Enter System view
System-view
Configure Device Name
sysname RouterA
View content in the Flash directory
Dir
Specify the next boot configuration file
Startup Saved-configuration Main.cfg
Save Configuration
Save
Restart
Reboot
#置CONSOLE用户登陆的口令认证
System-view
[H3c]user-interface aux 0
[H3c-ui-aux0]authentication-mode Password
[H3c-ui-aux0]set authenticaton Password Simple 123456
[H3c-ui-aux0]user Privilege Level 3
User's command control level setting
[H3c-ui-aux0]user Privilege Level 0
[H3c]super Password Level 1 simple 123456
[H3c]super Password Level 2 simple 123456
[H3c]super Password Level 3 simple 123456
# Set Super (Clear text) password to use when low privilege switches to high privilege!
[Routera]super Password Simple Quidway
# Set Super (ciphertext) password
[Routera]super Password cipher quidway
# Enable the Telnet management feature
[Routera]user-interface vty 0 4
[Routera-ui-vty0-4]authentication-mode Password
[Routera-ui-vty0-4]set Authentication Password Simple Quidway
[Routera-ui-vty0-4]user Privilege Level 3
[Routera-ui-vty0-4]quit
[Routera]telnet Server Enable
# Configure Port IP Address
[Routera]int e 0
[Routera-ethernet0]ip Add 192.168.1.1 24
# Boot Port
[Routera-ethernet0]undo shutdown
[Routera-ethernet0]quit
# Save, in any view
Save
# View current device configuration information
[Routera]display current-configuration
# View configuration in Flash (equivalent to Cisco Start-config)
[Routera]display saved-configuration
# Remove configuration information from Flash (reset device configuration)
[Routera]reset saved-configuration
# Reboot Device
Reboot
# Display System software version
[Routera]display version
# access to the TFTP server
TFTP server IP {put|get} source file name destination file name
TFTP 192.168.1.2 put startup.cfg startup.cfg//upload
TFTP 192.168.1.2 get test.txt test.txt//download
# switch IP Address
[H3c]int VLAN 1
[H3c-vlan-interface1]ip Add 192.168.1.1 24
[H3c-vlan-interface1]undo IP Add 192.168.1.1 24
# Create VLANs
[H3c]vlan 10
[H3c]undo VLAN 10
# Add one or more ports to the VLAN
[H3c-vlan10]port e 1/0/1
[H3c-vlan10]port e 1/0/5 to E 1/0/7
[H3c-vlan10]port e 1/0/8 to e 1/0/9 e 1/0/11 to E 1/0/12
# Show VLAN Information
[H3c]dis VLAN
# set the link type of the Ethernet port to trunk
[H3c-ethernet1/0/1]port Link-type Trunk
[H3c-ethernet1/0/1]port trunk Permit VLAN All
[H3c-ethernet1/0/1]port trunk pvid VLAN 1
# set the link type of the Ethernet port to access
[H3c-ethernet1/0/1]port link-type Access
[H3c-ethernet1/0/1]port Access VLAN 10
[H3c-ethernet1/0/1]undo Port Access VLAN
# Configure Loopback Loopback interface
[H3c]int Loopback 0
[H3c-lookback0]ip Add 10.1.1.1 24
# Static Routing
[H3c]ip Route 192.168.3.0 255.255.255.0 s 1/0
[H3c]undo IP route 192.168.3.0 255.255.255.0 s 1/0
# default route
[H3c]ip Route 0.0.0.0
Show Current configuration
Dis cu
Set of DIS commands (Chinese)
ACL ACL status and configuration information
ARP Display ARP information
ASPF ASPF Status and configuration information
ATM ATM Status and configuration information
BGP BGP protocol Information
Boot-loader Show startup files
BOOTP Bootstrap protocol
Information on bridge bridges
Brief interface status and configuration brief information
Channel information channels status and configuration information
Clipboard status and configuration information for the Clipboard
Clock State and configuration information
Configure-user Users with configuration permissions
Connection Display connection Information
Connection-limit Status and configuration information for the connection statistics module
Controller Specifies controller interface
Cpu-usage CPU Usage Statistics
Current-configuration System Current Configuration
Dar Dar Status and configuration information
Debugging display of current debug switch settings
Device Display Information
DHCP DHCP command
Diagnostic-information Display System Diagnostic information
Dialer DCC Status and configuration information
DNS DNS status and configuration information
Domain Display domains configuration scheme
DOT1X 802.1X configuration information
DSL DSL Status and configuration information
Environment displaying environmental information
Fan Display fans status
Fe1 interface FE1 Status and configuration information
FIB fib Status and configuration information
Firewall configuration information for firewalls
Firewall-statistics Status and configuration information for firewalls
Fr Frame Relay status and configuration information
Ft1 interface FT1 Status and configuration information
FTP FTP client status and configuration information
Ftp-server FTP Server Status and configuration information
Ftp-user FTP user status and configuration information
History-command History Command configuration information
Hotkey Status and configuration information for shortcut keys
Hwtacacs information about the HWTACACS server
ICMP ICMP information
IGMP Status and configuration information
Info-center Display Information Center configuration and content
Interface interface status and configuration information
IP IP Protocol
IPv6 IPv6 Status and configuration information
ISDN ISDN Status and configuration information
L2TP L2TP status and configuration information
Local-proxy-arp displaying local ARP proxy information
Local-server Local Server information
Local-user displaying local user information
Logbuffer Log buffer status and configuration information
LogFile displaying log file information
Loopback-detection detect if the port has a self-loop
Mac-address MAC address Information
Memory Display RAM Information
MFR Displays MFR status and configuration information
Mirroring-group setting up a mirror Group
MLD MLD Status and configuration information
MSDP MSDP Status and configuration information
Multicast multicast configuration
NAT address Translation status and configuration information
NQA Display NQA Information
Ntp-service NTP Network Time service
OAP operation of Open application platform
OSPF OSPF routing protocol
Pim PIM status and configuration information
PKI PKI Information
Policy-based-route Status and configuration information for Policy Routing
Port Display Ports Information
Port-isolate Isolation Group Information
Portal Portal Protocol
Power Display Status
PPP PPP status and configuration information
Pppoe-client PPPoE Client Status and configuration information
Pppoe-server PPPoE server-side status and configuration information
Proxy-arp displaying ARP proxy information
QoS Service Quality status and configuration information
RADIUS Display RADIUS configuration information
Reboot-type Display Startup type
RIP RIP state and configuration information
Rmon Rmon Information
Route-policy Show Routing policy configuration
Router Configuring router information
Routing Displaying routing information
RPS Displays redundant power state
RSA displays status and configuration information for RSA modules
Saved-configuration display of saved system configuration information
Schedule Setting System Tasks
SFTP Display source for settings
Snmp-agent displaying SNMP status and configuration information
SSH SSH status and configuration information
Standby backup interface Status and configuration information
Startup Display System Boot configuration
Stop-accounting-buffer query Backup on-premises non-responsive stop billing message
STP Spanning Tree Protocol
TCP TCP Status and configuration information
Telnet telnet status and configuration information
TFTP TFTP client status and configuration information
This is the run configuration of the current view
Time-range time period status and configuration information
Traffic status and configuration information for a data stream
Transceiver
Trapbuffer Alarm buffer Status and configuration information
UDP UDP Status and configuration information
Udp-helper UDP Helper Module
User-interface Status and configuration information for the user interface
Userlog User log Features
Users user interface status and configuration information
Hardware and software version information for the version system
Virtual-access virtual-access Interface Status and configuration information
VLAN VLAN configuration information
Voice Voice VLAN
==========================================================================================
Reset save; Clear All configurations
[Quidway]super password; modify privileged user passwords
[quidway]sysname; switch naming
[Quidway]interface Ethernet 0/1; Enter interface view
[Quidway]interface VLAN x; Enter interface view
[Quidway-vlan-interfacex]ip address 10.65.1.1 255.255.0.0; Configure the IP address of the Vlan
[Quidway]ip route-static 0.0.0.0 0.0.0.0 10.65.1.2; static route = Gateway
[Quidway]user-interface vty 0 4; Enter virtual terminal
[s3026-ui-vty0-4]authentication-mode password; Set password mode
[S3026-ui-vty0-4]set authentication password simple 222; Set password
[S3026-ui-vty0-4]user privilege level 3;
[Quidway-ethernet0/1]duplex {half|full|auto}; configuring port operating status
[Quidway-ethernet0/1]speed {10|100|auto}; configuring port operating rate
[Quidway-ethernet0/1]flow-control; Configuring Port Flow Control
[Quidway-ethernet0/1]mdi {across|auto|normal}; Configuring the port for flat-connection twist
[Quidway-ethernet0/1]port link-type {Trunk|access|hybrid}; Set port operating mode
[Quidway-ethernet0/1]undo shutdown; activating port
[Quidway-ethernet0/2]quit; Exit system View
[Quidway]vlan 3; creating VLANs
[Quidway-vlan3]port Ethernet 0/1 to Ethernet 0/4; adding ports in VLANs
[Quidway-ethernet0/2]port access VLAN 3; When the front port joins the VLAN
[Quidway-ethernet0/2]port trunk Permit VLAN {id| all}; trunking allowed VLAN
[Quidway-ethernet0/2]port trunk Pvid VLAN 3; set trunk port Pvid
[Quidway]monitor-port; Specify the Mirror Port
[Quidway]port mirror; Specify the mirrored port
[Quidway]port Mirror int_list observing-port int_type int_num; specifying mirroring and being mirrored
[quidway]description string; specify VLAN descriptor characters
[Quidway]description; remove VLAN descriptor characters
[Quidway]display VLAN [vlan_id]; View VLAN settings
[QUIDWAY]STP {enable|disable}; set spanning tree, default off
[QUIDWAY]STP priority 4096; set priorities for switches
[QUIDWAY]STP root {primary|secondary}; Set as root or root backup
[QUIDWAY-ETHERNET0/1]STP cost 200; Set the switch port costs
[Switcha-vlanx]isolate-user-vlan enable; set the primary VLAN
[SwitchA] Isolate-user-vlan Secondary; Set the sub-VLAN included in the primary VLAN
[Quidway-ethernet0/2]port hybrid Pvid VLAN; set VLAN Pvid
[Quidway-ethernet0/2]port hybrid pvid; Delete VLAN Pvid
[Quidway-ethernet0/2]port hybrid VLAN vlan_id_list untagged; set the VLAN without identity
If the VLAN ID of the package is consistent with Pvid, the VLAN information is removed. Default pvid=1.
So set Pvid to the owning VLAN ID, set the VLAN to be interoperable untagged.
----------------------------------------
Router commands
[Quidway]display version; Show release information
[Quidway]display current-configuration; show current configuration
[Quidway]display interfaces; Display interface information
[Quidway]display IP route; Show routing information
[Quidway]sysname aabbcc; Change host name
[Quidway]super passwrod 123456; Set password
[Quidway]interface serial0; Enter the interface
[QUIDWAY-SERIAL0]IP address; configuring Port IP addresses
[Quidway-serial0]undo shutdown; activating port
[Quidway]link-protocol HDLC; binding HDLC Protocol
[Quidway]user-interface vty 0 4
[Quidway-ui-vty0-4]authentication-mode Password
[Quidway-ui-vty0-4]set authentication-mode Password Simple 222
[Quidway-ui-vty0-4]user Privilege Level 3
[Quidway-ui-vty0-4]quit
[Quidway]debugging HDLC all serial0; show All information
[Quidway]debugging HDLC event serial0; Debug event Information
[quidway]debugging HDLC packet serial0; show package information
Static routes:
[Quidway]ip route-static {interface Number|nexthop}[value][reject|blackhole]
For example:
[Quidway]ip route-static 129.1.0.0 16 10.0.0.2
[Quidway]ip route-static 129.1.0.0 255.255.0.0 10.0.0.2
[Quidway]ip route-static 129.1.0.0 Serial 2
[Quidway]ip route-static 0.0.0.0 0.0.0.0 10.0.0.2
Dynamic routing:
[Quidway]rip; set up dynamic routing
[Quidway]rip work; set job permit
[Quidway]rip input; set ingress allow
[Quidway]rip output; set export allow
[Quidway-rip]network 1.0.0.0; setting up a Switched routing network
[quidway-rip]network all; set up with all network switching
[Quidway-rip]peer ip-address;
[Quidway-rip]summary; Route aggregation
[Quidway]rip version 1; setup works in version 1
[Quidway]rip version 2 multicast; setup works in version 2, multicast mode
[Quidway-ethernet0]rip Split-horizon; horizontal separation
[quidway]router ID a.b.c.d; Configure the router's ID
[QUIDWAY]OSPF enable; start OSPF protocol
[Quidway-ospf]import-route Direct; introducing a direct route
[QUIDWAY-SERIAL0]OSPF enable area; configure OSPF zone
The standard access List command format is as follows:
ACL [Match-order Config|auto]; The default is the order of the former.
