Allied Telesis AR400 Series User Manual
  1. Manuals
  2. Brands
  3. Allied Telesis Manuals
  4. Network Router
  5. AR400 Series
  6. User manual
Allied Telesis AR400 Series User Manual

Allied Telesis AR400 Series User Manual

Hide thumbs Also See for AR400 Series:
Table of Contents

Advertisement

Quick Links

Download this manual
AR400 SERIES ROUTER
USER GUIDE
Software Reference 2.6.1

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the AR400 Series and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Allied Telesis AR400 Series

Summary of Contents for Allied Telesis AR400 Series

  • Page 1 AR400 SERIES ROUTER USER GUIDE Software Reference 2.6.1...
  • Page 2 AR400 Series Router User Guide for Software Release 2.6.1 Document Number C613-02021-00 REV D. Copyright © 2003 Allied Telesyn International, Corp. 960 Stewart Drive Suite B, Sunnyvale CA 94086, USA. All rights reserved. No part of this publication may be reproduced without prior written permission from Allied Telesyn.

  • Page 3: Table Of Contents

    Introducing the AR400 Series Router ..............7 Why Read this User Guide? ................7 Where To Find More Information ..............8 The AR400 Series Router Documentation Set ..........8 Online Technical Support ................9 Features of the AR400 Series Router ..............9 Management Features ................
  • Page 4 AR400 Series Router User Guide The Monitoring Menu ................39 The Diagnostics Menu ................40 Changing the Password ................40 Context Sensitive GUI Help ............... 40 Saving Configuration Entered with the GUI ..........41 Combining GUI and CLI Configuration ............. 41 Configuring Multiple Devices ..............
  • Page 5 Frame Relay (AR410 only) ................81 Integrated Services Digital Network (ISDN) (AR410 only) ......... 84 BRI Versus PRI ................... 84 Configuring the Basic Rate Interface ............84 Configuring the Primary Rate Interface ............. 84 Default Setup ................... 85 Testing the BRI or PRI PIC ................85 Configuring ISDN (AR410 only) ...............

  • Page 7: Chapter 1 Introduction

    Congratulations on purchasing an AR400 Series router — the optimal solution for your small or medium sized business. This guide introduces the AR400 Series router and will guide you through the most common uses and applications of your new router. Getting started will not take long—many applications are set up in just a few minutes.

  • Page 8: Where To Find More Information

    Where To Find More Information Before installing the router and any expansion options, read the important safety information in the AR400 Series Router Safety and Statutory Information booklet. Follow the Quick Install Guides’ step-by-step instructions for physically installing the router and any expansion options.

  • Page 9: Online Technical Support

    Information about other Allied Telesyn routing and switching products. Online Technical Support For online support for your AR400 Series router, see our online support page at http://www.alliedtelesyn.co.nz/support/ar400. This page also contains the latest router software releases, patches and GUI resource files. Use the LOAD command to download software upgrades directly from the Allied Telesyn web site to the router’s FLASH memory.

  • Page 10: Management Features

    ■ one built-in encryption processor The software support for the AR400 Series router and the expansion options provides wirespeed Layer 2 switching, including support for Virtual LANs. In addition, the router provides a wide array of multiprotocol routing, security and network management features.
  • Page 11 Introduction ■ Novell® IPX routing. ■ DECnet™ routing (Phase IV+ and area) (AR410 only). ■ AppleTalk routing. ■ Generic Routing Encapsulation (GRE) protocols. ■ IP multicast routing support, including Internet Group Management Protocol (IGMP), Distance Vector Multicast Routing Protocol (DVMRP) and Protocol Independent Multicast (PIM) Sparse and Dense Modes.

  • Page 12: Special Feature Licences

    AR400 Series Router User Guide Special Feature Licences You need a special feature licence and password to activate some special features over and above the standard software release. Typically, these special features are covered by government security regulations. Special feature licences and passwords are quite separate and distinct from the standard software release licences and passwords.

  • Page 13: Chapter 2 Getting Started With The Command Line Interface (Cli)

    Chapter 2 Getting Started with the Command Line Interface (CLI) This Chapter This chapter describes how to access the router’s CLI, and provides basic information about configuring the router, including how to: ■ Physically connect a terminal or PC to the router (see “Connecting a Terminal or PC”...

  • Page 14: Connecting A Terminal Or Pc

    AR400 Series Router User Guide Connecting a Terminal or PC The first thing to do after physically installing the router is to start a terminal or terminal emulation session to access the router. Then you can use the command line interface (CLI) to configure the router. If you wish to configure the router using the Graphical User Interface, you must first access the CLI and assign an IP address to at least one interface.

  • Page 15: Logging In

    SET ASYN command. See the router’s online help or the Interfaces chapter in the AR400 Series Router Software Reference for more information on how to configure the asynchronous port.
  • Page 16 For more information about switch ports and Virtual LANs (VLANs), see Chapter 5, Physical and Layer 2 Interfaces in this document, and Switching on the AR410 and Switching on the AR450 in the AR400 Series Router Software Reference. For more information about IP addressing and routing, see Chapter 6, Routing in this document, and the Internet Protocol (IP) chapter in the AR400 Series Router Software Reference.

