Router privilege command syntax
Have a local username and pw setup. then set up priv exec level 0 sh running-config.
But we only get like 10 lines of sh run when logging in as this user.
Tried to go to level 8 and got the same small number of sh run lines. Any ideas what we're doing wrong.?
See in line,
One more question-so the level of cmd's you are able to access is entirely dependent on who you sign in as and what level (or what cmd's)is/are assigned to that user?
---->Yes, that depends on the priv level of user and the commnds
Also, I need to verify for my cust that the question above is correct and applies irregardless of which line you come in on?
---> Line does not matter here. No matter where even user comes from , priv lvl take effect.
Is there any additional granularity you can assign to the VTY's or Con (other than ACL and access-class)?
--->I dont think so.
Regards,
~`JG
Do rate helpful posts
Similar Messages
-
Does MAC OS have a "route add" command similar to a DOS command?
Does MAC OS have a "route add" command similar to a DOS command?
I know that with DOS, you can type "route add 192.168.x.x MASK 255.255.x.x 192.168.x.x" to add a route on your PC,but does MAS OS X(10.4.9) have something similar to it? I have a network printer that my winXP can access but my MAC cannot. I was unable to ping it from both wINXP and MAC. But after I added the route to my winXP I was able to ping and print to it. I do not know if I can do the same to my MAC. Does anyone know what the command is?
Thank you in advance.Yes, and Welcome! ...
http://www.osxfaq.com/man/8/route.ws
And to make it permanent...
http://www.osxfaq.com/tips/kluskens/index.ws -
Using the 'route print' Command in Windows 7 - Detailed Screen Captures
The 'route print' Command from an Administrative Command Prompt in Windows 7 provides a variety of useful information. Let's take a look at the output of a 'route print' Command to examine how the output data is grouped and to understand its logic.
Let's begin by simply issuing the following command:
route print
An Administrative Command Prompt output shows the following the following sections of the Command Output:
Figure 1 - Issuing the 'route print' Command from an Administrative Command Prompt in Windows 7
Observing the output of the Command indicates there are 5 Major Sections. The Sections include:
Interface List
IPv4 Route Table
IPv4 Persistent Routes
IPv6 Route Table
IPv6 Persistent Routes
On this Workstation a single Physical Network Interface is visible and has been assigned a DHCP Address of '10.1.1.36'.
The IP Stack for this Workstation is as follows:
IP Address: 10.1.1.36
Subnet Mask: 255.255.255.0
Default Gateway: 10.1.1.1
DNS Server: 10.1.1.1
DHCP Server: 10.1.1.1
DNS Suffix: YYY.YYY.isp-provider.net
Most of the time our focus is upon the IPv4 Routing Table output. Here are the sections of the IPv4 Routing Table output for reference.
Figure 2 - The IPv4 Route Table output listing the 'all networks' route through the Default Gateway.
The next IPv4 Routing Table entry indicates '10.1.1.36' (the Host Workstation' is a member of the '10.1.1.1/24' Network and would route packets out the '10.1.1.36' Interface.
Figure 3 - The Workstation Host at '10.1.1.36' is a member of the '10.1.1.0/24' Network Subnet.
The next IPv4 Routing Table entry indicates '10.1.1.36' may receive a Broadcast from the '10.1.1.0/24' Network (as noted by the Subnet Mask of '255.255.255.255').
Figure 4 - The Workstation Host at '10.1.1.36' can offer a Broadcast on the '10.1.1.0/24 Network' (as noted by the 255.255.255.255 Subnet Mask).
Another IPv4 Routing Table entry focused on Broadcast Addresses is the following. The Host Workstation at '10.1.1.36' may offer Network Broadcasts to the '10.1.1.0/24' Network.
Figure 5 - The Workstation Host at '10.1.1.36' can receive Network Broadcasts from the '10.1.1.0/24' Network (as noted by the '10.1.1.255' Network Destination).
