VRP System-1

Huawei's network equipment-routers, switches using the VRP system, to learn, must be familiar with the VRP, Huawei Switch Learning Guide has a detailed introduction to the VRP, learn this first.

Vrp--versatile Routing Platform, a general-purpose routing platform, is the Universal network operating system platform for Huawei data communication products. including routers, switches, firewalls, WLAN and other products.

The VRP is from 1.X to now 8.X and is now mostly used in 5.X and 8.X. The 8.X is mainly used in the data switch CE Series and the cluster router ne5000e.

The command line interface of human-computer interaction cli--command lines Interface. corresponding to the gui--graphical user Interface, the GUI.

VRP command-line format conventions:

VRP Command line View

The "View" is the VRP Command interface interface, the different VRP commands need to be executed in different views, and commands with different functions are also configured under different views. In the VRP system, some views are hierarchical, in the system view can enter a variety of functional views, in some functional views can also enter the corresponding sub-functional view.

VRP command level vs. User Level

In order to increase the security of the device, the VRP system divides all the commands into different levels so that users of different permissions can use different levels of commands, thus determining the corresponding user level. When users of different levels log on, only commands that are equal to or lower than their level can be used.

(1) User level and command level

The VRP system's command level is divided into 0~3 a total of 4 levels, but the user level is divided into 0~15 a total of 16 levels. By default, the corresponding relationship between the user level and the command level is the following table:

(2) Command level modification

If users need to implement granular management of permissions, there are two ways to improve command levels for certain commands, but it is recommended that you do not modify them to avoid the inconvenience of operation and maintenance.

1) Use the command-privilege level rearrange command (you need to make sure that the user's own levels are 15 levels, otherwise you cannot execute the command), and all the default registers are 2, 3-level commands, which are batched up to 10 and 15 levels respectively. After the command-level bulk promotion, all command lines that were originally registered automatically adjust the corresponding command level as follows:

-Level 0 and Level 1 commands remain unchanged.

-Level 2 commands to level 10, Level 3 commands to level 15.

-2~9 and 11~14 levels there are no commands in these command levels, and users can individually adjust the required commands to these levels to achieve granular management of user permissions.

Note that the promoted command must not be modified individually by the command-privilege level level viewview-name command-key command, Otherwise, these commands will remain unchanged at the same level. The Undo Command-privilege Level Rearrange command restores the original batch to level 10 or 15 commands back to Level 2 or 3. Note that after the command-level bulk promotion, the undo Command-privilege level rearrange command itself is also tuned to level 15, so you must ensure that the user level that executes this command is level 15.

(Router does not have command-privilege level rearrange this command, switch has)

2) Use command-privilege level viewview-name command-key command to elevate the specified command to the specified command level.

- Level: Specify command new command levels, value range 0~15;

- view-name: Specifies the command view name of the command that you want to adjust the command level: The shell represents a user view, system represents a systems view, VALN represents a VLAN view, and so on.

- Command-key: Specifies the specific command to adjust the command level.

By default, Ping, tracert, Telnet, and so on are access levels (level 0), display is monitor level (Level 1), most configuration commands are configuration level (level 2), and commands for user key settings, FTP, XModem, TFTP, and file system operations are management level (3 level). Use the undo Command-privilege [Level level] View View-name command-key command and undo Command-privilege View View-name The Command-key command can cancel the current setting. Construction uses the latter.

View-name in the command can be used? Bring up the possible view names.

The user Privilege command is used to configure the level of users.

The undo User Privilege command is used to restore the users level to the default condition.

By default, the user level in the console port user interface is 15, while the other user interface user level is 0.

The privilege limit should be actualprivi.

What is the role of user privilege level????

(3) User-level password settings

User level refers to the classification of logged-in users, divided into 16 levels (0~15), corresponding to the command level, that is, after different levels of users sign in, only use commands that are equal to or lower than their own level. To prevent unauthorized users from trespassing, the corresponding password can be set for each user level (note that user level, not user) , but high-level users do not need to switch user levels when accessing low-level users, and you do not need to enter a low-level password.

You can use the Super Password [level user-level] [cipher password] command to set the protection password for the corresponding command level in System view.

(4) Switch User level

Using super [level] in System view, under AR200 router emulation, using super [level] under the user view

VRP command-line editing

VRP Each command has a maximum length of 510 characters, the command keyword is case-insensitive, the editor can use a shortcut key, and the disp hotkey can display all the shortcut keys.

Ctr+a the cursor to the costume, Ctr+c stops the function that is being performed, CTR+Z returns to the user view.

VRP provides the function of command completion, you can enter the incomplete keyword and press the <Tab> key, the system will fill the command keyword.

Online Help for the VRP command line: In either command view, type "? "Gets all the commands in the command view and their simple descriptions. You can also empty a space after a command keyword plus "? , which prompts you to receive a keyword or parameter and a simple description.