  • Page 17: Setting Routes

    SHOW IP ROUTE For more information about setting IP routes, see the Internet Protocol (IP) chapter in the AR400 Series Router Software Reference. Changing a Password You should change this password to prevent unauthorised access to the router.

  • Page 18: Choosing A Password

    Recovery of access to the router is complex. Once you have logged into the manager account you are able to enter commands from this guide and from the AR400 Series Router Software Reference. Using the Commands You control the router with commands described in this document and in the AR400 Series Router Software Reference.

  • Page 19: Aliases

    Getting Started with the Command Line Interface (CLI) Table 2: Command line editing functions and keystrokes (Continued). Function VT100 Terminal Dumb terminal ↑ or [Ctrl/B] Recall previous command [Ctrl/B] ↓ or [Ctrl/F] Recall next command [Ctrl/F] Display command history [Ctrl/C] or [Ctrl/C] SHOW PORT HISTORY or SHOW PORT HISTORY...

  • Page 20: Enabling Special Feature Licences

    AR400 Series Router User Guide The help file is easily modified, for example to provide detailed site-specific support information. The mark-up language specification and preprocessor program are available from your authorised distributor or reseller. Also, typing a question mark “?” at the end of a partially completed command displays a list of the parameters that may follow the current command line, with the minimum abbreviations in uppercase letters (see Figure 1 on page 20).

  • Page 21: Setting System Parameters

    Setting System Parameters You can set some general system parameters to ensure the router’s compatibility with the public network, and to aid network administration. Some services, for instance ISDN, use slightly different versions in different countries. To make sure that the router uses protocols consistent with the services it is connected to, set the system territory to the country or region in which your router operates.

  • Page 23: Chapter 3 Getting Started With The Graphical User Interface (Gui)

    Chapter 3 Getting Started with the Graphical User Interface (GUI) This Chapter This chapter describes how to access the router’s HTTP-based Graphical User Interface (GUI), and provides basic information about using the GUI, including: ■ What is the GUI? • an introduction to the Graphical User Interface ■...

  • Page 24: What Is The Gui

    AR400 Series Router User Guide What is the GUI? The GUI (Graphical User Interface) is a web-based device management tool, designed to make it easier to configure and monitor the router. The GUI provides an alternative to the CLI (Command Line Interface). Its purpose is to make complicated tasks simpler and regularly performed tasks quicker.
  • Page 25 Getting Started with the Graphical User Interface (GUI) JavaScript must be enabled. To enable JavaScript in Internet Explorer: From the Tools menu, select Internet Options Select the Security tab Click on the Custom Level button Under the Scripting section, ensure that “Active scripting” is enabled. To enable JavaScript in Netscape 6.2.x: From the Edit menu, select Preference Select the Advanced menu option.

  • Page 26: Establishing A Connection To The Router

    AR400 Series Router User Guide Establishing a Connection to the Router Before you start, consider how the router fits into your network. If you are installing a new router, consider whether you want to configure it before deploying it into the LAN, or want to configure it in situ. If you want to access a router that has already been configured, consider the relative positions of the PC and the router.
  • Page 27 Use a straight-through Ethernet cable to connect an Ethernet card on the PC to any one of the switch ports (see Figure 3). Figure 3: Connecting a PC directly to the router. straight-through cable AR400 Series router RS-232 ETHERNET 10BASE-T/100BASE-TX SWITCH PORTS...
  • Page 28 AR400 Series Router User Guide Point your web browser at the LAN interface’s IP address At the login prompt, enter the user name and password The default username is manager: User Name: manager Password: friend The System Status or System Hardware Details page is displayed (Figure 6 on page 34, Figure 7 on page 34).
  • Page 29 AR400 Series router You can browse to the router through any VLAN or ETH port, as long as you give that interface an IP address (see below). The recommended LAN interface is vlan1, and these instructions assume you will use vlan1 as the LAN interface. The switch ports all belong to vlan1 by default.
  • Page 30 AR400 Series Router User Guide If you want to be able to browse to the GUI securely, configure SSL (Secure Sockets Layer) See “Secure Access” on page 31 for more information. Save the configuration and set the router to use it on bootup CREATE CONFIG=filename.cfg...

  • Page 31: Secure Access

    Getting Started with the Graphical User Interface (GUI) Select a PC You can browse to the GUI from any PC that: • has an IP address in the same subnet as the router, or that the router has a route to •...
  • Page 32 AR400 Series Router User Guide To secure your router’s HTTP Server with SSL for secure router management via the GUI. Create a Security Officer user account Only a user with Security Officer privilege can enable system security and SSL. To add a user with the login name “CIPHER”, password “sbr4y3”, login=yes, and SECURITY OFFICER privilege, use the command: ADD USER="CIPHER"...
  • Page 33 Getting Started with the Graphical User Interface (GUI) with the Load Balancer. For details, see the Public Key Infrastructure (PKI) chapter of your Software Reference. Load self-signed router certificate To load the signed router certificate onto the router, use the command: ADD PKI CERTIFICATE=cer_name LOCATION=cer_name.cer TRUST=YES Enable SSL on the HTTP server...

  • Page 34: System Status And System Hardware Details

    AR400 Series Router User Guide System Status and System Hardware Details The GUI opens to display the system status on the AR450S router, and system hardware details for AR410 Series routers. Figure 6 and Figure 7 point out key information contained on these pages.

  • Page 35: Using The Gui: Navigation And Features

    Getting Started with the Graphical User Interface (GUI) Using the GUI: Navigation and Features The GUI consists of a large number of pages, which you navigate between using the menu on the left of the browser window. This section describes how to use the GUI, and gives an overview of its functionality.

  • Page 36: Using Configuration Pages

    AR400 Series Router User Guide Using Configuration Pages Most protocols are configured by creating or adding an entry - an IP route, a PIM interface, and so on. For such protocols, configuration with the GUI is based on sets of three pages: first you see a “summary” page, and from that you access an “add”...
  • Page 37 Getting Started with the Graphical User Interface (GUI) Figure 8: An example of a configuration page with a selection table Tabs Heading row Radio button Add, Modify and Remove buttons Figure 9: An example of a popup “add” page Text field Select list Checkbox Apply and Cancel...
  • Page 38 AR400 Series Router User Guide Figure 10: An example of a popup “modify” page Non-editable field Editable Fields GUI pages allow you to enter values or select options through a range of field types. These include: • text fields, to enter character strings or numbers, especially for fields where there are few limits on the entries (such as names).

  • Page 39: The Management Menu

    Getting Started with the Graphical User Interface (GUI) Cancel Button A Cancel button closes a popup page without making any changes to the configuration. Close Button A Close button closes a popup page, and conserves any changes that you made to the settings on the page by clicking on buttons like Add, Modify, Remove or Apply.

  • Page 40: The Diagnostics Menu

    AR400 Series Router User Guide The Diagnostics Menu The GUI’s diagnostics pages enable you to troubleshoot network problems and observe traffic flow, including: • displaying the number of good and bad packets received and transmitted over each switch port •...

  • Page 41: Saving Configuration Entered With The Gui

    Getting Started with the Graphical User Interface (GUI) To freeze the banner’s display so that the help does not change when you move the mouse, press the [Ctrl] key. To unfreeze, press [Ctrl] again. Note that element information is not available for entries in tables. To see descriptions of the columns of tables, click Complete Help Page.

  • Page 42: Upgrading The Gui

    AR400 Series Router User Guide Upgrading the GUI You can download the latest GUI resource file from the support site at http://www.alliedtelesyn.co.nz. Before you start, ensure that the router is running the most recent release and patch files. The GUI is not part of the firmware release file, but the most recent resource file will generally only be compatible with the most recent software release.

  • Page 43: Troubleshooting

    Getting Started with the Graphical User Interface (GUI) When the router has loaded the file into its RAM, it displays the message “File transfer successfully completed”. It then writes the file to FLASH memory, which takes approximately 30 seconds after the message. Once the file has been copied to FLASH, you can enter commands that refer to it.

  • Page 44: Deleting Temporary Files

    AR400 Series Router User Guide Deleting Temporary Files Browsers store local copies of web pages as temporary files. If you upgrade to a new GUI resource file, or if you encounter problems in browsing to the GUI, you may need to delete these files (clear the cache). To clear the cache in Internet Explorer: From the Tools menu, select Internet Options.

  • Page 45: Traffic Flow And Network Address Translation (Nat)

    Getting Started with the Graphical User Interface (GUI) Problem The GUI is behaving inconsistently, or you cannot access some pages. ■ Solution Delete your browser’s temporary files (see “Deleting Temporary Files” on page 44) and try again. ■ Check that you are trying to access the GUI from a supported operating system and browser combination.

  • Page 46: Firewall

    AR400 Series Router User Guide Problem Incoming traffic is sent to the wrong host. Solution If you are using a static Standard NAT, this problem may indicate that NAT is mapping to a valid IP address, but which belongs to the wrong host. To correct the IP address, select Configuration >...
  • Page 47 Getting Started with the Graphical User Interface (GUI) • The IP addresses the rules apply to are entered correctly, and actually belong to the specified devices. • The rules apply to the correct days and time. ■ Some traffic is allowed through the firewall, to enable the protocols to work correctly.

  • Page 48: Ip Addresses And Dhcp

    AR400 Series Router User Guide IP Addresses and DHCP Problem You have selected Quick Start > WAN > DHCP, but the router hasn’t been given an IP address. ■ Solution Check that the router’s domain and host name are correct (Configuration >...

  • Page 49: Time And Ntp

    Getting Started with the Graphical User Interface (GUI) Problem You are receiving email notifications for “attacks” that actually are not attacks. Solution Your alarm thresholds may be set too low (Configuration > Firewall > Events > Alarms tab). Be careful when increasing the thresholds, because if the threshold is too high, you may not be warned about actual attack attempts.

  • Page 50: Loading Software

    Loading Software Problem You have attempted to load a new release file onto the router, but the load has failed and you cannot access the router through the GUI. Solution Access the router’s CLI (see “Connecting a Terminal or PC” on page 14). If the router has been switched off or has rebooted since you attempted to load the release file, it will boot up with the default installation.

  • Page 51: This Chapter

    Chapter 4 Operating the router This Chapter This chapter introduces basic operations on the router, including: ■ “User Accounts and Privileges” on page 51 ■ “Normal Mode and Security Mode” on page 53 ■ “Remote Management” on page 56 ■ “Storing Files in FLASH Memory”...
  • Page 52 AR400 Series Router User Guide In normal mode, a user with manager privilege can create and delete accounts for users with any of these privilege levels. Users and passwords are managed by the User Authentication Facility. Users and passwords are authenticated...

  • Page 53: Normal Mode And Security Mode

    Operating the router See the Operations chapter in the AR400 Series Router Software Reference for: ■ More information about managing and using accounts with user, manager and security officer privileges ■ A full list of commands that require security officer privilege when the router is in secure mode ■...
  • Page 54 54 lists commands that only a security officer can execute when the router is in security mode. A complete list of commands limited by security mode are listed in the Operation chapter in the AR400 Series Router Software Reference.
  • Page 55 Operating the router Table 5: Commands requiring SECURITY OFFICER privilege when the router is operating in security mode (Continued). Command Specific Parameters DISABLE IPSEC DISABLE ISAKMP DISABLE PKI DEBUG DISABLE SA DISABLE SSH DISABLE USER DUMP EDIT ENABLE FEATURE ENABLE IPSEC ENABLE ISAKMP ENABLE PKI DEBUG ENABLE PPP DEBUG...

  • Page 56: Remote Management

    AR400 Series Router User Guide Table 5: Commands requiring SECURITY OFFICER privilege when the router is operating in security mode (Continued). Command Specific Parameters SET SNMP COMMUNITY SET SSH SET STAR SET USER SHOW CONFIG SHOW ENCO KEY SHOW FEATURE...

  • Page 57: Storing Files In Flash Memory

    For more information about working with files see the Working With Files section, Operation chapter, AR400 Series Router Software Reference. To display the files in FLASH, enter the command: SHOW FILE Figure 11: Example output from the SHOW FILE command.

  • Page 58: Using Scripts

    Manually edit a configuration file using the router’s built in editor (see “Using the Built-in Editor” on page 67), or upload it to a PC using the UPLOAD command (see the Operation chapter, AR400 Series Router Software Reference), edit it using any text editor, and download it again. Give configuration script files an extension of .scp...

  • Page 59: Storing Multiple Scripts

    Operating the router Storing Multiple Scripts You can store multiple configuration scripts on the router. This allows you to test new configuration scripts once, before setting them as the default configuration. For example, to test the new configuration script test.cfg enter the command: RESTART ROUTER CONFIG=test.cfg Storing multiple scripts also allows you to keep a backup router with...

  • Page 60: Loading Files

    Lightweight Directory Access Protocol (LDAP) to load PKI certificates or certificate revocation lists (CRLs), see the Operation chapter in the AR400 Series Router Software Reference. The router’s default download method is TFTP. To load a file onto the router...

  • Page 61: Setting Loader Defaults

    DEFAULT. For more information about setting the LOADER defaults on your router, see the Operations chapter in the AR400 Series Router Software Reference. Example: Load a Patch File Using HTTP This example loads a patch file onto the router from a HTTP server on the network.

  • Page 62: Uploading Files From The Router

    Allied Telesyn routers and layer 3 switches in your network. The TFTP Server, and a readme file describing how to install and use it, are provided on the AR400 Series Router Documentation and Tools CD-ROM. Example: Upload a Configuration File Using TFTP This example uploads a configuration file from the router to a TFTP server on the network.

  • Page 63: More Information

    For more information about loading files onto and uploading files from the router, including using LDAP to load PKI certificate information, see the Operation chapter in the AR400 Series Router Software Reference. Upgrading Router Software When you first start the router, it automatically loads the software release from FLASH memory into RAM, where the CPU uses it to run all the router’s...
  • Page 64 SHOW INSTALL For more information about INSTALL commands, see the Operations chapter in the AR400 Series Router Software Reference. Software Release 2.6.1 C613-02021-00 REV D...

  • Page 65: Example: Upgrade To A New Software Release Using Tftp

    Operating the router Example: Upgrade to a New Software Release Using TFTP This example assumes the router is correctly configured to allow TFTP to function. This means that IP is configured and the router is able to communicate with the designated TFTP server. The TFTP server is assumed to function correctly and the release and patch files are assumed present in the server’s TFTP directory.

  • Page 66: Example: Upgrade To A New Patch File

    AR400 Series Router User Guide compatible, so your current configuration should run with little or no modifications on the later release. CREATE CONFIG=myconfig.cfg SET CONFIG=myconfig.cfg The SET CONFIG information survives the release update. Reboot the router. RESTART REBOOT The router reboots, loading the new release file and the specified configuration.

  • Page 67: Using The Built-In Editor

    Do not set an untested patch as part of the preferred install. Using the Built-in Editor The AR400 Series router has a built-in full-screen text editor for editing script files stored on the router file subsystem. Using the text editor you can run script files manually, or set script files to run automatically at router restart, or on trigger events.

  • Page 68: Snmp And Mibs

    “vlan11”. For more information see the Simple Network Management Protocol (SNMP) chapter and the Interfaces chapter in the AR400 Series Router Software Reference. To display the current state and configuration of the SNMP agent, enter the...
  • Page 69 ■ How to define a remote security officer, so you can manage the security features remotely via Telnet. See other chapters in the AR400 Series Router Software Reference for more information on how to: ■ Use the logging facility to monitor network activity and to select and display the results (see the Logging Facility chapter).

  • Page 71: This Chapter

    Chapter 5 Physical and Layer 2 Interfaces This Chapter This chapter introduces the physical and logical interfaces available on the base unit router and the optional interfaces available as expansion options for the PIC bay. Topics covered are: ■ “Interfaces” on page 72 ■...

  • Page 72: Interfaces

    1. You can create and modify the default VLAN configuration if necessary (see “Virtual LANs” on page 79 and Switching on the AR410 and Switching on the AR450 in the AR400 Series Router Software Reference). Software Release 2.6.1...

  • Page 73: Naming Interfaces

    Two of the encapsulations supported for synchronous ports (AR410 only)— Frame Relay and Point-to-Point Protocol—are described in detail in the Point- to-Point Protocol (PPP) and Frame Relay chapters in the AR400 Series Router Software Reference. The Basic Rate and Primary Rate ISDN interfaces (AR410 only) are described in the Integrated Services Digital Network (ISDN) chapter in the AR400 Series Router Software Reference.

  • Page 74: Ethernet Ports

    Ethernet interface. For more information about Ethernet interfaces and encapsulations, see the Interfaces chapter in the AR400 Series Router Software Reference. Asynchronous Port Asynchronous ports are normally used to connect a terminal to the router for configuration purposes.

  • Page 75: Asynchronous Call Control (Acc)

    Hardware Reference or the Interfaces chapter in the AR400 Series Router Software Reference. For more information about configuring PPP interfaces across an asynchronous interfaces, see the Point to Point Protocol (PPP) chapter in the AR400 Series Router Software Reference. Asynchronous Call Control (ACC)

  • Page 76: Synchronous Ports (Ar410 Only)

    To set the clock speed, enter the command: SET SYN=n SPEED=speed For more information about synchronous interfaces, see the Interfaces chapter in the AR400 Series Router Software Reference. Switch Ports A switch port is one of the physical Ethernet interfaces on the base router unit.

  • Page 77: Limiting Switch Traffic (Ar410 Only)

    Physical and Layer 2 Interfaces On the AR450 only, Auto MDI/MDI-X is disabled when a switch port is set to a specific speed and duplex mode. On the AR450 only, it is also possible to require a switch port to operate at a single speed without disabling autonegotiation by allowing the port to autonegotiate, but constrain the speed/duplex options to the desired combination.

  • Page 78: Packet Storm Protection (Ar450 Only)

    SET SWITCH BROADCASTLIMIT=ON For more information about limiting switch traffic, see the Switching on the AR410 chapter in the AR400 Series Router Software Reference. Packet Storm Protection (AR450 only) Using the packet storm protection feature, you can set limits on the reception rate of broadcast, multicast and destination lookup failure packets.

  • Page 79: Virtual Lans

    Physical and Layer 2 Interfaces For more information about limiting switch traffic, see the SET SWITCH PORT command in the Switching on the AR450 chapter in the AR400 Series Router Software Reference. Virtual LANs A Virtual LAN (VLAN) is a software-defined broadcast domain. The router’s VLAN feature allows you to segment a network by software management to improve network performance.

  • Page 80: Point To Point Protocol (Ppp)

    SET PPP=ppp-interface ECHO=ON LQR=OFF For more information about PPP, see the Point to Point Protocol (PPP) chapter in the AR400 Series Router Software Reference. Dynamic PPP Interfaces and PPP Templates A request from a lower layer (ISDN, ACC or L2TP) to create a new PPP interface creates a Dynamic PPP interface.

  • Page 81: Pppoe

    Physical and Layer 2 Interfaces PPPoE PPP over Ethernet (PPPoE) is defined in RFC 2516 “A Method of Transmitting PPP Over Ethernet”. PPPoE is used to run PPP over the Ethernet. The same authentication, billing and transfer systems as for PPP are then available in Ethernet networks.
  • Page 82 AR400 Series Router User Guide Parameters for setting the interface defaults for encryption and compression are also set with the CREATE command. These values are used by all DLCs on the interface unless specifically overridden for a particular DLC. After the Frame Relay interface is created, to change the LMI parameters,...
  • Page 83 Physical and Layer 2 Interfaces Add logical interfaces if required Frame Relay logical interfaces (FRLI) provide a mechanism for organising DLCs into groups. Each FRLI, or group of DLCs, are assigned its own IP address to split the Frame Relay network into subnets. A default FRLI 0 is always created when a Frame Relay interface is created.

  • Page 84: Integrated Services Digital Network (Isdn) (Ar410 Only)

    Integrated Services Digital Network (ISDN) (AR410 only) To use ISDN connections with an AR400 Series router you need to install the appropriate Port Interface Card (PIC) in the router’s PIC bay. Either install an ISDN Basic Rate ISDN (BRI) or Primary Rate ISDN (PRI) PIC. Depending on the PIC installed, the router supports the following types of ISDN connections: ■...

  • Page 85: Default Setup

    However, you can modify these settings as required to suit other network situations (see the Integrated Services Digital Network (ISDN) chapter, AR400 Series Router Software Reference). Table 9: Standard LAPD configuration for an ISDN Basic Rate Interface.

