Cisco.IOS.in.a.Nutshell.Quick.Reference.DEFINITIONS.pdf

Cisco IOS in a Nutshell, Quick Reference - DEFINITIONS

aaa accounting

global

aaa accounting {auth-proxy | system | network | exec | connection |

commands level } {default | list-name} [vrf vrf-name ] {start-stop |

stop-only | none} [broadcast] group group-name

no aaa accounting {auth-proxy | system | network | exec | connection |

commands level } {default | list-name} [vrf vrf-name ] {start-stop |

stop-only | none} [broadcast] group group-name

Configures

AAA Accounting

Default

Disabled

Description

This command enables accounting, which can be used for billing and security purposes.

auth-proxy

Provides information about all authenticated proxy user events.

system

Enables accounting for all system events that are not associated with a user (such

as a reload).

exec

Enables accounting for EXEC-level commands.

connection

Provides information about all outbound connections, such as telnet, LAT, rlogin

and SSH.

commands level

Enables accounting for the specified privilege level (0 to 15).

default

Uses the listed accounting methods that follow this argument as the default list for

accounting services

list-name

Specifies the AAA accounting protocol to use ( radius or tacacs+ ).

vrf vrf-name

Optional. Specifies a virtual route forwarding (VRF) configuration.

start-stop

Creates an accounting entry at the start and end of the command.

stop-only

Sends an accounting entry only when the command has completed execution.

none

Disables accounting services on this line or interface.

broadcast

Optional. Enables the sending accounting records to multiple AAA servers.

group group-name

Specifies the AAA accounting protocol to use for the specified server group

( group radius and group tacacs+ ).

Example

The following configuration statements enable AAA accounting for commands at level 5.

An accounting entry is generated when the command is initiated and when it is

terminated; the command doesn't execute until the server has received the message and

the TACACS+ protocol is used to send the entries to the accounting server.

aaa new-model

aaa accounting command 5 default group tacacs+

aaa accounting delay-start

global

aaa accounting delay-start

no accounting delay-start

Configures

Delays accounting start records until the user's IP address is established

Default

Disabled (no delay)

Description

The default behavior is to start accounting as soon as the user connects, even before her

IP address has been established. The command delays the accounting until the IP address

has been established.

aaa accounting gigawords

global

aaa accounting gigawords

no aaa accounting gigawords

Configures

Enables 64-bit counters within AAA

Default

Enabled

Description

The command is enabled by default and only shows up in the configuration if the no

version is used. The high-capacity counters provide greater counter capacity but use 8

percent of CPU memory for 24,000 sessions running under the ready state. If you do

disable this with the no form of the command, you must reload the router to have it take

effect.

aaa accounting nested

global

aaa accounting nested

no aaa accounting nested

Configures

Nesting network records within EXEC start and stop records

Default

Disabled

Description

This commands keeps EXEC start and stop records togetheror nestedfor PPP users who

start EXEC terminal sessions. Such nesting can be helpful for certain billing practices.

aaa accounting resource

global

aaa accounting resource method-list start-stop [broadcast] group group-

name

no accounting resource method-list start-stop [broadcast] group group-

name

aaa accounting resource method-list stop-failure [broadcast] group

group-name

no accounting resource method-list stop-failure [broadcast] group

group-name

Configures

Accounting for the starting or stopping of a connection

Default

N/A

Description

The start-stop version of this command enables the accounting of a user's connection

at the start of the call and at the end. The stop-failure command enables the generation

of a stop record if the user's call is terminated.

method-list

Method used for accounting services. You can set this to default or provide a list

of accounting methods.

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: