1. Manuals
  2. Brands
  3. Cyclades Manuals
  4. Network Router
  5. PR3000
  6. Installation manual

Cyclades PR3000 Installation Manual

Mid-range, multi-protocol, expandable router
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Cyclades-PR3000
Installation Manual
Mid-range, Multi-protocol, Expandable Router
Cyclades Corporation

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the PR3000 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Cyclades PR3000

Summary of Contents for Cyclades PR3000

  • Page 1 Cyclades-PR3000 Installation Manual Mid-range, Multi-protocol, Expandable Router Cyclades Corporation...
  • Page 2 FCC Warning Statement: The Cyclades-PR3000 has been tested and found to comply with the limits for Class A digital devices, pursuant to Part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment.

  • Page 3: Table Of Contents

    Example 2 A LAN-to-LAN Example Using Frame Relay ................31 Example 3 Connection to an Internet Access Provider via DSU/CSU ............39 Example 4 A Terminal Server Example using a Z-Bus Card and a Cyclades Serial Expander 16 ....46 Example 5 Remote Access Server ......................... 52 Example 6 A LAN-to-LAN Example Using PPP on an E1 or T1 Line .............
  • Page 4 Cyclades-PR3000 Installation Manual The IP Network Protocol ..........................80 IP Bridge ............................... 82 Other Parameters ............................. 83 CHAPTER 6 THE SWAN INTERFACE ......................84 CHAPTER 7 CONFIGURATION OF THE Z-BUS INTERFACE ................. 87 Wizards ................................90 Configuration Without a Wizard ........................100 Asynchronous Port Menus .........................
  • Page 5 Cyclades-PR3000 Installation Manual X.25 ................................127 X.25 with PAD (Packet Assembler/Disassembler) ..................130 CHAPTER 12 ROUTING PROTOCOLS ......................131 Routing Strategies ............................131 Static Routing ............................. 131 Dynamic Routing ............................131 Static Routes ..............................132 RIP Configuration ............................135 OSPF ................................136 OSPF Configuration on the Interface ......................
  • Page 6 Cyclades-PR3000 Installation Manual CHAPTER 16 IPX (INTERNETWORK PACKET EXCHANGE) ..............177 Enabling IPX..............................178 Configuring the Ethernet Interface ......................... 178 Configuring Other Interfaces .......................... 178 PPP ................................178 Frame Relay ............................... 179 X.25 ................................179 Routing ................................179 The SAP (Service Advertisement Protocol) Table ..................180 CHAPTER 17 VIRTUAL PRIVATE NETWORK CONFIGURATION ..............
  • Page 7 Cyclades-PR3000 Installation Manual T1 and E1 ..............................196 Serial Expander 16 ............................. 197 Cables ................................198 Straight (Parallel) Cable ..........................198 DB-25 to M.34 Adapter ..........................199 SWAN X.21 Cable ............................200 Loopback Cable for the Serial Expander 16 ....................201 SWAN V.35 Cable ............................

  • Page 8: Chapter 1 How To Use This Installation Manual

    CyROS is constantly evolving, and the menus in this manual might be slightly different from the menus in the router. The latest version of all three manuals (and the latest version of CyROS) can be downloaded from Cyclades’ web site. All manuals indicate on the second page the manual version and the corresponding version of CyROS.

  • Page 9: Installation Assumptions

    Cyclades-PR3000 Installation Manual Chapter 13 – CyROS - shows how to set router specific parameters and create lists of hosts and users. Chapter 14 – Network Address Translation - describes CyROS’ NAT implementation. Chapter 15 – Filters and Rules - demonstrates how to protect your router from undesired traffic.

  • Page 10: Icons

    Cyclades-PR3000 Installation Manual Icons Icons are used to draw attention to important text. Icon Meaning What is Wrong? When an error is common, text with this icon will mention the symptoms and how to resolve the problem. Where Can I Find...

  • Page 11: Cyclades Technical Support And Contact Information

    In the United States and Canada, contact technical support by phone or e-mail: Phone: (510) 770-9727 (9:00AM to 5:00PM PST) Fax: (510) 770-0355 E-mail: support@cyclades.com Outside North America, please contact us through e-mail or contact your local Cyclades distributor or representative. Chapter 1 - How to Use This Manual...
  • Page 12 Cyclades-PR3000 Installation Manual The mailing address and general phone numbers for Cyclades Corporation are: Cyclades Corporation Phone: + 01 (510) 770-9727 Fax: + 01 (510) 770-0355 41934 Christy Street Fremont, CA 94538 Chapter 1 - How to Use This Manual...

  • Page 13: Chapter 2 What Is In The Box

    CHAPTER 2 WHAT IS IN THE BOX The Cyclades - PR3000 comes in many varieties. What is in the box will depend on which boards are installed in the slots and whether or not serial expanders are purchased. The following are included with all PR3000 products:...
  • Page 14 Cyclades-PR3000 Installation Manual the PR3000 main module, • power cable • console cable, • mounting kit, • Quick Installation Guide. • The ISDN-BRI, T1, and E1 interfaces are not provided with cables or additional equipment. Chapter 2 - What is in the Box...
  • Page 15 Cyclades-PR3000 Installation Manual The PR3000 can include 0, 1, 2, or 3 SWAN boards. There are two types of SWAN boards: one with a SCSI-II port (SWAN) and the other with a DB-25 female port (SWAN RSV). A straight cable or a V.35 cable set can be purchased separately for the SWAN RSV card. The uses of these cables and how they should be connected are demonstrated in Figure 2.2.
  • Page 16 SWAN V.35 cable, • the SWAN X.21 cable, and • the RS-232 cable. • The uses of these cables and how they should be connected are shown in Figure 2.3. Back Panel of PR3000 Slot with SWAN Card SCSI-II SCSI-II SCSI-II Male...
  • Page 17 Cyclades-PR3000 Installation Manual The PR3000 can include 0, or 1 Z-Bus board. Each Z-Bus board is sold in combination with 1, 2, 3, or 4 SE16 modules. The items included are shown in Figures 2.4 and 2.5, and listed below.
  • Page 18 Cyclades-PR3000 Installation Manual Back Panel of PR3000 Slot with Z-Bus Card SCSI-II Male SE16 Short, Unlabeled Cable SCSI-II Male RJ-45M Loop-Back Cable RJ-45M for Testing SCSI-II Male SE16 Short, Unlabeled Cable SCSI-II Male FIGURE 2.4 ITEMS INCLUDED IN THE Z-BUS AND SE16 PACKAGE (FIRST TWO SE16 MODULES)
  • Page 19 Cyclades-PR3000 Installation Manual SCSI-II Male SE16 Short, Unlabeled Cable SCSI-II Male Wall Outlet Power Supply Power Cable SCSI-II Male SE16 Short, Unlabeled Cable SCSI-II Male FIGURE 2.5 ITEMS INCLUDED IN THE Z-BUS AND SE16 PACKAGE (SECOND TWO SE16 MODULES) Chapter 2 - What is in the Box...

  • Page 20: Chapter 3. Using Cyros Menus

    13 of the installation manual. The login prompts and main menu are shown in the figure. [PR3000] login : super [PR3000] Password : **** Cyclades Router (Router Name) – Main Menu 1 – Config 2 – Applications 3 – Logout 4 –...

  • Page 21: Special Keys

    Cyclades-PR3000 Installation Manual All menus have the following elements: Title – In the above example: “Main Menu”. • Prompt – The text: “Select Option ==>”. • Options –The menu options, which are selected by number. • Router Name – The default is the name of the product. Each router can be renamed for easier identification.

  • Page 22: The Cyros Management Utility

    Cyclades-PR3000 Installation Manual On leaving a menu where a change in configuration was made, CyROS will ask whether the change is to be saved: (D)iscard, save to (F)lash, or save to (R)un configuration: Selecting Discard will eliminate all changes made since the last time the question was asked. Saving to Flash memory makes all changes permanent.

