This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
documentation:config-parameters [2017/08/10 08:26] fachet |
documentation:config-parameters [2023/01/31 11:57] schmitt |
||
---|---|---|---|
Line 11: | Line 11: | ||
$ cli get -c wanlink.1 | $ cli get -c wanlink.1 | ||
$ cli get -c wanlink.1. | $ cli get -c wanlink.1. | ||
+ | </code> | ||
+ | |||
+ | Use cli get/set to read and write paramters. | ||
+ | Example as user admin (password of web gui): | ||
+ | <code> | ||
+ | NB1600 Command Line Interface (version 1.1) | ||
+ | > get network.lan.1.address | ||
+ | network.lan.1.address=192.168.2.2 | ||
+ | > set network.lan.1.address=192.168.2.1 | ||
+ | > get network.lan.1.address | ||
+ | network.lan.1.address=192.168.2.1 | ||
+ | </code> | ||
+ | Example as user root (password of web gui): | ||
+ | <code> | ||
+ | $ cli get network.lan.1.address | ||
+ | network.lan.1.address=192.168.2.1 | ||
+ | $ cli set network.lan.1.address=192.168.2.2 | ||
+ | $ cli get network.lan.1.address | ||
+ | network.lan.1.address=192.168.2.2 | ||
</code> | </code> | ||
Line 41: | Line 60: | ||
</php> | </php> | ||
*/ | */ | ||
- | <code config-desc.txt> | + | <code c config-desc.txt> |
# | # | ||
# Config Descriptions | # Config Descriptions | ||
Line 54: | Line 73: | ||
# config parameter type notation/unit/values comment | # config parameter type notation/unit/values comment | ||
+ | #Version/Product Info | ||
config.version string <major>.<minor> set by configd, used for config conversion | config.version string <major>.<minor> set by configd, used for config conversion | ||
config.product string NB<product> set by configd, specifies product | config.product string NB<product> set by configd, specifies product | ||
config.info string config description, used to identify config | config.info string config description, used to identify config | ||
+ | |||
+ | #System | ||
system.time date-time <YYYY>-<mm>-<dd> <HH:MM:SS> volatile parameter to set system time | system.time date-time <YYYY>-<mm>-<dd> <HH:MM:SS> volatile parameter to set system time | ||
+ | system.login_show_msgs_infos integer 0 = disabled, 1 = enabled shows error massages on the login screen | ||
+ | system.prompt | ||
# networking | # networking | ||
Line 63: | Line 87: | ||
network.timezone string timezone (e.g. UTC+1 or GMT+1, see /usr/share/zoneinfo/) | network.timezone string timezone (e.g. UTC+1 or GMT+1, see /usr/share/zoneinfo/) | ||
network.tcp.timestamps integer 0 = disabled, 1 = enabled enable/disable TCP timestamps | network.tcp.timestamps integer 0 = disabled, 1 = enabled enable/disable TCP timestamps | ||
- | + | network.icmp.forward integer 0 = disable, 1 = enable | |
- | network.mss.status integer 0 = disabled, 1 = enabled enable/disable MSS adjustment | + | network.mss.status integer 0 = disabled, 1 = enabled enable/disable MSS adjustment |
network.mss.adjustment integer 100..1500 bytes maximum segment size | network.mss.adjustment integer 100..1500 bytes maximum segment size | ||
# certificates | # certificates | ||
- | cert.deployment string default deployment type | + | cert.deployment string default : local default deployment type |
- | cert.settings.organization string certificate organization (0) | + | cert.settings.organization string a-z,A-Z,0-9,-,_,. certificate organization (0) |
- | cert.settings.department string certificate department (OU) | + | cert.settings.department string a-z,A-Z,0-9,-,_,. certificate department (OU) |
- | cert.settings.location string certificate location (L) | + | cert.settings.location string a-z,A-Z,0-9,-,_,. certificate location (L) |
cert.settings.state string certificate state (ST) | cert.settings.state string certificate state (ST) | ||
- | cert.settings.country string certificate country (C) | + | cert.settings.country string a-z,A-Z,0-9,-,_,. certificate country (C) |
- | cert.settings.common string certificate common name (CN) | + | cert.settings.common string checkPasswd certificate common name (CN) |
- | cert.settings.email email certificate e-mail | + | cert.settings.email email checkEmail certificate e-mail |
cert.settings.expiry integer 30..10950 days certificate expiry period | cert.settings.expiry integer 30..10950 days certificate expiry period | ||
- | cert.settings.phrase password certificate passphrase | + | cert.settings.phrase password passwd certificate passphrase |
cert.settings.keysize integer bit certificate key size | cert.settings.keysize integer bit certificate key size | ||
cert.settings.dhsize integer bit certificate DH primes | cert.settings.dhsize integer bit certificate DH primes | ||
Line 91: | Line 115: | ||
cert.scep.idtype enum IP,DNS,EMAIL SCEP identifier type | cert.scep.idtype enum IP,DNS,EMAIL SCEP identifier type | ||
cert.scep.phrase password SCEP password | cert.scep.phrase password SCEP password | ||
+ | cert.ignore integer 0 = disabled, 1 = enabled | ||
+ | |||
+ | #ACME | ||
+ | acme.0.status integer 0 = disable, 1 = enable | ||
+ | acme.0.domain | ||
+ | acme.0.testmode integer 0 = disabled, 1 = enabled | ||
# modems | # modems | ||
modem.x.status integer 0 = disabled, 1 = enabled modem administrative status | modem.x.status integer 0 = disabled, 1 = enabled modem administrative status | ||
+ | modem.x.trace.status integer 0 = disabled, 1 = enabled | ||
+ | modem.x.trace.adress address | ||
+ | modem.x.trace.targed address | ||
+ | modem.x.trace.netmask netmask | ||
+ | modem.x.trace.filesize | ||
+ | modem.x.trace.nr_files | ||
+ | modem.x.config.antennas | ||
+ | modem.x.config.idle_lte_attach integer | ||
+ | modem.x.config.silent_reset integer | ||
+ | modem.x.trace.urc.status integer | ||
+ | modem.x.query_interval.signal | ||
+ | modem.x.query_interval.operator | ||
+ | modem.x.config.silent_reset integer 0 = disabled, 1 = enabled send AT+CFUN=15 or not. (CME ERROR) | ||
# SIM cards | # SIM cards | ||
Line 100: | Line 143: | ||
sim.x.lai integer 5..7 digits SIM LAI to specify carrier | sim.x.lai integer 5..7 digits SIM LAI to specify carrier | ||
sim.x.bands string comma-separated list of bands SIM bands to specify bands (e.g. gsm-b8, lte-b1) | sim.x.bands string comma-separated list of bands SIM bands to specify bands (e.g. gsm-b8, lte-b1) | ||
- | sim.x.card integer SIM default modem index | + | sim.x.card integer x SIM default modem index |
