Académique Documents
Professionnel Documents
Culture Documents
CLIURLSyntax
All CLIcommands that accept a URL as a download source or upload destination are formatted as:
protocol://host/path
For example, the SCP protocol must use the format:
scp://host/path
If path is a directory, it must end with a forward slash (/).
The following protocols are supported, although some commands do not support all of the protocols:
l
l
l
l
l
ftp://<username:password>@<hostname[:port]>/path>
ftps://<username:password>@<hostname[:port]>/path>
http://<hostname[:port]>/<path>
https://<hostname[:port]>/<path>
scp://<username:password>@<hostname[:port]>/<path>
Note
URLs cannot contain spaces. If the hostname or path contains a space, you must use the URL-encoded characters
instead: %20.
For example,enter the following URL.
http://yourserver.com/d/backup 2.tgz.gpg
as
http://yourserver.com/d/backup%202.tgz.gpg.
>enable
>exit
>help
> ping
>show
> tracepath
>enable
Use this command to enter privileged mode. Privileged mode commands enable you to view and change your configuration
settings.
By default, you are not required to enter a password for privileged mode. You can configure a password for privileged mode
using the #security enable-password CLIcommand.
See Privileged Mode Commands for information on commands available in privileged mode.
Syntax
> enable
Example
Management Center> enable
Management Center#
>exit
Exit the CLIand return to the banner, where you can choose to enter the CLIor Management Center setup.
Syntax
> exit
Example
Management Center> exit
Copyright (c) 2015, Blue Coat Systems, Inc.
-------------------------------------------Enter option:
>help
Display a list of all commands and a brief description of each. Alternatively, use ?to display the list.
This command is also available in privileged mode.
Syntax
>help
or
>?
Example
Management Center> help
enableTurn on privileged commands
exitExit command line interface
help(or ?) Display this help
pingPing utility
showShow system information
tracepathTrace path utility
> ping
Verify whether a particular destination exists and is responding to requests by sending ICMPecho packets.
This command is also available in privileged mode.
Syntax
> ping <hostname or IP address>
Example
Management Center> ping 192.0.2.0
PING 192.0.20.0 (192.0.20.0) 56(84) bytes of data
64 bytes from 192.0.20.0: icmp_seq=1 ttl=125 time=6.43 ms
64 bytes from 192.0.20.0: icmp_seq=2 ttl=125 time=2.34 ms
64 bytes from 192.0.20.0: icmp_seq=3 ttl=125 time=2.71 ms
64 bytes from 192.0.20.0: icmp_seq=4 ttl=125 time=2.31 ms
--- 192.0.20.0 ping statistics --4 packets transmitted, 4 received, 0% packet loss, time 3007ms
rtt min/avg/max/mdev = 2.319/3.454/6.437/1.729 ms
>show
Display system information.
This command is also available in privileged mode.
Syntax
> show [subcommands]
Subcommands
> show http-proxy
Displays HTTP proxy status (enabled or not) and configuration (host, port, user name, password).
> show installed-systems
Lists the images that are currently installed on the system and each image's software version number, release build number, and when the image was last booted.
> show interface
Displays interface and network settings, including IP address, subnet mask, gateway, and DNS servers.
> show license
Lists the component names of all licenses installed on the system and, for each license, displays the status (Valid, Invalid,
Expired, Unknown), date the license was activated, expiration date, and type (such as Subscription or Demo).
> show setupinfo
Display system configuration, such as IP address and DNS servers.This reflects the settings specified during initial configuration of Management Center.
> show snmp
Displays the community string and whether remote read access is enabled or disabled.
> show status
Example
Management Center>show setupinfo
Network settings:
IP address: 10.169.21.51
Subnet mask: 255.255.254.0
IP gateway: 10.169.21.1
DNS server: 10.167.4.55
DNS server: 10.167.4.50
NIC media setting: auto
HTTP Proxy settings:
Enabled: false
HTTP Proxy host:
HTTP Proxy port:
Username:
Password:
> tracepath
Identifies the route packets take to reach a destination. The command executes until the entire route to the host is traced;
alternatively, you can press you press Control+C to return to the command prompt while the trace is in progress.
This command is also available in privileged mode.
Syntax
> tracepath <hostname or IP address>
Example
Management Center> tracepath google.com
1: 192.0.2.0 (192.0.2.0) 0.131ms pmtu 1500
1: server1-company.com (192.0.2.1) 0.725ms
1: server1-company.com (192.0.2.1) 0.429ms
2: 172.16.167.17 (172.16.167.17) 0.581ms
10
# backup
11
# diagnostic-systems
13
# disable
13
Syntax
13
# exit
14
# help
14
# http-proxy
15
# installed-systems
16
# license
17
# ping
18
# restart
19
# restore-defaults
19
# security
20
# service
22
# shutdown
23
# snmp
23
# tracepath
23
# verify-hardware
24
# backup
Back up Management Center configurations, and view and restore existing backups.
