Brocade Communications Systems RFS6000 User Manual
Page 258
256
Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide
53-1001931-01
Global Configuration commands
5
route
[<IP-destination-prefix>
<IP-destination-prefix-mask
>|<IP-destination-prefix/Ma
sk>] <gateway-IP>
Adds a static route entry in the routing table.
•
<IP-destination-prefix>– IP destination prefix
•
<IP-destination-prefix-mask> – Mask for the
<IP-destination-prefix> IP
•
<IP-destination-prefix/Mask> – IP destination prefix with
mask
•
<gateway-IP> – IP address of the next hop used to
reach the destination
routing
Turns on IP routing
ssh {[port <port>|rsa
keypair-name
<key-pair-name>]}
Sets up the Secured Shell (SSH) server
•
port <port> – Optional. Defines the listening port (set
between 0-65536)
•
rsa keypair-name <key-pair-name> – Optional. Sets the RSA
encryption key used for configuring RSA keypair
telnet {port <port>}
Configures the Telnet server.
•
port <port> – Optional. Defines the listening port ID (set
between 0-65535)
dos [ascend|
bcast-mcast-icmp|
chargen|enable|fraggle|
ftp-bounce|
invalid-protocol|
option-route|router-advt|
router-solicit|smurf|
snork|tcp-intercept|
tcp-max-incomplete|
twinge]
log [<0-8>|
alerts|
critical|
debugging| |emergencies|
errors|
informational|
none|
notifications|
warnings]
Configures the Denial of Service (DOS) attack parameters.
•
ascend – Enables Ascend DoS checks
•
bcast-mcast-icmp – Detects Broadcast/Multicast Icmp traffic
as attack
•
chargen – Enables chargen DoS checks
•
enable – Enables all DoS checks
•
fraggle – Enables fraggle DoS checks
•
ftp-bounce – Enables FTP bounce logs and sets the logging
levels
•
invalid-protocol – Enables Invalid Protocol DoS attack check
and sets the logging levels for this attack
•
option-route – Enables IP option route check
•
router-advt – Enables ICMP router advertisement check
•
router-solicit – Enables ICMP router solicit check
•
smurf log – Enables smurf attack check
•
snork – Enables check for packets
•
tcp-intercept – Enables TCP intercept
•
twinge – Enables twinge check
For all the above DoS attacks, the following log options can be set.
•
<0-8> – Select one numerical log level. All messages
with and below this severity are logged
•
emergencies – System is unusable (level 0)
•
alerts – Immediate action needed (level 1)
•
critical – Critical conditions (level 2)
•
errors – Error conditions (level 3)
•
warnings – Warning conditions (level 4)
•
notifications – Normal but significant conditions
(level 5)
•
informational – Informational messages (level 6)
•
debugging – Debugging messages (level 7)
•
none –Disable logging (level 8)