ROUTER-A CARD FOR AM3440 USER`S MANUAL
Contents
1. 21D ALAKAA EAA AA aje Router A card for IP Router Network Address 100 3 0 0 255 255 0 0 Figure 9 1 Router Setup OSPF Open Shortest Path First Protocol OSPFv2 OSPF is an interior gateway protocol used for routing between routers belonging to a single Autonomous System OSPF uses link state technology in which routers send each other information about the direct connections and links which they have to other routers Each OSPF router maintains an identical database describing the Autonomous System s topology From this database a routing table is calculated by constructing a shortest path tree OSPF recalculates routes quickly in the face of topological changes utilizing a minimum of routing protocol traffic OSPF provides support for equal cost multi path An area routing capability is provided enabling an additional level of routing protection and a reduction in routing protocol traffic In addition all OSPF routing protocol exchanges are authenticated OSPF has been designed expressly for the TCP IP internet environment including explicit support for CIDR and the tagging of externally derived routing information OSPF also provides for the authentication of routing updates and utilizes IP multicast when sending receiving the updates OSPF routes IP packets based solely on the destination IP address found in the IP packet header IP packets are routed as is they are not encapsulated in any f2. 89 show dhcp relay config 89 show dhcp relay StatuS oooocoooo co 89 show dhcp server config al 9 96 show dhcp server config host 90 show dhcp server config subnet 90 show dhcp server lease 90 show dhcp server status 90 show interface ifname config 90 show interface ifname speed 90 show interface ifname statistics 90 show interface ifname chdlc 91 show interface ifname ifname frame_relay 91 show interface ifname ifname nat 91 show interface ifname ospf config 91 show interface ifname ospf status 91 show policy ee 91 show route entry oooooooooccccocococccoocononcconononocnononnno 91 show route ospf border routers 91 show route ospf Config ooo ooci co 91 show route ospf database 91 show route ospf neighbor 92 show route ospf route 00 0 ee eeeeeeeeeeeee 92 show route ospf router info 92 Show system fwinfo 0 00 ee eesse 92 show system hwinfo 0 0 cece 92 Show system config
3. 72 bridge brg_name vlan mgmt 72 bridge brg_name vlan regencre 72 bridge brg_name vlan setup 72 bridge Create oo nnns 69 bridge destroy oooooooooccconcooccccocononcconononncnnonon 69 D dhcp relay interface add 73 dhcp relay interface delete 73 dhcp relay Server ocoocococcococcococococccocononocinononncnos 73 dhcp relay Setup ooooococconococcococococococononinononannos 73 dhcp server host add o oococcccco coco 73 dhcp server host delete 73 dhcp server host host_name boottile 73 dhcp server host host_name client_id 74 dhcp server host host_name fixed_addr 74 dhcp server host host_name hardware 74 dhcp server host host_name lease 74 dhcp server host host_name next_server 74 dhcp server host host_name option 74 dhcp server interface add 75 dhcp server interface delete 75 dhcp Server setup 75 dhcp server subnet add 75 dhcp server subnet delete 75 dhcp server subnet subnet_name bootfile 75 dhcp server subnet subnet_name bootp 75 dhcp server subnet subnet_name dns_s
4. ROUTER A CARD FOR AM3440 USER S MANUAL LOOP TELECOMMUNICATION INTERNATIONAL INC 8F NO 8 HSIN ANN RD SCIENCE BASED INDUSTRIAL PARK HSINCHU TAIWAN Tel 886 3 578 7696 Fax 886 3 578 7695 O 2009 Loop Telecommunication International Inc All rights reserved Version 7 31 JUL 2009 TABLE OF CONTENTS 1 PRODUCT DESCRIPTION 2000 dein a de 1 1 1 DESCRIPTION cir dd A el ates ee ee eee 1 112 APPLICATION NS i aie ei oils i de ete 2 1 3 SPECIFICATIONS aia A oes ened tainted 3 2 INSTALLATION 2 2 200s Seek A a sila eae A aoe a aes lg han A eee 4 2 1 SITE SELECTION tidad IA aired Seven nadie lt ned i E aa eens 4 2 2 MECHANICAL INSTALLATION Aireen raun ananta ia ai da id Adee ote t 4 2 3 ETHERNET CONNECTION cutis at ida id andas 5 Bi MOPERATION tc iii tdi 6 3 1 USING A TERMINAL otni A A A a de 6 3 1 1 VI 100 Monilor CONNECHON oeeie in inair a AEE AEE ARAA EEEE LE ERREA EE bs 6 9 1 2 VWIE100 Monitor Serial Port Setups aserat ies 7 3 2 SYSTEM OPERATION tito dia riera dee 9 3 3 WAN TIMESLOT MAP SETUP tecladista rd 12 3 4 CONFIGURATION ci cctidatidi eiii apli dd idas 13 3 5 LED OPERATION cuca idas lili idi gel 13 4 PPPM PPP A A a de ia E A ERS 14 4 1 OVERVIEW Sua lod tie beta tetas died At eo 14 4 2 STEP BY STEP SETUP INSTRUCTIONS 0 cccccceeseceeeeeceeeecaaeeeeneecaeeeseaaeseneeseaeeesaeseeaeesneeeessaseesiaeeeaes 15 5 HROUTER A CARD SE TUR coo tie skated a tp td laa da 16 5 1 CONFIGURATION SAVE AND RE
5. oooooconciconccociccicconinccnono 92 show system log 0 0 eee eecceeeeeeeeeeeeteeeeeeeeeeee 92 Show timeslot conocia ts 92 system active routing o ooococinnnnnnninnc 93 system configuration reset 93 system configuration Save 93 system firmware l02d o oooooooooooocionicccoconoco noo 93 system reboot 2 cece ceteeeeeteeteeteeneeaes 93 T traceroute si ici ib 68 Chapter 19 Appendix Converting a Subnet Mask to Binary Code 19 Appendix Converting a Subnet Mask to Binary Code IP addresses are sometimes followed by their subnet mask expressed in binary base two code This binary code is called a prefix length For example 192 168 1 1 16 is an IP address followed by the prefix length 16 The prefix length 16 represents the subnet mask 255 255 0 0 The simplest way to convert a legal subnet mask into a prefix length is to use the scientific calculator located on most PCs In the sample Windows screen below click on Start and then move the cursor over the Program and Accessories headings to arrive at the Calculator heading Click on the Calculator heading Gi Set Program Access and Defaults he Windows Update New Office Document ns E Open Office Document si Netscape ISP Try It 9 95 A Free AOL amp Unlimited Internet E Show Desktop Microsoft PowerPoint BY Microsoft Word BN Command Prompt
6. Note make sure to follow the above setup step otherwise the internet cannot work properly 16 Chapter 5 Router A Card Setup The above settings are the basic settings for a valid WAN interface An interface can be in either router mode or bridge mode the following sections show how to set the interface to router mode and bridge mode 5 2 1 Interfaces in bridge mode To set any interfaces to bridge mode a bridge group must be created Please refer to Chapter 11 for details After creating the bridge group for example br1 key in the admin command bridge br1 add wanxx and press the enter key Then the WANxx interface will be in bridge mode and belong to the bridge group br1 5 2 2 Interfaces in router mode To assign an IP address and subnet mask to the WAN interfaces key in the admin command interface wanXX ip followed by the IP address and subnet mask In the following screen below interface wan1 is assigned an IP address 10 1 1 1 with subnet mask 255 0 0 0 and interface wan2 is assigned an IP address 20 1 1 1 with subnet mask 255 0 0 0 Please refer to Chapter 16 for subnet mask determination Note WAN interface could be in bridge mode as default The user can key in the admin command show interface wanxx configuration to check current mode To switch to router mode key in the command bridge xxx delete wanxx Aladmin gt interface WAN1 timeslot set 1 3 2 Command succeeded Aladmin gt interface WAN2 timeslot set 33 64
7. ccess Control and Firewall Policy based on Inbound outbound direction Source destination IP address Protocol types ICMP TCP UDP Port number range Up to 64 control lists Remote Bridge User configurable aging time Up to 16K MAC table Cisco ISL packet transparent VLAN packet transparent padding un padding Ethernet FCS Rapid Spanning Tree Protocol support IEEE 802 1w VLAN ID mapping MAC address based Policy DHCP relay and server Routing between bridge group and router interfaces Diagnostics e Ping e Traceroute Chapter 2 Installation 2 INSTALLATION 2 1 Site Selection The following list indicates a site selection guideline Users need to follow this guideline to select a proper installation site e Location of the Rack should be part of the central office equipment layout design Considerations should be given to entrance cable routing and 48 Vdc power e The installation site should have 48 Vdc power An optional AC DC power converter can be used Use Only with Class 2 power source 48 Vdc 100 watts 2 2 Mechanical Installation The Router A card is designed to be plugged into any of the available slots in the Loop AM3440 A device The front panel is shown in the following figure The LEDs on the front panel indicate unit performance Do Router A 100M LINK ACT LAN 1 LAN 2 100M LINK ACT o Il Figure 2 1 Router A Card Front Panel Chapter 2 Install
8. Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters show bridge Admin show bridge Shows bridge configuration none show bridge brg_name config Admin show bridge brg_name config Shows bridge group configuration none show bridge brg_name spantree Admin show bridge brg_name spantree Shows RSTP status of brg_name none show bridge brg_name vlan port Admin show bridge brg_name vlan port Shows each port s VLAN information none show bridge brg_name vlan state Admin show bridge brg_name vlan state Shows bridge state none show bridge brg_name vlan table Admin show bridge brg_name vlan table Shows VLAN table none show dhcp relay config Admin show dhcp relay config shows dhcp relay configuration including the interface bridge mgmt on which the user WANts to run the DHCP relay and the DHCP server IP address none show dhcp relay status Admin show dhcp relay status Shows the DHCP relay current status enabled or disabled Also it displays a short description of error messages encountered when starting up the DHCP relay if it fails to enable the relay none 90 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax
9. Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands dhcp server subnet subnet_name dns_server add Admin Dhcp server subnet subnet_name dns_server add address Configures the Domain Name System DNS IP servers available to the client User can add 4 DNS servers by this command If the DNS server is not configured the client cannot correlate host names to IP addresses address IP address max 4 address dhcp server subnet subnet_name dns_server delete Admin Dhcp server subnet subnet_name dns_server delete address Deletes the DNS servers already configured address ip address or all to delete all setting dhcp server subnet subnet_name domain_name Admin Dhcp server subnet subnet_name domain_name name Specifies the client s domain name string name domain name system lt 32 bytes or NULL to remove setting dhcp server subnet subnet_name ip_range Admin Dhcp server subnet subnet_name ip_range start_addr end_addr Specifies the pool of IP addresses in the subnet that can be assigned to DHCP clients The address pool must be in the same network segment or subnet start_addr start IP address or NULL to remove setting end_addr end ip ad
10. TFTP Server IP Ol Dl Firmware File Name rom27 rom 14 36 38 03 02 06 Downloading firmware Recieved 1541 Blocks 14 37 28 03 02 06 Received 789448 bytes in 51 seconds 14 37 28 03 02 06 Send firmware to card Send 789448 Bytes 14 42 46 03 02 06 download OK lt lt Press ESC key to continue gt gt 66 Chapter 17 Setting Up Firmware Configuration Up Download with TFTP Server 17 2 1 3 Configuration Upload Press C from the screen of File Transfer to Upload Configuration Then key in the IP address of the TFTP and the file name Your screen will tell you how many bytes were transmitted and if the upload was successful SLOT A Router A ARROW KEYS CURSOR MOVE TFTP Server IP Config File Name Upload Configuration BACKSPACE to edit ESC to abort 14 46 39 03 02 2006 010 003 002 031 routerA cfg Prepare config data for upload Request 279745 Bytes 14 46 52 08 02 06 Uploading contig Sended 546 Blocks 14 49 35 03 02 06 Please wait for config data receive ready 14 49 38 03 02 06 Config data checksum ok 14 49 54 03 02 06 Sent 279745 bytes in 183 seconds lt lt Press ESC key to return to previous menu gt gt 67 Chapter 17 Setting Up Firmware Configuration Up Download with TFTP Server 17 2 1 4 Configuration Download Press B from the screen of File Transfer to Download Configuration Then key in the IP address of the TFTP and the file name Your screen will te
11. dhcp server subnet subnet_name router delete Admin Dhcp server subnet subnet_name router delete address Deletes the router for the subnet already configured address IP deleteress max 4 deleteress 78 Chapter 18 Appendix Operation Commands 18 5 Interface Commands The interface commands are always associated with an interface name ex interface lan1 Following commands use ifname to represent an interface name Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters interface ifname alias add Admin Interface ifname alias add address Adds an alias IP address This command allows multiple IP addresses can be assigned to an interface A maximum of 5 alias IP address are supported address P address XXX XXX XXX XXX XX interface ifname alias delete Admin Interface ifname alias delete address Deletes alias IP address address P address XXX XXX XXX XXX XX interface ifname chdlc Admin interface ifname chdlc interval timeout Sets Cisco HDLC Parameters interval Keep alive interval 1 3600 default is 10 secs timeout Interface restart timeout seconds
12. Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Chapter 18 Appendix Operation Commands interface ifname policy mac Admin Interface ifname policy mac direction list_name Sets access control for the bridge interfaces Not valid for interfaces in router mode Packets coming in or out of the virtual management interface will be checked and dropped if the mac address s matches those in the list If a list is binding on the inbound direction the source mac address of all incoming packets to this interface will be checked with the entries in the list if a list is binding on the outbound direction the destination mac address of all outgoing packets from this interface will be checked direction Set inbound or outbound list_name List name or off to disable access control interface ifname nway auto Admin interface ifname nway auto Enables auto negotiation to set up link speed duplex none interface ifname nway force Admin interface ifname nway force speed duplex Force mode to set up link speed and duplex speed 10 100 duplex full half Interface ifname route ospf auth key message digest key Admin interface ifname route ospf auth key message digest key Set OSPF MD5 authentication key Assign a password to be used by neighboring OSPF routers on a network segment t
13. Command succeeded Set up the LAN port cost Key in the command interface lan1 spantree cost followed by the cost value 100 Press Enter A sample screen is shown below A Jadmin gt interface lanl spantree cost 100 Command succeeded Set up the WAN port cost Key in the command interface WAN1 spantree cost followed by the cost value 100 Press Enter A sample screen is shown below A admin gt interface WAN1 spantree cost 100 Command succeeded Set up the LAN span tree link type Key in the command interface lan1 spantree link type followed by the type of link p to p Press Enter A sample screen is shown below A admin gt interface lanl spantree link type p to p Command succeeded Set up the WAN span tree link type Key in the command interface WAN1 spantree link type followed by the type of link p to p Press Enter A sample screen is shown below A admin gt interface WAN1 spantree link type p to p Command succeeded 52 Chapter 15 STP RSTP Setup Set the LAN edge port to enable Key in the command interface lan1 spantree edge port followed by enable Press Enter A sample screen is shown below A admin gt interface lanl spantree edge port enable Command succeeded Set the WAN edge port to enable Key in the command interfae WAN1 spantree edge port followed by enable Press Enter A sample screen is shown below A admin gt interface WAN1 spantree
14. Command succeeded Aladmin gt interface WAN1 ip 10 1 1 1 8 Command succeeded Ajadmin gt interface WAN2 ip 20 167 1 8 Command succeeded Aladmin gt interface WAN2 route rip setup enable Command succeeded Aladmin gt interface WAN2 route rip version 2 Command succeeded 18 Chapter 5 Router A Card Setup 5 3 LAN interface Setup An interface can be either in router mode or bridge mode the following sections shows how to set the interface to router mode and bridge mode 5 3 1 Interfaces in bridge mode To set any interfaces to bridge mode a bridge group must be created Please refer to Chapter 11 for details After creating the bridge group for example br1 key in the admin command bridge br1 add lanxx and press the enter key Then the LANxx interface will be in bridge mode and belong to the bridge group br1 5 3 2 Interfaces in router mode To assign an IP address and subnet mask to the LAN interfaces key in the admin command interface lanxx ip followed by the IP address and subnet mask In the following screen below interface lan1 is assigned with IP address 192 168 1 254 with subnetmask 255 255 255 0 Please refer to Chapter 16 for subnet mask determination A admin gt interface lanl ip L82 168 lt L 254 24 Command succeeded The users may enable the RIP routing protocol to allow Router A card automatically exchange dynamical routing tables with other RIP enabled routers To enable RIP routing p
