The Network Control Utility (NETCU) is the utility program system managers and operators use to configure and control networks that run TCPware.
This chapter summarizes the NETCU commands, by category, and describes how to run NETCU and send NETCU output to a file. Each command is described in detail in the next chapter, NETCU Commands.
Run NETCU directly from a terminal or from a command procedure. To run NETCU from your terminal, enter the following command at the DCL prompt:
$ NETCU
or
$ RUN TCPWARE:NETCU
The system displays the NETCU> prompt. NETCU is ready to accept your commands.
To have a startup command file execute each time you invoke NETCU, do the following:
1. Create a file containing the commands you want performed at the beginning of each NETCU session.
2. Define the NETCU_STARTUP logical to point to the file.
For example, you can include the following in your LOGIN.COM file:
ASSIGN SYS$LOGIN:NETCUSTART.COM NETCU_STARTUP
When you start NETCU, the NETCU_STARTUP logical points to the specified file (SYS$LOGIN:NETCUSTART.COM for example) and processes all the commands. Note that they system ignores all commands following an EXIT or QUIT command in the file. NETCU ignores any "commented-out" command lines in files (such as SERVICES.COM) that are used as input to NETCU. The commented-out line in the file should begin with the !, #, or ; character. NETCU does not execute the command line until you remove the character.
This section lists each NETCU command and summarizes its purpose. Related commands appear together.
Use commands listed in the below table to maintain the Address Resolution Protocol (ARP) table. You rarely need to enter these commands since ARP maintains the table automatically.
|
Command |
Purpose |
|
ADD ARP |
Adds an entry to the ARP table |
|
FIND ARP |
Displays an entry from the ARP table |
|
FLUSH ARP |
Flushes the ARP table |
|
REMOVE ARP |
Deletes an entry from the ARP table |
|
SET INTERFACE/ARP_* |
Sets various ARP parameters for an interface |
|
SHOW ARP |
Displays the ARP table for the specified line |
|
SHOW INTERFACE |
Displays the ARP parameters set |
Use commands listed in the below table to maintain the Dynamic Host Configuration Protocol (DHCP) server. Note that to maintain the DHCP V4 server, use “DHCP4” in the following commands instead of “DHCP”.
|
Command |
Purpose |
|
RELEASE DHCP RELEASE DHCP4 |
Releases an address lease record |
|
SET DHCP SET DHCP4 |
Performs various DHCP operations |
|
SHOW DHCP SHOW DHCP4 |
Displays various DHCP information |
|
STOP/DHCP STOP/DHCP4 |
Shuts down the DHCP server |
|
UPDATE DHCP UPDATE DHCP4 |
Instructs the Dynamic Host Configuration Protocol (DHCP) server to process the update file and add or remove the specified host and subclass declarations. |
Use commands listed in the below table to join, leave, or show multicast host groups.
|
Command |
Purpose |
|
ADD MULTICAST_GROUP |
Adds (joins) a multicast host group address to an interface or all interfaces |
|
REMOVE MULTICAST_GROUP |
Removes (leaves) a multicast host group address from an interface or all interfaces |
|
SHOW MULTICAST_GROUPS |
Displays the multicast host groups joined for an interface or all interfaces |
The below table lists the NFS-related commands in NETCU. Each entry indicates whether the command is relevant to the NFS client, NFS server, or both.