The next IPv4 Routing Table entries (3 of them) are focused on the Loopback Network Values of '127.0.0.0/8', '127.0.0.1/32' and the Loopback Network Address of '127.255.255.255/32' respectively. These Addresses provide Services to the Local Host (or Loopback Adapter). The Loopback Network Destination of '127.0.0.0' provides access to the Loopback Network through '127.0.0.1' the Loopback IP Address. The Loopback IP Address of '127.0.0.1/32' receives Limited Local Broadcast to the Loopback Network while the Loopback IP Address of '127.255.255.255/32' provides Limited Broadcast to the Loopback Network.
Figure 6 - The Workstation Host at '10.1.1.36' uses 3 Addresses for Services to the 'Local Host'. All 3 Addresses incorporate the '127.x.x.x' format.
Next the Routing Table includes 2 specific entries for the Multicast Network (224.0.0.0/4) for both the 'Local Host' or Loopback Address of '127.0.0.1' and the Host IP Address of '10.1.1.36' that are '224.0.0.0/4' . These are used for Multicast Network functions.
Figure 7 - The Workstation Host at '10.1.1.36' includes 2 Multicast Addresses (starting with '240.0.0.0') reserved for use through either the Loopback Address '127.0.0.1' or the Host IP Address '10.1.1.36'.
The last 2 Routing Table entries provides Services through Limited Broadcast Addresses. The Network Destination of '255.255.255.255/32' are the Limited Broadcast Address Ranges for both the Loopback Adapter '127.0.0.1' and the Host IP Address '10.1.1.36'.
Figure 8 - The Workstation Host at '10.1.1.36' includes 2 Limited Broadcast IP Address Values to Service both the Loopback Network '127.0.0.1' and the Host IP Network '10.1.1.36'.
Finally, upon understanding the sections of the Windows 7 Routing Table there are additional functions available when using the 'route' Command. This Blog entry is focused solely on output from the 'route print' Command.
Summary: In this Blog entry focused on using the 'route print' Command from an Administrative Command Prompt in Windows 7. Each of the defined routes for a Workstation running Windows 7 Enterprise were reviewed for reference.
Lynn Lunik
Chief Security Architect
IT Pro Secure Corporation
and exchangesummit.net
blog <at> itprosecure.comI thought, it is my browser issues of not seeing the images.
but as seen on the other comments, this not in my browser case.
Can someone check on this and repost the images if needed? -
Problem with 'LS' command syntax for generating 'recursive' files list
I'm having trouble getting a recursive (-R) directory listing of the contents of a flash drive --
-- i.e., when I run the 'ls' command with the -R switch (in Terminal), I get either a recursive directory of what appears to be 'all volumes' (i.e., a very large file) or a zero-byte (empty) file.
Terminal also keeps reporting "No such file or directory" but I don't know what it's referring to (it reports it with both the 'zero byte' listing and the 'large file' listing).
Obviously, I'm making some 'syntax error' but I don't know what it is.
Assuming the following . . .
User = MK
Flash drive = NO NAME
. . . what is the correct command syntax to list only the contents of the flash drive (not 'all volumes')?
My last try (it doesn't work) was:
*ls -RTlp /Users/MK/Volumes/NO\ NAME > /Users/MK/Documents/flashdrive.dir*
Thanks.Re: the original post, I should clarify that what I'm looking for is the syntax that will generate the recursive list of the flash drive's files +without first logging the flash drive+ (NO\ NAME) +as the working folder+.
If I do the latter, I can get the recursive listing easily enough.
What I haven't been able to do is generate the listing without first logging NO\ NAME as the working folder.
Thanks. -
Error when creating or updating command syntax in an ODI procedure
Hi - I'm new to ODI and trying to create/update a procedure. It doesn't seem like it matters whether the sql statement is correct or not a generic message always seems to be displayed when the command syntax is modified. On a different machine, this is not a problem and procedures can be created or modified. I've compared the setup of the two machines and they appear to be the same. Outside of ODI, I can connecting or executing sql statements without any issues.
