1. Manuals
  2. Brands
  3. Patton electronics Manuals
  4. Network Router
  5. Patton IPLink 2635
  6. Getting started manual

Patton electronics IPLink 2635 Getting Started Manual

Iplink series high speed routers
Hide thumbs Also See for IPLink 2635:
Table of Contents

Advertisement

Quick Links

Download this manual
Models 2603, 2621, and 2635
IPLink Series High Speed Routers
Getting Started Guide
Sales Office:
+1 (301) 975-1000
Technical Support:
+1 (301) 975-1007
E-mail:
support@patton.com
WWW:
www.patton.com
Document Number: 03328U1-001 Rev. A
Part Number: 07M2600Ser-GS
Revised: March 24, 2006

Advertisement

Table of Contents
loading

Related Manuals for Patton electronics IPLink 2635

Summary of Contents for Patton electronics IPLink 2635

  • Page 1 Models 2603, 2621, and 2635 IPLink Series High Speed Routers Getting Started Guide Sales Office: +1 (301) 975-1000 Technical Support: +1 (301) 975-1007 E-mail: support@patton.com WWW: www.patton.com Document Number: 03328U1-001 Rev. A Part Number: 07M2600Ser-GS Revised: March 24, 2006...
  • Page 2 Patton Electronics Company, Inc. 7622 Rickenbacker Drive Gaithersburg, MD 20879 USA Tel: +1 (301) 975-1000 Fax: +1 (301) 869-9293 Support: +1 (301) 975-1007 Web: E-mail: Copyright © 2003–2006, Patton Electronics Company. All rights reserved. The information in this document is subject to change without notice. Patton Elec- tronics assumes no liability for errors that may appear in this document.

  • Page 3: Summary Table Of Contents

    Summary Table of Contents General Information... 17 Product Overview... 24 Initial Configuration ... 27 Ethernet LAN Port ... 40 Serial Port Configuration ... 44 WAN Services ... 50 Security ... 68 DHCP and DNS Configuration... 82 IP Services ... 93 System Configuration...

  • Page 4: Table Of Contents

    Contents Summary Table of Contents ... 3 Contents ... 4 List of Figures ... 10 List of Tables ... 12 About this guide ... 13 Audience... 13 Structure... 13 Precautions ... 14 Safety when working with electricity ...14 General observations ...15 Factory default parameters ...
  • Page 5 Contents Installing an interface cable on the IPLink 2635’s V.35 interface port ...33 Installing the AC power cord ...34 Installing the Ethernet cable ...36 IP address modification ...37 Web Operation and Configuration ...37 PC Configuration ...37 Web Browser ...37 4 Ethernet LAN Port ... 40 Introduction ...41...
  • Page 6 Models 2603, 2621, and 2635 Getting Started Guide Remote Site Configuration ...63 Central site configuration ...66 7 Security ... 68 Introduction ...69 Configuring the router ...69 Configuring the security interfaces...71 Configuring Security Policies ...73 Deleting a security Policy ...74 Enabling the Firewall...74 Firewall Portfilters ...74...
  • Page 7 Radio and TV Interference (FCC Part 15) ...116 CE Declaration of Conformity ...116 FCC Part 68 (ACTA) Statement (Model 2603 only)...116 Industry Canada Notice (2603 Model only) ...117 B Specifications ... 118 General Characteristics ...119 Ethernet ...119 Models 2603, 2621, and 2635 Getting Started Guide...
  • Page 8 Models 2603, 2621, and 2635 Getting Started Guide Sync Serial Interface ...119 T1/E1 Interface ...119 Protocol Support ...120 PPP Support...120 Management ...120 Security ...121 Dimensions ...121 Power and Power Supply Specifications...121 AC universal power supply ...121 48 VDC power supply ...121 C Cable Recommendations ...
  • Page 9 Models 2603, 2621, and 2635 Getting Started Guide Contents...

  • Page 10: List Of Figures

    Rear view of the 2635 showing location of Ethernet and V.35 connectors ......
  • Page 11 Models 2603, 2621, and 2635 Getting Started Guide New Policy link to configuration webpage ........... . 73 Deleting a Security Policy .

  • Page 12: List Of Tables

    List of Tables General conventions ..............16 Status LED descriptions .

  • Page 13: About This Guide

    About this guide This guide describes installing and configuring Patton Electronics IPLink Series High Speed Routers. The instructions in this guide are based on the following assumptions: • The router may connect to a serial DTE device or T1/E1 line •...

  • Page 14: Precautions

    Models 2603, 2621, and 2635 Getting Started Guide Precautions Notes, cautions, and warnings, which have the following meanings, are used throughout this guide to help you become aware of potential problems. Warnings are intended to prevent safety hazards that could result in per- sonal injury.

  • Page 15: General Observations

    • Ethernet IP address: 192.168.200.10/24 • WAN Connection: PPP Bridged • Ethernet and serial connections • MDI (LAN connector) • Model 2621 (X.21)—DB-15 port (DTE) • Model 2635 (V.35)—DB-25 port (DCE, DTE when using special V.35 cable) About this guide...