Common error hints for the VRP command line

VRP Undo Command Line

Almost all configuration commands (excluding commands for management classes) have the corresponding Undo command format, where undo is the keyword for these commands. The Undo command line is typically used to restore the default, disable a feature, or delete a setting. The Undo command has several formats:

1) without the parameters and options in the original command: Undo Sysname,undo authentication-mode,undo Telnet Server Enable, ...

2) only with previous parameters or options in the original command: Undo Super Password [level user-level], ...

3) with all parameters and options in the original command: Undo VLAN Batch {VLAN-ID1 [to Vlan-id2]} &<1-10>

View history Commands

By default, each logged-on user saves 10 history commands, which can be modified using the following command: History-command max-size size-value

View command line display information, including query command line configuration information, control command line display and filter command line display information three aspects

1, query the command line configuration information

The display command looks at the configuration information for the corresponding configuration command. If you complete the configuration of the FTP service function, perform display ftp-server, other such as display vlan,display STP, etc.

The display command does not display the default value in the output information and can perform the display this include-default to view

1) View the currently active configuration information

Display current-configuration [Configuration [Configuration-type [configuration-instance]]| interface [ Interface-type [Interface-number]] [feature feature-name [Filter filter-expression] | filter filter-expression] or disp Lay Current-configuration [All | inactive] command to view all configuration information that is currently in effect, which can be used to view configuration information for a specified configuration type, configuration instance, interface, or feature, or by filter conditions, Or, the configuration information to be displayed is filtered by a regular expression. The sections are separated by a "#" line.

--Configuration-type: Select an optional parameter that displays the configuration of the specified configuration type (which depends on the current configuration of the system), such as the AAA configuration, System configuration, user interface configuration, and so on.

--configuration-instance: Optional parameter that displays the configuration in the specified VPN configuration instance.

--Interface-type[interface-number]: Select an optional parameter to display the configuration of the specified interface.

--Feature-name: Select an optional parameter to display the configuration of the specified attribute.

--filter-expression: Optional parameter that specifies the filter expression used to filter the configuration information.

Display Current-configuration

Display Current-configuration configuration AAA display current-configuration Configuration user-interface

Display Current-configration interface ETH 0/0/1 display Current-configration interface valnif 1

Display Current-configuration | Include VLAN

2) View the configuration information that is running under the current view

Display this

2, control command line display mode

The return mode of the command line (that is, the display mode on the screen) is divided into character mode and line mode, which is set by the terminal Echo-mode {character | lines} command, which defaults to character mode. When the character mode enters the command line, the user enters a character system to display a character, and if set to line mode, after the user enters the character, only after press ENTER, or the <Tab> key or? Key, the system only echoes the input characters.

You can set the number of temporary display lines for the current terminal screen through the screen-length screen-length temporary command. (ENSP test, only vty terminal can be set)

3, filter the command line display information

There are two ways to use the filter command line display information:

1) Specify the filtering method in the command: Filter the display by entering the begin, exclude, or include keyword home Plus in the command. The BEGIN keyword is the display of all rows for a particular row and later, and the Exclude keyword is used to display all rows that do not contain the specified regular expression; the Include keyword is used to specify that only all rows that contain the specified regular expression are displayed.

2) Specify the filtering mode when the split screen display: When the split screen display, using the "/", "-", or "+" symbol home plus expression, you can filter the information not yet displayed, "/" equal to begin, "-" equivalent to exclude, "+" equals include.

3) pipe symbol "|" Filter: | Begin Regular-expression, |excluderegular-expression , | Include regular-expression

VRP File System Management

VRP File System Overview: All files on the Huawei router switch (such as configuration files, system software, etc.) are managed effectively in the VRP file system. The VRP file system implements two types of functions: Managing Storage (including Flash: and Cfcard: Memory) and managing files stored in memory.

VRP System File name format: The VRP System file names are string form, length 1~160, case-insensitive, file name has two methods: first, the file name, path + file name, that is, the relative path, the current working path of the file. The second is the drive+path+filename format, the absolute path, drive is the memory in the switch router, named Flash: or Cfcard:. (note there is a colon), in the case of a switch and stacking, drive is named as follows:

-Flash: The primary switch flash memory root directory in the stack system.

-Slot number #flash: The flash memory root directory of a slot number in the stack system. such as Slot2#flash:

Directory Management: Creating directories--mkdir directory, deleting directories--rmdir directory (directory must be empty), displaying current path--pwd, entering the directory--CD directory, displaying directory or file information--dir [/all][ filename | Flash:]. Files with [] are files in the Recycle Bin and can be restored.

