplete, the following message is displayed:
tilden (config) # logging
% Incomplete command.
Type "logging ?" for help.
Command Negation
You can type no before many of the commands to negate the syntax. Depending on the
command or the parameters, command negation disables the command or returns the
parameter to the default value.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
21
1 - USING THE COMMAND-LINE
INTERFACE
The CLI accepts abbreviations for commands. The following example is the
abbreviation for the configure terminal command:
Saving Configuration Changes
The show configuration running command displays the current configuration of the
system. When you make a configuration change to the system, the change becomes
part of the running configuration.
The change does not automatically become part of the configuration file in memory
until you write the file to memory. If you do not save your changes to memory, they
are lost when the system restarts.
To save all configuration changes to memory, you must enter the write memory
command while in enable-mode.
22
1 - USING THE COMMAND-LINE INTERFACE
In This Chapter
To enter user-mode
2 - USER-MODE COMMANDS
CHAPTER 2
User-Mode Commands
This chapter is a reference for user-mode commands. User-mode commands allow you
to enter enable-mode and perform standard network monitoring tasks.
• Connect to the CLI. For detailed information, see “Connecting to the CLI” on
page 19.
This chapter describes the following user-mode commands:
‹
“enable,” next
‹
“exit” on page 23
‹
“ping” on page 24
‹
“tcpdump” on page 25
‹
“tproxytrace” on page 26
‹
“traceroute” on page 26
enable
Description
Enters enable-mode.
Syntax
enable
Parameters
None
Example
minna > enable
minna #
exit
Description
Exits the CLI when in non-enable-mode; exits enable-mode when in enable-mode;
exits configuration-mode when in configuration-mode.
Syntax
exit
Parameters
None
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
23
Example
minna (config) # exit
minna #
ping
Description
Executes the HP EFS WAN Accelerator ping utility to send ICMP
ECHO_REQUEST packets to network hosts for troubleshooting.
The HP EFS WAN Accelerator ping command without any options pings from the
primary or the auxiliary (aux) interface and not the in-path interfaces.
If the primary and the auxiliary interfaces are not on the same network as the in-path
interfaces, you will not be able to HP EFS WAN Accelerator ping a host on the inpath interface network unless you have a gateway between the two networks.
To ping from an in-path interface, use the following syntax:
ping -I <in-path interface> <IP address>
Syntax
ping [<options>]
Parameters
<options>
The following options are supported:
[-L RUbdfnqrvVaA]
[-c count]
[-i interval]
[-w deadline]
[-p pattern]
[-s packet size]
[-t ttl]
[-I interface or address] For example: ping -Iinpath0_0<IPaddress>
[-M MTU discovery hint]
[-S sndbuf]
[-T timestamp option]
[-Q tos]
[hop1...]destination. Specify intermediate hops.
Example
24
minna # ping -Iinpath0_0 10.11.22.15
PING 10.11.22.13 (10.11.22.13) from 10.11.22.15 inpath0_0:
56(84) bytes of data.
64 bytes from 10.11.22.15: icmp_seq=0 ttl=64 time=0.044 ms
64 bytes from 10.11.22.15: icmp_seq=1 ttl=64 time=0.038 ms
64 bytes from 10.11.22.15: icmp_seq=2 ttl=64 time=0.040 ms
2 - USER-MODE COMMANDS
tcpdump
Description
TIP: You can write tcpdump output to a file using the -w option so that you can analyze it.
Syntax
tcpdump [<options>]
Parameters
<options>
The tcpdump command takes the standard Linux options:
-a Attempt to convert network and broadcast addresses to names.
-c Exit after receiving count packets.
-d Dump the compiled packet-matching code in a human readable form to
standard output and stop.
-dd Dump packet-matching code as a C program fragment.
-ddd Dump packet-matching code as decimal numbers (preceded with a
count).
-e Print the link-level header on each dump line.
-E Use algo:secret for decrypting IPsec ESP packets.
-f Print foreign internet addresses numerically rather than symbolically.
-F Use file as input for the filter expression. An additional expression
given on the command line is ignored.
-i Listen on interface. If unspecified, tcpdump searches the system
interface list for the lowest numbered, configured up interface.
-n Do not convert addresses (i.e., host addresses, port numbers, etc.) to
names.
-N Do not print domain name qualification of host names. E.g., if you
give this flag then tcpdump will print ``nic'' instead of ``nic.ddn.mil''.
-m Load SMI MIB module definitions from file module. This option can
be used several times to load several MIB modules into tcpdump.
-q Quick (quiet?) output. Print less protocol information so output lines
are shorter.
-r Read packets from file (which was created with the -w option).
Standard input is used if file is ``-''.
-S Print absolute, rather than relative, TCP sequence numbers.
-v (Slightly more) verbose output. For example, the time to live,
identification, total length and options in an IP packet are printed. Also
enables additional packet integrity checks such as verifying the IP and
ICMP header checksum.
-w Write the raw packets to file rather than parsing and printing them
out. They can later be printed with the -r option. Standard output is used if
file is ``-''.
-x Print each packet (minus its link level header) in hex. The smaller of
the entire packet or snaplen bytes will be printed.
-X When printing hex, print ascii too. Thus if -x is also set, the packet is
printed in hex/ascii. This is very handy for analyzing new protocols.
For detailed information, see the Linux manual (man) page.
Example
minna # tcpdump
tcpdump: listening on primary
18:59:13.682568 minna.domain.com.ssh > dhcp-22.domain.com.3277:
P 3290808290:3290808342(52) ack 3412262693 win 5840 (DF) [dscp
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
25
2 - USER-MODE COMMANDS
Executes the tcpdump utility. The tcpdump command takes the standard Linux
options. For detailed information, see the Linux manual (man) page.
0x10]
18:59:13.692513 minna.domain.com.ssh
P 0:52(52) ack 1 win 5840 (DF) [dscp
18:59:13.702482 minna.domain.com.ssh
P 0:52(52) ack 1 win 5840 (DF) [dscp
> dhcp-22.domain.com.3277:
0x10]
> dhcp-22.domain.com.3277:
0x10]
tproxytrace
Description
Describes the HP EFS WAN Accelerator path in real time.
Syntax
tproxytrace [<options>]
Parameters
<options>
The tproxytrace command takes the following options:
-h (help). Print this help text.
-i (iface). Use this interface to send probes on.
-d (depth). Probe to this depth of proxies.
-s (source). Use this source IP address for probes.
-t (timeout). Milliseconds per depth to listen for probe responses.
Example
minna # tproxytrace 10.0.0.3:22
Probe from 10.0.0.3 (primary) to 10.0.0.3:22
depth 1 timed out
traceroute
Description
Executes the traceroute utility. The traceroute command takes the standard Linux
options. For detailed information, see the Linux manual (man) page.
Syntax
traceroute [<options>]
Parameters
<options>
Example
26
The traceroute command takes the standard Linux options. For detailed
information, see the Linux manual (man) page.
minna # traceroute minna
traceroute to minna.domain.com (10.0.0.3), 30 hops max, 38 byte
packets
1 minna (10.0.0.3) 0.035 ms 0.021 ms 0.013 ms
2 - USER-MODE COMMANDS
In This Chapter
To enter enable-mode
3 - ENABLE-MODE COMMANDS
CHAPTER 3
Enable-Mode Commands
This chapter is a reference for enable-mode commands. Enable-mode commands are
commands that display process information.
1. Connect to the CLI. For detailed information, see “Connecting to the CLI” on
page 19.
2. To enter enable-mode, at the system prompt enter:
host > enable
host #
To enter enable-mode, enter enable. For information about the enable command, see
“enable” on page 23.
To exit enable-mode, enter exit. For information about the exit command, see “exit”
on page 23.
This chapter describes the following enable-mode commands:
‹
“configure terminal,” next
‹
“debug generate dump” on page 30
‹
“disable” on page 30
‹
“file debug-dump” on page 30
‹
“file stats” on page 31
‹
“reload” on page 31
‹
“restart” on page 32
‹
“show aaa” on page 32
‹
“show arp” on page 32
‹
“show bootvar” on page 32
‹
“show cli” on page 33
‹
“show clock” on page 33
‹
“show configuration” on page 33
‹
“show configuration files” on page 34
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
27
28
‹
“show configuration full” on page 34
‹
“show configuration running” on page 35
‹
“show connection” on page 35
‹
“show connections” on page 36
‹
“show datastore” on page 38
‹
“show email” on page 38
‹
“minna # show email Mail hub: Domain: domain.com (default) Event emails
Enabled: yes No recipients configured. Failure emails Enabled: yes No recipients
configured. show failover” on page 38
‹
“show files debug-dump” on page 39
‹
“show files stats” on page 39
‹
“show files tcpdump” on page 39
‹
“show hardware” on page 39
‹
“show hosts” on page 40
‹
“show images” on page 40
‹
“show info” on page 41
‹
“show in-path” on page 41
‹
“show in-path cdp” on page 41
‹
“show in-path neighbor” on page 42
‹
“show in-path oop-all-port” on page 42
‹
“show in-path peering rules” on page 42
‹
“show in-path rules” on page 42
‹
“show interfaces” on page 43
‹
“show ip” on page 44
‹
“show ip security” on page 45
‹
“show ip security peers” on page 45
‹
“show job” on page 45
‹
“show jobs” on page 46
‹
“show licenses” on page 46
‹
“show limit bandwidth” on page 46
‹
“show log” on page 47
‹
“show logging” on page 47
‹
“show ntp” on page 48
‹
“show out-of-path” on page 48
‹
“show peers” on page 48
‹
“show peer version” on page 48
‹
“show port-label” on page 49
3 - ENABLE-MODE COMMANDS
“show protocol cifs” on page 51
‹
“show protocol cifs internal” on page 51
‹
“show protocol connection” on page 52
‹
“show protocol mapi” on page 52
‹
“show protocol ms-sql” on page 53
‹
“show protocol ms-sql rules” on page 53
‹
“show pfs all-info” on page 49
‹
“show pfs configuration” on page 50
‹
“show pfs state shares” on page 50
‹
“show pfs stats shares” on page 51
‹
“show qos rules” on page 54
‹
“show radius” on page 54
‹
“show raid diagram” on page 54
‹
“show raid error-msg” on page 55
‹
“show running-config” on page 55
‹
“show service” on page 55
‹
“show service authentication” on page 55
‹
“show service connection pooling” on page 56
‹
“show service neural-framing” on page 57
‹
“show snmp” on page 57
‹
“show ssh client” on page 57
‹
“show ssh server” on page 57
‹
“show stats” on page 58
‹
“show tacacs” on page 59
‹
“show tcp highspeed” on page 59
‹
“show terminal” on page 59
‹
“show usernames” on page 59
‹
“show version” on page 60
‹
“show version history” on page 60
‹
“show wccp” on page 60
‹
“show web” on page 60
‹
“show web prefs” on page 62
‹
“slogin” on page 62
‹
“stats export” on page 62
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
3 - ENABLE-MODE COMMANDS
‹
29
configure terminal
Description
Enables configuration from the terminal by entering the configuration subsystem. To
exit the configuration subsystem, type exit. The no command option disables terminal
configuration.
Syntax
configure terminal
Parameters
None
Example
minna # configure terminal
minna (config) #
debug generate dump
Description
Generates a file to debug the HP EFS WAN Accelerator.
Syntax
debug generate dump
Parameters
None
Example
minna # debug generate dump
minna #
disable
Description
Exits enable-mode.
Syntax
disable
Parameters
None
Example
minna # disable
minna >
file debug-dump
Description
Deletes, emails and uploads dump files.
Syntax
file debug-dump {delete <filename> | email <filename> | upload <filename>
<URL>}
Parameters
30
delete <filename>
Specifies the system dump file to delete.
email <filename>
Specifies the system dump file to email.
upload <filename> <URL>
Specifies the system dump file to upload.
3 - ENABLE-MODE COMMANDS
Example
minna #file debug-dump delete sysdump-minna-20040302-234632.tgz
minna #
Description
Moves, deletes, or uploads HP EFS WAN Accelerator performance statistics in a
comma separated value (CSV) file. You must export the performance statistics using
the export stats command.
Syntax
file stats {move <source filename> <destination filename> |
delete <filename> |
upload <filename> <URL>}
Parameters
Example
move <source filename>
<destination filename>
Specifies the source file to move and the destination file. The
following performance statistics are available: CPU
statistics, memory ultilization, memory paging, and
bandwidth statistics.
delete <filename>
Specifies the statistics file to delete.
upload <filename>
<URL, scp:// or ftp://>
Specifies the statistics file to upload and the destination in
Universal Resource Locator (URL), scp://, or ftp:// format.
minna # file stats delete cpu.csv
minna #
reload
Description
Reboots the HP EFS WAN Accelerator. If the clean option is specified, the data store
is cleared before reboot occurs.
Syntax
reload [clean [halt] | halt | force]
Parameters
Example
clean [halt]
Clears the data store and reboots or shuts down the system. The reload
clean halt command clears the data store and shuts down the system.
halt
Shuts down the system.
force
Clears the data store, then reboots or shuts down the system.
minna # reload
The session will close. It takes about 2-3 minutes to reboot the
appliance.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
31
3 - ENABLE-MODE COMMANDS
file stats
restart
Description
Restarts the HP EFS WAN Accelerator service. If the clean option is specified, the
data store is cleared before restart occurs.
Syntax
restart [clean]
Parameters
clean
Example
Empties the data store before rebooting the system.
minna # restart
Terminating the process....
Relaunching the process.
show aaa
Description
Displays the authentication methods used for log in.
Syntax
show aaa
Parameters
None
Example
minna # show aaa
AAA authorization:
Default User: admin
Map Order: remote-first
Authentication method(s):
local
show arp
Description
Displays the contents of the Address Resolution Protocol (ARP) cache. The ARP
cache contains all of the statically-configured ARP entries as well as any that the
system has acquired dynamically.
Syntax
show arp [static]
Parameters
static
Example
Displays static ARP addresses.
minna # show arp
ARP cache contents
IP 10.0.0.1 maps to MAC 00:07:E9:70:20:15
IP 10.0.0.2 maps to MAC 00:05:5D:36:CB:29
IP 10.0.100.22 maps to MAC 00:07:E9:55:10:09
show bootvar
Description
32
Displays the software image that is booted upon the next reboot.
3 - ENABLE-MODE COMMANDS
show bootvar
Parameters
None
Example
minna # show bootvar
Installed images:
Partition 1:
rbtsh/linux columbia
Partition 2:
rbtsh/linux Columbia
Last boot partition:
Next boot partition:
#1 2004-02-07 19:24:24 root@test:CVS_TMS/HEAD
#2 2004-02-13 17:30:17 root@test:CVS_TMS/HEAD
1
1
show cli
Description
Displays current CLI settings.
Syntax
show cli
Parameters
None
Example
minna # show cli
Current inactivity timeout is 15 minutes
show clock
Description
Displays current date and time.
Syntax
show clock
Parameters
None
Example
minna
Time:
Date:
Zone:
# show clock
19:31:43
2003/12/22
GMT-offset GMT
show configuration
Description
Displays the current and saved configuration settings that differ from the default
settings.
Syntax
show configuration
Parameters
None
Example
minna # show configuration
##
## Network interface configuration
##
no interface aux dhcp
interface aux duplex "auto"
no interface aux shutdown
interface aux speed "auto"
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
33
3 - ENABLE-MODE COMMANDS
Syntax
interface primary ip address 10.0.0.3 /16
##
## Routing configuration
##
ip default-gateway "10.0.0.1"
##
## Other IP configuration
##
hostname "minna"
ip domain-list domain.com
ip domain-list domain.com
ip name-server 10.0.0.2
##
## Logging configuration
##
logging local "info"
##
## Process Manager configuration
##
pm process mgmtd launch timeout "4000"
pm process sport shutdown order "0"
pm process statsd shutdown order "0"
##
## Network management configuration
##
## Miscellaneous other settings (this is a partial example)
show configuration files
Description
Displays current configuration files.
Syntax
show configuration files [<filename>]
Parameters
<filename>
Example
Specifies a particular configuration file.
minna # show configuration files
initial (active)
initial.bak
show configuration full
34
Description
Displays all configuration settings including the default settings.
Syntax
show configuration full
Parameters
None
Example
minna # show configuration full
##
## Network interface configuration
##(displays the full configuration; this is a partial example.)
3 - ENABLE-MODE COMMANDS
show configuration running
Displays running configuration settings. The show configuration running full
command displays all settings, including default settings.
Syntax
show configuration running [full]
Parameters
full
Example
Displays complete running configuration settings.
minna # show configuration running
##
## Network interface configuration
##(displays running configuration; this is a partial example.)
show connection
Description
Displays information about a single connection.
Syntax
show connection srcip <source IP addr> srcport <source port> dstip
<destination IP addr> dstport <destination port>
Parameters
full
Example
Displays complete running configuration settings.
minna # show connection srcip 10.11.62.56 srcport 36433 dstip 10.11.60.9
dstport 7810
Type:
Passthrough
Source:
10.11.62.56:36433
Destination:
10.11.60.9:7810
Application:
Reduction:
0%
Client Side:
no
Since:
2006/02/21 17:24:00
Peer Appliance:
0.0.0.0:0
Inner Local Port:
0
Outer Local:
0.0.0.0:0
Outer Remote:
0.0.0.0:0
LAN Side Statistics:
Bytes:
0
Packets:
0
Retransmitted:
0
Fast Retransmitted: 0
Timeouts:
0
Congestion Window: 0
WAN Side Statistics:
Bytes:
0
Packets:
0
Retransmitted:
0
Fast Retransmitted: 0
Timeouts:
0
Congestion Window: 0
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
35
3 - ENABLE-MODE COMMANDS
Description
show connections
36
Description
Displays connections running through the HP EFS WAN Accelerator. A U is
displayed next to the appliance name if the connection is in an unknown state.
Syntax
show connections
[all | optimized | passthrough | opening | closing] [filter <filter-string>] [sort-by
<state> | srcip | srcport | destip | destport |peerip | peerport | app | reduction |
bytes_in | bytes_out | starttime] [full]
3 - ENABLE-MODE COMMANDS
Parameters
Specifies the total active connections optimized. A U is
displayed next to the appliance name if the connection is in an
unknown state.
passthrough
Specifies the total connections passed through, unoptimized.
A U is displayed next to the appliance name if the connection
is in an unknown state.
opening
Specifies the total half-opened active connections. A halfopened connection is a Transmission Control Protocol (TCP)
connection in which the connection has not been fully
established. Half-opened connections count toward the
connection count-limit on the HP EFS WAN Accelerator
because at any time they might become a fully opened
connection. If you are experiencing a large number of halfopened connections, you might consider an appropriately
sized HP EFS WAN Accelerator. A U is displayed next to the
appliance name if the connection is in an unknown state.
closing
Specifies the total half-closed active connections. A halfclosed connection is a TCP connection which has been closed
on one side. The other side of the connection can still send
data. These connections count toward the HP EFS WAN
Accelerator connection count-limit. If you experience a large
number of half-closed connections, you might consider an
appropriately sized HP EFS WAN Accelerator. A U is
displayed next to the appliance name if the connection is in an
unknown state.
filter <filter-string>
Filters connections according to string.
sort-by <state> srcip |
srcport | destip | destport |
peerip | peerport | app |
reduction| bytes_in |
bytes_out | starttime
Sort results by the following states:
• srcip. Sort connections by source Internet Protocol (IP)
address.
• srcport. Sort connections by source port.
• destip. Sort connections by destination IP address.
• peerip. Sort connections by peer IP address.
• peerport. Sort connections by peer port.
• app. Sort connections by application such as Hypertext
Transfer Protocol (HTTP).
• reduction. Sort connections by percent of reduction in
bandwidth.
• bytes_in. Sort connections by total number of bytes in.
• bytes_out. Sort connections by total number of bytes out.
• starttime. Sort connections by start time.
Example
meow-mix # show connections
192.168.21.252
1814 10.0.0.130
1153 TCP
2% 2005/09/15 18:04:15
192.168.21.252
1815 10.0.0.9
1171 TCP
8% 2005/09/15 18:04:
192.168.21.252
1821 65.101.207.237
143 TCP 93% 2005/09/15 18:05:22
----------------------------------------------------------------------Established Optimized (O): 1614
Half-Opened Optimized (H):
686
Half-Closed Optimized (C):
1
Pass Through (P):
12
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
37
3 - ENABLE-MODE COMMANDS
optimized
Total:
2313
show datastore
Description
Displays current data store settings.
Syntax
show datastore
Parameters
None
Example
minna # show datastore
Enable datastore wrap-around notification:
Expected period (days) before datastore wrap-around:
Automated Online datastore synchronization:
Automated Online datastore server:
Automated Online datastore peer ip address:
Automated Online datastore port:
Automated Online datastore reconnect seconds:
no
1
no
no
0.0.0.0
0
30
show email
38
Description
Displays current email settings.
Syntax
show email
Parameters
None
Example
minna # show email
Mail hub:
Domain:
domain.com (default)
Event emails
Enabled: yes
No recipients configured.
Failure emails
Enabled: yes
No recipients configured.
show failover
Description
Displays current failover device settings.
Syntax
show failover
Parameters
None
Example
minna # show failover
Enabled:
no
Master:
yes
Local Port:
7820
Buddy IP Address: 0.0.0.0
Buddy Port:
7820
minna #
3 - ENABLE-MODE COMMANDS
show files debug-dump
Displays HP EFS WAN Accelerator performance statistics in a Comma Separated
Value (CSV) format.
Syntax
show files debug-dump <filename>
Parameters
<filename>
Example
Specifies the filename.
meow-mix # show files debug-dump
sysinfo-sysdump-meow-mix-20050725-183016.txt
sysdump-meow-mix-20050606-140826.tgz
show files stats
Description
Displays HP EFS WAN Accelerator performance statistics in a CSV format.
Syntax
show files stats <filename>
Parameters
<filename>
Example
Specifies the performance statistics filename. You must first export the
performance statistics using the export stats command.
minna # show files stats
minna #
show files tcpdump
Description
Displays files saved by the tcpdump utility.
Syntax
show files tcpdump
Parameters
None
Example
minna # show files tcpdump
unopt.cap
big-noopt.cap
big-opt.cap
big.tgz
big-opt2.cap
show hardware
Description
Displays hardware information
Syntax
show hardware
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
39
3 - ENABLE-MODE COMMANDS
Description
Parameters
None
Example
minna # show hardware
Hardware Revision: B
Mainboard: Series 3000/5000 motherboard, ................. CMP-00072
Slot 0:
4 Port Copper GigE Network Bypass Card, ....... CMP-00074
Slot 1:
(Empty)
Slot 2:
(Empty)
Slot 3:
(Empty)
Slot 4:
6 Port SATA RAID I/O Card, .................... CMP-00014
Slot 5:
(Empty)
show hosts
Description
Displays system hosts.
Syntax
show hosts
Parameters
None
Example
minna # show hosts
Hostname: minna
Name server: 10.0.0.2 (configured)
Domain name: domain.com (configured)
Domain name: domain.com (configured)
IP 127.0.0.1 maps to hostname localhost
minna #
show images
40
Description
Displays the available software images and which partition the HP EFS WAN
Accelerator will boot the next time the appliance is restarted.
Syntax
show images
Parameters
None
Example
minna # show images
Images available to be installed:
webimage.tbz
rbtsh/linux Vancouver #12 2004-07-15 11:54:52 root@test:CVS_TMS/HEAD
image.img
rbtsh/linux 1.0 #17 2004-04-29 16:39:32 root@test:CVS_TMS/HEAD
Installed images:
Partition 1:
rbtsh/linux flamebox-HEAD-2004-07-15-07:19:19 #0 2004-07-15 07:19:19
root@test:CVS_TMS/HEAD
Partition 2:
rbtsh/linux Vancouver #12 2004-07-15 11:54:52 root@test:CVS_TMS/HEAD
Last boot partition: 2
Next boot partition: 2
3 - ENABLE-MODE COMMANDS
show info
Displays the system status, including the running state of the HP EFS WAN
Accelerator.
Syntax
show info
Parameters
None
Example
minna # show info
Status:
Config:
Appliance Up Time:
Service Up Time:
Temperature (C):
Serial:
Model:
Revision:
Version:
minna #
Healthy
working
2d 3h 48m 22s
21h 35m 42s
43
S1200036332
5010
A
rapanui-flamebox
show in-path
Description
Displays current in-path configuration settings.
Syntax
show in-path
Parameters
None
Example
minna # show in-path
Enabled:
yes
Kickoff:
yes
L4/PBR/WCCP (on wan0_0): no
Optimizations Enabled On:
inpath0_0
VLAN Tag IDs:
inpath0_0: 0
minna #
show in-path cdp
Description
Displays Cisco Discovery Protocol (CDP) settings for failover deployments using
PBR to redirect traffic to the backup HP EFS WAN Accelerator.
Syntax
show in-path cdp
Parameters
None
Example
minna (config) # show in-path cdp
CDP Enabled: no
Interval: 10 seconds
Hold Time: 180 seconds
minna #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
41
3 - ENABLE-MODE COMMANDS
Description
show in-path neighbor
Description
Displays current connection forwarding settings. For detailed information, see “inpath neighbor enable” on page 95.
Syntax
show in-path neighbor
Parameters
None
Example
minna # show in-path neighbor
Connection forwarding Enabled: no
Connection forwarding Port:
7850
Keepalive Count:
3
Keepalive Interval:
10
show in-path oop-all-port
Description
Displays ports for failover deployments using PBR with CDP to redirect traffic to the
backup HP EFS WAN Accelerator.
Syntax
show in-path oop-all-port
Parameters
None
Example
minna (config) # show in-path oop-all-port
L4/PBR/WCCP on all interfaces: no
minna #
show in-path peering rules
Description
Displays current in-path peering rules for serial cluster deployments.
Syntax
show in-path peering rules
Parameters
None
Example
minna (config) # show in-path peering rules
Rule Type
Source Network
Dest Network
Port Peer Addr
----- ------ ------------------ ------------------ ----- ------------1 pass
*
*
*
10.0.1.3
2 pass
*
*
*
10.0.1.
def auto *
*
*
*
show in-path rules
42
Description
Displays current in-path rules and Virtual Local Area Network (VLAN) identification
numbers.
Syntax
show in-path rules
Parameters
None
3 - ENABLE-MODE COMMANDS
Example
show interfaces
Description
Displays the running state settings (which might be different due to Dynamic Host
Configuration Protocol (DHCP)) and statistics.
Syntax
show interfaces [<intname>] | [brief | configured]
Parameters
Example
<intname>
Specifies the name of the interface.
brief
Displays the running state settings without statistics.
configured
Displays configured settings for the interface.
minna # show interfaces
Interface lo state
Up:
yes
IP address:
127.0.0.1
Netmask:
255.0.0.0
Speed:
Duplex:
Interface type:
loopback
MTU:
16436
HW address:
XX:XX:XX:XX:XX
RX bytes:
656
RX packets:
12
RX mcast packets:
0
RX discards:
0
RX errors:
0
RX overruns:
0
RX frame:
0
TX bytes:
656
TX packets:
12
TX discards:
0
TX errors:
0
TX overruns:
0
TX carrier:
0
TX collisions:
0
Interface primary state
Up:
yes
IP address:
10.0.0.3
Netmask:
255.255.0.0
Speed:
100Mb/s (auto)
Duplex:
full (auto)
Interface type:
ethernet
MTU:
1500
HW address:
00:E0:81:52:0E:20
RX bytes:
576490
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
43
3 - ENABLE-MODE COMMANDS
minna (config) # show in-path rules
Rule Type O N VLAN Source Addr
Dest Addr
Port
----- ---- - - ---- ------------------ ------------------ ------------1 pass - - all all
all
Secure
2 pass - - all all
all
Interactive
def auto F A all all
all
all
----------------------------------------------------------------------2 user added rule(s)
(O) Optimization Policy: F=Full S=SDR-Only C=Compr-Only N=None
(N) Neural Framing:
N=Never A=Always T=TCP Hints D=Dynamic
RX packets:
RX mcast packets:
RX discards:
RX errors:
RX overruns:
RX frame:
TX bytes:
TX packets:
TX discards:
TX errors:
TX overruns:
TX carrier:
TX collisions:
Interface aux state
Up:
IP address:
Netmask:
Speed:
Duplex:
Interface type:
MTU:
HW address:
RX bytes:
RX packets:
RX mcast packets:
RX discards:
RX errors:
RX overruns:
RX frame:
TX bytes:
TX packets:
TX discards:
TX errors:
TX overruns:
TX carrier:
TX collisions:
7454
0
0
0
0
0
63464
559
0
0
0
0
0
yes
UNKNOWN
UNKNOWN
ethernet
1500
00:E0:81:52:0E:21
0
0
0
0
0
0
0
0
0
0
0
0
0
0
show ip
Description
Displays Internet Protocol (IP) settings.
Syntax
show ip {default gateway [static] |in-path route <interface> in-pathgateway
<interface> route [static]}
Parameters
Example
44
default gateway
[static]
Displays the default gateway or static default gateway.
in-path route
<interface>
Displays in-path route settings for inpath0_0, inpath1_1.
in-path-gateway
<interface>
Displays in-path gateway settings for inpath0_0, inpath1_1.
route [static]
Displays the IP route or IP static route.
minna # show ip route
Destination
Mask
10.0.0.0
255.255.0.0
Gateway
0.0.0.0
3 - ENABLE-MODE COMMANDS
default
minna #
0.0.0.0
10.0.0.1
Description
Displays IP Security Protocol (IPSec) settings. IPsec security support must also be
running when IP security is enabled, if both are not enabled a problem could result
with your security settings.
Syntax
show ip security
Parameters
None
Example
minna # show ip security
IP security enabled:
PFS enabled:
IKE rekeying interval:
Encryption policy:
Authentication policy:
IP security is running:
yes
yes
240
des
hmac_md5
yes
show ip security peers
Description
Displays IPsec security settings for peer HP EFS WAN Accelerators. The show ip
security peers command displays a static configuration and might not reflect that
actual IPsec connections that are established. If a connection has not been made
between the two HP EFS WAN Accelerators that are configured to use IPsec security,
then it does not display the peer HP EFS WAN Accelerator because a security
association has not yet been established.
Syntax
show ip security peers
Parameters
None
Example
minna # show ip security peers
Peer
Crypt
Auth
State
10.11.24.4 des-cbc
hmac-md5
mature
Duplex
Created
full
Jun 23 11:32:52
show job
Description
Displays scheduled jobs.
Syntax
show job <job-id>
Parameters
<job-id>
Example
Specifies the job identification number.
minna # show job 10
job {job_id}: 10
Status: pending
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
45
3 - ENABLE-MODE COMMANDS
show ip security
Name: myjob
Comment: this is a text
Absolute range:
Commands:
show info.
show connections.
show version.
show jobs
Description
Displays a list of all jobs.
