Contents Preface........................xvi Purpose of this Manual .....................xvi Intended Audience......................xvii Standards and Protocols..................... 1 Background Reading ......................2 Publicly Accessible Documents ..................2 Conventions used in command definitions ................. 3 CHAPTER 1 System Management.................. 4 Logging into the CLI......................4 Serial Connection........................
Page 5
AT-RG 600 Residential Gateway – Software Reference Manual webserver enable|disable ....................27 webserver set interface..................... 28 webserver set managementip................... 28 webserver set port ......................29 webserver set upnpport ....................29 webserver show info ......................29 webserver show stats ....................... 30 Console Access Command Reference ................
Page 14
VoIP SIP Servers, Users & Forwarding Database............355 Introduction ........................355 SIP Servers........................356 Users..........................357 Forwarding Database (FDB)................... 359 VoIP SIP Command Reference ..................362 VoIP sip protocol CLI commands..................362 voip sip protocol disable....................362 voip sip protocol enable ....................363 voip sip protocol restart....................
Page 15
AT-RG 600 Residential Gateway – Software Reference Manual xiii Terminal Characteristics ....................388 Gateway and Gatekeeper Characteristics ..............388 Gateway Characteristics....................388 Gatekeeper Characteristics .................... 389 AT-RG613, AT-RG623 and AT-RG656 Call Processes ..........389 Calls Involving Another Terminal ..................389 Calls Involving a Terminal and a H.323 Endpoint............
Page 16
voip mgcp protocol show ....................418 voip mgcp callagent create ..................... 418 voip mgcp callagent delete ..................... 419 voip mgcp callagent list....................419 CHAPTER 19 VoIP QoS and Media ................421 Introduction ........................421 QoS..........................421 Media ..........................422 VoIP QoS Command Reference..................423 VoIP QoS CLI commands....................
Page 17
AT-RG 600 Residential Gateway – Software Reference Manual List of figures Figure 1. IP Packet overview........................... 38 Figure 2. Tagged frame format according to IEEE 802.3ac standard............. 54 Figure 3. VLAN and IP layer architecture (the greyed area surrounds the entities always available in the system) ..............................
AT-RG 600 Residential Gateway – Software Reference Manual Preface Purpose of this Manual This manual is the complete reference to the configuration, management and operation of the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway, and includes detailed descriptions of all management commands. AT-RG613, AT-RG623 and AT-RG656 are Customer Promise Equipment (CPE) designed to provide data and VoIP access for multiple users in Small Office/Home Office (SOHO), Small to Medium Enterprise (SME), Branch Offices or customer...
AT-RG 600 Residential Gateway – Software Reference Manual Standards and Protocols Supported Standards and Protocols Table 1 lists the protocols and standards supported by the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway and the references where these protocols and standards are defined. Protocol/standard Reference RFCs 826, 925.
Preface Group (IESG) of the Internet Engineering Task Force (IETF). For more information about the IESG and IETF, visit the IETF web site at http://www.ietf.org/. For more information about RFCs and Internet Drafts (the starting point for RFCs), visit the RFC Editor web site at http://www.rfc-editor.org/. This site has information about the RFC standards process, archives of RFCs and current Internet Drafts, links to RFC indexes and search engines, and a list of other RFC repositories.
AT-RG 600 Residential Gateway – Software Reference Manual Conventions used in command definitions A number of symbols, typographic and stylist conventions are used throughout this manual to help user in learning and to specify command syntax (see Table 2). This typeface Is used for Command keywords to be typed as shown.
Chapter 1 – System Management Chapter 1 System Management This chapter provides some basic instructions about how login to the CLI and the different types of user access. Logging into the CLI Itʹs possible to use two different connections in order to access the Command Line Interface: Serial Connection Itʹs possible to access the CLI interface through a serial connection using a terminal...
AT-RG 600 Residential Gateway – Software Reference Manual password: friend Command Line Interface and Console The CLI is the Command Line Interface used in the AT-RG613, AT-RG623 and AT- RG656 Residential Gateway to configure and manage the unit. It provides full access to the following system modules: console dhcp client dhcp relay...
Chapter 1 – System Management File System The AT-RG613, AT-RG623 and AT-RG656 application processes require that configuration information be accessible when they start up, and that configuration changes are retained for future operation. To fulfill the above requirements, two processes are provided, namely the ‘In Store File System’...
System Configuration Management The original way to manage the system configuration in AT-RG600 series was to save the information in the im.conf file (Information Model). The Information Model is written in ASCII code but it is not easily readable for the following reasons: •...
Page 28
Chapter 1 – System Management • It reports all the nodes and attributes present in the configuration, including all the attributes that are set to the default values. (On average an im.conf file is composed of five hundred rows but it can be much longer. The following picture shows a part of a generic im.conf file.
AT-RG 600 Residential Gateway – Software Reference Manual Please note that the System Config Management will be completed in a future version. Now the configuration file created on the device is created in the old im.conf format. AT-RG600 is able to manage completely both the formats. System Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to configure and manage the System module.
Chapter 1 – System Management SYSTEM SET USER ACCESS SYSTEM SET USER MAYCONFIGURE SYSTEM SET USER MAYDIALIN Please note that the following commands, used in previous versions of the software, have now been dismissed: SYSTEM CONFIG BACKUP SYSTEM CONFIG RESTORE {BACKUP|[filename]} SYSTEM CONFIG SAVE SYSTEM ADD USER Syntax SYSTEM ADD USER <name>...
AT-RG 600 Residential Gateway – Software Reference Manual SYSTEM DELETE USER SYSTEM ADD LOGIN Syntax SYSTEM ADD LOGIN <name> [ʺcommentʺ] Description This command adds a user to the system. Only a Superuser can use this command. Default setting The default settings in the table below are applied to new accounts that are added using the system add login command.
Chapter 1 – System Management It is possible to create at least eight configuration files, but when a configuration file is created using a filename that already exists, the new one will overwrite the old one even if it is the boot configuration file. Example -->...
AT-RG 600 Residential Gateway – Software Reference Manual • host = server where the TFTP or FTP server is running. It can be a hostname or an Ip address; • port = port used by the TFTP or FTP server; •...
Chapter 1 – System Management Example --> system config restore factory See also SYSTEM CONFIG CREATE SYSTEM CONFIG DELETE SYSTEM CONFIG GET SYSTEM CONFIG LIST SYSTEM CONFIG SET SYSTEM CONFIG SHOW Another safet way to restore the default configuration is to exec the following procedure: system config set factory system config restart...
AT-RG 600 Residential Gateway – Software Reference Manual SYSTEM CONFIG LIST SYSTEM CONFIG RESTORE FACTORY SYSTEM CONFIG SHOW SYSTEM CONFIG SHOW Syntax SYSTEM CONFIG SHOW {<filename>} Description The command shows the boot configuration file set on the device. If a filename is specified, the command shows the contents of the specified configuration file.
Description This command displays the vendor ID, URL, base MAC address and hardware and software version details of the current Residential Gateway system. Example --> system info Global System Configuration: Vendor: Allied Telesis K.K. URL: http://www.allied-telesis.co.jp/ MAC address: 00:0d:da:00:05:fe Hardware ver: RG613TX A2...
AT-RG 600 Residential Gateway – Software Reference Manual Description This command displays a system error log. The error log contains the following information: • the time (in minutes) that an error occured, calculated from the start of your login session •...
Chapter 1 – System Management • user ID number • user name • configuration permissions (enabled or disabled) • dialin permissions (enabled or disabled) • access level (default, engineer or super user) • comment (any comments that were included when the user was added to the system) Example -->...
AT-RG 600 Residential Gateway – Software Reference Manual SYSTEM LOG Syntax SYSTEM LOG {NOTHING|WARNINGS|INFO|TRACE|ENTRYEXIT|ALL} Description This command sets the level of output that is displayed by the CLI for various modules. Setting a level also implicitly displays the level(s) below it. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 1 – System Management • demonstrate how packets are processed and what they contain • display any error conditions that occur • For example ip rawip tracing shows that an IP packet has been received, sent or discarded due to an error. Brief details of the packet are displayed to identify it. The RIP and IP modules provide separate categories which are enabled and disabled independently.
Chapter 1 – System Management SYSTEM SET LOGIN ACCESS Syntax SYSTEM SET LOGIN <name> ACCESS {DEFAULT|ENGINEER|SUPERUSER} Description This command sets the access permissions of a user who has been added to the system using the SYSTEM ADD LOGIN command. Only a Super user can use this command.
AT-RG 600 Residential Gateway – Software Reference Manual SYSTEM SET LOGIN MAYDIALIN Syntax SYSTEM SET LOGIN <name> MAYDIALIN {ENABLED|DISABLED} Description This command sets dialin permissions for a user who has been added to the system using the SYSTEM ADD LOGIN command. Only a Super user can use this command.
Chapter 1 – System Management Description This command sets configuration permissions for a user who has been added to the system using the ADD SYSTEM USER command. Only a Super user can use this command. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual User Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to configure and manage system Users. User CLI commands The table below lists the user commands provided by the CLI: Command USER LOGOUT USER PASSWORD...
Page 46
Chapter 1 – System Management with this command and a default value (if applicable). Option Description Default Value A unique login name made up of more than name one character that identifies an individual user and lets the user access the system. Example -->...
AT-RG 600 Residential Gateway – Software Reference Manual Web Server Command Reference This chapter describes the Web Server CLI commands. Web Server CLI commands The table below lists the Web Server commands provided by the CLI: Command WEBSERVER CLEAR STATS WEBSERVER ENABLE|DISABLE WEBSERVER SET INTERFACE WEBSERVER SET...
Chapter 1 – System Management Example --> webserver disable WebServer is disabled WEBSERVER SET INTERFACE Syntax WEBSERVER SET INTERFACE <interface> Description This command specifies the name of an IP interface that the system will use for UPnP (Universal Plug and Play) communication with other devices on the local area network.
AT-RG 600 Residential Gateway – Software Reference Manual Management IP address is 192.168.102.3 WEBSERVER SET PORT Syntax WEBSERVER SET PORT <port> Description This command sets the HTTP port number that the Web Server process will use for accepting connections (from a WEB Browser). Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 1 – System Management Description This command displays the following information about the Web Server process: • EmWeb (Embedded Web Server) release details • Web Server enabled status (true or false) • Interface set • HTTP port set • UPnP port set •...
AT-RG 600 Residential Gateway – Software Reference Manual Console Access Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to access the Console module. The Console module is used only for engineer troubleshooting and is not supported a as user accessible module.
Chapter 1 – System Management portfilter: --> console process bridge portfilter portfilter 2 all portfilter 3 all See also CONSOLE ENABLE CONSOLE COMMAND - EXIT This console command has not been replaced by a CLI command. This is a special console command to allow Super users to return to the CLI from the console.
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 2 Switch Introduction The AT-RG613, AT-RG623 and AT-RG656 residential gateways include an integrated layer 2 managed switch providing 5 Fast Ethernet transceivers supporting 10Base-T and 100Base-TX modes, high performance memory bandwidth (wire speed) and an extensive feature set including tag port based VLAN, QoS priority, VLAN tagging and MIB counters.
Chapter 2 – Switch Learning The internal look up engine updates its table with a new entry in the following conditions: • the received packetʹs Source Address does not exist in the look up table; • the received packet is good: the packet has no receive errors and is of legal length. The look up engine inserts the qualified Source Address into the table, along with the port number and VLAN information (see below).
AT-RG 600 Residential Gateway – Software Reference Manual • If the VID is valid, the forwarding FID is retrieved. Both the combinations FID+DA (Destination Address) and FID+SA (Source Address) are looked for in the forwarding table. The FID+DA look up determines the forwarding ports. •...
Chapter 2 – Switch When the Infiltering is set to OFF the untagged packets are forwarded to the default VLAN (VID = 1). This is true for all the models but the ATRG656. For this platform it is possible set a “defaultvid”...
AT-RG 600 Residential Gateway – Software Reference Manual On the AT-RG613, AT-RG623 and AT-RG656 residential gateway, traffic is prioritized into two egress queues, high priority and low priority, according the following logic: • if the received frames are tagged, the User Priority field in the TAG header is compared with an internal value in the switch called the Base Priority: •...
Chapter 2 – Switch M AC Header PREAM BLE 7 octects 1 octects START FRAM E DELIM ITER DESTINATIO N ADDRESS 6 octects 6 octects SO URCE ADDRESS 2 octects LENGTH/TYPE = 802.1Q TagType header 2 octects TAG CO NTRO L INFO RM ATION user priority VLAN identifier VID (12 bit) 2 octects...
AT-RG 600 Residential Gateway – Software Reference Manual Switch Command Reference This section describes the commands available on the Residential Gateway to configure and manage switch ports and the address look up table. switch CLI commands The table below lists the switch commands provided by the CLI: Command SWITCH DISABLE AGEINGTIMER SWITCH DISABLE LEARNING...
Chapter 2 – Switch SWITCH DISABLE LEARNING Syntax SWITCH DISABLE LEARNING Description This command stops the learning engine used to update the look up table when frame are received from new Source Addresses. To restore the learning process, use the command.
AT-RG 600 Residential Gateway – Software Reference Manual To show the current switch status, use the command. SWITCH SHOW Example --> switch enable ageingtimer See also SWITCH DISABLE AGEINGTIMER SWITCH SHOW SWITCH ENABLE LEARNING Syntax SWITCH ENABLE LEARNING Description This command restarts the learning process used by the look up engine to update the fdb when frames from new addresses are received.
Chapter 2 – Switch Description This command completely resets the switch or resets and individual switch port if a port is specified. If no port is specified, all internal switch counters are reset and fdb entries removed. If a port is specified, only the selected port is reset without removing any fdb entries.
Page 63
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value One of the switch ports to be configured. Available ports are: • wan port-name • lan1 • lan2 • lan3 The priority value associated with the port. If the port is set to receive untagged frames, then if the port Default Priority is equal or greater than switch Base Priority, the frames default-priority...
Page 64
Chapter 2 – Switch (Available only on AT-RG656 platform) The infiltering parameter enables or disables Ingress Filtering of frames admitted on the specified ports. Each port on the switch belongs to one or more VLANs. If INFILTERING is Enabled then tagged packets arriving at the port will only be admitted if the VID in the packet’s tag is INFILTERING...
AT-RG 600 Residential Gateway – Software Reference Manual given. Examples To limit port reception rate to 10000 kbps, use the command: --> switch set port wan rcvlimit 10000 To limit broadcast traffic only to 3.3% of port bandwidth, use the command: -->...
Chapter 2 – Switch --> switch set qos 24,37 priority high SWITCH SET ROUTING-LIMIT Syntax SWITCH SET ROUTING-LIMIT <limit> Description This command set the maximum number of frame per seconds that the layer2 switch forward to the Residential Gateway network processor for routing purposes. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual UpTime The time in hours:minutes:seconds since the switch was last powered up, rebooted, or restarted. Base Priority The bottom end of the range of priority values assigned to the high priority egress queue. Routing-limit The maximum number of frame per sencond that the switch forwards to the processor.
Page 68
Chapter 2 – Switch parameter specifies the VLAN VLAN identifier of the VLAN for which the vlanname contents of the Forwarding Database are to be displayed. Examples To display all the fdb content: --> switch show fdb Switch Forwarding Database -------------------------------------------------------------------------- VLAN MAC address...
AT-RG 600 Residential Gateway – Software Reference Manual SWITCH SHOW PORT Syntax SWITCH SHOW PORT <port-name> [COUNTERS] Description This command displays general information about the specified switch port. Port Port reference. Status The admin status of the port; one of “ENABLED”...
Page 70
Chapter 2 – Switch 802.1p Priority The current status for Default Priority: one of “on” or ʺoffʺ Default Vlan Id The current value set for Default Vlan ID (Displaied only on AT-RG656 platform) If the counters parameter is specified the following information are reported: •...
