1. Manuals
  2. Brands
  3. Carrier Access Manuals
  4. Network Router
  5. 770-0015 AM
  6. User manual

Carrier Access 770-0015 AM User Manual

Menu-driven user interface ip router
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
IP Router
M
-D
U
I
ENU
RIVEN
SER
NTERFACE
U
M
SER
ANUAL
Part Number: 770-0015 AM
Product Release: 1.8
May 2004

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the 770-0015 AM and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Carrier Access 770-0015 AM

Summary of Contents for Carrier Access 770-0015 AM

  • Page 1 IP Router RIVEN NTERFACE ANUAL Part Number: 770-0015 AM Product Release: 1.8 May 2004...
  • Page 2 Service card for any purpose other than the purchaser’s personal use without the express written permission of Carrier Access Corporation. The Carrier Access logo, solve for x, and Adit are registered trademarks of Carrier Access Corporation. All other brand or product names are trademarks or registration trademarks of their respective companies or organizations.

  • Page 3: Preface

    (5) years from the date of shipment by Carrier Access. This warranty shall not apply to Products that have been either resold or transferred from BUYER’s customer to any other party. Any such transfer shall void the above warranty.

  • Page 4: Warranty Product Returns

    COMMERCIAL LOSSES EVEN IF CARRIER ACCESS HAS BEEN ADVISED THEREOF. No agent, Distributor, or representative is authorized to make any warranties on behalf of Carrier Access or to assume for Carrier Access any other liability in connection with any of Carrier Access’s Products, software, or services.

  • Page 5: Table Of Contents

    ABLE OF Table of Contents Preface Warranty ........... iii Limitation of Warranty &...
  • Page 6 Table of Contents Management Window Management Overview ........2-2 System Time/Login .
  • Page 7 Profile Directory: Local Profile LAN (Local) Profile Setup ........4-3 To Setup a Local Profile: .
  • Page 8 Table of Contents Basic Configuration Overview ..........6-2 Start Basic Configuration .
  • Page 9 Router Configuration Basic Setup ..........11-2 PPP Internet Connection and Public IP Address Routing .
  • Page 10 Table of Contents Alarms ........... C-8 Identify Alarm .

  • Page 11: In This Chapter

    In this Chapter Overview Installation Maneuvering in the System Fields Help Bar Connecting to the Router HAPTER Introduction...

  • Page 12: Overview

    Introduction Overview Overview This manual covers the Router menu-driven user interface only, all other information for the Router can be found in the Adit 600 User Manual. The Router can be configured using CLI via telnet or through the Router Menu-driven Software.

  • Page 13: Fields

    Fields Scroll Field A field enclosed in angle brackets is a scrollable option field. While the field is selected use the following keystrokes: ] will scroll forward through the options PACEBAR ] will open the option’s window or accept the entered value. NTER Example: Terminal: <vt100>...

  • Page 14: Help Bar

    Introduction Help Bar Help Bar The IP Router provides field specific help that is displayed at the bottom of the window. The help text will indicate if the field is scrollable or editable and provide a brief description of the field. If it is a selectable field, it will state what to do to invoke the action to be performed.

  • Page 15: Connecting To The Router

    1. Use the telnet {rtr_card-addr} card. The following example is when the router is located in slot 5. > telnet 5 Connected. Attempting Carrier Access QTSR connection... QTSR [Sat Apr 10, 2004 10:51:23] (<CR> to login) 2. Select [E NTER Password >...

  • Page 16: Set A New Password

    If you have logged in with a default password, for security reasons the password should be changed, the system directs the user to do so. > telnet 3 Connected. Attempting Carrier Access QTSR connection... QTSR [Wed Apr Password >***** Select a terminal type...

  • Page 17: Management Window

    Management Window In this Chapter Management Overview System Time/Login Upload/Download Load Defaults Software Images HAPTER...

  • Page 18: Management Overview

    Management Window Management Overview Management Overview The Management Menu contains the system components of the IP Router software. This section is used to define security parameters, factory default settings, as well as providing software loading and configuration settings for the Router Management Menu options allow the user to: Establish the system security features Install and backup system software...

  • Page 19: System Time/Login

    Management Window System Time/Login System Time/Login 1. Select Management <System Time/Login> from the Main Menu, and select NTER IP Router - Release 1.8...

  • Page 20: System Date And Time

    Management Window System Time/Login This screen provides the basic system and security options for the Router card. The IP Router is equipped with three password levels and an enhanced security password. Level 1 VIEW Level 2 CONFIG allows the user to view and change all screens. Level 3 ADMIN allows the user to view and change all screens, terminate The Enhanced Security option provides an additional level of security for the network administrator.

  • Page 21: Auto-Logout Timer

    Auto-Logout Timer This field defines the minutes of inactivity before the current session is terminated. The default time is 30 minutes. Type the desired auto-logout time (between 1-255). NOTE: Any changes that have not been saved will be lost when the timer is activated.

  • Page 22: Enhanced Security

    Management Window System Time/Login Enhanced Security The Enhanced Security option provides another level of password security that restricts access to the Main Menu via Telnet or the Async port. It can be used by a Network Administrator to only allow those with the Enhanced Security password to make configuration changes.
  • Page 23 1. Type the Enhanced Security Password here. NOTE: Note: there will be no effect to the screen here until the correct password is typed in. When the correct password is typed, no return or other keystroke is needed, the following will appear: Password >...

  • Page 24: Upload/Download

    Management Window Upload/Download Upload/Download WARNING! SAVE THE CONFIGURATION TO A FILE THE DEFAULT SETTING AND CURRENT CONFIGURATION LOST This window allows the network administrator management of devices and users authorized to perform: Installation of software Backup of software and configuration settings (via tftp) The IP Router management enables a network administrator to perform a Router Code Upload from a central location via the LAN or WAN connection using TFTP.
  • Page 25 2. Select [C NOTE: The IP Address 1. (* ) will display. The * denotes any IP Address on the defined Client Site. The user may define a specific IP Address for Uploads/ Downloads, by replacing the *, or by Adding another Upload/Download User. 3.

  • Page 26: Upload/Download Setup Menu Fields

    Management Window Upload/Download Upload/Download Setup Menu Fields Feature and Release Key Options Options may be available to purchase, to upgrade the IP Router. Once this option is purchased, a key code will be given to enable the feature on this product. For more information please call Customer Service.
  • Page 27 Management Window Upload/Download Config Upload/Download This option to enables Config Upload/Download and defines an IP Address to perform this function. Config Upload allows the device(s) in the IP Address field to transfer, or restore, a previously backed up configuration file to the IP Router via TFTP.

  • Page 28: Load Defaults

    Management Window Load Defaults Load Defaults Use the Load Defaults option to reset the Router software to the factory defaults. This option will delete all configuration settings, including the passwords. Use the [S PACEBAR connection to the unit, your session will be terminated. 1.

  • Page 29: Software Images

    Software Images Use the Software Images option to switch the active with the backup application images stored in the Router. 1. Select Management <Software Images> from the Main Menu, and select [Enter]. IP Router - Release 1.8 Management Window Software Images 2-13...

  • Page 30: Choices

    Management Window Software Images Choices Show Current Images - will display the application images stored in the Router (shown above). Switch Appl. Images - Switch the active with the backup application images stored in the router. Note: More than one software image must be loaded (7.0 or later) for an active and a backup image to display.

  • Page 31: Profile Directory: Router Card Profile

    Profile Directory: Router Card Profile In this Chapter Overview Configuration RIP Mode Receive RIP Mode Send Trunk Security SNMP DNS Proxy Spanning Tree Protocol Network Time Protocol SysLog DNS Resolver HAPTER...

  • Page 32: Overview

    Profile Directory: Router Card Profile Overview Overview The Router Card Profile of the Profile Directory is used to review/configure the Network Time Protocol, DNS Proxy, DNS Resolver, RIP mode, Spanning Tree Protocol, Security, SNMP, Syslog and Trunk parameters. Configuration 1. Select Configuration: <Profile Directory> from the Main Menu, and select NTER Main Menu IP Router - Release 1.8...

  • Page 33: Rip Mode Receive

    2. Select Router CARD <Setup -> and select [E Profile Directory Window Router Card Configuration Window RIP Mode Receive Selection is: <RIP1>, <RIP2>, or <RIP1/RIP2>. RIP Mode Send Selection is: <RIP1>, <RIP2>, or <RIP1/RIP2>. IP Router - Release 1.8 Profile Directory: Router Card Profile RIP Mode Receive NTER...

  • Page 34: Trunk

    Profile Directory: Router Card Profile Trunk Trunk This window is used to configure the Trunk setup for the Router. Although the Router is designed to connect remote sites over dedicated connections, the unit supports a number of different encapsulation protocols simultaneously, including Frame Relay and PPP.

  • Page 35: Wan Link

    Trunk Setup Menu Fields WAN Link # This field displays the WAN Link Number (1-24) for the WAN Connection and the WAN Connection Type information. WAN Connection The WAN Connection displays the current connection of this WAN, in the form of {slot:port:channel}.

  • Page 36: Frame Relay

    Profile Directory: Router Card Profile Trunk Frame Relay 1490 A packet-switching protocol for connecting devices on a WAN. Frame Relay networks in the U.S. support data transfer rates at T1 (1.544 Mbps) and T3 (45 Mbps) speeds. Frame Relay service is provided for customers who want connections at 56 Kbps to T1 speeds.

