Avocent Cyclades CS
Contents
1. Figure 6 17 Firewall Configuration Add Rule and Edit Rule REJECT Target Menu Options Any Reject with option causes the input packet to be dropped and a reply packet of the specified type to be sent NOTE The packets are matched using tcp flags and appropriate reject type with the REJECT target Firewall configuration procedures The following sections describe the procedures for defining packet filtering To add a chain 1 Goto Network Firewall Configuration 2 Click Add The Add Chain dialog box appears 3 Enter the name of the chain to be added in the Name field 4 Click OK The name of the new chain appears in the list NOTE Spaces are not allowed in the chain name 5 Add one or more rules to finish as described in To add a rule on page 48 To edit a chain Perform this procedure if you wish to change the policy for a default chain NOTE User defined chains cannot be edited If you wish to rename a chain you added delete it and create a new one 1 Goto Network Firewall Configuration 2 Select one of the default chains from Chain list and then click the Edit button NOTE User defined chains cannot be edited 48 Cyclades CS Console Server Installation Administration and User Guide If you select one of the default chains the Edit Chain dialog box appears Ohttps 192 168 48 11 Edit Chain M loj xj OK Cancel Name FORWARD Policy ACCEPT X Done 192 1682. Show Menu Show all options Figure 8 3 Ports Physical Ports Data Buffering Enabled If Buffer to Syslog is checked data buffer files are sent to the syslog server NOTE Go to Wizard Step 5 System Log or Expert Network Syslog to set up a syslog server To configure data buffering for serial ports Perform this procedure if you wish to configure data buffering Obtain the facility number for the console server from the system administrator of the syslog server Options range from Local0 to Local 1 2 3 4 Go to Ports Physical Ports in Expert mode and select a port or ports to modify Select the Data Buffering tab The Data Buffering form displays Select Enable Data Buffering From the Destination pull down menu choose Local or Remote to specify whether the data buffer files are stored locally or remotely on a file server If you chose Local from the Destination pull down menu perform the following a Choose Circular or Linear from the Mode pull down menu Will be either circular or linear In circular mode data is written into the specified local data file until the upper limit on the file size is reached then the data is overwritten starting from the top of the file as additional data comes in b Enter a size larger than 0 in the File Size Bytes field If you chose Remote from the Destination pull down menu enter the NES mount point for the directory where data buffer file is to be st
3. Secure Ldap Ldap User Name Ldap Password Ldap Login Attribute Figure 7 4 Expert Security Authentication LDAP 2 3 7 Supply the IP address of the LDAP server in the LDAP Server field If the LDAP authentication server uses a different distinguished name for the search base than the one displayed in the LDAP Base field change the definition The default distinguished name is dc as in dc value dc value If the distinguished name on the LDAP server is o then replace dc in the base field with 0 as in o value o value Replace the default base name with the name of your LDAP domain For example for the LDAP domain name avocent com the correct entry is dc avocent dc com Enable Secure LDAP if required Enter optional information in LDAP User Name LDAP Password and LDAP Login Attribute fields Click apply changes The changes are stored in etc ldap conf on the console server Serial port settings All serial ports on Cyclades CS console servers shipped from the factory are disabled by default The administrator can enable ports individually or collectively and assign specific users to individual ports Chapter 7 Security Menu and Forms 61 Virtual Ports Ports Status Modify Selected Ports Modify All Ports Ports Statistics Enable Selected Ports Disable Selected Ports Disable Alias Connection Protocol Serial Config Console Telnet Console Telnet Console Telnet Console Telnet
4. 2 3 4 Go to Ports Physical Ports in Expert mode select a port to modify and click the Modify Ports button Enter the desired string in the Alias field Click Done Click apply changes NOTE The Alias field cannot be set if you select the Modify All Ports To configure serial port settings to match the connected devices The settings for a serial port must match the connection settings on the connected device 1 Go to Ports Physical Ports in Expert mode and select a port or ports to modify The General form appears Select from the following pull down menus e Baud Rate Range 2400 to 921600 Kbps Default 9600 e Flow Control None Hardware Software Default None e Parity None Odd Even Default None e Data Size Range 5 8 Default 8 e Stop Bits 1 or 2 Default 1 To change whether the DCD Data Carrier Detect State is disregarded or not select either Disregard or Regard Click Done Click apply changes 70 Cyclades CS Console Server Installation Administration and User Guide Access Under Ports Physical Ports in Expert Mode select one or more serial ports and click the Modify Port s select the Access form from the tabbed menu The Access form appears Table 8 5 Access Form Menu and Fields Field Description Authorized Users Groups Restrict or deny access to a serial port by specifying one or more users or groups You can deny access to one or more users or groups by entering an e
5. If authentication is in effect for the port you need to supply a user name and password to log into the device 30 Cyclades CS Console Server Installation Administration and User Guide To connect to the console server This procedure logs you into the console server as a Regular User in an SSH session 1 Goto Applications Connect in Expert mode 2 Click the Connect to CS400X radio button 3 Click the Connect button A Java applet viewer appears NOTE You cannot authenticate unless you enable allow root access To connect to a device through a serial port 1 Goto Applications Connect in Expert mode 2 Click the Serial radio button 3 Select a port number or alias from the Serial pull down menu 4 Click Connect A Java applet viewer appears If authentication is specified for the selected port you are prompted to log in If not you are logged in automatically Terminal Profile menu On the Terminal Profile Menu under Applications you can define a terminal command menu This menu is used if a terminal is connected to one of the serial ports and is configured as a local terminal A server terminal configured as a local terminal launches a session directly on the console server with access to the Linux commands on the console server unless you configure a menu here Menu title Menu Options Action Name Action Command Edit Delete Add Up Down Figure 5 3 Expe
6. Enter or change the Short Message Services SMS username the SMS server s IP address or name and the SMS port number in the SMS User Name SMS Server and SMS Port fields respectively 7 Click OK 8 Click apply changes SNMP trap notifications entry When you go to Administration Notifications and select SNMP Trap from the pull down menu and then click on the Add or Edit button the Notifications SNMP Add Edit dialog box displays SNMP traps are event notifications sent to a list of responsible parties set up to receive alerts for the managed systems Any SNMP enabled device generates Fault Reports Traps that are defined in the Management Information Base MIB SNMPv1 and SNMPv2 define the messaging format for the trap The following table describes the available fields in the SNMP trap notification entry dialog box To configure a trigger for SNMP trap notification for serial ports 1 Goto Administration Notifications in Expert mode select SNMP Trap from the pull down menu If desired enable Notification Alarm for Data Buffering for an alarm to sound when the trigger action occurs and click either Add or Edit The Notifications Entry dialog box is displayed Specify the event you wish to trigger a notification in the Alarm Trigger field If you need to edit an existing notification select it from the pull down list and proceed Enter or change the number in the OID Type Value field Accept the trap number or select a ne
7. Physical Ports Modify Selected Ports Other 6 If you are finished click Done 7 Click apply changes To configure a serial port connection protocol for an external modem This procedure assumes that the selected serial port is physically connected to an external modem 1 Goto Ports Physical Ports in Expert mode select a port or ports to modify click the appropriate Modify Ports button The General form appears 2 Click the General tab The General form appears with the number s of the selected port s next to the Done button at the bottom of the form and the active tabs are in yellow 6 7 Chapter 8 Ports Menu and Forms 69 To change the connection protocol select one of the options from the Connection Protocol pull down menu PPP No Auth PPP SLIP or CSLIP If you wish to change any of the other current settings see To configure serial port settings to match the connected devices following To further configure the serial port s connection protocol e For user access and authentication methods see Access on page 70 e To specify the TCP Port number and configure modem initialization and PPP options see information on the tab labeled Other on page 74 If you are finished click Done Click apply changes To associate an alias to a serial port An alias can be associated to a port when it is individually selected for modification To associate an alias to a port perform the following steps 1