Syntax
show jobs
Parameters
None
Example
minna # show jobs
% No jobs configured.
show licenses
Description
Displays active licenses.
Syntax
show licenses
Parameters
None
Example
minna # show licenses
XXX-XXXXXX-XXXX-XXXX-X-XXXX-XXXX-XXXX
Feature:
SH10BASE
Valid:
yes
Active:
yes
Start date:
End date:
XXX-XXXXXX-XXXX-XXXX-X-XXXX-XXXX-XXXX
Feature:
SH10CIFS
Valid:
yes
Active:
yes
Start date:
End date:
XXX-XXXXXX-XXXX-XXXX-X-XXXX-XXXX-XXXX
Feature:
SH10EXCH
Valid:
yes
Active:
yes
Start date:
End date:
show limit bandwidth
46
Description
Displays current bandwidth threshold settings.
Syntax
show limit bandwidth
Parameters
None
3 - ENABLE-MODE COMMANDS
Example
minna # show limit bandwidth
Max rate: 4000 kb/s
wan0_0 : disabled
primary: disabled
3 - ENABLE-MODE COMMANDS
show log
Description
Displays system logs.
Syntax
show log [continuous | files <log number> | matching]
Parameters
continuous
Displays the log continuously, similar to the tail -f command.
files <log number>
Displays a list of log files or a specific log file.
matching
Displays a list of matching log files.
Example
minna # show log
Dec 22 20:00:00 localhost /usr/sbin/crond[784]:
logrotate /etc/logrotate.conf)
Dec 22 20:00:00 localhost cli[555]: [cli.INFO]:
signal 2 (SIGINT)
Dec 22 20:02:31 localhost cli[555]: [cli.INFO]:
command: show ip route
Dec 22 20:02:38 localhost cli[555]: [cli.INFO]:
signal 2 (SIGINT)
Dec 22 20:03:16 localhost cli[555]: [cli.INFO]:
signal 2 (SIGINT)
Dec 22 20:04:00 localhost cli[555]: [cli.INFO]:
command: show ip route static
Dec 22 20:05:02 localhost cli[555]: [cli.INFO]:
command: show licenses
Dec 22 20:05:09 localhost cli[555]: [cli.INFO]:
signal 2 (SIGINT)
Dec 22 20:06:44 localhost cli[555]: [cli.INFO]:
command: show limit bandwidth
Dec 22 20:06:49 localhost cli[555]: [cli.INFO]:
signal 2 (SIGINT)
Dec 22 20:07:12 localhost cli[555]: [cli.INFO]:
command: show log
(root) CMD (/usr/sbin/
user admin: CLI got
user admin: Executing
user admin: CLI got
user admin: CLI got
user admin: Executing
user admin: Executing
user admin: CLI got
user admin: Executing
user admin: CLI got
user admin: Executing
show logging
Description
Displays log settings.
Syntax
show logging
Parameters
None
Example
minna # show logging
Local logging level: info
Default remote logging level: info
No remote syslog receivers configured.
Number of archived log files to keep: 10
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
47
Log rotation frequency: daily
minna #
show ntp
Description
Displays Network Time Protocol (NTP) settings.
Syntax
show ntp
Parameters
None
Example
minna # show ntp
NTP enabled: yes
No NTP peers configured.
NTP server: 192.6.38.127 (version 4)
NTP server: 66.187.224.4 (version 4)
NTP server: 66.187.233.4 (version 4)
show out-of-path
Description
Displays current out-of path configuration settings.
Syntax
show out-of-path
Parameters
None
Example
minna # show out-of-path
Enabled:
no
Inner Port: 7810
show peers
Description
Displays connected HP EFS WAN Accelerators.
Syntax
show peers
Parameters
None
Example
minna # show peers
IP
Name
10.11.22.17
tcfe17
Model
Version
Licenses
2000
rapanui-flamebox CIFS/MAPI/MS-SQL
show peer version
48
Description
Displays the current service connection protocol.
Syntax
show peer version
Parameters
None
Example
minna # show peer version
No peer setting defined.
3 - ENABLE-MODE COMMANDS
show port-label
Displays configured port labels.
Syntax
show port-label [<name>] [Secure | Interactive]
Parameters
<name>
Specifies the port label name.
Secure
Specifies default port label for secure ports. The HP EFS WAN
Accelerator automatically pass-through traffic on commonly secure ports
(for example, ssh, https, and smtps). For a list of ports forwarded, see
Appendix B, “HP EFS WAN Accelerator Ports.”
If you do not want to forward secure ports, you must delete the default
Secure in-path rule. For detailed information, see “in-path rule fixedtarget” on page 103.
Interactive
Specifies the default port label for interactive ports. The HP EFS WAN
Accelerator automatically passes through traffic on interactive ports (for
example, Telnet, TCP ECHO, remote logging, and shell). For a list of ports
forwarded, see Appendix B, “HP EFS WAN Accelerator Ports.”
If you do not want to forward interactive ports, you must delete the default
Secure in-path rule. For detailed information, see “in-path rule fixedtarget” on page 103.
Example
minna # show port-label
Port Label:
Interactive
Port Label:
Secure
minna (config) # show port-label Secure
Port Label: Secure
22, 261, 443, 448, 465, 563, 585, 614, 636, 684, 695, 989-990, 992-995,
1701, 17
23, 2252, 2478-2479, 2482, 2484, 2679, 2762, 2998, 3077-3078, 3183,
3191, 3220,
3269, 3410, 3424, 3471, 3496, 3509, 3529, 3539, 3660-3661, 3713, 3747,
3864, 388
5, 3896-3897, 3995, 4031, 5007, 5061, 7674, 9802, 11751, 12109
show pfs all-info
Description
Displays all Proxy File Services (PFS) settings.
Syntax
show pfs all-info shares [local-name <localname>]
Parameters
local-name
<localname>
Example
Displays the PFS settings for the local share specified.
minna # show pfs all-info shares
no registered shares
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
49
3 - ENABLE-MODE COMMANDS
Description
show pfs configuration
Description
Displays PFS configuration settings.
Syntax
show pfs configuration [filer |shares [local-name <localname>]]
Parameters
Example
filer
Displays PFS settings for the HP EFS WAN Accelerator (the proxy-filer).
shares
[local-name
<localname>]
Displays the PFS settings for all the shares or the local share specified.
minna # show pfs configuration filer
PFS enabled:
yes
Domain Name/Realm:
perf1cs2.local
Domain Controller Name:
Security Signature:
disabled
minna # show pfs configuration shares
+=============================
| Information for PFS share lshare1
|
| ----- Configuration ----|
Port: 8777
|
Comment:
|
Frequency: 60
|
Sharing Enabled: true
|
Mode: local
|
Syncing Enabled: true
|
Server Name: 10.11.41.2
|
Remote Path: c:\lshare1
show pfs state shares
Description
Displays the current statistics for the local shares.
Syntax
show pfs state shares [local-name <localname>]
Parameters
local-name
<localname>
Example
50
Displays the PFS settings for local share specified.
minna # show pfs state shares
+=============================
| Information for PFS share lshare1
|
| ----- Status ----|
Last Sync Status: true
|
Share Ready: true
|
Status: START_SYNC in progress since Fri Sep
|
Size (MB): 39
|
Last Synced: Fri Sep 9 17:04:26 2005
9 17:05:30 2005
3 - ENABLE-MODE COMMANDS
show pfs stats shares
Displays PFS share statistics.
Syntax
show pfs stats shares [local-name <localname>]
Parameters
local-name
<localname>
Example
Specifies the name of the local share for which to display statistics.
minna (config) # show pfs stats shares
+=============================
| Information for PFS share field_kit
|
| ----- Statistics ----+=============================
| Information for PFS share internal-test
|
| ----- Statistics ----+=============================
| Information for PFS share internal-townsend
|
| ----- Statistics ----+=============================
show protocol cifs
Description
Displays the Common Internet Filing System (CIFS) protocol settings.
Syntax
show protocol cifs
Parameters
None
Example
minna # show protocol cifs
Enable transparent Prepopulation Support: no before the write opt one
Disable CIFS Optimization: no
show protocol cifs internal
Description
Displays the internal CIFS protocol settings.
Syntax
show protocol cifs internal
Parameters
None
Example
minna # show protocol cifs internal
Outstanding request limit:
Timeout for cached filesystem size info:
Timeout for cached filesystem attribute info:
Minimum cache time for file metadata:
Maximum cache time for file metadata:
Multiplier for file metadata:
Multiplier for file data:
Latency Optimization Enabled:
60%
300
900
500
2000
20
10
yes
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
51
3 - ENABLE-MODE COMMANDS
Description
Max Random Read Ahead File Size:
Max Random Read Ahead Sequence Window:
Max Memory for File Data:
DCE RPC Optimization:
Holdback Overlapped Open:
Idle FOI Optimization:
Max Pending Queue Length:
Use Allocation Block Size:
Read Ahead Increment Size:
Asynchronous Write Close Ok:
Optimize invalid trans2 setfileinfo request:
Prediction Enabled:
Prediction Depth:
Prediction Max Entries:
Prediction Max Graphs:
Prediction Max Last Pids:
Prediction Threshold:
Prediction Idle Timeout:
Prediction Idle Timeout RTT Multiple:
Prediction Idle Op-Lock Timeout:
Read Ahead Entire File:
Initiate Bigger Read from CFE:
Name Encode:
Max Amount of data cached when SDR disabled:
Optimize Write with Strict Locking:
Async Write Count:
50 MB
64 KB
5 MB
yes
yes
yes
50
yes
10 MB
no
no
yes
5
2500
600
20
55
2000
50
50
no
yes
yes
64
no
2048 KB
show protocol connection
Description
Displays the high-speed Transmission Control Protocol (HSTCP) settings.
Syntax
show protocol connection
Parameters
None
Example
minna # show protocol connection
LAN:
Send socket buffer size:
Receive socket buffer size:
WAN:
Default send socket buffer size:
Default receive socket buffer size:
81920 bytes
32768 bytes
262140 bytes
262140 bytes
show protocol mapi
52
Description
Displays the Messaging Application Programming Interface (MAPI) prepopulation
settings.
Syntax
show protocol mapi
Parameters
None
Example
minna # show protocol mapi
Incoming MAPI Port:
Prepop Enabled:
Prepop Max Connections:
Prepop Poll Interval:
Prepop Timeout:
7830
yes
1125
20 min(s)
96 hr(s)
3 - ENABLE-MODE COMMANDS
NSPI Port:
7840
MAPI/Exchange 2003 Support: yes
Description
Displays the Microsoft Structured Query Language (MS-SQL) blade support settings.
Syntax
show protocol ms-sql
Parameters
None
Example
minna # show protocol ms-sql
Enable entire MS-SQL blade:
MS-SQL server port:
MS-SQL number of preacknowledgement:
MS-SQL prefetch fetch-next:
yes
1433
5
yes
show protocol ms-sql rules
Description
Displays the MS-SQL rules.
Syntax
show protocol ms-sql rules
Parameters
None
Example
minna # show protocol ms-sql rules
MS-SQL RPC Rule
Rule ID App Name RPC ID RPC Name Num Params RPC Query Cursor Type
------- -------- ------ -------- ---------- --------- ----------1
Microsoft\(R\) Project for Windows\(TM\) 0
sp_ddopen 9
MS-SQL RPC Arg Rule
Arg-Offset Expr
---------- -------------------------------------------------------1
sp_tables
5
MSP_PROJECTS
MS-SQL RPC Action
Action ID Num Reps Invalidate Miss Policy Prefetch Preack
--------- -------- ---------- ----------- -------- -----1
1
flush-all
0
true
true
MS-SQL RPC Arg Action Rule
Arg-Offset Expr
---------- -------------------------------------------------------5
replace MSP_NUMBER_FIELDS
MS-SQL RPC Action
Action ID Num Reps Invalidate Miss Policy Prefetch Preack
--------- -------- ---------- ----------- -------- -----2
1
flush-all
0
true
true
MS-SQL RPC Arg Action Rule
Arg-Offset Expr
---------- -------------------------------------------------------5
replace MSP_TEXT_FIELDS
MS-SQL RPC Action
Action ID Num Reps Invalidate Miss Policy Prefetch Preack
--------- -------- ---------- ----------- -------- -----3
1
flush-all
0
true
true
MS-SQL RPC Arg Action Rule
rg-Offset Expr
---------- --------------------------------------------------------
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
53
3 - ENABLE-MODE COMMANDS
show protocol ms-sql
5
replace MSP_DATE_FIELDS
(this is a partial example)
show qos rules
Description
Displays Quality of Service (QoS) rules.
Syntax
show qos rules
Parameters
None
Example
minna # show qos rules
Rule Source
Destination
Port
DSCP
----- ------------------ ------------------ --------------- ---def
all
all
all
refl
---------------------------------------------------------------0 user added rule(s)
show radius
Description
Displays Remote Authentication Dial-In User Service (RADIUS) configuration
settings.
Syntax
show radius
Parameters
None
Example
minna # show radius
No radius settings.
show raid diagram
54
Description
Displays the physical layout of the Redundant Array of Independent Disks (RAID)
disks and the state of each drive: O=Online, F=Fail, R=Rebuild, M=missing,
S=spare.
Syntax
show raid diagram
Parameters
None
Example
minna # show raid diagram
series 3000 layout:
[=======][=======][=======][=======]
[ N/A ][ N/A ][ N/A ][
S
]
[=======][=======][=======][=======]
-----------------------------------[=======][=======][=======][=======]
[
5
][
6
][
7
][
8
]
[=======][=======][=======][=======]
-----------------------------------[=======][=======][=======][=======]
[
1
][
2
][
3
][
4
]
[=======][=======][=======][=======]
3 - ENABLE-MODE COMMANDS
3 - ENABLE-MODE COMMANDS
series 5000 layout:
[=======][=======][=======][=======]
[
9
][ 10
][ N/A ][
S
]
[=======][=======][=======][=======]
-----------------------------------[=======][=======][=======][=======]
[
5
][
6
][
7
][
8
]
[=======][=======][=======][=======]
----------------------------------[=======][=======][=======][=======]
[
1
][
2
][
3
][
4
]
[=======][=======][=======][=======]
show raid error-msg
Description
Displays the RAID disk drives that are not functioning.
Syntax
show raid error-msg
Parameters
None
Example
minna # show raid error-msg
show running-config
Description
Displays the running configuration. The show running-config full command
displays all settings, including those set to the default value.
Syntax
show running-config [full]
Parameters
full
Example
Displays all settings, including those set to the default value.
minna # show running-config
(displays running configuration)
show service
Description
Displays current state of the HP EFS WAN Accelerator service.
Syntax
show service
Parameters
None
Example
minna # show service
Optimization Service: Running
show service authentication
Description
Displays current client and server authentication settings.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
55
Syntax
show service authentication
Parameters
None
Example
minna # show service authentication
Authentication Service: Not Enabled
show service connection pooling
56
Description
Displays the HP EFS WAN Accelerator connection pooling settings.
Syntax
show service connection pooling
Parameters
None
Example
minna # show service connection pooling
Connection Pooling Max Pool Size: 20
3 - ENABLE-MODE COMMANDS
show service neural-framing
Displays neural-framing settings.
Syntax
show service neural-framing
Parameters
None
3 - ENABLE-MODE COMMANDS
Description
minna # show service neural-framing
Enable Computation of Neural heuristics: no
minna #
show snmp
Description
Displays current Simple Network Management Protocol (SNMP) server settings.
Syntax
show snmp
Parameters
None
Example
minna # show snmp
SNMP enabled: yes
System location:
System contact:
Read-only community: public
Traps enabled: yes
No trap sinks configured.
show ssh client
Description
Displays the client settings.
Syntax
show ssh client
Parameters
None
Example
minna # show ssh client
SSH server enabled: yes
show ssh server
Description
Displays the server settings.
Syntax
show ssh server
Parameters
None
Example
minna # show ssh server
SSH server enabled: yes
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
57
show stats
Description
Displays system statistics.
Syntax
show stats {alarm <type>}
[bandwidth {all | <port> bi-directional | lan-to-wan | wan-to-lan [5min | hour |
day | week | month]}]
[connections {5min | hour | day | week | month} |
[ports [all <portnumber>] [hour | day | week | month]] |
[cpu] |[datastore <carriage return>| [5min | hour | day | week | month]]
[memory] |
settings bandwidth ports |
throughput {all | <port>} |
traffic {5min | hour | day | week | month}
Parameters
Example
58
alarm <type>
Displays alarm statistics. Specify alarm type or
<carriage return>: <alarm-ID>, admission-conn,
admission_mem, bypass, cpu_util_indiv,
critical_temp, duplex, halt_error, link_state,
paging, ruc_error, service_error, store_corruption,
sw-version, warning_temp.
bandwidth all | <port> bidirectional | lan-to-wan | wan-tolan | bi-directional [5min | hour |
day | week | month]
Displays bandwidth statistics.
connections {5min | hour | day |
week | month}
Displays connection statistics.
cpu
Displays Central Processing Unit (CPU) statistics.
datastore <carriage return> |
[5min | hour | day | week | month]
Displays data store statistics.
memory
Displays memory statistics.
settings bandwidth ports
Displays ports being monitored.
throughput [all | <port>]
Displays throughput statistics.
traffic {5min | hour | day | week |
month}
Displays traffic statistics for the last hour, day, week,
or month.
minna
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
Alarm
# show stats alarm
admission_conn:
admission_mem:
bypass:
cpu_util_indiv:
critical_temp:
duplex:
halt_error:
paging:
rcu_error:
service_error:
store_corruption:
sw-version:
warning_temp:
ok
ok
ok
ok
ok
ok
ok
ok
ok
ok
ok
ok
ok
3 - ENABLE-MODE COMMANDS
show tacacs
Displays Terminal Access Controller Access Control System (TACACS+) settings.
Syntax
show tacacs
Parameters
None
Example
minna # show tacacs
TACACS+ defaults:
key:
timeout: 3
retransmit: 1
No TACACS+ servers configured.
3 - ENABLE-MODE COMMANDS
Description
show tcp highspeed
Description
Displays high-speed TCP (HSTCP) settings. The HSTCP feature is only available on
the HP EFS WAN Accelerator, model DL380-5010.
Syntax
show tcp highspeed
Parameters
None
Example
minna # show tcp highspeed
High Speed TCP license found: no
High Speed TCP enabled: no
show terminal
Description
Displays terminal settings.
Syntax
show terminal
Parameters
None
Example
minna # show terminal
Terminal width: 80 columns
Terminal length: 24 rows
show usernames
Description
Displays information about active or configured users.
Syntax
show usernames
Parameters
None
Example
minna # show usernames
admin
monitor
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
59
show version
Description
Displays the installed software version, including build number.
Syntax
show version [concise]
Parameters
concise
Example
Displays the installed software version without build information.
#minna # show version
Product name:
rbtsh/linux
Product release:
columbia
Build ID:
#1
Build date:
2004-02-07 19:24:24
Built by:
root@releng
show version history
Description
Displays history of image upgrades.
Syntax
show version history
Example
#minna # show version history
rbt_sh 2.1.6 #37 2006-03-31 21:44:41 i386 root@munich:repository/
rapanui_37
show wccp
Description
Displays current Web Cache Communications Protocol (WCCP) settings.
Syntax
show wccp
Parameters
None
Example
minna # show wccp
WCCP Support Enabled: no
WCCP Multicast TTL:
1
show web
Description
Displays current Web settings.
Syntax
show web
Parameters
None
Example
minna # show web
web-based management console enabled:
HTTP enabled: yes
HTTP port: 80
60
3 - ENABLE-MODE COMMANDS
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
3 - ENABLE-MODE COMMANDS
HTTPS enabled: yes
HTTPS port: 443
Inactivity timeout: 15 minutes
Session timeout: 60 minutes
Session renewal threshold: 30 minutes
61
show web prefs
Description
Displays current Web preferences.
Syntax
show web prefs
Parameters
None
Example
minna # show web prefs
Log:
Lines Per Page: 100
slogin
Description
Enables log in to another shell using Secure Shell (ssh). To view options, enter slogin
at the system prompt.
Syntax
slogin [<options>]
Parameters
<options>
Example
Specifies slogin options. To view options, enter slogin at the system
prompt.
minna # slogin -l usertest
stats export
62
Description
Exports HP EFS WAN Accelerator performance statistics to a CSV file so that you
can easily transfer them to spread sheets and database systems.
Syntax
stats export {<report name> <filename>}
[after <date> <time> before <date> <time>]
3 - ENABLE-MODE COMMANDS
Parameters
<report name> <filename>
If you do not specify a filename, a filename is automatically
created: reportname-data-time.csv. If you do not specify
the file extension (.csv), it is automatically appended to the
new file.
Usage
before <date> <time>
Specifies the date and time from which the report begins.
For the date and time, use the following format: yyyy/mm/
dd, hh:mm:ss.
after <date> <time>
Specifies the date and time from which the report ends. For
the date and time, use the following format: yyyy/mm/dd,
hh:mm:ss
You can view performance report statistics using the show files stats command:
show files stats <filename>
You can move, delete, and upload statistics using the following commands:
file stats move <source filename> <destination filename>
file stats delete <filename>
file stats upload <filename> <URL>
Example
minna # stats export cpu_util cpureport.csv
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
63
3 - ENABLE-MODE COMMANDS
Specifies the source file and the destination file. The
following performance statistics are available: CPU
statistics, memory ultilization, memory paging, aggregate
bandwidth statistics for the hour, day, week, and month, and
port bandwidth statistics for the hour, day, week, and month.
64
3 - ENABLE-MODE COMMANDS
In This Chapter
Configuration-Mode Commands
This chapter is a reference for configuration-mode commands. Configuration-mode
commands set configuration properties for the HP EFS WAN Accelerator.
To execute configuration-mode commands, you must first enter enable-mode.
To enter configurationmode
1. Connect to the CLI. For detailed information, see “Connecting to the CLI” on
page 19.
2. To enter enable-mode, at the system prompt enter:
host> enable
3. To enter configuration-mode, at the system prompt enter:
host # configure terminal
host (config) #
You are in configuration-mode.
To exit configuration-mode, enter exit. For information about the exit command, see
“exit” on page 23.
This chapter describes the following configuration-mode commands:
‹
“aaa authentication login default,” next
‹
“aaa authorization map default-user” on page 72
‹
“aaa authorization map order” on page 72
‹
“arp” on page 73
‹
“banner” on page 73
‹
“boot system” on page 74
‹
“clear arp-cache” on page 74
‹
“cli clear-history” on page 74
‹
“cli default auto-logout” on page 75
‹
“cli default paging enable” on page 75
‹
“cli session” on page 75
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
65
4 - CONFIGURATION-MODE
COMMANDS
CHAPTER 4
66
‹
“clock set” on page 76
‹
“clock timezone” on page 76
‹
“configuration copy” on page 76
‹
“configuration delete” on page 77
‹
“configuration fetch” on page 77
‹
“configuration jump-start” on page 78
‹
“configuration merge” on page 78
‹
“configuration move” on page 79
‹
“configuration new” on page 80
‹
“configuration revert saved” on page 80
‹
“configuration switch-to” on page 80
‹
“configuration upload” on page 81
‹
“configuration write” on page 81
‹
“datastore notification enable” on page 81
‹
“datastore notification wrap-around” on page 82
‹
“datastore receive port” on page 82
‹
“datastore send addr” on page 82
‹
“datastore sync enable” on page 83
‹
“datastore sync peer-ip” on page 83
‹
“datastore sync port” on page 84
‹
“datastore sync reconnect” on page 84
‹
“datastore sync server” on page 84
‹
“email domain” on page 84
‹
“email mailhub” on page 85
‹
“email notify events enable” on page 85
‹
“email notify events recipient” on page 85
‹
“email notify failures enable” on page 86
‹
“email notify failures recipient” on page 86
‹
“email send-test” on page 86
‹
“failover buddy addr” on page 86
‹
“failover buddy port” on page 87
‹
“failover enable” on page 87
‹
“failover master” on page 87
‹
“failover port” on page 88
‹
“file stats delete” on page 88
‹
“file stats move” on page 88
4 - CONFIGURATION-MODE COMMANDS
“file stats upload” on page 89
‹
“file tcpdump” on page 89
‹
“file tcpdump delete” on page 89
‹
“file tcpdump upload” on page 90
‹
“hardware ecc-mem-check enable” on page 90
‹
“hardware upgrade model” on page 90
‹
“hostname” on page 91
‹
“image boot” on page 91
‹
“image delete” on page 91
‹
“image fetch” on page 91
‹
“image install” on page 92
‹
“image move” on page 92
‹
“in-path cdp enable” on page 92
‹
“in-path cdp holdtime” on page 93
‹
“in-path cdp interval” on page 93
‹
“in-path enable” on page 94
‹
“in-path interface enable” on page 94
‹
“in-path interface vlan tag” on page 94
‹
“in-path kickoff” on page 95
‹
“in-path neighbor enable” on page 95
‹
“in-path neighbor ip address” on page 96
‹
“in-path neighbor keepalive count” on page 97
‹
“in-path neighbor keepalive interval” on page 97
‹
“in-path neighbor port” on page 97
‹
“in-path oop all-port enable” on page 97
‹
“in-path oop enable” on page 98
‹
“in-path peering rule” on page 98
‹
“in-path peering move-rule” on page 100
‹
“in-path rule auto-discover” on page 100
‹
“in-path rule deny” on page 102
‹
“in-path rule discard” on page 102
‹
“in-path rule fixed-target” on page 103
‹
“in-path rule move” on page 105
‹
“in-path rule pass-through” on page 105
‹
“in-path simplified routing” on page 105
‹
“interface” on page 106
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
4 - CONFIGURATION-MODE
COMMANDS
‹
67
68
‹
“ip default-gateway” on page 107
‹
“ip domain-list” on page 107
‹
“ip host” on page 108
‹
“ip in-path route” on page 108
‹
“ip in-path-gateway” on page 108
‹
“ip name-server” on page 109
‹
“ip route” on page 109
‹
“ip security authentication policy” on page 110
‹
“ip security enable” on page 110
‹
“ip security encryption policy” on page 110
‹
“ip security peer ip” on page 111
‹
“ip security pfs enable” on page 111
‹
“ip security rekey interval” on page 112
‹
“ip security shared secret” on page 112
‹
“job command” on page 112
‹
“job comment” on page 113
‹
“job date-time” on page 113
‹
“job enable” on page 114
‹
“job execute” on page 114
‹
“job fail-continue” on page 115
‹
“job name” on page 115
‹
“license delete” on page 115
‹
“license install” on page 116
‹
“limit bandwidth max” on page 116
‹
“logging” on page 117
‹
“logging files delete” on page 117
‹
“logging files rotation criteria frequency” on page 117
‹
“logging files rotation criteria size” on page 118
‹
“logging files rotation force” on page 118
‹
“logging files rotation max-num” on page 118
‹
“logging local” on page 118
‹
“logging trap” on page 119
‹
“ntpdate” on page 119
‹
“ntp disable” on page 120
‹
“ntp enable” on page 120
‹
“ntp peer” on page 120
4 - CONFIGURATION-MODE COMMANDS
“ntp server” on page 120
‹
“out-of-path enable” on page 121
‹
“peer” on page 121
‹
“pfs auto-launch enable” on page 122
‹
“pfs configure” on page 123
‹
“pfs enable” on page 123
‹
“pfs local-password” on page 125
‹
“pfs security-sign” on page 125
‹
“pfs share cancel-event” on page 126
‹
“pfs share configure” on page 126
‹
“pfs share enable” on page 128
‹
“pfs share manual-sync” on page 128
‹
“pfs share modify” on page 128
‹
“pfs share stop” on page 129
‹
“pfs share sync” on page 129
‹
“pfs share verify” on page 130
‹
“pfs start” on page 130
‹
“port-label” on page 130
‹
“protocol cifs disable write optimization” on page 131
‹
“protocol cifs enable” on page 131
‹
“protocol cifs opt-strict-lock enable” on page 131
‹
“protocol cifs prepop enable” on page 132
‹
“protocol cifs secure-sig-opt enable” on page 132
‹
“protocol connection lan receive buf-size” on page 132
‹
“protocol connection lan send buf-size” on page 133
‹
“protocol connection wan receive def-buf-size” on page 133
‹
“protocol connection wan send def-buf-size” on page 133
‹
“protocol mapi enable” on page 134
‹
“protocol mapi 2k3 enable” on page 134
‹
“protocol mapi nspi” on page 134
‹
“protocol mapi nspi enable” on page 135
‹
“protocol mapi port” on page 135
‹
“protocol mapi prepop enable” on page 136
‹
“protocol ms-sql enable” on page 136
‹
“protocol ms-sql fetch-next enable” on page 137
‹
“protocol ms-sql num-preack” on page 137
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
4 - CONFIGURATION-MODE
COMMANDS
‹
69
70
‹
“protocol ms-sql port” on page 138
‹
“protocol ms-sql query-act rule-id action-id” on page 138
‹
“protocol ms-sql query-arg-act rule-id action-id arg-offset expr” on page 139
‹
“protocol ms-sql rpc-act rule-id action-id” on page 140
‹
“protocol ms-sql rpc-arg rule-id arg-offset expr” on page 142
‹
“protocol ms-sql rpc-arg-act rule-id arg-offset expr” on page 141
‹
“protocol ms-sql rpc-rule rule-id app-name-regex” on page 142
‹
“protocol ms-sql support-app” on page 143
‹
“qos move-rule” on page 144
‹
“qos rule” on page 144
‹
“radius-server host” on page 145
‹
“radius-server key” on page 146
‹
“radius-server retransmit” on page 146
‹
“radius-server timeout” on page 146
‹
“reset factory reload” on page 147
‹
“segstore receive port” on page 147
‹
“segstore send addr” on page 147
‹
“service connection pooling” on page 148
‹
“service default-port” on page 149
‹
“service enable” on page 149
‹
“service error reset” on page 149
‹
“service map-port” on page 149
‹
“service neural-framing stats enable” on page 150
‹
“service port” on page 151
‹
“snmp-server community” on page 151
‹
“snmp-server contact” on page 151
‹
“snmp-server enable” on page 152
‹
“snmp-server host” on page 152
‹
“snmp-server listen enable” on page 152
‹
“snmp-server listen interface” on page 153
‹
“snmp-server location” on page 153
‹
“ssh client generate identity user” on page 153
‹
“ssh client user authorized-key rsakey sshv2” on page 154
‹
“ssh server listen enable” on page 154
‹
“ssh server listen interface” on page 154
‹
“stats alarm” on page 155
4 - CONFIGURATION-MODE COMMANDS
“stats alarm linkstate enable” on page 156
‹
“stats chd” on page 156
‹
“stats clear-all” on page 157
‹
“stats export” on page 157
‹
“stats sample” on page 157
‹
“stats settings bandwidth” on page 158
‹
“tacacs-server host” on page 158
‹
“tacacs-server key” on page 159
‹
“tacacs-server retransmit” on page 160
‹
“tacacs-server timeout” on page 160
‹
“tcp connection send keep-alive” on page 160
‹
“tcp connection send reset” on page 161
‹
“tcp highspeed enable” on page 161
‹
“terminal” on page 162
‹
“username disable” on page 163
‹
“username nopassword” on page 163
‹
“username password” on page 163
‹
“username password 0” on page 164
‹
“username password 7” on page 164
‹
“wccp enable” on page 164
‹
“wccp mcast-ttl” on page 165
‹
“wccp service group” on page 165
‹
“web auto-logout” on page 167
‹
“web enable” on page 168
‹
“web http enable” on page 168
‹
“web http port” on page 168
‹
“web httpd listen enable” on page 168
‹
“web httpd listen interface” on page 169
‹
“web https enable” on page 169
‹
“web https port” on page 169
‹
“web prefs log lines” on page 170
‹
“web proxy host” on page 170
‹
“web session renewal” on page 170
‹
“web session timeout” on page 171
‹
“write memory” on page 171
‹
“write terminal” on page 171
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
4 - CONFIGURATION-MODE
COMMANDS
‹
71
aaa authentication login default
Description
Configures Remote Authentication Dial-In User Service (RADIUS) or Terminal
Access Controller Access Control System (TACACS+) login settings. The order in
which the methods are specified is the order in which the authentication is attempted.
