Patton electronics IPLink 2603 Getting Started Manual
  1. Manuals
  2. Brands
  3. Patton electronics Manuals
  4. Network Router
  5. Patton IPLink 2603
  6. Getting started manual

Patton electronics IPLink 2603 Getting Started Manual

Iplink series high speed routers
Hide thumbs Also See for IPLink 2603:
Table of Contents

Advertisement

Quick Links

Download this manual
Models 2603, 2621, and 2635
IPLink Series High Speed Routers
Getting Started Guide
Important
This is a Class A device and is intended for use in a light industrial environment. It is not intended nor approved for use in an industrial
or residential environment.
Sales Office:
+1 (301) 975-1000
Technical Support:
+1 (301) 975-1007
E-mail:
support@patton.com
WWW:
www.patton.com
Document Number: 03328U1-001 Rev. B
Part Number: 07M2600Ser-GS

Advertisement

Table of Contents
loading

Related Manuals for Patton electronics IPLink 2603

Summary of Contents for Patton electronics IPLink 2603

  • Page 1 Models 2603, 2621, and 2635 IPLink Series High Speed Routers Getting Started Guide Important This is a Class A device and is intended for use in a light industrial environment. It is not intended nor approved for use in an industrial or residential environment.
  • Page 2 Patton Electronics Company, Inc. 7622 Rickenbacker Drive Gaithersburg, MD 20879 USA Tel: +1 (301) 975-1000 Fax: +1 (301) 869-9293 Support: +1 (301) 975-1007 Web: www.patton.com E-mail: support@patton.com Copyright © 2008, Patton Electronics Company. All rights reserved. The information in this document is subject to change without notice. Patton Elec- tronics assumes no liability for errors that may appear in this document.

  • Page 3: Summary Table Of Contents

    Summary Table of Contents General Information............................17 Product Overview............................24 Initial Configuration ............................. 27 Ethernet LAN Port ............................40 Serial Port Configuration ..........................44 WAN Services ..............................50 Security ................................. 68 DHCP and DNS Configuration........................82 IP Services ..............................93 System Configuration............................

  • Page 4: Table Of Contents

    Contents Summary Table of Contents ......................... 3 Contents ................................. 4 List of Figures ............................... 10 List of Tables ..............................12 About this guide ............................13 Audience................................13 Structure................................13 Precautions ................................14 Safety when working with electricity .......................15 General observations ............................15 Factory default parameters ............................
  • Page 5 Contents Models 2603, 2621, and 2635 Getting Started Guide Installing an interface cable on the IPLink 2635’s V.35 interface port ............33 Installing the AC power cord ..........................34 Installing the Ethernet cable ..........................36 IP address modification ...........................37 Web Operation and Configuration .........................37 PC Configuration .............................37 Web Browser .............................37 4 Ethernet LAN Port ............................
  • Page 6 Models 2603, 2621, and 2635 Getting Started Guide Contents Remote Site Configuration .........................63 Central site configuration ........................66 7 Security ................................. 68 Introduction ................................69 Configuring the router ............................69 Configuring the security interfaces.........................71 Configuring Security Policies ..........................73 Deleting a security Policy ..........................74 Enabling the Firewall.............................74 Firewall Portfilters ..............................74 Security Triggers..............................75...
  • Page 7 Contents Models 2603, 2621, and 2635 Getting Started Guide Website Settings ..............................101 Error Log................................102 SNMP Daemon ..............................102 System Tools ...............................103 11 SNTP Client Configuration ........................104 Introduction ................................105 Configuring the SNTP Client ..........................105 SNTP Client Mode Configuration Parameters .....................105 SNTP Client General Configuration Parameters ..................106 System Clock Setting............................106 12 System Status...............................
  • Page 8 Models 2603, 2621, and 2635 Getting Started Guide Contents T1/E1 Interface ..............................119 Protocol Support ..............................120 PPP Support................................120 Management ...............................120 Security ................................121 Dimensions .................................121 Power and Power Supply Specifications.......................121 AC universal power supply ........................121 48 VDC power supply ..........................121 C Cable Recommendations ..........................122 Ethernet Cable ..............................123 Adapter................................123 D IPLink Physical Connectors ........................
  • Page 9 Contents Models 2603, 2621, and 2635 Getting Started Guide...

  • Page 10: List Of Figures

    List of Figures IPLink Series Router (Model 2635 shown) ........... . 20 Sync Serial Application .
  • Page 11 Models 2603, 2621, and 2635 Getting Started Guide New Policy link to configuration webpage ........... . 73 Deleting a Security Policy .

  • Page 12: List Of Tables

    List of Tables General conventions ..............16 Status LED descriptions .

  • Page 13: About This Guide

    About this guide This guide describes installing and configuring Patton Electronics IPLink Series High Speed Routers. The instructions in this guide are based on the following assumptions: • The router may connect to a serial DTE device or T1/E1 line •...

  • Page 14: Precautions

    Models 2603, 2621, and 2635 Getting Started Guide About this guide Precautions Notes, cautions, and warnings, which have the following meanings, are used throughout this guide to help you become aware of potential problems. Warnings are intended to prevent safety hazards that could result in per- sonal injury.

