Friday, December 17, 2010

How to add licenses Key to wireless module in H3C switch 7500 ?


Before putting this Licenses key. we should register the key with H3c web site,
 
This Keys are add via console and need to reboot the wireless module.this key will come with 128 Access point licenses (one key will Constance 128 Access point licenses),
  
Command for add the Licenses.
 
[WIRELESS_MODULE] license append
  STRING<1-20>  License Key

[WIRELESS_MODULE]         license append  XX4B4232909103DXXFXX
By - No comments:
Labels:

Wednesday, December 1, 2010

How to recovery the password in IPS module ? IPS Password breaking in H3C devices

 How to recovery the password for H3C IPS module ?

BootWare Menu
SecBlade card is powered on, the card first performs system initialization. After system initialization, the
following information is displayed on the configuration terminal:
System start booting...
Booting Normal Extend BootWare....
********************************************************
* *
* SecBlade BootWare, Version 1.12 *
* *
********************************************************
Copyright (c) 2004-2007 Hangzhou H3C Technologies Co., Ltd.
Compiled Date : Jul 27 2007
CPU Type : XLR732
CPU L1 Cache : 32KB
CPU Clock Speed: 1000MHz
Memory Type : DDR2 SDRAM
Memory Size : 1024MB
Memory Speed : 533MHz
BootWare Size : 1024KB
Flash Size : 4MB
cfa0 : 244MB
CPLD Version : 135.0
PCB Version : Ver.A
3-6
BootWare Validating...
Press Ctrl+B to enter extended boot menu...
Press Ctrl+B to enter the extended boot menu. Otherwise, the SecBlade card will enter the application
file decompression process.
Step 1 You must press Ctrl+B in four seconds after “Press Ctrl+B to enter extended boot menu” appears.
Otherwise, the SecBlade card will enter the application file decompression process.
Step 2 Please input BootWare password:
You are required to enter the BootWare password. (Note: The initial BootWare password is null. You
have three attempts to enter the correct BootWare password. A fourth attempt will make the card halt
and you need to restart the card to enter the correct password.) After you type the correct BootWare
password, the current operating device and the main menu are displayed.
Note: The current operating device is cfa0
Enter < Storage Device Operation > to select device.

==================<EXTEND-BootWare MENU>=====================
| <1> Boot System |
| <2> Enter Serial SubMenu |
| <3> Enter Ethernet SubMenu |
| <4> File Control |
| <5> Modify BootWare Password |
| <6> Skip Current System Configuration |
| <7> BootWare Operation Menu |
| <8> Clear Super Password |

(Clear the super user password. The super user password is required in user level switching. By default, no
super user password is set. The setting is valid only for the first reboot of the SecBlade card and
the super user password will be restored next time the SecBlade card reboots.)

| <9> Storage Device Operation |
| <0> Reboot |
=============================================================
Enter your choice(0-9):8
By - No comments:
Labels:

IP Accounting in H3C Devices


Configuration Procedure in H3C devices

Configure the router.

# Enable IP accounting.

<Router> system-view
[Router] ip count enable

# Configure an IP accounting rule.
[Router] ip count rule 1.1.1.1 24

# Set the aging time to 1440 minutes (24 hours).
[Router] ip count timeout 1440

# Set the maximum number of accounting entries in the interior table to 100.
[Router] ip count interior-threshold 100

# Set the maximum number of accounting entries in the exterior table to 20.
[Router] ip count exterior-threshold 20

# Assign Ethernet 1/0 an IP address and count both incoming and outgoing IP packets on it.
[Router] interface ethernet 1/0
[Router-Ethernet1/0] ip address 1.1.1.2 24
[Router-Ethernet1/0] ip count inbound-packets
[Router-Ethernet1/0] ip count outbound-packets
[Router-Ethernet1/0] quit

# Assign Ethernet 1/1 an IP address.
[Router] interface ethernet 1/1
[Router-Ethernet1/1] ip address 2.2.2.1 24
[Router-Ethernet1/1] quit

 Configure Host A and Host B.

# Configure static routes from Host A to Host B and from Host B to Host A. Ping Host B from Host A.
Omitted.
#Display the IP accounting information.
# Display IP accounting information on the router.

[Router] display ip count inbound-packets interior
1 Inbound streams information in interior list:

SrcIP DstIP Protocol Pkts Bytes
1.1.1.1 2.2.2.2 ICMP 4 240
[Router] display ip count outbound-packets interior
1 Outbound streams information in interior list:
15-4
SrcIP DstIP Protocol Pkts Bytes
2.2.2.2 1.1.1.1 ICMP 4 240

The two hosts can be replaced by other types of network devices such as routers.

Displaying and Maintaining IP Accounting Configuration

To do… Use the command… Remarks
Display the IP accounting
rules

display ip count rule Available in any view

display ip count { inbound-packets |
outbound-packets } { exterior | firewall-denied |
interior }

Clear IP accounting information

reset ip count { all | exterior | firewall | interior } Available in user view

After you configure a new IP accounting rule, it is possible that some originally rule-incompliant
packets from a subnet comply with the new rule. Information about these packets is then saved in the
interior table. The exterior table, however, may still contain information about the IP packets from the
same subnet. Therefore, in some cases, the interior and exterior tables contain statistics information
about the IP packets from the same subnet. The statistics information in the exterior table will be
removed when the aging time expires.

By -
Labels:
Subscribe to: Posts (Atom)

Optimization of fortigate IPS

IPS signature need select according to infrastructure environment  Eg:-  if  we are not have Linux servers this ips signature can disable (d...