15. Command succeeded Aladmin gt interface WAN1 encapsulation ppp Command succeeded Ajadmin gt interface WAN2 encapsulation ppp Command succeeded Aladmin gt interface WAN1 ip 10 1 1 1 8 Command succeeded Aladmin gt interface WAN2 ip 20 1 1 1 8 Command succeeded 17 Chapter 5 Router A Card Setup The users may enable the RIP routing protocol to allow Router A card automatically exchange dynamical routing tables with other RIP enabled routers To enable RIP routing protocol key in the command interface wanXX route rip setup enable Aladmin gt interface WAN1 timeslot set 1 3 2 Command succeeded Aladmin gt interface WAN2 timeslot set 33 64 Command succeeded Aladmin gt interface WAN1 encapsulation ppp Command succeeded Ajadmin gt interface WAN2 encapsulation ppp Command succeeded Aladmin gt interface WAN1 ip 10 1 1 1 8 Command succeeded Ajadmin gt interface WAN2 ip 20 1 1 178 Command succeeded Aladmin gt interface WAN2 route rip setup enable Command succeeded Router A card supports both RIP version 1 and RIP version 2 The default version is version 2 in Router A card To change the RIP version key in the command interface wan2 route rip version Aladmin gt interface WAN1 timeslot set 1 32 Command succeeded Aladmin gt interface WAN2 timeslot set 33 64 Command succeeded Aladmin gt interface WAN1 encapsulation ppp Command succeeded Ajadmin gt interface WAN2 encapsulation ppp
16. Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands show dhcp server config all Admin show dhcp server config all Shows all the DHCP server configurations including all subnets and hosts none show dhcp server config host Admin show dhcp server config host Shows the DHCP server specific host configuration specified by its name name host name in configuration show dhcp server config subnet Admin show dhcp server config subnet Shows specific subnet configuration specified by its name name subnet name in configuration show dhcp server lease Admin show dhcp server lease Shows the DHCP server lease information given to the clients This is test file format describing IP address and client h w address and start of lease time end of lease time for each client etc none show dhcp server status Admin show dhcp server status Shows the DHCP server current status enabled or disabled Also it displays a short description of error messages encountered while starting up the DHCP server if it fails to enable the server none show interface ifname config Admin show interface ifname config Shows LAN configuration none show interface ifname speed Admin show interface ifname speed Shows LAN speed duplex setting none s
17. Shows policy configuration list_name Show rules in the list_name show route entry Admin show route entry Shows routing entries all Show all routing entries including dynamic entries show route ospf border routers Admin show route ospf border routers Show the border and boundary router current status show route ospf config Admin show route ospf config area_id intf_name Show the OSPF configuration show route ospf database 92 Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands Admin show route ospf database Show the OSPF database summary show route ospf neighbor Admin show route ospf neighbor Show the OSPF neighbor list show route ospf route Admin show route ospf route Show the OSPF routing entries show route ospf router info Admin show route ospf router info Show the OSPF router current status show system fwinfo Admin show system fwinfo Shows card firmware informati
18. Spanning Tree algorithm timer values 51 Table 15 3 Bridge and port priority parameter values 51 Table 16 1 VLAN Table nnmnnn 56 Table 16 2 VLAN Port nn en enn nn en enn nn ene nnnnenennnnnne 57 Table 19 1 Subnet mask and prefix length conversion 99 iv GB ES NL DK FIN PL CZ SK SLO GR PRC Bitte f hren Sie das Gerat am Ende seinerLewbensdauer den zue Verf gung stehended R ckgabeund Sammelsystemen zu At the end of the product s useful life please dispose of it at appropriate collection points provided in your country Une fois le produit en fin devie veuillez le d poser dans un point de recyclage appropri Para preservar el medio ambiente al final dela vida til de su producto depositelo en los laguares destinado aello de acuerdo con la legislaci n vigente No final de vida til do producto por favor coloque no ponto de recolha apropriado Onde tutelare l ambiente non buttate l apparecchio trai i normali rifiuti al termine della sua vita utile ma portatelo presso i punti do taccolta specifici per questi rifiuti previsti dalla normativa vigente Wij raden u aan het apparant aan het einde van zijn nuttige levensduur niet bij hey gewone huisafval te deponeren maar op de dearvoor bestemde adressen Nar produktet er udtjent bor det bortskaffes via de see rlige indsaml
19. The possible values range from 6 to 40 seconds The default value is 20 seconds Note The default value of 20 seconds is recommended in the STP RSTP If you change this value the following relationship must be observed 2 x Bridge_Forward_Delay 1 0 seconds gt Bridge _Max_Age Bridge_Max_Age gt 2 x Bridge_Hello_Time 1 0 seconds bridge brg_name spaniree delay Admin bridge brg_name spantree delay value Set a bridge s spanning tree delay value value the time in seconds that bridge use for forward delay The possible valus range from 4 to 30 seconds The default value is 15 seconds Note The default value of 15 seconds is recommended in the STP RSTP If you change this value the following relationship must be observed 2 x Bridge_Forward_Delay 1 0 seconds gt Bridge_Max_Age 71 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands bridge brg_name spantree hello Admin bridge brg_name spantree hello value This command sets how often in seconds the root bridge sends out BPDU hello messages At any instant in STP RSTP one bridge is the root bridge The ro
20. add http 20 192 168 1 25 Command succeeded Aladmin gt interface WAN1 napt static add ftp 21 192 1665 1 25 Command succeeded Aladmin gt show interface WAN1 nat WAN1 napt enabled NAPT port forwarding entries Name Start Port End Port Server IP http 80 80 TO 2 TOGS ftp 21 21 19 2 16 89 0 25 Command succeeded 44 Chapter 14 Remote Bridge Setup Overview 14 Remote Bridge Setup Overview Figure 14 1 below illustrates the Router A card being used in bridge mode There are two AM3440 As with Router A cards in this application Their setup procedures are identical The IP addresses and gateway addresses used in the diagram correspond to the sample step by step configuration instructions in section 14 1 IP Network RZ AW IP address 140 132 1 1 Mask 255 255 0 0 Local Network 1 Pa ad ac PP Fz UU JE alela lzlelalalal zl Loop AM3440 A 1 Management IP 140 132 254 254 Mask 255 255 0 0 Local Network 2 Loop AM3440 A 2 Management IP Gateway Figure 14 1 Remote bridge mode Setup 45 Chapter 14 Remote Bridge Setup Overview 14 1 Step by Step Setup Instructions The first step is to create a bridge group for the Router A card Key in the command bridge create followed by the given name and a MAC ad
21. interface ifname napt static delete Admin interface ifname napt static delete name Deletes entries from thestatic port forwarding list name The entry name interface ifname nat address add Admin interface ifname nat address add index start_addr end_addr Adds a pool of public IP addresses for NAT index The pool index 1 8 start_addr The starting IP address end_addr The ending IP address interface ifname nat address delete Admin interface ifname nat address delete index Deletes a pool of public IP addresses for NAT index The pool index 1 8 interface ifname nat setup Admin interface ifname nat setup setting Enables disables Network Address Translation setting enable disable interface ifname nat static add Admin interface ifname nat static add public_addr private_addr Adds a static NAT map public_addr The public IP address private_addr The private IP address interface ifname nat static delete Admin interface ifname nat static delete public_addr Deletes entries from the NAT static list public_addr The public IP address to be deleted 84 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands interface ifname pvc1 dici Admin interface ifname pvc1 dici DLCI CIR Bc Be Qdepth Sets deletes a Frame Relay PVC DLCI The PVC s DLCI 0 16 991 The parameter specifies DLCI of the PVC in
22. lt Too or 15 Telnet slelealebleleleleelealelalelel 192 168 2 0 24 30 WWW Router A card for AM3440 A 30 FTP B 40 25 other Local network Router A card for AM3440 A Figure 12 1 QOS Application Two subnetworks A and B are accessed through the WAN1 interface of our ROUTER A card as depicted in the figure i e all traffics of these networks are passed through WAN1 interface Again each of A and B have different types of traffic say Telnet WWW FTP or so on Suppose Telnet of subnet A has high traffic rate and consume most of the bandwidth of WAN1 other will be blocked as WAN1 don t have enough bandwidth compared to LAN1 and eventually some traffic from LAN1 will be dropped To solve this problem Policy rate limit is installed on WAN to control bandwidth distribution Suppose subnet A will have 60 of the available WAN1 bandwidth guarnteed subnetwork B the rest 40 Within each subnetwork the guarantee flows for each type of service are as is indicated in the figure Assume WAN1 has 1Mbps bandwidth so telnet in subnet A will have 60 Kbps 10 of 60 of 1Mbps guaranteed bandwidth while FTP will have 120 Kbps Corresponding commands for these Telnet and FTP for subnet A are as follows 1 interface WAN1 policy qos rate_limit append 192 168 1 0 24 any TCP 23 any 60 60 kbps 2 interface WAN1 policy gos rate_limit append 192 168 1 0 24 any TCP 21 any 120 kbps For other 2 class of traffic in subnet A type fol
23. should be multiple of interval interface ifname encapsulation Admin interface ifname encapsulation protocol Sets layer2 encapsulation protocol protocol Layer 2 encapsulation hdlc ppp chdlc frame_relay interface ifname frame relay Admin interface ifname frame relay Imi_type n391 value n392 value n393 value t391 value Sets Frame Relay LMI parameters Imi_type Frame Relay LMI protocol ansi q933 n391 value LMI full status polling interval 1 255 n392 value LMI error threshold 1 10 n393 value LMI monitored event threshold 1 10 t391 value LMI link integrity polling interval 5 30 interface ifname ip Admin interface ifname ip address Sets an interface s IP address address The IP address XXX XXX XXX XXX XX interface ifname policy acl Admin Interface ifname policy acl direction list_name Sets access control for router interface Not valid for interfaces in bridge mode If a list is binding on the inbound direction all incoming packets to this interface will be checked with the entries in the list if a list is binding on the outbound direction all outgoing packets from this interface will be checked direction Set inbound or outbound list name list_name or off to disable access control 79 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters
24. Bridge br1 vlan add 7 tag WANS Aladmin gt bridge brl vlan create 3 Command succeeded Aladmin gt bridge brl vlan create 5 Command succeeded Aladmin gt bridge brl vlan create 7 Command succeeded Aladmin gt bridge brl vlan add 3 tag WAN1 Command succeeded Aladmin gt bridge brl vlan add 5 tag WAN2 Command succeeded Aladmin gt bridge brl vlan add 7 tag WAN3 Command succeeded 62 Chapter 16 VLAN 3 Ethernet Port Setup You must setup the Ethernet Port to allow it to process VLAN1 VID 3 VLAN2 VID 5 and VLAN3 VID 7 To set LAN1 Ethernet to be a tagged member for VID 3 VLAN1 key in the command Bridge br1 vlan add 3 tag lan1 Press Enter To set LAN1 Ethernet to be a tagged member for VID 5 VLAN2 key in the command Bridge br1 vlan add 5 tag lan1 Press Enter To set LAN1 Ethernet to be an untagged member for VID 7 VLAN3 key in the command Bridge br1 vlan add 7 untag lan1 Press Enter Finally to set LAN1 s PVID to be VID 7 key the command interface lan1 vlan pvid 7 Aladmin gt bridge brl vlan add 3 tag lanl Command succeeded Aladmin gt bridge brl vlan add 5 tag lanl Command succeeded Aladmin gt bridge brl vlan add 7 untag lanl Command succeeded Aladmin gt interface lanl vlan pvid 7 Command succeeded Ajadmin gt sys con save Command succeeded The setup of Application 2 Figure 16 2 is now complete 63 Chapter 17 Setting Up Firmware Configuration Up Download w
25. Save the configuration The Router A card stores all configuration changes in volatile RAM After the device reboots all the changes will be gone In order to save this configuration key in the admin comand system configuration save and then press the Enter key The startup configuration is stored in text mode Note The storage saving space is about 895K 5 1 2 Resetting the Configuraton To restore factory settings in the future use the command system configuration reset The command resets the configuration to the factory default setting and then reboots the card 5 2 WAN Interface Setup Router A card supports mutiple WAN interfaces Before configuring each WAN interface it needs to setup the timeslot map in advance Key in the command interface WANXX timeslot set to assgin timeslots to WAN interface WAN1 The following example assigns 32 timeslots to interface WAN1 from timeslot 1 to timeslot 32 and 32 timeslots 33 64 to interface WAN2 A admin gt interface WAN1 timeslot set 1 32 Command succeeded A admin gt interface WAN2 timeslot set 33 64 Command succeeded The following example shows how to configure the encapsulation PPP on interface WAN1 and WAN2 Aladmin gt interface WAN1 timeslot set 1 32 Command succeeded Aladmin gt interface WAN2 timeslot set 33 64 Command succeeded Aladmin gt interface WAN1 encapsulation ppp Command succeeded Ajadmin gt interface WAN2 encapsulation ppp Command succeeded
26. a range of port number or any if he she is not interested for a particular destination port number Both source destination port number is a decimal value 1 65535 40 Chapter 12 QoS Setup action_parameter action_parameter controls the outgoing traffic flow rate for IP packet matched the policy criteria specified by selector rate Committed access rate in minimum maximum format The minimum rate is guaranteed the minimum rate of the selected policy When the maximum_rate is mentioned in the action parameter the parameter is specified the maximum rate of the selected policy If maximum_rate is not mentioned it is used that maximum rate is same as minimum rate type Unit of rate in kbps or mbps specify the unit of bandwidth in bits per sec 12 2 2 Policy delete interface wan1 64 policy qos rate_limit delete policy_num Instruct the policy to be deleted Each policy is indexed by the policy number in the policy list user should mention the policy number which one to be removed 122 3 Policy display show interface wan1 64 policy qos This CLI is used to display all policies user ever entered for a particular interface shows all policy in the policy list sequentially according to the policy number 41 Chapter 12 QoS Setup 12 3 Step by Step Setup Instructions 10 Telnet 192 168 1 0 24 20 WWW 20 FTP A 60 i 50 other WANI LANI
27. brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded 57 Chapter 16 VLAN For WAN interface setup there are WAN1and WAN2 for setting Router A card supports mutiple WAN interfaces Before configuring each WAN interface it needs to setup the timeslot map in advance Key in the command interface WANXX timeslot set to assgin timeslots to interface WAN1 The following example assigns 32 timeslots to interface WAN1 from timeslot 1 to timeslot 32 C admin gt bridge create bal WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded C admin gt interface WAN1 timeslot set 1 32 Command succeeded Key in the command interface WANXX timeslot set to assgin timeslots to interface WAN2 The following example assigns 32 timeslots to interface WAN2 from timeslot 33 to timeslot 64 C admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded C admin gt interface WAN1 timeslot set 1 32 Command succeeded C admin gt interface WAN2 timeslot set 33 64 Command succeeded Key in the admin command bridge br1 add lan1 WAN1 WAN2 C admin gt bridge create baul WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command s
28. command dhcp server subnet loop1 ip_range A admin gt dhcp server subnet add loopl Command succeeded A admin gt dhcp server subnet loopl network 192 168 1 0 24 Command succeeded A admin gt dhcp server subnet loopl ip_range Loe LOB Lea LOS 169 L 20 Command succeeded The command dhep server subnet domain_name works set works for domain name Aladmin gt dhcp server subnet add loopl Command succeeded Aladmin gt dhcp server subnet loopl network 192 168 1 0 24 Command succeeded Aladmin gt dhcp server subnet loopl ip_range 192 1068 ol 8 TO2Z lt 168 10 20 Command succeeded Aladmin gt dhcp server subnet loopl domain_name works Command succeeded A DNS server 192 168 1 2 is set by command dhcp server subnet loop1 dns_server add Aladmin gt dhcp server subnet add loopl Command succeeded Aladmin gt dhcp server subnet loopl network 192 168 1 0 24 Command succeeded A admin gt dhcp server subnet loopl ip_range LOZ 1686 bb 192 16832120 Command succeeded Aladmin gt dhcp server subnet loopl domain_name works Command succeeded A admin gt dhcp server subnet loopl dns_server add 192 168 1 2 Command succeeded 26 Chapter 8 DHCP Setup To use command dhcp server interface add to add all LAN interfaces which offer DHCP service As following example only the LAN1 is enabled for the service Aladmin gt dhcp server subnet add loopl Command
29. cursor will appear Key in the command policy acl list 1 append followed by the packet source IP address plus its subnet mask prefix length the packet destination IP address ie your HTTP server plus its subnet mask prefix length and finally the number of the port where the packet will be received Press the Enter key In our sample screen below we keyed in any as the source address 192 168 1 11 32 as the destination HTTP IP address 32 as the destinatrion address subnet mask prefix length and 80 as the port number A admin gt policy acl create listl Command succeeded A admin gt policy acl listl append permit any 192 168 1 11 32 tcp 80 Command succeeded 36 Chapter 11 Traffic Filtering Setup 11 4 Step by Step Setup Instructions In section 11 2 an example is given to illustrates how to filter out unWANted traffic and permit certain traffic in this situation Peer Router IP 100 2 254 253 El Company ED PPP or HDLC Head Office AM A WAN 1 LAN1 IP Network IP Address IP Address IP 100 2 254 254 IP 192 168 1 1 IP 140 1 x a MASK 255 255 0 0 MASK 255 255 255 0 MASK 255 255 0 0 HTTP Server IP 192 168 11 IP Router IP 160 2 254 253 Gateway 255 255 0 0 FTP Server Remote User E Router A Card for IP 192 168 22 P 140 100 5 5 4 Company Bianchi AM3440 A CI LE Network Address _ 100 3 0 0 255 255 0 0 TELNET Server IP
30. edge port enable Command succeeded The setup procedure is now complete If you WANt to see what your setup looks like key in the command show bridge br1 spantree and press Enter A sample display is shown below A admin gt show bridge brl spantree Spanning Tree protocol is enabled protocol version rstp Bridge Information Bridge ID Hello Time Max Age Forward Delay Root Cost Root 32768 0015F4EC2FF3 4 sec 25 sec 20 sec 0 This 32768 0015F4EC2FF3 4 sec 25 sec 20 sec 0 Port Information State Priority Cost Edge port Link type Root Port lanl Forward 127 100 enabled p to p No WANL Forward 127 100 enabled p to p No Command succeeded 53 Chapter 16 Vlan 16 VLAN 16 1 Overview VLAN is used to subdivide a LAN into smaller entities known as VLAN1 VLAN2 VLAN3 VLAN 4094 A device in a particular VLAN can monitor traffic in that VLAN only and cannot monitor packets in any other VLANs This provides an important level of security and also assists the user to do certain kinds of QoS In Figure 16 1 below VLAN1 and VLAN2 both feed into the VLAN aware Ethernet Switch The switch assigns a Port VID to each port VLAN1 is assigned VID 3 and VLAN2 is assigned VID 5 Transmissions from VLAN1 VID 3 and VLAN2 VID 5 are put into tagged packets by the switch and then passed on to the Ethernet Port of the Router A card The Router A card reads the tag on the packets and uses this VLAN id to make packet
31. file on our desktop E el al Bal 3 Loopterm File name JLOOPTERM Save as type setup files ini y Cancel Chapter 3 Operation 3 2 System Operation Main menu is needed if the terminal connected to the controller If the main menu cannot display the user have to set the terminal parameter to default value as Table3 1 LOOP AM3440 A Controller Menu 14 16 50 11 05 2007 Serial Number 1014 Redundant Controller Enabled Hardware Version Ver F Start Time i 1T156 38 11 01 2007 Software Version V7 01 01 11 01 2007 Device Name LOOP AM3440 A DISPLAY SETUP C gt System Configuration B gt Clock source Configuration Q gt Alarm Queue Summary I gt Information Summary LOG MISC U gt Choose a Slot F gt Log Off SETUP MISC Menu O gt Log On SETUP MISC Menu gt gt SPACE bar to refresh or enter a command gt Press O to log on the following screen will show up LOOP AM3440 A Controller Menu 14 16 50 11 05 2007 Serial Number 1014 Redundant Controller Enabled Hardware Version Ver F Start Time 2 17F156 38 TLSULAZ007 Software Version V7 01 01 11 01 2007 Device Name LOOP AM3440 A DISPLAY SETUP C gt System Configuration S gt System Setup B gt Clock source Configuration M gt System Alarm Setup Q gt Alarm Queue Summary W gt Firmware Transfer gt Information Summary V gt Store Retrieve Configuration K gt Clock sourc
32. forwarding decisions In the diagram below the packets are to be sent via an E1 or DS1 interface to the Network A physical interface such as an E1 or DS1 interface can carry multiple logical channels Each of these channels can carry VLAN traffic eg VID 3 WAN1 The router A forwards packets of a VLAN to a proper logical chanel according to the tags on the packets VLAN aware Ethernet Switch y Frame Relay S WAN Link On Tagged Packets Tagged Packets z DUE ji Router A Card for AM3440 A A 2olzlolo z zl l lolzle Figure 16 1 VLAN Application 1 54 Chapter 16 Vlan Figure 16 2 below is much like Figure 16 1 except that it contains both tagged and untagged packets on the ethernet side The Router A assigns a default VLAN ID to untagged packets ie VLAN3 packets in the diagram The default VID is always the the Port VID of the Ehernet Port VLAN aware Ethernet Switch Ol Tagged Packets i j i LC_10 100 Ethernet Hup E VLAN3 Untagged untagged Router A Card for AM3440 A Packets Figure 16 2 VLAN Application 2 55 Chapter 16 VLAN 16 2 VLAN and Port Tables 16 2 1 VLAN Table The show bridge br1 vlan table command can be used to access the VLAN Table The VLAN table displays the tagged untagged member for each VLAN ID There can be as many as 4094 VLA
33. have a interface for management This interface should belong to one created VLAN It means only hosts in this VLAN could communicate with the interface By default this interface will belong to VLAN 1 vid bridge brg_name VLAN ID Range from 1 4094 bridge brg_name vlan regencrc Admin bridge brg_name regencrc setting Enable disable regenerating CRC on WAN interface for bridge brg_name frames setting enable disable Default disabled Note Enable this feature will reduce the performance for bridge forwarding bridge brg_name vlan setup Admin bridge brg_name vlan setup Enable disable VLAN Fearure After enabling the VLAN feature the default VLAN vid 1 will be created automatically and all ports will become untagged members of VLAN 1 If you disable the VLAN feature the bridge group will become VLAN unware Enable disable 13 Chapter 18 Appendix Operation Commands 18 4 DHCP Commands Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters dhcp relay interface add Admin Dhcp relay interface add interface Add interface s bridge mgmt s which
34. location on the company network Combining the last two entrise this access list accepts only the TELNET session from 140 100 5 5 to 192 168 1 11 and drops all other TELNET session currently which meets the ae security request A admin gt policy acl listi append deny any any tcp 23 Command succeeded Key in the command policy act list1 append followed by the permit action the selector specified the packet source IP address and binary code subnet mask with the branch office network to meet the gr security request The entries are scanned from top to bottom when packets passing through the Router A card The following command will allow any packets from a branch office to pass through to head office However TELNET sessions are prohibited because the command above is appended A admin gt policy acl listl append permit 100 3 0 0 16 any Command succeeded In the following example one more entry is appended to the access control list list1 That entry allows UDP packets with source address 140 1 0 0 16 destination address 192 168 1 22 32 and port number 69 i e the TFTP sessions from custmer site are allowed to access the company branch office A admin gt policy acl listl append permit 140 1 0 0 16 192 168 1 22 32 udp 69 Command succeeded The final command shown below can be omitted If a packet cannot match any rules the packet will be dropped A admin gt policy acl listl append deny any any any Command
35. succeeded Aladmin gt dhcp server subnet loopl network 192 168 1 0 24 Command succeeded Aladmin gt dhcp server subnet loopl ip_range Loe 168 4 3 192468 1 20 Command succeeded Aladmin gt dhcp server subnet loopl domain_name works Command succeeded Aladmin gt dhcp server subnet loopl dns_server add 192 168 1 2 Command succeeded Aladmin gt dhcp server interface add lanl Command succeeded The command dhcp server enables the DHCP service Aladmin gt dhcp server subnet add loopl Command succeeded Aladmin gt dhcp server subnet loopl network 192 168 1 0 24 Command succeeded Aladmin gt dhcp server subnet loopl ip_range LL 68 Ll 194 168 20 Command succeeded Aladmin gt dhcp server subnet loopl domain_name works Command succeeded Aladmin gt dhcp server subnet loopl dns_server add 192 168 1 2 Command succeeded Aladmin gt dhcp server interface add lanl Command succeeded Aladmin gt dhcp server setup enable started check status Command succeeded When the DHCP server is running the hosts on network connected to LAN1 can use the DHCP to obtain IP addresses 27 Chapter 8 DHCP Setup 8 3 DHCP Relay Overview Deploying DHCP in a single subnet network is straightforward DHCP messages are IP broadcast messages and all computers on the subnet can listen to and respond to these broadcasts A single DHCP server is all that is required It is complicated when th
36. the WAN link DLCI 0 will delete the PVC from the bearer channel CIR Committed Information Rate kbps This specifies how much bandwidth will be provided by the PVC It can not be greater than physical bandwidth of the WAN link Bc Committed Burst Size kbits The Router A computes graduation of bandwidth calculation by this parameter and CIR The calculation graduaton is CIR Bc seconds Be Excess Burst Size kbits Qdepth Max queue length When the PVC can offer enough bandwidth for user traffic it buffers the exceeded packets in internal queue This parameter specifies maximum number of packets can be put in the buffer When the queue length exceeds the limit all packets coming later will be dropped interface ifname queue Admin interface ifname queue method parameter Sets output queue management method method Management method tb sfq parameter Discipline paramters 85 Chapter 18 Appendix Operation Commands 18 7 Policy Command Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters policy acl create Admin policy acl create name Cre
37. to maximizing the ease with which Bridged LAN components interoperate Recommended default absolute maximum and ranges of parameters are specified in Tables 15 1 through 15 3 Table 15 1 Transit and transmission delays Parameter Recommended value Absolute maximum Maximum bridge transit delay 1 0 4 0 Maximum BPDU transmission delay 1 0 4 0 Maximum Message Age increment overestimate 1 0 4 0 All times are in seconds Table 15 2 Rapid Spanning Tree algorithm timer values Parameter Recommended or Fixed value Range default value Bridge Hello Time 2 0 1 0 10 0 Bridge Max Age 20 0 6 0 40 0 Bridge Forward Delay 15 0 4 0 30 0 Transmission Limit 3 All times are in seconds Table 15 3 Bridge and port priority parameter values Parameter Recommended or default value Range Bridge Priority 32768 0 61440 in steps of 4096 Port Priority 128 0 240 in steps of 16 51 Chapter 15 STP RSTP Setup 15 2 Step by Step Setup Instructions To enable STP RSTP service a bridge group must be setup properly in advance Key in the command bridge br1 spantree to enable spanning tree protocol A admin gt bridge brl spantree setup enable Command succeeded Note Key in the command show bridge br1 config and then press the Enter key If there is no interface in bridge mode please follow the step decribed in section 4 2 to switch the req
38. vlan add Admin bridge brg_name vlan add vid tag untag interface Add one port to be a tagged or untagged member of one created VLAN in a bridge group vid bridge brg_name VLAN ID Range from 1 4094 tag untag Tagged port or untagged port interface Interface Name lan1 2 WAN1 WAN64 WANX pvc1 16 bridge brg_name vlan create Admin bridge brg_name vlan create vid Except VLAN 1 default VLAN each VLAN needs to be created before use This command will create a VLAN in a bridge group vid bridge brg_name VLAN ID Range from 1 4094 bridge brg_name vlan delete Admin bridge brg_name vlan delete vid tag untag interface Delete a tagged or an untagged port from a created VLAN in a bridge group vid bridge brg_name VLAN ID Range from 1 4094 tag untag Tagged port or untagged port interface Interface Name lan1 2 WAN1 WAN64 WANX pvc1 16 12 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands bridge brg_name vlan destroy Admin bridge brg_name vlan destroy vid If a created VLAN will not be used use this command to destroy it Default VLAN vid 1 cannot be destroyed vid VLAN ID Range from 1 4094 bridge brg_name vlan mgmt Admin bridge brg_name vlan mgmt vid For each bridge group it will
39. 0 Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands Admin bridge brg_name management enable diable Enable disable bridge management feature enable diable enable disable bridge brg_name policy mac Admin bridge brg_name policy mac direction list_name With this command while packets coming in or out of the virtual management interface will be checked and dropped if the mac address es matches those in the list If a list is binding on inbound direction the source mac address of incoming packets will be checked if a list is binding on outbound direction the destination mac address of outgoing packets will be checked direction Set inbound or outbound list_name list name or off to disable access control bridge brg_name spantree age Admin bridge brg_name spantree age value Sets the maximum age of received protocol information before it is discarded That is when this router is the root bridge if a non root bridge has not received a hello message within the time period set by maximum age the non root bridge assumes that a network failure has occurred and the bridges can begin reconfiguring the network value the maximum age in seconds of received protocol information before it is discarded
40. 192 168 33 Figure 11 2 Traffic Filtering Example Network Before configuring the access control lists you need to setup relevent interfaces in router mode Please refer to section 4 2 for setting up LAN WAN interfaces In Figure 11 1 three servers are located in the local network Their IP addresses are as follows HTTP Server 192 168 11 FTP Server 192 168 22 TELNET Server 192 168 33 Note This is a sample setup only Your setup will have IP addresses relevant to your own situation Our goal in this example is to protect your local network behind the LAN1 interface but still privide some traffic to access certain servers in the local network More specifically the following statements are given to illustrates our security requirement 1 The HTTP server is accessible by all PCs also known as hosts in the network no matter from internet or local network 2 TELNET Server access IP 192 168 100 33 is available only to the designated Remote User IP 140 100 5 5 No other devices including those at thecompany head office Network 192 168 1 0 or branch office Network 100 3 0 0 can reach that server 3 IP 100 3 0 0 is the network for company branch office so all traffic from that site is permitted to access PCs in company head office Network 192 168 1 0 except the TELNET server which is only available to designated Remote User IP 140 100 5 5 as desbribed above 4 Because TFTP Server Access is provided o
41. 3 Chapter 13 Port Forwarding Virtual Service 13 2 Step by Step Setup Instructions To enable port forwrding service NAPT must be enabled in the WAN or PVC interface in advance The user have to establish where http packets forwarded Key in the command interface WAN1 napt static add http followed by the port number and the http server ip address Then press the Enter key In the sample screen below the packets are forwarded to port 80 then key in the IP address 192 168 1 25 for http server A admin gt interface WAN1 napt setup enable Command succeeded A Jadmin gt interface WAN1 napt static add http 80 192 168 1 25 Command succeeded The user have to establish where ftp packets forwarded Key in the command interface WAN1 napt static add ftp followed by the port number and the ftp server ip address Then press the Enter key In the sample screen below the packets are forwarded to port 21 then key in the IP address 192 168 1 25 of our ftp server A admin gt interface WAN1 napt setup enable Command succeeded A admin gt interface WAN1 napt static add http 20 192 168 1225 Command succeeded A Jadmin gt interface WAN1 napt static add fep Zi TOD e841 25 Command succeeded To view the results of setup key in the command show interface WAN1 nat The setup configuration will be displayed as the screen below Aladmin gt interface WAN1 napt setup enable Command succeeded Aladmin gt interface WAN1 napt static
42. AN1 timeslot set 1 32 Command succeeded 3 4 Configuration All commands take effect imediately except for the following feature system activate routing The feature take effect after the unit is powered down and then powered up again 3 5 LED Operation The front panel of the Router A has two LEDs for each LAN port They are for Ethernet Link Active and Ethernet speed LED Indications are listed in Table 3 2 below Table 3 2 Front Panel LED Indication LEDO Coor Indication Off No Ethernet connection or Link fail A LINK ACT Green Link lt n Green Active 10Mbps 13 Chapter 4 PPP MLPPP 4 PPP MLPPP 4 1 Overview Multilink PPP can connect multiple links between two systems as needed to provide extra bandwidth Remotely accessing resources through PPP Multilink allows for the increase in overall throughput by combining the bandwidth of two or more physical communication links Example To bundle the two WAN interfaces WAN1 WAN2 in a virtual interface m1 and make the virtual interface become bridge mode When the data packets transmit from LAN to bundle interface MLPPP will split and recombine the packets and transmit to WAN1 WAN2 MLPPP Bundle Ethernet Ethernet Packets distributed over bundle WAN Links Figure 4 1 MLPPP Application 14 Chapter 4 PPP MLPPP 4 2 Step by Step Setup Instructions Router A card supports multiple WAN interfaces Before configuring each WAN int