  • Page 23: Chapter 4 Step-By-Step Instructions For Common Applications

    Cyclades-PR3000 Installation Manual CHAPTER 4 STEP-BY-STEP INSTRUCTIONS FOR COMMON APPLICATIONS This chapter provides detailed examples that can be used as models for similar applications. Turn to the example that is closest to your application, read the explanations, and fill in the blank spaces with parameters appropriate to your system.
  • Page 24 Cyclades-PR3000 Installation Manual Affiliate’s Network IP: 15.0.0.0 _ _ _ _ _ _ _ Network IP: 100.130.130.0 Headquarters’ Mask:255.255.255.0 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Mask:255.255.255.0 _ _ _ _ _ _ _ _...
  • Page 25 Cyclades-PR3000 Installation Manual STEP ONE The first step is to determine the parameters needed to configure the Ethernet interface (ETH0). The parameters in the Network Protocol Menu (IP) are shown in Figure 4.2. Fill in the blanks for your application in the right-most column.
  • Page 26 Cyclades-PR3000 Installation Manual STEP TWO No more parameters are necessary for the Ethernet interface. The other interface to be configured is the SWAN in slot 1. The SWAN physical media parameters are shown in Figure 4.3. Fill in the values for your application.
  • Page 27 Cyclades-PR3000 Installation Manual STEP THREE The network protocol parameters, shown in Figure 4.4, are similar to those for the Ethernet interface. Fill in the parameters for your network in the right-most column. Menu CONFIG=>INTERFACE=>SWAN=>NETWORK PROTOCOL=>IP Parameter Example Your Application Active or Inactive Active enables IP communication (IPX and Transparent Bridge are not used in this example).
  • Page 28 Time Interval to Send Use the preset value, one. Config Requests Enable Predictor Yes, if Cyclades routers are used on both ends of Compression the link and Predictor Compression is enabled on both routers. This feature is effective only for links running at speeds under 2Mbps.
  • Page 29 Cyclades-PR3000 Installation Manual STEP FIVE Now that the headquarters’ LAN has been defined, a route must be added to tell the router that the affiliate’s LAN is at the other end of the line. Creating a static route is the simplest way to do this. Chapter 12 of the Installation Manual explains static routes and other routing methods available in CyROS.
  • Page 30 Cyclades-PR3000 Installation Manual STEP SEVEN The Ethernet interface can be tested as described in the troubleshooting appendix. The SWAN interface can be tested in a similar manner. At this point, you should create a backup of the configuration file (in binary) and print out a listing of the configuration.

  • Page 31: Example 2 A Lan-To-Lan Example Using Frame Relay

    Cyclades-PR3000 Installation Manual Example 2 A LAN-to-LAN Example Using Frame Relay This section will guide you through a complete router installation for the connection of two LANs via Frame Relay. Figure 4.7 shows the example system used in this section. Spaces have been provided next to the parameters needed for the configuration where you can fill in the parameters for your system.
  • Page 32 Cyclades-PR3000 Installation Manual STEP ONE The first step is to determine the parameters needed to configure the Ethernet interface (ETH0). The parameters in the Network Protocol Menu (IP) are shown in Figure 4.8. Fill in the blanks for your application in the right-most column.
  • Page 33 Cyclades-PR3000 Installation Manual STEP TWO No more parameters are necessary for the Ethernet interface. The other interface to be configured is the SWAN in slot 1. The SWAN physical media parameters are shown in Figure 4.9. Fill in the values for your application.
  • Page 34 Cyclades-PR3000 Installation Manual STEP THREE The network protocol parameters, shown in Figure 4.10, are similar to those for the Ethernet interface. Fill in the parameters for your network in the right-most column. Menu CONFIG=>INTERFACE=>SWAN=>NETWORK PROTOCOL=>IP Parameter Example Your Application Active or Inactive...
  • Page 35 Cyclades-PR3000 Installation Manual STEP FOUR The Encapsulation parameters for Frame Relay are less straight-forward. Many of them are based on decisions that cannot be shown in a diagram. Fortunately, the choices made here will mostly effect the performance of the link, rather than whether it works or not.
  • Page 36 Frame Relay Address Map Static, which maps one IP address to this DLCI. IP Address 200.240.230.1 Enable Predictor Yes, if Cyclades routers are used on both Compression ends of the link and Predictor Compression is enabled on both routers. This feature is effective only for links running at speeds under 2 Mbps.
  • Page 37 Cyclades-PR3000 Installation Manual STEP FIVE Now that the headquarters’ LAN has been defined, a route must be added to tell the router that the affiliate’s LAN is at the other end of the line. Creating a static route is the simplest way to do this. Chapter 12 of the Installation Guide explains static routes and other routing methods available in CyROS.
  • Page 38 Cyclades-PR3000 Installation Manual STEP SEVEN The Ethernet interface can be tested as described in the troubleshooting appendix. The SWAN interface can be tested in a similar manner. At this point, you should create a backup of the configuration file (in binary) and print out a listing of the configuration.

  • Page 39: Example 3 Connection To An Internet Access Provider Via Dsu/Csu

    Cyclades-PR3000 Installation Manual Example 3 Connection to an Internet Access Provider via DSU/CSU This section will guide you through a complete router installation for the connection of a LAN to an Internet access provider via PPP. The configuration of NAT (Network Address Translation) will also be shown. Figure 4.14 shows the example system used in this section.
  • Page 40 Cyclades-PR3000 Installation Manual STEP ONE The first step is to determine the parameters needed to configure the Ethernet interface (ETH0). The parameters in the Network Protocol Menu (IP) are shown in Figure 4.15. Fill in the blanks for your application in the right-most column.
  • Page 41 Cyclades-PR3000 Installation Manual STEP TWO No more parameters are necessary for the Ethernet interface. The other interface to be configured is the SWAN in slot 1. The SWAN physical media parameters are shown in Figure 4.16. Fill in the values for your application.
  • Page 42 Cyclades-PR3000 Installation Manual Parameter Example Your Application Secondary IP 0.0.0.0 for none Address Enable Dynamic Yes, because the IP address of the Local IP Address SWAN interface will be assigned dynamically. Remote IP Address Type Remote IP Address 0.0.0.0 IP MTU Use the preset value, 1500.
  • Page 43 Cyclades-PR3000 Installation Manual STEP FOUR The Encapsulation parameters for PPP are less straight-forward. Many of them are based on decisions that cannot be shown in a diagram. Fortunately, the choices made here will mostly effect the performance of the link, rather than whether it works or not.
  • Page 44 Cyclades-PR3000 Installation Manual STEP FIVE A static route must be added to tell the router that all traffic not intended for the local LAN should be sent to the Access Provider. Chapter 12 of the Installation Manual explains static routes and other routing methods available in CyROS.
  • Page 45 Cyclades-PR3000 Installation Manual The factory preset values for all other NAT parameters are appropriate for this example. STEP SEVEN Now that the parameters have been defined, enter into each menu described above, in the order presented (read chapter 3, Using Menus, if you have not done so already). Set the parameters in each menu according to the values you wrote in the figures above.

  • Page 46: Example 4 A Terminal Server Example Using A Z-Bus Card And A Cyclades Serial Expander 16

    It is assumed that the LAN has already been configured (see the previous examples for guidance if this is not the case). It is also assumed that some routing method is being used which allows the PR3000 to communicate with the UNIX server, which need not be on the LAN.
  • Page 47 STEP ONE Configure the PR3000 Ethernet Interface if it is not already configured. Determine which ports of the SE16 will be used for which external devices. In the example, Ports 1 through 3 will be used for terminals, port 4 will be used for a printer, and port 12 will be used for a bar-code reader.
  • Page 48 Cyclades-PR3000 Installation Manual STEP TWO This example takes advantage of the terminal server wizard to set the basic parameters for all ports. Details as to which parameters are set are given in chapter 7 of the Installation Manual. The two values entered below are the correct values for the terminals connected to ports 1 through 3.
  • Page 49 <filename> <pr3000 IP address> : <port number (4 in the example)>. This sends the file to the remote printer. Tsrlp is a program that runs on the Unix server and creates a device for the printer connected to the PR3000. It is available free on the Cyclades website (as an application on the drivers page).
  • Page 50 Cyclades-PR3000 Installation Manual Menu CONFIG=>INTERFACE=>Z-BUS=> <PORT> =>ENCAPSULATION=>CHAR Parameter Example Your Application Device Type Socket TCP Keep Alive Timer Wait for or Start a Wait is used when the remote application will start the Connection communication. If Start is used, a connection is attempted as soon as the line is considered operational.
  • Page 51 Cyclades-PR3000 Installation Manual STEP FIVE Now that the parameters have been defined, enter into each menu described above, in the order presented (read chapter 3, Using Menus, if you have not done so already). Set the parameters in each menu according to the values you wrote in the figures above.

  • Page 52: Example 5 Remote Access Server

    Example 5 Remote Access Server This section will guide you through a complete Remote Access Server installation for one port of one Cyclades - Serial Expander 16. Figure 4.28 shows the example system used in this section. Spaces have been provided next to the parameters needed for the configuration where you can fill in the parameters for your system.
  • Page 53 Cyclades-PR3000 Installation Manual STEP ONE The first step is to determine the parameters needed to configure the Ethernet interface (ETH0). The parameters in the Network Protocol Menu (IP) are shown in Figure 4.29. Fill in the blanks for your application in the right-most column.
  • Page 54 Cyclades-PR3000 Installation Manual STEP TWO No more parameters are necessary for the Ethernet interface. The other interface to be configured is the SWAN in slot 1. The SWAN physical media parameters are shown in Figure 4.30. Fill in the values for your application.
  • Page 55 Cyclades-PR3000 Installation Manual Parameter Example Your Application Secondary IP 0.0.0.0 for none. Address Enable Dynamic Local IP Address IP MTU Use the preset value, 1500. This determines whether or not a given IP datagram is fragmented. Global. ICMP Port Inactive...
  • Page 56 Cyclades-PR3000 Installation Manual STEP FOUR The Encapsulation parameters for PPP are less straight-forward. Many of them are based on decisions that cannot be shown in a diagram. Fortunately, the choices made here will mostly effect the performance of the link, rather than whether it works or not.
  • Page 57 Cyclades-PR3000 Installation Manual STEP FIVE A static route must be added to tell the router that all traffic not intended for the local LAN should be sent to the Access Provider. Chapter 12 of the Installation Manual explains static routes and other routing methods available in CyROS.
  • Page 58 Cyclades-PR3000 Installation Manual Fill in the spaces in Figure 4.34 with the values for your application. Menu CONFIG=>INTERFACE=>Z-BUS=> <PORT> =>WIZARDS=>RAS PROFILE Parameter Example Your Application Modem String Index 0 for none Speed Remote IP Address 200.246.93.1 FIGURE 4.34 Z-BUS PORT PARAMETERS STEP SEVEN An authentication server must be available to authenticate the user ID and password of whoever calls the router.
  • Page 59 Cyclades-PR3000 Installation Manual STEP EIGHT Now that the parameters have been defined, enter into each menu described above, in the order presented (read chapter 3, Using Menus, if you have not done so already). Set the parameters in each menu according to the values you wrote in the figures above.