Syntax
#backup [subcommands]
Subcommands
# backup create
11
Example
Management Center# backup view
Available Backups:
12
Version
1.3.1.1 (656472)
1.3.1.1 (655779)
# diagnostic-systems
Enables users to view, add, lock, unlock and view diagnostic information about devices on Management Center.
Syntax
# diagnostic-systems [subcommands]
Subcommands
# diagnostic-systems add <URL>
Downloads and installs the specified diagnostic image. The user is shown progress (bytes downloaded) which they can
safely stop watching by entering Ctrl+C. They may resume watching the download progress by running diagnosticsystems view-downloads.
# diagnostic-systems view
Displays the list of diagnostic images installed on the appliance.
# diagnostic-systems view-downloads
Displays running progress of the diagnostic image currently being downloaded. If no image is being downloaded, it displays the status of the last download request. The user can stop watching the progress by entering Ctrl+C.
# diagnostic-systems delete <index>
Deletes the specified diagnostic image from the appliance. Locked systems cannot be deleted.
# diagnostic-systems lock <index>
Locks the specified diagnostic image, preventing it from being deleted.
# diagnostic-systems unlock <index>
Unlocks the specified diagnostic image, allowing it to be deleted.
Examples
# disable
Return to standard mode in the CLI.
Syntax
#disable
13
Example
Management Center# disable
# exit
Exit the CLIand return to the banner, where you can choose to enter the CLIor Management Center setup.
To return to standard mode from privileged mode, use the disable command. See # disable for information.
Syntax
# exit
Example
Management Center# exit
Copyright (c) 2015, Blue Coat Systems, Inc.
Welcome to the Blue Coat Management Center CLI
-------------------------------------------Enter option:
# help
Display a list of all commands and a brief description of each. Alternatively, use ?to display the list.
This command is also available in standard mode.
Syntax
#help
or
#?
Example
Management Center# help
14
# http-proxy
Configure Explicit HTTP Proxy settings.
Syntax
# http-proxy [subcommands]
Subcommands
> show http-proxy
Display network settings and HTTP Proxy settings, such as IP address, DNS servers, HTTP Proxy host IP address and
HTTP Proxy port number.
# http-proxy enable
Enables use of the proxy.
# http-proxy disable
Disables use of the proxy.
# http-proxy configure
Configures proxy settings, such as Proxy host, port, username and password.
Example
Management Center>http-proxy configure
Network settings:
IP address: 10.169.0.219
15
# installed-systems
Upgrade and manage installed systems.
Warning: Before upgrading the Management Center image, set the default system image to the currently running
image.
Syntax
# installed-systems [subcommands]
Subcommands
# installed-systems add <URL>
Download and install a system image.
<URL> is the location on a server where image resides, in the following format:
http://host/path
# installed-systems default <index_number>
Specify the default system image. The default system image will be run after the next reboot.
<index_number> is the number of the image. Use installed-systems view command to determine the image to
use.
# installed-systems delete <index_number>
Delete the specified system image.
<index_number> is the number of the image. Use installed-systems view command to determine the image to
use.
# installed-systems view
16
Example
Management Center# view
Installed System Images:
Version
*+1 | 1.3.0.2
Release
566010
Attributes
Locked
# license
Install a Management Center license or view the status of the last license download.
Note: The CLI prompts you to enter your BTOcredentials when you install the license for the first time.
Syntax
#license [subcommands]
Subcommands
#license get-from-bluecoat
Install a new license or update the existing license from BTO. If you are installing a new license, the CLIprompts you for
your BTO username and password.
This command displays the download progress until download is complete.
#license get-from-url <URL>
Update the existing license from a license file on a local server.
This command displays the download progress until download is complete.
#license view
17
Example
Management Center# license view
General Information
Manufacturer: Bluecoat Systems Inc.
Serial Number: ##########
Appliance Number: V10
License Component Information
Status
Component Name
Valid
Management Center
Valid
Valid
Device Configuration
Valid
Device Inventory
Valid
Policy Management
Download Information
Download Date: 2015-04-01 23:34:00
Download Status: Download complete
Install Status: Valid
# ping
Verify whether a particular destination exists and is responding to requests by sending ICMPecho packets.
This command is also available in standard mode.
Syntax
# ping <hostname or IP address>
Example
Management Center# ping 192.0.2.0
PING 192.0.20.0 (192.0.20.0) 56(84) bytes of
64 bytes from 192.0.20.0: icmp_seq=1 ttl=125
64 bytes from 192.0.20.0: icmp_seq=2 ttl=125
64 bytes from 192.0.20.0: icmp_seq=3 ttl=125
64 bytes from 192.0.20.0: icmp_seq=4 ttl=125
--- 192.0.20.0 ping statistics ---
data
time=6.43
time=2.34
time=2.71
time=2.31
18
ms
ms
ms
ms
# restart
Restart the Management Center VA or services.
Syntax
# restart [subcommands]
Subcommands
# restart reboot
Reboot the virtual appliance.When the appliance shuts down, the network connection closes and you must start a new
CLI session.
# restart services
Restart Management Center services.