|
Command |
Purpose |
Relevant to |
|
ADD EXPORT |
Adds an OpenVMS directory and associated NFS pathname to the EXPORT database |
Server |
|
ADD GROUP |
Adds an NFS group to the GROUP database |
Client |
|
ADD PROXY |
Adds an NFS user to the PROXY database |
Client/Server |
|
ADD SM[_BAK] |
Adds a host to the Network Status Monitor file (SM.DAT or SM_BAK.DAT) |
Server |
|
CREATE EXPORT |
Creates an empty EXPORT database |
Server |
|
CREATE GROUP |
Creates an empty GROUP database |
Client |
|
CREATE PROXY |
Creates an empty PROXY database |
Client/Server |
|
FIND PROXY |
Finds and displays a PROXY database entry |
Client/Server |
|
RELOAD GROUP |
Implements changes made to the GROUP database |
Client |
|
RELOAD PROXY |
Implements changes made to the PROXY database |
Client/Server |
|
REMOVE EXPORT |
Removes an entry from the EXPORT database |
Server |
|
REMOVE GROUP |
Removes an entry from the GROUP database |
Client |
|
REMOVE PROXY |
Removes an entry from the PROXY database |
Client/Server |
|
REMOVE SM[_BAK] |
Removes a host from the Network Status Monitor file (SM.DAT or SM_BAK.DAT) |
Server |
|
SHOW EXPORT |
Shows entries in the EXPORT database |
Client/Server |
|
SHOW GROUP |
Shows entries in the GROUP database |
Client |
|
SHOW MOUNT |
Shows the pathnames of exported directories and the hosts that mounted them |
Client/Server |
|
SHOW PROXY |
Shows entries in the PROXY database |
Client/Server |
|
SHOW SM[_BAK] |
Shows entries in the Network Status Monitor file (SM.DAT or SM_BAK.DAT) |
Server |
|
SHOW STATISTICS |
Displays statistics information on the NFS server |
Server |
|
STOP/SERVER |
Stops the NFS server |
Server |
|
UNMOUNT ALL |
Removes the client’s mount list entries from one or more NFS servers |
Client |
The below table contains the TCPware parameters you can set using the NETCU SET command. You usually do not need to enter these commands because they are issued during configuration.
|
Command |
Sets |
|
SET parameter |
Connection
backlog values |
The below table lists the commands that configure and maintain routes. If you enter the necessary routing commands in the TCPWARE:ROUTING.COM file, TCPware executes them automatically at startup. If using GateD, do not also include routes in the ROUTING.COM file by using the ADD ROUTE command.
|
Command |
NETCU Routing Commands |
|
ADD ROUTE |
Adds an entry to the routing table |
|
CHECK GATED CONFIG |
Checks a GateD configuration file for syntax errors |
|
DUMP GATED STATE |
Dumps the state of the GATED process to a file |
|
ENABLE FORWARDING |
Allows this host to act as a router between networks |
|
DISABLE FORWARDING |
Disables this host from acting as a router between networks |
|
ENABLE REDIRECTS |
Allows this host to return ICMP redirects to source hosts |
|
DISABLE REDIRECTS |
Disables this host from returning ICMP redirects to source hosts |
|
FIND ROUTE |
Displays an existing route from the routing table |
|
FLUSH/ROUTE |
Flushes the entire routing table |
|
LOAD GATED CONFIGURATION |
Loads a GateD configuration file |
|
REMOVE ROUTE |
Deletes an entry from the routing table |
|
SET GATED TRACE |
Controls tracing in GateD |
|
SET GATEWAY |
Defines the internet address of the default gateway |
|
SHOW GATED TRACE |
Displays tracing in GateD |
|
SHOW OSPF |
Queries Open Shortest Path First (OSPF) gateways |
|
SHOW RIP |
Queries Routing Information Protocol (RIP) gateways |
|
SHOW ROUTES |
Displays the routing table |
|
STOP/GATED |
Stops the GateD process |
|
TOGGLE GATED TRACING |
Toggles tracing in GateD |
|
UPDATE GATED INTERFACES |
Rescans the GateD network interfaces |
The below table lists the commands that manage the master server of TCPware.
|
Command |
Purposes |
|
ADD ACCESS_LIST |
Lets you control host access to services |
|
ADD SERVICE |
NETCP listens for TCP or UDP connections on the specified port |
|
MODIFY SERVICE |
Modifies information associated with a service |
|
REMOVE ACCESS_LIST |
Removes server access restrictions |
|
REMOVE SERVICE |
NETCP stops listening for connections on the specified port(s) |
|
SHOW ACCESS_LIST |
Prints or displays server access restrictions |
|
SHOW SERVICES |
Displays information for the specified port(s) and protocol(s) |
The below table lists the commands that start and stop the network. You do not need to enter these commands under normal circumstances. STARTNET.COM and SHUTNET.COM perform these functions automatically.