  • Page 60: Example 6 A Lan-To-Lan Example Using Ppp On An E1 Or T1 Line

    Cyclades-PR3000 Installation Manual Example 6 A LAN-to-LAN Example Using PPP on an E1 or T1 Line This section will guide you through a complete router installation for the connection of three LANs using a channelized E1 or T1 line. Figure 4.36 shows the example system used in this section. Spaces have been provided next to the parameters needed for the configuration where you can fill in the parameters for your system.
  • Page 61 Cyclades-PR3000 Installation Manual STEP ONE The first step is to determine the parameters needed to configure the Ethernet interface (ETH0). The parameters in the Network Protocol Menu (IP) are shown in Figure 4.37. Fill in the blanks for your application in the right-most column.
  • Page 62 Cyclades-PR3000 Installation Manual STEP TWO No more parameters are necessary for the Ethernet interface. The other interface to be configured is the E1 (or T1) in slot 3. The T1/E1 interface can be broken up into channels, defined by timeslots. Each timeslot is a slice of time allotted to throughput from a particular source.
  • Page 63 Cyclades-PR3000 Installation Manual In this example, the E1/T1 line used by the company headquarters in Boston is broken into two channels. Each timeslot can transmit 64Kbps. In order to send 512 Kbps to the Detroit office, 8 timeslots are needed. The office in Atlanta only requires one timeslot, since the connection is only 64Kbps.
  • Page 64 Cyclades-PR3000 Installation Manual STEP THREE PPP Encapsulation is used in this example. The parameters for both channels are the same (though your application may differ). Fill in the values for your system, consulting chapter 11 of the Installation Manual for more information if necessary.
  • Page 65 Cyclades-PR3000 Installation Manual STEP FOUR The network protocol parameters for both channels, shown in Figure 4.42, are similar to those for the Ethernet interface. Fill in the parameters for your network in the right-most column. Menu CONFIG=>INTERFACE=>E1/T1=>CHANNEL ONE and TW O=>NETWORK PROTOCOL=>IP...
  • Page 66 Cyclades-PR3000 Installation Manual STEP FIVE Now that the headquarters’ LAN has been defined, routes must be added to tell the router that the affiliates’ LANs are at the other end of the line. Creating static routes is the simplest way to do this. Chapter 12 of the Installation Manual explains static routes and other routing methods available in CyROS.
  • Page 67 Cyclades-PR3000 Installation Manual Menu CONFIG=>STATIC ROUTES=>IP=>ADD ROUTE Parameter Example Your Application Destination IP Address 12.3.0.0 Subnet Mask 255.255.0.0 Gateway or Interface gateway Gateway IP Address 12.4.0.4 Metric One -- number of routers between router being configured and the destination IP Address.
  • Page 68 Cyclades-PR3000 Installation Manual Instructions for creating a backup of the configuration file: Use the menu option ADMIN =>WRITE CONFIGURATION =>TO FTP SERVER. Fill in the IP address of the computer where the configuration file should be saved, the file name, the directory name, and the user account information.

  • Page 69: Example 7 Link Backup

    Cyclades-PR3000 Installation Manual Example 7 Link Backup This example shows the configuration of a backup link, with a swan connection to a public Frame Relay Network providing the primary link and a SWAN with a PPP connection providing the secondary link. Figure 4.43 shows the networks used in this example.
  • Page 70 Cyclades-PR3000 Installation Manual Spaces have been provided next to the parameters needed for the configuration for you to fill in the parameters for your system. Do this now before continuing. STEP ONE The bandwidth used by CyROS for multilink circuit calculations is that given in the traffic control menu, rather than the actual physical bandwidth available.
  • Page 71 Cyclades-PR3000 Installation Manual STEP TWO Now, the primary link (Slot 1) and the secondary link (Slot 3) must be registered as a multilink circuit. First, a multilink circuit is created and assigned an identifier. This is done in the CONFIG =>MULTILINK menu. Then, the two links are added to the multilink circuit.
  • Page 72 Cyclades-PR3000 Installation Manual Menu CONFIG=>MULTILINK=>MULTILINK CIRCUIT NUMBER=>ADD/MODIFY INTERFACE Parameter Example Your Application Slot N Slot 3 Type of Interface Backup Time to Activate Zero , since this link IS the backup. (A Backup After This backup can itself have a backup, but Link Goes Down this is not done in this example.)
  • Page 73 Cyclades-PR3000 Installation Manual Menu CONFIG=>MULTILINK=>MULTILINK CIRCUIT NUMBER=>CIRCUIT ATTRIBUTES Parameter Example Your Application Criterion for Traffic This parameter has no effect for link backup. For load Distribution backup, Optimal distribution is performed randomly, and the packet is forwarded to the interface with the lesser load.
  • Page 74 Cyclades-PR3000 Installation Manual STEP FOUR Now, a static backup route must be created for the secondary link. It is assumed that a route of some sort (static, RIP, etc.) already exists for the primary link. The static route parameters for the example secondary link are shown in Figure 4.51.
  • Page 75 Cyclades-PR3000 Installation Manual STEP SIX The multilink circuit can be tested by temporarily deactivating the interface on the primary link. This is done in the ADMIN=> START/STOP INTERFACE menu by selecting the SWAN interface. If there is traffic, the backup link should then take over, and the menu item INFO =>SHOW ROUTING TABLE will show that the backup link is...

  • Page 76: Example 8 Remote Console

    Cyclades-PR3000 Installation Manual Example 8 Remote Console This example describes the configuration of the Z-Bus card and Serial Expander 16 for a remote console application. This setup will allow access to a console application on a server connected to the SE16 through a com port, from any location on the Internet.
  • Page 77 STEP ONE Configure the PR3000 Ethernet Interface if it is not already configured. Determine which ports of the SE16 will be used for remote consoles. In the example, Ports 1 through 8 will be used for this purpose. This example takes advantage of the terminal server wizard to set the basic parameters for all ports. Details as to which parameters are set are given in chapter 7 of the Installation Manual.
  • Page 78 Cyclades-PR3000 Installation Manual Menu CONFIG=>INTERFACE=>Z-BUS=><PORT RANGE 1-8>=>ENCAPSULATION=>CHAR Parameter Example Your Application Device Type Socket TCP Keep Alive Timer Wait for or Start a Wait is used because the application on the workstation Connection will start the communication. Filter Null Char after CR...
  • Page 79 Cyclades-PR3000 Installation Manual STEP THREE Now that the parameters have been defined, enter into each menu described above, in the order presented (read chapter 3, Using Menus, if you have not done so already). Set the parameters in each menu according to the values you wrote in the figures above.

  • Page 80: Chapter 5 Configuration Of The Ethernet Interface

    CHAPTER 5 CONFIGURATION OF THE ETHERNET INTERFACE The PR3000 has one Ethernet 10Base-T interface, provided in a standard RJ-45 modular jack, which should be connected to an Ethernet hub or switch. Use a standard 10Base-T straight-through cable (not included). When the Ethernet link is correctly connected, the link LED on the PR3000 back panel will be lit.
  • Page 81 Cyclades-PR3000 Installation Manual Network Protocol Menu (Continued) Parameter Description Subnet Mask Applies to Numbered interfaces. Subnet mask of the network. Secondary IP Applies to Numbered interfaces. Indicates a second (or third, etc. up to eight) IP Address address that can be used to refer to this interface. This parameter and the next are repeated until no value is entered.

  • Page 82: Ip Bridge

    Cyclades-PR3000 Installation Manual Network Protocol Menu (Continued) Parameter Description Routing of Broadcast Activating this parameter causes the router to route broadcast messages from the LAN Messages to the WAN and vice-versa. An individual interface can be excluded by setting this parameter to Inactive, without effecting the broadcast of messages on the other interfaces.

  • Page 83: Other Parameters

    Cyclades-PR3000 Installation Manual 200.240.240.9 200.240.240.3 200.240.240.2 200.240.240.1 ETH0 PR4000 Link 1 PR3000 ETH0 ........200.240.240.8 200.240.240.4 FIGURE 5.1 IP BRIDGE EXAMPLE Other Parameters Transparent Bridge is covered in chapter 10 and IPX is covered in chapter 15. The parameters defined in the Routing Protocol and Traffic Control Menus should be set after reading chapters 12 and 15, respectively.

  • Page 84: Chapter 6 The Swan Interface

    Cyclades-PR3000 Installation Manual CHAPTER 6 THE SWAN INTERFACE This chapter describes how to configure a SWAN interface. The physical link should be set up as shown in chapter 2, according to the type of modem or device at the other end of the connection and the type of SWAN port.
  • Page 85 Cyclades-PR3000 Installation Manual STEP TWO The second step is to choose a data-link protocol in the Encapsulation menu. There are many encapsulation options on this interface. For synchronous communication: Frame Relay: the Frame Relay Protocol is based on frame switching and constructs a permanent virtual •...
  • Page 86 Cyclades-PR3000 Installation Manual STEP FOUR If PPP Encapsulation is being used, a type of authentication should be chosen. This is done in the authentication menu. Authentication Menu CONFIG=>INTERFACE=>SWAN=>AUTHENTICATION Parameter Description Authentication Type Local uses the list of users defined in CONFIG=> SECURITY=>USERS=>ADD.

  • Page 87: Chapter 7 Configuration Of The Z-Bus Interface

    Installation Manual CHAPTER 7 CONFIGURATION OF THE Z-BUS INTERFACE The Z-Bus Card is used in conjunction with either the Cyclades-Synchronous Serial Expander (8 ports) or the Cyclades-Serial Expander 16. The SSE8 can be used for either synchronous or asynchronous communication, on a port by port basis, while the SE16 is only for asynchronous communication.
  • Page 88 Cyclades-PR3000 Installation Manual Config Number of Serial Expanders Zbus Zbus Card Interface First Logical Link Zbus Port One Port Encapsulation Network Protocol Routing Protocol Physical Bandwidth Traffic Control General IP Traffic Control List Authentication Authentication Type Username Password Authentication Server...
  • Page 89 STEP ONE More than one Z-Bus card can be installed in the PR3000 and more than one SE16 can be attached to a Z-Bus. Even with two or three separate Z-Bus cards, the Z-Bus Ports are numbered consecutively. The example in Figure 7.2 shows one SSE8 with ports numbered 1 through 8 and two SE16s with ports numbered 17-48.

  • Page 90: Wizards

    Installation Manual Wizards Wizards were created to simplify the Z-Bus configuration for popular uses of the PR3000. Wizards are available for configuration of a Terminal Server, a Remote Access Server, and a LAN-to-LAN Router. A utility that copies a configuration from one port to another is also provided in the Wizard Menu.
  • Page 91 Cyclades-PR3000 Installation Manual Wizards Menu CONFIG=>INTERFACE=>Z-BUS=> <PORT> =>WIZARDS Menu Items Description TS Profile Used to create a local host Terminal Server. The only parameters are the Username and Speed . The automatically set parameters are given in a table below. Note: this wizard defines all communication to be asynchronous.
  • Page 92 Cyclades-PR3000 Installation Manual Server Server Terminal Ethernet Server TCP/IP ........Telnet Terminals FIGURE 7.4 APPLICATION THAT CAN TAKE ADVANTAGE OF THE TERMINAL SERVER WIZARD...
  • Page 93 Cyclades-PR3000 Installation Manual Encapsulation: CHAR Device Type Terminal TCP KeepAlive Timer Inactive Terminal Type ANSI Switch Session Character Code Escape Session Character Code Username entered as a parameter Network Protocol: Inactive Routing Protocol: None Physical Mode Async Speed entered as a parameter...
  • Page 94 Cyclades-PR3000 Installation Manual A typical application of the RAS Wizard is shown in Figure 7.6. The parameters that are automatically set by the wizard are given in the table following the figure. Authentication Server Server Router Remote Access Server ..
  • Page 95 Cyclades-PR3000 Installation Manual Encapsulation: PPPCHAR PPP Inactivity Timeout None Van Jacobson IP Header Disabled Compression LCP Echo Requests Enabled Time Interval to send Config Requests ACCM 000A0000 Predictor Compression Disabled Switch Session Character Code Escape Session Character Code Network Protocol: IP Active...
  • Page 96 Cyclades-PR3000 Installation Manual Network Protocol: TB Inactive Routing Protocol: None Physical Mode Async Speed entered as a parameter Flow Control Hardware Modem Connection Connected Modem String Index entered as a parameter RTS Mode Normal Flow Control Input Signal DCD Input Signal DSR...
  • Page 97 Cyclades-PR3000 Installation Manual A typical application of the LAN-to-LAN Wizard is shown in Figure 7.8. The parameters that are automatically set by the wizard are given in the two tables that follow the figure. Windows 95 Server LAN 2 Ethernet TCP/IP...
  • Page 98 Cyclades-PR3000 Installation Manual Encapsulation: PPP MLPPP Active PPP Inactivity Timeout None Van Jacobson IP Header Compression Disabled LCP Echo Requests Enabled Time Interval to send Config Requests ACCM 00000000 Predictor Compression Disabled Network Protocol: IP Unnumbered / Numbered Numbered Active...
  • Page 99 Cyclades-PR3000 Installation Manual MLPPP Active Encapsulation: PPP Van Jacobson IP Header Compression Disabled LCP Echo Requests Enabled Time Interval to send Config Requests Predictor Compression Disabled Unnumbered / Numbered Numbered Network Protocol: IP Active Primary IP Address entered as a parameter...

  • Page 100: Configuration Without A Wizard

    Cyclades-PR3000 Installation Manual Configuration Without a Wizard Steps two and three will be discussed separately for asynchronous and synchronous modes. The synchronous menu options will be presented first. Asynchronous Port Menus This section applies to the SE16 and any SSE8 port used for asynchronous communication. The Encapsulation and Physical menus are very different for the asynchronous and synchronous modes.
  • Page 101 Cyclades-PR3000 Installation Manual Asynchronous Port Physical Menu CONFIG=>INTERFACE=>Z-BUS=><PORT>=>PHYSICAL Parameter Description Speed Valid options can be seen using the ? command. Parity Applies for Char Encapsulation. Character Size Applies for Char Encapsulation. Stop Bits Applies for Char Encapsulation. Flow Control Hardware or Software Flow Control, or None .

  • Page 102: Synchronous Port Menus

    Cyclades-PR3000 Installation Manual STEP THREE The next step is to choose an encapsulation option. The options available on the asynchronous ports are: PPP: The PPP (Point-to-Point) protocol is used for leased, dial-up, and ISDN lines. Multilink PPP is also •...

  • Page 103: Mode Dependent Menus

    Cyclades-PR3000 Installation Manual STEP THREE The next step is to choose an encapsulation option. The options available on the synchronous ports are: Frame Relay: the Frame Relay Protocol is based on frame switching and constructs a permanent virtual • circuit (PVC) between two or more points.
  • Page 104 Cyclades-PR3000 Installation Manual Authentication Menu CONFIG =>INTERFACE =>Z-BUS => <PORT> =>AUTHENTICATION Parameter Description Authentication Type Local uses the list of users defined in CONFIG=> SECURITY=>USERS=>ADD. Server uses either Radius or Tacacs to authenticate the user. Remote is when this interface is considered to be the user and the other end of the...

  • Page 105: Chapter 8 Configuration Of The The E1 Or T1 Interface

    Cyclades-PR3000 Installation Manual CHAPTER 8 CONFIGURATION OF THE THE E1 OR T1 INTERFACE T1 is a standard used in the United States, Canada, and Japan. It has a clock speed of 1.5MHz and has 24 channels of 64K each. E1 is a standard used in Europe and many other countries. It has a clock speed of 2MHz and has 32 channels with two reserved for signaling.
  • Page 106 Cyclades-PR3000 Installation Manual Controller Menu CONFIG=>CONTROLLER=>T1/E1 Parameter Description T1: ESF (Extended Super Frame, the most common) and D4 are the options. Frame Mode E1: CRC4 (the most common) and Non-CRC4 are the options. T1: B8ZS (Bipolar 8 Zero Substitution, the most common) and AMI (Alternate Mark Inversion). E1: Line Code HDB3 (High-Density Bipolar) and AMI .
  • Page 107 Cyclades-PR3000 Installation Manual Add Channel Group Menu CONFIG =>CONTROLLER =>T1/E1 =>CHANNEL GROUPS =>ADD GROUP Parameter Description Timeslot Full is used for Full T1/E1 as described above. Fractional is for Fractional or Channelized T1/E1 as described above. Timeslot Allocation Contiguous allows configuration of a range of timeslots while Manual presents each available timeslot one by one.
  • Page 108 Cyclades-PR3000 Installation Manual Config Interface T1/E1 Channel Encapsulation Frame Relay [menu shown in a later figure] (if Channelized) PPP [menu shown in a later figure] X.25 [menu shown in a later figure] HDLC Keep Alive Interval Inactive Network Protocol [menu shown in a later figure]...
  • Page 109 Cyclades-PR3000 Installation Manual STEP FOUR The next step is to determine the data-link protocol to be used on this interface. Each channel group of a channelized line can use a different data-link protocol. There are many encapsulation options on this interface.
  • Page 110 Cyclades-PR3000 Installation Manual STEP FIVE If PPP Encapsulation is being used, a type of authentication should be chosen. This is done in the authentication menu. Authentication Menu CONFIG =>INTERFACE =>T1/E1 => <CHANNEL> =>AUTHENTICATION Parameter Description Authentication Type Local uses the list of users defined in CONFIG=> SECURITY=>USERS=>ADD.

  • Page 111: Chapter 9 Configuration Of The Isdn-Bri Interface

    PRI — Primary Rate Interface — used to provide access or used by large businesses for access. The BRI interface is available on the PR3000. It accepts only digital connections. A summary menu tree for the ISDN-BRI Interface is given in Figure 9.1.
  • Page 112 Cyclades-PR3000 Installation Manual Config Encapsulation Frame Relay Interface ISDN-BRI <Channel> X-25 HDLC Keep Alive Interval Inactive Network Protocol <Channel> Routing Protocol <Channel> ISDN Traffic Control <Channel> General Bandwidth IP Traffic Control List Authentication <Channel> Authentication type Usename Password Authentication Server Aithentication Protocol FIGURE 9.1 ISDN-BRI INTERFACE CONFIGURATION MENU TREE...
  • Page 113 The SPID is the link identifier. It is similar to the telefone number, with some extra digits. Circuit Type Multipoint is used when the PR3000 is connected to the ISDN line in parallel with other devices. Check Caller ID on The router verifies that the caller's phone number is in the dial-out table.
  • Page 114 Cyclades-PR3000 Installation Manual STEP FOUR The following parameters are only relevant when PPP Encapsulation is used. Authentication Menu CONFIG =>INTERFACE =>ISDN-BRI =>AUTHENTICATION =><CHANNEL> Parameter Description Authentication Type Local uses the list of users defined in CONFIG=> SECURITY=>USERS=>ADD. Server uses either Radius or Tacacs to authenticate the user.

  • Page 115: Chapter 10 Network Protocols

    Cyclades-PR3000 Installation Manual CHAPTER 10 NETWORK PROTOCOLS The second step in most interface configurations is to choose which network protocol to use and assign values to the relevant parameters. At least one of IP, Transparent Bridge, or IPX (optional, and discussed in chapter 16) must be activated.

  • Page 116: The Ip Protocol

    Cyclades-PR3000 Installation Manual The IP Protocol If the preset values provided by the operating system are accepted, the interface will work at a basic level. The most common options are given in the following table. Network Protocol (IP) Menu CONFIG=>INTERFACE=><LINK>=>NETWORK PROTOCOL=>IP...
  • Page 117 Cyclades-PR3000 Installation Manual Network Protocol (IP) Menu (Continued) Parameter Description Remote IP Address Type The computer connected through PAD or PPP sends its IP address in the negotiation package. Fixed : The IP address sent must match the number set in the next parameter.

  • Page 118: The Transparent Bridge Protocol

    Cyclades-PR3000 Installation Manual The Transparent Bridge Protocol The Transparent Bridge Protocol can be used in conjunction with either IP or IPX. A detailed explanation of its use appears in section 4.6 of the CyROS Reference Guide. Transparent Bridge Menu CONFIG=>INTERFACE=>SWAN=>NETWORK PROTOCOL=>TRANSPARENT...

  • Page 119: Chapter 11 Data-Link Protocols (Encapsulation)

    Cyclades-PR3000 Installation Manual CHAPTER 11 DATA-LINK PROTOCOLS (ENCAPSULATION) Each encapsulation option is presented in a separate section in this chapter. Not all data-link protocols are available for all interfaces. PPP (The Point-to-Point Protocol) PPP is the only encapsulation option than can be either synchronous or asynchronous. It is important to choose between them in CONFIG =>INTERFACE =><LINK>...
  • Page 120 Enables data compression using the Predictor algorithm. This feature should be Compression enabled only if Cyclades' equipment is being used on both ends of the connection because there is no established standard for data compression interoperability. Data compression is very CPU-intensive, making this feature effective only for links running at speeds under 1Mbps.

  • Page 121: Char

    Cyclades-PR3000 Installation Manual CHAR The configuration of the CHAR data-link protocol is confined to one menu, CONFIG =>INTERFACE =><LINK> =>ENCAPSULATION =>CHAR. Information about all the parameters appearing in this menu is provided in the table below. Not all parameters will appear for all interfaces.

  • Page 122: Pppchar

    Cyclades-PR3000 Installation Manual PPPCHAR The configuration of the PPPCHAR protocol is contained in the menu CONFIG =>INTERFACE =><LINK> =>ENCAPSULATION =>PPPCHAR. The parameters for PPPCHAR are a combination of those for PPP and CHAR. See the tables describing the PPP and CHAR options for guidance in configuring this protocol.
  • Page 123 Cyclades-PR3000 Installation Manual STEP ONE The first step is to set the general Frame Relay parameters, those applying to all DLCs. This is done in the Frame Relay Menu. The parameters are shown in the table below. Most of these depend on the standards used by the Frame Relay Network Provider.
  • Page 124 Cyclades-PR3000 Installation Manual STEP TWO After configuring the general parameters, each DLC must be defined. An example will be used to demonstrate the procedure. A public Frame Relay network connecting offices in São Paulo, Rio de Janeiro, Salvador, and Recife is shown in Figure 11.1.
  • Page 125 Cyclades-PR3000 Installation Manual São Paulo Rio de Janeiro Network: 192.168.200.0 Network: 192.168.201.0 Router Router 200.1.1.1 200.1.1.4 200.1.1.2 200.1.1.3 Router Router Salvador Recife Network: 192.168.203.0 Network: 192.168.202.0 FIGURE 11.1 PERMANENT VIRTUAL CIRCUITS BETWEEN OFFICES Chapter 11 - Data-Link Protocols (Encapsulation)
  • Page 126 Enables data compression using the Predictor algorithm. This feature should be Compression enabled only if Cyclades' equipment is being used on both ends of the connection because there is no established standard for data compression interoperability. Data compression is very CPU-intensive, making this feature effective only for links running at speeds under 1Mbps.

  • Page 127: X.25

    FIGURE 11.2 PUBLIC X.25 NETWORK EXAMPLE X.25 A Cyclades Router can act either as a DTE (Data-terminal Equipment) connected to a public X.25 network or as a DTE or DCE (Data circuit-terminating Equipment) as part of a private X.25 network. The first case is discussed in this chapter.
  • Page 128 Cyclades-PR3000 Installation Manual (PVCs) and Switched Virtual Circuits (SVCs) can be defined. A PVC requires that two DTEs be permanently connected. STEP ONE First, the general X.25 protocol parameters are set in the X.25 Menu. A detailed description of the X.25 parameters and their values for the example is provided in the table below.
  • Page 129 Cyclades-PR3000 Installation Manual X.25 Menu (Continued) Parameter Description Number of Virtual Circuits Indicates the maximum number of virtual circuits (total of PVCs and SVCs) allowed on this interface. The maximum is 64. Number of Permanent Indicates the number of permanent virtual circuits that will be connected through Virtual Circuits this interface.

  • Page 130: With Pad (Packet Assembler/Disassembler)

    Applies when Predictor Compression Enabled . Sixteen is fastest, but 10 must be Compression used if the router on the other end is a Cyclades PathRouter, for compatibility. X.25 with PAD (Packet Assembler/Disassembler) PAD acts as a protocol converter, allowing a user to access the packet-switched network via a serial terminal.

  • Page 131: Chapter 12 Routing Protocols

    Cyclades-PR3000 Installation Manual CHAPTER 12 ROUTING PROTOCOLS Routing Strategies Routing can be done either statically or dynamically. Static Routing Static routing is recommended when the network contains a small number of routers and other equipment. When a system is simple and without redundant links, static routing is the simplest option. Even with some redundant links, a multilink circuit can be created for semi-dynamic routing behavior.

  • Page 132: Static Routes

    Cyclades-PR3000 Installation Manual Static Routes Routers used in very small or simple networks may use static routes as the primary routing method. When RIP or OSPF are used, some static routes may still be needed. Configuration of static routes will be explained using two examples.
  • Page 133 Cyclades-PR3000 Installation Manual Router 2 Unnumbered 192.168.100.1 Slot 3 Interfaces ETH0 Slot 1 Router 1 10.0.0.3 ETH0 Network 3 Network 1 FIGURE 12.2 STATIC ROUTING EXAMPLE 2 Figure 12.2 shows another static routing example to explain the Gateway or Interface parameter. Between the two routers is a point-to-point connection.
  • Page 134 Cyclades-PR3000 Installation Manual Add Static Route Menu CONFIG =>STATIC ROUTES =>IP =>ADD ROUTE Parameter Description Destination IP Address that route will lead to. To configure a default route, type "default" for this Address parameter, otherwise enter 0.0.0.0 in both this and the next parameter.

  • Page 135: Rip Configuration

    Cyclades-PR3000 Installation Manual RIP Configuration CyROS supports three basic types of RIP: 1 RIP1 [RFC 1058] 2 RIP2 with broadcast (compatible with RIP1) [RFC 1723] 3 RIP2 with multicast [RFC 1723] The primary difference between RIP1 and RIP2 is that only RIP2 advertises subnet masks and next hops. If the network contains equipment that understands only RIP1 packets, then RIP1 or RIP2 with broadcast should be used.

  • Page 136: Ospf

    Cyclades-PR3000 Installation Manual OSPF The OSPF (Open Shortest Path First) routing protocol is significantly more complicated than RIP. The determination of which protocol is better suited to a given network is beyond the scope of this manual. An example network using OSPF is given in Figure 12.3.

  • Page 137: Ospf Configuration On The Interface

    Cyclades-PR3000 Installation Manual First, some definitions: • An Autonomous System (AS) is a portion of the network that will use a single routing strategy. It is made up of a backbone area and optionally of non-backbone areas. • OSPF Areas are sub-systems that have identical routing databases. An area generally has no knowledge of the routing databases of other areas.
  • Page 138 Cyclades-PR3000 Installation Manual OSPF Menu (continued) External Metric Defines the metric that will be advertised by OSPF. External Metric Type For Type 1 , the total metric of this route is composed of the internal metric (inside the autonomous system) and the external metric (provided in the previous parameter). For Type 2 , the total metric of this route is the value provided in the previous parameter.

  • Page 139: Ospf Global Configurations

    Cyclades-PR3000 Installation Manual OSPF Global Configurations STEP THREE After completing the OSPF interface configuration for all interfaces (even those that will not use OSPF), navigate to the OSPF Menu, CONFIG=>IP=>OSPF. Enter into the OSPF Global Commands menu and set the parameters as indicated in the table below.
  • Page 140 Cyclades-PR3000 Installation Manual OSPF Global Commands (Continued) Parameter Description RIP External Metric- Applies when Advertise RIP routes is set to Yes . For Type 1 , the total metric of this Type route is composed of the internal metric (inside the autonomous system) and the external metric (provided in the previous parameter).
  • Page 141 Cyclades-PR3000 Installation Manual Area Menu (continued) Area Range N Status An Area Border Router (ABR) advertises link states for all networks within the area. The number of such advertisements can potentially be reduced by condensing different IP networks into a single range.
  • Page 142 Cyclades-PR3000 Installation Manual STEP SIX It is not always possible to connect all areas directly to the backbone. When an area is connected to the backbone only through another area, two virtual links must be created. One from the backbone to the unattached area and one from the unattached area to the backbone.

  • Page 143: Bgp-4 Configuration

    Cyclades-PR3000 Installation Manual BGP-4 Configuration The BGP-4 routing protocol is used for routing on the Internet, performed between Autonomous Systems (ASs). An autonomous system is defined as: · A set of routers and networks under the same administration. · An interconnected network, where no router is reachable solely through a path exterior to the AS Each AS is identified by a 16-bit AS number.
  • Page 144 200.200.200.1 200.50.50.0 255.255.255.0 200.50.50.0 / 24 AS 310 PR3000 200.200.200.2 ........Tele Brutus FIGURE 12.4 EXAMPLE SYSTEM WITH PR3000 IN AS 100 BEING CONFIGURED Chapter 12 - Routing Protocols...
  • Page 145 Cyclades-PR3000 Installation Manual CONFIG=>IP=>BGP4=>GLOBAL Parameter Description BGP4 Protocol Activates the protocol. Local AS Number This number is assigned by the service provider. Router Identifier Usually the same as the Router ID, one of the interface IP addresses Cluster Identifier Only used when this router is used as a router reflector.
  • Page 146 Cyclades-PR3000 Installation Manual STEP TWO The neighbor menu identifies the routers inside and outside the AS that will communicate with the router via BGP- 4. Each update message exchanged between routers contains path attributes. How these path attributes are manipulated by the router when routes are received or sent to each neighbor is determined here.
  • Page 147 Cyclades-PR3000 Installation Manual CONFIG=>IP=>BGP4=>NEIGHBOR=>ADD (continued) Keepalive Interval between keepalive messages sent to this neighbor. Connection Retry When a connection with this neighbor is broken, the router try to reconnect with Time frequency 1 divided by the Connection Retry Time. Start Time...
  • Page 148 Cyclades-PR3000 Installation Manual PR3000 ........100.10.0.0/16 FIGURE 12.5 MULTIPLE ROUTES CONTAINING AS 5 CONFIG=>IP=>BGP4=>ACCESS LIST=>ADD Parameter Description Access List Name Name assigned to list, to indicate which interface and direction it applies to.
  • Page 149 Cyclades-PR3000 Installation Manual STEP FOUR An access list needs at least one rule. The example in Figure 12.6 shows three access lists, each one with several rules. Each neighbor can be assigned up to 6 access lists, as seen in step 2.
  • Page 150 Cyclades-PR3000 Installation Manual CONFIG=>IP=>BGP4=>ACCESS LIST=>CONFIGURE RULES=><ACCESS LIST NAME> =>ADD Parameter Description Rule Status Enables the rule. Scope See explanation of this parameter in step 3. Rule AS Position Applies only for Access List Type equal to AS Path. Limits the search on AS number to a particular position in the route.
  • Page 151 Cyclades-PR3000 Installation Manual STEP SIX A route map can either apply to all routes not discarded by the access lists, as shown in Figure 12.6, or to routes filtered by a particular access list, as shown in Figure 12.7. Discarded...
  • Page 152 Cyclades-PR3000 Installation Manual CONFIG=>IP=>BGP4=>ROUTE MAP=>ADD Parameter Description Route Map Number Identifies the route map Sequence Number Identifies the sequence within the route map. The numbers need not be consecutive. Match List Name Associates an access list with this sequence, as shown in the figure above.
  • Page 153 Cyclades-PR3000 Installation Manual CONFIG=>IP=>BGP4=>AGGREGATE ADDRESSES=>ADD Parameter Description Number An ID for reference. Address The aggregated address. In the example, 200.50.50.0. Mask (bitlen) The mask for the aggregated address. In the example, 23. AS Set Yes causes the route to be tagged with the AS Set path attribute. Otherwise, the AS Sequence path attribute is assigned.

  • Page 154: Chapter 13 Cyros, The Operating System

    Cyclades-PR3000 Installation Manual CHAPTER 13 CYROS, THE OPERATING SYSTEM This chapter explains various operating system features that are not covered in other chapters: creation of the host table • creation of user accounts and passwords • IP Accounting • Creation of the host table CyROS allows identification of hosts by name.
  • Page 155 Cyclades-PR3000 Installation Manual Other users can be created and the user “usr” can be assigned a password. The password of the super user should be changed as soon as possible. The menu CONFIG=>SECURITY=>USERS allows addition, deletion, and modification of the list of users. The parameters are: User Name, •...

  • Page 156: Ip Accounting

    Cyclades-PR3000 Installation Manual IP Accounting IP Accounting is used to count the total number of packets allowed (or not) to pass through an interface. Statistics are given for packets that meet the criterions defined in a rule. (Traffic Rules are not supported). To see all packets, a special rule list permitting everything can be defined.

  • Page 157: Chapter 14 Nat (Network Address Translation)

    Cyclades-PR3000 Installation Manual CHAPTER 14 NAT (NETWORK ADDRESS TRANSLATION) NAT exists to convert local IP addresses into Internet “global” IP addresses. Internet IP addresses are assigned by Internet providers. Due to the explosion of the internet, these numbers are scarce. Certain ranges of IP addresses are reserved for internal use only —...

  • Page 158: Types Of Address Translation

    Cyclades-PR3000 Installation Manual As a preview, after configuring the router as shown in the example, CONFIG =>SECURITY =>NAT =>L will display: NAT Global Addresses # address range 1 200.240.230.225 to 200.240.230.238 NAT Local Addresses # address range 1 192.168.0.10 to 192.168.0.30...
  • Page 159 Cyclades-PR3000 Installation Manual In static address translation, one global IP address is permanently associated with one local IP address. In the example, the web server is connected to one of the global IP addresses, reducing the IP address pool to 13.
  • Page 160 Cyclades-PR3000 Installation Manual The parameters in the Timeout and Options Menu are explained in more detail below. The preset values should be appropriate for most applications. Timeout and Options Menu CONFIG =>SECURITY =>NAT =>TIMEOUT AND OPTIONS Parameter Description UDP Timeout Inactivity time required before a UDP translation is removed from the translation table.
  • Page 161 Cyclades-PR3000 Installation Manual What enables NAT? NAT is enabled when the parameter CONFIG =>INTERFACE => <INTERFACE> =>NETWORK PROTOCOL =>IP=>NAT is set to LOCAL on any interface. If the global NAT parameters have not been set, the interface with local NAT addresses will not work properly.

