Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Command Reference, 3.1
clear configure through clear configure virtual
Downloads: This chapterpdf (PDF - 854.0KB) The complete bookPDF (PDF - 39.84MB) | Feedback

clear configure through clear configure virtual Commands

Table Of Contents

clear configure through clear configure virtual Commands

clear configure

clear configure aaa

clear configure aaa-server

clear configure access-group

clear configure access-list

clear configure alias

clear configure arp

clear configure arp-inspection

clear configure asdm

clear configure auth-prompt

clear configure auto-update

clear configure banner

clear configure ca certificate map

clear configure class

clear configure class-map

clear configure command-alias

clear configure console

clear configure context

clear configure crypto

clear configure crypto ca trustpoint

clear configure crypto dynamic-map

clear configure crypto map

clear configure dhcpd

clear configure dhcprelay

clear configure dns

clear configure established

clear configure failover

clear configure filter

clear configure firewall

clear configure fixup

clear configure fragment

clear configure ftp

clear configure ftp-map

clear configure global

clear configure group-policy

clear configure gtp-map

clear configure hostname

clear configure http

clear configure http-map

clear configure icmp

clear configure interface

clear configure interface bvi

clear configure ip

clear configure ip local pool

clear configure ip verify reverse-path

clear configure ipv6

clear configure isakmp

clear configure isakmp policy

clear configure logging

clear configure logging rate-limit

clear configure mac-address-table

clear configure mac-learn

clear configure mac-list

clear configure management-access

clear configure mgcp-map

clear configure monitor-interface

clear configure mroute

clear configure mtu

clear configure multicast-routing

clear configure name

clear configure nat

clear configure object-group

clear configure passwd

clear configure pim

clear configure policy-map

clear configure prefix-list

clear configure privilege

clear configure rip

clear configure route

clear configure route-map

clear configure router

clear configure service-policy

clear configure snmp-map

clear configure snmp-server

clear configure ssh

clear configure static

clear configure sunrpc-server

clear configure sysopt

clear configure telnet

clear configure terminal

clear configure time-range

clear configure timeout

clear configure tunnel-group

clear configure url-block

clear configure url-cache

clear configure url-server

clear configure username

clear configure virtual


clear configure through clear configure virtual Commands


clear configure

To clear the running configuration, use the clear configure command in global configuration mode.

clear configure {primary | secondary | all | command}

Syntax Description

command

Clears the configuration for a specified command. For more information, see individual entries in this guide for each clear configure command command.

primary

Clears commands related to connectivity, including the following commands:

tftp-server

shun

route

ip address

mtu

failover

monitor-interface

boot

secondary

Clears commands not related to connectivity (that are cleared using the primary keyword).

all

Clears the entire running configuration.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was modified to allow you to clear the configuration for each commmand.


Usage Guidelines

When you enter this command in a security context, you clear only the context configuration. If you enter this command in the system execution space, you clear the system running configuration as well as all context running configurations. Because you cleared all context entries in the system configuration (see the context command), the contexts are no longer running, and you cannot change to a context execution space.

Before clearing the configuration, make sure you save any changes to the boot config command (which specifies the startup configuration location) to the startup configuration; if you changed the startup configuration location only in the running configuration, then when you restart, the configuration loads from the default location.

Examples

The following example clears the entire running configuration:

hostname(config)# clear configure all

Related Commands

Command
Description

configure http

Merges a configuration file from the specified HTTP(S) URL with the running configuration.

configure memory

Merges the startup configuration with the running configuration.

configure net

Merges a configuration file from the specified TFTP URL with the running configuration.

show running-config

Shows the running configuration.


clear configure aaa

To clear the AAA configuration, use the clear configure aaa command in global configuration mode. The clear configure aaa command removes the AAA command statements from the configuration.

clear configure aaa

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear aaa command was introduced.

3.1(1)

This command was changed from clear aaa.


Usage Guidelines

This command also resets the AAA parameters to their default values, if any.

Examples

hostname(config)# clear configure aaa

Related Commands

Command
Description

aaa accounting

Enables or disables accounting.

aaa authentication

Enables or disables user authentication.

aaa authorization

Enables or disables user authorization.

show running-config aaa

Displays the AAA configuration.


clear configure aaa-server

To remove all AAA server groups or to clear the specified group, use the clear configure aaa-server command in global configuration mode.

clear configure aaa-server [server-tag]

clear configure aaa-server [server-tag] host server-ip

Syntax Description

server-ip

The IP address of the AAA server.

server-tag

(Optional) Symbolic name of the server group to be cleared.


Defaults

Remove all AAA server groups.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear aaa-server command was introduced.

3.1(1)

This command was changed from clear aaa-server.


Usage Guidelines

You can specify a particular AAA server group or, by default, all AAA server groups.

Use the host keyword to specify a particular server within a server group.

This command also resets the AAA server parameters to their default values, if any.

Examples

Given the following configuration:

hostname(config)# aaa-server svrgrp1 protocol sdi
hostname(config)# aaa-server svrgrp1 host 1.2.3.4
hostname(config-aaa-server)# timeout 9
hostname(config-aaa-server)# retry 7
hostname(config-aaa-server)# sdi-version sdi-5
hostname(config-aaa-server)# exit

several commands and examples follow.

The following command shows how to remove a specific server from a group:

hostname(config)# clear config aaa-server svrgrp1 host 1.2.3.4

The following command shows how to remove a server group:

hostname(config)# clear config aaa-server svrgrp1

The following command shows how to remove all server groups:

hostname(config)# clear config aaa-server

Related Commands

Command
Description

aaa-server host

Specifies and manages host-specific AAA server connection data.

aaa-server protocol

Lets you configure AAA server parameters that are group-specific and common to all hosts.

show running-config aaa

Displays the current maximum number of concurrent proxy connections allowed per user, along with other AAA configuration values.


clear configure access-group

To remove access groups from all the interfaces, use the clear configure access-group command.

clear configure access-group

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear access-group.


Examples

The following example shows how to remove all access groups:

hostname(config)# clear configure access-group

Related Commands

Command
Description

access-group

Binds an access list to an interface.

show running-config access-group

Displays the current access group configuration.


clear configure access-list

To clear an access list from the running configuration, use the clear configure access list command in global configuration mode.

clear configure access-list [id]

Syntax Description

id

(Optional) Name or number of an access list.


Defaults

All the access lists are cleared from the running configuration.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

This example shows how to clear the access lists from the running configuration:

hostname(config)# clear configure access-list

Related Commands

Command
Description

access-list extended

Adds an access list to the configuration and configures policy for IP traffic through the firewall.

access-list standard

Adds an access list to identify the destination IP addresses of OSPF routes, which can be used in a route map for OSPF redistribution.

clear access-list

Clears access list counters.

show access-list

Displays counters for an access list.

show running-config access-list

Displays the access list configuration running on the FWSM.


clear configure alias

To remove all alias commands from the configuration, use the clear configure alias command in global configuration mode.

clear configure alias

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear alias.


Examples

This example shows how to remove all alias commands from the configuration:

hostname(config)# clear configure alias

Related Commands

Command
Description

alias

Translates one address into another.

show running-config alias

Displays the overlapping addresses with dual NAT commands in the configuration.


clear configure arp

To clear static ARP entries added by the arp command, use the clear configure arp command in global configuration mode.

clear configure arp

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

2.2(1)

This command was introduced.

3.1(1)

The configure keyword was added.