Any suggestions?
Oracle version Oracle9i Enterprise Edition Release 9.2.0.2.0 - 64bit Production
Oracle Data Integrator 10.1.3.5.5
JRE version 1.6.0_17
OS version Windows XP
ODI error
java.sql.BatchUpdateException: com.microsoft.sqlserver.jdbc.SQLServerException: sp_cursoropen/sp_cursorprepare: The statement parameter can only be a batch or a stored procedure with a single select, without FOR BROWSE, COMPUTE BY, or variable assignments.
at com.microsoft.sqlserver.jdbc.SQLServerPreparedStatement.executeBatch(Unknown Source)
at com.sunopsis.sql.SnpsQuery.executeBatch(SnpsQuery.java)
at com.sunopsis.dwg.dbobj.SnpTxt.setString(SnpTxt.java)
at com.sunopsis.dwg.dbobj.SnpTxt.a(SnpTxt.java)
at com.sunopsis.dwg.dbobj.SnpTxt.setStringWithXRefs(SnpTxt.java)
at com.sunopsis.graphical.frame.a.iw.a(iw.java)
at com.sunopsis.graphical.frame.a.iw.g(iw.java)
at com.sunopsis.graphical.frame.a.iw.bH(iw.java)
at com.sunopsis.graphical.frame.bo.r(bo.java)
at com.sunopsis.graphical.frame.bo.bv(bo.java)
at com.sunopsis.graphical.frame.bo.z(bo.java)
at com.sunopsis.graphical.frame.bo.b(bo.java)
at com.sunopsis.graphical.frame.w.actionPerformed(w.java)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$Handler.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.plaf.basic.BasicButtonListener.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at javax.swing.JComponent.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)Good point - In my case, these are single executable statements. These have been saved in ODI and executed successfully. Just no using my machine.
EXAMPLE 1------------
DECLARE
RetVal ;
I_STRING VARCHAR2(200);
BEGIN
I_STRING := '';
RetVal := XXX.PKG_XXX.SF_COMMA_TO_TABLE ( I_STRING );
COMMIT;
END;
EXAMPLE 2------------
SELECT C.COL1, B.COL2, B.COL3,TO_CHAR(B.EFFDT,'YYYY-MM-DD') COL4,B.COL5,B.COL6
FROM TABLE1 A, TABLE2 B, TABLE3 C
WHERE
and A.ID = 'XXX'
and a.setcntrlvalue = ' '
AND A.NAME = 'XXX'
AND A.EFFDT =
(SELECT MAX(A_ED.EFFDT) FROM TABLE1 A_ED
WHERE A.SETID = A_ED.SETID
AND A_ED.EFFDT <= SYSDATE)
AND B.EFFDT =
(SELECT MAX(B_ED.EFFDT) FROM TABLE2 B_ED
WHERE B.SETID = B_ED.SETID
AND B.ACCOUNT = B_ED.ACCOUNT
AND B_ED.EFFDT <= SYSDATE)
AND A.SETID = B.SETID
AND A.RANGE_FROM = A.RANGE_TO
AND B.ACCOUNT = A.RANGE_FROM
AND A.SETID = C.SETID
AND A.TREE_NAME = C.TREE_NAME
AND A.TREE_NODE_NUM = C.TREE_NODE_NUM
AND C.EFFDT =
(SELECT MAX(C_ED.EFFDT) FROM TABLE3 C_ED
WHERE C.SETID = C_ED.SETID
AND C_ED.EFFDT <= A.EFFDT)
------------------ -
All,
I have a friend trying to configure an existing PIX. They needed to change IP addresses due to ISP switch. Config was very basic but whenever he puts in the route outside command the PIX seems to take it but then he is saying it is disappearing when he checks the config. Does anyone have any ideas what this could be? He only changed outside IP address, a static translation
All replies rated. Thanks in advance!Hi Angel,
My assumption is that you have a speed issue between the outside interface of the PIX and the new ISP equipment.