8. Java Applet Buttons for Connecting to the Console Server uzsssesserssensnensnnersnennn nen 11 Table 2 3 Available Serial Port Protocols oonnnccinnnnnincinncnoonnnnnncnn cano nan nnn conan on conan on non neon none cnn 12 Table 3 1 Description of Administrator Web Manager ButtONS oooocninninninnnonnconncnncnnncnncnnncnncnnano 13 Table 3 2 Administrator Logout Button and Other Information in the Upper Right Corner 14 Table 4 1 Port Profile Setup Options 2222222220220ennnenennnennnnsnensnennnnsnennernnnnnennonnnennnnsnensnn nenne sn 19 Table 4 2 Wizard Data Buffering Field Names and Definitions u022u0202suennenneennenneenne nen 25 Table 5 1 Expert Mode Forms Elements Information 222422202222Berneennennonnensnnnnensnennennnennnnn 28 Table 5 2 Expert Mode Menu and Forms Applications Network and Security 28 Table 5 3 Expert Mode Menu and Forms Ports and Administration n 28 Table 6 1 Expert Network Menu Descriptions cesersersnersersnesnnennernnennernennnennonnnensnnsnensne nennen 33 Table 6 2 Expert Fields and Menu Options for SNMP Configuration osooso 39 Table 6 3 Expert TCP Options Fields uuescesserseesnersnennersnesnnennesnnennennnnnennonnnensonsnensne nennen 45 Table 6 4 Expert Firewall Configuration Input Output Interface and Fragments Fields 46 Table 7 1 Expert Active Ports Sessions Information ursesssrsnesnnennerseennenno
9. Ports and Administration Ports Administration Physical Ports System Information e Virtual Ports Notifications Ports Status e Time Date Ports Statistics Boot Configuration Backup Configuration Upgrade Firmware Reboot Online Help Chapter 5 Applications 29 Applications Menu and Forms The following provides a description of the left menu panel and links to the detailed information and associated procedure Connect Using the Connect form you can connect directly to the console server or to devices connected to the serial ports Always connect to the console server shell using a secure SSH session or connect directly to the serial ports Connecting to the console server Clicking the Connect to CS400X radio button and then clicking on the the Connect displays a Java applet running an SSH session similar to the following figure E https 192 168 48 11 CAS Microsoft Internet Explorer Connected to 192 168 48 11 ssh SendBreak Disconnect Applet de mud jta Applet started 40 Internet Figure 5 2 Expert SSH session Java Applet Connecting to devices connected to the serial ports The Serial pull down menu lists all the serial port numbers or the administrator assigned aliases that a user is authorized to access Selecting a port number or alias and clicking Connect displays a Java applet with a connection protocol for which the serial port is configured
10. a From the Mode pull down menu select Circular or Linear data buffering b Type a file size in bytes into the File Size Bytes field The file size should be greater than zero 5 When the destination is Remote perform the following steps a Inthe NFS File Path field enter the pathname for the mount point of the directory where data buffer file is to be stored For example if the mount point directory s pathname is var adm ccslogs enter var adm ccslogs in the field NOTE The NFS server must already be configured with the mount point shared exported and the shared directory from the NFS server must be mounted on the console server b To cause a timestamp to be saved with the data in the data buffer file enable the Record the timestamp in the data buffering file 26 Cyclades CS Console Server Installation Administration and User Guide c Select an option from the Show Menu pull down menu The choices are show all options No Show data buffering file only and Show without the erase options 6 Click apply changes Step 5 System Log Selecting Step 5 System Log displays a form for identifying one or more syslog servers to receive syslog messages generated by the console server s serial ports Step 1 Network Settings Step 2 Port Profile Step 3 Access Configure external syslog server location to receive unit s Step 4 Data Buffering syslog messages Step 5 System Log Facility Number Local 7 Y Sy
11. 48 11 9 4 Figure 6 18 Edit Chain Dialog Box 3 4 5 Select the desired policy from the Policy pull down menu Click OK Click apply changes To add a rule l 2 Go to Network Firewall Configuration Select the chain to which you wish to add a rule from Chain list and then click the Edit Rules button Click the Add Rule button The Add Rule dialog box appears Configure the rule as desired For definitions of the fields in this form see Firewall Configuration on page 41 Click OK Click apply changes To edit a rule Go to Network Firewall Configuration Select the chain that you wish to edit from the list and click the Edit Rules button The Edit Rules form appears Select the rule to be edited from the Rules list and then click the Edit button The Edit Rule dialog box appears Modify the rule as desired For definitions of the fields in this form see Firewall Configuration on page 41 Click OK Click apply changes Chapter 6 Network Menu and Forms 49 Host Table The Host Table form enables you to keep a table of host names and IP addresses that compose your local network and provides information on your environment Selecting Network Host Tables displays the form shown in the following figure IP Address Name 127 0 0 1 localhost 172 26 31 4 172 26 31 4 Figure 6 19 Expert Network Host Tables To define the console server s IP addres
12. Boxes Default Route The example shows the fields and menus that appear when the Default route type is selected from the Route pull down menu https 192 168 48 11 New Modify Route Mozilla Firefo 101 xj Network IP Network Mask Go to Gateway bd Metric A Done 192 168 4811 9 y Figure 6 22 Expert Static Routes Add and Edit Dialog Boxes Network Route Chapter 6 Network Menu and Forms 51 https 192 168 48 11 New Modify Route Mozil 101 x 4 Done Apply Cancel Route Host IP Go to Gateway v Metric gt 192 168 48 11 9 y Figure 6 23 Expert Static Routes Add and Edit Dialog Boxes Host Route To configure static routes Expert 1 Go to Network Static Routes The Static Routes form displays e To edit a static route select a route from the Static Routes list and then select the Edit button e To add a static route select the Add button from the form The system invokes the New Modify Route dialog box Choose Default Network or Host from the Route pull down menu If you selected Network perform the following steps a Enter the IP address of the destination network in the Network IP field b Enter the netmask of the destination network in the Network Mask field If you selected Host type the IP address of the destination host in the Host IP field Select Gateway or Interface from the Go to pull do
13. Console Telnet Console Telnet Console Telnet Console Telnet Console Telnet Console Telnet KKK 000 uuu 1 2 3 4 5 6 7 8 9 0 al Figure 7 5 Expert Physical Ports Default Factory Settings Security certificates The Cyclades CS console server generates its own self signed SSL certificate for HTTPS using OpenSSL ICertificate for HTTP security A certificate for HTTP security is created by a Certificate Authority Certificates are most commonly obtained through generating public and private keys using a public key algorithm like RSA or X 509 The keys can be generated by using a key generator software The procedure to obtain a Signed Digital Certificate is documented in the Cyclades CS Console Server Command Reference Guide User configured digital certificate You can generate a self signed digital certificate It is highly recommended that you use the openssl tool to generate a self signed certificate and replace the console server generated certificate The procedure to configure a self signed digital certificate is documented in the Cyclades CS Console Server Command Reference Guide X 509 certificate on ssh The OpenSSH software included with the console server has support for X 509 certificates The administrator must activate and configure the SSH to use X 509 In order to implement authentication of SSH sessions through exchange of X 509 certificates please refer to the configura