  • Page 15: Safety When Working With Electricity

    Models 2603, 2621, and 2635 Getting Started Guide About this guide Safety when working with electricity • This device contains no user serviceable parts. The equipment shall be returned to Patton Electronics for repairs, or repaired by qualified service personnel. WARNING •...

  • Page 16: Factory Default Parameters

    Models 2603, 2621, and 2635 Getting Started Guide About this guide Factory default parameters IPLink Series High Speed Routers have the following factory default parameters. • Ethernet IP address: 192.168.200.10/24 • WAN Connection: PPP Bridged • Ethernet and serial connections •...

  • Page 17: General Information

    Chapter 1 General Information Chapter contents IPLink Series High Speed Routers overview ......................18 General attributes ............................18 Ethernet ................................19 Protocol support .............................19 PPP Support ..............................19 WAN Interfaces ..............................19 Management ..............................19 Security ................................20 Front Panel Status LEDs and Console Port .....................20 Console port .............................21 Rear panel connectors and switches .........................21...

  • Page 18: Iplink Series High Speed Routers Overview

    Models 2603, 2621, and 2635 Getting Started Guide 1 • General Information IPLink Series High Speed Routers overview The IPLink Series of gateway routers/bridges combine full set of high-speed IP routing features and WAN access via PPP/IP/FR protocols. All IPLink routers come with an auto-sensing full-duplex 10/100Base-T Ethernet port, MDI-X cross-over switch, console port, and internal or external power supply.

  • Page 19: Ethernet

    Models 2603, 2621, and 2635 Getting Started Guide 1 • General Information Ethernet • Auto-sensing full-duplex 10Base-T/100Base-TX Ethernet. • Standard RJ-45 connector • Built-in MDI-X cross-over switch. • IEEE 802.1d transparent learning bridge • 2 IP address/subnets on Ethernet interface. Protocol support •...

  • Page 20: Security

    Models 2603, 2621, and 2635 Getting Started Guide 1 • General Information • Logging via SYSLOG, and VT-100 console. Console port set at 9600 bps 8/N/1 settings no flow control. Security • Packet filtering firewall for controlled access to and from LAN/WAN. Support for 255 rules in 32 filter sets. 16 individual connection profiles.

  • Page 21: Console Port

    Models 2603, 2621, and 2635 Getting Started Guide 1 • General Information Table 2. Status LED descriptions (Continued) T1/E1 Link Green Solid green: connected Off: disconnected On: indicates a T1/E1 loss-of-frame condition. It also indicates that no T1/E1 signal is detected. Green Green: indicates a binary ‘0’...

  • Page 22: Power Connector

    Models 2603, 2621, and 2635 Getting Started Guide 1 • General Information • Power input connector • Ethernet connector • MDI-X switch • WAN port (V.35, X.21, T1/E1) Power connector AC universal power supply. The IPLink Series router offers internal or external AC power supply options. •...
  • Page 23 Models 2603, 2621, and 2635 Getting Started Guide 1 • General Information IPLink Series High Speed Routers overview...

  • Page 24: Product Overview

    Chapter 2 Product Overview Chapter contents Introduction ................................25 Applications Overview............................26...

  • Page 25: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 2 • Product Overview Introduction The IPLink Series Router operates as a bridge or a router and has two ports for communication: • The Ethernet port—Connects to the LAN side of the connection •...

  • Page 26: Applications Overview

    Models 2603, 2621, and 2635 Getting Started Guide 2 • Product Overview Applications Overview Patton’s IPLink Gateway routers deliver all the advanced features for secure, reliable, and high speed Internet data connections. They combine ease-of-use with powerful data routing to make shared Internet connectivity simple and easy.

  • Page 27: Initial Configuration

    Chapter 3 Initial Configuration Chapter contents Hardware installation ............................28 What you will need ............................28 Interface cable installation ..........................28 Installing an interface cable on the IPLink 2603’s T1/E1 interface port ............29 Installing an interface cable on the IPLink 2621’s X.21 interface port ............31 Installing an interface cable on the IPLink 2635’s V.35 interface port ............33...

  • Page 28: Initial Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration Hardware installation If you are already familiar with IPLink Series Router installation and configuration, this chapter will enable you to finish the job quickly. Installation consists of the following: •...

  • Page 29: Installing An Interface Cable On The Iplink 2603'S T1/E1 Interface Port

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration Installing an interface cable on the IPLink 2603’s T1/E1 interface port The IPLink Models 2603/K and 2603/T come with a selectable T1/E1 WAN interface (see figure 4). Located on the back of the IPLink, the T1 and E1 interfaces are presented on an RJ-48C connector with selectable line impedances of 100-ohms for T1 and 120-ohms for E1 lines (see figure...

  • Page 30: Rear View Of The 2603/K Showing Location Of Ethernet And Wan Connectors

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration RX connector TX connector (BNC) (BNC) 10/100 Crossover Power MDI-X Ethernet Ethernet connector WAN connector (RJ-45) (RJ-48C) / 1 0 I - X Figure 6. Rear view of the 2603/K showing location of Ethernet and WAN connectors The interface cable has been installed, go to section “Installing the AC power cord”...