  • Page 86: Configuring Isdn (Ar410 Only)

    The router will accept either one or two Service Profile Identifiers (SPIDs). Configuring Basic Rate ISDN To connect an AR400 Series router with an AT-AR021(U) PIC installed to a Basic Rate ISDN service the following steps are required: Check BRI hardware configuration.
  • Page 87 SET Q931=0 NUM1=number NUM2=number SUB1=subaddress SUB2=subaddress This step is only required if the router is sharing the ISDN S/T bus with other ISDN devices. See the AR400 Series Router Software Reference for more information. Go to Step 5. Set switch type and SPIDs (USA only).
  • Page 88 AR400 Series Router User Guide If the Auto SPID procedures fail, manually enter the SPIDs with the command: SET Q931=0 SPID1=spid SPID2=spid Enter directory numbers and subaddresses with the command: SET Q931=0 NUM1=number NUM2=number SUB1=subaddress SUB2=subaddress The ISDN service provider must supply the directory numbers and subaddresses.

  • Page 89: Configuring Primary Rate Isdn

    ISDN is now ready for use by routing protocols such as IP and IPX. Configuring Primary Rate ISDN Your AR400 Series router can operate in either TE or NT mode, using 75W or 120W termination. The router is shipped with jumpers set to TE mode, 75W termination, Tx grounded and Rx grounded via a 100nF capacitor.
  • Page 90 SET Q931=0 NUM1=number NUM2=number SUB1=subaddress SUB2=subaddress This step is only required if the router is sharing the ISDN S/T bus with other ISDN devices. See the AR400 Series Router Software Reference for more information. Create call definitions. Create ISDN call definitions to enable the router to make ISDN calls to other devices on the ISDN network.

  • Page 91: Configuring Isdn Dial On Demand

    Physical and Layer 2 Interfaces and other call is cleared. The direction of precedence is not important, but set precedence to IN at one end of the call and OUT at the other end of the call. The ISDN number is the exact sequence required to reach the remote router from the local router, including STD access codes and area codes.

  • Page 92: Configuring Isdn Bandwidth On Demand

    AR400 Series Router User Guide Create PPP interfaces. Create PPP interfaces to use the ISDN calls and enable the IDLE timer. Using the example in step 6 of “Configuring Basic Rate ISDN” on page 86, on the Head Office router create PPP interface 0 to use the ISDN call...

  • Page 93: Installing Port Interface Cards (Pics) (Ar410 Only)

    Leased lines are a commonly used for building Wide Area Networks (WANs). A leased line maybe the right solution if you need to connect distant sites across public areas. By installing an AT-AR023 SYN PIC in your AR400 Series router this option is available to you.
  • Page 94 AR400 Series Router User Guide To check the configuration, enter the commands: SHOW SYN=0 SHOW PPP=0 The output of the SHOW SYN command should show “Active” set to “yes” and “Module” set to “ppp”. The output of the SHOW PPP command should show interface ppp0 over syn0 with “LCP”...

  • Page 95: Chapter 6 Routing

    TCP/IP provides a range of services including remote login, Telnet, file transfer (FTP), Email and access to the World-Wide Web. The AR400 Series routers route TCP/IP packets between switch ports in separate VLANs, and across the Wide Area Network using services like ISDN, Frame Relay and leased lines.

  • Page 96: Before You Start

    AR400 Series Router User Guide Before You Start Ensure that the routers you want to configure are connected as described in the Quick Install Guide. Connect a terminal to the console port (port 0) on each router as described in the in the Quick Install Guide. Alternatively, you can connect a PC to the console port and use a terminal emulation program like Windows™...
  • Page 97 To add untagged ports to vlan3, enter the command: ADD VLAN=vlan3 PORT=1-3 See the Switching on the AR410 or Switching on the AR450 chapter in the AR400 Series Router Software Reference for more detailed information about creating VLANs and VLAN ports. Software Release 2.6.1...
  • Page 98 AR400 Series Router User Guide Configure IP Routing To clear any pre-existing IP configuration and turn on the IP routing software on each router, enter the commands: PURGE IP ENABLE IP On the Head Office router define two IP interfaces, one for the VLAN and one for the wide area link: ADD IP INT=VLAN2 IP=172.16.8.33 MASK=255.255.255.0...

  • Page 99: Configuring Ip Multicasting

    Routing You will see the login screen for the Remote Office router. To connect from the Remote Office router to the Head Office router, on the Remote Office router, enter the command: TELNET 172.16.8.33 Save the configuration To save the new dynamic configuration as a script, enter the command: CREATE CONFIG=IPCONF.SCP Configuring IP Multicasting IP multicasting is used to transmit packets to a group of hosts simultaneously...

