To use WAAS, you must purchase and install the required license. When the license expires or is uninstalled, all WAAS policies are unavailable. For more information about licensing, see license management in Fundamentals Configuration Guide.

This feature is supported only when the device is installed with an RPE-X5 or RPE-X5E MPU and any of the following service modules:

· FIP-260.

· FIP-380.

· FIP-660.

· FIP-680.

· SAP-XP4GE32.

class

Use class to specify a Wide Area Application Services (WAAS) class for a WAAS policy and enter WAAS policy class view.

Use undo class to remove a WAAS class from a WAAS policy.

Syntax

class class-name [ insert-before existing-class ]

undo class class-name

Default

No WAAS class exists in a WAAS policy.

Views

WAAS policy view

Predefined user roles

network-admin

mdc-admin

Parameters

class-name: Specifies a WAAS class by its name, a case-insensitive string of 1 to 63 characters. The specified class must already exist.

insert-before existing-class: Inserts the new class before an existing class in the WAAS policy. If you do not specify this option, the new class is placed at the end of the WAAS policy.

Usage guidelines

A WAAS policy can use system-defined WAAS classes (see Table 12).

As a best practice, configure a WAAS class by modifying a system-defined WAAS class.

You can also use this command to arrange existing WAAS classes in a WAAS policy.

A packet is checked against WAAS classes in the specified order. When a packet matches a class, the action for the class is performed on the packet, and the match process ends.

If you do not configure an action for a WAAS class, the device ignores the WAAS class.

Examples

# Specify the system-defined WAAS class AFS for the WAAS policy waas_global, and enter the view of the WAAS class AFS.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS]

# Specify the system-defined WAAS class AOL for the WAAS policy waas_global, insert it before AFS, and enter the view of the WAAS class AOL.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AOL insert-before AFS

[Sysname-waaspolicy-waas_global-AOL]

# Change the position of the WAAS class AOL in the WAAS policy waas_global by inserting it before AFS, and enter the view of the WAAS class AOL.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AOL insert-before AFS

[Sysname-waaspolicy-waas_global-AOL]

Related commands

display waas policy

waas class

waas policy

display waas class

Use display waas class to display WAAS classes.

Syntax

display waas class [ class-name ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

class-name: Specifies a WAAS class by its name, a case-insensitive string of 1 to 63 characters. If you do not specify a WAAS class, this command displays all WAAS classes.

Examples

# Display the WAAS class class1.

<Sysname> display waas class class1

WAAS class: class1

match 1 tcp source ip-address 1.1.1.0 24 port 50000 60000

match 6 tcp destination ip-address 2.2.2.2 port 1 1024

match 11 tcp source ipv6-address 1001:: 96 port 50000 60000

match 16 tcp destination ipv6-address 2002::2222 port 1 1024

Table 1 Command output

Field	Description
match	Match criterion of the WAAS class.

Related commands

match tcp

waas class

display waas fec peer-info

Use display waas fec peer-info to display the FEC information of peers.

Syntax

display waas fec peer-info { ipv4 | ipv6 } [ vpn-instance vpn-instance-name ] [ source-ip source-ip | source-port source-port | destination-ip destination-ip | destination-port destination-port ] *

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

ipv4: Displays IPv4 FEC information.

ipv6: Displays IPv6 FEC information.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a VPN instance, this command displays FEC information for the public network.

source-ip source-ip: Specifies a source IP address. If you do not specify a source IP address, this command displays the peer FEC information for all source IP addresses.

source-port source-port: Specifies a source port number in the range of 1 to 65535. If you do not specify a source port number, this command displays the peer FEC information for all source port numbers.

destination-ip destination-ip: Specifies a destination IP address. If you do not specify a destination IP address, this command displays the peer FEC information for all destination IP addresses.

destination-port destination-port: Specifies a destination port number in the range of 1 to 65535. If you do not specify a destination port number, this command displays the peer FEC information for all destination port numbers.

Examples

# Display the FEC information of all peers.

<Sysname> system-view

[Sysname] display waas fec peer-info ipv4

Slot 0:

Slot 2:

Source IP/Port: 192.168.56.1/3230, Destination IP/Port: 192.168.157.100/3230

Type: A-FEC

A-FEC info:

Version: 1

Interface : GE2/0/1

[1]Loss ratio (time) : 5% (2020/10/29 17:20:04.409)

[2]Loss ratio (time) : 5% (2020/10/29 17:20:04.419)

[3]Loss ratio (time) : 5% (2020/10/29 17:20:04.429)

Sampling interval(ms) : 10

Average loss ratio : 5%

Receiving count : 10

Last receiving time(ms): 10

Source IP/Port: 192.168.57.1/3230, Destination IP/Port: 192.168.158.100/3230

Type: D-FEC

Source IP/Port: 192.168.58.1/3230, Destination IP/Port: 192.168.159.100/3230

Type: Unknown

Table 2 Command output

Field	Description
Interface	Interface that sends probe packets to the peer.
Receiving count	Number of received sampled packets.
Last receiving time(ms)	Number of milliseconds that elapsed since the last receiving time.

‌

display waas policy

Use display waas policy to display WAAS policies.

Syntax

display waas policy [ policy-name ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

policy-name: Specifies a WAAS policy by its name, a case-insensitive string of 1 to 63 characters. If you do not specify a WAAS policy, this command displays all WAAS policies.

Examples

# Display the WAAS policy po1.

<Sysname> display waas policy po1

WAAS policy: po1

class cl1

optimize TFO DRE LZ

class cl2

optimize TFO DRE

class cl3

passthrough

class cl4

optimize TFO LZ

class cl5

Table 3 Command output

Field	Description
class	WAAS class in the WAAS policy.
optimize	Optimization actions: · TFO (works with only TCP). · DRE. · LZ compression.
passthrough	Action that does not perform any optimization.

Related commands

class

optimize

passthrough

waas policy

display waas rtp-class

Use display waas rtp-class to display RTP WAAS classes.

Syntax

display waas rtp-class [ class-name ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

class-name: Specifies a RTP WAAS class by its name, a case-insensitive string of 1 to 63 characters. If you do not specify a WAAS class, this command displays all RTP WAAS classes.

Examples

# Display the RTP WAAS class class1.

<Sysname> display waas rtp-class class1

WAAS RTP class: class1

match 2 udp source 5.5.5.0 24

match 3 udp destination 6.6.6.6

Table 4 Command output

Field	Description
match	Match criterion of the RTP WAAS class.

Related commands

match udp

waas rtp-class

display waas session

Use display waas session to display WAAS session information.

Syntax

In standalone mode:

display waas session { ipv4 | ipv6 } [ client-ip client-ip ] [ client-port client-port ] [ server-ip server-ip ] [ server-port server-port ] [ peer-id peer-id ] [ verbose ] [ slot slot-number ]

In IRF mode:

display waas session { ipv4 | ipv6 } [ client-ip client-ip ] [ client-port client-port ] [ server-ip server-ip ] [ server-port server-port ] [ peer-id peer-id ] [ verbose ] [ chassis chassis-number slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

ipv4: Specifies IPv4 sessions.

ipv6: Specifies IPv6 sessions.

client-ip client-ip: Displays the WAAS session information for the client specified by its IP address.

client-port client-port: Displays the WAAS session information for the clients specified by port number in the range of 1 to 65535.

server-ip server-ip: Displays the WAAS session information for the server specified by its IP address.

server-port server-port: Displays the WAAS session information for the servers specified by port number in the range of 1 to 65535.

peer-id peer-id: Displays the WAAS session information for the peer specified by its bridge MAC address in the format of H-H-H.

verbose: Displays detailed information about WAAS sessions. If you do not specify this keyword, the command displays brief information about WAAS sessions.

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays WAAS session information for all cards. (In standalone mode.)

chassis chassis-number slot slot-number: Specifies a card on an IRF member device. The chassis-number argument represents the member ID of the IRF member device. The slot-number argument represents the slot number of the card. If you do not specify a card, this command displays WAAS session information for all cards. (In IRF mode.)

Usage guidelines

If you specify only the ipv4 or ipv6 keyword, this command displays information about all IPv4 or IPv6 WAAS sessions.

Examples

# Display brief information about all IPv4 WAAS sessions.

<Sysname> display waas session ipv4

Peer ID: 0021-90ad-0012

Start Time: Fri Mar 21 10:43:05 2014

Source IP/Port: 1.1.1.1/34572

Destination IP/Port: 2.2.2.2/80

Peer ID: 0011-10ad-0012

Start Time: Fri Mar 21 10:45:05 2014

Source IP/Port: 2.2.1.1/34572

Destination IP/Port: 3.2.2.3/80

Total 2 sessions found.

# Display detailed information about all IPv4 WAAS sessions.

<Sysname> display waas session ipv4 verbose

Peer ID: 0021-90ad0-01221

Start Time: Fri Mar 21 11:43:05 2014

Source IP/Port: 1.1.1.1/34572

Destination IP/Port: 2.2.2.2/80

LAN interface: GigabitEthernet2/0/1

WAN interface: GigabitEthernet2/0/2

Configured Policy: TFO DRE LZ

Negotiated Policy: TFO DRE LZ

LAN->WAN bytes: Original 104884 Optimized 88594

WAN->LAN bytes: Original 744588 Optimized 3355445

LZ section:

Encode status:

Bytes in: 0

Bytes out: 0

Bypass bytes: 400

Space saved: 0%

Average Latency: 0 usec

Decode status:

Bytes in: 329

Bytes out: 393

Bypass bytes: 63

Space saved: 16%

Average Latency: 2 usec

DRE section:

Encode status:

Bytes in: 0

Bytes out: 0

Bypass bytes: 314

Space saved: 0%

Average latency: 0 usec

Decode status:

Bytes in: 399

Bytes out: 332

Bypass bytes: 0

Space saved: 0%

Chunk miss: 0

Collision: 0

Average latency: 23 usec

Peer ID: 0011-10ad-0012

Start Time: Fri Mar 21 11:43:05 2014

Source IP/Port: 2.2.1.1/34572

Destination IP/Port: 3.2.2.3/80

LAN interface: GigabitEthernet2/0/1

WAN interface: GigabitEthernet2/0/2

Configured Policy: TFO DRE LZ

Negotiated Policy: TFO DRE LZ

LAN->WAN bytes: Original 104884 Optimized 88594

WAN->LAN bytes: Original 744588 Optimized 3355445

LZ section:

Encode status:

Bytes in: 0

Bytes out: 0

Bypass bytes: 400

Space saved: 0%

Average Latency: 0 usec

Decode status:

Bytes in: 329

Bytes out: 393

Bypass bytes: 63

Space saved: 16%

Average Latency: 2 usec

DRE section:

Encode status:

Bytes in: 0

Bytes out: 0

Bypass bytes: 314

Space saved: 0%

Average latency: 0 usec

Decode status:

Bytes in: 399

Bytes out: 332

Bypass bytes: 0

Space saved: 0%

Chunk miss: 0

Collision: 0

Average latency 23 usec

Total 2 sessions found.