Examples

The following example clears static ARP entries from the configuration:

hostname# clear configure arp

Related Commands

Command
Description

arp

Adds a static ARP entry.

arp-inspection

For transparent firewall mode, inspects ARP packets to prevent ARP spoofing.

firewall transparent

Sets the firewall mode to transparent.

show arp statistics

Shows ARP statistics.

show running-config arp

Shows the current configuration of the ARP timeout.


clear configure arp-inspection

To clear the ARP inspection configuration, use the clear configure arp-inspection command in global configuration mode.

clear configure arp-inspection

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

2.2(1)

This command was introduced.

3.1(1)

This command was changed from clear arp-inspection.


Examples

The following example clears the ARP inspection configuration:

hostname# clear configure arp-inspection

Related Commands

Command
Description

arp

Adds a static ARP entry.

arp-inspection

For transparent firewall mode, inspects ARP packets to prevent ARP spoofing.

firewall transparent

Sets the firewall mode to transparent.

show arp statistics

Shows ARP statistics.

show running-config arp

Shows the current configuration of the ARP timeout.


clear configure asdm

To remove all asdm commands from the running configuration, use the clear configure asdm command in global configuration mode.

clear configure asdm [location | group]

Syntax Description

group

(Optional) Clears only the asdm group commands from the running configuration.

location

(Optional) Clears only the asdm location commands from the running configuration.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced (as the clear pdm command).

3.1(1)

This command was changed from the clear pdm command to the clear configure asdm command.


Usage Guidelines

To view the asdm commands in the running configuration, use the show running-config asdm command.

Clearing the asdm location and asdm group commands from the configuration causes ASDM to regenerate those commands the next time ASDM is accessed, but may disrupt active ASDM sessions.


Note On FWSMs running in multiple context mode, the clear configure asdm group and clear configure asdm location commands are only available in the user contexts.


Examples

The following example clears the asdm group commands from the running configuration:

hostname(config)# clear configure asdm group
hostname(config)#

Related Commands

Command
Description

asdm group

Used by ASDM to associate object group names with interfaces.

asdm location

Used by ASDM to record IP address to interface associations.

show running-config asdm

Displays the asdm commands in the running configuration.


clear configure auth-prompt

To remove the previously specified authentication prompt challenge text and revert to the default value, if any, use the clear configure auth-prompt command in global configuration mode.

clear configure auth-prompt

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear auth-prompt command was introduced.

3.1(1)

This command was changed from clear auth-prompt.


Usage Guidelines

After you clear the authentication prompt, the prompt users see when they log in depends on the protocol they use:

Users who log in using HTTP see the following prompt: HTTP Authentication.

Users who log in using FTP see the following prompt: FTP Authentication.

Users who log in using Telnet see no prompt.

Examples

The following example shows how to clear the auth-prompt:

hostname(config)# clear configure auth-prompt

Related Commands

auth-prompt

Sets the user authorization prompts.

show running-config auth-prompt

Displays the user authorization prompts.


clear configure auto-update

To clear the Auto Update Server configuration, use the clear configure auto-update command in global configuration mode.

clear configure auto-update

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example clears the ARP inspection configuration:

hostname# clear configure auto-update

Related Commands

Command
Description

auto-update device-id

Sets the FWSM device ID for use with an Auto Update Server.

auto-update poll-period

Sets how often the FWSM checks for updates from an Auto Update Server.

auto-update server

Identifies the Auto Update Server.

auto-update timeout

Stops traffic from passing through the FWSM if the Auto Update Server is not contacted within the timeout period.

show running-config auto-update

Shows the Auto Update Server configuration.


clear configure banner

To remove all the banners, use the clear configure banner command in global configuration mode.

clear configure banner

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

2.2(1)

The clear banner command was introduced.

3.1(1)

This command was changed to clear configure banner.


Examples

The following example shows how to clear banners:

hostname(config)# clear configure banner

Related Commands

Command
Description

banner

Configures the session, login, or message-of-the-day banner.

show running-config banner

Displays all banners.


clear configure ca certificate map

To remove all certificate map entries or to remove a specified certificate map entry, use the clear configure ca configurate map command in global configuration mode.

clear configure ca certificate map [sequence-number]

Syntax Description

sequence-number

(Optional) Specifies a number for the certificate map rule you are removing. The range is 1 through 65535.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example removes all certificate map entries.

hostname(config)# clear configure ca certificate map
hostname(config)#

Related Commands

Command
Description

crypto ca certificate map

Enters CA certificate map mode.


clear configure class

To clear the class configuration, use the clear configure class command in global configuration mode.

clear configure class

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration

N/A

N/A


Command History

Release
Modification

2.2(1)

This command was introduced.

3.1(1)

This command was changed from clear class.


Examples

The following example clears the class configuration:

hostname(config)# clear configure class

Related Commands

Command
Description

class

Configures a resource class.

context

Configures a security context.

limit-resource

Sets the resource limit for a class.

member

Assigns a context to a resource class.

show class

Shows the contexts assigned to a class.


clear configure class-map

To remove all class maps, use the clear configure class-map command in global configuration mode.

clear configure class-map

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

To clear the class map for a specific class map name, use the no form of the class-map command.

Examples

The following example shows how to clear all configured class-maps:

hostname(config)# clear configure class-map

Related Commands

Command
Description

class-map

Applies a traffic class to an interface.

show running-config class-map

Displays the information about the class map configuration.


clear configure command-alias

To remove all non-default command aliases, use the clear configure command-alias command in global configuration mode.

clear configure command-alias

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example shows how to remove all non-default command aliases:

hostname(config)# clear configure command-alias

Related Commands

Command
Description

command-alias

Creates a command alias.

show running-config command-alias

Displays all non-default command aliases.


clear configure console

To reset the console connection settings to defaults, use the clear configure console command in global configuration mode.

clear configure console

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example shows how to reset the console connection settings to defaults:

hostname(config)# clear configure console

Related Commands

Command
Description

console timeout

Sets the idle timeout for a console connection to the FWSM.

show running-config console timeout

Displays the idle timeout for a console connection to the FWSM.


clear configure context

To clear all context configurations in the system configuration, use the clear configure context command in global configuration mode.

clear configure context [noconfirm]

Syntax Description

noconfirm

(Optional) Removes all contexts without prompting you for confirmation. This option is useful for automated scripts.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration

N/A

N/A


Command History

Release
Modification

2.2(1)

This command was introduced.

3.1(1)

This command was changed from clear context.


Usage Guidelines

This command lets you remove all contexts, including the admin context. The admin context cannot be removed using the no context command, but can be removed using the clear configure context command.