14. Figure 4 3 Wizard Step 2 Port Profile 22u02242220220eneennensnennonsnennnnnnesnnennesnnennennonnnnnennensnnnn 19 Figure4 4 Wizard Step 3 Access san Ran re 21 Figure 4 5 Wizard Step 3 Access Add User Dialog Box uursuesersersnennersnennernennnennennnennnnnn 21 Figure 4 6 Wizard Step 3 Change Password Dialog Box rsernersesnnesnesnnennennennennennnennnnnn 22 Figure 4 7 Wizard Step4 Data Buffering Local ur ur2u0rsursennersnesnnesnesnnennennnnnnnnnennennnnnn 24 Figure 4 8 Wizard Step 4 Data Buffering Remote uu2ur2ussursersnennersnennennonnnennennnennnnnn 24 Figure 4 9 Wizard Step 5 System LO8 oononiconinonionionnconncnncnnnnnonncnn nono nncon nc ono on non nn conan cana nncnnnns 26 Figure 5 1 Expert Mode Forms Elements nisin ana E E 27 Figure 5 2 Expert SSH session Java Applet uuuunessessnesnesnnensusnunnnonnnennensnennensnennnesnennnennenennnnne 29 Figure 5 3 Expert Applications Empty Terminal Profile Ment 30 Figure 5 4 Expert Terminal Profile Menu Example ununseeseesseeseensersnennersnennnesnennnennenennnnnne 31 Figure 6 1 Expert Network Host Settings DHCP Enabled 0 ccccsccesesceseeseceseceseesecneeeeees 34 Figure 6 2 Expert Network Host Settings DHCP disabled onoinnnnnniononmnmmmemmmmmssnmesms 34 Figure 6 3 Expert Network SyslO8 ssssscsscesseessosscencorsvonsecnsconsenecoesneesosesse
15. For the backup configuration to work the FTP server must be on the same subnet Ensure that it is accessible from the console server by pinging the FTP server Use a storage device such as a CompactFlash drive to save your configuration Table 9 3 Backup Configuration Settings if Using FTP Server Field Definition Server IP IP address of an FTP server on the same subnet as the console server Verify accessibility by pinging the FTP server Path and Filename Path of a directory on the FTP server where you have write access for saving the backup copy of the configuration file Specify a filename if you wish to save the file under another name For example to save the configuration file zvmppccs 0720_qa ccs k26 in a directory called upload on the FTP server you would enter the following in the Path and Filename field upload zvmppccs 0720_qa ccs k26 Username and Password Obtain the user name and password to use from the FTP server s administrator Save Saves the configuration Load Downloads a previously saved copy of the configuration file from the selected device Table 9 4 Backup Configuration if Using Storage Device Field Name Definition Default Configuration The system saves the configuration in the storage device but does not override the internal Flash configuration after reboot Replace Configuration The system saves the configuration in the storage device with a
16. Mapping the expert mode menus and forms ucsersersnernnesnnennennernnennnnnnennennennnensnensnnsennnn san 28 Applications Menuwand Forms ion iii 29 Connect 32 ii 29 Terminal Profile meti ii Ense 30 Chapter 6 Network Menu and Forms uuuurzausnna0nnnanannnnnnnnnnnnannnnnnnnnnnnnnnnnnnnnnnnannnnn nn 33 Host Settings eines iia ias 34 YSL LA E A AA 36 SNMP sd a A 37 Firewall Configuration italia enia er akoe sag paai eaii Enas 4 Host Table Satie sees ii 49 Statie ROULES eii 49 Chapter 7 Security Menu and Forms uuuuussansnnannnnnnnnnnnnnnnnnnnnnunnnnnnnnannnnnnnnnnnannnnnn nn 53 Users and Groups sii a cies 53 Active Ports Session da dt 56 AULNENLI CATON E pete Sea ap sop es eee ree tears Seve eet 57 Configuring authentication for console server logins ueserseesnersnesneennennernnennennensnensennenan ne 57 Configuring authentication servers for logins to the console server and connected devices 58 DS CCUTIEY certificates ii ai ia 61 Chapter 8 Ports Menu and Forms uuuuuuneansnnnnnnnnnnannnnnnnnnnnannnnnnnnnnnannnnnnnnnnnannnnnnann 63 Physical POTS orania A ata 63 Virtua PS A A A AA ia 77 POVAS SUQKUs A a biie 80 POPES Statistics ns ee eee eee eek A EE EE E ed ag eS 8l Table of Contents v Chapter 9 Administration Menu and Forms uursassunnnnnnnnnnnnnunnnnnnnnnnnnnnnnnnnnnannnnnn nn 83 System Informations ines lidades 83 Notifications a A tec 84 Time Dalla a a iaa 8
17. Output Interface Inverted Fragments All packets y 2nd 3rd fragmented packets Non fragmented and 1st fragmented packets Figure 6 15 Input Output Interface Fields and Fragments Menu Options Table 6 4 Expert Firewall Configuration Input Output Interface and Fragments Fields Field Definition Input Interface The input interface ethN for the packet Output Interface The output interface ethN for the packet Inverted Inverting an item negates the selected rules Rules will apply to everything except the selected options Fragments The types of packets to be filtered e All packets 2nd 3rd fragmented packets Non fragmented and 1st fragmented packets LOG target If you select LOG from the Target field the fields and menus shown in the following figure appear in the LOG Options Section at the bottom of the form LOG Options Section Log Level emerg hf Log Prefix l TCP sequence I TCP options TIP options Figure 6 16 Firewall Configuration Add Rule and Edit Rule LOG Target Fields Chapter 6 Network Menu and Forms 47 REJECT target If REJECT is selected from the Target pull down menu the following pull down menu appears REJECT Options Section Reject with icmp net unreachable icmp net unreachable icmp host unreachable icmp port unreachable icmp proto unreachable icmp net prohibited icmp host prohibited echo reply tcp reset
18. Path and Filename field Click the Upgrade Now button IA A O E Chapter 9 Administration Menu and Forms 93 8 Click cancel changes if you need to restore the backed up configuration files Reboot Selecting Administration Reboot in Expert mode brings up a simple form containing only a Reboot button Clicking the Reboot button reboots the console server To reboot the console server 1 Goto Administration Reboot in Expert mode 2 Click the Reboot button A confirmation dialog box displays 3 Click OK Online Help When the online help feature is configured for your console server clicking the Help button from any form on the Web Manager opens a new window and redirects its content to the configured path for the online help product documentation NOTE Using the online help feature from the Avocent server is not always possible due to firewall configurations nor is it recommended It is generally advisable for you to use the online help system provided with the product or download the online help zip file and run it from a local server Online help for the Cyclades CS console server is shipped with the product and should be loaded on a local server The system administrator can also download the online help from Avocent For more information on downloading the online help contact Technical Support The procedure for configuring the online help on the local server follows Selecting Administration Online Help in Expert
19. Server field 5 Click OK 6 Click apply changes Setting up a customized time zone configuration The Edit Custom button next to the Timezone field allows you to set up a customized time zone function such as for daylight savings time or any other time zone offset anomaly that might occur anywhere in the world You can create a time zone identifier of your choice which is added to the Timezone pull down menu options in the main Time Date form When you select the Edit Custom button the following dialog box will appear ac oK Cancel Timezone Name Pacific Standard Time Acronym PST GMT off 8 00 Enable daylight saving time E Done A 9 internet Figure 9 3 Expert Administration Time Date Edit Custom To create a custom time zone selection 1 Enter the name of the time zone you would like to appear in the Timezone pulldown menu on the main Time Date form Pacific entered here as an example 2 Choose a preferred or standard acronym for the time zone PST is shown here for Pacific Standard Time 3 Enter the offset from GMT for the time zone west of GMT is entered as a negative number Click OK 5 Click apply changes Chapter 9 Administration Menu and Forms 89 To use the custom option to set daylight savings time 1 3 6 Select the Enable daylight saving time checkbox A Timezone Configuration dialog box appears Enter the daylight savings
20. TCP Keep alive Interval Specifies the time interval between the periodic polling by the system to check client processes and connectivity Idle Timeout The maximum time in seconds that a session can be idle before the user is logged off STTY Options Set terminal options Chapter 8 Ports Menu and Forms 75 Table 8 8 Other Form Fields Continued A A A A ea an ne en eu u Zu sun et ee u nn Field Name Definition Break Interval Usually 250 to 500 milliseconds It s a logical zero on the TXD or RXD lines to reset the communications line Break Sequence Usually a character sequence break Ctrl b Login Banner Enter the text you wish to appear as a login banner when logging into a terminal Host to Connect This field should be populated with the IP address of the device to which you are connecting The field is displayed when a terminal server TS profile is selected from the Connection Protocol pull down menu on the General form Terminal Type This field should be populated with the terminal type when connecting to a host system The field is displayed when a terminal server TS profile is selected from the Connection Protocol pull down menu on the General form To configure TCP port number STTY options break interval and the login banner for a serial port connected to a console Go to Ports Physical Ports in Expert mode and select a port or ports to modify Select the Other tab To change the
