-
Cisco Prime Network Analysis Module 5.1 Command Reference
-
Preface
-
Command-Line Interface
-
NAM CLI Commands: application - device waas
-
NAM CLI Commands: email - managed device community
-
NAM CLI Commands: metric export host - show certificate request
-
NAM CLI Commands: show clock details - show monitor urlfilter request
-
NAM CLI Commands: show patches - web user
-
NAM Maintenance Partition CLI
-
Acronyms
-
NAM CLI Command - Platform Matrix
-
Index
-
Feedback
Table Of Contents
NAM CLI Commands:
email - managed device communityip http secure install certificate
NAM CLI Commands:
email - managed device community
This chapter provides information about the following commands:
•
exit
•
•
To set up an e-mail server that sends both alarm and report data through e-mail, enable or disable alarm messages sent through e-mail, and to enter the subcommand mode, use the email command. To remove the e-mail server, use the no email server command. To stop sending out both scheduled report data and alarm messages through e-mail, use the no email alarm command.
no email server
no email alarm
Syntax Description
This command has no arguments or keywords.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Note
When you enter the e-mail subcommand mode, the following commands are available:
•
•
•
•
•
•
•
Examples
This example shows how to set up the NAM to send scheduled reports through e-mail to abc@example.com and xyz@example.com:
root@localhost# emailproot@localhost(sub-email)# server example-email.domain.comroot@localhost(sub-email)# alarm enableroot@localhost(sub-email)# alarm recipients admin@domain.com another_admin@domain.comroot@localhost(sub-email)# exitSuccessfully set email configuration settings.Related Commands
entity alias
To configure an entity alias for the entity MIB, use the entity alias command.
entity alias string
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
The entity MIB makes the entPhysicalTable and entLastChangeTime available through SNMP.
The clear configuration command deletes the entity alias and asset ID by setting them to an empty string.
Examples
This example shows how to log out of the NAM:
root@localhost# entity alias 123456Related Commands
entity assetid
To configure an entity MIB asset ID, use the entity assetid command.
entity assetid string
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
The entity MIB makes the entPhysicalTable and entLastChangeTime available through SNMP.
The clear configuration command deletes the entity alias and asset ID by setting them to an empty string.
Examples
This example shows how to log out of the NAM:
root@localhost# entity assetid 1234566Related Commands
exit
To log out of the system or to leave a subcommand mode, use the exit command.
exit
Syntax Description
This command has no arguments or keywords.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
To leave a subcommand mode, use the exit command. The exit command saves any changes before leaving the submode.
To exit from the NAM and go back to the Branch Router console, enter $ and then quit. There is no command to exit from NAM and go back to the WAE/WAVE console. You need to issue virtual-blade 1 session clear (1 denotes slot 1) on another WAE/WAVE connection to terminate the session.
Examples
This example shows how to log out of the NAM:
root@localhost# exitexsession
To enable or disable outside logins, use the exsession command.
exsession on [ssh]
exsession off
Syntax Description
on
Enables outside logins.
off
Disables outside logins.
ssh
(Optional) Sets the outside logins to SSH.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
A strong crypto patch is required if you use the ssh option.
Examples
This example shows how to allow outside logins to the NAM:
root@localhost# exsession onhelp
To display help, use the help command or ?. You must press the Enter key after entering the ?.
help | ?
Syntax Description
This command has no arguments or keywords.
Defaults
This command has no default settings.
Command Modes
Command mode or subcommand mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to display help:
nam.domain.com# help? - display helpapplication - configure an application [group]audit-trail - enable logging Web GUI and CLI accessesautocreate-data-source - enable data source autocreation featurecdp - set cdp settingsclear - clear access log / system alertsclock - set system clockip address
To set the system IP address, use the ip address command.
ip address ip-address subnet-mask
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
After setting the IP address, the gateway address may be set to 0.0.0.0. When this situation occurs, use the ip gateway command to set the gateway address.
The broadcast address is automatically set with an address that is created using the new IP address and network mask. To select a different broadcast address, use the ip broadcast command.