Page 71
AT-RG 600 Residential Gateway – Software Reference Manual Pkts The number of packets. MulticastPkts The number of multicast packets. BroadcastPkts The number of broadcast packets. PauseMACctlFrms The number of PAUSE MAC Control frames. FrameWDeferrdTx The number of frames deferred once before successful transmission.
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 3 VLAN NTRODUCTION VLAN is a networking technology that allows networks to be segmented logically without having to be physically rewired. Many Ethernet switches support virtual LAN (VLAN) technologies. By replacing hubs with VLAN switches, the network administrator can create a virtual network within existing network.
Chapter 3 – VLAN An untagged frame or a priority-tagged frame does not carry any identification of the VLAN to which it belongs. Such frames are classified as belonging to a particular VLAN based on parameters associated with the receiving port. This classification mechanism requires the association of a specific VLAN ID, the Port VLAN Identifier, or PVID, with each of the switch ports.
Page 75
AT-RG 600 Residential Gateway – Software Reference Manual The tag header carries the following information (see Figure 2): • The Tag Protocol Identifier (TPID) carrying an Ethernet Type value (802.1QTagType), which identifies the frame as a tagged frame. The value of 802.1QTagType is 81-00 •...
Chapter 3 – VLAN Reserved for implementation use. This VID value shall not be configured as a PVID, configured in any Filtering Database entry, used in any Management operation, or transmitted in a tag header. Table 3. Reserved VID values. VLAN AT-RG600 SUPPORT ON...
AT-RG 600 Residential Gateway – Software Reference Manual • If a port is assigned to a VLAN as untagged, only untagged frames will be permitted • if the port is assigned to a VLAN as tagged, only tagged frames will be permitted. To change the tagged/untagged frame format of a port for a specific VLAN itʹs necessary remove the port from the VLAN with the VLAN DELETE command and then re-add the port to the VLAN with the VLAN ADD PORT command,...
AT-RG 600 Residential Gateway – Software Reference Manual Default Configuration VLAN Creation IP Interface Creation VLAN Port Adding IP Interface Config. VLAN Ethernet Transport Adding IP and VLAN Attach IP Interface on VLAN Figure 4. IP interface over VLAN - basic steps...
Chapter 3 – VLAN VLAN Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 residential Gateway to create, configure and manage VLANs. vlan CLI commands The table below lists the vlan commands provided by the CLI: Command VLAN ADD PORT VLAN ADD VID...
AT-RG 600 Residential Gateway – Software Reference Manual See also VLAN SHOW VLAN ADD VID Syntax VLAN ADD <vlanname> VID <vlanID> [802.1p_priority <priority>] Description This command defines a new VLAN which has the specified VID value. The VLAN name can be 16 characters length; it cannot start with a digit and cannot contain dots ʹ.ʹ...
Chapter 3 – VLAN To completely remove a VLAN it is necessary to first remove all port members of the vlan. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value...
Page 83
AT-RG 600 Residential Gateway – Software Reference Manual 802.1p Priority Untagged port(s) lan2 Tagged port(s) lan1 --------------------------------------------- See also VLAN ADD PORT VLAN ADD VID...
Chapter 4 – Emergency Chapter 4 Emergency This chapter describes the AT-RG624 and AT-RG634 emergency module to configure the system connectivity when running in recovery mode. NTRODUCTION As reported in section Error! Reference source not found. if the Residential Gateway flash file system is corrupted, the unit will start running a minimal operating system also called recovery.
AT-RG 600 Residential Gateway – Software Reference Manual The definition of a new vlan (different from the default) it’s necessary only if the connectivity to the residential gateway must be established via a 802.1Q tagged link. In this case the value of the 802.1Q field is equal to the vlan identifier VID specified in emergency create vlan command.
Chapter 4 – Emergency To display the active recovery configuration data use the emergency show command. To avoid any misalignment between the configuration stored in the E2PROM and the configuration reported in the im.conf file, the following situation are managed during the system bootstrap: e2prom recovery config.
Chapter 4 – Emergency also the difinition of which Ethernet port must be tagged for this vlan. To add an Ethernet port to the new vlan, use the EMERGENCY ADD command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual emergency delete vlan 2 EMERGENCY ADD See also EMERGENCY SHOW EMERGENCY UPDATE EMERGENCY SET DHCP EMERGENCY SET DHCP { ENABLE | DISABLE } Syntax Description This command is used to set the ip interface address used when the system runs in recovery mode to be dynamic or static.
Chapter 4 – Emergency Option Description Default value The default gateway ipaddress in IPv4 ip_address format (e.g. 192.168.1.254) Example emergency set ipinterface gateway 192.168.1.254 EMERGENCY SET IPINTERFACE See also EMERGENCY SHOW EMERGENCY UPDATE EMERGENCY SET IPINTERFACE IPADDRESS EMERGENCY SET IPINTERFACE IPADDRESS <ip_address> NETMASK <netmask> Syntax Description This command set the ip interface address and netmask to be used when the...
AT-RG 600 Residential Gateway – Software Reference Manual EMERGENCY CONFIGURATION - GENERAL PARAMETERS device ip address: 192.168.1.1 device netmask: 255.255.255.0 gateway ip address: 192.168.1.254 vlan tag id: vlan tagged port: LAN4 EMERGENCY UPDATE See also EMERGENCY UPDATE EMERGENCY UPDATE Syntax Description This command update the Residential Gateway e2prom with the new emergency configuration data.
Chapter 5 – IP Chapter 5 NTRODUCTION This chapter describes the main features of the Internet Protocol (IP) and how to configure and operate the AT-RG613, AT-RG623 and AT-RG656 IP interface. IP protocols are widely used and available on nearly all hosts and PC systems. They provide a range of services including remote login, file transfer and Email.
AT-RG 600 Residential Gateway – Software Reference Manual will arrive. Like an Internet, the postal system is very reliable. In an Internet, higher layers (such as TCP and Telnet) are responsible for ensuring that packets are delivered in a reliable and sequenced way. In contrast to a connectionless transport mechanism, a connection-oriented transport mechanism requires a connection to be maintained between the source and destination for as long as necessary to complete the exchange of packets...
Chapter 5 – IP Source IP address 32-bit IP address of the sender Destination IP 32-bit IP address of the recipient address Options An optional field primarily used for network testing or Debugging. Padding All bits set to zero—used to pad the datagram header to a length that is a multiple of 32 bits.
AT-RG 600 Residential Gateway – Software Reference Manual HOST CLASS A NETWORK NETWORK CLASS B HOST 1 1 1 CLASS C NETWORK HOST Figure 6. Subdivision of the 32 bits of an Internet address into network and host fields for class A, B and C networks. The addressing scheme is designed to allow routers to efficiently extract the host and network portions of an address.
Chapter 5 – IP Similarly 172.16.9.0 refers to any host on subnet 9, whereas 172.16.9.255 is a packet addressed to every host on subnet 9. The router uses this terminology to indicate where packets are to be sent. An address with ‘0’ in the host portion refers to ‘this particular host’ while an address with ‘0’...
AT-RG 600 Residential Gateway – Software Reference Manual This would give 254 subnets on a class B network, each with 254 hosts. 11111111.11111111.11111111.11110000 = 255.255.255.240 <------network--> <- --subnet-><host> This would give 4094 subnets on a class B network, each with 14 hosts or, 14 subnets on a class C network each with 14 hosts.
Chapter 5 – IP IP stack and incoming packets When a packet arrives on an IP interface, the IP stack determines whether: • the packet should be received locally; • the packet should be forwarded to another interface Locally received packets A packet will be received locally if: •...
AT-RG 600 Residential Gateway – Software Reference Manual No traffic will be forwarded from an unconfigured interface. However, an unconfigured interface may still receive certain types of traffic, such as responses to DHCP requests. An unconfigured interface should not be confused with an unnumbered interface. Unnumbered interfaces In a routed network, consider two routers that are joining two different subnets via a point-to-point link.
Chapter 5 – IP routing protocols. Router IDs are described in RFC1812 “Requirements for IP v4 Routers”. • 255.255.255.255 is a special subnet mask that identifies an unnumbered interface and distinguishes it from any other type of interface. You must also add a route before your unnumbered interface can send packets. Creating a route Because an unnumbered interface does not have a local subnet associated with it, no packets can be routed to an unnumbered interface until a route is added.
AT-RG 600 Residential Gateway – Software Reference Manual The original interface attached directly to a transport is called the real interface, and the interface that is attached to the real interface is called the virtual interface. To configure a virtual interface using the CLI: (i) Create the real interface, then create an Ethernet transport and attach the IP interface to the transport: ip add interface real_ip 192.168.101.2 255.255.255.0...
Chapter 5 – IP • Some applications are written to only respond to traffic received on a specific interface. For example, DHCP server. Because the traffic for all virtual interfaces is received in the same way as the real interface, the only reasonable way of selecting an interface is based on source address as described above.
AT-RG 600 Residential Gateway – Software Reference Manual Functionality of secondary IP addresses On Ethernet interfaces, secondary IP addresses must be on the same subnet as the interface. Secondary addresses may be added to virtual interfaces, as well as real interfaces.
Chapter 5 – IP Gateway provides routing to a LAN as well as terminating VoIP traffic. The IP stack can ensure that the VoIP application can send and receive packets with low packet loss and low latency even in the presence of other routed traffic, or traffic to other applications (like DHCP server, Firewall, etc).
AT-RG 600 Residential Gateway – Software Reference Manual To classify packets based on a specified protocol, use the following command. If the protocol you specify is TCP or UDP, you can also base the flow qualifier on the source and destination port of incoming packets: ip interface add fq protocol You can also classify packets based on the protocol and the source address of incoming packets, using:...
Page 106
Chapter 5 – IP • constrained throughput; the speed of the interfaces may be so fast that packets are sent to the IP stack faster than it can route them. Under heavy traffic, the throughput of the IP stack may be constrained by the amount of available processing power.
AT-RG 600 Residential Gateway – Software Reference Manual TCP/IP Command Reference This section describes the commands available on the Residential Gateway to manage the TCP/IP module. IP Tracing commands You can carry out tracing in the IP stack using the following system commands: •...
Page 108
Chapter 5 – IP IP INTERFACE CLEAR SECONDARYIPADDRESS IP INTERFACE DELETE FQ IP INTERFACE DELETE PROXYARPENTRIES IP INTERFACE DELETE PROXYARPEXCLUSION IP INTERFACE DELETE SECONDARYIPADDRESS IP INTERFACE LIST FQS IP INTERFACE LIST PROXYARPENTRIES IP INTERFACE LIST SECONDARYIPADDRESSES IP LIST ARPENTRIES IP LIST CONNECTIONS IP LIST INTERFACES IP LIST RIPROUTES IP LIST ROUTES...
AT-RG 600 Residential Gateway – Software Reference Manual IP SHOW DEBUGINFO IP SHOW INTERFACE IP SHOW ROUTE IP ADD DEFAULTROUTE GATEWAY Syntax IP ADD DEFAULTROUTE GATEWAY <gateway_ip> Description This command creates a default route. It acts as a shortcut command that can be used instead of typing the following: ip add route default 0.0.0.0 0.0.0.0 gateway 192.168.103.3 Itʹs possible to create only one default route.
Chapter 5 – IP To have RIP advertise a default route with a default cost metric, see the IP SET RIP ADVERTISEDEFAULT and IP SET RIP DEFAULTROUTECOST commands. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable) Option Description...
AT-RG 600 Residential Gateway – Software Reference Manual interface address is obtained automatically. For unnumbered interface, the IP address parameter is used to specify the router-id of the interface. The router-id should be the same as the IP address of one of the routerʹs numbered interfaces.
Chapter 5 – IP with this command and a default value (if applicable). Option Description Default Value An arbitrary name that identifies the route. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing IP name interface. To display interface names, use the IP LIST INTERFACES command. A number that identifies an existing IP interface. To display interface numbers, use number the IP LIST INTERFACES command.
Chapter 5 – IP A name that identifies an existing IP interface. This is the ‘Real’ interface that the virtual interface will be associated with. Real_interface This interface must already be attached to a transport. To display the interface names, use the IP LIST INTERFACES command.
AT-RG 600 Residential Gateway – Software Reference Manual Description This command clears all static routes that were created using the IP ADD ROUTE command. Example --> ip clear routes See also IP DELETE ROUTE IP DELETE INTERFACE Syntax IP DELETE INTERFACE {<name>|<number>} Description This command deletes a single IP interface that was created using the IP ADD INTERFACE command.
Chapter 5 – IP To display route numbers, use the IP LIST ROUTES command. The number appears in the first column under the heading ID. Example --> ip delete route route1 See also IP LIST ROUTES IP DETACH INTERFACE Syntax IP DETACH {<name>|<number>} Description This command detaches an IP interface from a transport (i.e.
AT-RG 600 Residential Gateway – Software Reference Manual interface. To display interface names, use the IP LIST INTERFACES command. A number that identifies an existing IP interface. To display interface numbers, use number the IP LIST INTERFACES command. The number appears in the first column under the heading ID.
Chapter 5 – IP interface. To display interface numbers, use the IP LIST INTERFACES command. The number appears in the first column under the heading ID. An arbitrary name that identifies the flow qualifier (fq). It can be made up of one or more letters or a combination of letters and fqname digits, but it cannot start with a digit.
AT-RG 600 Residential Gateway – Software Reference Manual Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value A name that identifies an existing IP name interface.
Chapter 5 – IP Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value A name that identifies an existing IP interface. To IP LIST name display interface names, use the...
AT-RG 600 Residential Gateway – Software Reference Manual Description This command configures proxy ARP functionality on an existing IP interface. This means that an interface responds to ARP requests for both its own address and for any address that has been configured as a proxy ARP address. You can configure proxy ARP functionality on a single address or a range of addresses.
Chapter 5 – IP A name that identifies an existing IP interface. To IP LIST name display interface names, use the INTERFACES command. A number that identifies an existing IP interface. IP LIST To display interface numbers, use the number INTERFACES command.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value name A name that identifies an existing IP interface. To display interface names, use the IP LIST INTERFACES command. A number that identifies an existing IP interface. To display interface numbers, use number the IP LIST INTERFACES command.
Chapter 5 – IP number appears in the first column under the heading ID. Example --> ip interface ip1 clear fqs See also IP LIST INTERFACES IP INTERFACE DELETE FQ IP INTERFACE CLEAR PROXYARPENTRIES Syntax IP INTERFACE {<name>|<number>} CLEAR PROXYARPENTRIES Description This command clears all proxy arp entries and exclusions that were created using the IP INTERFACE ADD PROXYARPENTRY and IP INTERFACE ADD PROXYARPEXCLUSION commands.
AT-RG 600 Residential Gateway – Software Reference Manual A name that identifies an existing IP name interface. To display interface names, use the IP LIST INTERFACES command. A number that identifies an existing IP interface. To display interface numbers, use number the IP LIST INTERFACES command.
Chapter 5 – IP IP INTERFACE DELETE PROXYARPENTRIES Syntax IP INTERFACE {<name>|<number>} DELETE PROXYARPENTRIES <entrynumber> Description This command deletes a single proxy arp entry that was created using the IP INTERFACE ADD PROXYARPENTRY command. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual A number that identifies an existing IP interface. To display interface numbers, use number the IP LIST INTERFACES command. The number appears in the first column under the heading ID. A number that identifies an existing ProxyArpExclusion entry on this IP interface.
Chapter 5 – IP See also IP LIST INTERFACES IP INTERFACE LIST SECONDARYIPADDRESSES IP INTERFACE LIST FQS Syntax IP INTERFACE {<name>|<number>} LIST FQS Description This command lists all flow qualifiers that have been added to an existing IP interface using the IP INTERFACE ADD FQS command. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing IP name interface. To display interface names, use the IP LIST INTERFACES command. A number that identifies an existing IP interface. To display interface numbers, use number the IP LIST INTERFACES command.
Chapter 5 – IP See also IP LIST INTERFACES IP LIST INTERFACE SECONDARYIPADDRESS IP LIST ARPENTRIES Syntax IP LIST ARPENTRIES Description This command displays the ARP table, which lists the following information: • IP addresses and corresponding MAC addresses obtained by ARP. •...