sim.x.pref enum automatic,2G-only,2G-first,2G3G-only, SIM preferred service | sim.x.pref enum automatic,2G-only,2G-first,2G3G-only, SIM preferred service | ||
- | 3G-only,3G-first,4G-only,4G-first | + | 3G-only,3G-first,4G-only,4G-first, |
+ | 3G/4G(UMTS/LTE) only | ||
sim.x.regmode integer 0 = circuit-switched, SIM registration mode | sim.x.regmode integer 0 = circuit-switched, SIM registration mode | ||
1 = packet-switched, | 1 = packet-switched, | ||
Line 108: | Line 153: | ||
# Soft SIMs | # Soft SIMs | ||
- | ssim.x.id string Soft-SIM identifier | + | ssim.x.id numeric string 15 digits Soft-SIM identifier |
- | ssim.x.key password Soft-SIM key | + | ssim.x.key hex regex A-F,a-f,0-9 Soft-SIM key |
- | ssim.x.op string Soft-SIM op | + | ssim.x.op hex regex A-F,a-f,0-9 Soft-SIM op |
# WWAN Interfaces | # WWAN Interfaces | ||
Line 116: | Line 161: | ||
wwan.x.card integer WWAN interface modem index | wwan.x.card integer WWAN interface modem index | ||
wwan.x.sim integer WWAN interface SIM index | wwan.x.sim integer WWAN interface SIM index | ||
- | wwan.x.pdp integer WWAN interface PDP index | + | wwan.x.pdp integer 0 < pdp < maxpdp WWAN interface PDP index (maxpdp -> /tmp/status/wwanmd/cardx) |
- | wwan.x.pref enum automatic,2G-only,2G-first,2G3G-only, WWAN interface preferred service | + | wwan.x.pref enum automatic, WWAN interface preferred service |
- | 3G-only,3G-first,4G-only,4G-first | + | 2G-only, |
- | wwan.x.number phone-number WWAN interface phone number (e.g. *99***1#) | + | 2G-first, |
- | wwan.x.username string WWAN interface username | + | 2G3G-only, |
- | wwan.x.password password WWAN interface password | + | 3G-only, |
- | wwan.x.apn string WWAN interface APN | + | 3G-first, |
+ | 4G-only, | ||
+ | 4G-first | ||
+ | |||
+ | wwan.x.autoconn integer (0 = disabled, 1 = enabled) | ||
+ | wwan.x.number phone-number allowed : 0-9,+,#,* WWAN interface phone number (e.g. *99***1#) | ||
+ | wwan.x.username string ApnUsername WWAN interface apnusername | ||
+ | wwan.x.password password ApnPassword WWAN interface apnpassword | ||
+ | wwan.x.apn string allowed a-z,A-Z,0-9,-,_ WWAN interface APN | ||
wwan.x.auth integer 0 = none, 1 = PAP, WWAN interface authentication | wwan.x.auth integer 0 = none, 1 = PAP, WWAN interface authentication | ||
2 = CHAP, 3 = PAP+CHAP | 2 = CHAP, 3 = PAP+CHAP | ||
wwan.x.hdrcomp integer 0 = disabled, 1 = enabled WWAN interface header compression | wwan.x.hdrcomp integer 0 = disabled, 1 = enabled WWAN interface header compression | ||
wwan.x.softcomp integer 0 = disabled, 1 = enabled WWAN interface data compression | wwan.x.softcomp integer 0 = disabled, 1 = enabled WWAN interface data compression | ||
- | wwan.x.address address WWAN interface client address | + | wwan.x.address address standard Ip WWAN interface client address |
wwan.x.isdn integer 0 = disabled, 1 = enabled WWAN interface ISDN call | wwan.x.isdn integer 0 = disabled, 1 = enabled WWAN interface ISDN call | ||
wwan.x.negdns integer 0 = disabled, 1 = enabled WWAN interface negotiate DNS | wwan.x.negdns integer 0 = disabled, 1 = enabled WWAN interface negotiate DNS | ||
Line 134: | Line 188: | ||
wwan.x.maxfail integer WWAN interface max. PPP connection attempts | wwan.x.maxfail integer WWAN interface max. PPP connection attempts | ||
wwan.x.homeonly integer 0 = roaming, 1 = home network only WWAN interface roaming | wwan.x.homeonly integer 0 = roaming, 1 = home network only WWAN interface roaming | ||
+ | wwan.x.maxattempts | ||
wwan.x.mtu integer WWAN interface max. transmission unit | wwan.x.mtu integer WWAN interface max. transmission unit | ||
+ | wwan.x.protocoll_mode adresstype ipv4,ipv6,dual | ||
# USB | # USB | ||
Line 142: | Line 198: | ||
autorun.status integer 0 = disabled, 1 = enabled USB Autorun administrative status | autorun.status integer 0 = disabled, 1 = enabled USB Autorun administrative status | ||
autorun.authdev integer 0 = disabled, 1 = enabled USB Autorun allow only enabled devices | autorun.authdev integer 0 = disabled, 1 = enabled USB Autorun allow only enabled devices | ||
+ | autorun.password password | ||
usb.devices.x.dev string <VID>:<PID> USB device identification | usb.devices.x.dev string <VID>:<PID> USB device identification | ||
Line 150: | Line 207: | ||
# Bridges | # Bridges | ||
- | network.br.x.mode integer 0 = disabled, 1 = enabled Bridge administrative status | + | network.br.x.mode integer 0 = disabled, 1 = enabled, Bridge administrative status |
+ | |||
+ | 2 = enabled with local Interface | ||
network.br.x.mtu integer Bridge max. transmission unit | network.br.x.mtu integer Bridge max. transmission unit | ||
network.br.x.address address Bridge network address | network.br.x.address address Bridge network address | ||
Line 156: | Line 215: | ||
network.br.x.gateway address Bridge network gateway | network.br.x.gateway address Bridge network gateway | ||
network.br.x.proxyarp integer 0 = disabled, 1 = enabled Bridge Proxy-ARP status | network.br.x.proxyarp integer 0 = disabled, 1 = enabled Bridge Proxy-ARP status | ||
+ | network.br.x.mac | ||
+ | network.br.x.stp | ||
+ | network.br.x.rstp | ||
# Ethernet | # Ethernet | ||
network.link.x.mode integer 0 = auto-negotiated, Ethernet link mode | network.link.x.mode integer 0 = auto-negotiated, Ethernet link mode | ||
Line 176: | Line 237: | ||
# Ethernet Briding | # Ethernet Briding | ||
ethernet.bridge.firewall integer 0 = disabled, 1 = enabled Ethernet bridge firewall administrative status | ethernet.bridge.firewall integer 0 = disabled, 1 = enabled Ethernet bridge firewall administrative status | ||
+ | ethernet.bridge.stp integer 0 = disabled, 1 = enabled Ethernet bridge STP | ||
ethernet.bridge.rstp integer 0 = disabled, 1 = enabled Ethernet bride RSTP administrative status | ethernet.bridge.rstp integer 0 = disabled, 1 = enabled Ethernet bride RSTP administrative status | ||
+ | #Serdes Configuration | ||
+ | ethernet.serdes integer | ||
+ | | ||
# WLAN | # WLAN | ||
wlan.x.status integer 0 = disabled, 1 = enabled WLAN administrative status | wlan.x.status integer 0 = disabled, 1 = enabled WLAN administrative status | ||
Line 184: | Line 249: | ||
wlan.x.regdom string WLAN regulatory domain (e.g. DE, see /etc/tld) | wlan.x.regdom string WLAN regulatory domain (e.g. DE, see /etc/tld) | ||