21. To change the break interval enter a new number in the Break Interval field To change the break sequence enter a new sequence in the Break Sequence field To change the content of the login banner enter new text in the Login Banner field For a dedicated terminal enter the IP address of the desired host in the Host to Connect field Enter the type of terminal in the Terminal Type field Click Done Click apply changes Chapter 8 Ports Menu and Forms 77 Virtual Ports When Virtual Ports is selected the following form appears Figure 8 4 Ports Virtual Ports The virtual ports form allows you to perform clustering of the console server units The console server clustering is designed to allow a large number of serial ports up to 1024 to be configured and virtually accessed through one IP address NOTE Clustering only works for ports that are configured as CAS profile You can use one console server as the master to control other console servers as slaves The ports on the slave unit s appear as if they are part of the master This section shows you how to define and configure the slaves When you click the Add or Edit button on the Ports Virtual Ports form the following dialog box appears 78 Cyclades CS Console Server Installation Administration and User Guide 9 https 192 168 48 11 New Modify Port Mozilla Fir Number of parts First Local Port Num
22. applies to logins to devices connected to serial ports You can select different methods for individual ports or for groups of ports Go to Ports Physical Ports in Expert mode and select a port or ports to modify Click the Access tab To select an authentication method select one of the options in the Type menu Click Done Click apply changes The changes are stored in the etc portSlave pSlave conf file on the console server nak WN 6 Make sure that an authentication server is specified for the selected authentication type Data Buffering Under Ports Physical Ports in Expert Mode after you select one or more serial ports and click the Modify Port s you can select the Data Buffering form from the tabbed menu The Data Buffering form appears There are different fields on this form depending on whether one or both options are enabled The form displays Enable Data Buffering and Buffer to Syslog options If Enable Data Buffering is active the form displays different fields depending on whether Local or Remote are selected from the Destination menu 72 Cyclades CS Console Server Installation Administration and User Guide General Access Data Buffering Multi User TERA Done Enable Data Buffering U Buffer to Syslog Destination Local Y Mode Circular v File Size Bytes Record the timestamp in the data buffering file Buffering data only when nobody is connected to t
23. de respaldo Asegurarse de que nada descanse sobre los cables del Cyclades CS console server y que los cables no obstruyan el paso Asegurarse de no dejar caer alimentos o bebidas en el Cyclades CS Console Server Installation Administration and User s Guide Si esto ocurre avise a Avocent Corporation IMPORTANTE No empuje ning n tipo de objeto en los compartimientos del Cyclades CS console serverserver Hacer esto podr a ocasionar un incendio o causar un corto circuito dentro del equipo IMPORTANTE Mantenga el Cyclades CS console server fuera del alcanc de calentadores y asegurarse de no tapar la ventilaci n del equipo Appendices 103 IMPORTANTE El Cyclades CS console server con alimentaci n de corriente directa CD solo debe ser instalado en reas con restricci n y de acuerdo a los art culos 110 18 110 26 y 110 27 del National Electrical Code ANSI NFPA 701 Edici n 1999 Para conectar la corriente directa CD al sistema utilice cable de 0 75 mm 18 AWG Instalar el interruptor corriente directa CD aprobado por UL entre la fuente de alimentaci n y el Cyclades CS console server El limite m nimo del interruptor deber ser 2 amperes con conductor de 0 75 mm 18 AWG Trabajar dentro del Cyclades CS console server No intente dar servicio al Cyclades CS console server solo que este bajo la direcci n de Soporte T cnico de Avocent Si este es el caso tome las siguientes precauciones Apague el Cyclades CS console ser
24. der Arbeit an elektronischen Platinen tragen e Bitte alle Baugruppen Komponenten und Steckkontakte als elektrostatisch sensitiv behandeln e Bitte Arbeiten auf Teppichb den vermeiden e Zur Minimierung von elektrostatischen Aufladungen alle K rperbewegungen w hrend Ein oder Ausbau von Boards auf ein Minimum reduzieren FCC warning statement The Cyclades CS console server has been tested and found to comply with the limits for Class A digital devices pursuant to Part 15 of the FCC rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the Installation and Service Manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user is required to correct the problem at his or her own expense Notice about FCC compliance for all Cyclades CS console server models To comply with FCC standards the Cyclades CS console server requires the use of a shielded CAT 5 cable for the Ethernet interface Notice that this cable is not supplied with either of the products and must be provided by the customer 102 Cyclades CS Console Server Installation Administration and User Guide Canadian DOC notice The Avocent Cyclades C
25. equipment and then unplug the cable from the network jack When reconnecting a network cable to the back of the equipment first plug the cable into the network jack and then into the Host Server equipment Vorsicht Um Sch den beim Entfernen des Netzwerkkabels zu vermeiden bitte immer zuerst das Kabel vom Host Server entfernen anschlieBend die externe Stromzufuhr abklemmen und danach das Kabel aus der Netzwerkbuchse ausstecken Beim Wiederherstellen der Verbindung immer zuerst das Kabel in die Netzwerkbuchse des Cyclades CS console server zuerst einstecken und danach das Kabel in den Host Server einstecken 100 Cyclades CS Console Server Installation Administration and User Guide CAUTION To help prevent electric shock plug the Cyclades CS console server into a properly grounded power source The cable is equipped with a three prong plug to help ensure proper grounding Do not use adaptor plugs or remove the grounding prong from the cable If you have to use an extension cable use a three wire cable with properly grounded plugs Vorsicht Um Stromschlage zu vermeiden den Cyclades CS console server bitte mit einer ausreichend geerdeten Stromquelle verbinden Zu diesem Zweck ist das Eingangskabel ist mit einem dreipoligen Stecker ausgestattet Bitte keinesfalls dazwischen liegende adaptor einsetzen oder den Erdungsstift entfernen Falls eine Verlangerung eingesetzt werden muss bitte ausschlieBlich dreipolige Kabel mit ausreichender Erdung verw
26. flag REPLACE used by the RESTORECONF utility to override the internal Flash configuration after reboot To back up or restore the configuration files using an FTP server Go to Administration Backup Config in Expert mode 1 2 Select FTP from the Type pull down menu 3 Enter the IP address of the FTP server in the Server IP field A Enter the directory path on the FTP server where you have write permissions in the Path and Filename field Enter the filename after the directory path For example upload zvmppccs 0720_qa ccs k26 5 Enter the user name and password provided by your system administrator for the FTP server 92 Cyclades CS Console Server Installation Administration and User Guide 6 To back up a copy of the current configuration files press the Save button 7 To download a previously saved copy of the configuration files press the Load button To back up or restore the configuration files using a storage device 1 Goto Administration Backup Config in Expert mode 2 Select Storage Device from the Type pull down menu 3 To back up a copy of the current configuration files select Default Configuration and press the Save button 4 To restore a copy of the configuration files saved on the storage device without replacing the internal Flash configuration select Default Configuration and press the Load button Click apply changes Reboot the system See Reboot on page 93 for details 7 To replace
27. mode brings up the form shown in the following figure System information Notifications Time Date Boot Configuration Configures the Online Help path Backup Config Paths ending in will be appended with the product name and version Otherwise the entire path will be used to access the help file Upgrade Firmware Reboot Example http www MyHttpServer com online help will be extended to http www MyHttpServer com online help aves v_1 0 0 index html Online Help Path http global avocent com us olh Figure 9 4 Expert Administration Online Help The console server administrator can either use the supplied online help or download the online help zip file and reconfigure the path to a local server where the online help can be stored and 94 Cyclades CS Console Server Installation Administration and User Guide accessed by the Web Manager The console server firmware stores the new link in Flash and accesses the online help files whenever the help button is clicked The Online Help Path field is where the path will be entered for the Web Manager to locate the online help files The Help button on the Web Manager looks for its help files in the location specified here By default http global avocent com us olh is the location specified in the field It 1s recommended that the console server administrator reconfigure this path to use a local server The console server administrator