  • Page 37: Security

    Security 1. Select Security < Configure -> and select [E The fields on this screen may be used to define the authentication process for the Local Unit. Security Setup Window IP Router - Release 1.8 Profile Directory: Router Card Profile NTER Security...
  • Page 38 Profile Directory: Router Card Profile Security Authentication by Remote Protocol: CHAP, PAP or NONE Use this first field to identify the authentication protocol to be used by remote units when authenticating this unit. <CHAP> Challenge Handshake Authentication Protocol <CHAP> Secret Select NTER password and select...
  • Page 39 Authentication of Remote Protocol: CHAP, PAP or NONE Use this field to identify the authentication protocol to be used by this IP Router when authenticating remote devices. Local Security Server The router supports a configuration setting for each router card to determine how the router card logins are to be authenticated, as per one of the following choices: authenticate router logins from the router card local database (default), authenticate router logins by having the controller send a RADIUS access-request message to the controller’s RADIUS servers, or authenticate...

  • Page 40: Snmp

    Profile Directory: Router Card Profile SNMP SNMP By defining specific IP Addresses, devices may be specified to manage the Local Unit via SNMP. NOTE: The IP Router is compatible with the Standard MIB and MIB II. 1. Select SNMP < Configure -> and select [E 3-10 NTER IP Router - Release 1.8...

  • Page 41: Snmp Community Name(S)

    Use the SNMP setup window to setup SNMP configurations. SNMP Setup Window SYS Name Set the value of sysName. Value has a maximum of 64 ASCII characters. SYS Contact Set the value of sysContact. Value has a maximum of 64 ASCII characters. SYS Location Set the value of sysLocation.

  • Page 42: Snmp Trap Destinations

    Profile Directory: Router Card Profile SNMP Name Enter the community name(s) of the device to access the Local (LAN) Unit through SNMP. Community names entered into the SNMP program MUST match the values entered here or access for remote management will not be allowed. The default community name is public, new community names can have a maximum of 10 characters.
  • Page 43 This window defines the SNMP Trap Destinations to which the Router will report alarm information. SNMP Setup Window Name Enter the community name(s) of the devices to which the Router will report. The default community name is public. To enter a new community name, highlight the field and type the desired value, with a maximum of 10 characters.

  • Page 44: Dns Proxy

    Profile Directory: Router Card Profile DNS Proxy DNS Proxy The DNS (Domain Name Server) Proxy specifies the IP address of DNS name servers to be used by the DHCP (Dynamic Host Configuration Protocol) clients. 1. Select DNS Proxy < Configure -> and select [E 2.
  • Page 45 Profile Directory: Router Card Profile DNS Proxy 3. Enter the appropriate data in the following fields. Domain Name Define a name for the Domain with up to 41 characters. DNS Server Enter the IP Address for the DNS Server. Site This field lists the Local LAN and all the RemoteUnit that have a profile created for them.

  • Page 46: Spanning Tree Protocol

    Profile Directory: Router Card Profile Spanning Tree Protocol Spanning Tree Protocol The Spanning Tree Protocol configures the global setup for using the Spanning Tree Algorithm as specified in the IEEE 802.1D specification. 1. Select Spanning Tree Protocol < Configure -> and select [E 2.

  • Page 47: Bridge Forward Delay

    Profile Directory: Router Card Profile Spanning Tree Protocol 3. Enter the appropriate data in the following fields. Bridge Hello Time The Bridge Hello Time specifies the time interval between transmissions of Topology Change Notification BPDUs towards the Root when the Bridge is attempting to notify the Designated Bridge on the LAN to which its Root Port is attached of a topology change.

  • Page 48: Network Time Protocol

    Profile Directory: Router Card Profile Network Time Protocol Network Time Protocol The Network Time Protocol is a protocol which sets the network to a common time system for Internet hosts, based off of GMT (Greenwich Mean Time). 1. Select Network Time Protocol < Configure -> and select [E 2.
  • Page 49 Profile Directory: Router Card Profile Network Time Protocol 3. Enter the appropriate data in the following fields. Network Time Protocol <Disabled> to disable Network Processing. <Enabled> to enable Network Processing. The following items appear once enabled. NTP Server Address The NTP Server Address specifies the IP address of the NTP server. Setting the NTP server value to 0.0.0.0 will cause the router to listen to and process NTP broadcasts.

  • Page 50: Syslog

    Profile Directory: Router Card Profile SysLog SysLog The Syslog client capability enables or disables sending alarm and event messages to an external Syslog server from the Router. 1. Select SysLog Configure -> and select [E 2. To enable SysLog (System Log Message Service), scroll <Disabled> to <Enable>, with the [S 3-20 NTER...

  • Page 51: Server Ip Address

    Profile Directory: Router Card Profile SysLog 3. Enter the appropriate data in the following fields. SysLog To enable the SysLog, use the to scroll <Disabled> to <Enabled> and select PACEBAR . The window will now display the optional settings for Sys Log. NTER Facility The value can range from 0 to 23, with a default of 16.

  • Page 52: Dns Resolver

    Profile Directory: Router Card Profile DNS Resolver DNS Resolver The DNS Resolver enables the use of the Domain Name Service (DNS) resolver to convert domain names to IP addresses. 1. Select DNS Resolver Configure -> and select [E 2. To enable DNS Resolver, scroll <Disabled> to <Enable>, with the PACEBAR 3-22 ], select [E...
  • Page 53 Profile Directory: Router Card Profile DNS Resolver 3. Enter the appropriate data in the following fields. DNS Resolver Setup Menu Fields DNS Resolver Disable/Enable use of DNS resolver to convert domain names to IP addresses. My Domain Name Set the default domain that the DNS resolver will add to any name queries that are not fully qualified. Identifier of up to 43 characters.
  • Page 54 Profile Directory: Router Card Profile DNS Resolver Static Host List: View or Modify - > Select the Static Host List: View or Modify - > and press system will prompt you to save changes before leaving this window. Scroll the <No> to <Yes> to save.
  • Page 55 Profile Directory: Router Card Profile DNS Resolver 5. If any changes are made they must be saved when exiting the window. Number of Static Hosts set up. A maximum of 33 can be entered. IP Address IP address of the static host. Host Name Enter the filter name, with a maximum of 42 characters, no spaces or numbers.
  • Page 56 Profile Directory: Router Card Profile DNS Resolver 3-26 IP Router - Release 1.8...

  • Page 57: Profile Directory: Local Profile

    Profile Directory: Local Profile In this Chapter LAN (Local) Profile Setup Static Networks Static Addresses Filters Advertise Network/Server DHCP Server/BOOTP Relay LAN Collision Threshold Spanning Tree Secondary IP Address Link Speed HAPTER...
  • Page 58 Profile Directory: Local Profile The Local (LAN) Profile Setup is found in Configuration <Profile Directory>/ LocalUnit LAN <Setup ->. Main Menu Profile Directory window IP Router - Release 1.8...

  • Page 59: Lan (Local) Profile Setup

    Local Profile window LAN (Local) Profile Setup The LAN Profile is the largest, most detailed portion of the Router software. The fields on this screen allow definition of how data transmission will occur on the Router LAN port. This includes defining the protocol(s) that it will use to send and receive data, defining security protocols, specifying which LAN servers and networks will be advertised to WAN units, and establishing specific data filtering options.
  • Page 60 Profile Directory: Local Profile LAN (Local) Profile Setup In addition to the fields on this screen, there are several other areas that directly relate to the communication abilities of the Router. You may use the fields at the bottom of this screen to access the following areas: Defining static addresses at the local unit Establishing static networks...

  • Page 61: To Setup A Local Profile

    To Setup a Local Profile: 1. Select Configuration: <Profile Directory> from the Main Menu, and press NTER Local Profile window 2. Select LAN < Setup -> and press [E Profile window IP Router - Release 1.8 Profile Directory: Local Profile LAN (Local) Profile Setup NTER...
  • Page 62 Profile Directory: Local Profile LAN (Local) Profile Setup Local Profile Setup Menu Fields Profile Setup for (LocalUnit) The (LocalUnit) is the default name for this unit and will be used during the authentication process to ensure this unit’s identity. This name can easily by changed by simply typing over the "LocalUnit"...
  • Page 63 When set to <Both>, the local Unit will accept the RIPs and SAPs from the LAN and the networks and services learned from the WAN will be broadcast to the LAN. <Both> send and receive network/service The <Send> value will enable the local Unit to send to the LAN information regarding the networks and services that it has learned from remote devices on the WAN.

  • Page 64: Lan Ip

    Profile Directory: Local Profile LAN (Local) Profile Setup LAN IP: IP Address This is the IP Address of this IP Router, used to uniquely identify the device on the internetwork. The default for this IP Address is 10.0.0.1 Subnet Mask A subnet mask determines which bits in the IP address are used to identify the network number.

  • Page 65: Setup

    Setup < > The Setup field accesses additional setup screens for the Local (LAN) profile. The screen that is accessed depends on the chosen option. Listed below are the available field options: <Static Networks > Used to configure static network routes that can be reached locally. See Static Networks on page 4- 10, for more information.