AT-RG 600 Residential Gateway – Software Reference Manual ---------------------------------------------------------------------- IP LIST INTERFACES Syntax IP LIST INTERFACES Description This command lists information about IP interfaces that were added using the ip add interface command. The following information is displayed: • interface ID numbers •...
Chapter 5 – IP IP RIP routes: Destination | Mask | Gateway | Cost | Time | Source ---------------|---------------|-----------------|------|------|------- 192.168.101.1 | 255.255.255.0 | 10.10.10.10 | 3000 | ip2 ----------------------------------------------------------------------- See also IP SET RIP HOSTROUTES IP SET INTERFACE RIP ACCEPT IP SET INTERFACE RIP SEND IP LIST ROUTES Syntax IP LIST ROUTES...
AT-RG 600 Residential Gateway – Software Reference Manual format (192.168.102.3) Example --> ip ping 192.168.102.3 ip: ping - reply received from 192.168.102.3 If ping was unsuccessful, the following output is displayed: ip: ping - no reply received. IP SET INTERFACE DHCP Syntax IP SET INTERFACE {<name>|<number>} DHCP {ENABLED|DISABLED} Description This command specifies whether a named interface should obtain its configuration via DHCP.
Chapter 5 – IP Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing IP name interface.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing IP name interface. To display interface names, use the IP LIST INTERFACES command. A number that identifies an existing IP interface. To display interface numbers, use number the IP LIST INTERFACES command.
Chapter 5 – IP The netmask of the interface displayed in the IPv4 format (e.g. 255.255.255.0) The special value 255.255.255.255 is used to netmask indicate an unnumbered interface. An unnumbered interface is configured by setting the IP address to the interface’s router-id value, and setting netmask to 255.255.255.255.
AT-RG 600 Residential Gateway – Software Reference Manual IP SET RIP HOSTROUTES IP SET RIP POISON IP SHOW IP LIST INTERFACES IP SET INTERFACE RIP MULTICAST Syntax IP SET INTERFACE {<name>|<number>} RIP MULTICAST {ENABLED | DISABLED} Description This command allows you to enable/disable whether RIP version 2 messages are sent via multicast.
Chapter 5 – IP Description This command specifies whether or not an existing interface can send RIP messages. You can specify which version of RIP messages will broadcast routing information on the interface. Routing information is broadcast every 30 seconds or when the RIP routing table is changed.
AT-RG 600 Residential Gateway – Software Reference Manual the interface MTU (Maximum Transmission Unit), the MSS option will be rewritten in order to allow TCP traffic to pass through the interface without requiring fragmentation. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 5 – IP IP ADD DEFAULTROUTE INTERFACE IP SET RIP DEFAULTROUTECOST IP SET RIP AUTHENTICATION Syntax IP SET RIP AUTHENTICATION {ENABLED | DISABLED} Description This command enables/disables RIP v2 plain text authentication. If enabled, a plain text authentication string is placed in RIP v2 packets. RIP v2 packets will only be accepted if they contain an authentication entry with the correct password string.
AT-RG 600 Residential Gateway – Software Reference Manual Example --> ip set rip defaultroutecost 10 See also IP ADD DEFAULTROUTE GATEWAY IP ADD DEFAULTROUTE INTERFACE IP SET RIP ADVERTISEDEFAULT IP SET RIP HOSTROUTES Syntax IP SET RIP HOSTROUTES {ENABLED | DISABLED} Description Specifies whether IP interfaces will accept RIP routes to specific routes.
Chapter 5 – IP Option Description Default Value An authentication password used by RIP v2 packets if ip set rip authentication is password enabled. The password is a string of 0 to 16 characters. Example --> ip set rip password vancouver See also IP SET RIP AUTHENTICATION IP SHOW IP SET RIP POISON...
AT-RG 600 Residential Gateway – Software Reference Manual Description This command sets the number of hops counted as the cost of the route for a route previously created using the IP ADD ROUTE command. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Chapter 5 – IP displayed in the IPv4 format (e.g. 192.168.102.3) The destination netmask displayed in the netmask IPv4 format (e.g. 255.255.255.0) Example --> ip set route route1 destination 192.168.103.3 255.255.255.0 See also IP SET ROUTE GATEWAY IP SET ROUTE COST IP LIST ROUTES IP SET ROUTE GATEWAY Syntax IP SET ROUTE {<name>|<number>} GATEWAY <gateway>...
AT-RG 600 Residential Gateway – Software Reference Manual IP SET ROUTE COST IP LIST ROUTES IP SET ROUTE INTERFACE Syntax IP SET ROUTE {<name>|<number>} INTERFACE {<interface>|NONE} Description This command sets the interface used by a route previously created by the IP ADD ROUTE command.
Chapter 5 – IP See also IP SET RIP HOSTROUTES IP SET RIP POISON IP SHOW INTERFACE Syntax IP SHOW INTERFACE {<name>|<number>} Description This command displays the following information about a named interface: • IP address and netmask (if set) •...
AT-RG 600 Residential Gateway – Software Reference Manual TCP MSS Clamp: disabled Accept RIP V1: true Send RIP V1: false Accept RIP V2: true Send RIP V2: false Multicast RIP V2: disabled See also IP SHOW IP SHOW ROUTE IP LIST INTERFACES IP SHOW ROUTE Syntax IP SHOW ROUTE {<name>|<number>} Description This command displays the following information about a named route:...
Chapter 6 – Transports Chapter 6 Transports This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 residential Gateway to manage the Transport module. Throughout this section, the syntax <transport_module> is used to generically represent a transport module like PPPOE or Ethernet. This module allows you to clear, delete, list and display information about existing transports that were created using the <transport_module>...
AT-RG 600 Residential Gateway – Software Reference Manual Transports CLI commands The table below lists the Transports commands provided by the CLI: Command TRANSPORTS CLEAR TRANSPORTS DELETE TRANSPORTS LIST TRANSPORTS SHOW TRANSPORTS CLEAR Syntax TRANSPORTS CLEAR Description This command deletes all transports that were created using the <transport_module> ADD TRANSPORT command.
Chapter 6 – Transports TRANSPORTS LIST Syntax TRANSPORTS LIST Description This command lists all currently existing transports. It displays the following information about the transports: • transport identification number • transport name • transport type (PPP or Ethernet) • Number of transmitted/received packets for each transport Example -->...
Page 151
AT-RG 600 Residential Gateway – Software Reference Manual If In Octets : 953676 If Out Octets : 8962 If In Errors If Out Errors Packets Sent : 142 Good Packets Received : 10726 Enabled : true Termination : Ip Interface: ip0 Ether Channel Port : ethernet0...
Chapter 7 – Ethernet Chapter 7 Ethernet This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 residential Gateway to manage the Ethernet module Ethernet CLI commands The table below lists the Ethernet commands provided by the CLI. Command ETHERNET ADD TRANSPORT ETHERNET CLEAR TRANSPORTS...
AT-RG 600 Residential Gateway – Software Reference Manual Example --> ethernet add transport voip See also ETHERNET LIST TRANSPORTS ETHERNET LIST PORTS VLAN SHOW ETHERNET CLEAR TRANSPORTS Syntax ETHERNET CLEAR TRANSPORTS Description This command deletes all ethernet transports that were created using the ETHERNET ADD TRANSPORT command.
Chapter 7 – Ethernet See also ETHERNET LIST TRANSPORTS ETHERNET LIST PORTS Syntax ETHERNET LIST PORTS Description This command lists the valid ports that can be used to transport ethernet data. Example --> ethernet list ports Valid port names: ethernet 0 ethernet 1 ETHERNET LIST TRANSPORTS Syntax ETHERNET LIST TRANSPORTS...
Page 155
AT-RG 600 Residential Gateway – Software Reference Manual TRANSPORTS command. Example --> ethernet show transport default Ethernet transport: default Description: Default Port: ethernet0 See also ETHERNET LIST TRANSPORTS...
Chapter 8 – Security & Firewall Chapter 8 Security & Firewall Introduction This section describes the AT-RG613, AT-RG623 and AT-RG656 built-in security facilities, and how to configure and monitor them. The Internet is a network that allows access to vast amounts of information and potential customers.
AT-RG 600 Residential Gateway – Software Reference Manual are transparent proxies, which pass all traffic between the two sessions without regard to the data. Stateful Inspection A more recent approach to security design uses a method called “stateful inspection”. Stateful inspection is also referred to as dynamic packet filtering or context-based access control (CBAC).
Chapter 8 – Security & Firewall Security module Firewall module module Figure 7. Security modules on AT-RG6xx Residential Gateway series. Security Interfaces On the AT-RG613, AT-RG623 and AT-RG656 it is possible to define three type of security interfaces interfaces : Internal, External and DMZ (see Figure 8) •...
Chapter 8 – Security & Firewall sessions. The table entry contains the IP addresses of the devices at each end of the session. Subsequently, if an incoming session-establishment packet arrives at the router, the source and destination addresses of the packet are compared against the entries in the table of currently open primary sessions.
AT-RG 600 Residential Gateway – Software Reference Manual In this case, when secondary sessions are successfully established, the source/destination addresses of the session will also be added to the table of currently open primary sessions. To set a trigger for a session chaining that will enable chaining of TCP sessions, use the SECURITY SET TRIGGER SESSIONCHAINING command.
Chapter 8 – Security & Firewall Policy A policy is a relationship between two security interfaces where it is possible to assign portfilter and validator rules between them. There are three different security interface combinations that Firewall policies can be created between: •...
AT-RG 600 Residential Gateway – Software Reference Manual Firewall policies li t refers to an interface combination (e.g. external-internal) policy policy policy portfilters li t could refer to ports and traffic direction Source/Destination portfilter could refer to transport protocol portfilter and traffic direction could refer to application and portfilter...
Page 164
Chapter 8 – Security & Firewall Intrusion Detection works differently for each type of attack: • For DOS (Denial of Service) attacks, itʹs possible to set three maximum parameter levels: • the maximum number of ICMP packets allowed before a flood is detected (using FIREWALL SET IDS MAXICMP command) •...
AT-RG 600 Residential Gateway – Software Reference Manual Security Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the Security module. Security CLI commands The table below lists the security commands provided by the CLI. Command SECURITY ADD INTERFACE SECURITY ADD TRIGGER TCP|UDP...
Chapter 8 – Security & Firewall security interface, and specifies what type of interface it is depending on how it connects to the network. Once security interfaces have been added, they can be used in the NAT and/or Firewall configurations. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual trigger. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. Adds a trigger for a TCP application to the security package.
Chapter 8 – Security & Firewall SECURITY CLEAR INTERFACES Syntax SECURITY CLEAR INTERFACES Description This command removes all security interfaces that were added to the Security package using the SECURITY ADD INTERFACE command. Example --> security clear interfaces See also SECURITY DELETE INTERFACE SECURITY CLEAR TRIGGERS Syntax SECURITY CLEAR TRIGGERS Description This command deletes all triggers that were added to the Security module using the...
AT-RG 600 Residential Gateway – Software Reference Manual the SECURITY ADD TRIGGER commands. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing trigger.
Chapter 8 – Security & Firewall SECURITY LIST INTERFACES Syntax SECURITY LIST INTERFACES Description This command lists the following information about security interfaces that were added to the Security package using the SECURITY ADD INTERFACE command: • Interface ID number •...
AT-RG 600 Residential Gateway – Software Reference Manual Description This command determines whether or not a UDP dynamic session can become also a triggering session. If UDP session chaining is enabled, both UDP and TCP dynamic sessions also become triggering sessions, which allows multi-level session triggering. UDP session chaining can be enabled only if a TCP session chaining is already enabled on the same trigger using the security set trigger sessionchaining command.
Chapter 8 – Security & Firewall in the packet header), then they are translated and the original addresses in the payload are replaced by the translated addresses. You can specify whether you want to carry out address replacement on TCP packets, on UDP packets or on both TCP and UDP packets.
AT-RG 600 Residential Gateway – Software Reference Manual Example --> security set trigger t5 binaryaddressreplacement enable See also SECURITY SET TRIGGER ADDRESSREPLACEMENT SECURITY LIST TRIGGERS SECURITY SET TRIGGER ENDPORT Syntax SECURITY SET TRIGGER <name> ENDPORT <portnumber> Description This command sets the end of the port number range for an existing trigger. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 8 – Security & Firewall SECURITY SET TRIGGER MULTIHOST Syntax SECURITY SET TRIGGER <name> MULTIHOST {ENABLE | DISABLE} Description This command sets whether or not a secondary session can be initiated to/from different remote hosts or the same remote host on an existing trigger. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual SECURITY SET TRIGGER STARTPORT Syntax SECURITY POLICY <name> SET TRIGGER STARTPORT <portnumber> Description This command sets the start of the port number range for an existing trigger. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 8 – Security & Firewall Description This command displays information about a single trigger that was added to the Security module using the SECURITY ADD TRIGGER command. The following trigger information is displayed: • Trigger name • Transport type (TCP or UDP) •...
Page 177
AT-RG 600 Residential Gateway – Software Reference Manual • Firewall session logging (enabled or disabled) • Firewall blocking logging (enabled or disabled) • Firewall intrusion logging (enabled or disabled) • NAT status (enabled or disabled) Example --> security status Security enabled. Firewall disabled.
Chapter 8 – Security & Firewall Firewall Command Reference This section describes the commands available on AT-RG613, AT-RG623 and AT- RG656 Residential Gateway to enable, configure and manage the Firewall module. Firewall CLI commands The table below lists the firewall commands provided by the CLI: Command FIREWALL ADD POLICY FIREWALL ADD PORTFILTER...
AT-RG 600 Residential Gateway – Software Reference Manual FIREWALL SHOW POLICY FIREWALL SHOW PORTFILTER FIREWALL SHOW VALIDATOR FIREWALL STATUS FIREWALL ADD POLICY Syntax FIREWALL ADD POLICY <name> {EXTERNAL-INTERNAL|EXTERNAL-DMZ|DMZ- INTERNAL} [ALLOWONLY-VAL]|[BLOCKONLY-VAL] Description This command creates a policy between two interface types. There are three types of policy that you can add to the firewall: •...
Chapter 8 – Security & Firewall cannot start with a digit. EXTERNAL- A connection between the external network INTERNAL interface and the internal network interface. A connection between the external network EXTERNAL- interface and the de-militarized zone (DMZ). A connection between the de-militarized DMZ- zone (DMZ) and the internal network INTERNAL...
Page 181
AT-RG 600 Residential Gateway – Software Reference Manual • specify one of the listed protocols, applications or services. These are provided by the Firewall as popular examples that you can use. You do not need to specify the portnumber - the Firewall does this for you. It is VERY IMPORTANT to understand that when portfilters are created for TCP or UDP, then the effect of the filter is to allow/disallow packets that are starting a UDP or TCP session.
Chapter 8 – Security & Firewall The following example allows IGMP (Internet Group Management Protocol) packets inbound from the external interface to the DMZ interface. IGMP is protocol number 2 (see http://www.ietf.org/rfc/rfc1700.txt). First, we need to create a policy: --> firewall add policy ext-dmz external-dmz Then we can add the portfilter to it: -->...
Page 183
AT-RG 600 Residential Gateway – Software Reference Manual • the direction of traffic that must be allowed/blocked Once a validator is added to a policy, specifying the IP address and direction values, the same validator can be reused adding the validator to other policies. In order to add validators to a Firewall policy, the policy must have been previously created, which defines how traffic is allowed/blocked, using the allowonly-val or blockonly-val options in the FIREWALL ADD POLICY...
Chapter 8 – Security & Firewall following directions (depending on the interfaces involved by the policy): from External to Internal and viceversa from External to DMZ and viceversa from DMZ to Internal and viceversa The IP address (or base address of the range of IP addresses) to which validator will apply.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing firewall policyname policy. To display policy names, use the FIREWALL LIST POLICIES command. Example --> firewall clear portfilters ext-int See also FIREWALL DELETE PORTFILTER FIREWALL LIST POLICIES FIREWALL DELETE POLICY Syntax FIREWALL DELETE POLICY <name>...
Chapter 8 – Security & Firewall FIREWALL LIST POLICIES command. Example --> firewall delete portfilter pf3 ext-int See also FIREWALL LIST POLICIES FIREWALL LIST PORTFILTERS FIREWALL CLEAR PORTFILTERS FIREWALL DELETE VALIDATOR Syntax FIREWALL DELETE VALIDATOR <name> <policyname> Description This command deletes a single validator from a named policy. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value ENABLE Enables the Firewall module DISABLE Disables the Firewall module.
Chapter 8 – Security & Firewall FIREWALL ENABLE|DISABLE BLOCKINGLOG Syntax FIREWALL {ENABLE | DISABLE} BLOCKINGLOG Description This command enables/disables whether Firewall blocking activity is logged. To display logging information, the SYSTEM LOG feature must be enabled. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual Description This command enables/disables whether Firewall session events are logged. To display logging information, the SYSTEM LOG feature must be enabled. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 8 – Security & Firewall • Portfilter name • Type - port number range or specified port number • Port range used by the specified TCP or UDP protocol (e.g., 53 for DNS, 25 for SMTP). For non-TCP/UDP protocols, the port range is set to 0-0. •...
AT-RG 600 Residential Gateway – Software Reference Manual • Host mask address Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing firewall policyname policy.
Chapter 8 – Security & Firewall (Denial of Service) attack. An attacker tries to flood the network with ICMP packets in order to prevent transportation of legitimate network traffic. Once the maximum number of ICMP packets per second is reached, an attempted ICMP Flood is detected.
AT-RG 600 Residential Gateway – Software Reference Manual • A SYN (synchronize) packet is sent from the host to the network server • A SYN/ACK packet is sent from the network server to the host • An ACK (acknowledge) packet is sent from the host to the network server If the host sends unreachable source addresses in the SYN packet, the server sends the SYN/ACK packets to the unreachable addresses and keeps resending them.
Chapter 8 – Security & Firewall Example --> firewall set IDS SCANattackblock 43200 FIREWALL SET IDS BLACKLIST Syntax FIREWALL SET IDS BLACKLIST {ENABLE | DISABLE | CLEAR} Description This command sets the blacklist IDS (Intrusion Detection Setting). Blacklisting denies an external host access to the system if IDS has detected certain types of intrusion from that host.
AT-RG 600 Residential Gateway – Software Reference Manual The length of time (in seconds) that the duration firewall blocks packets destined for the (10 minutes) victim of a spoofing style attack. Example --> firewall set IDS victimprotection enable 800 FIREWALL SET SECURITYLEVEL Syntax FIREWALL SET SECURITYLEVEL {NONE | HIGH | MEDIUM | LOW | USERDEFINED <slevel>} Description This command allows you to set which security level is used by the Firewall.
AT-RG 600 Residential Gateway – Software Reference Manual The name of the security configuration level slevel that you have previously created. Example --> firewall set securitylevel medium See also FIREWALL ADD POLICY For more information on ports assigned to protocols, see http://www.ietf.org/rfc/rfc1700.txt FIREWALL SHOW IDS Syntax FIREWALL SHOW IDS...
Chapter 8 – Security & Firewall was created; false means that either blockonly-val was set, or no validator status was set (blockonly-val is the default setting if no status is specified). Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual A name that identifies an existing firewall policyname policy. To display policy names, use the FIREWALL LIST POLICIES command. Example --> firewall show portfilter pf3 ext-int Firewall Port Filter: pf3 Transport type: 6 Port number start: 25 Port number end: 25 Inbound permission: true...
Chapter 8 – Security & Firewall See also FIREWALL ADD VALIDATOR FIREWALL LIST VALIDATORS FIREWALL STATUS Syntax FIREWALL STATUS Description This command displays the following information about the Firewall: • Firewall status (enabled or disabled) • Security level setting (none, high, low or medium) •...
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 9 Network Address Translation - NAT Network Address Translation NAT stands for Network Address Translation. In short, it is a mechanism by which the IP addresses of packets are changed as they go through a routing device. The reason for doing such a translation is to enable a device to appear to have one address to hosts on one side of the NATing router, and another address to hosts on the other side of the NATing router.
Chapter 9 – Network Address Translation - NAT 10.0.0.3 24.2.249.4 10.0.0.2 Internet AT-RG6xx (Router with NAT) 10.0.0.1 10.0.0.4 Figure 1 . Address Conservation using NAT Security The security provided by NAT is really a by-product of the address conservation purpose. The fact is that NAT aims to translate the source addresses of packets originating from within the local private network;...
Page 203
AT-RG 600 Residential Gateway – Software Reference Manual sure that every TCP or UDP session that it sends out to the Internet has a UNIQUE source port number. Consider the problem that would occur if the NAT device was not free to change the source port number;...
Chapter 9 – Network Address Translation - NAT What about protocols other than UDP and TCP? The description above involves a lot of use of port numbers. Unfortunately, the port-number fields are only present in TCP and UDP packets. For other IP protocols, like ICMP, OSPF, GRE, IPSEC, etc other methods have to be used.
AT-RG 600 Residential Gateway – Software Reference Manual FTP Server IP: 192.168.0.3 ftp://24.x.x.x (port 21) WAN IP 24.10.2.45 Internet AT-RG6xx http://24.x.x.x (port 80) Web Server IP: 192.168.0.2 Figure 1 . External access to an FTP server NAT support on AT-RG6xx Residential Gateway series AT-RG613, AT-RG623 and AT-RG656 NAT module is designed to provide the following features:...
Chapter 9 – Network Address Translation - NAT sessions to make use of the global pool, it is necessary to create a reserved mapping. See below for more information on reserved mappings. Reserved Mappings Reserved mapping is used to support NAT traversal. NAT traversal is a mechanism that makes a service (listening port) on an internal computer accessible to external computers.
AT-RG 600 Residential Gateway – Software Reference Manual In this case the blocking by the firewall will take precedence So, when the firewall has been enabled, care must be taken to ensure that when NAT reserved mapping are created, the firewall is also configured to allow in the traffic for which the reserve mapping is defined.
Chapter 9 – Network Address Translation - NAT NAT Command Reference This section describes the commands available on AT-RG613, AT-RG623 and AT- RG656 residential Gateway to enable, configure and manage NAT module. NAT CLI commands The table below lists the nat commands provided by the CLI: Command NAT ADD GLOBALPOOL NAT ADD RESVMAP GLOBALIP...
Page 209
AT-RG 600 Residential Gateway – Software Reference Manual There are two ways to specify a range of IP addresses: • specify the interfacename IP address and a subnet mask • specify the interfacename IP address that represents the first address in the range, then specify the last address in the range If you want to map IP addresses to individual hosts on an internal interface, you can use the command NAT ADD RESVMAP.
Chapter 9 – Network Address Translation - NAT --> nat add globalpool gp1 extinterface dmz 192.168.102.3 subnetmask 255.255.255.0 Example 2 This example creates a network address pool that allows NAT to translate packets between the external interface and the internal interface type. First NAT is enabled between the external interface and the internal interface type: -->...
Page 211
AT-RG 600 Residential Gateway – Software Reference Manual An external IP address that is a member of a globalip global address pool created using the ADD GLOBALPOOL command. The IP address of an individual host inside internalip the network (attached to the internal or DMZ interface).
Chapter 9 – Network Address Translation - NAT See also NAT ENABLE NAT LIST GLOBALPOOLS NAT STATUS SECURITY LIST INTERFACES NAT ADD RESVMAP INTERFACE NAME Syntax NAT ADD RESVMAP <name> INTERFACENAME <interfacename> <internalip> {TCP <portno>|UDP <portno>|ICMP|IGMP|IP|EGP|RSVP|OSPF|IPIP|ALL} Description This command maps an external IP security interface (included in a NAT relationship created using the NAT ENABLE command) to an individual IP address inside the network.
AT-RG 600 Residential Gateway – Software Reference Manual Internet Group Management Protocol (IGMP) packets are to be translated. Allows IGMP Internet hosts to participate in multicasting. See http://www.ietf.org/rfc/rfc1112.txt. Internetwork Protocol (IP). Provides all of the Internetʹs data transport services. http://www.ietf.org/rfc/rfc791.txt and http://www.ietf.org/rfc/rfc919.txt.
Chapter 9 – Network Address Translation - NAT an inside interface (DMZ or internal) using the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command. Example --> nat clear globalpools extinterface See also NAT ADD GLOBALPOOL SECURITY LIST INTERFACES NAT CLEAR RESVMAPS Syntax NAT CLEAR RESVMAPS <interfacename>...
AT-RG 600 Residential Gateway – Software Reference Manual The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using interfacename the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command.
Chapter 9 – Network Address Translation - NAT Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value The name of an existing NAT relationship created between a security interface and an name interface type using the NAT ENABLE...
AT-RG 600 Residential Gateway – Software Reference Manual An arbitrary name that identifies a NAT object enabled between a security interface and an interface type. It can be made up of name one or more letters or a combination of letters and digits, but it cannot start with a digit.
Chapter 9 – Network Address Translation - NAT NAT LIST GLOBALPOOLS Syntax NAT LIST GLOBALPOOLS <interfacename> Description This command lists the following NAT address pool information for a specific outside interface: • Address pool identification number • Address pool name •...
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using interfacename the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command.
Chapter 9 – Network Address Translation - NAT The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using interfacename the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command.
AT-RG 600 Residential Gateway – Software Reference Manual Interface type: dmz Subnet configuration: true IP address: 192.168.102.3 Subnet mask or End Address: 255.255.255.0 See also NAT LIST GLOBALPOOLS SECURITY LIST INTERFACES NAT SHOW RESVMAP Syntax NAT SHOW RESVMAP <name> <interfacename> Description This command displays the following information about a single reserved mapping configuration that has been added to an outside security interface: •...
Page 222
Chapter 9 – Network Address Translation - NAT Description This command lists the outside security interfaces and inside interface types that NAT is currently enabled between. It displays the following information: • NAT object identification number • NAT object name •...
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 10 IGMP snooping and IGMP proxy Multicasting Overview Multicasting is a technique developed to send packets from one location in the Internet to many other locations, without any unnecessary packet duplication. In multicasting, one packet is sent from a source and is replicated as needed in the network to reach as many end-users as necessary.
Chapter 10 – IGMP snooping and IGMP proxy Anyway, a server sends out its stream to a group multicast address but the way it is routed to the hosts that actually want to receive it is a very different process to routing unicast packets.
AT-RG 600 Residential Gateway – Software Reference Manual router keeps a table of how many hosts have joined particular groups, and removes hosts from the table when it receives leave messages, then it can know straight away when there are no hosts on its LAN that are still members of a given group. So, it can ask to be pruned from that tree straight away, rather than having to wait until the next query interval.
Chapter 10 – IGMP snooping and IGMP proxy Then the layer-2 switch can be aware which hosts have asked to join which multicast groups, and so will only forward the multicast data to the places where it really needs to go. IGMP snooping on AT-VP6x3 product family IGMP snooping is activated using the IGMP SNOOPING ENABLE command.
AT-RG 600 Residential Gateway – Software Reference Manual The Residential Gateway forwards the IGMP report on to the multicast router detected on the VLAN where host is attached. In this way the router will also receive the IGMP report and will update its multicast routing table accordingly. Immediately multicast traffic for the requested group address is forwarded only to the port where the report from Host A has been received.
Chapter 10 – IGMP snooping and IGMP proxy Only if no answers are received on all the ports within the Leave Time period, the leave message is forwarded to the multicast router. To change the Leave Time value, use the IGMP SNOOPING SET LEAVETIME command.
AT-RG 600 Residential Gateway – Software Reference Manual IGMP Snooping Command Reference This section describes the commands available on AT-RG613, AT-RG623 and AT- RG656 Residential Gateway to enable, configure and manage the IGMP snooping feature. IGMP snooping CLI commands The table below lists the igmp snooping commands provided by the CLI: Command IGMP SNOOPING DISABLE IGMP SNOOPING ENABLE...
Chapter 10 – IGMP snooping and IGMP proxy IGMP SNOOPING SET LEAVETIME Syntax IGMP SNOOPING SET LEAVETIME <leavetime> Description This command sets the duration of the Leave Period timer for the IGMP snooping process. The timer controls the maximum allowed time before hosts must send a response to Query message issued by the Residential Gateway.
AT-RG 600 Residential Gateway – Software Reference Manual in the local multicast group database without the Residential Gateway receiving a Host Membership Report for this multicast group. When IGMP snooping is enabled, by default this value is set to 270 secs. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 10 – IGMP snooping and IGMP proxy IGMP Proxy Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the IGMP proxy feature. IGMP proxy CLI commands The table below lists the IGMP PROXY commands provided by the CLI: Command IGMP PROXY SET IGMP PROXY SHOW...
AT-RG 600 Residential Gateway – Software Reference Manual Upstream If : ip0 See also IGMP PROXY SET UPSTREAMINTERFACE IGMP PROXY SHOW STATUS Syntax IGMP PROXY SHOW STATUS Description This command displays the following information about the status of IGMP proxy: •...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP Chapter 11 Dynamic Host Configuration Protocol - DHCP Introduction The Dynamic Host Configuration Protocol (DHCP) is defined in RFC 1541 and provides a mechanism for passing configuration information to hosts on a TCP/IP network.
AT-RG 600 Residential Gateway – Software Reference Manual Dynamic allocation may also be a good choice for assigning an IP address to a new host being permanently connected to a network where IP addresses are sufficiently scarce that it is important to reclaim them when old hosts are retired. DHCP support on AT-RG6xx Residential Gateway series The AT-RG613, AT-RG623 and AT-RG656 are able to act both as DHCP server and...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP they are no longer needed. It is still possible to dynamically assign addresses to BOOTP clients, but some administrative process for reclaiming addresses is required. By default, leases are granted to BOOTP clients in perpetuity, although the network administrator may set an earlier cut-off date or a shorter lease length for BOOTP leases if that makes sense.
AT-RG 600 Residential Gateway – Software Reference Manual should not have addresses available to give out that may already belong to hosts on the same subnet. The CLI can also be used to define fixed host/IP address mappings. For example, the command: dhcpserver add fixedhost myhost 192.168.219.5 00:20:2b:01:02:03 Will add a fixed mapping of the IP address 192.168.219.5 to a host whose ethernet...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP DHCP client A DHCP client uses the facilities of the IP stack to transmit and receive DHCP packets. This information is processed by the client and passed back to the IP stack to complete interface configuration for the lease duration.
AT-RG 600 Residential Gateway – Software Reference Manual the MAC address of the device upon which the client is running; otherwise DHCP will not work at all. Lease requirements and requests The DHCP protocol allows the client to request that the server send it specific information, and not send it other information that it is not prepared to accept.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP Additional DHCP client modes There are two additional DHCP client modes for more fine control of how configuration parameters are accepted and propagated. The first mode allows you to choose how DNS servers are to be used; the second mode allows you to use parameters received on a DHCP client interface to automatically set up a DHCP server on another interface in the system.
AT-RG 600 Residential Gateway – Software Reference Manual Example This paragraph provides a guide to setting up a DHCP client using commands available in the CLI. Letʹs assume that the system has been configured wirh an interface named eth0. The first step is to enable the dhcp flag on this interface: ip set interface eth0 dhcp enabled DHCP client configuration is optional.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP dhcpclient update NOTE: NO configuration changes that you have made on the DHCP client will take effect until you enter the DHCPCLIENT UPDATE command. DHCP Relay A DHCP relay uses the facilities of the IP stack to transmit and receive DHCP packets.
AT-RG 600 Residential Gateway – Software Reference Manual DHCP Server Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage DHCP Server module. DHCP server CLI commands The table below lists the DHCP server commands provided by the CLI: Command DHCPSERVER ADD FIXEDHOST DHCPSERVER ADD SUBNET...
AT-RG 600 Residential Gateway – Software Reference Manual The example below creates a suitable subnet for the above fixed host mapping. Note that the IP address used above is within the subnet, but is not within the range of IP addresses that constitute the server’s dynamic pool (192.168.219.10 –...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP DHCPSERVER ADD FIXEDHOST commands. Example --> dhcpserver clear fixedhosts See also DHCPSERVER DELETE FIXEDHOST DHCPSERVER ADD FIXEDHOST DHCPSERVER CLEAR SUBNETS Syntax DHCPSERVER CLEAR SUBNETS Description This command deletes all DHCP server subnets that were created using the DHCPSERVER ADD SUBNET commands.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing subnet. name To display subnet names, use the DHCPSERVER LIST SUBNETS command. A number that identifies an existing subnet. number To display subnet numbers, use the DHCPSERVER LIST SUBNETS command.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP • Max lease time Example --> dhcpserver list fixedhosts DHCP server fixed host mappings: Name | IP address MAC address | Max Lease Time -----|---------|-----------------|--------------------|--------------- 1 | myhost | 192.168.219.0 | 00:20:2b:01:02:03 | 86400 ---------------------------------------------------------------------- See also DHCPSERVER ADD FIXEDHOST...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP DHCPSERVER SET ALLOWUNKNOWNCLIENTS Syntax DHCPSERVER SET ALLOWUNKOWNCLIENTS {ENABLE|DISABLE} Description This command enables/disables the dynamic assignment of addresses to unknown clients. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value The default time (in seconds) that is assigned to a lease if the client requesting defaultleasetime 43200 the lease does not ask for a specific expiry time. Example --> dhcpserver set defaultleasetime 50000 See also DHCPSERVER SET SUBNET MAXLEASETIME DHCPSERVER SET FIXEDHOST IPADDRESS Syntax DHCPSERVER SET FIXEDHOST <host name>...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP LIST FIXEDHOST command. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing fixedhost.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value The maximum time (in seconds) that is assigned to a lease if the client requesting maxleasetime 86400 the lease does not ask for a specific expiry time. Example --> dhcpserver set maxleasetime 90000 See also DHCPSERVER SET DEFAULTLEASETIME DHCPSERVER SET SUBNET DEFAULTLEASETIME Syntax DHCPSERVER SET SUBNET {<name>|<number>} DEFAULTLEASETIME...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP SHOW command. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing subnet.
AT-RG 600 Residential Gateway – Software Reference Manual See also DHCPSERVER LIST SUBNETS DHCPSERVER SET SUBNET MAXLEASETIME Syntax DHCPSERVER SET SUBNET {<name>|<number>} MAXLEASETIME <maxleasetime> Description This command sets the maximum lease time for an existing subnet. This command setting overrides the global maximum lease time setting for this particular subnet. To retrieve the current settings, use the DHCPSERVER SHOW command.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP The new IP address for the subnet, ip address displayed in the IPv4 format (e.g. 192.168.102.3) The new netmask for the subnet, for netmask example: 255.255.255.0 Example --> dhcpserver set subnet sub1 subnet 239.252.197.0 255.255.255.0 See also DHCPSERVER SUBNET ADD IPRANGES DHCPSERVER SUBNETS CLEAR IPRANGES DHCPSERVER SHOW...
AT-RG 600 Residential Gateway – Software Reference Manual • subnet default lease time Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing subnet.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing subnet. name To display subnet names, use the DHCPSERVER LIST SUBNETS command. A number that identifies an existing subnet. number To display subnet numbers, use the DHCPSERVER LIST SUBNETS command.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP A name that identifies an existing subnet. name To display subnet names, use the DHCPSERVER LIST SUBNETS command. A number that identifies an existing subnet. number To display subnet numbers, use the DHCPSERVER LIST SUBNETS command.
AT-RG 600 Residential Gateway – Software Reference Manual DHCPSERVER SUBNET LIST IPRANGES Syntax DHCPSERVER SUBNET {<name>|<number>} LIST IPRANGES Description This command lists the IP range(s) for an existing subnet that have been added using the DHCPSERVER ADD SUBNET command. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 11 – Dynamic Host Configuration Protocol - DHCP A number that identifies an existing subnet. number To display subnet numbers, use the DHCPSERVER LIST SUBNETS command. Example --> dhcpserver subnet sub1 list options Options for subnet: sub1 Identifier Value -----|------------------|------------------ 1 | ip-forwarding | false...
AT-RG 600 Residential Gateway – Software Reference Manual DHCP Client Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the DHCP Client module. DHCP client CLI commands The table below lists the dhcpclient commands provided by the CLI: Command DHCPCLIENT ADD INTERFACECONFIG DHCPCLIENT CLEAR INTERFACECONFIGS...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP DHCPCLIENT SET RETRY DHCPCLIENT SHOW DHCPCLIENT UPDATE DHCPCLIENT ADD INTERFACECONFIG Syntax DHCPCLIENT ADD INTERFACECONFIG <name> <ipinterface> Description This command configures DHCP client parameters for negotiation over an existing IP interface. This command can only be applied to IP interfaces have DHCP enabled (see IP SET INTERFACE DHCP command).
AT-RG 600 Residential Gateway – Software Reference Manual DHCPCLIENT DELETE INTERFACECONFIG Syntax DHCPCLIENT DELETE INTERFACECONFIG {<name>|<number>} Description This command deletes a single DHCP client interface configuration. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 11 – Dynamic Host Configuration Protocol - DHCP A number that identifies an existing DHCP client interface. To display client interface number numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. A text string that identifies a DHCP server option configuration option. Example -->...
AT-RG 600 Residential Gateway – Software Reference Manual DHCPCLIENT INTERFACECONFIG ADD SENT OPTION Syntax DHCPCLIENT INTERFACECONFIG {<name>|<number>} ADD SENT OPTION <option> <value> Description This command tells the DHCP client on a particular interface to send a value for the given DHCP configuration option to a DHCP server. The DHCP server’s response depends on the type of option being sent out Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 11 – Dynamic Host Configuration Protocol - DHCP OPTIONS Description This command deletes all options that were previously added to an interfaceconfig using the DHCPCLIENT INTERFACECONFIG ADD REQUESTED/REQUIRED OPTION commands Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual A number that identifies an existing DHCP client interface. To display client interface number numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. Example --> dhcpclient interfaceconfig client1 clear sent options See also DHCPCLIENT LIST INTERFACECONFIGS DHCPCLIENT INTERFACECONFIG LIST SENT OPTIONS DHCPCLIENT INTERFACECONFIG ADD SENT OPTIONS DHCPCLIENT INTERFACECONFIG DELETE SENT OPTIONS...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP DHCPCLIENT INTERFACECONFIG DELETE SENT OPTION Syntax DHCPCLIENT INTERFACECONFIG {<name>|<number>}DELETE SENT OPTION <option number> Description This command deletes a single option that was previously added to an interfaceconfig using the DHCPCLIENT INTERFACECONFIG ADD SENT OPTION command.
AT-RG 600 Residential Gateway – Software Reference Manual • Option identifier (name) • Requirement status - true for options that were added using the DHCPCLIENT INTERFACECONFIG ADD REQUIRED OPTION command, false for options added using the DHCPCLIENT INTERFACECONFIG ADD REQUESTED OPTION command.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP • Option identifier (name) • Suggested value Options and their values are detailed in RFC2132. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 11 – Dynamic Host Configuration Protocol - DHCP To retrieve the current settings, use the DHCPCLIENT SHOW command. Note: Even if Auto-IP has been enabled using this command, IP address auto- configuration will not be carried out if a DHCP server on the same network does not allow it.
AT-RG 600 Residential Gateway – Software Reference Manual A number that identifies an existing DHCP client interface. To display client interface number numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. A unique identifier that DHCP server can use to identify the client. For Microsoft DHCP servers, the client ID should be the Client id MAC address of the system that DHCP is...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP See also DHCPCLIENT LIST INTERFACECONFIGS DHCPCLIENT SET INTERFACECONFIG DHCPINFORM Syntax DHCPCLIENT SET INTERFACECONFIG {<name>|<number>} DHCPINFORM {ENABLED|DISABLED} Description This command enables/disables whether a DHCP client uses the dhcpinform message type. This DHCP message type is used whenever a client has obtained an IP address or subnet mask (for example, the address has been manually configured or obtained through PPP/IPCP), but wishes to obtain extra configuration parameters (such as NS servers or default gateway) from a DHCP server.
AT-RG 600 Residential Gateway – Software Reference Manual given address pool size is set to a number greater than 0. The LAN DHCP server is configured using parameters received by a DHCP client interface on the WAN. Information such as DNS server addresses can then be distributed to LAN clients. The new DHCP server uses its lan IP address as the address to give out as the default gateway address.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP To retrieve the current settings, use the DHCPCLIENT SHOW INTERFACECONFIG command. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value...
AT-RG 600 Residential Gateway – Software Reference Manual A number that identifies an existing DHCP client interface. To display client interface number numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. DHCP client passes learnt DNS server ENABLED addresses to the DNS client. disabled DHCP client does not pass learnt DNS DISABLED...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP See also DHCPCLIENT LIST INTERFACECONFIGS DHCPCLIENT SET INTERFACECONFIG INTERFACE Syntax DHCPCLIENT SET INTERFACECONFIG {<name>|<number>} INTERFACE <ipinterface> Description This command sets the IP interface that will have its configuration set by the DHCP client interface.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing DHCP client interface. To display client interface name names, use the DHCPCLIENT LIST INTERFACECONFIGS command. A number that identifies an existing DHCP client interface.
Chapter 11 – Dynamic Host Configuration Protocol - DHCP DHCPCLIENT SET INTERFACECONFIG SERVER Syntax DHCPCLIENT SET INTERFACECONFIG {<name>|<number>} SERVER <ipaddress> Description If DHCPCLIENT SET DHCPINFORM has been set to enabled, this command will unicast the first DHCPINFORM message to the specific DHCP server at the specified IP address.
AT-RG 600 Residential Gateway – Software Reference Manual The time (in seconds) for which a client tries to reacquire the last IP address it had. After reboottime this time the client gives up and tries to discover a new address. Example -->...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP DHCPCLIENT UPDATE Syntax DHCPCLIENT UPDATE Description This command updates the DHCP client configuration. Changes made to the client configuration are not actually applied until this command has been entered. Example --> dhcpclient update dhcpclient: Reset request acknowledged.
AT-RG 600 Residential Gateway – Software Reference Manual DHCP Relay Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage DHCP Relay module. DHCP relay CLI commands The table below lists the DHCP relay commands provided by the CLI: Command DHCPRELAY ADD SERVER DHCPRELAY CLEAR SERVERS...
Chapter 11 – Dynamic Host Configuration Protocol - DHCP Description This command deletes all DHCP server IP addresses stored in DHCP relayʹs list of server IP addresses. Example --> dhcprelay clear servers See also DHCPRELAY DELETE SERVER DHCPRELAY DELETE SERVER Syntax dhcprelay delete server <number>...
AT-RG 600 Residential Gateway – Software Reference Manual See also DHCPSERVER ENABLE|DISABLE DHCPRELAY LIST SERVERS Syntax DHCPRELAY LIST SERVERS Description This command displays the DHCP relayʹs list of DHCP server IP addresses with their identification numbers. Example --> dhcprelay list servers DHCP Servers: | IP Address -----|------------------...
Chapter 12 – Domain Name System - DNS Chapter 12 Domain Name System - DNS Introduction DNS is an abbreviation for Domain Name System, a system for naming computers and network services that is organized into a hierarchy of domains. DNS naming is used in TCP/IP networks, such as the Internet, to locate computers and services through user-friendly names.
AT-RG 600 Residential Gateway – Software Reference Manual In this example, a client computer queries a server, asking for the IP address of a computer configured to use host.alliedtelesyn.com as its DNS domain name. Because the server is able to answer the query based on its local database, it replies with an answer containing the requested information, which is a host (A) resource record that contains the IP address information for host.alliedtelesyn.com.
Chapter 12 – Domain Name System - DNS DNS Relay Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the DNS Relay module. DNS Relay CLI commands The table below lists the dnsrelay commands provided by the CLI: Command dnsrelay add server dnsrelay clear cache...
AT-RG 600 Residential Gateway – Software Reference Manual Description This command clears the DNS relay cache in the current session. DNS relay has a small local cache of DNS entries to increase performance for lookups of frequently used destinations. Example --> dnsrelay clear cache DNSRELAY CLEAR LANDATABASE Syntax DNSRELAY CLEAR LANDATABASE Description This command clears the DNS relay LAN database that was set using the...
Chapter 12 – Domain Name System - DNS Example --> dnsrelay delete server 3 See also DNSRELAY LIST SERVERS DNSRELAY LIST SERVERS Syntax DNSRELAY LIST SERVERS Description This command displays the DNS relayʹs list of DNS server IP addresses with their identification numbers.
AT-RG 600 Residential Gateway – Software Reference Manual DNSRELAY SHOW LANADDRESS Syntax DNSRELAY SHOW LANADDRESS Description This command displays the IP address and subnet mask that the DNS relay uses to determine if a query is for an element of the local database. These information are in collected in the LANDATABASEFILENAME file.
Chapter 12 – Domain Name System - DNS DNS Client Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the DNS Client module. DNS Client CLI commands The table below lists the DNSCLIENT commands provided by the CLI: Command dnsclient add searchdomain dnsclient add server...
AT-RG 600 Residential Gateway – Software Reference Manual Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value The IP address of the server that has an unknown domain name.
Chapter 12 – Domain Name System - DNS incomplete domain name. To list domain search strings, use the DNSCLIENT LIST SEARCHDOMAINS command. Example --> dnsclient delete searchdomain 1 DNSCLIENT DELETE SERVER Syntax DNSCLIENT DELETE SERVER <number> Description This command deletes a single server IP addresses from the server list. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 13 – SNTP Chapter 13 SNTP The SNTP Version 4 client is an OSI Layer 7 application that allows the synchronization of the AT-RG613, AT-RG623 and AT-RG656 system clock to global sources of time-based information using UDP. Its detailed implementation, which is described in RFC 2030, provides a complete and simplified method to access international timeservers to receive, organize and adjust the time-synchronization of the local system.
AT-RG 600 Residential Gateway – Software Reference Manual Anycast Mode – When the client is configured in anycast mode, it sends out a sync request to a local subnet broadcast address. One or several anycast SNTP servers can respond with an individual timestamp and a unicast address.
Chapter 13 – SNTP SNTP Command Reference This section describes the commands available on AT-RG613, AT-RG623 and AT- RG656 residential Gateway to enable, configure and manage SNTP module. SNTP CLI commands The table below lists the SNTPCLIENT commands provided by the CLI: Command SNTPCLIENT SET CLOCK SNTPCLIENT SET MODE...
AT-RG 600 Residential Gateway – Software Reference Manual • Broadcast mode • Enable - allows the SNTP client to accept time synchronization broadcast packets from an SNTP server located on the network, and updates the local system time accordingly. • Disable - stops synchronization via broadcast mode.
Chapter 13 – SNTP Option Description Default Value Sets the polling interval (in minutes) that 0-30 SNTP client will send a time sync request. 0 (disabled) This can be any value between 0 and 30. Example --> sntpclient set poll-interval 10 SNTPCLIENT SET RETRIES Syntax SNTPCLIENT SET RETRIES <0-10>...
AT-RG 600 Residential Gateway – Software Reference Manual Examples IP address --> sntpclient set server ipaddress 129.6.15.28 hostname --> sntpclient set server hostname time-a.nist.gov SNTPCLIENT SET TIMEOUT Syntax SNTPCLIENT SET TIMEOUT <0-30> Description This command sets the received packet response timeout value (in seconds) upon sync request initiation.
Page 304
Chapter 13 – SNTP -1000 Hawaii Standard AKST -0900 Alaska Standard -0900 Yukon Standard -0800 Yukon Daylight -0800 US Pacific Standard -0700 US Pacific Daylight -0700 US Mountain Standard -0600 US Mountain Daylight -0600 US Central Standard -0500 US Central Daylight -0500 US Eastern Standard -0400...
Chapter 13 – SNTP Examples IP address --> sntpclient show association Time Reference Server IP address: 129.6.15.28 ** Local clock synchronized with this server. hostname --> sntpclient show association Time Reference Server Hostname: time-a.nist.gov ** Local clock synchronized with this server. See also SNTPCLIENT SET SERVER SNTP SHOW STATUS Syntax SNTPCLIENT SHOW STATUS...
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 14 PPPoE Telecommunications companies offer serial communications links around the globe right now and have done so for many years. To make TCP/IP work over these serial links, it was necessary to create a protocol that could transmit TCP/IP packets over serial lines.
Chapter 14 – PPPoE If we were to compare TCP/IP traffic to vehicle traffic, the basic TCP/IP protocol would be comparable to a network of city streets. Streets can serve many access points. It is easy to get on to and off the street. Additional access points can be added with little disruption.
AT-RG 600 Residential Gateway – Software Reference Manual Typically PPPoE is the “way” to connect the internal device with the external world. Each PPPoE instance must have a unique subnet and belong to a unique VLAN. Adding and attaching PPPoE connections PPPoE connections are added and attached using the commands provided in the IP and PPPoE modules respectively.
Page 310
Chapter 14 – PPPoE To configure the authentication related parameters on a PPPoE instance the following steps must be performed: pppoe set transport v2 welogin ( none/auto/chap/pap) pppoe set transport v2 username abcdef….. pppoe set transport v2 password abcdef… After the completion of the authentication phase of the PPP negotiation, the PPPoE client negotiates with the Server the IP parameters for the connection: •...
AT-RG 600 Residential Gateway – Software Reference Manual PPPoE Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the PPPoE module. PPPoE CLI commands The table below lists the PPPoE commands provided by the CLI: Command PPPOE ADD TRANSPORT PPPOE CLEAR TRANSPORTS...
Page 312
Chapter 14 – PPPoE Description This command creates a PPPoE transport that performs dialout over Ethernet. It allows you to specify the following parameters for the PPPoE client: • the vlan used to receive and send packets belonging to the PPP interface •...
AT-RG 600 Residential Gateway – Software Reference Manual PPPOE CLEAR TRANSPORTS Syntax PPPOE CLEAR TRANSPORTS Description This command deletes all PPPoE transports that were created using the PPPoE ADD TRANSPORT command. Example --> pppoe clear transports See also PPPOE DELETE TRANSPORT PPPOE DELETE TRANSPORT Syntax PPPOE DELETE TRANSPORT {<name>|<number>} Description This command deletes a single PPPoE transport.
Chapter 14 – PPPoE Example --> pppoe list transports PPPOE transports: Name | Port -----|------------|----------- 1 | default | ethernet2 2 | vlan21 | ethernet2 ------------------------------ See also PPPOE SHOW TRANSPORT PPPOE SET TRANSPORT ACCESSCONCENTRATOR Syntax PPPOE SET TRANSPORT {<name>|<number>} ACCESSCONCENTRATOR <concentrator>...
AT-RG 600 Residential Gateway – Software Reference Manual PPPOE SET TRANSPORT SERVICENAME PPPOE SHOW TRANSPORT For more information on PPPoE and access concentrators, see RFC2516; http://www.ietf.org/rfc/rfc2516.txt. PPPOE SET TRANSPORT AUTOCONNECT Syntax PPPOE SET TRANSPORT {<name>|<number>} AUTOCONNECT {ENABLED|DISABLED } Description This command enables/disables the PPPoE autoconnect function. If enabled, PPPoE automatically opens the link to the access concentrator whenever the link is down and a user needs to send TCP/IP packets to a public address.
Chapter 14 – PPPoE Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing PPPoE name transport.
AT-RG 600 Residential Gateway – Software Reference Manual Example --> pppoe set transport pppoe1 autoconnect filter delete tcpport 23 See also PPPOE SET TRANSPORT AUTOCONNECT PPPOE SET TRANSPORT ENABLED/DISABLED Syntax PPPOE SET TRANSPORT {<name>|<number>} {ENABLED|DISABLED} Description This command explicitly enables/disables a PPPoE transport. Attaching a transport to an interface implicitly enables it, but for cases where no attach is performed (for example, multiple channels on an interface, a PPP session that is not attached but needed for testing purposes) the transport must be enabled explicitly.
Chapter 14 – PPPoE Option Description Default Value A name that identifies an existing PPPoE name transport. To display transport names, use the PPPOE LIST TRANSPORTS command. A number that identifies an existing PPPoE transport. To display transport numbers, number use the PPPOE LIST TRANSPORTS command.
AT-RG 600 Residential Gateway – Software Reference Manual transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. IPCP can request a DNS server IP address ENABLED and then give the address to DNS relay. enabled A DNS server IP address learnt by IPCP DISABLED will not be passed to the DNS relay.
Chapter 14 – PPPoE See also PPPOE SHOW TRANSPORT PPPOE LIST TRANSPORTS PPPOE SET TRANSPORT LCPMAXCONF Syntax PPPOE SET TRANSPORT {<name>|<number>} LCPMAXCONF <lcp max configure> Description This command sets the maximum number of Link Control Protocol (LCP) configure requests that will be sent by an existing PPPoE transport before it decides that the PPP peer is not responding.
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing PPPoE name transport. To display transport names, use the PPPOE LIST TRANSPORTS command. A number that identifies an existing PPPoE transport. To display transport numbers, number use the PPPOE LIST TRANSPORTS command.
Chapter 14 – PPPoE Example --> pppoe set transport pppoe1 lcpmaxterm 20 See also PPPOE SHOW TRANSPORT PPPOE LIST TRANSPORTS PPPOE SET TRANSPORT STATIC_IP/DYNAMIC_IP Syntax PPPOE SET TRANSPORT {<name>|<number>} {STATIC_IP <ip-address> | DYNAMIC_IP} Description This command tells the PPP process the local IP address to be used on this PPP interface or sets the PPP interface to get the IP address dynamically.
AT-RG 600 Residential Gateway – Software Reference Manual authentication username using the PPPOE SET TRANSPORT USERNAME command.. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value...
Chapter 14 – PPPoE Option Description Default Value A name that identifies an existing PPPoE name transport. To display transport names, use the PPPOE LIST TRANSPORTS command. A number that identifies an existing PPPoE transport. To display transport numbers, number use the PPPOE LIST TRANSPORTS command.
AT-RG 600 Residential Gateway – Software Reference Manual A name that identifies an existing PPPoE name transport. To display transport names, use the PPPOE LIST TRANSPORTS command. A number that identifies an existing PPPoE transport. To display transport numbers, number use the PPPOE LIST TRANSPORTS command.
Chapter 14 – PPPoE NONE No authentication method is used. The authentication protocol used by the AUTO remote PPP server is discovered and used. Password Authentication Protocol; the server sends an authentication request to the remote user dialling in. PAP passes the None unencrypted username and password to be verified by the server.
Page 327
AT-RG 600 Residential Gateway – Software Reference Manual • Dialout Username • Dialout Password • Dialout Authentication method • Dialin Authentication method • LCP Max Configure • LCP Max Failure • LCP Max Terminate • LCP Echo Period • Autoconnect status (true or false) •...
Page 328
Chapter 14 – PPPoE Dialout username: Dialout password: Dialout auth.: none Dialin auth.: none LCP Max. Conf.: 10 LCP Max. Failure: 5 LCP Max Terminate: 2 LCP Echo Every: 10 Autoconnect: true User Idle Timeout: 30 Access Conc.: Service name: y See also PPPOE LIST TRANSPORTS...
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 15 VoIP Analogue and Digital access ports Introduction This chapter describes the telephony services available on the Residential Gateway and the support for analog voice ports (FXS) and digital ISDN interfaces (Basic Rate).
Chapter 15 – VoIP Analogue and Digital Access Ports The unit main processor implements packet network protocol stacks and system control, while the voice-band processor primarily performs mathematically intensive DSP algorithms. The following are the features available on the Voice system: Voice Encoding/Decoding •...
AT-RG 600 Residential Gateway – Software Reference Manual A block diagram of a typical Basic Rate Access circuit is shown in Figure 1 . 4 Analogue Phone/FAX ISDN Switched S/T BUS U BUS ISDN ISDN Nework switch switch (LT) (LT) Digital Digital Phone/FAX...
Chapter 15 – VoIP Analogue and Digital Access Ports See ETS 300 012-1 Annex A - A.2.1 Point-to-multipoint - A.2.1.1 Short passive bus for more technical details.. ISDN Layer 2 - LAPD LAPD is the Link Access Protocol for the ISDN D channel, as defined by ITU-T Recommendation Q.921.
AT-RG 600 Residential Gateway – Software Reference Manual If a port is not defined, no users can be added to the port and therefore no incoming calls can be received and no outgoing calls can be made. On the AT-RG623, attempting to make an outgoing call through an undefined digital port will result in a DISCONNECT message from the unit.
Page 334
Chapter 15 – VoIP Analogue and Digital Access Ports Timer: The symbol ʹTʹ matching the timer expiry. The symbol ʹTʹ at the end of Digit Map indicates that if user has not dialed a digit for a time longer than the value of the inter-digit time, the dialed number shall be considered complete.
AT-RG 600 Residential Gateway – Software Reference Manual voip ep analogue set prt0 digitmap xxxxxxx#|xxxxxxx* The “#” or “*” character could indicate users must dial the “#” or “*” character at the end of their number to indicate it is complete. When processing the outgoing call the call control layer removes any ʹ#ʹʹ, ʹ*ʹ...
Page 336
Chapter 15 – VoIP Analogue and Digital Access Ports A brief description of each codec is provided below, with some notes about quality and performance. G.711 µ/A-law 64 Kbps PCM Speech codec The G.711 codec is specified by ITU-T and consists of two similar non-uniform pulse code modulation (PCM) schemes called µ.law and A-law.
AT-RG 600 Residential Gateway – Software Reference Manual and 5 bits, respectively. At 32kbps ADPCM has a low delay and is considered ʺtoll- qualityʺ, i.e. virtually indistinguishable from A-law and u-law for a single encoding. At lower bit rates, especially below 24kbps, speech quality is dramatically reduced. T.38 support AT-RG613, AT-RG623 and AT-RG656 are designed to support the transmission of T.30 fax signals using T.38 Internet Fax Protocol (IFP) packets.
Chapter 15 – VoIP Analogue and Digital Access Ports On the decoding path (from VoIP network to access port), voice/data packets are managed in separate jitter buffers (one for each access port) to compensate efficiently for jitter injected by the network. The command VOIP EP SET JITTERDELAY is used to specify the jitter delay.
AT-RG 600 Residential Gateway – Software Reference Manual Telecom Tones Management On analog access models (AT-RG213) the called party number is provided to the unit through DTMF dialed digits. On digital access models (AT-RG623) the called party number is provided to the Residential Gateway using EnBlock mode or Multi Frame mode.
Chapter 15 – VoIP Analogue and Digital Access Ports The Inter-digit time is the maximum acceptable time between the dialing of one digit and the next. If a time greater than the inter-digit time elapses after the dialing of a digit, dialling is considered complete. The Inter-digit time value is used by the timer ʹTʹ...
Chapter 15 – VoIP Analogue and Digital Access Ports A customized signaling can be set with up to three different tones that will be executed in sequency. The timing of the sequence depend on the cadence setting. Cadence of the signaling The cadence od the signaling can be set specifying some time intervals where the signale is present or not.
AT-RG 600 Residential Gateway – Software Reference Manual VoIP EP Command Reference This section describes the commands available on the Residential Gateway to create, configure and manage access ports (also called end points - EP). Two types of port are defined: analogue and digital. The syntax for both analogue and digital ports is described below.
Page 344
Chapter 15 – VoIP Analogue and Digital Access Ports VOIP EP SIGNALING DELETE VOIP EP SIGNALING LIST VOIP EP SIGNALING REMOVE VOIP EP SIGNALING SHOW...
AT-RG 600 Residential Gateway – Software Reference Manual VOIP EP CREATE Syntax VOIP EP ANALOGUE CREATE <name> TYPE <port-type> PHYSICAL-PORT <phy- port-id> VOIP EP DIGITAL CREATE <name> TYPE <port-type> PHYSICAL-PORT <phy- port-id> Description This command adds a named access port and binds it to a physical access port. If the physical resource is already assigned to another named port, an error is raised and the command fails.
Chapter 15 – VoIP Analogue and Digital Access Ports This is the physical port providing the access to VoIP network. It may assume the following values depending on port-type selection: phy-port-id tel1: first analog fxs port tel2: second analog fxs port tel3: analog fxo port (only AT-RG613TXJ model)
AT-RG 600 Residential Gateway – Software Reference Manual VOIP EP SHOW VOIP EP DISABLE Syntax VOIP EP ANALOGUE DISABLE <name> VOIP EP DIGITAL DISABLE name < > Description This command disables the physical port referred to by the named access port. Use the VOIP EP SHOW command to retrieve the Operational Status of a specific port.
Chapter 15 – VoIP Analogue and Digital Access Ports Example --> voip ep analogue enable prt0 --> voip ep digital enable prt0 See also VOIP EP CREATE VOIP EP DISABLE VOIP EP DELETE VOIP EP LIST VOIP EP SET VOIP EP SHOW VOIP EP LIST Syntax VOIP EP ANALOGUE LIST VOIP EP DIGITAL LIST...
Page 349
AT-RG 600 Residential Gateway – Software Reference Manual VOIP EP <analogue/digital> SET <name> CFWD ENABLE ALL-CALLS ON- PREFIX <on-prefix> ON-SUFFIX <on-suffix> OFF-PREFIX <off-prefix> CFWD on-busy VOIP EP <analogue/digital> SET <name> CFWD ENABLE ON-BUSY ON-PREFIX <on-prefix> ON-SUFFIX <on-suffix> OFF-PREFIX <off-prefix> CFWD on-no-answer VOIP EP <analogue/digital>...
Chapter 15 – VoIP Analogue and Digital Access Ports number The sequence to be composed by the user off-suffix on his phone keyboard to disable the call forwarding. The time threshold after which the call is secs considered not answered Example -->...
AT-RG 600 Residential Gateway – Software Reference Manual VOIP EP LIST VOIP EP SHOW VOIP EP SET CODECS Syntax VOIP EP ANALOGUE SET <name> CODECS <codec-list> VOIP EP DIGITAL SET CODECS name codec-list < > < > Description This command sets the codec capability list for an existing access port. T38 support must always be selected together with another speech codec (G711a/u or G726 or G729ab).
Chapter 15 – VoIP Analogue and Digital Access Ports VOIP EP DIGITAL SET COUNTRY name country < > < > Description This command sets dial tone, busy tone and ring back tone frequencies and cadences on the physical port referred to by the named access port, appropriately for the selected country.
AT-RG 600 Residential Gateway – Software Reference Manual VOIP EP DIGITAL SET DIALMASK name digit-number < > < > Description This command sets the dial mask value (number of chars to be removed from the dialed number) on the physical port referred to by the named access port. On AT-RG613 TXJ FXO port, dial mask works only in the direction PSTN to FXO port.
Chapter 15 – VoIP Analogue and Digital Access Ports VOIP EP ENABLE VOIP EP LIST VOIP EP SHOW VOIP EP SET DIGITMAP Syntax VOIP EP ANALOGUE SET <name> DIGITMAP <digit-map> VOIP EP DIGITAL SET DIGITMAP name digit-map < > < >...
AT-RG 600 Residential Gateway – Software Reference Manual Description This command set the Inter-digit critical time on the physical port referred to by the named access port. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Chapter 15 – VoIP Analogue and Digital Access Ports VOIP EP DISABLE VOIP EP DELETE VOIP EP ENABLE VOIP EP LIST VOIP EP SHOW VOIP EP SET JITTERDELAY Syntax VOIP EP ANALOGUE SET <name> JITTERDELAY <msec> VOIP EP DIGITAL SET JITTERDELAY name msec...
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing access name port. To display the existing access port names, use the VOIP EP LIST command. The line echo cancellation length in milli- msec seconds.
Chapter 15 – VoIP Analogue and Digital Access Ports VOIP EP SET ONHOOK-TIME Syntax VOIP EP ANALOGUE SET <name> ONHOOK-TIME <msec> Description This command set the on-hook time on the port referred to by the named access port. Only analog access ports accept on-hook time settings. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual --> voip ep digital set prt0 rxgain –3.0 See also VOIP EP CREATE VOIP EP DISABLE VOIP EP DELETE VOIP EP ENABLE VOIP EP LIST VOIP EP SHOW VOIP EP SET TXGAIN Syntax VOIP EP ANALOGUE SET <name>...
Chapter 15 – VoIP Analogue and Digital Access Ports Option Description Default Value A name that identifies an existing access name port. To display the existing access port names, use the VOIP EP LIST command. The status of the VAD feature. Valid values are: status VAD enabled...
AT-RG 600 Residential Gateway – Software Reference Manual • On-hook time (AT-RG613TX and AT-RG613TXJ models) • Rx gain • Tx gain • Attached users Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Chapter 15 – VoIP Analogue and Digital Access Ports endpoint. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value A name that identifies an existing customized signalling created with the name VOIP EP SIGNALING CREATE command.
Page 363
AT-RG 600 Residential Gateway – Software Reference Manual The class of the customized signalling. Valid values are: busy-tone type dial-tone ring ringback-tone. Time interval expressed in seconds. Valid secs values are from 1 to 3600 seconds. One or more (up to three) tones separated by a “/”...
Chapter 15 – VoIP Analogue and Digital Access Ports --> voip ep signaling create create myring type ring time-out 180 frequency 25 cadence -3(+0.5-0.5)+continuous(+1.0-2.0) See also VOIP EP SIGNALING ADD VOIP EP SIGANLING DELETE VOIP EP SIGANLING LIST VOIP EP SIGANLING REMOVE VOIP EP SIGANLING SHOW VOIP EP IGNALING DELETE Syntax VOIP EP SIGNALING DELETE <name>...
AT-RG 600 Residential Gateway – Software Reference Manual Name Type -----|------------|--------------------------------------- 1 | mydial | dial-tone 2 | mybusy | busy-tone 3 | myring | cai -----|------------|--------------------------------------- See also VOIP EP SIGNALING ADD VOIP EP SIGANLING CREATE VOIP EP SIGANLING DELETE VOIP EP SIGANLING REMOVE VOIP EP SIGANLING SHOW VOIP EP SIGNALING REMOVE...
Page 366
Chapter 15 – VoIP Analogue and Digital Access Ports • signaling entry type • signaling entry time out • signaling entry frequency • signaling entry cadence • signaling entry attached endpoints Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual VoIP Lifeline Command Reference This section describes the commands available on the Residential Gateway to manage the lifeline port (fxo port). The following commands are available only on AT-RG613TXJ model. voip lifeline CLI commands The table below lists the VOIP LIFELINE commands provided by the CLI: Command VOIP LIFELINE DISABLE...
Chapter 15 – VoIP Analogue and Digital Access Ports Example --> voip lifeline enable See also VOIP LIFELINE DISABLE VOIP LIFELINE SHOW VOIP LIFELINE SHOW Syntax VOIP LIFELINE SHOW Description This command shows the current lifeline status. See also VOIP LIFELINE DISABLE VOIP LIFELINE ENABLE...
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 16 VoIP SIP Introduction This chapter describes the main features of the SIP standard, the protocols supported, the implementation of the call processes in the AT-RG613, AT-RG623 and AT-RG656 and how to configure and operate the AT-RG613, AT-RG623 and AT-RG656 to provide, or connect to, a VoIP Network.
Chapter 16 – VoIP SIP SIP supports session descriptions that allow participants to agree on a set of compatible media types. It also supports user mobility by proxying and redirecting requests to the userʹs current location. SIP is not tied to any particular conference control protocol.
Page 371
AT-RG 600 Residential Gateway – Software Reference Manual A SIP proxy server receives requests, determines where to send these, and passes them onto the next server (using next hop routing principals). There can be many server hops in the network. The difference between a stateful and stateless proxy server is that a stateful proxy server remembers the incoming requests it receives, along with the responses it sends back and the outgoing requests it sends on.
Chapter 16 – VoIP SIP • Terminal-type negotiation and selection: a caller can be given a choice how to reach the party, e.g., via Internet telephony, mobile phone, an answering service, etc. • Terminal capability negotiation • Caller and callee authentication •...
AT-RG 600 Residential Gateway – Software Reference Manual • Message Body A SIP response message consists of three elements: • Status Line • Header • Message Body The Request line and header field define the nature of the call in terms of services, addresses and protocol features.
Chapter 16 – VoIP SIP SIP IP Phone VoIP Network Analog Phone Analog Phone (or Digital Phone) (or Digital Phone) AT-RG613 AT-RG613 (or AT-RG623) (or AT-RG623) SIP Server Figure 16. Phone --> AT-RG613/RG623 (A) --> AT-RG613/RG623 (B) --> Phone A user makes a call with the phone connected to an AT-RG613/AT-RG623, which in turn contacts another AT-RG613/ AT-RG623, which completes the connection to the phone which is attached to it.
Chapter 16 – VoIP SIP Default Configuration SIP Signaling Protocol Configuration Access Port Creation Location Servers Users Creation Forwarding Database Access Port Config. Proxy Servers Users Binding Incoming/ Outgoing Calls Figure 18. VoIP subsystem configuration - basic steps. SIP Servers Location Servers The SIP module needs to know where locally defined users attempt to register their contact in the network.
AT-RG 600 Residential Gateway – Software Reference Manual If users are defined without specify the user domain (see VOIP SIP USER CREATE command), the user domain will be automatically associated to the location server address where the user has been registered. Proxy Servers The SIP module needs to know which proxy server must be used when an outgoing call cannot be processed by a local number or by a well defined forwarding rule but...
Page 378
Chapter 16 – VoIP SIP Note: In any given system there cannot exist two or more users with the same area code and address. In any given system it is allowable to have two or more users with the same address but different area code or no area code at all.
AT-RG 600 Residential Gateway – Software Reference Manual When an access port is deleted from the system, all the users previously attached are removed from the port. Removing a user from a port, by using the VOIP SIP USER REMOVE command or by deleting the access port, results in an un-registration process from the location server defined during user creation phase.
Page 380
Chapter 16 – VoIP SIP If the fdb entry has defined the FWADDRESS field, the called number is changed from the dialed number to the number defined in the fdb entry FWADDRESS field. In this way itʹs possible to dial short numbers that will be replaced by full qualified numbers in the outgoing calls.
Page 381
AT-RG 600 Residential Gateway – Software Reference Manual In this case, using digit map expressions, it is possible to define a generic rule in such a way that all the calls are routed to a specific contact (e.g. the proxy server) that will be in charge of proceeding with the call routing.
Chapter 16 – VoIP SIP VoIP SIP Command Reference This section describes the commands available on the AT-RG613, AT-RG 623 and AT-RG656 Residential Gateway to configure and manage the SIP protocol signaling module. VoIP sip protocol CLI commands The table below lists the VOIP SIP PROTOCOL commands provided by the CLI: Command VOIP SIP PROTOCOL DISABLE VOIP SIP PROTOCOL ENABLE...
AT-RG 600 Residential Gateway – Software Reference Manual VOIP SIP PROTOCOL ENABLE Syntax VOIP SIP PROTOCOL ENABLE Description This command turns on the SIP signaling module. To bind the SIP module to a specific IP interface use the VOIP SIP PROTOCOL SET INTERFACE command.
Chapter 16 – VoIP SIP messages. By default, when the SIP module is attached to an IP interface using theVOIP SIP PROTOCOL SET NETINTERFACE command, the following default value is used: • defaultport: 5060 Changing the signaling port causes the SIP module to restart. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual See also VOIP SIP PROTOCOL SHOW VOIP SIP PROTOCOL SET NAT Syntax VOIP SIP PROTOCOL SET NAT {NONE | <host> } Description This command sets the NAT host reference. Any SIP URLs with local reference is hidden by the NAT address value.
Chapter 16 – VoIP SIP VOIP SIP PROTOCOL SET ROUNDTRIPTIME Syntax VOIP SIP PROTOCOL SET ROUNDTRIPTIME <msecs> Description This command sets the maximum time between the trasmission of a packet and the reception of the response. If the time expires, protocol primitives are retransmitted. Retransmission of protocol primitives are useful in case of unreliable transports like UDP to recover errors in transactions.
Page 387
AT-RG 600 Residential Gateway – Software Reference Manual SIP PROTOCOL SET commands. Example --> voip sip protocol show Gateway base protocol: SIP ------------------------------------------------------------ Network interface: Default port: 5060 NAT: 10.17.90.110 Round-trip time: 1000 msecs. Session expire time: 1800 secs. Extension features: none See also VOIP SIP PROTOCOL ENABLE VOIP SIP PROTOCOL SET MEDIAPORT...
Chapter 16 – VoIP SIP VoIP SIP Locationserver Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the VoIP SIP Locationserver module. voip sip locationserver CLI commands The table below lists the VOIP SIP LOCATIONSERVER commands provided by the CLI: Command VOIP SIP LOCATIONSERVER CREATE...
AT-RG 600 Residential Gateway – Software Reference Manual The UDP/TCP port on the location server to port 5060 which signalling messages are sent. The protocol used to transport the signalling messages to the location server. transport Possible values are: Example -->...
Chapter 16 – VoIP SIP • server ID numbers • server names • Master: whether the server has been set as Master or not. A star symbol in the field identifies the server as the current location server where local user are registered.
AT-RG 600 Residential Gateway – Software Reference Manual VoIP SIP Proxyserver Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the VoIP SIP Proxyserver module. voip sip proxyserver CLI commands The table below lists the VOIP SIP PROXYSERVER commands provided by the CLI: Command VOIP SIP PROXYSERVER CREATE...
Chapter 16 – VoIP SIP The protocol used to transport the signalling messages to the proxy server. transport Possible values are: Example --> voip sip proxy create default contact 192.168.102.3 See also VOIP SIP PROXYSERVER LIST VOIP SIP PROXYSERVER SHOW VOIP SIP PROXYSERVER DELETE Syntax VOIP SIP PROXYSERVER DELETE <name>...
AT-RG 600 Residential Gateway – Software Reference Manual • server names • Master: whether the server has been set as Master or not. A star symbol in the field identifies the server as the currect proxy server used by outgoing calls. •...
Chapter 16 – VoIP SIP VoIP SIP User Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the VoIP SIP User module. voip sip user CLI commands The table below lists the VOIP SIP USER commands provided by the CLI: Command VOIP SIP USER ADD VOIP SIP USER CREATE...
AT-RG 600 Residential Gateway – Software Reference Manual A name that identifies an existing port. To portname display the existing ports, use the VOIP EP LIST command. Example --> voip sip user add MrBrown port fxs0 See also VOIP SIP USER ADD VOIP SIP USER CREATE VOIP SIP USER DELETE VOIP SIP USER LIST...
Chapter 16 – VoIP SIP The prefix number to be dialed before the destination number. Valid characters are area-number empty only numerical characters. The area number can be a maximum of 10 digits long. The user name used during the authentication phase.
AT-RG 600 Residential Gateway – Software Reference Manual with this command and a default value (if applicable). Option Description Default Value A name that identifies an existing user (it can also be the ID value associated with the username user name). To display the existing users, use the VOIP SIP USER LIST command.
Chapter 16 – VoIP SIP VOIP SIP USER REMOVE Syntax VOIP SIP USER REMOVE <username> PORT <name> Description This command remove a single user from the port where it was added with the VOIP SIP USER ADD command. Removing a user from a port results in an un-registration request to the location server.
Page 399
AT-RG 600 Residential Gateway – Software Reference Manual Option Description Default Value A name that identifies an existing user. To username display the existing users, use the VOIP SIP USER LIST command. Example --> voip sip user show MrBrown Gateway user: MrBrown -------------------------------------------------------------- Address: 12345...
Chapter 16 – VoIP SIP VoIP SIP FDB Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to configure and manage the FDB module. voip sip fdb CLI commands The table below lists the VOIP SIP FDB commands provided by the CLI: Command VOIP SIP FDB CREATE VOIP SIP FDB DELETE...
AT-RG 600 Residential Gateway – Software Reference Manual The called user address (i.e. phone number) expected to be received. It can be a digit map expression as digit-map described in section 0. The digit-map can be a maximum of 32 chars long.
Chapter 16 – VoIP SIP Option Description Default Value A name (or the ID value) that identifies an existing user in the forwarding database. To name display the existing FDB entries, use the VOIP SIP FDB LIST command. Example --> voip sip fdb delete default See also VOIP SIP FDB CREATE VOIP SIP FDB LIST VOIP SIP FDB LIST...
Page 403
AT-RG 600 Residential Gateway – Software Reference Manual • Domain • Contact Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value A name (or the ID value) that identifies an existing user in the forwarding database.
Chapter 17 – VoIP H323 Chapter 17 VoIP H323 Introduction This chapter describes the main features of H.323 standard, the protocols supported, the implementation of the call processes in the AT-RG613, AT-RG623 and AT- RG656 and how to configure and operate the AT-RG613, AT-RG623 and AT-RG656 to provide, or connect to, a VoIP Network.
AT-RG 600 Residential Gateway – Software Reference Manual Figure 1 . H.323 Terminals on a Packet Network H.323 Components The H.323 standard specifies four kinds of components, which, when networked together, provide the point-to-point and point-to-multipoint multimedia- communication services: • terminals •...
Chapter 17 – VoIP H323 Multipoint Control Units MCUs provide support for conferences of three or more H.323 terminals. All terminals participating in the conference establish a connection with the MCU. The MCU manages conference resources, negotiates between terminals for the purpose of determining the audio or video coder/decoder (CODEC) to use, and may handle the media stream.
AT-RG 600 Residential Gateway – Software Reference Manual H.225 Registration, Admission, and Status Registration, admission, and status (RAS) is the protocol between endpoints (terminals and gateways) and gatekeepers. The RAS is used to perform registration, admission control, bandwidth changes, status, and disengage procedures between endpoints and gatekeepers. A RAS channel is used to exchange RAS messages.
Chapter 17 – VoIP H323 Terminal Characteristics H.323 terminals must support the following: • H.245 for exchanging terminal capabilities and creation of media channels • H.225 for call signaling and call setup • RAS for registration and other admission control with a gatekeeper •...
AT-RG 600 Residential Gateway – Software Reference Manual Gatekeeper Characteristics Gatekeepers provide call-control services for H.323 endpoints, such as address translation and bandwidth management as defined within RAS. If they are present in a network, however, terminals and gateways must use their services. The H.323 standards both define mandatory services that the gatekeeper must provide and specify other optional functionality that it can provide.
Chapter 17 – VoIP H323 H323 IP Phone VoIP Network Analog Phone Analog Phone (or Digital Phone) (or Digital Phone) AT-RG613 AT-RG613 (or AT-RG623) (or AT-RG623) H323 Gatekeeper Figure 20. Phone --> AT-RG613/RG623 (A) --> AT-RG613/RG623 (B) --> Phone A user makes a call with the phone connected to an AT-RG613/AT-RG623TX Residential Gateway, which in turn contacts another AT-RG613/AT-RG623TX Residential Gateway, which completes the connection to its locally attached phone.
AT-RG 600 Residential Gateway – Software Reference Manual H323 IP Phone VoIP Network Analog Phone Analog Phone (or Digital Phone) (or Digital Phone) AT-RG613 AT-RG613 (or AT-RG623) (or AT-RG623) H323 Gatekeeper Figure 21. Phone --> AT-RG613/RG623 (A) --> H323 IP Phone A user makes a call with the phone connected to an AT-RG613/AT-RG623TX Residential Gateway, which reaches the corresponding LAN H.323 endpoint on the IP network.
Chapter 17 – VoIP H323 Default Configuration H323 Signaling Protocol Configuration Access Port Creation Users Creation Access Port Config. Users Binding Incoming/ Outgoing Calls Figure 22. VoIP H323 subsystem configuration - basic steps. Users The system is designed to support up to 100 users. Users are defined by the VOIP H323 USER CREATE command.
Page 413
AT-RG 600 Residential Gateway – Software Reference Manual The user number used in the registration messages is the complete user number: area code + address number. users and access port A user needs to be attached at least to one physical port in order to receive or to make a call.
Chapter 17 – VoIP H323 VoIP H323 Command Reference This section describes the commands available on the AT-RG613, AT-RG 623 and AT-RG656 Residential Gateway to configure and manage the H323 protocol signaling module. VoIP h323 protocol CLI commands The table below lists the VOIP H323 PROTOCOL commands provided by the CLI: Command VOIP H323 PROTOCOL DISABLE VOIP H323 PROTOCOL ENABLE...
AT-RG 600 Residential Gateway – Software Reference Manual See also VOIP H323 PROTOCOL RESTART VOIP H323 PROTOCOL ENABLE. VOIP H323 PROTOCOL ENABLE Syntax VOIP H323 PROTOCOL ENABLE Description This command turns on the H323 signaling module. To bind the H323 module to a specific IP interface uset the VOIP H323 PROTOCOL SET INTERFACE command.
Chapter 17 – VoIP H323 See also VOIP H323 PROTOCOL SHOW VOIP H323 PROTOCOL SET CONNECT Syntax VOIP H323 PROTOCOL SET CONNECT <secs> Description This command sets response timeout value. By default, when the H323 module is started using the VOIP H323 PROTOCOL ENABLE command, the following default values are used: •...
AT-RG 600 Residential Gateway – Software Reference Manual Itʹs the gatekeeper identifier. Id can be 20 a maximum of 20 chars long Example --> voip h323 protocol set gatekeeper 10.17.90.110 See also VOIP H323 PROTOCOL ENABLE VOIP H323 PROTOCOL SHOW VOIP H323 PROTOCOL SET NETINTERFACE Syntax VOIP H323 PROTOCOL SET NETINTERFACE <interface_name>...
Chapter 17 – VoIP H323 VOIP H323 PROTOCOL SET RASPORT Syntax VOIP H323 PROTOCOL SET RASPORT <ipport> Description This command sets the UDP/TCP port on the Residential Gateway used to send and receive registration messages. Options The following table gives the range of values for each option which can be specified with this command, and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual VOIP H323 PROTOCOL SET RESPONSE Syntax VOIP H323 PROTOCOL SET RESPONSE <secs> Description This command sets response timeout value. By default, when the H323 module is started using the VOIP H323 PROTOCOL ENABLE command, the following default values are used: •...
Chapter 17 – VoIP H323 Itʹs the gatekeeper identifier. Id can be a maximum of 20 chars long Example --> voip h323 protocol set secondarygatekeeper 10.17.90.111 See also VOIP H323 PROTOCOL ENABLE VOIP H323 PROTOCOL SHOW VOIP H323 PROTOCOL SHOW Syntax VOIP H323 PROTOCOL SHOW Description This command displays basic H323 module configuration parameters set by the VOIP H323 PROTOCOL ENABLE command.
AT-RG 600 Residential Gateway – Software Reference Manual VoIP H323 User Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to enable, configure and manage the VoIP H323 User module. voip H323 user CLI commands The table below lists the VOIP H323 USER commands provided by the CLI: Command VOIP H323 USER ADD...
Chapter 17 – VoIP H323 VOIP H323 USER DELETE VOIP H323 USER LIST VOIP H323 USER REMOVE VOIP H323 USER SHOW VOIP EP LIST VOIP H323 USER CREATE Syntax VOIP H323 USER CREATE <username> ADDRESS <DIGIT-MAP> [AREACODE <area-number>] Description This command creates a new entry in the users list. Each user must have a different <username>.
AT-RG 600 Residential Gateway – Software Reference Manual VOIP H323 USER DELETE Syntax VOIP H323 USER DELETE <username> Description This command deletes a single user created using the VOIP H323 USER CREATE command. To show the list of existing users, use the VOIP H323 USER LIST command. As soon this command is entered, the deregistration phase starts to the Gatekeeper;...
Chapter 17 – VoIP H323 Example --> voip h323 user list Name Area Code Address ---- |------------|------------------|------------------------------------ 1 | MrBrown | 12345 ---- |------------|------------------|------------------------------------ See also VOIP H323 USER ADD VOIP H323 USER CREATE VOIP H323 USER DELETE VOIP H323 USER LIST VOIP H323 USER REMOVE VOIP H323 USER SHOW VOIP EP LIST...
AT-RG 600 Residential Gateway – Software Reference Manual VOIP H323 USER SHOW Syntax VOIP H323 USER SHOW <username> Description This command displays the following information about a named user: • Address • Area Code • State • Attached ports Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 17 – VoIP H323 VoIP H323 FDB Command Reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to configure and manage the FDB module. voip h323 fdb CLI commands The table below lists the VOIP H323 FDB commands provided by the CLI: Command VOIP H323 FDB CREATE VOIP H323 FDB DELETE...
AT-RG 600 Residential Gateway – Software Reference Manual The hostname or IPv4 address of the remote end-point where call must be routed. contact-host Contact-host can be a maximum of 256 chars long (when using hostname format). The UDP/TCP port on the contact host to port 5060 which signalling messages are sent.
Chapter 17 – VoIP H323 • FDB entry Address Note: If an fdb name is longer than 32 chars, the name is shown in a short format (only the initial part of the name is displayed). To show the full name use the VOIP H323 FDB SHOW command, specifying the user ID instead of user name.
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 18 VoIP MGCP Introduction The MGCP (Media Gateway Control Protocol) is a protocol that assumes a call control architecture where the call control ʺintelligenceʺ is outside the gateways and handled by external call control elements, the call agent. MGCP assumes that the gateways have limited storage and functionality.
Page 430
Chapter 18 – VoIP MGCP connected to a PSTN switch is an example of a physical endpoint. An audio source in an audio-content server is an example of a virtual endpoint. Connections may be either point-to-point or multipoint. A point-to-point connection is an association between two endpoints for transmitting data between these endpoints.
AT-RG 600 Residential Gateway – Software Reference Manual MGCP Protocol Commands There are eight commands in the protocol: NotificationRequest, Notify, CreateConnection, ModifyConnection, DeleteConnection, AuditEndpoint, AuditConnection and RestartInProgress. NotificationRequest The NotificationRequest command is used by the call agent for requesting from a gateway to be notified upon the occurrence of specified events in an endpoint.
Chapter 18 – VoIP MGCP like encoding, but also IP address UDP port. The remote connection description may be unspecified in some CreateConnection requests. This occurs because the call agent needs to send two CreateConnection requests for creating an end-to-end connection.
AT-RG 600 Residential Gateway – Software Reference Manual AuditConnection The AuditConnection can be used by the call agent for retrieving information related to a specific connection of an endpoint identified by a ConnectionId. The information that can be retrieved includes: call id, local and remote connection descriptors, local connection parameters and the mode of the connection.
Chapter 18 – VoIP MGCP MGCP Command reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to configure and manage the MGCP protocol module. MGCP commands The table below lists the mgcp commands provided by the CLI: Command VOIP MGCP PROTOCOL DISABLE VOIP MGCP PROTOCOL ENABLE...
AT-RG 600 Residential Gateway – Software Reference Manual See also VOIP MGCP PROTOCOL RESTART VOIP MGCP PROTOCOL ENABLE. VOIP MGCP PROTOCOL ENABLE Syntax VOIP MGCP PROTOCOL ENABLE Description This command turns on the MGCP signaling module. To bind the MGCP module to a specific IP interface use the VOIP MGCP PROTOCOL SET NETINTERFACE command.
Chapter 18 – VoIP MGCP Changing the signaling port causes the MGCP module to restart. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value...
AT-RG 600 Residential Gateway – Software Reference Manual • Signaling and voice packets will use the Source IP address defined for the selected interface. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Chapter 18 – VoIP MGCP VOIP MGCP PROTOCOL SHOW Syntax VOIP MGCP PROTOCOL SHOW Description This command displays basic MGCP module configuration parameters set by the VOIP MGCP PROTOCOL ENABLE command. Example --> voip mgcp protocol show Gateway base protocol: MGCP --------------------------------------------------------- Profile: sphere...
AT-RG 600 Residential Gateway – Software Reference Manual VOIP MGCP CALLAGENT DELETE VOIP MGCP CALLAGENT DELETE Syntax VOIP MGCP CALLAGENT DELETE <name> Description This command deletes a previously defined call agent created using the VOIP MGCP CALLAGENT CREATE command. To show the list of existing CALLAGENT entries, use the VOIP MGCP CALLAGENT LIST command.
Page 440
Chapter 18 – VoIP MGCP See also VOIP MGCP CALLAGENT CREATE VOIP MGCP CALLAGENT SHOW...
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 19 VoIP QoS and Media Introduction SIP and H323 VoIP signalling protocols typically make use of unreliable transport protocols like UDP to transfer media information as voice packets. This transportwasn’t originally designed to transport data for real time applications. In a multiapplication network environment were traffic typology can be very variable, real time applications can suffer packet delay and latency due to overloading of network devices.
Chapter 19 – VoIP Media and QoS Media AT-RG613, AT-RG623 and AT-RG656 can be configured to use a specific pool of ports for media transport. In this way it is always well known which ports are being used by the system, making it possible to open the correct firewall ports when media packets must cross security interfaces.
AT-RG 600 Residential Gateway – Software Reference Manual VoIP QoS Command Reference This section describes the commands available on the AT-RG613, AT-RG 623 and AT-RG656 Residential Gateway to configure and manage the VoIP QoS module. VoIP QoS CLI commands The table below lists the VOIP QOS commands provided by the CLI: Command VOIP QOS SET DSCP VOIP QOS SET TOS...
Chapter 19 – VoIP Media and QoS To disable TOS support (i.e. remove any previous configuration perfomed on TOS field on signalling and speech packes) use the VOIP QOS SET NONE command. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
AT-RG 600 Residential Gateway – Software Reference Manual VoIP Media Command Reference This section describes the commands available on the AT-RG613, AT-RG 623 and AT-RG656 Residential Gateway to configure and manage the VoIP Media module. VoIP Media CLI commands The table below lists the VOIP MEDIA commands provided by the CLI: Command VOIP MEDIA SET PORTRANGE VOIP MEDIA SET RTCP...
Chapter 19 – VoIP Media and QoS Description This command enables RTCP. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value Turn off the RTCP support.
Page 447
AT-RG 600 Residential Gateway – Software Reference Manual RTP session time-out: 1 Mins. See also VOIP MEDIA SET PORTRANGE VOIP MEDIA SET RTCP VOIP MEDIA SET SESSIONTIMEOUT...
AT-RG 600 Residential Gateway – Software Reference Manual Chapter 20 Introduction Wide Area Networks consist of a lot of components (hubs, switches, routers, residential gateways, set top boxes, PCs) that need to be configured. The number of components can be very high and often the configuration of these devices to get them up and running requires a lot of work for network administrators.
Chapter 20 - ZTC ZTC Shell ZTC Web HTTP LDAP ZTC Server LDAP Server Interface WEB Browser TFTP plugin file system TFTP TFTP Server ZTC Client Figure 2 . ZTC network architecture. ZTC Network Architecture The ZTC Network Architecture consists of the following parts: •...
AT-RG 600 Residential Gateway – Software Reference Manual The core of the application is the ZTC Server. It manages the dialogue with the directory service backend and performs all operations on data. The ZTC WEB Interface, used to interact with the ZTC Server, is decoupled from the ZTC server, and can run on different machines.
Chapter 20 - ZTC Storing Unit Configuration The configuration file downloaded from ZTC server is never stored permanently into the unit flash file system. This solution prevents memory flash failure when too many write requests are executed. If the unit restarts, it loses the previous downloaded configuration and starts from the bootstrap configuration.
Chapter 20 - ZTC • Because the Residential Gateway never stores the configuration downloaded from ZTC server, the ZTC client contacts again the ZTC server and execute exactly the same procedure defined in the Pull-at-startup phase. Residential LDAP ZTC Server Gateway Database ZTC idle...
AT-RG 600 Residential Gateway – Software Reference Manual ZTC Command reference This section describes the commands available on the AT-RG613, AT-RG623 and AT-RG656 Residential Gateway to configure and manage the ZTC Client module. ZtcClient commands The table below lists the ztcclient commands provided by the CLI: Command ZTCCLIENT ENABLE DYNAMIC ZTCCLIENT ENABLE STATIC...
Chapter 20 - ZTC ZTCCLIENT ENABLE STATIC Syntax ZTCCLIENT ENABLE STATIC ZTCSERVERADDR <ztcserveraddr> Description This command enables the ztcclient, and set the ZTC Server IP address. To apply changes to the ZTC client module and turn on it, use the ztcclient update command.
AT-RG 600 Residential Gateway – Software Reference Manual interface: - STATIC CONFIGURATION server address for static configuration: 0.0.0.0 ZTCCLIENT SET Syntax ZTCCLIENT SET CONFIGTIMEOUT <configtimeout> Description This command changes the value of the configtimeout, which is the polling time interval before the ZTC client contacts the ZTC Server to check if a new configuration is available.
Chapter 21 – Software Update Chapter 21 Software Update Introduction AT-RG600 Residential Gateway software consists of the system application file (named image) plus additional support files. All these files are stored permanently into the system flashfs file system and loaded during the unit bootstrap.
AT-RG 600 Residential Gateway – Software Reference Manual FTP server AT-RG600 Residential Gateway implements an internal FTP server that provides access to the isfs file system. FTP connection is used typically to download into the Residential Gateway a new image file but can be used also to retrieve or to download configuration and support files too.
Chapter 21 – Software Update TFTP Client TFTP Write Request: tftplock.key TFTP Write Request: filename TFTP Data TFTP Read Request: filename TFTP Data Figure 2 . Access to the Residential Gateway TFTP server. The maximum file size that can be downloaded into the Residential Gateway is 8kbyte.
AT-RG 600 Residential Gateway – Software Reference Manual Figure 2 . The Windows™ Loader SwUpdate module FTP, TFTP and Windows™ Loader are three upgrade solutions based on external client applications that typically require user manual operation or the development of dedicated script files. SwUpdate module is a basic FTP client module running on the Residential Gateway that contacts periodically a TFTP server and retrieves from it the required software or support files.
Chapter 21 – Software Update ʺRG613TXʺ ʺRG613TXJʺ ʺRG613SHʺ ʺRG613LHʺ ʺRG613BDʺ ʺRG623TXʺ ʺRG623SHʺ ʺRG623LHʺ ʺRG623BDʺ ʺRG656TXʺ ʺRG656BDʺ ʺRG656LHʺ ʺRG656SHʺ SwUpdate is designed to download only the files that differ or are not present into the Residential Gateway file-system. Residential TFTP DHCP Gateway Server Server...
Page 463
AT-RG 600 Residential Gateway – Software Reference Manual When the SwUpdate module connects to the TFTP server, it retrieves immediately this file and then it download each file reported by this list. The MD5SUM file is a list of filename where each file name has associated the MD5 value.
Chapter 21 – Software Update Plug-and-play If the Residential Gateway is set with dynamic IP interface and the DHCP server sends the option 66 tftp-file-name togheter with option 60 (dhcp-class-identifier) equal to same product code of the Residential Gateway, SwUpdate module sets the server address to the address specified by the tftp-file-name option and will uses the TFTP protocol to retrieve the MD5SUM file instead of the FTP protocol.