Cisco SCE8000 Specifiche Pagina 390
- Pagina / 778
- Indice
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
2-350
Cisco SCE 8000 CLI Command Reference
Chapter 2 CLI Command Reference
sce-url-database protection
Command History This table includes the following release-specific history entries:
Usage Guidelines When the protected URL database is protected, one user is designated as the owner of the database and
only that user can execute the protection CLI commands on the database. The database manipulation
commands are restricted according to the owner configuration. This restriction requires defining the
AAA authorization method (either based on local users or based on a TACACS+ server, and so on) and
defining at least one user who should be assigned as the owner of the database.
If the database is defined to be protected, none of the database information (including the owner, the
database entries, and the authorization information itself) is accessible to any users, including the
relevant saved configuration in the log files and in the relevant SCA BB reports. The database-owner
user may change the authorizations using the CLI; however, when any of the protections are relaxed (or
all of the protections are relaxed by removing the protections entirely) the database is reset.
To ensure the secrecy of the database information, the database entries may be imported to the Cisco
SCE (using the CLI) in an encrypted form using 128-, 192-, or 256-bit key length AES. The key may be
set or updated using the appropriate CLI command; typically, this command should be run over a secure
Telnet session.
User Authorization Guidelines
• The default user cannot be the owner.
• When no owner is designated, the Cisco SCE URL database is unprotected, and the contents can be
read and modified by any user.
• Only the owner can configure the protection settings. If no owner is designated, the database is
unprotected, and any user has read and write permissions. A user may be configured to be the owner
of the database only while no owner user is designated for the database.
• When any protection setting is relaxed, the database is reset. Protection is relaxed in the following
cases:
–
Protection is removed completely using the no sce-url-database protection command.
–
Write permission is changed from owner-only to all-users.
–
Lookup permission is changed from no-user to owner-only.
• The Cisco SCE URL database configuration information is not accessible as part of the running
config and startup config files.
–
Protected information is not displayed when a show or more command is executed on the config
files.
–
Protected information is included when a copy command is executed on the config files.
Authorization: admin
Examples The following example shows how to configure protected URL database protection:
SCE8000>enable 10
Password:<cisco>
SCE8000#>configure
SCE8000(config)#interface linecard 0
SCE8000(config if)#sce-url-database protection owner myself
Release Modification
3.5.0 This command was introduced.
- Cisco Systems, Inc 1
- CONTENTS 3
- Contents 10
- About This Guide 19
- Document Revision History 20
- Organization 20
- Related Publications 20
- Conventions 21
- Command-Line Interface 23
- CLI Authorization Levels 24
- CLI Command Mode Hierarchy 25
- • E1: interface Linecard 0 27
- • E3: (traffic ports) 27
- Prompt Indications 28
- Example: 29
- CLI Help Features 31
- Argument Help 32
- Command History 34
- Keyboard Shortcuts 34
- Auto-Completion 35
- FTP User Name and Password 36
- Managing Command Output 37
- Creating a CLI Script 39
- CLI Command Reference 41
- • 0 (user) 43
- • 5 (viewer) 43
- • 10 (admin) 43
- • 15 (root) 43
- • none—Use no authentication 48
- EXAMPLE 1 54
- EXAMPLE 2 54
- • Permit/deny field 56
- • attack-detector 62
- • access-list 62
- • Action—report 63
- command to disable it 95
- is 60 minutes 123
- General Guidelines 124
- Recurring Configurations 124
- Specifying Explicit Days 125
- Example 1 125
- Example 2 125
- Example 3 125
- • /system/preconf 143
- • /system/prevconf 144
- Disable multi-mapping: 163
- Load Balancing 176
- High Availability (Failover) 176
- Figure 2-1 Disable Command 181
- • full—Full duplex 183
- • half—Half duplex 183
- Figure 2-2 Enable Command 185
- • Must begin with a letter 186
- • Cannot contain spaces 186
- • Are case-sensitive 186
- • General configuration files 190
- • Static party DB files 190
- • start—Starts recording 195
- • stop—Stops recording 195
- Command Description 206
- EXEC authorization level 214
- • global-controller bandwidth 222
- • global-controller name 222
- EXAMPLE 1: 249
- EXAMPLE 2: 249
- Ipv6-IANA 271
- • warning 292
- • Adding an entry 297
- • Removing an entry 297
- • traffic-engineering skip 327
- • vpn skip 327
- • END_USER_E164 343
- • END_USER_IMSI 343
- • END_USER_NAI 343
- • END_USER_SIP-URI 343
- • END_USER_PRIVATE 343
- • Link Usage RDRs (LURs) 353
- • Package Usage RDRs (PURs) 353
- • Category 1—40 MB 364
- • Category 2—24 MB 364
- • Category 3—8 MB 364
- • Category 4—8 MB 364
- Priorities 369
- Table 2-8 Valid Mode Settings 373
- • The host ends with .com 384
- User Authorization Guidelines 390
- • Calling station ID 401
- • NAS port 401
- • Username 401
- • CDP mode 422
- Counter Definitions 514
- Current values: 514
- Peak values: 514
- Event counters: 515
- • Has no mapping 517
- Examples Example 1 521
- Example 4 522
- TP-IP-range 533
- EXAMPLE 3 542
- EXAMPLE 4 542
- • duplex 550
- • IP address 550
- • auto-fail-over 550
- • Quota rate control 574
- • Maximum size of the buffer 574
- SCE8000> 597
- • Main connection 602
- SCE8000(config)#> 678
- • SNMP traps 683
- • Enterprise traps 683
- Authorization: admin 686
- Examples 686
- IP specification 740
- Port specification 741
- Tunnel ID specification 741
- Traffic counter name 741
- • Action = flow-capture 743
- IP Specification 744
- Limitations 747
- • Link-0 757
- • Link-1 757
- • VAS server is enabled 759
- • Server has a VLAN tag 759
- • Server Group ID 764
- • SCE 8000: 0-63 764
- Direction 771
- PIR Values 772
© 2020, manymanuals.it. Tutti i diritti riservati | 0.027 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale