|
Series 500
Frame Relay/ Leased Line
Bridge/ Router
User and System Administration Guide
LR1530A-R3, LR1530A-EU-R3, LR1531A-R2, LR1535A-R2
5500099-10 equivalent to
5500086-12
© copyright 2002 by Black Box Corporation.
Download from Www.Somanuals.com. All Manuals Search And Download.
INSTRUCCIONES DE SEGURIDAD
(Normas Oficiales Mexicanas Electrical Safety Statement)
1. Todas las instrucciones de seguridad y operación deberán ser leídas antes de que el
aparato eléctrico sea operado.
2. Las instrucciones de seguridad y operación deberán ser guardadas para referencia
futura.
3. Todas las advertencias en el aparato eléctrico y en sus instrucciones de operación
deben ser respetadas.
4. Todas las instrucciones de operación y uso deben ser seguidas.
5. El aparato eléctrico no deberá ser usado cerca del agua—por ejemplo, cerca de la
tina de baño, lavabo, sótano mojado o cerca de una alberca, etc.
6. El aparato eléctrico debe ser usado únicamente con carritos o pedestales que sean
recomendados por el fabricante.
7. El aparato eléctrico debe ser montado a la pared o al techo sólo como sea
recomendado por el fabricante.
8. Servicio—El usuario no debe intentar dar servicio al equipo eléctrico más allá a lo
descrito en las instrucciones de operación. Todo otro servicio deberá ser referido
a personal de servicio calificado.
9. El aparato eléctrico debe ser situado de tal manera que su posición no interfiera su
uso. La colocación del aparato eléctrico sobre una cama, sofá, alfombra o
superficie similar puede bloquea la ventilación, no se debe colocar en libreros o
gabinetes que impidan el flujo de aire por los orificios de ventilación.
10. El equipo eléctrico deber ser situado fuera del alcance de fuentes de calor como
radiadores, registros de calor, estufas u otros aparatos (incluyendo amplificadores)
que producen calor.
11. El aparato electico deberá ser connectado a una fuente de poder sólo del tipo
descrito en el instructivo de operación, o como se indique en el aparato.
12. Precaución debe ser tomada de tal manera que la tierra fisica y la polarización del
equipo no sea eliminada.
13. Los cables de la fuente de poder deben ser guiados de tal manera que no sean
pisados ni pellizcados por objectos colocados sobre o contra ellos, poniendo
particular atención a los contactos y receptáculos donde salen del aparato.
14. El equipo eléctrico debe ser limpiado únicamente de acuerdo
recomendaciones del fabricante.
a
las
15. En caso de existir, una antena externa deberá ser localizada lejos de las lineas de
energia.
16. El cable de corriente deberá ser desconectado del cuando el equipo no sea usado
por un largo periodo de tiempo.
17. Cuidado debe ser tomado de tal manera que objectos liquidos no sean derramados
sobre la cubierta u orificios de ventilación.
18. Servicio por personal calificado devera ser provisto cuando:
A: El cable de poder o el contacto ha sido dañado; u
B: Objectos han caído o líquido ha sido derramado dentro del aparato; o
C: El aparato ha sido expuesto a la lluvia; o
D: El aparato parece no operar normalmente o muestra un cambio en su
desempeño; o
El aparato ha sido tirado o su cubierta ha sido dañada.
Download from Www.Somanuals.com. All Manuals Search And Download.
Using This Manual
This Installation and Applications Guide provides the basic information
required to initially set up and configure the router. This guide is organized
into the following sections:
“Installation” provides instructions for installing the router.
“Typical Applications & How to Configure Them” provides
simple configuration examples for typical applications in which the
router might be used. The applications described in this document are
for example only and provide a method of quick configuration of the
router. For more complete information on all of the configuration
parameters available, please refer to the PPP Menu Reference Manual
on the accompanying CD-ROM.
“Introduction to Filtering” provides an introduction to the pattern
filtering options of the router. Several examples of typical pattern
filters are also provided.
”Menu Trees” provides a graphical tree type overview of the
structure of the built-in menu system of the router. All of the
configuration is performed using the options provided in the menu
system. The Menu Tree is like an index to the menu options.
“Configuration Pages” provides a place to note the current
configuration of the router for future reference. If a replacement unit
is required, the configuration may be quickly modified to be the same
as the existing unit.
“Octet Locations on Ethernet Frames” provides a graphical
representation of the various common Ethernet frames that the router
will bridge or route. When defining a pattern filter, these frame
displays indicate the offset values to use in order to define the pattern
filter correctly.
“Servicing Information” provides information on opening the case
and changing the straps.
Download from Www.Somanuals.com. All Manuals Search And Download.
Using the Electronic Reference Manual
The router Reference Manuals are provided as Adobe Acrobat PDF
files on the accompanying CD-ROM. The PPP Menus Reference File
is provided individually for ease of configuration reference.
The Adobe Acrobat Reader program is included on the CD-ROM. It is
also available for most computer operating platforms from Adobe on
the Internet at: www.adobe.com.
The Reference Manual provides the following information:
·
·
·
·
Introduction to bridging, routing, and router features
Pin out references for the link modules
List of event and alarm logs
Expanded description of programmable filtering
The router PPP Menus Reference Manual provides the following
information:
·
Complete description of the options for the built-in menu
system.
Download from Www.Somanuals.com. All Manuals Search And Download.
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
1 - INSTALLATION
5
Unpack the router
Select a Site
5
5
Identify the Connectors
Connect to the Console
Make the LAN Connections
Make the WAN Link Connection
Power Up the router
6
7
7
7
9
Login and Enter the Required Configuration
Mandatory Configuration
Setting the Link Interface Type (Universal WAN only)
Setting the T1/E1Parameters (T1/ E1 WAN only)
Identify the Status LEDs
9
10
11
12
15
2 - TYPICAL APPLICATIONS & HOW TO CONFIGURE
THEM
17
Managing the router Using Menus
Conventions
Basic Frame Relay Configuration
Auto Learning the Frame Relay Configuration
Manual Configuration - LMI Type
“Quick Start” Frame Relay
Basic Leased Line Configuration
“Quick Start” PPP Leased Line Connections
Should You Bridge or Route?
Configure as an Ethernet Bridge
Configure as an Ethernet IP router
Define an IP Default Gateway
Define an IP Static Route
18
19
20
22
23
24
26
26
29
30
33
35
36
37
40
40
42
44
44
45
46
48
50
52
Define an IP Subnet Mask
Configure as an Ethernet IPX router
Novell Servers in Both Locations
Novell Servers in One Location Only
PPP Link Configuration Overview
Numbered Links
Unnumbered Links
Configure Dynamic Host Configuration Protocol
Configure Network Address Translation (NAT)
Configure PPP Security
Configure Firewall
Download from Www.Somanuals.com. All Manuals Search And Download.
3 - INTRODUCTION TO FILTERING
57
MAC Address Filtering
Pattern Filtering
Popular Filters
57
58
61
61
61
61
61
62
62
62
62
Bridge
IP & Related Traffic
Novell IPX Frames
NetBIOS &NetBEUI (Microsoft Windows)
Banyan
IP router
NetBIOS over TCP
Other interesting TCP Ports
APPENDIX A MENU TREES
63
APPENDIX B OCTET LOCATIONS ON ETHERNET
FRAMES
67
Octet Locations on a Bridged TCP/ IP Frame
Octet Locations on a Bridged Novell Netware Frame
ETHERNET Type Codes
Octet Locations on an IP Routed TCP/ IP Frame
Octet Locations on an IPX Routed Novell Netware Frame
Octet Locations on a Bridged XNS Frame
68
68
69
70
70
71
APPENDIX C SERVICING INFORMATION
73
Opening the case
Identifying the Internal Components
Sanity Timer
Force ZMODEM Software Load
To Clear a “Lost” Password
Connecting to the Console Connector
WAN Interface Connection
Pinout Information
73
74
76
76
76
77
78
78
78
78
79
80
81
83
84
85
V.35 Module:
CSU/ DSU Module:
T1/ E1 Module:
UNIVERSAL WAN Module:
V.35 Link Pinouts
RS232C / V.24 Link Pinouts
RS530 / RS422 Link Pinouts
V.11 / X.21 Link Pinouts
Download from Www.Somanuals.com. All Manuals Search And Download.
Contents
V.11 / X.21 DB25 to DB15 Connector Cable
V.35 Null-Modem Cable Configuration
The link speed must be defined for each of the two units.
RS232 / V.24 Null-Modem Cable
86
87
87
88
89
RS530 / RS422 Null-Modem Cable
APPENDIX D SOFTWARE UPGRADES
91
Download from Www.Somanuals.com. All Manuals Search And Download.
* * * *
Download from Www.Somanuals.com. All Manuals Search And Download.
1 - INSTALLATION
The router is an Ethernet Bridge/ Router that provides bridging,
IP/ IPX routing, and compression over a frame relay permanent virtual
circuit or a PPP leased line circuit..
The following instructions provide a quick set-up guide for installation
of the router
Unpack the unit
Rough handling during shipment can damage electronic equipment. As
you unpack the router, carefully check for signs of damage. If damage
is suspected, contact the shipper. Save the box and all packing material
to protect the router should it ever need to be moved or returned for
service.
Check the packing slip that identifies the components and the LAN
connector. The connectors on the rear of the router provide all
external connections to the router.
Select a Site
Place the router in a well-ventilated area. The site should maintain
normal office temperature and humidity levels. Air vents located on
the rear of the router must have an inch or so of clearance from any
object. Units should not be stacked.
5
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Identify the Connectors
Each unit is configured with both straight (MDI) and crossed over
(MDI-X) 10BaseT LAN connectors; the router will auto-sense
between the two. Only one connector may be used at a time.
The router is produced with four different WAN interface modules:
V.35, CSU-DSU, Universal WAN or T1/ E1. The type of module in a
unit may be determined by looking at the label over the WAN
connector on the back panel.
CSU-DSU
Figure 1 - 1 Rear View of the CSU-DSU router
UNIVERSAL WAN
Figure 1 - 2 Rear View of the Universal WAN router
V.35
Figure 1 - 3 Rear View of the V.35 router
T1/E1
Figure 1 - 4 Rear View of the T1/ E1 router
6
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Connect to the Console
Connection to the router operator’s console is made through the RJ-45
connector labeled CONSOLE on the back of the router. A RJ-45
cable and RJ-45 to DB9 (female) converter are provided for connection
to a DB9 (male) connector.
Connect the console port of the router to a computer running an
asynchronous communication package or a standard asynchronous
terminal. The router supports autobaud rates at 1200, 2400, 9600 or
19,200 bps. The router is managed through the use of “hotkey” Menus.
Appendix C provides the pinout information for the console connector
and the DB9 to RJ45 converter.
Make the LAN Connections
Connect the router to the LAN with the available LAN interface cable.
The router may be connected directly to a wiring hub or Ethernet
switch by using the MDI LAN port and a standard 10BaseT cable.
The router may be connected directly to a computer network card by
using the MDI-X LAN port and a standard 10BaseT cable.
Make the WAN Link Connection
The Universal WAN module may be selected to operate as a V.11,
V.35, RS232, or EIA530 interface. The Universal WAN interface
module uses a DB25 connector. Be sure to secure the cable connector
to the router and the communications equipment with connector
screws to prevent accidental disconnection.
WARNING: ensure that the connector cable used with the Universal
interface module has the correct pinouts for the operational mode
selected for the interface (V.11, V.35, RS232, or EIA530). Using the
incorrect cable connector for the operational mode selected may cause
permanent damage to the interface module. Please see Appendix D for
pinout assignments.
Note: When the router is initially powered up, the Universal WAN
will have the default type of “none”. Before the link can be used, it
7
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
must be configured to the type of connection service that will be used;
please see the following section for this procedure.
The V.35 module and Universal WAN module in V.35 mode require
interface converters that convert from a DB25 connector to a male 34
pin (V.35) connector used for the V.35 service interface. Be sure to
secure the cable connector to the router and the communications
equipment with connector screws to prevent accidental disconnection.
The T1/ E1 and LX411 CSU-DSU interfaces connect with a standard
RJ-45 (RJ-48C specification for T1/ E1, RJ-48S specification for
CSU/ DSU) connector
After the router is powered up and the router has established
communications with its partner across the WAN, the “Tx” LED will
turn green.
8
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Power Up the router
Once the LAN and Link connections are made and the console is
connected to a terminal, you are ready to power-up the router.
Connect the DC power cord from the supplied power supply to the
back of the router and plug the power supply into the AC wall outlet.
Observe the LEDs as the router powers up. The LEDs will go
through a flashing pattern as the power-up diagnostics are performed.