  • Page 66: Static Networks

    Profile Directory: Local Profile Static Networks Static Networks Static networks allow fixed, or pre-determined routes, which increases the control over routing choices within your network. Although the Router is able to dynamically learn routing information through RIP packets, you may wish to disable this feature and manually enter fixed routes.
  • Page 67 To continue with this example, if Network B is not configured to advertise Network C to Network A, then Network A will not dynamically learn of Network C’s existence. If you wish to establish a route on Network A to Network C, you must define a static route on Network A that indicates that Network C may be accessed through remote Adit B.

  • Page 68: To Setup Static Networks

    Profile Directory: Local Profile Static Networks To Setup Static Networks 1. Select Configuration <Profile Directory> from the Main menu, and press NTER 2. Select LAN <Setup -> and press [E Profile Directory window 4-12 NTER IP Router - Release 1.8...
  • Page 69 3. Select Setup: <Static Networks >. If the Secondary IP Address option is not displayed scroll to the selection with the [S Local Profile Window 4. Select <IP Networks> or <Static IPX Networks>. Static Networks Setup (IP) IP Router - Release 1.8 Profile Directory: Local Profile Static Networks ], and press [E...
  • Page 70 Profile Directory: Local Profile Static Networks 5. Press [C Static Networks Setup (IPX) Static Network Menu Fields Network Enter the address of the destination network for the route that you are adding. Static networks reached via a remote Unit must be configured through the corresponding Remote (WAN) Profile Setup screen.
  • Page 71 Profile Directory: Local Profile Static Networks Hops See Metric, above. When defining the number of hops in a given route, remember to increment the actual number by 1, since your locally attached unit is counted as “1”. This field is only used on IPX networks.

  • Page 72: Static Addresses

    Profile Directory: Local Profile Static Addresses Static Addresses Use this screen to define static addresses that are based on the Ethernet MAC or IP Address of a specific device on the local LAN. Typically, the Router would learn of these devices by monitoring LAN/WAN packets. By defining a static address, you are telling the Router the location of the corresponding device before the Router learns where this device resides.
  • Page 73 3. Select Setup: <Static Addresses >. If the Static Addresses option is not displayed scroll to the selection with the [S Local Profile Window 4. Press Static MAC Address Setup IP Router - Release 1.8 ] to add static addresses, as needed. Profile Directory: Local Profile Static Addresses ], and press [E...
  • Page 74 Profile Directory: Local Profile Static Addresses Static IP Address Setup Static IP Address Menu Fields Setup Static Use the PACEBAR this screen will vary depending on your choice. IP Address A unique, 32-bit identifier for a specific TCP/IP device on a network. The address is in dotted decimal form, xxx.xxx.xxx.xxx, where xxx = 1-255.

  • Page 75: Filters

    Filters Use this screen to review currently enabled data filters or to enable new filters. Data filters are used to determine whether data can be sent or received on the LAN/WAN based on a specific device, protocol type or defined data string. Data filters must be defined using the Custom, Protocol and Address Filter screens prior to being enabled on the current screen.
  • Page 76 Profile Directory: Local Profile Filters 3. Select Setup: <Filters >. If the Filters option is not displayed scroll to the selection with the [S Local Profile Window 4. Press [C sections on Defining Custom, Protocol and Address Filters. Enabled Filter Window 4-20 ], and press [E...
  • Page 77 Profile Directory: Local Profile Filters Filters Menu Fields Forward Mode This field determines what data to pass/not to pass, based on this field value and the filters listed on the current window. There are two available values which determine how the Router will handle data to/from the LAN: <All Frames NOT Matching Filters>...

  • Page 78: Defining Custom Filters

    Profile Directory: Local Profile Filters Defining Custom Filters Custom Filter Window This screen defines filters that “search” for a matching string of characters within a packet. The defined character string can consist of up to 32 bits. The user must specify: Custom Name - Filter name can be up to 7 characters.

  • Page 79: Defining Protocol Filters

    Defining Protocol Filters Protocol Filter Window Use this screen to define filters that are based on specific protocols being used by LAN devices. These filters, when enabled, provide security by restricting LAN/WAN access based on a specific protocol. Protocol Name - Filter name can be up to 7 characters. Ethernet Value - Enter the assigned Ethernet value for this protocol, see Addendum B, Ethernet Protocol Types.

  • Page 80: Defining Address Filters

    Profile Directory: Local Profile Filters Defining Address Filters Address Filter Window Use this window to define filters that are based on the Ethernet MAC Address of a specific device. When enabled, these filters provide security by restricting LAN/WAN access based on a device’s MAC Address. Address filters are based on either source, destination or both source and destination MAC Addresses.

  • Page 81: Advertise Network/Server

    Advertise Network/Server 1. Select Configuration <Profile Directory> from the Main menu, press NTER 2. Select LAN <Setup -> and press [E Profile Directory Window 3. Select Setup: <Advertise Network/Server >. If the Advertise Network/ Server option is not displayed scroll to the selection with the [S press [E NTER Local...
  • Page 82 Profile Directory: Local Profile Advertise Network/Server Use these windows to review networks that your unit has discovered through the LAN. By sending out IPX and IP RIP (Routing Information Protocol) and IPX SAP (Service Advertising Protocol) packets and monitoring RIP and SAP packets from other devices, your unit can learn about other networks.
  • Page 83 The Advertise Network/Server Window can be used in two ways, depending on which Selected Items mode is chosen: <Do Not Advertise> Selected Items mode causes the unit to not advertise the learned network to all remotes if you place an X next to the selected item. <Advertise>...

  • Page 84: Ipx Server Advertising

    Profile Directory: Local Profile Advertise Network/Server IPX Server Advertising Servers are learned and maintained by the Router in the same way as network tables, by sending out IPX SAP (Service Advertising Protocol) packets and monitoring SAP packets from other devices, the unit learns about other servers. Once a server has been discovered, the information is displayed on this window.

  • Page 85: Selected Items

    Network This field displays the network address of each learned or configured server. If a server has been selected using the Type The TYPE field displays the Hex value assigned to each known server. When a server is added using , a Hex value must be defined.

  • Page 86: Dhcp Server/Bootp Relay

    Profile Directory: Local Profile DHCP Server/BOOTP Relay DHCP Server/BOOTP Relay Use the options on this window to enable the Router to act as either a DHCP server or BOOTP relay agent. Workstations with DHCP/BOOTP (Dynamic Host Configuration Protocol) client software will generate a broadcast message requesting an IP Address from a DHCP/BOOTP server.
  • Page 87 3. Select Setup: <DHCP Server/BOOTP Relay > If not displayed scroll to the selection with the [S Local Profile Window DHCP Server/ BOOTP IP Router - Release 1.8 Profile Directory: Local Profile ], and press [E PACEBAR NTER DHCP Server/BOOTP Relay 4-31...
  • Page 88 Profile Directory: Local Profile DHCP Server/BOOTP Relay DHCP Server/ BOOTP DHCP Server/BOOTP Relay Menu Fields DHCP Server Use this field to enable this Router as a DHCP Server. Use the <Enabled> or <Disabled>. The following fields are available when enabled. Info: Active Leases Displays the Active Lease Information below.
  • Page 89 Lease Duration Enter the duration, in hours and minutes, that an IP Address assigned by the Router will remain valid. If this field is left at 000.00, the IP Address will remain valid indefinitely. Range is Hours = 1-999 Minutes = 1-59. Domain Name Servers The Domain Name Servers option specifies the IP address of DNS name servers to be used by DHCP clients.

  • Page 90: Lan Collision Threshold

    Profile Directory: Local Profile LAN Collision Threshold LAN Collision Threshold Use the options on this window to define the sample interval for data collection of collisions, the Hi and Lo thresholds for raising and clearing Collision alarms. It will also display if there is a current alarm active and the number of collisions that have occurred during the defined sample interval.
  • Page 91 3. Select Setup: <LAN Collision Threshold > If the LAN Collision Threshold option is not displayed scroll to the selection with the [S NTER Local Profile Window Collision Threshold Provisioning IP Router - Release 1.8 Profile Directory: Local Profile LAN Collision Threshold ], and press PACEBAR 4-35...

  • Page 92: Sample Interval

    Profile Directory: Local Profile LAN Collision Threshold Will indicate if the LAN is UP or Down (DWN). Collisions The number of collisions that have occurred during the defined sample interval. Alarm This field indicates if there is/is not an active collision alarm. There is an alarm indicator on the front of the IP Router Card, labeled COL.

  • Page 93: Spanning Tree

    Spanning Tree NOTE: This option does not display on the Local LAN Profile Setup, until Spanning Tree is enabled on the Router CARD Profile. The Spanning Tree configures the setup for the Spanning Tree Algorithm. To Configure Spanning Tree: 1. Select Configuration <Profile Directory> from the Main menu, and press NTER 2.
  • Page 94 Profile Directory: Local Profile Spanning Tree 3. Select Setup: <Spanning Tree > and press [E 4. To enable Spanning Tree, scroll <Disabled> to <Enabled>, with the PACEBAR 4-38 ], press [E NTER NTER IP Router - Release 1.8...

  • Page 95: Port Priority

    Profile Directory: Local Profile Spanning Tree 5. Enter the appropriate data in the following fields. Port Priority The Port Priority value can range from 0 to 255, with a default of 128. Port Cost The Port Priority value can range from 0 to 65535, with a default of 651. IP Router - Release 1.8 4-39...