  • Page 162: Chapter 15 Rules And Filters

    Cyclades-PR3000 Installation Manual CHAPTER 15 RULES AND FILTERS There are four basic types of rules: 1 IP filter rules, 2 Radius rules (actually a combination of previously defined IP filter rules), 3 traffic control rules, and 4 transparent bridge rules (similar to IP filter rules, but for applications that use a transparent bridge).
  • Page 163 Cyclades-PR3000 Installation Manual Config Rules List Add Rule List Rule List Name Rule Status Rule List Type Default Scope Edit Rule List Same as Add Incoming Rule List Name Rule List Outgoing Rule List Name Linked Rule List Name N...
  • Page 164 Cyclades-PR3000 Installation Manual Perimeter Network Exterior Router Slot 1 192.168.0.0 ETH0 192.168.0.2 192.168.0.1 Router 172.16.0.0 Interior Router Slot 1 192.168.0.3 ETH0 Bastion Host 10.0.0.0 Extension to Network FIGURE 15.2 FIREWALL EXAMPLE Figure 15.2 will be used to show how both an exterior router and an interior router would be configured using the filters available in CyROS.
  • Page 165 Cyclades-PR3000 Installation Manual Exterior Router The exterior router is the network’s first defense against attacks. For this reason, it is reasonable to prohibit all packets except for those explicitly allowed. This is done by choosing the Default Scope to be Deny . Thus, ALL desired traffic must be expressly allowed by the rules in the rule list.
  • Page 166 Cyclades-PR3000 Installation Manual Steps necessary to activate filtering on the exterior router in the example: 1 There are two interfaces with two directions each. Filtering on link 1 requires the creation of two rule lists, called exterior_in and exterior_out. Create them using the menu CONFIG =>RULES LIST =>IP =>ADD RULE LIST and the following parameters:...
  • Page 167 Cyclades-PR3000 Installation Manual The configuration for “Let e-mail in” is shown in the following figure (obtained by selecting CONFIG =>RULES LIST =>IP =>L in the menus): Rules Lists Rule List Name Rule Default List Linked Status Scope Type Rule List...
  • Page 168 Cyclades-PR3000 Installation Manual Filter_list Name exterior_out Rule 0 Status Enabled Scope Permit Protocol Source IP Operator Equal Source IP start 192.168.0.3 Source IP Mask 255.255.255.255 Destination IP Operator None Source Port Operator Equal Source Port Start SMTP Destination Port Operator...
  • Page 169 Cyclades-PR3000 Installation Manual Stop Forged Packets Don’t Allow Access to News Stop Telnets From the Outside (Except Bastion Host) PERMIT FIGURE 15.5 PERMIT DEFAULT SCOPE The configuration for “Stop forged packets” is shown in the following listing: Chapter 15 - Filters and Rules...
  • Page 170 Cyclades-PR3000 Installation Manual Rules Lists Rule List Name Rule Default List Linked Status Scope Type Rule List slot1_in Enabled Permit Filter Filter_list Name slot1_in Rule 0 Status Enabled Scope Deny Protocol Source IP Operator Equal Source IP start 10.0.0.0 Source IP Mask 255.0.0.0...

  • Page 171: Traffic Rule Lists

    Cyclades-PR3000 Installation Manual Traffic Rule Lists There are three kinds of traffic rules that can be configured in CyROS. The first two determine a division of bandwidth for traffic flowing out of the router: 1 Traffic Shaping (the division of bandwidth is strictly adhered to), 2 Bandwidth Reservation (the division with the larger priority can steal bandwidth from the others), An example showing the first two types is given in figure 15.6.
  • Page 172 Cyclades-PR3000 Installation Manual The third determines which services have priority flowing through the router: 3 Service Prioritization. An Internet provider has three clients connected to the same router. Client A is larger and without traffic control would overwhelm the router to the exclusion of Clients B and C. The administrator decides to divide the flow out of the router (to the Internet) into three portions: 50% guaranteed for Client A, and the rest divided equally between Clients B and C.
  • Page 173 Cyclades-PR3000 Installation Manual Note that the bandwidth used for the percentage calculation is that set in CONFIG =>INTERFACE => <INTERFACE> =>TRAFFIC CONTROL =>GENERAL =>BANDWIDTH, and not the actual bandwidth available in the link. Rules Lists Rule List Name Rule Default...
  • Page 174 Cyclades-PR3000 Installation Manual Rule 1 Status Enabled Flow Priority Rule bandwidth Bandwidth priority Protocol Source IP Operator Equal Source IP start 22.22.22.0 Source IP Mask 255.255.255.0 Destination IP Operator None Source Port Operator None Destination Port Operator None Rule 2...
  • Page 175 Cyclades-PR3000 Installation Manual An example showing the third type of traffic control is given in Figure 15.8. The network administrator wants to prioritize the access to his web server. He also wants to prioritize e-mail sent by his SMTP server, but the priority should be lower.
  • Page 176 Cyclades-PR3000 Installation Manual The configured rules will appear as shown in the following listing. Rules Lists Rule List Rule Default List Linked Name Status Scope Type Rule List web_access Enabled Traffic Filter_list Name web_access Rule 0 Rule 1 Status Enabled...

  • Page 177: Chapter 16 Ipx (Internetwork Packet Exchange)

    Cyclades-PR3000 Installation Manual CHAPTER 16 IPX (INTERNETWORK PACKET EXCHANGE) IPX is an alternative to IP, proprietary to Novell. When IPX is activated, many new menus appear to allow configuration of this type of network. IP and IPX can both be active in the router simultaneously, and an interface can have both IP and IPX traffic passing through it.

  • Page 178: Enabling Ipx

    Cyclades-PR3000 Installation Manual Enabling IPX The first step is to activate the IPX feature in the router. This is accomplished using the menu option ADMIN =>ENABLE FEATURES => IPX. The IPX protocol must also be activated in the menu CONFIG =>IPX => GENERAL.

  • Page 179: Frame Relay

    Cyclades-PR3000 Installation Manual The parameter Send SAP Update can be set to Demand, Periodic, or None. This parameter affects both SAP and RIP. Periodic causes the router to send these messages every minute, while choosing Demand will cause the router to send messages only when a message request is received.

  • Page 180: The Sap (Service Advertisement Protocol) Table

    Cyclades-PR3000 Installation Manual The routing table is displayed by the menu option INFO => SHOW ROUTING TABLE => IPX. For the example, and using only the static route created above, the routing table appears as in Figure 16.2. Destination Interface/ Subinterface/...

  • Page 181: Chapter 17 Virtual Private Network Configuration

    Conversion IP Address IP Address performed by Router with Cyclades’ VPN Encrypted IP Datagram Encrypted IP Datagram FIGURE 17.1 CONVERSION PERFORMED BY CYCLADES’ VIRTUAL PRIVATE NETWORK UTILITY Chapter 17 - Virtual Private Network Configuration...
  • Page 182 An example showing a local security network and two remote security networks is shown in Figure 17.2. The PR3000 in the local security network will be configured step by step. (Which network is considered local and which network is considered remote depends on the router being configured.) STEP ONE The Virtual Private Network Utility must be Enabled in the ADMIN =>ENABLE FEATURES =>VPN menu before it...
  • Page 183 Cyclades-PR3000 Installation Manual REMOTE SECURITY NETWORK 1 Router IP:10..255.255.0 Link 1 RSG1 IP: 50.50.50.1 PR4000 LOCAL SECURITY NETWORK IP: 1 0.0.0.0 Router IP Address: 9.9.9.1 RSG3 - Remote IP Network Security Gateway Router Link 1 Link 2 REMOTE SECURITY NETWORK 2 IP: 7 0.70.70.1...
  • Page 184 Cyclades-PR3000 Installation Manual STEP THREE Use the menu item INFO =>SHOW ROUTING TABLE to confirm that the other Remote Security Gateways (RSGs), and all the networks included in the Remote Security Networks, are reachable. In the example, this would require that all of the following appear in RSG3’s routing table:...
  • Page 185 VPN Options Menu CONFIG =>SECURITY =>VPN =>OPTIONS Parameter Description Cyclades VPN Status Activates the Virtual Private Network. Warning: until VPN is activated on both ends of a given tunnel, all traffic will halt. Tunnel Keepalive Keepalive messages are sent across each tunnel with this frequency, to make sure Timeout that the router on the other end of the connection is operating.

  • Page 186: Appendix A Troubleshooting

    Cyclades-PR3000 Installation Manual APPENDIX A TROUBLESHOOTING What to do if the Login Screen Does not Appear When Using a Console. 1 Check the configuration of the terminal. The correct values are given in chapter 2. 2 Check to see if the router booted correctly. Before the login screen appears, boot messages should appear on the screen.

  • Page 187: What To Do If The Router Does Not Work Or Stops Working

    Cyclades-PR3000 Installation Manual What to Do if the Router Does not Work or Stops Working. 1 Check that the cables are connected correctly and firmly (see chapter 2, What is in the Box, for correct cable connection information). 2 Confirm that the Link LED is lit, indicating proper Ethernet cable termination. If it is not lit, check both ends of the Ethernet cable and the hub connection.

