Nortel Contivity 1010 Manual
  1. Manuals
  2. Brands
  3. Nortel Manuals
  4. Network Router
  5. Contivity VPN Switch 1010
  6. Manual

Nortel Contivity 1010 Manual

Hide thumbs Also See for Contivity 1010:
Table of Contents

Advertisement

Quick Links

See also: Configuration Manual , User Manual
NOTICE: Notwithstanding any explicit confidentiality or proprietary markings to the contrary, the
information contained in this document has been reviewed and approved for public disclosure
by Nortel. However, the access to, use and disclosure of this document and the information
contained therein continue to be subject to copyright and other restrictions, conditions and
limitations as detailed in the Terms of Use. (http://www.nortel.com/help/legal/index.html)
New Features for the Contivity
1010/1050/1100
Version 4.07
Part No. 315535-A Rev 00
June 2002
600 Technology Park Drive
Billerica, MA 0 1821-4130

Advertisement

Table of Contents
loading

Related Manuals for Nortel Contivity 1010

Summary of Contents for Nortel Contivity 1010

  • Page 1 Nortel. However, the access to, use and disclosure of this document and the information contained therein continue to be subject to copyright and other restrictions, conditions and limitations as detailed in the Terms of Use.

  • Page 2: Restricted Rights Legend

    The software license agreement is included in this document. Trademarks Nortel Networks, the Nortel Networks logo, Contivity, Preside, and Optivity are trademarks of Nortel Networks. Adobe and Acrobat Reader are trademarks of Adobe Systems Incorporated.
  • Page 3 In the interest of improving internal design, operational function, and/or reliability, Nortel Networks Inc. reserves the right to make changes to the products described in this document without notice. Nortel Networks Inc. does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein.
  • Page 4 12.212 (for non-DoD entities) and 48 C.F.R. 227.7202 (for DoD entities). Customer may terminate the license at any time. Nortel Networks may terminate the license if Customer fails to comply with the terms and conditions of this license. In either event, upon termination, Customer must either return the Software to Nortel Networks or certify its destruction.

  • Page 5: Table Of Contents

    Compact flash disk ........... . 39 New Features for the Contivity 1010/1050/1100...
  • Page 6 6 Contents Branch office quick start template ....... . 41 Index .

  • Page 7: Preface

    Preface This guide describes the new features for Nortel Networks* Contivity* 1010/ 1050/1100 series of switches. Note: You cannot use this version of the software on any other Contivity VPN switch. Before you begin This guide is for network managers who are responsible for setting up and configuring the switch.

  • Page 8: Related Publications

    314959-A) describes the commands that you can use from the command line interface. • Installing the Contivity 1010/1050/1100 (part number 314961-A) provides instructions on how to install the Contivity 1010, 1050, and 1100 and includes technical specifications. • Configuring the Contivity VPN Switch (part number 314958-A) provides procedural information to help you configure, monitor, and troubleshoot your switch.

  • Page 9: Acronyms

    Go to Adobe Systems at the www.adobe.com URL to download a free copy of the Adobe Acrobat Reader. You can purchase selected documentation sets, CDs, and technical publications through the Internet at the www1.fatbrain.com/documentation/nortel/ URL. New Features for the Contivity 1010/1050/1100...

  • Page 10: How To Get Help

    Preface How to get help If you purchased a service contract for your Nortel Networks product from a distributor or authorized reseller, contact the technical support staff for that distributor or reseller for assistance. If you purchased a Nortel Networks service program, contact one of the following...

  • Page 11: Overview

    Chapter 1 Overview The features presented in this document are unique to the Contivity 1010/1050/ 1100 series switches. This document is for network administrators who are responsible for setting up and configuring a VPN switch. For information on existing features, see Configuring the Contivity VPN Switch.

  • Page 12: Default Configuration

    DHCP server grants the client exclusive use of an assigned IP address for a specified period of time. The Contivity 1010, 1050, and 1100 switches include a full implementation of a DHCP server that is in compliance with RFC 2131 and RFC 2132.