After the power-up diagnostics are finished, the Power LED will go
from red to green.
The console will also display testing and initialization messages as it
performs these tasks (if this is the first time the router has been
powered up on this console, the display may be unreadable until the
next step is performed).
Enter at least one [RETURN] (up to three if necessary) in order for the
router to determine the baud rate of the terminal used for the console
(i.e., autobaud). The following information will now be seen on the
console connected to the router :
Terminals supported:
ansi, avt, ibm3101, qvt109, qvt102, qvt119,
tvi925, tvi950, vt52, vt100, wyse-50, wyse-vp,
teletype
Enter terminal type:
Select the terminal type being used if listed and enter its name (in lower
case) at the prompt, or choose the terminal type teletype if your
terminal is not listed. This terminal type operates in scroll mode and
may be used successfully until a custom terminal definition is created.
Login and Enter the Required Configuration
At the login screen type a 1 and the default password to enter the menu
system of the router. The default password is BRIDGE (case
sensitive) and should be changed if security is desired.
With the options of the built-in menu system, the router may be
configured to operate within your environment.
Refer to the router PPP Menus Reference Manual file on the
accompanying CD-ROM for a complete description of all the Menu
Options.
9
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Mandatory Configuration
The router requires a minimum amount of mandatory configuration in
order to operate. The following table identifies the configuration
parameters that must be defined for proper operation under the
operational states shown in the table.
Mandatory Configuration
Bridge
IP Router
IPX Router
None
none
IP Address
IP Routing
IP Forwarding
Frame Relay
PPP Leased Line
None
Frame Relay
Disabled
Remote Site Profile
The configuration options required for proper initial operation are
described in Section 2: Typical Applications and How to Configure
Them.
Refer to Section 2 for details on configuring the router. Also refer to
the Menu Reference Manual file on the accompanying CD-ROM for a
complete description of all the Menu Options.
Other options may be changed depending upon specific installation
configurations. Refer to the menu tree in Appendix A for a reference
of the menu structure and options.
10
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Setting the Link Interface Type
(Universal WAN only)
The Universal WAN Interface must be configured to match the service
to which it will be connected.
WARNING: ensure that the connector cable used with the Universal
interface module has the correct pinouts for the operational mode
selected for the interface (V.11/ X.21, V.35, RS232/ V.24, or
RS530/ RS422). Using the incorrect cable connector for the operational
mode selected may cause permanent damage to the interface module.
Please see Appendix D for pinout assignments.
Set Link Interface Type:
Location: Main
7
Ä Configuration
Ä WAN Set Up
Ä Link Set Up
Ä Link Interface Type
Select the Service type to which this router will be
connected.
Note: If the module is being changed from one type of service to
another, you must first select “none” before a new selection
may be chosen. Also the link must be toggled through a
disable/ enable cycle before the change is brought into effect.
11
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Setting the T1/E1Parameters
(T1/ E1 WAN only)
The parameters requred for a T1 or E1 connection may be obtained
from your service provider. These may then be entered via the T1/ E1
set-up menu to configure the router for that service.
T1/ E1 Selection:
Location: Main
7
Ä Configuration
Ä WAN Set Up
Ä Link Set Up
Ä T1/ E1 Set Up
Ä Link mode
T1 or E1
Set the service mode to which this router will be connected.
Service parameters:
Location: Main
Ä Configuration
Ä WAN Set Up
Ä Link Set Up
7
Ä T1/ E1 Set Up
Ä Speed/ Channel rate
56/ 64 kbps
Ä T1/ E1framing
framed/ unframed/ SF/ ESF
Ä Line encoding
AMI/ INV_AMI/
B8ZS/ HDB3
Select the service channel speed, framing format, and encoding
as designated by the service provider.
T1 service requires the specification of a Line Build Out factor. This
parameter modifies the transmitted signal to compensate for
degradation due to line losses between the transmitter and receiver. A
number of different options are available to meet standards for T1 long
haul (direct connection to service providers central office facility), T1
short haul (connection through a local PBX), AT&T TR64211
specification long haul and AT&T TR64211 short haul. Your service
provider will tell you which specification their service requires. Short
12
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
haul LBOs are listed as the length of the cable run (in feet) between the
router and the local exchange.
E1 service does not require line build out selection.
Set Link Interface Type:
Location: Main
Ä Configuration
Ä WAN Set Up
Ä Link Set Up
Ä T1/ E1 Set Up
Ä LBO
7
as specifed
T1 long-haul LBOs: L0db, L7.5db, L15db, L22.5db
Short haul LBOs: S0to110ft, S110to220ft, S220to330ft,
S330to440ft, S440to550ft, S550to660ft
AT&T standard TR64211long-haul connection: TL0db
AT&T standard TR64211 short-haul connection: TS0to110ft,
TS110to220ft, TS220to330ft, TS330to440ft, TS440to550ft,
TS550to660ft
If fractional T1/ E1 service is being provided, you will need to specify
the channels/ timeslots to be used.
Set Link Interface Type:
Location: Main
Ä Configuration
Ä WAN Set Up
Ä Link Set Up
Ä T1/ E1 Set Up
Ä Slot/ Channel Set Up
Ä Start
7
first channel
Ä Number
number of channels
13
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Some E1 service providers reserve timeslot 16 for network
management use. If your service specifies that timeslot 16 is for their
use, toggle this option to reserved
Set Link Interface Type:
Location: Main
Ä Configuration
Ä WAN Set Up
Ä Link Set Up
7
Ä T1/ E1 Set Up
Ä Slot/ Channel Set Up
Ä E1 Timeslot 16
reserved
14
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Identify the Status LEDs
The meanings of the four 3-colour Light Emitting Diodes (LEDs) on
the front of the router are found in the following chart:
Router is running and has passed power-up diagnostics
Router is in BOOT mode and is programming the flash
Router is powered up but has failed power-up diagnostics
Router is decompressing the software into the RAM
Router is in BOOT mode
Green
Green (flashing)
Red
Yellow
Yellow (flashing)
Power
Green
Red
Yellow
LAN is connected and forwarding
Router is NOT connected to the LAN
LAN is connected and NOT forwarding: i.e. Listening,
Learning, or Blocking
LAN
Green
Green (flashing)
Yellow
LINK is up, idle
LINK is up transmitting data traffic
LINK negotiating - control signals asserted on link
LINK is down (no control signals present)
Red
Tx
Green
Green (flashing)
Yellow
LINK is up, idle
LINK is up receiving data traffic
LINK negotiating - control signals received from link
LINK is down (no control signals present)
Red
Rx
15
Download from Www.Somanuals.com. All Manuals Search And Download.
Installation
Tx
Rx
Power
Figure 1-4 Front View of the router
16
Download from Www.Somanuals.com. All Manuals Search And Download.
2 - TYPICAL APPLICATIONS &
HOW TO CONFIGURE THEM
The router is an Ethernet Bridge/ Router that supports frame relay
RAW 1490 permanent virtual circuits, frame relay encapsulated PPP
permanent virtual circuits and PPP leased lines. This section will
describe how to set up the router using each of its networking
functions.
The router may be configured as a simple Ethernet bridge, an Ethernet
IP router, an Ethernet IPX router, or a combination of the three.
When operating the router as a combination bridge/ router simply
configures each of the components separately.
The configuration options described within this section are only for initial
set up and configuration purposes. For more information on all of the
configuration parameters available, please refer to the router PPP Menus
Reference Manual file on the accompanying CD-ROM.
Important:
The router uses FLASH memory to store the
configuration information. Configuration settings are
stored to FLASH memory after there has been 30 seconds
of idle time. Idle time is when there is no selection or
modification of the values in the built-in menu system. If
you wish to save the configuration immediately, enter
“=” to jump to the main menu, then select option “6” to
save the configuration.
17
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Managing the router Using Menus
This section describes the minimum configuration parameters required
when setting up the router. Each of the configuration scenarios
requires setting of operational parameters on the router. The built-in
menu system of the router is used to configure the unit.
When navigating around the menu system, a new menu or an option
may be chosen by simply typing the number associated with the option
that you wish to choose. The menu system operates on a “hotkey”
principal. Each menu option may be chosen by simply typing the
number associated with that option. The router will accept the choice
and act on it immediately.
The menu system consists of different menu levels each containing
new configuration options. Navigation back out of a nested menu is
easily accomplished by pressing the tab key. The tab key takes you to
the previous menu level. If you wish to move from your current menu
location directly to the main menu simply press the equals “=” key.
When choosing menu options that will toggle between values, simply
pressing the number associated with that option will cause the options
value to change. Each successive selection of the option will cause the
options value to change.
Some menu options require input from the operator. When selecting
an option that requires a value, the menu system will display the range
of values acceptable and a prompt symbol “>”. Simply enter the new
value at the prompt symbol and press enter. Should you make an error
in entering the new value, the [BACKSPACE] key (for most terminals)
deletes the most recently entered characters.
18
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Conventions
Throughout this section, router menu options are shown that are
required for the various configuration choices. The appropriate menu
options are shown in each instance in the following format:
Configuration Option Name
Location: Main
7
Ä Sub-Menu Name
Ä Sub-Menu Name
Ä Option Name
The configuration option is shown as well as the
options location within the menu system. The Ä
character indicates that a sub-menu level must be
chosen. The option name is finally shown in italics.
The keyboard graphic in the left margin indicates
that this is information that the user will have to
enter for configuration.
The note icon is used to provide miscellaneous information on the
configuration and set up of the router.
Configuration:
The Configuration Note is used to indicate that there may
be another configuration item that is effected by changing this
option.
The information icon is used to indicate that more information is available
on this subject. The information is usually located within another
document as specified.
The caution icon indicates that caution should be taken when performing
this task.
19
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Basic Frame Relay Configuration
North American routers are configured to have frame relay enabled as
the default setting. With frame relay enabled, the router will
communicate over WAN connections to other frame relay units via
frame relay Permanent Virtual Circuits (PVC). From 1 to 40 PVC’s
may be defined to connect to other frame relay units. Before the
router can establish a PVC connection to another frame relay router, at
least one PVC must be defined. The router is pre-configured to query
the frame relay service to auto-learn the required parameters; they may
also be set manually.
The DLCI (Data Link Connection Identifier) number for the PVC is
assigned by the frame relay service provider. The PVC must be defined
on the physical link on the router. Refer to the following diagram that
shows three router units connected together with a PVC being
configured on each unit. The configuration of the PVCs within the
frame relay cloud is controlled by the frame relay service provider.
DLCI numbers
assigned for these
PVCs from the
frame relay provider.
51
52
Frame Relay PVC
WAN connections
55
Figure 2 - 1 Frame Relay configuration
20
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configuration: The default configuration for routers shipped outside
North American is to have frame relay disabled. To run frame relay on
these
routers,
it
must
first
be
enabled
7
Frame Relay enable
Location: Main
Ä Configuration
Ä WAN Set up
Ä Link Set up
Ä Frame Relay
enabled
The router will request confirmation of the change, enter
“yes”.
For an router with a CSU-DSU interface, the default clock speed that
the router will expect to receive from the DCE link is 64Kbps. If the
DCE link is 56 Kbps, then the Link Speed value must be reset to 56
here.
7
Link Speed
Location: Main
Ä Configuration
Ä WAN Set up
Ä Link Set up
Ä Link Speed
56
21
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Auto Learning the Frame Relay Configuration
The router is pre-configured to query the frame relay service to auto-
learn the LMI type and the PVC DLCI numbers. This auto-learn
function allows the router to be plugged into the frame relay service
and auto-learn the PVC configuration to become operational without
further manual configuration.
Manual configuration is also allowed by modifying the options within
each Remote Site Profile and the individual link configuration menus.
When the router first starts up it will query the frame relay service to
try to determine the LMI type. Once the LMI type is determined, the
PVC configurations will be known from the full status enquiry
messages. If the DLCI numbers of the PVC’s on your service are
determined during this learning process, the router will automatically
create a remote site profile for each PVC. The automatically created
remote site profiles will be named “LinkxDLCIyyy” where x is the
physical link number the PVC is on and yyy is the DLCI of the PVC.
If during this learning process the maximum number of remote sites (40)
has been reached, the router will prompt you that there are no remote
sites available. A new remote site cannot be auto-created unless one of the
existing remote sites is manually deleted.
22
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Manual Configuration - LMI Type
The LMI Type option allows you to manually specify the type of Link
Management Interface in use by the Frame Relay service provider for
the Frame Relay service.
When the LMI type is set to none, the router simply creates frame
relay packets and sends them on the defined PVC’s. The links are not
checked for errors. There is no congestion control checking. The link
is only monitored for control signals.
To manually configure the LMI type the Auto-Learning option must be
disabled.
7
Auto-Learning
Location: Main
Ä Configuration
Ä WAN Set up
Ä Link Set up
Ä Frame Relay Set up
Ä Auto-learning
enabled
7
LMI Type
Location: Main
Ä Configuration
Ä WAN Set up
Ä Link Set up
Ä Frame Relay Set up
Ä LMI Type
The configuration options described here are only for initial set up
and configuration purposes. For more complete information on
all of the configuration parameters available please refer to the
router PPP Menus Reference Manual file on the accompanying
CD-ROM.
23
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
“Quick Start” Frame Relay
Since the router auto-learns the frame relay configuration, only a
couple of parameters need to be configured before the unit is fully
operational as an IP router for frame relay.
Upon initial start up, the router is pre-configured to query the frame
relay service to auto-learn the LMI type and the PVC DLCI numbers.
The router will then automatically create a remote site profile for each
PVC.
Within each of the remote site profiles automatically created Bridging,
IP routing, and IPX routing are all set to “enabled”. Because each of
these options are enabled by default and the automatically created
remote site profiles will establish a PVC connection to the remote site
routers, the router will bridge and IPX route data without any user
configuration. Because an IP router requires an IP address, the router
must be configured with an IP address before IP routing is fully
operational.
To configure an IP address for the router, use the IP address option.
7
IP Address
Location: Main
Ä Configuration
Ä LAN Set-up
Ä LAN IP Set-up
Ä IP Address / Subnet mask size
If security is required for the PVC connection refer to the Configure
PPP Security section for information on setting the security passwords
and user names for PPP.
24
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
By default, PPP is disabled for each of the newly created remote site
profiles. If PPP encapsulation is desired, for example to use security,
the PPP encapsulation option should be set to “enabled”. By default,
when PPP encapsulation is enabled multilink is also enabled.
7
PPP Encapsulation
Location: Main
Ä Configuration
Ä WAN Set-Up
Ä Remote Site Set-Up
Ä Edit Remote Site
ÄConnection Set-up
Ä PPP
enable
The configuration options described here are only for initial set up and
configuration purposes. For more complete information on all of the
configuration parameters available please refer to the router PPP Menus
Reference Manual file on the accompanying CD-ROM.
25
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Basic Leased Line Configuration
routers shipped outside North America are configured to have a
default setting as a leased line router. The router will operate as a PPP
leased line bridge/ router if the frame relay function is disabled. The
Leased Line router establishes PPP (Point to Point Protocol) WAN
connections to other PPP Leased Line router units or to other
vendors PPP leased line routers via direct leased line connections.
Configuration:
The default configuration for North American router is to
have frame relay enabled. To run PPP leased line, frame relay must
be disabled
7
Frame Relay disable
Location: Main
Ä Configuration
Ä WAN Set up
Ä Link Set up
Ä Frame Relay
Ä disabled
The router will request confirmation of the change, enter
“yes”.
“Quick Start” PPP Leased Line Connections
The PPP Leased Line router requires only a few configuration
parameters to establish a direct connection to another PPP IP router.
Once the connection is established and is working properly, the router
should be configured with a remote site profile entry for that
vendors router.
Before the router can establish a link connection to another PPP
router, the link speed information must be defined. Refer to the
following diagram that shows an router unit and another vendors unit
connected together with a direct leased line connection.
26
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
PPP IP Router
Figure 2 - 2 Basic PPP Leased Line Configuration
The following steps must be performed on the router unit.
7
Link Speed
Location: Main
Ä Configuration
Ä WAN Set up
Ä Link Set up
Ä Link Speed
The clock speed that the router will expect to
receive from the DCE link device must be defined.
7
Local IP Address
Location: Main
Ä Configuration
Ä LAN Set-up
Ä LAN IP Set-up
Ä IP Address / Subnet mask size
This is the IP address and subnet mask for the link
of this router in the unnumbered IP connection.
27
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Bridge Connection.
Once the link speeds have been configured, the router will attempt to
establish the link connection to the remote site PPP router.
The Bridge connection does not require any configuration for
operation.
IP Router Connection.
Once the link speeds and local IP address have been configured, the
router will attempt to establish the link connection to the remote site
PPP router.
The IP connection is an unnumbered connection that requires only the
configuration of the IP address of the router.
IPX Router Connection
Once the link speeds have been configured, the router will attempt to
establish the link connection to the remote site PPP router.
The IPX connection is an unnumbered connection that does not
require any configuration.
If security is required for the connection, refer to the Configure PPP
Security section for information on setting the security passwords and
user names for PPP.
The configuration options described here are only for initial set up and
configuration purposes. For more complete information on all of the
configuration parameters available please refer to the router PPP Menus
Reference Manual file on the accompanying CD-ROM.
28
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Should You Bridge or Route?
When connecting two Local Area Networks together, the first question
to ask is should I bridge or route? The decision to bridge or to route
may be decided by how the existing networks have been already set up.
Bridging should be used when the network consists of non-routable
protocols or routable protocols using the same network numbers.
Some protocols can only be bridged; some of the more well known are
NetBEUI (used by Microsoft Windows 3.11, Windows ’95 and
Windows NT), and LAT (used by Digital Equipment Corp.).
If your IPX or IP network address is the same at both locations
bridging is simpler and requires less configuration. If the locations are
to be routed together, the network numbers will have to be different in
both cases, this could require extensive reconfiguration.
IPX routing should be used if the two locations are already set up with
different IPX network numbers. Routing IPX will minimize the
number of SAP and RIP messages being sent across the WAN.
IP routing should be used if the two locations are already set up with
different IP network numbers or if you wish to divide your one IP
network number into two sub-networks.
In some cases both bridging and routing may be required. Routing
may be required for IP information and bridging may be required for
NetBEUI.
29
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configure as an Ethernet Bridge
An Ethernet bridge intelligently forwards LAN traffic to remotely
connected LANs across the Wide Area Network (WAN).
WAN connection
LAN #1
LAN #2
Figure 2 - 3 Bridged Local Area Networks
Ethernet bridges simply forward information based on Ethernet MAC
addresses. If a LAN packet is destined for a device located on a
remote LAN, the bridge will forward that packet to the remote LAN.
If a LAN packet is destined for a device located on the local LAN, the
bridge will ignore the packet.
Ethernet bridges also communicate to each other using what is called
the Spanning Tree Protocol (STP). STP is used to prevent loops in a
network which cause LAN traffic to be re-broadcast again and again
causing network congestion.
The router is pre-configured to operate as an Ethernet bridge
compatible with the IEEE 802.1d Spanning Tree Protocol definitions.
This means that without configuration modifications, the router will
bridge Ethernet traffic to its partner bridges when the Wide Area
Network (WAN) connection has been established.
30
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
The router also is pre-configured as an IPX router. This means that if
you wish to bridge IPX traffic instead of routing it, you must disable the
IPX routing function of the router. Once IPX routing has been disabled,
all IPX traffic will be bridged between partner bridges on the WAN.
The two Local Area Networks may be bridged together with minimal
configuration required. Simply connect the routers to each of the
LANs and connect the interface module to the supplied equipment
from the service provider. The WAN set up must be configured
appropriately in order for the links to operate. Once the WAN
connection has been established to the remote partner router, the
router will proceed to bridge the LAN traffic between the two
locations.
If SNMP or Telnet management is required for the router, an IP
address must be defined for each router. The IP address allows
network management stations to use SNMP to configure and monitor
the router remotely. The IP address also allows Telnet stations to
connect to the router and view the built-in menu system without
having to physically connect to the device.
7
IP Address
Location: Main
Ä Configuration
Ä LAN Set-up
Ä LAN IP Set-up
Ä IP Address / Subnet mask size
The IP address consists of four 8-bit numbers and
is represented by 4 fields separated by periods (“.”),
where each field is specified by a decimal number
(e.g. 199.169.1.10). Each decimal number must be
less than or equal to 255 (the maximum value of an
8-bit field).
The IP address is first specified and then you will
be prompted to enter the size of the subnet mask.
31
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
The size of the subnet mask. defines the subnet
mask by using the specified number to reserve a
series of contiguous bit locations from the start of
the entire IP address. These reserved bit locations
are then used as the network portion of the IP
address.
For example, with a class C IP address, a subnet
mask size of 26 will mask the 24 network address
bits plus 2 host bits for the subnet address,
resulting in 4 subnet addresses being created. (Note
that depending on whether or not nonstandard
subnets are allowed, not all of these addresses may
be valid; see the sections on defining masks).
The configuration options described here are only for initial set up and
configuration purposes. For more information on all of the configuration
parameters available please refer to the router PPP Menus Reference
Manual file on the accompanying CD-ROM.
32
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configure as an Ethernet IP router
An Ethernet IP router is used to intelligently route Internet Protocol
(IP) LAN traffic to remotely connected LANs across the WAN.
Router IP Address
199.169.1.10
Router IP Address
199.169.2.12
WAN connection
IP Network Address
199.169.2.0
IP Network Address
199.169.1.0
LAN #1
LAN #2
Figure 2 - 4 IP Routed Local Area Networks
IP routers forward IP frames based upon their IP destination address
and an internal routing table. The router maintains the internal routing
table with the remote network IP addresses and the remote partner IP
routers associated with those networks. When an IP frame is received
from the local LAN, the destination IP address is examined and looked
up in the routing tables. Once the destination IP network is found in
the routing tables, the IP router sends the IP frame to the remote
partner router that is connected to the appropriate remote IP network.
If no explicit route entry is found in the routing tables, the IP frame is
sent to the Default Gateway.
To configure the router to be an IP router, the following parameters
must be defined in the built-in menu system.
33
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
IP Address
Location: Main
7
Ä Configuration
Ä LAN Set-up
Ä LAN IP Set-up
Ä IP Address / Subnet mask size
The IP address consists of four 8-bit numbers and
is represented by 4 fields separated by periods (“.”),
where each field is specified by a decimal number
(e.g. 199.169.1.10). Each decimal number must be
less than or equal to 255 (the maximum value of an
8-bit binary number).
The IP address is first specified and then you will
be prompted to enter the Subnet mask size.
The Subnet mask size defines the subnet mask by
using the specified number to reserve a series of
contiguous bit locations from the start of the entire
IP address. These reserved bit locations are then
used as the network portion of the IP address for
the subnet.
For example, with a class C IP address, a subnet
mask size of 26 will mask the 24 network address
bits plus 2 host bits for the subnet address,
resulting in 4 subnet addresses being created. (Note
that depending on whether or not nonstandard
subnets are allowed, not all of these addresses may
be valid; see the sections on defining masks).
The default gateway parameter only needs to be defined when there is
another IP router connected to the LAN that is the default gateway for
this IP network.
Once the WAN connections have been established to the remote
partner routers, the IP router portion of the routers will begin to build
their routing tables according to the IP frames they receive from the
network. Manual entries may be made in the routing tables by adding
static IP routes.
34
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Define an IP Default Gateway
An IP default gateway is an IP router that is resident on the local IP
network that this router is connected to and is used to route IP frames
for destination networks that do not exist in the routing tables. When
an IP frame is received that is destined for a network that is not listed
in the routing tables of the router, the router will send the IP frame to
the default gateway. If the device originating the IP frame is on the
same local LAN as the router, the router will then send an ICMP
redirect message to the originating device. Any future IP frames for
that destination network will then be sent to the default gateway instead
of the router.
A default gateway may be configured if there are a large number of
routes that will pass through another router to a larger network. An
example of this would be a router that is used to connect to the
Internet. All of the routers on the local LAN would have the Internet
access router as the default gateway. The routers would route
information within the internal network and any IP frames that are
destined for the Internet would be routed to the default gateway.
7
Default Gateway
Location: Main
Ä Configuration
Ä Application Set up
Ä DHCP Set up
Ä Default Gateway
The IP address of the default gateway consists of 4
octets and is represented by 4 fields separated by
periods (“.”), where each field is specified by a
decimal number (e.g. 199.169.1.10). Each decimal
number must be less than or equal to 255, that is
the maximum value of each 8-bit field.
A configured Default Gateway will override a
default route learned from RIP.
Configuration:
The Default Gateway may be located across the
WAN connection.
35
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Define an IP Static Route
Static IP routes may be defined when one specific router is to be used
to reach a destination IP network. The static route will have
precedence over all learned RIP routes even if the cost of the RIP
learned routes is lower.