Table 5 Command output

Field	Description
Peer ID	Bridge MAC address of the peer device. A bridge MAC address uniquely identifies a peer device.
Start time	Time when the WAAS session was established.
Source IP/Port	IP address and port number of the client.
Destination IP/Port	IP address and port number of the server.
Configured Policy	Optimization actions configured on the local device, which can be one or any combination of the following actions: · TFO (works with only TCP). · DRE. · LZ compression.
Negotiated Policy	Optimization actions negotiated with the peer device, which can be one or any combination of the following actions: · TFO (works with only TCP). · DRE. · LZ compression. The negotiated optimization actions are the union of the optimization actions configured on the local device and those configured on the peer device.
LAN->WAN bytes	Statistics for LAN-to-WAN data: · Original—Number of bytes before optimization. · Optimized—Number of bytes after optimization.
WAN->LAN bytes	Statistics for WAN-to-LAN data: · Original—Number of bytes before optimization. · Optimized—Number of bytes after optimization.
LZ section	LZ compression statistics.
DRE section	DRE statistics.
Encode status	Compression statistics.
Decode status	Decompression statistics.
Bytes in	Number of input bytes.
Bytes out	Number of output bytes.
Bypass bytes	Number of bytes that bypass DRE.
Space saved	· Compression ratio: (1–Bytes out/Bytes in) x 100. · Decompression ratio: (1–Bytes in/Bytes out) x 100.
Average Latency	Average latency in milliseconds for the most recent compression or decompression. When multiple CPUs are available on a card, the average latency is the latency time divided by the number of CPUs.
Chunk miss	Cumulative number of times that DRE failed to find a dictionary entry according to a dictionary index.
Collision	Cumulative number of times that data checks failed.

display waas statistics dre

Use display waas statistics dre to display DRE statistics.

Syntax

In standalone mode:

display waas statistics dre [ peer peer-id ] [ slot slot-number ]

In IRF mode:

display waas statistics dre [ peer peer-id ] [ chassis chassis-number slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

peer-id peer-id: Specifies a peer device by its bridge MAC address in the format of H-H-H. If you do not specify a peer device, the command displays DRE statistics for all peer devices.

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays DRE statistics for all cards. (In standalone mode.)

Examples

# Display DRE statistics for all peer devices.

<Sysname> display waas statistics dre

Peer-ID: 0016-9d38-ca1d

Peer version: 1.0

Cache in storage: 19426304 bytes

Index number: 75884

Age: 00 weeks, 00 days, 00 hours, 00 minutes, 33 seconds

Total connections: 1

Active connections: 0

Encode Statistics

Dre msgs: 2

Bytes in: 392 bytes

Bytes out: 424 bytes

Bypass bytes: 0 bytes

Bytes Matched: 0 bytes

Space saved: -8%

Average latency: 0 usec

Decode Statistics

Dre msgs: 196407

Bytes in: 29132703 bytes

Bytes out: 42413368 bytes

Bypass bytes: 0 bytes

Space saved: 31%

Average latency: 0 usec

Peer-ID: 0d38-9d38-ca1d

Peer version: 1.0

Cache in storage: 33554944 bytes

Index number: 131074

Age: 00 weeks, 00 days, 00 hours, 21 minutes, 31 seconds

Total connections: 2

Active connections: 0

Encode Statistics

Dre msgs: 514872

Bytes in: 111390296 bytes

Bytes out: 60085884 bytes

Bypass bytes: 0 bytes

Bytes Matched: 56336640 bytes

Space saved: 46%

Average latency: 0 usec

Decode Statistics

Dre msgs: 4

Bytes in: 849 bytes

Bytes out: 785 bytes

Bypass bytes: 0 bytes

Space saved: -8%

Average latency: 0 usec

# Display DRE statistics for a specific peer device.

<Sysname> display waas statistics dre peer 0016-9d38-ca1d

Peer-ID: 0016-9d38-ca1d

Peer version: 1.0

Cache in storage: 33554944 bytes

Index number: 131074

Age: 00 weeks, 00 days, 00 hours, 21 minutes, 31 seconds

Total connections: 2

Active connections: 0

Encode Statistics

Dre msgs: 514872

Bytes in: 111390296 bytes

Bytes out: 60085884 bytes

Bypass bytes: 0 bytes

Bytes Matched: 56336640 bytes

Space saved: 46%

Average latency: 0 usec

Decode Statistics

Dre msgs: 4

Bytes in: 849 bytes

Bytes out: 785 bytes

Bypass bytes: 0 bytes

Space saved: -8%

Average latency: 0 usec

Table 6 Command output

Field	Description
Peer ID	Bridge MAC address of the peer device. A bridge MAC address uniquely identifies a peer device.
Peer version	WAAS version of the peer device.
Cache in storage	Disk space used by metadata. Metadata are original data that have indexes in the dictionary.
Index number	Number of dictionary indexes.
Age	Amount of time that has elapsed since the local device initially established an optimized TCP connection with the peer.
Total connections	Total number of DRE connections.
Active connections	Number of active DRE connections.
Encode Statistics	Compression statistics.
Decode Statistics	Decompression statistics.
Dre msgs	Number of data blocks.
Bytes in	Number of input bytes.
Bytes out	Number of output bytes.
Bypass bytes	Number of bytes that bypass DRE.
Bytes Matched	Number of bytes matched by DRE.
Space saved	· Compression ratio: (1–Bytes out/Bytes in) x 100. · Decompression ratio: (1–Bytes in/Bytes out) x 100.
Average Latency	Average latency in milliseconds for the most recent compression or decompression. When multiple CPUs are available on a card, the average latency is the latency time divided by the number of CPUs.

Related commands

reset waas statistics dre

display waas statistics fec

Use display waas statistics fec to display FEC statistics.

Syntax

display waas statistics fec

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Examples

# Display FEC packet statistics.

<Sysname> display waas statistics fec

Encoder:

Received:

Total packets : 661

Sent:

Original packets : 661

Redundant packets : 375

In-order original packets after timeout : 141

Out-of-order original packets after timeout : 0

Decoder:

Received:

Original packets : 0

Redundant packets : 0

Original packets in different group : 0

Redundant packets in different group from cached redundant packets: 0

Redundant packets in different group from cached original packets : 0

Redundant packets with sequence number less than cached ones : 0

Sent:

Original packets : 0

Recovered packets : 0

In-order original packets after timeout : 0

Related commands

reset waas statistics fec

display waas statistics load-balance

Use display waas statistics load-balance to display load sharing packet statistics information.

Syntax

display waas statistics load-balance { ipv4 | ipv6 }

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

ipv4: Displays IPv4 packet statistics.

ipv6: Displays IPv6 packet statistics.

Usage guidelines

This command is supported only for packets load shared in per-packet mode.

Examples

# Display IPv4 load sharing packet statistics.

<Sysname> display waas statistics load-balance ipv4

Packet Order Preservation:

In-order packets sent :200

Out-of-order packets sent :19

Out-of-order packets cached :40

Cached packets sent in order :40

Cache failed packets sent :0

Cached packets sent on timeout :0

Out-of-order fragmented packets sent :1

Out-of-order fragmented packets cached :3

Cached fragmented packets sent in order :3

Cached fragmented packets sent on timeout :3

Table 7 Command output

Field	Description
Packet Order Preservation	Packet statistics for packet order preservation on the receiver.
In-order packets sent	Number of in-order packets sent.
Out-of-order packets sent	Number of out-of-order packets sent.
Out-of-order packets cached	Number of out-of-order packets cached.
Cached packets sent in order	Number of cached packets sent in order.
Cache failed packets sent	Number of packets sent after failed to be cached.
Cached packets sent on timeout	Number of cached packets sent out of order after timeout.
Out-of-order fragmented packets sent	Number of out-of-order fragmented packets sent.
Out-of-order fragmented packets cached	Number of out-of-order fragmented packets cached.
Cached fragmented packets sent in order	Number of cached fragmented packets sent in order.
Cached fragmented packets sent on timeout	Number of cached fragmented packets sent out of order after timeout.

‌

display waas statistics packet-dup

Use display waas statistics packet-dup to display packet statistics of packet duplication.

Syntax

display waas statistics packet-dup { ipv4 | ipv6 }

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

ipv4: Specifies IPv4 packets.

ipv6: Specifies IPv6 packets.

Examples

# Display packet statistics of IPv4 packet duplication.

<Sysname> display waas statistics packet-dup ipv4

Packet Duplication:

Original packets : 522

Duplicated packets : 522

Non-duplicated packets due to fragmentation :0

Packets exceeding MTU : 0

Packet Redundancy:

Passed packets :200

Discarded packets :199

Packet Order Preservation:

In-order packets sent :200

Out-of-order packets sent :19

Out-of-order packets cached :40

Cached packets sent in order :40

Cache failed packets sent :0

Cached packets sent on timeout :0

Out-of-order fragmented packets sent :10

Out-of-order fragmented packets cached :0

Cached fragmented packets sent in order :0

Cached fragmented packets sent on timeout :0

Table 8 Command output

Field	Description
Packet Duplication	Packet statistics for packet duplication on the sender.
Original packets	Number of original packets.
Duplicated packets	Number of duplicated packets.
Non-duplicated packets due to fragmentation	Number of non-duplicated packets due to fragmentation.
Packets exceeding MTU	Number of packets with the length exceeding the MTU.
Packet Redundancy	Packet statistics for packet redundancy on the receiver.
Passed packets	Number of passed packets.
Discarded packets	Number of duplicated packets dropped.
Packet Order Preservation	Packet statistics for packet order preservation on the receiver.
In-order packets sent	Number of in-order packets sent.
Out-of-order packets sent	Number of out-of-order packets sent.
Out-of-order packets cached	Number of out-of-order packets cached.
Cached packets sent in order	Number of cached packets sent in order.
Cache failed packets sent	Number of packets sent after failed to be cached.
Cached packets sent on timeout	Number of cached packets sent out of order after timeout.
Out-of-order fragmented packets sent	Number of out-of-order fragmented packets sent.
Out-of-order fragmented packets cached	Number of out-of-order fragmented packets cached.
Cached fragmented packets sent in order	Number of cached fragmented packets sent in order.

Related commands

reset waas statistics packet-dup

display waas statistics tcp compress

Use display waas statistics tcp compress to display TCP packet compression statistics.

Syntax

display waas statistics tcp compress

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Examples

# Display TCP packet compression statistics.

<Sysname> display waas statistics tcp compress

Bytes in : 42413368 bytes

Bytes out : 29132703 bytes

Saved bandwidth ratio : 31%

Compressed packet ratio: 100%

Table 9 Command output

Field	Description
Saved bandwidth ratio	(Number of input bytes–number of output bytes)/Number of input bytes.
Compressed packet ratio	Number of compressed packets/Total number of packets.

Related commands

reset waas statistics tcp compress

display waas statistics udp compress

Use display waas statistics udp compress to display UDP message compression statistics.

Syntax

display waas statistics udp compress

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Examples

# Display UDP message compression statistics.

<Sysname> display waas statistics udp compress

Bytes in : 42413368 bytes

Bytes out : 29132703 bytes

Saved bandwidth ratio : 31%

Compressed packet ratio : 100%

Related commands

reset waas statistics udp compress

display waas status

Use display waas status to display the global WAAS status.

Syntax

display waas status

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Examples

# Display the global WAAS status.

<Sysname> display waas status

WAAS version: 1.0

Local ID: 02e0-011a-0000

DRE status: Disabled

LZ status: Disabled

BlackList status: Disabled

Total active connections: 7889

Total data storage size: 1468006400 bytes

Total index number: 11513600

Blacklist hold-time:5 minutes

Max TFO connections: 10000

Offset step: Normal

Aging time: 0 minutes

Symmetrical Mode : Yes

Interfaces Applied policy

GE2/0/1 waas_global

GE2/0/2 waas_default

GE2/0/3 waas_global

Total policy interfaces: 3

Table 10 Command output

Field	Description
Local ID	Bridge MAC address of the local device. A bridge MAC address uniquely identifies a local device.
Total active connections	Total number of active WAAS connections.
Total data storage size	Disk space used by all metadata. Metadata are original data that have indexes in the dictionary.
Total index number	Total number of dictionary indexes.
Max TFO connections	Maximum number of concurrent connections allowed.
Offset step	DRE match offset step: · Fastest. · Faster. · Fast. · Normal.
Aging time	Aging time for entries in the data dictionary, in minutes.
Blacklist hold-time	Aging time for blacklist entries.
Interfaces	List of interfaces with WAAS policies applied.
Total policy interfaces	Number of interfaces with WAAS policies applied.

display waas tfo auto-discovery blacklist

Use display waas tfo auto-discovery blacklist to display autodiscovered blacklist information.

Syntax

In standalone mode:

display waas tfo auto-discovery blacklist { ipv4 | ipv6 } [ slot slot-number ]

In IRF mode:

display waas tfo auto-discovery blacklist { ipv4 | ipv6 } [ chassis chassis-number slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

ipv4: Specifies IPv4 blacklist information.

ipv6: Specifies IPv6 blacklist information.

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays autodiscovered blacklist information for all cards. (In standalone mode.)

chassis chassis-number slot slot-number: Specifies a card on an IRF member device. The chassis-number argument represents the member ID of the IRF member device. The slot-number argument represents the slot number of the card. If you do not specify a card, this command displays autodiscovered blacklist information for all cards. (In IRF mode.)

Examples

# Display all IPv4 blacklist information.

<Sysname> display waas tfo auto-discovery blacklist ipv4

Server IP address/Port Insert Time

1.1.1.1/8080 Fri Mar 21 10:43:05 2014

1.1.1.2/8080 Fri Mar 21 10:43:06 2014

2.2.2.2/443 Fri Mar 21 10:20:37 2014

Total 3 entries found.

Table 11 Command output

Field	Description
Insert Time	Time when a blacklist entry was generated.

Related commands

reset waas tfo auto-discovery blacklist

waas tfo auto-discovery blacklist enable

waas tfo auto-discovery blacklist hold-time

fec average-ratio

Use fec average-ratio to set the FEC average ratio.

Use undo fec average-ratio to restore the default.

Syntax

fec average-ratio ratio

undo fec average-ratio

Default

The FEC average ratio is 35%.

Views

WAAS class view

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

ratio: Specifies the FEC average ratio in the range of 1 to 50, in percentage.

Usage guidelines

The FEC average ratio determines the number of redundant packets generated for a group of original packets. The greater the FEC average ratio, the more the redundant packets generated. FEC average ratio must be greater than the actual packet loss ratio.

Number of redundant packets = Round up (number of original packets x (FEC average ratio/(1–FEC average ratio))

Examples

# In WAAS class AFS, set the FEC average ratio to 30%.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] fec average-ratio 30

# In RTP WAAS class rtpclass1, set the FEC average ratio to 30%.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] fec average-ratio 30

Related commands

fec block-size

Use fec block-size to set the maximum number of original packets that can be encoded at a time.

Use undo fec block-size to restore the default.

Syntax

fec block-size block-size

undo fec block-size

Default

A maximum of 20 original packets can be encoded at a time.

Views

WAAS class view

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

block-size: Specifies the maximum number of original packets that can be encoded at a time, in the range of 1 to 150

Usage guidelines

In addition to the block size, the encoding timeout time affects the number of original packets that can be encoded at a time. If the maximum number of encoded packets is reached before the encoding timeout time expires, that number applies. If the encoding timeout time expires before the maximum number is reached, the number of actually encoded packets applies. If the block size is too small, the number of generated redundant packets is small. If the block size is too large, the decoder side will take a long time to recover lost packets. You can set an appropriate block size according to your network bandwidth.

Examples

# In WAAS class AFS, set the maximum number of original packets that can be encoded at a time to 20.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] fec block-size 20

# In RTP WAAS class rtpclass1, set the maximum number of original packets that can be encoded at a time to 20.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] fec block-size 20

Related commands

fec average-ratio

fec decode-timeout

Use fec decode-timeout to set the decoding timeout time.

Use undo fec decode-timeout to restore the default.

Syntax

fec decode-timeout milliseconds

undo fec decode-timeout

Default

The decoding timeout time is 800 milliseconds.

Views

WAAS class view

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

milliseconds: Specifies the decoding timeout time in the range of 30 to 1000 milliseconds.

Usage guidelines

When the total number of cached original packets and redundant packets reaches or exceeds the set number of original packets before the decoding timeout time expires, the decoder performs the following operations:

1. Decodes the cached packets.

2. Recovers lost packets.

3. Sends original packets and recovered packets, and drops redundant packets.

Otherwise, the decoder sends cached original packets and drops cached redundant packets without decoding any packets.

Examples

# In WAAS class AFS, set the decoding timeout time to 500 milliseconds.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] fec decode-timeout 500

# In RTP WAAS class rtpclass1, set the decoding timeout time to 500 milliseconds.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] fec decode-timeout 500

Related commands

fec block-size

fec encode-timeout

Use fec encode-timeout to set the encoding timeout time.

Use undo fec encode-timeout to restore the default.

Syntax

fec encode-timeout milliseconds

undo fec encode-timeout

Default

The encoding timeout time is 500 milliseconds.

Views

WAAS class view

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

milliseconds: Specifies the encoding timeout time in the range of 30 to 1000 milliseconds.

Usage guidelines

In addition to the encoding timeout time, the block size affects the number of original packets that can be encoded at a time. If the maximum number of encoded packets is reached before the encoding timeout time expires, that number applies. If the encoding timeout time expires before the maximum number is reached, the number of actually encoded packets applies.

Examples

# In WAAS class AFS, set the encoding timeout time to 60 milliseconds.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] fec encode-timeout 60

# In RTP WAAS class rtpclass1, set the encoding timeout time to 60 milliseconds.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] fec encode-timeout 60

Related commands

fec block-size

fec loss-recovery-type

Use fec loss-recovery-type to specify the FEC type.

Use undo fec loss-recovery-type to restore the default.

Syntax

fec loss-recovery-type { adaptive-fec | determined-fec }

undo fec loss-recovery-type

Default

The FEC type is D-FEC.

Views

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

adaptive-fec: Specifies adaptive FEC (A-FEC).

determined-fec: Specifies determined FEC (D-FEC).

Usage guidelines

If the FEC average ratio is set to a greater value, more bandwidth will be consumed. If the FEC average ratio is set to a small value, lost packets cannot be recovered. A-FEC adjusts the FEC average ratio based on the calculated real-time packet loss ratio. The adjusted FEC average ratio will not be greater than the set FEC average ratio. D-FEC always uses the set FEC average ratio.

Examples

# Set the FEC type to A-FEC.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] fec loss-recovery-type adaptive-fec

fec probe aging-time

Use fec probe aging-time to set the aging time for A-FEC decoder information.

Use undo fec probe aging-time to restore the default.

Syntax

fec probe aging-time seconds

undo fec probe aging-time

Default

The aging time for A-FEC decoder information is 1 second.

Views

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

seconds: Specifies the aging time in the range of 0 to 60 seconds.

Usage guidelines

If the encoder receives sampled packets within the aging time, it adjusts the FEC average ratio based on the real-time packet loss ratio. If the encoder does not receive sampled packets within the aging time, it deletes the local decoder information and uses the set FEC average ratio.

Examples

# Set the aging time for A-FEC decoder information to 5 seconds.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] fec probe aging-time 5

fec sample-interval

Use fec sample-interval to set the A-FEC sampling interval.

Use undo fec sample-interval to restore the default.

Syntax

fec sample-interval interval

undo fec sample-interval

Default

The A-FEC sampling interval is 100 milliseconds.

Views

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

interval: Specifies the A-FEC sampling interval in the range of 1 to 1000 milliseconds.

Usage guidelines

The decoder regularly sends sampled packets to notify the encoder of the real-time packet loss ratio. The encoder adjusts the FEC average ratio based on the real-time packet loss ratio.

Examples

# Set the aging time for A-FEC decoder information to 50 milliseconds.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] fec sample-interval 50

match tcp

Use match tcp to configure a match criterion.

Use undo match tcp to delete a match criterion.

Syntax

match [ match-id ] tcp any [ ip-address { ip-address [ mask-length | mask ] | object-group ip-object-group-name } | ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name } ] [ port { port-list | object-group port-object-group-name } ]

match [ match-id ] tcp { destination ip-address { ip-address [ mask-length | mask ] | object-group ip-object-group-name } [ port { port-list | object-group port-object-group-name } ] | source ip-address { ip-address [ mask-length | mask ] | object-group ip-object-group-name } [ port { port-list | object-group port-object-group-name } ] } *

match [ match-id ] tcp { destination ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name } [ port { port-list | object-group port-object-group-name } ] | source ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name } [ port { port-list | object-group port-object-group-name } ] } *

match [ match-id ] tcp { destination | source } port { object-group port-object-group-name | port-list }

undo match match-id

Default

No match criterion exists.

Views

WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

match-id: Specifies the ID of the match criterion, in the range of 1 to 65535. If you specify an unused ID, you can create a new match criterion. If you specify a used ID, you can modify the existing match criterion. If you do not specify an ID, the system automatically assigns the lowest available ID.

tcp: Matches TCP packets.

any: Matches any TCP packets.

destination: Specifies destination elements for matching TCP packets.

source: Specifies source elements for matching TCP packets.

ip-address { ip-address [ mask-length | mask ] | object-group ip-object-group-name }: Specifies IPv4 addresses for matching TCP packets.

· ip-address: Specifies an IPv4 address in dotted decimal notation.

· mask-length: Specifies the mask length for the IPv4 address, in the range of 0 to 32. The default is 32.