  • Page 16: Typographical Conventions Used In This Document

    Models 2603, 2621, and 2635 Getting Started Guide • Model 2603/T—T1 configuration. RJ-48C (100-ohm) interface • Model 2603/K—E1 configuration. RJ-48C (120-ohm) and dual-BNC interface (75-ohm) Typographical conventions used in this document This section describes the typographical conventions and terms used in this guide.

  • Page 17: General Information

    Chapter 1 General Information Chapter contents IPLink Series High Speed Routers overview General attributes ...18 Ethernet ...19 Protocol support ...19 PPP Support ...19 WAN Interfaces ...19 Management ...19 Security ...20 Front Panel Status LEDs and Console Port Console port ...21 Rear panel connectors and switches Power connector ...22...

  • Page 18: Iplink Series High Speed Routers Overview

    The Model 2621 is equipped with DTE/DCE user configurable X.21 interface. • The Model 2635 equipped with a V.35 interface presented on a female DB-25 connector and a cable to convert to an M34/F. The IPLink routers provide selectable bridging or routing functionality along with advanced IP features such as NAT/NAPT, Firewall, and DHCP.

  • Page 19: Ethernet

    Models 2603, 2621, and 2635 Getting Started Guide Ethernet • Auto-sensing full-duplex 10Base-T/100Base-TX Ethernet. • Standard RJ-45 connector • Built-in MDI-X cross-over switch. • IEEE 802.1d transparent learning bridge • 2 IP address/subnets on Ethernet interface. Protocol support • Complete internetworking with IP (RFC 741), TCP (RFC 793), UDP (RFC 768), ICMP (RFC 950), ARP (RFC 826).

  • Page 20: Security

    Models 2603, 2621, and 2635 Getting Started Guide • Logging via SYSLOG, and VT-100 console. Console port set at 9600 bps 8/N/1 settings no flow control. Security • Packet filtering firewall for controlled access to and from LAN/WAN. Support for 255 rules in 32 filter sets.

  • Page 21: Console Port

    Models 2603, 2621, and 2635 Getting Started Guide Link T1/E1 Sync Serial Link Ethernet 100M Console port Located on the front panel, the unshielded RJ-45 RS-232 console DCE port (EIA-561) with the pin-out listed in the following table: Rear panel connectors and switches...

  • Page 22: Power Connector

    Models 2603, 2621, and 2635 Getting Started Guide • Power input connector • Ethernet connector • MDI-X switch • WAN port (V.35, X.21, T1/E1) Power connector AC universal power supply. The IPLink Series router offers internal or external AC power supply options.
  • Page 23 Models 2603, 2621, and 2635 Getting Started Guide 1 • General Information IPLink Series High Speed Routers overview...

  • Page 24: Product Overview

    Chapter 2 Product Overview Chapter contents Introduction ...25 Applications Overview...26...

  • Page 25: Introduction

    • The Ethernet port—Connects to the LAN side of the connection • The Serial port—Connects to local DTE devices (Model 2621 and 2635) • The T1/E1 port—Connects directly to T1/E1 lines (Model 2603) The router provides all layer 2 and layer 3 protocols required for end-to-end-link communication.

  • Page 26: Applications Overview

    Models 2603, 2621, and 2635 Getting Started Guide 2 • Product Overview Applications Overview Patton’s IPLink Gateway routers deliver all the advanced features for secure, reliable, and high speed Internet data connections. They combine ease-of-use with powerful data routing to make shared Internet connectivity simple and easy.

  • Page 27: Initial Configuration

    Installing an interface cable on the IPLink 2603’s T1/E1 interface port Installing an interface cable on the IPLink 2621’s X.21 interface port Installing an interface cable on the IPLink 2635’s V.35 interface port Installing the AC power cord Installing the Ethernet cable IP address modification ...37...

  • Page 28: Initial Configuration

    • Model 2621 router (see “Installing an interface cable on the IPLink 2621’s X.21 interface port” • Model 2635 router (see “Installing an interface cable on the IPLink 2635’s V.35 interface port” Hardware installation “What you will need”) “Interface cable on page 36) “IP address modification”...

  • Page 29: Installing An Interface Cable On The Iplink 2603'S T1/E1 Interface Port

    Models 2603, 2621, and 2635 Getting Started Guide Installing an interface cable on the IPLink 2603’s T1/E1 interface port The IPLink Models 2603/K and 2603/T come with a selectable T1/E1 WAN interface (see on the back of the IPLink, the T1 and E1 interfaces are presented on an RJ-48C connector with selectable line...

  • Page 30: Rear View Of The 2603/K Showing Location Of Ethernet And Wan Connectors

    Models 2603, 2621, and 2635 Getting Started Guide Power Figure 6. Rear view of the 2603/K showing location of Ethernet and WAN connectors The interface cable has been installed, go to section Hardware installation RX connector TX connector (BNC) (BNC)

  • Page 31: Installing An Interface Cable On The Iplink 2621'S X.21 Interface Port

    Models 2603, 2621, and 2635 Getting Started Guide Installing an interface cable on the IPLink 2621’s X.21 interface port The IPLink Model 2621 comes with an X.21 interface presented on a female DB-15 connector (see This interface can be configured as a DTE (factory default), or as a DCE via internal configuration jumper.

  • Page 32: Case Being Opened With A Screwdriver

    Models 2603, 2621, and 2635 Getting Started Guide When the local third party equipment is configured as DTE, the Model 3086 X.21 serial port can be config- ured as DCE, and a regular straight-through cable can then be used. Do the following to configure the X.21 port as a DCE: 1.

  • Page 33: Installing An Interface Cable On The Iplink 2635'S V.35 Interface Port

    The Model 2635 V.35 (DB-25) interface is configured internally as a DCE. However, when using the Patton cable with the 2635, the V.35 interface at the M/34 end of the cable is a DTE (see the Patton DB-25 to M/34 cable is a sync null modem cable.

  • Page 34: Installing The Ac Power Cord

    Figure 11. Connecting the 2635 to a DCE device The serial port on the IPLink Model 2635 is configured as a DCE, it connects directly to a DTE using a stan- dard straight-through V.35 cable. However, in many applications, the IPLink’s V.35 interface will connect to a DCE (modem or multiplexer), in this situation use the special cable provided with your Model 2635.

  • Page 35: Power Connector Location On Rear Panel (Model 2603/T Shown)

    Models 2603, 2621, and 2635 Getting Started Guide Figure 12. Power connector location on rear panel (Model 2603/T shown) The IPLink router power supply automatically adjusts to accept an input voltage from 100 to 240 VAC (50/60 Hz). Verify that the proper voltage is present before plugging the CAUTION power cord into the receptacle.

  • Page 36: Installing The Ethernet Cable

    Models 2603, 2621, and 2635 Getting Started Guide Figure 13. IPLink front panel LEDs and Console port locations (Model 2603 shown) Installing the Ethernet cable Do the following: The interconnecting cables shall be acceptable for external use and shall be rated for the proper application with respect to volt- age, current, anticipated temperature, flammability, and...

  • Page 37: Ip Address Modification

    Models 2603, 2621, and 2635 Getting Started Guide 7. A message will display, “Login Successful.” By typing the character “?”, all the commands will be displayed. Login: superuser Password: ********* Login successful --> 8. Any commands’ parameters may be seen by entering the command followed by a space and a question mark.

  • Page 38: Model 2603 Home Page

    Models 2603, 2621, and 2635 Getting Started Guide 2. Enter the IPLink router’s IP address into the URL or Address field of the browser. To see the IPLink Series router home page, refer to the following Figures. Model 2603 is shown in Model 2621 in figure...

  • Page 39: Model 2635 Home Page

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration Figure 16. Model 2635 home page Hardware installation...

  • Page 40: Ethernet Lan Port

    Chapter 4 Ethernet LAN Port Chapter contents Introduction ...41 LAN Connections ...41 Ethernet Port ...41...

  • Page 41: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 4 • Ethernet LAN Port Introduction The Ethernet LAN interface/port can be configured with two IP addresses, a primary and a secondary IP address. The configuration web page is found by following the path -> Services Configuration (in the Configu- ration Menu) ->...

  • Page 42: Basic Ethernet Port Attributes

    Models 2603, 2621, and 2635 Getting Started Guide For additional statistical parameters and a few configurable parameters, click on the hyperlink View advanced attributes... (See figure 19.) Figure 19. Advanced Ethernet port attributes The three configurable parameters are all either ‘true’ or ‘false.’...
  • Page 43 Models 2603, 2621, and 2635 Getting Started Guide • Full Duplex Mode: the default value is ‘true’ for Full Duplex operation. Setting it to ‘false’ configures the Ethernet port to operate only in half-duplex mode. Rarely do these parameters require a change from their default operation.

  • Page 44: Serial Port Configuration

    Chapter 5 Serial Port Configuration Chapter contents WAN Serial Port Configuration Serial Interface ...45 Variables ...45 Web Interface Configuration T1/E1 Interface Configuration Configuring the IPLink Series 2603 for T1 Operation Web Configuration Configuring the IPLink Series 2603 for E1 Operation Web Configuration ...45 ...46...

  • Page 45: Wan Serial Port Configuration

    Models 2603, 2621, and 2635 Getting Started Guide WAN Serial Port Configuration The IPLink Series routers use a sync.-serial interface (X.21, V.35) or a T1/E1 interface for connection to stan- dard WAN services. Below are the configuration options for the WAN interface.

  • Page 46: Web Interface Configuration

    The following screen capture shows the variables available to configure the X.21 serial interface. Figure 21. Model 2621 X.21 serial port configuration parameters The next figure shows the Model 2635 (V.35) serial port configuration parameters. Figure 22. Model 2635 V.35 serial port configuration parameters After the serial port has been configured, go to...

  • Page 47: Configuring The Iplink Series 2603 For T1 Operation

    Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration Figure 23. Model 2603 T1/E1 WAN port configuration parameters Configuring the IPLink Series 2603 for T1 Operation Web Configuration. Launch Netscape, Internet Explorer or similar web browser, type the IP address of the...