The no aaa command option clears all authentication states and returns user
authentication to the local username database.
Syntax
aaa authentication login default <method>
Parameters
<method>
Example
Specifies the authentication method: radius, tacacs+, or local. Use a space
separated list.
minna (config) # aaa authentication login default radius tacacs+
minna (config) #
aaa authorization map default-user
Description
Sets the local user default mapping for RADIUS or TACACS+ server authentication.
When a user is authenticated (through RADIUS or TACACS+) and does not have a
local account, this command specifies what local account the authenticated user will
be logged in as. If the user name is local, this mapping is ignored. This mapping
depends on the setting of the aaa authorization map order command. The no
command option disables user default mapping.
Syntax
aaa authorization map default-user <user_name>
Parameters
<user_name>
Example
Specifies the user name for RADIUS or TACACS+ authentication: admin
or monitor.
minna (config) # aaa authorization map default-user admin
minna (config) #
aaa authorization map order
Description
Sets the order for remote to local user mappings for RADIUS or TACACS+ server
authentication. The no command option disables authentication.
Syntax
aaa authentication map order <policy>
Parameters
<policy>
72
Specifies the order in which to apply the authentication policy: remote-only,
remote-first, local-only.
4 - CONFIGURATION-MODE COMMANDS
Usage
The order determines how the remote user mapping behaves. If the authenticated user
name is valid locally, no mapping is performed.The setting has the following
behaviors:
remote-first. If a local-user mapping attribute is returned and it is a valid local
user name, map the authenticated user to the local user specified in the attribute.
If the attribute is not present or not valid locally, use the username specified by
the default-user command. (This is the default behavior.)
‹
remote-only. Map only to a remote authenticated user if the authentication server
sends a local-user mapping attribute. If the attribute does not specify a valid local
user, no further mapping is attempted.
‹
local-only. All remote users are mapped to the user specified by the aaa
authorization map default-user <user name> command. Any vendor attributes
received by an authentication server are ignored.
To set TACACS+ authorization levels (admin and read-only) to allow certain
members of a group to log in, add the following attribute to users on the TACACS+
server:
service = rbt-exec {
local-user-name = "monitor"
}
where you replace monitor with admin for write access. To turn off general
authentication in the HP EFS WAN Accelerator, enter the following command at the
system prompt:
aaa authorization map order remote-only
Example
minna (config) # aaa authorization map order remote-only
minna (config) #
arp
Description
Creates static Address Resolution Protocol (ARP) entries in the ARP table. The no
command option disables ARP static entries.
Syntax
arp <addr> <MACaddr>
Parameters
Example
<addr>
Specifies the Internet Protocol (IP) address of the machine.
<MACaddr>
Specifies the Media Access Control (MAC) address.
minna (config) # arp 10.0.0.0 00:07:E9:55:10:09
minna (config) #
banner
Description
Creates a login banner and message of the day (MOTD) in the HP EFS WAN
Accelerator Manager.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
73
4 - CONFIGURATION-MODE
COMMANDS
‹
Syntax
banner login <message string> motd <message string>
Parameters
<message
string>
Example
Specifies the login or MOTD message.
minna (config) # banner motd this is a test
minna (config) #
boot system
Description
Boots the specified partition the next time the HP EFS WAN Accelerator is rebooted.
Syntax
boot system <partition>
Parameters
<partition>
Example
Specifies the partition to boot: 1 or 2.
minna (config) # boot system 1
minna (config) #
clear arp-cache
Description
Clears dynamic entries in the ARP cache. This command does not delete static ARP
entries configured with the arp command.
Syntax
clear arp-cache
Parameters
None
Example
minna (config) # clear arp-cache
minna (config) #
cli clear-history
74
Description
Clears the command history for the current user.
Syntax
cli clear-history
Parameters
None
Example
minna (config) # cli clear-history
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
cli default auto-logout
Sets keyboard inactivity time-out for automatic log out. The no command option
disables the automatic logout feature.
Syntax
cli default auto-logout <minutes>
Parameters
<minutes>
Example
Specifies the number of minutes before log out occurs.
minna (config) # cli default auto-logout 11
minna (config) #
cli default paging enable
Description
Sets ability to view text, one screen at a time. The no command option disables
paging.
Syntax
cli default paging enable
Parameters
None
Example
minna (config) # cli default paging enable
minna (config) #
cli session
Description
Sets CLI options for the current session only. The no command option disables CLI
option settings.
Syntax
cli session {auto-logout <minutes> | paging enable | terminal length <lines> | type
<terminal_type> | width <characters>}
Parameters
auto-logout <minutes>
Sets the number of minutes before the CLI automatically
logs out the user. The default value is 15 minutes. The no
command option disables the automatic logout feature.
paging enable
Sets paging. With paging enabled, if there is too much text
to fit on the page, the CLI prompts you for the next page of
text. The no command option disables paging.
terminal length <lines>
Sets the terminal length. The no command option disables
the terminal length.
terminal type <terminal_type>
Sets the terminal type. The no command option disables
the terminal type.
terminal width
<terminal_width>
Sets the terminal width. The no command option disables
the terminal width.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
75
4 - CONFIGURATION-MODE
COMMANDS
Description
Example
minna (config) # cli session auto-logout 20
minna (config) #
clock set
Description
Sets the system time and date.
Syntax
clock set {<hh:mm:ss> | <yyyy/mm/dd>}
Parameters
Example
<hh:mm:ss>
Specifies the hour, minutes, and seconds.
<yyyy/mm/dd>
Specifies the year, month, and day.
minna (config) # clock set 12:34:55
minna (config) #
clock timezone
Description
Sets the current time zone. The default value is Greenwich Mean Time
(GMT-offset).
Syntax
clock timezone <zone>
Parameters
<zone>
Example
Specifies the time zone name: Africa, America, Antarctica, Arctic, Asia,
Atlantic_Ocean, Australia, Europe, GMT-offset, Indian_Ocean,
Pacific_Ocean, UTC.
minna (config) # clock timezone GMT-offset
minna (config) #
configuration copy
Description
Copies a configuration file.
Syntax
configuration copy <sourcename> <new-config-name>
Parameters
Example
76
<sourcename>
Specifies the source configuration filename.
<new-configname>
Specifies the new configuration filename.
minna (config) # configuration copy westcoast eastcoast
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
configuration delete
Deletes a configuration file. For an example of usage, see “configuration merge” on
page 78.
Syntax
configuration delete <filename>
Parameters
<filename>
Example
Specifies the name of the configuration file.
minna (config) # configuration delete westcoast
minna (config) #
configuration fetch
Description
Downloads a configuration file over the network.
You can avoid copy and paste errors by using the import configuration option when
you are replacing or adding an HP EFS WAN Accelerator in your network. Simply
connect the replacement HP EFS WAN Accelerator to your LAN and import the
configuration from your existing HP EFS WAN Accelerator. If you are swapping one
HP EFS WAN Accelerator for another, you can import all of the network information
(although not the licenses) and disconnect the old HP EFS WAN Accelerator before
you switch configurations on the new appliance.
To deploy a large network of HP EFS WAN Accelerators, you can avoid configuring
each appliance individually by setting up a template appliance and use the
configuration import option to copy the template to each HP EFS WAN Accelerator.
Syntax
configuration fetch <URL, scp://, or ftp://username:password@hostname/path/
filename>
Parameters
<URL, scp://, or ftp://
username:password@hostn
ame/path/filename>
Usage
Specifies the location of the configuration file to
download in URL, scp://, or ftp:// format.
To copy one configuration file to another HP EFS WAN Accelerator, run the
following set of commands:
configuration fetch <url-to-remote-config> <new-config-name>
;; this fetches the configuration from the remote
configuration switch-to <new-config-name>
;; this activates the newly fetched configuration
Example
minna (config) # configuration fetch http://domain.com/westcoast
newconfig
minna (config) #configuration switch-to newconfig
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
77
4 - CONFIGURATION-MODE
COMMANDS
Description
configuration jump-start
Description
Restarts the configuration wizard.
Syntax
configuration jump-start
Parameters
None
Example
minna (config) # configuration jump-start
Configuration wizard.
Step 1: Hostname? [telegraph]
Step 2: Use DHCP? [no]
Step 3: Primary IP address? [10.0.0.74]
Step 4: Netmask? [255.255.0.0]
Step 5: Default gateway? [10.0.0.1]
Step 6: Primary DNS server? [10.0.0.2]
Step 7: Domain name? [domain.com]”
Step 8: Admin password?
Step 9: Copy config from another site? [no]
Step 10: Set the primary interface speed? [auto]
Step 11: Set the primary interface duplex? [auto]
Step 12: Would you like to activate the in-path configuration? [no] y
Step 13: In-Path IP address? [0.0.0.0]
Step 14: In-Path Netmask? [0.0.0.0] 255.255.0.0
Step 15: In-Path Default gateway? [0.0.0.1]
Step 16: Set the in-path:LAN interface speed? [auto]
Step 17: Set the in-path:LAN interface duplex? [auto]
Step 18: Set the in-path:WAN interface speed? [auto]
Step 19: Set the in-path:WAN interface duplex? [auto]
You have entered the following information:
1. Hostname: minna
2. Use DHCP: no
3. Primary IP address: 10.0.0.74
4. Netmask: 255.255.0.0
5. Default gateway: 10.0.0.1
6. Primary DNS server: 10.0.0.2
7. Domain name: domain.com
8. Admin password: (unchanged)
9. Copy config from another site: no
10. Set the primary interface speed: auto
11. Set the primary interface duplex: auto
12. Would you like to activate the in-path configuration: yes
13. In-Path IP address: 0.0.0.0
14. In-Path Netmask: 255.255.0.0
15. In-Path Default gateway: 0.0.0.1
16. Set the in-path:LAN interface speed: auto
17. Set the in-path:LAN interface duplex: auto
18. Set the in-path:WAN interface speed: auto
19. Set the in-path:WAN interface duplex: auto
To change an answer, enter the step number to return to.
Otherwise hit <enter> to save changes and exit.
Choice:
configuration merge
Description
78
Merges common configuration settings from one HP EFS WAN Accelerator to
another. Use the configuration merge command to deploy a network of appliances.
Set up a template HP EFS WAN Accelerator and merge the template with each HP
EFS WAN Accelerator in the network.
4 - CONFIGURATION-MODE COMMANDS
The following configuration settings are merged when you run the configuration
merge command: in-path, out-of-path, protocols, statistics, CLI, email, NTP and time,
Web, SNMP, and alarm.
Syntax
configuration merge <new-config-name>
Parameters
<new-config-name>
Usage
Specifies the new configuration name.
To merge a configuration file, run the following set of commands:
configuration write to <new-config-name>
;; this saves the current config to the new name and activates
;; the new configuration
configuration fetch <url-to-remote-config> <temp-config-name>
;; this fetches the configuration from the remote
configuration merge <temp-config-name>
;; this merges the fetched config into the active configuration
;; which is the newly named/created one in step 1 above
configuration delete <temp-config-name>
;; this deletes the fetched configuration as it is no longer
;; needed since you merged it into the active configuration
Example
minna (config)
minna (config)
tempconfig
minna (config)
minna (config)
minna (config)
# configuration write to newconfig
#configuration fetch http://domain.com/remoteconfig
#configuration merge tempconfig
#configuration delete tempconfig
#
configuration move
Description
Moves and renames a configuration file.
Syntax
configuration move <sourcename> <destname>
Parameters
Example
<sourcename>
Specifies the name of the source configuration file.
<destname>
Specifies the name of the new configuration file.
minna (config) # configuration move westcoast eastcoast
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
79
4 - CONFIGURATION-MODE
COMMANDS
The following configuration settings are not merged when you run the configuration
merge command: failover settings, Simple Network Management Protocol (SNMP)
SysContact and SysLocation, log settings, and all network settings (for example, host
name, auxiliary interface, DNS settings, defined hosts, static routing, and in-path
routing).
configuration new
Description
Creates a new, blank configuration file.
Syntax
configuration new <new-filename>
Parameters
<new-filename>
Example
Specifies the name of the new configuration file.
minna (config) # configuration new westcoast
minna (config) #
configuration revert saved
Description
Reverts the active configuration to the last saved configuration.
Syntax
configuration revert saved
Parameters
None
Example
minna (config) # configuration revert saved
minna (config) #
configuration switch-to
Description
Loads a new configuration file and makes it the active configuration. For an example
of usage, see “configuration merge” on page 78.
Syntax
configuration switch-to {<filename> | initial | initial.bak | cold | working |
working.bak}
Parameters
Example
80
<filename>
Specifies the name of the new configuration file.
initial
Specifies the initial configuration.
initial.bak
Specifies the initial backup configuration.
cold
Specifies the configuration file before Scalable Data Referencing (SDR)
has occurred.
working
Specifies the current configuration
working.bak
Specifies the current backup configuration.
minna (config) # configuration switch-to westcoast
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
configuration upload
Uploads the configuration file.
Syntax
configuration upload [<filename>] | [<URL, scp://, or ftp://
username:password@hostname/path/filename>] | [active]
Parameters
Example
<filename>
Specifies the location of the configuration file to download in URL, scp://
, or ftp:// format.
<URL, scp://, or
ftp://
username:pass
word@hostnam
e/path/
filename>
Uploads the configuration file to a remote host in URL, scp://, or ftp://
format.
<active>
Uploads the active configuration file.
minna (config) # configuration upload initial scp://
test:MyPassword@example/tmp/
minna (config)
configuration write
Description
Writes the current, active configuration file to memory.
Syntax
configuration write [to <filename>]
Parameters
to <filename>
Example
Save the running configuration to a file and make it active.
minna (config) # configuration write
minna (config) #
datastore notification enable
Description
Enables automatic email notification. You are notified when all the data in the data
store is replaced with new data in less time than you specify. The no command option
disables email notification.
Syntax
datastore notification enable
Parameters
None
Example
minna (config) # datastore notification enable
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
81
4 - CONFIGURATION-MODE
COMMANDS
Description
datastore notification wrap-around
Description
Sets the number of days to elapse before sending an email message notifying you that
the data in the data store has been replaced. The no command option disables
notification wrap-around.
Syntax
datastore notification wrap-around <days>
Parameters
wrap-around <days>
Example
Specifies the number of days to elapse before sending an email
message notifying you that the data in the data store has been
replaced.
minna (config) # datastore notification wrap-around 2
minna (config) #
datastore receive port
Description
Receives the data store from another HP EFS WAN Accelerator. Use this command
to populate (warm) a data store of a new appliance with the data on the existing
appliance. The appliance data stores must be the same size.
Syntax
datastore receive port <port>
Parameters
<port>
Usage
Specifies the port number.
For example, on the new appliance:
datastore receive port 7600
On the existing appliance:
datastore send addr <primary IP address of new appliance> port 7600
Example
minna (config) # datastore receive port 1234
minna (config) #
datastore send addr
82
Description
Copies the data store to a remote HP EFS WAN Accelerator. Use this command to
populate (warm) a data store of a new appliance with the data on the existing
appliance. The appliance data stores must be the same size.
Syntax
datastore send addr <addr> port <port>
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the IP address of the remote HP EFS WAN Accelerator.
<port>
Specifies the port of the remote HP EFS WAN Accelerator.
For example, on the new appliance:
datastore receive port 7600
On the existing appliance:
Usage
datastore send addr <primary IP address of new appliance> port 7600
Example
minna (config) # datastore send addr 10.0.0.03
minna (config) #
datastore sync enable
Description
Enables automatic data store synchronization. The data store is replicated from the
master (primary) HP EFS WAN Accelerator to the backup (passive) HP EFS WAN
Accelerator in failover configurations. The no command option disables data store
synchronization.
IMPORTANT: If you are setting up automated data store synchronization for the first time, the
HP EFS WAN Accelerator service is halted on the backup HP EFS WAN Accelerator. You must
restart the HP EFS WAN Accelerator service on both HP EFS WAN Accelerators.
Syntax
datastore sync enable
Parameters
None
Example
minna (config) # datastore sync enable
minna (config) #
datastore sync peer-ip
Description
Sets the IP address for the peer HP EFS WAN Accelerator for which you want to
replicate data on.
Syntax
datastore sync peer-ip <addr>
Parameters
<addr>
Example
Specifies the IP address of the peer HP EFS WAN Accelerator.
minna (config) # datastore sync peer-ip 10.0.0.3
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
83
4 - CONFIGURATION-MODE
COMMANDS
Usage
<addr>
datastore sync port
Description
Sets the port for the peer HP EFS WAN Accelerator for which you want to replicate
data on.
Syntax
datastore sync port <port>
Parameters
<port>
Example
Specifies the port of the peer HP EFS WAN Accelerator. The default value
is 7744.
minna (config) # datastore sync port 1234
minna (config) #
datastore sync reconnect
Description
Sets the reconnection interval for data store synchronization. The no command option
disables the reconnection interval.
Syntax
datastore sync reconnect <seconds>
Parameters
<seconds>
Example
Specifies the number of seconds for the reconnection interval. The default
value is 30.
minna (config) # datastore sync reconnect 30
minna (config) #
datastore sync server
Description
Sets the data store synchronization server. The no command option disables the
synchronization server.
Syntax
datastore sync server
Parameters
None
Example
minna (config) # datastore sync server
minna (config) #
email domain
84
Description
Set the domain for email notifications. Use the email domain command only if the
email address does not contain the domain. The no command option disables the
email domain.
Syntax
email domain <hostname or IP address>
4 - CONFIGURATION-MODE COMMANDS
Parameters
<hostname or IP address>
4 - CONFIGURATION-MODE
COMMANDS
Example
Specifies the domain for email notifications (only if the email
address does not contain it).
minna (config) # email domain example.com
minna (config) #
email mailhub
Description
Specifies the Simple Mail Transfer Protocol (SMTP) server for email notifications.
The no command option disables the SMTP server.
Syntax
email mailhub <host name or IP address>
Parameters
<host name or IP address>
Example
Specifies the SMTP server for email notifications.
minna (config) # email mailhub mail-server.example.com
minna (config) #
email notify events enable
Description
Enables email notification for events. The no command option disables email
notification.
Syntax
email notify events enable
Parameters
None
Example
minna (config) # email notify events enable
minna (config) #
email notify events recipient
Description
Sets the recipient for email notification. The no command option disables the email
recipient.
Syntax
email notify events recipient <email addr>
Parameters
<email addr>
Example
Specifies the email address of users to receive notification of events.
minna (config) # email notify events recipient example@example.com
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
85
email notify failures enable
Description
Enables email notification of HP EFS WAN Accelerator failures such as core dumps.
The no command option disables the email notification of failures.
Syntax
email notify failures enable
Parameters
None
Example
minna (config) # email notify failures enable
minna (config) #
email notify failures recipient
Description
Sets the recipient for email notification of HP EFS WAN Accelerator failures such as
core dumps. The no command option disables the email recipient.
Syntax
email notify failures recipient <email addr>
Parameters
recipient <email-addr>
Example
Specifies the email address of users to receive notification of
failures.
minna (config) # email notify failures recipient example@example.com
minna (config) #
email send-test
Description
Sends test email to all configured event and failure recipients.
Syntax
email send-test
Parameters
None
Example
minna (config) # email send-test
minna (config) #
failover buddy addr
86
Description
Sets the failover IP address. The failover HP EFS WAN Accelerator is the backup HP
EFS WAN Accelerator. If the master HP EFS WAN Accelerator fails the failover HP
EFS WAN Accelerator takes over. The default value is 0.0.0.0. The no command
option resets the failover IP address to the default value.
Syntax
failover buddy addr <addr>
4 - CONFIGURATION-MODE COMMANDS
Parameters
<addr>
4 - CONFIGURATION-MODE
COMMANDS
Example
Specifies the IP address for the failover, backup appliance. The default
value is 0.0.0.0.
minna (config) # failover buddy addr 10.10.10.1
minna (config) #
failover buddy port
Description
Sets the buddy, failover port. The buddy HP EFS WAN Accelerator is the failover
(backup) HP EFS WAN Accelerator. If the master HP EFS WAN Accelerator fails the
failover HP EFS WAN Accelerator takes over. The default value is 7820. The no
command option resets the buddy, failover port to the default value.
Syntax
failover buddy port <port>
Parameters
<port>
Example
Specifies the port number.
minna (config) # failover buddy port 2515
minna (config) #
failover enable
Description
Enables failover support. Failover support enables a failover (backup) HP EFS WAN
Accelerator so that if the master HP EFS WAN Accelerator fails, the traffic is routed
automatically through the failover (backup) HP EFS WAN Accelerator.
Valid values must exist for the port, buddy address, and buddy port before this
command can complete. The no command option disables failover support.
Syntax
failover enable
Parameters
None
Example
minna (config) # failover enable
minna (config) #
failover master
Description
Sets this HP EFS WAN Accelerator as the primary or master HP EFS WAN
Accelerator. If the master HP EFS WAN Accelerator fails, the traffic is routed
automatically through the failover (backup) HP EFS WAN Accelerator. The default
value is true. The no command option sets this HP EFS WAN Accelerator as the
failover (backup) HP EFS WAN Accelerator.
Syntax
failover master
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
87
Parameters
None
Example
minna (config) # failover master
minna (config) #
failover port
Description
Sets the local failover port. The failover HP EFS WAN Accelerator is the backup HP
EFS WAN Accelerator. The default value is 7820. The no command option resets the
local failover port to the default value.
Syntax
failover port <port>
Parameters
<port>
Example
Specifies the port number.
minna (config) # failover port 2515
minna (config) #
file stats delete
Description
Deletes statistics file.
Syntax
file stats delete <filename>
Parameters
<filename>
Example
Specifies the statistics file to delete.
minna (config) # file stats delete throughput
minna (config) #
file stats move
Description
Renames a statistics file.
Syntax
file stats move <source filename> <destination filename>
Parameters
Example
88
<source filename>
Specifies the source file to rename.
<destination
filename>
Specifies the new filename.
minna (config) # file stats delete throughput throughput2
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
file stats upload
Uploads a statistics report file to a remote host
Syntax
file stats upload <filename>
<URL, scp://, or ftp://username:password@hostname/path/filename>
Parameters
Example
<filename>
Specifies the source filename.
<URL, scp://, or
ftp://
username:password
@hostname/path/
filename>
Uploads a statistics file to a remote host in URL, scp://, or
ftp:// format.
minna (config) # file stats upload throughput http://www.test.com/stats
minna (config) #
file tcpdump
Description
Deletes or uploads a tcpdump file.
Syntax
file tcpdump {delete <filename> | upload <filename> <URL or scp://
username:password@hostname/path/filename>}
Parameters
delete <filename>
Deletes the tcpdump file.
upload <filename>
Uploads a tcpdump output file to a remote host.
<URL or scp://
username:passwor
d@hostname/path/
filename>
Example
minna (config) # file tcpdump delete dumpfile
minna (config) #
file tcpdump delete
Description
Deletes a tcpdump file.
Syntax
file tcpdump delete <filename>
<filename>
Example
Deletes the tcpdump file.
minna (config) # file tcpdump delete dumpfile
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
89
4 - CONFIGURATION-MODE
COMMANDS
Description
file tcpdump upload
Description
Upload a statistics report file to a remote host
Syntax
file tcpdump upload <filename>
<URL, scp://, or ftp://username:password@hostname/path/filename>
Parameters
Example
<filename>
Specifies the source file.
<URL, scp://, or
ftp://
username:password
@hostname/path/
filename>
Uploads a statistics file to a remote host in URL, scp://, or
ftp:// format.
minna (config) # file tcpdump upload dump http://www.test.com/stats
minna (config) #
hardware ecc-mem-check enable
Description
Enables Error-Correcting Code (ECC) memory check. The no command option
disables ECC memory check.
Syntax
hardware ecc-mem-check enable
Parameters
None
Example
minna (config) # hardware ecc-mem-check enable
minna (config) #
hardware upgrade model
Description
Upgrades hardware settings to reflect new hardware model.
NOTE: This command is valid only after you have installed a hardware upgrade license.
90
Syntax
hardware upgrade model
Parameters
None
Example
minna (config) # hardware upgrade model
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
hostname
Sets the host name for this HP EFS WAN Accelerator. The no command option
removes the hostname for this HP EFS WAN Accelerator.
Syntax
hostname <hostname>
Parameters
<hostname>
Example
Specifies the host name. Do not include the domain name.
minna (config) # hostname park
minna (config) #
image boot
Description
Boots the specified system image by default.
Syntax
image boot <partition>
Parameters
<partition>
Example
Specifies the partition to boot: 1 or 2.
minna (config) # image boot 1
minna (config) #
image delete
Description
Deletes the specified software image.
Syntax
image delete <image-filename>
Parameters
<image-filename>
Example
Specifies the software image to delete.
minna (config) # image delete snkv1.0
minna (config) #
image fetch
Description
Downloads a software image from a remote host.
Syntax
image fetch <URL, scp://, or ftp://username:password@hostname/path/
filename> <image-filename>
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
91
4 - CONFIGURATION-MODE
COMMANDS
Description
Parameters
Example
<URL, scp://, or ftp://
username:password@hos
tname/path/filename>
Specifies the location of the software image in URL,
scp://, or ftp:// format. A carriage return downloads the image
and gives it the same name it had on the server.
<image-filename>
Specifies the image filename.
minna (config) # image fetch http://www.domain.com/v.1.0 version1.0
minna (config) #
image install
Description
Installs the software image onto a system partition.
Syntax
image install <image-filename> <partition>
Parameters
Example
<image-filename>
Specifies the software image filename.
<partition>
Specifies the partition number: 1, 2.
minna (config) # image install version1.0 2
minna (config) #
image move
Description
Moves or renames an inactive system image on the hard disk.
Syntax
image move <source-image-name> <new-image-name>
Parameters
Example
<source-image-name>
Specifies the name of the software image to move or rename.
<new-image-name>
Specifies the new name of the software image.
minna (config) # image move www.domain.com/v.1.0 version1.0
minna (config) #
in-path cdp enable
Description
Enables Cisco Discovery Protocol (CDP) support on Policy Based Routing (PBR)
deployments. Virtual in-path failover deployments require CDP on the HP EFS WAN
Accelerator to bypass the HP EFS WAN Accelerator that is down. The no command
option disables CDP.
CDP is proprietary protocol used by Cisco routers and switches to obtain neighbor IP
addresses, model, IOS version, and so forth. The protocol runs at the Open System
Interconnection (OSI) layer 2 using the 802.3 Ethernet frame.
92
4 - CONFIGURATION-MODE COMMANDS
For detailed information about how to configure an HP EFS WAN Accelerator for PBR
with CDP, see the HP StorageWorks Enterprise File Services WAN Accelerator
Deployment Guide.
in-path cdp enable
Parameters
None
Example
minna (config) # in-path cdp enable
minna (config) #
4 - CONFIGURATION-MODE
COMMANDS
Syntax
in-path cdp holdtime
Description
Configures the hold-time for CDP. This refresh period allows for a quick recovery in
failover deployments with PBR and CDP. The no command option disables the CDP
hold-time.
CDP is proprietary protocol used by Cisco routers and switches to obtain neighbor IP
addresses, model, IOS version, and so forth. The protocol runs at the Open System
Interconnection (OSI) layer 2 using the 802.3 Ethernet frame.
For detailed information about how to configure an HP EFS WAN Accelerator for PBR
with CDP, see the HP StorageWorks Enterprise File Services WAN Accelerator
Deployment Guide.
Syntax
in-path cdp holdtime <holdtime>
Parameters
<holdtime>
Example
Specifies the CDP hold-time in seconds. The default value is 5.
minna (config) # in-path cdp holdtime 10
minna (config) #
in-path cdp interval
Description
Configures the refresh period for CDP. This refresh period allows for a quick
recovery in failover deployments with PBR and CDP. The no command option
disables the CDP refresh period.
CDP is proprietary protocol used by Cisco routers and switches to obtain neighbor IP
addresses, model, IOS version, and so forth. The protocol runs at the Open System
Interconnection (OSI) layer 2 using the 802.3 Ethernet frame.
For detailed information about how to configure an HP EFS WAN Accelerator for PBR
with CDP, see the HP StorageWorks Enterprise File Services WAN Accelerator
Deployment Guide.
Syntax
in-path cdp interval <interval>
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
93
Parameters
<interval>
Example
Specifies the CDP interval in seconds. The default value is 1.
minna (config) # in-path cdp holdtime 10
minna (config) #
in-path enable
Description
Enables in-path support. An in-path configuration is a configuration in which the HP
EFS WAN Accelerator is in the direct path of the client and the server. The no
command option disables in-path support.
Syntax
in-path enable
Parameters
None
Example
minna (config) # in-path enable
minna (config) #
in-path interface enable
Description
Enables the in-path interface for optimization. The in-path interface enable
command is useful only when there are multiple bypass cards enabled (for example,
with a Four-Port Copper Gigabit-Ethernet Bypass card). The no command option
disables the in-path interface.