· mask: Specifies the mask for the IPv4 address. The default is 255.255.255.255.

· object-group ip-object-group-name: Specifies an IPv4 address object group by its name, a case-insensitive string of 1 to 63 characters.

ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name }: Specifies IPv6 addresses for matching TCP packets.

· ipv6-address: Specifies an IPv6 address.

· prefix-length: Specifies the prefix length for the IPv6 address, in the range of 0 to 128. The default is 128.

· object-group ipv6-object-group-name: Specifies an IPv6 address object group by its name, a case-insensitive string of 1 to 63 characters.

port { port-list | object-group port-object-group-name }: Specifies port numbers for matching TCP packets.

· port port-list: Specifies a space-separated list of up to 10 port items. Each item specifies a port number or a range of port numbers in the form of port-number1 to port-number2. The value for port-number2 must be greater than or equal to the value for port-number1. The value range for the port-number argument is 1 to 65535. If you do not specify a port list, all port numbers are matched.

· object-group port-object-group-name: Specifies a port object group by its name, a case-insensitive string of 1 to 63 characters.

Usage guidelines

If you specify the destination or source keyword, you must specify the ip-address (or ipv6-address) option, the port option, or both.

If you specify the any keyword, the ip-address (or ipv6-address) option, and the port option, the ip-address (or ipv6-address) and port options match either source or destination fields of packets.

You cannot configure the same match criteria with different match IDs.

A WAAS class can have a maximum of 256 match criteria. A packet is checked against match criteria in their order of appearance. The packet belongs to the WAAS class if it matches any one of the match criteria.

A WAAS class without any match criteria is not used to match packets.

Examples

# Create a WAAS class named http_class, and configure the class to match packets with source IP address 192.168.0.1/16 and port number 80 or port number in the range of 8000 to 8080.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasclass-http_class] match tcp source ip-address 192.168.0.1 16 port 80 8000 to 8080

# Create a WAAS class named http_class, and configure the class to match any TCP packets.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasclass-http_class] match tcp any

# Create a WAAS class named http_class, and configure the class to match TCP packets with source IP address 10.0.3.1/24 and destination IP address 11.0.3.1/24.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasrtpclass-http_class] match tcp source ip-address 10.0.0.1 24 destination ip-address 11.0.3.1 24

# Create a WAAS class named http_class, and configure the class to match TCP packets with the source IP address in the address object group group1 and the destination IP address in the address object group group2.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasrtpclass-http_class] match tcp source ip-address object-group group1 destination ip-address object-group group2

Related commands

display waas policy

waas class

match udp

Use match udp to configure a UDP match criterion.

Use undo match udp to delete a UDP match criterion.

Syntax

match [ match-id ] udp any [ ip-address { ip-address [ mask-length | mask ] | object-group ip-object-group-name } ] | ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name } [ port { port-list | object-group port-object-group-name } ]

match [ match-id ] udp { destination ip-address { ip-address [ mask-legnth | mask ] | object-group ip-object-group-name } [ port { port-list | object-group port-object-group-name } ] | source ip-address { ip-address [ mask-legnth | mask ] | object-group ip-object-group-name } [ port { port-list | object-group port-object-group-name } ] } *

match [ match-id ] udp { destination ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name } [ port { port-list | object-group port-object-group-name } ] | source ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name } [ port { port-list | object-group port-object-group-name } ] } *

match [ match-id ] udp { destination | source } port { port-list | object-group port-object-group-name }

undo match match-id

Default

No UDP match criterion exists.

Views

WAAS class view

RTP WAAS class view

Predefined user roles

network-admin

mdc-admin

Parameters

udp: Matches UDP messages.

any: Matches any UDP messages.

destination: Specifies destination elements for matching UDP messages.

source: Specifies source elements for matching UDP messages.

ip-address { ip-address [ mask-length | mask ] | object-group ip-object-group-name }: Specifies IPv4 addresses for matching UDP messages.

· ipv4-address: Specifies an IPv4 address in dotted decimal notation.

· mask-length: Specifies the mask length for the IPv4 address, in the range of 0 to 32. The default is 32.

· mask: Specifies the mask for the IPv4 address. The default is 255.255.255.255.

· object-group ip-object-group-name: Specifies an IPv4 address object group by its name, a case-insensitive string of 1 to 63 characters.

ipv6-address { ipv6-address [ prefix-length ] | object-group ipv6-object-group-name }: Specifies IPv6 addresses for matching TCP packets. This parameter is supported only by a WAAS class.

· ipv6-address: Specifies an IPv6 address.

· prefix-length: Specifies the prefix length for the IPv6 address, in the range of 0 to 128. The default is 128.

· object-group ipv6-object-group-name: Specifies an IPv6 address object group by its name, a case-insensitive string of 1 to 63 characters.

port { port-list | object-group port-object-group-name }: Specifies port numbers for matching UDP messages.

· object-group port-object-group-name: Specifies a port object group by its name, a case-insensitive string of 1 to 63 characters.

Usage guidelines

If you specify the destination or source keyword, you must specify the ip-address or port-related option.

If you specify the any keyword, the ip-address option matches either source or destination IP address of packets.

You cannot configure the same match criteria with different match IDs.

An RTP WAAS class can have a maximum of 256 match criteria. A packet is checked against match criteria in their order of appearance. The packet belongs to the WAAS class if it matches any one of the match criteria.

Examples

# Create a WAAS class named http_class, and configure the class to match UDP messages with source IP address 192.168.0.1/16 and port number 80 or port number in the range of 8000 to 8080.

<Sysname> system-view

[Sysname-waasclass-http_class] match udp source ip-address 192.168.0.1 16 port 80 8000 to 8080

# Create a WAAS class named udp_class, and configure the class to match any UDP messages.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasclass-http_class] match udp any

# Create a WAAS class named http_class, and configure the class to match UDP messages with source IP address 10.0.3.1/24 and destination IP address 11.0.3.1/24.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasrtpclass-http_class] match udp source ip-address 10.0.0.1 24 destination ip-address 11.0.3.1 24

# Create a WAAS class named http_class, and configure the class to match UDP messages with the source IP address in the address object group group1 and the destination IP address in the address object group group2.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasrtpclass-http_class] match udp source ip-address object-group group1 destination ip-address object-group group2

# Create an RTP WAAS class named http_class, and configure the class to match UDP messages with source IP address 192.168.0.1/16.

<Sysname> system-view

[Sysname] waas class http_class

[Sysname-waasrtpclass-http_class] match udp source ip-address 192.168.0.1 16

# Create an RTP WAAS class named udp_class, and configure the class to match any UDP messages.

<Sysname> system-view

[Sysname] waas rtp-class udp_class

[Sysname-waasrtpclass-udp_class] match udp any

# Create an RTP WAAS class named http_class, and configure the class to match UDP messages with source IP address 10.0.0.1/24 and port number 80 or port number in the range of 12377 to 12380.

<Sysname> system-view

[Sysname] waas rtp-class http_class

[Sysname-waasrtpclass-http_class] match udp source ip-address 10.0.0.1 24 port 12345 12377 to 12380

# Create an RTP WAAS class named http_class, and configure the class to match UDP messages with source IP address 10.0.3.1/24 and destination IP address 11.0.3.1/24.

<Sysname> system-view

[Sysname] waas rtp-class http_class

[Sysname-waasrtpclass-http_class] match udp source ip-address 10.0.0.1 24 destination ip-address 11.0.3.1 24

# Create an RTP WAAS class named http_class, and configure the class to match UDP messages with the source IP address in the address object group group1 and the destination IP address in the address object group group2.

<Sysname> system-view

[Sysname] waas rtp-class http_class

[Sysname-waasrtpclass-http_class] match udp source ip-address object-group group1 destination ip-address object-group group2

Related commands

display waas rtp-class

waas class

waas rtp-class

optimize

Use optimize to configure optimization actions for a WAAS class or RTP WAAS class.

Use undo optimize to restore the default.

Syntax

WAAS class view:

optimize { fec | packet-dup | tfo [ dre | lz ] * }

undo optimize

RTP WAAS class view:

optimize fec

undo optimize

Default

No optimization actions are configured.

Views

WAAS policy class view

WAAS policy RTP class view

Predefined user roles

network-admin

mdc-admin

Parameters

packet-dup: Specifies the packet duplication optimization action.

tfo: Specifies TFO.

dre: Specifies DRE.

lz: Specifies LZ compression.

fec: Specifies FEC.

Usage guidelines

An optimization action takes effect only when the corresponding feature is enabled.

An optimization action does not optimize the traffic that matches a blacklist entry.

If you configure both this command and the passthrough command, the most recent configuration takes effect.

The undo optimize command delete the optimization actions configured in both WAAS policy class view and WAAS policy RTP class view.

Examples

# Configure optimization actions TFO, DRE, and LZ for the WAAS class AFS.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] optimize tfo dre lz

# Configure optimization action FEC for the RTP WAAS class rtpclass1.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1] optimize fec

# Configure the packet duplication optimization action for WAAS class PKT.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class PKT

[Sysname-waaspolicy-waas_global-PKT] optimize packet-dup

Related commands

class

display waas policy

passthrough

rtp-class

waas policy

waas tfo optimize dre

waas tfo optimize lz

packet-dup reorder timeout

Use packet-dup reorder timeout to set the packet duplication reorder timeout timer.

Use undo packet-dup reorder timeout to restore the default.

Syntax

packet-dup reorder timeout timeout

undo packet-dup reorder timeout

Default

The packet duplication reorder timeout timer is 100 ms.

Views

WAAS policy class view

Predefined user roles

network-admin

mdc-admin

Parameters

timeout: Specifies the packet duplication reorder timeout timer, in the range of 1 to 65535 milliseconds.

Usage guidelines

With the packet reorder feature, the sender numbers the packets to be sent based on the order in which the packets will be sent, for example, 1, 2... n, and then replicates and forwards the packets. The receiver discards the packets with the same sequence number and reorders them before forwarding them. If no packet with a smaller sequence number is received, the receiver will cache the received packets and send the packets in sequence after a packet with a smaller sequence number arrives. If the receiver does not receive a packet with a smaller sequence number before the reorder timeout timer expires, the receiver will directly send the cached packets.

Examples

# Set the packet duplication reorder timeout timer to 100 milliseconds for WAAS class AFS.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] packet-dup reorder timeout 100

packet-dup rir enable

Use packet-dup rir enable to enable packet duplication RIR.

Use undo packet-dup rir enable to disable packet duplication RIR.

Syntax

packet-dup rir enable

undo packet-dup rir enable

Default

Packet duplication RIR is disabled.

Views

WAAS policy class view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

With packet duplication RIR enabled, the device selects a path based on the link priority, link quality, and link bandwidth.

Packet duplication RIR takes effect only if RIR is enabled on the device. For more information about RIR, see RIR configuration in Layer 3—IP Routing Configuration Guide.

The sender can select a path by using the packet duplication RIR feature or by using a static path.

