Manualshelf

Operation Manual

ManualsBrandsTrapeze smart mobile ManualsSoftwareMobility System Software 7.3
101102103104105106107108109110
IP Services Commands
IP Services Commands
8 – 105
Usage
By default, all addresses except the host address of the VLAN, the network broadcast
address, and the subnet broadcast address are included in the range. If you specify the range, the
start address must be lower than the stop address, and all addresses must be in the same subnet.
The IP interface of the VLAN must be within the same subnet but is not required to be within the
range.
Specification of the DNS domain name, DNS servers, and default router are optional. If you omit
one or more of these options, the MSS DHCP server uses oath values configured elsewhere on the
switch:
DNS domain name—If this option is not set with the set interface dhcp-server command
dns-domain option, the MSS DHCP server uses the value set by the set ip dns domain
command.
DNS servers—If these options are not set with the set interface dhcp-server command
primary-dns and secondary-dns options, the MSS DHCP server uses the values set by the
set ip dns server command.
Default router—If this option is not set with the set interface dhcp-server command
default-router option, the MSS DHCP server can use the value set by the set ip route
command. A default route configured by set ip route can be used if the route is in the DHCP
client subnet. Otherwise, the MSS DHCP server does not specify a router address.
Examples
The following command enables the DHCP server on VLAN red-vlan to serve addresses
from the 192.168.1.5 to 192.168.1.25 range:
MX# set interface red-vlan ip dhcp-server enable start 192.168.1.5 stop 192.168.1.25
success: change accepted.
See Also
set ip dns domain on page 8-107
set ip dns server on page 8-108
show dhcp-server on page 8-133
set interface security
Configures the IPSec client for the interface.
Syntax
set interface int_id ip security destination dst_addr spi spi encrypt-algo
[3des-cbc 3des_cbc_key | aes-cbc aes_cbc_key]
auth-algo [hmac hmac_key | sha1 sha1_key]
Defaults
None
Access
Enabled
History
Added in MSS 7.1
Usage
IPSec is a general purpose internet security protocol, and can be used for protecting layer 4
protocols, including both TCP and UDP. IPSec has an advantage over SSL and other methods
because the application does not need to be designed to use IPSec like other higher-layer protocol
that must beincorporated into the design of an application.
Examples
To set the IPSec parameters, use the following command:
MX# set interface 1 ip security destination 192.168.1.100 spi 200
encrypt-algo aes-cbc thisistheencrkey auth-algo hmac -sha1 theauthenticationkey
Version 5.0 New options added:
dns-domain
primary-dns and secondary-dns
default-router