You have statically set the outside interface "interface ethernet0 10baset"
Please post :
show int e0
PS : nice software version 6.2
Regards
Dan -
Hello,
I want to backup server from powershell script:
wbadmin
start
backup
-backuptarget:\\?\Volume{3651776b-fc60-4ccb-af2b-48b702256f55}
-hyperv:"ComputerName1,Host
Component" -vssfull
-quiet
but I am gettting following error:
ERROR - Command syntax incorrect. Error: Component'. See the command
syntax below.
In CMD it works fine but I am unable to get it working in PS. Can anyone help? Thank you.
Pete
sfsPlease see the following article for how to pass arguments for executables in PowerShell:
Windows IT Pro: Running Executables in PowerShell
Basically all you should need to do is quote the entire argument to the -backuptarget parameter, as in:
"-backuptarget:\\?\Volume{3651776b-fc60-4ccb-af2b-48b702256f55}"
You probably also need to quote the entire -hyperv argument as well:
"-hyperv:ComputerName1,Host Component"
You can use the ShowArgs.exe tool in the article download to see the actual command line that PowerShell is really passing to the executable.
-- Bill Stewart [Bill_Stewart] -
Hi,
I have a question on the username and privilege levels
These are the commands
username jason level5 password Jas0n
enable secret ***
privilege mode all level5 show
Q1. Can we use different enable secret for differnet levels on the same router to give access to different users?
Q2. When I login to the router enable mode i use the username of Jason and my password, so will that automatically out me level5 mode?
Thx for the help
JasonJason, In your example, your Jas0n password will log you right into enable mode. The Enable secret password would be like a back door for someone who logged in with less than enable-level privileges, to be able to get to enable mode with an extra login step.
Check out this doc and you should get it.
http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_command_reference_chapter09186a00800ca7cd.html -
Privilege command: the show run does not show the running-config
Hi,
Whenever I login using "user1" I can successfully authenticate however when I ussue the show run for user1. The only thing that I can see are the following:
R4#show run
Building configuration...
Current configuration : 13 bytes
end
R4#
I have put the command on the router as follows:
~~~~~~~~~~~~~~~~~~~~~
aaa new-model
aaa authentication login ACS group tacacs+ local
aaa authentication login NO-AUTH none
aaa authorization exec ACS group tacacs+ local
aaa authorization exec NO-AUTH none
aaa authorization commands 1 ACS-1 group tacacs+ local
aaa authorization commands 1 NO-AUTH none
aaa authorization commands 10 ACS-10 group tacacs+ local
aaa authorization commands 10 NO-AUTH none
aaa authorization commands 15 ACS-15 group tacacs+ local
aaa authorization commands 15 NO-AUTH none
username user2 privilege 15 password xxx
username user1 privilege 10 password xxx
tacacs-server host 10.50.31.6
tacacs-server directed-request
tacacs-server key xxx
privilege exec level 15 show
privilege exec level 10 show running-config
line con 0
exec-timeout 1000 0
authorization commands 1 NO-AUTH
authorization commands 10 NO-AUTH
authorization commands 15 NO-AUTH
authorization exec NO-AUTH
login authentication NO-AUTH
line aux 0
authorization commands 1 NO-AUTH
authorization commands 10 NO-AUTH
authorization commands 15 NO-AUTH
authorization exec NO-AUTH
login authentication NO-AUTH
line vty 0 4
authorization commands 1 ACS-1
authorization commands 10 ACS-10
authorization commands 15 ACS-15
authorization exec ACS
login authentication ACS
end
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Regards,
LorenzLorenz
I believe that the answer is that in implementing privilege levels Cisco designed the show run command so that if you do not have capability to change something that it will not show up in the show run. I believe the logic is that from a security standpoint if you are not authorized to change it you should not be able to see it in the config. So in your case if user1 is not able to change anything then they will not be able to see anything in show run.