Syntax
in-path interface <interface> enable
Parameters
<interface>
Example
Specifies the IP address of the in-path interface.
minna (config) #in-path interface 10.0.0.1 enable
minna (config) #
in-path interface vlan tag
94
Description
Enables Virtual Local Area Network (VLAN) support for an in-path HP EFS WAN
Accelerator on a trunked link. The in-path interface vlan tag command enables you
to set which VLAN to use when the HP EFS WAN Accelerator communicates with
another HP EFS WAN Accelerator. It does not define which VLAN to optimize. To
define which VLAN to optimize, you must define in-path rules and apply them to all
VLANS or a specific VLAN. The no command option disables the VLAN support.
Syntax
in-path interface <interface> vlan tag <id>
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the in-path HP EFS WAN Accelerator for which the
VLAN applies.
<id>
Specifies the VLAN identification number. The VLAN
identification number is a value with a range from 0-4094 (0
specifies no tagging).
minna (config) #in-path interface in_path0_0 vlan 26
minna (config) #
in-path kickoff
Description
Resets open connections upon start up. The no command option disables the in-path
kickoff feature.
When the HP EFS WAN Accelerator is not powered on or the HP EFS WAN
Accelerator service is not running, the failover HP EFS WAN Accelerator takes over
so that connections continue to be made to the WAN. With kickoff enabled, when the
HP EFS WAN Accelerator service starts, it breaks existing connections and forces
clients to open a new connection. With kickoff disabled, open connections are not
broken but they are unoptimized—new connections are optimized.
Syntax
in-path kickoff
Parameters
None
Example
minna (config) # in-path kickoff
minna (config) #
in-path neighbor enable
Description
Enables connection forwarding support in asymmetric networks. Connection
forwarding forwards Transmission Control Protocol (TCP) connections in networks
where the path from the client to the server is different from the server to the client.
The no command option disables connection forwarding support.
If you have one path from the client to the server and a different path from the server
to the client, you need to enable in-path connection forwarding so that the HP EFS
WAN Accelerators can communicate with each other. These HP EFS WAN
Accelerators are called neighbors and exchange connection information to redirect
packets to each other.
IMPORTANT: When you define a neighbor, you must specify the HP EFS WAN Accelerator
in-path IP address, not the primary IP address.
Neighbors can be placed on the same physical site or on different sites but the latency
between them must be small because the packets travelling between them are not
optimized.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
95
4 - CONFIGURATION-MODE
COMMANDS
Example
<interface>
If there are more than two possible paths, additional HP EFS WAN Accelerators must
to be installed on each path and configured as neighbors. Neighbors are notified in
parallel so that the delay introduced at connection setup is equal to the time it takes to
get an acknowledgement from the furthest neighbor.
For detailed information about connection forwarding deployments and how to
configure them, see the HP StorageWorks Enterprise File Services WAN Accelerator
Deployment Guide.
Syntax
in-path neighbor enable
Parameters
None
Example
minna (config) # in-path neighbor enable
minna (config) #in-path neighbor ip-address 10.0.0.4
;;client-side appliance (HP EFS WAN Accelerator-1)
minna (config) #in-path neighbor ip-address 10.0.0.6
;;the server-side appliance (HP EFS WAN Accelerator-2)
in-path neighbor ip address
Description
Sets the IP address for the neighbor HP EFS WAN Accelerator for connection
forwarding. The no command option removes the IP address for the neighbor HP EFS
WAN Accelerator from the connection forwarding list.
If you have one path from the client to the server and a different path from the server
to the client, you need to enable in-path connection forwarding and configure the HP
EFS WAN Accelerators to know about and communicate with each other. These HP
EFS WAN Accelerators are called neighbors and exchange connection information to
redirect packets to each other. For example:
minna (config) # in-path neighbor enable
minna (config) #in-path neighbor ip-address 10.0.0.4
;;client-side appliance (HP EFS WAN Accelerator-1)
minna (config) #in-path neighbor ip-address 10.0.0.6
;;the server-side appliance (HP EFS WAN Accelerator-2)
IMPORTANT: When you define a neighbor, you must specify the HP EFS WAN Accelerator
in-path IP address, not the primary IP address.
Syntax
in-path neighbor ip address <addr> [port <port>]
Parameters
Example
96
<addr>
Specifies the IP address of the in-path HP EFS WAN Accelerator.
port <port>
Specifies the port for the in-path HP EFS WAN Accelerator.
minna (config) # in-path neighbor ip-address 10.0.0.4
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
in-path neighbor keepalive count
Sets the keep-alive messages before terminating connections with the neighbor HP
EFS WAN Accelerator for TCP connection forwarding.
Syntax
in-path keepalive count <count>
Parameters
<count>
Example
Specifies the number of keep-alive messages. The default value is
3.
minna (config) # in-path neighbor keepalive count 10
minna (config) #
in-path neighbor keepalive interval
Description
Sets the time interval between keep-alive messages with the neighbor HP EFS WAN
Accelerator for connection forwarding.
Syntax
in-path keepalive interval <seconds>
Parameters
<seconds>
Example
Specifies the number of seconds between keep-alive messages.
The default value is 10.
minna (config) # in-path neighbor keepalive interval 10
minna (config) #
in-path neighbor port
Description
Sets the neighbor port for the HP EFS WAN Accelerator in connection forwarding
deployments.
Syntax
in-path neighbor <port>
Parameters
<port>
Example
Specifies the neighbor HP EFS WAN Accelerator port. The
default value is 7850.
minna (config) # in-path neighbor port 7850
minna (config) #
in-path oop all-port enable
Description
Enables virtual in-path support on all ports for failover deployments with PBR and
CDP. The no command option disables support for all ports.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
97
4 - CONFIGURATION-MODE
COMMANDS
Description
Virtual in-path failover deployments require CDP on the HP EFS WAN Accelerator to
bypass the HP EFS WAN Accelerator that is down.
CDP is proprietary protocol used by Cisco routers and switches to obtain neighbor IP
addresses, model, IOS version, and so forth. The protocol runs at the Open System
Interconnection (OSI) layer 2 using the 802.3 Ethernet frame.
For detailed information about how to configure an HP EFS WAN Accelerator for PBR
with CDP, see the HP StorageWorks Enterprise File Services WAN Accelerator
Deployment Guide.
Syntax
in-path oop all-port enable
Parameters
None
Example
minna (config) # in-path oop all-port enable
minna (config) #
in-path oop enable
Description
Enable in-path support for Layer-4 switches, Policy Based Routing (PBR), and Web
Cache Communication Protocol (WCCP). The no command option disables support
for Layer-4 switches, PBR, and WCCP.
Syntax
in-path oop enable
Parameters
None
Example
minna (config) # in-path oop enable
minna (config) #
in-path peering rule
Description
Configures in-path peering rules You can configure peering rules that apply to a
single port or you can configure peering rules that apply to a port label. A port label is
a label that you assign to a set of ports so that you can reduce the number of
configuration rules in your system.
The no command option disables the peering rule.
You can provide increased optimization capacity by deploying several HP EFS WAN
Accelerators back-to-back in an in-path configuration and create a serial cluster.
IMPORTANT: Serial clusters are supported only on Model 5010s.
98
4 - CONFIGURATION-MODE COMMANDS
In serial cluster or cascade deployments:
‹
A cluster can be created on either the client side or on the server side.
‹
The peering rules table is a ordered list of rules and the first rule that matches the
rule is applied.
‹
In the case of a cascade cluster, only pass-through peering rules are used.
‹
To block interceptions on inner connections created by other HP EFS WAN
Accelerators in the same cluster, in-path rules are specified to pass-through
connections originating from those HP EFS WAN Accelerators.
For detailed information about how to configure serial cluster deployments, see the HP
StorageWorks Enterprise File Services WAN Accelerator Deployment Guide.
Syntax
in-path peering rule {auto | pass | accept} [peer <peerip> [src <subnet>] | [dst
<subnet>] | [dst-port <port | portlabel>] [rulenum <rulenum>]
Parameters
auto | pass | accept
Specifies the rule type:
• auto. Automatically determines the response for peering
requests (performs the best peering possible).
• pass. Passes through all matching peering requests (never peers
with the HP EFS WAN Accelerator before this HP EFS WAN
Accelerator).
• accept. Accepts matching peering requests (
Example
peer <peerip>
Specifies the peer HP EFS WAN Accelerator IP address.
src <subnet>
Specifies the source network for this rule.
dst <subnet>
Specifies the destination network for this rule.
dst-port <port |
portlabel>
Specifies the destination port for this rule. You can specify all for
all ports or a port label. For detailed information about port
labels, see “port-label” on page 130.
rulenum <rulenum>
Specifies the rule number.
minna
minna
minna
minna
minna
minna
(config)
(config)
(config)
(config)
(config)
(config)
#
#
#
#
#
#
in-path
in-path
in-path
in-path
in-path
peering rule pass
peering rule pass
rule pass-through
rule pass-through
peering move-rule
peer 10.0.1.2 rulenum 1
peer 10.0.1.3 rulenum 1
src 10.0.1.2/32 rulenum 1
src 10.0.1.3/32 rulenum 1
3 to 1
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
99
4 - CONFIGURATION-MODE
COMMANDS
Appliances in a cluster process the peering rules you specify in a spill-over fashion.
When the maximum number of TCP connections for an HP EFS WAN Accelerator is
reached, that appliance stops intercepting new connections and passes them on to the
next HP EFS WAN Accelerator in the cluster (as defined by the peer rule that you set).
This process continues until there are no more HP EFS WAN Accelerators available in
the cluster.
in-path peering move-rule
Description
Moves an in-path peering rule in serial cluster deployments.
Syntax
in-path peering move-rule <rulenum> to <rulenum>
Parameters
<rulenum>
Example
Specifies the rule number.
minna (config) # in-path peering move-rule 3 to 1
in-path rule auto-discover
Description
Adds an in-path, auto-discovery rule. The HP EFS WAN Accelerator automatically
intercepts and optimizes traffic on all IP addresses (0.0.0.0) and ports (all). The no
command option disables the in-path auto-discover rule. The no command option has
the following syntax: no in-path <rulenum>.
Syntax
in-path rule auto-discover {[scraddr <addr>] | [dstaddr <addr>] |
[dstport <port>]} | [neural-mode <mode>] | [optimization <policy>] |
[vlan <vlan tag ID>] | [rulenum <rulenum>]
Parameters
100
srcaddr <addr>
Specifies the source network for this rule. For example:
10.0.0.3/24
dstaddr <addr>
Specifies the destination network for this rule. For example:
10.0.0.0/24
dstport <port>
Specifies the destination port for this rule. The destination port can
be a single port (number), a port label, or all specifies all ports.
4 - CONFIGURATION-MODE COMMANDS
neural-mode <mode>
• never. Never use the Nagle algorithm. All the data is immediately
encoded without waiting for timers to fire or application buffers to
fill past a specified threshold. Neural heuristics are computed in
this mode but are not used.
• always. Always use the Nagle algorithm. This is the default
setting (always wait 6 ms). All data is passed to the codec which
attempts to coalesce consume calls (if needed) to achieve better
fingerprinting. A timer (6 ms) backs it up and causes leftover data
to be consumed. Neural heuristics are computed in this mode but
are not used.
• tcphints. Base setting on TCP hints. If data is received from a
partial frame packet or a packet with the TCP PUSH flag set, the
encoder encodes the data instead of immediately coalescing it.
Neural heuristics are computed in this mode but are not used.
• dynamic. Dynamically adjust the Nagle parameters. The HP EFS
WAN Accelerator picks the best algorithm to use by learning
what algorithm is best and adapting if the traffic characteristic
changes.
TIP: To configure neural framing for the FTP data channel, define
an in-path rule with the destination port 20 and set its optimization
policy. To configure neural framing for the MAPI data channel,
define an in-path rule with the destination port 7830 and set its
optimization policy.
optimization <policy>
Specifies the type of optimization policy for this rule: Normal (the
default value; perform Lempel-Ziv (LZ) compression and Scalable
Data Referencing (SDR)); SDR-Only (perform only SDR; do not
perform LZ compression); and None (do not perform SDR or LZ
compression).
TIP: To configure optimization policies for the FTP data channel,
define an in-path rule with the destination port 20 and set its
optimization policy. To configure optimization policies for the
MAPI data channel, define an in-path rule with the destination port
7830 and set its optimization policy.
Example
vlan <vlan tag ID>
Specifies the VLAN tag ID for which the rule applies. The VLAN
identification number is a value with a range from 0-4094 (0
specifies no-tagging).
rulenum <rulenum>
Specifies the rule number for this rule: 1-N or start or end. The rule
inserts itself at the rule specified. For example, if rulenum is 3 then
the new rule will be #3, the old #3 rule will be #4 and so forth. The
start option specifies the rule to be the first rule and end specifies it
to be the last rule.
minna (config) # in-path rule autodiscover srcaddr 10.0.0.0/24
optimization SDR-Only rulenum 1
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
101
4 - CONFIGURATION-MODE
COMMANDS
Enables neural framing in the HP EFS WAN Accelerator. Enabling
neural framing makes your WAN more efficient by gathering data
to select the optimal packet framing boundaries for Scalable Data
Referencing (SDR). For different types of traffic, one algorithm
may be better than others. There is a trade-off between the latency
added to the connection and the compression and SDR
performance. The choices are:
in-path rule deny
Description
Denies connections for the source network and destination network, when packets for
connections match the in-path rule the HP EFS WAN Accelerator actively tries to
reset the connection.
Syntax
in-path rule deny {scraddr <addr> dstaddr <addr> dstport <port> rulenum
<rulenum>} [vlan <vlan tag ID>]
Parameters
Example
srcaddr <addr>
Specifies the source IP address.
dstaddr <addr>
Specifies the destination IP address.
dstport <port>
Specifies the destination port for this rule. The destination port can
be a single port (number), a port label, or all specifies all ports.
rulenum <rulenum>
Specifies the rule number: 1-N, start, or end. The rule inserts itself
at the rule specified. For example, if rulenum is 3 then the new rule
will be #3, the old #3 rule will be #4 and so forth. The start option
specifies the rule to be the first rule and end specifies it to be the last
rule.
vlan <vlan tag ID>
Specifies the VLAN tag ID for which the rule applies. The VLAN
identification number is a value with a range from 0-4094 (0
specifies no-tagging).
minna (config) # in-path rule deny scraddr 10.0.0.1 dstaddr 10.0.0.2
rulenum 4
minna (config) #
in-path rule discard
102
Description
Packets for connections that match the rule are dropped silently. The HP EFS WAN
Accelerator filters traffic that matches the rules in discard.
Syntax
in-path rule discard {scraddr <addr> dstaddr <addr> dstport <port> rulenum
<rulenum>} [vlan <vlan tag ID>]
4 - CONFIGURATION-MODE COMMANDS
Parameters
srcaddr <addr>
Specifies the source IP address.
dstaddr <addr>
Specifies the destination IP address.
dstport <port>
Specifies the destination port for this rule. The destination port can
be a single port (number), a port label, or all specifies all ports.
srcaddr <addr>
Specifies the source IP address.
rulenum <rulenum>
Specifies the rule number: 1-N, start, or end. The rule inserts itself
at the rule specified. For example, if rulenum is 3 then the new rule
will be #3, the old #3 rule will be #4 and so forth. The start option
specifies the rule to be the first rule and end specifies it to be the last
rule.
vlan <vlan tag ID>
Specifies the VLAN tag ID for which the rule applies. The VLAN
identification number is a value with a range from 0-4094 (0
specifies no-tagging).
minna (config) # in-path rule discard scraddr 10.0.0.2 dstaddr 10.0.0.1
port 1234 rulenum 2
minna (config) #
in-path rule fixed-target
Description
Adds an in-path, fixed-target rule. Specify an HP EFS WAN Accelerator between the
client and server on which to intercept and optimize traffic. The no command option
disables the in-path rule. The no command option has the following syntax: no inpath rule <rulenum>.
Syntax
in-path rule fixed-target {[scraddr <addr>] [dstaddr <addr> [dstport <port>]]} |
[target-addr <addr> [target-port <port>] | [backup-addr <addr> [backup-port
<port>]] |
[neural-mode <mode>] | [optimization <policy>] | [vlan <vlan tag ID>] |
[rulenum <rulenum>]
Parameters
srcaddr <addr>
Specifies the source IP address for this rule. For example:
10.0.0.3/24
dstaddr <addr>
Specifies the destination IP address for this rule. For example:
10.0.0.0/24
dstport <port>
Specifies the destination port for this rule. The destination port can
be a single port (number), a port label, or all specifies all ports.
target-addr <addr>
[target-port <port>]
Specifies the IP address and port number for the target HP EFS
WAN Accelerator for out-of-path configurations. For example:
10.0.0.0/24
backup-addr <addr>
[backup-port <port>]
Specifies the IP address and port number for the backup
(failover) HP EFS WAN Accelerator for out-of-path configurations.
For example: 10.0.0.0/24
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
103
4 - CONFIGURATION-MODE
COMMANDS
Example
t
neural-mode <mode>
Enables neural framing in the HP EFS WAN Accelerator. Enabling
neural framing makes your WAN more efficient by gathering data
to select the optimal packet framing boundaries for Scalable Data
Referencing (SDR). For different types of traffic, one algorithm
may be better than others. There is a trade-off between the latency
added to the connection and the compression and SDR
performance. The choices are:
• never. Never use the Nagle algorithm. All the data is immediately
encoded without waiting for timers to fire or application buffers to
fill past a specified threshold. Neural heuristics are computed in
this mode but are not used.
• always. Always use the Nagle algorithm. This is the default
setting (always wait 6 ms). All data is passed to the codec which
attempts to coalesce consume calls (if needed) to achieve better
fingerprinting. A timer (6 ms) backs it up and causes leftover data
to be consumed. Neural heuristics are computed in this mode but
are not used.
• tcphints. Base setting on TCP hints. This is the default setting. If
data is received from a partial frame packet or a packet with the
TCP PUSH flag set, the encoder encodes the data instead of
immediately coalescing it. Neural heuristics are computed in this
mode but are not used.
• dynamic. Dynamically adjust the Nagle parameters. The HP EFS
WAN Accelerator picks the best algorithm to use by learning
what algorithm is best and adapting if the traffic characteristic
changes.
TIP: To configure optimization policies for the FTP data channel,
define an in-path rule with the destination port 20 and set its
optimization policy. To configure optimization policies for the
MAPI data channel, define an in-path rule with the destination port
7830 and set its optimization policy.
optimization <policy>
Specifies the type of optimization policy for this rule: Normal (the
default value; perform Lempel-Ziv (LZ) compression and Scalable
Data Referencing (SDR)); SDR-Only (perform only SDR; do not
perform LZ compression); and None (do not perform SDR or LZ
compression).
TIP: To configure optimization policies for the FTP data channel,
define an in-path rule with the destination port 20 and set its
optimization policy. To configure optimization policies for the
MAPI data channel, define an in-path rule with the destination port
7830 and set its optimization policy.
Example
104
vlan <vlan tag ID>
Specifies the VLAN tag ID for which the rule applies. The VLAN
identification number is a value with a range from 0-4094 (0 means
no-tagging).
rulenum <rulenum>
Specifies the rule number for this rule: 1-N or start or end. The rule
inserts itself at the rule specified. For example, if rulenum is 3 then
the new rule will be #3, the old #3 rule will be #4 and so forth. Start
specifies the rule to be the first rule and end specifies it to be the last
rule.
minna (config) # in-path rule fixed-target srcaddr 10.10.10.1 port 2121
dstaddr 10.24.24.24.1 rulenum 2
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
in-path rule move
Moves an in-path rule.
Syntax
in-path rule move <rulenum> to <rulenum>
4 - CONFIGURATION-MODE
COMMANDS
Description
Parameters
<rulenum>
Example
Specifies the rule number or start or end.
minna (config) # in-path rule move 25 to 10
minna (config) #
in-path rule pass-through
Description
Adds an in-path, pass-through rule. Specify a subnet for which you do not want to
optimize traffic. The no command option disables the in-path rule. The no command
option has the following syntax: no in-path rule <rulenum>.
Syntax
in-path rule pass-through
{srcaddr <addr> dstaddr <addr> dstport <port>} [rulenum <rulenum>]}| [vlan
<vlan tag ID>]
Parameters
Example
srcaddr <addr>
Specifies the source IP address for which this rule applies. For
example: 10.0.0.3/24
dstaddr <addr>
Specifies the destination server address. For example: 10.0.0.0/24
dstport <port>
Specifies the destination port for this rule. The destination port can
be a single port (number), a port label, or all specifies all ports.
rulenum <rulenum>
Specifies the rule number: 1-N or start or end. The rule inserts
itself at the rule specified. For example, if rulenum is 3 then the
new rule will be #3, the old #3 rule will be #4 and so forth. Start
specifies the rule to be the first rule and end specifies it to be the
last rule.
vlan <vlan tag ID>
Specifies the VLAN tag ID for which the rule applies. The VLAN
identification number is a value with a range from 0-4094 (0
specifies no-tagging).
minna (config) # in-path rule pass-through dstaddr 10.10.10.1 dstport
2121
minna (config) #
in-path simplified routing
Description
Enables simplified routing. Simplified routing collects the IP address for the next hop
Media Access Control (MAC) address from each packet it receives to use in
addressing traffic. Enabling simplified routing eliminates the need to add static routes
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
105
when the HP EFS WAN Accelerator is in a different subnet from the client and server.
The no command option disables simplified routing.
Without simplified routing if an HP EFS WAN Accelerator is installed in a different
subnet from the client or server you must define one router as the default gateway and
static routes for the other routers so that traffic is not redirected back through the HP
EFS WAN Accelerator. However, in some cases, even with the static routes defined,
the Access Control List (ACL) on the default gateway may still drop traffic that should
have gone through the other router.
Simplified routing has the following constraints:
Syntax
‹
Broadcast support in Proxy File Service (PFS) configurations cannot be enabled.
‹
WCCP cannot be enabled.
‹
Connection forwarding cannot be enabled if you collect mappings for source
MAC data (that is, the options all or dest-source).
in-path simplified routing [all | dest-only | dest-source | none]
Parameters
all
Collects source and destination MAC data. It also collects data for
connections that are un-natted (that is, connections that are not translated
using Network Address Translation (NAT).
This option must be disabled in connection forwarding configurations.
Example
dest-only
Collects destination MAC data. This option can be used in connection
forwarding.
dest-source
Collects destination and source MAC data. This option cannot be used in
connection forwarding.
none
All options are disabled.
minna (config) # in-path simplified routing all
minna (config) #
interface
106
Description
Configures network interfaces. The no command option disables the interface
settings.
Syntax
interface <interfacename> <options>
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the interface name: aux, lan0_0, wan0_0,
primary, in-path0_0.
<options>
Each interface has the following configuration options:
• dhcp. Enables Dynamic Host Configuration Protocol
(DHCP) on the interface.
• dhcp renew. Renews DHCP for this interface.
• duplex <speed>. Specifies the duplex speed: auto, full,
half. The default value auto.
• ip address <addr>. Specifies IP address for the interface.
• mtu <speed>. Configures the Maximum Transmission
Unit (MTU). The MTU is set once on the in-path
interface; it propagates automatically to the LAN and the
WAN. The no command option disables the MTU setting.
The default value is 1500.
• shutdown. Shuts down the interface.
• speed <speed>. Specifies the speed for the interface:
auto, 10, 100, 1000. The default value is 100.
Example
(config) # interface aux dhcp 100
(config) #
ip default-gateway
Description
Sets the default gateway IP address. The no command option disables the default
gateway IP address.
Syntax
ip default-gateway <addr>
Parameters
<addr>
Example
Specifies the IP address.
minna (config) # ip default-gateway 10.10.10.1
minna (config) #
ip domain-list
Description
Adds a domain name to the domain list for resolving host names. The no command
option removes a domain from the domain list.
Syntax
ip domain list <domain>
Parameters
<domain>
Example
Specifies the domain name.
minna (config) # ip domain-list example.com
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
107
4 - CONFIGURATION-MODE
COMMANDS
<interfacename>
ip host
Description
Adds an entry to the static host table. The no command option removes an entry from
the static host table.
Syntax
ip host <hostname> <addr>
Parameters
Example
<hostname>
Specifies the host name.
<addr>
Specifies the IP address.
minna (config) # ip host park 10.10.10.1
minna (config) #
ip in-path-gateway
Description
Configures the primary, in-path, default gateway. The no command option disables
the default gateway.
NOTE: The interface parameter is required for version 2.x.x of the software; it is not required
for software version 1.2.x.
Syntax
ip in-path-gateway <interface> <destination addr>
Parameters
Example
<interface>
Specifies the interface name: aux, lan0_0, wan0_0, primary, inpath0_0.
<destination addr>
Specifies the destination IP address of the in-path gateway.
minna (config) # ip in-path-gateway in-path0_0 10.0.0.0
minna (config) #
ip in-path route
108
Description
Adds a static in-path route.The no command option removes an in-path route.
Syntax
ip in-path route <interface> <network prefix> <network mask> <next hop IP
address>
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the interface name: aux, lan0_0, wan0_0, primary, inpath0_0.
<network prefix>
Specifies the network prefix.
<network mask>
Specifies the netmask.
<next hop IP address
or WAN gateway>
Specifies the next hop IP address in this route or WAN gateway.
Usage
In-path interfaces use routes from an in-path route table. To configure in-path routes
you set a new in-path route that points to your WAN gateway. You must also copy any
static routes that you have added to the main table (if they apply to the in-path
interface).
Example
minna (config) # ip in-path route 193.140.0.0 255.255.0.0 190.160.0.0
minna (config) #
ip name-server
Description
Adds a DNS name server. The no command option removes a DNS name server.
Syntax
ip name-server <addr>
Parameters
<addr>
Example
Specifies the name server IP address.
minna (config) # ip name-server 10.10.10.1
minna (config) #
ip route
Description
Adds a static route. The no command option disables the static route. If no ip route
command is run without parameters, it removes all static routes. If it is run with only
a network prefix and mask, it deletes all routes for that prefix.
Syntax
ip route <network prefix> <netmask> <netmask length> <next-hop-IP-addr>
Parameters
Example
<network prefix>
Specifies the network prefix.
<netmask>
Specifies the netmask. For example: 255.255.255.0
<mask length>
Specifies the netmask length. For example: /24
<next hop IP addr>
Specifies the next hop IP address.
minna (config) # ip route 193.166.0/24 10.10.10.1
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
109
4 - CONFIGURATION-MODE
COMMANDS
<interface>
ip security authentication policy
Description
Sets the authentication algorithms in order of priority. You must specify at least one
algorithm. The algorithm is used to guarantee the authenticity of each packet.
Syntax
ip security authentication policy <policy> [<policy>]
Parameters
<policy>
Specifies the primary policy (method 1):
• hmac_md5. Message-Digest algorithm 5 (MD5) is a widely-used
cryptographic hash function with a 128-bit hash value. The
default value is hmac_md5.
• hmac_sha1. Secure Hash Algorithm (SHA1) is a set of related
cryptographic hash functions. SHA-1 is considered to be the
successor to MD5.
<policy>
Example
Specifies the secondary policy (method 2): hmac_md5,
hmac_sha1.
minna (config) # ip security authentication policy hmac_md5
minna (config) #
ip security enable
Description
Enables encryption and authentication support using the IP Security Protocol (IPsec).
Enabling IPsec support makes it difficult for a third party to view your data or pose as
a machine you expect to receive data from. You must also specify a shared secret to
enable IPsec support.
IMPORTANT: You must set IPsec support on each HP EFS WAN Accelerator with which you
want to establish a secure connection.
NOTE: To enable IPsec authentication you must have at least one encryption and authentication
algorithm specified.
Syntax
ip security enable
Parameters
None
minna (config) # ip security enable
minna (config) #
ip security encryption policy
Description
110
Sets the encryption algorithms in order of priority. You must specify at least one
algorithm. The algorithm is used to encrypt each packet sent using IPsec.
4 - CONFIGURATION-MODE COMMANDS
Syntax
ip security encryption policy <algorithm> [<algorithm>]
Parameters
Specifies the primary algorithm:
• des. The Data Encryption Standard (DES). The default value is
des.
• null_enc. The null encryption algorithm.
<algorithm>
Example
Specifies the alternate algorithm: des and null_enc.
minna (config) # ip security encryption policy des
minna (config) #
ip security peer ip
Description
Sets the peer HP EFS WAN Accelerator for which you want to make a secure
connection. If IPsec is enabled on this HP EFS WAN Accelerator, then it must also be
enabled on all HP EFS WAN Accelerators in the IP security peers list, otherwise this
HP EFS WAN Accelerator will not be able to make optimized connections with those
peers that are not running IPsec. The no command option disables the peer.
IMPORTANT: If IPsec is enabled then each peer HP EFS WAN Accelerator must also have
IPsec correctly configured for optimization to occur.
Syntax
ip security peer ip <addr>
Parameters
<addr>
Example
Specifies the peer IP address.
minna (config) # ip security peer ip 10.0.0.2
minna (config) #
ip security pfs enable
Description
Enables Perfect Forward Secrecy. Perfect Forward Secrecy provides additional
security by renegotiating keys at specified intervals. With Perfect Forward Secrecy, if
one key is compromised, previous and subsequent keys are secure because they are
not derived from previous keys. The no command option disables Perfect Forward
Secrecy.
Syntax
ip security pfs enable
Parameters
None
minna (config) # ip security pfs enable
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
111
4 - CONFIGURATION-MODE
COMMANDS
<algorithm>
ip security rekey interval
Description
Sets the time between quick-mode renegotiation of keys by Internet Key Exchange
(IKE). IKE is a method for establishing a security association (SA) that authenticates
users, negotiates the encryption method, and exchanges a secret key. IKE uses public
key cryptography to provide the secure transmission of a secret key to a recipient so
that the encrypted data can be decrypted at the other end. The default value is 240.
Syntax
ip security rekey interval <minutes>
Parameters
<minutes>
Specifies the number of minutes between quick-mode renegotiation
of keys.
minna (config) # ip security rekey interval 30
minna (config) #
ip security shared secret
Description
Sets the shared secret used to negotiate and renegotiate secret keys. All HP EFS WAN
Accelerators that need to communicate to each other using IPsec must have the same
key. The ip security shared secret option must be set before IPsec is enabled.
Syntax
ip security shared secret <secret>
Parameters
<secret>
Specifies the secret key to ensure Perfect Forward Security security.
minna (config) # ip security shared secret xxxx
minna (config) #
job command
Description
Schedules CLI command execution for a specified time in the future. The job is
comprised of a set of CLI commands and a time when the job will run. Jobs are run
one time only, but they can be reused.
The results of job execution (the output and any error messages) are saved. Jobs can
be canceled and rescheduled. In either of these cases, any previous output or error
messages are cleared and the job state is set to either inactive (if canceled) or pending
(if rescheduled).
Jobs are created by issuing any command that sets an attribute of the job. A job is set
to the pending state when a time in the future is specified. A job can have an empty
set of CLI commands.