  • Page 13: Pppoe

    PPPoE client. Figure 3 shows how the Contivity 1100 switch connected to the DSL modem acts as the PPPoE client. In this configuration, the PPPoE client encapsulates the LAN traffic in the PPPoE header and forwards it to the PPPoE server. New Features for the Contivity 1010/1050/1100...

  • Page 14: Branch Office Quick Start Utility

    Network Operation Center. BOQS adds VPN functionality to basic internet access connectivity. It allows a NOC or central office management to access the Contivity 1010, 1050, or 1100 so that network administrators can further configure the it without going to the remote site.

  • Page 15: Dns Proxy

    Eventually, a DNS response is returned to the application, which contains the IP address or an error indicating that the host name is unknown. New Features for the Contivity 1010/1050/1100...

  • Page 16: Compact Flash Disk

    DNS Proxy 10747EA You can configure the Contivity 1010, 1050, or 1100 as a DNS proxy, which means that it can act like a DNS server for any PC on the private network. The PCs are configured to send their DNS queries to the DNS proxy, which in turn passes the query to its set of true DNS servers.
  • Page 17 • Context-sensitive help The help files are located on the CD and on the Nortel Networks documentation Web site. You can copy the help files from the CD to a directory on a server. When you click on Help→Help Contents (Figure 6), you are prompted to enter the location of the help files.

  • Page 18: Cli Commands

    • Numerous text files CLI commands Following is a list of new CLI commands implemented for the Contivity 1010, 1050, and 1100. For further information and command descriptions, see Reference for the Contivity VPN Switch Command Line Interface. Table 1 Contivity 1010/1050/1100 CLI commands...
  • Page 19 Chapter 1 Overview 19 Table 1 Contivity 1010/1050/1100 CLI commands server-name service dhcp enable service dhcp restart show ip dhcp server PPPoE commands interface pppoe admin-state enable pppoe cost pppoe enable pppoe idle-timeout pppoe ip local pppoe on-demand enable pppoe ppp authentication...
  • Page 20 20 Chapter 1 Overview 315535-A Rev 00...

  • Page 21: Getting Started

    This chapter provides more detailed information on configuring the features that are unique to the Contivity 1010/1050/1100 series of switches. The Contivity 1010, 1050, and 1100 provide support for five (5) tunnels at introduction and 30 tunnels for licensing. The maximum tunnels include the sum of all branch office, client, and management tunnels combined.

  • Page 22: Dhcp Server

    • DHCP Relay and the DHCP Server are mutually exclusive on a physical port. Because the Contivity 1010, 1050, and 1100 have the DHCP server enabled by default, Nortel Networks recommends that branch office users set up their PC to accept the IP addresses that the DHCP server will provide the LAN 0 (private) ports.
  • Page 23 Click on the Enable/Disable Server button to select the state of the DHCP server. In the Default Options section, specify the lease time in the ddd:hh:mm:ss format or select Infinite to indicate an unspecified period of time. New Features for the Contivity 1010/1050/1100...
  • Page 24 24 Chapter 2 Getting started Click Add in the Standard Options section to access the Add Option screen. The standard options section shows the current status of any added options and lets you add new options: • Select the desired options from the drop-down list. •...

  • Page 25: Configuring Pppoe

    Must be set on a public Ethernet interface • Must set the Administrative State to enabled (disabled by default) • Must set the appropriate filter (deny all by default) • PPPoE changes are dynamically applied Figure 8 shows the System→LAN screen. New Features for the Contivity 1010/1050/1100...
  • Page 26 26 Chapter 2 Getting started → Figure 8 System LAN screen To configure PPPoE: Go to the System→LAN screen. From the Select Protocol list, select PPPoE and click on Apply. The Add PPPoE Interface screen appears. For Administrative State, click on Enable. For Interface Filter, select permit all.

  • Page 27: Static Ip Addressing

    Open your Web browser and type http://192.168.1.2. Enter admin and setup as the username and password. Go to the System→LAN screen. From the Select Protocol list, select IP and click on Apply. The Add IP Address screen appears. New Features for the Contivity 1010/1050/1100...