Examples

The following example removes all contexts from the system configuration, and does not confirm the deletion:

hostname(config)# clear configure context noconfirm

Related Commands

Command
Description

admin-context

Sets the admin context.

changeto

Changes between contexts or the system execution space.

context

Creates a security context in the system configuration and enters context configuration mode.

mode

Sets the context mode to single or multiple.

show context

Shows a list of contexts (system execution space) or information about the current context.


clear configure crypto

To remove the entire crypto configuration, including IPSec, crypto maps, dynamic crypto maps, CA trustpoints, all certificates, certificate map configurations, and ISAKMP, use the clear configure crypto command in global configuration mode. To remove specific configurations, use this command with keywords as shown in the syntax. Take caution when using this command.

clear configure crypto [ca | dynamic-map | ipsec | iskamp | map]

Syntax Description

ca

Removes certification authority policy.

dynamic-map

Removes dynamic crypto map configuration.

ipsec

Removes IPSec configuration.

isakmp

Removes ISAKMP configuration.

map

Removes crypto map configuration.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example issued in global configuration mode, removes all of the crypto configuration from the FWSM:

hostname(config)# clear configure crypto
hostname(config)# 

Related Commands

Command
Description

clear configure crypto dynamic-map

Clears all or specified crypto dynamic maps from the configuration.

clear configure crypto map

Clears all or specified crypto maps from the configuration.

clear configure isakmp policy

Clears all ISAKMP policy configuration.

show running-config crypto

Displays the entire crypto configuration, including IPSec, crypto maps, dynamic crypto maps, and ISAKMP.


clear configure crypto ca trustpoint

To remove all trustpoints from the configuration, use the clear configure crypto ca trustpoint command in global configuration mode.

clear configure crypto ca trustpoint

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example entered in global configuration mode, removes all trustpoints from the configuration:

hostname(config)# clear configure crypto ca trustpoint
hostname(config)# 

Related Commands

Command
Description

crypto ca trustpoint

Enters the trustpoint subconfiguration level for the indicated trustpoint.


clear configure crypto dynamic-map

To remove all or specified crypto dynamic maps from the configuration, use the clear configure crypto dynamic-map command in global configuration mode.

clear configure crypto dynamic-map dynamic-map-name dynamic-seq-num

Syntax Description

dynamic-map-name

Specifies the name of a specific crypto dynamic map.

dynamic-seq-num

Specifies the sequence number of the crypto dynamic map.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear crypto dynamic-map.


Examples

The following example entered in global configuration mode, removes the crypto dynamic map mymaps with sequence number 3 from the configuration:

hostname(config)# clear configure crypto dynamic-map mymaps 3
hostname(config)# 

Related Commands

Command
Description

clear configure crypto map

Clears the configuration of all or specified crypto maps.

show running-config crypto dynamic-map

Displays all the active configuration for all dynamic crypto maps.

show running-config crypto map

Displays all the active configuration for all crypto maps.


clear configure crypto map

To remove all or specified crypto maps from the configuration, use the clear configure crypto map command in global configuration mode.

clear configure crypto map map-name seq-num

Syntax Description

map-name

Specifies the name of a specific crypto map.

seq-num

Specifies the sequence number of the crypto map.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example entered in global configuration mode, removes the crypto map mymaps with sequence number 3 from the configuration:

hostname(config)# clear configure crypto map mymaps 3
hostname(config)# 

Related Commands

Command
Description

clear configure crypto dynamic-map

Clears the configuration of all or specified crypto dynamic maps.

crypto map interface

Applies a crypto map to an interface.

show running-config crypto map

Displays the active configuration for all crypto maps.

show running-config crypto dynamic-map

Displays the active configuration for all dynamic crypto maps.


clear configure dhcpd

To clear all of the DHCP server commands, binding, and statistics, use the clear configure dhcpd command in global configuration mode.

clear configure dhcpd

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure dhcpd command clears all of the dhcpd commands, bindings, and statistical information. To clear only the statistic counters or binding information, use the clear dhcpd command.

Examples

The following example shows how to clear all dhcpd commands:

hostname(config)# clear configure dhcpd

Related Commands

Command
Description

clear dhcpd

Clears the DHCP server bindings and statistic counters.

show running-config dhcpd

Displays the current DHCP server configuration.


clear configure dhcprelay

To clear all of the DHCP relay configuration, use the clear configure dhcprelay command in global configuration mode.

clear configure dhcprelay

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure dhcprelay command clears the DHCP relay statistics and configuration. To clear only the DHCP statistic counters, use the clear dhcprelay statistics command.

Examples

The following example shows how to clear the DHCP relay configuration:

hostname(config)# clear configure dhcprelay

Related Commands

Command
Description

clear dhcprelay statistics

Clears the DHCP relay agent statistic counters.

debug dhcprelay

Displays debug information for the DHCP relay agent.

show dhcprelay statistics

Displays DHCP relay agent statistic information.

show running-config dhcprelay

Displays the current DHCP relay agent configuration.


clear configure dns

To clear all DNS commands, use the clear configure dns command in global configuration mode.

clear configure dns

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example clears all DNS commands:

hostname(config)# clear configure dns

Related Commands

Command
Description

dns domain-lookup

Enables the FWSM to perform a name lookup.

dns name-server

Configures a DNS server address.

dns retries

Specifies the number of times to retry the list of DNS servers when the FWSM does not receive a response.

dns timeout

Specifies the amount of time to wait before trying the next DNS server.

show dns-hosts

Shows the DNS cache.


clear configure established

To remove all established commands, use the clear configure established command in global configuration mode.

clear configure established

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear established.


Usage Guidelines

To remove an established connection created by the established command, enter the clear local-hosts command.

Examples

This example shows how to remove established commands:

hostname(config)# clear configure established

Related Commands

Command
Description

established

Permits return connections on ports that are based on an established connection.

show running-config established

Displays the allowed inbound connections that are based on established connections.

clear local-hosts

Clears the current connections.


clear configure failover

To remove failover commands from the configuration and restore the defaults, use the clear configure failover command in global configuration mode.

clear configure failover

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced (as clear failover).

3.1(1)

Command was changed from clear failover to clear configure failover.


Usage Guidelines

This command clears all failover commands from the running configuration and restores the defaults. If you use the all keyword with the show running-config failover command, you will see the default failover configuration.

The clear configure failover command is not available in a security context in multiple configuration mode; you must enter the command in the system execution space.

Examples

The following example clears all failover commands from the configuration:

hostname(config)# clear configure failover
hostname(config)# show running-configuration failover
no failover

Related Commands

Command
Description

show running-config failover

Displays the failover commands in the running configuration.


clear configure filter

To clear URL, FTP, and HTTPS filtering configuration, use the clear configure filter command in global configuration mode.

clear configure filter

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear filter.


Usage Guidelines

The clear configure filter command clears the URL, FTP, and HTTPS filtering configuration.

Examples

The following example clears the URL, FTP, and HTTPS filtering configuration:

hostname# clear configure filter

Related Commands

Commands
Description

filter ftp

Identifies the FTP traffic to be filtered by a URL filtering server.

filter https

Identifies the HTTPS traffic to be filtered by a Websense server.

filter url

Directs traffic to a URL filtering server.

show running-config filter

Displays the filtering configuration.

url-server

Identifies an N2H2 or Websense server for use with the filter command.


clear configure firewall

To set the firewall mode to the default routed mode, use the clear configure firewall command in global configuration mode.

clear configure firewall

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

2.2(1)

This command was introduced.

3.1(1)

In multiple context mode, you can enter this command within a context only. Previously, you entered it in the system execution space. This command was also changed from clear firewall.


Examples

The following example sets the firewall mode to the default:

hostname(config)# clear configure firewall

Related Commands

Command
Description

arp

Adds a static ARP entry.

firewall transparent

Sets the firewall mode to transparent.

show arp statistics

Shows ARP statistics.

show running-config arp

Shows the current configuration of the ARP timeout.


clear configure fixup

To clear the fixup configuration, use the clear configure fixup command in global configuration mode.

clear configure fixup

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear fixup command was introduced.

3.1(1)

This command was changed from clear fixup.


Usage Guidelines

The clear configure fixup command removes the fixup configuration.

Examples

The following example clears the fixup configuration:

hostname# clear configure fixup

Related Commands

Commands
Description

class-map

Defines the traffic class to which to apply security actions.

policy-map

Associates a class map with specific security actions.


clear configure fragment

To reset all the IP fragment reassembly configurations to defaults, use the clear configure fragment command in global configuration mode.

clear configure fragment [interface]

Syntax Description

interface

(Optional) Specifies the FWSM interface.


Defaults

If an interface is not specified, the command applies to all interfaces.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear fragment command was introduced.

3.1(1)

The configure keyword and optional interface argument were added. The command was also separated into two commands, clear fragment and clear configure fragment, to separate clearing of the configuration data from the operational data.


Usage Guidelines

The clear configure fragment command resets all the IP fragment reassembly configurations to defaults. In addition, the the chain, size, and timeout keywords are reset to their default values, which are as follows:

chain is 24 packets

size is 200

timeout is 5 seconds

Examples

This example shows how to reset all the IP fragment reassembly configurations to defaults:

hostname(config)# clear configure fragment

Related Commands

Command
Description

clear fragment

Clears the operational data of the IP fragment reassembly module.

fragment

Provides additional management of packet fragmentation and improves compatibility with NFS.

show fragment

Displays the operational data of the IP fragment reassembly module.

show running-config fragment

Displays the IP fragment reassembly configuration.


clear configure ftp

To clear the FTP configuration, use the clear configure ftp command in global configuration mode.

clear configure ftp

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure ftp command clears the FTP configuration.

Examples

The following example clears the FTP configuration:

hostname# clear configure filter

Related Commands

Commands
Description

filter ftp

Identifies the FTP traffic to be filtered by a URL filtering server.

filter https

Identifies the HTTPS traffic to be filtered by a Websense server.

filter url

Directs traffic to a URL filtering server.

show running-config filter

Displays the filtering configuration.

url-server

Identifies an N2H2 or Websense server for use with the filter command.


clear configure ftp-map

To clear the FTP map configuration, use the clear configure ftp-map command in global configuration mode.

clear configure ftp-map

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure ftp-map command removes the FTP map configuration.

Examples

The following example clears the FTP map configuration:

hostname# clear configure ftp-map

Related Commands

Commands
Description

class-map

Defines the traffic class to which to apply security actions.

ftp-map

Defines an FTP map and enables FTP map configuration mode.

inspect ftp

Applies a specific FTP map to use for application inspection.

request-command deny

Specifies FTP commands to disallow.


clear configure global

To remove the global commands from the configuration, use the clear configure global command in global configuration mode.

clear configure global

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear global.


Examples

The following example shows how to remove the global commands from the configuration:

hostname(config)# clear configure global

Related Commands

Command
Description

global

Creates entries from a pool of global addresses.

show running-config global

Displays the global commands in the configuration.


clear configure group-policy

To remove the configuration for a particular group policy, use the clear configure group-policy command in global configuration mode, and append the name of the group policy. To remove all group-policy commands from the configuration except the default group policy, use this command without arguments.

clear configure group-policy [name]

Syntax Description

name

Specifies the name of the group policy.


Defaults

Remove all group-policy commands from the configuration, except the default group policy.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example shows how to clear the configuration for the group policy named FirstGroup.

hostname(config)# clear configure group-policy FirstGroup

Related Commands

Command
Description

group-policy

Creates, edits, or removes a group policy.

group-policy attributes

Enters group-policy attributes mode, which lets you configure AVPs for a specified group policy.

show running-config group-policy

Displays the running configuration for a particular group policy or for all group policies.


clear configure gtp-map

To clear GTP map configuration, use the clear configure gtp-map command in global configuration mode.

clear configure gtp-map

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure gtp -map command removes the GTP map configuration.

Examples

The following example clears GTP map configuration:

hostname# clear configure gtp-map

Related Commands

Commands
Description

clear service-policy inspect gtp

Clears global GTP statistics.

debug gtp

Displays detailed information about GTP inspection.

gtp-map

Defines a GTP map and enables GTP map configuration mode.

inspect gtp

Applies a specific GTP map to use for application inspection.

show service-policy inspect gtp

Displays the GTP configuration.


clear configure hostname

To reset the hostname to the default, use the clear configure hostname command in global configuration mode.

clear configure hostname

Syntax Description

This command has no arguments or keywords.

Defaults

The default hostname is FWSM.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

The configure keyword was added.


Examples

The following example clears the hostname:

hostname(config)# clear configure hostname

Related Commands

Command
Description

banner

Sets a login, message of the day, or enable banner.

domain-name

Sets the default domain name.

hostname

Sets the hostname for the FWSM.


clear configure http

To disable the HTTP server and to remove configured hosts that can access the HTTP server, use the clear configure http command in global configuration mode.

clear configure http

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

Preexisting

This command was preexisting.


Examples

The following example shows how to clear the HTTP configuration.

hostname(config)# clear configure http

Related Commands

Command
Description

http

Specifies hosts that can access the HTTP server by IP address and subnet mask. Specifies the FWSM interface through which the host accesses the HTTP server.

http authentication-certificate

Requires authentication via certificate from users who are establishing HTTPS connections to the FWSM.

http server enable

Enables the HTTP server.

show running-config http

Displays the hosts that can access the HTTP server, and whether or not the HTTP server is enabled.


clear configure http-map

To clear HTTP map configuration, use the clear configure http-map command in global configuration mode.

clear configure http-map

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration

·

·

·

·

·


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure http-map command removes the HTTP map configuration.

Examples

The following example clears the HTTP map configuration:

hostname# clear configure http-map

Related Commands

Commands
Description

class-map

Defines the traffic class to which to apply security actions.

debug http-map

Displays detailed information about traffic associated with an HTTP map.

http-map

Defines an HTTP map for configuring enhanced HTTP inspection.

inspect http

Applies a specific HTTP map to use for application inspection.

policy-map

Associates a class map with specific security actions.


clear configure icmp

To clear the configured access rules for ICMP traffic, use the clear configure icmp command in global configuration mode.

clear configure icmp

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

Support for this command was introduced.


Usage Guidelines

The clear configure icmp command clears the configured access rules for ICMP traffic.

Examples

The following example clears the clear configured access rules for ICMP traffic:

hostname# clear configure icmp

Related Commands

Commands
Description

clear configure icmp

Clears the ICMP configuration.

debug icmp

Enables the display of debug information for ICMP.

show icmp

Displays ICMP configuration.

timeout icmp

Configures the idle timeout for ICMP.


clear configure interface

To clear the interface configuration, use the clear configure interface command in global configuration mode.

clear configure interface[mapped_name | interface_name]

Syntax Description

interface_name

(Optional) Identifies the interface name set with the nameif command.

mapped_name

(Optional) In multiple context mode, identifies the mapped name if it was assigned using the allocate-interface command.


Defaults

If you do not specify an interface, the FWSM clears all interface configuration.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

You cannot use the interface name in the system execution space, because the nameif command is only available within a context. Similarly, if you mapped the interface ID to a mapped name using the allocate-interface command, you can only use the mapped name in a context.