· If a path is manually specified on the device and a path calculated by using the packet duplication RIR algorithm exists, the device uses the path selected by using the packet duplication RIR algorithm.

· If the device detects that neither a path selected by using the packet duplication RIR feature nor a manually specified path exists, it selects the first path in the routing table that has the same cost as the original path by using the packet duplication algorithm.

Examples

# Enable packet duplication RIR for WAAS policy class AFS.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] packet-dup rir enable

Related commands

optimize

rir sdwan (Layer 3—IP Routing Command Reference)

passthrough

Use passthrough to configure the pass-through action for a WAAS class.

Use undo passthrough to restore the default.

Syntax

passthrough

undo passthrough

Default

The pass-through action is not configured.

Views

WAAS policy class view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

The pass-through action allows packets to pass through unoptimized.

If you configure both this command and the optimize command, the most recent configuration takes effect.

Examples

# Configure the pass-through action for the WAAS class AFS.

<Sysname> system-view

[Sysname] waas policy waas_global

[Sysname-waaspolicy-waas_global] class AFS

[Sysname-waaspolicy-waas_global-AFS] optimize tfo dre lz

Related commands

class

display waas policy

optimize

waas policy

reset waas cache dre

Use reset waas cache dre to clear DRE data dictionaries.

Syntax

reset waas cache dre [ peer-id peer-id ]

Views

User view

Predefined user roles

network-admin

mdc-admin

Parameters

peer-id peer-id: Specifies a peer device by its bridge MAC address in the format of H-H-H. If you do not specify a peer device, this command clears DRE data dictionaries for all peer devices.

Examples

# Clear the DRE data dictionary for the peer device with the bridge MAC address 0789-445d-effa.

<Sysname> reset waas cache dre peer 0789-445d-effa

Related commands

display waas statistics dre

reset waas statistics dre

Use reset waas statistics dre to clear DRE statistics.

Syntax

reset waas statistics dre [ peer-id peer-id ]

Views

User view

Predefined user roles

network-admin

mdc-admin

Parameters

peer-id peer-id: Specifies a peer device by its bridge MAC address in the format of H-H-H. If you do not specify a peer device, this command clears DRE statistics for all peer devices.

Examples

# Clear DRE statistics for all peer devices.

<Sysname> reset waas statistics dre

Related commands

display waas statistics dre

reset waas statistics fec

Use reset waas statistics fec to clear FEC packet statistics.

Syntax

reset waas statistics fec

Views

User view

Predefined user roles

network-admin

mdc-admin

Examples

# Clear FEC packet statistics.

<Sysname> reset waas statistics dre

Related commands

display waas statistics fec

reset waas statistics load-balance

Use reset waas statistics load-balance to clear load balancing packet statistics.

Syntax

reset waas statistics load-balance { ipv4 | ipv6 }

Views

User view

Predefined user roles

network-admin

mdc-admin

Parameters

ipv4: Clears IPv4 packet statistics.

ipv6: Clears IPv6 packet statistics.

Usage guidelines

This command is supported only for packets load shared in per-packet mode.

Examples

# Clears IPv4 load sharing packet statistics.

<Sysname> reset waas statistics load-balance ipv4

Related commands

display waas statistics load-balance

reset waas statistics packet-dup

Use reset waas statistics packet-dup to clear packet statistics of packet duplication.

Syntax

reset waas statistics packet-dup { ipv4 | ipv6 }

Views

User view

Predefined user roles

network-admin

mdc-admin

Parameters

ipv4: Specifies IPv4 packets.

ipv6: Specifies IPv6 packets.

Examples

# Clear packet statistics of IPv4 packet duplication.

<Sysname> reset waas statistics packet-dup ipv4

Related commands

display waas statistics packet-dup

reset waas statistics tcp compress

Use reset waas statistics udp compress to clear TCP packet compression statistics.

Syntax

reset waas statistics tcp compress

Views

User view

Predefined user roles

network-admin

mdc-admin

Examples

# Clear TCP packet compression statistics.

<Sysname> reset waas statistics udp compress

Related commands

display waas statistics tcp compress

reset waas statistics udp compress

Use reset waas statistics udp compress to clear UDP message compression statistics.

Syntax

reset waas statistics udp compress

Views

User view

Predefined user roles

network-admin

mdc-admin

Examples

# Clear UDP message compression statistics.

<Sysname> reset waas statistics udp compress

Related commands

display waas statistics udp compress

reset waas tfo auto-discovery blacklist

Use reset waas tfo auto-discovery blacklist to clear all autodiscovered blacklist entries.

Syntax

reset waas tfo auto-discovery blacklist

Views

User view

Predefined user roles

network-admin

mdc-admin

Examples

# Clear all autodiscovered blacklist entries.

<Sysname> reset waas tfo auto-discovery blacklist

Related commands

display waas tfo auto-discovery blacklist

waas tfo auto-discovery blacklist enable

waas tfo auto-discovery blacklist hold-time

rtp-class

Use rtp-class to specify an RTP WAAS class for a WAAS policy and enter WAAS policy RTP class view.

Use undo rtp-class to remove an RTP WAAS class from a WAAS policy.

Syntax

rtp-class class-name [ insert-before existing-class ]

undo rtp-class class-name

Default

No RTP WAAS class exists in a WAAS policy.

Views

WAAS policy view

Predefined user roles

network-admin

mdc-admin

Parameters

class-name: Specifies an RTP WAAS class by its name, a case-insensitive string of 1 to 63 characters. The specified class must already exist.

insert-before existing-class: Inserts the new class before an existing class in the WAAS policy. If you do not specify this option, the new class is placed at the end of the WAAS policy.

Usage guidelines

A packet is checked against RTP WAAS classes in the order they are specified. When a packet matches a class, the action for the class is performed on the packet, and the match process ends.

If you do not configure an action for a RTP WAAS class, the device ignores the WAAS class.

You can also use this command to arrange existing WAAS classes in a WAAS policy.

Examples

# Specify RTP WAAS class rtpclass1 for WAAS policy waas_rtp, and enter the view of the WAAS class.

<Sysname> system-view

[Sysname] waas policy waas_rtp

[Sysname-waaspolicy-waas_rtp] rtp-class rtpclass1

[Sysname-waaspolicy-waas_rtp-rtpclass1]

Related commands

display waas policy

waas rtp-class

waas policy

waas apply policy

Use waas apply policy to apply a WAAS policy to an interface.

Use undo waas apply policy to restore the default.

Syntax

waas apply policy [ policy-name ]

undo waas apply policy

Default

No WAAS policy is applied to an interface.

Views

Interface view

Predefined user roles

network-admin

mdc-admin

Parameters

policy-name: Specifies a WAAS policy by its name, a case-insensitive string of 1 to 63 characters. The specified policy must already exist. If you do not specify a WAAS policy, this command applies the system-defined WAAS policy waas_default.

Usage guidelines

Apply a WAAS policy to an interface that connects to the WAN (not an interface that connects to the LAN). The device optimizes or passes through the traffic entering and leaving the WAN according to the configured policy. If the incoming and outgoing interfaces of the traffic are both connected to the WAN, the traffic is not optimized.

A global logical interface (such as a Layer 3 aggregate interface or VLAN interface) that spans multiple cards or IRF member devices can be used to connect to the WAN. To ensure the traffic optimization effect for such an interface, use the service command to specify one of these cards or IRF member devices to forward traffic for the interface.

Examples

# Apply the WAAS policy global_policy to the interface GigabitEthernet 1/0/1.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] waas apply policy global_policy

Related commands

display waas policy

display waas status

waas policy

waas asymmetric

Use waas asymmetric to configure WAAS to operate in asymmetric mode.

Use undo waas asymmetric to restore the default.

Syntax

waas asymmetric

undo waas asymmetric

Default

WAAS operates in symmetric mode.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

Execute this command if the device sends and receives packets on different interfaces.

If the device sends and receives packets on the same interface, the device should operate in symmetric mode.

If the device uses logical interfaces, such as aggregate interfaces and tunnel interfaces, you must execute this command for WAAS to take effect.

Examples

# Configure WAAS to operate in asymmetric mode.

<Sysname> system-view

[Sysname] waas asymmetric

waas class

Use waas class to create a WAAS class and enter its view, or enter the view of an existing WAAS class.

Use undo waas class to delete a WAAS class.

Syntax

waas class class-name

undo waas class class-name

Default

No WAAS classes exist.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

class-name: Specifies a name for the WAAS class, a case-insensitive string of 1 to 63 characters.

Usage guidelines

As a best practice, configure a WAAS class by modifying a system-defined WAAS class (see Table 12).

Examples

# Create a WAAS class named waas_global and enter WAAS class view.

<Sysname> system-view

[Sysname] waas class waas_global

[Sysname-waasclass-waas_global]

Related commands

class

display waas class

waas config remove-all

Use waas config remove-all to delete all WAAS settings.

Syntax

waas config remove-all

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

This command deletes all configuration data and running data for WAAS and exits the WAAS process.

Examples

# Delete all WAAS settings.

<Sysname> system-view

[Sysname] waas config remove-all

The command will clear all the WAAS configuration. Continue? [Y/N]:y

waas config restore-default

Use waas config restore-default to create the predefined WAAS policy.

Syntax

waas config restore-default

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

Application scenarios

Execute this command to create a predefined WAAS policy named waas_default after the WAAS process starts. The predefined WAAS policy contains predefined WAAS classes(see "Table 12").

You can modify the predefined WAAS policy and predefined WAAS classes.

Restrictions and guidelines

To successfully execute this command, first start the WAAS process by using a WAAS-related command, such as the waas class command.

To successfully execute this command, make sure none of the interfaces has a WAAS policy applied.

Examples

# Restore or create the predefined WAAS policy.

<Sysname> system-view

[Sysname] waas config restore-default

The command will restore or add the predefined WAAS policy. Continue? [Y/N]:y

Related commands

display waas policy

display waas class

waas class

waas dre cache aging

Use waas dre cache aging to set the aging time for entries in the data dictionary.

Use undo waas dre cache aging to restore the default.

Syntax

waas dre cache aging minutes

undo waas dre cache aging

Default

Entries in the data dictionary are not aged out, and the newly created entry overwrites the oldest entry if the number of data dictionary entries reaches the limit.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

minutes: Specifies the aging time for entries in the data dictionary, in the range of 10 to 60 minutes.

Usage guidelines

The device polls all data dictionary entries and deletes the entries that are not hit within the aging time. If the number of data dictionary entries reaches the limit, the device no longer creates new entries.

The amount of time used by the device to poll all data dictionary entries depends on the number of data dictionary entries on the device.

You must set the same aging time on the local and peer devices.

Examples

# Set the aging time to 10 minutes for entries in the data dictionary.

<Sysname> system-view

[Sysname] waas dre cache aging 10

waas dre offset-step

Use waas dre offset-step to set the DRE match offset step.

Use undo waas dre offset-step to restore the default.

Syntax

waas dre offset-step { general | fast | fastest | normal }

undo waas dre offset-step

Default

The DRE match offset step is normal.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

general: Specifies the DRE match offset step as general.

fast: Specifies the DRE match offset step as fast.

fastest: Specifies the DRE match offset step as fastest.

normal: Specifies the DRE match offset step as normal.

Usage guidelines

The following DRE match offset step levels are listed from high to low:

· fastest.

· fast.

· general.

· normal.

The higher the step level, the lower the match precision. As a best practice, use a higher-level offset step on high-speed links to improve match efficiency. Use a lower-level offset step on low-speed links to ensure match precision.

Examples

# Set the DRE match offset step to fast.

<Sysname> system-view

[Sysname] waas dre offset-step fast

waas packet-dup sdwan static-path

Use waas packet-dup sdwan static-path to manually specify a packet duplication path in an SDWAN network.

Use undo waas packet-dup sdwan static-path to remove a packet duplication path in an SDWAN network.

Syntax

waas packet-dup sdwan static-path { destination-ip dest-ipv4-address { dest-mask-length | dest-mask } | destination-ipv6 dest-ipv6-address dest-prefix-length } [ vpn-instance vpn-instance-name ] interface interface-type interface-number peer-site-id peer-site-id peer-device-id peer-device-id peer-interface-id peer-interface-id [ priority priority ]

undo waas packet-dup sdwan static-path [ { destination-ip dest-ipv4-address { dest-mask-length | dest-mask } | destination-ipv6 dest-ipv6-address dest-prefix-length } [ vpn-instance vpn-instance-name ] [ interface interface-type interface-number ] [ peer-site-id peer-site-id peer-device-id peer-device-id peer-interface-id peer-interface-id ] [ priority priority ] ]

Default

No packet duplication path exists in an SDWAN network.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

destination-ip dest-ip-address: Specifies a destination IPv4 address in dotted decimal notation.

dest-mask-length: Specifies a mask length for the destination IPv4 address, in the range of 0 to 32.

dest-mask: Specifies a subnet mask for the destination IPv4 address, in dotted decimal notation.

destination-ipv6 dest-ipv6-address: Specifies a destination IPv6 address.

dest-prefix-length: Specifies a prefix length for the destination IPv6 address, in the range of 1 to 128.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters.

interface interface-type interface-number: Specifies an interface by its type and number. Only tunnel interfaces are supported.

peer-site-id peer-site-id: Specifies a site ID in the range of 1 to 65535.

peer-device-id peer-device-id: Specifies a device ID in the range of 1 to 255.

peer-interface-id peer-interface-id: Specifies an interface ID in the range of 1 to 255.

priority priority: Specifies a priority for the static path, in the range of 1 to 255. The default priority is 60. A larger value indicates a higher priority.

Usage guidelines

Make sure the specified SDWAN tunnel already exists. To view the SDWAN tunnels on the device, execute the display sdwan tte connection command.

If the same SDWAN tunnel is configured as the packet duplication path multiple times, the most recent configuration takes effect. If multiple paths are specified for the same destination, only one path will be selected as the packet duplication path by using a specific algorithm.

The sender can select a path by using the packet duplication RIR feature or by using a static path.

If you do not specify any keywords when executing the undo waas packet-dup sdwan static-path command, the command deletes all manually specified packet duplication paths.

This command is available only in an SDWAN network.

Examples

# Manually specify a packet duplication path in an SDWAN network.

<Sysname> system-view

[Sysname] waas packet-dup sdwan static-path destination-ip 200.1.1.0 24 vpn-instance vpn-1 local tunnel 1 peer-site-id 2 peer-device-id 3 peer-interface-id 5 priority 50

Related commands

display sdwan tte connection (SDWAN Command Reference)

waas policy

Use waas policy to create a WAAS policy and enter its view, or enter the view of an existing WAAS policy.

Use undo waas policy to delete a WAAS policy.

Syntax

waas policy policy-name

undo waas policy policy-name

Default

No WAAS policy exists.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

policy-name: Specifies a name for the WAAS policy, a case-insensitive string of 1 to 63 characters.

Usage guidelines

To delete a WAAS policy applied to an interface, first remove the WAAS policy from the interface.

As a best practice, configure a WAAS policy by entering the system-defined WAAS policy view and modifying the system-defined WAAS policy. The system-defined WAAS policy uses all system-defined WAAS classes. Only system-defined WAAS classes FTP-Data and FTPS-Data use source ports as match options. All other system-defined WAAS classes use destination ports as match options.

Table 12 System-defined WAAS policy

System-defined WAAS class	WAAS actions	Source ports	Destination ports
AFS	LZ+TFO+DRE	N/A	7000–7009
Altiris-CarbonCopy	Passthrough	N/A	1680
Amanda	TFO	N/A	10080
AOL	Passthrough	N/A	5190–5193
Apple-AFP	LZ+TFO+DRE	N/A	548
Apple-iChat	Passthrough	N/A	5297, 5298
Apple-NetAssistant	Passthrough	N/A	3283
AppSocket	LZ+TFO+DRE	N/A	9100
BackupExpress	TFO	N/A	6123
Basic-TCP-services	Passthrough	N/A	1–19
BFTP	LZ+TFO+DRE	N/A	152
BGP	LZ+TFO+DRE	N/A	179
BitTorrent	Passthrough	N/A	6881–6889, 6969
BMC-Patrol	Passthrough	N/A	6161, 6162, 6767, 6768, 8160, 8161, 10128
Borland-Interbase	LZ+TFO+DRE	N/A	3050
CIFS	LZ+TFO+DRE	N/A	139, 445
CIFS-non-wafs	LZ+TFO+DRE	N/A	139, 445
Cisco-CallManager	Passthrough	N/A	2443, 2748
Cisco-NetFlow	Passthrough	N/A	7544, 7545
Citrix-ICA	LZ+TFO+DRE	N/A	1494, 2598
Clearcase	LZ+TFO+DRE	N/A	371
CommVault	TFO	N/A	8400–8403
Connected-DataProtector	TFO	N/A	16384
ControlIT	TFO	N/A	799
CU-SeeMe	Passthrough	N/A	7640, 7642, 7648, 7649
CVS	LZ+TFO+DRE	N/A	2401
Danware-NetOp	TFO	N/A	6502
DNS	Passthrough	N/A	53
Documentum	LZ+TFO+DRE	N/A	1489
Double-Take	LZ+TFO+DRE	N/A	1100, 1105
eDonkey	Passthrough	N/A	4661, 4662
EMC-Celerra-Replicator	LZ+TFO+DRE	N/A	8888
EMC-SRDFA-IP	LZ+TFO+DRE	N/A	1748
ezMeeting	Passthrough	N/A	10101–10103, 26260–26261
FCIP	LZ+TFO+DRE	N/A	3225
Filenet	LZ+TFO+DRE	N/A	32768–32774
FTP	Passthrough	N/A	21
FTP-Data	LZ+TFO+DRE	20	N/A
FTPS	TFO	N/A	990
FTPS-Data	Passthrough	989	N/A
GnomeMeeting	Passthrough	N/A	30000–30010
Gnutella	Passthrough	N/A	6346–6349, 6355, 5634
Grouper	Passthrough	N/A	8038
HotLine	Passthrough	N/A	5500–5503
HP-OpenMail	LZ+TFO+DRE	N/A	5729, 5755, 5757, 5766, 5767, 5768
HP-OpenView	Passthrough	N/A	7426–7431, 7501, 7510
HP-Radia	LZ+TFO+DRE	N/A	3460, 3461, 3464, 3466
HTTP	LZ+TFO+DRE	N/A	80, 3128, 8000, 8001, 8080
HTTPS	TFO	N/A	443
HTTPS	TFO	N/A	443
IBM-DB2	LZ+TFO+DRE	N/A	523
IBM-NetView	Passthrough	N/A	729–731
IBM-Tivoli	LZ+TFO+DRE	N/A	94, 627, 1580, 1581, 1965
IBM-TSM	TFO+LZ+DRE	N/A	1500–1502
iFCP	LZ+TFO+DRE	N/A	3420
Intel-Proshare	Passthrough	N/A	5713–5717
Internet-Mail	LZ+TFO+DRE	N/A	25, 110, 143, 220
Internet-Mail-secure	TFO	N/A	465, 993, 995
InterSystems-Cache	LZ+TFO+DRE	N/A	1972
IPP	LZ+TFO+DRE	N/A	631
IRC	Passthrough	N/A	531, 6660–6669
iSCSI	LZ+TFO+DRE	N/A	3260
iSNS	Passthrough	N/A	3205
Jabber	Passthrough	N/A	5222, 5269
Kazaa	Passthrough	N/A	1214
Kerberos	Passthrough	N/A	88, 464, 543, 544, 749, 754, 888, 2053
L2TP	TFO	N/A	1701
LANDesk	LZ+TFO+DRE	N/A	9535, 9593–9595
Laplink-Host	TFO	N/A	1547
Laplink-PCSync	TFO	N/A	8444
Laplink-PCSync-secure	TFO	N/A	8443
Laplink-ShareDirect	Passthrough	N/A	2705
LDAP	LZ+TFO+DRE	N/A	389, 8404
LDAP-Global-Catalog	LZ+TFO+DRE	N/A	3268
LDAP-Global-Catalog-Secure	Passthrough	N/A	3269
LDAP-secure	Passthrough	N/A	636
Legato-NetWorker	TFO	N/A	7937, 7938, 7939
Legato-RepliStor	TFO	N/A	7144, 7145
Liquid-Audio	LZ+TFO+DRE	N/A	18888
Lotus-Notes	LZ+TFO+DRE	N/A	1352
Lotus-Sametime-Connect	Passthrough	N/A	1533
MDaemon	LZ+TFO+DRE	N/A	3000, 3001
MS-Chat	Passthrough	N/A	6665, 6667
MS-Content-Replication-Service	TFO	N/A	560, 507
MS-Message-Queuing	LZ+TFO+DRE	N/A	1801, 2101, 2103, 2105
MS-NetMeeting	Passthrough	N/A	522, 1503, 1731
MS-NetShow	LZ+TFO+DRE	N/A	1755
MSN-Messenger	Passthrough	N/A	1863, 6891–6900
MS-SQL	LZ+TFO+DRE	N/A	1433
MS-Terminal-Services	TFO	N/A	3389
MySQL	LZ+TFO+DRE	N/A	3306
Napster	Passthrough	N/A	6666, 6677, 6700, 6688, 7777, 8875
Netapp-SnapMirror	LZ+TFO+DRE	N/A	10565–10569
NetIQ	Passthrough	N/A	2220, 2735, 10113–10116
Netopia-netOctopus	Passthrough	N/A	1917, 1921
Netopia-Timbuktu	TFO	N/A	407, 1417–1420
NFS	LZ+TFO+DRE	N/A	2049
NNTP	LZ+TFO+DRE	N/A	119
NNTP-secure	TFO	N/A	563
Novell-Groupwise	LZ+TFO+DRE	N/A	1099, 1677, 2800, 3800, 7100, 7101, 7180, 7181, 7205, 9850
Novell-NetWare	LZ+TFO+DRE	N/A	524
Novell-ZenWorks	LZ+TFO+DRE	N/A	517, 1761–1763, 2037, 2544, 8039
NTP	Passthrough	N/A	123
OpenVPN	TFO	N/A	1194
Oracle	LZ+TFO+DRE	N/A	66, 1521, 1525
Other-Secure	Passthrough	N/A	261, 44, 684, 695, 994, 2252, 2478, 2479, 2482, 2484, 2679, 2762, 2998, 3077, 3078, 3183, 3191, 3220, 3410, 3424, 3471, 3496,3509, 3529, 3539, 3660, 3661, 3747, 3864, 3885, 3896, 3897, 3995, 4031, 5007, 5989, 5990, 7674, 9802, 12109
PCAnywhere	TFO	N/A	73, 5631, 5632, 65301
PCMail-Server	LZ+TFO+DRE	N/A	158
PDMWorks	LZ+TFO+DRE	N/A	30000, 40000
Pervasive-SQL	LZ+TFO+DRE	N/A	1583
PostgreSQL	LZ+TFO+DRE	N/A	5432
PPTP	TFO	N/A	1723
ProjectWise-FileTransfer	LZ+TFO+DRE	N/A	5800
QMTP	LZ+TFO+DRE	N/A	209
Qnext	Passthrough	N/A	44, 5555
RAdmin	TFO	N/A	4899
Remote-Anything	TFO	N/A	3999, 4000
Remote-Replication-Agent	TFO	N/A	5678
Rsync	TFO	N/A	873
RTSP	LZ+TFO+DRE	N/A	554, 8554
SAP	LZ+TFO+DRE	N/A	3200–3219, 3221–3224, 3226–3267, 3270–3282, 3284–3305, 3307–3388, 3390–3399, 3600–3659, 3662–3699
SASL	Passthrough	N/A	3659
Scalable-SQL	LZ+TFO+DRE	N/A	3352
Service-Location	Passthrough	N/A	427
Siebel	LZ+TFO+DRE	N/A	2320, 2321, 8448
Simple-FTP	LZ+TFO+DRE	N/A	115
SIP-secure	Passthrough	N/A	5061
SOAP	LZ+TFO+DRE	N/A	7627
SoulSeek	Passthrough	N/A	2234, 5534
SQL-Service	LZ+TFO+DRE	N/A	156
SSH	TFO	N/A	22
SSL-Shell	Passthrough	N/A	614
Sun-RPC	Passthrough	N/A	111
SUN-Xprint	LZ+TFO+DRE	N/A	8100
Sybase-SQL	LZ+TFO+DRE	N/A	1498, 2439, 2638, 3968
Symantec-AntiVirus	LZ+TFO+DRE	N/A	2847, 2848, 2967, 2968, 38037, 38292
TACACS	Passthrough	N/A	49
Telnet	Passthrough	N/A	23, 107, 513
Telnets	Passthrough	N/A	992
TFTPS	TFO	N/A	3713
UniSQL	LZ+TFO+DRE	N/A	1978, 1979
Unix-Printing	LZ+TFO+DRE	N/A	170, 515
Unix-Remote-Execution	Passthrough	N/A	512, 514
VDOLive	LZ+TFO+DRE	N/A	7000
Veritas-BackupExec	TFO	N/A	1125, 3527, 6101, 6102, 6106
Veritas-NetBackup	TFO	N/A	13720, 13721, 13782, 13785
VMware-VMConsole	TFO	N/A	902
VNC	TFO	N/A	5801–5809, 6900–6909
VocalTec	Passthrough	N/A	1490, 6670, 22555, 25793
VoIP-Control	Passthrough	N/A	1300, 1718–1720, 2000-2002, 2428, 5060, 11000–11999
WAAS-FlowMonitor	TFO	N/A	7878
WASTE	Passthrough	N/A	1337
WBEM	Passthrough	N/A	5987, 5988
WinMX	Passthrough	N/A	6699
WINS	Passthrough	N/A	42, 137, 1512
X400	LZ+TFO+DRE	N/A	102
XWindows	TFO	N/A	6000–6063
Yahoo-Messenger	Passthrough	N/A	5000, 5001, 5050, 5100