  • Page 96: Secondary Ip Address

    Profile Directory: Local Profile Secondary IP Address Secondary IP Address This option will add a secondary IP address and subnet to the specified LAN interface. The router will then be capable of routing between the various subnets on the LAN interface or between any of the LAN subnets and any WAN subnet.
  • Page 97 3. Select Setup: <Secondary IP Address>, by scrolling through the options with the [S PACEBAR Local Profile Window IP Address The secondary IP Address, in the form xxx.xxx.xxx.xxx, where xxx is between 1 -255. Subnet Mask The Subnet Mask to the corresponding Secondary IP address listed, in the form xxx.xxx.xxx.xxx, where xxx is between 1 -255.

  • Page 98: Link Speed

    Profile Directory: Local Profile Link Speed Link Speed The Link Speed sets the Ethernet PHY mode and speed for the Router. NOTE: It is highly recommended that this setting be left at auto- negotiation. Connection Ethernet devices with incompatible settings can lead to severe performance degradation and errors on a network.
  • Page 99 3. Select Link Speed: <Auto Negotiate > scroll to the selection with the ], and press [E PACEBAR Local Profile Window Auto Negotiate This selection is the default and is highly recommended to be left at this setting. The router and the device will negotiate common features and functions.
  • Page 100 Profile Directory: Local Profile Link Speed 4-44 IP Router - Release 1.8...

  • Page 101: Profile Directory:remote Profile

    Profile Directory:Remote Profile In this Chapter Remote (WAN) Profile Security/Options Static/VPN Networks Static NAT Addresses NAT Bypass Subnets Static Addresses Firewall Filters Filter Network/Server Spanning Tree Trunk Port HAPTER...
  • Page 102 Profile Directory:Remote Profile The Local (LAN) Profile Setup is found in Configuration <Profile Directory>/ LocalUnit LAN <Setup ->. Main Menu Profile Directory window IP Router - Release 1.8...
  • Page 103 Profile Directory:Remote Profile Remote Profile window IP Router - Release 1.8...

  • Page 104: Remote (Wan) Profile

    Profile Directory:Remote Profile Remote (WAN) Profile Remote (WAN) Profile The fields on the Remote (WAN) Profile Setup window allow you to define how and when data transmission will occur with a specific remote device. This includes defining the protocol(s) that it will use to send and receive data, defining security information, static networks and WAN lines.
  • Page 105 The Remote Profile Window will change as options are selected. The graphic below displays the window as NAT Gateway is enabled. Remote Profile Window The following is just one example of how the above window in the box changes when different protocol options are selected. Profile Setup for (RemoteUnit) This is an 11 character maximum field to uniquely identify this remote device.

  • Page 106: Transmission Options

    Profile Directory:Remote Profile Remote (WAN) Profile Transmission Options The following section is always displayed on the Remote Profile setup window. By selecting options on this chart, other fields are displayed or removed. Protocol This field displays three protocol options, IP, IPX and Other. Use the Mode, WAN Network Updates, and GRE Tunnel fields to determine how and if the listed protocols will be used.

  • Page 107: Gre Tunnel

    WAN Network Updates Routing information updates across the WAN will occur based on this selection. This field is only available when IP (Protocol) is set to <Route> or when IPX (Protocol) is set to <Optimize>. This field should be set to <Never> if the NAT Gateway field, below, is set to <Enabled>.

  • Page 108: Nat Gateway

    Profile Directory:Remote Profile Remote (WAN) Profile NAT Gateway Enable NAT Gateway for this Router to translate addresses from all of its local devices to a specific IP Address (typically assigned by an Internet Service Provider). This will allow the remote device to dynamically assign a single IP Address to the Router or to configure a specific IP Address, which in turn will be used by all devices on that network.

  • Page 109: Tunnel Name

    Profile Directory:Remote Profile Remote (WAN) Profile VPN Setup <Enabled> with GRE Tunnel <All> IP Protocol VPN Setup - > window will display. This field displays only when GRE Tunnel is set to <All>. To open the setup window select IP Protocol VPN Setup - > and select NTER Tunnel Name Enter Tunnel name, up to 11 characters.
  • Page 110 Profile Directory:Remote Profile Remote (WAN) Profile WAN IP This field is used to enable the Router to assign an IP Address to the remote device that this remote profile is attached to. Numbered Designate if the local unit will have an IP Address assigned to the WAN when communicating with this remote unit.
  • Page 111 Profile Directory:Remote Profile Remote (WAN) Profile <NAT Bypass Subnets > Use this option to access the Static NAT Addresses window which allows the operator to configure static bi-directional NAT mappings between local server addresses and public addresses. See Static NAT Addresses on page 5-22, for more information. <Static Addresses >...

  • Page 112: Security/Options

    Profile Directory:Remote Profile Security/Options Security/Options The purpose of this window is to define security information and miscellaneous options pertaining to this Router. The security portion of this window allows the setup of password or secret (depending on the chosen security protocol) that this remote device will use during the authentication process.
  • Page 113 3. Tab down to Setup:<Security/Options> Scroll through the list of options with the [S PACEBAR Remote Profile Window 4. The following Security/Options setup window will display. IP Router - Release 1.8 Profile Directory:Remote Profile ] and select [E NTER Security/Options 5-13...

  • Page 114: Security Server

    Profile Directory:Remote Profile Security/Options Security/Options Fields Authentication By Remote User ID: Local Profile Name This field displays the User ID of the Local Unit. Authentication of Remote This fields defines the parameters the remote unit expects to receive from this local unit. Protocol This field displays the authentication protocol, if any, to be used by remote units when authenticating the local unit.

  • Page 115: Static/Vpn Networks

    Static/VPN Networks Static networks allow you to establish fixed, or pre-determined routes, which increases the control that you have over routing choices within your network. Although the Router is able to dynamically learn routing information through RIP packets, you may wish to disable this feature and manually enter fixed routes.
  • Page 116 Profile Directory:Remote Profile Static/VPN Networks To continue with this example, if Network B is not configured to advertise Network C to Network A, then Network A will not dynamically learn of Network C’s existence. If you wish to establish a route on Network A to Network C, you must define a static route on Network A that indicates that Network C may be accessed through remote Adit B.
  • Page 117 Depending on the GRE Tunnel field setting, the Static/VPN Networks window display fields are modified. The following displays two options. GRE Tunnel set to <All> 1. Select Configuration <Profile Directory> from the Main Menu, and press NTER 2. Select WAN <Setup -> on the RemoteUnit line and press [E 3.
  • Page 118 Profile Directory:Remote Profile Static/VPN Networks 5. Press [C Mask and Metric value. Note: this window displays additional fields depending on the field setting for GRE Tunnel (on the Remote Profile window). Static/ Networks Window Static/VPN Networks Fields Setup Static <IP Networks> Enter the Subnet IP Address. Note: The host bits should all be zero. <IPX Networks>...
  • Page 119 GRE Tunnel set to <By Network> 1. Select Configuration <Profile Directory> from the Main Menu, and press NTER 2. Select WAN <Setup -> on the RemoteUnit line and press [E 3. Set GRE Tunnel to <By Network >. 4. Select Setup: <Static/VPN Networks>, scroll with the [S through the options and select [E Remote Profile...
  • Page 120 Profile Directory:Remote Profile Static/VPN Networks 5. Press [C Mask and Metric value. Note: this window displays additional fields depending on the field setting for GRE Tunnel (on the Remote Profile window). Static/ Networks Window Static/VPN Networks Fields Setup Static <IP Networks> Enter the Subnet IP Address. Note: The host bits should all be zero. <IPX Networks>...

  • Page 121: Vpn

    VPN - > Opens the VPN Setup window. Tunnel Data ? <Yes> - Enables tunnel. Displays additional fields to setup. <No> - Disables tunnel. Tunnel Name Enter Tunnel name, up to 11 characters. Remote IP Tunnel Address Enter the IP address of the far end of the tunnel, in the form xxx.xxx.xxx.xxx, where xxx is between 0-255.

  • Page 122: Static Nat Addresses

    Profile Directory:Remote Profile Static NAT Addresses Static NAT Addresses Use this window to configure Static Bi-directional NAT mappings between local server addresses and public addresses. NOTE: Each static NAT address filter will count toward the maximum number of 500 filters. 1.

  • Page 123: Local Ip Address

    3. Select Setup: <Static NAT Addresses>, scroll through the list of options with the [S PACEBAR Remote Profile Window 4. Press [C Static Addresses Window Local IP Address Enter the IP Address of the local device. NAT IP Address Enter the NAT IP Address of the desired device. IP Router - Release 1.8 Profile Directory:Remote Profile ] if <Static NAT Addresses>...

  • Page 124: Nat Bypass Subnets

    Profile Directory:Remote Profile NAT Bypass Subnets NAT Bypass Subnets Use this window to define NAT Bypass Subnets which will create a list of source addresses that will not be subject to NAT translation when passing through a NAT enabled WAN interface. 1.

  • Page 125: Subnet Mask

    3. Select Setup: <NAT Bypass Subnets >, scroll through the list of options with the [S PACEBAR NAT Bypass Subnets Window 4. Press [C NAT Bypass Setup Window Network An IP address or host to bypass the NAT Translation, in the form of xxx.xxx.xxx.xxx, where xxx is between 0-255.