File Management: Display text file contents--more filename, more filename [offset] [all]; Copy file--copy source-filename destination-filename [All] (All copy files to all stack member switches); move files--move source-filename destination-filename (source and destination files must be under the same memory); Rename directories or Files--rename Old-name new-name; compress file--zip source-filename destination-filename; unzip file--unzip source-filename Destination-filename Delete file--delete [/unreserved] filename [all] or delete [/unreserved][/quiet]{filename | devicename}; recover files in Recycle Bin--undelete FileName or undelete {filename | devicename}; Delete the files in the Recycle Bin--reset recycle-bin [filename]; Execute the specified batch file--excute Batch-filename; When a user frequently executes a series of commands, they can be written to a batch file, save the file in the switch, and execute the command in batches. Must be executed under System view, batch file is a text file, suffix. bat. Configuration file system hint--fileprompt {Alert|quiet}.

Memory management: The storage on the switch router is usually flash: flash, and some advanced devices also have CF card memory.

Formatted Memory: Format devicename

Repair file system: Fixdisk devicename

The components of the VRP system

The VRP system needs to load both "system software" and "Configuration Files" at startup, and if you specify a patch file for the next boot, you will need to load the patch file.

VRP system software: includes "Bootrom software" and "System Software", respectively, similar to the BIOS and operating system on the PC. After the switch router is powered up, it first runs the Bootrom software, initializes the hardware and displays the hardware parameters, and then runs the system software, which provides the hardware driver and adaptation function on the one hand, and realizes the business function characteristics on the other.

The switch router includes upgrading the Bootrom software and upgrading the system software during the upgrade, the current system software already contains the Bootrom software, so the VRP system software now represents the whole VRP software system.

The VRP system software version is divided into "core version" (or "kernel version") and release version of two. The core version is represented by a decimal, the number before the decimal point represents the major version number, the 1th digit after the decimal point represents the minor version number, and the second and last digit number is the revision number. such as the major version number 5 in VRP5.120, the minor version number 1,20 is the revision number.

The distribution of the VRP system is marked with V, R, c three letters, the basic format is vxxxrxxxcxx, where x is a number of specific numbers, V, R parts must be part, C according to the nature of the version of the difference and can appear or not appear.

-V version refers to the software or hardware platform version on which the product is based. Vxxx's XXX starts with 100 and increments the number by 100.

-The R version is a common set of features for customer release and is a concrete embodiment of the product at a specific time. XXX in rxxx starts with 001 and increments numbering by 1.

V Version number r version number independent, non-impact, there is no dependency.

-Version C is a customized version developed based on the R version to quickly meet the needs of different types of customers. In Cxx, XX increments the number by 1, starting with 00.

The version number can be viewed through the display version command:

VRP System software Name: The VRP system software file extension is ". CC ".

VRP System Configuration file : is a collection of the VRP command line, and the configuration file is a text file with the following rules:

-Save in command format

-Save only non-default parameters in order to save space

-Command view as the basic frame, commands of the same command view are organized together to form a section, between sections and sections usually separated by blank lines or comment lines (starting with "#" as comment lines)

-The sequence of sections in a file is typically global configuration, interface configuration, various protocol configurations, and user interface configuration.

-The configuration file must be a ". Cfg" or ". zip" extension and must be stored in the root directory of the storage.

During the operation of the device, there are configuration files and current configuration, the difference is as follows:

VRP System patch files: Windows-like patches, a patch file may contain one or more patches, different patches have different functions. When a patch file is loaded into the memory patch by the user from memory, the patch in the patch file is assigned a unique unit ordinal in this memory patch area, which is used to flag, manage, and manipulate various patches.

Patch files are divided into product patches (for a specific VRC version of the VRP system) and public patches (using all of the same VR version of the VRP system), there is a corresponding patch number:

Product Patch Number: Add spcxxx after VRC version, public patch number: Add sphxxx after VR version.

Hot Patch hp and cold patch CP (cool patch);

Incremental patches and non-incremental patches;

Patch Status:

Start Bootrom Software

Bootrom software is also divided into basic bootrom software and extended bootload software. After power on the switch, first run the basic Bootrom software, and is responsible for the boot run bootload software, Bootload software is responsible for booting the operating system software.

Basic Bootrom software Start-up process:

At L2cache Test Start? Click T for level Two cache detection at start Memory test? Press T for memory detection. When the press CTRL + A to enter Bootrom Menu appears. When pressing the <ctrl + a> key, enter the basic bootrom menu, otherwise continue the Bootload software startup process behind.

Bootload software Start-up process:

If the user presses the <Ctrl+B> key combination within 3S to enter the password for the Extended bootrom menu (the default password is [email protected]), this password can be reset to the default password via the reset boot password in System view. Bootload Menu:

Through the Bootload menu, the user specifies the system software that is loaded when the switch starts, modifies the password to enter the basic bootrom menu, clears the console user password, and so on. The most important thing here is to clear the console user password, and also to the basic bootrom menu and password.

VRP System-1