Appendix K. Configuration Objects
Prev   Next

Appendix K. Configuration Objects

Table of Contents

K.1. Top level
K.1.1. config: Top level config
K.2. Objects
K.2.1. system: System settings
K.2.2. link: Web links
K.2.3. routing-table: Default source IP for services using a given table
K.2.4. user: Admin users
K.2.5. eap: User access controlled by EAP
K.2.6. log: Log target controls
K.2.7. log-syslog: Syslog logger settings
K.2.8. log-email: Email logger settings
K.2.9. services: System services
K.2.10. http-service: Web service settings
K.2.11. dns-service: DNS service settings
K.2.12. dns-host: Fixed local DNS host settings
K.2.13. dns-block: Fixed local DNS blocks
K.2.14. radius-service: RADIUS service definition
K.2.15. radius-service-match: Matching rules for RADIUS service
K.2.16. radius-server: RADIUS server settings
K.2.17. telnet-service: Telnet service settings
K.2.18. snmp-service: SNMP service settings
K.2.19. time-service: System time server settings
K.2.20. ethernet: Physical port controls
K.2.21. portdef: Port grouping and naming
K.2.22. interface: Port-group/VLAN interface settings
K.2.23. subnet: Subnet settings
K.2.24. vrrp: VRRP settings
K.2.25. dhcps: DHCP server settings
K.2.26. dhcp-attr-hex: DHCP server attributes (hex)
K.2.27. dhcp-attr-string: DHCP server attributes (string)
K.2.28. dhcp-attr-number: DHCP server attributes (numeric)
K.2.29. dhcp-attr-ip: DHCP server attributes (IP)
K.2.30. pppoe: PPPoE settings
K.2.31. ppp-route: PPP routes
K.2.32. route: Static routes
K.2.33. network: Locally originated networks
K.2.34. blackhole: Dead end networks
K.2.35. loopback: Locally originated networks
K.2.36. namedbgpmap: Mapping and filtering rules of BGP prefixes
K.2.37. bgprule: Individual mapping/filtering rule
K.2.38. bgp: Overall BGP settings
K.2.39. bgppeer: BGP peer definitions
K.2.40. bgpmap: Mapping and filtering rules of BGP prefixes
K.2.41. cqm: Constant Quality Monitoring settings
K.2.42. l2tp: L2TP settings
K.2.43. l2tp-incoming: L2TP settings for incoming L2TP connections
K.2.44. l2tp-relay: Relay and local authentication rules for L2TP
K.2.45. profile: Control profile
K.2.46. profile-date: Test passes if within any of the time ranges specified
K.2.47. profile-time: Test passes if within any of the date/time ranges specified
K.2.48. profile-ping: Test passes if any addresses are pingable
K.2.49. shaper: Traffic shaper
K.2.50. shaper-override: Traffic shaper override based on profile
K.2.51. ip-group: IP Group
K.2.52. dhcp-relay: DHCP server settings for remote / relayed requests
K.3. Data types
K.3.1. user-level: User login level
K.3.2. ppp-dump: PPP dump format
K.3.3. autoloadtype: Type of s/w auto load
K.3.4. config-access: Type of access user has to config
K.3.5. eap-subsystem: Subsystem with EAP access control
K.3.6. eap-method: EAP access method
K.3.7. syslog-severity: Syslog severity
K.3.8. syslog-facility: Syslog facility
K.3.9. http-mode: HTTP/HTTPS security mode
K.3.10. radiuspriority: Options for controlling platform RADIUS response priority tagging
K.3.11. radiustype: Type of RADIUS server
K.3.12. month: Month name (3 letter)
K.3.13. day: Day name (3 letter)
K.3.14. port: Physical port
K.3.15. Crossover: Crossover configuration
K.3.16. LinkFlow: Physical port flow control setting
K.3.17. LinkClock: Physical port Gigabit clock master/slave setting
K.3.18. LinkLED-y: Yellow LED setting
K.3.19. LinkLED-g: Green LED setting
K.3.20. LinkPower: PHY power saving options
K.3.21. LinkFault: Link fault type to send
K.3.22. trunk-mode: Trunk port mode
K.3.23. ramode: IPv6 route announce level
K.3.24. bgpmode: BGP announcement mode
K.3.25. sfoption: Source filter option
K.3.26. pppoe-mode: Type of PPPoE connection
K.3.27. pppoe-calling: Additional prefix on PPPoE calling ID
K.3.28. peertype: BGP peer type
K.3.29. radius-nas: NAS IP to report
K.3.30. switch: Profile manual setting
K.4. Basic types

This appendix defines the object definitions used in the FireBrick FB6202 L2TP configuration. Copyright © 2008-2022 FireBrick Ltd.

K.1. Top level

K.1.1. config: Top level config

The top level config element contains all of the FireBrick configuration data.

Table K.1. config: Attributes

AttributeTypeDefaultDescription
ip IPAddr -Config store IP address
patch integer -Internal use, for s/w updates that change config syntax
serial string -Serial number
timestamp dateTime -Config store time, set automatically when config is saved
version string -Code version
who string -Config store username

Table K.2. config: Elements

ElementTypeInstancesDescription
bgp bgp Optional, up to 100BGP config
bgp-filter namedbgpmap Optional, unlimitedMapping and filtering rules for use with BGP peers
blackhole blackhole Optional, unlimitedBlack hole (dropped packets) networks
cqm cqm OptionalConstant Quality Monitoring config
dhcp-relay dhcp-relay Optional, unlimitedDHCP server settings for remote / relayed requests
eap eap Optional, unlimitedUser access control via EAP
ethernet ethernet Optional, unlimitedEthernet port settings
interface interface Optional, up to 8192Ethernet interface (port-group/vlan) and subnets
ip-group ip-group Optional, unlimitedNamed IP groups
l2tp l2tp OptionalL2TP settings
log log Optional, up to 50Log target controls
loopback loopback Optional, unlimitedExtra local addresses
network network Optional, unlimitedLocally originated networks
nowhere blackhole Optional, unlimitedDead end (icmp error) networks
port portdef Optional, up to 2Port grouping and naming
ppp pppoe Optional, up to 10PPPoE settings
profile profile Optional, unlimitedControl profiles
route route Optional, unlimitedStatic routes
routing-tables routing-table Optional, unlimitedRouting table settings
services services OptionalGeneral system services
shaper shaper Optional, unlimitedNamed traffic shapers
system system OptionalSystem settings
user user Optional, unlimitedAdmin users

Prev   Next
J.2. One Time Password seed hashing Home K.2. Objects