Login
- Table of Contents
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 01-Overview Command | 43 KB |
Table of Contents
Chapter 1 SecBlade Configuration Commands
1.1 SecBlade Configuration Commands
1.1.4 secblade aggregation slot
Chapter 1 SecBlade Configuration Commands
1.1 SecBlade Configuration Commands
1.1.1 default-login-user
Syntax
default-login-user
undo default-login-user
View
SecBlade system view
Parameter
None
Description
Use the default-login-user command to enable default login user function.
Use the undo default-login-user command to disable the function.
For login convenience, a user whose name and password are both SecBlade is created in the SecBlade card.
By default, the default login user function is enabled. You are allowed to use the internally created user to log in to the SecBlade card.
& Note:
This command is configured on the SecBlade card.
Example
# Disable the default login user function.
[SecBlade_FW] undo default-login-user
1.1.2 display secblade module
Syntax
display secblade module [sec-mod-name ]
View
Any view of the switch
Parameter
sec-mod-name: Name of the SecBlade module.
Description
Use the display secblade module command to display information about the specified SecBlade module.
Example
# Display information about the SecBlade module named newsec.
[H3C]display secblade module newsec
module newsec:
security-vlan: 10,20,30
secblade-interface: Vlan-interface192
vlan passing: 10,20,30,192
map to slot: 5
1.1.3 map to slot
Syntax
map to slot slot-number
undo map to slot slot-number
View
SecBlade module view of the switch
Parameter
slot-number: Number of the slot where the SecBlade card is located.
Description
Use the map to slot command to map the current module to the SecBlade card corresponding to the slot number.
Use the undo map to slot command to cancel the mapping relationship.
By default, no module is mapped to any card.
Example
# Map the current module to the SecBlade card in slot 2.
[H3C-secblade-newsec] map to slot 2
1.1.4 secblade aggregation slot
Syntax
secblade aggregation slot slot-number
undo secblade aggregation slot slot-number
View
System view of the switch
Parameter
slot-number: Number of the slot where the SecBlade card is located.
Description
Use the secblade aggregation slot command to configure interface aggregation for the specified SecBlade card.
Use the undo secblade aggregation slot command to remove the configuration.
Two internal GE interfaces are used to connect the SecBlade card to the switch. You can aggregate these two interfaces into a logical interface for higher bandwidth.
By default, no interface aggregation is configured and only one GE interface is available.
& Note:
When you use the secblade aggregation slot command to configure interface aggregation for the SecBlade card, the SecBlade card will occupy the resources used by other aggregation groups if its resources for interface aggregation are not enough.
Example
# Set interface aggregation for the SecBlade card in slot 2.
[H3C] secblade aggregation slot 2
1.1.5 secblade module
Syntax
secblade module sec-mod-name
undo secblade module sec-mod-name
View
System view of the switch
Parameter
sec-mod-name: SecBlade module name, which must start with letters or numbers.
Description
Use the secblade module command to create a SecBlade module and enter SecBlade module view to configure attributes.
Use the undo secblade module command to remove the SecBlade module. You cannot remove the module if it has been mapped to a SecBlade card.
Example
# Enter SecBlade module view.
[H3C] secblade module newsec
[H3C-secblade-newsec]
1.1.6 secblade slot
Syntax
secblade slot slot-number
View
User view of the switch
Parameter
slot-number: Number of the slot where the SecBlade card is located.
Description
Use the secblade slot command to log in to the specified SecBlade card.
Example
# Log in to the SecBlade card in slot 2.
<H3C> secblade slot 2
1.1.7 secblade-interface
Syntax
secblade-interface vlan-interface interface-number
undo secblade-interface vlan-interface interface-number
View
SecBlade module view of the switch
Parameter
interface-number: Number of the specified interface.
Description
Use the secblade-interface command to set an interface as a Layer 3 interface connecting the switch to the SecBlade card.
Use the undo secblade-interface command to remove the configuration.
By default, the Layer 3 interface connecting the switch to the SecBlade card is not configured.
The VLAN corresponding to the specified VLAN interface should not be in the range of security vlan.
Example
# Set VLAN interface 40 of the switch as the Layer 3 interface connecting the switch to the SecBlade card.
[H3C-secblade-newsec] secblade-interface vlan-interface 40
1.1.8 security-vlan
Syntax
security-vlan vlan-range
undo security-vlan vlan-range
View
SecBlade module view of the switch
Parameter
vlan-range: VLAN range.
Description
Use the security-vlan command to configure all VLANs in the VLAN range to be protected by the SecBlade card.
Use the undo security-vlan command to remove the configuration.
By default, no VLAN is protected.
Example
# Set 10, 20 and 30 VLANs to be protected by the SecBlade card.
[H3C-secblade-newsec] security-vlan 10 20 30