Examples
This example shows how to set the system IP address:
root@localhost# ip address 172.20.104.74 255.255.255.192IP address and netmask configured successfully.NOTE: Default gateway address has been reset to 0.0.0.0Please use 'ip gateway' command to configure it.root@localhost# ip gateway 172.20.104.66root@localhost# show ipIP address: 172.20.104.74Subnet mask: 255.255.255.192IP Broadcast: 172.20.255.255DNS Name: namlab-kom8.cisco.comDefault Gateway: 172.20.104.66Nameserver(s): 171.69.2.133HTTP server: EnabledHTTP secure server: DisabledHTTP port: 80HTTP secure port: 443TACACS+ configured: NoTelnet: EnabledSSH: Disabledroot@localhost#Related Commands
ip broadcast
ip domain
ip host
show ipip broadcast
To set the system broadcast address, use the ip broadcast command.
ip broadcast broadcast-address
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set the system broadcast address:
root@localhost# ip broadcast 172.20.104.127root@localhost#Related Commands
ip address
ip domain
ip host
ip interface
show ip
ip domain
To set the system domain name, use the ip domain command.
ip domain name
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set the IP domain name:
root@nam# ip domain cisco.comroot@nam.cisco.com#Related Commands
ip address
ip domain
ip host
ip interface
show ipip gateway
To set the system default gateway address, use the ip gateway command.
ip gateway default-gateway
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set the IP gateway address:
root@localhost# ip gateway 123.34.56.0Related Commands
ip address
ip broadcast
ip host
ip interface
show ipip host
To set the system hostname, use the ip host command.
ip host name
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set the IP hostname:
root@NAM.cisco.com# ip host orionroot@orion.cisco.com#Related Commands
ip address
ip domain
ip interface
show ipip hosts add
To add or replace host entries, use the ip hosts add command.
ip hosts add ip-address host-name [alias1] [alias2]
ip hosts add ftp://user:passwd@host/full-path/filename
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Use the ip hosts add ftp://user:passwd@host/full-path/filename command to import host entries to the NAM. A maximum of 1,000 entries can exist on the NAM.
Examples
This example shows how to add a specific IP host:
root@localhost# ip hosts add 30.50.68.10 orionRelated Commands
ip hosts delete
To delete host entries, use the ip hosts delete command.
ip hosts delete ip-address
ip hosts delete ftp://user:passwd@host/full-path/filename
Syntax Description
ip-address
Sets the host IP address.
ftp://user:passwd@host/full-path/filename
Sets the path to the host parameters file location.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to delete a specific IP host:
root@localhost# ip hosts delete 30.50.68.10 orionRelated Commands
ip http port
To set the HTTP port, use the ip http port command.
ip http port 1-65535
Syntax Description
Not all ports are available to be assigned. Most browsers block ports that are used for other applications. Table 3-1 lists the commonly blocked ports.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to specify an HTTP port for the NAM:
root@localhost# ip http port 233Related Commands
ip http secure generate
ip http server
ip http tacacs+
show ipip http secure generate
To generate a certificate request, use the ip http secure generate command.
ip http secure generate {certificate-request | self-signed-certificate}
Syntax Description
certificate-request
Generates a certificate request.
self-signed-certificate
Generates a self-signed certificate.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set up a secure server:
root@localhost# ip http secure generate certificate-requestRelated Commands
ip http port
ip http secure install certificate
ip http server
ip http tacacs+
show ipip http secure install certificate
To install a certificate, use the ip http secure install certificate command.
ip http secure install certificate
Syntax Description
This command has no arguments or keywords.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set up a secure server:
root@localhost# ip http secure install certificateRelated Commands
ip http port
ip http secure generate
ip http server
ip http tacacs+
show ipip http secure port
To set up a secure server port, use the ip http secure port command.
ip http secure port port
Syntax Description
Not all ports are available to be assigned. Most browsers block ports that are used for other applications. Table 3-1 lists the commonly blocked ports.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set up a secure server port:
root@localhost# ip http secure port 30Related Commands
ip http port
ip http secure generate
ip http secure install certificate
ip http server
ip http tacacs+
show ipip http secure server
To set up a secure server, use the ip http secure server command.
ip http secure server {enable | disable}
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
A strong crypto patch is required before applying this command.
