USB Disable for Cisco ISRs Feature Module
Available Languages
Table Of Contents
USB Disable for Cisco ISRs
Feature ModuleVerifying the USB Ports Are Disabled
Feature Information for Disabling USB Ports
USB Disable for Cisco ISRs
Feature Module
First Published: March 28, 2011
Part Number: OL-23833-01This guide describes the USB Disable feature in the following major sections:
•
Feature Information for Disabling USB Ports
Feature Introduction
The USB Disable feature provides Cisco IOS administrators with the ability to disable all USB ports on the router.
Default Setting
The Cisco IOS enables USB ports by default, which preserves existing USB functionality such as the following:
•
•
Note
CLI Commands
The USB Disable feature includes the Cisco IOS commands described in Table 1.
Table 1 Cisco IOS Commands for the USB Disable Feature
hw-module usb disable
Disabling all USB ports on the router.
See How to Disable USB Ports for details.
no hw-module usb disable
Re-enabling the USB ports requires the no version.
See How to Re-enable USB Ports for details.
See Command Reference for complete reference information.
Restrictions
Use of the USB Disable feature is restricted as follows:
•
•
•
Note
Supported Platforms
The USB Disable feature is supported only on the following Cisco ISR Generation 2 (G2) platforms:
•
•
•
•
•
•
•
•
•
Standards
No new or modified standards are supported by this feature, and support for existing standards has not been modified by this feature.
MIBs
No new or modified MIBs are supported by this feature, and support for existing MIBs has not been modified by this feature.
To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use the Cisco MIB Locator found at the following URL:
RFCs
No new or modified RFCs are supported by this feature, and support for existing RFCs has not been modified by this feature.
Technical Assistance
The Cisco Technical Support & Documentation website contains thousands of pages of searchable technical content, including links to products, technologies, solutions, technical tips, tools, and technical documentation. Registered Cisco.com users can log in from this page to access even more content.
http://www.cisco.com/techsupport
How to Disable USB Ports
To disable all USB ports on the router, use the hw-module usb disable command and start in privileged EXEC mode.
SUMMARY STEPS
1.
2.
3.
4.
5.
DETAILED STEPS
RESULTS
After you reload Cisco IOS, the USB ports are disabled, and the show usb command is no longer available in the CLI.
Note
The dir, copy, erase, boot system, and format commands no longer include keywords usbflash[0-9] or usbtoken[0-9].
Verifying the USB Ports Are Disabled
To verify all USB ports on the router are disabled, use the show running-config | include usb command and start in privileged EXEC mode.
SUMMARY STEPS
1.
2.
3.
DETAILED STEPS
How to Re-enable USB Ports
You can re-enable all USB ports using the no hw-module usb disable command.
SUMMARY STEPS
1.
2.
3.
4.
5.
DETAILED STEPS
RESULTS
After you reload Cisco IOS, the USB ports are re-enabled, and the show usb command becomes available in the CLI.
Note
The dir, copy, erase, boot system, and format commands include keywords usbflash[0-9] or usbtoken[0-9].
Command Reference
This section documents the following new commands:
•
•
All other commands used with this feature are documented in the Cisco IOS Release 15.1(4)T command reference publications.
hw-module usb disable
To disable the USB ports on the router, enter the hw-module usb disable command. To re-enable the USB ports, enter the no hw-module usb disable command.
hw-module usb disable
no hw-module usb disable
Command Modes
Global configuration
Command History
Usage Guidelines
To disable or re-enable the USB ports on the router, you must enter the copy running-config startup-config command to save the changes and then reload Cisco IOS on the router.
To verify the USB ports are disabled after reloading Cisco IOS, you can enter the show running-config | include usb command or show usb port command to make sure all usbflash: directories are excluded from output.
After you have disabled the USB ports, the show usb command is not available in the CLI.
After you have disabled the USB ports, the usbflash:, usbflash0:, and usbflash1: keyword(s) are not available in the dir, copy, erase, boot system, and format commands.
The hw-module usb disable command is available on the following Cisco ISR Generation 2 (G2) platforms:
•
•
•
•
•
•
•
•
•
Examples
The following example shows how to disable the USB ports and verify the configuration:
To disable all USB ports on the router:router#configure terminalrouter(config)#hw-module usb disableWarning: this command requires a reload to take effect.router(config)#exitrouter#copy running-config startup-configBuilding configuration...[OK]router#reloadProceed with reload? [confirm]System Bootstrap, Version xx.x(x), RELEASE SOFTWARE (xxx)Technical Support: http://www.cisco.com/techsupportCopyright (c) 2011 by Cisco Systems, Inc.PLD version 0xGIO ASIC version 0x...output truncated...To verify the USB ports are disabled after reloading the Cisco IOS:Example 1 Using the show running-config command
router>show running-configBuilding configuration...Current configuration:!version 15.x...output truncated...hw-module usb disable
...output truncated...router>Example 2 Using the show usb port command
router#show usb port...output truncated...^
...output truncated...router>Feature Information for Disabling USB Ports
Table 2 lists release history for this feature.
Not all commands may be available in your Cisco IOS software release. For release information about a specific command, see the command reference documentation.
Note
Feedback