Comware

 View Only

  • 1.  i have question comware5 vs comware7 configurations

    Posted Jun 21, 2021 09:29 AM

    I have questions.

    1. ssh authentication config.
    comware5 config :  ssh client authentication server 172.25.200.177 assign publickey 172.25.200.177
    comawre7 config : 

    2. IRF mode normal=enhanced same?
    comware5 config : port group interface Ten-GigabitEthernet x/x/x mode normal
    comware7 config : port group interface Ten-GigabitEthernet x/x/x mode enhanced

    3. info-center channel
    comware5 config :  info-center source default channel 4 log level debugging
    comware7 config : 

    4. local-user level
    comware5 config :  authorization-attribute level 1
    comware7 config : authorization-attribute user-role network-admin

    comware5 config :  authorization-attribute level 3
    comware7 config :

    comware5 config :  authorization-attribute level 4
    comware7 config : 



  • 2.  RE: i have question comware5 vs comware7 configurations

    Posted Jun 21, 2021 12:17 PM

    Hello,

     

    1. ssh authentication config.
    comware5 config :
    [Comware5]public-key local create rsa
    [Comware5]ssh server enable
    [Comware5]user-interface vty 0 15
    [Comware5-ui-vty0-15]authentication-mode scheme
    [Comware5-ui-vty0-15]protocol inbound ssh
    [Comware5]local-user <name>
    [Comware5-luser-sshmanager]password simple password
    [Comware5-luser-sshmanager]service-type ssh
    [Comware5-luser-sshmanager]authorizationattribute level 3
    [Comware5]undo telnet server enable
    comawre7 config :
    [Comware7]public-key local create rsa
    [Comware7]ssh server enable
    [Comware7]user-interface vty 0 63
    [Comware7-ui-vty0-63]authentication-mode scheme
    [Comware7-ui-vty0-63]protocol inbound ssh
    [Comware7]local-user <name>
    [Comware7-luser-sshmanager]password simple password
    [Comware7-luser-sshmanager]service-type ssh
    [Comware7-luser-manage-sshmanager]authorizationattribute user-role networkadm in
    [Comware7]undo telnet server

    2. IRF mode normal=enhanced same?
    Both mode are not same and can be used in comware 5 0r comware 7.

    mode: Sets the operating mode of the physical IRF port. If no mode is set, the port operates in enhanced
    mode. The operating mode set in this command takes effect only when the physical port is operating as
    an IRF physical port.
    • enhanced—Sets the physical IRF port to operate in enhanced mode. The switch does not support
    this keyword.
    • normal—Sets the physical IRF port to operate in normal mode

    3. info-center channel
    comware7 config : info-center source default ?
    console Specify the output rules for the console destination
    logbuffer Specify the output rules for the log buffer destination
    logfile Specify the output rules for the log file destination
    loghost Specify the output rules for the log host destination
    monitor Specify the output rules for the monitor destination

    [H3C]info-center source default loghost level ?
    alert Action must be taken immediately (severity=1)
    critical Critical conditions (severity=2)
    debugging Debug-level messages (severity=7)
    emergency System is unusable (severity=0)
    error Error conditions (severity=3)
    informational Informational messages (severity=6)
    notification Normal but significant conditions (severity=5)
    warning Warning conditions (severity=4)

    [H3C]info-center source default logfile ?
    deny Deny to output logs with any severity level
    level Set the severity level above which the system suppresses logs to the
    specified module. Setting the level to errors, for example, allows logs
    with levels emergencies, alerts, critical and errors to display


    4. local-user level
    comware5 config : authorization-attribute level 1
    comware7 config : authorization-attribute user-role ?
    STRING<1-63> User role name
    network-admin
    network-operator
    level-0
    level-1
    level-2
    level-3
    level-4
    level-5
    level-6
    level-7
    level-8
    level-9
    level-10
    level-11
    level-12
    level-13
    level-14
    level-15
    security-audit

    comware7 config : authorization-attribute user-role network-admin ?
    acl Specify ACL of local user
    callback-number Specify PPP callback number of local user
    idle-cut Specify idle cut function for local user
    user-profile Specify user profile of local user
    vlan Specify VLAN ID of local user
    work-directory Specify work directory of local user

     

    Thanks!



  • 3.  RE: i have question comware5 vs comware7 configurations

    Posted Jun 22, 2021 06:35 AM

    Replace the equipment from HPE10508 comware 5 -> HPE10508 comware 7.
    I have to do the same configuration.

    I have the current config of comware 5.
    I want to set the same setting as comware7.

     

    1. ssh authentication config.
    comware5 config :  ssh client authentication server 172.25.200.177 assign publickey 172.25.200.177
    comawre7 config : 

    2. comware5 IRF mode normal = comware7 IRF mode ??????
    comware5 config : port group interface Ten-GigabitEthernet x/x/x mode normal
    comware7 config : port group interface Ten-GigabitEthernet x/x/x mode ??????

    3. info-center channel
    comware5 config :  info-center source default channel 4 log level debugging
    comware7 config :  info-center source default ??????????????????????????

    4. local-user level
    comware5 config :  authorization-attribute level 1
    comware7 config : authorization-attribute user-role network-admin

    ----------> comware5 level 1 = comware7 network-admin right?

    comware5 config :  authorization-attribute level 3
    comware7 config : authorization-attribute user-role level- ??????????????

    comware5 config :  authorization-attribute level 4
    comware7 config : authorization-attribute user-role level- ??????????????



  • 4.  RE: i have question comware5 vs comware7 configurations

    Posted Jun 22, 2021 10:40 AM

    Hello,

    1. ssh authentication config. :  Pease share full config of 'ssh'?

    2. comware5 IRF mode normal: 
    comware7 config : port group interface Ten-GigabitEthernet x/x/x mode <normal>   if 'normal' mode is not available then put:     port group interface Ten-GigabitEthernet x/x/x 

    3. info-center channel
    comware7 config :  info-center source default logbuffer level debugging

    4. local-user level:     
    ----------> comware5 level 1 = comware7 network-admin right?  --> I believe both are different

    comware7 config :  Use below config

    authorization-attribute user-role network-admin
    authorization-attribute user-role level-3
    authorization-attribute user-role level-4

    Thanks!



  • 5.  RE: i have question comware5 vs comware7 configurations

    Posted Jun 26, 2021 08:37 PM

    1. ssh authentication config. :  Pease share full config of 'ssh'?
    -> ssh server enable
        #
        public-key peer 1.1.1.1
        public-key-code begin
         308201B7330  ····································································································································································
          ········································································································································································································
         ·············································································································································································································
        public-key-code end
        peer-public-key end
        #
        ssh client authentication server 1.1.1.1 assign publickey 1.1.1.1
         
         this is full config of ssh

    2. comware5 IRF mode normal:  -> What mode should I use in comware 7?
    comware7 config : port group interface Ten-GigabitEthernet x/x/x mode <normal>   if 'normal' mode is not available then put:     port group interface Ten-GigabitEthernet x/x/x 

     

     

     



Related Content