Examples

The following example clears the interface configuration:

hostname(config)# clear configure interface

The following example clears the inside interface configuration:

hostname(config)# clear configure interface inside

The following example clears the int1 interface configuration in a context. "int1" is a mapped name.

hostname/contexta(config)# clear configure interface int1

The following example clears all interface configuration.

hostname(config)# clear configure interface

Related Commands

Command
Description

allocate-interface

Assigns interfaces and subinterfaces to a security context.

clear interface

Clears counters for the show interface command.

interface

Configures an interface and enters interface configuration mode.

show interface

Displays the runtime status and statistics of interfaces.


clear configure interface bvi

To clear the bridge virtual interface configuration, use the clear configure interface bvi command in global configuration mode.

clear configure interface bvi bridge_group_number

Syntax Description

bridge_group_number

Specifies the bridge group number as an integer between 1 and 100.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example clears the interface configuration for bridge group 1:

hostname(config)# clear configure interface bvi 1

Related Commands

Command
Description

bridge-group

Groups two transparent firewall interfaces into a bridge group.

interface

Configures an interface.

interface bvi

Enters the interface configuration mode for a bridge group so you can set the management IP address.

ip address

Sets the management IP address for a bridge group.

show running-config interface bvi

Shows the bridge group interface configuration.


clear configure ip

To clear all IP addresses set by the ip address command, use the clear configure ip command in global configuration mode.

clear configure ip

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

In transparent firewall mode, this command clears the management IP address for the bridge groups.

If you want to stop all current connections that use the old IP addresses, enter the clear local-hosts command. Otherwise, the connections time out as usual.

Examples

The following example clears all IP addresses:

hostname(config)# clear configure ip

Related Commands

Command
Description

allocate-interface

Assigns interfaces and subinterfaces to a security context.

clear configure interface

Clears all configuration for an interface.

interface

Configures an interface and enters interface configuration mode.

ip address

Sets the IP address for the interface.

show running-config interface

Displays the interface configuration.


clear configure ip local pool

To remove IP address pools, use the clear configure ip local pool command in global configuration mode.

clear ip local pool [poolname]

Syntax Description

poolname

(Optional) Specifies the name of the IP address pool.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

Support for this command was introduced.


Examples

The following example removes all IP address pools from the running configuration:

hostname(config)# clear config ip local pool
hostname(config)# 

Related Commands

Command
Description

clear configure ip local pool

Removes all ip local pools.

ip local pool

Configures an IP address pool.


clear configure ip verify reverse-path

To clear the ip verify reverse-path configuration, use the clear configure ip verify reverse-path command in global configuration mode.

clear configure ip verify reverse-path

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear ip verify reverse-path command was introduced.

3.1(1)

This command was changed to clear configure ip verify reverse-path.


Examples

The following example clears the ip verify reverse-path configuration for all interfaces:

hostname(config)# clear configure ip verify reverse-path

Related Commands

Command
Description

clear ip verify statistics

Clears the Unicast RPF statistics.

ip verify reverse-path

Enables the Unicast Reverse Path Forwarding feature to prevent IP spoofing.

show ip verify statistics

Shows the Unicast RPF statistics.

show running-config ip verify reverse-path

Shows the ip verify reverse-path configuration.


clear configure ipv6

To clear the global IPv6 commands from the running configuration, use the clear configure ipv6 command in global configuration mode.

clear configure ipv6 [route | access-list]

Syntax Description

route

(Optional) Clears the commands that statically define routes in the IPv6 routing table from the running configuration.

access-list

(Optional) Clears the IPv6 access list commands from the running configuration.


Defaults

Without keywords, this command clears all IPv6 commands from the running configuration.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

This command only clears the global IPv6 commands from the running configuration; it does not clear the IPv6 commands entered in interface configuration mode.

Examples

The following example shows how to clear statically defined IPv6 routes from the IPv6 routing table:

hostname(config)# clear configure ipv6 route
hostname(config)#

Related Commands

Command
Description

ipv6 route

Defines a static route in the IPv6 routing table.

show ipv6 route

Displays the contents of the IPv6 routing table.

show running-config ipv6

Displays the IPv6 commands in the running configuration.


clear configure isakmp

To remove all of the ISAKMP configuration, use the clear configure isakmp command in global configuration mode.

clear configure isakmp

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example issued in global configuration mode, removes all of the ISAKMP configuration from the FWSM:

hostname(config)# clear configure isakmp
hostname(config)# 

Related Commands

Command
Description

clear configure isakmp policy

Clears all ISAKMP policy configuration.

isakmp enable

Enables ISAKMP negotiation on the interface on which the IPSec peer communicates with the FWSM.

show isakmp stats

Displays runtime statistics.

show isakmp sa

Displays IKE runtime SA database with additional information.

show running-config isakmp

Displays all the active configuration.


clear configure isakmp policy

To remove all of the ISAKMP policy configuration, use the clear configure isakmp policy command in global configuration mode.

clear configure isakmp policy priority

Syntax Description

priority

Specifies the priority of the ISAKMP priority to be cleared.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example removes the ISAKMP policy with priority 3 from the configuration:

hostname(config)# clear configure isakmp policy 3
hostname(config)# 

Related Commands

Command
Description

isakmp enable

Enables ISAKMP negotiation on the interface on which the IPSec peer communicates with the FWSM.

show isakmp stats

Displays runtime statistics.

show isakmp sa

Displays IKE runtime SA database with additional information.

show running-config isakmp

Displays all the active configuration.


clear configure logging

To clear the logging configuration, use the clear configure logging command in global configuration mode.

clear configure logging [disabled | level]

Syntax Description

disabled

(Optional) Indicates that all disabled system log messages should be reenabled. When you use this option, no other logging configuration is cleared.

level

(Optional) Indicates that the severity level assignments for system log messages should be reset to their default values. When you use this option, no other logging configuration is cleared.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

You can use the show running-config logging command to view all logging configuration settings. If you use the clear configure logging command without either the disabled or level keyword, all logging configuration settings are cleared.

Examples

The following example shows how to clear logging configuration. The output of the show logging command indicates that all logging features are disabled.

hostname(config)# clear configure logging
hostname(config)# show logging
Syslog logging: disabled
    Facility: 20
    Timestamp logging: disabled
    Standby logging: disabled
    Deny Conn when Queue Full: disabled
    Console logging: disabled
    Monitor logging: disabled
    Buffer logging: disabled
    Trap logging: disabled
    History logging: disabled
    Device ID: disabled
    Mail logging: disabled
    ASDM logging: disabled

Related Commands

Command
Description

show logging

Displays the enabled logging options.

show running-config logging

Displays the logging-related portion of the running configuration.


clear configure logging rate-limit

To reset the logging rate limit, use the clear configure logging rate-limit command in global configuration mode.

clear configure logging rate-limit

Syntax DescriptionThis command has no arguments or keywords.

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example shows how to reset the logging rate limit:

hostname(config)# clear configure logging rate-limit

After the information is cleared, nothing more displays until the hosts reestablish their connections.

Related Commands

Command
Description

logging rate limit

Limits the rate at which system log messages are generated.

show running config logging rate-limit

Shows the current logging rate limit setting.


clear configure mac-address-table

To clear the mac-address-table static and mac-address-table aging-time configuration, use the clear configure mac-address-table command in global configuration mode.

clear configure mac-address-table

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example clears the mac-address-table static and mac-address-table aging-time configuration:

hostname# clear configure mac-address-table

Related Commands

Command
Description

firewall transparent

Sets the firewall mode to transparent.

mac-address-table aging-time

Sets the timeout for dynamic MAC address entries.

mac-address-table static

Adds static MAC address entries to the MAC address table.

mac-learn

Disables MAC address learning for an interface.

show mac-address-table

Shows the MAC address table, including dynamic and static entries.


clear configure mac-learn

To clear the mac-learn configuration, use the clear configure mac-learn command in global configuration mode.

clear configure mac-learn

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

2.2(1)

This command was introduced.

3.1(1)

This command was changed from clear mac-learn.