Examples

# Enter system-defined WAAS policy view.

<Sysname> system-view

[Sysname] waas policy waas_default

[Sysname-waaspolicy-waas_default]

Related commands

display waas policy

waas rtp-class

Use waas rtp-class to create an RTP WAAS class and enter its view, or enter the view of an existing RTP WAAS class.

Use undo waas rtp-class to delete an RTP WAAS class.

Syntax

waas rtp-class class-name

undo waas rtp-class class-name

Default

No RTP WAAS classes exist.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

class-name: Specifies a name for the RTP WAAS class, a case-insensitive string of 1 to 63 characters.

Usage guidelines

If an RTP WAAS class does not contain match criteria, it is not used to match packets.

Examples

# Create an RTP WAAS class named waas_rtp and enter RTP WAAS class view.

<Sysname> system-view

[Sysname] waas rtp-class waas_rtp

[Sysname-waasrtpclass-waas_rtp]

Related commands

rtp-class

display waas rtp-class

waas tcp

Use waas tcp to enable TCP packet LZ compression or decompression.

Use undo waas tcp to disable TCP packet LZ compression or decompression.

Syntax

waas tcp { compress [ max max-number ] | decompress }

undo waas tcp

Default

TCP packet LZ compression and decompression is disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

compress: Enables TCP packet LZ compression.

max max-number: Specifies the maximum number of TCP packets to be compressed per time, in the number of 2 to 20. The default is 5.

decompress: Enables TCP packet LZ decompression.

Usage guidelines

This command takes effect only on TCP packets with the destination IP address and destination port number specified in the waas tcp destination command.

Enable TCP packet LZ compression on the upstream device and enable TCP packet LZ decompression on the downstream device. The upstream device compresses packets and forwards them to the downstream device. The downstream device decompresses the received packets and then forwards them.

You can enable TCP packet LZ compression or decompression for the same destination IP address, but not both on the same device.

Examples

# Enables TCP packet LZ compression and set the maximum number of TCP packets to be compressed to 8.

<Sysname> system-view

[Sysname] waas tcp compress max 8

Related commands

waas tcp ip

waas tcp acl

Use waas tcp acl to specify an ACL to match the TCP packets that can be compressed or decompressed.

Use undo waas tcp acl to restore the default.

Syntax

waas tcp acl { acl-number | name acl-name }

undo waas tcp acl

Default

No ACL is specified.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

acl-number: Specifies an ACL by its number in the range of 2000 to 2999 for basic ACLs or in the range of 3000 to 3999 for advanced ACLs.

name acl-name: Specifies an ACL by its name, a case-insensitive string of 1 to 63 characters. The ACL name must start with an English letter. To avoid confusion, make sure the argument is not all.

Usage guidelines

Only TCP packets matching the specified ACL are compressed or decompressed.

After you specify an ACL to match TCP packets, the destination IP address and destination port number specified in the waas tcp destination command do not take effect.

When you reference an ACL, follow these restrictions and guidelines:

· If the ACL does not exist or contains no rules, no TCP packets will be compressed or decompressed.

· If the vpn-instance vpn-instance-name option is specified in an ACL rule, the rule takes effect only on VPN packets. If the vpn-instance vpn-instance-name option is not specified in an ACL rule, the rule takes effect only on non-VPN packets.

Examples

# Specify ACL 2001 to match the TCP packets that can be compressed or decompressed.

<Sysname> system-view

[Sysname] waas tcp acl 2001

Related commands

waas tcp

waas tcp destination

Use waas tcp destination to specify the destination IP address and destination port number of TCP packets to be LZ compressed or decompressed.

Use undo waas tcp destination to remove the specified destination IP address and destination port number.

Syntax

waas tcp destination { ip-address port port-number | object-group ip-object-group-name port object-group port-object-group-name }

undo waas tcp destination { ip-address port port-number | object-group }

Default

No destination IP address and destination port number are specified.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

ip-address: Specifies the destination IP address of TCP packets to be LZ compressed or decompressed.

port port-number: Specifies the destination port number of TCP packets, in the range of 1 to 65535.

object-group ip-object-group-name: Specifies an IP address object group by its name to match the destination IP address of TCP packets, a case-insensitive string of 1 to 63 characters.

port object-group port-object-group-name: Specifies a port object group by its name to match the destination port number of TCP packets, a case-insensitive string of 1 to 63 characters.

Usage guidelines

TCP packet LZ compression and decompression takes effect only on TCP packets with the destination IP address and destination port number specified in this command.

You can execute this command multiple times to specify multiple IP address-port number pairs.

In matching TCP packets, object groups have higher priority than the specified IP address and port number.

Examples

# Specify that TCP packets with destination IP address 172.16.105.50 and destination port number 8000 are LZ compressed.

<Sysname> system-view

[Sysname] waas tcp compress

[Sysname] waas tcp destination 172.16.105.50 port 8000

# Specify IP address object group group1 and port object group group2 to match TCP packets.

<Sysname> system-view

[Sysname] waas tcp compress

[Sysname] waas tcp destination ip-address object-group group1 port object-group group2

Related commands

waas tcp

waas tfo auto-discovery blacklist enable

Use waas tfo auto-discovery blacklist enable to enable the TFO blacklist autodiscovery feature.

Use undo waas tfo auto-discovery blacklist enable to disable the TFO blacklist autodiscovery feature.

Syntax

waas tfo auto-discovery blacklist enable

undo waas tfo auto-discovery blacklist enable

Default

The TFO blacklist autodiscovery feature is disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

This feature automatically discovers servers that cannot receive TCP packets with options and adds the server IP addresses and port numbers to a blacklist.

During the 3-way handshake, the local device considers the TCP connection attempt failed if either of the following situations occurs:

· The peer device does not respond within the specified time period.

· The peer device closes the TCP connection.

Examples

# Enable the TFO blacklist autodiscovery feature.

<Sysname> system-view

[Sysname] waas tfo auto-discovery blacklist enable

Related commands

display waas tfo auto-discovery blacklist

waas tfo auto-discovery blacklist hold-time

Use waas tfo auto-discovery blacklist hold-time to set the aging time for autodiscovered blacklist entries.

Use undo waas tfo auto-discovery blacklist hold-time to restore the default.

Syntax

waas tfo auto-discovery blacklist hold-time minutes

undo waas tfo auto-discovery blacklist hold-time

Default

The aging time for autodiscovery blacklist entries is 5 minutes.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

minutes: Specifies the aging time for autodiscovered blacklist entries, in the range of 1 to 10080 minutes.

Usage guidelines

An aging timer is started when a blacklist entry is created. The system automatically deletes an autodiscovered blacklist entry to make room for a new blacklist entry when the aging timer expires.

