Method used to compare differences between the current configuration and the saved configuration on the USG2000 and USG5000

11

Run the compare configuration [ current-line-number save-line-number ] command to compare whether the current configuration is consistent with the configuration saved on the device.
If no parameter is input, the system compares the information in the profile from the first line. The current-line-number and save-line-number parameters are used to further compare the differences identified in the profiles.
When a difference is identified, the system compares the current profile and the saved profile from the line where the difference starts. A certain number of characters (by default, 150 characters) are displayed. If the number of characters is less than 150, all characters are displayed.

Other related questions:
Method used to compare differences between the current configuration and the saved configuration on the USG6000
Run the compare configuration [ current-line-number save-line-number ] command to compare whether the current configuration is consistent with the configuration saved on the device. If no parameter is input, the system compares the information in the profile from the first line. The current-line-number and save-line-number parameters are used to further compare the differences identified in the profiles. When a difference is identified, the system compares the current profile and the saved profile from the line where the difference starts. A certain number of characters (by default, 150 characters) are displayed. If the number of characters is less than 150, all characters are displayed.

Method used to view the current configuration of the USG2000 and USG5000
You can run the display current-configuration command to view all configuration commands of the USG firewalls.

Method used to clear the configuration (restoring the factory settings) on the USG2000, USG5000, and USG6000.
The method used to clear the configuration *restoring the factory settings) on USG firewalls is as follows: 1. Hardware methods: Press and hold the RESET button on the device to boot based on the default configuration. Note: It is recommended that you press and hold the RESET button to restore to the default factory settings before the system is powered on. Note the following: You must press the RESET button for more than 10s. Release the RESET button before the system prompts to press Ctrl+B. You can restore the default configuration as follows: If the device is not powered on, press the RESET button and then power on the device. When six indicators on the panel blink at a frequency of about 2 Hz, release the RESET button. The device will boot using the default configuration. If the device is powered on, press and hold the RESET button and then release it in 10s. When you press Ctrl+B, six indicators on the panel blink at a frequency of about 2 Hz, indicating that the device successfully restores to the factory settings. Note: Before powering on the device, press and hold the RESET button. If the indicators blink immediately after you release the button, the button is successfully activated. You must release the RESET button in 10s after the device is powered on. Indicators blink only when the system prompts to press Ctrl+B instead of immediately blinking after the button is released. Do not press the RESET button for multiple times during the system boot. Otherwise, the system fails to restore the default configuration. After the system prompts to press Ctrl+B, if you press the RESET button during system boot or running, the system is not restarted and does not restore to default factory settings. It is recommended that you save the current configuration before pressing the RESET button. 2. Web UI: For the USG2000 and USG5000, on the web UI, choose System > Maintenance > Configuration Management, and click Restore Factory Configuration. For the USG6000, on the Web UI, choose System > Profile Management, and click Restore Factory Configuration. 3. CLI: reset saved-configuration (Clear the saved configuration.) 10:25:15 2015/03/13 The action will delete the saved configuration in the device. The configuration will be erased to reconfigure. Are you sure?[Y/N]y (The configuration will be cleared. Confirm? Press Y.) Now clearing the configuration in the device. 2015-03-13 10:25:19 FW %%01CFM/4/RST_CFG(l): When deciding whether to reset the saved configuration, the user presses Y. Info:Clear the configuration in the device successfully (Successfully cleared) reboot (Restart the device.) 10:25:31 2015/03/13 System will reboot, could you want to save current configuration [Y/N]?n (The system will restart. Save the current configuration? Press N. If you press Y, the original configuration is saved again and the configuration is not cleared.) System will reboot! Continue?[Y/N]:y (The device will restart. Press Y.) After the device is restarted, the configuration is cleared.

Method used to configure L2TP parameters on the USG2000 and USG5000
The method used to configure L2TP parameters on the USG2000 and USG5000 is as follows: 1. allow l2tp The allow l2tp command is used to specify the name of the peer tunnel that accepts the call and the used Virtual-Template. allow l2tp virtual-template virtual-template-number [ remote remote-name ] [ domain domain-name ] [ vpn-instance vpn-instance-name ] 2. call-lns local-user The call-lns local-user command is used to perform L2TP dialup on the LAC to access the LNS, so as to establish an L2TP tunnel. call-lns local-user username 3. l2tp domain suffix-separator The l2tp domain suffix-separator command is used to set the suffix separator. l2tp domain suffix-separator separator 4. l2tp match-order The l2tp match-order name is used to set the sequence of the called number and domain name used to search for the L2TP group. l2tp match-order { dnis | dnis-domain | domain | domain-dnis} 5. l2tp sendaccm enable The l2tp sendaccm enable command is used to enable the function of sending ACCM messages by the L2TP. By default, the function of sending ACCM messages by the L2TP is enabled. l2tp sendaccm enable 6. l2tp-group The l2tp-group command is used to create an L2TP group. l2tp-group group-number 7. l2tpmoreexam enable The l2tpmoreexam enable command is used to enable the LNS to accept L2TP connection requests initiated by different L2TP instances using the same tunnel name. l2tpmoreexam enable 8. l2tp up-down log enable The l2tp up-down log enable command is used to enable the function of sending logs upon L2TP user getting online or offline. l2tp up-down log enable 9. mandatory-chap The mandatory-chap command is used to forcibly perform the CHAP verification again between the LNS and the client. By default, the system does not re-verify the CHAP. mandatory-chap 10. mandatory-lcp The mandatory-lcp command is used to re-negotiate the Link Control Protocol (LCP) between the LNS and the client. By default, the system does not re-negotiate the LCP. mandatory-lcp 11. start l2tp The start l2tp command is used to specify the trigger conditions for originating calls when the local end serves as the L2TP LAC. start l2tp { lns-domain domain-name | ip ip-address &<1-5> } { domain domain-name |fullusername user-name } [ vpn-instance vpn-instance-name ] 12. tunnel authentication The tunnel authentication command is used to enable the L2TP tunnel verification. tunnel authentication 13. tunnel avp-hidden The tunnel avp-hidden command is used to configure the transmission mode in which the Attribute Value Pair (AVP) data is hidden. tunnel avp-hidden 14. tunnel name The tunnel name command is used to specify the local tunnel name. tunnel name tunnel-name 15. tunnel password The tunnel password command is used to specify the password used for tunnel verification. tunnel password cipher password 16. tunnel source The tunnel source command is used to configure the source tunnel interface used by the LAC to initiate a tunnel establishment request to the LNS. tunnel source loopback interface-number 17. tunnel timer hello The tunnel timer hello command is used to set the interval for sending Hello packets over the tunnel. tunnel timer hello interval 18. virtual-l2tpforward enable When the IP address used by the LNS to access the intranet and the IP address allocated by the LNS to the client are in the same network segment, you can use the virtual-l2tpforward enable and arp-proxy enable command together to enable the L2TP virtual forwarding function. virtual-l2tpforward enable

Method used to view the current memory usage on the USG2000, USG5000, and USG6000
You can view the memory usage of the USG2000, USG5000, or USG6000 as follows: Run the display health command to view the system resource usage: display health Slot CPU Usage Memory Usage (Total) ----------------------------------------------------- 0 MPU(Master) 4% 35% 4096MB CPU indicates the CPU usage and memory indicates the memory usage.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top