Table Of Contents

clear configure through clear configure zonelabs-integrity Commands

clear configure

clear configure aaa

clear configure aaa-server

clear configure access-group

clear configure access-list

clear configure alias

clear configure arp

clear configure arp-inspection

clear configure asdm

clear configure auth-prompt

clear configure banner

clear configure ca certificate map

clear configure class

clear configure class-map

clear configure client-update

clear configure clock

clear configure command-alias

clear configure compression

clear configure console

clear configure context

clear configure crypto

clear configure crypto ca trustpoint

clear configure crypto dynamic-map

clear configure crypto isakmp

clear configure crypto isakmp policy

clear configure crypto map

clear configure ctl-provider

clear configure ddns

clear configure dhcpd

clear configure dhcprelay

clear configure dns

clear configure dynamic-access-policy-config

clear config dynamic-access-policy-record

clear configure established

clear configure failover

clear configure filter

clear configure fips

clear configure firewall

clear configure fixup

clear configure flow-export

clear configure fragment

clear configure ftp

clear configure global

clear configure group-delimiter

clear configure group-policy

clear configure hostname

clear configure http

clear configure icmp

clear configure imap4s

clear configure interface

clear configure ip

clear configure ip audit

clear configure ip local pool

clear configure ip verify reverse-path

clear configure ipv6

clear configure isakmp

clear configure isakmp policy

clear configure ldap attribute-map

clear configure logging

clear configure logging rate-limit

clear configure mac-address-table

clear configure mac-learn

clear configure mac-list

clear configure management-access

clear configure monitor-interface

clear configure mroute

clear configure mtu

clear configure multicast-routing

clear configure nac-policy

clear configure name

clear configure nat

clear configure nat-control

clear configure ntp

clear configure object-group

clear configure passwd

clear configure pim

clear configure policy-map

clear configure pop3s

clear configure prefix-list

clear configure priority-queue

clear configure privilege

clear configure regex

clear configure route

clear configure route-map

clear configure router

clear configure same-security-traffic

clear configure service-policy

clear configure sla monitor

clear configure smtps

clear configure smtp-server

clear configure snmp-map

clear configure snmp-server

clear configure ssh

clear configure ssl

clear configure static

clear configure sunrpc-server

clear configure sysopt

clear configure tcp-map

clear configure telnet

clear configure terminal

clear configure threat-detection

clear configure timeout

clear configure time-range

clear configure tls-proxy

clear configure tunnel-group

clear configure tunnel-group-map

clear configure url-block

clear configure url-cache

clear configure url-list

clear configure url-server

clear configure username

clear configure virtual

clear configure vpdn group

clear configure vpdn username

clear configure vpn-load-balancing

clear configure wccp

clear configure zonelabs-integrity

clear configure through clear configure zonelabs-integrity Commands

---

clear configure

To clear the running configuration, use the clear configure command in global configuration mode.

clear configure {primary | secondary | all | command}

Syntax Description

all	Clears the entire running configuration.
command	Clears the configuration for a specified command. For more information, see individual entries in this guide for each clear configure command command.
primary	Clears commands that are related to connectivity, including the following commands: •tftp-server •shun •route •ip address •mtu •failover •monitor-interface •boot
secondary	Clears commands that are unrelated to connectivity (that are cleared using the primary keyword).

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
Preexisting	This command was preexisting.

Usage Guidelines

When you enter this command in a security context, you clear only the context configuration. If you enter this command in the system execution space, you clear the system running configuration as well as all context running configurations. Because you cleared all context entries in the system configuration (see the context command), the contexts are no longer running, and you cannot change to a context execution space.

Before clearing the configuration, make sure you save any changes to the boot config command (which specifies the startup configuration location) to the startup configuration; if you changed the startup configuration location only in the running configuration, then when you restart, the configuration loads from the default location.

Examples

The following example clears the entire running configuration:

hostname(config)# clear configure all

Related Commands

Command	Description
configure http	Merges a configuration file from the specified HTTP(S) URL with the running configuration.
configure memory	Merges the startup configuration with the running configuration.
configure net	Merges a configuration file from the specified TFTP URL with the running configuration.
configure factory-default	Adds commands that you enter at the CLI to the running configuration.
show running-config	Shows the running configuration.

clear configure aaa

To clear the aaa configuration, use the clear configure aaa command in global configuration mode. The clear configure aaa command removes the AAA command statements from the configuration.

clear configure aaa

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was modified for consistency within the CLI.

Usage Guidelines

This command also resets the AAA parameters to their default values, if any.

There is no undo.

Examples

hostname(config)# clear configure aaa

Related Commands

Command	Description
aaa accounting	Enable, disable, or view the keeping of records about which network services a user has accessed.
aaa authentication	Enable or view LOCAL, TACACS+, or RADIUS user authentication, on a server designated by the aaa-server command, or ASDM user authentication.
aaa authorization	Enable or disable user authorization for a LOCAL or a TACACS+ server designated by the aaa-server command, or for ASDM user authentication.
show running-config aaa	Display the AAA configuration.

clear configure aaa-server

To remove all AAA server groups or to clear the specified group, use the clear configure aaa-server command in global configuration mode.

clear configure aaa-server [server-tag]

clear configure aaa-server [server-tag] host server-ip

Syntax Description

server-ip	The IP address of the AAA server.
server-tag	(Optional) Symbolic name of the server group to be cleared.

Defaults

Remove all AAA server groups.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	—	—	•

Command History

Release	Modification
Preexisting	This command was preexisting.

Usage Guidelines

You can specify a particular AAA server group or, by default, all AAA server groups.

Use the host keyword to specify a particular server within a server group.

This command also resets the AAA server parameters to their default values, if any.

Examples

hostname(config)# aaa-server svrgrp1 protocol sdi

hostname(config)# aaa-server svrgrp1 host 1.2.3.4

hostname(config-aaa-server)# timeout 9

hostname(config-aaa-server)# retry 7

hostname(config-aaa-server)# sdi-version sdi-5

hostname(config-aaa-server)# exit

Given the preceding configuration, the following command shows how to remove a specific server from a group:

hostname(config)# clear config aaa-server svrgrp1 host 1.2.3.4

The following command shows how to remove a server group:

hostname(config)# clear config aaa-server svrgrp1

The following command shows how to remove all server groups:

hostname(config)# clear config aaa-server

Related Commands

Command	Description
aaa-server host	Specifies and manages host-specific AAA server connection data.
aaa-server protocol	Allows you to configure AAA server parameters that are group-specific and common to all hosts.
show running-config aaa	Display the current maximum number of concurrent proxy connections allowed per user, along with other AAA configuration values.

clear configure access-group

To remove access groups from all the interfaces, use the clear configure access-group command in global configuration mode.

clear configure access-group

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	Added keyword configure.

Examples

The following example shows how to remove all access groups:

hostname(config)# clear configure access-group

Related Commands

Command	Description
access-group	Binds an access list to an interface.
show running-config access-group	Displays the current access group configuration.

clear configure access-list

To clear an access list from the running configuration, use the clear configure access list command in global configuration mode.

clear configure access-list [id]

Syntax Description

id	(Optional) Name or number of an access list.