  • Page 48: Configuring The Iplink Series 2603 For E1 Operation

    Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration Time Slot Select. For a T1 using all 24 time slots enter 1-24, for fractional T1 enter in any format for example: 1,2,3,5; or 1-5,10-24. Any entry for timeslots above 24 will return an invalid-selection message.
  • Page 49 Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration Time Slot Select. For unframed E1 service (Clear Channel) go to the “Line Option” parameter and select “Clear Channel E1 (G.703).” For a full framed E1 enter 1-31, for partially filled E1 enter the range of timeslots using the format for example: 1,2,3,5;...

  • Page 50: Web Configuration

    Chapter 6 WAN Services Chapter contents WAN Services ...51 Configuring the IPLink Series 2603 for E1 Operation Web Configuration WAN Service Configuration...52 PPP Configuration ...52 PPP Bridged ...52 PPP Bridged Remote Site Configuration Central Site Configuration PPP Routed ...54 Remote site configuration...

  • Page 51: Wan Services

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services WAN Services Configuring the IPLink Series 2603 for E1 Operation Web Configuration. Launch Internet Explorer or similar web browser, type the IP address of the 2603, enter username and password .

  • Page 52: Wan Service Configuration

    Models 2603, 2621, and 2635 Getting Started Guide Once all options have been selected, click on the Additionally, save the configuration by going to the System Configuration > Save menu. This concludes the E1 interface configuration via the web browser, go to section on page 52 for instructions on router/bridge and WAN service configuration.

  • Page 53: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 4. In the Description field, enter the description you wish. This is a mandatory field. Without a description, you cannot create the WAN service. Verify the settings to be: • Interface = 1 •...

  • Page 54: Ppp Routed

    Models 2603, 2621, and 2635 Getting Started Guide 1. Bring up the web-page management system on your browser by entering the IP address of the IPLink 2. On the Menu, go to Services Configuration, then to WAN. Delete the factory default WAN services already defined.
  • Page 55 Models 2603, 2621, and 2635 Getting Started Guide 3. Click on Create a new service in the main window, select “PPP routed” and click on the In the Description field, enter the description you wish. In this example, it is called PPP Routed.

  • Page 56: Edit Ip Address Of Wan Port

    Models 2603, 2621, and 2635 Getting Started Guide 6. Click on Create 7. Click on Services Configuration > IP Routes > Create new Ip V4 Route. Create the gateway to the remote router by entering the WAN IP address of the remote router, in this example, enter 192.168.164.3 in the Gateway field.

  • Page 57: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide Central Site Configuration. If the router at the ISP or Central site is another IPLink series, follow the instruc- tions below. If not, consult your third party router user manual for configuration.

  • Page 58: Lmi Management (Frame Relay Links)

    Models 2603, 2621, and 2635 Getting Started Guide • Username: [blank] • Password: [blank] Click on the Create button. 4. Go to Services Configuration > WAN > Edit... (for PPP routed) > Edit ‘IP Interface’ > Ipaddr: [enter the WAN IP Address and Mask, in this example = 192.168.164.3 and 255.255.255.255].

  • Page 59: Lmi Configuration Options

    Models 2603, 2621, and 2635 Getting Started Guide LMI Configuration Options. The Frame Relay Local Management Interface is configurable through either the CLI or web interface on the IPLink Series. The following variables are available for configuration. • managementType: (Default Value: no_maintanence) the managementType variable defines the LMI proto- col that will be used from the table above.

  • Page 60: Frame Relay Configuration

    Models 2603, 2621, and 2635 Getting Started Guide All LMI configuration variables are contained under the “LMI Management” window found through the Ser- vices Configuration >LMI Management link. The following screen shows the configuration variables available. Frame Relay Configuration The Frame Relay service can be configured for either bridged or routed applications. The use of DLCI values since the original publication of the Frame Relay specifications has been modified as to their use.

  • Page 61: Frame Relay Bridged

    Models 2603, 2621, and 2635 Getting Started Guide Frame Relay bridged This application shows configuration for two IPLink units in bridged mode. If using a third party router at the Central site, review the router’s configuration for connection to a remote bridge.

  • Page 62: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide • Encapsulation type: Bridged Ether (Defines the RFC 1490 encapsulation type to be used by the channel. In some instances you may need to choose another type. Consult your service provider.) •...

  • Page 63: Frame Relay Routed

    Models 2603, 2621, and 2635 Getting Started Guide 4. Enter the description for the circuit in the Description field. This is a mandatory field. Without a descrip- tion you cannot create a WAN service. 5. Click on Create a new service in the main window, select Frame relay bridged and click on the button.
  • Page 64 Models 2603, 2621, and 2635 Getting Started Guide 2. On the Menu, go to Services Configuration, then to WAN. Delete the factory default WAN services already defined. 3. Click on Create a new service in the main window, select “Frame Relay routed” and click on Continue.
  • Page 65 Models 2603, 2621, and 2635 Getting Started Guide Figure 39. Frame Relay Channel - Routed configuration Edit Frame Relay Channel Enter the appropriate information in the following fields: • Dlci: Consult with your service provider for the DLCI number required, in this example use 45.