|
Command |
Purpose |
|
KILL CONNECTIONS |
Resets the TCP connection on specified device, address, or port |
|
START/DNIP |
Starts a DECnet-over-IP line |
|
START/INET |
Starts the INET device driver |
|
START/IP |
Starts the IP protocol for a particular interface |
|
START/PWIP |
Starts the PWIPDRIVER |
|
START/TCP |
Starts the TCP protocol |
|
START/UCX |
Starts UCX compatibility support |
|
START/UDP |
Starts the UDP protocol |
|
STOP/DNIP |
Stops a DECnet-over-IP line or lines |
|
STOP/GATED |
Stops the GateD process |
|
STOP/INET |
Stops the INET device driver |
|
STOP/IP |
Stops the IP protocol for a particular interface |
|
STOP/NETCP |
Stops the Network Control Process (NETCP) |
|
STOP/PWIP |
Stops the PWIPDRIVER |
|
STOP/SERVER |
Stops the NFS Server |
|
STOP/TCP |
Stops the TCP protocol |
|
STOP/UCX |
Stops UCX compatibility support |
|
STOP/UDP |
Stops the UDP protocol |
The below table lists the commands that show the status of various network activities. The table also lists the UNIX netstat command that shows similar information. The DEBUG commands require LOG_IO privilege along with either SYSPRV or BYPASS privilege.
|
Command |
Purpose |
|
DEBUG/IP |
Displays information about IP datagrams sent and received over the network |
|
DEBUG/TCP |
Displays information about TCP segments sent and received over the network |
|
DEBUG/UPD |
Displays information about UDP datagrams sent and received over the network |
|
SET [NO]LOG |
Controls logging of non-error events in the NETCP.LOG file or another specified log file. |
|
SHOW parameter |
Shows values set using the SET parameters command |
|
SHOW ACCESS_LIST |
Prints or displays server access restrictions |
|
SHOW ARP |
Displays the entire ARP table for the specified lines |
|
SHOW CONNECTIONS |
Displays a list of the active internet connections (like the netstat -a command) |
|
SHOW COUNTERS |
Displays statistics counters for TCPDRIVER and UDPDRIVER |
|
SHOW DHCP SHOW DHCP4 |
Displays the current DHCP address lease records |
|
SHOW DNIP |
Displays information about currently configured DECnet over IP tunnels |
|
SHOW GATED TRACE |
Displays tracing in GateD |
|
SHOW HOST |
Displays the official host name, internet address(es), and alias host names for a specified host name or IP address |
|
SHOW INTERFACE |
Displays packet rate information for an interface |
|
SHOW MULTICAST_GROUPS |
Displays the multicast host groups joined for an interface or all interfaces |
|
SHOW NETWORKS |
Displays IPDRIVER network information for each line and IPDRIVER datagram counters (like the netstat -i command) |
|
SHOW OSPF |
Queries Open Shortest Path First (OSPF) gateways |
|
SHOW RIP |
Queries Routing Information Protocol (RIP) gateways |
|
SHOW ROUTES |
Displays the routing table |
|
SHOW SERVICES |
Displays information about protocols and ports NETCP services |
|
SHOW SNMP |
Displays the SNMP counters maintained by the local host |
|
SHOW STATISTICS |
Displays statistics information on the NFS Server |
The below table lists the commands that control various security functions.