Defaults

All the access lists are cleared from the running configuration.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
Preexisting	This command was preexisting.

Usage Guidelines

The clear configure access-list command automatically unbinds an access list from a crypto map command or interface. The unbinding of an access list from a crypto map command can lead to a condition that discards all packets because the crypto map commands referencing the access list are incomplete. To correct the condition, either define other access-list commands to complete the crypto map commands or remove the crypto map commands that pertain to the access-list command. Refer to the crypto map client command for more information.

Examples

This example shows how to clear the access lists from the running configuration:

hostname(config)# clear configure access-list

Related Commands

Command	Description
access-list extended	Adds an access list to the configuration and configures policy for IP traffic through the firewall.
access-list standard	Adds an access list to identify the destination IP addresses of OSPF routes, which can be used in a route map for OSPF redistribution.
clear access-list	Clears access list counters.
show access-list	Displays counters for an access list.
show running-config access-list	Displays the access list configuration running on the security appliance.

clear configure alias

To remove all alias commands from the configuration, use the clear configure alias command in global configuration mode.

clear configure alias

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	•

Command History

Release	Modification
Preexisting	This command was preexisting.

Examples

This example shows how to remove all alias commands from the configuration:

hostname(config)# clear configure alias

Related Commands

Command	Description
alias	Translates one address into another.
show running-config alias	Displays the overlapping addresses with dual NAT commands in the configuration.

clear configure arp

To clear static ARP entries added by the arp command, use the clear configure arp command in global configuration mode.

clear configure arp

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	—	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example clears static ARP entries from the configuration:

hostname(config)# clear configure arp

Related Commands

Command	Description
arp	Adds a static ARP entry.
arp-inspection	For transparent firewall mode, inspects ARP packets to prevent ARP spoofing.
firewall transparent	Sets the firewall mode to transparent.
show arp statistics	Shows ARP statistics.
show running-config arp	Shows the current configuration of the ARP timeout.

clear configure arp-inspection

To clear the ARP inspection configuration, use the clear configure arp-inspection command in global configuration mode.

clear configure arp-inspection

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	—	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example clears the ARP inspection configuration:

hostname(config)# clear configure arp-inspection

Related Commands

Command	Description
arp	Adds a static ARP entry.
arp-inspection	For transparent firewall mode, inspects ARP packets to prevent ARP spoofing.
firewall transparent	Sets the firewall mode to transparent.
show arp statistics	Shows ARP statistics.
show running-config arp	Shows the current configuration of the ARP timeout.

clear configure asdm

To remove all asdm commands from the running configuration, use the clear configure asdm command in global configuration mode.

clear configure asdm [location | group | image]

Syntax Description

group	(Optional) Clears only the asdm group commands from the running configuration.
image	(Optional) Clears only the asdm image command from the running configuration.
location	(Optional) Clears only the asdm location commands from the running configuration.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was changed from the clear pdm command to the clear configure asdm command.

Usage Guidelines

To view the asdm commands in the running configuration, use the show running-config asdm command.

Clearing the asdm image command from the configuration disables ASDM access. Clearing the asdm location and asdm group commands from the configuration causes ASDM to regenerate those commands the next time ASDM is accessed, but may disrupt active ASDM sessions.

---

Note On security appliances running in multiple context mode, the clear configure asdm image command is only available in the system execution space, while the clear configure asdm group and clear configure asdm location commands are only available in the user contexts.

---

Examples

The following example clears the asdm group commands from the running configuration:

hostname(config)# clear configure asdm group

hostname(config)#

Related Commands

Command	Description
asdm group	Used by ASDM to associate object group names with interfaces.
asdm image	Specifies the ASDM image file.
asdm location	Used by ASDM to record IP address to interface associations.
show running-config asdm	Displays the asdm commands in the running configuration.

clear configure auth-prompt

To remove the previously specified authentication prompt challenge text and revert to the default value, if any, use the clear configure auth-prompt command in global configuration mode.

clear configure auth-prompt

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	—	—	•

Command History

Release	Modification
7.0(1)	This command was modified to conform with CLI standards.

Usage Guidelines

After you clear the authentication prompt, the prompt users see when they log in depends on the protocol they use:

•Users who log in using HTTP see HTTP Authentication.

•Users who log in using FTP see FTP Authentication.

•Users who log in using Telnet see no prompt.

Examples

This example shows how to clear the auth-prompt:

hostname(config)# clear configure auth-prompt

Related Commands

auth-prompt	Sets the user authorization prompts.
show running-config auth-prompt	Displays the user authorization prompts.

clear configure banner

To remove all the banners, use the clear configure banner command in global configuration mode.

clear configure banner

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

This example shows how to clear banners:

hostname(config)# clear configure banner

Related Commands

Command	Description
banner	Configures the session, login, or message-of-the-day banner.
show running-config banner	Displays all banners.

clear configure ca certificate map

To remove all certificate map entries or to remove a specified certificate map entry, use the clear configure ca configurate map command in global configuration mode.

clear configure ca certificate map [sequence-number]

Syntax Description

sequence-number

(Optional) Specifies a number for the certificate map rule you are removing. The range is 1 through 65535.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•

:

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example removes all certificate map entries.

hostname(config)# clear configure ca certificate map

hostname(config)#

Related Commands

Command	Description
crypto ca certificate map	Enters CA certificate map mode.

+

clear configure class

To clear the resource class configuration, use the clear configure class command in global configuration mode.

clear configure class

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	—	—	•

Command History

Release	Modification
7.2(1)	This command was introduced.

Examples

The following example clears the class configuration:

hostname(config)# clear configure class

Related Commands

Command	Description
class	Configures a resource class.
context	Configures a security context.
limit-resource	Sets the resource limit for a class.
member	Assigns a context to a resource class.
show class	Shows the contexts assigned to a class.

clear configure class-map

To remove all class maps, use the clear configure class-map command in global configuration mode.

clear configure class-map [type {management | regex | inspect [protocol]}

Syntax Description

inspect	(Optional) Clears inspection class maps.
management	(Optional) Clears management class maps.
protocol	(Optional) Specifies the type of application map you want to clear. Available types include: •dns •ftp •h323 •http •im •p2p-donkey •sip
regex	(Optional) Clears regular expression class maps.
type	(Optional) Specifies the type of class map you want to clear. To clear Layer 3/4 class maps, to not specify the type.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

To clear the class map for a specific class map name, use the no form of the class-map command.

Examples

The following example shows how to clear all configured class maps:

hostname(config)# clear configure class-map

Related Commands

Command	Description
class-map	Applies a traffic class to an interface.
show running-config class-map	Displays the information about the class map configuration.

clear configure client-update

To remove from the configuration the ability to force a client update, use the clear configure client-update command in global configuration mode or tunnel-group ipsec-attributes configuration mode.

clear configure client-update

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—
Tunnel-group ipsec-attributes configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.
7.1(1)	Added tunnel-group ipsec-attributes configuration mode.