  • Page 66: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide • Cost: 1 • Interface: frame-0 Figure 40. IP route for Frame Relay routed application 12. Click on the Update button. This concludes the configuration of the remote site. Be sure to save the configuration in non-volatile memory by System Configuration >...
  • Page 67 Models 2603, 2621, and 2635 Getting Started Guide – Enable NAT on this interface. In this example leave this option blank 5. Click the button. Create 6. Go to System Configuration > WAN > Edit (for Frame Relay Routed service) > Edit ‘IP Interface’...

  • Page 68: Security

    Chapter 7 Security Chapter contents Introduction ...69 Configuring the router ...69 Configuring the security interfaces...71 Configuring Security Policies Deleting a security Policy Enabling the Firewall...74 Firewall Portfilters ...74 Security Triggers...75 Intrusion Detection System (IDS) Introduction to NAT...80 Enabling NAT ...80 Global address pool and reserved map ...73 ...74...

  • Page 69: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Introduction Security provides the ability to setup and enforce security policies. The policies define the types of traffic per- mitted to pass through a gateway, either inbound, outbound, or both, and from which origins the traffic may be allowed to enter.

  • Page 70: Ppp Routed Wan Service For Security Firewall Example

    Models 2603, 2621, and 2635 Getting Started Guide Figure 41. PPP routed WAN service for Security Firewall example 6. Click on Edit in the WAN Connections webpage, and then click on the Edit ‘Ip Interface’ hyperlink. 7. In the Edit Ip Interface webpage, enter the fields as follows and click on the Create button. (See figure...

  • Page 71: Configuring The Security Interfaces

    Models 2603, 2621, and 2635 Getting Started Guide 3. Enter 192.168.101.2 in the box adjacent to Gateway. 4. Leave Destination and Netmask both as 0.0.0.0 because this is the gateway default route. 5. Click on the Update button. 6. Seeing the green check mark under Valid indicates the IP addresses of the WAN service and the gateway are properly configured.
  • Page 72 Models 2603, 2621, and 2635 Getting Started Guide Figure 44. Security configuration home page 2. Go to the third section (Security Interfaces) on the Security Interface Configuration webpage. Click on the hyperlink Add interface... 3. Select ‘ip1’ beside the Name pull-down menu, and select ‘internal’ beside the Interface Type pull-down menu.

  • Page 73: Configuring Security Policies

    Models 2603, 2621, and 2635 Getting Started Guide Figure 46. Define ‘ppp-0’ interface as External Configuring Security Policies Continue the previous example by defining security policies. We will add only one Firewall policy, called etoi, signifying an external-to-internal policy between the external and internal interfaces.

  • Page 74: Deleting A Security Policy

    Models 2603, 2621, and 2635 Getting Started Guide Deleting a security Policy To delete a security policy, go to the table of ‘Current Security Policies’ and click on the Delete button for the selected security policy. Enabling the Firewall At this point, both security and the firewall can be enabled and the network is secure. All the interfaces which have been defined are protected, that is, all traffic has been blocked between the internal (‘ip1’) and external...

  • Page 75: Security Triggers

    Models 2603, 2621, and 2635 Getting Started Guide This example continues to allow pings over the firewall: 1. From the Configuration Menu, > Configuration > Security > Security Policy Configuration... > Port Filters... > Add Raw IP Filter 2. Enter 1 (for ICMP) in the Protocol Number field.
  • Page 76 Models 2603, 2621, and 2635 Getting Started Guide 4. Set Inbound as Block, but Outbound as Allow. (See 5. Click on Create. Figure 51. Configuring TCP port filter for FTP After configuring the FTP portfilter, you can open an ftp session from Remote to Local, however you can issue ftp commands (e.g., login, cd, etc.).

  • Page 77: Adding Trigger For Ftp Data Transfer

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Figure 52. Adding trigger for FTP data transfer You should now be able to use FTP commands to pass data between Remote and Local. Security Triggers...

  • Page 78: Intrusion Detection System (Ids)

    Models 2603, 2621, and 2635 Getting Started Guide Intrusion Detection System (IDS) The security feature in the IPLink Router provides protection from a number of attacks. Some attacks cause a host to be blacklisted (i.e., no traffic from that host is accepted under any circumstances) for a period of time.
  • Page 79 Models 2603, 2621, and 2635 Getting Started Guide – Victim Protection Block Duration:Default = 600 seconds (10 minutes). Sets the duration of the block in seconds. – Maximum TCP Open Handshaking Count:Default = 100 Sets the maximum number of unfinished TCP handshaking sessions per second that are allowed by a firewall before a SYN Flood is detected.

  • Page 80: Introduction To Nat

    Models 2603, 2621, and 2635 Getting Started Guide Introduction to NAT The basic steps for configuring NAT are: 1. Enable NAT between the internal and external interfaces of the firewall. 2. Create global addresses which will be added to the global pool of IP addresses on the WAN interface.
  • Page 81 Models 2603, 2621, and 2635 Getting Started Guide Click on Add Global Address Pool button. Figure 53. NAT Global Address Pool configuration 4. Next, create a reserved mapping between a global IP address from the global pool and a PC on the side of the internal interface (’ip1’).

