-
Cisco Security Appliance Command Reference, Version 7.2
-
About this Guide
-
Using the Command Line Interface
-
aaa accounting command through accounting-server-group Commands
-
acl-netmask-convert through auto-update timeout Commands
-
backup interface through browse networks Commands
-
cache through clear compression Commands
-
clear conn through clear configure vpn-load-balancing Commands
-
clear console-output through clear xlate Commands
-
client-access-rule through crl-configure Commands
-
crypto ca authenticate through customization Commands
-
ddns through debug xdmcp Commands
-
default through duplex Commands
-
email through functions Commands
-
gateway through hw-module module shutdown Commands
-
icmp through imap4s Commands
-
inspect ctiqbe through inspect xdmcp Commands
-
intercept-dhcp through issuer-name Commands
-
java-trustpoint through kill Commands
-
l2tp tunnel hello through log-adj-changes Commands
-
logging asdm through logout message Commands
-
mac-address through multicast-routing Commands
-
name through override-account-disable Commands
-
packet-tracer through pwd Commands
-
queue-limit through router rip Commands
-
same-security-traffic through show asdm sessions Commands
-
show asp drop through show curpriv Commands
-
show ddns through show ipv6 traffic Commands
-
show isakmp sa through show route Commands
-
show running-config through show running-config isakmp Commands
-
show running-config ldap through show running-config webvpn auto-signon Commands
-
show service-policy through show xlate Commands
-
shun through sysopt radius ignore-secret Commands
-
tcp-map through tx-ring-limit Commands
-
urgent-flag through write terminal Commands
-
Table Of Contents
clear console-output through clear xlate Commands
clear crypto accelerator statistics
clear crypto protocol statistics
clear ipv6 access-list counters
clear memory delayed-free-poisoner
clear priority-queue statistics
clear service-policy inspect gtp
clear service-policy inspect radius-accounting
clear url-block block statistics
clear console-output through clear xlate Commands
clear console-output
To remove the currently captured console output, use the clear console-output command in privileged EXEC mode.
clear console-output
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
•
•
•
•
Command History
Examples
The following example shows how to remove the currently captured console output:
hostname# clear console-outputRelated Commands
clear counters
To clear the protocol stack counters, use the clear counters command in global configuration mode.
clear counters [all | context context-name | summary | top N ] [detail] [protocol protocol_name [:counter_name]] [ threshold N]
Syntax Description
Defaults
clear counters summary detail
Command Modes
The following table shows the modes in which you can enter the command:
Global configuration
•
•
•
•
•
Command History
Examples
This example shows how to clear the protocol stack counters:
hostname(config)# clear countersRelated Commands
clear crashinfo
To delete the contents of the crash file in Flash memory, enter the clear crashinfo command in privileged EXEC mode.
clear crashinfo
Syntax Description
This command has no arguments or keywords.
Defaults
No default behaviors or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
•
•
—
•
Command History
Usage Guidelines
This command has no usage guidelines.
Examples
The following command shows how to delete the crash file:
hostname# clear crashinfoRelated Commands
clear crypto accelerator statistics
To clear the the global and accelerator-specific statistics from the crypto accelerator MIB, use the clear crypto accelerator statistics command in global configuration and privileged EXEC modes.
clear crypto accelerator statistics
Syntax Description
This command has no keywords or variables.
Defaults
No default behavior or values.
Command Modes
The following table shows the mode in which you can enter the command:
Global configuration
•
•
•
—
—
Privileged EXEC
•
•
•
—
—
Command History
Examples
The following example entered in global configuration mode, displays crypto accelerator statistics:
hostname(config)# clear crypto accelerator statisticshostname(config)#Related Commands
clear crypto ca crls
To remove the CRL cache of all CRLs associated with a specified trustpoint or to remove the CRL cache of all CRLs, use the clear crypto ca crls command in global configuration.
clear crypto ca crls [trustpointname]
Syntax Description
trustpointname
(Optional) The name of a trustpoint. If you do not specify a name, this command clears all CRLs cached on the system.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Global configuration
•
•
•
•
Command History
Examples
The following example issued in global configuration mode, removes all of the CRL cache from all CRLs from the security appliance:
hostname(config)# clear crypto ca crlshostname(config)#Related Commands
crypto ca crl request
Downloads the CRL based on the CRL configuration of the trustpoint.
show crypto ca crls
Displays all cached CRLs or CRLs cached for a specified trustpoint.
clear [crypto] ipsec sa
To remove the IPSec SA counters, entries, crypto maps or peer connections, use the clear [crypto] ipsec sa command in global configuration mode. To clear all IPSec SAs, use this command without arguments.
clear [crypto] ipsec sa [counters | entry {hostname | IP address} {esp | ah} {SPI}| map {map name} | peer {hostname | IP address}]
Be careful when using this command.
Syntax Description
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Global configuration
•
—
•
—
—
Command History
Examples
The following example, issued in global configuration mode, removes all of the IPSec SAs from the security appliance:
hostname(config)# clear ipsec sahostname(config)#The next example, issued in global configuration mode, deletes SAs with a peer IP address of 10.86.1.1.
hostname(config)# clear ipsec peer 10.86.1.1hostname(config)#
Related Commands
clear crypto protocol statistics
To clear the protocol-specific statistics in the crypto accelerator MIB, use the clear crypto protocol statistics command in global configuration or privileged EXEC modes.
clear crypto protocol statistics protocol
Syntax Description
Defaults
No default behavior or values.