Examples

The following example entered in global configuration mode, removes the client-update capability from the configuration:

hostname(config)# clear configure client-update

hostname(config)# 

The following example entered in tunnel-group ipsec-attributes configuration mode, removes the client-update capability from the configuration of the tunnel group named test:

hostname(config)# tunnel-group test ipsec-attributes

hostname(config-tunnel-ipsec)# clear configure client-update

hostname(config-tunnel-ipsec)# 

Related Commands

Command	Description
client-update	Configures client-update.
show running-config client-update	Shows the current client-update configuration.

clear configure clock

To clear the clock configuration, use the clear configure clock command in global configuration mode.

clear configure clock

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	—	•

Command History

Release	Modification
7.0(1)	This command was changed from clear clock.

Usage Guidelines

This command clears all clock configuration commands. The clock set command is not a configuration command, so this command does not reset the clock. To reset the clock, you need to set a new time for the clock set command.

Examples

The following example clears all clock commands:

hostname# clear configure clock

Related Commands

Command	Description
clock set	Manually sets the time.
clock summer-time	Sets the date range to show daylight savings time.
clock timezone	Sets the time zone.

clear configure command-alias

To remove all non-default command aliases, use the clear configure command-alias command in global configuration mode.

clear configure command-alias

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example shows how to remove all non-default command aliases:

hostname(config)# clear configure command-alias

Related Commands

Command	Description
command-alias	Creates a command alias.
show running-config command-alias	Displays all non-default command aliases.

clear configure compression

To reset the global compression configuration to the default (all compression techniques enabled), use the clear configure compression command from global configuration mode:

clear configure compression

Defaults

There is no default behavior for this command.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.1(1)	This command was introduced.

Examples

In the following example, the compression configuration is cleared:

hostname(config)# clear configure compression

Related Commands

Command	Description
compression	Enables compression for all SVC, WebVPN, and Port Forwarding connections.
svc compression	Enables compression of http data over an SVC connection for a specific group or user.

clear configure console

To reset the console connection settings to defaults, use the clear configure console command in global configuration mode.

clear configure console

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example shows how to reset the console connection settings to defaults:

hostname(config)# clear configure console

Related Commands

Command	Description
console timeout	Sets the idle timeout for a console connection to the security appliance.
show running-config console timeout	Displays the idle timeout for a console connection to the security appliance.

clear configure context

To clear all context configurations in the system configuration, use the clear configure context command in global configuration mode.

clear configure context [noconfirm]

Syntax Description

noconfirm

(Optional) Removes all contexts without prompting you for confirmation. This option is useful for automated scripts.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	—	—	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

This command lets you remove all contexts, including the admin context. The admin context cannot be removed using the no context command, but can be removed using the clear configure context command.

Examples

The following example removes all contexts from the system configuration, and does not confirm the deletion:

hostname(config)# clear configure context noconfirm

Related Commands

Command	Description
admin-context	Sets the admin context.
changeto	Changes between contexts or the system execution space.
context	Creates a security context in the system configuration and enters context configuration mode.
mode	Sets the context mode to single or multiple.
show context	Shows a list of contexts (system execution space) or information about the current context.

clear configure crypto

To remove the entire crypto configuration, including IPSec, crypto maps, dynamic crypto maps, CA trstpoints, all certificates, certificate map configurations, and ISAKMP, use the clear configure crypto command in global configuration. To remove specific configurations, use this command with keywords as shown in the syntax. Take caution when using this command.

clear configure crypto [ca | dynamic-map | ipsec | iskmp | map]

Syntax Description

ca	Removes certification authority policy.
dynamic-map	Removes dynamic crypto map configuration.
ipsec	Removes IPSec configuration.
isakmp	Removes ISAKMP configuration.
map	Removes crypto map configuration.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example issued in global configuration mode, removes all of the crypto configuration from the security appliance:

hostname(config)# clear configure crypto

hostname(config)# 

Related Commands

Command	Description
clear configure crypto dynamic-map	Clears all or specified crypto dynamic maps from the configuration.
clear configure crypto map	Clears all or specified crypto maps from the configuration.
clear configure isakmp policy	Clears all ISAKMP policy configuration.
show running-config crypto	Displays the entire crypto configuration, including IPSec, crypto maps, dynamic crypto maps, and ISAKMP.

clear configure crypto ca trustpoint

To remove all trustpoints from the configuration, use the clear configure crypto ca trustpoint command in global configuration.

clear configure crypto ca trustpoint

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example entered in global configuration mode, removes all trustpoints from the configuration:

hostname(config)# clear configure crypto ca trustpoint

hostname(config)# 

Related Commands

Command	Description
crypto ca trustpoint	Enters the trustpoint subconfiguration level for the indicated trustpoint.

clear configure crypto dynamic-map

To remove all or specified crypto dynamic maps from the configuration, use the clear configure crypto dynamic-map command in global configuration.

clear configure crypto dynamic-map dynamic-map-name dynamic-seq-num

Syntax Description

dynamic-map-name	Specifies the name of a specific crypto dynamic map.
dynamic-seq-num	Specifies the sequence number of the crypto dynamic map.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example entered in global configuration mode, removes the crypto dynamic map mymaps with sequence number 3 from the configuration:

hostname(config)# clear configure crypto dynamic-map mymaps 3

hostname(config)# 

Related Commands

Command	Description
clear configure crypto map	Clears the configuration of all or specified crypto maps.
show running-config crypto dynamic-map	Displays all the active configuration for all dynamic crypto maps.
show running-config crypto map	Displays all the active configuration for all crypto maps.

clear configure crypto isakmp

To remove all of the ISAKMP configuration, use the clear configure crypto isakmp command in global configuration mode.

clear configure crypto isakmp

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	The clear configure isakmp command was introduced.
7.2(1)	This command was deprecated. The clear configure crypto isakmp command replaces it.

Examples

The following command, issued in global configuration mode, removes all of the ISAKMP configuration from the security appliance:

hostname(config)# clear configure crypto isakmp

hostname(config)# 

Related Commands

Command	Description
clear configure crypto isakmp policy	Clears all ISAKMP policy configuration.
crypto isakmp enable	Enables ISAKMP negotiation on the interface on which the IPSec peer communicates with the security appliance.
show crypto isakmp stats	Displays runtime statistics.
show crypto isakmp sa	Displays IKE runtime SA database with additional information.
show running-config crypto isakmp	Displays all the active configuration.

clear configure crypto isakmp policy

To remove all of the ISAKMP policy configuration, use the clear configure isakmp policy command in global configuration mode.

clear configure crypto isakmp policy priority

Syntax Description

priority

Specifies the priority of the ISAKMP priority to be cleared.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	The clear configure isakmp policy command was introduced.
7.2(1)	The clear configure crypto isakmp policy command replaces the clear configure isakmp policy command.