Rule [Normal|special]{permit|deny} [Source Source-addr Source-wildcard|any]
Cases:
[Quidway]acl 10
[Quidway-acl-10]rule Normal permit source 10.0.0.0 0.0.0.255
[Quidway-acl-10]rule normal deny source any
Extended access Control List configuration commands
To configure an extended access list for the TCP/UDP protocol:
Rule {normal|special}{permit|deny}{tcp|udp}source {|any}destination |any}
[Operate]
To configure an extended access list for the ICMP protocol:
Rule {normal|special}{permit|deny}icmp Source {|any]destination {|any]
[Icmp-code] [Logging]
Meaning of Extended access control list operators
equal portnumber; equal to
Greater-than PortNumber; greater than
Less-than PortNumber; less than
Not-equal portnumber; unequal.
Range Portnumber1 Portnumber2; interval
Examples of extended access control lists
[Quidway]acl 101
[Quidway-acl-101]rule deny souce any destination any
[Quidway-acl-101]rule permit ICMP source any destination any icmp-type echo
[Quidway-acl-101]rule permit ICMP source any destination any icmp-type echo-reply
[Quidway]acl 102
[Quidway-acl-102]rule Permit IP source 10.0.0.1 0.0.0.0 destination 202.0.0.1 0.0.0.0
[Quidway-acl-102]rule deny IP source any destination any
[Quidway]acl 103
[Quidway-acl-103]rule permit TCP source any destination 10.0.0.1 0.0.0.0 destination-port equal FTP
[Quidway-acl-103]rule permit TCP source any destination 10.0.0.2 0.0.0.0 destination-port equal www
[Quidway]firewall Enable
[Quidway]firewall Default Permit|deny
[Quidway]int E0
[Quidway-ethernet0]firewall Packet-filter 101 Inbound|outbound
Address Translation Configuration Example
[Quidway]firewall Enable
[Quidway]firewall Default Permit
[Quidway]acl 101
[Quidway-acl-101]rule deny IP source any destination any
[Quidway-acl-101]rule permit IP source 129.38.1.4 0 Destination any
[Quidway-acl-101]rule permit IP source 129.38.1.1 0 Destination any
[Quidway-acl-101]rule permit IP source 129.38.1.2 0 Destination any
[Quidway-acl-101]rule permit IP source 129.38.1.3 0 Destination any
[Quidway]acl 102
[Quidway-acl-102]rule permit TCP source 202.39.2.3 0 destination 202.38.160.1 0
[Quidway-acl-102]rule permit TCP source any destination 202.38.160.1 0 destination-port Great-than
1024
[Quidway-ethernet0]firewall Packet-filter 101 Inbound
[Quidway-serial0]firewall packet-filter 102 Inbound
[Quidway]nat address-group 202.38.160.101 202.38.160.103 pool1
[Quidway]acl 1
[Quidway-acl-1]rule Permit Source 10.110.10.0 0.0.0.255
[Quidway-acl-1]rule deny source any
[Quidway-acl-1]int Serial 0
[Quidway-serial0]nat Outbound 1 Address-group pool1
[Quidway-serial0]nat server global 202.38.160.101 inside 10.110.10.1 FTP TCP
[Quidway-serial0]nat server global 202.38.160.102 inside 10.110.10.2 www tcp
[Quidway-serial0]nat server global 202.38.160.102 8080 inside 10.110.10.3 www tcp
[Quidway-serial0]nat server global 202.38.160.103 inside 10.110.10.4 SMTP UDP
PPP Authentication:
Main recipe: Pap|chap
[quidway]local-user u2 password {simple|cipher} AAA
[Quidway]interface Serial 0
[Quidway-serial0]ppp authentication-mode {Pap|chap}
[QUIDWAY-SERIAL0]PPP chap user U1//PAP, do not use this sentence
PAP is a recipe for:
[Quidway]interface Serial 0
[quidway-serial0]ppp pap local-user u2 password {simple|cipher} AAA
CHAP is a recipe for:
[Quidway]interface Serial 0
[QUIDWAY-SERIAL0]PPP chap user U1
[quidway-serial0]local-user u2 password {simple|cipher} AAA
This article is from the "Like" blog, please be sure to keep this source http://sbujjiqpl.blog.51cto.com/1980709/1728400
H3C Command Daquan
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