wlan.x.antgain integer 0..10 dB WLAN antenna gain | wlan.x.antgain integer 0..10 dB WLAN antenna gain | ||
+ | wlan.x.txpower integer 20 dBm (max. EIRP) WLAN EIRP | ||
wlan.x.settings.hwmode enum a,b,g,n,c WLAN operation type | wlan.x.settings.hwmode enum a,b,g,n,c WLAN operation type | ||
wlan.x.settings.band enum 2.4,5 WLAN band | wlan.x.settings.band enum 2.4,5 WLAN band | ||
wlan.x.settings.channel integer WLAN channel (0 = auto) | wlan.x.settings.channel integer WLAN channel (0 = auto) | ||
+ | wlan.x.settings.scanchannels | ||
wlan.x.settings.bandwidth enum 20,40,80 WLAN bandwidth | wlan.x.settings.bandwidth enum 20,40,80 WLAN bandwidth | ||
+ | wlan.x.settings.sgi | ||
+ | wlan.x.settings.outdoor | ||
+ | wlan.x.settings.sticky | ||
+ | wlan.x.settings.newbssidcalc | ||
+ | wlan.x.settings.tracking.status | ||
+ | wlan.x.settings.tracking.count | ||
wlan.x.ac.0.host host WLAN primary access controller | wlan.x.ac.0.host host WLAN primary access controller | ||
wlan.x.ac.1.host host WLAN secondary access controller | wlan.x.ac.1.host host WLAN secondary access controller | ||
+ | wlan.o.swencrypt integer | ||
# WLAN Clients | # WLAN Clients | ||
wlan.x.client.y.ssid string WLAN client SSID | wlan.x.client.y.ssid string WLAN client SSID | ||
- | wlan.x.client.y.secmode enum off,none,wep,wpa-psk, WLAN client security mode | + | wlan.x.client.y.secmode enum off,none,wep,wpa-psk, WLAN client security wpa-radius,wpa-eap-tls mode |
- | wpa-radius,wpa-eap-tls | + | wpa-radius,wpa-eap-tls |
- | wlan.x.client.y.secproto enum wpa1,wpa2,wpa1andwpa2 WLAN client WPA/WPA2 mixed mode | + | |
+ | wlan.x.client.y.secproto enum wpa1,wpa2,wpa(1and2),wpa3,wpa(2and3) WLAN client WPA/WPA2 mixed mode/WPA3/WPA3 mixed mode | ||
+ | |||
wlan.x.client.y.cipher enum tkip,ccmp,all WLAN client WPA cipher | wlan.x.client.y.cipher enum tkip,ccmp,all WLAN client WPA cipher | ||
+ | wlan.x.client.y.sslciphers | ||
wlan.x.client.y.psk password WLAN client passphrase | wlan.x.client.y.psk password WLAN client passphrase | ||
wlan.x.client.y.minrssi integer -100..-10 dBm WLAN client min. required RSSI value | wlan.x.client.y.minrssi integer -100..-10 dBm WLAN client min. required RSSI value | ||
Line 203: | Line 281: | ||
wlan.x.client.y.prio integer 0..10 WLAN client priority | wlan.x.client.y.prio integer 0..10 WLAN client priority | ||
wlan.x.client.y.pmf integer 0 = disabled, 1 = enabled WLAN client PMF administrative status | wlan.x.client.y.pmf integer 0 = disabled, 1 = enabled WLAN client PMF administrative status | ||
+ | wlan.x.client.y.tlsv | ||
+ | wlan.x.client.y.ft | ||
+ | wlan.x.client.y.scan.bg.threshold | ||
+ | wlan.x.client.y.scan.bg.longinterval | ||
+ | wlan.x.client.y.scan.bg.shortinterval | ||
# WLAN Access Points | # WLAN Access Points | ||
Line 213: | Line 296: | ||
wlan.x.vss.y.secmode enum off,none,wpa-psk,wpa-radius WLAN VSS security mode | wlan.x.vss.y.secmode enum off,none,wpa-psk,wpa-radius WLAN VSS security mode | ||
wlan.x.vss.y.secproto enum wpa1,wpa2,wpa1andwpa2 WLAN VSS WPA/WPA2 mixed mode | wlan.x.vss.y.secproto enum wpa1,wpa2,wpa1andwpa2 WLAN VSS WPA/WPA2 mixed mode | ||
- | wlan.x.vss.y.cipher enum tkip,ccmp,all WLAN VSS WPA cipher | + | wlan.x.vss.y.cipher enum tkip,ccmp,both WLAN VSS WPA cipher |
wlan.x.vss.y.psk password WLAN VSS passphrase | wlan.x.vss.y.psk password WLAN VSS passphrase | ||
wlan.x.vss.y.acct integer 0 = none, 1 = default, 2 = cisco WLAN VSS accounting | wlan.x.vss.y.acct integer 0 = none, 1 = default, 2 = cisco WLAN VSS accounting | ||
wlan.x.vss.y.pmf integer 0 = disabled, 1 = enabled WLAN VSS PMF administrative status | wlan.x.vss.y.pmf integer 0 = disabled, 1 = enabled WLAN VSS PMF administrative status | ||
wlan.x.vss.y.addr4 integer 0 = disabled, 1 = enabled WLAN VSS 4addr frame administrative status | wlan.x.vss.y.addr4 integer 0 = disabled, 1 = enabled WLAN VSS 4addr frame administrative status | ||
+ | wlan.x.vss.y.iapp | ||
+ | wlan.x.vss.y.preauth | ||
+ | wlan.x.vss.y.fast.status | ||
+ | wlan.x.vss.y.fast.mobility | ||
+ | wlan.x.vss.y.fast.only | ||
+ | wlan.x.vss.y.fast.key | ||
+ | wlan.x.vss.y.bandsteering | ||
+ | wlan.x.vss.y.owe.transition | ||
+ | |||
+ | |||
+ | #Mesh | ||
+ | wlan.x.mesh.y.status integer | ||
+ | wlan.x.mesh.y.meshid | ||
+ | wlan.x.mesh.y.secmode | ||
+ | wlan.x.mesh.y.psk | ||
+ | wlan.x.mesh.y.pmf integer | ||
+ | wlan.x.mesh.y.gate integer | ||
# Bluetooth | # Bluetooth | ||
Line 225: | Line 325: | ||
can.x.status integer 0 = disabled, 1 = enabled CAN device administrative status | can.x.status integer 0 = disabled, 1 = enabled CAN device administrative status | ||
can.x.bitrate integer 10000..1000000 CAN device bitrate | can.x.bitrate integer 10000..1000000 CAN device bitrate | ||
+ | can.x.termination integer | ||
+ | |||
+ | #CLI-PHP | ||
+ | cliphp.status integer | ||
# VLAN | # VLAN | ||
Line 250: | Line 354: | ||
network.lan.x.alias.y.netmask address LAN interface alias netmask | network.lan.x.alias.y.netmask address LAN interface alias netmask | ||
network.lan.x.proxyarp integer 0 = disabled, 1 = enabled LAN interface Proxy-ARP status | network.lan.x.proxyarp integer 0 = disabled, 1 = enabled LAN interface Proxy-ARP status | ||
+ | network.lan.mac | ||
+ | network.lan.stp | ||
# WLAN Interfaces (IP) | # WLAN Interfaces (IP) | ||
Line 268: | Line 374: | ||
network.wan.x.dns0 address WAN interface primary DNS server (static) | network.wan.x.dns0 address WAN interface primary DNS server (static) | ||
network.wan.x.dns1 address WAN interface secondary DNS server (static) | network.wan.x.dns1 address WAN interface secondary DNS server (static) | ||
+ | network.wan.x.mac adress | ||
network.wan.x.username string WAN interface username (pppoe) | network.wan.x.username string WAN interface username (pppoe) | ||
network.wan.x.password password WAN interface passworrd (pppoe) | network.wan.x.password password WAN interface passworrd (pppoe) | ||
network.wan.x.service string WAN interface service name (pppoe) | network.wan.x.service string WAN interface service name (pppoe) | ||
network.wan.x.ac string WAN interface access concentrator name (pppoe) | network.wan.x.ac string WAN interface access concentrator name (pppoe) | ||