Examples

The following example removes the ISAKMP policy with priority 3 from the configuration:

hostname(config)# clear configure isakmp policy 3

hostname(config)# 

Related Commands

Command	Description
isakmp enable	Enables ISAKMP negotiation on the interface on which the IPSec peer communicates with the security appliance.
show isakmp stats	Displays runtime statistics.
show isakmp sa	Displays IKE runtime SA database with additional information.
show running-config isakmp	Displays all the active configuration.

clear configure crypto map

To remove all or specified crypto maps from the configuration, use the clear configure crypto map command in global configuration.

clear configure crypto map map-name seq-num

Syntax Description

map-name	Specifies the name of a specific crypto map.
seq-num	Specifies the sequence number of the crypto map.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example entered in global configuration mode, removes the crypto map mymaps with sequence number 3 from the configuration:

hostname(config)# clear configure crypto map mymaps 3

hostname(config)# 

Related Commands

Command	Description
clear configure crypto dynamic-map	Clears the configuration of all or specified crypto dynamic maps.
crypto map interface	Applies a crypto map to an interface.
show running-config crypto map	Displays the active configuration for all crypto maps.
show running-config crypto dynamic-map	Displays the active configuration for all dynamic crypto maps.

clear configure ctl-provider

To remove all configured Certificate Trust List provider instances, use the clear configure ctl-provider command in global configuration mode.

clear configure ctl-provider

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
8.0(2)	This command was introduced.

Examples

The following example shows the syntax of the clear configure ctl-provider command:

hostname# clear configure ctl-provider

Related Commands

Command	Description
ctl	Parses the CTL file from the CTL client and install trustpoints.
ctl-provider	Configures a CTL provider instance in CTL provider mode.
export	Specifies the certificate to be exported to the client
service	Specifies the port to which the CTL provider listens.

clear configure ddns

To clear all DDNS commands, use the clear configure ddns command in global configuration mode.

clear configure ddns

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	—

Command History

Release	Modification
7.2(1)	This command was introduced.

Examples

The following example clears all DDNS commands:

hostname(config)# clear configure ddns

Related Commands

Command	Description
ddns (DDNS-update- method mode)	Specifies a DDNS update method type for a created DDNS method.
ddns update (interface config mode)	Associates a security appliance interface with a DDNS update method or a DDNS update hostname.
ddns update method (global config mode)	Creates a method for dynamically updating DNS resource records.
show ddns update interface	Displays the interfaces associated with each configured DDNS method.
show ddns update method	Displays the type and interval for each configured DDNS method. a DHCP server to perform DDNS updates.
show running-config ddns	Displays the type and interval of all configured DDNS methods in the running configuration.

clear configure dhcpd

To clear all of the DHCP server commands, binding, and statistics, use the clear configure dhcpd command in global configuration mode.

clear configure dhcpd

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was changed from clear dhcpd to clear configure dhcpd.

Usage Guidelines

The clear configure dhcpd command clears all of the dhcpd commands, bindings, and statistical information. To clear only the statistic counters or binding information, use the clear dhcpd command.

Examples

The following example shows how to clear all dhcpd commands:

hostname(config)# clear configure dhcpd

Related Commands

Command	Description
clear dhcpd	Clears the DHCP server bindings and statistic counters.
show running-config dhcpd	Displays the current DHCP server configuration.

clear configure dhcprelay

To clear all of the DHCP relay configuration, use the clear configure dhcprelay command in global configuration mode.

clear configure dhcprelay

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	—

Command History

Release	Modification
7.0(1)	This command was changed from clear dhcprelay to clear configure dhcprelay.

Usage Guidelines

The clear configure dhcprelay command clears the DHCP relay statistics and configuration. To clear only the DHCP statistic counters, use the clear dhcprelay statistics command.

Examples

The following example shows how to clear the DHCP relay configuration:

hostname(config)# clear configure dhcprelay

Related Commands

Command	Description
clear dhcprelay statistics	Clears the DHCP relay agent statistic counters.
debug dhcprelay	Displays debug information for the DHCP relay agent.
show dhcprelay statistics	Displays DHCP relay agent statistic information.
show running-config dhcprelay	Displays the current DHCP relay agent configuration.

clear configure dns

To clear all DNS commands, use the clear configure dns command in global configuration mode.

clear configure dns

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example clears all DNS commands:

hostname(config)# clear configure dns

Related Commands

Command	Description
dns domain-lookup	Enables the security appliance to perform a name lookup.
dns name-server	Configures a DNS server address.
dns retries	Specifies the number of times to retry the list of DNS servers when the security appliance does not receive a response.
dns timeout	Specifies the amount of time to wait before trying the next DNS server.
show dns-hosts	Shows the DNS cache.

clear configure dynamic-access-policy-config

To clear the DAP configuration, use the clear configure dynamic-access-policy-config command in dynamic-access-policy-record configuration mode.

clear config dynamic-access-policy-config name

Syntax Description

name	A string that specifies the name of the DAP configuration file.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Dynamic-access-policy-record configuration	•	•	•	—	—

Command History

Release	Modification
8.0(2)	This command was introduced.

Examples

The following example shows how to set a priority of 15 for the DAP record called Finance.

hostname (config) config-dynamic-access-policy-record Finance

hostname(config-dynamic-access-policy-record)# priority 15

hostname(config-dynamic-access-policy-record)# 

Related Commands

Command	Description
dynamic-access-policy-record	Creates a DAP record.
show running-config dynamic-access-policy-record [name]	Displays the running configuration for all DAP records, or for the named DAP record.

clear config dynamic-access-policy-record

To clear a DAP record, use the clear config dynamic-access-policy-record command in global configuration mode with the name of the record. To clear all DAP records, use the no form of this command.

clear config dynamic-access-policy-record name

Syntax Description

name	Specifies the name of the DAP record. The name can be up to 64 characters long and cannot contain spaces.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	—	—

Command History

Release	Modification
8.0(2)	This command was introduced.

Examples

The following example shows how to clear a DAP record named Finance.

hostname(config)# clear configure dynamic-access-policy-record Finance

hostname(config-dynamic-access-policy-record)# 

Related Commands

Command	Description
dynamic-access-policy-record [name]	Creates a named DAP record.
dynamic-access-policy-config url	Configures the DAP Selection Configuration file.
show running-config dynamic-access-policy-record [name]	Displays the running configuration for all DAP records, or for the named DAP record.

clear configure established

To remove all established commands, use the clear configure established command in global configuration mode.

clear configure established

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	The keyword configure was added.

Usage Guidelines

To remove an established connection created by the established command, enter the clear xlate command.

Examples

This example shows how to remove established commands:

hostname(config)# clear configure established

Related Commands

Command	Description
established	Permits return connections on ports that are based on an established connection.
show running-config established	Displays the allowed inbound connections that are based on established connections.
clear xlate	Clears the current translation and connection slot information.

clear configure failover

To remove failover commands from the configuration and restore the defaults, use the clear configure failover command in global configuration mode.

clear configure failover

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	Command was changed from clear failover to clear configure failover.

Usage Guidelines

This command clears all failover commands from the running configuration and restores the defaults. If you use the all keyword with the show running-config failover command, you will see the default failover configuration.

The clear configure failover command is not available in a security context in multiple configuration mode; you must enter the command in the system execution space.

Examples

The following example clears all failover commands from the configuration:

hostname(config)# clear configure failover

hostname(config)# show running-configuration failover

no failover

Related Commands

Command	Description
show running-config failover	Displays the failover commands in the running configuration.

clear configure filter

To clear URL, FTP, and HTTPS filtering configuration, use the clear configure filter command in global configuration mode.

clear configure filter

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

The clear configure filter command clears the URL, FTP, and HTTPS filtering configuration.

Examples

The following example clears the URL, FTP, and HTTPS filtering configuration:

hostname(config)# clear configure filter

Related Commands

Commands	Description
filter ftp	Identifies the FTP traffic to be filtered by a URL filtering server.
filter https	Identifies the HTTPS traffic to be filtered by a Websense server.
filter url	Directs traffic to a URL filtering server.
show running-config filter	Displays the filtering configuration.
url-server	Identifies an N2H2 or Websense server for use with the filter command.

clear configure fips

To clear the system or module FIPS configuration information stored in NVRAM, use the clear configure fips command in global configuration mode.

clear configure fips

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	—	•

Command History

Release	Modification
7.0(4)	This command was introduced.

Examples

hostname(config)# clear configure fips

Related Commands

Command	Description
crashinfo console disable	Disables the reading, writing and configuration of crash write info to flash.
fips enable	Enables or disablea policy-checking to enforce FIPS compliance on the system or module.
fips self-test poweron	Executes power-on self-tests.
show crashinfo console	Reads, writes, and configures crash write to flash.
show running-config fips	Displays the FIPS configuration that is running on the security appliance.

clear configure firewall

To set the firewall mode to the default routed mode, use the clear configure firewall command in global configuration mode.

clear configure firewall

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	—	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example sets the firewall mode to the default:

hostname(config)# clear configure firewall

Related Commands

Command	Description
arp	Adds a static ARP entry.
firewall transparent	Sets the firewall mode to transparent.
show arp statistics	Shows ARP statistics.
show running-config arp	Shows the current configuration of the ARP timeout.

clear configure fixup

To clear the fixup configuration, use the clear configure fixup command in global configuration mode.

clear configure fixup

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
Preexisting	This command was preexisting.

Usage Guidelines

The clear configure fixup command removes the fixup configuration.

Examples

The following example clears the fixup configuration:

hostname# clear configure fixup

Related Commands

Commands	Description
class-map	Defines the traffic class to which to apply security actions.
policy-map	Associates a class map with specific security actions.

clear configure flow-export

To clear flow-export configurations that are associated with NetFlow data, use the clear configure flow-export command in global configuration mode.

clear configure flow-export [destination]

Syntax Description

destination

Clears only the destination-related flow-export configuration.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
8.1(1)	This command was introduced.

Usage Guidelines

The destination keyword clears only the destination-related flow-export configuration; the other flow-export configurations still remain.

Examples

The following example show how to clear all flow-export configurations, including destinations:

hostname(config)# clear configure flow-export 

The following example shows how to clear only the destination-related flow-export configuration:

hostname(config)# clear configure flow-export destination

Related Commands

Commands	Description
flow-export destination interface-name ipv4-address | hostname udp-port	Specifies the IP address or hostname of the NetFlow collector, and the UDP port on which the NetFlow collector is listening.
flow-export template timeout-rate minutes	Controls the interval at which the template information is sent to the NetFlow collector.
logging flow-export-syslogs enable	Enables syslog messages after you have entered the logging flow-export-syslogs disable command, and the syslog messages that are associated with NetFlow data.
show flow-export counters	Displays all runtime counters in NetFlow.

clear configure fragment

To reset all the IP fragment reassembly configurations to defaults, use the clear configure fragment command in global configuration mode.

clear configure fragment [interface]

Syntax Description

interface

(Optional) Specifies the security appliance interface.

Defaults

If an interface is not specified, the command applies to all interfaces.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	The configure keyword and optional interface argument were added. The command was also separated into two commands, clear fragment and clear configure fragment, to separate clearing of the configuration data from the operational data.

Usage Guidelines

The clear configure fragment command resets all the IP fragment reassembly configurations to defaults. In addition, the the chain, size, and timeout keywords are reset to their default values, which are as follows:

•chain is 24 packets

•size is 200

•timeout is 5 seconds

Examples

This example shows how to reset all the IP fragment reassembly configurations to defaults:

hostname(config)# clear configure fragment

Related Commands

Command	Description
clear fragment	Clears the operational data of the IP fragment reassembly module.
fragment	Provides additional management of packet fragmentation and improves compatibility with NFS.
show fragment	Displays the operational data of the IP fragment reassembly module.
show running-config fragment	Displays the IP fragment reassembly configuration.

clear configure ftp

To clear the FTP configuration, use the clear configure ftp command in global configuration mode.

clear configure ftp

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

The clear configure ftp command clears the FTP configuration.

Examples

The following example clears the FTP configuration:

hostname# clear configure ftp

Related Commands

Commands	Description
filter ftp	Identifies the FTP traffic to be filtered by a URL filtering server.
filter https	Identifies the HTTPS traffic to be filtered by a Websense server.
filter url	Directs traffic to a URL filtering server.
show running-config filter	Displays the filtering configuration.
url-server	Identifies an N2H2 or Websense server for use with the filter command.

clear configure global

To remove the global commands from the configuration, use the clear configure global command in global configuration mode.

clear configure global

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	—

Command History

Release	Modification
7.0(1)	Added keyword configure.

Examples

The following example shows how to remove the global commands from the configuration:

hostname(config)# clear configure global

Related Commands

Command	Description
global	Creates entries from a pool of global addresses.
show running-config global	Displays the global commands in the configuration.

clear configure group-delimiter

To remove from the configuration the group delimiter the delimiter used when parsing group names from the user names that are received when tunnels are being negotiated, use the clear configure group-delimiter command in global configuration mode. This disables group-name parsing.

clear config group-delimiter

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

The delimiter is used to parse tunnel group names from usernames when tunnels are negotiated. If no delimiter is specified, group-name parsing is disabled.

Examples

The following example entered in global configuration mode, removes the group delimiter from the configuration:

hostname(config)# clear config group-delimiter

hostname(config)# 

Related Commands

Command	Description
group-delimiter	Enables group-name parsing and specifies the group delimiter for an IPSec remote access tunnel group.
show running-config group-delimiter	Shows the current configured group delimiter.

clear configure group-policy

To remove the configuration for a particular group policy, use the clear configure group-policy command in global configuration mode, and append the name of the group policy. To remove all group-policy commands from the configuration except the default group policy, use this command without arguments.

clear configure group-policy [name]

Syntax Description

name	(Optional) Specifies the name of the group policy.

Defaults

Remove all group-policy commands from the configuration, except the default group policy.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example shows how to clear the configuration for the group policy named FirstGroup.

hostname(config)# clear configure group-policy FirstGroup

Related Commands

Command	Description
group-policy	Creates, edits, or removes a group policy.
group-policy attributes	Enters group-policy attributes mode, which lets you configure AVPs for a specified group policy.
show running-config group-policy	Displays the running configuration for a particular group policy or for all group policies.

clear configure hostname

To reset the hostname to the default, use the clear configure hostname command in global configuration mode.

clear configure hostname

Syntax Description

This command has no arguments or keywords.