  • Page 31: Installing An Interface Cable On The Iplink 2621'S X.21 Interface Port

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration Installing an interface cable on the IPLink 2621’s X.21 interface port The IPLink Model 2621 comes with an X.21 interface presented on a female DB-15 connector (see figure This interface can be configured as a DTE (factory default), or as a DCE via internal configuration jumper.

  • Page 32: Case Being Opened With A Screwdriver

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration When the local third party equipment is configured as DTE, the Model 3086 X.21 serial port can be config- ured as DCE, and a regular straight-through cable can then be used. Do the following to configure the X.21 port as a DCE: 1.

  • Page 33: Installing An Interface Cable On The Iplink 2635'S V.35 Interface Port

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration 4. Re-assemble the case. The interface cable has been installed, go to section “Installing the AC power cord” on page 34. Installing an interface cable on the IPLink 2635’s V.35 interface port The IPLink Model 2635 comes with a V.35 interface presented on a DB-25 female connector (see figure 10).

  • Page 34: Installing The Ac Power Cord

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration Note The IPLink comes with a V.35 cable configured as a tail-circuit. Use this cable to interconnect the IPLink’s V.35 port to a device configured as a DCE. 2635 IPLink Modem V.35...

  • Page 35: Power Connector Location On Rear Panel (Model 2603/T Shown)

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration Figure 12. Power connector location on rear panel (Model 2603/T shown) The IPLink router power supply automatically adjusts to accept an input voltage from 100 to 240 VAC (50/60 Hz). Verify that the proper voltage is present before plugging the CAUTION power cord into the receptacle.

  • Page 36: Installing The Ethernet Cable

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration t e w i n k i p L o l e Model 2603 ipLink Gateway High Speed WAN Access Router Console Ethernet Power WAN Link WAN TD Ethernet Ethernet Tx Ethernet Rx...

  • Page 37: Ip Address Modification

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration 7. A message will display, “Login Successful.” By typing the character “?”, all the commands will be displayed. Login: superuser Password: ********* Login successful --> 8. Any commands’ parameters may be seen by entering the command followed by a space and a question mark.

  • Page 38: Model 2603 Home Page

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration 2. Enter the IPLink router’s IP address into the URL or Address field of the browser. To see the IPLink Series router home page, refer to the following Figures. Model 2603 is shown in figure Model 2621 in figure...

  • Page 39: Model 2635 Home Page

    Models 2603, 2621, and 2635 Getting Started Guide 3 • Initial Configuration Figure 16. Model 2635 home page Hardware installation...

  • Page 40: Ethernet Lan Port

    Chapter 4 Ethernet LAN Port Chapter contents Introduction ................................41 LAN Connections ............................41 Ethernet Port ..............................41...

  • Page 41: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 4 • Ethernet LAN Port Introduction The Ethernet LAN interface/port can be configured with two IP addresses, a primary and a secondary IP address. The configuration web page is found by following the path -> Services Configuration (in the Configu- ration Menu) ->...

  • Page 42: Basic Ethernet Port Attributes

    Models 2603, 2621, and 2635 Getting Started Guide 4 • Ethernet LAN Port Figure 18. Basic Ethernet port attributes For additional statistical parameters and a few configurable parameters, click on the hyperlink View advanced attributes... (See figure 19.) Figure 19. Advanced Ethernet port attributes The three configurable parameters are all either ‘true’...
  • Page 43 Models 2603, 2621, and 2635 Getting Started Guide 4 • Ethernet LAN Port • Full Duplex Mode: the default value is ‘true’ for Full Duplex operation. Setting it to ‘false’ configures the Ethernet port to operate only in half-duplex mode. Rarely do these parameters require a change from their default operation.

  • Page 44: Serial Port Configuration

    Chapter 5 Serial Port Configuration Chapter contents WAN Serial Port Configuration ..........................45 Serial Interface ..............................45 Variables ..............................45 Web Interface Configuration ........................46 T1/E1 Interface Configuration ........................46 Configuring the IPLink Series 2603 for T1 Operation ................47 Web Configuration ..........................47 Configuring the IPLink Series 2603 for E1 Operation ................48 Web Configuration ..........................

  • Page 45: Wan Serial Port Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration WAN Serial Port Configuration The IPLink Series routers use a sync.-serial interface (X.21, V.35) or a T1/E1 interface for connection to stan- dard WAN services. Below are the configuration options for the WAN interface. Serial Interface The serial interface configuration menus allow the user to configure the serial interface for HDLC based con- nections.

  • Page 46: Web Interface Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration Web Interface Configuration The following screen capture shows the variables available to configure the X.21 serial interface. Figure 21. Model 2621 X.21 serial port configuration parameters The next figure shows the Model 2635 (V.35) serial port configuration parameters. Figure 22.

  • Page 47: Configuring The Iplink Series 2603 For T1 Operation

    Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration Figure 23. Model 2603 T1/E1 WAN port configuration parameters Configuring the IPLink Series 2603 for T1 Operation Web Configuration. Launch Netscape, Internet Explorer or similar web browser, type the IP address of the 2603, enter username and password .