43. EMOTE BRIDGE SETUP OVERVIEW serere inna a A a A A a iS 45 14 1 STEP BY STEP SETUP INSTRUCTIONS modia ee A A ae 46 15 STP IRSTP SETUP oi A are eee nei vena eee aes 48 15 gt OVERVIEW ei esceth atitene acide teats AAA N 48 15 2 STEP BY STEP SETUP INSTRUCTIONS cccceccccecsneeeeecneeeeeeaeeeeecsaeeeeeecaeeeeecaeeeeecaeeeeesseeeesssieeeeesaes 52 IG ULA Ni a e e e Joes 54 16 41 COVER VEN vie dd e a a ee Peace a Ea a ena tee Aaa 54 16 2 gt VEAN AND PORT TABLES Dai a ed 56 16 2 1 VLAN TADE ai O 56 16 2 2 Van AAA NT 57 16 3 lt VEAN SETUP INSTRUCTIONS sue 57 16 3 1 Application 1 Fig 16 1 Step by Step Setup Instructions oooocccnnnoccccnnnooocncconornncnnnnnnnnos 57 16 3 2 Application 2 Fig 16 2 Step by Step Setup Instructions ooooccccnnoccccnonooonconononnncnnnnnnnnos 60 17 SETTING UP FIRMWARE CONFIGURATION UP DOWNLOAD WITH TFTP SERVER ose 64 ALA OVERVIEW dd dai AREE EE E 64 17 2 UPLOAD DOWNLOAD WITH THE TFTP SERVER ON THE LAN SIDE ooocccoconccccononcncnononnccnononnncncnanoncncnnns 64 17 2 1 Step by Step Setup INSTrUCHONS isre nierien aa dai cnn rca 65 AA A NN 65 1721 27 Elmware Download sssini teed letrinas haweceresacetcanhebaetenad e a a EERE 66 I2 taa Configuration Upload ritos a ia 67 17 2 1 4 Configuration Download cedere a e EEA rara 68 17 3 UPLOAD DOWNLOAD WITH THE TFTP SERVER ON AN OUTSIDE NETWORK ocooooccccononccccononccccononcnccnonns 68 18 APPENDIX OPERATION COMMANDS ocococococcnocononon
44. N IDs The VID1 appears in the table is automatically generated The others must be created Table 16 1 VLAN Table A admin gt sh bridge brl vlan table VID 1 Tag Member Untag Member BrgMng_0 lanl WAN1 WAN2 WAN3 VID 3 Tag Member lanl WAN1 Untag Member VID 5 Tag Member lanl WAN2 Untag Member VID 7 Tag Member WAN3 Untag Member lanl Command succeeded 56 Chapter 16 VLAN 16 2 2 Vlan Port Table The show bridge br1 vlan port command can be used to display a port s parameters in the VLAN environment Table 16 2 VLAN Port A admin gt sh bridge brl vian port Port PVID Frame type Ingress filter lanl 7 all disabled WANL ls all disabled WAN2 1 all disabled WAN3 1 all disabled Command succeeded 16 3 VLAN Setup Instructions 16 3 1 Application 1 Fig 16 1 Step by Step Setup Instructions Connect a cable between the COM port of your PC and the Console port of the AM3440 A Then follow the instructions below 1 bridge mode and Timeslot Setting The first step is to create a bridge group for the Router A card Key in the command bridge create followed by the given name and a MAC address Then press the Enter key The second parameter MAC adress is an optional parameter If MAC address is not given the Router A card will generate the MAC address randomly It may conflict with the MAC address of other devices C admin gt bridge create
45. O TS D SL PO TS Slot A Port DAL 1d 6 0 riv a 6 16 0 d A 1 1 16d A 1 17 Te De 2 01 2d 6 L 1 de 1 87 dl 6 17 1 d A 1 2 17d A 1 18 1 3 d 6 I 2 19 d 6 1 18 1 2d Ae oh 3 118d A 119 1 4 d 6 L 3 20 d 6 1 159 3 04 GAS 1 4 119d A 1 20 IP O Sd 6 4 2 sd 6 20 4 d A 1 5 20d A 1 21 Clear No 6 d 6 5 de 22d 6 2a 5 d A 1 6 21d A 1 22 d v d 7 dad 6 L 6 Logra 6 22 6 d A 1 7 22A Be 1 23 1 8d 6 i 7 24 da 6 123 T RO A T 8 123 de A 1 24 1 9d 6 1 8 25d 6 1 24 1 8d A 1 9 124d A 1 25 Source 10 d 6 9 1 26 d 6 25 9d A 1 10 25 d A 1 26 Slot e 6 11 ad 6 10 1 27 a 6 26 10 d A 1 11 26 ad A 1 27 Port BL 12d 6 11 T 218 d 6 27 11 d A 1 12 2 fad Bo TY 22 8 Te Ss Let a 6 LF I2 129 d 6 28 E L2 lt A 1 13 28d A 1 29 1 14 d 6 de ES 1 30 d 6 1 29 113d A 1 14 129d A 1 30 Confirm Yes home 6 L 14 ay oh Sill ed 6 30 L 14 d A 1 15 30d A i ork 116d 6 ee 15 1 32d 6 iy 31 diodo A Ml db To 34d CA A 32 lt lt Press ESC to return to Controller Setup menu then Press D to active gt gt Note Router A Card and QEI do the MAP setting in Port 1 12 Chapter 3 Operation LOOP AM3440 A System Setup MAP 14 30 52 03 02 2006 ARROW KEYS CURSOR MOVE TAB ROLL OPTIONS MAP NO MAP_1 Target RTR A Source Quad El UNFRAME Target PO TS D SL PO TS PO TS D SL PO TS POTS D SL PO TS PO TS D SL PO TS Slot A
46. Port wp 2 Lod 6 2 0 217 ad 6 2 16 2 0d A 2 1 216 da A 217 TELS OL 2 2d 6 2 1 2 18d 6 2 r7 2 1d A 2 2 Ze LOA A 82 8 2 Eo A 22 2 219d 6 2 18 2 2d As 2 Be 2 AB di mw Aes 2 F109 2 4d 6 2 3 220 ad 6 2 19 2 3d A 2 4 2 19 0 Ac 2 20 eae e 2 aid GG 2 4 2 2d y 6 2 20 2 4d A 2 5 2 2 06 da Be OB D7 Clear No 2 6d 6 2 5 222 a 6 2 2 2 5d A 2 6 2 23d GAS 2 32 2 d v d 2 Tad UG 2 6 2280 6 2 22 2 6d A 2 7 DDD uBR lt 2 23 2 8d 6 2 7 224 a 6 2 23 2 7a A 2 8 223 ad A 2 24 2 9d 26 2 8 2 25a 6 2 24 2 8 d A 2 9 429 24 cd A 2 25 Source Z 10d 6 2 9 226 a 6 2 ZO 2 9d A 2 10 225 a A 2 26 Slot 6 2 11 d 6 2 10 227 da 6 iZ 26 210d A 2 11 226d A 2 27 Port Sy BZ 2 42 00 6 2 11 228 dad 6 2 T 281 2 LE A A 2 12 2 2ed Ay 2 28 TS 213d 6 2 12 229d 6 2 28 Zr ih2eade AB 2s LS 228 d A 2 29 Zo dada 65 213 2 30 dad 6 229 213d A 2 14 2 2d Re 92 73 0 Confirm Yes 2 i5 d 6 2 14 2 3 Le dl 6 2 30 2 14 d A PAIS 230d A 2 31 2 Tod 6 29 LS 2 32 a 6 2 31 215da A 2 16 2 31 a A 2 32 lt lt Press ESC to return to Controller Setup menu then Press D to active gt gt Note Router A Card and QEI do the MAP setting in Port 2 After the user setup the AM3440 A main board please go to the Port Menu to select Router A Card in order for the user to do card setting For details please refer to section 3 2 A blank screen with a flashing cursor will appear Key in the command interface WAN1 timeslot set 1 32 A admin gt interface W
47. SET 0cccceeeceeeeeeeeeeecaeeecaaeeeeneecaaaeeecaaeeeeeeesaeeeccaeeeceeeseaeeescaeessneeeeeas 16 Stet Save INS CONTMQUPATION a Sst esta oes oe ase Peace Bs cars Ste Teac ie voted 16 5 132 Resetting the CONNQUIAION zei sereen dk A ae et a eed 16 5 2 WAN INTERFACE SETUP dl 16 5 2 1 ANTeTACESANDHAGES IN OOS srren aia A os eee 17 52 27 IMter aces IN router MONO ista tii elas ons cdeletaadadusets E EE A TN aaa dad 17 5 3 LAN INTERFACE SETUP suscitada di tai 19 5 3 1 Interfaces in DridG mode naaa its 19 5 3 2 Interfaces in router MOE iii id ti 19 6 RRAME RELAY SETUP anniv acai nee it 20 6 1 OVERVIEW stented Man date et ed eda ed eed ae 20 6 2 STEP BY STEP SETUP INSTRUCTIONS oloisia ainiaan raei e iai e a ii 21 7 IP ROUTING SETUP aici os 23 7 1 OVERVIE Vida TI ARAE REE A LEE areal E LEA E ORE ES 23 7 2 STEP BY STEP SETUP INSTRUCTIONS o Sardiat iaia ana ia ea EAE i eae lbs 24 8 DHCPSETUP irtica aaea aaa a aaa a aaa a a aa eaa a nie 25 8 1 DACP SERVER OVERVIE Wi aa eee 25 8 2 DACP SERVER SETUP ninii A A As 26 8 3 DHCP RELAY OVERVIEW A A a Es 28 8 4 DACP RELAY SETUP O is 29 Oe OSBF SETUR Ea o tle tera e E cae he tibet learn eo os Sita ached 30 9 1 OVERVIEW att ltda rai onda 30 9 2 STEP B STEP SETUP INSTRUCTIONS setos tar la da 31 10 NETWORK ADDRESS TRANSLATION SERVICE ooocociocccincoccconcccconncnnnnnnnnnncnnnnnn nn nn nan ncnn rra rnnnnn rca 32 10 1 OVERVIEWS acute ta ele dde 32 10 2 STEP BY STEP SETUP INSTR
48. UCTIONS coccion airada Ea EA AAE dai dais 33 11 TRAFFIC FILTERING SETUP uote 34 EU A A E Na 34 11 2 ACLENTRY AND SELECTOR FORMAT ccccccccsscccceesneeececcneeeeecaeeeeecaeeeeeecaaeeeeecaeeeeecsaeeeeecseeeessneeeesenaas 35 4453 ADDING ACL ENTRIES ct dodo nd cfu cndevas E AE E Aa A A EOE AEEA 36 11 4 STEP BY STEP SETUP INSTRUCTIONS ccccsecccecsneeeeecsneeeeecaeeeeecaeeeeeecaaeeeeeceaeeeeecseeesssneesesesieeseseaes 37 TA lt QOS SETUP tot add A Seana dn Dea illa tevin da 40 tat AOVERVIEW eiissiccieh ice coke a chehice a a a e AREA 40 t22 POLICY SYNTAX aeaea ld iio asada 40 12 2 1 Poley aad aome oe a AE a a E A 40 interface wan1 64 policy qos rate_limit append insert policy_num selector action_parameter 40 12 2 2 Poley delal iio ii e baaa hese livia ced breed Aia ae nite 41 interface wan1 64 policy gos rate_limit delete policy_num ooooociicccnnicononicnncccnocccononcnnnrancnarn coronan 41 12 2 3 SANA A ulvdtusciaesdus dtadedsaua Sodus A E coders nceeveassadedes sn cedeaysia cds abte 41 Show interface WAN1 64 POLICY QOS sccccceceecessseesecececsueeessaesseneecseneecsaeseeaaesseneecseatetsaaeseeaeecsuntetsssesaees 41 12 3 STEP BY STEP SETUP INSTRUCTIONS tii Ad ad 42 13 PORT FORWARDING VIRTUAL SERVICE a aa aaa a oe E E A a o atA 43 13 4 OVERVIEW A ee eee lee ees 43 13 2 STEP BY STEP SETUP INSTRUCTIONS ccccccseccseccesececeesscceccestdeceesscesececsscaceccesnsecessstaeecevsnneeeessstvedsvsnties 44 14 R
49. a Visio Standard Y Paint S SNMPc Network Manager gt GJ Windows Explorer ni Coli REG RK ExT ova start 11051 A gt EY Microsoft Word Docume calculator EDAD RA 10 47am The calculator will appear Click on the Dec Decimal heading A dot will mark the circle beside the Dec heading as shown below You can ignore the right hand side headings Degrees Radians and Grads alla Edit View Help eT C Hex Dec C Oct Bin o Radians Grads 97 Chapter 19 Appendix Converting a Subnet Mask to Binary Code The sample subnet mask that we will convert from base ten notation to base two notation is 255 255 0 0 Key in the value 255 laa Edit View Help 255 C Hex Dec Oct Bin Degrees Radians Grads M Inv I Hyp E Backspace CE c sel rel cl al wel 71 el ot 7 1 mol anal Click the Bin Binary heading The base two equivalent of 255 will appear as 11111111 lala Edit View Help 11111111 Hex Dec C Oct Bin Qword Dword C Wod C Byte I Inv M Hyp i iia Backspace CE E I 1 I I Now let s look at our base ten subnet mask 255 255 0 0 We know that 255 converts to 11111111 in base two We also know that 0 is 0 regardless of what base it is expressed in base ten 255 255 base two 11111111 11111111 If you look at the base two line in the above drawing you
50. abled it will check whether the incoming packet belongs to the VLAN which the interface belongs to If not it discards the packet setting enabled disabled interface ifname vian pvid 82 Chapter 18 Appendix Operation Commands Privilege Admin Syntax interface ifname vlan pvid vid Explanation Sets an Interface s PVID This PVID will be used in port based VLAN Parameters vid VLAN ID range from 1 to 4094 83 Chapter 18 Appendix Operation Commands 18 6 NAT Commands Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters interface ifname napt setup Admin interface ifname napt setup setting Enables disables the Network Address Port Translation setting enable disable interface ifname napt static add Admin interface ifname napt static add name lo_port hi_port private_addr Adds an entry into the static port forwarding list name The entry name lo_port The starting port number hi_port The ending port number private_addr The IP address of the server offering the services XXX XXX XXX XXX
51. admin gt interface WANI pvc add pvcl Li Sle BLA 6 120 Command succeeded Aladmin gt interface WAN pvcl ip 100 2 254 254 16 Command succeeded 21 Chapter 6 Frame Relay Setup A PVC can also run a dynamic routing protocol In following example RIP II is enabled Aladmin gt interface WAN1 Command succeeded Aladmin gt interface WAN1 frame_relay Command succeeded Aladmin gt interface WAN1 pvc add pvcl Command succeeded Aladmin gt interface WAN1 pvcl ip Command succeeded Aladmin gt interface WAN1 pvcl route rip Command succeeded Aladmin gt interface WAN1 pvcl route rip Command succeeded 93 3 encapsulation frame_relay n391 10 n392 4 n393 5 t391 20 LT 52 2 S12 64 120 10 0 24254 254 16 setup enable version 2 This setup procedure is now complete 22 Chapter 7 IP Routing Setup 7 IP Routing Setup 7 1 Overview Figure 7 1 below illustrates the Router A card being used in router mode The IP address and gateway address used in the diagram correspond to the sample step by step configuration instructions in Section 7 2 Peer Router IP 100 2 254 253 El PPP or HDLC IP Network WAN 1 LAN 1 IP 100 2 254 254 IP 192 168 1 1 L IN k MASK 255 255 0 0 MASK 255 255 255 0 ocal Networ with IP Address IP 160 2 254 253 Gateway 255 255 0 0 ES Router A card for AM3440 A IP Route
52. ates an access control list with a given name This list is combined with several rules and those rules will be checked accordingly A maximum of 64 lists can be created name list_name lt 6 bytes policy acl destroy Admin policy acl destroy name Destroys the specified access control list Those rules in the list will disappear name list_name in configuration policy acl list append Admin policy acl list1 append action selector Appends an entry on the specified list If a packet matches the selector described in the rule action will be taken A maximum of 32 entries can be added to a list action permit deny selector src_ip prefix dst_ip prefix protocol service policy acl list1 delete Admin policy acl list1 delete start_index end_index Deletes entry s by indicating the index number The rule in the back will follow the procedure to move forward step by step start_index The starting index number 0 to delete all rules in the list end_index The end index number policy mac create Admin policy mac create name Creates an access control list for mac address This list is used only for interfaces in bridge mode Maximum 6 lists can be created name list_name lt 6 bytes policy mac destroy Admin policy mac destroy name Destroys an access control list for mac address name list_name in configuration policy mac mac_list append Admin policy mac mac_list append selector Adds a MAC ad
53. ation 2 3 Ethernet Connection RJ45 10 100M Ethernet connection pin assignents are listed in Table 2 1 below Table 2 1 RJ45 10 100M Ethernet Connector Pin Assignment Transmit Data Transmit Data 6 Receive Data l_8_ NoConnection Note The Ethernet interface supports Auto MDI MDI X and will work with either a parallel or a crossover cable Chapter 3 Operation 3 OPERATION This chapter describes the Router A card configuration options and operational functions Refer to subsequent chapters for detailed instructions regarding specific applications 3 1 Using A Terminal To use the RS232 interface to configure the unit use a straight cable to connect a VT100 terminal to the DB9 jack Console Port on the front panel of the AM3440 A controller The VT100 terminal can be a PC running VT100 emulator software The unit is configured as a DCE 3 1 1 VT 100 Monitor Connection In order to properly set up the set up the Router A plug in card you will need a VT 100 Monitor A VT 100 Monitor is a PC running emulator software Use a DB9 cable to connect the front Console Port of the AM3440 A to either Com Port 1or Com Port 2 of the PC you are using as a VT 100 monitor It doesn t matter which Com Port you connect to Note Many newer PCs come with USB Ports If user s PC has a USB port rather than COM ports you will need to purchase a available PC USB to DB9 conversion cable commercially These cables come with software which
54. bridge br1 add lan1 WAN1 WAN2 WANS A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded Aladmin gt interface WAN1 timeslot add 1 16 Command succeeded Aladmin gt interface WAN2 timeslot add 17 32 Command succeeded Aladmin gt interface WAN3 timeslot add 33 48 Command succeeded Aladmin gt bridge brl add lanl WAN1 WAN2 WAN3 Command succeeded 61 Chapter 16 VLAN 2 VLAN Setup You must set the VLAN mode Key in the command bridge br1 vlan followed by the parameter you require In our sample screen we chose to use enable as our parameter A admin gt bridge brl vlan setup enable Command succeeded You must create a VID for each port To create VID 3 key in the command bridge br1 vlan create 3 and press Enter To create VID 5 key in the command set vlan create 5 To create VID 7 key in the command bridge br1 vian create 7 Aladmin gt bridge brl vlan setup enable Command succeeded Aladmin gt bridge brl vlan create 3 Command succeeded Aladmin gt bridge brl vlan create 5 Command succeeded Aladmin gt bridge brl vlan create 7 Command succeeded For tagged member of VID 3 VLAN1 key in the command Bridge br1 vlan add 3 tag WANT Press Enter For tagged member of VID 5 VLAN2 key in the command Bridge br1 vlan add 5 tag WAN2 For tagged member of VID 7 VLAN2 key in the command
55. dress dhcp server subnet subnet_name lease Admin Dhcp server subnet subnet_name lease time Set DHCP subnet default duration of lease Sets the default duration of a lease for an IP address that is assigned from a DHCP Server to a client time default lease time in secs to remove setting dhcp server subnet subnet_name nbns add Admin Dhcp server subnet subnet_name nbns add address Specifies the IP address of the NetBIOS WINS name server This is used to configure NetBIOS Windows Internet Naming Service WINS name servers for Microsoft DHCP clients address IP address max 4 address dhcp server subnet subnet_name nbns delete Admin Dhcp server subnet subnet_name nbns delete address Deletes the NetBIOS WINS name server already configured address _ ip address or all to delete all setting 11 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands dhcp server subnet subnet_name netb_type Admin Dhcp server subnet subnet_name netb_type type Specifies the NetBlOS node type for Microsoft DHCP clients Valid types are e B node Broadcast e P node Peer to peer e M node Mi
56. dress Then press the Enter key The second parameter MAC adress is an optional parameter If MAC address is not given the Router A card will generate the MAC address randomly It may conflict with the MAC address of other devices A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded The following command can be setted up once every time for Router A card Set the bridge fcs Key in the command bridge br1 fcs followed by the parameter you require Disabled have been selected as parameter in the following screen A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded A admin gt bridge brl TeS disable Command succeeded Set the bridge MAC age Key in the command bridge br1 age followed by the bridge age value Then press the Enter key The value range is from 10 to 1000000 300 seconds had been setup as the IEEE 802 1d default aging time in five minutes A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might onflict with other device Command succeeded A admin gt bridge br1 fes disable Command succeeded A admin gt bridge br1 age 300 Command succeeded A admin gt br DEL management enable Command succeeded 46 Chapter 14 Remot