Examples
This example shows how to set up a secure server:
root@localhost# ip http secure server enableRelated Commands
ip http port
ip http secure generate
ip http secure install certificate
ip http server
ip http tacacs+
show ipip http server
To enable a HTTP server, use the ip http server command.
ip http server {enable | disable}
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to enable a HTTP server:
root@localhost# ip http server enableRelated Commands
ip http port
ip http secure generate
ip http tacacs+
show ipip http tacacs+
To enable a TACACS+ server, use the ip http tacacs+ command.
ip http tacacs+ enable primary-srv [backup-srv] [en-secret-key encrypted-secret-key]
ip http tacacs+ disable
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Usage Guidelines
The en-secret-key keyword is used only during the importing of NAM configurations. This key cannot be used unless you can specify a DES-encrypted string as the argument to this keyword, as in this example:
root@localhost# ip http tacacs+ enable 10.0.0.1 10.0.0.2 en-secret-key "dEAF="Examples
These examples show how to enable and disable TACACS+.
To enable TACACS+, enter this command:
root@hostname.cisco.com# ip http tacacs+ enable 10.0.0.1 10.0.0.2Secret key:Repeat secret key:Successfully enabled Tacacs+root@hostname.cisco.com# show ipIP address: 172.20.98.177Subnet mask: 255.255.255.192IP Broadcast: 172.20.255.255DNS Name: hostname.cisco.comDefault Gateway: 172.20.98.129Nameserver(s): 171.69.2.133HTTP server: EnabledHTTP secure server: DisabledHTTP port: 80HTTP secure port: 443TACACS+ configured: YesTACACS+ primary server: 10.0.0.1TACACS+ backup server : 10.0.0.2Telnet: EnabledSSH: Disabledroot@hostname.cisco.com#To disable TACACS+, enter this command:
root@hostname.cisco.com# ip http tacacs+ disableTACACS+ disabled successfully.root@hostname.cisco.com# show ipIP address: 172.20.98.177Subnet mask: 255.255.255.192IP Broadcast: 172.20.255.255DNS Name: hostname.cisco.comDefault Gateway: 172.20.98.129Nameserver(s): 171.69.2.133HTTP server: EnabledHTTP secure server: DisabledHTTP port: 80HTTP secure port: 443TACACS+ configured: NoTelnet: EnabledSSH: Disabledroot@hostname.cisco.com#Related Commands
ip http port
ip http secure generate
ip http server
show ipip interface
To select the external port or the internal ports for the NME-NAM, use the ip interface command.
ip interface external | internal
Note
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported only on the NME-NAM.
Examples
This example shows how to specify an interface port for the NME-NAM:
root@localhost# ip interface externalRelated Commands
ip nameserver
To set or disable system name server entries, use the ip nameserver command.
ip nameserver ip-addr ip-addr ip-addr
or
ip nameserver disable
Syntax Description
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
Examples
This example shows how to set a system name server:
root@localhost# ip nameserver 171.69.2.133Related Commands
license install
To install a license file on a WAE device that has installed NAM Virtual Blade software, use the license install command.
license install url
Syntax Description
url
Specifies the location of the license file to install;
ftp://<username>@<host>/<path>/<license_filename>
Syntax Description
This command has no arguments or keywords.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is valid only on NAM WAAS Virtual Blade platform.
Examples
This example shows how to install the license file on the WAE device that has NAM installed on it:
root@localhost# license install ftp://joseph@host_name/usr/logout
To log out of the system, use the logout command.
logout
Syntax Description
This command has no arguments or keywords.
Defaults
This command has no default settings.
Command Modes
Command mode
Usage Guidelines
This command is supported on all NAM platforms.
To exit from the NAM and go back to the Branch Router console, enter $ and then quit. There is no command to exit from NAM and go back to the WAE/WAVE console. You need to issue virtual-blade 1 session clear (1 denotes slot 1) on another WAE/WAVE connection to terminate the session.
Examples
This example shows how to log out of the NAM:
root@localhost# logoutmanaged-device address
To configure the managed device address, use the managed-device address command.
managed-device address <ip-address>
Note
Syntax Description
Defaults
No default behavior or values.
Command Modes
Command mode
Usage Guidelines
This command is supported only on Cisco NAM 2200 Series appliances.
Examples
The following example sets the managed device IP address, and then shows the managed device:
root@nam.cisco.com# managed-device address 10.0.0.1root@nam.cisco.com# show managed-deviceroot@nam.cisco.com# 10.0.0.1managed-device community
To configure the managed device SNMP community, use the managed-device community command.
managed-device community <rw-community>
Note
Syntax Description
Defaults
None.
Command Modes
Command mode
Usage Guidelines
This command is supported only on Cisco NAM 2200 Series appliances.
Examples
The following example sets the managed-device community:
root@nam.cisco.com# managed-device communityroot@nam.cisco.com#