  • Page 82: Dhcp And Dns Configuration

    Chapter 8 DHCP and DNS Configuration Chapter contents Introduction ...83 Services and features normally associated with each other DHCP Server ...84 Parameters for the DHCP Server subnet IP Addresses to be available on this subnet DNS server option information Additional option information DHCP Relay ...89 Configuration of the DHCP Relay...

  • Page 83: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide Introduction The routers offer a DHCP Server, DHCP Relay capability, and DNS Relay incorporated into the IPLink. Of the two DHCP features, only one can be enabled at a time-either DHCP server or DHCP relay.

  • Page 84: Dhcp Server

    Models 2603, 2621, and 2635 Getting Started Guide The feature in this column [...] with (Column 1 feature) Configured Cannot be Feature used DHCP Relay DHCP Server DHCP Server DHCP Relay DNS Relay Bridged DHCP Cli- (WAN side) Static IP...

  • Page 85: Dhcp Server Web Page

    Models 2603, 2621, and 2635 Getting Started Guide The server needs to have a subnet of IP addresses which will be allocated when a DHCP client makes a request. Define the subnet by clicking on the hyperlink Create new Subnet... The next webpage, ‘Create new DHCP Server subnet’...

  • Page 86: Parameters For The Dhcp Server Subnet

    Models 2603, 2621, and 2635 Getting Started Guide Figure 56. DHCP server configuration web page Parameters for the DHCP Server subnet Four parameters are in the section for defining the DHCP subnet. (See The first two parameters are applicable when you will define the subnet.

  • Page 87: Ip Addresses To Be Available On This Subnet

    Models 2603, 2621, and 2635 Getting Started Guide The third parameter is • Get subnet from IP interface: If you use this option, then you will not enter any values in the first two parameters. Should you define another subnet and also select ‘Get subnet from IP interface,’ the IPLink uses the ‘Get subnet from IP interface’...

  • Page 88: Dns Server Option Information

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 59. Example based on default range of IP address pool DNS server option information When a client requests an IP address from a DHCP server, the server can also send the IP addresses of the pri- mary and secondary DNS servers’...

  • Page 89: Default Gateway Option Information

    Models 2603, 2621, and 2635 Getting Started Guide Default gateway option information The IPLink is the gateway all client traffic when Use local host as default gateway is checked (see Additional option information You may wish to provide additional information to the clients on the DHCP subnet. Click on the hyperlink Create new DHCP option...

  • Page 90: Dhcp Relay Webpage

    Models 2603, 2621, and 2635 Getting Started Guide • Edit DHCP server list: The IP addresses of DHCP servers can be updated, reset, or deleted from the list. • Add new DHCP server: the IP addresses of the DHCP servers are added to the DHCP relay list in this sec- tion.

  • Page 91: Dns Relay

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 63. DHCP Relay server list DNS Relay The DNS Relay webpage contains a configurable list of DNS server IP addresses. The IPLink’s DNS Relay for- wards DNS queries from a client to a pre-defined DNS server and DNS server responses to the client.
  • Page 92 Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 65. DNS Relay configuration webpage You can change the IP address of the DNS servers on the DNS Relay webpage (see figure 66) by modifying the IP address requiring the change and clicking on the Update button.

  • Page 93: Ip Services

    Chapter 9 IP Services Chapter contents IP Services ...94 WEB Server ...94 CLI Configuration ...94 Associated Ports for the different System (IP) Services ...95...

  • Page 94: Ip Services

    Models 2603, 2621, and 2635 Getting Started Guide IP Services Certain System Services can be enabled or disabled. They are DNS Relay, FTP, TFTP, SNMP, and the WEB Server. The importance of disabling any of these services is an issue of security. If you are not using a particular service, it is best to disable it.

  • Page 95: Associated Ports For The Different System (Ip) Services

    Models 2603, 2621, and 2635 Getting Started Guide Associated Ports for the different System (IP) Services This section is for information purposes only. Consult the table to identify which ports are associated with the different System (IP) Services. Table 5. Standard port numbers for the System Services...

  • Page 96: System Configuration

    Chapter 10 System Configuration Chapter contents Introduction ...97 Authentication...97 Alarm ...98 Remote Access ...99 Update ...100 Save ...100 Backup/Restore ...100 Restart ...101 Website Settings ...101 Error Log...102 SNMP Daemon ...102 System Tools ...103...

  • Page 97: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide Introduction The System Configuration item on the Configuration Menu opens to provide access to twelve (12) different items. They are: • Authentication: allows you to control access to the IPLink’s console and web configuration pages.

  • Page 98: Alarm

    Models 2603, 2621, and 2635 Getting Started Guide • creating a Username • defining the Password • give the user ability to configure the IPLink or read-only authority • add a comment useful to the administrator Alarm Access the configuration and status of the alarms.

  • Page 99: Remote Access

    Models 2603, 2621, and 2635 Getting Started Guide remain. Only by clicking on the Reset button can you clear the alarm and reset the Time and Count parame- ters. The parameter definitions are: • Alarm Severity: there are five categories of severity-Critical, Major, Minor, Informational, and Ignore.

  • Page 100: Update

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Update To upgrade the IPLink to another software version, select the software image by clicking on the Browse button. The software is a ‘.tar’ file. (See figure 73.) After selected, the software is downloaded to the IPLink. Wait until the upload has completed.