28. on page 63 8 Cyclades CS Console Server Installation Administration and User Guide Other Methods of Accessing the Web Manager You can access the Web Manager using either DHCP or the default IP address NOTE Accessing the Web Manager using either DHCP or the default IP address requires additional setup and configuration specific to your site s network configuration To use a dynamic IP address to access the Web Manager This procedure assumes that DHCP is enabled and that you are able to obtain the dynamic IP address currently assigned to the console server ES oe De Mount the console server Connect servers and other devices to be managed through the console server Power up the console server and connected devices Enter the console server s IP address in the browser s address field Log in to the console server and finish configuring users and other settings using the Web Manager To use the default IP address to access the Web Manager The default IP address for the console server is 192 168 160 10 This procedure assumes that you are able to temporarily change the IP address of a server located on the same subnet as the Cyclades CS console server 1 On a server that resides on the same subnet as the console server change the network portion of the IP address of that server to 192 168 160 For the host portion of the IP address you can use any number except 10 0 or 255 Open a browser on the server with
29. one of two modes Wizard or Expert NOTE The Wizard Expert button at the lower left of the Web Manager screen indicates the destination mode If you are in Expert mode the button reads Wizard and if you are in Wizard mode the button reads Expert Wizard mode The Wizard mode is designed to simplify the setup and configuration process by guiding the administrator through six configuration steps When you log in to the console server as an administrator or as a user with administrative privileges the system displays the Expert Mode Ports Ports Status form by default The following is a typical form of the console server web interface in Wizard Mode The user entry form varies depending on the selected menu item Step 1 Network Settings Step 2 Port Profile Step 3 Access Set up the network parameters Step 4 Data Buffering Select the DHCP checkbox for automatic configuration Step 5 System Log Uncheck the DHCP box to perform manual configuration DHCP Host Name ccs IP Address Network Mask 172 26 31 4 255 255 252 0 Domain Name corp avocent com DNS Server Gateway IP 172 26 29 4 172 26 28 1 Figure 3 2 Example of Web Manager Form in Wizard Mode 16 Cyclades CS Console Server Installation Administration and User Guide Expert mode Expert is the default mode when logging in to the Cyclades CS console server The following is a typical console serv
30. out Host Name Avocent Displays the hostname IP address assigned during initial configuration IP Address 192 168 48 11 and the model number of the Cyclades CS console server Model CS4008 Logging Into the Web Manager The following procedure describes the login process to the Web Manager and what should be expected the first time you login to the console server To log into the Web Manager 1 To display the Web Manager enter the IP address of the console server in the address field of your browser NOTE The Cyclades CS console server is usually assigned a static IP address If DHCP is enabled you must find out the dynamically assigned IP address each time you need to run the Web Manager If necessary use the default static IP address 192 168 160 10 pre configured in the console server a If DHCP is disabled use the static IP address assigned by the administrator b If DHCP is enabled enter the dynamically assigned IP address The Login page displays 2 Log in as root and type in the root password The default password is avocent CAUTION It is important to change the root password as soon as possible to avoid security breaches Chapter 3 Web Manager for Administrators 15 If another administrator is already logged in a dialog box will prompt you to log off the other administrator before logging in 3 Select Yes or No and then click Apply Overview of Administrative Modes The console server Web Manager operates in
31. routes 49 statistics ports 81 status ports 80 stop bits 20 storage device 91 storage device using 92 stty options 74 swapcached 83 syscontact 39 syslocation 39 syslog 36 system information 83 system information to view 84 T table host 49 TACACS 71 TACACS local 71 TACACS downlocal 71 TCP flags 45 keep alive interval 74 port 74 port numbers 12 Technical support 104 Telnet 66 Telnet console 66 TelnetSSH console 66 terminal profile menu 30 terminal server TS profile connection protocols 66 terminal type 75 terminal local 67 TFTP 89 Index 109 time date 87 daylight savings time 89 timer watchdog 89 to configure ACS boot 90 to reboot the ACS 93 to set the time and date 87 to upgrade the ACS s firmware 92 to view system information 84 trap notification SNMP 85 TS profile connection protocols terminal server 66 TTY 56 TX bytes 81 U upgrade Cyclades CS s firmware 92 firmware 92 usage CPU 56 user adding 54 multi 73 regular 53 user forms regular 10 users adding 7 types of 3 users and groups 53 users groups authorized 70 using a storage device 92 using an FTP server 91 using an NTP server 87 V view system information 84 virtual ports 77 110 Cyclades CS Console Server Installation Administration and User Guide WwW watchdog timer 89 web manager logging into 14 other methods of accessing 8 wiz command 5 wizard mode 15 working inside the console server 1
32. sent and received through the console server Each entry in the list on the Firewall Configuration form represents a chain with a set of rules By default the list has three built in chains as shown in the previous figure The chains accept all INPUT FORWARD and OUTPUT packets You can use the Edit Delete Add and Edit Rules buttons on the form to perform the following to configure packet filtering e Edit default chains e Delete user added chains e Add new chains Edit rules for chains Edit button Selecting one of the default chains and pressing the Edit button the Edit Chain dialog box shown in the following figure appears 42 Cyclades CS Console Server Installation Administration and User Guide Ohttps 192 168 48 11 Edit Chain loj x OK Cancel Name FORWARD Policy ACCEPT hed Done 192 168 48 11 9 y Figure 6 8 Expert Firewall Configuration Edit Chain Dialog Box Only the policy can be edited for a default chain The options are ACCEPTand DROP NOTE User defined chains cannot be edited If a user defined chain is selected for editing an error message is displayed If this message appears click OK to continue Delete button If one of the user defined chains is selected and the Delete button is pressed the chain is deleted NOTE Default chains cannot be deleted If one of the default chains is selected and the Delete button is pressed an error message is disp
33. the configuration saved on the storage device previously select Replace Configuration and click the Save button 8 To restore a copy of the configuration files saved on the storage device and replace the internal Flash configuration select Replace Configuration and click the Load button 9 Click apply changes 10 Reboot the system See Reboot on page 93 for details Upgrade Firmware Selecting Administration Upgrade Firmware in Expert mode displays the Upgrade Firmware form You can use this form to configure an automated upgrade of the console server s firmware which includes the Kernel applications and configuration files The firmware is upgradeable using an FTP server NOTE Check the file name for the upgrade version and read the upgrade instructions carefully Distinct procedures are required depending on the version you are upgrading from To upgrade the console server firmware This procedure is for upgrading the latest release of the console server firmware The upgrade installs the software on the Flash memory Go to Administration Upgrade Firmware The Upgrade Firmware form displays Choose FTP from the Type menu FTP is the only supported type Enter the URL of the FTP server in the FTP Site field Enter the username recognized by the FTP server in the Username field Enter the password associated with the username on the FTP server in the Password field Enter the pathname of the file on the FTP server in the
34. 00 X X 509 Cerfiticate on SSH 61 Index 111 112 Cyclades CS Console Server Installation Administration and User Guide ON m Avocent The Power of Being There For Technical Support www avocent com support Avocent Corporation 4991 Corporate Drive Huntsville Alabama 35805 6201 USA Tel 1 256 430 4000 Fax 1 256 430 4031 Avocent Asia Pacific Singapore Branch Office 100 Tras Street 15 01 Amara Corporate Tower Singapore 079027 Tel 656 227 3773 Fax 656 223 9155 Avocent Canada 20 Mural Street Unit 5 Richmond Hill Ontario L4B 1K3 Canada Tel 1 877 992 9239 Fax 1 877 524 2985 590 752 501A Avocent International Ltd Avocent House Shannon Free Zone Shannon County Clare Ireland Tel 353 61 715 292 Fax 353 61 471 871 Avocent Germany Gottlieb Daimler StraBe 2 4 D 33803 Steinhagen Germany Tel 49 5204 9134 0 Fax 49 5204 9134 99
35. 11 FORWARD chain Add Rule Mozilla Firefox loj x z OK Cancel Target Source IP 10 10 10 1 Mask 255 255 255 0 E Inverted Destination IP 192 168 48 1 Mask 255 255 255 0 I Inverted Protocol All E T Inverted Input Interface T Inverted SEN E AM T Inverted Fragments All packets X gt Done 192 168 48 1 9 y Figure 6 12 Expert Firewall Configuration Add Rule and Edit Rule Dialog Boxes 44 Cyclades CS Console Server Installation Administration and User Guide Inverted checkboxes If the Inverted checkbox is enabled for the corresponding option the target action is performed on packets that do not match any of the criteria specified in that line For example if you select DROP as the target action from the Target pull down list check Inverted on the line with the Source IP and do not specify any other criteria in the rule any packets arriving from any other source IP address than the one specified are dropped Target pull down menu options The Target pull down menu shows the action to be performed on an IP packet that matches all the criteria specified in a rule The kernel can be configured to ACCEPT DROP RETURN LOG or REJECT the packet by sending a message translating the source or the destination IP address or sending the packet to another user defined chain Source or destination IP and mask If you add a value in the Source IP field incoming packets are filter
36. 7 Boot CONPIQUPALON clica er ire iaa ia tir iii 89 Backup Config r tioh suir cnno ba 90 Upgrade Firmwares da tl dd ie ie IR 92 Rebole a a aa on sacks aE aa a R a E aa a 93 Online Help AAA E Rae eR ea 93 Appendice S Mi 22 0 EAEE EENET TEA EE E AA 97 Appendix A Technical Specifications usuurseesnersersnernnesnnennesnernnennesnnennnnnonnnensnnnnonsnennonsnennannnesnnnn 97 Appendix B Safety Regulatory and Compliance Information usenseeseesserseennersnennensnenennnennnnn 98 Appendix C Technical Support sinocni n oiii Hs E E E in 104 vi Cyclades CS Console Server Installation Administration and User Guide vii A Figure 1 1 Placement of Mounting Brackets Forward Mounting Configuration Shown 3 Figure 1 2 Configuration Wizard Screen ucsersersnensersnennnesnesnnennernnennennonnnnnnnnnnonsensnensennensne san 6 Figure 231 Regular User Form Ses he sean ees hs eet gods Seats gee ke ea oe ae 10 Figure 3 1 Administrator Web Manager Buttons 2u02202usenseesennnensnensensnennansnennnesnennennerennnnnne 13 Figure 3 2 Example of Web Manager Form in Wizard Mode usursersernersnennnesnennnennenennnnn 15 Figure 3 3 Example of Web Manager Form in Expert Mode 16 Figure 4 1 Wizard Step 1 Network Settings DHCP Disabled ononicinnnnincnnmnnmmmmmmmmerinrinnen 17 Figure 4 2 Wizard Step 1 Network Settings DHCP Enabled ooonnoconcnininnnoninnnnnnnnnnnnnncnrnn non 18
37. 7008 SSH A 89 Internet Figure 8 7 Ports Virtual Ports New Modify Port Names Dialog box Use this form to assign a name or alias to the slave ports in the cluster Use a naming convention for effective management of the console server and the connected devices on your network Ports Status Selecting Ports Port Status in Expert mode displays the following read only form which displays tabular serial port status information Refresh Port Alias RS232 Signal Status Current User s PM RTS CTS DCD DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTS DTR RTSDTR oNN AUN Figure 8 8 Ports Ports Status Read Only Chapter 8 Ports Menu and Forms 81 The information in the following table is available in the Ports Status read only form All users have access to this form The information on this page gets updated when you click the Refresh button Table 8 9 Expert Port Status Read Only Form Column Name Description Port The serial port number Alias Displays the name alias for the serial port if one is assigned by the administrator RS232 Signal Status Serial Communication Signal Status Current User s Displays the user s connected to each serial port Ports Statistics Selecting Ports Port Statistics in Expert mode displays the following read only form Refresh Port
38. Alias Baud RateTx bytes Rx bytes Frame Parity PM 9600 1043 7276 0 Thinkpad 9600 67282 461 Telnet 9600 13782 9600 9600 9600 9600 9600 9600 9600 9600 9600 9600 9600 9600 9600 1 2 3 4 5 6 ri 8 9 Figure 8 9 Ports Port Statistics Read Only The following information is available in the Ports Statistics read only form All users have access to this form The information on this page gets updated when you click the Refresh button Table 8 10 Expert Ports Port Status Read Only Form Column Name Description Port The serial port number Alias Displays the name alias for the serial port if one is assigned by the administrator Baud Rate The measure of how fast data is moving between devices Tx Bytes Data transmitted 82 Cyclades CS Console Server Installation Administration and User Guide Table 8 10 Expert Ports Port Status Read Only Form Continued EEE ee eer SSS st Column Name Description Rx Bytes Data received Frame A formatted packet of data usually associated with the Data Link layer Parity Error checking bit appended to a data packet A method of checking the accuracy of transmitted characters Parity is usually not used but can be odd or even A None parity means that data has not exchanged Break An out of band signal on an RS 232 serial port that involves making the Tx data line active for more than two whole character times
39. Configuration Add Rule and Edit Rule REJECT Target Menu Options 47 Figure 6 18 Edit Chain Dialog Box seuss tetas ay deste tas vies etna doves eens ass 48 Figure 6 19 Expert Network Host Tables ccccsccsccessceseessessceeeescesceesecsensecaseaecsceseeeeseeeeeeees 49 Figure 6 20 Expert Network Static Routes uueuneenessnessesnnennesnennnnnnnennonsennensnennesennnenernnnnnnne 50 Figure 6 21 Expert Static Routes Add and Edit Dialog Boxes Default Route 50 Figure 6 22 Expert Static Routes Add and Edit Dialog Boxes Network Route enenee 50 Figure 6 23 Expert Static Routes Add and Edit Dialog Boxes Host Route noose 5I Figure 7 1 Expert Security Users and Groups Form uuscessersersernersnersnennersnennnennennnennernennnnn D3 Figure 7 2 Expert Security Active Ports Sessions unesnessessnessesnnenneesnensennnensnennennnesnennennennnenn 56 Figure 7 3 Expert Security Authentication uuuunsssessnessersnensennonnnonnnennonsnennansonnnennennnennerennnnne 57 Figure 7 4 Expert Security Authentication LDAP uenseeseessesseensersnennersnennnennennnennennennnnne 60 Figure 7 5 Expert Physical Ports Default Factory Settings ossee 61 Figure 8 2 Ports Physical Ports General Form uu22022202200200nsuennennersnennersnennnesnennennerennnn 65 Figure 8 3 Ports Physical Ports Data Buffering Enabled 72 Figure 8 4 Ports Virtua
40. Connect button a Java applet viewer appears The Connected to message at the top of the screen shows the IP address of the console server followed by the TCP port number 12 Cyclades CS Console Server Installation Administration and User Guide Connection protocols for serial ports You can access a server or a device connected to a serial port by using the connection protocol specified for the port Table 2 3 Available Serial Port Protocols Connection Type Protocol Console Access Server CAS Telnet ssh Telnet amp ssh Raw Terminal Server TS Telnet sshv1 sshv2 Local Terminal Raw Socket Dial up PPP No Auth PPP SLIP CSLIP TCP port numbers for serial ports The TCP port numbers by default start at 7001 for serial port 1 and increment up to the number of serial ports on your console server The console server administrator may change the default port numbers if needed To use Telnet to connect to a device through a serial port For this procedure you need the hostname of the console server or its IP address and the TCP port number for the serial port to which the device is connected e To use Telnet in a shell enter the following command telnet hostname IP_address TCP_port_number To close a Telnet session Enter the Telnet hotkey defined for the client The default is Ctrl and q to quit Security Use the following procedure to set or change your password To change your password Select th
41. ON 2 Avocent od T od F Te rg OS Console Server Installation Administration and User Guide FCC Warning Statement The Cyclades CS console server has been tested and found to comply with the limits for Class A digital devices pursuant to Part 15 of the FCC rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the Cyclades CS Console Server Installation Administration and User Guide may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user is required to correct the problem at his or her own expense Notice about FCC Compliance for All Cyclades CS Console Server Models To comply with FCC standards the Cyclades CS console server requires the use of a shielded CAT 5 cable for the Ethernet interface Notice that this cable is not supplied with either of the products and must be provided by the customer Canadian DOC Notice The Cyclades CS console server does not exceed the Class A limits for radio noise emissions from digital apparatus set out in the Radio Interference Regulations of the Canadian Department of Communications L Avocent Cyclades CS console server n mete pas de bruits ra