HTH
Rick -
Hi,
I'd like using this command:
privilege mode [all] level level command-string
But "all" is not present on my different Router & Switch.
I use this IOS for my catalyst 3550 : c3550-ipservicesk9-mz.122-35.SE
Anybody can help me ?
Best regardsHi Jean
Use privilge 15 instead privilege all
Regards -
OS command syntax to run RPG program (FTP Adapter)
Hi All,
I try to run RPG program from File Adapter OS command, I do not know correct OS syntax.
RPG program will create sales order in JD, PI and JD is on IBM i5 OS.
I am able to run OS command like "mkdir" but i do not know correct syntax to run RPG program.
I try few OS command but doesn't work like:
CALL PGM(Library Name/Program Name) PARM(xx,yyy,zzz)
CALL Library Name.Progran Name(param)
With regards
SunilHi,
Please check with the link:
https://www.sdn.sap.com/irj/scn/wiki?path=/display/xi/morewiththeFileAdapter
Hope it will throw some light to your solution.
Thanks.
Regards,
Vineetha. -
UPDATE command syntax for mulitple checkbox update
Hi,
I intend update the checkboxes by id in bulk.
My table is below. I want to update the selected form_id
checkboxe and their
values accordingly. That, I click the checkboxes (containin
form_id
information) of 1, 3, and 6; and I check their respective
fields for column
check01 and check02.
form_id check01 check02
1 1 0
2 0 1
3 0 0
4 1 1
5 1 1
6 1 0
I am using below code for deleting. I can do insert into. But
I could not
figure out the correct syntax for UPDATE command similar to
below example.
Sample for deleting:
DELETE FROM ADS
WHERE AD_ID IN (varCheckBox)
Thank you
HakanCheck here for SQL UPDATE syntax..
http://www.w3schools.com/sql/sql_update.asp
Regards,
..Trent Pastrana
www.fourlevel.com
"Hakan834" <[email protected]> wrote in message
news:e9tdd8$ppk$[email protected]..
> Hi,
>
> I intend update the checkboxes by id in bulk.
>
> My table is below. I want to update the selected form_id
checkboxe and
> their values accordingly. That, I click the checkboxes
(containin form_id
> information) of 1, 3, and 6; and I check their
respective fields for
> column check01 and check02.
>
> form_id check01 check02
> 1 1 0
> 2 0 1
> 3 0 0
> 4 1 1
> 5 1 1
> 6 1 0
>
> I am using below code for deleting. I can do insert
into. But I could not
> figure out the correct syntax for UPDATE command similar
to below example.
>
> Sample for deleting:
> DELETE FROM ADS
> WHERE AD_ID IN (varCheckBox)
>
>
> Thank you
>
> Hakan
> -
Hello,
I need to validate if a database has been backed up succesfully so I want to execute rman validates command.
I checked oracle manuals and I found validates command is a parameter of restore command:
http://download-west.oracle.com/docs/cd/B14117_01/server.101/b10770/rcmsynta65.htm#86797
http://download-west.oracle.com/docs/cd/B14117_01/server.101/b10770/rcmsynta51.htm#85191
I already duplicated databases using rman, but I'm not sure about syntax for validating. Is the following code right if I want just to validate database backup?
rman rcvcat rman/rman@rman target sys/password@database auxiliary / cmdfile /home/oracle/restore_dup.sh
Where restore_dup.sh is:
run {
allocate auxiliary channel 'dev_0' type 'sbt_tape';
allocate auxiliary channel 'dev_1' type 'sbt_tape';
allocate auxiliary channel 'dev_2' type 'sbt_tape';
allocate auxiliary channel 'dev_3' type 'sbt_tape';
restore target database validates;
Note that...