  • Page 126: Static Addresses

    Profile Directory:Remote Profile Static Addresses Static Addresses Use this screen to define static addresses that are based on the Ethernet MAC or IP Address of a specific device on the local LAN. Typically, the Router would learn of these devices by monitoring LAN/WAN packets. By defining a static address, you are telling the Router the location of the corresponding device before the Router learns where this device resides.
  • Page 127 3. Select Setup: <Static Addresses >, scroll through the list of options with the ] if <Static Addresses> is not displayed. Press [E PACEBAR Remote Profile Window 4. Select Setup: <Static Addresses >, scroll through the list of options with the ] if <Static Addresses>...

  • Page 128: Mac Address

    Profile Directory:Remote Profile Static Addresses Static Addresses Window (IP Address) Static Addresses Fields Setup Static <IP Address> - To setup a static IP address. <MAC Address> - To setup a static MAC address. Device Name A user-defined name of the LAN device that is associated with this static address. Up to 7 characters is allowed for this field.

  • Page 129: Firewall Filters

    Firewall Filters A firewall is a method for keeping a network secure from intruders, by using filters to block the transmission of certain types of (service) traffic. Once created, firewalls are a security feature that allows only certain types of services to pass in and/or out of your LAN.
  • Page 130 Profile Directory:Remote Profile Firewall Filters To Add a Firewall Filter: WARNING! AUTOMATICALLY SECURE THE UNIT AGAINST ACCESS VIA FIRST RULE EXPRESSLY PERMITS INTO THE UNIT BY AT LEAST ONE REMOTE DEVICE INDICATING WHICH DEVICE HAS 1. On the Main Menu, press [T highlighted, and press [E 2.
  • Page 131 3. Tab down to Setup: <Firewall Filters> scroll through the list of options with the [S PACEBAR Remote Profile Window 4. Press [C Firewall Filters Window 5. Enter the parameters of the rule, press [E configuration. See page 5-32 for a description of all fields for the Firewall Setup window.
  • Page 132 Profile Directory:Remote Profile Firewall Filters Firewall Filters Fields Rule Number The rule number defines the order in which the rules are applied. Once there is two or more rules created, the rule number can be changed to put them in the desired order. The Last! rule displayed, is automatically set after the first rule is defined, and states that the Router should drop any service (incoming or outgoing) which has not been addressed in the proceeding rules.

  • Page 133: Protocol Number In Firewall Filters

    Service This field displays the service that this particular rule affects. The most common services have been pre-defined however, there are a select few options where you may further define the service to be filtered. Name Description Finger Display information about users File Transfer Protocol Gopher Document search and retrieval...
  • Page 134 Profile Directory:Remote Profile Firewall Filters Local IP Address/Network Enter the IP Address of the local device or network that this rule will affect. If you enter the address of a local device, this rule will affect only the session establishments of the local device and the destination address entered in the Remote IP Address/Network field, below.

  • Page 135: Filter Network/Server

    Filter Network/Server This screen allows you to filter the Remote (WAN) networks/servers in two ways, depending on which mode is selected. The <Filter> mode causes the unit to learn all networks/services on known networks, and then advertise these services to the LAN. In the <Learn>...
  • Page 136 Profile Directory:Remote Profile Filter Network/Server 3. Tab down to Setup: <Security/Options> and scroll with the [S <Filter Network/Server>. Press [E Remote Profile Window 4. Select with the [S Servers>. [T Filter Network/ Server 5-36 NTER ] <IP Networks>, <IPX Networks> or <IPX PACEBAR ] to the Selected Items field.
  • Page 137 5. Select <Learn> or <Filter> and press [E 6. To Manually configure a service (with <IPX Servers> only), select [C to add a Filter. Filter Network/Server Fields Setup Use this field to identify which networks or server types you wish to review and filter. <IP Networks>, <IPX Networks>...
  • Page 138 Profile Directory:Remote Profile Filter Network/Server NOTE: The server type 0004 was selected to be advertised to the LAN, therefore all 0004 type servers will be advertised and do not need to be individually selected (lines 2 through 4). If the server type and name are specified, only servers that match both values will be learned or filtered.
  • Page 139 Name This field displays the first 11 characters of the name of each known network/server. If a server is manually added and a server name is not defined, all servers matching the added type will be learned and the first 11 characters of their names will be displayed. If both the server name and type are defined when the server is manually added then only servers matching both criteria will be learned.

  • Page 140: Spanning Tree

    Profile Directory:Remote Profile Spanning Tree Spanning Tree NOTE: This option does not display on the Remote WAN Profile Setup, until the Router CARD profile/Spanning Tree is enabled AND the Remote Profile is set to <Bridge>. The Spanning Tree configures the setup for the Spanning Tree Algorithm. To Configure Spanning Tree: 1.
  • Page 141 Profile Directory:Remote Profile Spanning Tree 3. Select Setup: <Spanning Tree > and press [E NTER NOTE: Spanning Tree is only available in the Setup: Menu when the IP Protocol Mode is set to <Bridge>. 4. To enable Spanning Tree, scroll <Disabled> to <Enabled>, with the ], press [E PACEBAR NTER...
  • Page 142 Profile Directory:Remote Profile Spanning Tree 5. Enter the appropriate data in the following fields. Port Priority The Port Priority value can range from 0 to 255, with a default of 128. Port Cost The Port Priority value can range from 0 to 65535, with a default of 651. 5-42 IP Router - Release 1.8...

  • Page 143: Trunk Port

    Trunk Port Use this screen to define the Router Interface. 1. On the Main Menu, press [T highlighted. 2. Select WAN <Setup -> on the RemoteUnit line and press [E Profile Directory Window IP Router - Release 1.8 Profile Directory:Remote Profile ] until Configuration <Profile Directory>...
  • Page 144 Profile Directory:Remote Profile Trunk Port 3. Select Setup:<Trunk Port> and press [E Remote Profile Window 4. Select the WAN Port Number by scrolling the <None> to the desired WAN. Note: Only WANs that are setup will display here. WAN Port Setup Window 5-44...
  • Page 145 5. Set DLCI value (range is 16 - 1022). WAN Port Setup Window Select WAN Port Number Scroll through the available WAN port selections. Connection Displays the connection for the selected WAN Port. WAN Connection Type Displays the WAN Connection Type for the selected WAN Port. DLCI Displays the DLCI for the selected WAN Port.
  • Page 146 Profile Directory:Remote Profile Trunk Port 5-46 IP Router - Release 1.8...

  • Page 147: Basic Configuration

    Basic Configuration In this Chapter Overview Start Basic Configuration Router Identification Routing Protocol/Security WAN Interface Connections Remote Unit Profile SNMP Configuration Setup Complete HAPTER...

  • Page 148: Overview

    Basic Configuration Overview Overview The Basic Configuration is designed to walk the user through all the Basic Setup to operate the Router effectively. This feature can be used at any time, to initially setup the Router, or to change the configuration of the Router. As setup information is entered and the Enter button is selected, the next setup item will appear.
  • Page 149 Basic Configuration Start Basic Configuration 2. Select <Yes> to enter the setup program and press [E NTER IP Router - Release 1.8...

  • Page 150: Router Identification

    Basic Configuration Router Identification Router Identification NOTE: When this window is opened the items below in the box are not displayed. As you fill in information or accept the current (default) information (by hitting [E process that you will find on all of the windows in the Guide. Router Name: (LocalUnit ) Enter a unique name for the Local Unit.

  • Page 151: Routing Protocol/Security

    Routing Protocol/Security Direction(s) for LAN Network Updates Selection is: < Both>, <Neither>, <Send>, <Receive>. RIP mode to be received from remotes Selection is: <RIP1>, <RIP2>, <RIP1/RIP2>. RIP mode to send to remotes Selection is: <RIP1>, <RIP2>, <RIP1/RIP2>. Protocol remotes will use to authenticate local LocalUnit Selection is: <CHAP>, <PAP>, <NONE>.
  • Page 152 Basic Configuration Routing Protocol/Security Change the PAP Secret LocalUnit will send? Note: this field displays only with a selection on <PAP>. Selection is: <YES>, <NO>. Below the current Secret Password is listed. If <YES> is selected, the operator will be requested to enter in a new password, and retype this password to confirm.

  • Page 153: Port Number

    WAN Interface Connections This screen will display the Port Number and connection information of existing WANs.Whe window displays one WAN initially, as you set the connection type and then hit [E ] the next WAN will display. NTER Note: You are not allowed to back up to the previous WAN on the list. This screen will only hold 8 WANs on a page, additional pages are added as needed.
  • Page 154 Basic Configuration WAN Interface Connections For Frame Relay, Set Option for PVC Management Selection is: <Disabled>, <Annex D> and <LMI>. Set Poll Interval Range is between 5-30. Set Poll Counter Range is between 1-255. IP Router - Release 1.8...

  • Page 155: Remote Unit Profile

    Remote Unit Profile A screen will ask you if you would like to Edit a Remote Unit Profile. Select <YES> and [E ]. The guide will walk through each Remote Profile that has been setup. NTER When exiting the last profile the guide will ask if you if you would like to add a Remote Profile.