42. RNING For security reasons it is recommended that you change the default password avocent as soon as possible To change the default password enter the passwd command at the prompt and enter a new password when prompted NOTE The Security Advisory appears the first time console server is accessed or after a reset to factory default parameters If you are upgrading the firmware on the console server the previously configured security parameters are retained in the Flash memory To use the wiz command to configure network parameters 1 Launch the Configuration Wizard by entering the wiz command root CAS root wiz As shown in the sample screen below the system displays the configuration wizard banner and begins running the wizard eds naxe CONFIGURATION WIZARD osorno is Current configuration Hostname CAS DHCP disabled System IP 192 168 48 11 Domain name avocent com Primary DNS Server 192 168 44 21 Gateway IP 192 168 48 1 Network Mask 259 259 252 0 Set to defaults y n In _ Figure 1 2 Configuration Wizard Screen 2 At the prompt enter n to change the defaults Set to defaults y n n n 3 Press Enter to accept the default hostname otherwise enter your own hostname Chapter 1 Installation 7 Hostname CAS fremont branch _ console server 4 Press Enter to keep DHCP enabled or enter n to specify a static IP address for the console server By default the console ser
43. Reboot Online Help Day 24 vear 2006 Hour 1 Minute 38 Second 52 Figure 9 1 Expert Administration Time Date You can use the Time Date form in Expert mode to set the console server s time and date by manually entering the time and date information in the form or setting it up to acquire time and date information from the NTP server which synchronizes the console server s system clock with any of several NTP servers available on the Internet To set the time and date manually Go to Administration Time Date in Expert mode The Time Date form displays Select a time zone from the Timezone pull down list 3 If necessary select Disable from the Network Time Protocol pull down NTP is disabled by default 4 Type the date and time in the fields provided 5 Click apply changes To configure time and date using an NTP server NTP is disabled by default 1 Go to Administration Time Date in Expert mode The Time Date form displays 2 Select a time zone from the Timezone pull down list 3 Select Enable from the Network Time Protocol pull down menu When NTP is enabled the following form is displayed 88 Cyclades CS Console Server Installation Administration and User Guide Timezone Pacific PSTw Edit Custom Network Time Protocol gt NTP Server 129 6 15 28 Figure 9 2 Expert Administration Time and Date NTP Enable 4 Type the IP address of the NTP server in the NTP
44. S console server does not exceed the Class A limits for radio noise emissions from digital apparatus set out in the Radio Interference Regulations of the Canadian Department of Communications L Avocent Cyclades CS console server server n mete pas de bruits radio lectriques d passant les limites applicables aux appareils num riques de la classe A prescrites dans le reglement sur le brouillage radio lectrique edict par le Minist re des Communications du Canada Aviso de Precaucion S Mark Argentina Por favor de leer todos los avisos de precauci n como medida preventiva para el operador y el Cyclades CS console server IMPORTANTE No hacer funcionar el Cyclades CS console server server con la tapa abierta IMPORTANTE Para prevenir un corto circuito en el Cyclades CS console server al desconectarlo de la red primero desconectar el cable del equipo y luego el cable que conecta a la red Para conectar el equipo a la red primero conectar el cable a la red y luego al equipo IMPORTANTE Asegurarse que el equipo este conectado a tierra para prevenir un shock el ctrico El cable el ctrico del equipo viene con tres clavijas para conectar asegurar conexi n a tierra No use adaptadores o quite la clavija de tierra Si se tiene que utilizar una extensi n utilice una que tenga tres cables con clavija para conexi n a tierra Para proteger al Cyclades CS console server de fluctuaciones en corriente el ctrica utilice una fuente el ctrica
45. Select the name of the user whose password you wish to change Chapter 7 Security Menu and Forms 55 Click Change Password The Change User Password dialog box displays Enter the new password in the New Password field and enter it again in the Repeat New Password field Click OK Click apply changes To add a group Dy BD Go to Security Users and Groups The Users and Groups form displays Under the list of groups click Add The Add Group dialog box displays Enter the name for the new group in the Group Name field Enter one user name or multiple comma separated user names in the Users field Click OK Click apply changes To modify a group i ries Ge Ne te Go to Security Users and Groups The Users and Groups form displays Select the name of a group to modify Click Edit The Edit Group form displays Add or delete users from the group as desired Click OK Click apply changes 56 Cyclades CS Console Server Installation Administration and User Guide Active Ports Sessions Selecting Security Active Ports Sessions displays the form shown in the following figure Active Ports Sessions Authentication Services Users and Groups Uptime 4 days Users 0 From Login IDLE JCPU PCPU Figure 7 2 Expert Security Active Ports Sessions The Active Ports Sessions form provides status and usage information related to all active serial ports sessions You can use the f
46. aces 1 Ethernet 10 100BT on RJ45 1 RS232 Console on RJ45 RS232 Serial Ports on RJ45 Power Internal 100 240VAC 50 60 Hzt Operating Temperature 50 F to 112 F 10 C to 44 C Storage Temperature 40 F to 185 F 40 C to 85 C Humidity 5 to 90 non condensating Dimensions console server 1 3 6 3 x 4 0 x 1 5 in 16 x 10 x 3 8 cm console server 4 48 17 x 8 5 x 1 75 in 43 18 x 21 59 x 4 45 cm Certification FCC Part 15 A EN55022 A CE EN55024 UL 60950 1 CSA 60950 1 03 Solaris Ready 98 Cyclades CS Console Server Installation Administration and User Guide Appendix B Safety Regulatory and Compliance Information Safety and environmental guidelines for rack mounting the console server NOTE Each heading and its contents in this section is also provided in German Deutsch in italics immediately following the English version The following considerations should be taken into account when rack mounting the Cyclades CS console server Folgendes sollte beim Rack Einbau des Cyclades CS beriicksichtigt werden Temperature The manufacturer s maximum recommended ambient temperature for the Cyclades CS console server is 122 F 50 C Temperatur Die maximal empfohlene Umgebungstemperatur des Cyclades CS betr gt 50 C 122 F Elevated operating ambient temperature If the console server is installed in a closed or multi unit rack assembly the operating ambient temperature of the rack en
47. alues for an individual or a group of ports To select one or more serial ports 1 Goto Ports Physical Ports in Expert mode The Physical Ports form appears 2 To select a port or ports perform one of the following steps a To select a single port click the port 64 Cyclades CS Console Server Installation Administration and User Guide b To select multiple ports in a range click the first port in the list and then hold down the Shift key while selecting the last port or ports in the range c To select multiple ports that are not in a range click the first desired port in the list and then hold down the Ctrl key while selecting another port or ports 3 Go to the desired procedure from the following list Table 8 1 List of Procedures for Serial Port Configuration To enable or disable serial ports on page 64 To configure a serial port connection protocol for a console connection on page 67 To configure user access to serial ports on page 70 To configure data buffering for serial ports on page 72 To configure multiple sessions and port sniffing for one or more serial ports on page 74 To configure TCP port number STTY options break interval and the login banner for a serial port connected to a console on page 75 To enable or disable serial ports 1 Goto Ports Physical Ports and select a port or ports to modify 2 To enable selected ports click the Enable Selected Ports button 3 To
48. and the selected condition The flags are SYN synchronize ACK acknowledge FIN finish RST reset URG urgent or PSH push and the conditions are either Any Set or Unset Inverted By checking this box the TCP options are Inverted Inverting an item negates the selected rules Rules will apply to everything except the selected options UDP protocol fields If UDP is selected as a protocol when specifying a rule the additional fields shown in the following figure appear at the bottom of the form UDP Options Section Source Port to D Inverted Destination Port ta T Inverted Figure 6 14 Firewall Configuration Add Rule and Edit Rule UDP Protocol Fields ICMP protocol fields If ICMP is selected as a protocol the ICMP Type pull down menu is displayed in the ICMP Options Section at the bottom of the Firewall Configuration form Select the ICMP type needed from the list Input interface output interface and fragments If an interface such as ethO or eth1 is entered in the Input Interface field incoming packets are filtered for the specified interface If an interface is entered in the Output Interface field outgoing packets are filtered for the specified interface The input and output interface fields are shown in the following figure along with the options on the Fragments pull down menu 46 Cyclades CS Console Server Installation Administration and User Guide Input Interface F inverted