  • Page 101: Restart

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Figure 75. Saving or reloading previously saved configuration files Restart From this webpage, you can do a soft reboot of the IPLink or restore the IPLink to factory defaults. To restore to factory defaults, click on the box for Reset to factory default settings.

  • Page 102: Error Log

    Models 2603, 2621, and 2635 Getting Started Guide Error Log The Error Log webpage shows recent configuration errors and provides for the configuration of the Syslog. (See figure 78.) Two parameters are configurable for the Syslog. • Syslog Host: enter the IP address of the Syslog (Default = 0.0.0.0) •...

  • Page 103: System Tools

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Figure 79. SNMP Daemon configuration The Trap Table identifies the IP address of the SNMP trap along with its password. System Tools The System Tools webpage provides two utilities for testing network connectivity. The two utilities are ‘ping’...

  • Page 104: Sntp Client Configuration

    Chapter 11 SNTP Client Configuration Chapter contents Introduction ...105 Configuring the SNTP Client SNTP Client Mode Configuration Parameters SNTP Client General Configuration Parameters System Clock Setting...106 ...105 ...105 ...106...

  • Page 105: Sntp Client Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 11 • SNTP Client Configuration Introduction The Simple Network Time Protocol (SNTP) Client webpage contains the configurable parameters for either setting up the SNTP client or, in the abscence of an SNTP server, setting the internal clock.

  • Page 106: Sntp Client General Configuration Parameters

    Models 2603, 2621, and 2635 Getting Started Guide SNTP Client General Configuration Parameters The general configuration parameters for the SNTP client are for selecting your timezone and setting the poll- ing parameters for the client’s transmit packets. • Current Timezone: select the appropriate time zone and click on the Set New Timezone button.
  • Page 107 Models 2603, 2621, and 2635 Getting Started Guide 11 • SNTP Client Configuration Figure 83. Configuration of the internal system calendar clock After entering the system clock values, click on the Set Clock button to save in volatile memory. If the IPLink is rebooted, either soft or by power-cycling, the Clock Setting returns to its default value.

  • Page 108: System Status

    Chapter 12 System Status Chapter contents System Status...109 Port Connection Status ...109 LAN Status ...110 WAN Status ...110 Hardware Status ...110 Defined Interfaces ...110 Status LEDs...111...

  • Page 109: System Status

    Models 2603, 2621, and 2635 Getting Started Guide System Status A quick but thorough summary of the IPLink’s status is provided on this webpage, but it also has links to the detailed webpages for the key subsystems of the IPLink.

  • Page 110: Lan Status

    Models 2603, 2621, and 2635 Getting Started Guide LAN Status There are two hyperlinks, LAN Settings... and DHCP Server Settings..., which go to the ‘LAN Connections’ and ‘DHCP Server’ webpages, respectively. The other parameters shown in LAN Status are as follows: •...

  • Page 111: Status Leds

    Models 2603, 2621, and 2635 Getting Started Guide Status LEDs The LEDs indicate the status of the Power, the WAN, Sync Serial port, and the Ethernet connection. All LED indicators will present the same looking profile (e.g., clear) when unlit due to being single color, water clear, high efficiency LEDs.

  • Page 112: Contacting Patton For Assistance

    Chapter 13 Contacting Patton for assistance Chapter contents Introduction ...113 Contact information...113 Patton support headquarters in the USA Alternate Patton support for Europe, Middle East, and Africa (EMEA) Warranty Service and Returned Merchandise Authorizations Warranty coverage ...113 Out-of-warranty service Returns for credit ...114 Return for credit policy RMA numbers...

  • Page 113: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide Introduction This chapter contains the following information: • “Contact information”—describes how to contact PATTON technical support for assistance. • “Warranty Service and Returned Merchandise Authorizations (RMAs)”—contains information about the RAS warranty and obtaining a return merchandise authorization (RMA).

  • Page 114: Out-Of-Warranty Service

    Models 2603, 2621, and 2635 Getting Started Guide Out-of-warranty service Patton services what we sell, no matter how you acquired it, including malfunctioning products that are no longer under warranty. Our products have a flat fee for repairs. Units damaged by lightning or other catastro- phes may require replacement.
  • Page 115 Appendix A Compliance information Chapter contents Compliance ...116 ...116 Safety ...116 PSTN Regulatory (2603 Model only) Radio and TV Interference (FCC Part 15) CE Declaration of Conformity FCC Part 68 (ACTA) Statement (Model 2603 Industry Canada Notice (2603 Model only) ...116 ...116 ...116...

  • Page 116: A Compliance Information

    Models 2603, 2621, and 2635 Getting Started Guide Compliance • FCC Part 15, Class A • EN55022, Class A • EN55024 Safety • UL 60950-1/CSA C22.2 N0. 60950-1 • IEC/EN60950-1 • AS/NZS 60950-1 PSTN Regulatory (2603 Model only) • ACTA Part 68 •...