  • Page 156: Profile Name

    Basic Configuration Remote Unit Profile Profile Name Enter a unique name for this Remote Unit. Name can be up to 11 characters. Protocol Mode - <Route>, <Blocked> and <Bridge>. WAN Network Updates - <Never>, <Periodic> and <Triggered>. Mode - <Blocked>, <Bridge> and <Optimized>. WAN Network Updates - <Never>, <Periodic>, <Triggered>.
  • Page 157 Does this unit have a numbered IP address assigned on the WAN? Selection is: <Yes>, <No>. If <Yes> is selected IP Address and Subnet Mask below are listed. IP Address Enter the IP Address of the Remote Unit. Subnet Mask Enter the Subnet Mask of the above IP Address.

  • Page 158: Snmp Configuration

    Basic Configuration SNMP Configuration SNMP Configuration When you are finished adding additional Remote Profiles, select elect <NO> and ]. The guide will move onto the SNMP co. NTER SNMP Communities Name - Enter a 10 character name. Address - Enter an IP address (first line) Subnet Mask for second line. Access - Selection is: <read>, <write>, <both>.

  • Page 159: Setup Complete

    Setup Complete You have now completed the Basic Configuration. You may re-enter the Basic Configuration to make changes now or at any time. IP Router - Release 1.8 Basic Configuration Setup Complete 6-13...
  • Page 160 Basic Configuration Setup Complete 6-14 IP Router - Release 1.8...

  • Page 161: Verification Window

    Verification Window The Verification window is used to identify suspected communication problems between the Local (LAN) and Remote (WAN) devices. In this Chapter Ping Utility Trace Route Port Monitor HAPTER...

  • Page 162: Ping Utility

    Verification Window Ping Utility Ping Utility Use this option to verify any communication problems between the Router and various devices connected to your LAN or at a Remote location. Problems are detected when a “ping” is sent to a device. If the device echoes back to the Router, then communications are operating normally.

  • Page 163: Payload Size

    2. Press [E NTER 3. To initiate a Ping, select START PING <Single Ping >, scroll to <Continuous Ping> if desired and press [E begin. LAN Port Tests Fields Dst Host Destination Host. The Destination Address of the host to be tested. Access Port This is the local or remote profile of the network used during the test.

  • Page 164: Start Ping

    Verification Window Ping Utility START PING < > <Single Ping > Test for device failure. The single ping test will send one ping, and display the results of the test. <Continuous Ping > Test for intermittent communication problems. A continuous ping will send a ping until the test is manually terminated. Results of the continuous ping test are constantly updated, based on the result of each ping sent.
  • Page 165 Verification Window Ping Utility Result or Last Result Will indicate if the host is responding to the test. Result notices will be one of the following: Host Responding - This is a successful test with a ping responding. Destination Unreachable - This is an unsuccessful test. The Router is not able to talk to the IP Address.

  • Page 166: Trace Route

    Verification Window Trace Route Trace Route The Trace Route option is used to verify timely and reliable connections. The Trace Route utility determines the path a packet follows from source to destination. 1. On the Main Menu, press [T Verification option. 2.

  • Page 167: Trace Route Utility

    Verification Window Trace Route 3. Press [E ]. The Trace Route window will display. NTER Trace Route Utility - <START TRACERT> - > After all parameters are entered, select <START TRACERT> and to start the trace. NTER DstHost Enter an IP Address or, domain name to use for this query. IP Address must be in the form of xxx.xxx.xxx.xxx, where xxx is between 0-255.

  • Page 168: Udp Port

    Verification Window Trace Route Method <ICMP> - Internet Control Message Protocol (ICMP) method of trace routing is the most widely used and has the best reliability. (Default). <UDP> - User Datagram Protocol (UDP) method requires that all devices in the chain of the trace route support probes on the particular UDP port.

  • Page 169: Port Monitor

    Port Monitor The Port Monitor option is a diagnostic tool that can be used to review the actual data being transmitted to, or received by the Local (LAN) unit. This can be especially useful in determining where a transmission failure is occurring. When monitoring is started, a hex display of each transmission, may be viewed as it occurs.

  • Page 170: Start Monitor

    Verification Window Port Monitor 3. Press [E NTER Port Name: Select the Port Name, by scrolling through the list of (LAN Port, Remote Units) with the PACEBAR Start Monitor Use this prompt to initiate the packet trace. Select START MONITOR - > and press to begin the trace.
  • Page 171 The following an example of a WAN Monitor trace. >>>Sending>>> Time= 2:55:31 msg-0001 WAN-WAN+2 14 octets (ESC to stop) 00: 00 01 03 08 00 75 95 01 01 00 03 02 67 66 FR DLCI-0 Bridged Eth <<<Receiving<<< Time= 2:55:31 msg-0002 WAN-WAN+2 19 octets (ESC to stop) 00: 00 01 03 08 00 7D 95 01 01 00 03 02 67 67 07 03 10: 06 A0 82 FR DLCI-0 Bridged Eth...
  • Page 172 Verification Window Port Monitor 7-12 IP Router - Release 1.8...

  • Page 173: Statistics Window

    HAPTER Statistics Window The Statistics window is used to review data transmission information between the Local (LAN) unit and Remote (WAN) devices. This option allows you to review data transmission statistics to/from remote units. This data will help you to monitor the Router’s connection/performance capabilities such as throughput, compression, and errors.

  • Page 174: Run-Time

    Statistics Window Run-Time Run-Time Use this screen to review the statistics regarding data transmission to and from remote units. All remote units that appear on the Profile Directory screen will be displayed here. If no data is currently being transmitted to a specific unit, the transmission fields will display 0’s.

  • Page 175: Clear Totals

    2. Press [E NTER Auto-Update Use this field to select whether you wish to have this screen automatically updated with new transmission statistics while you are viewing the screen. <On> will update the screen every 2 seconds. <Off> will disable this feature. Clear <...

  • Page 176: Lan Packet Totals

    Statistics Window Run-Time LAN Packet Totals Use this field to review the number of LAN packets that the local unit has Received, Transmitted, and contained Errors. If Auto-Update is set to <No>, the LAN packet totals will not increment while the screen is displayed. Received This field will increment as packets are received from the LAN.

  • Page 177: Forwarded To Wan

    Statistics Window Run-Time Remote’s Name This field reflects the names of all the Remote (WAN) profiles listed in the Profile Directory. Forwarded to WAN This field represents the number of data packets per second (pps) that are being forwarded from the LAN to the respective remote units.
  • Page 178 Statistics Window Run-Time IP Router - Release 1.8...

  • Page 179: System Reports Window

    System Reports Window The System Reports menu presents data that may be useful in identifying WAN communication problems. In this Chapter Events Alarms Networks/Servers Address Tables HAPTER...

  • Page 180: Events

    System Reports Window Events Events Displays the log of events for the IP Router. To View the Event Log: 1. On the Main Menu, press [T Reports option. ] until Events is highlighted on the System IP Router - Release 1.8...
  • Page 181 System Reports Window Events 2. Press [E ]. The Event Log will display. NTER Auto-Update <On> or <Off>. Time The value in this column represents the date and time that the specific event occurred. Events are displayed in descending order with the most recent event displayed at the top of the screen. Message This column displays the actual event that occurred on the Router.

  • Page 182: Alarms

    System Reports Window Alarms Alarms This screen displays alarms that have occurred on your Router. When an alarm is triggered, the LED labeled CRD on the front of the Router will be RED and will remain until the alarm is cleared. Unlike the System Events, alarms will not increment the Count field each time they occur.
  • Page 183 System Reports Window Alarms 2. Press [E ]. The Alarm Log will display. NTER Auto-Update Use this field to have this screen automatically update with events while you are viewing the screen. <On> will update the screen every 5 seconds, <Off> will disable this feature. Time Displays the date and time that the alarm occurred.

  • Page 184: Networks/Servers

    System Reports Window Networks/Servers Networks/Servers Use this screen to review all of the networks and servers that your Local (LAN) Unit has learned on its Local LAN or from remote units, as well as static entries. By sending out IPX and IP RIP (Routing Information Protocol) and IPX SAP (Service Advertising Protocol) packets and monitoring RIP and SAP packets from other devices, the Router will learn about other servers and networks.
  • Page 185 System Reports Window Networks/Servers 3. Press [E ]. The Networks/Servers listing will display. NTER Display Use this field to select whether you wish to view the table for <IP Networks>, <IPX Networks> or < IPX Servers>. Use the to scroll though the options, the screen PACEBAR will update accordingly.

  • Page 186: Frame Type

    System Reports Window Networks/Servers Name This field displays the first 11 characters of the name of each known server. This field applies only to IPX Servers. Metric This field displays the numeric value (of hops) indicating the distance from your Local (LAN) network to the destination network.

  • Page 187: Address Tables

    Address Tables Use this screen to review the MAC Address and IP Address of the devices that are known by the Router. The Router will monitor traffic on the LAN/WAN and dynamically learn the MAC Address and/or IP Address of each device. This learning is a continuous process that occurs automatically as communication takes place on the LAN or across the WAN.
  • Page 188 System Reports Window Address Tables 3. Press [E NTER will change as different options are selected. Address Address Flush Learned Entries This field will eliminate all the learned entries from either the <MAC Address> table or the <IP Address> table when the field is changed from <Off> to <On>. Use the scroll to the selection.
  • Page 189 System Reports Window Address Tables Learned From Will select to view devices learned from the LAN or from any remote units. This field will display either <All Ports>, <Local LAN> or each of the individual Remotes listed in the Profile Directory. The screen will update accordingly as you scroll between options. Auto-Update Use this field to have this screen automatically update with events while you are viewing the screen.
  • Page 190 System Reports Window Address Tables 9-12 IP Router - Release 1.8...