+ | network.wan.x.ipv6.mode | ||
+ | network.wan.x.ipv6.adress | ||
+ | network.wan.x.ipv6.prefix_length | ||
network.wan.x.mtu integer WAN interface max. transmission unit | network.wan.x.mtu integer WAN interface max. transmission unit | ||
Line 306: | Line 416: | ||
network.dhcp.hosts.x.port integer DHCP static host Ethernet port | network.dhcp.hosts.x.port integer DHCP static host Ethernet port | ||
network.dhcp.hosts.x.name hostname DHCP static host name | network.dhcp.hosts.x.name hostname DHCP static host name | ||
+ | network.dhcp.x.options.y.key | ||
+ | network.dhcp.x.options.y.value | ||
# NTP | # NTP | ||
Line 311: | Line 423: | ||
network.ntp.server0 hostname NTP primary server | network.ntp.server0 hostname NTP primary server | ||
network.ntp.server1 hostname NTP secondary server | network.ntp.server1 hostname NTP secondary server | ||
+ | network.ntp.preferred integer | ||
network.ntp.ping integer 0 = disabled, 1 = enabled NTP ping check | network.ntp.ping integer 0 = disabled, 1 = enabled NTP ping check | ||
network.ntp.interval integer 64..4096 seconds NTP poll interval | network.ntp.interval integer 64..4096 seconds NTP poll interval | ||
network.ntp.gpstime integer 0 = disabled, 1 = enabled NTP GNSS time sync | network.ntp.gpstime integer 0 = disabled, 1 = enabled NTP GNSS time sync | ||
+ | network.ntp.stratum integer | ||
+ | network.ntp.maxdistance | ||
network.ntp.access.x.address address NTP allowed hosts network | network.ntp.access.x.address address NTP allowed hosts network | ||
network.ntp.access.x.netmask address NTP allowed hosts netmask | network.ntp.access.x.netmask address NTP allowed hosts netmask | ||
Line 328: | Line 443: | ||
wanlink.0.options enum random-address WAN link use random MAC for DHCP request | wanlink.0.options enum random-address WAN link use random MAC for DHCP request | ||
wanlink.0.brdev interface WAN link bridge interface (e.g. lan0) | wanlink.0.brdev interface WAN link bridge interface (e.g. lan0) | ||
+ | wanlink.x.threshold.dial | ||
wanlink.0.passthru.interface interface WAN link IP-passthrough interface | wanlink.0.passthru.interface interface WAN link IP-passthrough interface | ||
wanlink.0.passthru.network address WAN link IP-passthrough network | wanlink.0.passthru.network address WAN link IP-passthrough network | ||
Line 335: | Line 451: | ||
qos.status integer 0 = disabled, 1 = enabled QoS administrative status | qos.status integer 0 = disabled, 1 = enabled QoS administrative status | ||
- | qos.interface.x.name string QoS interface name | + | qos.interface.x.name string lan(a),wwan(b) QoS interface name |
qos.interface.x.cong enum fixed,auto QoS interface bandwith congestion mode | qos.interface.x.cong enum fixed,auto QoS interface bandwith congestion mode | ||
qos.interface.x.type integer 0 = WAN, 1 = LAN QoS interface type | qos.interface.x.type integer 0 = WAN, 1 = LAN QoS interface type | ||
- | qos.interface.x.uprate double QoS interface upstream bandwidth | + | qos.interface.x.uprate double 0 < upload < ... QoS interface upstream bandwidth |
- | qos.interface.x.downrate double QoS interface downstream bandwidth | + | qos.interface.x.downrate double 0 < downrate < ... QoS interface downstream bandwidth |
- | qos.interface.x.pingip.primary address QoS interface primary ping address | + | qos.interface.x.pingip.primary address standardIPv4 QoS interface primary ping address |
- | qos.interface.x.pingip.secondary address QoS interface secondary ping address | + | qos.interface.x.pingip.secondary address standardIPv4 QoS interface secondary ping address |
- | qos.queue.0.desc string QoS queue description | + | qos.queue.0.desc string default,high,low, nicht 0, QoS queue description |
+ | regex: 0-9,A-Z,a-z,_,-,+,whitespace | ||
qos.queue.0.direction enum inbound,outbound QoS queue direction | qos.queue.0.direction enum inbound,outbound QoS queue direction | ||
- | qos.queue.0.limit double QoS queue bandwidth limit | + | qos.queue.0.limit double at least 1/40 of BW in Mbit/s QoS queue bandwidth limit |
qos.queue.0.interface integer QoS queue interface index | qos.queue.0.interface integer QoS queue interface index | ||
qos.queue.0.prio integer 1..10 QoS queue priority | qos.queue.0.prio integer 1..10 QoS queue priority | ||
- | qos.queue.0.tos integer -1 = don't set, QoS queue TOS value | + | qos.queue.0.tos integer -1 = don not set, QoS queue TOS value |
0 = normal-service, | 0 = normal-service, | ||
2 = minimize-cost, | 2 = minimize-cost, | ||
Line 438: | Line 555: | ||
AES-128-CFB1, | AES-128-CFB1, | ||
AES-128-CFB8, | AES-128-CFB8, | ||
+ | AES-128-GCM, | ||
AES-128-OFB, | AES-128-OFB, | ||
AES-192-CBC, | AES-192-CBC, | ||
Line 443: | Line 561: | ||
AES-192-CFB1, | AES-192-CFB1, | ||
AES-192-CFB8, | AES-192-CFB8, | ||
+ | AES-192-GCM, | ||
AES-192-OFB, | AES-192-OFB, | ||
AES-256-CBC, | AES-256-CBC, | ||
Line 448: | Line 567: | ||
AES-256-CFB1, | AES-256-CFB1, | ||
AES-256-CFB8, | AES-256-CFB8, | ||
+ | AES-256-GCM, | ||
AES-256-OFB, | AES-256-OFB, | ||
+ | ARIA-128-CBC, | ||
+ | ARIA-128-CFB, | ||
+ | ARIA-128-CFB1, | ||
+ | ARIA-128-CFB8, | ||
+ | ARIA-128-GCM, | ||
+ | ARIA-128-OFB, | ||
+ | ARIA-192-CBC, | ||
+ | ARIA-192-CFB, | ||
+ | ARIA-192-CFB1, | ||
+ | ARIA-192-CFB8, | ||
+ | ARIA-192-GCM, | ||
+ | ARIA-192-OFB, | ||
+ | ARIA-256-CBC, | ||
+ | ARIA-256-CFB, | ||
+ | ARIA-256-CFB1, | ||
+ | ARIA-256-CFB8, | ||
+ | ARIA-256-GCM, | ||
+ | ARIA-256-OFB, | ||
+ | CAMELLIA-128-CBC, | ||
+ | CAMELLIA-128-CFB, | ||
+ | CAMELLIA-128-CFB1, | ||
+ | CAMELLIA-128-CFB8, | ||
+ | CAMELLIA-128-OFB, | ||
+ | CAMELLIA-192-CBC, | ||
+ | CAMELLIA-192-CFB, | ||
+ | CAMELLIA-192-CFB1, | ||
+ | CAMELLIA-192-CFB8, | ||
+ | CAMELLIA-192-OFB, | ||
+ | CAMELLIA-256-CBC, | ||
+ | CAMELLIA-256-CFB, | ||
+ | CAMELLIA-256-CFB1, | ||
+ | CAMELLIA-256-CFB8, | ||
+ | CAMELLIA-256-OFB, | ||
SEED-CBC, | SEED-CBC, | ||
SEED-CFB, | SEED-CFB, | ||
SEED-OFB, | SEED-OFB, | ||
+ | SM4-CBC, | ||
+ | SM4-CFB, | ||
+ | SM4-OFB, | ||
BF-CBC, | BF-CBC, | ||
BF-CFB, | BF-CFB, | ||
Line 472: | Line 628: | ||
DES-OFB, | DES-OFB, | ||
DESX-CBC, | DESX-CBC, | ||
+ | IDEA-CBC, | ||
+ | IDEA-CFB, | ||
+ | IDEA-OFB, | ||
RC2-40-CBC, | RC2-40-CBC, | ||
RC2-64-CBC, | RC2-64-CBC, | ||
Line 483: | Line 642: | ||
SHA1, | SHA1, | ||