112
4 - CONFIGURATION-MODE COMMANDS
The no job <job-id> command <sequence #> command option deletes the CLI
command from the job.
The no job <job-id> command option removes all statistics associated with the
specified job. If the job has not executed, the timer event is cancelled. If the job was
executed, the results are deleted along with the job statistics.
Syntax
job <job-id> command <sequence #> <cli-command>
Parameters
Example
<job-id>
Specifies the job identification number.
<sequence #>
Specifies the sequence number for job execution. The sequence
number is an integer that controls the order in which a CLI
command is executed. CLI commands are executed from the
smallest to the largest sequence number.
<cli-command>
Specifies the CLI command.
minna (config) #job 10 command 1 show info
minna (config) #job 10 command 2 show connections
minna (config) #job 10 command 3 show version
job comment
Description
Adds a comment to the job for display in the show job command. The no command
option deletes the comment.
Syntax
job <job-id> comment
Parameters
Example
<job-id>
Specifies the job identification number.
<comment>
Specifies the comment for the job.
minna (config) # job 10 comment this is a test
minna (config) #
job date-time
Description
Sets the date and time for the scheduled job to execute. If the time specified is in the
past, the job does not execute and is in the inactive state. An hour and minute must be
specified; optionally, you can specify seconds or the date. The no command option
disables the date and time settings.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
113
4 - CONFIGURATION-MODE
COMMANDS
An arbitrary number of CLI commands can be specified with a job and are executed in
an order specified by sequence numbers. If a CLI command in the sequence fails, no
further commands in the job are executed. The output of all commands executed are
saved to a file in a specified directory. The output of each command is simply appended
to the file.
Syntax
job <job-id> date-time-pairs <hh>: <mm> [<ss>] | [<date>]
Parameters
Example
<job-id>
Specifies the job identification number.
<hh>: <mm> [<ss>] |
[<date>]
Specifies the date and time for the job to execute. An hour and
minute must be specified; optionally, you can specify seconds or the
date.
minna (config) # job 10 date-time-pairs 04:30:23
minna (config) #
job enable
Description
Enables CLI command execution (that is, a job) for a specified time in the future. The
job is comprised of a set of CLI commands and a time when the job will run. Jobs are
run one time only, but they can be reused.
The results of job execution (the output and any error messages) are saved. Jobs can
be canceled and rescheduled. In either of these cases, any previous output or error
messages are cleared and the job state is set to either inactive (if canceled) or pending
(if rescheduled).
Jobs are created by issuing any command that sets an attribute of the job. A job is set
to the pending state when a time in the future is specified. A job can have an empty
set of CLI commands.
An arbitrary number of CLI commands can be specified with a job and are executed in
an order specified by the sequence numbers. If a CLI command in the sequence fails,
no further commands in the job are executed. The output of all commands executed are
saved to a file in a specified directory. The output of each command is simply appended
to the file.
The no command option disables jobs.
Syntax
job <job-id> enable
Parameters
<job-id>
Example
Specifies the job identification number.
minna (config) # job 10 enable
minna (config) #
job execute
114
Description
Forces an immediate execution of a job. The timer (if set) is cancelled and the job is
moved to the completed state.
Syntax
job <job-id> execute
4 - CONFIGURATION-MODE COMMANDS
Parameters
<job-id>
minna (config) # job 10 execute
minna (config) #
job fail-continue
Description
Execute all commands in a job. The no command option disables this command.
Syntax
job <job-id> fail-continue
Parameters
<job-id>
Example
Specifies the job identification number.
minna (config) # job 10 fail-continue
minna (config) #
job name
Description
Specifies a name for the job. The no command option deletes the job name.
Syntax
job <job-id> name <friendly-name>
Parameters
Example
<job-id>
Specifies the job identification number.
<friendly-name>
Specifies a name for the job.
minna (config) # job 10 name myjob
minna (config) #
license delete
Description
Deletes the specified license key.
Syntax
license delete <key>
Parameters
<key>
Example
Specifies the license key to delete.
minna (config) # license delete SH10_B-0000-1-7F14-FC1F
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
115
4 - CONFIGURATION-MODE
COMMANDS
Example
Specifies the job identification number.
license install
Description
Installs a new software license key. The no command option disables this command.
Syntax
license install <license key>
Parameters
<license key>
Example
Specifies the license key.
minna (config) # license install SH10_B-0000-1-7F14-FC1F
minna (config) #
limit bandwidth max
Description
Enables bandwidth thresholds on the specified interface at the specified speed. The
no command option disables the bandwidth thresholds.
Syntax
limit bandwidth max <interface> <kbps>
Parameters
Example
<interface>
Specifies the interface name: aux, lan0_0, wan0_0, primary, inpath0_0.
<kbps>
Specifies the bandwidth in kbps. The default value is 1500.
minna (config) # limit bandwidth max primary 500
minna (config) #
limit connection
Description
Limits half-opened connections on a source IP address initiating connections (that is,
the client machine). The default value is 4096. The no command option disables the
connection limits.
Set this feature to block a source IP address that is opening multiple connections to
invalid hosts or ports simultaneously (for example, a virus or a port scanner). This
feature does not prevent a source IP address from connecting to valid hosts at a normal
rate. Thus a source IP address could have more established connections than the limit.
The appliance counts the number of half-opened connections for a source IP address
(connections that check if a server connection can be established before accepting the
client connection). If the count is above the limit, new connections from the source IP
address are passed through unoptimized.
NOTE: If you have a client connecting to valid hosts or ports at a very high rate, some of its
connections might be passed through even though all the connections are valid.
116
4 - CONFIGURATION-MODE COMMANDS
Syntax
limit connection <limit>
Parameters
Example
Specifies the number of connections. The default value is 4096.
minna (config) # limit connection 3000
minna (config) #
logging
Description
Adds a remote syslog server to the system. The no command option removes a
remote syslog server from the system.
Syntax
logging <addr> [trap <log level>]
Parameters
Example
<addr>
Specifies the IP address for the System Log (syslog) server.
trap <log level>
Specifies the trap log level of the syslog server. If you have set different
log levels for each remote syslog server, this option changes all remote
syslog servers to have a single log level.
minna (config) # logging 10.0.0.2
minna (config) #
logging files delete
Description
Deletes a specified number of log files.
Syntax
logging files delete [oldest <number>]
Parameters
oldest <number>
Example
Specifies the number of old log files to delete. The range is 1-10.
minna (config) # logging files delete oldest 10
minna (config) #
logging files rotation criteria frequency
Description
Sets the frequency of log rotation. The default value is weekly.
Syntax
logging files rotation criteria frequency <frequency>
Parameters
<frequency>
Specifies how often log rotation occurs: weekly, daily, hourly.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
117
4 - CONFIGURATION-MODE
COMMANDS
<limit>
Example
minna (config) # logging files rotation criteria frequency weekly
minna (config) #
logging files rotation criteria size
Description
Sets the size, in MB, of the log file before rotation occurs. The default value is 0
(unlimited).
Syntax
logging files rotation criteria size <size>
Parameters
<size>
Example
Specifies the size of the log file to save in MB.
minna (config) # logging files rotation criteria size 100
minna (config) #
logging files rotation force
Description
Rotates logs immediately.
Syntax
logging files rotation force
Parameters
None
Example
minna (config) # logging files rotation force
minna (config) #
logging files rotation max-num
Description
Sets the maximum number of log files to keep locally. The default value is 10.
Syntax
logging files rotation max-num <number>
Parameters
<number>
Example
Specifies the number of log files to keep locally. The range is 1-100.
minna (config) # logging files rotation max-num 10
minna (config) #
logging local
118
Description
Sets the minimum severity for messages sent to the local syslog servers. The default
value is none. The no command option sets the severity level for logging to none (no
logs are sent).
Syntax
logging local <loglevel>
4 - CONFIGURATION-MODE COMMANDS
Parameters
<loglevel>
Specifies the logging severity level. The follow severity levels are
supported:
4 - CONFIGURATION-MODE
COMMANDS
• emerg. Emergency, the system is unusable.
• alert. Action must be taken immediately.
• crit. Critical conditions.
• err. Error conditions.
• warning. Warning conditions.
• notice. Normal but significant condition.
• info. Informational messages.
• debug. Debug-level messages.
Example
minna (config) # logging local notice
minna (config) #
logging trap
Description
Sets the minimum severity for messages sent to the remote syslog servers. The default
value is none. The no command option sets the severity level for logging to none.
Syntax
logging trap <loglevel>
Parameters
<loglevel>
Specifies the logging severity level. The following levels are supported:
• emerg. Emergency, the system is unusable.
• alert. Action must be taken immediately.
• crit. Critical conditions.
• err. Error conditions.
• warning. Warning conditions.
• notice. Normal but significant condition.
• info. Informational messages.
• debug. Debug-level messages.
Example
minna (config) # logging trap notice
minna (config) #
ntpdate
Description
Conducts a single-time synchronization with a specified NTP server.
Syntax
ntpdate <addr>
Parameters
<addr>
Specifies the NTP server to synchronize with.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
119
Example
minna (config) # ntpdate 10.10.10.1
minna (config) #
ntp disable
Description
Disables NTP support. The no command option enables NTP support.
Syntax
ntp disable
Parameters
None
Example
minna (config) # ntp disable
minna (config) #
ntp enable
Description
Enables NTP support. The no command option disables NTP support.
Syntax
ntp enable
Parameters
None
Example
minna (config) # ntp enable
minna (config) #
ntp peer
Description
Enables an NTP peer. The no command option disables an NTP peer.
Syntax
ntp peer <addr> [version <number>]
Parameters
Example
<addr>
Specifies the NTP peer IP address.
version <number>
Specifies the NTP version number. You do not need to specify the
version number for the no ntp peer command.
minna (config) # ntp peer 10.10.10.1
minna (config) #
ntp server
120
Description
Configures an NTP server. The no command option removes an NTP server.
Syntax
ntp server <addr> [version <number>]
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the NTP server to synchronize with.
version <number>
Specifies the version number for NTP. You do not need to specify the
version number for the no ntp server command.
minna (config) # ntp server 10.10.10.1
minna (config) #
out-of-path enable
Description
Enables an out-of-path configuration. The default value is false. The no command
option disables out-of-path configuration.
Syntax
out-of-path enable
Parameters
None
Example
minna (config) # out-of-path enable
minna (config) #
peer
Description
Configures minimum and maximum protocol version. The no command option
removes the protocol version.
Syntax
peer <P addr> version [min <version> | max <version>]
Parameters
Usage
<IP addr>
Specifies the in-path or out-of-path (or both) HP EFS WAN
Accelerator.
min <version>
Specifies the protocol version number: 5 or 6.
max <version>
Specifies the protocol version number: 5 or 6.
Recent software enhancements required to the intercommunication protocols made
2.0 incompatible with version 1.2. To remedy this situation, version 2.1 of the HP
EFS WAN Accelerator supports both the new intercommunication protocols as well
as the 1.2 intercommunication protocols.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
121
4 - CONFIGURATION-MODE
COMMANDS
Example
<addr>
Version 2.1 HP EFS WAN Accelerators do not require any configuration changes
because the 2.1 appliances understand the protocols used in the 1.2 appliances.
However, as the client-side HP EFS WAN Accelerator, by default 2.1 HP EFS WAN
Accelerator will initiate connections with the server-side HP EFS WAN Accelerator
using the new version 6 service protocol. This disrupts connectivity with any 1.2
server-side HP EFS WAN Accelerator peers. To remedy this situation, 2.1 HP EFS
WAN Accelerators allow you to configure the version of the service protocol using the
IP address for each peer when initiating HP EFS WAN Accelerator to HP EFS WAN
Accelerator connections. To configure the protocol version, the following CLI
commands must be issued for each 1.2 HP EFS WAN Accelerator peer in the network:
sh> peer <addr> version min 5
sh> peer <addr> version max 5
These CLI commands instruct the 2.1 HP EFS WAN Accelerator to use only the
version 5 protocols when initiating service connections.
After all the 1.2 HP EFS WAN Accelerators in the network have been upgraded to 2.0
or 2.1 HP EFS WAN Accelerators, the version commands can be removed:
sh> no peer <addr> version min
sh> no peer <addr> version max
Because it might be difficult to maintain an up-to-date list of 1.2 HP EFS WAN
Accelerators in the network, an effective strategy is to configure all 2.1 HP EFS WAN
Accelerators to use version 5 protocol by default with all peers. This can be done by
specifying 0.0.0.0 as the peer address:
sh> peer 0.0.0.0 version min 5
sh> peer 0.0.0.0 version max 5
In all cases, specifying version 5 for the service connection protocol prevent the ability
to enable the new 2.0 optimization policy feature as that requires the version 6 sport
connection protocol.
Example
minna (config) # peer 10.0.0.1 version min 5
minna (config) #peer 10.0.0.2 version max 5
pfs auto-launch enable
Description
Enables the Proxy File Service (PFS) process to start automatically. If PFS is set to
manual (the default setting), you must start PFS manually using the pfs start
command.
For detailed information about PFS, see the HP StorageWorks Enterprise File Services
WAN Accelerator Deployment Guide.
NOTE: PFS is not supported on the Model 500, 510. These models do not have the necessary
disk capacity to perform PFS. PFS supports only Windows 2000 and above domains
122
Syntax
pfs auto-launch enable
Parameters
None
4 - CONFIGURATION-MODE COMMANDS
Example
minna (config) # pfs auto-launch enable
pfs configure
Configures the proxy file share on the HP EFS WAN Accelerator.
PFS is not supported on the Model 500, 510. These models do not have the necessary
disk capacity to perform PFS. PFS supports only Windows 2000 and above domains
For detailed information about PFS, see the HP StorageWorks Enterprise File Services
WAN Accelerator Deployment Guide.
IMPORTANT: The HP EFS WAN Accelerator host name must be in the DNS database for the
HP EFS WAN Accelerator to join the domain. Host names with greater than 15 characters
prevent the HP EFS WAN Accelerator from joining the domain. Make sure your HP EFS WAN
Accelerator host name is less than 15 characters for PFS configurations.
Syntax
pfs configure {realm <domain name>
login <user login> password <password>
[dc-name <domain controller>]}
Parameters
Example
realm <domain
name>
Specifies the Windows 2000 or above domain. The HP EFS WAN
Accelerator host name must be in the DNS database for the HP EFS
WAN Accelerator to join the domain. Host names with greater than
15 characters prevent the HP EFS WAN Accelerator from joining the
domain. Make sure your HP EFS WAN Accelerator host name is less
than 15 characters for PFS configurations.
login <user login>
Specifies the domain controller login.
password
<password>
Specifies the domain controller password.
dc-name <domain
controller>
Specifies the domain controller. The domain controller is optional.
You must specify the domain controller if it is located across the
WAN.
minna (config) # pfs configure realm test login mylogin password
mypassword
minna (config) #
pfs enable
Enables PFS support. PFS provides fast access to local files, accelerated access to files
requiring SMB signing and continuous access to files in the event of WAN disruption.
PFS allows you to store local copies of files at the remote site in an integrated virtual
file server resident on the HP EFS WAN Accelerator. PFS supports only Windows
2000 and above domains.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
123
4 - CONFIGURATION-MODE
COMMANDS
Description
NOTE: PFS is not supported on the Model 500, 510. These models do not have the necessary
disk capacity to perform PFS. PFS supports only Windows 2000 and above domains
PFS is not appropriate for all network environments. For example, in a collaborative
work environment when there are many users reading, writing, and updating a
common set of files and records you should consider not enabling PFS.
You must carefully evaluate whether PFS is suitable for your network needs. For
detailed information about PFS and when to enable it, see the HP StorageWorks
Enterprise File Services WAN Accelerator Deployment Guide.
Before you enable PFS make sure you:
‹
configure the HP EFS WAN Accelerator to use Network Time Protocol (NTP) to
synchronize the time. For detailed information about setting the date and time in
the HP EFS WAN Accelerator, see the HP EFS WAN Accelerator Management
Console User Guide.
‹
configure the DNS server correctly. The configured DNS server must be the same
DNS server to which all the Windows client machines point to.
‹
have a fully qualified domain name for which PFS will be configured. This
domain name must be domain name for which all the Windows desk-top
machines are configured.
‹
configure the HP EFS WAN Accelerator as a member server in the Windows
2000 domain so that the HP EFS WAN Accelerator can access the domain
controller to authenticate the users accessing its file shares. In order to perform
this operation, a Windows domain account is required with the privileges to
perform a joindomain operation.
install and start the HP EFS Remote Copy Utility (HP EFS RCU) on the origin server.
You can install the HP EFS RCU on the origin server or on a separate Windows host
with file share access to the data utilized by PFS. The HP EFS RCU is available for
download from the HP support site located at
http://www.hp.com. For detailed information, see the HP StorageWorks Enterprise
File Services Remote Copy Utility Reference Manual.
NOTE: Using PFS can reduce the overall connection capacity for optimized TCP connections,
as memory and CPU resources are diverted to support the PFS operation.
NOTE: If more than 100 MB of data is transferred through an HP EFS WAN Accelerator,
Model 1010 while performing PFS synchronization, the Central Processing Unit (CPU)
utilization might become high and result in a CPU alarm. This CPU alarm should not be cause
for concern.
124
4 - CONFIGURATION-MODE COMMANDS
Syntax
pfs enable
Parameters
None
Example
minna (config) # pfs enable
minna (config) #
pfs local-password
Description
Sets the local administrator password for PFS support.
Syntax
pfs local-password <password>
Parameters
<password>
Example
Specifies the local administrator password for PFS.
minna (config) # pfs local-password pfstest
minna (config) #
pfs security-sign
Description
Specifies the definition of Windows Secure Message Block (SMB) signing on your
client machine. Enabling PFS restricts SMB signing.
Syntax
pfs security-sign {disabled | enabled | required}
Parameters
Example
disabled
Specifies the default value. If the client has security signature
required, PFS will not function. This setting assumes that clients are
not using security signatures.
enabled
Specifies that SMB signing on the client is set to enabled. If the client
has security signatures enabled, it is supported. If not, PFS continues
to function in any case.
required
Specifies SMB signing on the client is set to required. PFS only
functions if clients have security signatures enabled. If they do not,
PFS will not function.
minna (config) # pfs security-sign enable
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
125
4 - CONFIGURATION-MODE
COMMANDS
PFS requires the HP EFS Remote Copy Utility (HP EFS RCU). You install the HP EFS
RCU on the origin server or on a separate Windows host with file share access to the
data utilized by PFS. You can download the HP EFS RCU from the HP support site
located at http://www.hp.com. For detailed information, see the HP StorageWorks
Enterprise File Services WAN Accelerator Deployment Guide and the HP
StorageWorks Enterprise File Services Remote Copy Utility Reference Manual.
pfs share cancel-event
Description
Cancels a PFS file share on the HP EFS WAN Accelerator.
Syntax
pfs share cancel-event {local-name <local name>}
Parameters
local-name <local
name>
Example
Specifies the local share name on the HP EFS WAN Accelerator. A
local share is the data volume exported from the origin server to the
HP EFS WAN Accelerator.
minna (config) # pfs share cancel-event local-name test
minna (config) #
pfs share configure
126
Description
Configures a PFS file share on the HP EFS WAN Accelerator.
Syntax
pfs share configure {local-name <local name>
remote-path <remote path> server-name <server name>}
[mode <mode> | frequency <frequency>
port <port> | comment <comment>]
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the local share name on the HP EFS WAN Accelerator. A
local share is the data volume exported from the origin server to the
HP EFS WAN Accelerator.
remote-path
<remote path>
Specifies the path name for the share on the origin server.
server-name
<server>
Specifies the server name of the origin server. This is the server
typically located at a data center which hosts the origin file volumes.
mode <mode>
Specifies the mode:
• broadcast. Provides the branch-office HP EFS WAN Accelerator
with a local read-only copy of data stored on the origin Server.
CIFS clients who mount a broadcast mode file share on the HP
EFS WAN Accelerator cannot make changes to the files in that file
share.
NOTE: If a file is set to read-only attribute on the origin server, when
it is transferred to the HP EFS WAN Accelerator, the read-only
attribute is not preserved. If a client sets the read-only attribute on a
file on the HP EFS WAN Accelerator, it is reflected in the file
permissions. When this file is transferred to the origin file server, the
read-only attribute is dropped.
• local. Provides read-write access to a given file share on the
branch-office HP EFS WAN Accelerator. CIFS clients mounting a
local mode file share have read-write access to that share. The
contents of the local mode share are mirrored to the origin server.
Only one PFS on a remote HP EFS WAN Accelerator can access
the mirrored data on the origin server.
CAUTION: Do not make changes to shared files on the origin server
while in local mode. In local mode, the HP EFS WAN Accelerator
overwrites data on your origin server. The HP EFS WAN Accelerator
copy of the data is considered the master copy.
• standalone. Data volume exported only to a proxy file. There is no
server at the data center to which the share has to synchronize data
to. For example, if you want to load temporary data that does not
need to be backed up at a data center.
frequency
<frequency>
Specifies how frequently you want to propagate shares:
• For a local mode the minimum is 60 seconds; there is no upper
limit.
• For broadcast mode the minimum is 1800 seconds; there is no
upper limit.
• The frequency is not applicable to standalone shares.
Example
port <port>
Specifies the port for the proxy-file share. The default value is 8777.
comment
<comment>
Specifies the purpose for the proxy-file share.
minna (config) # pfs share configure local-name test remote-path /tmp
server-name mytest mode broadcast frequency 10
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
127
4 - CONFIGURATION-MODE
COMMANDS
local-name <local
name>
pfs share enable
Description
Enables a PFS share. The no command option disables the proxy-file share.
Syntax
pfs share enable local-name <local name>
Parameters
local-name
<local name>
Example
Specifies the local name of the share on the HP EFS WAN Accelerator to
enable.
minna (config) # pfs share enable test
minna (config) #
pfs share manual-sync
Description
Manually synchronizes a PFS share on the HP EFS WAN Accelerator.
Syntax
pfs share manual-sync {local-name <local name>}
Parameters
local-name <local
name>
Example
Specifies the local share name on the HP EFS WAN Accelerator. A
local share is the data volume exported from the origin server to the
HP EFS WAN Accelerator.
minna (config) # pfs share manual-sync local-name test
minna (config) #
pfs share modify
128
Description
Modifies the PFS share settings on the HP EFS WAN Accelerator.
Syntax
pfs share modify local-name <local name> [mode <mode> | frequency
<frequency> | port <port> |comment <comment>]
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the local name of the share on the HP EFS WAN
Accelerator to modify.
mode <mode>
A local or broadcast share can have its mode downgraded to
standalone. A standalone share cannot have its mode changed.
frequency
<frequency>
Specifies how frequently you want to propagate shares:
• For a local mode the minimum is 60 seconds; there is no upper
limit.
• For broadcast mode the minimum is 1800 seconds; there is no
upper limit.
• The frequency is not applicable to standalone shares.
Example
port <port>
Specifies the port for the origin server.
comment
<comment>
Specifies a description of the purpose of the share.
minna (config) # pfs share modify local-name test remote-path /tmp
server-name mytest mode broadcast frequency 10
minna (config) #
pfs share stop
Description
Stops HP EFS RCU operations on a single PFS share.
Syntax
pfs share stop [local-name <local name>]
Parameters
local-name
<local name>
Example
Stops all PFS service or stops service for the specified local share.
minna (config) # pfs share stop local-name test
minna (config) #
pfs share sync
Description
Enables synchronization of a PFS share.
Syntax
pfs share sync local-name <local name>
Parameters
local-name
<local name>
Example
Specifies the name of the share.
minna (config) # pfs share sync local-name test
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
129
4 - CONFIGURATION-MODE
COMMANDS
local-name <local
name>
pfs share verify
Description
Verifies a PFS share.
Syntax
pfs share verify local-name <local name>
Parameters
local-name
<local name>
Example
Specifies the name of the share.
minna (config) # pfs share verify local-name test
minna (config) #
pfs start
Description
Starts the PFS service.
Syntax
pfs start
Parameters
None
Example
minna (config) # pfs start
minna (config) #
port-label
Description
Sets a port label for a series of ports. The no command option disables the port label.
Port labels are not case sensitive and can be any string consisting of letters, numbers,
underscore ( _ ), or a hyphen ( - ).
Syntax
port-label <label> <port> [Interactive <port>| Secure <port>]
Parameters
Usage
130
<label>
Specifies the name of the port label. Port labels are not case sensitive and
can be any string consisting of letters, numbers, underscore ( _ ), or a
hyphen ( - ).
<port>
Specifies a comma-separated list of ports and ranges of ports. For
example: 22,443,990-995,3077-3078
Interactive
<port>
Specifies the interactive port for which you do not want to automatically
forward traffic on. For a list of ports that are automatically forwarded by
default, see Appendix B, “HP EFS WAN Accelerator Ports.”
Secure <port>
Specifies the secure port for which you do not want to automatically
forward traffic on. For a list of ports that are automatically forwarded by
default, see Appendix B, “HP EFS WAN Accelerator Ports.”
You can use the port-label FOO port <port> command to change ports in a port
label. For example you define port label FOO by issuing following the command.
4 - CONFIGURATION-MODE COMMANDS
(config)# port-label FOO port 2-9,14
If you want to add some more ports to the FOO port label:
(config)# port-label FOO port 10-20
Example
minna (config) # port-label foo ports 22,443,990-995,3077-3078
minna (config) #
protocol cifs disable write optimization
Description
Disables Common Internet File System (CIFS) write-through. The no command
option enables CIFS write-through.
Syntax
protocol cifs disable write optimization
Parameters
None
Example
minna (config) # protocol cifs disable write optimization
minna (config) #
protocol cifs enable
Description
CIFS optimization is enabled by default. The no protocol cifs enable command
disables CIFS optimization for testing purposes.
Syntax
protocol cifs enable
Parameters
None
Example
minna (config) # no protocol cifs enable
minna (config) #
protocol cifs opt-strict-lock enable
Description
Provides a strict mode of optimization where the appliance does not optimize writes
when the files does not have exclusive oplock and if it is shared for read or write. By
default the strict mode is off. Strict mode can be enabled with this command. For
example, when Proxy File Shares (PFS) in share mode denies both read and write to a
file. Typically, used with PFS deployments. The no procotocl cifs opt-strict-lock
enable command provides a strict mode disables strict mode.
Syntax
protocol cifs opt-strict-lock enable
Parameters
None
Example
minna (config) # protocol cifs opt-strict-lock enable
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
131
4 - CONFIGURATION-MODE
COMMANDS
If you run the show port-label FOO command you will see the new range or ports
from 2 to 20.
protocol cifs prepop enable
Description
Enables CIFS transparent prepopulation. The no command option disables
transparent prepopulation.
Syntax
protocol cifs prepop enable
Parameters
None
Example
minna (config) # protocol cifs prepop enable
minna (config) #
protocol cifs secure-sig-opt enable
Disables SecuritySignature negotiations between a Windows client and the server. By
default the Secure-CIFS feature is disabled.
For detailed information about disabling Windows security signing, see the HP
StorageWorks Enterprise File Services WAN Accelerator Installation and
Configuration Guide.
When a Windows server is set to SecuritySignatureEnable, the HP EFS WAN
Accelerator stops CIFS transaction prediction optimization but continues performing
SDR optimization. When the HP EFS WAN Accelerator secure-sig-opt command is
set to enable, the HP EFS WAN Accelerator appliance continues to perform CIFS
optimization for connections even when the SecuritySignatureEnable setting is
specified. (The HP EFS WAN Accelerator does not continue to optimize traffic if the
SecuritySignatureRequired setting is specified on the server.)
Syntax
protocol cifs secure-sig-opt enable
Parameters
None
Example
minna (config) # protocol cifs secure-sig-opt enable0
minna (config) #
protocol connection lan receive buf-size
Description
Sets the LAN buffer size for high-speed Transmission Control Protocol (HSTCP)
support.
You must increase your LAN buffer size to 1 MB. For detailed information about
configuring HSTCP, see “tcp highspeed enable” on page 161.
Syntax
protocol connection lan receive buf-size <bytes>
Parameters
<bytes>
132
Specifies the LAN default receive buffer size. The default value is 32768.
4 - CONFIGURATION-MODE COMMANDS
Example
minna (config) # protocol connection lan receive buf-size 1000000
minna (config) #
Description
Sets the LAN send buffer size for HSTCP support.
You must increase your LAN buffer size to 1 MB. For detailed information about
configuring HSTCP, see “tcp highspeed enable” on page 161.
Syntax
protocol connection lan send buf-size <bytes>
Parameters
<bytes>
Example
Specifies the WAN default-send buffer size. The default value is 81920.
minna (config) # protocol connection lan receive buf-size 1000000
minna (config) #
protocol connection wan receive def-buf-size
Description
Sets the WAN default-receive buffer size for HSTCP support.
For detailed information about configuring HSTCP, see “tcp highspeed enable” on
page 161.
Syntax
protocol connection wan receive def-buf-size <bytes>
Parameters
<bytes>
Usage
Specifies the WAN default-receive buffer size. The default value is
262140.
To configure your WAN buffer you must:
‹
increase the WAN buffers to 2 Bandwidth Delay Product (BDP) or 10 MB. You
can calculate the BDP WAN buffer size. For a link of 155 Mbps and 100 ms
round-trip delay, the WAN buffers should be set to:
2 * 155 Mbps * 100 ms = 1937500 bytes
Example
minna (config) # protocol connection wan receive def-buf-size 3875000
minna (config) #
protocol connection wan send def-buf-size
Description
Sets the WAN default-send buffer size for HSTCP support.
For detailed information about configuring HSTCP, see “tcp highspeed enable” on
page 161.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
133
4 - CONFIGURATION-MODE
COMMANDS
protocol connection lan send buf-size
Syntax
protocol connection wan send def-buf-size <bytes>
Parameters
<bytes>
Usage
Specifies the WAN default-send buffer size. The default value is 262140.
To configure your WAN buffer size you must:
‹
increase the WAN buffers to 2 Bandwidth Delay Product (BDP) or 10 MB. You
can calculate the BDP WAN buffer size. For a link of 155 Mbps and 100 ms
round-trip delay, the WAN buffers should be set to:
2 * 155 Mbps * 100 ms = 1937500 bytes
Example
minna (config) # protocol connection wan send def-buf-size 3875000
minna (config) #
protocol mapi enable
Description
Messaging Application Programming Interface (MAPI) optimization is enabled by
default. The no protocol mapi enable command disables MAPI optimization for
testing purposes.
If you are experiencing problems with Outlook clients connecting with Exchange, you
can disable MAPI latency acceleration (while continuing to optimize with SDR for
MAPI) by issuing the no protocol mapi enable command.