7
Edit Static Route
Location: Main
Ä Configuration
Ä IP Routing Set up
Ä IP Routes
Ä Edit Route
Ä Edit Static Route
Ä Remote Site
Ä Next Hop
Ä Cost
Ä Add
Each static IP route is defined in the Edit Route
menu. The destination network IP address is
specified when you first enter the menu and then
the IP address of the next hop route and the cost
may be defined.
Once all of the static IP routes are defined they
may be viewed with the Show Static Routes command
from the IP Routes menu.
Configuration:
When the IP routing protocol is set to none, the
subnet mask size must also be defined when creating a
static route entry. The subnet mask is required to allow a
static route to be created to a different IP network address.
The configuration options described here are only for initial set up and
configuration purposes. For more information on all of the configuration
parameters available please refer to the router PPP Menus Reference
Manual file on the accompanying CD-ROM.
36
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Define an IP Subnet Mask
An IP network may be divided into smaller portions by a process called
sub-netting. A subnet is specified using high end bits of the host field
of the IP address for network addressing. This is done with a subnet
mask. Thus, the size of the subnet (i.e. The number of bits available for
subnet addressing) is the size of the subnet mask minus the length of
the network field of the IP address for that class (8, 16 or 24 bits for
classes A, B and C respectively). For example, a small company is
connected to the Internet, they are assigned a single class C IP network
address (199.169.100.0). This network address allows the company to
define up to 255 host addresses within their network. Their network
will be attached to the Internet with an IP router.
If this company decides to split their network into two LANs to reduce
the load on their network, the original IP network address may be sub-
netted into two or more smaller IP networks consisting of a smaller
number of host addresses in LAN. This allows each of the sites to be a
smaller IP network and to be routed together to allow inter-network
communication.
The router allows masks from 8 to 32 bits. The mask size determines
how many bits of the host field of the original IP network address will
be used for the creation of subnets. In this example, a subnet mask
size of 26 will produce a subnet size of 2 bits (24 bits from the class C
network address field plus 2 bits from the host address field). Two bits
gives 4 possible sub-network addresses from the original IP network
address. Two of the resulting sub-networks will have either all zeros or
all ones as the subnet address; under standard subnets, these addresses
are reserved for network functions and hence are invalid addresses. So
setting a mask of 26 will generate two resulting sub-networks with up
to 62 host addresses each (64 potential addresses minus the all zero and
all one addresses).
The new IP network addresses will be:
199.169.100.64 and 199.169.100.128. The subnet mask for the newly
created networks will be 255.255.255.192..
37
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configuration:
The mask size entered defines the size of the subnet mask
from the start of the entire IP address. This allows subnet
sizes from 0 to 24 bits. A subnet mask size of 8 in a class
A address represents a subnet size of 0 or no subnetting
performed.
Original IP Network Address 199.169.100.0
Subnet IP Network Address
199.169.100.64
Subnet IP Network Address
199.169.100.128
Subnet Mask is
255.255.255.192
Router IP Address
199.169.100.65
Subnet Mask Size 26
Router IP Address
199.169.100.129
Subnet Mask Size 26
LAN #2
IP Computers
LAN #1
IP Computers
Host IP Address Host IP Address
199.169.100.66 199.169.100.67
Host IP Address Host IP Address
199.169.100.130 199.169.100.131
Figure 2 - 5 Defining an IP Subnet Mask
To configure the routers to route between the newly created sub-
networks, the following parameters must be defined in the built-in
menu system.
7
IP Address & Subnet Size
Location: Main
Ä Configuration
Ä LAN Set-up
Ä LAN IP Set-up
Ä IP Address / mask size
The IP address consists of 4 octets and is
represented by 4 fields separated by periods (“.”),
where each field is specified by a decimal number
(e.g. 199.169.1.10). Each decimal number must be
38
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
less than or equal to 255, that is the maximum
value of each 8-bit field.
The IP address is first specified and then you will
be prompted to enter the mask size.
The mask size defines the subnet mask by using the
specified number to reserve a series of contiguous
bit locations from the start of the entire IP address.
These reserved bit locations are then used as part
of the network portion of the IP address.
For example, with a class C IP address, a subnet
size of 26 will provide 2 host bits for the subnet
address resulting in 4 possible subnets. The
addresses for two of these are all ones or all zeros
and are not valid under standard subnets, leaving
two subnets available.
Configuration:
The subnet mask size entered defines the size of the subnet
mask from the start of the entire IP address.
The configuration of the sub-netted class C IP network is now
completed. Remember that each of the 2 sub-networks created may
only have 62 host IP addresses defined.
The configuration options described here are only for initial set up and
configuration purposes. For more information on all of the configuration
parameters available, please refer to the router PPP Menus Reference
Manual file on the accompanying CD-ROM.
39
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configure as an Ethernet IPX router
The router is preconfigured to operate as an IPX router when installed
in an IPX network. The router will learn the IPX network numbers
from the local LAN and when the WAN connections are established,
the router will route the IPX frames to the appropriate destination
IPX network.
The IPX routing scenario may consist of one of the two following
configurations. The first configuration consists of Novell servers
located on each of the LAN segments to be connected. The second
configuration consists of Novell servers located on only one of the
LAN segments to be connected. The router IPX router will need to
be configured differently in the second configuration with Novell
servers located on only one of the LAN segments.
Novell Servers in Both Locations
An Ethernet IPX router is used to intelligently route Novell IPX LAN
traffic to remotely connected LANs across the WAN.
WAN connection
IPX Network Address
1500
IPX Network Address
1512
LAN #1
LAN #2
Novell IPX Client Novell Server
Novell Server Novell IPX Client
Figure 2 - 7 IPX Routed Local Area Networks
(Servers on both sides)
IPX routers forward IPX frames based upon their IPX destination
address and an internal routing table. The router maintains the internal
routing table with the remote network IPX addresses and the remote
partner IPX routers associated with those networks. When an IPX
frame is received from the local LAN, the destination IPX address is
40
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
examined and looked up in the routing tables. Once the destination
IPX address is found in the routing tables, the IPX router sends the
IPX frame to the remote partner router that is connected to the
appropriate remote IPX network.
To configure the router to be an IPX router when both LAN
segments contain Novell servers, the IPX network numbers are learned
automatically from the routing information and service announcements
sent by the servers. The router will automatically assign the IPX
network numbers and proceed to route the IPX frames to the
appropriate destination network.
When two IPX LAN segments with Novell servers on each segment are
to be connected together with IPX routers, you must ensure that the IPX
network numbers on each of the Novell servers is unique. If the IPX
network numbers are the same, the IPX routers will not operate.
Once the WAN connections have been established to the remote
partner routers, the IPX router portion of the routers will begin to
build their routing tables according to the IPX frames they receive
from the network. Manual entries may be made in the routing tables
by adding static IPX routes.
The configuration options described here are only for initial set up and
configuration purposes. For more information on all of the configuration
parameters available please refer to the router PPP Menus Reference
Manual file on the accompanying CD-ROM.
41
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Novell Servers in One Location Only
Some Novell LAN installations require that a remote LAN that consists
of only Novell IPX clients be connected to a central LAN that contains
the Novell servers and some more clients. In this configuration, the
router located at the remote site must be configured with the appropriate
IPX network numbers. The IPX network number must be configured
manually because there is no Novell server at the remote site. The
router must act as a Novell server to supply the proper IPX network
number to the clients on the remote site LAN.
In the following diagram, the router connected to LAN # 2 must be
configured with IPX network number 1500 using the appropriate
frame type. The clients connected to LAN # 2 must also be running
with the same frame type as defined on the router. After the routers
have established the WAN connection, the IPX routing procedures will
cause the names of the services located on LAN # 1 to be stored in the
services table on the router on LAN # 2. When one of the clients on
LAN # 2 starts up, it will look for a server on the local LAN and the
router will respond with the list of servers that are located on the
central LAN.
IPX Network Address
1500 - defined on router
WAN connection
IPX Network Address
1512
LAN #1
LAN #2
Novell IPX Client Novell Server
Novell IPX Client
Novell IPX Client
Figure 2 - 8 IPX Routed Local Area Networks
(Servers on one side)
The following steps must be performed on the router connected to
LAN # 2.
42
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
7
IPX Frame Types
Location: Main
Ä Configuration
Ä IPX Routing Set up
Ä Configure LAN Nets
Ä Ethernet-II Frames
Ä RAW 802.3 Frames
Ä IEEE 802.2 Frames
Ä 802.2 SNAP Frames
Define the appropriate IPX network number for
the appropriate frame type. Note that IPX network
numbers must be unique. If more than one frame
type is to be used, each frame type must have a
unique IPX network number. There must be no
duplicate IPX network numbers within your entire
IPX routed network, they must all be unique. The
IPX network numbers may be any value from 0 to
FFFFFFFF HEX.
Configuration: Since there is not a server on LAN 2 in this
example, the IPX network number may be manually
configured and the router will proceed to route between the
two networks. When manually configuring an IPX network
number for a frame type that has already learned a network
number, IPX routing must be disabled before the new
network number is assigned.
43
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
PPP Link Configuration Overview
A PPP (Point to Point Protocol) connection between two routers may
use
a
number of Network Control Protocols (NCP) for
communication. An IP router connection will use the Internet
Protocol Control Protocol (IPCP) NCP for all IP communications. An
IPX router connection will use the Internet Packet Exchange Control
Protocol (IPXCP) NCP for all IPX communications.
In order to establish an IPCP or IPXCP link connection between two
PPP routers, either a numbered link or an unnumbered link connection
must be established. The two types of link connections are available to
allow for greater flexibility between vendors products.
Numbered Links
A numbered link assigns a network address (either IP or IPX) to both
ends of the WAN connection. In a numbered link configuration, the
WAN connection may be viewed as another LAN network with the
two PPP routers simply routing information between their local LANs
and the common connected WAN network.
Because the WAN is considered to be a separate network, each of the
stations on that network must be assigned a network address. If a
numbered IP link is to be established, then each WAN interface must
be assigned an IP address on a unique IP network. The WAN IP
network address must be different than the two existing networks that
are being connected together with the PPP routers.
If a numbered IPX link is to be established, then each WAN interface must
be assigned an IPX node address on a unique IPX network number. The
WAN IPX network address must be different than the two existing
networks that are being connected together with the PPP routers.
The IP address of the local WAN link is defined as the Local IP Address
within the remote site profile settings. The IP address of the WAN link of
the remote PPP router is defined as the Peer IP Address within the
remote site profile settings. The WAN IP network number is defined by
defining a subnet size to use when defining the local IP address. The size
of the subnet will determine the IP network number used.
The IPX node address of the local WAN link is defined as the Local IPX
Node within the remote site profile settings. The IP address of the WAN
link of the remote PPP router is defined as the Peer IPX Node within the
44
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
remote site profile settings. The WAN IPX network number is defined
with the IPX Net option in the remote site profile settings.
Unnumbered Links
An unnumbered link does not use network addressing on the WAN
link. The WAN connection is roughly equivalent to an internal
connection with each of the two end point routers operating as half of
a complete router that is connected between the two endpoint LANs.
When an IPCP link is set to unnumbered, the only configuration
option applicable is Peer IP Address. The peer IP address in this case
is the IP address of the remote PPP router, that is the IP address of its
LAN connection. If the peer IP address is not specified, the router
will attempt to determine it when negotiating the IPCP connection.
When an IPXCP link is set to unnumbered, no addressing
configuration is required. All of the IPX settings are negotiated during
the IPXCP connection.
45
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configure Dynamic Host
Configuration Protocol
The router uses Dynamic Host Configuration Protocol (DHCP) to
allow users in a small office environment to simply enable DHCP
clients on their workstations and power them up to get their proper
initialization. You would then be able to use TCP/ IP applications (such
as connecting to the Internet). DHCP allows configuration of devices
(DHCP clients) to be handled from a central DHCP server. This
allows devices to be added and removed from a network with all of the
network information (i.e. IP address, DNS, subnet mask, etc.) being
configured automatically. It is designed to allocate network addresses
to a number of hosts on the router’s LAN and supply minimal
configuration needed to allow hosts to operate in an IP network.
The following steps must be performed on the router to configure it
as a DHCP server.
7
DHCP Services
Location: Main
Ä Configuration
Ä Applications Set up
Ä DHCP Set up
Ä DHCP Services
Ä Server
DHCP Services options which are available are
none and server. Set to server to enable this device
as a DHCP Server.
7
IP Address Pool
Location: Main
Ä Configuration
Ä Applications Set up
Ä DHCP Set up
Ä Server IP address pool
Ä IP address pool
Ä IP Address /
number of addresses
The IP address pool option requires having the
first IP address in the range that is wanted for the
46
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
devices attached to the DHCP Server to be set.
The number of addresses to be assigned must also
be specified to a maximum of 253.
With the DHCP Services and IP Address Pool defined, devices may be
attached to the network (up to the maximum specified) and they will be
automatically configured.
When setting up a router as a DHCP server that will have both a
DNS server on the internal network and a remote connection to
another DNS server (for example, through an ISP), then the local
DNS server should be set as the primary DNS and the external
DNS server as the secondary DNS.
7
DNS Set-Up
Location: Main
Ä Configuration
Ä Application Set up
ÄDHCP set-up
ÄDNS set-up
ÄPrimary DNS
-IP address local DNS server
ÄSecondary DNS
-IP addr external DNS server
External
DNS Server
(Secondary)
Internet Service
Provider
Local
DNS Server
(Primary)
Figure 2 - 9 Local + External DNS Server Configuration
47
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configure Network Address
Translation (NAT)
Support is provided for Network Address Translation (NAT).
Network Address Translation is a technique which translates private
IP addresses on a private network to valid global IP addresses for
access to the Internet. Port translation (NAPT) allows more than one
private IP address to be translated to the same global IP address. Port
translation allows data exchanges initiated from hosts with private IP
addresses to be sent to the Internet via the router using a single global
IP address. A global IP address must be assigned to the WAN link
upon which NAPT is enabled for NAPT to work. The global IP
address will be assigned by the ISP.
To use NAPT, the private network addresses of the services that will
be available globally must be assigned:
7
NAT Exports
Location: Main
Ä Configuration
Ä Applications Set up
Ä NAT Exports
Ä Edit Services
Ä enter the private network IP
address of each service offered.
The NAT enabled option allows you to enable Network Address
Translation.
7
NAT Enabled
Location: Main
Ä Configuration
Ä WAN Set up
Ä Remote Site Set up
Ä Edit Remote Site
Ä Protocol Set up
Ä IP Parameters
Ä NAT Enabled
Ä Enabled
48
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
The Translation Type option allows you to use Network Address Port
Translation.
7
Translation type
Location: Main
Ä Configuration
Ä WAN Set up
Ä Remote Site Set up
Ä Edit Remote Site
Ä Protocol Set up
Ä IP Parameters
Ä NAT Advanced
Ä Translation type
Ä Port
The configuration options described here are only for initial set up and
configuration purposes. For more complete information on all of the
configuration parameters available please refer to the router PPP Menus
Reference Manual file on the accompanying CD-ROM.
49
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configure PPP Security
The router provides support for both PAP and CHAP PPP security
authentication. An outgoing user name, PAP password , and CHAP
secret are defined that the router will use when responding to an
authentication request from a remote site PPP router.
The cold start defaults for the security user name and passwords are as
follows. These defaults will exist when the router is first started before
and configuration is entered, and after a Full Reset has been performed.
These default values are also set when the router is placed in TFTP
Network load mode for upgrading the operating software via TFTP
transfers. Care should be taken when upgrading a group of routers that
have security levels set.
Default user name is the same as the default device name.
Default PAP password and CHAP secret are both set to “none”.
The complete security configuration for both incoming and outgoing
calls is defined within the Security menu of the WAN Set up section.
7
Security Level
Location: Main
Ä Configuration
Ä WAN Set up
Ä Security Set up
Ä Security Level
The security level defines the type of security that
this router will request when a remote site PPP
router attempts to establish a PPP connection. The
security may defined as none, PAP, or CHAP.
When a security level is defined on this router, an entry for each remote
site PPP router that may be connected to this router must be placed in the
security database. The security database is used to store the user names and
passwords of the remote site PPP routers.
50
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
7
Security Database Entry
Location: Main
Ä Configuration
Ä WAN Set up
Ä Edit Remote Site
Ä Security Parameters
Ä Incoming PAP Password
Ä Incoming CHAP Secret
Ä Outgoing User Name
Ä Outgoing PAP Password
Ä Outgoing CHAP Secret
The security entries in the security database define
the user names and passwords that remote site PPP
routers will provide when an authentication request
is sent from this router.
When defining the user names for the PPP routers that will be connecting
together, you should remember that the remote site PPP router user name
that is authenticated by the router is used to match to the configured
remote site profiles.
If a match to a configured remote site profile exists, the incoming call will
use the configuration defined within that remote site profile. This also
allows easier viewing of the remote site statistics.
The configuration options described here are only for initial set up and
configuration purposes. For more information on all of the configuration
parameters available please refer to the router PPP Menus Reference
Manual file on the accompanying CD-ROM.
51
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Configure Firewall
The router provides Firewall security for restricting access between any
two networks connected through the router. Firewalls are set up on a per
connection basis for the LAN and remote sites. The direction of filtering is
from the perspective of the router; incoming traffic is from the network in
question to the router, outgoing is from the router to the network. The
direction of filtering may be set to incoming, outgoing, both or none. Once
the direction of filtering for a connection has been set, holes may be created
in the firewall to allow specified traffic through. Normally, the LAN firewall
is used for restricting intranet traffic (connections within the corporate
network) and remote site firewalls are used to limit access from less trusted
sources, such as the Internet or dial-up links.
Main FTP server: 195.100.1.12
Main Web server: 195.100.1.20
Corporate Head
Office Network
195.100.1.0
Branch Office
Network
195.100.2.0
Router with
firewall enabled.
Internet
Any other network
any IP address
Figure 2-10 Sample Firewall Application
The above diagram shows a corporate head office network, which is
connected, to the Internet with an router. There is also a branch
office at a remote site connected with a Digital Leased link. The
administrator at the corporate head office wishes to set up an IP
firewall to allow everyone on the Internet to have access to the
corporate FTP and Web servers and nothing else. The administrator
52
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
also wishes to allow all of the TCP traffic from the branch office
network to have access to the head office. Anyone in the corporation
may have unrestricted access to the Internet.
The following steps must be performed on the router to set up the
firewall support as desired.
First the firewall on the ISP connection (remote site 1) of the WAN is
set up. The firewall option is set to “inbound” to have this WAN
firewall filter traffic from the ISP to the router while allowing
unrestricted access out to the Internet.
7
Firewall WAN Remote Site Filter direction
Location: Main
Ä Configuration
Ä Applications Set up
Ä Firewall Set up
Ä WAN Firewall Set up
Ä enter ID# 1 for ISP remote site
Ä Firewall
Ä inbound
The firewall on the Internet connection is set up to protect the entire
corporate network, including the branch office, from unauthorized traffic.
Then the entries are made in the “Designated Servers” menu to allow
Internet access to the FTP and Web servers on the corporate network.
7
FTP & WWW Designated Servers
Location: Main
Ä Configuration
Ä Applications Set up
Ä Firewall Set up
Ä WAN Firewall Set up
Ä ID# 1 for ISP remote site
Ä Designated Servers
Ä FTP Server
— 195.100.1.12
Ä WWW (HTTP) Server
— 195.100.1.20
When defining a designated server you will be prompted for
the IP address of that device. Adding an entry to the
53
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
designated servers list allows you to quickly setup a firewall
entry without having to figure out TCP port values.
Next, the LAN firewall is set up to restrict access to the LAN. The
firewall option is set to “outbound” to have the LAN firewall filter
traffic from the router.
7
Firewall LAN Filter Direction
Location: Main
Ä Configuration
Ä Applications Set up
Ä Firewall Set up
Ä LAN Firewall Set up
Ä Firewall
Ä Outbound
An entry is made in the firewall table to allow the devices in the branch
office to have unlimited TCP access to devices in the head office.
7
Firewall Table Entry
Location: Main
Ä Configuration
Ä Applications Set up
Ä Firewall Set up
Ä LAN Firewall Set up
Ä Edit Firewall Entry
Äfilter ID # 1
Ä Dest IP Address
— 195.100.1.0
Ä Destination Mask
— 255.255.255.0
Ä Source IP Address
— 195.100.2.0
Ä Source Mask
— 255.255.255.0
Ä Protocol Type
— TCP
Ä entry direction
—outbound
Finally, holes are provided in the LAN firewall to allow Internet access
to the FTP and WWW servers
54
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Firewall
Location: Main
7
Ä Configuration
Ä Applications Set up
Ä Firewall Set up
Ä LAN Firewall Set up
Ä Designated Servers
Ä FTP Server
— 195.100.1.12
Ä WWW (HTTP) Server
— 195.100.1.20
The configuration options described here are only for initial set up and
configuration purposes. For more information on all of the configuration
parameters available, please refer to the router PPP Menus Reference
Manual file on the accompanying CD-ROM.
55
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
* * * *
56
Download from Www.Somanuals.com. All Manuals Search And Download.
3 - INTRODUCTION TO FILTERING
The router provides programmable filtering which gives you the ability
to control under what conditions Ethernet frames are forwarded to
remote networks. There are many reasons why this might need to be
accomplished, some of which are security, protocol discrimination,
bandwidth conservation, and general restrictions.
Filtering may be accomplished by using two different methods. The
first method is to filter or forward frames based solely on their source
or destination MAC address. This method of filtering is useful when
bridging between LANs and for providing remote access security in
any type of network. The Ethernet MAC (Media Access Control)
address is checked against the addresses in the filtering list and the
frame is filtered or forwarded accordingly.
The second method of filtering is pattern filtering where each frame is
checked against a filter pattern. The filter pattern may be defined to
perform a check of any portion of the Ethernet frame. Separate filter
patterns may be defined for bridged frames, IP routed frames, and IPX
routed frames.
For more information on filtering, please refer to the Programmable
Filtering section of the router reference manual file. The PDF file is
located on the accompanying CD-ROM.
MAC Address Filtering
MAC address filtering is provided by three built-in functions.
The first function is “Filter if Source”; the second is “Filter if
Destination.” The third function allows you to change the filter
operation from “positive” to “negative.” The positive filter operation
causes frames with the specified MAC addresses to be filtered. The
negative filter operation causes frames with the specified MAC
addresses to be forwarded.
You may easily prevent any station on one segment from accessing a
specific resource on the other segment; for this, “positive” filtering and
the use of “Filter if Destination” would be appropriate. If you want to
disallow a specific station from accessing any service, “Filter if Source”
could be used.
57
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction to Filtering
You may easily prevent stations on one segment from accessing all but
a specific resource on the other segment; for this, “negative” filtering
and the use of “Forward if Destination” would be appropriate. If you
want to disallow all but one specific station from accessing any service
on the other segment, the use of “Forward if Source” could be used.
Pattern Filtering
Pattern filtering is provided in three separate sections: Bridge Pattern
Filters, IP router Pattern Filters, and IPX router Pattern Filters. When
the router is operating as an IP/ IPX Bridge/ router, each of the frames
received from the local LAN is passed on to the appropriate internal
section of the router. The IPX frames are passed on to the IPX
router, the IP frames are passed on to the IP router, and all other
frames are passed on to the bridge. Different pattern filters may be
defined in each of these sections to provide very extensive pattern
filtering on LAN traffic being sent to remote LANs.
Pattern filters are created by defining an offset value and a pattern
match value. The offset value determines the starting position for the
pattern checking. An offset of 0 indicates that the pattern checking
starts at the beginning of the data frame. An offset of 12 indicates that
the pattern checking starts at the 12th octet of the data frame. When a
data frame is examined in its HEX format, an octet is a pair of HEX
values with offset location 0 starting at the beginning of the frame.
Please refer to Appendix C - Octet Locations on Ethernet Frames for more
information on octet locations in data frames.
The pattern match value is defined as a HEX string that is used to
match against the data frame. If the HEX data at the appropriate
offset location in the data frame matches the HEX string of the filter
pattern, there is a positive filter match. The data frame will be filtered
according to the filter operators being used in the filter pattern.
58
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction to Filtering
The following operators are used in creating Pattern filters.
-
offset
Used in pattern filters to determine the starting
position to start the pattern checking.
Example:
12-80
This filter pattern will match
if the packet information
starting at the 12th octet
equals the 80 of the filter
pattern.
|
OR
Used in combination filters when one or the other
conditions must be met.
Example:
10-20| 12-80
This filter pattern will match
if the packet information
starting at the 10th octet
equals the 20 of the filter
pattern or if the packet
information starting at the
12th octet equals the 80 of
the filter pattern.
&
AND
Used in combination filters when one and the other
conditions must be met.
Example:
10-20&12-80
This filter pattern will match
if the packet information
starting at the 10th octet
equals the 20 of the filter
pattern and the packet
information starting at the
12th octet equals the 80 of
the filter pattern.
~
NOT
Used in pattern filters to indicate that all packets not
matching the defined pattern will be filtered.
Example:
~12-80
This filter pattern will match
if the packet information
starting at the 12th octet
does not equal the 80 of the
filter pattern.