  • Page 188: Testing The Ethernet Interface

    Cyclades-PR3000 Installation Manual Testing the Ethernet Interface After configuring the Ethernet interface, return to the main menu using the <ESC> key as many times as is necessary. Save the configuration to flash memory (the operating system will ask how to save the configuration on the way back to the main menu).

  • Page 189: How To Test If An Interface Is Working

    Cyclades-PR3000 Installation Manual How to Test if an Interface is Working If the router does not seem to be working properly, and none of the above advice has located the problem, the hardware interfaces should be tested. This will determine if the problem is hardware, software, or configuration related.
  • Page 190 Cyclades-PR3000 Installation Manual The first three columns show which interfaces are being tested. • The H column shows which board is master and which is slave. • The LP column indicates how many test loops have been completed. • The E%% column shows how many errors per 1000 packets have occurred.

  • Page 191: Appendix B. Hardware Specifications

    Cyclades-PR3000 Installation Manual APPENDIX B. HARDWARE SPECIFICATIONS General Specifications The Cyclades-PR3000 power requirements, environmental conditions and physical specifications are listed in the table below. Power Requirements Input voltage range 100 to 240 VAC, 120 to 370 VDC Input frequency range...

  • Page 192: External Interfaces

    Cyclades-PR3000 Installation Manual External Interfaces Console Port An RS-232 DTE port is provided for communication with a configuration terminal. A maximum speed of 115.2kbps is supported on this port. Use a straight-through cable to connect to DCE devices (modems, for example). Use a cross-cable to connect to a DTE device (terminal, host computer, etc).

  • Page 193: Ethernet Port

    Cyclades-PR3000 Installation Manual Ethernet Port The PR3000 Ethernet port meets IEEE I802.3 physical specifications. It provides a single Ethernet interface and supports 10Base-T (Unshielded Twisted Pair) on a standard RJ-45 female connector. ETHERNET PORT Ethernet Signal 100-240 VAC Ethernet Collision...

  • Page 194: Isdn Bri Interface

    Cyclades-PR3000 Installation Manual ISDN BRI Interface Note: Please contact Cyclades directly for sales information about this product. The ISDN BRI Interface is available in two “flavors”: · U Interface (US standard), using a standard RJ-45 (8-pin) female connector. · S/T Interface (European standard), using two standard RJ-45 (8-pin) female connectors (the two connectors are in parallel and, for all purposes, are equivalent).
  • Page 195 Cyclades-PR3000 Installation Manual ISDN BRI S/T INTERFACE Signal N.C. N.C. N.C. N.C. FIGURE B.4 ISDN-BRI - S/T INTERFACE WITH TWO RJ-45 FEMALE CONNECTORS Appendix B - Hardware Specifications...

  • Page 196: T1 And E1

    Cyclades-PR3000 Installation Manual T1 and E1 Both the T1 and E1 interfaces use an 8-pin RJ-48C female connector. T1/E1 Interface Signal RXTIP RXRING N.C. TXTIP TXRING N.C. N.C. N.C. FIGURE B.5 T1 OR E1 - RJ-48C FEMALE CONNECTOR Appendix B - Hardware Specifications...

  • Page 197: Serial Expander 16

    Installation Manual Serial Expander 16 The Serial Expander 16 (SE16) is connected to the PR3000 main unit using a SCSI-II type cable. This cable is Cyclades proprietary and should not be connected / disconnected while the power is on. The 16 RS-232 serial interfaces are provided on 16 RJ-45 connectors as follows.

  • Page 198: Cables

    Cyclades-PR3000 Installation Manual Cables Please refer to chapter 2, What is in the Box , to see which cables are provided with the PR3000 and which cables are optional. Straight (Parallel) Cable Straight (parallel) Cable DB-25 Male DB-25 Male DCE / DTE...

  • Page 199: Db-25 To M.34 Adapter

    Cyclades-PR3000 Installation Manual DB-25 to M.34 Adapter DB-25 Female - M.34 Male (V.35) Adapter. M.34 Male DB-25 Female Signal Signal Pin PGnd PGnd TxD (B) TxD/V.35 (B) TxD (A) TxD/V.35 (A) RxD (B) RxD/V.35 (B) RxD (A) RxD/V.35 (A) TxClk_DTE (B) TxClk_DTE/V.35 (B)

  • Page 200: Swan X.21 Cable

    Cyclades-PR3000 Installation Manual SWAN X.21 Cable SCSI-II Male to X.21 DB-15 Male Cable (DTE) SCSI-II X.21 Male signal signal TxD_232- TxD- RTS_232- RxD_232- RxD- DCD_232- DCD- RxClk_232- RxClk- TxD_232+ TxD+ RTS_232+ RTS+ RxD_232+ RxD+ DCD_232+ DCD+ RxClk_232+ RxClk+ FIGURE B.9 PINOUT DIAGRAM OF THE SWAN X.21 CABLE - SCSI-II MALE TO DB-15 MALE...

  • Page 201: Loopback Cable For The Serial Expander 16

    Cyclades-PR3000 Installation Manual Loopback Cable for the Serial Expander 16 Loopback Cable RJ-45 RJ-45 FIGURE B.10 PINOUT DIAGRAM OF THE LOOPBACK CABLE, RJ-45 MALE TO RJ-45 MALE Appendix B - Hardware Specifications...

  • Page 202: Swan V.35 Cable

    Cyclades - PR3000 Installation Manual SWAN V.35 Cable SWAN V.35 Cable SCSI-II Male M.34 Male CIyclades Router V.35 Modem signal signal Chassis Gnd PGnd RTS_232- CTS_232- DSR_232- DCD_232- DTR_232- TxD/V.35- TxD (A) RxD/V.35- RxD (A) TxD/V.35+ TxD (B) RxD/V.35+ RxD (B) TxClk DCE V.35-...

  • Page 203: Rs-232 Cable

    Cyclades - PR3000 Installation Manual RS-232 Cable RS-232 CABLE SCSI-II Male DB-25 Male Signal signal Chassis Gnd Shield TxD_232- RxD_232- RTS_232- CTS_232- DSR_232- DCD_232- TxClk_232DTE- TxClk DTE RxClk_232- RxClk DTR_232- TxClk_232DCE- TxClk DCE FIGURE B.12 RS-232 CABLE - SCSI-II MALE TO DB-25 MALE...

  • Page 204: Appendix C Configuration Without A Console

    Cyclades-PR3000 Installation Manual APPENDIX C CONFIGURATION WITHOUT A CONSOLE When a terminal or PC is not available for use as a console, the router has a special feature that allows configuration of the Ethernet interface from any PC on the LAN. The router “adopts” the destination IP address of the first non- UDP packet received from the LAN and accepts the connection.

  • Page 205: Appendix D Installing Expansion Cards

    (though it is highly recommended that one be used), continue on to the next step. Step Three: Cyclades - PR3000 ........Remove the four top screws and the six screws (four if not rack-mounted) on the bottom edges of the PR3000, as shown in the figure. Appendix D - Installing Expansion Cards...
  • Page 206 Step Four: Attach the wrist-strap to your wrist. Step Five: Remove the PR3000’s cover. Be careful to not touch any components inside the PR3000’s chassis, as they also can be damaged by static electricity. Appendix D - Installing Expansion Cards...
  • Page 207 Cyclades-PR3000 Installation Manual Step Six: PR3000 Remove the faceplate covering the available slot by removing the two screws shown in the figure. There are some restrictions as to which boards can be placed in each slot. See the figure that follows.
  • Page 208 Cyclades-PR3000 Installation Manual Step Eight: Insert the board carefully so that the external connector is aligned with the opening in the back of the router. Slot 3 Slot 2 Slot 1 Gently push down on the board so that it makes complete contact with the internal connector on the router motherboard.
  • Page 209 Cyclades-PR3000 Installation Manual Slot 3 Slot 2 Slot 1 Step Nine: Replace the PR3000’s cover and replace the screws. Now you can remove the wrist-strap. Appendix D - Installing Expansion Cards...

  • Page 210: Index

    11 L - list current configuration 21 Password, Changing the Superuser ... 29 telephones 11 PPP 23 Cyclades-Serial Expander 16 87 Printing the Configuration 30 configuration example 46 IP Bridges 82 Problem Resolution 186 Cyclades-Synchronous Serial Expander 87...
  • Page 211 Cyclades-PR3000 Installation Manual Saving Changes Z-Bus Interface 87 to flash 22, 29 asynchronous port menus 100 to flash at a later time 22 configuration 58 to run configuration 22, 29 configuration example 46 SE16 87 lan-to-lan wizard 97 Service Prioritization 172...
  • Page 212 Cyclades Corporation Cyclades South America Cyclades Europe 41934 Christy Street Av. Santa Catarina, 155 Kenzestrasse 5-7 Fremont, CA 94538 - USA São Paulo, SP, Brazil D-85737 Ismaning - Germany Phone: (510) 770-9727 CEP: 04635-000 Phone: +49-89-96-22-84-55 Fax: (510) 770-0355 Phone: (11) 5033-3333 Fax: +49-89-96-22-84-39 www.cyclades.com...

Table of Contents