Command Modes
The following table shows the mode in which you can enter the command:
Global configuration
•
•
•
—
—
Privileged EXEC
•
•
•
—
—
Command History
Examples
The following example entered in global configuration mode, clears all crypto accelerator statistics:
hostname(config)# clear crypto protocol statistics allhostname(config)#Related Commands
clear dhcpd
To clear the DHCP server bindings and statistics, use the clear dhcp command.
clear dhcpd {binding [IP_address] | statistics}
Syntax Description
binding
Clears all the client address bindings.
IP_address
Clears the binding for the specified IP address.
statistics
Clears statistical information counters.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Global configuration
•
•
•
•
—
Command History
Usage Guidelines
If you include the optional IP address in the clear dhcpd binding command, only the binding for that IP address is cleared.
To clear all of the DHCP server commands, use the clear configure dhcpd command.
Examples
The following example shows how to clear the dhcpd statistics:
hostname(config)# clear dhcpd statisticsRelated Commands
clear configure dhcpd
Removes all DHCP server settings.
show dhcpd
Displays DHCP binding, statistic, or state information.
clear dhcprelay statistics
To clear the DHCP relay statistic counters, use the clear dhcprelay statistics command in privileged EXEC mode.
clear dhcprelay statistics
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
—
•
•
—
Command History
Usage Guidelines
The clear dhcprelay statistics command only clears the DHCP relay statistic counters. To clear the entire DHCP relay configuration, use the clear configure dhcprelay command.
Examples
The following example shows how to clear the DHCP relay statistics:
hostname# clear dhcprelay statisticshostname#Related Commands
clear dns-hosts cache
To clear the DNS cache, use the clear dns-hosts cache command in privileged EXEC mode. This command does not clear static entries you added with the name command.
clear dns-hosts cache
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
•
•
•
—
Command History
Examples
The following example clears the DNS cache:
hostname# clear dns-hosts cacheRelated Commands
clear failover statistics
To clear the failover statistic counters, use the clear failover statistics command in privileged EXEC mode.
clear failover statistics
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
•
•
•
•
Command History
Usage Guidelines
This command clears the statistics displayed with the show failover statistics command and the counters in the Stateful Failover Logical Update Statistics section of the show failover command output. To remove the failover configuration, use the clear configure failover command.
Examples
The following example shows how to clear the failover statistic counters:
hostname# clear failover statisticshostname#Related Commands
debug fover
Displays failover debug information.
show failover
Displays information about the failover configuration and operational statistics.
clear fragment
To clear the operational data of the IP fragment reassembly module, enter the clear fragment command in privileged EXEC mode. This command clears either the currently queued fragments that are waiting for reassembly (if the queue keyword is entered) or clears all IP fragment reassembly statistics (if the statistics keyword is entered). The statistics are the counters, which tell how many fragments chains were successfully reassembled, how many chains failed to be reassembled, and how many times the maximum size was crossed resulting in overflow of the buffer.
clear fragment {queue | statistics} [interface]
Syntax Description
interface
(Optional) Specifies the security appliance interface.
queue
Clears the IP fragment reassembly queue.
statistics
Clears the IP fragment reassembly statistics.
Defaults
If an interface is not specified, the command applies to all interfaces.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
•
•
•
—
Command History
7.0(1)
The command was separated into two commands, clear fragment and clear configure fragment, to separate clearing of the configuration data from the operational data.
Examples
This example shows how to clear the operational data of the IP fragment reassembly module:
hostname# clear fragment queueRelated Commands
clear gc
To remove the garbage collection process statistics, use the clear gc command in privileged EXEC mode.
clear gc
Syntax Description
This command has no arguments or keywords.
Defaults
No default behaviors or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
•
•
—
•
Command History
Examples
The following example shows how to remove the garbage collection process statistics:
hostname# clear gcRelated Commands
clear igmp counters
To clear all IGMP counters, use the clear igmp counters command in privileged EXEC mode.
clear igmp counters [if_name]
Syntax Description
if_name
The interface name, as specified by the nameif command. Including an interface name with this command causes only the counters for the specified interface to be cleared.
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
—
•
—
—
Command History
Examples
The following example clears the IGMP statistical counters:
hostname# clear igmp countersRelated Commands
clear igmp group
Clears discovered groups from the IGMP group cache.
clear igmp traffic
Clears the IGMP traffic counters.
clear igmp group
To clear discovered groups from the IGMP group cache, use the clear igmp command in privileged EXEC mode.
clear igmp group [group | interface name]
Syntax Description
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
—
•
—
—
Command History
Usage Guidelines
If you do not specify a group or an interface, all groups are cleared from all interfaces. If you specify a group, only the entries for that group are cleared. If you specify an interface, then all groups on that interface are cleared. If you specify both a group and an interface, only the specified groups on the specified interface are cleared.
This command does not clear statically configured groups.
Examples
The following example shows how to clear all discovered IGMP groups from the IGMP group cache:
hostname# clear igmp groupRelated Commands
clear igmp counters
Clears all IGMP counters.
clear igmp traffic
Clears the IGMP traffic counters.
clear igmp traffic
To clear the IGMP traffic counters, use the clear igmp traffic command in privileged EXEC mode.
clear igmp traffic
Syntax Description
This command has no arguments or keywords.
Defaults
No default behavior or values.
Command Modes
The following table shows the modes in which you can enter the command:
Privileged EXEC
•
—
•
—
—
Command History
Examples
The following example clears the IGMP statistical traffic counters:
hostname# clear igmp trafficRelated Commands
clear igmp group
Clears discovered groups from the IGMP group cache.
clear igmp counters
Clears all IGMP counters.
clear interface
To clear interface statistics, use the clear interface command in privileged EXEC mode.
clear interface [physical_interface[.subinterface] | mapped_name | interface_name]
Syntax Description