  • Page 28: Branch Office Quick Start

    Then you can send the provisioning parameters to the remote branch office locations. The Contivity 1010, 1050, or 1100 must be connected to a public network and have access to the Internet before local users can use BOQS. The unique Contivity default configuration allows easy deployment of Contivity 1010, 1050, and 1100 in DHCP configurations (where a DHCP server is used on the public network).

  • Page 29: Enterprise Environment

    Locating a Contivity VPN Switch at the central office and Contivity 1010/1050/ 1100 series of switches at the branch office locations provides a secure solution. Before you deploy the Contivity 1010, 1050, or 1100 at the local sites, you must configure routing and tunnels on the switch at the central office.
  • Page 30 • Set RIP to enabled. After the central office setup and the BOQS are complete, the Contivity 1010, 1050, or 1100 is directly accessible from the central office. This means that there is just one hop between the central office and the branch office. RIP propagates routes to this subnet across the tunnel created by BOQS.

  • Page 31: Service Provider Environment

    Contivity 1010, 1050, and 1100. Every Contivity 1010, 1050, and 1100 must have a distinct IP address that is visible from the NOC subnet. A NOC can assign any address reachable from a NOC network to Contivity 1010, 1050, and 1100 devices.
  • Page 32 Control Tunnel password. • Select Static routing. Accessible Local Networks should be added. All networks from which the Contivity 1010/1050/1100 will be managed must be on that list. • NAT Local option should NOT be used.
  • Page 33 (private subnet of NOC switch). Branch office switch management IP address Address used by NOC to manage switch. Must be unique for each Contivity 1010/1050/1100 and reachable from the NOC. If left empty, can be managed with the second address of the subnet...
  • Page 34 34 Chapter 2 Getting started Appendix A, “Branch office quick start template” for a template of this information. Figure 9 shows the branch office quick start screen. Figure 9 Branch office quick start screen 315535-A Rev 00...

  • Page 35: Connecting For Internet Access

    MAC address, it is located on the back of the unit. If you want to connect a PC directly to the Contivity 1010, use the cable that ships with it. If you want to connect more devices to the Contivity 1010, you must connect an Ethernet switch or hub to the LAN 0 port and then connect the devices.
  • Page 36 36 Chapter 2 Getting started If you use Point to Point Protocol over Ethernet (PPPoE), you must use the Web-based management utility for advanced configuration options to enable Open the Web browser and enter http://192.168.1.2. b Click on Manage Switch and enter admin and setup as the username and password.

  • Page 37: Configuring A Dns Server

    DNS if your DNS name space has been split into private names and public names; a DNS server knows the private names while another server knows the public Internet DNS names. Figure 10 shows the System→Identity screen New Features for the Contivity 1010/1050/1100...
  • Page 38 38 Chapter 2 Getting started →Identity Figure 10 System screen To configure a DNS server: Got to the System→Identity screen. The DNS Proxy Enabled/Disabled check box allows you to select whether you want the DNS Proxy to act as a DNS server to the private side. It it enabled by default.

  • Page 39: Compact Flash Disk

    For example, a core file generated by 10.0.8.186 on Oct.12th, 2001, at 4:46:06 PM will be named core_20011012_164606_10.0.8.186.mem. New Features for the Contivity 1010/1050/1100...
  • Page 40 40 Chapter 2 Getting started 315535-A Rev 00...

  • Page 41: Branch Office Quick Start Template

    The branch office quick start template provides a list of values that the local Contivity 1010/1050/1100 users will need to enter on the BOQS screen. You can enter the appropriate values in the right-hand column and then fax, send, or E-mail the template to the local user along with any other information that they may need, such as who to contact for further information or questions.
  • Page 42 [Final Review: May 2002—Nortel Confidential] 42 Appendix A Branch office quick start template 314708-A Rev 00...
  • Page 43 Point to Point Protocol over Ethernet (PPPoE) 13, DNS server 38 configuring 37 Domain Name Service (DNS) 15 Dynamic Host Configuration Protocol (DHCP) 12, 22 split proxy DNS 16 static IP addressing 27 enterprise setup 29 New Features for the Contivity 1010/1050/1100...
  • Page 44 44 Index template 41 WAN cards 21 315535-A Rev 00...

This manual is also suitable for:

Contivity 1100Contivity 1050

Table of Contents