Syntax
protocol mapi enable
Parameters
None
Example
minna (config) # no protocol mapi enable
minna (config) #
protocol mapi 2k3 enable
Description
Enables Exchange MAPI 2003 acceleration which allows increased optimization of
traffic between Exchange 2003 and Outlook 2003. The no command option disables
MAPI 2003 support.
Syntax
protocol mapi 2k3 enable
Parameters
None
Example
minna (config) # protocol mapi 2k3 enable
minna (config) #
protocol mapi nspi
Description
134
Sets the Name Service Provider Interface (NSPI) port. In certain situations (for
example, clients connecting through a firewall), you might want to force a server to
4 - CONFIGURATION-MODE COMMANDS
listen on a single pre-defined port so that access to ports can be controlled or locked
down on the firewall. The no command option disables NSPI support.
‹
Port 135. The Microsoft end-point mapper port
‹
Port 7830. The HP EFS WAN Accelerator port used for Exchange traffic
‹
Port 7840. The HP EFS WAN Accelerator port used for Exchange Directory
NSPI traffic
If you changed the Microsoft Exchange Information Store Interface port in your
environment, in the Setup: Advanced Networking - Protocol MAPI page on the clientside HP EFS WAN Accelerator, change port 7830 to the static port number you have
configured in your Exchange environment. The CLI commands for MAPI and NSPI
port configuration are:
protocol mapi port <port>
protocol mapi nspi port <port>
For further information, see Microsoft Exchange Information Store Interface at http:/
/support.microsoft.com/default.aspx?scid=kb;en-us;270836.
Syntax
protocol mapi nspi <port>
Parameters
<port>
Example
Specifies the incoming NSPI port number. The default value is 7840.
minna (config) # protocol mapi nspi port 2125
minna (config) #
protocol mapi nspi enable
Description
Enables NSPI MAPI. NSPI MAPI is enabled by default. The no protocol mapi nspi
enable command disables NSPI MAPI optimization for testing purposes.
Syntax
protocol mapi nspi enable
Example
minna (config) # protocol mapi nspi enable
minna (config) #
protocol mapi port
Description
Sets the incoming MAPI Exchange port. The default value is 7830. The no command
option resets the MAPI port to the default value.
Syntax
protocol mapi port <port>
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
135
4 - CONFIGURATION-MODE
COMMANDS
In out-of-path deployments, if you want to optimize MAPI Exchange by destination
port. You must define in-path rules that specify the following ports on the client-side
HP EFS WAN Accelerator:
Parameters
<port>
Example
Specifies the incoming MAPI port number. The default value is 7830.
minna (config) # protocol mapi port 2125
minna (config) #
protocol mapi prepop enable
Description
Enables MAPI transparent prepopulation support. Transparent prepopulation allows
email data to be delivered between an Exchange server and the client-side HP EFS
WAN Accelerator while the Outlook client is offline. When a user logs into their
MAPI client, the email bits are already waiting in the client-side HP EFS WAN
Accelerator and can be retrieved locally. The no command option disables MAPI
prepopulation support.
Syntax
protocol mapi prepop enable
[max-connections <number> | poll-interval <minutes> | timeout <seconds>]
Parameters
max-connections
<number>
Specifies the maximum number of connections to enable. The default
value is 1125.
poll-interval
<minutes>
Specifies the polling interval in minutes. The default value is 20.
timeout <seconds>
Specifies the time out period in seconds. The default value 96.
minna (config) # protocol mapi prepop enable
minna (config) #
protocol ms-sql enable
Enables Microsoft Structured Query Language (MS-SQL) blade support for
Microsoft- SQL servers. Enabling the MS-SQL blade enables default rules to be
applied to support Microsoft Project (MS Project) optimization.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: The MS-SQL blade also supports other database applications but you must define SQL
rules to obtain maximum optimization. If you are interested in enabling the MS-SQL blade for
other database applications, contact HP professional services.
The no command option disables SQL blade support. You must restart the HP EFS
WAN Accelerator service after enabling this feature.
136
4 - CONFIGURATION-MODE COMMANDS
Syntax
protocol ms-sql enable
Parameters
None
protocol ms-sql fetch-next enable
Description
Enables pre-fetching requests to request the next row in MS Project. The server-side
HP EFS WAN Accelerator pre-fetches sequential row results and the client-side HP
EFS WAN Accelerator caches them. You decide which cursors or queries are
cacheable. The no ms-sql fetch-next command option removes pre-fetching requests.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
To determine which cursors or queries are cacheable, you configure rules. By default
all fetch next queries are cacheable.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
protocol ms-sql prefetch-fetchnext enable
Parameters
None
minna (config) # protocol ms-sql prefetch-fetchnext enable
minna (config) #
protocol ms-sql num-preack
Description
Specifies the maximum number of sp_execute (or save project) requests to preacknowledge before waiting for a server response to be returned. You can enable preacknowledgement if the client application does not need a result value from the
server.
For example, when you save a project in MS Project, server-side procedures are
invoked many times to write or update database data. The protocol ms-sql numpreack command limits the number of pre-acknowledgements from the server to
maximize HP EFS WAN Accelerator optimization. The no command option disables
pre-acknowledgement.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
137
4 - CONFIGURATION-MODE
COMMANDS
minna (config) # protocol ms-sql enable
minna (config) #
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
protocol ms-sql num-preack <num-preack>
Parameters
<num-preack>>
Specifies the maximum number of pre-acknowledgements. The
default value is 5.
minna (config) # protocol ms-sql num-preack 5
minna (config) #
protocol ms-sql port
Description
Specifies the server port to listen on for SQL requests. The default port is 1433. The
no command option disables the SQL server port.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
protocol ms-sql port <port>
Parameters
<port>
Specifies the SQL server port to listen on for requests. The default
value is 1433.
minna (config) # protocol ms-sql port 2433
minna (config) #
protocol ms-sql query-act rule-id action-id
Description
Specifies a query action when the corresponding query match occurs. The following
types of actions can be specified:
‹
prefetch requests as specified in query argument actions.
‹
invalidate prefetched cache entries.
The no command option disables the query action.
138
4 - CONFIGURATION-MODE COMMANDS
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
Syntax
protocol ms-sql query-act rule-id <rule_id> action-id <action_id>
{num-reps <num_reps> miss-policy <policy> |
invalidate <invalidate_action>
{flush-all miss-policy <policy> | flush-rule miss-policy <policy>}}
Parameters
rule-id <rule_id>
Specifies the rule identification number that uniquely identifies the
rule.
action-id <action_id>
Specifies the action identification number that uniquely identifies this
action within the rule.
num-reps
<num_reps>
Specifies how many times the action is to be repeated
invalidate
<invalidate_action>
Invalidates the specified action: flush-all or flush-rule.
miss-policy <policy>
Specifies the cache miss policy.
minna (config) # protocol ms-sql query-act rule-id 10 action-id 1 numreps 1 miss-policy 1
minna (config) #
protocol ms-sql query-arg-act rule-id
action-id arg-offset expr
Description
Specifies how the query arguments should be modified when prefetching queries. The
no command option disables the SQL query argument.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
protocol ms-sql query-arg-action rule-id <rule_id> action-id <action_id>
arg-offset <arg_offset> expr <expression>
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
139
4 - CONFIGURATION-MODE
COMMANDS
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Parameters
Example
rule-id <rule_id>
Specifies the rule identification number that uniquely identifies the
rule.
action-id <action_id>
Specifies the action identification number that uniquely identifies this
action within the rule.
arg-offset
<arg_offset>
Specifies the SQL query argument to be modified.
expr <expression>
Specifies the SQL query expression.
minna (config) # protocol ms-sql query-arg-act rule-id 1 action-id 1
arg-offset blah expr “select *"
minna (config) #
protocol ms-sql rpc-act rule-id action-id
Description
Specifies a RPC action when a match occurs. The following types of actions can be
specified:
‹
prefetch requests as specified in query argument actions.
‹
invalidation of prefetched cache entries.
‹
whether the fetch next requests can be prefetched.
‹
whether spe_execute requests can be pre-acknowledged.
The no command option disables the RPC action.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
140
protocol ms-sql rpc-act rule-id <rule_id> action-id <action_id>
{num-reps <num_reps> miss-policy <policy> |
invalidate <invalidate_action>
{flush-all miss-policy <policy> | flush-rule miss-policy <policy>}}
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the rule identification number that uniquely identifies the
rule.
action-id <action_id>
Specifies the action identification number that uniquely identifies this
action within the rule.
num-reps
<num_reps>
Specifies how many times the action is to be repeated
invalidate
<invalidate_action>
Invalidates the specified action: flush-all or flush-rule.
flush-all miss-policy
<policy>
Specifies the cache miss policy.
flush-rule miss-policy
<policy>
Specifies the cache rule policy.
minna (config) #
minna (config) #
protocol ms-sql rpc-arg-act rule-id arg-offset expr
Description
Specifies a RPC argument used to determine if the RPC request matches a rule. The
no command option disables the RPC argument.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
protocol ms-sql rpc-arg-act rule-id <rule_id> arg-offset <arg_offset> expr
<expr>
Parameters
rule-id <rule_id>
Specifies the rule identification number that uniquely identifies the
rule.
arg-offset
<arg_offset>
Specifies the RPC argument parameter.
expr <expr>
Specifies the regular expression for the RPC value.
minna (config) # protocol ms-sql rpc-arg-act rule-id 2 action-id 1 argoffset 0 expr "replace select PROJ_READ_COUNT, PROJ_LOCKED,
PROJ_READ_WRITE,PROJ_READ_ONLY, PROJ_ID, PROJ_MACHINE_ID,
PROJ_DATA_SOURCE from MSP_PROJECTS where PROJ_NAME = '$1' "
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
141
4 - CONFIGURATION-MODE
COMMANDS
Example
rule-id <rule_id>
protocol ms-sql rpc-arg rule-id arg-offset expr
Description
Specifies how the RPC argument should be modified when prefetching queries. The
no command option disables the RPC argument.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
protocol ms-sql rpc-arg rule-id <rule_id> action-id <action_id> arg-offset
<arg_offset> expr <expr>
Parameters
Example
rule-id <rule_id>
Specifies the rule identification number that uniquely identifies the
rule.
action-id
<action_id>
Specifies the action identification number that uniquely identifies this
action within the rule.
arg-offset
<arg_offset>
Specifies the RPC argument parameter.
expr <expr>
Specifies the regular expression for the RPC value.
minna (config) # protocol ms-sql rpc-arg rule-id 2 action-id 1 argoffset 0 expr "replace select PROJ_READ_COUNT, PROJ_LOCKED,
PROJ_READ_WRITE,PROJ_READ_ONLY, PROJ_ID, PROJ_MACHINE_ID,
PROJ_DATA_SOURCE from MSP_PROJECTS where PROJ_NAME = '$1' "
minna (config) #
protocol ms-sql rpc-rule rule-id app-name-regex
Description
Specifies a RPC rule. The no command option disables the rule.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
142
protocol ms-sql rpc-rule <rule-id <rule_id> app-name-regex <app_name>
{rpc-id <rpc_id> num-params <num_params> |
4 - CONFIGURATION-MODE COMMANDS
[rpc-query-regex <regex_match_for_rpc_query_string>] | [cursor-type
<cursor_type>]]}
Parameters
Specifies the rule identification number that uniquely identifies the
rule.
app-name-regex
<app_name>
Specifies the client application name (standard string expression).
rpc-id <rpc_id>
Specifies the RPC identifier.
num-params
<num_params>
Specifies the expected number of parameters in the SQL query.
rpc-name-regex
<regex_match_for_r
pc_string>
Specifies the RPC name (standard string expression).
cursor-type
<cursor_type>
Specifies the cursor type for the RPC query. Depending on cursor
type, the client can read forward or backward, from beginning or end,
or read an arbitrary position in the result set:
• forward-only. Only the next rows can be read. The row pointer
cannot be moved back.
• dynamic. The rows must be read in forward or reverse relative to
current row pointer. The row pointer cannot be moved to an
arbitrary index except for first and last positions.
• static. The rows can be read forward or reverse or at an arbitrary
position.
Example
minna (config) # protocol ms-sql rpc-rule rule-id 1 app-name-regex blah
rpc-name-regex blah num-params 1 rpc-query-regex blah cursor-type
static
minna (config) #
protocol ms-sql support-app
Description
Specifies a regular expression (standard string) for an application name that can be
optimized using the MS-SQL blade. The no command option removes the application
from MS-SQL blade support.
IMPORTANT: The commands for MS-SQL support must be implemented by HP professional
services—improper use can result in undesirable effects.
NOTE: If you are interested in enabling the MS-SQL blade for other database applications,
contact HP professional services.
Syntax
protocol ms-sql support-app <name>
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
143
4 - CONFIGURATION-MODE
COMMANDS
rule-id <rule_id>
Parameters
<name>
Example
Specifies the name of the application to be supported by the MS-SQL
blade.
minna (config) # protocol ms-sql support-app msproject
minna (config) #
qos move-rule
Description
Moves a QoS rule to the rule number specified.
Syntax
qos move-rule <rulenum>
Parameters
<rulenum>
Example
Specifies the rule number to insert before.
minna (config) # qos move-rule rulenum 3
minna (config) #
qos rule
Description
Maps a service port to a Quality of Service (QoS) Differentiated Services Code Point
(DSCP) level based on the source IP subnet, the destination IP subnet, destination
port, and rule number. Specifying the destination IP address enables you to apply
different DSCP levels to different servers. The no qos rule rulenum < rulenum >
command disables the QoS rule.
You specify an ordered list of rules where each rule is the DSCP level to use on the
inner connection for connections matching the source IP subnet, the destination IP
subnet and, optionally, the destination port fields.
After you map a service port and a DSCP level, every packet using that service port
has the DSCP field set to that value in the forward and backward direction. On the
WAN HP EFS WAN Accelerator, you can configure a network router or a traffic
shaper to prioritize packets according to the value in the DSCP field before they are
sent across the WAN.
IMPORTANT: If you have already defined a DSCP level and you do not define one in the HP
EFS WAN Accelerator Manager, the HP EFS WAN Accelerator uses the existing DSCP level
for the connection between the HP EFS WAN Accelerators. If you define a DSCP level in the
HP EFS WAN Accelerator Manager, the HP EFS WAN Accelerator overrides the existing DSCP
level and the value that you defined is applied.
TIP: To configure QoS mapping for the FTP data channel, specify port 20 and the
corresponding DSCP level. To configure QoS mapping for the MAPI data channel, specify port
7830 and the corresponding DSCP level.
144
4 - CONFIGURATION-MODE COMMANDS
Syntax
qos rule src <source IP> dest <destination IP> [dest-port <port>] dscp <level>
rulenum <rulenum>
Parameters
Specifies the source IP subnet. You can use wild cards in this field.
<destination IP>
Specifies the destination IP subnet. You can use wild cards in this field.
dest-port <port>
Specifies the port on which to monitor. To configure QoS mapping for
the FTP data channel, specify port 20. To configure QoS mapping for the
MAPI data channel, specify port 7830 and the corresponding DSCP
level. The destination port can be a single port (number), a port label, or
all specifies all ports.
<level>
Specifies the DSCP level (0-63).
<rulenum>
Specifies the rule number to insert before.
minna (config) # qos rule src 10.0.0.4 dest 10.0.0.1 dscp 12 rulenum 3
minna (config) #
radius-server host
Description
Adds a RADIUS server to the set of servers used for authentication. Some of the
parameters given can override the configured global defaults for all RADIUS servers.
For detailed information see the HP StorageWorks Enterprise File Services WAN
Accelerator Deployment Guide.
Syntax
radius-server host {host <hostname> | ip-address <ip address>}
[auth-port <port-number> | timeout <seconds> |
retransmit <retries> | key <string>]
Parameters
Usage
host <hostname> | ipaddress <IP address>
Specifies the RADIUS server host name or IP address.
auth-port <portnumber>
Specifies the authorization port number. The default value is 1812.
timeout <seconds>
Sets the timeout for retransmitting a request to any RADIUS server.
The range is 1-60. The default value is 3.
retransmit <retries>
Specifies the number of times the client attempts to authenticate
with any RADIUS server. The default value is 1. The range is 0-5.
To disable retransmissions set it to 0.
key <string>
Sets the shared secret text string used to communicate with any
RADIUS server.
The same IP address can be used in more than one radius-server host command if
the auth-port value is different for each. The auth-port value is a User Datagram
Protocol (UDP) port number. The auth-port value must be specified immediately
after the hostname option (if present).
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
145
4 - CONFIGURATION-MODE
COMMANDS
Example
<source IP
If no radius-server host {hostname | ip-address} is specified, all radius
configurations for the host are deleted. The no radius-server host {hostname | ipaddress} auth-port {port} command can be specified to refine which host is deleted,
as the previous command deletes all RADIUS servers with the specified IP address.
RADIUS servers are tried in the order they are configured.
Example
minna (config) # radius-server host 10.0.0.0 key XXXX retransmit 3
timeout 10
minna (config) #
radius-server key
Description
Sets the shared secret text string used to communicate with a RADIUS server. This
command can be overridden using the radius-server host command. The no
command option resets the key to the default value.
Syntax
radius-server key <string>
Parameters
<string>
Example
Sets the shared secret text string used to communicate with any
RADIUS server.
minna (config) # radius-server key XYZ
minna (config) #
radius-server retransmit
Description
Specifies the number of times the client attempts to authenticate with any RADIUS
server. This command can be overridden in a radius-server host command. The no
command option resets the value to the default value.
Syntax
radius-server retransmit <retries>
Parameters
<retries>
Example
Specifies the number of times the client attempts to authenticate
with any RADIUS server. The range is 0-5. The default value is 1.
minna (config) # radius-server retransmit 5
minna (config) #
radius-server timeout
146
Description
Sets the timeout for retransmitting a request to any RADIUS server. The range is 160. The default value is 3. This command can be overridden in a radius-server host
command. The no command option resets the value to the default value.
Syntax
radius-server timeout <seconds>
4 - CONFIGURATION-MODE COMMANDS
Parameters
<seconds>
4 - CONFIGURATION-MODE
COMMANDS
Example
Sets the timeout for retransmitting a request to any RADIUS
server. The range is 1-60. The default value is 3.
minna (config) # radius-server timeout 30
minna (config) #
reset factory reload
Description
Resets system to factory defaults and reboots the system.
Syntax
reset factory reload
Parameters
None
Example
minna (config) # reset factory reload
minna (config) #
segstore receive port
Description
Receives the data store from another HP EFS WAN Accelerator. The failover HP EFS
WAN Accelerator must be the same model. You cannot preload a data store on a nonfailover HP EFS WAN Accelerator.
Syntax
segstore receive port <port>
Parameters
<port>
Example
Specifies the port number.
minna (config) # segstore receive port 20
minna (config) #
segstore send addr
Description
Sends the data store to another HP EFS WAN Accelerator. The other HP EFS WAN
Accelerator must be the same model. You cannot preload a data store on a nonfailover HP EFS WAN Accelerator.
Syntax
segstore send addr <addr> [port <port>]
Parameters
Example
<addr>
Specifies the IP address.
port <port>
Specifies the port number.
minna (config) # segstore send addr 10.10.10.1
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
147
service connection pooling
Description
Enables a pool of connections to a peer HP EFS WAN Accelerator. Connection
pooling enables you to save an extra round-trip for the initial connection setup.
Connection pooling is useful for protocols which open a number of short lived
connections such as Hypertext Transport Protocol (HTTP). The no command option
disables connection pooling.
NOTE: Any change in the connection pooling parameter requires you to restart the HP EFS
WAN Accelerator service.
Syntax
service connection pooling <addr> <value>
Parameters
<addr>
Specifies the IP address of the peer HP EFS WAN Accelerator. The IP
address of 0.0.0.0 identifies the group of all HP EFS WAN Accelerator
peers.
<value>
Specifies the connection pooling value for the HP EFS WAN Accelerator
peer. The default value is 20.
minna (config) # service connection pooling 10.0.0.1 10
minna (config) #
148
4 - CONFIGURATION-MODE COMMANDS
service default-port
Sets the default service port you want to use for connection pooling.
Syntax
service default-port <port>
4 - CONFIGURATION-MODE
COMMANDS
Description
Parameters
<port>
Example
Specifies the new port.
minna (config) # service default-port 7800
minna (config) #
service enable
Description
Starts the HP EFS WAN Accelerator service. The no command option disables the
HP EFS WAN Accelerator service (that is, it disables all the configured in-path IP
addresses and ports and you lose your connection to the HP EFS WAN Accelerator
Manager).
Syntax
service enable
Parameters
None
Example
minna (config) # service enable
minna (config) #
service error reset
Description
Resets the HP EFS WAN Accelerator service after a service error.
Syntax
service error reset
Parameters
None
Example
minna (config) # service error reset
minna (config) #
service map-port
Description
Sets a target port to service port mappings. Setting multiple service ports on inner
connections enables you to identify the type of traffic and apply QoS settings based
on a port. The no command option disables the service map.
For example, in an in-path deployment, CIFS and MAPI could be mapped to port 9800
and HTTP to port 9802. The you can configure the WAN router to tag packets for port
9800 with the same priority as for CIFS and MAPI, and those for port 9802, with the
same priority as HTTP.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
149
In the out-of-path deployment, you define which port to listen to on the server HP EFS
WAN Accelerator and you define an in-path fixed-target rule on the client HP EFS
WAN Accelerator to point to the service ports for the traffic you want to apply QoS to.
You cannot map the following ports.
Syntax
Port
Description
22
Reserved for Secure Shell (SSH).
80, 443, and 446
Reserved for the HP EFS WAN Accelerator Manager.
139, 445, and 977
Reserved for Proxy File Service (PFS). These ports are only
excluded if you have PFS enabled.
7800-7899
Reserved by HP (except 7800 and 7810).
8777
Reserved for CIFS transparent prepopulation;. This port is
excluded only if you have CIFS prepopulation enabled.
service map-port <dest port> <service port>
Parameters
Example
<dest port>
Specifies the destination port you want to map.
<service port>
Specifies the service port you want to map to.
minna (config) # service map-port 7018 8000
minna (config) #
service neural-framing stats enable
Description
Enables neural-framing statistics. By default statistics are disabled. Neural framing
enables the HP EFS WAN Accelerator to select the optimal packet framing
boundaries for Scalable Data Referencing (SDR). SDR encoding provides the best
optimization results when the largest buffer is available before a flush is performed.
Neural framing creates a set of heuristics to intelligently determine the optimal
moment to flush TCP buffers. The HP EFS WAN Accelerator continuously evaluates
these heuristics and uses the optimal heuristic to maximize the amount of buffered data
transmitted in each flush, while minimizing the amount of idle time that the data sits
in the buffer. The no command option disables neural-framing statistics.
You must set the neural framing mode (algorithm) for your in-path rules on which you
want to apply neural framing.
150
Syntax
service neural-framing stats enable
Parameters
None
Example
minna (config) # service neural-framing stats enable
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
service port
Description
You can configure multiple service ports on the server-side of the network for multiple
QoS mappings. You define a new service port and then map CIFS ports to that port, so
that QoS configuration settings that are on the router are applied to that service port.
The no command option disables the service port.
Syntax
service port <port>
Parameters
<port>
Example
Specifies the new port to add. The default service ports are 7800 and 7810.
minna (config) # service port 7800
minna (config) #
snmp-server community
Description
Enables an SNMP server community. The no command option disables an SNMP
server community.
Syntax
snmp-server community <name>
Parameters
<name>
Example
Specifies the name of the SNMP server community.
minna (config) # snmp-server community ReaDonLy
minna (config) #
snmp-server contact
Description
Sets the SNMP server contact. The no command option disables the SNMP server
contact.
Syntax
snmp-server contact <name>
Parameters
<name>
Example
Specifies the user name of the SNMP server community contact.
minna (config) # snmp-server contact john doe
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
151
4 - CONFIGURATION-MODE
COMMANDS
Sets a new service port to add for multiple service ports. Service ports are the ports
used for inner connection between HP EFS WAN Accelerators.
snmp-server enable
Description
Enables an SNMP server. The no command option disables the SNMP server or traps.
Syntax
snmp-server enable [traps]
Parameters
None
Example
minna (config) # snmp-server enable
minna (config) #
snmp-server host
Description
Sets the SNMP server host, traps, and version. The no command option disables the
SNMP server host.
Syntax
snmp-server {host <hostname or IP address>} [traps <host>] [traps version
<versionnumber>]
Example
host <hostname or IP
address>
Specifies the host name or IP address for the SNMP server.
traps <host>
Specifies the SNMP host on a community.
traps version
<versionnumber>
Specifies the SNMP version of traps to send to this host.
minna (config) # snmp-server host minna
minna (config) #
snmp-server listen enable
Description
Enables SNMP interface restrictions to this system. The no command option disables
SNMP interface restrictions which causes the SNMP to accept connections from all
interfaces.
After you have enabled interface restrictions, you must specify which interfaces to
accept connections on using the snmp-server listen interface command. If the list of
interfaces is empty, all interfaces are accepted. If the list of interfaces has at least one
entry, then the server only listens on that subset of interfaces.
NOTE: This option is available in the CLI only.
152
Syntax
snmp-server listen enable
Parameters
None
Example
minna (config) # snmp-server listen enable
minna (config) #
4 - CONFIGURATION-MODE COMMANDS
snmp-server listen interface
Description
For example, to add an interface to the list to listen on:
snmp-server listen interface <interface>
To remove an interface so that it is no longer listened to:
no ssh server listen interface <interface>
NOTE: This option is available in the CLI only.
Syntax
snmp-server listen interface <interface>
Parameters
<interface>
Example
Specifies a comma separated list of IP addresses.
minna (config) # snmp-server listen interface 10.0.0.1, 10.0.0.4
minna (config) #
snmp-server location
Description
Sets the SNMP server location. The no command option disables the SNMP server
location.
Syntax
snmp-server location <addr>
Parameters
<addr>
Example
Specifies the location of the system.
minna (config) # snmp-server location 10.10.10.1
minna (config) #
ssh client generate identity user
Description
Generates Secure Shell (ssh) client identity keys for the specifies user. Secure Shell
provides secure login for Windows and Unix clients and servers.
Syntax
ssh client generate identity user <user>
Parameters
<user>
Specifies the client user login.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
153
4 - CONFIGURATION-MODE
COMMANDS
Adds an interface to the SNMP server access restriction list. The no command option
removes the SNMP interface.
Example
minna (config) # ssh client generate user test
minna (config) #
ssh client user authorized-key rsakey sshv2
Description
Sets the RSA (Rivest-Shamir-Adleman) encryption method by RSA Security and
authorized-key for the specified Secure Shell (ssh) user. The no command option
disables the authorized-key encryption method.
Syntax
ssh client user <user> authorized-key rsakey sshv2 <public key>
Parameters
<user>
Example
Specifies the public key for ssh version 2 for the specified ssh user.
minna (config) # ssh client user authorized-key rsakey
minna (config) #
ssh server listen enable
Description
Enables ssh interface restrictions to the system. The no command option disables ssh
interface restrictions which causes ssh to accept connections from all interfaces.
After you have enabled interface restrictions, you must specify which interfaces to
accept connections on using the ssh server listen interface command. If the list of
interfaces is empty, all interfaces are accepted. If the list of interfaces has at least one
entry, then the server listens on that subset of interfaces.
NOTE: This option is available in the CLI only.
Syntax
ssh server listen enable
Parameters
None
Example
minna (config) # ssh server listen enable
minna (config) #
ssh server listen interface
Description
Adds one or more interfaces to the ssh server access restriction list. The no command
option removes the interface.
After you have enabled interface restrictions, you must specify which interfaces to
accept connections on using the ssh server listen interface command. If the list of
interfaces is empty, all interfaces are accepted. If the list of interfaces has at least one
entry, then the server listens on that subset of interfaces.
For example, to add an interface to the list to listen on:
154
4 - CONFIGURATION-MODE COMMANDS
ssh server listen interface <interface>
To remove an interface so that it is no longer listened to:
no ssh server listen interface <interface>
4 - CONFIGURATION-MODE
COMMANDS
NOTE: This option is available in the CLI only.
Syntax
ssh server listen interface <interface>
Parameters
<interface>
Example
Specifies a comma separated list of IP addresses.
minna (config) # ssh server listen interface 10.1.1.1, 10.0.0.4
minna (config) #
stats alarm
Description
Configures alarms based on sampled or computed statistics. The no command option
disables all statistical alarms. The no stats alarm <type> enable command disables
specific statistical alarms.
NOTE: Critical temperature settings cannot be changed. Warning temperature settings can be
changed.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
155
Syntax
stats alarm {<type> <options>}
<type>
Specifies the following types of alarms: bypass (configures all states for
alarms), cpu_util_indiv, duplex_pri (primary), duplex_aux (auxiliary),
duplex_lan (LAN), duplex_wan (WAN), halt_error, mismatch_peer
(peer mismatch), paging (memory paging), service_error (HP EFS WAN
Accelerator service error), store_corruption (data store corruption),
sw_version (software version mismatch), warning_temp (CPU
temperature).
<options>
Specifies the following alarm options:
• clear. Clears alarm settings.
• enable. Enables alarm.
• rate-limit {count [long | medium | short] | [reset] | [window [long |
medium | short]}. Sets alarm event rate-limit values.
• rising. Sets the rising threshold.
• rising clear_threshold <amount>. Sets the threshold to clear rising
alarm. The default value for CPU temperature is 47º C.
• rising error_threshold <amount>. Sets threshold to trigger rising
alarm. The default value for the CPU temperature is 50º C.
• falling clear_threshold <amount>. Sets the threshold to clear falling
alarm. The default value for the CPU temperature is 0º C.
• falling error_threshold <amount>. Sets the threshold to trigger falling
alarm. The default value for the CPU temperature is 0º C.
Example
minna (config) # stats alarm bypass enable
minna (config) #
stats alarm linkstate enable
Description
Enables notification via SNMP trap, email, and alarm notification when a link goes
down. By default this alarm is not enabled. The no alarm linkstate enable command
disables the link state alarm.
Syntax
stats alarm linkstate enable
Example
minna (config) # stats alarm linkstate enable
stats chd
Description
Sets computed historical data points.
Syntax
stats chd <CHD ID> clear
Parameters
156
<CHD ID>
Specifies the specific data point: <CHD ID>, cpu_util, cpu_util_indiv,
cpu_util_day, duplex_aux, duplex_lan, duplex_pri, duplex_wan,
memory_day, paging, paging_day, rbt, rbt_day, rbt_month, rbt_week,
rbtkernel, rbtkernel_day, rbtkernel_month, rbtkernel_week.
clear
Clears all data.
4 - CONFIGURATION-MODE COMMANDS
Example
minna (config) # stats chd rbt_month
minna (config) #
Description
Clears all statistics.