RSA-SHA1, | RSA-SHA1, | ||
- | DSA-SHA1-old, | + | MDC2, |
- | DSA-SHA1, | + | RSA-MDC2, |
- | RSA-SHA1-2, | + | MD5-Sha1, |
- | DSA, | + | RSA-SHA1-2, |
- | RIPEMD160, | + | RIPEMD160, |
RSA-RIPEMD160, | RSA-RIPEMD160, | ||
MD4, | MD4, | ||
Line 500: | Line 659: | ||
SHA512, | SHA512, | ||
SHA224, | SHA224, | ||
- | whirlpool | + | whirlpool, |
+ | BLAKE2B512, | ||
+ | BLAKE2S256, | ||
+ | SHA512-224, | ||
+ | SHA512-256, | ||
+ | SHA3-224, | ||
+ | SHA3-256, | ||
+ | SHA3-384, | ||
+ | SHA3-512, | ||
+ | SHAKE128, | ||
+ | SHAKE256, | ||
+ | ID-RSASSA-PKCS1-V1_5-WITH-SHA3-244, | ||
+ | ID-RSASSA-PKCS1-V1_5-WITH-SHA3-256, | ||
+ | ID-RSASSA-PKCS1-V1_5-WITH-SHA3-384, | ||
+ | ID-RSASSA-PKCS1-V1_5-WITH-SHA3-512, | ||
+ | SM3, | ||
+ | RSA-SM3, | ||
+ | RSA-SHA512/224, | ||
+ | RSA-SHA512/256 | ||
openvpn.tunnel.x.keepalive integer 0 = disabled, 1 = enabled OpenVPN tunnel keepalive status | openvpn.tunnel.x.keepalive integer 0 = disabled, 1 = enabled OpenVPN tunnel keepalive status | ||
Line 509: | Line 686: | ||
openvpn.tunnel.x.mtu integer OpenVPN tunnel max. transmission unit | openvpn.tunnel.x.mtu integer OpenVPN tunnel max. transmission unit | ||
openvpn.tunnel.x.duplicates enum allow,disconnect OpenVPN tunnel duplicates handling | openvpn.tunnel.x.duplicates enum allow,disconnect OpenVPN tunnel duplicates handling | ||
+ | openvpn.tunnel.x.serverpushed integer | ||
+ | #OpenVPN routes | ||
openvpn.server.network.address address OpenVPN server transport network | openvpn.server.network.address address OpenVPN server transport network | ||
openvpn.server.network.netmask address OpenVPN server transport netmask | openvpn.server.network.netmask address OpenVPN server transport netmask | ||
Line 527: | Line 706: | ||
ipsec.status integer 0 = disabled, 1 = enabled IPsec administrative status | ipsec.status integer 0 = disabled, 1 = enabled IPsec administrative status | ||
ipsec.ike.nattraversal integer 0 = disabled, 1 = enabled IPsec propose NAT traversal | ipsec.ike.nattraversal integer 0 = disabled, 1 = enabled IPsec propose NAT traversal | ||
+ | ipsec.makebeforebreak integer 0 = disable, 1 = enable IPsec Reauthentication method | ||
ipsec.restartonlinkchange integer 0 = disabled, 1 = enabled IPsec restart on link change | ipsec.restartonlinkchange integer 0 = disabled, 1 = enabled IPsec restart on link change | ||
+ | ipsec.0.status integer 0 = disabled, 1 = enabled | ||
+ | ipsec.0.crlfetcher.enable integer 0 = disable, 1 = enable IPsec config mode | ||
+ | ipsec.0.local.ip address IPsec tunnel local | ||
ipsec.x.remote.serverIp host IPsec tunnel remote peer address | ipsec.x.remote.serverIp host IPsec tunnel remote peer address | ||
ipsec.x.mode enum tunnel,transport IPsec tunnel encapsulation mode | ipsec.x.mode enum tunnel,transport IPsec tunnel encapsulation mode | ||
Line 536: | Line 719: | ||
ipsec.x.ike.psk password IPsec tunnel pre-shared key | ipsec.x.ike.psk password IPsec tunnel pre-shared key | ||
ipsec.x.ike.keyexchange enum ikev1,ikev2 IPsec tunnel key exchange | ipsec.x.ike.keyexchange enum ikev1,ikev2 IPsec tunnel key exchange | ||
- | ipsec.x.ike.username string IPsec tunnel user name | + | ipsec.x.ike.username string regex: a-z, A-Z, 0-9, -,_,+ IPsec tunnel user name |
- | ipsec.x.ike.userpass password IPsec tunnel user password | + | ipsec.x.ike.userpass password Passwd IPsec tunnel user password |
- | ipsec.x.ike.groupname string IPsec tunnel group name | + | ipsec.x.ike.groupname string regex: a-z, A-Z, 0-9, -,_,+ IPsec tunnel group name |
- | ipsec.x.ike.grouppass password IPsec tunnel group password | + | ipsec.x.ike.grouppass password Passwd IPsec tunnel group password |
ipsec.x.ike.mode enum aggressive,identity-protection IPsec tunnel IKE negotiation mode | ipsec.x.ike.mode enum aggressive,identity-protection IPsec tunnel IKE negotiation mode | ||
ipsec.x.ike.encryption enum 3des, IPsec tunnel IKE encryption algorithm | ipsec.x.ike.encryption enum 3des, IPsec tunnel IKE encryption algorithm | ||
Line 584: | Line 767: | ||
ecp512bp, | ecp512bp, | ||
- | ipsec.x.ike.localId string IPsec tunnel IKE local ID type | + | ipsec.x.ike.localId string localIPtype=IP: IP format IPsec tunnel IKE local ID type |
- | ipsec.x.ike.localIdType enum IP,FQDN,USER_FQDN IPsec tunnel IKE local ID | + | localIPtype=USER_FQDN: user@fqdn format |
- | ipsec.x.ike.remoteId string IPsec tunnel IKE remote ID type | + | localIPtype=else : passwd format |
+ | |||
+ | ipsec.x.ike.localIdType enum IP,FQDN,USER_FQDN IPsec tunnel IKE local ID | ||
+ | ipsec.x.ike.remoteId string remoteIPtype=IP: IP format IPsec tunnel IKE remote ID type | ||
+ | remoteIPtype=USER_FQDN: user@fqdn format | ||
+ | remoteIPtype=else : passwd format | ||
ipsec.x.ike.remoteIdType enum IP,FQDN,USER_FQDN IPsec tunnel IKE remote ID | ipsec.x.ike.remoteIdType enum IP,FQDN,USER_FQDN IPsec tunnel IKE remote ID | ||
ipsec.x.ike.lifetime integer 60..172800 seconds IPsec tunnel IKE lifetime | ipsec.x.ike.lifetime integer 60..172800 seconds IPsec tunnel IKE lifetime | ||
Line 667: | Line 855: | ||
gre.tunnel.x.remote.netmask address GRE tunnel remote network netmask | gre.tunnel.x.remote.netmask address GRE tunnel remote network netmask | ||
gre.tunnel.x.brdev interface GRE tunnel bridge interface (e.g. lan0) | gre.tunnel.x.brdev interface GRE tunnel bridge interface (e.g. lan0) | ||
+ | gre.tunnel.x.key integer range 0...2147483647 GRE tunnel key | ||
+ | |||
# PPTP | # PPTP | ||
- | pptp.status integer 0 = disabled, 1 = enabled PPTP administrative status | + | pptp.status integer 0 = disabled, 1 = enabled PPTP administrative status |
- | pptp.server.listen address PTPP server listen address | + | pptp.server.listen address PTPP server listen address |
- | pptp.server.address address PPTP server address | + | pptp.server.address address PPTP server address |
- | pptp.server.start address PPTP server first client address | + | pptp.server.start address PPTP server first client address |
- | pptp.server.end address PPTP server last client address | + | pptp.server.end address PPTP server last client address |
- | pptp.server.client.x.username string PPTP server client username | + | pptp.server.client.x.username string not allowed &,"",$,'' PPTP server client username |
- | pptp.server.client.x.password password PPTP server client password | + | pptp.server.client.x.password password not allowed &,"",$,'' PPTP server client password |
- | pptp.server.client.x.address address PPTP server client address | + | username and password must not contain apostrophes and double apostrophes (also not empty) |
+ | |||
+ | pptp.server.client.x.address address PPTP server client address | ||
pptp.tunnel.x.mode integer 0 = disabled, 1 = client, 2 = server PPTP tunnel operational mode | pptp.tunnel.x.mode integer 0 = disabled, 1 = client, 2 = server PPTP tunnel operational mode | ||
pptp.tunnel.x.address address PPTP tunnel server address | pptp.tunnel.x.address address PPTP tunnel server address | ||
- | pptp.tunnel.x.username string PPTP tunnel username | + | pptp.tunnel.x.username string tunnel.x.mode=1: client username PPTP tunnel username |
- | pptp.tunnel.x.password password PPTP tunnel password | + | tunnel.x.mode=2: no username |
+ | pptp.tunnel.x.password password tunnel.x.mode=1: client password PPTP tunnel password | ||
+ | tunnel.x.mode=2: no password | ||
+ | #VLAN | ||
+ | vxlan.x.status | ||
+ | vxlan.x.id | ||
+ | vxlan.x.remote | ||
+ | vxlan.x.dport | ||
+ | vxlan.x.local | ||
+ | vxlan.x.brdev | ||
+ | |||
+ | #L2TP | ||
+ | l2tp.tunnel.x.status integer disabled = 0, enabled = 1 | ||
+ | l2tp.tunnel.x.encap protocol IP, UDP Transport Protocol | ||
+ | l2tp.tunnel.x.local.local.address address IP im Standardformat | ||
+ | l2tp.tunnel.x.local.local.tunid integer 0...4294967295 | ||
+ | l2tp.tunnel.x.local.local.sessionid integer 0...4294967295 | ||
+ | l2tp.tunnel.x.local.udp_port integer 1...65535 | ||
+ | l2tp.tunnel.x.local.cookie hex länge nicht 0,8,16 | ||
+ | l2tp.tunnel.x.remote.address address IP im Standardformat | ||
+ | l2tp.tunnel.x.remote.tunid integer 0...4294967295 | ||
+ | l2tp.tunnel.x.remote.sessionid integer 0...4294967295 | ||
+ | l2tp.tunnel.x.remote.udp_port integer 1...65535 | ||
+ | l2tp.tunnel.x.remote.cookie hex länge nicht 0,8,16 | ||
+ | l2tp.tunnel.x.brdev enum LANx,LANx-y | ||
+ | l2tp.tunnel.x.mtu integer 1...9000 | ||
# Dial-In | # Dial-In | ||
Line 717: | Line 934: | ||
napt.x.intHost address NAPT masquerading source address | napt.x.intHost address NAPT masquerading source address | ||
napt.x.intMask address NAPT masquerading source netmask | napt.x.intMask address NAPT masquerading source netmask | ||
+ | |||
+ | napt.conntrack.udp.timeout integer | ||
+ | napt.conntrack.udp.streamtimeout integer | ||
# NAPT Inbound Rule | # NAPT Inbound Rule | ||
Line 735: | Line 955: | ||
napt.rule.x.intMask address NAPT rule redirect netmask | napt.rule.x.intMask address NAPT rule redirect netmask | ||
napt.rule.x.intPort port NAPT rule redirect port | napt.rule.x.intPort port NAPT rule redirect port | ||
+ | napt.rule.x.srcPort.start | ||
+ | napt.rule.x.srcPort.end | ||
+ | napt.rule.x.dstPort.start | ||
+ | napt.rule.x.dstPort.end | ||
# NAPT Outbound Rule | # NAPT Outbound Rule | ||
Line 795: | Line 1019: | ||
surveyor.ping.status integer 0 = disabled, 1 = enabled Supervision administrative status | surveyor.ping.status integer 0 = disabled, 1 = enabled Supervision administrative status | ||
surveyor.ping.x.wanlink string Supervision WAN link name | surveyor.ping.x.wanlink string Supervision WAN link name | ||
- | surveyor.ping.x.mode integer 0 = also validate when link comes up, Supervision ping mode | + | surveyor.ping.x.mode integer 1 = also validate when link comes up, Supervision ping mode |
- | 1 = only validate if link is up | + | 2 = only validate if link is up |
surveyor.ping.x.primary address Supervision primary ping address | surveyor.ping.x.primary address Supervision primary ping address | ||
surveyor.ping.x.secondary address Supervision secondary ping address | surveyor.ping.x.secondary address Supervision secondary ping address | ||
Line 818: | Line 1042: | ||
surveyor.ignition.status integer 0 = disabled, 1 = enabled Supervision administrative status | surveyor.ignition.status integer 0 = disabled, 1 = enabled Supervision administrative status | ||
surveyor.ignition.hold integer 0..3600 seconds Supervision ignition hold time | surveyor.ignition.hold integer 0..3600 seconds Supervision ignition hold time | ||
+ | surveyor.ignition.shutdown integer | ||
# Voice | # Voice | ||
Line 827: | Line 1052: | ||
voice.sip.port port Voice SIP port | voice.sip.port port Voice SIP port | ||
voice.sip.expires integer 60..3600 seconds Voice SIP registration expiry time | voice.sip.expires integer 60..3600 seconds Voice SIP registration expiry time | ||
+ | voice.fxs.status integer | ||
+ | voice.fxs.pass | ||
voice.endpoint.x.type enum vom = Voice-over-Mobile, Voice endpoint type | voice.endpoint.x.type enum vom = Voice-over-Mobile, Voice endpoint type | ||
Line 858: | Line 1085: | ||
snmp.status integer 0 = disabled, 1 = enabled SNMP administrative status | snmp.status integer 0 = disabled, 1 = enabled SNMP administrative status | ||
snmp.mode integer 0 = all, 1 = v3-only SNMP operational mode | snmp.mode integer 0 = all, 1 = v3-only SNMP operational mode | ||
- | snmp.port port SNMP listening port | + | snmp.engine.id hex 12 < id(Zeichen) < 64 SNMP engineID |
+ | snmp.port port between 1 and 65535 SNMP listening port | ||
snmp.community string SNMP v1/v2c read community | snmp.community string SNMP v1/v2c read community | ||
snmp.contact string SNMP contact info | snmp.contact string SNMP contact info | ||
Line 874: | Line 1102: | ||
lwm2m.agent.x.id string LwM2M agent identification | lwm2m.agent.x.id string LwM2M agent identification | ||
lwm2m.agent.x.key password LwM2M agent passphrase | lwm2m.agent.x.key password LwM2M agent passphrase | ||
+ | lwm2m.endpoint | ||
+ | lwm2m.agent.x.lifetime integer | ||
+ | |||
+ | #ITxPT | ||
+ | itxpt.status | ||
+ | itxpt.network.interface | ||
+ | itxpt.fmstoip.enabled | ||
+ | itxpt.fmstoip.period | ||
+ | itxpt.fmstoip.can.interface | ||
+ | itxpt.fmstoip.can.db.extensions | ||
+ | itxpt.fmstoip.can.db.dl.path | ||
+ | itxpt.fmstoip.can.db.dl.selection | ||
+ | itxpt.fmstoip.can.db.manufacturer.file | ||
+ | itxpt.fmstoip.can.db.manufacturer.selected | ||
+ | itxpt.gnss.enabled | ||
+ | itxpt.vtoip.enabled | ||
+ | itxpt.time.enabled | ||
+ | itxpt.mqtt.enabled | ||
# GNSS | # GNSS | ||
- | gpsd.x.status integer 0 = disabled, 1 = enabled GNNS administrative status | + | gpsd.x.status integer 0 = disabled, 1 = enabled GNSS administrative status |
gpsd.x.mode enum standalone,ms-based,ms-assisted GNSS operational mode | gpsd.x.mode enum standalone,ms-based,ms-assisted GNSS operational mode | ||
gpsd.x.atype enum active,passive GNSS antenna type | gpsd.x.atype enum active,passive GNSS antenna type | ||
Line 893: | Line 1139: | ||
gpsd.x.ftimeout integer 0 = off, GNSS max. frame timeout | gpsd.x.ftimeout integer 0 = off, GNSS max. frame timeout | ||
1..300 seconds | 1..300 seconds | ||
+ | |||
+ | |||
+ | gpsd.x.modifynmea integer | ||
+ | gpsd.x.dr.eabled integer | ||
+ | gpsd.x.cfg.yaw | ||
+ | gpsd.x.cfg.pitch | ||
+ | gpsd.x.cfg.roll | ||
+ | gspd.x.cfg.vrp2antenna.a | ||
+ | gspd.x.cfg.vrp2antenna.b | ||
+ | gspd.x.cfg.vrp2antenna.c | ||
+ | gpsd.x.cfg.vrp2imu.a | ||
+ | gpsd.x.cfg.vrp2imu.b | ||
+ | gpsd.x.cfg.vrp2imu.c | ||
+ | gpsd.x.assisturl0 | ||
+ | gpsd.x.assisturl1 | ||
+ | gpsd.x.dr.ignition integer | ||
# DIO | # DIO | ||
Line 900: | Line 1162: | ||
# Administration | # Administration | ||
admin.password password Administrator password | admin.password password Administrator password | ||
+ | admin.store_pw integer | ||
+ | admin.hash | ||
admin.bootpass password Bootloader password | admin.bootpass password Bootloader password | ||
admin.shell enum cli,sh Administrator shell | admin.shell enum cli,sh Administrator shell | ||
+ | admincliphp integer | ||
admin.access integer 0 = ignore, Authentication method | admin.access integer 0 = ignore, Authentication method | ||
1 = authentication required, | 1 = authentication required, | ||
Line 919: | Line 1184: | ||
1 = left/bottom, | 1 = left/bottom, | ||
2 = both (toggle mode) | 2 = both (toggle mode) | ||
+ | |||
+ | | ||
+ | led.x.left | ||
+ | led.x.right | ||
# reboot | # reboot | ||
Line 927: | Line 1196: | ||
user.x.role enum user,admin User role | user.x.role enum user,admin User role | ||
user.x.password password User password | user.x.password password User password | ||
+ | user.x.store_pw integer | ||
+ | user.x.hash | ||
user.x.desc string User description | user.x.desc string User description | ||
user.x.shell enum cli,sh User shell | user.x.shell enum cli,sh User shell | ||
+ | user.x.cliphap integer | ||
+ | |||
# Remote Authentication | # Remote Authentication | ||
radius.status integer 0 = disabled, 1 = enabled RADIUS administrative status | radius.status integer 0 = disabled, 1 = enabled RADIUS administrative status | ||
- | radius.mode integer 0 = don't use for login, RADIUS operational mode | + | radius.mode integer 0 = do not use for login, RADIUS operational mode |
1 = use for login | 1 = use for login | ||
radius.server address RADIUS server address | radius.server address RADIUS server address | ||
+ | radius.server2 | ||
radius.secret password RADIUS server secret | radius.secret password RADIUS server secret | ||
+ | radius.secret2 | ||
radius.authport port RADIUS server authentication port | radius.authport port RADIUS server authentication port | ||
+ | radius.authport2 | ||
radius.acctport port RADIUS server accounting port | radius.acctport port RADIUS server accounting port | ||
+ | radius.acctport2 | ||
+ | |||
# SMS daemon | # SMS daemon | ||
smsd.status integer 0 = disabled, 1 = enabled SMSD adminstrative status | smsd.status integer 0 = disabled, 1 = enabled SMSD adminstrative status | ||
smsd.report integer 0 = disabled, 1 = enabled SMSD request delivery report | smsd.report integer 0 = disabled, 1 = enabled SMSD request delivery report | ||
+ | smsd.x.burst | ||
smsd.x.device interface SMSD SIM device (e.g. sim0) | smsd.x.device interface SMSD SIM device (e.g. sim0) | ||
smsd.x.gateway string <empty> = use from SIM SMSD gateway | smsd.x.gateway string <empty> = use from SIM SMSD gateway | ||
Line 1049: | Line 1328: | ||
ospf.interface.x.cost integer OSPF interface cost | ospf.interface.x.cost integer OSPF interface cost | ||
ospf.interface.x.passive integer 0 = not passive, 1 = passive OSPF interface passive | ospf.interface.x.passive integer 0 = not passive, 1 = passive OSPF interface passive | ||
+ | ospf.router.id | ||
ospf.network.x.prefix address OSPF network prefix address | ospf.network.x.prefix address OSPF network prefix address | ||
Line 1056: | Line 1336: | ||
# BGP | # BGP | ||
bgp.status integer 0 = disabled, 1 = enabled BGP administrative status | bgp.status integer 0 = disabled, 1 = enabled BGP administrative status | ||
+ | bgp.router.id | ||
bgp.as interface BGP AS number | bgp.as interface BGP AS number | ||
bgp.redist.connected integer 0 = disabled, 1 = enabled BGP redistribute connected routes | bgp.redist.connected integer 0 = disabled, 1 = enabled BGP redistribute connected routes | ||
Line 1061: | Line 1342: | ||
bgp.redist.ospf integer 0 = disabled, 1 = enabled BGP redistribute OSPF routes | bgp.redist.ospf integer 0 = disabled, 1 = enabled BGP redistribute OSPF routes | ||
bgp.vrrpmasteronly integer 1 = disabled, 0 = enabled BGP disable when redundancy backup | bgp.vrrpmasteronly integer 1 = disabled, 0 = enabled BGP disable when redundancy backup | ||
+ | bgp.keepalive integer | ||
+ | bgp.holddown integer | ||
bgp.neighbor.x.addr address BGP neighbor address | bgp.neighbor.x.addr address BGP neighbor address | ||
bgp.neighbor.x.as integer BGP neighbor AS number | bgp.neighbor.x.as integer BGP neighbor AS number | ||
+ | bgp.neighbor.x.weight | ||
bgp.neighbor.x.password password BGP neighbor password | bgp.neighbor.x.password password BGP neighbor password | ||
bgp.neighbor.x.multihop integer 0 = disabled, 1 = enabled BGP neighbor multihop | bgp.neighbor.x.multihop integer 0 = disabled, 1 = enabled BGP neighbor multihop | ||
+ | bgp.neighbor.x.extended_nexthop | ||
+ | bgp.neighbor.x.address_family | ||
bgp.network.0.prefix address BGP network prefix address | bgp.network.0.prefix address BGP network prefix address | ||
Line 1108: | Line 1394: | ||
telnet.status integer 0 = disabled, 1 = enabled Telnet server administrative status | telnet.status integer 0 = disabled, 1 = enabled Telnet server administrative status | ||
telnet.port port Telnet server port | telnet.port port Telnet server port | ||
+ | |||
+ | # MQTT Broker | ||
+ | mqtt.status integer | ||
+ | mqtt.port integer | ||
+ | mqtt.tls integer | ||
# Web Server | # Web Server | ||
Line 1114: | Line 1405: | ||
https.status integer 0 = disabled, 1 = enabled Web server HTTPS administrative status | https.status integer 0 = disabled, 1 = enabled Web server HTTPS administrative status | ||
https.port port Web server HTTPS port | https.port port Web server HTTPS port | ||
- | https.security integer 0 = none, Web server HTTPS security | + | https.security integer 0 = none = Windows XP IE6, Java 6 Web server HTTPS security |
- | 1 = old, | + | 1 = old = Firefox 1, Chrome 1, |
- | 2 = modern | + | IE 7, ... |
+ | 2 = modern = Firefox 27, Chrome 30, | ||
+ | IE 11 on Windows 7, ... | ||
cliphp.status integer 0 = disabled, 1 = enabled CLI-PHP administrative status | cliphp.status integer 0 = disabled, 1 = enabled CLI-PHP administrative status | ||
Line 1134: | Line 1427: | ||
serial.server.x.protocol enum raw,telnet Serial server protocol on IP port | serial.server.x.protocol enum raw,telnet Serial server protocol on IP port | ||
+ | serial.server.x.termination integer | ||
serial.server.x.port port Serial server port | serial.server.x.port port Serial server port | ||
serial.server.x.timeout integer 0 = endless, Serial server timeout | serial.server.x.timeout integer 0 = endless, Serial server timeout | ||
Line 1141: | Line 1435: | ||
serial.server.x.banner integer 0 = disabled, 1 = enabled Serial serer show banner | serial.server.x.banner integer 0 = disabled, 1 = enabled Serial serer show banner | ||
- | serial.server.x.modem interface Serial modem bridge device (e.g. wwan0) | + | serial.server.x.modem interface Serial modem bridge device (e.g. wwan0) |
+ | serial.server.x.phonebook.y.number | ||
+ | serial.server.x.phonebook.y.ip | ||
+ | serial.server.x.phonebook.y.port | ||
+ | |||
# Audio | # Audio | ||
audio.x.volume integer 0..9 Audio default volume level | audio.x.volume integer 0..9 Audio default volume level | ||
Line 1173: | Line 1470: | ||
lldp, cdp, sonmp, edp, fdp, irdp | lldp, cdp, sonmp, edp, fdp, irdp | ||
+ | |||
+ | |||
+ | |||
+ | vrrpd.x.status | ||
+ | vrrpd.x.id | ||
+ | vrrpd.x.prio | ||
+ | vrrpd.x.interface | ||
+ | vrrpd.x.address | ||
# IGMP Proxy | # IGMP Proxy | ||
Line 1190: | Line 1495: | ||
smcroute.x.to interface Static multicast outgoing interface | smcroute.x.to interface Static multicast outgoing interface | ||
+ | # Softflow | ||
+ | softflow.x.status = | ||
+ | softflow.x.interface = | ||
+ | softflow.x.host | ||
+ | softflow.x.port | ||
+ | softflow.x.version | ||
+ | softflow.x.maxflow | ||
+ | softflow.x.tracklevel | ||
+ | softflow.x.samplerate | ||
+ | | ||
# ARP | # ARP | ||
arp.x.interface interface ARP interface | arp.x.interface interface ARP interface | ||
Line 1212: | Line 1527: | ||
sdk.sched enum low,normal,high SDK scheduling priority | sdk.sched enum low,normal,high SDK scheduling priority | ||
sdk.watchdog integer 0 = disabled, 1 = enabled SDK watchdog script monitoring | sdk.watchdog integer 0 = disabled, 1 = enabled SDK watchdog script monitoring | ||
+ | sdk.maxvsz integer | ||
- | sdk.trigger.x.name string SDK trigger name | + | sdk.trigger.x.name string a-z,A-Z,0-9,-,_,. erlaubt SDK trigger name |
sdk.trigger.x.timecond enum hourly,daily,weekly,monthly,yearly, SDK trigger time condition | sdk.trigger.x.timecond enum hourly,daily,weekly,monthly,yearly, SDK trigger time condition | ||
workdays,weekend,periodically | workdays,weekend,periodically | ||
Line 1269: | Line 1585: | ||
test | test | ||
- | sdk.script.0.name string SDK script name | + | sdk.script.0.name string a-z,A-Z,0-9,-,_,. erlaubt SDK script name |
- | sdk.script.0.desc string SDK script description | + | sdk.script.0.desc string A-Z,a-z,0-9,-,_,+,whitespace SDK script description |
sdk.script.0.args string colon-separated list of arguments SDK script arguments | sdk.script.0.args string colon-separated list of arguments SDK script arguments | ||
- | sdk.job.0.name string SDK job name | + | sdk.job.0.name string a-z,A-Z,0-9,-,_,. erlaubt SDK job name |
- | sdk.job.0.trigger integer SDK job trigger index | + | sdk.job.0.trigger integer nicht leer SDK job trigger index |
- | sdk.job.0.script integer SDK job script index | + | sdk.job.0.script integer nicht leer SDK job script index |
sdk.job.0.args string colon-separated list of arguments SDK job arguments | sdk.job.0.args string colon-separated list of arguments SDK job arguments | ||
+ | regex für args:a-z, A-Z, 0-9,whitespace,/,:,.,-,@,+,"",'',\ erlaubt | ||
# Virtualization | # Virtualization | ||
virt.status integer 0 = disabled, 1 = enabled Virtualization administrative status | virt.status integer 0 = disabled, 1 = enabled Virtualization administrative status | ||
Line 1296: | Line 1612: | ||
virt.guest.x.device.y.name string Virtual device name | virt.guest.x.device.y.name string Virtual device name | ||
virt.guest.x.device.y.type enum can,bluetooth Virtual device type | virt.guest.x.device.y.type enum can,bluetooth Virtual device type | ||
+ | |||
+ | virt.guest.x.install.url URL https://share.netmodule.com/router | ||
+ | /public/virt/ubuntu_bionic.tar.xz Ubuntu Bionic Beaver | ||
+ | virt.guest.x.install.trigger integer 0 = disabled, 1 = enabled Install on Apply | ||
+ | |||
+ | #storage | ||
+ | storage.flashroot.id | ||
+ | storage.flashroot.automount | ||
+ | storage.flashroot.mountpoint | ||
+ | |||
+ | storage.flashstorage.id | ||
+ | storage.flashstorage.automount | ||
+ | storage.flashstorage.mountpoint | ||
+ | |||
+ | storage.extended.id | ||
+ | storage.extended.automount | ||
+ | storage.extended.mountpoint | ||
+ | |||
+ | storage.usb0.id | ||
+ | storage.usb0.automount | ||
+ | storage.usb0.mountpoint | ||
+ | |||
+ | storage.sdcard0.id | ||
+ | storage.sdcard0.automount | ||
+ | storage.sdcard0.mountpoint | ||
# custom | # custom | ||
Line 1324: | Line 1665: | ||
custom.table2.0.var4 string | custom.table2.0.var4 string | ||
+ | |||
+ | checkEmail: format local@domain, user can contain a-z,A-Z,0-9,@,-,.,-,_, domain is 0-255 characters and contains a-z,A-Z,0-9,-,_. It is also possible that the email is an IP. | ||
+ | ApnUsername=ApnPassword: not allowed:"",'',whitespace(\r\n\t\f\v) | ||
+ | Passwd: not allowed &,|,",',`,\ | ||
</code> | </code> |