57. dress to be blocked to a specified list Maximum 32 entries can be added for a list selector XX XX XX XX XX XX 86 Chapter 18 Appendix Operation Commands Command policy mac mac_list delete Privilege Admin Syntax policy mac mac_list delete selector Explanation Deletes a MAC address from a specified list Parameters selector XX XX XX XX XX XX 87 Chapter 18 Appendix Operation Commands 18 8 Route Commands Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters route static add Admin route static add network gateway interface Adds a static route network Destination network nnn nnn nnn nnn prefix gateway Routing gateway interface Output interface lan1 lan2 WAN1 WAN64 WANX pvc1 16 brg_group route static delete Admin route static delete network Deletes a static route network Destination network nnn nnn nnn nnn prefix route ospf area add Admin route ospf area add area_id Add an OSPF area area_id route ospf area authentication Admin route ospf area authenticatio
58. e Bridge Setup Overview To setup management on bridge mode the user have to enable bridge management feature as above sample and key in the admin command of bridge br1 ip followed by the IP address A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might onflict with other device Command succeeded Aladmin gt bridge brl fcs disable Command succeeded Aladmin gt bridge brl age 300 Command succeeded Aladmin gt br brl management enable Command succeeded Aladmin gt bridge brl ip 140 132 254 254 16 Command succeeded To setup interfaces to bridge mode please refer to section 4 2 and section 4 3 for detail descriptions 47 Chapter 15 STP RSTP Setup 15 STP RSTP Setup 15 1 Overview The Spanning Tree Algorithm can be used to detect and disable network loops and to provide backup links between bridges This allows the device to interact with other STP RSTP compliant switches or bridges in a network to ensure that only one route exists between any two stations on the network and to provide backup links which automatically take over when a primary link goes down In Figure 15 1 below the forwarding port in Router A 4 is blocked so that there can only be one path between PC 1 and PC 2 Router A Card 1 ROOT Router A Card 2 Router A Card 3 Traffic Pa
59. e Setup T gt Bit Error Rate Test LOG MISC U gt Choose a Slot A gt Alarm Cut Off F gt Log Off SETUP MISC Menu X gt Clear Alarm Queue O gt Log On SETUP MISC Menu Y gt Controller Return to Default Z gt Controller Reset gt gt SPACE bar to refresh or enter a command gt Chapter 3 Operation Under the Controller Menu press U to select a slot for the Router A port Then the port menu will show as below In the example the Router A Card is installed in slot A LOOP AM3440 A Controller Menu 14 16 50 11 05 2007 Serial Number 1014 Redundant Controller Enabled Hardware Version Ver F Start Time E 17156 38 11 01 2007 Software Version V7 01 01 11 01 2007 Device Name LOOP AM3440 A DISPLAY SETUP C gt System Configuration S gt System Setup B gt Clock source Configuration M gt System Alarm Setup Q gt Alarm Queue Summary W gt Firmware Transfer gt Information Summary V gt Store Retrieve Configuration K gt Clock source Setup T gt Bit Error Rate Test LOG MISC U gt Choose a Slot A gt Alarm Cut Off F gt Log Off SETUP MISC Menu X gt Clear Alarm Queue O gt Log On SETUP MISC Menu Y gt Controller Return to Default Z gt Controller Reset gt gt Input the unit number A D or 1 12 A Then the port menu will show as below SLOT A Router A Port Menu 14 07 03 03 02 2006 Ver
60. e route ospf transmit Admin interface ifname route ospf transmit value Set the estimated number of seconds it takes to transmit a link state update packet on an OSPF interface The LSAs age should be incremented by this value when transmitting The default value is 1 second value the number of seconds to wait before sending another packet Valid values are 1 to 65535 interface ifname route rip setup Admin interface ifname route rip setup setting Enables disables the RIP routing protocol setting Enable disable 81 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Chapter 18 Appendix Operation Commands interface ifname route rip version Admin interface ifname route rip version setting Configure RIP routing protocol version setting Version number 1 2 interface ifname spantree cost Admin interface ifname spantree cost value Sets port cost for spanning tree value cost value Assign lower number to faster media 1 65535 interface ifname spantree edge_port Admin interface ifname spantree edge_port setting Enable disable edge p
61. ending another packet Valid values are 1 to 65535 Interface ifname route ospf hello Admin interface ifname route ospf hello value Set the number of seconds between hello packets sent on an OSPF interface This value must be the same for all routers attached to a common network The default value is 10 seconds value the number of seconds to wait before sending another packet Valid values are 1 to 65535 Interface ifname route ospf prior Admin interface ifname route ospf prior value Set priority to help determine the OSPF designated router for a network By setting a higher value the router will be more eligible to become the Designated Router By setting the value to 0 the router will no longer be eligible to be the Designated Router The default value is 1 value Valid values are 0 to 255 Interface ifname route ospf retransmit Admin interface ifname route ospf retransmit value Specify the number of seconds between link state advertisement retransmissions for adjacent OSPF routers linked to this interface This value is used when re transmitting Database Description and Link State Request packets The default value is 5 seconds value the number of seconds to wait before sending another packet Valid values are 1 to 65535 Interface ifname route ospf setup Admin interface ifname route ospf setup setup area_id Enable Disable OSPF for a specified interface setup enable disable area_id 0 4294967295 Interface ifnam
62. er and relay cannot be enabled simultaneously Once the server is enabled any configuration change for the server will not take effect until the user disables and enables it again Setting enable disable dhcp server subnet add Admin Dhcp server subnet add name Add the DHCP subnetto the server so that when a request is received from a DHCP client the server can assign an IP address and other necessary parameters to the client Note that user must add a subnet for each configured interface on which he she WANts to run DHCP server Name unique name of subnet lt 16 bytes dhcp server subnet delete Admin Dhcp server subnet delete name Deletes the DHCP subnet so that all configurations for the subnet will be lost Name subnet name in configuration dhcp server subnet subnet_name bootfile Admin Dhcp server subnet subnet_name bootfile filename Specifies the name of the file that is used as a boot image which is to be loaded by a client from next server filename bootstrap file name lt 64 bytes or NULL to remove setting dhcp server subnet subnet_name bootp Admin Dhcp server subnet subnet_name bootp support Enables disables the BOOTP support for the subnet If enabled any request from a BOOTP client will be accepted by the DHCP server otherwise it will be silently discarded support enable disable 76 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters
63. ere is more than one subnet on your network This is because the DHCP broadcast messages do not by default cross the router interfaces The DHCP relay agent allows you to place DHCP clients and DHCP servers on different subnets of your network or even to put them on different networks Router A card for AM3440 A ra LAN Host DHCP Client P Eevee UU DHCP Server DHCP Relay Server 10 3 2 10 Host DHCP Client Figure 8 2 DHCP Relay Setup 28 Chapter 8 DHCP Setup 8 4 DHCP Relay Setup Following example illustrate how to enable a DHCP relay service in the Router A card A admin gt dhcp relay interface add lanl Command succeeded A admin gt dhcp relay server DO Sirs 0 Command succeeded A admin gt dhcp relay setup enable started check status Command succeeded 29 Chapter 9 OSPF Setup 9 OSPF Setup 9 1 Overview Figure 9 1 below illustrates the Router A card being used in router mode The IP address and gateway address used in the diagram correspond to the sample step by step configuration instructions in Section 9 2 Peer Router IP 100 2 254 253 El PPP or HDLC IP Network WAN 1 LAN 1 IP 100 2 254 254 IP 192 168 1 1 L IN k MASK 255 255 0 0 MASK 255 255 255 0 ocal Networ with IP Address IP 160 2 254 253 Gateway 255 255 0 0
64. erface it needs to setup the timeslot map in advance Key in the command interface WANXX timeslot set to assgin 64 timeslots to interface WAN1 and WANZ2 A Jadmin gt interface WAN1 timeslot add 1 32 Command succeeded A admin gt interface WAN2 timeslot add 33 64 Command succeeded Set the interfaces to use PPP for layer two encapsulation A admin gt interface WAN1 encapsulation ppp Command succeeded A admin gt interface WAN2 encapsulation ppp Command succeeded Create a virtual bundle m1 by command multilink create A admin gt multilink create ml Command succeeded Join all the WAN ports to be members of the bundle m1 Note the configuration on those interfaces will be cleared to default A Jadmin gt multilink virtual ml add WAN1 WAN2 The configurations of bundled interface s have been cleared Command succeeded Create a bridge group Following command show an example that creates a bridge without a specifying a MAC address In the case the Router A card randomly generates a MAC address for the group A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded Add lan1 and m1 into bridge A admin gt bridge brl add lanl ml Command succeeded 15 Chapter 5 Router A Card Setup 5 ROUTER A CARD SETUP 5 1 Configuration Save and Reset 5 1 1
65. erface ifname Queue ooococococcococcococicccccnnonono 84 Command List P PINO oniinn inicia 68 policy acl Create ooooocconococnocococcnococoncnncononos 85 policy acl destroy ooooooooocinononocincincnnonos 85 policy acl listi append 85 policy acl list1 delete 85 policy MAC create 85 policy MAC destroy o ooooooccconcccccccoconcnncnnonos 85 policy mac mac_list2 append 85 policy mac mac_list2 delete 86 R route static add o ooooococoonocnonociococincncconanonncnnoso 87 route static delete o oooooconoononconninioncn 87 route OSpf area add ooo ee cceeeeeeeeeteeeeneees 87 route ospf area authentication 87 route OSpf area COSt ocooocococcococcccocococococoncnncnnono 87 route ospf area delete 87 route ospf area type reese 87 route ospf redistribute 87 route OSpf router id oo ee eee eeeeeeeeeeeeee 88 S show bridge oooooooncononcnnconnccnnconnconnnonnonos 89 show bridge brg_name config 89 show bridge brg_name spantree 89 show bridge brg_name vlan port 89 show bridge brg_name vlan state 89 show bridge brg_name vlan table
66. erver add ie Ae e e e E a 76 dhcp server subnet subnet_name dns_server delete cotas dar aie e ee 76 dhcp server subnet subnet_name domain_name occ ec eseeeeeteeteeeeeeees 76 dhcp server subnet subnet_name ip_range 76 dhcp server subnet subnet_name lease 76 dhcp server subnet subnet_name nbns add 76 95 dhcp server subnet subnet_name nbns delete dhcp server subnet subnet_name netb_type 77 dhcp server subnet subnet_name network 77 dhcp server subnet subnet_name next_server dhcp server subnet subnet_name option 77 dhcp server subnet subnet_name router add77 dhcp server subnet subnet_name router delete ssc steele Me Sie es et 77 I interface ifname alias add 78 interface ifname alias delete 78 interface ifname CHIC 78 interface ifname encapsulation 78 interface ifname frame relay 78 interface ifname ip ee 78 interface ifname policy ac 78 interface ifname policy mac 79 interface ifname nway auto 79 interface ifname nway force 79 interface ifname route ospf auth key message digest key oooooononnonicncnociccnoconoccnncnnononncnnononos 79 interface ifname route ospf auth key text key NO 79 interface
67. hat is using OSPF s MD5 password authentication Interface ifname route ospf auth key text key Admin interface ifname route ospf auth key text key Set OSPF text format authentication key Assign a password to be used by neighboring OSPF routers on a network segment that is using OSPF s simple password authentication Interface ifname route ospf cost Admin interface ifname route ospf cost value Explicitly specify the link cost of sending a packet on an OSPF interface The cost value is set to router LSA s metric field and used for SPF calculation The default value is 10 value Valid value are 1 to 65535 Interface ifname route ospf dead 80 Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands Admin interface ifname route ospf dead value Set the number of seconds that a device s hello packets must not have been seen before its neighbors declare the OSPF router down This value must be the same for all routers attached to a common network The default value is 40 seconds value the number of seconds to wait before s
68. he disposition of each packet that can possibly pass through a router with the access control lists With this feature Router A card provides the basic protection mechanism for a routing firewall host allowing the user to determine what traffic passes through it based upon the contents of the packet thereby potentially limiting access to each of the networks controlled by the lists The access control lists are a group of entries Each entry defines a pattern that would be found in an IP packet and associates an action with the packets As each packet comes through an interface with an associated access list the list is scanned from top to bottom for a pattern that matches the incoming packet A permit or deny rule associated with the pattern determines that packet s disposition The user can also use a mask which is like a wild card to determine how much of an IP source or destination address to apply to the pattern match The pattern statement also include a TCP or UDP destination port number Also keep in mind that once you associate the list with an interface any packet not matched by the list is dropped by default 34 Chapter 11 Traffic Filtering Setup 11 2 ACL entry and selector format Every entry in an ACL consists of a one line statement The statement has the following format Figure 11 1 Entry Format Pattern Definition Action Source Destination Protocol Destination IP address prefix IP address p
69. how interface ifname statistics Admin show interface ifname statistics Shows LAN traffic statistics interval Timing interval in secs to refresh display 1 60 If the parameter is absent the command only shows statistics once 91 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Chapter 18 Appendix Operation Commands show interface ifname chdlc Admin show interface ifname chdlc Shows Cisco HDIC parameters none show interface ifname frame_relay Admin show interface ifname frame_relay Shows current Frame Relay configuration none show interface ifname nat Admin show interface ifname nat Shows NAT NAPT configuration none show interface ifname ospf config Admin show interface ifname route ospf config Show the network interface related OSPF configurations show interface ifname ospf status Admin show interface ifname route ospf status Show the network interface related OSPF status show policy Admin show policy
70. ically assign IP addresses to deliver TCP IP stack configuration parameters ie subnet mask and default router and to provide other configuration information Figure 8 1 below illustrates the Router A card set up in a DHCP server application All hosts shown on the right hand side of the network diagram can get IP addresses from the Router A card when its DHCP Server is enabled Router A Card for AM3440 A A sggoaggggugddgd Host DHCPClient aj elololdlBolololal ole zlelololala Network Address 192 168 1 0 Subnet Mask 255 255 255 0 Host DHCPClient Figure 8 1 DHCP Application 25 Chapter 8 DHCP Setup 8 2 DHCP Server Setup Use the command dhcp server subnet add to create a subnet which contains all necessary information needed by DHCP clients In the following example screen the subnet loop1 had been created A admin gt dhcp server subnet add loopl Command succeeded Once a subnet is created we set network address When the DHCP server allocate an IP address for a client the server will also send the client proper network address The network address is 192 168 1 0 24 A admin gt dhcp server subnet add loopl Command succeeded A admin gt dhcp server subnet loopl network 192 168 1 0 24 Command succeeded An IP address range from 192 168 1 5 to 192 168 1 20 is for the subnet by key in
71. icatiO Noa 42 Figure 13 1 Port Forwarding Virtual Service Application 43 Figure 14 1 Remote bridge mode Setup 1 1 1 1 1 45 Figure 15 1 Normal RSTP Link 0 0 0nnneneennnenenn en en enna ennnnn 48 Figure 15 2 Restored RSTP Link 0 0 00ns0ncnnennennencnncnnennennencnne 49 Figure 15 3 RSTP data transfer application 1 0 20 2necnnnennenncennen 49 Figure 15 4 RSTP data transfer application 2 0 00s0nsnnennennennennnne 50 Figure 16 1 VLAN Application 1 0 000 0sencnnnnenennnnenennnnenennn 54 Figure 16 2 VLAN Application 2 0 0 0 002nscnenennnnenennnnenennnnenennn 55 Figure 17 1 Firmware Configuration Up Download with TFTP Server on LAN Side 64 Figure 20 1 VT 100 Terminal FE MATER ER gt LIST OF TABLES Table 2 1 RJ45 10 100M Ethernet Connector Pin Assignment 5 Table 3 1 VT 100 Monitor Parameters Default Setting 7 Table 3 2 Front Panel LED Indication 0 2 202nenenenenenenenenen 13 Table 15 1 Transit and transmission delays 51 Table 15 2 Rapid