Examples

The following example clears the mac-learn configuration:

hostname# clear configure mac-learn

Related Commands

Command
Description

firewall transparent

Sets the firewall mode to transparent.

mac-address-table static

Adds static MAC address entries to the MAC address table.

mac-learn

Disables MAC address learning for an interface.

show mac-address-table

Shows the MAC address table, including dynamic and static entries.


clear configure mac-list

To remove the indicated list of MAC addresses, previously specified the mac-list command, use the clear configure mac-list command in global configuration mode:

clear configure mac-list id

Syntax Description

id

A MAC address list name.


Defaults

No default behaviors or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

To remove a list of MAC addresses, use the clear mac-list command.

Examples

The following example shows how to clear a MAC address list:

hostname(config)# clear configure mac-list firstmaclist

Related Commands

Command
Description

mac-list

Adds a list of MAC addresses using a first-match search.

show running-config mac-list

Displays the MAC addresses in the MAC address list indicated by the id value.


clear configure management-access

To remove the configuration of an internal interface for management access of the FWSM, use the clear configure management-access command in global configuration mode.

clear configure management-access

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

The keyword configure was added.


Usage Guidelines

The management-access command lets you define an internal management interface using the IP address of the firewall interface specified in mgmt_if. (The interface names are defined by the nameif command and displayed in quotes, " ", in the output of the show interface command.) The clear configure management-access command removes the configuration of the internal management interface specified with the management-access command.

Examples

The following example removes the configuration of an internal interface for management access of the FWSM:

hostname(config)# clear configure management-access 

Related Commands

Command
Description

management-access

Configures an internal interface for management access.

show running-config management-access

Displays the name of the internal interface configured for management access.


clear configure mgcp-map

To clear the MGCP map configuration, use the clear configure mgcp-map command in global configuration mode.

clear configure mgcp-map

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure mgcp-map clears the MGCP map configuration.

Examples

The following example clears clear the MGCP map configuration:

hostname# clear configure mgcp-map

Related Commands

Commands
Description

debug mgcp

Enables MGCP debug information.

mgcp-map

Defines an MGCP map and enables MGCP map configuration mode.

show conn

Displays the connection state for different connection types.

show mgcp

Displays information about MGCP sessions established through the FWSM.


clear configure monitor-interface

To remove all monitor-interface commands from the running configuration and restore the default interface health monitoring, use the clear configure monitor-interface command in global configuration mode.

clear configure monitor-interface

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

2.2(1)

This command was introduced.


Usage Guidelines

By default, virtual interfaces are not monitored for failover. Using the clear monitor-interface command clears the monitor-interface commands from the running configuration. To view the monitor-interface commands in the running configuration, use the show running-config monitor-interface command.

Examples

The following example clears the monitor-interface commands from the running configuration:

hostname(config)# clear configure monitor-interface
hostname(config)#

Related Commands

Command
Description

monitor-interface

Enables health monitoring of a designated interface for failover purposes.

show running-config monitor-interface

Displays the monitor-interface commands in the running configuration.


clear configure mroute

To remove the mroute commands from the running configuration, use the clear configure mroute command in global configuration mode.

clear configure mroute

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example shows how to remove the mroute commands from the configuration:

hostname(config)# clear configure mroute
hostname(config)#

Related Commands

Command
Description

mroute

Configures a static multicast route.

show mroute

Displays IPv4 multicast routing table.

show running-config mroute

Displays configured multicast routes.


clear configure mtu

To clear the configured maximum transmission unit values on all interfaces, use the clear configure mtu command in global configuration mode.

clear configure mtu

Syntax Description

This command has no arguments or keywords.

Defaults

Using the clear configure mtu command sets the maximum transmission unit to the default of 1500 for all Ethernet interfaces.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example clears the current maximum transmission unit values on all interfaces:

hostname(config)# clear configure mtu

Related Commands

Command
Description

mtu

Specifies the maximum transmission unit for an interface.

show running-config mtu

Displays the current maximum transmission unit block size.


clear configure multicast-routing

To remove the multicast-routing command from the running configuration, use the clear configure multicast-routing command in global configuration mode.

clear configure multicast-routing

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure multicast-routing command removes the multicast-routing from the running configuration. The no multicast-routing command also removes the multicast-routing command from the running configuration.

Examples

The following example shows how to remove the multicast-routing command from the running configuration:

hostname(config)# clear configure multicast-routing

Related Commands

Command
Description

multicast-routing

Enables multicast routing on the FWSM.


clear configure name

To clear the list of names from the configuration, use the clear configure name command in global configuration mode.

clear configure name

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear name command was introduced.

3.1(1)

This command was changed to clear configure name.


Examples

The following example shows how to clear the name list:

hostname(config)# clear configure name

Related Commands

Command
Description

name

Associates a name with an IP address.

show running-config name

Displays the list of names associated with IP addresses.


clear configure nat

To remove the NAT configuration, use the clear configure nat command in privileged EXEC mode.

clear configure nat

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Privileged EXEC


Command History

Release
Modification

1.1(1)

This command was introduced.

2.2(1)

This command was modified to support UDP maximum connections for local hosts.

3.1(1)

This command was changed from clear nat.


Usage Guidelines

The following applies to transparent firewall mode:


Note In transparent firewall mode, only NAT id 0 is valid.


Examples

The following example shows how to remove the NAT configuration:

hostname(config)# clear configure nat

Related Commands

Command
Description

nat

Associates a network with a pool of global IP addresses.

show running-config nat

Displays a pool of global IP addresses that are associated with the network.


clear configure object-group

To remove all the object group commands from the configuration, use the clear configure object-group command in global configuration mode.

clear configure object-group [{protocol | service | icmp-type | network}]

Syntax Description

icmp-type

(Optional) Clears all ICMP groups.

network

(Optional) Clears all network groups.

protocol

(Optional) Clears all protocol groups.

service

(Optional) Clears all service groups.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear object-group.


Examples

The following example shows how to remove all the object-group commands from the configuration:

hostname(config)# clear configure object-group

Related Commands

Command
Description

group-object

Adds network object groups.

network-object

Adds a network object to a network object group.

object-group

Defines object groups to optimize your configuration.

port-object

Adds a port object to a service object group.

show running-config object-group

Displays the current object groups.


clear configure passwd

To clear the login password configuration and restore the default setting of "cisco," use the clear configure passwd command in global configuration mode.

clear configure {passwd | password}

Syntax Description

passwd | password

You can enter either command; they are aliased to each other.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear passwd command was introduced.

3.1(1)

This command was changed to clear configure passwd.


Examples

The following example clears the login password and restores it to the default of "cisco":

hostname(config)# clear configure passwd

Related Commands

Command
Description

enable

Enters privileged EXEC mode.

enable password

Sets the enable password.

passwd

Sets the login password.

show curpriv

Shows the currently logged in username and the user privilege level.

show running-config passwd

Shows the login password in encrypted form.


clear configure pim

To clear all of the global pim commands from the running configuration, use the clear configure pim command in global configuration mode.

clear configure pim

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure pim command clears all of the pim commands from the running configuration. To clear PIM traffic counters and topology information, use the clear pim counters and the clear pim topology commands.

The clear configure pim command only clears the pim commands entered in global configuration mode; it does not clear the interface-specific pim commands.

