CLI Guide - WatchGuard Technologies

25.06.2013 Views
CHAPTER 3: Configuration Mode Commands password contains the pound (#) character, it needs to be placed in double quotes. [ This allows you to set PPPoE to Dial-on-Demand or Always On mode. The function of following this option differs in each mode. For Dial-on- Demand mode, this number indicates the inactivity timeout interval in minutes (default is 20 minutes). For Always On mode, this number indicates the auto-reconnect interval in seconds (default is 60 seconds). [-unnumbered_pppoe |disable]] This option allows you to use unnumbered PPPoE. For more information on unnumbered links, see RFC 1812 section 2.2.7. [backup [ip mask gateway ] | [dhcp [host_id] ] | [pppoe -user "name" -password "password"] [unnumbered_pppoe |disable] [disable] [switch_to_backup] This allows you to enable a Backup WAN connection for Interface 1, for systems that have unreliable ISPs or network providers. You can configure the failover connection as static, by typing the IP address, netmask, and gateway. You can configure the failover connection as DHCP using the [dhcp ["host_id"]] syntax. You can configure the interface as PPPoE (always on) using the [pppoe -user "name" -password "password"] syntax. You can configure the backup WAN connection as unnumbered PPPoE using the syntax [unnumbered_pppoe |disable]. You can disable the backup connection by using the option [disable]. 88 WatchGuard Vclass 5.1

Second level configuration mode commands You can switch to the backup connection using the command switch_to_backup. [tracking -remove|-add -interval -timeout -pause_before_failback ] ] For systems that configure a Backup WAN connection using the failover command, these settings must be specified. You can add up to three IP addresses that are used to determine WAN failure. These addresses are used with the -interval and -timeout values to determine when the WAN connection has failed. -interval determines the amount of time that elapses between attempts to ping all three specified tracking addresses. -timeout determines the amount of time that can elapse before a ping attempt is considered failed. All three specified IP addresses must fail to respond to the ping attempt within the specified time to consider the WAN connection failed. In the event of failure, the WAN is switched over to the backup connection. This causes a brief interruption in processing while the system restarts. In order to prevent frequent restarts, the final parameter, -pause_before_failback, is provided. This allows you to specify the amount of time that must elapse between failovers. WatchGuard Command Line Interface Guide 89

Page 1 and 2: WatchGuard ® Command Line Interfac

Page 3 and 4: WatchGuard Technologies, Inc. Fireb

Page 5 and 6: 4. Limited Warranty. WATCHGUARD mak

Page 7 and 8: 6. Export Controls. You agree not t

Page 9 and 10: Contents Contents .................

Page 11 and 12: CHAPTER 3 Configuration Mode Comman

Page 13 and 14: CHAPTER 5 Other Commands ..........

Page 15 and 16: CHAPTER 1 Using the Command Line In

Page 17 and 18: CLI limitations CLI Guide text conv

Page 19 and 20: Getting started with the WatchGuard


Page 23 and 24: Case sensitivity Getting started wi


Page 27 and 28: Navigating through the CLI Getting

Page 29 and 30: Arguments None. Example WG(admin)#e


Page 33 and 34: Installing and configuring a WatchG

Page 35 and 36: Command Description Installing and

Page 37 and 38: Installing and configuring a WatchG

Page 39 and 40: CHAPTER 2 Administration Mode Comma

Page 41 and 42: Administration mode commands plete

Page 43 and 44: Administration mode commands 4 Clic

Page 45 and 46: Administration mode commands #ex: e

Page 47 and 48: crl command Administration mode com

Page 49 and 50: Administration mode commands Merge

Page 51 and 52: Administration mode commands Proces

Page 53 and 54: Administration mode commands Shuts

Page 55 and 56: CHAPTER 3 Configuration Mode Comman

Page 57 and 58: abort command Top-level configurati

Page 59 and 60: certificate command Top-level confi

Page 61 and 62: Top-level configuration mode comman

Page 63 and 64: interface command Top-level configu

Page 65 and 66: Arguments None Example WG#config WG

Page 67 and 68: [no] traffic command (log level) WG




Page 75 and 76: as command Top-level configuration



Page 81 and 82: Second level configuration mode com



Page 87 and 88: Example Second level configuration







Page 101: Second level configuration mode com

Page 105 and 106: Arguments Second level configurati
















Page 137 and 138: Level 3 configuration mode commands

Page 139 and 140: Level 3 configuration mode commands

Page 141 and 142: CHAPTER 4 Debug Mode Commands All W

Page 143 and 144: arp command Debugging/troubleshooti

Page 145 and 146: Debugging/troubleshooting commands

Page 147 and 148: - images/rs_sublogo.gif Debugging/t

Page 149 and 150: pppoe_config command Debugging/trou


Page 153 and 154: set_dos_if command Debugging/troubl


Page 157 and 158: CHAPTER 5 Other Commands No command

Page 159 and 160: Show address command Display curren

Page 161 and 162: Show all_routes command WG#show all

Page 163 and 164: Effect Displays any DNS configurati

Page 165 and 166: Show command component, action or p

Page 167 and 168: Show command Effect Displays whethe

Page 169 and 170: Show command Arguments This argume

Page 171 and 172: Show command Arguments This argume

Page 173 and 174: Show command Effect Displays the ba

Page 175 and 176: Index A abbreviations 8 abort syste

Page 177 and 178: administration mode disable 108 CLI

Page 179 and 180: log configuration, level 3 commands

Page 181: X xml export debugging information

watchguard

commands

configuration

interface

arguments

appliance

vclass

software

certificate

displays

technologies

www.watchguard.com

CLI Guide - WatchGuard Technologies

CLI Guide - WatchGuard Technologies ... View more CLI Guide - WatchGuard Technologies

Delete template?

Save as template ?

CLI Guide - WatchGuard Technologies CLI Guide - WatchGuard Technologies