NETGEAR FSM7328 Router Manual PDF (Setup & Configuration Guide)

Page 226 / 400 Scroll up to view Page 221 - 225

User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software

9-20

Security Commands

202-10088-01, March 2005

Format

radius server retransmit

Mode

Global Config

no radius server retransmit

This command sets the maximum number of times a request packet is re-transmitted, when no

response is received from the RADIUS server, to the default value, i.e. 10.

Format

no radius server retransmit

Mode

Global Config

radius server timeout

This command sets the timeout value (in seconds) after which a request must be retransmitted to

the RADIUS server if no response is received. The timeout value is an integer in the range of 1 to

30.

Default

6

Format

radius server timeout

<seconds

>

Mode

Global Config

no radius server timeout

This command sets the timeout value (in seconds) after which a request must be retransmitted to

the RADIUS server if no response is received, to the default value, i.e. 6.

Format

no radius server timeout

Mode

Global Config

show radius

This command is used to display the various RADIUS configuration items for the switch as well as

the configured RADIUS servers. If the optional token 'servers' is not included, the following

RADIUS configuration items will be displayed.

Format

show radius

[servers]

Mode

Privileged EXEC

Primary Server IP Address

Indicates the configured server currently in use for authenti-

cation

Page 227 / 400

User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software

Security Commands

9-21

202-10088-01, March 2005

Number of configured servers

The configured IP address of the authentication server

Max number of retransmits

The configured value of the maximum number of times a

request packet is retransmitted

Timeout Duration

The configured timeout value, in seconds, for request re-trans-

missions

Accounting Mode

Yes or No

If the optional token 'servers' is included, the following information regarding the configured

RADIUS servers is displayed.

IP Address

IP Address of the configured RADIUS server

Port

The port in use by this server

Type

Primary or secondary

Secret Configured

Yes / No

Message Authenticator

Enables or disables. the message authenticator attribute for the

selected server

show radius statistics

This command is used to display the statistics for RADIUS or configured server . To show the

configured RADIUS server statistic, the IP Address specified must match that of a previously

configured RADIUS server. On execution, the following fields are displayed.

Format

show radius statistics

[ipaddr]

Mode

Privileged EXEC

If ip address is not specified than only Invalid Server Address field is displayed. Otherwise

other listed fields are displayed.

Invalid Server Addresses

The number of RADIUS Access-Response packets received from

unknown addresses.

Server IP Address

IP Address of the Server.

Round Trip Time

The time interval, in hundredths of a second, between the most recent Access-

Reply | Access-Challenge and the Access-Request that matched it from the

RADIUS authentication server.

Access Requests

The number of RADIUS Access-Request packets sent to this

server. This number does not include retransmissions.

Page 228 / 400

User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software

9-22

Security Commands

202-10088-01, March 2005

Access Retransmission

The number of RADIUS Access-Request packets retransmitted

to this RADIUS authentication server.

Access Accepts

The number of RADIUS Access-Accept packets, including both valid and

invalid packets, which were received from this server.

Access Rejects

The number of RADIUS Access-Reject packets, including both valid and

invalid packets, which were received from this server.

Access Challenges

The number of RADIUS Access-Challenge packets, including both valid and

invalid packets, which were received from this server.

Malformed Access Responses

The number of malformed RADIUS Access-Response packets

received from this server. Malformed packets include packets with an invalid

length. Bad authenticators or signature attributes or unknown types are not

included as malformed access responses.

Bad Authenticators

The number of RADIUS Access-Response packets containing invalid authenti-

cators or signature attributes received from this server.

Pending Requests

The number of RADIUS Access-Request packets destined for this server that

have not yet timed out or received a response.

Timeouts

The number of authentication timeouts to this server.

Unknown Types

The number of RADIUS packets of unknown types, which were received from

this server on the authentication port.

Packets Dropped

The number of RADIUS packets received from this server on the authentication

port and dropped for some other reason.

Secure Shell (SSH) Commands

This section provides a detailed explanation of the SSH commands. The commands are divided

into the following groups:

•

Configuration commands are used to configure features and options of the switch. For every

configuration command there is a show command that will display the configuration setting.

•

Show commands are used to display switch settings, statistics and other information.

ip ssh

This command is used to enable SSH.

Default

disabled

Format

ip ssh

Page 229 / 400

User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software

Security Commands

9-23

202-10088-01, March 2005

Mode

Privileged EXEC

no ip ssh

This command is used to disable SSH.

Format

no ip ssh

Mode

Privileged EXEC

ip ssh protocol

This command is used to set or remove protocol levels (or versions) for SSH. Either SSH1 (1),

SSH2 (2), or both SSH 1 and SSH 2 (1 and 2) can be set.

Default

1 and 2

Format

ip ssh protocol

[1] [2]

Mode

Privileged EXEC

show ip ssh

This command displays the ssh settings.

Format

show ip ssh

Mode

Privileged EXEC

Administrative Mode

This field indicates whether the administrative mode of SSH is

enabled or disabled.

Protocol Level

The protocol level may have the values of version 1, version 2 or

both versions 1 and version 2.

Connections

This field specifies the current ssh connections.

Hypertext Transfer Protocol (HTTP) Commands

This section provides a detailed explanation of the HTTP commands. The commands are divided

into the following groups:

•

Configuration commands are used to configure features and options of the switch. For every

configuration command there is a show command that will display the configuration setting.

•

Show commands are used to display switch settings, statistics and other information.

Page 230 / 400

User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software

9-24

Security Commands

202-10088-01, March 2005

ip http secure-port

This command is used to set the sslt port where port can be 1-65535 and the default is port 443.

Default

443

Format

ip http secure-port <portid>

Mode

Privileged EXEC

no ip http secure-port

This command is used to reset the sslt port to the default value.

Format

no ip http secure-port

Mode

Privileged EXEC

ip http secure-protocol

This command is used to set protocol levels (versions). The protocol level can be set to TLS1,

SSL3 or to both TLS1 and SSL3.

Default

SSL3 and TLS1

Format

ip http secure-protocol [SSL3] [TLS1]

Mode

Privileged EXEC

ip http secure-server

This command is used to enable the secure socket layer for secure HTTP.

Default

disabled

Format

ip http secure-server

Mode

Privileged EXEC

no ip http secure-server

This command is used to disable the secure socket layer for secure HTTP.

Format

ip http secure-server

Mode

Privileged EXEC

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share