|
Command |
Purpose |
|
SET [NO]FILTER |
Loads the specified address filter file and associates the filter list with the specified line, or removes a previously associated filter list from specified line |
|
SET IPS |
Starts/stops the Intrusion Protection System (IPS), or sets the debug level for IPS reporting. |
|
SET [NO]IPSO |
Enables (or disables) processing of IPSO labels (levels and protection authorities) for specific lines (ports or network interfaces) or for system processing |
|
SET [NO]OUTGOING |
Loads (or removes) an outgoing access restrictions file |
|
SHOW FILTER |
Displays the current address filter list for specified line |
|
SHOW IPS |
Write the IPS configuration and status to a file. |
|
SHOW IPSO |
Displays IPSO information on datagrams |
|
SHOW OUTGOING |
Shows all outgoing access restrictions |
NETCU supports the miscellaneous commands listed in the below table.
|
Command |
Purpose |
|
ADD SECONDARY |
Adds a secondary address, such as to implement cluster alias failover |
|
REMOVE SECONDARY |
Removes a secondary address |
|
DEFINE/KEY |
Associates an equivalence string and a set of attributes with a key on the keyboard |
|
EXIT |
Exits from NETCU and returns to DCL |
|
HELP |
Displays NETCU online help |
|
SET DOMAINNAME |
Sets the local host’s domain name |
|
SET/SHOW INTERFACE |
Sets (shows) interface related parameters and options |
|
SET [NO]LOG |
Starts (or stops) NETCP logging |
|
SET PASSWORD |
Sets the TCPware software password for your system |
|
SHOW SNMP |
Display the SNMP counters maintained by the local host |
|
SHOW TIMEZONE |
Displays the local time zone |
|
SHOW VERSION |
Displays the current version of TCPware for OpenVMS |
|
SPAWN |
Executes DCL commands without exiting from NETCU |
The below table lists the commands you can run from the MAIL-CONFIG prompt.
|
MAIL-CONFIG Command |
Description |
|
ADD GATEWAY |
Adds a mail gateway to another domain. |
|
ADD LOCAL-DOMAIN |
Adds a domain to a list of domains that the TCPware SMTP symbiont considers to be local. If users send mail to hosts beyond the local domains, TCPware forwards the mail to the mail hub specified by the FORWARDER parameter. The local domain list affects mail forwarding only when the FORWARD-REMOTE-MAIL parameter is TRUE. |
|
ADD QUEUE-GROUP |
Forms a mail queue grouping of nodes in a cluster or adds new nodes to an existing queue group. |
|
ATTACH |
Attaches your terminal to another process. |
|
CLEAR |
Erases all information from the current configuration; same as ERASE. |
|
DELETE GATEWAY |
Deletes a mail gateway. |
|
DELETE LOCAL-DOMAIN |
Deletes a domain from TCPware's list of local domains. |
|
DELETE QUEUE-GROUP |
Deletes a queue group or removes a node from a queue group. When a node is removed from a named queue group, it becomes part of the default queue group. |
|
ERASE |
Erases all information from the current configuration; same as CLEAR. |
|
EXIT |
Saves the configuration file and exits from MAIL-CONFIG. |
|
GET |
Reads in a TCPware SMTP configuration file. (Functionally equivalent to USE.) |
|
HELP |
Invokes MAIL-CONFIG command help. |
|
PUSH |
Accesses the DCL command interpreter. |
|
QUIT |
Prompts you to save the configuration file if it has been modified, then exits MAIL-CONFIG. |
|
REMOVE GATEWAY |
Functionally equivalent to DELETE GATEWAY. |
|
REMOVE QUEUE-GROUP |
Functionally equivalent to DELETE QUEUE-GROUP. |
|
SAVE |
Saves the current configuration file. |
|
SET ALIAS-FILE |
Identifies the file that holds mail aliases. |
|
SET DECNET-DOMAIN |
Sets the domain name for DECnet mail. |
|
SET DELIVERY-RECEIPTS |
Specifies whether mail receipts are sent when incoming mail containing Delivery-Receipt-To: or Return-Receipt-To: headers is submitted to the SMTP queue. |
|
SET DISABLE-PSIMAIL |
When TRUE, the TCPware SMTP symbiont looks for messages addressed through PSImail, usually of the form PSI%address::user, and returns them to the sender marked user unknown. |