  • Page 191: Exit Window

    In this Chapter Logout Reinitialize HAPTER Exit Window...

  • Page 192: Logout

    Exit Window Logout Logout 1. On the Main Menu, press [T option. 2. Press [E NTER and the following message is displayed. 10-2 ] until the Logout is highlighted on the Exit ]. The system will exit out of the Router Menu-Drive software IP Router - Release 1.8...

  • Page 193: Reinitialize

    Reinitialize Some changes that you make to the Management software will not take effect until the Router is reinitialized. Since this procedure is common to all functions within the software, the reinitialization procedure appears on the Main Menu. 1. On the Main Menu, press [T option.
  • Page 194 Exit Window Reinitialize 4. Press [S PACEBAR 5. System will close the session and reboot. 10-4 ] to scroll <NO> to <YES>, and press [E NTER IP Router - Release 1.8...

  • Page 195: Router Configuration

    Router Configuration In this Chapter Basic Setup PPP Internet Connection and Public IP Address Routing Frame Relay Internet Connection and Public IP Address Routing Internet Connection using PPP, NAT/PAT and Firewall Filters Internet Connection using NAT and Static NAT Addresses PPP Internet Connection and Public IP Address Routing Back-to-Back with PPP...

  • Page 196: Basic Setup

    Router Configuration Basic Setup Basic Setup Command set {ds0-addr} type data connect {slot:port:trunk} {slot:port:channel} set {router-addr} proxy set {slot:port} up telnet {router_card-addr} Local and Remote Profile Setup reinitialize 11-2 Description Confirm DS0 is set to type data. ds0-addr = {slot:port:channel} of DS0 Example: set a:1:1-24 type data Cross-connect T1 to router card.

  • Page 197: Ppp Internet Connection And Public Ip Address Routing

    PPP Internet Connection and Public IP Address Routing Router in Slot 1 ISP Router that provides the Internet connection. Command set clock1 a:1 set 1 default disconnect a:1 disconnect 1 set a:1:all type data connect a:1:all 1:1:1 rename 1 "LocalUnit" "Boulder" rename 1 "RemoteUnit"...

  • Page 198: Frame Relay Internet Connection And Public Ip Address Routing

    Router Configuration Frame Relay Internet Connection and Public IP Address Routing Frame Relay Internet Connection and Public IP Address Routing Router in Slot 1 ISP Router that provides the Internet connection. Command set clock1 a:1 set 1 default disconnect a:1 disconnect 1 set a:1:all type data connect a:1:all 1:1:1...

  • Page 199: Internet Connection Using Ppp, Nat/Pat And Firewall Filters

    Internet Connection using PPP, NAT/PAT and Firewall Filters Router in Slot 1 ISP Router that provides the Internet connection. Router with NAT/PAT and Firewall Filters. Command set clock1 a:1 set 1 default disconnect a:1 disconnect 1 set a:1:all type data connect a:1:all 1:1:1 rename 1 "LocalUnit"...
  • Page 200 Router Configuration Internet Connection using PPP, NAT/PAT and Firewall Filters Command add 1 "wan1" firewall 1 pass incoming log telnet 192.168.21.14/32 xxx.xxx.xxx.xxx/32 add 1 "wan1" firewall 2 pass inout nolog ping 192.168.21.14/32 xxx.xxx.xxx.xxx/32 add 1 "wan1" firewall 3 pass inout nolog ping 0.0.0.0/0 0.0.0.0/0 add 1 "wan1"...

  • Page 201: Internet Connection Using Nat And Static Nat Addresses

    Internet Connection using NAT and Static NAT Addresses Router in Slot 1 ISP Router that provides the Internet connection. Router with NAT and Static NAT addresses. Command set clock1 a:1 set 1 default disconnect a:1 disconnect 1 set a:1:all type data connect a:1:all 1:1:1 rename 1 "LocalUnit"...
  • Page 202 Router Configuration Internet Connection using NAT and Static NAT Addresses Command add 1 "wan1" static ip network 0.0.0.0 0.0.0.0 1 add 1 "wan1" static nat address 192.168.21.14 216.174.44.232 add 1 "wan1" static nat address 192.168.21.15 216.174.44.233 add 1 "wan1" static nat address 192.168.21.16 216.174.44.234 add 1 "wan1"...

  • Page 203: Back-To-Back With Ppp

    Back-to-Back with PPP The following configuration will set up two Routers back-to-back with PPP. Boulder 1.1.1.1/24 Boulder Router in Slot 1 Command set 1 default disconnect a:1 disconnect 1 set a:1:all type data connect a:1:all 1:1:1 rename 1 "LocalUnit" "Boulder" rename 1 "RemoteUnit"...

  • Page 204: Denver Router In Slot 1

    Router Configuration Back-to-Back with PPP Denver Router in Slot 1 Command set 1 default disconnect a:1 disconnect 1 set clock1 a:1 set a:1:all type data connect a:1:all 1:1:1 rename 1 "LocalUnit" "Denver" rename 1 "RemoteUnit" "wan1" set 1:1 ip address 2.2.2.1 255.255.255.0 set 1:1 phy auto set 1 "wan1"...

  • Page 205: Back-To-Back With Frame Relay

    Back-to-Back with Frame Relay The following configuration will set up two Routers back-to-back with Frame Relay. Boulder 1.1.1.1/24 Boulder 1.1.1.1/24 Boulder Router in Slot 1 Command set clock1 internal set 1 default disconnect a:1 disconnect 1 set a:1:all type data connect a:1:all 1:1:1 rename 1 "LocalUnit"...

  • Page 206: Denver Router In Slot 3

    Router Configuration Back-to-Back with Frame Relay set 1 "wan1" dlci 101 reset 1 Denver Router in Slot 3 Command set 3 default disconnect a:1 disconnect 3 set clock1 a:1 set a:1:all type data connect a:1:all 3:1:1 rename 3 "LocalUnit" "Denver" rename 3 "RemoteUnit"...

  • Page 207: User Events

    In this Appendix User Events Authenticate Events Triggered Events Alarms PPENDIX User Events...

  • Page 208: User Events

    User Events User Events User Events Description “access” login terminated Adit Initialized “IP Address” was dynamically assigned by “remote” Login accepted at “access” level Login rejected Password changed for “access” level Port “X” connected Port “X” down System Date/Time Change recorded Terminal inactivity, login terminated IP Router - Release 1.8...

  • Page 209: Authenticate Events

    Authenticate Events Description “sysname” failed to authenticate us using CHAP “sysname” failed to authenticate us using PAP Authentication successful to “remote” using CHAP Authentication successful to “remote” using PAP Authentication failure to “remote” using CHAP Authentication failure to “remote” using CHAP CHAP secret mismatch Authentication failure to “remote”...

  • Page 210: Triggered Events

    User Events Triggered Events Triggered Events Description Triggered IPX Network request from “X” Triggered IPX Server request (to) from “X” Triggered 802.3 IPX Server update (to) from “X” Triggered 802.3 IPX Network update (to) from “X” Triggered 802.2 IPX Server update (to) from “X” Triggered 802.2 IPX Network update (to) from “X”...

  • Page 211: Alarms

    Alarms Data integrity fault detected and corrected This is logged when the unit detects and recovers from a loss of data synchronization. Dedicated trunk connection on Port “X” lost Description [Local LAN, “remote”] [IPX SAP, IPX RIP] [“server name”,“network”] exists at [Local LAN,“remote”] MAC Address Table is full Triggered 802.3 IPX (Eth II IP) network update to “remote”...
  • Page 212 User Events Alarms IP Router - Release 1.8...

  • Page 213: Ethernet Protocol Types

    In this Appendix Protocol Number in Firewall Filters Ethernet Protocol Types PPENDIX Protocol Types...

  • Page 214: Protocol Number In Firewall Filters

    Protocol Types Protocol Number in Firewall Filters Protocol Number in Firewall Filters In the Router cards we can filter based on protocol numbers in the Firewall Filters (WAN). See Firewall Filters on page 5-29 for Firewall instructions and See Service on page 5-33 for the field where this protocol number is entered.
  • Page 215 Number Keyword LEAF-2 IRTP ISO-TP4 NETBLT MFE-NSP MERIT-INP IDPR IDPR-CMTP TP++ IPv6 SDRP IPv6-Route IPv6-Frag IDRP RSVP MHRP I-NLSP SWIPE NARP MOBILE IP Router - Release 1.8 Protocol Number in Firewall Filters Protocol Leaf-2 Reliable Data Protocol Internet Reliable Transaction ISO Transport Protocol Class 4 Bulk Data Transfer Protocol NFE Network Services Protocol...
  • Page 216 Protocol Types Protocol Number in Firewall Filters Number Keyword TLSP SKIP IPv6-ICMP IPv6-NoNxt IPv6-Opts CFTP SAT-EXPAK KRYPOTOLAN IPPC SAT-MON VISA IPCV CPNX CPHB BR-SAT-MON SUN-ND WB-MON WB-EXPAK ISO-IP VMTP SECURE-VMTP VINES NSFNET-IGP Protocol Transport Layer Security Protocol using Kryptonet key management SKIP ICMP for IPv6 No Next Header for IPv6...
  • Page 217 Number Keyword EIGRP OSPFIGP Sprite-RPC LARP AX.25 IPIP MICP SCC-SP ETHERIP ENCAP GMTP IFMP PNNI ARIS SCPS IPComp Compaq-Peer IPX-in-IP VRRP L2TP IATP IP Router - Release 1.8 Protocol Number in Firewall Filters Protocol EIGRP OSPFIGP Sprite RPC Protocol Locus Address Resolution Protocol Multicast Transport Protocol AZ.25 Frames IP-within-IP Encapsulation Protocol...
  • Page 218 Protocol Types Protocol Number in Firewall Filters Number Keyword ISIS over IPv4 FIRE CRTP CRUDP SSCOPMCE IPLT PIPE SCTP RSVP-E2E-IGNORE 135-254 Protocol SpectraLink Radio Protocol Performance Transparency Protocol Combat Radio Transport Protocol Combat Radio User Datagram Secure Packet Shield Private IP Encapsulation within IP Stream Control Transmission Protocol [Stewart] Fibre Channel Unassigned...