Examples

The following example shows how to clear all pim commands from the running configuration:

hostname(config)# clear configure pim

Related Commands

Command
Description

clear pim topology

Clears the PIM topology table.

clear pim counters

Clears the PIM traffic counters.

show running-config pim

Displays the pim commands in the running configuration.


clear configure policy-map

To remove the policy-map specification from the configuration, use the clear configure policy-map command in global configuration mode.

clear configure policy-map

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

This example shows the clear configure policy-map command:

hostname(config)# clear configure policy-map

Related Commands

Command
Description

policy-map

Configures a policy; that is, an association of a traffic class and one or more actions.

show running-config policy-map

Displays the entire policy configuration.


clear configure prefix-list

To remove the prefix-list commands from the running configuration, use the clear configure prefix-list command in global configuration mode.

clear configure prefix-list [prefix-list-name]

Syntax Description

prefix-list-name

(Optional) The name of a prefix list. When a prefix list name is specified, only the commands for that prefix list are removed from the configuration.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced (as clear prefix-list).

3.1(1)

This command was changed from clear prefix-list to clear configure prefix-list.


Usage Guidelines

The clear configure prefix-list command removes the prefix-list commands and the prefix-list description commands from the running configuration. If a prefix list name is specified, then the prefix-list command and prefix-list description command, if present, for that prefix list only are removed from the running configuration.

This command does not remove the no prefix-list sequence command from the running configuration.

Examples

The following example removes all prefix-list commands from the running configuration for a prefix list named MyPrefixList:

hostname# clear configure prefix-list MyPrefixList

Related Commands

Command
Description

show running-config prefix-list

Displays the prefix-list commands in the running configuration.


clear configure privilege

To remove the configured privilege levels for commands, use the clear configure privilege command in global configuration mode.

clear configure privilege

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear privilege command was introduced.

3.1(1)

This command was changed from clear privilege.


Usage Guidelines

There is no undo.

Examples

This example shows how to reset the configured privilege levels for the commands:

hostname(config)# clear configure privilege

Related Commands

Command
Description

privilege

Configures the command privilege levels.

show curpriv

Displays current privilege level

show running-config privilege

Displays privilege levels for commands.


clear configure rip

To clear the rip commands from the running configuration, use the clear configure rip command in global configuration mode.

clear configure rip

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced (as clear rip).

3.1(1)

This command was changed from clear rip to clear configure rip.


Usage Guidelines

The clear configure rip command removes all rip commands from the configuration. Use the no form of the commands to clear specific commands.

Examples

The following example clears all RIP commands from the running configuration:

hostname(config)# clear configure rip

Related Commands

Command
Description

debug rip

Displays debug information for RIP.

rip

Configures RIP on the specified interface.

show running-config rip

Displays the RIP commands in the running configuration.


clear configure route

To remove the route commands from the configuration that do not contain the connect keyword, use the clear configure route command in global configuration mode.

clear configure route [interface_name ip_address [netmask gateway_ip]]

Syntax Description

gateway_ip

(Optional) Specifies the IP address of the gateway router (the next hop address for this route).

interface_name

(Optional) Internal or external network interface name.

ip_address

(Optional) Internal or external network IP address.

netmask

(Optional) Specifies a network mask to apply to the ip_address.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced (as clear route).

3.1(1)

This command was changed from clear route to clear configure route.


Usage Guidelines

Use 0.0.0.0 to specify a default route. You can abbreviate the 0.0.0.0 IP address as 0 and the 0.0.0.0 netmask as 0.

Examples

The following example shows how to remove the route commands from the configuration that do not contain the connect keyword:

hostname(config)# clear configure route

Related Commands

Command
Description

route

Specifies a static or default route for the an interface.

show route

Displays route information.

show running-config route

Displays configured routes.


clear configure route-map

To remove all of the route maps, use the clear configure route-map command in global configuration mode.

clear configure route-map

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced (as clear route-map).

3.1(1)

This command was changed from clear route-map to clear configure route-map.


Usage Guidelines

Use the clear configure route-map command in global configuration mode to remove all route-map commands in the configuration. The route-map command is used to configure conditions of redistributing the routes from one routing protocol into another routing protocol.

To remove individual route-map commands, use the no route-map command.

Examples

The following example shows how to remove the conditions of redistributing routes from one routing protocol into another routing protocol:

hostname(config)# clear configure route-map

Related Commands

Command
Description

route-map

Defines the conditions for redistributing routes from one routing protocol into another.

show running-config route-map

Displays the information about the route map configuration.


clear configure router

To clear all router commands from the running configuration, use the clear configure router command in global configuration mode.

clear configure router [ospf id]

Syntax Description

id

The OSPF process ID.

ospf

Specifies that only OSPF commands are removed from the configuration.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced (as clear router).

3.1(1)

This command was changed from clear router to clear configure router.


Examples

The following example clears all OSPF commands associated with OSPF process 1 from the running configuration:

hostname(config)# clear configure router ospf 1
hostname(config)#

Related Commands

Command
Description

show running-config router

Displays the commands in the global router configuration.


clear configure service-policy

To clear the service policy configuration for enabled policies, use the clear configure service-policy command in privileged EXEC mode.

clear configure service-policy

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Privileged EXEC


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following is an example of the clear service-policy command:

hostname(config)# clear configure service-policy

Related Commands

Command
Description

show service-policy

Displays the service policy.

show running-config service-policy

Displays the service policies configured in the running configuration.

service-policy

Configures the service policy.

clear service-policy

Clears service policy statistics.


clear configure snmp-map

To clear the SNMP map configuration, use the clear configure snmp-map command in global configuration mode.

clear configure snmp-map

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The clear configure snmp-map command removes the SNMP map configuration.

Examples

The following example clears the SNMP map configuration:

hostname# clear configure snmp-map

Related Commands

Commands
Description

class-map

Defines the traffic class to which to apply security actions.

deny version

Disallows traffic using a specific version of SNMP.

inspect snmp

Enable SNMP application inspection.

snmp-map

Defines an SNMP map and enables SNMP map configuration mode.


clear configure snmp-server

To disable the Simple Network Management Protocol (SNMP) server, use the clear configure snmp-server command in global configuration mode.

clear configure snmp-server

Syntax Description

This command has no arguments or keywords.

Defaults

This command has no default settings.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration

·

·

·

·

·


Command History

Release
Modification

3.1(1)

Support for this command was introduced.


Examples

This example shows how to disable the SNMP server:

hostname #clear snmp-server

Related Commands

Command
Description

snmp-server

Provides the security appliance event information through SNMP.

show snmp-server statistics

Displays information about the SNMP server configuration.


clear configure ssh

To clear all SSH commands from the running configuration, use the clear configure ssh command in global configuration mode.

clear configure ssh

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was changed from the clear ssh comma nd to the clear configure ssh command.


Usage Guidelines

This command clears all SSH commands from the configuration. To clear specific commands, use the no form of those commands.

Examples

The following example clears all SSH commands from the configuration:

hostname(config)# clear configure ssh

Related Commands

Command
Description

show running-config ssh

Displays the current SSH commands in the running configuration.

ssh

Allows SSH connectivity to the FWSM from the specified client or network.

ssh scopy enable

Enables a secure copy server on the FWSM.

ssh timeout

Sets the timeout value for idle SSH sessions.

ssh version

Restricts the FWSM to using either SSH Version 1 or SSH Version 2.


clear configure static

To remove all the static commands from the configuration, use the clear configure static command in global configuration mode.

clear configure static

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

2.2(1)

This command was modified to support UDP maximum connections for local hosts.

3.1(1)

This command was changed from clear static.


Examples

This example shows how to remove all the static commands from the configuration:

hostname(config)# clear configure static

Related Commands

Command
Description

show running-config static

Displays all static commands in the configuration.

static

Configures a persistent one-to-one address translation rule by mapping a local IP address to a global IP address.


clear configure sunrpc-server

To clear the remote processor call services from the FWSM, use the clear configure sunrpc-server command in global configuration mode.

clear configure sunrpc-server [active]

Syntax Description

active

(Optional) Identifies the SunRPC services that are currently active on the FWSM.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Usage Guidelines

The sunrpc-server command displays the configured router ospf commands.


