CCNP TSHOOT 6.0 - The Cisco Learning Network
CCNP TSHOOT 6.0 - The Cisco Learning Network
CCNP TSHOOT 6.0 - The Cisco Learning Network
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>CCNP</strong>v6 <strong>TSHOOT</strong><br />
In the above example, DLS1 allows only SSH as an input transport protocol on vty lines, but it allows both SSH<br />
and Telnet on output.<br />
R3#show users<br />
Line User Host(s) Idle Location<br />
* 0 con 0 idle 00:00:00<br />
194 vty 0 raduser idle 00:22:52 10.1.80.100<br />
195 vty 1 admin idle 00:00:22 10.1.50.1<br />
In the above example, two users are logged in to R3 using the vty lines (could be Telnet or SSH), one from host<br />
10.1.80.100 and one from host 10.1.50.1.<br />
RADIUS-related Commands<br />
DLS1#show radius server-group all<br />
Sever group radius<br />
Sharecount = 1 sg_unconfigured = FALSE<br />
Type = standard Memlocks = 1<br />
Server(10.1.50.1:1645,1646) Transactions:<br />
Authen: Not Available Author:Not Available Acct:Not Available<br />
In the above example, DLS1 is configured to access a RADIUS server at IP address 10.1.50.1, using ports 1645<br />
and 1646. No transaction have taken place.<br />
DLS1#show radius statistics<br />
Auth. Acct. Both<br />
Maximum inQ length: NA NA 1<br />
Maximum waitQ length: NA NA 1<br />
Maximum doneQ length: NA NA 1<br />
Total responses seen: 0 0 0<br />
Packets with responses: 0 0 0<br />
Packets without responses: 4 0 4<br />
Average response delay(ms): 0 0 0<br />
Maximum response delay(ms): 0 0 0<br />
Number of Radius timeouts: 16 0 16<br />
Duplicate ID detects: 0 0 0<br />
Buffer Allocation Failures: 0 0 0<br />
Maximum Buffer Size (bytes): 82 0 82<br />
Source Port Range: (2 ports only)<br />
1645 - 1646<br />
Last used Source Port/Identifier:<br />
1645/4<br />
1646/0<br />
In the above example, DLS1 has attempted to contact the server 16 times (four attempted logins with four retries<br />
each), and all attempts have timed out due to lack of accessibility of the server.<br />
DLS1#debug radius authentication<br />
Radius protocol debugging is on<br />
Radius protocol brief debugging is off<br />
Radius protocol verbose debugging is off<br />
Radius packet hex dump debugging is off<br />
Radius packet protocol debugging is on<br />
Radius packet retransmission debugging is off<br />
Radius server fail-over debugging is off<br />
Radius elog debugging is off<br />
All contents are Copyright © 1992–2010 <strong>Cisco</strong> Systems, Inc. All rights reserved. This document is <strong>Cisco</strong> Public Information. Page 11 of 22