|
SET DISALLOW-USER-REPLY-TO |
When set to TRUE, prevents VMS MAIL users from setting a Reply-To: header address with the logical name TCPWARE_SMTP_REPLY_TO. |
|
SET FORWARDER |
Specifies the host that will forward mail messages to other hosts. |
|
SET FORWARD-LOCAL-MAIL |
Forwards mail addressed to users on the local host to a central mail hub specified by the FORWARDER parameter. |
|
SET FORWARD-REMOTE-MAIL |
Forwards mail addressed to users on non-local hosts to a central mail hub specified by the FORWARDER parameter. |
|
SET HEADER-CONTROL |
Specifies which RFC-822 message headers should be included in messages delivered to local VMS MAIL users. |
|
SET HOST-ALIAS-FILE |
Specifies a file from which TCPware obtains a list of host aliases. |
|
SET LOCAL-MAIL-FORWARDER |
Forwards local mail to a specific host. |
|
SET POSTMASTER |
Identifies the user responsible for mail on the system. |
|
SET QUEUE-COUNT |
Specifies the number of mail processing queues that should be created on a particular system. |
|
SET REPLY-CONTROL |
Specifies how Internet mail headers should be mapped to the VMS MAIL "From" header. |
|
SET RESENT-HEADERS |
When FALSE, the TCPware SMTP symbiont omits the Resent-From, Resent-To, and Resent-Date headers that are usually included when a message is forwarded using a VMS MAIL forwarding address. |
|
SET RETRY-INTERVAL |
Specifies the amount of time that elapses before another attempt is made to send a message after a failed attempt. |
|
SET RETURN-INTERVAL |
Specifies the amount of time that a message can remain in the processing queue before it is returned to sender. |
|
SET SEND-BROADCAST-CLASS |
Specifies the broadcast class to use to deliver immediate SEND messages. |
|
SET SMTP-HOST-NAMES |
Sets the host name from which all outgoing mail appears to be sent and aliases for which this host accepts incoming mail. |
|
SET START-QUEUE-MANAGER |
Determines whether START_SMTP.COM starts the VMS queue manager if it is not already running. |
|
SHOW |
Displays the current configuration. |
|
SPAWN |
Executes a single DCL command. |
|
STATUS |
Indicates whether the SMTP configuration has been modified. |
|
USE |
Reads in a non-standard configuration file. |
|
VERSION |
Displays the MAIL-CONFIG version and release information. |
|
WRITE |
Saves the current configuration file. |
You can send output to a file for the DEBUG command and any SHOW command except SHOW EXPORT, SHOW GROUP, SHOW MOUNT, SHOW PROXY, and SHOW STATISTICS. Enter the /OUTPUT=filespec qualifier after the command. For example, the following command sends all output for the SHOW CONNECTIONS command to the file MYFILE.TXT:
NETCU> SHOW CONNECTIONS/OUTPUT=MYFILE.TXT
To exit NETCU, use the EXIT command or type Ctrl+Z. NETCU exits with the last error status, if any. DCL command procedures can use the $STATUS and $SEVERITY symbols to test for success or failure of the NETCU commands issued. A success status indicates that all commands succeeded. A warning, error, or severe status indicates that one or more commands failed to execute, either because of syntax errors or because of operational problems.
When possible, the status code is a System Service (defined in $SSDEF), RMS (defined in $RMSDEF), or shared (defined in $SHRDEF) status. In some cases, status codes are TCPware private codes with a facility number of 1577.
Each NETCU command is described in detail in the next chapter, NETCU Commands. The command descriptions include the command:
· Purpose, and any suggestions or restrictions that may apply
· Format
· Parameters (if any)
· Qualifiers (if any)
· Examples (when possible)
This section describes:
· Error messages that NETCU and NETCP can display at startup time
· NETCP error messages that OPCOM displays
· The NETCP.LOG file
This section lists messages that NETCU and NETCP may issue when you start-up the network.