Note If the highest-level IP address on the FWSM is a private address, this address is sent in hello packets and database definitions. To prevent this action, set the router-id ip_address to a global address.


Examples

The following example shows how to clear the SunRPC services from the FWSM:

hostname(config)# clear configure sunrpc-server active

Related Commands

Command
Description

sunrpc-server

Creates the SunRPC services table.

show running-config sunrpc-server

Displays the information about the SunRPC configuration.


clear configure sysopt

To clear the configuration for all sysopt commands, use the clear configure sysopt command in global configuration mode.

clear configure sysopt

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear sysopt.


Examples

The following example clears all sysopt command configuration:

hostname(config)# clear configure sysopt

Related Commands

Command
Description

show running-config sysopt

Shows the sysopt command configuration.

sysopt connection permit-ipsec

Permits any packets that come from an IPSec tunnel without checking any access lists for interfaces.

sysopt connection tcpmss

Overrides the maximum TCP segment size or ensures that the maximum is not less than a specified size.

sysopt connection timewait

Forces each TCP connection to linger in a shortened TIME_WAIT state after the final normal TCP close-down sequence.

sysopt nodnsalias

Disables alteration of the DNS A record address when you use the alias command.


clear configure telnet

To remove the Telnet connection and idle timeout from the configuration, use the clear configure telnet command in global configuration mode.

clear configure telnet

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

The keyword configure was added.


Examples

This example shows how to remove the Telnet connection and the idle timeout from the FWSM configuration:

hostname(config)# clear configure telnet

Related Commands

Command
Description

show running-config telnet

Displays the current list of IP addresses that are authorized to use Telnet connections to the FWSM.

telnet

Adds Telnet access to the console and sets the idle timeout.


clear configure terminal

To clear the terminal display width setting, use the clear configure terminal command in global configuration mode.

clear configure terminal

Syntax Description

This command has no keywords or arguments.

Defaults

The default display width is 80 columns.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

2.2(1)

The clear terminal command was introduced.

3.1(1)

This command was changed to clear configure terminal.


Examples

The following example clears the display width:

hostname# clear configure terminal

Related Commands

Command
Description

terminal

Sets the terminal line parameters.

terminal width

Sets the terminal display width.

show running-config terminal

Displays the current terminal settings.


clear configure time-range

To clear all configured time ranges, use the clear configure time-range command in global configuration mode.

clear configure time-range

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example clears all configured time ranges:

hostname(config)# clear configure time-range

Related Commands

Command
Description

show time-range

Shows all time range entries.


clear configure timeout

To restore the default idle time durations in the configuration, use the clear configure timeout command in global configuration mode.

clear configure timeout

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear timeout.


Examples

This example shows how to remove the maximum idle time durations from the configuration:

hostname(config)# clear configure timeout

Related Commands

Command
Description

show running-config timeout

Displays the timeout value of the designated protocol.

timeout

Sets the maximum idle time duration.


clear configure tunnel-group

To remove all or specified tunnel groups from the configuration, use the clear config tunnel-group command in global configuration.

clear config tunnel-group [name]

Syntax Description

name

(Optional) Specifies the name of a tunnel group.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

3.1(1)

This command was introduced.


Examples

The following example entered in global configuration mode, removes the toengineering tunnel group from the configuration:

hostname(config)# clear config tunnel-group toengineering
hostname(config)# 

Related Commands

Command
Description

show running-config tunnel-group

Displays information about all or selected tunnel-groups.

tunnel-group

Enters tunnel-group subconfiguration mode for the specified type.


clear configure url-block

To clear clears URL pending block buffer and long URL support configuration, use the clear configure url-block command in global configuration mode.

clear configure url-block

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear url-block.


Usage Guidelines

The clear configure url-block command clears URL pending block buffer and long URL support configuration.

Examples

The following example clears URL pending block buffer and long URL support configuration:

hostname# clear configure url-block

Related Commands

Commands
Description

clear url-block block statistics

Clears the block buffer usage counters.

show url-block

Displays information about the URL cache, which is used for buffering URLs while waiting for responses from an N2H2 or Websense filtering server.

url-block

Manage the URL buffers used for web server responses.

url-cache

Enables URL caching while pending responses from an N2H2 or Websense server and sets the size of the cache.

url-server

Identifies an N2H2 or Websense server for use with the filter command.


clear configure url-cache

To clear the URL cache, use the clear configure url-cache command in global configuration mode.

clear configure url-cache

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear url-cache.


Usage Guidelines

The clear configure url-cache command clears the URL cache.

Examples

The following example clears the URL cache:

hostname# clear configure url-cache

Related Commands

Commands
Description

clear url-cache statistics

Removes url-cache command statements from the configuration.

filter url

Directs traffic to a URL filtering server.

show url-cache statistics

Displays information about the URL cache, which is used for buffering URLs while waiting for responses from an N2H2 or Websense filtering server.

url-cache

Enables URL caching while pending responses from an N2H2 or Websense server and sets the size of the cache.

url-server

Identifies an N2H2 or Websense server for use with the filter command.


clear configure url-server

To clear the URL filtering server configuration, use the clear configure url-server command in global configuration mode.

clear configure url-server

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

This command was introduced.

3.1(1)

This command was changed from clear url-server.


Usage Guidelines

The clear configure url-server command clears the URL filtering server configuration.

Examples

The following example URL filtering server configuration:

hostname# clear configure url-server

Related Commands

Commands
Description

clear url-server

Clears the URL filtering server statistics.

show url-server

Displays information about the URL cache, which is used for buffering URLs while waiting for responses from an N2H2 or Websense filtering server.

url-cache

Enables URL caching while pending responses from an N2H2 or Websense server and sets the size of the cache.

url-block

Manages the URL buffers used for web server responses while waiting for a filtering decision from the filtering server.

url-server

Identifies an N2H2 or Websense server for use with the filter command.


clear configure username

To clear the username database, use the clear configure username command. To clear the configuration for a particular user, use this command and append the username.

clear configure username [name]

Syntax Description

name

(Optional) Specifies the username to be deleted.


Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear username command was introduced.

3.1(1)

This command was changed from clear username.


Usage Guidelines

The internal user authentication database consists of the users entered with the username command. The login command uses this database for authentication.

Examples

The following example shows how to clear the configuration for the user named anyuser:

hostname(config)# clear configure username anyuser

Related Commands

Command
Description

show running-config username

Displays the running configuration for a particular user or for all users.

username

Adds a user to the FWSM database.

username attributes

Lets you configure AVPs for specific users.


clear configure virtual

To remove the authentication virtual server from the configuration, use the clear configure virtual command in global configuration mode.

clear configure virtual

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode
Firewall Mode
Security Context
Routed
Transparent
Single
Multiple
Context
System

Global configuration


Command History

Release
Modification

1.1(1)

The clear virtual command was introduced.

3.1(1)

This command was changed from clear virtual.


Usage Guidelines

There is no undo.

Examples

This example shows the clear configure virtual command:

hostname(config)# clear configure virtual

Related Commands

Command
Description

show running-config virtual

Displays the IP address for the authentication virtual server.

virtual http

Allows separate authentication with the FWSM and with the HTTP server.

virtual telnet

Authenticates users with the virtual Telnet server for traffic types for which the FWSM does not supply an authentication prompt.