59
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction to Filtering
( ) brackets Used in pattern filters to separate portions of filter
patterns for specific operators.
Example: 12-80&(14-24| 14-32) This filter pattern will be
checked in two operations.
First the section in brackets
will be checked and then the
results of the first check will
be used in the second check
using the first portion of the
filter pattern. If the packet
information starting at the
14th octet equals 24 or 32,
and the information at the
12th octet equals 80, the filter
pattern will match.
60
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction to Filtering
Popular Filters
Some of the more commonly used pattern filters are shown here.
Bridge
Bridge pattern filters are applied to Ethernet frames that are bridged
only. When the router is operating as a router, all routed frames will
be unaffected by the bridge pattern filters.
IP & Related Traffic
IP & Related Traffic
Forward only
Filter
~ (12-0800| 12-0806)
(12-0800| 12-0806)
Novell IPX Frames
Novell IPX Frames
EthernetII
802.3 RAW
802.2
(12-8137)
(14-FFFF)
(14-E0E0)
802.2 LLC
(14-AAAA&20-8137)
NetBIOS &NetBEUI (Microsoft Windows)
NetBIOS & NetBEUI (Microsoft Windows)
Filter
(14-F0F0)
Forward only
~ (14-F0F0)
61
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction to Filtering
Banyan
Banyan
(12-0BAD)
(12-80C4)
(12-80C5)
IP Router
IP router pattern filters are applied to IP Ethernet frames that are
being routed. When the router is operating as an IP router, all IP
routed frames will be checked against the defined IP router pattern
filters. IP routed frames are unaffected by the bridge pattern filters and
the IPX router pattern filters.
NetBIOS over TCP
NetBIOS over TCP
NETBIOS Name Service
NETBIOS Datagram Service
NETBIOS Session Service
(22-0089)
(22-008A)
(22-008B)
Note: Uses the TCP Destination Port location
Other interesting TCP Ports
Other interesting TCP Ports
Hex Usage
15 FTP
Decimal
21
23
17
19
45
6D
6E
Telnet
SMTP
TFTP
POP2
POP3
25
69
109
110
62
Download from Www.Somanuals.com. All Manuals Search And Download.
APPENDIX A
MENU TREES
The menu trees on the next few facing pages are a graphical
representation of the hierarchy of the built-in menu system of the
router. The menus are shown with the options of the menus being
displayed below the specific menu name.
Each of the menu options shown in the menu tree is explained in the
accompanying router menu reference files. The PDF files are located
on the accompanying CD-ROM.
Menu names are displayed in boxes. The numbers on the left side of
the boxes indicate the menu option from the parent menu that this
menu corresponds to. All menu options are listed with numbers
indicating their actual position within the menu system.
63
Download from Www.Somanuals.com. All Manuals Search And Download.
MAIN
Menu Tree
Frame Relay Options
Device Set-Up
software release: F5P.06.02.xx
Configuration
1
1]
2]
3]
4]
5]
1]
Access Set-Up
Terminal Set-Up
Telnet Set-Up
Load FLASH Set-Up
Console
1. Password
2. Device Name
3. Show Time
4. Set Time
1. Terminal Set-Up menu
2. Device Set-Up menu
3. Telnet Set-Up menu
1. Terminal
2. Show
1. Telnet access
1. Console (ZMODEM)
2. Network (TFTP)
1. Dump
2. Restore
2. Telnet
3. Add
3. Telnet port
4. Show Names
5. Add Name
6. Remove Name
4. Remove
4. Load FLASH Set-Up menu
5. Console
6. Hardware Status
7. TFTP access
1]
2]
3]
2]
3]
LAN Set-Up
LAN IP Set-Up
LAN IPX Set-Up
Bridge-STP Set-Up
1. Bridge set-up menu
2. IP set-up menu
3. IPX set-up menu
1. SecondaryIP set-up
2. LAN-NAT set-up
3. IP address
4. Routing protcol
5. RIP mode
6. Route cost
1. Ethernet-II frames
2. RAW 802.3 frames
3. IEEE 802.2 frames
4. 802.2 SNAP frames
5. Auto Learn
1. State
2. Path cost
3. Priority
4. LAN interface type
6. Help
1]
WAN Set-Up
Secondary IP Set-Up
1]
1. Edit Secondary
Edit Secondary
1]
2. Show Secondary Entry
Link Set-Up
1. Secondary IP
2. Mask Size
3. Remove Secondary Entry
1. Physical link type
2. Link operation
3. Frame Relay
3. Subnet Mask
4. Routing Protocol
5. RIP mode
2]
LAN-NAT set-up
4. Frame Relay set-up menu
5. Link Interface type
5. T1/E1 set-up menu
6. Link speed
7. Link CD wait time
8. Loop compensation
6. Private Route
7. Route Cost
1. Translation type
2. Show address pool
3. Dynamic IP pool
4. Add static entry
5. Remove static entry
6. NAT enable
4]
1. Auto learning
2. LMI type
3. Polling interval
4. Enquiry interval
5. Error threshold
6. Monitored events
1]
Connection Set-Up
5]
6]
1. Primary link
2. Auto-call
T1/E1 Set-Up
Slot/Channel Set-Up
1. Link mode
2. LBO
3. T1/E1 framing
4. Channel rate/Speed
5. E1 CRC4
6. Slot/Channel Set-Up
7. Line encoding
8. Alarm generation
9. T1.403 PRM
1. Idle code
2. Number
3. Start
4. Speed
5. E1 timeslot 16
6. Status
1]
2]
Remote Site Set-Up
Edit Remote Site
1. Connection set-up menu
2. Activation menu
1. Edit Remote Site menu
1]
2]
1]
2. Remote site summary
3. Display learned summary
3. Call summary
Bridge Parameters
STP Parameters
3. Protocol set-up menu
4. Security parameters menu
5. Remote site alias
1. STP parameters menu
2. Bridge enabled
3. Tinygram
1. State
2. Path cost
3. Priority
4. Remove remote site
5. Manual call
6. Connection
7. Primary connection
8. Secondary connection
9. Remote site type
4. FCS preservation
2]
6. Force disconnect
1]
Activation
1. Schedule
2. Usage set-up
3. Threshold set-up
4. Inactivity timer
5. Recovery timer
IP Routing
IP Parameters
1. Routing protocol
2. RIP mode
1. IP routing menu
2. NAT Advanced menu
3. IP enabled
4. NAT enabled
5. Link IP address
6. Peer IP address
3. Triggered RIP
4. Auto Default Route
5. Link cost
3]
Security Set-Up
Default Parameters
2]
1]
1. Default parameters menu
2. Security level
3. Request security
4. CHAP challenges
5. Caller ID security
Schedule
1. Outgoing user name
2. Outgoing PAP password
3. Outgoing CHAP secret
NAT advanced
7. Private Route/Negotiate address
8. VJ compression
1. Activation intervals
2. Display schedule
3. Display time
1. Translation type
2. Show address pool
3. Dynamic IP pool
4. Add static entry
5. Remove static entry
3]
IPX Parameters
2]
Usage Set-Up
1. Usage limit
2. Call limit
3. Restart time
1. IPX enabled
2. Link IPX type
3. IPX net
4 Local IPX node
5. Peer IPX node
6. Static routes only
7. IPX DMR enabled
8. Force RIP update
4]
1]
PPP Set-Up
Advanced PPP Set-Up
1. Advanced PPP Set-Up menu
2. Restart Timer
1. ACFC
2. PFC
3. Configure Count
4. Failure Count
3. Echo monitoring
4. Quality protocol
5. Quality interval
6. MP encapsulation
7. MP sequencing
8. MP discriminator
9. MP minimum
5. Terminate Count
4]
CCP Parameters
3]
4]
1. Compression
2. Extended sequence
Protocol Set-Up
1. Bridge parameters menu
2. IP parameters menu
3. IPX parameters menu
4. CCP parameters menu
5. Force disconnect
6. Link summary
Security Parameters
1. Incoming PAP password
2. Incoming CHAP secret
3. Outgoing user name
4. Outgoing PAP password
5. Outgoing CHAP secret
Continued on
next page
64
Download from Www.Somanuals.com. All Manuals Search And Download.
Continued from
previous page
5]
3]
4]
4]
1]
2]
Syslog
Application Set-Up
Firewall Set-Up
NAT Exports
SNMP Set-Up
DHCP Set-Up
1. Syslog
2. Syslog IP
3. Events
4. Security
5. Activation
6. Firewall
1. Edit Services
2. Router port
3. Default export
4. Show services
5. Clear services
1. LAN firewall setup menu
2. WAN firewall setup menu
3. Block src IP spoofing
1. Edit Community menu
2. Message Size
1. SNMP set-up menu
2. DHCP set-up menu
3. Firewall set-up menu
4. NAT exports
5. Syslog
1. Server IP pool address menu
2.DNS setup menu
3. Show Communities
4. Remove Community
3. NetBIOS setup menu
1,2]
4. DHCP services
LAN / WAN Firewall Set-Up
5. Relay destination
6. ICMP echo verification
7. Lease period
1]
6. Time to live
7. Ping
1. Designated servers menu
2. Edit firewall entry menu
3.Firewall
4. Firewall statistics
5. Clear statistics
6. Show firewall entries
7. Remove entry
Edit Community
1]
8. Default Gateways
Edit Services
1. Write Access
1]
2. Show Addresses
3. Add Address
Server IP address pool
1. Other Services menu
2. E-mail
4. Remove Address
1. IP address pool
3. POP 2/3
4. FTP
5. WWW (HTTP)
6. Telnet
7. DNS
2. Show address pool
3. Add static address
4. Remove static address
1]
Designated Servers
2]
DNS Set-Up
1. E-mail (SMTP) server
2. POP 2/3 server
3. FTP server
1. Primary DNS
2. Secondary DNS
3. Domain name
Other Services
1]
4. WWW (HTTP) server
5. Telnet server
1.NAT port
2. Status
6. Local DNS
3]
3. Host IP address
4. Host port
5. Description
6. Remove
7. Remote DNS
NetBIOS Setup
8. Secondary local DNS
9. Secondary remote DNS
1. Send NetBIOS node type
2. Send NetBIOS scope
3. Send NetBIOS name srv
4. NetBIOS node type
5. NetBIOS scope Id
6. NetBIOS name server
2]
5]
6]
1]
Edit Firewall Entry
2]
Bridging Set-Up
Spanning Tree
Router Port
1. Dest IP address
2. Destination mask
3. Source IP address
4. Source mask
5. Protocol type
6. Source port
1. STP State
1. Spanning Tree menu
1.Telnet
2. Bridge Priority
3. Forwarding Delay
4. Message Age Timer
5. Hello Time
2. Bridge Forwarding
3. Bridge Aging Timer
4. Show Bridging Table
5. Show Permanent Table
6. Clear Bridging Table
2. TFTP
3. SNMP
6. Show Bridge
7. Show Ports
7. Destination port
8. Description
9. Entry direction
2]
1]
IP Routing Set-Up
IP Routes
ARP Set-Up
1]
1. IP Routes menu
2. ARP Set-up menu
3. IP routing
4. IP forwarding
5. ARP proxy
Edit Static Route
1. Edit Static Route
2. Default Gateway
3. Show all Routes
4. Show Static Routes
5. Clear Static Routes
1. ARP aging timer
2. ARP retry timer
3. Add
4. Remove
1. Destination
2. Status
3. Remote site
2. Next hop
3. Type
5. Show ARP table
4. Cost
5. Private
6. Add/Remove
7. Network mask
8. Status
7]
1]
IPX Routing Set-Up
2]
Static Routes
1. Edit Route
2. Convert Route
3. Show Static Routes
4. Clear Static Routes
Static Services
1. Edit Service
2. Convert Service
3. Show Static Services
4. Clear Static Services
1. Static Routes menu
2. Static Services menu
3. IPX Routing
4. IPX Forwarding
5. Local Networks
6. Show Routes
7. Show Services
8. Help
1]
Edit Route
Edit Service
1. Status
1]
1. Status
2. Network
3. Interface
4. Hops
2. Server Name
3. Service Type
4. Interface
5. Network
6. Node
5. Ticks
7. Socket
8. Hops
8]
1]
2]
3]
4]
MAC Address
Filters
Bridge Pattern
IP Router Pattern
IPX Router Pattern
Filters
Filter Set-Up
Filters
Filters
1]
1. MAC Address Filters
1. Show Alias
2. Add Alias
3. RemoveAlias
4. Show Pattern
5. Add Pattern
6. Remove Pattern
7. Help
1. Show Alias
2. Add Alias
3. Remove Alias
4. Show Pattern
5. Add Pattern
6. Remove Pattern
7. Help
1. Show Alias
2. Add Alias
3. Remove Alias
4. Show Pattern
5. Add Pattern
6. Remove Pattern
7. Help
1. Edit MAC Address Filter
2. Filter Operation
3. Broadcast Address
4. Show Bridging Table
5. Show Permanent Table
6. Clear Bridging Table
Edit MAC
2. Bridge Pattern Filters
3. IP Router Pattern Filters
4. IPX Router Pattern Filters
Address Filter
1. Status
2. Location
3. Filter If Source
4. Filter If Destination
5. Permanent
6. Remove
1]
2]
3]
3]
Remote Site
Information
Statistics
Statistics Set-Up
LAN Statistics
Link performance
2
1. Extended Statistics
2. Interval
3. Clear All Statistics
1. Bridged traffic
2. IP traffic
1. Display local
2. Display local ATT
3. Display far end
4. Reset local
5. Reset far end
6. Reset all
1. Statistics set-up menu
2. Remote site information menu
3. LAN statistics menu
4. Link stats
1.Common protocol stats
2. PPP statistics
3. IPX traffic
4. Total LAN traffic
5. LAN error
3. Frame relay statistics
4. Status
5. Link performance menu
6. Link summary
7. Interface stats
8. Interface status
6. Clear LAN statistics
7. Clear LAN errors
5. Usage information
6. Clear remote site stats
9. Clear link & interface stats
1]
2]
Diagnostics
2]
3]
3
4
WAN Trace
WAN diagnostics
Test Pattern Set Up
1. Pattern
T1/E1 Loopback
1. Trace link
2. Real Time
3. Capture
4. End
5. Data display
6. Time
1. Link operation
1. Soft Reset
2. Full Reset
3. Heartbeat
4. WAN trace
5. WAN loopback
2. Test pattern set-up menu
1. Loopback type
2. Loopback mode
3. Loopback delay
4. Start loopback
3. T1 loopback menu
2. External loopback
3. CSU/DSU self test
4. CSU/DSU digital loopback
5. CSU/DSU remote loopback
6. Help
2. Start Xmt
Network Events
1. Acknowledge alarm
2. Show events
3. Clear events
4. Show security log
5. Clear security log
6. Show resumption log
7. Clear resumption log
Menu Tree
software release: F5P.06.02.xx
Logout
Help
5
6
65
Download from Www.Somanuals.com. All Manuals Search And Download.