72. ifname route ospf cost 79 interface ifname route ospf dead 80 interface ifname route ospf hello 80 interface ifname route ospf prior 80 interface ifname route ospf retransmit 80 interface ifname route ospf setup 80 interface ifname route ospf transmit 80 interface ifname route rip setup 80 interface ifname route rip version 80 interface ifname spantree cost 81 interface ifname spantree edge_port 81 interface ifname spantree link_type 81 interface ifname spantree priority 81 interface ifname vlan frame type 81 interface ifname vlan ingress filter 81 interface ifname vlan pvid 82 interface ifname napt setup 83 interface ifname napt static add 83 interface ifname napt static delete 83 interface ifname nat address add 83 interface ifname nat address delete 83 interface ifname nat setup 83 interface ifname nat static add 83 interface ifname nat static delete 83 interface ifname pvc1 dici 83 int
73. imeslot set to assgin timeslots to interface WAN1 The following example assigns 16 timeslots to interface WAN1 from timeslot 1 to timeslot 16 A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded A Jadmin gt interface WAN1 timeslot add 1 16 Command succeeded Key in the command interface WANXX timeslot set to assgin timeslots to interface WAN2 The following example assigns 16 timeslots to interface WAN2 from timeslot 17 to timeslot 32 A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded A Jadmin gt interface WAN1 timeslot add 1 16 Command succeeded A admin gt interface WAN2 timeslot add 17 32 Command succeeded 60 Chapter 16 VLAN Key in the command interface WANXX timeslot set to assgin timeslots to interface WAN3 The following example assigns 16 timeslots to interface WAN3 from timeslot 33 to timeslot 48 A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded A Jadmin gt interface WAN1 timeslot add 1 16 Command succeeded A Jadmin gt interface WAN2 timeslot add 17 32 Command succeeded A Jadmin gt interface WAN3 timeslot add 33 48 Command succeeded Key in the admin command
74. ingssteder i landet Ved slutten av produktets levetid b r det avhendes p en kommunal milj stasjon eller leveres til en elektroforhandler Lamna vanligen in produkten pa lamplig atervinningsstation nar den ar forbrukad H vit tuote kaytdian p ttyess viem ll se asianmukaiseen kerayspisteeseen Gdy produkt nie nadaje sie juz do dalszego uzytku nalezy zostawic go w jednym ze specjalnych punkt w zajmujacych sie zbi rka zuzytych produckt w w wybranych miejscach na terenie kraju Po skon en jeho ivotnosti odlo te pros m v robek na p islu n m sb rn m mist z zen m dle p edpis ve va zemi Po skon en jeho ivotnosti odovzdajte pros m zariadenie na pr slu nom zbernom mieste pod a platn ch miestnych predpisov a noriem Ko se izdelku izte e ivljenska doba ga odnesite na ustrezno zbirno mesto oziroma ga odvrzite v skladu z veljavnimi predpisi 210 TEAOG TNG EITOUPYIK G ZW TOU TIPOIOVTOG TTAPAKAAW MeT Te TO OTA EiDik Onpe a Trou Map xovtai OTN Xwpa oac REA AA EA ER E ROT EA Chapter 1 Product Description 1 PRODUCT DESCRIPTION 1 1 Description Loop Telecom s Router A card is designed for the Loop AM3440 A series It occupies one mini slot of the Loop AM3440 A When used within the Loop AM3440 A this card combines the function of a router and directs Ethernet traffic to from multiple WAN channels W
75. ip address The fixed address command is used to assign one fixed IP addresses to a client address IP address xxx xxx xxx xxx or NULL to remove setting dhcp server host host_name hardware Admin Dhcp server host host_name hardware type address Sets the host hardware type address Specifies the MAC address of the client s hardware and the physical hardware interface type in order for a BOOTP client to be recognized type address ETHERNET TOKEN RING FDDI or NULL to remove setting h w address specific to h w type dhcp server host host_name lease Admin Dhcp server host host_name lease time Sets the DHCP host default duration of the lease i e the duration of the lease for an IP address that is assigned from a DHCP Server to a DHCP client time default lease time in secs or NULL to remove setting dhcp server host host_name next_server Admin Dhcp server host host_name next_server address Specifies the IP address of the next server in the boot process which is typically a Trivial File Transfer Protocol TFTP server address P address xxx xxx xxx xxx or NULL to remove setting dhcp server host host_name option Admin Dhcp server host host_name option code value Sets the DHCP host option by code max 8 options Apart from the above settings for a host if the user needs to mention some special configurations he she can use this command but the user needs to take care that the option code and corresponding value are in prope
76. ith TFTP Server 17 Setting Up Firmware Configuration Up Download with TFTP Server 17 1 Overview Firmware Configuration Up Download functions can be performed with the server on the LAN side ie same location as the AM3440 A or with the TFTP server on an outside network 17 2 Upload Download With The TFTP Server on the LAN Side Figure 17 1 below illustrates the Router A card being used in router mode The TFTP Server is on the LAN side The IP addresses and gateway addresses used in the diagram correspond to the step by step configuration instructions found in Section 17 3 below Loop AM3440 A Ethernet Console DB9 to PC s COM port Newer laptop PCs will require a DB9 to USB cable Gateway 255 255 0 0 VT 100 Monitor TFTP Server IP 100 1 1 1 Local Network Note Both the Loop AM3440 A and the TFTP Server are at the same location Figure 17 1 Firmware Configuration Up Download with TFTP Server on LAN Side Note In this application the Router A card and the TFTP Server are at the same location Connect a cable between the COM port of your PC and the Console port of the AM3440 A 64 Chapter 17 Setting Up Firmware Configuration Up Download with TFTP Server 17 2 1 Step by Step Setup Instructions To upload configuration proceed to section 17 2 1 3Configuration Upload To download configurati
77. ith this card access from LAN to WAN is accomplished within one card resulting in savings in cost and in space Chapter 1 Product Description 1 2 Application AS As a Router WAN _ D o 5 o ao WAN Marroc rr rrr rrr rrr rrr rrr rrr rrr errr rrr rrr rrr Oe eee we wee cece wees esse ew eee s esse ce cesses eee ses eeseeeece sees esesesee ses seseseescsseseesssesy Network Element As an Inband Management Element WAN Router A Network Management Workstation As a LAN Bridge 3 LAN Figure 1 1 Application Diagram Chapter 1 Product Description 1 3 Specifications Physical Interface e Two 10 100BaseT interfaces e Up to 64 WAN ports One mini slot of AM3440 A e Each interface can be configured as a bridge port or router port LAN Interface Two 10 100BaseT interfaces Auto MDI MDI X crossover Speed auto sensing Half full duplex auto negotiation Speed duplex force mode WAN Interface Up to 64 WAN ports e Each WAN port has data rate nX64Kbsp 1 lt n lt 32 lt 4Mbps for total of all 64 WAN ports e Layer two protocol HDLC PPP IPCP BCP MLPPP Frame Relay Cisco compatible HDLC Upto 64 Frame Relay PVCs Router e Routing protocol RIP I RIP Il OSPF and static NAT e NAT NAPT e Static address table for NAT e Port forwarding table for NAPT Virtual Service DHCP e DHCP server support for LAN users RFC2131 RFC2132 BOOTP compatible DHCP relay A o
78. kes configuration changes effective and stores the change in volatile RAM The command stores the newest working configuration into nonvolatile memory to make them effective after the system reboots system firmware load Admin system firmware load url Upgrades system firmware from a TFTP server url URL of the firmware image tftp server_ip file_name server_ip IP address of the TFTP sever file_name file name of the new firmware image system reboot Admin system reboot Reboots the system none 94 Command List Command List B bridge brg_name add ooocoooocooccocooccccooconccncn conos 69 bridge brg_name age nnn 69 bridge brg_name delete 69 bridge brg_namefCS oooccocooccccoococccccononccncononos 69 bridge brg_name ip ooooooocooncocccconconcccconononocnonos 69 bridge brg_name manageme 70 bridge brg_name policy mac 70 bridge brg_name spantree age 70 bridge brg_name spantree delay 70 bridge brg_name spantree hello 71 bridge brg_name spantree priority 71 bridge brg_name spantree setup 71 bridge brg_name vlan add 71 bridge brg_name vlan create 71 bridge brg_name vlan delete 71 bridge brg_name vlan destroy
79. ll you how many bytes were transmitted and if the download was successful Before download the configuration the user have to make sure the Config File Name is exist SLOT A Router A Download Configuration 14 52 03 03 02 2006 ARROW KEYS CURSOR MOVE BACKSPACE to edit ESC to abort TFTP Server IP x D10 003 002 031 Config File Name routerA cfg 14 52 15 03 02 06 Downloading config Recieved 546 Blocks 14 52 33 03 02 06 config checksum ok 14 52 33 03 02 06 Received 279745 bytes in 19 seconds 14 52 33 03 02 06 Send config to card Send 279745 Bytes 14 54 29 03 02 06 download OK lt lt Press ESC key to continue gt gt 17 3 Upload Download With The TFTP Server on An Outside Network Please refer to AM3440 A Controller board 68 Chapter 18 Appendix Operation Commands 18 Appendix OPERATION COMMANDS This chapter describes the Router A card configuration options and operational functions Each command requires a certan user privilege The Router A CLI assigns Admin a higher privilege than Operator In addition Command list shows in the end of Chapter 18 18 1 Ping Command Command Privilege Syntax Explanation Parameters ping operator ping address packet_size w timeout Issue ICMP echo packets to a host address The destination address of the ICMP packets packet_size How many bytes to be carried by the ICMP packets 1 1500 timeout Timeout in milliseconds to wait for each rep
80. loaded in a PC allow the user to send keyboard commands through the PC s USB Port to the DB9 Console Port of the Router A card Router A Card for AM3440 DB9 to PC s COM Port or Laptop USB Port Figure 3 1 VT 100 Monitor Connection Chapter 3 Operation 3 1 2 VT 100 Monitor Serial Port Setup Open your VT 100 emulator program Left click your mouse on Setup A drop down menu will appear Left click your mouse on Serial port Setup 1523 LoopTerm Windows Version 1 00 Version 1 00 COM2 OPEN File Edit Setup Help Window Setup Font Setup Serial port Setup A Serial port setup screen will appear as shown below oo Baud rate DA Data ant Parity none y Stop Bit fbit y Flow control none y Set Com Port to whichever Com Port you are connected to on your VT 100 monitor Then select your other settings from Table 3 1 below Table 3 1 VT 100 Monitor Parameters Default Setting Data Bit Stop Bit Parity Bit NONE EVEN ODD After selecting your settings left click your mouse on OK The setup screen will disapear To save your setup left click Save setup with your mouse as shown in the screen bleow EA Loop Term COMI connect S W 1 40 File Edit Setup Help Window Font Chapter 3 Operation You can save the setup in any directory you choose For the sake of convenience we saved our setup in the Loopterm
81. lowing commands 1 interface WAN1 policy qos rate_limit append 192 168 1 0 24 any any 80 any 120 120 kbps for www 2 interface WAN1 policy gos rate_limit append 192 168 1 0 24 any any 300 kbps for other Following are the commands to setup traffic distribution control for subnet B 1 interface WAN1 policy qos rate_limit append 192 168 2 0 24 any TCP 23 any 60 kbps for telnet 2 interface WAN1 policy gos rate_limit append 192 168 2 0 24 any TCP 21 any 120 120 kbps for ftp 3 interface WAN1 policy qos rate_limit append 192 168 2 0 24 any any 80 120 kbps for www 4 interface WAN1 policy gos rate_limit append 192 168 2 0 24 any any 100 100 kbps for other 42 Chapter 13 Port Forwarding Virtual Service 13 Port Forwarding Virtual Service 13 1 Overview When NAPT is enabled the user is able to set up a static port forwarding table in the Loop Router A card that instructs the Router A card to forward specific service packets to specified internal servers Figure 13 1 below illlustrates a HTTP and FTP server put into an intranet by a Loop Router A with a Port Forwarding Table The Router A card allows users on the public network left hand side of the drawing to access the HTTP and FTP Server on the right hand side of the drawing HTTP amp FTP Server IP 192 168 1 25 Router A Card for AM3440 A Figure 13 1 Port Forwarding Virtual Service Application 4
82. ly 1 5000 18 2 Traceroute Commands Command Privilege Syntax Explanation Parameters traceroute operator traceroute address l max_hops w timeout Issue trace route requests address The destination address of the ICMP packets timeout Timeout in milliseconds to wait for each reply 1 5000 max_hops Maximum number of hops to search for target 1 50 69 Chapter 18 Appendix Operation Commands 18 3 Bridge Commands Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters bridge create Admin bridge create name mac This command will create a bridge group with a management interface the virtual interface which will use the mac address specified If the MAC address is not specified a random address will be generated for the bridge group This generated address might conflict with other device Note The Router A only supports one bridge group name The bridge group name to be created mac MAC address for this bridge group If no MAC address is specified a random address will be generated for the bridge group bridge destroy Admin bridge destroy name Destroys the specified bridge group All the interfaces belonging to this bridge group will be removed from this bridge group first name The bridge brg_name group name will be destroyed In the following commands please replace brg_name with the real bridge group name in your sy
83. n area_id type Enable authentication for an OSPF area area_id 0 4294967295 type null password md5 route ospf area cost Admin route ospf area cost area_id cost Assign a specific cost to the default summary route used area_id 0 4294967295 cost 0 16777215 route ospf area delete Admin route ospf area delete area_id Delete an OSPF area area_id 0 4294967295 route ospf area type Admin route ospf area type area_id type Specify an address range for which a single route will be advertised area_id 0 4294967295 type normal stub stub no summary type normal stub stub no summary route ospf redistribute Admin route ospf redistribute type Redistribute routing information from a specified place to the OSPF tables type kernel static connected rip default null 88 Chapter 18 Appendix Operation Commands Command route ospf router id Privilege Admin Syntax route ospf router id id Explanation Set the OSPF router id Parameters id IP address that identifies this OSPF router 89 Chapter 18 Appendix Operation Commands 18 9 Show Commands Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters
84. name A admin gt interface WAN1 policy acl inbound listl Command succeeded 39 Chapter 12 QoS Setup 12 QoS Setup 12 1 Overview In packet networks one important requirement for link sharing is to share bandwidth on a link between multiple agencies where each agency wants to receive a guaranteed share of the link bandwidth during congestion But where bandwidth that is not being used by one agency should be available to other agencies sharing the link Quality of Service QOS is the idea that transmission rates error rates can be measured improved and to some extent guaranteed in advance QOS enables you to provide better service to certain flows and helps user to control the use of the outbound traffic on a given link Our QOS is policy based where the traffic type defines each policy In AM3440 A we have classified the outgoing traffic i e policy by packet s IP address network protocol and or TCP UDP port number User can configure the committed bandwidth for a particular class of traffic by mentioning the minimum and maximum bandwidth Make sure total configured bandwidth of all such policy must not exceed the link s physical bandwidth Note QOS is supported for WAN interface only and it supports maximum 32 WAN interfaces at a time 12 2 Policy Syntax 12 2 1 Policy add interface wan1 64 policy qos rate_limit append insert policy_num selector action_parameter append insert Instructs where to put the newly created polic
85. nly for the custmer site Network 140 1 0 0 and the company branch office Network 100 3 0 0 the Router A card shall permit TFTP packets from those sites 37 Chapter 11 Traffic Filtering Setup Before adding any ACL entry an ACL list must be created first Key in the command policy acl create followed by the name you WAN to give Then press the Enter key In the following example the list name list1 is given A admin gt policy acl create listl Command succeeded After creating the control list ACL entries are able to be appended Before adding ACL entries please refer to section 9 2 for detail descriptions about selector Press the Enter key In the example entry shows below any TCP packets with port number 80 is permitted to access the HTTP server i e the HTTP session to HTTP server is allowed A admin gt policy acl listl append permit any 192 168 100 11 32 tcp 80 Command succeeded In the example entry shows below packets with source IP address 140 100 5 5 destination IP address 192 168 1 1 TCP port number 23 is permitted i e the TELNET session requests from 140 100 5 5 to 192 168 1 11 are allowed A admin gt policy acl listl append permit 140 100 5 5 32 192 168 1 11 32 tcp 23 Command succeeded In the following example one more entry is appended to the access control list list1 That entry denies all TCP packets with port number 23 i e the TELNET session is prohibitted to any