Example
Management Center#restart reboot
Management Center#
Broadcast message from admin@bccm_main-6-x86_64.localdomain
(/dev/pts/0) at 23:27 ...
# restore-defaults
Restore factory defaults on the appliance/device running Management Center. This command is only available using the
serial console.
Syntax
# restore-defaults [subcommands]
Subcommands
#restore-defaults factory-defaults
Reboots the appliance/device after restoring factory defaults is complete.
#restore-defaults factory-defaults-halt
Halts the appliance/device after restoring factory defaults is complete.
#restore-defaults factory-defaults-shutdown
19
Example
Management Center #restore-defaults reset-admin
This operation will restore admin password on UI to default. Management Center service
will be unavailable during this operation.
Are you sure you want to restore UI admin password? [y/N]
# security
Specify security options for Management Center including basic certificate management using ssl.
Syntax
# security [subcommands]
# security ssl [subcommands]
Subcommands
# security enable-password
Turns on the password for privileged commands.If you turn on the password, you must enter an enable password to enter
privileged mode.
<password> is the enable password you specify.
# security generate-ssl-certificate
Generate a new SSL certificate for Management Center. When an SSL certificate expires, you can use this command to
generate a new one.
# security password
Change the password used to access the CLI. To change the password, you must enter the current password, and then specify and confirm the new password.
# security reset-password
Resets the password used to access the CLI for the admin account. This command is only available through the serial console. To restore the default password for the admin UI account, see # restore-defaults.
# security unset-enable-password
Turns off the password for privileged commands.If you turn off the password, you can enter privileged mode without having
to enter an enable password.
20
Example
Management Center# security unset-enable-password
Management Center# security ssl import external-certificate < name> <URL>
1. Import an external certificate from a server using the public key. This allows Management Center to connect to an
external server without using a username or password for authentication.
2. Name the certificate.
3. Go to the URL of the server, and copy and paste the URL into the subcommand.
4. Click Return. While the certificate downloads, the CLI displays the details of the connection to the server and
21
Owner
Issuer
Serial Number
Certificate fingerprints
Extensions
When the download is complete, the CLI queries:
Are you sure you want to import this as a trusted certificate? [y/N]
# service
Enable verbose logging to include more debug-level details in system logs, which you can use to troubleshoot any issues
you may encounter. Because the system log is included in the diagnostics upload to Blue Coat Support, enabling verbose
logging includes debug-level logs in the diagnostics archive.
Upload diagnostics data to a destination server or directly to Blue Coat if you have an open service request (SR).
Syntax
#service disable-verbose-logging
#service enable-verbose-logging
# service upload-diagnostics [subcommands]
Subcommands
SCP:scp://<username:password>@<host>/<path>
FTP: ftp://<username:password>@<host>/<path>
FTPS: ftps://<username:password>@<host>/<path>
HTTP: http://<username:password>@<host>/<path>
HTTPS: https://<username:password>@<host>/<path>
# service upload-diagnostics <SR_number>
Upload the diagnostics to Blue Coat Support with your existing SR number.
<SR_number> is the SR number for your openBlue Coat Support case.
Example
# service upload-diagnostics your_SR_number
22
# shutdown
Shut the system down.
Syntax
# shutdown
Example
Management Center#shutdown
Are you sure you want to shutdown the system? [y/N]
# snmp
Enables you to disallow remote read access or only allow read-only remote access. You can set the community string and
view the SNMP settings for SNMP traps.
You can view SNMP settings in the standard >show command.
Syntax
# snmp [subcommands]
Subcommands
# disable-remote-read-access
Disallows remote read access
# enable-remote-read-access
Allows read-only remote access.
# set-community
Set the community string (the default community string is "public").
# view
View SNMP settings.
Example
Management Center#snmp view
Community String: 2cc72a6160
Remote Read Access: Disabled
# tracepath
Identifies the route packets take to reach a destination.
23
Syntax
# tracepath <hostname or IP address>
Example
Management Center# tracepath google.com
1: 10.169.21.52 (10.169.21.52) 0.131ms pmtu 1500
1: server1-company.com (10.169.21.1) 0.725ms
1: server1-company.com (10.169.21.1) 0.429ms
2: 172.16.167.17 (172.16.167.17) 0.581ms
3: 216.16.227.26 (216.16.227.26) 2.310ms
4: network.net (216.16.232.121) 2.817ms
5: 216.16.255.193 (216.16.255.193) 2.269ms
6: 24.153.3.141 (24.153.3.141) 3.517ms
7: 64.71.241.97 (64.71.241.97) 6.934ms
8: 69.63.248.89 (69.63.248.89) 19.716ms
9: no reply
# verify-hardware
Displays all hardware system information for the device running Management Center.
Syntax
# verify-hardware
Example
Management Center#verify-hardware
Serial number: 4313320063
System model: Blue Coat 1000
RAM:
16384 MB
CPU0_DIMM_A1 8192 MB DDR3
CPU0_DIMM_A2 8192 MB DDR3
24
25