  • Page 48: Configuring The Iplink Series 2603 For E1 Operation

    Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration Time Slot Select. For a T1 using all 24 time slots enter 1-24, for fractional T1 enter in any format for example: 1,2,3,5; or 1-5,10-24. Any entry for timeslots above 24 will return an invalid-selection message. Line Options: Fractional T1 Line Code: The 2603 uses B8Zs and AMI.
  • Page 49 Models 2603, 2621, and 2635 Getting Started Guide 5 • Serial Port Configuration Time Slot Select. For unframed E1 service (Clear Channel) go to the “Line Option” parameter and select “Clear Channel E1 (G.703).” For a full framed E1 enter 1-31, for partially filled E1 enter the range of timeslots using the format for example: 1,2,3,5;...

  • Page 50: Web Configuration

    Chapter 6 WAN Services Chapter contents WAN Services ...............................51 Configuring the IPLink Series 2603 for E1 Operation ................51 Web Configuration ..........................51 WAN Service Configuration..........................52 PPP Configuration ............................52 PPP Bridged ..............................52 PPP Bridged Remote Site Configuration ..................... 52 Central Site Configuration ........................

  • Page 51: Wan Services

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services WAN Services Configuring the IPLink Series 2603 for E1 Operation Web Configuration. Launch Internet Explorer or similar web browser, type the IP address of the 2603, enter username and password .

  • Page 52: Wan Service Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services Once all options have been selected, click on the button at the bottom of the screen. Configure and Activate Additionally, save the configuration by going to the System Configuration > Save menu. This concludes the E1 interface configuration via the web browser, go to section “WAN Service Configuration”...

  • Page 53: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services Figure 28. WAN services’ options 4. In the Description field, enter the description you wish. This is a mandatory field. Without a description, you cannot create the WAN service. Verify the settings to be: •...

  • Page 54: Ppp Routed

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services 1. Bring up the web-page management system on your browser by entering the IP address of the IPLink 2. On the Menu, go to Services Configuration, then to WAN. Delete the factory default WAN services already defined.
  • Page 55 Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services 3. Click on Create a new service in the main window, select “PPP routed” and click on the button. Continue In the Description field, enter the description you wish. In this example, it is called PPP Routed. •...

  • Page 56: Edit Ip Address Of Wan Port

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services 6. Click on Create Figure 31. Edit IP address of WAN port 7. Click on Services Configuration > IP Routes > Create new Ip V4 Route. Create the gateway to the remote router by entering the WAN IP address of the remote router, in this example, enter 192.168.164.3 in the Gateway field.

  • Page 57: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services Figure 33. PPP link status Central Site Configuration. If the router at the ISP or Central site is another IPLink series, follow the instruc- tions below. If not, consult your third party router user manual for configuration. See the web pages for the desktop above.

  • Page 58: Lmi Management (Frame Relay Links)

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services • Username: [blank] • Password: [blank] Click on the Create button. 4. Go to Services Configuration > WAN > Edit... (for PPP routed) > Edit ‘IP Interface’ > Ipaddr: [enter the WAN IP Address and Mask, in this example = 192.168.164.3 and 255.255.255.255].

  • Page 59: Lmi Configuration Options

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services LMI Configuration Options. The Frame Relay Local Management Interface is configurable through either the CLI or web interface on the IPLink Series. The following variables are available for configuration. •...

  • Page 60: Frame Relay Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services All LMI configuration variables are contained under the “LMI Management” window found through the Ser- vices Configuration >LMI Management link. The following screen shows the configuration variables available. Figure 34.

  • Page 61: Frame Relay Bridged

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services Frame Relay bridged This application shows configuration for two IPLink units in bridged mode. If using a third party router at the Central site, review the router’s configuration for connection to a remote bridge. Remote Site Configuration.

  • Page 62: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services • Encapsulation type: Bridged Ether (Defines the RFC 1490 encapsulation type to be used by the channel. In some instances you may need to choose another type. Consult your service provider.) •...

  • Page 63: Frame Relay Routed

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services 4. Enter the description for the circuit in the Description field. This is a mandatory field. Without a descrip- tion you cannot create a WAN service. 5. Click on Create a new service in the main window, select Frame relay bridged and click on the Configure button.
  • Page 64 Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services 2. On the Menu, go to Services Configuration, then to WAN. Delete the factory default WAN services already defined. 3. Click on Create a new service in the main window, select “Frame Relay routed” and click on Continue. 4.
  • Page 65 Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services Figure 39. Frame Relay Channel - Routed configuration Edit Frame Relay Channel Enter the appropriate information in the following fields: • Dlci: Consult with your service provider for the DLCI number required, in this example use 45. •...

  • Page 66: Central Site Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services • Cost: 1 • Interface: frame-0 Figure 40. IP route for Frame Relay routed application 12. Click on the Update button. This concludes the configuration of the remote site. Be sure to save the configuration in non-volatile memory by System Configuration >...
  • Page 67 Models 2603, 2621, and 2635 Getting Started Guide 6 • WAN Services – Enable NAT on this interface. In this example leave this option blank 5. Click the Create button. 6. Go to System Configuration > WAN > Edit (for Frame Relay Routed service) > Edit ‘IP Interface’ 7.

  • Page 68: Security

    Chapter 7 Security Chapter contents Introduction ................................69 Configuring the router ............................69 Configuring the security interfaces.........................71 Configuring Security Policies ..........................73 Deleting a security Policy ..........................74 Enabling the Firewall.............................74 Firewall Portfilters ..............................74 Security Triggers..............................75 Intrusion Detection System (IDS) .........................78 Introduction to NAT.............................80 Enabling NAT ..............................80 Global address pool and reserved map...

  • Page 69: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Introduction Security provides the ability to setup and enforce security policies. The policies define the types of traffic per- mitted to pass through a gateway, either inbound, outbound, or both, and from which origins the traffic may be allowed to enter.

  • Page 70: Ppp Routed Wan Service For Security Firewall Example

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Figure 41. PPP routed WAN service for Security Firewall example 6. Click on Edit in the WAN Connections webpage, and then click on the Edit ‘Ip Interface’ hyperlink. 7. In the Edit Ip Interface webpage, enter the fields as follows and click on the Create button. (See figure 42.) Ipaddr: 192.168.101.1...

  • Page 71: Configuring The Security Interfaces

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security 3. Enter 192.168.101.2 in the box adjacent to Gateway. 4. Leave Destination and Netmask both as 0.0.0.0 because this is the gateway default route. 5. Click on the Update button. 6.
  • Page 72 Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Figure 44. Security configuration home page 2. Go to the third section (Security Interfaces) on the Security Interface Configuration webpage. Click on the hyperlink Add interface... 3. Select ‘ip1’ beside the Name pull-down menu, and select ‘internal’ beside the Interface Type pull-down menu.

  • Page 73: Configuring Security Policies

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Figure 46. Define ‘ppp-0’ interface as External Configuring Security Policies Continue the previous example by defining security policies. We will add only one Firewall policy, called etoi, signifying an external-to-internal policy between the external and internal interfaces. 1.

  • Page 74: Deleting A Security Policy

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Deleting a security Policy To delete a security policy, go to the table of ‘Current Security Policies’ and click on the Delete button for the selected security policy. Figure 49. Deleting a Security Policy Enabling the Firewall At this point, both security and the firewall can be enabled and the network is secure.

  • Page 75: Security Triggers

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Protocol Abbreviation Number RSVP OSPFIGP IPIP This example continues to allow pings over the firewall: 1. From the Configuration Menu, > Configuration > Security > Security Policy Configuration... > Port Filters... >...
  • Page 76 Models 2603, 2621, and 2635 Getting Started Guide 7 • Security 4. Set Inbound as Block, but Outbound as Allow. (See figure 51.) 5. Click on Create. Figure 51. Configuring TCP port filter for FTP After configuring the FTP portfilter, you can open an ftp session from Remote to Local, however you can issue ftp commands (e.g., login, cd, etc.).

  • Page 77: Adding Trigger For Ftp Data Transfer

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Figure 52. Adding trigger for FTP data transfer You should now be able to use FTP commands to pass data between Remote and Local. Security Triggers...

  • Page 78: Intrusion Detection System (Ids)

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Intrusion Detection System (IDS) The security feature in the IPLink Router provides protection from a number of attacks. Some attacks cause a host to be blacklisted (i.e., no traffic from that host is accepted under any circumstances) for a period of time. Other attacks are simply logged.
  • Page 79 Models 2603, 2621, and 2635 Getting Started Guide 7 • Security – Victim Protection Block Duration:Default = 600 seconds (10 minutes). Sets the duration of the block in seconds. – Maximum TCP Open Handshaking Count:Default = 100 Sets the maximum number of unfinished TCP handshaking sessions per second that are allowed by a firewall before a SYN Flood is detected.

  • Page 80: Introduction To Nat

    Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Introduction to NAT The basic steps for configuring NAT are: 1. Enable NAT between the internal and external interfaces of the firewall. 2. Create global addresses which will be added to the global pool of IP addresses on the WAN interface. 3.
  • Page 81 Models 2603, 2621, and 2635 Getting Started Guide 7 • Security Click on Add Global Address Pool button. Figure 53. NAT Global Address Pool configuration 4. Next, create a reserved mapping between a global IP address from the global pool and a PC on the side of the internal interface (’ip1’).

  • Page 82: Dhcp And Dns Configuration

    Chapter 8 DHCP and DNS Configuration Chapter contents Introduction ................................83 Services and features normally associated with each other ................83 DHCP Server ..............................84 Parameters for the DHCP Server subnet ....................86 IP Addresses to be available on this subnet ....................87 DNS server option information .........................88 Default gateway option information ......................89...

  • Page 83: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Introduction The routers offer a DHCP Server, DHCP Relay capability, and DNS Relay incorporated into the IPLink. Of the two DHCP features, only one can be enabled at a time-either DHCP server or DHCP relay. DNS relay can hold two DNS server IP addresses in memory so the DNS relay can forward DNS queries and responses between the host user and the DNS server.