  • Page 219: Ethernet Protocol Types

    Ethernet Protocol Types This table defines the protocol types that would used by the LAN Protocol filters. The associated Hex number is entered into the Ethernet Value field see, Defining Protocol Filters on page 4-23. 0000-05DC 1010-01FF 0200 0201 0600 0800 0801 0802...
  • Page 220 Protocol Types Ethernet Protocol Types DESCRIPTION 0BAD Banyan Systems Inc. 1000 Berkeley trailer negotiation 1001-100F Berkeley Trailer encapsulation 1600 VALID 4242 BXS Basic Block Protocol 5208 BBN Simnet Private 6000 DEC Unassigned 6001 DEC MOP Dump/Load Assistance 6002 DEC MOP Remote Console 6003 DEC DECnet Phase IV 6004...
  • Page 221 DESCRIPTION 7020-7029 LRT (England) 7030 Proteon 7034 Cabletron 8003 Cronus VLN 8004 Cronus Direct 8005 HP Probe protocol 8006 Nestar 8008 AT&T 8010 Excelan 8013 SGI diagnostic type (obsolete) 8014 SGI network games (obsolete) 8015 SGI reserved type (obsolete) 8016 SGI "bounce server"...
  • Page 222 Protocol Types Ethernet Protocol Types DESCRIPTION 803B DEC Unassigned 803C DEC Unassigned 803D DEC Ethernet CSMA/CD Encryption Protocol 803E DEC Unassigned 803F DEC LAN Traffic Monitor 8040 DEC Unassigned 8041 DEC Unassigned 8042 DEC Unassigned 8044 Planning Research Corporation 8046 AT&T 8047 AT&T...
  • Page 223 DESCRIPTION 8068 General Dynamics 8069 AT&T 806A Autophon (Switzerland) 806C ComDesign 806D Compugraphic Corporation 806E-8077 Landmark Graphics Corporation 807A Matra (France) 807B Dansk Data Elektronic A/S (Denmark) 807C Merit Internodal 807D VitaLink Communications 807E VitaLink Communications 807F VitaLink Communications 8080 VitaLink Communications bridge 8081 Counterpoint Computers...
  • Page 224 Protocol Types Ethernet Protocol Types DESCRIPTION 809D Datability 809E Datability 809F Spider Systems, Ltd. (England) 80A3 Nixdorf Computer (West Germany) 80A4-80B3 Siemens Gammasonics Inc. 80C0 Digital Communication Associates 80C1 Digital Communication Associates 80C2 Digital Communication Associates 80C3 Digital Communication Associates 80C6 Pacer Software 80C7...
  • Page 225 DESCRIPTION 80E0-80E3 Allen-Bradley 80E4-80F0 Datability 80F2 Retix 80F3 Kinetics, AppleTalk ARP (AARP) 80F4 Kinetics 80F5 Kinetics 80F7 Apollo Computer 80FF-8103 Wellfleet Communications 8107 Symbolics Private 8108 Symbolics Private 8109 Symbolics Private 8130 Waterloo Microsystems 8131 VG Laboratory Systems 8137 Novell (old) NetWare IPX (ECONFIG E Option) 8138 Novell 8139-813D...
  • Page 226 Protocol Types Ethernet Protocol Types B-14 IP Router - Release 1.8...

  • Page 227: In This Appendix

    In this Appendix Communication Related Issues LAN Related Issues Diagnostics and Performance Tools Verification Statistics System Reports PPENDIX Troubleshooting...

  • Page 228: Route Entries

    Troubleshooting Communication Related Issues Communication Related Issues Excessive Triggered Update Events on the Events screen This generally is an indication that the network is changing due to the addition or deletion of hardware. Once the information has been exchanged, these events should subside.
  • Page 229 Unable to connect to anything outside the LAN from LAN host Ping the Router LAN IP address Is the ping Is the Link LED successful Host & LAN IP in the same subnet Reboot host and reinitialize router Statistics:Run-Time Check Remote Conns Remote Conns 1 encapsulation is correct Check WAN profile...

  • Page 230: Unable To Access The Local (Lan) Router Unit Via Telnet

    Troubleshooting LAN Related Issues Unable to access the Local (LAN) Router unit via Telnet First, verify that the local Router was given an IP Address that is on the same network as the workstation. Since Telnet uses the IP protocol, establish that IP is functioning correctly by “pinging”...

  • Page 231: Diagnostics And Performance Tools

    Diagnostics and Performance Tools The Verification, Statistics and System Reports features are instrumental in diagnosing and troubleshooting the Router card. IP Router - Release 1.8 Troubleshooting Diagnostics and Performance Tools...

  • Page 232: Verification

    Troubleshooting Diagnostics and Performance Tools Verification The Verification section may be used to identify suspected communication problems between the local and remote devices. Verification options are: Ping Utility Verifies the ability of the local unit to communicate by pinging remote or local devices.

  • Page 233: System Reports

    System Reports The System Reports menu presents data that may be useful in identifying WAN communication problems. Events The Events listing offers on-going historical activity for the Router, while the Alarm listing indicates events that suggest further investigation. See Events on page 9-2 for more information regarding this feature.

  • Page 234: Identify Alarm

    Troubleshooting Alarms Alarms Identify Alarm Alarm indicators Router LEDs - When an Alarm is triggered, the Router LED (labeled CRD) will display a red indicator light, which will stay on until the Alarm is cleared The following chart describes each LED, and it’s state, of the Router card. 10/100 State Description...

  • Page 235: Display Alarms

    Troubleshooting Alarms Display Alarms To display Router alarms: On the Main Menu, System Reports option select <Alarms - >, or use the ] to scroll to Alarms if it not displayed. PACEBAR This Window provides a listing of any Alarms that have occurred on the Router. Each Alarm is listed separately and the Count field will display a value of 1.

  • Page 236: Clear Alarm

    Troubleshooting Alarms Clear Alarm Once an alarm is identified then the process of clearing it can begin. Silence Alarm, if necessary (Alarm Cut Off CLI command: aco) Check Connection Check Cable, replace if necessary Check hardware and replace if necessary Call Customer Service C-10 IP Router - Release 1.8...
  • Page 237 Annex D A frame relay standard extension dealing with the communication and signaling between customer premises and equipment and frame relay network equipment for the purpose of querying network status information. B8ZS Bipolar 8-Zero Substitution, a coding scheme that maintains ones density.
  • Page 238 Glossary Filter Firewall Frame Hops Loopback Mbps Glossary - 2 Domain Name Servers, also known as resolvers, are a system of computer which convert domain names into IP addresses, which consist of a string of four numbers up to three digits each. An operating parameter used with routers that can be set to block the transfer of packets from one LAN to another.
  • Page 239 Ping Protocol RADIUS SNMP Spanning Tree IP Router - Release 1.8 Packet InterNet Grouper. PING is a program used to test whether a particular network destination on the Internet is online (i.e. working) by repeatedly bouncing a "signal" off a specified address and seeing how long that signal takes to complete the round trip.
  • Page 240 Glossary SNMP SNMP Telnet Trunk Glossary - 4 Simple Network Management Protocol. SNMP is the most common method by which network managements applications can query a management agent using a supported MIB (Management Information Base). SNMP operates at the OSI application layer. Trunk Level 1.
  • Page 241 Index Numerics 100T Full Duplex ..... . . 4-43 Half Duplex ..... . . 4-43 Full Duplex .
  • Page 242 Index Remote Unit Profile ....6-9 Router Identification ....6-4 Routing Protocol/Security .
  • Page 243 Enhanced Security ..... 2-6 Esc Key ......1-2 Eth II .
  • Page 244 Index IP Address ....6-11 IP Firewall Significant Bits ....5-34 IPX .
  • Page 245 LocalUnit ......4-6 Secondary IP Address ....4-40 Setup .
  • Page 246 Index Ping Utility ......7-2 Port Monitor ......7-9 Port Name .
  • Page 247 Mode Send ..... . . 3-3 Security ......3-7 SNMP .
  • Page 248 Index IP Address ......7-4 MAC Address ..... . 7-4 Result .
  • Page 249 SysLog ....3-21 System Log Message Service ..3-20 System Date and Time ....2-4 System Log Message Service .
  • Page 250 Index Verification Ping Utility ......7-2 Port Monitor ..... . . 7-9 Trace Route .

Table of Contents

Save PDF