Defaults

The default value depends on your platform.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example clears the hostname:

hostname(config)# clear configure hostname

Related Commands

Command	Description
banner	Sets a login, message of the day, or enable banner.
domain-name	Sets the default domain name.
hostname	Sets the hostname for the security appliance.

clear configure http

To disable the HTTP server and to remove configured hosts that can access the HTTP server, use the clear configure http command in global configuration mode.

clear configure http

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example shows how to clear the HTTP configuration.

hostname(config)# clear configure http

Related Commands

Command	Description
http	Specifies hosts that can access the HTTP server by IP address and subnet mask. Specifies the security appliance interface through which the host accesses the HTTP server.
http authentication-certificate	Requires authentication via certificate from users who are establishing HTTPS connections to the security appliance.
http redirect	Specifies that the security appliance redirect HTTP connections to HTTPS.
http server enable	Enables the HTTP server.
show running-config http	Displays the hosts that can access the HTTP server, and whether or not the HTTP server is enabled.

clear configure icmp

To clear the configured access rules for ICMP traffic, use the clear configure icmp command in global configuration mode.

clear configure icmp

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

The clear configure icmp command clears the configured access rules for ICMP traffic.

Examples

The following example clears the clear configured access rules for ICMP traffic:

hostname# clear configure icmp

Related Commands

Commands	Description
clear configure icmp	Clears the ICMP configuration.
debug icmp	Enables the display of debug information for ICMP.
show icmp	Displays ICMP configuration.
timeout icmp	Configures the idle timeout for ICMP.

clear configure imap4s

To remove all IMAP4S commands from the configuration, reverting to default values, use the clear configure imap4s command in global configuration mode.

clear configure imap4s

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example shows how to remove the IMAP4S configuration:

hostname(config)# clear configure imap4s

hostname(config)# 

Related Commands

Command	Description
show running-configuration imap4s	Displays the running configuration for IMAP4S.
imap4s	Creates or edits an IMAP4S e-mail proxy configuration.

clear configure interface

To clear the interface configuration, use the clear configure interface command in global configuration mode.

clear configure interface [physical_interface[.subinterface] | mapped_name | interface_name]

Syntax Description

interface_name	(Optional) Identifies the interface name set with the nameif command.
mapped_name	(Optional) In multiple context mode, identifies the mapped name if it was assigned using the allocate-interface command.
physical_interface	(Optional) Identifies the interface ID, such as gigabitethernet0/1. See the interface command for accepted values.
subinterface	(Optional) Identifies an integer between 1 and 4294967293 designating a logical subinterface.

Defaults

If you do not specify an interface, the security appliance clears all interface configuration.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	This command was changed from clear interface. This command was also modified to include the new interface numbering scheme.

Usage Guidelines

When you clear the interface configuration for main physical interfaces, the security appliance uses the default settings.

You cannot use the interface name in the system execution space, because the nameif command is only available within a context. Similarly, if you mapped the interface ID to a mapped name using the allocate-interface command, you can only use the mapped name in a context.

Examples

The following example clears the GigabitEthernet0/1 configuration:

hostname(config)# clear configure interface gigabitethernet0/1

The following example clears the inside interface configuration:

hostname(config)# clear configure interface inside

The following example clears the int1 interface configuration in a context. "int1" is a mapped name.

hostname/contexta(config)# clear configure interface int1

The following example clears all interface configuration.

hostname(config)# clear configure interface

Related Commands

Command	Description
allocate-interface	Assigns interfaces and subinterfaces to a security context.
clear interface	Clears counters for the show interface command.
interface	Configures an interface and enters interface configuration mode.
show interface	Displays the runtime status and statistics of interfaces.

clear configure ip

To clear all IP addresses set by the ip address command, use the clear configure ip command in global configuration mode.

clear configure ip

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

In transparent firewall mode, this command clears the management IP address and the Management 0/0 IP address, if configured.

If you want to stop all current connections that use the old IP addresses, enter the clear xlate command. Otherwise, the connections time out as usual.

Examples

The following example clears all IP addresses:

hostname(config)# clear configure ip

Related Commands

Command	Description
allocate-interface	Assigns interfaces and subinterfaces to a security context.
clear configure interface	Clears all configuration for an interface.
interface	Configures an interface and enters interface configuration mode.
ip address	Sets the IP address for the interface.
show running-config interface	Displays the interface configuration.

clear configure ip audit

To clear the entire audit policy configuration, use the clear configure ip audit command in global configuration mode.

clear configure ip audit [configuration]

Syntax Description

configuration

(Optional) Yuo can enter this keyword, but the effect is the same without it.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was changed from clear ip audit.

Examples

The following example clears all ip audit commands:

hostname# clear configure ip audit

Related Commands

Command	Description
ip audit attack	Sets the default actions for packets that match an attack signature.
ip audit info	Sets the default actions for packets that match an informational signature.
ip audit interface	Assigns an audit policy to an interface.
ip audit name	Creates a named audit policy that identifies the actions to take when a packet matches an attack signature or an informational signature.
ip audit signature	Disables a signature.

clear configure ip local pool

To remove IP address pools, use the clear configure ip local pool command in global configuration mode.

clear ip local pool [poolname]

Syntax Description

poolname

(Optional) Specifies the name of the IP address pool.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example removes all IP address pools from the running configuration:

hostname(config)# clear config ip local pool

hostname(config)# 

Related Commands

Command	Description
clear configure ip local pool	Removes all ip local pools.
ip local pool	Configures an IP address pool.

clear configure ip verify reverse-path

To clear the ip verify reverse-path configuration, use the clear configure ip verify reverse-path command in global configuration mode.

clear configure ip verify reverse-path

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	—

Command History

Release	Modification
7.0(1)	This command was changed from clear ip verify reverse-path.

Examples

The following example clears the ip verify reverse-path configuration for all interfaces:

hostname(config)# clear configure ip verify reverse-path

Related Commands

Command	Description
clear ip verify statistics	Clears the Unicast RPF statistics.
ip verify reverse-path	Enables the Unicast Reverse Path Forwarding feature to prevent IP spoofing.
show ip verify statistics	Shows the Unicast RPF statistics.
show running-config ip verify reverse-path	Shows the ip verify reverse-path configuration.

clear configure ipv6

To clear the global IPv6 commands from the running configuration, use the clear configure ipv6 command in global configuration mode.

clear configure ipv6 [route | access-list]

Syntax Description

access-list	(Optional) Clears the IPv6 access list commands from the running configuration.
route	(Optional) Clears the commands that statically define routes in the IPv6 routing table from the running configuration.

Defaults

Without keywords, this command clears all IPv6 commands from the running configuration.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

This command only clears the global IPv6 commands from the running configuration; it does not clear the IPv6 commands entered in interface configuration mode.

