D-Link DFL-260E User Manual for DFL-260E - Page 40
Using Hostnames in the CLI, Serial Console CLI Access, SSH Secure Shell CLI Access, for IPsec
View all D-Link DFL-260E manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 40 highlights
2.1.4. The CLI Chapter 2. Management and Maintenance For more on scripts see Section 2.1.5, "CLI Scripts". The CLI will enforce unique naming within an object type. For reasons of backward compatibility to earlier NetDefendOS releases, an exception exists with IP rules which can have duplicate names, however it is strongly recommended to avoid this. If a duplicate IP rule name is used in two IP rules then only the Index value can uniquely identify each IP rule in subsequent CLI commands. Referencing an IP rule with a duplicated name will fail and result in an error message. Using Hostnames in the CLI For certain CLI commands, IP addresses can optionally be specified as a textual hostname instead an IP4Address object or raw IP address such as 192.168.1.10. When this is done, the hostname must be prefixed with the letters dns: to indicate that a DNS lookup must be done to resolve the hostname to an IP address. For example, the hostname host.company.com would be specified as dns:host.company.com in the CLI. The parameters where URNs might be used with the CLI are: • The Remote Endpoint for IPsec, L2TP and PPTP tunnels. • The Host for LDAP servers. When DNS lookup needs to be done, at least one public DNS server must be configured in NetDefendOS for hostnames to be translated to IP addresses. Serial Console CLI Access The serial console port is a local RS-232 port on the NetDefend Firewall that allows direct access to the NetDefendOS CLI through a serial connection to a PC or dumb terminal. To locate the serial console port on D-Link hardware, see the D-Link Quick Start Guide . To use the console port, the following equipment is required: • A terminal or a computer with a serial port and the ability to emulate a terminal (such as using the Hyper Terminal software included in some Microsoft Windows™ editions). The serial console port uses the following default settings: 9600 bps, No parity, 8 data bits and 1 stop bit. • A RS-232 cable with appropriate connectors. An appliance package includes a RS-232 null-modem cable. To now connect a terminal to the console port, follow these steps: 1. Set the terminal protocol as described previously. 2. Connect one of the connectors of the RS-232 cable directly to the console port on the NetDefend Firewall system. 3. Connect the other end of the cable to the terminal or the serial connector of the computer running the communications software. 4. Press the enter key on the terminal. The NetDefendOS login prompt should appear on the terminal screen. SSH (Secure Shell) CLI Access The SSH (Secure Shell) protocol can be used to access the CLI over the network from a remote host. SSH is a protocol primarily used for secure communication over insecure networks, providing strong authentication and data integrity. SSH clients are freely available for almost all hardware 40