Syntax
stats clear-all
Parameters
None
Example
minna (config) # stats clear-all
minna (config) #
4 - CONFIGURATION-MODE
COMMANDS
stats clear-all
stats export
Description
Exports statistics.
Syntax
stats export <format> csv <report name> after <yyyy>/<mm>/<dd> before
<yyyy>/<mm>/<dd> filename <filename>
Parameters
<format>
Specifies the format.
csv <report name>
Specifies the type of report to export:
• cpu_util. CPU utilization.
• memory. Memory utilization.
• paging. Paging.
• conns. Connection history.
• dstore. Data store hits.
• bw. Aggregate bandwidth.
• bw_<port>. Port bandwidth.
Example
after <yyyy>/
<mm>/<dd>
Specifies statistics collected after a specific time.
before <yyyy>/
<mm>/<dd>
Specifies statistics collected before a specific time
filename <filename>
Specifies the filename for the new report.
minna (config) # stats export csv dstore newdstore
minna (config) #
stats sample
Description
Configure sampled statistics.
Syntax
stats sample {<type> clear | interval <seconds>}
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
157
Parameters
Example
type
Specifies the type of statistic: admission_conn, admission_mem,
bypass, cpu_util, duplex_aux, duplex_lan, duplex_pri, duplex_
wan, halt_error, memory, mismatch_peer, paging, raid_error,
raid_warning, rbt, rbt_kernel, service_error, store-corruption,
sw-version.
clear
Clears all statistics for type.
interval <seconds>
Specifies the sampling interval for this set of samples.
minna (config) # stats bypass clear
minna (config) #
stats settings bandwidth
Description
Configure sampled statistics.The no command option disables bandwidth statistics.
Syntax
stats settings bandwidth <port> desc <description>
Parameters
Example
<port>
Specifies the port number.
desc
<description>
Specifies a description of the port.
minna (config) # stats settings bandwidth 2727
minna (config) #
tacacs-server host
158
Description
Adds a TACACS+ server to the set of servers used for authentication. Some of the
parameters given can override the configured global defaults for all TACACS+
servers. The no command option disables TACACS+ support. For detailed
information, see the HP StorageWorks Enterprise File Services WAN Accelerator
Deployment Guide.
Syntax
tacacs-server host {hostname <ip-address> | auth-port <port-number> | timeout
<seconds> | retransmit <retries> | key <string>}
4 - CONFIGURATION-MODE COMMANDS
Parameters
Specifies the TACACS+ server host name or IP address.
auth-port <portnumber>
Specifies the authorization port number. The default value is 49.
timeout <seconds>
Sets the timeout for retransmitting a request to any TACACS+
server. The range is 1-60. The default value is 3.
retransmit <retries>
Specifies the number of times the client attempts to authenticate
with any TACACS+ server. The default value is 1. The range is 0-5.
To disable retransmissions set it to 0.
auth-type <type>
Specifies the authorization type to use with this TACACS+ server:
ascii, pap.
key <string>
Sets the shared secret text string used to communicate with any
TACACS+ server.
The same IP address can be used in more than one tacacs-server host command if the
auth-port value is different for each. The auth-port value is a UDP port number. The
auth-port value must be specified immediately after the hostname option (if
present).
If no tacacs-server host {hostname | ip-address} is specified, all radius
configurations for this host are deleted. The no tacacs-server host {hostname | ipaddress} auth-port {port} command can be specified to refine which host is deleted,
as the previous command deletes all TACACS+ servers with the specified IP address.
TACACS+ servers are tried in the order they are configured.
Example
minna (config) # tacacs-server host 10.0.0.0
minna (config) #
tacacs-server key
Description
Sets the shared secret text string used to communicate with any TACACS+ server.
The tacacs-server key command can be overridden using the tacacs-server host
command. The no command option resets the value to the default value.
Syntax
tacacs-server key <string>
Parameters
<string>
Example
Sets the shared secret text string used to communicate with any
TACACS+ server.
minna (config) # tacacs-server key XYZ
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
159
4 - CONFIGURATION-MODE
COMMANDS
Usage
hostname < ip
address>
tacacs-server retransmit
Description
Specifies the number of times the client attempts to authenticate with any TACACS+
server. The default value is 1. The range is 0-5. To disable retransmissions set it to 0.
The tacacs-server retransmit command can be overridden in a tacacs-server host
command. The no command option resets the value to the default value.
Syntax
tacacs-server retransmit <retries>
Parameters
<retries>
Example
Specifies the number of times the client attempts to authenticate with
any TACACS+ server. The range is 0-5. The default value is 1.
minna (config) # tacacs-server retransmit 5
minna (config) #
tacacs-server timeout
Description
Sets the timeout for retransmitting a request to any TACACS+ server. This command
can be overridden with the tacacs-server host command. The no command option
resets the value to the default value.
Syntax
tacacs-server timeout <seconds>
Parameters
<seconds>
Example
Sets the timeout for retransmitting a request to any TACACS+ server.
The range is 1-60. The default value is 3.
minna (config) # tacacs-server timeout 30
minna (config) #
tcp connection send keep-alive
Description
Configures TCP connection tools for debugging HP EFS WAN Accelerators. Enables
a keep-alive timer between a local and remote HP EFS WAN Accelerator so that you
can determine if there is an active connection between the appliances. If the appliance
is down it terminates the connection. Use this command to debug connection
problems in your network.
Syntax
tcp connection send keep-alive local-addr <local IP addr> local-port <port>
remote-addr <remote IP addr> remote-port <port>]]
local-addr <local IP
addr> local-port
<port> remote-addr
<remote IP addr>
remote-port <port>]
160
Specifies local and remote HP EFS WAN Accelerator for which you
want to terminate a connection.
4 - CONFIGURATION-MODE COMMANDS
Example
minna (config) # tcp connection send keep-alive local-addr 10.0.0.0
local-port 1240 remote-addr 10.0.0.1 local-port 1300
minna (config) #
Description
Configures TCP connection tools for debugging HP EFS WAN Accelerators.
Terminates connections between HP EFS WAN Accelerators so that you can debug
connection problems in your network.
Syntax
tcp connection send reset [both local-only local-addr <local IP addr> local-port
<port> remote-addr <remote IP addr> remote-port <port> |
local-only local-addr <local IP addr> local-port <port> remote-addr <remote IP
addr> remote-port <port> |
remote-only remote-addr <remote IP addr> remote-port <port> local-addr
<local IP addr> local-port <port>]
Example
both local-only localaddr <local IP addr>
local-port <port>
remote-addr <remote
IP addr> remote-port
<port>
Terminates the connection for the local and remote HP EFS WAN
Accelerators.
local-only local-addr
<local IP addr> localport <port> remoteaddr <remote IP
addr> remote-port
<port>
Terminates the connection for the local HP EFS WAN Accelerator.
remote-only remoteaddr <remote IP
addr> remote-port
<port> local-addr
<local IP addr> localport <port>
Terminates the connection for the remote HP EFS WAN Accelerator
minna (config) # tcp connection send reset local-only local-addr
10.0.0.0 local-port 1240 remote-addr 10.0.0.1 remote-port 1300
minna (config) #
tcp highspeed enable
Enables high-speed Transmission Control Protocol (HSTCP) which provides
acceleration and high throughput for high bandwidth networks where the WAN pipe is
large but latency is high. The no command option disables HSTCP.
HSTCP is activated for all connections that have a Bandwidth-Delay Product (BDP)
larger than 100 packets. If you have a BDP of greater than 512 KB and you are more
interested in filling the WAN pipe than saving bandwidth, you should consider
enabling HSTCP. HSTCP is available only on the HP EFS WAN Accelerator DL3805010.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
161
4 - CONFIGURATION-MODE
COMMANDS
tcp connection send reset
You need to carefully evaluate whether HSTCP will benefit your network
environment. To enable HSTCP you must disable the Lempel-Ziv (LZ) compression
and Scalable Data Referencing (SDR). With SDR your throughput will bottleneck
between 100 and 150 Mbps, which cancels out the benefit of HSTCP.
For someone with an Optical Carrier-3 line or faster, turning off SDR makes sense and
allows HSTCP reach its full potential. For a 2 Mbps link regardless of the amount of
latency, it is better to keep SDR enabled, because the HSTCP mechanism is typically
not triggered until you reach beyond 100 Mbps of WAN throughput.
NOTE: If you want to delete the license for HSTCP, you must first disable the feature.
Syntax
tcp highspeed enable
Parameters
None
Usage
To configure HSTCP you must:
‹
have a valid license for HSTCP.
‹
enable HSTCP.
‹
if your WAN link capacity is 100 Mbps, disable the Lempel-Ziv (LZ)
compression and Scalable Data Referencing (SDR) in the optimization policies.
For detailed information, see “in-path rule auto-discover” on page 100.
‹
enable in-path support. For detailed information, see “in-path enable” on page 94.
‹
increase the WAN buffers to 2 Bandwidth Delay Product (BDP) or 10 MB. You
can calculate the BDP WAN buffer size. For a link of 155 Mbps and 100 ms
round-trip delay, the WAN buffers should be set to:
2 * 155 Mbps * 100 ms = 1937500 bytes
‹
increase the LAN buffers to 1 MB.
For example:
minna (config) # tcp highspeed enable
minna (config) # in-path rule auto-discover srcaddr 0.0.0.0/0 dstaddr
0.0.0.0/0 dstport 0 optimization none vlan -1 neural-mode always rulenum
1
minna (config) # in-path enable
minna (config) # protocol connection lan receive buf-size 1000000
minna (config) # protocol connection lan send buf-size 1000000
minna (config) # protocol connection wan receive def-buf-size 3875000
minna (config) # protocol connection wan send def-buf-size 3875000
Example
minna (config) # tcp highspeed enable
minna (config) #
terminal
Description
162
Configures the terminal display settings. The no command option disables the
terminal settings.
4 - CONFIGURATION-MODE COMMANDS
Syntax
terminal {type <type> | length <number>| width <number>}
Parameters
Specifies the terminal type.
length <number>
Specifies the number of lines for the terminal.
width <number>
Specifies the terminal width in characters.
Example
4 - CONFIGURATION-MODE
COMMANDS
<type>
minna (config) # terminal type vt100 length 20 width 180
minna (config) #
username disable
Description
Disables the user account so that no one can log in with a password. The no command
option re-enables the specified user account. To re-enable the account, you must set a
password for it.
Syntax
username <userid> disable
Parameters
<userid>
Example
Specifies the user login: admin or monitor.
minna (config) # username monitor disable
minna (config) #
username nopassword
Description
Disables password protection for a user. The no command option re-enables the
specified user account.
Syntax
username <userid> nopassword
Parameters
<userid>
Example
Specifies the user login: admin or monitor.
minna (config) # username monitor nopassword
minna (config) #
username password
Description
Sets the password for the specified user. The password must be a minimum of 6
characters. The password is returned in cleartext format on the command line.
Syntax
username <userid> password <cleartext>
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
163
Parameters
Example
<userid>
Specifies the user login: admin or monitor.
<cleartext>
Specifies the password. The password must be at least 6 characters.
minna (config) # username admin password xyzzzZ
minna (config) #
username password 0
Description
Sets the password for the specified user. The password must be a minimum of 6
characters.The password is returned in cleartext format on the command line.
Syntax
username <userid> password 0 <password>
Parameters
Example
<userid>
Specifies the user login: admin or monitor.
<password>
Specifies the password. The password must be a minimum of 6 characters.
minna (config) # username admin password 0 xyzzzZ
minna (config) #
username password 7
Description
Sets the password for the specified user. The password must be a minimum of 6
characters. The password is returned in encrypted format on the command line.
Syntax
username <userid> password 7 <password>
Parameters
Example
<userid>
Specifies the user login: admin or monitor.
<password>
Specifies the password. The password must be a minimum of 6 characters.
minna (config) # username admin password 7 xyzzzZ
minna (config) #
wccp enable
Description
Enables WCCP support. WCCP establishes and maintains the transparent redirection
of selected types of traffic flowing through a group of routers. The selected traffic is
redirected to a group of routers to reduce resource usage and lowering response times.
The no command option disables WCCP support.
You configure WCCP to redirect traffic to an HP EFS WAN Accelerator or group of
HP EFS WAN Accelerators:
164
4 - CONFIGURATION-MODE COMMANDS
so that the HP EFS WAN Accelerators do not have to be physically in-path but
can be virtually in-path. That is, the HP EFS WAN Accelerators are configured to
be physically out-of-path devices while optimizing traffic as if they were in-path
devices.
‹
to redirect traffic to an HP EFS WAN Accelerator or group of HP EFS WAN
Accelerators to provide load balancing and failover support.
For detailed information about configuring WCCP, see the HP StorageWorks
Enterprise File Services WAN Accelerator Deployment Guide
Syntax
wccp enable
Parameters
None
Example
minna (config) # wccp enable
minna (config) #
wccp mcast-ttl
Description
Sets the multicast Time To Live (TTL) parameter for WCCP. The TTL determines the
range over which a multicast packet is propagated in your intranet. The no command
option disables the TTL parameter.
For detailed information about configuring WCCP, see the HP StorageWorks
Enterprise File Services WAN Accelerator Deployment Guide.
Syntax
wccp mcast-ttl <value>
Parameters
<value>
Example
Specifies the multicast-TTL value.
minna (config) # wccp mcast-ttl 10
minna (config) #
wccp service group
Description
Enables a WCCP service group. WCCP enables you to redirect traffic through the HP
EFS WAN Accelerator. The no command option disables WCCP support.
NOTE: The following section assumes you are familiar with WCCP. For detailed information
about WCCP, see the Cisco documentation Web site at
http://www.cisco.com/univercd/home/home.htm.
To enable WCCP, the HP EFS WAN Accelerator must join a service group at the
router. A service group is a group of routers and HP EFS WAN Accelerators which
define the traffic to redirect, and the routers and HP EFS WAN Accelerators the traffic
goes through.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
165
4 - CONFIGURATION-MODE
COMMANDS
‹
To enable failover support with WCCP groups, define the service group weight to be
0 on the backup HP EFS WAN Accelerator. If one HP EFS WAN Accelerator has a
weight 0, but another one has a non-zero weight, the HP EFS WAN Accelerator with
weight 0 does not receive any redirected traffic. If all the HP EFS WAN Accelerators
have a weight 0, the traffic is redirected equally among them.
If the source or destination flags are set, the router redirects only the TCP traffic that
matches the source or destination ports specified.
For detailed information about configuring WCCP, see the HP StorageWorks
Enterprise File Services WAN Accelerator Deployment Guide.
Syntax
wccp service group {<service ID> router <ip_address>} |
[flags <comma_separated_list> |
priority <priority_number> |
ports <comma separated list of up to 7 ports> |
password <string> |
weight <value> |
encap_scheme <string>]
Parameters
166
service group
<service ID>
Specifies the service group identification number (ID) (from 0 to
255). The service group ID is the number that is set on the router. A
value of 0 specifies the standard http service group.
router
<ip_address>
The router IP is a multicast group IP address or a unicast router IP
address. A total of 32 routers can be specified.
4 - CONFIGURATION-MODE COMMANDS
Specifies the combination of src-ip-hash, dst-ip-hash, src-porthash, dst-port-hash, ports-dest, ports-source that define the fields
the router hash on and if certain ports should be redirected.
ports
<portnumber>
Specifies a comma separated list of up to 7 ports that the router will
redirect. Use only if ports-dest or ports-source service flag is set.
priority <prioritynumber>
Specifies the WCCP priority for traffic redirection. If a connection
matches multiple service groups on a router, the router chooses the
service group with the highest priority. The range is 0-255. The
default value is 200.
password <string>
Specifies the WCCP password. This password must be the same as
the password on the router. (WCCP requires that all routers in a
service group have the same password.) Passwords are limited to 8
characters.
weight <value>
The weight determines how often the traffic is redirected to a
particular HP EFS WAN Accelerator. A higher weight redirects more
traffic to that HP EFS WAN Accelerator. The ratio of traffic
redirected to an HP EFS WAN Accelerator is equal to its weight
divided by the sum of the weights of all the HP EFS WAN
Accelerators in the same service group. For example, if there are two
HP EFS WAN Accelerators in a service group and one has a weight of
100 and the other has a weight of 200, the one with the weight 100
receives 1/3 of the traffic and the other receives 2/3 of the traffic. The
range is 0-65535. The default value corresponds to the number of
TCP connections your appliance supports.
encap_scheme
<string>
Specifies the traffic forwarding and redirection scheme: Generic
Routing Encapsulation (gre) or Layer-2 (l2) redirection. The either
value uses Layer-2 first—if Layer-2 is not supported, gre is used.
minna (config) # wccp 999 router 10.0.0.0
minna (config) #
web auto-logout
Description
Sets the number of minutes before the HP EFS WAN Accelerator Manager
automatically logs out the user. The default value is 15 minutes. The no command
option disables the automatic log out feature.
Syntax
web auto-logout <minutes>
Parameters
<minutes>
Example
Specifies the number of minutes before the system automatically logs out
the user.
minna (config) # web auto-logout 20
minna (config) #
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
167
4 - CONFIGURATION-MODE
COMMANDS
Example
flags <hash-bitidentifier>
web enable
Description
Enables the HP EFS WAN Accelerator Manager. The default value is true. The no
command option disables the HP EFS WAN Accelerator Manager.
Syntax
web enable
Parameters
None
Example
minna (config) # web enable
minna (config) #
web http enable
Description
Enables the HTTP. The default value is true. The no command option disables the HP
EFS WAN Accelerator Manager.
Syntax
web http enable
Parameters
None
Example
minna (config) # web http enable
minna (config) #
web http port
Description
Sets the Web port. The default value is 80. The no command option resets the Web
port to the default value.
Syntax
web http port <port>
Parameters
<port>
Example
Specifies the port number.
minna (config) # web http port 8080
minna (config) #
web httpd listen enable
Description
Enables Web interface restrictions to this system. The no command option disables
Web interface restrictions which causes the Web to accept connections from all
interfaces.
After you have enabled interface restrictions, you must specify which interfaces to
accept connections on using the web http listen interface command. If the list of
interfaces is empty, all interfaces are accepted. If the list of interfaces has at least one
entry, then the server only listens on that subset of interfaces.
168
4 - CONFIGURATION-MODE COMMANDS
NOTE: This option is available in the CLI only.
web http listen enable
Parameters
None
Example
minna (config) # web http listen enable
minna (config) #
4 - CONFIGURATION-MODE
COMMANDS
Syntax
web httpd listen interface
Description
Adds an interface to the Web server access restriction list. The no command option
removes the Web interface. For example, to add an interface to the list to listen on:
web httpd listen interface <interface>
To remove an interface so that it is no longer listened to:
no web httpd listen interface <interface>
NOTE: This option is available in the CLI only.
Syntax
web httpd listen interface <interface>
Parameters
<interface>
Example
Specifies a comma separated list of IP addresses.
minna (config) # web httpd listen interface 10.0.0.1, 10.0.0.4
minna (config) #
web https enable
Description
Sets Hypertext Transport Protocol Secure (HTTPS) for accessing a secure Web
server. The no command option disables secure port support.
Syntax
web https enable
Parameters
None
Example
minna (config) # web https enable
minna (config) #
web https port
Description
Sets the HTTPS secure Web port. The no command option disables support on a
secure port.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
169
Syntax
web https port <port>
Parameters
<port>
Example
Specifies the port number.
minna (config) # web https port 8080
minna (config) #
web prefs log lines
Description
Sets the number of lines per system log page. The no command option disables the
number of log lines.
Syntax
web prefs log lines <number>
Parameters
<number>
Example
Specifies the number of lines per log page.
minna (config) # web prefs logs lines 10
minna (config) #
web proxy host
Description
Sets the HTTP, HTTPS, and File Transfer Protocol (FTP) proxy. The no command
option disables the Web proxy.
Syntax
web proxy host <ip address> [port <port>]
Parameters
Example
<ip address>
Specifies the IP address for the host.
<port>
Specifies the port for the host.
minna (config) # web proxy 10.1.2.1 port 1220
minna (config) #
web session renewal
170
Description
Sets the session renewal time. The time duration before the Web session timeout at
which if a Web request comes in (that is, user activity), the Web session is
automatically renewed. The default value is 10 minutes. The no command option
resets the session renewal time to the default value.
Syntax
web session renewal <minutes>
4 - CONFIGURATION-MODE COMMANDS
Parameters
<minutes>
minna (config) # web session renewal 5
minna (config) #
web session timeout
Description
Sets the session timeout value. This is the amount of time the cookie is active. The
default value is 60 minutes. The no command option resets the session timeout to the
default value.
Syntax
web session timeout <minutes>
Parameters
<minutes>
Example
Specifies the number of minutes.
minna (config) # web session timeout 120
minna (config) #
write memory
Description
Saves the current configuration settings to memory.
Syntax
write memory
Parameters
None
Example
minna (config) # write memory
minna (config) #
write terminal
Description
Display commands to recreate current running configuration.
Syntax
write terminal
Parameters
None
Example
minna (config) # write terminal
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
171
4 - CONFIGURATION-MODE
COMMANDS
Example
Specifies the number of minutes.
172
4 - CONFIGURATION-MODE COMMANDS
In This Appendix
HP EFS WAN Accelerator MIB
This appendix describes the HP EFS WAN Accelerator Enterprise Simple Network
Management Protocol (SNMP) Message Information Block (MIB). It contains the
following sections:
‹
“Accessing the HP EFS WAN Accelerator Enterprise MIB,” next
‹
“HP EFS WAN Accelerator Enterprise MIB” on page 175
Accessing the HP EFS WAN Accelerator
Enterprise MIB
The HP EFS WAN Accelerator Enterprise MIB monitors device status, peers, and
provides network statistics for seamless integration into network management systems
such as Hewlett Packard OpenView Network Node Manager, Paessler Router Traffic
Grapher (PRTG), and other SNMP browser tools.
For detailed information about configuring and using these network monitoring tools,
consult their individual web sites.
The following guidelines describe how to download and access the HP EFS WAN
Accelerator Enterprise MIB using common MIB browsing utilities.
‹
You can download the HP EFS WAN Accelerator Enterprise MIB (RBT-mib.txt)
from the HP support site at http://www.hp.com and load it into any MIB browser
utility.
‹
Some utilities might expect a file type other than a text file. If this occurs, change
the file type to the one expected.
‹
Some utilities assume that the root is mib-2 by default. If the utility sees a new
node, such as enterprises, it might look under mib-2.enterprises. If this occurs,
use .iso.org.dod.internet.private.enterprises.rbt as the root.
‹
Some command-line browsers might not load all MIB files by default. If this
occurs, find the appropriate command option to load the RBT-mib.txt file. For
example, for NET-SNMP browsers: snmwalk -m all
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
173
A - HP EFS WAN
ACCELERATOR MIB
APPENDIX A
SNMP Traps
The following table summarizes the Simple Network Management Protocol (SNMP)
traps sent out from the HP EFS WAN Accelerator to configured trap receivers.
Trap
Description
procCrash
(enterprises.17163.1.1.4.1)
A process has crashed and subsequently been restarted by
the system. A system snapshot associated with this crash has
been created on the appliance and is accessible via the CLI
or Management Console. HP Technical Support may need
this information to determine the cause of the crash.
procExit
(enterprises.17163.1.1.4.2)
A process has unexpectedly exited and been restarted by the
system. The process may have exited on its own or due to
other process failures on the appliance. Please contact HP
Technical Support to determine the cause of this event.
cpuUtil
(enterprises.17163.1.1.4.3)
Average CPU utilization has exceeded an acceptable
threshold. If CPU utilization spikes are frequent, it may be
because the system is undersized. Sustained CPU load may
be symptomatic of more serious issues; please contact HP
Technical Support for more information.
pagingActivity
(enterprises.17163.1.1.4.4)
The system is running low on memory and has begun
swapping memory pages to disk. This event can be triggered
during a software upgrade on an optimizing appliance and is
normal. Should this event be triggered at any other time,
please contact HP Technical Support.
smartError
(enterprises.17163.1.1.4.5)
A disk is about to fail. Contact HP Technical Support
immediately.
NOTE: Applicable to models 510/520, 1010/1020, 2010/
2020 only.
peerVersionMismatch
(enterprises.17163.1.1.4.6)
The appliance has encountered another appliance which is
running an incompatible version of system software. The
CLI, Management Console, or the SNMP peer table can be
referenced to determine which appliance is causing the
conflict. To resolve the problem: upgrade your system
software.
bypassMode
(enterprises.17163.1.1.4.7)
The appliance has entered bypass mode and is now passing
through all traffic unoptimized. This event can be the result
of a system crash or a manual configuration change, such as
a service restart or system reboot.
raidError
(enterprises.17163.1.1.4.8)
A drive has failed in a RAID array. Consult the CLI or
Management Console to determine the location of the failed
drive. Please contact HP Technical Support for assistance
with installing the spare drive. The appliance will continue
to optimize during this event.
NOTE: Applicable to models 3010, 5010 only.
storeCorruption
(enterprises.17163.1.1.4.9)
174
Corruption has been detected in the data store. Please
contact HP Technical Support immediately
A - HP EFS WAN ACCELERATOR MIB
Description
admissionMemError
(enterprises.17163.1.1.4.10)
The appliance is optimizing traffic beyond its rated
capability. During this event, the appliance will continue to
optimize existing connections, but new connections will be
passed through without optimization.
admissionConnError
(enterprises.17163.1.1.4.11)
The appliance is optimizing a number of connections beyond
its rated capability. During this event, the appliance will
continue to optimize existing connections, but new
connections will be passed through without optimization.
haltError
(enterprises.17163.1.1.4.12)
The optimization service has halted due to a serious software
error. Please contact HP Technical Support immediately.
serviceError
(enterprises.17163.1.1.4.13)
The optimization service has encountered a condition which
may degrade optimization performance. Please consult the
system log for more information.
scheduledJobError
(enterprises.17163.1.1.4.14)
A scheduled job on the system (e.g., a software upgrade) has
failed. Please use the CLI or the Management Console to
determine which job failed.
confModeEnter
(enterprises.17163.1.1.4.15)
A user on the system has entered configuration mode from
either the CLI or Management Console.
confModeExit
(enterprises.17163.1.1.4.16)
A user on the system has entered configuration mode from
either the CLI or Management Console.
HP EFS WAN Accelerator Enterprise MIB
The following text is an example of the HP EFS WAN Accelerator Enterprise MIB file
(RBT-mib.txt).
RBT-MIB DEFINITIONS ::= BEGIN
IMPORTS
OBJECT-TYPE, MODULE-IDENTITY, NOTIFICATION-TYPE, enterprises,
Unsigned32,
TimeTicks, IpAddress FROM SNMPv2-SMI
DateAndTime FROM SNMPv2-TC;
rbt MODULE-IDENTITY
LAST-UPDATED
"200502272100Z"
ORGANIZATION
"Riverbed Technology"
CONTACT-INFO
"
XXX XXXX
XXX@Riverbed.com"
DESCRIPTION
"Riverbed Technology MIB"
REVISION
"200508092100Z"
DESCRIPTION
"Riverbed Steelhead 2.0 Revisions"
::= { enterprises 17163 }
products OBJECT IDENTIFIER
::= { rbt 1 }
---- PRODUCTS
--
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
175
A - HP EFS WAN
ACCELERATOR MIB
Trap
-Steelhead OBJECT IDENTIFIER
::= { products 1 }
---- Steelhead
--system OBJECT IDENTIFIER
::= { Steelhead 1 }
status OBJECT IDENTIFIER
::= { Steelhead 2 }
config OBJECT IDENTIFIER
::= { Steelhead 3 }
alarms OBJECT IDENTIFIER
::= { Steelhead 4 }
statistics OBJECT IDENTIFIER
::= { Steelhead 5 }
---- SYSTEM
--model OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Appliance model"
::= { system 1 }
serialNumber OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Appliance serial number"
::= { system 2 }
systemVersion OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"System software version string"
::= { system 3 }
---- STATUS
--systemClock OBJECT-TYPE
SYNTAX
DateAndTime
MAX-ACCESS read-only
176
A - HP EFS WAN ACCELERATOR MIB
STATUS
current
DESCRIPTION
"System clock time"
::= { status 1 }
A - HP EFS WAN
ACCELERATOR MIB
health OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current health"
::= { status 2 }
serviceStatus OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current service status"
::= { status 3 }
serviceUptime OBJECT-TYPE
SYNTAX
TimeTicks
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current service uptime"
::= { status 4 }
procTable OBJECT-TYPE
SYNTAX
SEQUENCE OF ProcEntry
MAX-ACCESS not-accessible
STATUS
current
DESCRIPTION
"List of managed processes"
::= { status 5 }
procEntry OBJECT-TYPE
SYNTAX
ProcEntry
MAX-ACCESS not-accessible
STATUS
current
DESCRIPTION
"Entry for one process"
INDEX
{ procIndex }
::= { procTable 1 }
ProcEntry ::=
SEQUENCE {
procIndex
procName
procStatus
procNumFailures
}
Unsigned32,
OCTET STRING,
OCTET STRING,
Unsigned32
procIndex OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Synthetic numeric unique ID of process"
::= { procEntry 1 }
procName OBJECT-TYPE
SYNTAX
OCTET STRING
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
177
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Unique name of process"
::= { procEntry 2 }
procStatus OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current state of process"
::= { procEntry 3 }
procNumFailures OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Number of times process has crashed or exited unexpectedly"
::= { procEntry 4 }
peerStatus OBJECT IDENTIFIER
::= { status 6 }
peerTable OBJECT-TYPE
SYNTAX
SEQUENCE OF PeerEntry
MAX-ACCESS not-accessible
STATUS
current
DESCRIPTION
"List of peers"
::= { peerStatus 1 }
peerEntry OBJECT-TYPE
SYNTAX
PeerEntry
MAX-ACCESS not-accessible
STATUS
current
DESCRIPTION
"Entry for one peer"
INDEX
{ peerIndex }
::= { peerTable 1 }
PeerEntry ::=
SEQUENCE {
peerIndex
peerHostname
peerVersion
peerAddress
peerModel
}
Unsigned32,
OCTET STRING,
OCTET STRING,
IpAddress,
OCTET STRING
peerIndex OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Index of peer"
::= { peerEntry 1 }
peerHostname OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
178
A - HP EFS WAN ACCELERATOR MIB
"Hostname of peer"
::= { peerEntry 2 }
A - HP EFS WAN
ACCELERATOR MIB
peerVersion OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"System software version of peer"
::= { peerEntry 3 }
peerAddress OBJECT-TYPE
SYNTAX
IpAddress
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"IP address of peer"
::= { peerEntry 4 }
peerModel OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Model of peer"
::= { peerEntry 5 }
---- CONFIG
--activeConfig OBJECT-TYPE
SYNTAX
OCTET STRING
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current active configuration"
::= { config 1 }
inpath OBJECT IDENTIFIER
::= { config 2 }
inpathSupport OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"In-path support"
::= { inpath 1 }
outofpath OBJECT IDENTIFIER
::= { config 3 }
outofpathSupport OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Out-of-path support"
::= { outofpath 1 }
--
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
179
--- ALARMS
--alarmsPrefix OBJECT IDENTIFIER
::= { alarms 0 }
procCrash NOTIFICATION-TYPE
OBJECTS { procIndex, procName }
STATUS current
DESCRIPTION
"A procCrash trap signifies that a process managed by PM
has crashed and left a core file. The variable sent with
the notification indicates which process crashed."