Examples

The following example shows how to clear statically defined IPv6 routes from the IPv6 routing table:

hostname(config)# clear configure ipv6 route

hostname(config)#

Related Commands

Command	Description
ipv6 route	Defines a static route in the IPv6 routing table.
show ipv6 route	Displays the contents of the IPv6 routing table.
show running-config ipv6	Displays the IPv6 commands in the running configuration.

clear configure isakmp

To remove all of the ISAKMP configuration, use the clear configure isakmp command in global configuration mode.

clear configure isakmp

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	The clear configure isakmp command was introduced.
7.2(1)	This command was deprecated. The clear configure crypto isakmp command replaces it.

Examples

The following example issued in global configuration mode, removes all of the ISAKMP configuration from the security appliance:

hostname(config)# clear configure isakmp

hostname(config)# 

Related Commands

Command	Description
clear configure isakmp policy	Clears all ISAKMP policy configuration.
isakmp enable	Enables ISAKMP negotiation on the interface on which the IPSec peer communicates with the security appliance.
show isakmp stats	Displays runtime statistics.
show isakmp sa	Displays IKE runtime SA database with additional information.
show running-config isakmp	Displays all the active configuration.

clear configure isakmp policy

To remove all of the ISAKMP policy configuration, use the clear configure isakmp policy command in global configuration mode.

clear configure isakmp policy priority

Syntax Description

priority

Specifies the priority of the ISAKMP priority to be cleared.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	The clear configure isakmp policy command was introduced.
7.2(1)	This command was deprecated. The clear configure crypto isakmp policy command replaces it.

Examples

The following example removes the ISAKMP policy with priority 3 from the configuration:

hostname(config)# clear configure isakmp policy 3

hostname(config)# 

Related Commands

Command	Description
isakmp enable	Enables ISAKMP negotiation on the interface on which the IPSec peer communicates with the security appliance.
show isakmp stats	Displays runtime statistics.
show isakmp sa	Displays IKE runtime SA database with additional information.
show running-config isakmp	Displays all the active configuration.

clear configure ldap attribute-map

To remove all the LDAP attribute maps from the running configuration of the security appliance, use the clear configure ldap attribute-map command in global configuration mode.

clear configure ldap attribute-map

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.1(1)	This command was introduced.

Usage Guidelines

Use this command to remove the LDAP attribute maps from the running configuration of the security appliance.

Examples

The following example, entered in global configuration mode, removes all LDAP attributes map from the running configuration and then confirms the removal by using the show running-config ldap attribute-map command:

hostname(config)# clear configuration ldap attribute-map

hostname(config)# show running-config ldap attribute-map

hostname(config)#

Related Commands

Command	Description
ldap attribute-map (global config mode)	Creates and names an LDAP attribute map for mapping user-defined attribute names to Cisco LDAP attribute names.
ldap-attribute-map (aaa-server host mode)	Binds an LDAP attribute map to an LDAP server.
map-name	Maps a user-defined LDAP attribute name with a Cisco LDAP attribute name.
map-value	Maps a user-defined attribute value to a Cisco attribute.
show running-config ldap attribute-map	Displays a specific running LDAP attribute map or all running attribute maps.

clear configure logging

To clear logging configuration, use the clear configure logging command in global configuration mode.

clear configure logging [disabled | level]

Syntax Description

disabled	(Optional) Indicates that all disabled syslog messages should be reenabled. When you use this option, no other logging configuration is cleared.
level	(Optional) Indicates that the severity level assignments for syslog messages should be reset to their default values. When you use this option, no other logging configuration is cleared.

Defaults

With no keywords specified, this command returns all configuration settings to their default values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

You can use the show running-config logging command to view all logging configuration settings. If you use the clear configure logging command without either the disabled or level keyword, all logging configuration settings are cleared and returned to their default values.

Examples

The following example shows how to clear logging configuration settings. The output of the show logging command indicates that all logging features are disabled.

hostname(config)# clear configure logging

hostname(config)# show logging

Syslog logging: disabled

    Facility: 20

    Timestamp logging: disabled

    Standby logging: disabled

    Deny Conn when Queue Full: disabled

    Console logging: disabled

    Monitor logging: disabled

    Buffer logging: disabled

    Trap logging: disabled

    History logging: disabled

    Device ID: disabled

    Mail logging: disabled

    ASDM logging: disabled

Related Commands

Command	Description
show logging	Displays the enabled logging options.
show running-config logging	Displays the logging-related portion of the running configuration.

clear configure logging rate-limit

To reset the logging rate limit, use the clear configure logging rate-limit command in global configuration mode.

clear configure logging rate-limit

Syntax DescriptionThis command has no arguments or keywords.

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(4)	This command was introduced.

Examples

The following example shows how to reset the logging rate limit:

hostname(config)# clear configure logging rate-limit

After the information is cleared, nothing more displays until the hosts reestablish their connections.

Related Commands

Command	Description
logging rate limit	Limits the rate at which syslog messages are generated.
show running config logging rate-limit	Shows the current logging rate limit setting.

clear configure mac-address-table

To clear the mac-address-table static and mac-address-table aging-time configuration, use the clear configure mac-address-table command in global configuration mode.

clear configure mac-address-table

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	—	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example clears the mac-address-table static and mac-address-table aging-time configuration:

hostname# clear configure mac-address-table

Related Commands

Command	Description
firewall transparent	Sets the firewall mode to transparent.
mac-address-table aging-time	Sets the timeout for dynamic MAC address entries.
mac-address-table static	Adds static MAC address entries to the MAC address table.
mac-learn	Disables MAC address learning for an interface.
show mac-address-table	Shows the MAC address table, including dynamic and static entries.

clear configure mac-learn

To clear the mac-learn configuration, use the clear configure mac-learn command in global configuration mode.

clear configure mac-learn

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	—	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example clears the mac-learn configuration:

hostname# clear configure mac-learn

Related Commands

Command	Description
firewall transparent	Sets the firewall mode to transparent.
mac-address-table static	Adds static MAC address entries to the MAC address table.
mac-learn	Disables MAC address learning for an interface.
show mac-address-table	Shows the MAC address table, including dynamic and static entries.

clear configure mac-list

To remove the indicated list of MAC addresses, previously specified the mac-list command, use the clear configure mac-list command in global configuration mode:

clear configure mac-list id

Syntax Description

id	A MAC address list name.

Defaults

No default behaviors or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	—	—	•

Command History

Release	Modification
7.0(1)	This command was modified to conform with CLI standards.

Usage Guidelines

To remove a list of MAC addresses, use the clear mac-list command.

Examples

The following example shows how to clear a MAC address list:

hostname(config)# clear configure mac-list firstmaclist

Related Commands

Command	Description
mac-list	Adds a list of MAC addresses using a first-match search.
show running-config mac-list	Displays the MAC addresses in the MAC address list indicated by the id value.

clear configure management-access

To remove the configuration of an internal interface for management access of the security appliance, use the clear configure management-access command in global configuration mode.

clear configure management-access

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	•

Command History

Release	Modification
7.0(1)	The keyword configure was added.