  • Page 100: Configuring Igmp

    AR400 Series Router User Guide While you can configure different multicasting protocols on different interfaces on the same router, multicasting information is not translated between the different multicast protocols. Configuring IGMP By default, IGMP is disabled on the router and on all interfaces. To enable...
  • Page 101 Routing Figure 15: Multicast configuration example using IGMP and DVMRP. Router C Router A 203.45.90.2 203.45.90.3 ppp1 ppp0 eth0 ISDN 172.73.1.2 172.73.1.1 202.96.152.12 ppp0 189.124.7.9 Frame Relay IP host A 189.124.7.8 ppp0 202.96.152.4 172.70.1.2 172.74.1.2 eth0 eth0 172.70.1.1 172.74.1.1 Router B Router D Router B UGIPMU1_R...
  • Page 102 AR400 Series Router User Guide Configure PPP. To create PPP interfaces over a synchronous port and the ISDN call, enter the commands: CREATE PPP=0 OVER=SYN0 CREATE PPP=1 OVER=ISDN-DVMRP IDLE=ON Configure IP. To enable the IP module, and assign IP addresses to the interfaces, enter the...
  • Page 103 Routing Configure IP. To enable IP on the router, and assign IP addresses to the interfaces used by DVMRP for multicast routing, enter the commands: ENABLE IP ADD IP INTERFACE=PPP0 IPADDRESS=189.124.7.8 MASK=255.255.0.0 ADD IP INTERFACE=ETH0 IPADDRESS=172.74.1.2 MASK=255.255.255.0 ADD IP INTERFACE=ETH1 IPADDRESS=172.74.2.2 MASK=255.255.255.0 Configure IGMP.
  • Page 104 AR400 Series Router User Guide Configure PPP. To configure a PPP interface over the ISDN interface, enter the command: CREATE PPP=0 OVER=ISDN-DVMRP IDLE=ON Configure IP. To enable the IP module, and assign IP addresses to the interfaces, enter the commands: ENABLE IP ADD IP INTERFACE=FR0 IPADDRESS=202.96.152.12...

  • Page 105: Configuring Dynamic Host Configuration Protocol (Dhcp)

    SHOW DVMRP SHOW IP IGMP SHOW IP ROUTE MULTICAST For more information on how to configure IP Multicasting, including PIM-SM and PIM-DM, see the IP Multicasting chapter in the AR400 Series Router Software Reference. Configuring Dynamic Host Configuration Protocol (DHCP) DHCP provides a method for passing configuration information to hosts on a TCP/IP network.
  • Page 106 Enable the DHCP server, using the command: ENABLE DHCP For more information on how to configure DHCP, see the Dynamic Host Configuration Protocol (DHCP) chapter in the AR400 Series Router Software Reference. Software Release 2.6.1 C613-02021-00 REV D...

  • Page 107: Configuring A Novell Ipx Network

    Routing Configuring a Novell IPX Network The router’s implementation of the Novell IPX protocol uses the term circuit to refer to a logical connection over an interface, similar to an X.25 permanent virtual circuit (PVC) or a Frame Relay Data Link Connection (DLC). The term interface refers to the underlying physical interface, such as VLAN, Ethernet, Point-to-Point (PPP) and Frame Relay.

  • Page 108: Configuring Ipx

    AR400 Series Router User Guide Configuring IPX This example (Figure 16 on page 108) illustrates the steps required to configure a pair of AR410 routers to create a Novell® IPX internetwork, using the router’s command line interface. In this scenario, PCs at a remote office need access to a Novell file server at the Head Office site.
  • Page 109 Routing To configure IPX follow these steps The following steps are required: Configure the PPP link. Configure the routers for IPX. Test the configuration. Save the configuration. Configure the PPP Link Refer to other sections of this guide on how to configure PPP interface 0 on each router to use the wide area link.
  • Page 110 AR400 Series Router User Guide local (i.e. via eth0) on one router, should also be visible on the other router, via the PPP link. Test that a workstation on the Remote Office LAN can login to the file server on the Head Office LAN.

  • Page 111: Configuring Ipx Dial-On-Demand

    Routing Configuring IPX Dial-on-Demand This example (Figure 18 on page 111) illustrates how to set up the router to provide a wide area internet based on Novell’s IPX routing protocol with dial- on-demand access. In this scenario, a PC at a remote site periodically accesses the Novell file server at a central site to read Email, transfer files or print documents on a laser printer.
  • Page 112 AR400 Series Router User Guide Clear previous IPX configuration To purge the IPX static database to clear an preexisting IPX configuration enter the command: PURGE IPX Enable IPX To enable the IPX routing software on each router, enter the command:...

  • Page 113: Appletalk

    Routing Create SAP filter To create a SAP filter that only allows information about the file services provided by the file server (named ACCOUNTS) to be included in SAP broadcasts, enter the command: ADD IPX SAP=0 SERVICE=ACCOUNTS TYPE=FILE ACTION=INCLUDE Associate RIP and SAP filters with IPX circuit To associate the RIP and SAP filters with the IPX circuit over the PPP link, enter the command: SET IPX CIRC=2 RIPCHANGE=YES SAPCHANGE=YES OUTRIP=0...

  • Page 114: Routing Information Protocol (Rip)

    ******** ------------------------------------------------------------------------------- To interpret output from the SHOW IP RIP command see the Internet Protocol (IP) chapter in the AR400 Series Router Software Reference. Resource Reservation Protocol (RSVP) The Resource Reservation Protocol (RSVP) is a signalling protocol designed to reserve bandwidth for realtime transmission. RSVP is not a traffic delivery protocol or a routing protocol.