  • Page 117: Industry Canada Notice (2603 Model Only)

    Models 2603, 2621, and 2635 Getting Started Guide A • Compliance information The method used to connect this equipment to the premises wiring and telephone network must comply with the applicable FCC Part 68 rules and requirements adopted by the ACTA.
  • Page 118 Appendix B Specifications Chapter contents General Characteristics ...119 Ethernet ...119 Sync Serial Interface ...119 T1/E1 Interface ...119 Protocol Support ...120 Support...120 Management ...120 Security ...121 Dimensions ...121 Power and Power Supply Specifications...121 AC universal power supply 48 VDC power supply ...121 ...121...

  • Page 119: B Specifications

    Models 2603, 2621, and 2635 Getting Started Guide General Characteristics • Compact low-cost router/bridge • 10/100 Ethernet • Unlimited host support. • Comprehensive hardware diagnostics, works with any operating system, easy maintenance and effortless installation. • Built-in web configuration. •...

  • Page 120: Protocol Support

    Models 2603, 2621, and 2635 Getting Started Guide Protocol Support • Complete internetworking with IP (RFC 741), TCP (RFC 793), UDP (RFC 768), ICMP (RFC 950), ARP (RFC 826). • IP Router with RIP (RFC 1058), RIPv2 (RFC 2453), •...

  • Page 121: Security

    Models 2603, 2621, and 2635 Getting Started Guide Security • Packet filtering firewall for controlled access to and from LAN/WAN. Support for 255 rules in 32 filter sets. 16 individual connection profiles. • DoS Detection/protection. Intrusion detection, Logging of session, blocking and intrusion events and Real- Time alerts.
  • Page 122 Appendix C Cable Recommendations Chapter contents Ethernet Cable ...123 Adapter...123...

  • Page 123: C Cable Recommendations

    Models 2603, 2621, and 2635 Getting Started Guide Ethernet Cable Ethernet cable (P/N 10-2500) (refer to The interconnecting cables shall be acceptable for external use and shall be rated for the proper application with respect to volt- age, current, anticipated temperature, flammability, and mechanical serviceability.

  • Page 124: D Iplink Physical Connectors

    Appendix D IPLink Physical Connectors Chapter contents RJ-45 shielded 10/100 Ethernet RJ-45 non-shielded RS-232 console port Serial port...126 V.35 (M/34 and DB-25 Connector) X.21 (DB-15 Connector) E1/T1 (RJ-48C Connector) port...125 (EIA-561)...125 ...126 ...127 ...128...

  • Page 125: Rj-45 Shielded 10/100 Ethernet Port

    Models 2603, 2621, and 2635 Getting Started Guide RJ-45 shielded 10/100 Ethernet port Assuming the MDI-X switch is in the out position. Table 7. Ethernet Port (MDI-X switch in out position) Pin No. RJ-45 non-shielded RS-232 console port (EIA-561) The RS-232 serial control port of the IPLink is configured to operate as a DCE.

  • Page 126: Serial Port

    Models 2603, 2621, and 2635 Getting Started Guide Serial port V.35 (M/34 and DB-25 Connector) The Model 2635 has a DB-25 connector for the V.35 interface. DB-25 connectors. Table 9. V.35 pinout for M/34 & DB-25 connectors M/34 Pin No.

  • Page 127: Connector)

    Models 2603, 2621, and 2635 Getting Started Guide X.21 (DB-15 Connector) The X.21 interface in the Model 2621 may be configured for either DTE or DCE. Default is DCE. Pin No. Circuit 14, 15 Serial port Table 10. X.21 Interface (Model 2621)

  • Page 128: E1/T1 (Rj-48C Connector)

    Models 2603, 2621, and 2635 Getting Started Guide E1/T1 (RJ-48C Connector) The T1/E1 transmit signals are not polarity sensitive, even though they have the traditional designation of Tip and Ring. Serial port Table 11. T1/E1 Port Pin No. Signal Receive (Ring)

  • Page 129: E Command Line Interface (Cli) Operation

    Appendix E Command Line Interface (CLI) Operation Chapter contents Introduction ...130 CLI Terminology ...130 Local (VT-100 emulation) Remote (Telnet) ...130 Using the Console ...130 Administering user accounts ...132 Adding new users ...132 Setting user passwords ...132 Changing user settings ...133 Controlling login access Controlling user access ...130...

  • Page 130: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide Introduction The modem configuration and status can also be view and modified through the console, which is accessible through the RS-232 serial port or through a Telnet session over Ethernet. CLI Terminology In order to use the CLI commands, you need to understand the following CLI terms: •...
  • Page 131 Models 2603, 2621, and 2635 Getting Started Guide By entering a keyword followed by a space and “?” the options available will print immediately without press- ing enter. The previously entered commands are reprinted on the next lines. For example:...

  • Page 132: Administering User Accounts

    Models 2603, 2621, and 2635 Getting Started Guide ip interface ip1 list secondaryipaddresses Secondary IP addresses for interface: ip1 ID | IP Address -----|----------------- ----------------------- In this example there was not a secondary IP address. ory with the following command.

  • Page 133: Changing User Settings

    Models 2603, 2621, and 2635 Getting Started Guide Note No check is made for any current password which may have been set for the user. If you wish to change the password for another user, enter the command: user change <username>...

This manual is also suitable for:

Iplink 2621Iplink 2603

Table of Contents