Usage Guidelines

The management-access command lets you define an internal management interface using the IP address of the firewall interface specified in mgmt_if. (The interface names are defined by the nameif command and displayed in quotes, " ", in the output of the show interface command.) The clear configure management-access command removes the configuration of the internal management interface specified with the management-access command.

Examples

The following example removes the configuration of an internal interface for management access of the security appliance:

hostname(config)# clear configure management-access 

Related Commands

Command	Description
management-access	Configures an internal interface for management access.
show running-config management-access	Displays the name of the internal interface configured for management access.

clear configure monitor-interface

To remove all monitor-interface commands from the running configuration and restore the default interface health monitoring, use the clear configure monitor-interface command in global configuration mode.

clear configure monitor-interface

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

By default, physical interfaces are monitored for failover. Using the clear monitor-interface command clears the no monitor-interface commands from the running configuration and restores default interface health monitoring. To view the monitor-interface commands in the running configuration, use the show running-config all monitor-interface command.

Examples

The following example clears the monitor-interface commands from the running configuration:

hostname(config)# clear configure monitor-interface

hostname(config)#

Related Commands

Command	Description
monitor-interface	Enables health monitoring of a designated interface for failover purposes.
show running-config monitor-interface	Displays the monitor-interface commands in the running configuration.

clear configure mroute

To remove the mroute commands from the running configuration, use the clear configure mroute command in global configuration mode.

clear configure mroute

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example shows how to remove the mroute commands from the configuration:

hostname(config)# clear configure mroute

hostname(config)#

Related Commands

Command	Description
mroute	Configures a static multicast route.
show mroute	Displays IPv4 multicast routing table.
show running-config mroute	Displays the mroute commands in the running configuration.

clear configure mtu

To clear the configured maximum transmission unit values on all interfaces, use the clear configure mtu command in global configuration mode.

clear configure mtu

Syntax Description

This command has no arguments or keywords.

Defaults

Using the clear configure mtu command sets the maximum transmission unit to the default of 1500 for all Ethernet interfaces.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	—	•	•	•	—

Command History

Release	Modification
Preexisting	This command was preexisting.

Examples

The following example clears the current maximum transmission unit values on all interfaces:

hostname(config)# clear configure mtu

Related Commands

Command	Description
mtu	Specifies the maximum transmission unit for an interface.
show running-config mtu	Displays the current maximum transmission unit block size.

clear configure multicast-routing

To remove the multicast-routing command from the running configuration, use the clear configure multicast-routing command in global configuration mode.

clear configure multicast-routing

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	—	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Usage Guidelines

The clear configure multicast-routing command removes the multicast-routing from the running configuration. The no multicast-routing command also removes the multicast-routing command from the running configuration.

Examples

The following example shows how to remove the multicast-routing command from the running configuration:

hostname(config)# clear configure multicast-routing

Related Commands

Command	Description
multicast-routing	Enables multicast routing on the security appliance.

clear configure nac-policy

To remove all NAC policies from the running configuration, except for those that are assigned to group policies, use the clear configure nac-policy command in global configuration mode.

clear configure nac-policy

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	—	—	•

Command History

Release	Modification
8.0(2)	This command was introduced.

Usage Guidelines

Use this command only if you want to remove all NAC policies. Use the no version of the nac-policy command to remove a single NAC policy from the configuration.

Examples

The following command shows how to remove all NAC policies:

hostname(config)# clear config nac-policy

Related Commands

Command	Description
nac-policy	Creates and accesses a Cisco NAC policy, and specifies its type.
show nac-policy	Displays NAC policy usage statistics on the security appliance.
show running-config nac-policy	Displays the configuration of each NAC policy on the security appliance.
show vpn-session_summary.db	Displays the number IPSec, WebVPN, and NAC sessions.
show vpn-session.db	Displays information about VPN sessions, including NAC results.

clear configure name

To clear the list of names from the configuration, use the clear configure name command in global configuration mode.

clear configure name

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
7.0(1)	The keyword configure was added.

Usage Guidelines

This command has no usage guidelines.

Examples

The following example shows how to clear the name list:

hostname(config)# clear configure name

Related Commands

Command	Description
name	Associates a name with an IP address.
show running-config name	Displays the list of names associated with IP addresses.

clear configure nat

To remove the NAT configuration, use the clear configure nat command in global configuration mode.

clear configure nat

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	—

Command History

Release	Modification
7.0(1)	Added keyword configure.

Usage Guidelines

The following applies to transparent firewall mode:

---

Note In transparent firewall mode, only NAT id 0 is valid.

---

Examples

The following example shows how to remove the NAT configuration:

hostname(config)# clear configure nat

Related Commands

Command	Description
nat	Associates a network with a pool of global IP addresses.
show running-config nat	Displays a pool of global IP addresses that are associated with the network.

clear configure nat-control

To disable the NAT configuration requirement, use the clear configure nat-control command in global configuration mode.

clear configure nat-control

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	—	•	•	—

Command History

Release	Modification
7.0(1)	This command was introduced.

Examples

The following example disables the NAT configuration requirement:

hostname(config)# clear configure nat-control

Related Commands

Command	Description
nat	Defines an address on one interface that is translated to a global address on another interface.
nat-control	Enforces NAT control. Disabling NAT control allows inside hosts to communicate with outside networks without configuring a NAT rule.
show running-config nat-control	Displays the NAT configuration requirement.

clear configure ntp

To clear the NTP configuration, use the clear configure ntp command in global configuration mode.

clear configure ntp

Syntax Description

This command has no arguments or keywords.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	—	•

Command History

Release	Modification
7.0(1)	This command was changed from clear ntp.

Examples

The following example clears all ntp commands:

hostname# clear configure ntp

Related Commands

Command	Description
ntp authenticate	Enables NTP authentication.
ntp authentication-key	Sets the NTP authentication key.
ntp server	Identifies an NTP server to set the time on the security appliance.
ntp trusted-key	Specifies the NTP trusted key.
show running-config ntp	Shows the NTP configuration.

clear configure object-group

To remove all the object group commands from the configuration, use the clear configure object-group command in global configuration mode.

clear configure object-group [protocol | service | icmp-type | network]

Syntax Description

icmp-type	(Optional) Clears all ICMP groups.
network	(Optional) Clears all network groups.
protocol	(Optional) Clears all protocol groups.
service	(Optional) Clears all service groups.

Defaults

No default behavior or values.

Command Modes

The following table shows the modes in which you can enter the command:

Command Mode	Firewall Mode		Security Context
	Routed	Transparent	Single	Multiple
				Context	System
Global configuration	•	•	•	•	—

Command History

Release	Modification
Preexisting	This command was preexisting.

Examples

The following example shows how to remove all the object-group commands from the configuration:

hostname(config)# clear configure object-group

Related Commands

Command	Description
group-object	Adds network object groups.
network-object	Adds a network object to a network object group.
object-group	Defines object groups to optimize your configuration.
port-object	Adds a port object to a service object group.
show running-config object-group	Displays the current object groups.