%TCPWARE_NETCU-E-LPCNF, error configuring line port
-SYSTEM-F-BADPARAM, bad parameter
Meaning: Software other than TCPware might be using a TCP/IP protocol or your system might be running LAT without DECnet.
Action: Be sure TCPware is the only software using the TCP/IP protocols. If LAT is running without DECnet, start TCPware before starting LAT.
%TCPWARE_NETCU-E-LPSTART, error starting line port
-SYSTEM-F-IVADDR, invalid media address
Meaning: Two local lines have the same internet address.
Action: Be sure the internet addresses for all lines are valid, and that no duplicates exist. No two lines can use the same network (or subnet) number. Check the host for a bad SLIP line definition or ask if the host has two Ethernet interface cards. If there are two Ethernet cards, they cannot have the same network number, for example, 192.15.10.1 and 192.15.20.1.
OPCOM messages inform you when a major event occurs on the network. Some messages are informational (such as when an Ethernet line is being restarted after a fatal error), while others alert you to a problem (such as when an error occurs in trying to restart a port).
NETCP sends a message to OPCOM when a network event occurs. OPCOM formats the messages and adds some information (such as a timestamp). It then displays the messages on the operator's console and writes them to the SYS$MANAGER:OPERATOR.LOG file. OPCOM messages should rarely occur.
All messages from NETCP OPCOM have the following prefix:
Status report from TCPware(R) for OpenVMS NETCP:
The following are the most important NETCP OPCOM messages.
Line line-id restarted after fatal error
Meaning: The network controller reported a fatal error. The line was restarting automatically.
Action: Investigate the controller error, especially if it occurs repeatedly.
Error restarting line line-id (prot-id protocol) after fatal error
Meaning: The network controller reported a fatal error and TCPware could not recover from the error. An accompanying message displays the error reported by the controller during the restart attempt. After some failures, TCPware may periodically try to restart the controller. The prot-id value is IP, ARP, RARP, LTP (long trailer packets), or STP (short trailer packets).
Action: Investigate the controller error.
Caution! Maximum receive packet rate exceeded on line line-id (rate packets/second).
Meaning: The interface specified by line-id received more packets than were allowed. This may indicate that either the receive packet rate limit is too low or that a flood of packets were sent to the system and a network problem exists that should be corrected.
Action: If the limit is too low, raise it using SET INTERFACE /RECEIVE_LIMIT. If a network problem exists, investigate and correct it.
OPCOM may display the following messages for IP-over-DECnet lines.
DECnet link lost on line line-id
Meaning: The communication path between systems is lost. Some possible causes can be that a modem line is down, a cable has been unplugged, or the peer system is shut down.
Action: If the problem persists, investigate the cause for the lost line.
DECnet line line-id reconnected to peer
Meaning: The lost line was reconnected. Network operation is back to normal.
MTU for line line-id too small, ignoring packets larger than mtu bytes
Meaning: The peer end of the IP over DECnet line is sending datagrams that are larger than TCPware can handle.
Action: Increase the maximum transmission unit (MTU) for the IP-over-DECnet line at the receiving host, or lower it at the sending host. You can reset the MTUs for the receiving host by using the NETCU START/IP command or by reconfiguring the network.
Shutting down line line-id after receiving fatal error
Meaning: A fatal error was detected. This message is usually accompanied by another OpenVMS message which specifies the exact error.
Action: See your OpenVMS documentation.
The TCPWARE:NETCP.LOG file logs each NETCP master server connection. You can use this file to obtain details on server errors, and to monitor access and security violations.
The NETCP.LOG file shows:
· When the connection was established
· Which protocol is servicing the connection
· The internet addresses of both hosts
· The name of the server process created
Before you examine the NETCP.LOG file, issue the NETCU SHOW SERVICES command. This command writes the current server information to the NETCP.LOG file.