  • Page 84: Dhcp Server

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Table 4. Features and services matrix The feature in this column [...] with (Column 1 feature) Configured Cannot be Must be Usually used Can be used Rarely used Feature used used...

  • Page 85: Dhcp Server Web Page

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 55. DHCP Server web page The server needs to have a subnet of IP addresses which will be allocated when a DHCP client makes a request. Define the subnet by clicking on the hyperlink Create new Subnet...

  • Page 86: Parameters For The Dhcp Server Subnet

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 56. DHCP server configuration web page Parameters for the DHCP Server subnet Four parameters are in the section for defining the DHCP subnet. (See figure 57.) Figure 57.

  • Page 87: Ip Addresses To Be Available On This Subnet

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration The third parameter is • Get subnet from IP interface: If you use this option, then you will not enter any values in the first two parameters.

  • Page 88: Dns Server Option Information

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 59. Example based on default range of IP address pool DNS server option information When a client requests an IP address from a DHCP server, the server can also send the IP addresses of the pri- mary and secondary DNS servers’...

  • Page 89: Default Gateway Option Information

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Default gateway option information The IPLink is the gateway all client traffic when Use local host as default gateway is checked (see figure 61). Additional option information You may wish to provide additional information to the clients on the DHCP subnet.

  • Page 90: Dhcp Relay Webpage

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration • Edit DHCP server list: The IP addresses of DHCP servers can be updated, reset, or deleted from the list. • Add new DHCP server: the IP addresses of the DHCP servers are added to the DHCP relay list in this sec- tion.

  • Page 91: Dns Relay

    Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 63. DHCP Relay server list DNS Relay The DNS Relay webpage contains a configurable list of DNS server IP addresses. The IPLink’s DNS Relay for- wards DNS queries from a client to a pre-defined DNS server and DNS server responses to the client.
  • Page 92 Models 2603, 2621, and 2635 Getting Started Guide 8 • DHCP and DNS Configuration Figure 65. DNS Relay configuration webpage You can change the IP address of the DNS servers on the DNS Relay webpage (see figure 66) by modifying the IP address requiring the change and clicking on the Update button.

  • Page 93: Ip Services

    Chapter 9 IP Services Chapter contents IP Services ................................94 WEB Server ..............................94 CLI Configuration ............................94 Associated Ports for the different System (IP) Services ..................95...

  • Page 94: Ip Services

    Models 2603, 2621, and 2635 Getting Started Guide 9 • IP Services IP Services Certain System Services can be enabled or disabled. They are DNS Relay, FTP, TFTP, SNMP, and the WEB Server. The importance of disabling any of these services is an issue of security. If you are not using a particular service, it is best to disable it.

  • Page 95: Associated Ports For The Different System (Ip) Services

    Models 2603, 2621, and 2635 Getting Started Guide 9 • IP Services Associated Ports for the different System (IP) Services This section is for information purposes only. Consult the table to identify which ports are associated with the different System (IP) Services. Table 5.

  • Page 96: System Configuration

    Chapter 10 System Configuration Chapter contents Introduction ................................97 Authentication...............................97 Alarm ..................................98 Remote Access ...............................99 Update ................................100 Save ..................................100 Backup/Restore ..............................100 Restart .................................101 Website Settings ..............................101 Error Log................................102 SNMP Daemon ..............................102 System Tools ...............................103...

  • Page 97: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Introduction The System Configuration item on the Configuration Menu opens to provide access to twelve (12) different items. They are: • Authentication: allows you to control access to the IPLink’s console and web configuration pages. •...

  • Page 98: Alarm

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration • creating a Username • defining the Password • give the user ability to configure the IPLink or read-only authority • add a comment useful to the administrator Figure 69.

  • Page 99: Remote Access

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration remain. Only by clicking on the Reset button can you clear the alarm and reset the Time and Count parame- ters. The parameter definitions are: • Alarm Severity: there are five categories of severity-Critical, Major, Minor, Informational, and Ignore. •...

  • Page 100: Update

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Update To upgrade the IPLink to another software version, select the software image by clicking on the Browse button. The software is a ‘.tar’ file. (See figure 73.) After selected, the software is downloaded to the IPLink. Wait until the upload has completed.

  • Page 101: Restart

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Figure 75. Saving or reloading previously saved configuration files Restart From this webpage, you can do a soft reboot of the IPLink or restore the IPLink to factory defaults. To restore to factory defaults, click on the box for Reset to factory default settings.

  • Page 102: Error Log

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Error Log The Error Log webpage shows recent configuration errors and provides for the configuration of the Syslog. (See figure 78.) Two parameters are configurable for the Syslog. •...

  • Page 103: System Tools

    Models 2603, 2621, and 2635 Getting Started Guide 10 • System Configuration Figure 79. SNMP Daemon configuration The Trap Table identifies the IP address of the SNMP trap along with its password. System Tools The System Tools webpage provides two utilities for testing network connectivity. The two utilities are ‘ping’ and ‘traceroute.’...

  • Page 104: Sntp Client Configuration

    Chapter 11 SNTP Client Configuration Chapter contents Introduction ................................105 Configuring the SNTP Client ..........................105 SNTP Client Mode Configuration Parameters .....................105 SNTP Client General Configuration Parameters ..................106 System Clock Setting............................106...

  • Page 105: Sntp Client Configuration

    Models 2603, 2621, and 2635 Getting Started Guide 11 • SNTP Client Configuration Introduction The Simple Network Time Protocol (SNTP) Client webpage contains the configurable parameters for either setting up the SNTP client or, in the abscence of an SNTP server, setting the internal clock. If you plan the use of an SNTP server, you will configure the ‘SNTP Client Mode Configuration Parameters’...

  • Page 106: Sntp Client General Configuration Parameters

    Models 2603, 2621, and 2635 Getting Started Guide 11 • SNTP Client Configuration SNTP Client General Configuration Parameters The general configuration parameters for the SNTP client are for selecting your timezone and setting the poll- ing parameters for the client’s transmit packets. •...
  • Page 107 Models 2603, 2621, and 2635 Getting Started Guide 11 • SNTP Client Configuration Figure 83. Configuration of the internal system calendar clock After entering the system clock values, click on the Set Clock button to save in volatile memory. If the IPLink is rebooted, either soft or by power-cycling, the Clock Setting returns to its default value. System Clock Setting...

  • Page 108: System Status

    Chapter 12 System Status Chapter contents System Status...............................109 Port Connection Status ..........................109 LAN Status ..............................110 WAN Status ..............................110 Hardware Status ............................110 Defined Interfaces ............................110 Status LEDs.................................111...

  • Page 109: System Status

    Models 2603, 2621, and 2635 Getting Started Guide 12 • System Status System Status A quick but thorough summary of the IPLink’s status is provided on this webpage, but it also has links to the detailed webpages for the key subsystems of the IPLink. The webpage is divided into six (6) sections: •...

  • Page 110: Lan Status

    Models 2603, 2621, and 2635 Getting Started Guide 12 • System Status LAN Status There are two hyperlinks, LAN Settings... and DHCP Server Settings..., which go to the ‘LAN Connections’ and ‘DHCP Server’ webpages, respectively. The other parameters shown in LAN Status are as follows: •...

  • Page 111: Status Leds

    Models 2603, 2621, and 2635 Getting Started Guide 12 • System Status Status LEDs The LEDs indicate the status of the Power, the WAN, Sync Serial port, and the Ethernet connection. All LED indicators will present the same looking profile (e.g., clear) when unlit due to being single color, water clear, high efficiency LEDs.

  • Page 112: Contacting Patton For Assistance

    Chapter 13 Contacting Patton for assistance Chapter contents Introduction ................................113 Contact information............................113 Patton support headquarters in the USA .......................113 Alternate Patton support for Europe, Middle East, and Africa (EMEA) ............113 Warranty Service and Returned Merchandise Authorizations (RMAs)..............113 Warranty coverage ............................113 Out-of-warranty service ...........................114 Returns for credit...

  • Page 113: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide 13 • Contacting Patton for assistance Introduction This chapter contains the following information: • “Contact information”—describes how to contact PATTON technical support for assistance. • “Warranty Service and Returned Merchandise Authorizations (RMAs)”—contains information about the RAS warranty and obtaining a return merchandise authorization (RMA).

  • Page 114: Out-Of-Warranty Service

    Models 2603, 2621, and 2635 Getting Started Guide 13 • Contacting Patton for assistance Out-of-warranty service Patton services what we sell, no matter how you acquired it, including malfunctioning products that are no longer under warranty. Our products have a flat fee for repairs. Units damaged by lightning or other catastro- phes may require replacement.
  • Page 115 Appendix A Compliance information Chapter contents Compliance .................................116 ................................116 Safety ................................116 PSTN Regulatory ............................116 Radio and TV Interference (FCC Part 15) ......................116 CE Declaration of Conformity ..........................116 Authorized European Representative ........................117...

  • Page 116: A Compliance Information

    Models 2603, 2621, and 2635 Getting Started Guide A • Compliance information Compliance • FCC Part 15, Class A • EN55022, Class A • EN55024 Safety • UL60950-1/CSA C22.2 No. 60950-1 • IEC/EN 60950-1 • AS/NZS 60950-1 PSTN Regulatory • These devices are not intended for connection to the PSTN.

  • Page 117: Authorized European Representative

    Models 2603, 2621, and 2635 Getting Started Guide A • Compliance information Authorized European Representative D R M Green European Compliance Services Limited. Avalon House, Marcham Road Abingdon, Oxon OX14 1UD, UK Authorized European Representative...
  • Page 118 Appendix B Specifications Chapter contents General Characteristics ............................119 Ethernet ................................119 Sync Serial Interface ............................119 T1/E1 Interface ..............................119 Protocol Support ..............................120 Support................................120 Management ...............................120 Security ................................121 Dimensions .................................121 Power and Power Supply Specifications.......................121 AC universal power supply ........................121 48 VDC power supply ..........................121...