86. on none show system hwinfo Admin show system hwinfo Shows card hardware information none show system config Admin show system config Show system configuration file working_cfg startup default is working_cfg show system log Admin show system log Show startup config error log none show timeslot Admin show timeslot Shows current timeslot assignment none 18 10System Command Command system active routing 93 Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands Admin system active routing key Activates the routing feature If users already ordered a Route A interface card with the bridge function only the users are able to enable the routing function by ordering an activation key from Loop Telecom then entering the key by the command The newly entered key will enable the routing function after system reboot and hide the command key The activation key system configuration reset Admin system configuration reset Resets configuration to factory default values system configuration save Admin system configuration save Saves working configuration as startup configuration Usually the Router A immediately ma
87. on each bridging device except for the root device which incurs the lowest path cost when forwarding a packet from that device to the root device Then it selects a designated bridging device from each LAN which incurs the lowest path cost when forwarding a packet from that LAN to the root device All ports connected to designated bridging devices are assigned as designated ports After determining the lowest cost spanning tree it enables all root ports and designated ports and disables all other ports Network packets are therefore only forwarded between root ports and designated ports eliminating any possible network loops Once a stable network topology has been established all bridges listen for Hello BPDUs Bridge Protocol Data Units transmitted from the Root Bridge If a bridge does not get a Hello BPDU after a predefined interval Maximum Age the bridge assumes that the link to the Root Bridge is down This bridge will then initiate negotiations with other bridges to reconfigure the network topology RSTP is designed as a general replacement for the slower legacy STP RSTP achieves much faster reconfiguration i e around one tenth of the time required by STP when a node or port fails 50 Chapter 15 STP RSTP Setup Performance of the Bridges recommends default operational values for performance parameters These have been specified in order to avoid the need to set values prior to operation and have been chosen with a view
88. on proceed to section 17 2 1 4 Configuration Download To download firmware proceed to section 17 2 1 2 Firmware Download 17 2 1 1 File Transfer Press D from the Router A main menu to enter into the submen of the File Transfer as below shows SLOT A Router A Port Menu 14 07 03 03 02 2006 Version EW YVis 01 01 DISPLAY SETUP H gt Unit Alarm History L gt Command Line M gt Unit Alarm Setup X gt Clear Unit Alarm History D gt Unit Firmware amp Config Transfer LOG MISC U gt Choose Other Slot Y gt Unit Load Default Alarm Config F gt Log Off SETUP MISC Menu O gt Log On SETUP MISC Menu E gt Return to Controller Main Menu gt gt SPACE bar to refresh or enter a command gt 65 Chapter 17 Setting Up Firmware Configuration Up Download with TFTP Server SLOT A Router A File Transfer 14 33 38 03 02 2006 A gt Download Firmware B gt Download Configuration C gt Upload Configuration lt lt Press ESC key to return to Previous Menu or enter a command gt gt 17 2 1 2 Firmware Download Press A from the screen of File Transfer to Download Firmware Then key in the IP address of the TFTP and the file name Your screen will tell you how many bytes were transmitted and if the download was successful SLOT A Router A Download Firmware 14 36 04 03 02 2006 ARROW KEYS CURSOR MOVE BACKSPACE to edit ESC to abort
89. ooonnnnononnnnonnnnnnnnnnnonnnnnnnonnnrnnnnnnnnnnnnnnnnrnnnnnnnrrncinnnnss 69 181 gt PING COMMANDS Aaaa A AE REA E RE TATR ENTE 69 18 2 TRACEROUTE COMMANDS es i 69 18 3 71 BRIDGE COMMANDS ios 70 18 4 DAGP GOMMANDS sarita ERAO cia 74 18 5 INTERFACE COMMANDS cai AEAEE REE TE ETAO PRA EAEE RE E IRRA EREA ETDE 79 10 NAT CGOMMANDS oiar a R TETE A A EAA TN ET T ATE 84 18 7 POLICY COMMAND sea ra aN EE TERETE T santa EARE A AO T A 86 18 8 ROUTE COMMANDS ii a ada te 88 18 9 SHOW COMMANDS tai O dd dadas 90 18 10 gt SyS TEM C OMMAN D a it 93 COMMAND EIST riipi a a a a A aa a 95 19 APPENDIX CONVERTING A SUBNET MASK TO BINARY CODE s sssssessesrrssrrssrrssrrssrrsssrrssrrssrrnere 97 GLOSSARY 2 A E ate lige T shade PATEE A TA ia SAN 100 iii LIST OF FIGURES Figure 1 1 Application Diagram rcncacnccc mmm 2 Figure 2 1 Router A Card Front Panel 2 0 0 0sensensenennennennenens 4 Figure 3 1 VT 100 Monitor Connection mmm 6 Figure 4 1 MLPPP Application 14 Figure 6 1 Frame Relay Application 20 Figure 7 1 IP Routing Setup nm 23 Figure 8 1 DHCP Application mmm 25 Figure 8 2 DHCP Relay Setup namas 28 Figure 9 1 Router Setup OSPF eureccoccccccnc namas 30 Figure 10 1 Setting Up IP Routing with Network Address Translation 32 Figure 11 1 Entry Format mames 35 Figure 11 2 Traffic Filtering Example Network 37 Figure 12 1 QOS Appl
90. or VID 3 VLAN1 key in the command Bridge br1 vlan add 3 tag lan1 Press Enter To set LAN1 Ethernet to be a tagged member for VID 5 VLAN2 key in the command Bridge br1 vlan add 5 tag lan1 Press Enter C admin gt bridge bri vlan add 3 tag lani Command succeeded C admin gt bridge bri vlan add 5 tag lanl Command succeeded C admin gt sys con save Command succeeded The setup of Application 1 Figure 16 1 is now complete 59 Chapter 16 VLAN 16 3 2 Application 2 Fig 16 2 Step by Step Setup Instructions Connect a cable between the COM port of your PC and the Console port of the AM3440 Then follow the instructions below 1 bridge mode and Timeslot Setting The first step is to create a bridge group for the Router A card Key in the command bridge create followed by the given name and a MAC address Then press the Enter key The second parameter MAC adress is an optional parameter If MAC address is not given the Router A card will generate the MAC address randomly It may conflict with the MAC address of other devices A admin gt bridge create brl WARNING A MAC address has been randomly generated for bridge group It might conflict with other device Command succeeded For WAN interface setup there is WAN1and WAN2 for setting Router A card supports mutiple WAN interfaces Before configuring each WAN interface it needs to setup the timeslot map in advance Key in the command interface WANXX t
91. ort feature This indicates that this port interface is known to be on the edge of a bridged LAN setting enable disable interface ifname spantree link_type Admin interface ifname spantree link_type type Sets link type in the following three ways type type of link auto p to p shared auto The switch will auto detect the link type This is the default value p to p The link is a point to point link to another device shared The link is a shared segment and can contain more than one device interface ifname spantree priority Admin interface ifname spantree priority value Sets a spanning tree priority for a port which will be used to break the tie when two or more ports connected to the same bridge towards the root bridge tie for position as the root port The port with the lowest port priority will be forwarded become the root port and the other port s will blocked become the alternate port value port priority 0 255 Default value is 128 interface ifname vian frame type Admin interface ifname vlan frame type type Sets the acceptable frame type of a given interface Two options con be chosen all means this interface could accept tagged untagged or pure priority packets tag only means this interface could only accept tagged packets type all tag only interface ifname vlan ingress filter Admin interface ifname vlan ingress filter setting Enables disables ingress filtering of a given interface If en
92. ost delete Admin Dhcp server host delete name Delete the DHCP host so that all configurations for the host will be lost Name host name in configuration dhcp server host host_name bootfile Admin Dhcp server host host_name bootfile filename Specifies the name of the file that is used as a boot image which is to be loaded by a client from the next server filename bootstrap file name lt 64 bytes or NULL to remove setting 74 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands dhcp server host host_name client_id Admin Dhcp server host host_name client_id id Sets the DHCP host client identifier This client id is matched to the actual DHCP or BOOTP client s identifier supplied by the client or if the host declaration or the client does not provide a dhcp client identifier by matching the hardware parameter in the host declaration to the network hardware address supplied by the client id client identifier may be htype chaddr or NULL to remove s etting dhcp server host host_name fixed_addr Admin Dhcp server host host_name fixed_addr address Sets the DHCP host
93. ot bridge generates a hello message periodically All other network bridges wait for hello messages If a bridge does not get a hello message in the expected time it presumes network malfunctions and notifies other bridges that the network transmission paths must be reconfigured When this device is the root bridge all other bridges use this device s hello time value value the time interval for the root bridge sends out BPDU hello messages The possible value is 1 to 10 The default value is 2 seconds Note A hello time value that is too low results in many BPDU hello messages being sent over the network possibly creating excessive traffic on the network A value that is too high slows the response to network topology changes The default value of 2 seconds is recommended in 802 1d 802 1w If you change this value the following relationship must be obeyed Bridge_Max_Age gt 2 x Bridge_Hello_Time 1 0 seconds bridge brg_name spantree priority Admin bridge brg_name spantree priority value Set a bridge s spanning tree priority value Sets the priority for specified bridge group The lower the bridge s priority the more likely it is to be selected as the root bridge value the value can be set from 0 to 65535 The value 0 is the highest priority Default value is 32768 bridge brg_name spantree setup Admin bridge brg_name spantree setup setting Enable disable spanning tree feature setting enable disable bridge brg_name
94. press the Enter key admin gt system configuration save command succeeded This setup procedure is now complete 31 Chapter 10 Network Address Translation Service 10 Network Address Translation Service 10 1 Overview The Router A card Network Address Translation NAT service allows IP clients on your local network to access the Internet without requiring you to assign globally unique IP addresses to each system This feature is used when the user s network only needs to have a few addresses available to access the Internet In addition NAT acts as a filter allowing only certain outbound connections and guaranteeing that inbound connections cannot be initiated from the public network This chapter will describe how to setup NAT service to allow clients on your private network to access a public network such as the Internet In Chapter 11 will describe how to setup port fordwarding virtual service to allow clients on the public network to access selected resources on your private network Figure 10 1 below illustrates the Router A card being used to provide Network Address Translation services The IP addresses and gateway addresses used in the diagram correspond to the sample step by step configuration instructions in Section 10 2 Peer Router IP 100 2 254 253 El PPP or HDLC WAN 1 with Public IP Address LAN 1 with Private IP Address IP 100 2 254 254 IP 192 168 1 1 MASK 255 255 0 0 MASK 255 255 255 0 Local Netwo
95. r Network Address 100 3 0 0 255 255 0 0 Figure 7 1 IP Routing Setup 23 Chapter 7 IP Routing Setup 7 2 Step by Step Setup Instructions Set IP addresses for LAN1 and WAN1 A admin gt interface lanl ip 192 168 1 17 24 Command succeeded A admin gt interface WAN1 ip 100 2 254 254 16 Command succeeded In example we disable routing protocol If the RIP 1 or RIP 2 protocol are used the setup procedure is complete If RIP protocol is not supported by the peer router the user must use static routing A admin gt interface lanl ip 192 168 1 1 424 Command succeeded A Jadmin gt interface WAN1 tp 100 2 254 254 16 Command succeeded A admin gt interface WAN1 route HIP setup disable Command succeeded Set a static route for network 100 3 0 0 Note 1 the user are able to specify a default route by setting the network address and subnet mask as 0 eg route static add 0 0 0 0 0 100 2 254 253 WAN1 2 max static route number 64 Aladmin gt interface lanl ip 192 168 1 1 24 Command succeeded Aladmin gt interface WAN1 ip 100 2 254 254 16 Command succeeded Aladmin gt interface WAN1 route rip setup disable Command succeeded Aladmin gt route static add 100 3 0 0 16 100 2 254 253 WAN1 Command succeeded This setup procedure is now complete 24 Chapter 8 DHCP Setup 8 DHCP Setup 8 1 DHCP Server overview DHCP Dynamic Host Configuration Protocol can be used to automat
96. r format code option code from RFC 2132 1 to 255 value option value lt 64 bytes or NULL to remove setting 75 Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Chapter 18 Appendix Operation Commands dhcp server interface add Admin Dhcp server interface add interface Add interface s bridge mgmt s to the DHCP server The name of the network interface s bridge mgmt s on which the DHCP server should listen for client s request may be specified by this command line If no interface names are specified it will identify all network interfaces bridge mgmt interfaces and exclude those interfaces which have no IP address Interface lan1 lan2 bridge_group_name dhcp server interface delete Admin Dhcp server interface delete interface Exclude the interface s bridge mgmt s from DHCP server so that any request from a DHCP client on that interface s will be ignored by the server Interface lan1 lan2 bridge_group_name dhcp server setup Admin Dhcp server setup setting Enables Disables the DHCP server feature on the device Note that the DHCP serv
97. refix port number permit deny XXX XXX XXX XXX NN XXX XXX XXX XxXX nnN TCP UDP ICMP or min max or any or any any 1 2 3 4 5 Required Jptional 1 Each statement is started with the action field Specify permit or deny here This will decide the disposition of the packet matching the pattern definition 2 Every statement in the list must have a source address With prefix you can indicate a host or a network to match Key in any if you do not want to filter the source address 3 Every statement in the list must have a destination address With prefix you can indicate a host or a network to match Key in any if you do not want to filter the destination address If you are only filtering on IP addresses the following fields can be disregarded 4 If you are trying to filter TCP UDP or ICMP packets specify the protocol filed with the name of protocol 5 If you are also filtering on UDP or TCP port you must specify TCP or UDP in the protocol field and port range in this field 35 Chapter 11 Traffic Filtering Setup 11 3 Adding ACL entries Before adding any ACL entry an ACL list must be created first Key in the command policy acl create followed by the name you WANt to gice Then press the Enter key In the following example the list name list1 is given A admin gt policy acl create listl Command succeeded After creating the control list ACL entris are able to be appended A screen with a flashing
98. rk with IP Address IP 160 2 256 253 MASK 255 255 0 0 i4 oN A Router A interface i Card for AM3440 A IP Router Network Address 100 3 0 0 255 255 0 0 Figure 10 1 Setting Up IP Routing with Network Address Translation 32 Chapter 10 Network Address Translation Service 10 2 Step by Step Setup Instructions Network address translation service is only available on WAN or PVC interfaces which is in router mode To implement network address translationservice on Router A card the relevant WAN or PVC interface must setup properly in advance Note Key in the command show interface XXX config and then press the Enter key to check If the interface is in bridge mode please follow the step decribed in section 4 2 to switch the required interface to router mode To enable the service key in the admin command interface XXX napt setup enable A admin gt interface WAN1 napt setup enable Command succeeded When network translation service is enabled all routing protocols including RIP 1 and RIP 2 are automatically disabled The user add static routes to connect the Internet refer to Chapter 7 for detail descriptions This setup procedure is now complete 33 Chapter 11 Traffic Filtering Setup 11 Traffic Filtering Setup 11 1 Overview The Router A card provides basic traffic filtering capabilities such as access control lists ACL Traffic filtering is the process of deciding t
99. rnet Groper Private Vitual Circuit Random Access Memory Router Information Protocol Rapid Spanning Tree Protocol Spanning Tree Protocol Time Division Multiplexing Trivial FTP Universual Record Locater VLAN ID Virtual LAN Wide Area Network Windows Internet Naming Service 100
100. rotocol key in the command interface lanXX route rip setup enable A admin gt interface lanl tp 192 168 1 254724 Command succeeded A admin gt interface lanl route rip setup enable Command succeeded Router A card supports both RIP version 1 and RIP version 2 The default version in Router A card is version 2 To change the RIP version key in the command interface lan1 route rip version A admin gt interface lanl ip 192 168 1 254 24 Command succeeded A Jadmin gt interface lanl route rip setup enable Command succeeded A admin gt interface lanl route rip version 2 Command succeeded 19 Chapter 6 Frame Relay Setup 6 Frame Relay Setup 6 1 Overview Each Router A WAN port can support multiple Frame Relay PVCs up to 16 The maximum number of PVCs in a Router A card is 64 Figure 6 1 below illustrates a Frame Relay setup The dashed lines in the diagram represent Frame Relay PVCs Note Router A cards only support user site protocol and cannot communicate directly with each other They must be connected to a Frame Relay network that includes devices that run on FR network protocol The Loop AM3440 A Frame Relay card can be used as such a device Frame Relay Network Router A card for The Loop AM 3440 A AM3440 A Frame Relay card can be used as a Frame Relay network device Figure 6 1 Frame Relay Application 20 Chapter 6 Frame Relay Setup 6 2 Step b
101. sion E SW V1 2075 01 DISPLAY SETUP H gt Unit Alarm History L gt Command Line M gt Unit Alarm Setup X gt Clear Unit Alarm History D gt Unit Firmware amp Config Transfer LOG MISC U gt Choose Other Slot Y gt Unit Load Default Alarm Config F gt Log Off SETUP MISC Menu O gt Log On SETUP MISC Menu E gt Return to Controller Main Menu Il Il Il Vv gt gt SPACE bar to refresh or enter a command 10 Chapter 3 Operation Under the Port Menu press L to select the command line interface A blank screen with a flashing cursor will appear Key in the command exit to return to port menu See section 4 for further details Welcome Press to get help A admin gt 11 Chapter 3 Operation 3 3 WAN Timeslot Map Setup There are two steps for Router A Card to setup WAN port s timeslot assignment 1 Set crossconnect on AM3440 A controller The Router A supports up to 4 Mbps TDM bus and it is separated into two 2 Mbps ports port 1 and port 2 2 CLI commands Instruct the Router A timeslot assignment for WAN ports Following screen examples show the crossconnect setup on AM3440 A controller LOOP AM3440 A System Setup MAP 14 28 09 03 02 2006 ARROW KEYS CURSOR MOVE TAB ROLL OPTIONS MAP NO MAP_1 Target RTR A Source Quad El UNFRAME Target BO TS D SL PO TS PO TS D SL PO TS POTS D SL PO TS P
102. stem Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command Privilege Syntax Explanation Parameters Command bridge brg_name add Admin bridge brg_name add interface Add interface s into the specified bridge group those interface s will be in bridge mode and their router feature will be invalid interface name of the interface to be added If no interface is specified all the interfaces will be add to the bridge group bridge brg_name age Admin bridge brg_name age time Set maximum age of auto learned MAC addresses time The maximum age in seconds bridge brg_name delete Admin bridge brg_name delete interface Remove an interface from a bridge group interface name of the interface to be deleted If no interface is specified all the interfaces will be deleted from the bridge group bridge brg_name fcs Admin Bridge brg_name fcs setting Enable disable the original Ethernet frame checksum setting enable disable bridge brg_name ip Admin bridge brg_name ip address Set IP address on the virtual management interface for this bridge group After setting the ip address this bridge group can be managed remotely address The management IP nnn nnn nnn nnn prefix bridge brg_name management 7
103. succeeded 38 Chapter 11 Traffic Filtering Setup In case of checking the rule entries in the control list the user can key in the command show policy acl XXX where XXX shall be the name of access control list Aladmin gt policy acl create listl Command succeeded Aladmin gt policy acl list append permit any 192 168 100 11 32 tcp 80 Command succeeded Aladmin gt policy acl list append permit 140 100 5 5 32 192 168 1 11 32 tcp 23 Command succeeded AJadmin gt policy acl list append deny any any tcp 23 Command succeeded Ajadmin gt policy acl list append permit 100 3 0 0 16 any Command succeeded Aljadmin gt policy acl list append permit 140 1 0 0 16 192 168 1 22 32 udp 69 Command succeeded Aladmin gt policy acl list append deny any any any Command succeeded Aladmin gt show policy listl No Action Source IP Destination IP Protocol Port A permit any 192 168 100 11 32 TEP 80 80 2 permit 140 100 5 5 32 192 168 100 11 32 ep 23 23 3 deny any any tep 23 23 4 permit 100 3 0 0 16 any any 3 permit 140 1 0 0 16 192 168 100 22 32 udp 69x69 6 deny any any any Command succeeded The access list will be active when it is associated with a port or interface The ACL can be applied to incoming or outgoing packets on the interface Key in the command interface XXX policy acl YYY inbound outbound where XXX is the interface name and YYY is the access list
104. th Router A Card 4 Figure 15 1 Normal RSTP Link 48 Chapter 15 STP RSTP Setup In Figure 15 2 below the WAN link between Router A 1 and Router A 2 has broken The system immediately removes the forwarding port block in Router A 4 so that there is still a path between PC 1 and PC 2 Router A Card 1 Router A Card 2 ROOT Router A Card 3 Router A Card 4 Traffic Path Figure 15 2 Restored RSTP Link In Figure 15 3 WAN 2 is blocked by RSTP only WAN1 can carry on the data transfer from PC 1 to PC 2 AM 344041 i AM 3440 2 gt gt oe e poo RTA 1 UE QE1 1 Mapping LAN1 Traffic Path Figure 15 3 RSTP data transfer application 1 49 In Figure 15 4 when WAN1 is broken the working path will switch immediately from WAN1 to WAN2 within 6 seconds Figure 15 4 RSTP data transfer application 2 The spanning tree algorithms supported by this device include these versions e STP Spanning Tree Protocol IEEE 802 1d RSTP Rapid Spanning Tree Protocol IEEE 802 1w Spanning tree algorithm uses a distributed algorithm to select a bridging device that serves as the root of the spanning tree network It selects a root port
105. the DHCP relay should listen to so that any request from a DHCP client on that interface s will be forwarded to the server If no interface names are specified it will identify all network interfaces bridge mgmt interfaces and exclude those interfaces which have no IP address Interface lan1 lan2 bridge_group_name dhcp relay interface delete Admin Dhcp relay interface delete interface Exclude the interface s bridge mgmt s from theDHCP relay so that any request from a DHCP client on that interface s will not be forwarded to server Interface lan1 lan2 bridge_group_name dhcp relay server Admin Dhcp relay server address Set DHCP server IP address to which DHCP and BOOTP requests should be relayed address P address xxx Xxx XXX XXX dhcp relay setup Admin Dhcp relay setup setting Enable Disable DHCP relay features on the device Note that DHCP server and relay cannot be enabled simultaneously Once the relay feature is enabled any configuration change for the relay will not take affect until the user disables and enables it again Setting enable disable dhcp server host add Admin Dhcp server host add name Hosts which require special configuration options can be added by this command If no address is specified in the following command the address will be allocated dynamically if possible but the host specific information will still come from the host declaration Name unique name of host lt 16 bytes dhcp server h
106. ucceeded C admin gt interface WAN1 timeslot set 1 32 Command succeeded C admin gt interface WAN2 timeslot set 33 64 Command succeeded C admin gt bridge bri add lanl WAN1 WAN2 Command succeeded 58 Chapter 16 VLAN 2 VLAN Setup The VLAN have to enable on the bridge Key in the command bridge br1 vlan followed by enable C admin gt bridge brl vlan setup enable Command succeeded You must create a VID for each VLAN To create VID 3 key in the command bridge br1 vlan create 3 and press Enter To create VID 5 key in the command set vlan create 5 C admin gt bridge brl vlan setup enable Command succeeded C admin gt bridge br1 vlan create 3 Command succeeded C admin gt bridge brl vlan create 5 Command succeeded You must setup the WAN Port to allow it to process VLAN1 VID 3 or VLAN2 VID 5 For tagged member of VID 3 VLAN1 Key in the command Bridge br1 vlan add 3 tag WAN1 Press Enter For tagged member for VID 5 VLAN2 Key in the command Bridge bri vlan add 5 tag WAN2 C admin gt bridge brl vlan create 3 Command succeeded Cl admin gt bridge brl vlan create 5 Command succeeded C admin gt bridge brl vlan add 3 tag WAN1 Command succeeded C admin gt bridge brl vlan add 5 tag WAN2 Command succeeded 3 Ethernet Port Setup You must setup the Ethernet Port to allow it to process VLAN1 VID 3 and VLAN2 VID 5 To set LAN1 Ethernet to be a tagged member f
107. uired interface to bridge mode Key in the command bridge br1 spantree priority followed by the bridge priority value you decide to use Then press the Enter Key We used 32768 In the sample screen below A admin gt bridge brl spantree priority 32768 Command succeeded Set up the LAN port priority Key in the command interface lan1 spantree priority followed by the priority value 127 Press Enter A sample screen is shown below A admin gt interface lanl spantree priority 127 Command succeeded Set up the WAN port firstly Key in the command interface WAN1 spantree priority followed by the priority value 127 Press Enter A sample screen is shown below A admin gt interface WAN1 spantree priority 127 Command succeeded Set up the span tree Bridge Max Age key in the command bridge br1 spantree age followed by a time value in seconds 25 Press Enter A sample screen is shown below A admin gt bridge brl spantree age 25 Command succeeded Set up the span tree Bridge Forward Delay key in the command bridge br1 spantree delay followed by a time value in seconds 20 Press Enter A sample screen is shown below A admin gt bridge brl spantree delay 20 Command succeeded Set up the span tree Hello Time key in the command bridge br1 spantree hello followed by a time value in seconds 4 Press Enter A sample screen is shown below A admin gt bridge brl spantree hello 4
108. urther protocol headers as they transit the Autonomous System OSPF allows sets of networks to be grouped together Such a grouping is called an area The topology of an area is hidden from the rest of the Autonomous System This information hiding enables a significant reduction in routing traffic Also routing within the area is determined only by the area s own topology lending the area protection from bad routing data OSPF enables the flexible configuration of IP subnets Each route distributed by OSPF has a destination and mask Two different subnets of the same IP network number may have different sizes i e different masks This is commonly referred to as variable length subnetting A packet is routed to the best i e longest or most specific match 30 Chapter 9 OSPF Setup 9 2 Step by Step Setup Instructions Set IP addresses for LAN1 and WAN1 A Jadmin gt interface lanl ipo 192 168 1 1 24 Command succeeded A Jadmin gt interface WAN1 ip 100 2 254 254 716 Command succeeded Key in the admin command route ospf area add 1 to create an area with ID 1 admin gt route ospf area add 1 Command succeeded Set up the WAN1 interface Key in the admin command interface wan1 route ospf setup enable 1 to add WAN1 into area 1 Then press the Enter key admin gt interface wanl route ospf setup enable 1 command succeeded Save the configuration Key in the command system configuration save Then
109. will notice that there are sixteen 1s in it The prefix length of the subnet mask 255 255 0 0 is thus 16 The table of subnet mask show as below 98 Chapter 19 Appendix Converting a Subnet Mask to Binary Code Subnet Mask Prefix Length Class A Network 255 0 0 0 8 Class B Network 255 255 0 0 16 255 255 128 0 17 255 255 192 0 18 255 255 224 0 19 255 255 240 0 20 255 255 248 0 21 255 255 252 0 22 255 255 254 0 23 Class C Network 255 255 255 0 24 255 255 255 128 25 255 255 255 192 26 255 255 255 224 27 255 255 255 240 28 255 255 255 248 29 255 255 255 252 30 255 255 255 254 31 Single Host Address 255 255 255 255 32 Table 19 1 Subnet mask and prefix length conversion 99 OSPF PING PVCs RIP RSTP STP TDM TFTP URL VID VLAN WAN WINS Glossary Glossary Access Control List Committed Information Rate Command Line Interface Data Circuit terminating Equip connects Dynamic host Configuration Protocol Data Link Connection Identifier Domain name server Digital Signal Level One E1 or T1 European Digital signal Level One Frame Relay File Transfer Protocol High Level Data Link Control Hyper Text Transmission Protocol Internet Control Message Protocol Internet Protocol Local Area Network Light Emitting Diode Media Access Control Network Address Translation Network Address Port Translation Open Shortest Path First Protocol Packets Inte
110. xed e H node Hybrid type B node P node M node or H node or NULL dhcp server subnet subnet_name network Admin Dhcp server subnet subnet_name network address Configures the network number and prefix for a DHCP address pool The network number prefix uniquely identifies the subnet so that DHCP server first identifies the subnet from a client request it receives and assigns a IP address from that subnet address pool address subnet IP address xxx xxx xxx xxx xx or NULL to remove setting dhcp server subnet subnet_name next_server Admin Dhcp server subnet subnet_name next_server address Specifies the IP address of the next server in the boot process which is typically a Trivial File Transfer Protocol TFTP server address P address xxx xxx xxx xxx or NULL to remove setting dhcp server subnet subnet_name option Admin Dhcp server subnet subnet_name option code value Sets DHCP options by code max 8 options Apart from the above settings for a host if the user needs to mention some special configurations he she can use this command but the user needs to take care the option code and corresponding value are in the proper formats code option code from RFC 2132 1 to 255 value option value lt 64 bytes or NULL to remove setting dhcp server subnet subnet_name router add Admin Dhcp server subnet subnet_name router add address Specifies the IP address of the default router in the subnet address IP address max 4 address
111. y Step Setup Instructions Set the WAN port to run Frame Relay A admin gt interface WAN1 encapsulation frame_relay Command succeeded Set Frame Relay polling protocol as Q 933 Annex A and its parameters n391 n392 n393 and t391 Please note that these parameters must match the parameters on the network side A admin gt interface WAN1 encapsulation frame_relay Command succeeded A Jadmin gt interface WAN1 frame_relay q933 n391 10 n392 4 n393 5 t391 20 Command succeeded Then create a PVC and set its bandwidth parameters A admin gt interface WAN1 encapsulation frame_relay Command succeeded A Jadmin gt interface WAN1 frame_relay q933 n391 10 n392 4 n393 5 t391 20 Command succeeded A Jadmin gt interface WAN1 pvc add pvcl 17 512 512 64 120 Command succeeded Note In the above screen the first 512 is the value for the CIR Committed Information Rate of PVC1 The total sum of the CIR values for all PVCs must not exceed the total physical bandwidth of the WAN port Physical bandwidth can be calculated by using the formula Physical bandwidth n of timeslots mapped x 64k If you are not sure how many timeslots you used in your WAN port mapping you can check by using the command show timeslot Assign an IP address for the PVC Ajadmin gt interface WANI encapsulation frame_relay Command succeeded Aladmin gt interface WANI frame_relay q933 1391 10 m392 4 nS43 5 ESSL 20 Command succeeded Al
112. y entry If append is specified the new entry is put at the tail of the policy list If insert is specified the new entry is put before the policy number specified by policy_num policy num When the policy is inserted into the list policy_num specifies insert point of the new policy entry for append user should not skip this parameter selector Outgoing packet match criteria the selector sets some matching condition If the packet going through the interface matches the condition then the packet will be applied an action according to the parameters specified by action parameter Format of the selector is as following src_ip dest_ip protocol src_port dst_port src_ip The source network address that are interested by the policy The parameter will be matched with source address field of IP packets dst_ip The interested destination network address The parameter will be matched with destination address field of IP packets protocol Interested protocol type carried by an IP packet The field can be a decimal value or a protocol name like TCP or UDP src_port If protocol is TCP or UDP user can mention the specific source port number carried by an IP packet User can specify a range of source port or any if he she is not interested for a particular source port number dst_port Interested destination port number for an IP packet if protocol is TCP or UDP User can mention destination port number in minimum maximum format for
Download Pdf Manuals
Related Search