Examples

# Set the aging time to 30 minutes for autodiscovered blacklist entries.

<Sysname> system-view

[Sysname] waas tfo auto-discovery blacklist hold-time 30

Related commands

display waas tfo auto-discovery blacklist

waas tfo auto-discovery blacklist enable

waas tfo base-congestion-window

Use waas tfo base-congestion-window to set the initial congestion window size for slow start.

Use undo waas tfo base-congestion-window to restore the default.

Syntax

waas tfo base-congestion-window segments

undo waas tfo base-congestion-window

Default

The initial congestion window size is two TCP segments.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

segments: Specifies the initial congestion window size in the range of 1 to 10 TCP segments.

Usage guidelines

The congestion window size changes with the congestion status and transmission speed. An appropriate initial congestion window size can quickly restore the network to its full transmission capacity after congestion occurs.

Examples

# Set the initial congestion window size to three segments.

<Sysname> system-view

[Sysname] waas tfo base-congestion-window 3

waas tfo congestion-method

Use waas tfo congestion-method to specify a TCP congestion control algorithm for the WAN side.

Use undo waas tfo congestion-method to restore the default.

Syntax

waas tfo congestion-method { bbrv1 | bbrv2 | bic | reno }

undo waas tfo congestion-method

Default

WAAS uses BIC as the TCP congestion control algorithm on the WAN side.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

bbrv1: Specifies BBRv1 as the TCP congestion control algorithm.

Bbrv2: Specifies BBRv2 as the TCP congestion control algorithm.

bic: Specifies BIC as the TCP congestion control algorithm.

reno: Specifies Reno as the TCP congestion control algorithm.

Usage guidelines

The TCP congestion control algorithms have different characteristics:

· Reno—As a best practice, use this algorithm in low-delay, low-bandwidth scenarios. In a high-delay, high-bandwidth scenario, it takes a long time for the transmission rate to increase to the maximum, which reduces bandwidth usage. As an early TCP congestion control algorithm, it uses received ACKs as the basis for increasing the congestion window.

· BIC—As a best practice, use this algorithm in scenarios with high bandwidth and low packet loss ratio. BIC considers lost packets as a sign of congestion. BIC does not reduce the transmission rate as long as no packet loss occurs, which maximizes the bandwidth usage and improves throughput. The disadvantage of BIC is it has high delay and considers dropped error packets as packets dropped due to congestion.

· BBR—As a best practice, use this algorithm in scenarios with high bandwidth, high delay, and adequate packet loss ratio. BBR does not consider lost packets as a sign of congestion. In a scenario with high packet loss ratio, BBR can reduce the transmission delay and keep high throughput. BBRv2 provides greater fairness when multiple multicast congestion control algorithms co-exist.

Examples

# Specify Reno as the TCP congestion control algorithm for the WAN side.

<Sysname> system-view

[Sysname] waas tfo congestion-method reno

waas tfo connect-limit

Use waas tfo connect-limit to set the maximum number of concurrent connections.

Use undo waas tfo connect-limit to restore the default.

Syntax

waas tfo connect-limit limit

undo waas tfo connect-limit

Default

The maximum number of concurrent connections is 10000.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

limit: Specifies the maximum number of concurrent connections, in the range of 1000 to 4294967295.

Usage guidelines

After the maximum number of concurrent connections is reached, WAAS does not optimize traffic for newly established connections. Configure the maximum number of concurrent connections according to your available memory resources, because optimizing TCP flows consumes memory resources.

You must set the same maximum number of concurrent connections on the local and peer devices.

Examples

# Set the maximum number of concurrent connections to 20000.

<Sysname> system-view

[Sysname] waas tfo connect-limit 20000

waas tfo connect-wait

Use waas tfo connect-wait to set the maximum wait time for TFO connections.

Use undo waas tfo connect-wait to restore the default.

Syntax

waas tfo connect-wait seconds

undo waas tfo connect-wait

Default

The maximum wait time for TFO connections is not set.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

seconds: Specifies the maximum wait time for TFO connections, in the range of 1 to 75 seconds.

Usage guidelines

Application scenario

By default, a TCP client or server declares a connection establishment failure after waiting 75 seconds for receiving a response from the peer. The WAAS device acting as a TCP proxy cannot affect the wait time. Execute this command to reduce the maximum wait time for the client and server during TFO connection establishment.

Operating mechanism

The TCP proxy stops TFO connection establishment if it fails to receive a response from the peer within the maximum wait time. If the TCP proxy is configured with the waas tfo auto-discovery blacklist enable command, it adds the IP address and port number it used to establish the connection to the blacklist.

Examples

# Set the maximum wait time for TFO connections to 2 seconds.

<Sysname> system-view

[Sysname] waas tfo connect-wait 2

Related commands

waas tfo auto-discovery blacklist enable

waas tfo keepalive

Use waas tfo keepalive to enable TFO keepalives.

Use undo waas tfo keepalive to disable TFO keepalives.

Syntax

waas tfo keepalive

undo waas tfo keepalive

Default

TFO keepalives are enabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

After you enable TFO keepalives, the system starts the 2-hour TCP keepalive timer. If the local device does not send or receive any data when the timer expires, it sends a keepalive to the peer to maintain the connection.

Examples

# Disable TFO keepalives.

<Sysname> system-view

[Sysname] undo waas tfo keepalive

waas tfo optimize dre

Use waas tfo optimize dre to enable DRE.

Use undo waas tfo optimize dre to disable DRE.

Syntax

waas tfo optimize dre

undo waas tfo optimize dre

Default

DRE is enabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

The DRE optimization action configured in a WAAS policy takes effect only when DRE is enabled.

Examples

# Disable DRE.

<Sysname> system-view

[Sysname] undo waas tfo optimize dre

Related commands

display waas status

waas tfo optimize lz

Use waas tfo optimize lz to enable LZ compression.

Use undo waas tfo optimize lz to disable LZ compression.

Syntax

waas tfo optimize lz

undo waas tfo optimize lz

Default

LZ compression is enabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Usage guidelines

The LZ optimization action configured in a WAAS policy takes effect only when LZ compression is enabled.

Examples

# Disable LZ compression.

<Sysname> system-view

[Sysname] undo waas tfo optimize lz

Related commands

display waas status

waas tfo receive-buffer

Use waas tfo receive-buffer to set the TFO receiving buffer size.

Use undo waas tfo receive-buffer to restore the default.

Syntax

waas tfo receive-buffer buffer-size

undo waas tfo receive-buffer

Default

The TFO receiving buffer size is 64 KB.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

buffer-size: Specifies the TFO receiving buffer size in the range of 32 to 16384 KB.

Usage guidelines

The TFO receiving buffer size affects network throughput.

Examples

# Set the TFO receiving buffer size to 1024 KB.

<Sysname> system-view

[Sysname] waas tfo receive-buffer 1024

waas udp

Use waas udp to enable UDP message LZ compression or decompression.

Use undo waas udp to disable UDP message LZ compression or decompression.

Syntax

waas udp { compress [ max max-number ] | decompress }

undo waas udp

Default

UDP message LZ compression and decompression is disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

compress: Enables UDP message LZ compression.

max max-number: Specifies the maximum number of UDP messages to be LZ compressed per time, in the number of 2 to 20. The default is 5.

decompress: Enables UDP message LZ decompression.

Usage guidelines

This command takes effect only on UDP messages with the destination IP address and destination port number specified in the waas udp destination command.

Enable UDP message LZ compression on the upstream device and enable UDP message LZ decompression on the downstream device. The upstream device compresses packets and forwards them to the downstream device. The downstream device decompresses the received packets and then forwards them.

You can enable UDP message LZ compression or decompression for the same destination IP address, but not both.

Examples

# Enables UDP message LZ compression and set the maximum number of UDP messages to be compressed to 10.

<Sysname> system-view

[Sysname] waas udp compress max 10

Related commands

waas udp destination

waas udp acl

Use waas udp acl to specify an ACL to match the UDP messages that can be LZ compressed or decompressed.

Use undo waas udp acl to restore the default.

Syntax

waas udp acl { acl-number | name acl-name }

undo waas udp acl

Default

No ACL is specified.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

acl-number: Specifies an ACL by its number in the range of 2000 to 2999 for basic ACLs or in the range of 3000 to 3999 for advanced ACLs.

name acl-name: Specifies an ACL by its name, a case-insensitive string of 1 to 63 characters. The ACL name must start with an English letter. To avoid confusion, make sure the argument is not all.

Usage guidelines

Only UDP messages matching the specified ACL are LZ compressed or decompressed.

After you specify an ACL to match UDP messages, the destination IP address and destination port number specified in the waas udp destination command do not take effect.

When you reference an ACL, follow these restrictions and guidelines:

· If the ACL does not exist or contains no rules, no UDP messages will be compressed or decompressed.

Examples

# Specify ACL 2001 to match the UDP messages that can be LZ compressed or decompressed.

<Sysname> system-view

[Sysname] waas udp acl 2001

Related commands

waas udp

waas udp destination

Use waas udp destination to specify the destination IP address and destination port number of UDP messages to be LZ compressed or decompressed.

Use undo waas udp destination to remove the specified destination IP address and destination port number.

Syntax

waas udp destination { ip-address port port-number | object-group ip-object-group-name port object-group port-object-group-name }

undo waas udp destination { ip-address port port-number | object-group }

Default

No destination IP address and destination port number are specified.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

ip-address: Specifies the destination IP address of UDP messages to be LZ compressed or decompressed.

port port-number: Specifies the destination port number of UDP messages, in the range of 1 to 65535.

object-group ip-object-group-name: Specifies an IP address object group by its name to match the destination IP address of UDP messages, a case-insensitive string of 1 to 63 characters.

port object-group port-object-group-name: Specifies a port object group by its name to match the destination port number of UDP messages, a case-insensitive string of 1 to 63 characters.

Usage guidelines

UDP message LZ compression and decompression takes effect only on UDP messages with the destination IP address and destination port number specified in this command.

You can configure this command multiple times to specify multiple IP address-port number pairs.

In matching UDP messages, object groups have higher priority than the specified IP address and port number.

Examples

# Specify that UDP messages with destination IP address 172.16.105.48 and destination port number 5000 are LZ compressed.

<Sysname> system-view

[Sysname] waas udp compress

[Sysname] waas udp destination 172.16.105.48 port 5000

# Specify IP address object group group1 and port object group group2 to match UDP messages.

<Sysname> system-view

[Sysname] waas tcp compress

[Sysname] waas udp destination ip-address object-group group1 port object-group group2

Related commands

waas udp

06-Layer 3—IP Services Command Reference

display waas class

reset waas statistics packet-dup

Application scenarios

waas tcp

waas tcp destination

Application scenario

Operating mechanism

Intelligent Terminal Products

Product Support Services

Technical Service Solutions

Resource Center

Policy

Online Help

Become a Partner

Partner Policy & Program

Global Learning

Partner Sales Resources

Service Business

News & Events

Contact Us