  • Page 115: Ospf

    None ------------------------------------------------------------------------------ To interpret output from the SHOW RSVP INTERFACE command see the Resource Reservation Protocol (RSVP) chapter in the AR400 Series Router Software Reference. OSPF Open Shortest Path First (OSPF) is an Internal Gateway Routing Protocol, based on Shortest Path First (SPF) or link-state technology. OSPF is a routing protocol that determines the best path for routing IP traffic over a TCP/IP network.

  • Page 116: Configuring A Basic Ospf Network

    AR400 Series Router User Guide Configuring a Basic OSPF Network This example (Figure 22 on page 116) is a simple network of two routers connected together, each with its own local area network. The routers all belong to a single class B network 172.31.0.0, which has further been subnetted using the subnet mask 255.255.255.0.
  • Page 117 ADD OSPF RANGE=172.31.0.0 AREA=0.0.0.1 MASK=255.255.0.0 ADD OSPF INTERFACE=ETH0 AREA=0.0.0.1 PASSWORD=csecret ADD OSPF INTERFACE=PPP0 AREA=0.0.0.1 PASSWORD=bsecret For more information about configuring OSPF, see the Open Shortest Path First (OSPF) chapter in the AR400 Series Router Software Reference. Software Release 2.6.1 C613-02021-00 REV D...

  • Page 119: Chapter 7 Maintenance And Troubleshooting

    Chapter 7 Maintenance and Troubleshooting This Chapter If you are familiar with networking and router operations, you may be able to diagnose and solve some problems yourself. This chapter gives tips on how to: ■ start your router (see “How the Router Starts Up” on page 120). ■...

  • Page 120: How The Router Starts Up

    AR400 Series Router User Guide How the Router Starts Up The sequence of operations that the router performs when it boots are: When the router boots, the following sequence of operations is performed: Perform startup self tests. Perform the install override option.

  • Page 121: How To Avoid Problems

    Maintenance and Troubleshooting When you start the router the FLASH boot release is always loaded first. The FLASH boot release contains all the code required to obtain and check the INSTALL information. This first boot is known as the INSTALL boot. The INSTALL information is inspected and the router is setup to perform another load.

  • Page 122: Configure Firewall

    Set the Logging Facility to log and forward the log messages you need to monitor your network (see the Logging Facility chapter in the AR400 Series Router Software Reference). Inspect the log file from time to time, and if difficulties arise.

  • Page 123: What To Do If You Clear Flash Memory Completely

    Maintenance and Troubleshooting What To Do if You Clear FLASH Memory Completely DO NOT clear the FLASH memory completely. The software release files are stored in FLASH, and clearing it would leave no software to run the router. If you accidentally do this, you will need to: Boot with default configuration.

  • Page 124: What To Do If Isdn Fails To Connect

    AR400 Series Router User Guide What To Do if ISDN Fails to Connect Make sure the system territory is set to the country or region in which your router is located. This is important because different countries use variations on the ISDN protocols, and the system territory setting on the router ensures that the router behaviour is compatible with the ISDN network.

  • Page 125: What To Do If Passwords Are Lost

    SHOW DEBUG ■ Depending on the problem, the support personnel may also ask you for the output from the following commands (see the Monitoring and Fault Diagnosis section in the Operations chapter, AR400 Series Router Software Reference): SHOW EXCEPTION SHOW STARTUP...

  • Page 126: Resetting Router Defaults

    AR400 Series Router User Guide Resetting Router Defaults To restart the router at any time with no configuration, enter the command: RESTART ROUTER CONFIG=NONE has changed, to set it back to the default configuration by saving boot.cfg the default dynamic configuration to the file, enter the command: boot.cfg...

  • Page 127: Troubleshooting Ip Configurations

    The display should look like that shown in Figure 24 on page 127. For more information on how to check the PPP link see “Point-to-Point Protocol (PPP)” on page 5-1 in the Point-to-Point Protocol (PPP) chapter, AR400 Series Router Software Reference.

  • Page 128: Troubleshooting Dhcp Ip Addresses

    AR400 Series Router User Guide Contact your authorised distributor or reseller for assistance If the route still does not appear, contact your authorised distributor or reseller for assistance. Telnet Fails If Telnet to router fails Check that the IP address you used matches the one assigned to the router.

  • Page 129: Troubleshooting Ipx Configurations

    OPENED ----------------------------------------------------------------------------- To interpret output from the SHOW PPP command see the Point-to Point (PPP) chapter in the AR400 Series Router Software Reference. Check IPX circuit configuration To check that the IPX circuits are correctly configured on each router repeat...
  • Page 130 1 (ppp0) -------------------------------------------------------------------------------- To interpret output from the SHOW IPX SEVICES command see the Novell IPX chapter in the AR400 Series Router Software Reference. Check route tables To check the route tables on both routers, enter the command: SHOW IPX ROUTE Check for the presence of networks on the remote side of the wide area network.

  • Page 131: Using Trace Route For Ip Traffic

    SHOW TRACE To halt a trace route that is in progress, enter the command: STOP TRACE For more information about trace route, see the Internet Protocol (IP) chapter in the AR400 Series Router Software Reference. Software Release 2.6.1 C613-02021-00 REV D...

Table of Contents