* * * *
66
Download from Www.Somanuals.com. All Manuals Search And Download.
APPENDIX B
OCTET LOCATIONS ON
ETHERNET FRAMES
This appendix provides octet locations for the various portions of
three of the common Ethernet frames. When creating pattern filters
these diagrams will assist in the correct definition of the patterns. The
offset numbers are indicated by the numbers above the frame
representations.
Note the differences in the TCP/ IP and Novell frames when bridging
and when routing. When routing, the TCP/ IP and Novell frames are
examined after the Level 2 Ethernet portion of the frame has been
stripped from the whole data frame. This means that the offset
numbers now start from 0 at the beginning of the routed frame and
not the bridged frame.
Some of the common Ethernet type codes are also shown here. The
Ethernet type codes are located at offset 12 of the bridged Ethernet
frame.
67
Download from Www.Somanuals.com. All Manuals Search And Download.
Octet Locations on Ethernet Frames
Octet Locations on a Bridged TCP/IP
Frame
Octet Locations on a Bridged Novell
Netware Frame
68
Download from Www.Somanuals.com. All Manuals Search And Download.
Octet Locations on Ethernet Frames
ETHERNET Type Codes
Type Code
Description
0800
DOD IP
0801
X.75 Internet
0804
Chaosnet
0805
X.25 Level 3
0806
ARP
0807
XNS Compatibility
DEC MOP Dump/Load
DEC MOP Remote Console
DEC DECNET Phase IV Route
DEC LAT
6001
6002
6003
6004
6005
DEC Diagnostic Protocol
DEC Customer Protocol
DEC LAVC, SCA
Reverse ARP
6006
6007
8035
803D
803F
809B
80D5
80F3
8137-8138
814C
DEC Ethernet Encryption
DEC LAN Traffic Monitor
Appletalk
IBM SNA Service on Ether
AppleTalk AARP (Kinetics)
Novell, Inc.
SNMP
69
Download from Www.Somanuals.com. All Manuals Search And Download.
Octet Locations on Ethernet Frames
Octet Locations on an IP Routed
TCP/IP Frame
Octet Locations on an IPX Routed
Novell Netware Frame
70
Download from Www.Somanuals.com. All Manuals Search And Download.
Octet Locations on Ethernet Frames
Octet Locations on a Bridged XNS
Frame
71
Download from Www.Somanuals.com. All Manuals Search And Download.
Octet Locations on Ethernet Frames
* * * *
72
Download from Www.Somanuals.com. All Manuals Search And Download.
APPENDIX C
SERVICING INFORMATION
Opening of the case is only to be performed
by qualified service personnel.
WARNING !
Before servicing ensure that appliance coupler is
disconnected.
Always disconnect the power cord from the rear panel of
the bridge/router.
Geraetesteckvorrichtung trennen vor den Wartung.
Opening the case
1)
2)
3)
4)
5)
Remove power from the bridge/ router and remove the other
cabling.
Turn the bridge/ router over and place it on a flat, cushioned
surface.
Remove the two Phillips head screws that fasten the case
together.
Hold the two halves of the case together and turn the
bridge/ router right side up.
Lift off the top half of the case.
73
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
Identifying the Internal Components
The major components and the jumper strap positions are shown:
CPU
J2
1
2
4
6
Sanity Timer - Always ON
Force ZMODEM SW Upgrade
Return Password to Default
Power
V.35 / Universal
10BaseT
Figure C-1 Top Internal View of the router
V.35 or Universal WAN interface
74
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
2
J11
CPU
Power
CSU/DSU
T1/E1
10BaseT
Figure C-2 Top Internal View of the
CSU-DSU or T1/ E1
75
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
Sanity Timer
Do not remove this strap – pins 1-2.
Force ZMODEM Software Load
On the rare occasion that during the programming of the FLASH
something happens to the bridge/ router (power hit or hardware reset),
causing the FLASH to become corrupted, the bridge/ router will restart
in ZMODEM receive mode only. If the bridge/ router does not start in
ZMODEM receive mode, perform the following steps:
1) power down the bridge/ router,
2) open the case,
3) remove the strap from the center set of pins: 3-4,
4) power up the bridge/ router. The bridge/ router should now restart
and be in ZMODEM receive mode.
5) Re-install the strap and replace the cover.
Please refer to Appendix E or the Menus Reference Manual for
information on how to do software upgrades.
To Clear a “Lost” Password
1) Remove power from the bridge/ router.
2) Remove the case cover.
3) Remove the jumper strap on pins 5-6.
4) Re-attach the power to the bridge/ router and wait for Power LED
to go green.
5) Remove power from the bridge/ router.
6) Re-install the jumper strap on pins 5-6.
7) Install the case cover
8) Power up the bridge/ router.
9) Log into the bridge/ router using the default password “BRIDGE”
and change the password as desired.
76
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
Connecting to the Console Connector
The console connector on the router is a DCE interface on a
RJ45 pinout. The supplied DB9 to RJ45 converter should be
used to connect to the DB9 connector of a DTE terminal.
This connection will then provide access to the built-in menu
system.
If the console interface is to be connected to a modem or
other DCE device, a standard RS-232 crossover converter
should be used.
The following table illustrates the console pinouts.
RJ45 connector
on unit (DCE)
DB9 connector
on converter (DCE)
RS-232
signal name
2
3
4
5
6
7
8
6
4
5
2
3
8
1
CTS
DTR
GND
RxD
TxD
DSR
CD
Figure C-3 Rear View of the Console and LAN Connectors
77
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
WAN Interface Connection
Pinout Information
The router is manufactured with three different WAN link modules:
V.35, LXT411 CSU/ DSU or Universal WAN. The type installed may
be determined from the label above the WAN link output connector
on the back of the router.
V.35 Module:
The V.35 link interface is provided as a DB25 connector on the back
of the bridge/ router, so an interface converter is needed to convert to
the standard V.35 connectors.
When connecting two bridge/ routers back-to-back without modems, a
null-modem cable is required to crossover the pins on the links.
Crossing over the pins allows two bridge/ routers both configured as
DTE interfaces to be connected together. With this configuration,
both bridge/ routers will provide clocking for the links, and each
bridge/ router must have a link speed defined.
CSU/ DSU Module:
Routers with an LXT411 CSU/ DSU interface module use a
standard RJ45 service connector, pinout specification RJ48S.
56/64
CSU/DSU
Figure C-4 Rear View of the CSU-DSU Connector
78
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
The LXT411 CSU/ DSU link connection is set to operate at 64
Kbps by default. The link may be set to 56 Kbps via the software
menus if required.
When two CSU/ DSU link routers are to be connected via a
leased line in a back to back set-up, the unit must be set to 56
Kbps link speed and a null-modem crossover cable used for the
connection.
A DSU/ CSU crossover cable would be constructed as follows:
1 --> 7
2 --> 8
7 --> 1
8 --> 2
T1/ E1 Module:
Routers with a T1/ E1 interface module use a standard RJ45
service connector, pinout specification RJ48C.
T1/E1
Figure C-5 Rear View of the T1/ E1 Connector
When two T1/ E1 routers are to be connected in a back to back
set-up, a null-modem crossover cable used for the connection.
A T1/ E1 crossover cable would be constructed as follows:
1 --> 4
2 --> 5
5 --> 2
4 --> 1
Pins 1 and 2 are receive (1 = ring, 2= tip)
Pins 4 and 5 are transmit (4 = ring, 5= tip)
79
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
UNIVERSAL WAN Module:
The Universal WAN Interface module in this router may be configured
to operate in one of four modes: V.11/ X.21, V.35, RS232/ V.24, or
RS530/ RS422. The interface connector for all types is a standard DB25
pin female connector.
1
13
25
14
WARNING: ensure that the connector cable used with the Universal
WAN interface module has the correct pinouts for the operational
mode selected for the interface (V.11X.21, V.35, RS232/ V.24, or
RS530/ RS422). Using the incorrect cable connector for the operational
mode selected may cause permanent damage to the interface module.
Pinouts for each mode of operation are listed on the pages following.
80
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
V.35 Link Pinouts
Direction
To From
DCE DCE
DB25
Contact
No.
M.34
Contact
No.
Circuit
Name
Protective Ground
1
2
3
4
5
6
7
8
A
P
NA
X
Transmitted Data (A)
Received Data (A)
Request to Send
Clear to send
R
C
D
E
B
F
X
X
X
X
Data Set Ready
Signal Ground
NA
X
Data Channel Received Line Signal
Detector
Receiver Signal Element Timing (B)
9
X
X
----------
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Terminal Signal Element Timing (B)
Send Signal Element Timing (B)
W
AA
X
X
----------
Send Data (B)
S
Y
T
V
L
X
X
X
X
X
Send Signal Element Timing (A)
Received Data (B)
Received Signal Element Timing (A)
Local Loopback
----------
Data Terminal Ready
Remote Loopback
----------
H
N
X
----------
Terminal Signal Element Timing (A)
Test Mode
U
NN
X
X
Figure C - 6 V.35 Link Pin Outs
The connecting cable must be a shielded cable.
81
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
Circuits which are paired (contain an (A) and (B)
reference) should be connected to twisted pairs within
the connecting cable.
NOTE For U.K. Approval:
The connecting cable may be any length between 0 and 5M.
One end must be terminated in a male 34 pin X.21 bis
connector as defined in ISO-2593 1984. The other end must
be terminated in a male 25 pin X.21 bis connector as defined in
ISO-2110 1989
82
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
RS232C / V.24 Link Pinouts
Con Circ Circuit
Direction
tact
No.
uit
Name
To From
DCE DCE
1
AA
BA
BB
CA
Protective Ground
NA
X
2
Transmitted Data
3
Received Data
X
4
Request to Send
X
5
----------
6
CC
AB
CF
Data Set Ready
X
7
Signal Ground
NA
X
8
Received Line Signal Detector (CD)
9
----------
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
----------
----------
----------
----------
----------
DB
DD
Transmit Signal Element Timing (DCE Source)
X
----------
Receive Signal Element Timing (DCE Source)
X
Local Loopback
X
----------
CD
CE
DA
Data Terminal Ready
X
X
X
----------
Ring Indicator
----------
Transmit Signal Element Timing (DTE Source)
----------
Figure C-7 RS232 / V.24 Link Pinouts
The connecting cable must be a shielded cable.
NOTE For U.K. Approval:
The connecting cable may be any length between 0 and 5M. Each end
must be terminated in a male 25 pin X.21 bis connector as defined in
ISO-2110 1989.
83
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
RS530 / RS422 Link Pinouts
Direction
Contact
Number
Circuit
To From
Circuit
Shield
Name
DCE DCE
1
Protective Ground
NA
X
X
X
X
X
NA
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
2
BA (A)
BB (A)
CA (A)
CB (A)
CC (A)
AB
Transmitted Data
3
Received Data
4
Request to Send
5
Clear to Send
6
Data Set Ready
7
Signal Ground
8
CF (A)
DD (B)
CF (B)
DA (B)
DB (B)
CB (B)
BA (B)
DB (A)
BB (B)
Received Line Signal Detector
Receive Signal Element Timing (DCE Source)
Received Line Signal Detector
Transmit Signal Element Timing (DTE Source)
Transmit Signal Element Timing (DCE Source)
Clear to Send
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Transmitted Data
Transmit Signal Element Timing (DCE Source)
Received Data
DD (A) Receive Signal Element Timing (DCE Source)
LL
Local Loopback
CA (B)
CD (A)
RL
Request to Send
Data Terminal Ready
Remote Loopback
CC (B)
CD (B)
DA (A)
Data Set Ready
Data Terminal Ready
Transmit Signal Element Timing (DTE Source)
----------
Figure C-8 RS530 / RS422 Link Pinouts
The connecting cable must be a shielded cable.
Circuits which are paired (contain an (A) and (B) reference)
should be connected to twisted pairs within the connecting cable.
84
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
V.11 / X.21 Link Pinouts
X.21
Direction
Contact Circuits
Circuit
Name
To From
No.
Ref.
DCE DCE
1
2
Protective Ground
Transmitted Data (A)
Control (A)
NA
T (A)
C (A)
R (A)
I (A)
X
X
X
X
X
3
4
Received Data (A)
Indication (A)
5
6
S (A)
Signal Element Timing (A)
----------
7
8
Ground
T (B)
C (B)
R (B)
I (B)
Signal Ground
Transmitted Data (B)
Control (B)
NA
9
X
X
X
X
X
10
11
12
13
14
15
Received Data (B)
Indication (B)
S (B)
Signal Element Timing (B)
----------
----------
Figure C-9 V.11 / X.21 Link Pinouts
The connecting cable must be a shielded cable.
Circuits which are paired (contain an (A) and (B) reference)
should be connected to twisted pairs within the connecting cable.
NOTE For U.K. Approval:
The connecting cable may be any length between 0 and 5M.
85
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
V.11 / X.21 DB25 to DB15
Connector Cable
DB25 MALE
1
DB15 MALE
Protective Ground
Transmit Data (A)
Receive Data(A)
Signal Ground
Indication (A)
Protective Ground
1
Transmit Data (A)
2
3
4
Receive Data (A)
Signal Ground
8
7
8
5
Indication (A)
Indication (B)
Indication (B)
10
12
Signal Element Timing (B)
Transmit Data (B)
13
9
12
14
Signal Element Timing (B)
Transmit Data (B)
15 Signal Element Timing (A)
16 Receive Data (B)
Signal Element Timing (A)
Receive Data (B)
6
11
3
Control (A)
Control (B)
20
23
Control (A)
Control (B)
10
Figure C-10 V.11 / X.21 DB25 to DB15 Connector Cable
NOTE For U.K. Approval:
The connecting cable may be any length between 0 and 5M.
86
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
V.35 Null-Modem Cable Configuration
Figure C - 11 V.35 Null-Modem Cable
The connecting cable must be a shielded cable.
Circuits which are paired (contain an (A) and (B) reference)
should be connected to twisted pairs within the connecting cable.
This cable is needed when it is necessary to connect two units back-to-
back and a set of modems is not available. Note that this cable
specifies DB25 connectors on each end to allow direct connection to
the link interface connector on each unit.
The link speed must be defined for each of the two units.
87
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
RS232 / V.24 Null-Modem Cable
DB25 MALE
DB25 MALE
1
2
Shield
Shield
1
3
Transmitted Data
Received Data
3
4
6
2
6
Received Data
Transmitted Data
Data Set Ready
Request To Send
Data Set Ready
4
Request To Send
20 DTE Ready
Received Line Signal Detector (CD)
8
7
8
Signal Ground
7
Signal Ground
DTE Ready
Received Line Signal Detector (CD)
20
Receiver Timing DCE Source 17
15 Transmit Timing DCE Source
Transmit Timing DCE Source
17 Receiver Timing DCE Source
24 Transmit Timing DTE Source
15
Transmit Timing DTE Source
24
Figure C-12 RS232 / V.24 Null-Modem Cable
The connecting cable must be a shielded cable.
This cable is needed when it is necessary to connect two units
back-to-back and a set of modems is not available. Note that this
cable specifies DB25 connectors on each end to allow direct
connection to the link interface connector on each unit. The link
speed must be defined for each of the two units.
88
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
RS530 / RS422 Null-Modem Cable
DB25 MALE
DB25 MALE
1
Shield
Shield
1
Received Data (A)
3
2
Transmitted Data (A)
Received Data (B)
Transmitted Data (A)
Transmitted Data (B)
DCE Ready (A)
14 Transmitted Data (B)
Received Data (A)
16 Received Data (B)
Request To Send (A)
19 Request To Send (B)
Clear To Send (A)
13 Clear To Send (B)
DCE Ready (A)
16
2
3
14
6
4
DCE Ready (B)
22
5
Clear To Send (A)
Clear To Send (B)
5
13
6
Request To Send (A)
4
22 DCE Ready (B)
20 DTE Ready (A)
23 DTE Ready (B)
Request To Send (B) 19
Received Line Signal Detector (A)
8
Received Line Signal Detector (B)
10
7
8
Signal Ground
7
20
23
17
9
Signal Ground
DTE Ready (A)
Received Line Signal Detector (A)
10 Received Line Signal Detector (B)
15 Transmit Timing (A) DCE Source
12 Transmit Timing (B) DCE Source
DTE Ready (B)
Receiver Timing (A) DCE Source
Receiver Timing (B) DCE Source
Transmit Timing (A) DTE Source
Transmit Timing (B) DTE Source
Transmit Timing (A) DTE Source
Transmit Timing (B) DTE Source
Local Loopback
24
11
24
11
18
18 Local Loopback
21 Remote Loopback
21
15
12
25
Remote Loopback
Receiver Timing (A) DCE Source
17
Transmit Timing (A) DCE Source
Transmit Timing (B) DCE Source
Receiver Timing (B) DCE Source
9
25 Test Mode
Test Mode
Figure C-13 RS530 / RS422 Null-Modem Cable
The connecting cable must be a shielded cable.
Circuits which are paired (contain an (A) and (B) reference)
should be connected to twisted pairs within the connecting cable.
This cable is needed when it is necessary to connect two units back-to-
back and a set of modems is not available. Note that this cable
specifies DB25 connectors on each end to allow direct connection to
the link interface connector on each unit. The link speed must be
defined for each of the two units.
89
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
* * * *
90
Download from Www.Somanuals.com. All Manuals Search And Download.
Software Upgrades
APPENDIX D
SOFTWARE UPGRADES
Procedures for performing a Console ZMODEM Flash
Load to upgrade the operating software of the router:
1) Save the current configuration of the router (Main menu: option
6).
2) Execute the Console (ZMODEM) command from the Load
FLASH Set-Up menu.
3) Confirmation is required. Enter “yes” to proceed.
4) After the router restarts, the router will be in receive ZMODEM
mode. The router will display the following messages on the
console port:
System startup
Receiving ZMODEM ...
**B0100000023be50
5) Start the ZMODEM transfer and send the file “# # # .all” from the
Operational/ BOOT Code directory on the CD-ROM.
6) Once the ZMODEM transfer is complete, the router will verify the
file “# # # .all” in memory, program and verify the FLASH, clear
the configuration to default values (except the password), and then
reset. A byte status message will be displayed on the console port
during the programming of the FLASH. After the reset, the remote
sites information will have to be re-entered, either from a saved
configuration file (recommended) or by manually reentering the
information for each site.
On the rare occasion that during the programming of the
FLASH something happens to the bridge/ router (power hit or
hardware reset), causing the FLASH to become corrupted, the
bridge/ router will restart in ZMODEM receive mode only. If
91
Download from Www.Somanuals.com. All Manuals Search And Download.
the bridge/ router does not start in ZMODEM receive mode,
refer to Appendix D: Servicing Information for recovery
procedure.
The ZMODEM Load Flash operation may be aborted by aborting
the ZMODEM transfer and then entering 5 control-X characters
“^X” from the console keyboard. After the control-X characters are
sent, the router will display a limited menu system. Choose the
Abort Load option from the Load FLASH Set-Up menu. This will
cause the router to reset and return to normal operations operating
from the existing software.
If the ZMODEM transfer operation needs to be restarted after it
has been canceled or after loading the first file, simply choose the
Console (ZMODEM) option from the Load FLASH Set-Up menu
once again.
Considerations:
When the router is placed in Console load BOOT mode, the
LAN interface and the WAN interface will be disabled. The
router will only accept information from the console
management port.
The BOOT code of the router may be upgraded by performing a load
of the “# # # .all” file from the Operational/ BOOT Code directory on
the CD-ROM.
92
Download from Www.Somanuals.com. All Manuals Search And Download.
Servicing Information
Procedures for performing a TFTP Flash Load to upgrade
the operating software of the router:
1) Execute the Network (TFTP) command from the Load FLASH
Set-Up menu.
2) Enter “none” to connect locally or enter the remote site ID
number or alias to connect to a remote site.
3) Start the TFTP application to be used for transfers to the router.
The IP address of the router may be found in the Internet Set-Up
menu.
4) Put the file “# # # .all” for this router from the Operational/ BOOT
Code directory on the CD-ROM to the router. (Any router not in
Network Load BOOT mode will respond with an access violation
error.)
5) The router will verify the file “# # # .all” in memory, program and
verify the FLASH, clear the configuration to default values (except:
IP Address, IP Routing state, IP Forwarding state, WAN
Environment, Link 1 & 2 State, Password and connection data for
the remote site, if applicable), and then reset. After the reset, the
remote sites information will have to be re-entered, either from a
saved configuration file (recommended) or by manually reentering
the information for each site.
The router may take up to two (2) minutes to program and verify
the FLASH. The console will not respond during this time.
To check on the router’s current state during this process, get the
file “status.txt” from the router. This file will report the router’s
state: both the mode and version if no errors have occurred, or an
error message.
On the rare occasion that during the programming of the
FLASH something happens to the bridge/ router (power hit or
hardware reset), causing the FLASH to become corrupted, the
bridge/ router will restart in ZMODEM receive mode only. If
93
Download from Www.Somanuals.com. All Manuals Search And Download.
the bridge/ router does not start in ZMODEM receive mode,
refer to Appendix D: Servicing Information.
The TFTP Load Flash operation may be aborted by re-
connecting to the console of the router and choosing the
Abort Load option from the Load FLASH Set-Up menu. This
will cause the router to reset and return to normal operations
operating from the existing software.
In the following diagram of a cluster of routers, when upgrading
the three routers in the diagram, the upgrade order should be
Router C, then Router B, and finally Router A.
A TFTP software load to Router C would be performed as
follows:
-
-
Using TFTP, get config.txt from each router and save.
Telnet to Router C. Enter the ID or alias of Router B in
the Network (TFTP) option to put Router C in Network
Load mode. When Router C restarts in Network Load
mode, the connection to “Router B” will be re-
established only if autocall is enabled on router B.
The TFTP transfer of the upgrade code may now be
performed from the PC to Router C. Once
Router C has completed programming the flash and has
restarted in operational mode, the connection to Router B
will be re-established only if autocall is enabled on router B.
Once router C is operating with the new software, the PC may
be used to reload the config.txt file back to Router C.
Repeat for Router B, then again for Router A. Perform the
Router B upgrade using the ID or alias of Router A. Router A
upgrades would not require a remote site ID as the PC used
for TFTP transfers is located on the same LAN as Router A.
94
Download from Www.Somanuals.com. All Manuals Search And Download.
PC used for
TFTP transfers
Router A
Link 1
Router B
Link 2
Router C
5500099-10
95
Download from Www.Somanuals.com. All Manuals Search And Download.
* * * *
96
Download from Www.Somanuals.com. All Manuals Search And Download.
|