aaa proxy-limit proxy_limit | disable
|
aaa-server radius-acctport port
|
aaa-server radius-authport port
|
clear - any command beginning with clear is unsupported
|
clock set hh:mm:ss {day month | month day} year
|
clock summer-time zone recurring [week weekday month hh:mm week weekday month hh:mm] [offset]
|
clock timezone zone hours [minutes]
|
For the PIX 501 and PIX 506/506E only: Configure factory-default [inside_ip_address [address_mask]]
|
configure http[s] :// [user:password@] location [:port] / http_pathname
|
configure memory
|
configure net [[server_ip]:[filename]]
|
configure terminal
|
copy capture: capture_name tftp://location/path [pcap]
|
copy http[s] :// [user:password@] location [:port] / http_pathname flash [: [image | pdm]]
|
copy tftp [: [[//location] [/tftp_pathname]]] flash[:[image | pdm]]
|
crypto dynamic-map dynamic-map-name dynamic-seq-num match address acl_name
|
crypto dynamic-map dynamic-map-name dynamic-seq-num set peer hostname | ip-address
|
crypto dynamic-map dynamic-map-name dynamic-seq-num set pfs [group1 | group2]
|
crypto dynamic-map dynamic-map-name dynamic-seq-num set security-association lifetime seconds seconds | kilobytes kilobytes
|
crypto dynamic-map dynamic-map-name dynamic-seq-num set transform-set transform-set-name1 [transform-set-name9]
|
crypto ipsec security-association lifetime seconds seconds | kilobytes kilobytes
|
crypto ipsec transform-set transform-set-name transform1 [transform2 [transform3]]
crypto ipsec transform-set transform-set-name mode transport
|
crypto map map-name client [token] authentication aaa-server-name
|
crypto map map-name client configuration address initiate | respond
|
crypto map map-name interface interface-name
|
crypto map map-name seq-num ipsec-isakmp | ipsec-manual [dynamic dynamic-map-name]
|
crypto map map-name seq-num match address acl_name
|
crypto map map-name seq-num set peer hostname | ip-address
|
crypto map map-name seq-num set pfs [group1 | group2]
|
crypto map map-name seq-num set security-association lifetime seconds seconds | kilobytes kilobytes
|
crypto map map-name seq-num set session-key inbound | outbound ah spi hex-key- string
|
crypto map map-name seq-num set session-key inbound | outbound esp spi cipher hex-key-string [authenticator hex-key-string]
|
crypto map map-name seq-num set transform-set transform-set-name1 [transform-set-name6]
|
debug - any command beginning with debug is unsupported
|
eeprom update
|
enable [priv_level]
|
enable password [pw] [level priv_level] [encrypted]
|
failover mac address mif_name act_mac stn_mac
|
failover reset
|
filter activex port local_ip mask foreign_ip mask
|
filter url except local_ip local_mask foreign_ip foreign_mask
|
filter java port[-port] local_ip mask foreign_ip mask
|
filter url port | except local_ip mask foreign_ip mask [allow] [proxy-block] [longurl-truncate | longurl-deny] [cgi-truncate]
|
flashfs downgrade {4.x | 5.0 | 5.1}
|
igmp access-group acl_id
|
igmp version {1 | 2}
|
igmp join-group group
|
igmp query-interval seconds
|
igmp query-max-response-time seconds
|
ip local pool pool_name pool_start-address[-pool_end-address]
|
isakmp client configuration address-pool local pool-name [interface-name]
|
isakmp enable interface_name
|
isakmp identity address | hostname
|
isakmp lifetime seconds [retry_seconds]
|
isakmp keepalive seconds [retry_seconds]
|
isakmp key keystring address peer-address [netmask mask] [no-xauth] [no-config-mode]
|
isakmp peer fqdn fqdn no-xauth no-config-mode
|
isakmp policy priority authentication pre-share | rsa-sig
|
isakmp policy priority encryption des | 3des
|
isakmp policy priority group1 | 2
|
isakmp policy priority hash md5 | sha
|
isakmp policy priority lifetime seconds
|
logging message syslog_id
|
logging device-id {hostname | ipaddress if_name | string text}
|
login
|
mroute src smask in-if-name dst dmask out-if-name
|
multicast interface interface_name [max-groups number]
|
nat [(if_name)] 0 access-list acl_name
|
ntp authenticate
|
ntp authentication-key number md5 value
|
ntp server ip_address [key number] source if_name [prefer]
|
ntp trusted-key number
|
perfmon verbose
|
perfmon interval seconds
|
perfmon settings
|
ping [if_name] ip_address
|
privilege [show | clear | configure] level level [mode enable | configure] command command
|
quit
|
reload
|
reload noconfirm
|
degub rip [if_name]
|
setup
|
show - any command beginning with show is unsupported
|
shun src_ip [dst_ip sport dport [protocol]]
|
[no] sysopt connection permit-pptp | permit-l2pt | permit-ipsec
|
[no] sysopt connection tcpmss minimum bytes
|
[no] sysopt connection timewait
|
sysopt ipsec pl-compatible
|
[no] sysopt nodnsalias inbound | outbound
|
sysopt radius ignore-secret
|
sysopt security fragguard
|
sysopt uauth allow-http-cache
|
url-block block block_buffer_limit
|
url-block url-mempool memory_pool_size
|
url-block url-size long_url_size
|
N2H2
url-server [(if_name)] vendor websense host local_ip [port number] [timeout seconds] [protocol {TCP | UDP}]
|
vpdn enable if_name
|
vpdn group_name accept dialin pptp|12tp
|
vpdn group group_name 12tp tunnel hello hello_timout
|
vpdn group group_name ppp encryption mppe 40 | 128 | auto [required]
|
vpdn group group_name client configuration address local address_pool_name
|
vpdn group group_name client configuration dns dns_server_ip1 [dns_sercre_ip2]
|
vpdn group group_name client configuration wins wins_server_ip1 [wins_server_ip2]
|
vpdn group group_name client authentication aaa aaa_server_group
|
vpdn group group_name pptp echo echo_timeout
|
vpngroup group_name address-pool pool_name
|
vpngroup group_name default-domain domain_name
|
vpngroup group_name dns-server dns_ip_prim [dns_ip_sec]
|
vpngroup group_name idle-time idle_seconds
|
vpngroup group_name max-time max_seconds
|
vpngroup group_name password preshared_key
|
vpngroup group_name pfs
|
vpngroup group_name split-dns domain_name1 [domain_name2, domain_name3, ..., domain_name8]
|
vpngroup group_name split-tunnel acl_name
|
vpngroup group_name wins-server wins_ip_prim [wins_ip_sec]
|
who [local_ip]
|
write - any command beginning with write is unsupported
|