- OS is HP-UX 11.00
- Database is Oracle 8.1.7
- I CANNOT recover anything as database I want to validate is a production environment.
Thanks in advance for your help.
Regards,
CarlesI never worked with RMAN 8.1.7 (only newer versions)
According the documentation you can validate only a backupset in RMAN 8.1.7:
- validate backupset <bs_number>;
http://download-east.oracle.com/docs/cd/A87860_01/doc/server.817/a76990/rmansy50.htm#6148
http://download-east.oracle.com/docs/cd/A87860_01/doc/server.817/a76990/preparer.htm#435378
The validation for the full DB in a new feature in RMAN 9i.
Bye, Aron -
Export command syntax for OA page in R12
Hi,
Can any one let me know the syntax for export command for an OA page in R12.
I have tried with the 11i export command, but could not get the page.
Thanks,
DivyaHi,
sorry, wrong forum (its about JDeveloper and ADF) - See: OA Framework
Frank -
Hi!
I have a machine with many network interfaces. I would like to add a command to say that for a destitanations tha packets shoudl be sent on port hme0 and that the source IP should be x.x.x.x
I now the following command but how can I specific the interface hme0?
route add 172.24.169.136 10.211.4.1 -setsrc 10.211.4.211Hi!
Thanks for the help. I managed to add the route record. My problem is that it's not in the wright place.
My netstat -rn is:
Destination Gateway Flags Ref Use Interface
192.168.1.0 192.168.1.41 U 1 0 qfe0
192.168.1.0 192.168.1.43 U 1 0 qfe1
10.211.4.0 10.211.4.28 U 1 117 hme0
172.24.169.0 10.211.4.214 U 1 6 hme0:1
224.0.0.0 10.211.4.28 U 1 0 hme0
default 10.211.4.1 UG 1 255
127.0.0.1 127.0.0.1 UH 5 77 lo0
After adding the following route:
route add 10.211.4.0/24 10.211.4.214 -interface
And the resulting netstat is:
Destination Gateway Flags Ref Use Interface
192.168.1.0 192.168.1.41 U 1 0 qfe0
192.168.1.0 192.168.1.43 U 1 0 qfe1
10.211.4.0 10.211.4.28 U 1 119 hme0
10.211.4.0 10.211.4.214 U 1 0 hme0:1
172.24.169.0 10.211.4.214 U 1 6 hme0:1
224.0.0.0 10.211.4.28 U 1 0 hme0
default 10.211.4.1 UG 1 259
127.0.0.1 127.0.0.1 UH 5 77 lo0
So this means that the new rout record for 10.211.4.0 was put in the routing table below the old registration. If I know well the routing table is used from top to down it means that new registartion has no effect. Is there any way to put this as the first registration or at least above the old one?
Thanks.
Maybe you are looking for
-
Extracting a layout & images from PDF to use in Adobe Illustrator to create webpage
I have been asked to build a small website based on a PDF template (with an additional .indd file) created by a designer who knows nothing about HTML, but they have advised me is that it should be possible to somehow extract the required components (
-
RabbitMQ/AMQP messaging: example for LabVIEW
RabbitMQ (http://www.rabbitmq.com/) is an open source message broker based on the AMQP protocol (http://www.amqp.org/). I plan to use it to connect data processing modules written in different programming languages (LabVIEW, Ruby, Python and Java) an
-
I recently installed Leopard and ilife 09, which included iWeb 09. I have always backed up my site when making any changes to it using iWeb expander. The back ups are saved to my external HD. I just opened iWeb to make new changes and an older saved
-
How to contact a representative by phone in the UK?
I called their number in the UK (0844 209 0611), and it doesn't pass me to a human help. only stupid questions about my iphone (why is it neccesary? it's not relevant to every case) and than keep talking ********. the voice quality is also terrible a
-
How to convert Oracle Report Output to Excel Spread Sheet..
Hello Sir, How to convert Oracle Report Output to Excel Spread Sheet.. Thanks..