::= { alarmsPrefix 1 }
procExit NOTIFICATION-TYPE
OBJECTS { procIndex, procName }
STATUS current
DESCRIPTION
"A procExit trap signifies that a process managed by PM
has exited unexpectedly, but not left a core file.
The variable sent with the notification indicates
which process exited."
::= { alarmsPrefix 2 }
cpuUtil NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"The average CPU utilization in the past minute has gone
above the acceptable threshold"
::= { alarmsPrefix 3 }
pagingActivity NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"The system has been paging excessively (thrashing)"
::= { alarmsPrefix 4 }
smartError NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"SMART has sent an event about a possible disk error"
::= { alarmsPrefix 5 }
peerVersionMismatch NOTIFICATION-TYPE
OBJECTS { systemVersion }
STATUS current
DESCRIPTION
"Detected a peer with a mismatched software version"
::= { alarmsPrefix 6 }
bypassMode NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"The appliance has entered bypass (failthru) mode"
::= { alarmsPrefix 7 }
raidError NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"An error has been generated by the RAID array"
::= { alarmsPrefix 8 }
180
A - HP EFS WAN ACCELERATOR MIB
storeCorruption NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"The data store is corrupted"
::= { alarmsPrefix 9 }
admissionConnError NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"Admission control connections alarm has been triggered"
::= { alarmsPrefix 11 }
haltError NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"The service is halted due to a software error"
::= { alarmsPrefix 12 }
serviceError NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"There has been a service error. Please consult the log file"
::= { alarmsPrefix 13 }
scheduledJobError NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"A scheduled job has failed during execution"
::= { alarmsPrefix 14 }
---- STATISTICS
--cpuLoad OBJECT IDENTIFIER
::= { statistics 1 }
cpuLoad1 OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"One-minute CPU load in hundreths"
::= { cpuLoad 1 }
cpuLoad5 OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"One-minute CPU load in hundreths"
::= { cpuLoad 2 }
cpuLoad15 OBJECT-TYPE
SYNTAX
Unsigned32
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
181
A - HP EFS WAN
ACCELERATOR MIB
admissionMemError NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"Admission control memory alarm has been triggered"
::= { alarmsPrefix 10 }
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Fifteen-minute CPU load in hundreths"
::= { cpuLoad 3 }
cpuUtil1 OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Percentage CPU utilization, aggregated across all CPUs, rolling
average over the past minute"
::= { cpuLoad 4 }
connectionCounts OBJECT IDENTIFIER
::= { statistics 2 }
optimizedConnections OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current total number of optimized connections"
::= { connectionCounts 1 }
passthroughConnections OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current total number of pass-through connections"
::= { connectionCounts 2 }
halfOpenedConnections OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current total number of half-opened (optimized) connections"
::= { connectionCounts 3 }
halfClosedConnections OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current total number of half-closed (optimized) connections"
::= { connectionCounts 4 }
establishedConnections OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current number of established (optimized) connections"
::= { connectionCounts 5 }
activeConnections OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Current number of active (optimized) connections"
182
A - HP EFS WAN ACCELERATOR MIB
::= { connectionCounts 6 }
bandwidth OBJECT IDENTIFIER
::= { statistics 3 }
bwAggInLan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total bytes WanToLan LAN side since last restart of service"
::= { bandwidthAggregate 1 }
bwAggInWan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total bytes WanToLan WAN side since last restart of service"
::= { bandwidthAggregate 2 }
bwAggOutLan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total bytes LanToWan LAN side since last restart of service"
::= { bandwidthAggregate 3 }
bwAggOutWan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total bytes LanToWan WAN side since last restart of service"
::= { bandwidthAggregate 4 }
bandwidthPerPort OBJECT IDENTIFIER
::= { bandwidth 2 }
bwPortTable OBJECT-TYPE
SYNTAX
SEQUENCE OF BWPortEntry
MAX-ACCESS not-accessible
STATUS
current
DESCRIPTION
"List of bandwidth ports"
::= { bandwidthPerPort 1 }
bwPortEntry OBJECT-TYPE
SYNTAX
BWPortEntry
MAX-ACCESS not-accessible
STATUS
current
DESCRIPTION
"Entry for one port"
INDEX
{ bwPort }
::= { bwPortTable 1 }
BWPortEntry ::=
SEQUENCE {
bwPort
bwPortInLan
Unsigned32,
Unsigned32,
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
183
A - HP EFS WAN
ACCELERATOR MIB
bandwidthAggregate OBJECT IDENTIFIER
::= { bandwidth 1 }
bwPortInWan
bwPortOutLan
bwPortOutWan
Unsigned32,
Unsigned32,
Unsigned32
}
bwPort OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Port"
::= { bwPortEntry 1 }
bwPortInLan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Bytes WanToLan LAN side since last restart of service"
::= { bwPortEntry 2 }
bwPortInWan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Bytes WanToLan WAN side since last restart of service"
::= { bwPortEntry 3 }
bwPortOutLan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Bytes LanToWan LAN side since last restart of service"
::= { bwPortEntry 4 }
bwPortOutWan OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Bytes LanToWan WAN side since last restart of service"
::= { bwPortEntry 5 }
datastore OBJECT IDENTIFIER
::= { statistics 4 }
hitsTotal OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total number of hits since last restart of service"
::= { datastore 1 }
hitsMem OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total number of hits in memory since last restart of
service"
::= { datastore 2 }
184
A - HP EFS WAN ACCELERATOR MIB
misses OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total number of misses since last restart of service"
::= { datastore 4 }
END
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
185
A - HP EFS WAN
ACCELERATOR MIB
hitsDisk OBJECT-TYPE
SYNTAX
Unsigned32
MAX-ACCESS read-only
STATUS
current
DESCRIPTION
"Total number of hits on disk since last restart of service"
::= { datastore 3 }
186
A - HP EFS WAN ACCELERATOR MIB
In This Appendix
HP EFS WAN Accelerator Ports
This appendix describes the HP EFS WAN Accelerator default and supported secure
ports. It contains the following sections:
‹
“Default Ports,” next
‹
“Commonly Optimized Ports” on page 189
‹
“Commonly Excluded Ports” on page 189
‹
“Interactive Ports Forwarded by the HP EFS WAN Accelerator” on page 189
‹
“Secure Ports Forwarded by the HP EFS WAN Accelerator” on page 190
Default Ports
The following table summarizes HP EFS WAN Accelerator default ports.
Default Ports
Description
7744
Data store synchronization port.
7800
In-path port.
7801
Network Address Translation (NAT) port.
7810
Out-of-path server port.
7820
Failover port for redundant appliances.
7830
Messaging Application Programming Interface (MAPI)
Exchange 2003 port.
7840
Name Service Provider Interface (NSPI) port.
7850
Connection Forwarding (neighbor) port.
IMPORTANT: For two HP EFS WAN Accelerators to optimize traffic, ports 7800 and 7810,
must be passed through firewall devices located between the pair of HP EFS WAN Accelerators.
Also, SYN and SYN/ACK packets with the TCP option 76 must be passed through firewalls for
autodiscovery to function properly. For the HP StorageWorks Enterprise File ServicesWAN
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
187
B - HP EFS WAN
ACCELERATOR PORTS
APPENDIX B
Accelerator Manager (CMC), port 22 must be passed through the firewall for it to function
properly.
188
B - HP EFS WAN ACCELERATOR PORTS
Commonly Optimized Ports
Although these ports can vary according to your requirements, the following ports are
commonly optimized and monitored for in-path and out-of-path configurations:
‹
21 (FTP)
‹
80 (HTTP)
‹
139 (CIFS:NETBIOS)
‹
445 (CIFS:TCP)
‹
1433 (SQL:TDS)
‹
7830 (MAPI)
Commonly Excluded Ports
This section summarizes the ports that are commonly excluded from optimization in
the HP EFS WAN Accelerator.
If you have multiple ports that you want to exclude, create a port label and list the ports.
For detailed information, see the HP EFS WAN Accelerator Management Console
User Guide.
Application
Ports
PolyComm
(video conferencing)
1503, 1720-1727, 3230-3253, 5060
Cisco IPTel
2000
Interactive Ports Forwarded by the HP EFS
WAN Accelerator
A default in-path rule with the port label Interactive is automatically created in your
system. This in-path rule automatically passes through traffic on interactive ports (for
example, Telnet, TCP ECHO, remote logging, and shell).
TIP: If you do not want to automatically forward these ports, simply delete the Interactive rule
in the Management Console. For detailed information, see the HP EFS WAN Accelerator
Management Console User Guide.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
189
B - HP EFS WAN
ACCELERATOR PORTS
The HP EFS WAN Accelerator by default optimizes all ports. If you do not want the
HP EFS WAN Accelerator to optimize all ports for an in-path or out-of path
configuration, you can specify specific ports for optimization.
The following table lists the interactive ports that are automatically forwarded by the
HP EFS WAN Accelerator.
Port
Description
7
TCP ECHO
23
Telnet
37
UDP/Time
107
Remote Telnet Service
513
Remote Login
514
Shell
1494
Cytrix
2598
Cytrix
3389
MS WBT Server, TS/Remote Desktop
5631
PC Anywhere
5900-5903
VNC
6000
X11
Secure Ports Forwarded by the HP EFS WAN
Accelerator
A default in-path rule with the port label Secure is automatically created in your
system. This in-path rule automatically passes through traffic on commonly secure
ports (for example, ssh, https, and smtps).
TIP: If you do not want to automatically forward these ports, simply delete the Secure rule in
the Management Console. For detailed information, see the HP EFS WAN Accelerator
Management Console User Guide.
The following table lists the common secure ports that are automatically forwarded by
the HP EFS WAN Accelerator.
190
Type
Port
Description
ssh
22/tcp
SSH Remote Login Protocol
tacacs
49/tcp
TACACS+
https
443/tcp
http protocol over TLS/SSL
smtps
465/tcp
# SMTP over SSL (TLS)
nntps
563/tcp
nntp protocol over TLS/SSL (was snntp)
imap4-ssl
585/tcp
IMAP4+SSL (use 993 instead)
B - HP EFS WAN ACCELERATOR PORTS
Port
Description
sshell
614/tcp
SSLshell
ldaps
636/tcp
ldap protocol over TLS/SSL (was sldap)
ftps-data
989/tcp
ftp protocol, data, over TLS/SSL
ftps
990/tcp
ftp protocol, control, over TLS/SSL
telnets
992/tcp
telnet protocol over TLS/SSL
imaps
993/tcp
imap4 protocol over TLS/SSL
pop3s
995/tcp
pop3 protocol over TLS/SSL (was spop3)
l2tp
1701/tcp
l2tp
pptp
1723/tcp
pptp
tftps
3713/tcp
TFTP over TLS
The following table contains the uncommon ports automatically forwarded by the HP
EFS WAN Accelerator.
Type
Port
Description
nsiiops
261/tcp
IIOP Name Service over TLS/SSL
ddm-ssl
448/tcp
DDM-Remote DB Access Using Secure Sockets
corba-iiop-ssl
684/tcp
CORBA IIOP SSL
ieee-mms-ssl
695/tcp
IEEE-MMS-SSL
ircs
994/tcp
irc protocol over TLS/SSL
njenet-ssl
2252/tcp
NJENET using SSL
ssm-cssps
2478/tcp
SecurSight Authentication Server (SSL)
ssm-els
2479/tcp
SecurSight Event Logging Server (SSL)
giop-ssl
2482/tcp
Oracle GIOP SSL
ttc-ssl
2484/tcp
Oracle TTC SSL
syncserverssl
2679/tcp
Sync Server SSL
dicom-tls
2762/tcp
DICOM TLS
realsecure
2998/tcp
Real Secure
orbix-loc-ssl
3077/tcp
Orbix 2000 Locator SSL
orbix-cfg-ssl
3078/tcp
Orbix 2000 Locator SSL
cops-tls
3183/tcp
COPS/TLS
csvr-sslproxy
3191/tcp
ConServR SSL Proxy
xnm-ssl
3220/tcp
XML NM over SSL
msft-gc-ssl
3269/tcp
Microsoft Global Catalog with LDAP/SSL
networklenss
3410/tcp
NetworkLens SSL Event
xtrms
3424/tcp
xTrade over TLS/SSL
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
191
B - HP EFS WAN
ACCELERATOR PORTS
Type
192
Type
Port
Description
jt400-ssl
3471/tcp
jt400-ssl
seclayer-tls
3496/tcp
securitylayer over tls
vt-ssl
3509/tcp
Virtual Token SSL Port
jboss-iiop-ssl
3529/tcp
JBoss IIOP/SSL
ibm-diradm-ssl
3539/tcp
IBM Directory Server SSL
can-nds-ssl
3660/tcp
Candle Directory Services using SSL
can-ferret-ssl
3661/tcp
Candle Directory Services using SSL
linktest-s
3747/tcp
LXPRO.COM LinkTest SSL
asap-tcp-tls
3864/tcp
asap/tls tcp port
topflow-ssl
3885/tcp
TopFlow SSL
sdo-tls
3896/tcp
Simple Distributed Objects over TLS
sdo-ssh
3897/tcp
Simple Distributed Objects over SSH
iss-mgmt-ssl
3995/tcp
ISS Management Svcs SSL
suucp
4031/tcp
UUCP over SSL
wsm-server-ssl
5007/tcp
wsm server ssl
sip-tls
5061/tcp
SIP-TLS
imqtunnels
7674/tcp
iMQ SSL tunnel
davsrcs
9802/tcp
WebDAV Source TLS/SSL
intrepid-ssl
11751/tcp
Intrepid SSL
rets-ssl
12109/tcp
RETS over SSL
B - HP EFS WAN ACCELERATOR PORTS
GLOSSARY
Glossary
ARP. Address Resolution Protocol. An IP protocol used to obtain a node's physical
address.
Bandwidth. The upper limit on the amount of data, typically in kilobits per second
(kbps), that can pass through a network connection. Greater bandwidth indicates faster
data transfer capability.
Bit. A Binary digit. The smallest unit of information handled by a computer; either 1
or 0 in the binary number system.
Blade. One component in a system that is designed to accept some number of
components (blades).
CIFS. Common Internet File System. CIFS is the remote file system access protocol
used by Windows servers and clients to share files across the network.
Database Cursor. A record pointer in a database. When a database file is selected and
the cursor is opened, the cursor points to the first record in the file. Using various
commands, the cursor can be moved forward, backward, to top of file, bottom of file
and so forth.
Default gateway. The default address of a network or web site. It provides a single
domain name and point of entry to the network or site.
DHCP. Dynamic Host Configuration Protocol. Software that automatically assigns IP
addresses to client stations logging onto a TCP/IP network.
Domain. In the Internet, a portion of the Domain Name Service (DNS) that refers to
groupings of networks based on the type of organization or geography.
DNS. Domain Name Service. System used in the Internet for translating names of
network nodes into IP addresses. A Domain Name Server notifies hosts of other host
IP addresses, associating host names with IP addresses.
Ethernet. The most widely used Local Area Network (LAN) access method.
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
193
FDDI. Fiber Distributed Data Interface. A set of American National Standards
Institute (ANSI) protocols for sending digital data over fiber optic cable. FDDI
networks are token-passing networks, and support data rates of up to 100 Mbps (100
million bits) per second. FDDI networks are typically used as backbones for WideArea Networks (WANs).
Filer. An appliance that attaches to a computer network and is used for data storage.
Gateway. A computer that acts as an intermediate device for two or more networks
that use the same protocols. The gateway functions as an entry and exit point to the
network. Transport protocol conversion might not be required, but some form of
processing is typically performed.
Gigabit Ethernet. An Ethernet technology that raises transmission speed to 1 Gbps
(1000 Mbps).
Hashing. Producing hash values for accessing data or for security. A hash value, is a
number generated from a string of text. The hash is substantially smaller than the text
itself and it is generated by a formula in such a way that it is extremely unlikely that
some other text will produce the same hash value.
Heartbeat. A repeating signal transmitted from one appliance to another that indicates
that the appliance is operating.
Heuristic. A method of problem solving using exploration and trial and error methods.
Heuristic program design provides a framework for solving the problem in contrast
with a fixed set of rules (algorithmic) that cannot vary.
Host. A computer or other computing device that resides on a network.
Host address. The IP address assigned to each computer attached to the network.
Host name. Name given to a computer, usually by DNS.
HSRP. Hot Standby Routing Protocol. HSRP is a routing protocol from Cisco that
provides backup to a router in the event of failure. Using HSRP, several routers are
connected to the same segment of an Ethernet, FDDI or token-ring network and work
together to present the appearance of a single virtual router on the LAN. The routers
share the same IP and MAC addresses, therefore in the event of failure of one router,
the hosts on the LAN are able to continue forwarding packets to a consistent IP and
MAC address. The process of transferring the routing responsibilities from one device
to another is transparent to the user.
HTTP. Hypertext Transport Protocol. The protocol used by web browsers to
communicate with web servers.
HTTPS. Hypertext Transport Protocol Secure. The protocol for accessing a secure
web server. Using HTTPS directs the message to a secure port number to be managed
by a security protocol.
Interface. The point at which a connection is made between two elements, systems, or
devices so that they can communicate with one another.
194
GLOSSARY
Internet. The collection of networks tied together to provide a global network that use
the TCP/IP suite of protocols.
IP. Internet protocol. Network layer protocol in the TCP/IP stack that enables a
connectionless internetwork service.
IPsec. Internet Protocol Security Protocol. A set of protocols to support secure
exchange of packets at the IP layer. IPsec has been deployed widely to implement
Virtual Private Networks (VPNs). IPsec supports two encryption modes: Transport and
Tunnel. For IPsec to work, the sending and receiving devices must share a public key.
Latency. Delay between a request being issued and its response being received.
Layer-4. A communications protocol (called the transport layer) responsible for
establishing a connection and ensuring that all data has arrived safely. The application
delivers its data to the communications system by passing a stream of data bytes to the
transport layer along with the socket (the IP address of the station and a port number)
of the destination machine.
MAPI. Messaging Application Programming Interface. A programming interface
from Microsoft that enables a client application to send and receive mail from
Exchange Server or a Microsoft Mail (MS Mail) messaging system. Microsoft
applications such as Outlook, the Exchange client, and Microsoft Schedule use MAPI.
Microsoft Exchange. Messaging and groupware software for Windows from
Microsoft. The Exchange server is an Internet-compliant messaging system that runs
under Windows systems and can be accessed by web browsers, the Windows Inbox,
Exchange client or Outlook. The Exchange server is also a storage system that can hold
anything that needs to be shared.
Netmask. A 32-bit mask which shows how an Internet address is divided into
network, subnet, and host parts. The netmask has ones in the bit positions in the 32-bit
address which are used for the network and subnet parts, and zeros for the host part.
The mask must contain at least the standard network portion (as determined by the
class of the address), and the subnet field should be contiguous with the network
portion.
Neural Network. A modeling technique based on the observed behavior of biological
neurons and used to mimic the performance of a system. It consists of a set of elements
that start out connected in a random pattern, and, based upon operational feedback, are
molded into the pattern required to generate the required results. It is used in
applications such as robotics, diagnosing, forecasting, image processing and pattern
recognition.
NFS. Network File System. The file sharing protocol in a UNIX network.
NIS. Network Information Services. A naming service that allows resources to be
easily added, deleted or relocated.
OSPF. Open Shortest Path First. An interior gateway routing protocol developed for
IP networks based on the shortest path first or link-state algorithm. Routers use linkHP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
195
- GLOSSARY
IP address. In IP version 4 (IPv4), a 32-bit address assigned to hosts using the IP
protocol. Also called an Internet address.
state algorithms to send routing information to all nodes in an internetwork by
calculating the shortest path to each node based on a topography of the Internet
constructed by each node. Each router sends that portion of the routing table (keeps
track of routes to particular network destinations) that describes the state of its own
links. It also sends the complete routing structure (topography).
Packet. A unit of information transmitted, as a whole, from one device to another on
a network.
Probe. A small utility program that is used to investigate, or test, the status of a system,
network or web site.
Policy. Routing and Quality of Service (QoS) scheme that forwards data packets to
network interfaces based on user-configured parameters.
Port. A pathway into and out of the computer or a network device such as a hub,
switch, or router. On network devices, the ports are for communications, typically
connecting Ethernet cables or other network devices.
Router. A device that forwards data packets from one LAN or WAN to another. Based
on routing tables and routing protocols, routers read the network address in each
transmitted frame and make a decision on how to send it based on the most expedient
route (traffic load, line costs, speed, bad lines, etc.). Routers work at Layer-3 in the
protocol stack, whereas bridges and switches work at the Layer-2.
SMB. Server Message Block. A message format used by DOS and Windows to share
files, directories and devices. There are also a number of products that use SMB to
enable file sharing among different operating system platforms. A product called
Samba, for example, enables UNIX and Windows machines to share directories and
files.
SNMP. Simple Network Management Protocol. A network protocol that provides a
way to monitor network devices, performance, and security and to manage
configurations and collect statistics.
Switch. A network device that filters and forwards frames based on the destination
address of each frame. The switch operates at Layer-2 (data link layer) of the Open
System Interconnection (OSI) model.
TCP. Transmission Control Protocol. The error correcting Transport layer (Layer-4) in
the TCP/IP protocol suite.
TCP/IP. Transmission Control Protocol/Internet Protocol. The protocol suite used in
the Internet, intranets, and extranets. TCP provides transport functions, which ensures
that the total amount of bytes sent is received correctly at the other end. TCP/IP is a
routable protocol, and the IP part of TCP/IP provides this capability.
196
GLOSSARY
A
aaa authentication login default 72
aaa authorization map default-user 72
aaa authorization map order 72
aaa interfaces 73
Additional resources 16
arp 73
B
banner 73
boot system 74
C
clear arp-cache 74
CLI
command negation 21
connecting 19
online help 21
overview of 20
saving configurations 22
cli clear-history 74
cli default auto-logout 75
cli default paging enable 75
cli session paging enable 75
clock set 76
clock timezone 76
configuration copy 76
configuration delete 77
configuration fetch 77
configuration jump-start 78
configuration merge 78
configuration move 79
configuration new 80
configuration revert saved 80
configuration switch-to 80, 81
configuration upload 81
configure terminal 30
D
datastore notification enable 81
datastore notification wrap-around 82
datastore receive port 82
INDEX
Index
datastore send addr 82
datastore sync enable 83
datastore sync peer-ip 83
datastore sync port 84
datastore sync server 84
debug generate dump 30
disable 30
Document conventions 14
E
email domain 84
email mailhub 85
email notify events 85
email notify events recipient 85
email notify failures enable 86
email notify failures recipient 86
email send-test 86
enable 23
Enterprise MIB, accessing 173
Enterprise MIB, example of 175
Ethernet network compatibility 15
exit 23
F
failover buddy addr 86
failover buddy port 87
failover enable 87
failover master 87
failover port 88, 89
file debug-dump 30
file stats 31
file stats delete 88
file stats move 88
file stats upload 89
file tcpdump 89
file tcpdump delete 89
file tcpdump upload 90
FTP data channel, setting neural framing for 101
FTP data channel, setting optimization policies
for 101, 104
FTP data channel, setting QoS for 144
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
197
H
Hardware dependencies 15
hardware ecc-mem-check enable 90
hardware upgrade model 90
hostname 91
how 33
I
image boot 91
image delete 91
image fetch 91
image install 92
image move 92
in-path cdp enable 92
in-path cdp holdtime 93
in-path cdp interval 93
in-path enable 94
in-path interface enable 94
in-path interface vlan tag 94
in-path kickoff 95
in-path neighbor enable 95
in-path neighbor ip address 96
in-path neighbor keepalive count 97
in-path neighbor keepalive interval 97
in-path neighbor port 97
in-path oop all-port enable 97
in-path oop enable 98
in-path peering move-rule 100
in-path peering rule 98
in-path rule auto-discover 100, 105
in-path rule deny 102
in-path rule discard 102
in-path rule fixed-target 103
in-path rule pass-through 105
in-path simplified routing 105
Interactive ports 190
interface 106
ip default-gateway 107
ip domain-list 107
ip host 108
ip in-path route 108
ip in-path-gateway 108
ip name-server 109
ip route 109
ip security authentication policy 110
ip security enable 110
ip security encryption policy 110
ip security peer ip 111
ip security pfs enable 111
ip security rekey interval 112
ip security shared secret 112
198
J
job command 112
job comment 113
job date-time 113
job enable 114
job execute 114
job fail-continue 115
job name 115
L
license delete 115
license install 116
limit bandwidth max 116
limit connection 116
logging files delete oldest 117
logging files rotation criteria frequency 117
logging files rotation criteria size 118
logging files rotation force 118
logging files rotation max-num 118
logging local 118
logging trap 117, 119
M
MAC address, displaying 43
MAPI data channel, setting neural framing for 101
MAPI data channel, setting optimization policies for 101,
104
MAPI data channel, setting QoS for 144
MIB file, accessing 173
MIB file, example of 175
MIB file, SNMP traps sent 174
N
Neural framing, setting the FTP data channel 101
Neural framing, setting the MAPI data channel for 101
ntp disable 120
ntp enable 120
ntp peer 120
ntp server 120
ntpdate 119
O
Online documentation 17
Optimization policies, setting the FTP data channel 101,
104
Optimization policies, setting the MAPI data channel
for 101, 104
out-of-path enable 121
P
peer 121
pfs auto-launch enable 122
pfs enable 123
INDEX
Q
qos move-rule 144
qos rule 144
QoS, setting the FTP data channel 144
QoS, setting the MAPI data channel 144
R
radius-server host 145
radius-server key 146
radius-server retransmit 146
radius-server timeout 146
Related reading 17
reload 31
reset factory reload 147
restart 32
INDEX
pfs local-password 125
pfs remove share 123, 125, 126
pfs security-sign 125
pfs share cancel-event 126
pfs share configure 123, 126
pfs share enable 128
pfs share manual-sync 128
pfs share modify 128
pfs share stop 129
pfs share sync 129
pfs share verify 130
pfs start 130
ping 24
port-label 130
Ports
commonly excluded 189
commonly optimized 189
default listening 187
interactive ports forwarded 190
secure automatically forwarded 190
protocol cifs disable write optimization 131, 132
protocol cifs enable 131
protocol cifs opt-strict-lock enable 131
protocol cifs prepop enable 132
protocol connection lan receive buf-size 132
protocol connection wan receive def-buf-size 133
protocol connection wan send def-buf-size 133
protocol mapi 2k3 enable 134
protocol mapi enable 134
protocol mapi nspi 134
protocol mapi nspi enable 135
protocol mapi port 135
protocol mapi prepop 136
protocol ms-sql enable 136
protocol ms-sql fetch-next enable 137
protocol ms-sql num-preack 137
protocol ms-sql port 138
protocol ms-sql query-act rule-id action-id 138
protocol ms-sql query-arg-act rule-id action-id argoffset expr 139
protocol ms-sql rpc-act rule-id action-id 140
protocol ms-sql rpc-arg rule-id arg-offset expr 142
protocol ms-sql rpc-arg-act rule-id arg-offset
expr 141
protocol ms-sql rpc-rule rule-id app-name-regex 142
protocol ms-sql support-app 143
S
Secure ports, automatically forwarded 190
segstore receive port 147
segstore send addr 147
service connection pooling 148
service default-port 149
service enable 149
service map-port 149, 151
service neural-framing stats enable 150
show aaa 32
show arp 32
show bootvar 32
show cli 33
show clock 33
show configuration 33
show configuration files 34
show configuration full 34
show configuration running 35
show connection 35
show connections 36
show datastore 38
show email 38
show failover 38
show files debug-dump 39
show files stats 39
show files tcpdump 39
show hosts 39, 40
show images 40
show info 41
show in-path 41
show in-path cdp 41
show in-path neighbor 42
show in-path oop-all-port 42
show in-path peering rules 42
show in-path rules 42
show interfaces 43
show ip 44
show ip security 45
show ip security peers 45
show job 45
show jobs 46
show licenses 46
show limit bandwidth 46
show log 47
show logging 47
show ntp 48
HP STORAGEWORKS EFS WAN ACCELERATOR COMMAND-LINE INTERFACE REFERENCE MANUAL
199
show out-of-path 48
show peer version 48
show peers 48
show pfs all-info 49
show pfs configuration 50
show pfs state shares 50
show pfs stats shares 51
show port label 49
show protocol cifs internal 51
show protocol connection 52
show protocol mapi 52
show protocol ms-sql 53
show protocol ms-sql rules 53
show radius 54
show raid error-msg 55
show service 55, 56
show service neural-framing 57
show tacacs 59
show tcp highspeed 59
show terminal 59
show version history 60
SNMP MIB, accessing 173
snmp server listen enable 152
snmp server listen interface 153
SNMP traps, summary of those sent 174
snmp-server community 151
snmp-server contact 151
snmp-server enable 152
snmp-server host 152
snmp-server location 153
software dependencies 15
ssh client generate identity user 153
ssh client user authorized-key rsakey sshv2 154
ssh server listen enable 154
ssh server listen interface 154
stats alarm 155
stats alarm linkstate enable 156
stats chd 156
stats clear-all 157
stats export 157
stats sample 157
stats settings bandwidth 158
tcpdump 25
terminal 162
tproxytrace 26
traceroute 26
Traps, summary of SNMP traps sent 174
U
username disable 163
username nopassword 163
username password 163
username password 0 164
username password 7 164
Users, types of 13
W
wccp enable 164
wccp mcast-ttl 165
wccp service group 165
web auto-logout 167
web enable 168
web http enable 168
web http port 168
web httpd listen enable 168
web httpd listen interface 169
web https enable 169
web https port 169
web prefs log lines 170
web proxy host 170
web session renewal 170
web session timeout 171
write memory 171
write terminal 171
T
tacacs-server host 158
tacacs-server key 159
tacacs-server retransmit 160
tacacs-server timeout 160
tcp connection send keep-alive 160
tcp connection send reset 161
tcp highspeed enable 161
200
INDEX
Download PDF
Similar pages