  • Page 119: B Specifications

    Models 2603, 2621, and 2635 Getting Started Guide B • Specifications General Characteristics • Compact low-cost router/bridge • 10/100 Ethernet • Unlimited host support. • Comprehensive hardware diagnostics, works with any operating system, easy maintenance and effortless installation. • Built-in web configuration. •...

  • Page 120: Protocol Support

    Models 2603, 2621, and 2635 Getting Started Guide B • Specifications Protocol Support • Complete internetworking with IP (RFC 741), TCP (RFC 793), UDP (RFC 768), ICMP (RFC 950), ARP (RFC 826). • IP Router with RIP (RFC 1058), RIPv2 (RFC 2453), •...

  • Page 121: Security

    Models 2603, 2621, and 2635 Getting Started Guide B • Specifications Security • Packet filtering firewall for controlled access to and from LAN/WAN. Support for 255 rules in 32 filter sets. 16 individual connection profiles. • DoS Detection/protection. Intrusion detection, Logging of session, blocking and intrusion events and Real- Time alerts.
  • Page 122 Appendix C Cable Recommendations Chapter contents Ethernet Cable ..............................123 Adapter................................123...

  • Page 123: C Cable Recommendations

    Models 2603, 2621, and 2635 Getting Started Guide C • Cable Recommendations Ethernet Cable Ethernet cable (P/N 10-2500) (refer to “RJ-45 shielded 10/100 Ethernet port” on page 125) The interconnecting cables shall be acceptable for external use and shall be rated for the proper application with respect to volt- age, current, anticipated temperature, flammability, and CAUTION mechanical serviceability.

  • Page 124: D Iplink Physical Connectors

    Appendix D IPLink Physical Connectors Chapter contents RJ-45 shielded 10/100 Ethernet port........................125 RJ-45 non-shielded RS-232 console port (EIA-561)....................125 Serial port................................126 V.35 (M/34 and DB-25 Connector) ......................126 X.21 (DB-15 Connector) ..........................127 E1/T1 (RJ-48C Connector) ..........................128...

  • Page 125: Rj-45 Shielded 10/100 Ethernet Port

    Models 2603, 2621, and 2635 Getting Started Guide D • IPLink Physical Connectors RJ-45 shielded 10/100 Ethernet port Assuming the MDI-X switch is in the out position. Table 7. Ethernet Port (MDI-X switch in out position) Pin No. Signal Name Direction from IPLink from IPLink...

  • Page 126: Serial Port

    Models 2603, 2621, and 2635 Getting Started Guide D • IPLink Physical Connectors Serial port V.35 (M/34 and DB-25 Connector) The Model 2635 has a DB-25 connector for the V.35 interface. table 9 provides the pinouts for the M/34 and DB-25 connectors.

  • Page 127: Connector)

    Models 2603, 2621, and 2635 Getting Started Guide D • IPLink Physical Connectors X.21 (DB-15 Connector) The X.21 interface in the Model 2621 may be configured for either DTE or DCE. Default is DCE. Table 10. X.21 Interface (Model 2621) Pin No.

  • Page 128: E1/T1 (Rj-48C Connector)

    Models 2603, 2621, and 2635 Getting Started Guide D • IPLink Physical Connectors E1/T1 (RJ-48C Connector) The T1/E1 transmit signals are not polarity sensitive, even though they have the traditional designation of Tip and Ring. Table 11. T1/E1 Port Pin No. Signal Receive (Ring) Receive (Tip)

  • Page 129: E Command Line Interface (Cli) Operation

    Appendix E Command Line Interface (CLI) Operation Chapter contents Introduction ................................130 CLI Terminology ..............................130 Local (VT-100 emulation) ..........................130 Remote (Telnet) ............................130 Using the Console ............................130 Administering user accounts ..........................132 Adding new users ............................132 Setting user passwords ...........................132 Changing user settings ..........................133 Controlling login access ...........................133...

  • Page 130: Introduction

    Models 2603, 2621, and 2635 Getting Started Guide E • Command Line Interface (CLI) Operation Introduction The modem configuration and status can also be view and modified through the console, which is accessible through the RS-232 serial port or through a Telnet session over Ethernet. CLI Terminology In order to use the CLI commands, you need to understand the following CLI terms: •...
  • Page 131 Models 2603, 2621, and 2635 Getting Started Guide E • Command Line Interface (CLI) Operation By entering a keyword followed by a space and “?” the options available will print immediately without press- ing enter. The previously entered commands are reprinted on the next lines. For example: ethernet ?[After typing the “?”...

  • Page 132: Administering User Accounts

    Models 2603, 2621, and 2635 Getting Started Guide E • Command Line Interface (CLI) Operation ip interface ip1 list secondaryipaddresses <enter> Secondary IP addresses for interface: ip1 ID | IP Address -----|----------------- ----------------------- In this example there was not a secondary IP address. Now save the entire configuration in nonvolatile FLASH mem- ory with the following command.

  • Page 133: Changing User Settings

    Models 2603, 2621, and 2635 Getting Started Guide E • Command Line Interface (CLI) Operation Note No check is made for any current password which may have been set for the user. If you wish to change the password for another user, enter the command: user change <username>...

This manual is also suitable for:

Iplink 2621Iplink 2635

Table of Contents