49. ative modes 15 P pager notification 85 108 Cyclades CS Console Server Installation Administration and User Guide parity 19 82 PCPU 56 PCPU processing time 56 physical ports 63 port TCP 74 port access requirements 11 port IP alias 74 port number TCP 12 ports configuring 7 physical 63 statistics 81 status 80 virtual 77 ppp 67 ppp no auth 67 pre installation requirements 3 profiles security 60 serial port settings and security 60 protocol connection 12 19 modem connection 67 terminal server TS profile connection 66 R raccess 58 raccess authorization 58 Radius 71 Radius local 71 Radiusdownlocal 71 RAM 90 raw socket 67 raw console 66 reboot 93 reboot the Cyclades CS 93 regular user 53 regular user forms 10 requirements port access 11 requirements pre installation 3 root 1 6 routes static 49 RS232 signal 81 RX bytes 82 S safety precautions 99 Security Certificates 61 security profiles 60 security profiles and serial port settings 60 serial port settings and security profiles 60 serial ports alarm notification 86 serial ports connect to 11 sessions active ports 56 set the time and date 87 settings host 34 simple network management protocol SNMP 37 slave 77 SLIP 67 SNMP 37 SNMP trap notification 85 SNMP trap notifications 85 SNMP simple network management protocol 37 SNMPvl 85 SNMPv2 85 SSH console 66 SSHv1 66 SSHv2 67 SSL certificate 61 static
50. ay in effect unless the cancel changes bution is clicked Changes can be restored at any time until the apply changes button is clicked cancel changes Cancels all unsaved changes by restoring the configuration files from the backup created the last time changes were applied apply changes Applies and saves all unsaved changes If try changes has not been previously clicked updates the appropriate configuration files Overwrites the backed up copy of the configuration files 14 Cyclades CS Console Server Installation Administration and User Guide Table 3 1 Description of Administrator Web Manager Buttons Continued Button name Use and Results reload page Reloads the page Help Displays the online help next Only appears in Wizard mode Goes to the next form unsaved changes The unsaved changes button appears on the lower right hand corner of the Web Manager and a graphical LED blinks red whenever the current user has made any changes and has not yet saved the changes no unsaved changes The no unsaved changes button appears and a graphical LED appears in green when no changes have been made that need to be saved The following table illustrates the information that displays in the upper right corner of all Web Manager forms Table 3 2 Administrator Logout Button and Other Information in the Upper Right Corner Form Area Button and Information Purpose logout Click this button to log
51. ber Local IP 192 168 48 12 First Local TCP Port 7017 Number Remote IP 192 168 48 11 First Remote TCP Port 7001 Number Protocol 192 168 48 1 A y Figure 8 5 Ports Virtual Ports New Modify Port Dialog Box The following table describes the fields available in the Virtual Ports New Modify Port dialog box Once you have configured the slave console server and defined the cluster parameters the slave serial ports and the connected devices are accessible from the master console server under Applications Connect Serial pull down menu To cluster console servers or modify cluster configuration Use this procedure if you wish to cluster console servers and add or modify ports NOTE The console servers should be connected individually to an IP network The units should not be cascaded 1 Goto Ports Virtual Ports in Expert mode and click the Add button to add new slave ports or click the Edit button to edit a slave port The New Modify Port dialog box appears Chapter 8 Ports Menu and Forms 79 O https 192 168 48 11 New Modify Port Mozilla Fire Number of ports First Local Port Number Local IP 192 168 48 12 First Local TCP Port 7017 Number Remote IP 192 168 48 11 First Remote TCP Port 7001 Number Protocol 192 168 48 1 S y Figure 8 6 Ports Virtual Ports New Modify Port Dialog Box 2 From the pull down menu select the number of ports that y
52. can change the URL in the URL Prefix field to point the Help button to the new local server location for the files To configure the local online help path 1 Extract the files using the appropriate unzip utility for your O S and put them into the desired directory under the web server s root directory This must be a publicly accessible web server For example the following command line would work on a server running UNIX cd WEB_SERVER_ROOT ccs help gunzip ccs online hlp zip By default the online help files are expanded into a console server directory under the directory where the zip file is located 2 Log into the Web Manager as admin and go to Administration Online Help The Help configuration screen displays see Figure 9 4 3 Inthe URL prefix field enter trhe URL of the help files on the server where you installed them Chapter 9 Administration Menu and Forms 95 The following example would work for a web server named remoteadmin http www remoteadmin com online help The software adds the name of the ccs directory to the URL prefix and launches the online help Click Save Click apply changes 96 Cyclades CS Console Server Installation Administration and User Guide 97 APPENDICES Appendix A Technical Specifications Table A 1 Technical Specifications for the Cyclades CS console server Hardware CPU MPC855T PowerPC Dual CPU Memory 128MB DIMM SDRAM 16MB CompactFlash Interf
53. change the selected option in the Watchdog Timer field 4 Select Flash or Network from the Unit boot from menu 5 Select TFTP BootP or Both from the Boot Type menu if you have selected Network from the Unit boot from in step 4 6 Accept or change the filename of the boot program in the Boot File Name field 7 Tf specifying network boot perform the following steps a Enter the IP address of the TFTP or BootP server in the Server s IP Address field Select a console speed from the Console Speed pull down menu to match the speed of the terminal you are using on the console port of the console server c Select Skip or Full from the Flash Test pull down menu to bypass or run a test on the Flash memory at boot time d Select Skip Quick or Full from the RAM Test pull down menu to bypass or run a test on the RAM at boot time Choose an Ethernet speed from the Fast Ethernet pull down menu Specify the maximum number of packets that the CPU handles before an interrupt in the Fast Ethernet Max Interrupt Events field 8 Click apply changes Backup Configuration Selecting Administration Backup Config in Expert mode displays the Backup Configuration form Chapter 9 Administration Menu and Forms 91 The Type pull down menu options on this form are FTP and Storage Device If Storage Device is selected the storage device can be a CompactFlash drive NOTE Use an FTP server to save and retrieve your console server configuration
54. changes To configure a TACACS authentication server Perform the following procedure to configure a TACACS authentication server when the console server or any of its ports are configured to use TACACS authentication method or any of its variations Local TACACS TACACS Local or TACACS DownLocal 1 Goto Security Authentication TACACS in Expert mode The TACACS form displays 2 Fill in the form according to your local TACACS server configuration 3 To apply Authorization in addition to authentication to the box and ports select the Enable Raccess Authorization checkbox By default Raccess Authorization is disabled and no additional authorization is implemented When Raccess Authorization is enabled the authorization level of users trying to access the console server or its ports using TACACS authentication is checked Users with 6 Chapter 7 Security Menu and Forms 59 administrator privileges have administrative access and users with regular user privileges have regular user access To specify a time out period in seconds for each authentication attempt type a number in the Timeout field If the authentication server does not respond to the client s login attempt before the specified time period the login attempt is cancelled The user may retry depending on the number specified in the Retries field on this form To specify a number of times the user can request authentication verification from the server bef
55. connect to a port or start a shared session the user must have permission to access the port If you allow multiple sessions through the Allow Multiple Sessions pull down menu the Privilege Users field should be populated with the user names who have access rights Table 8 7 Available Options from the Allow Multiple Sessions Pull down Menu Option Description No Do not allow multiple sessions Only two users can connect to the same port simultaneously One shared session and one normal session are allowed Yes show menu More than two simultaneous users can connect to the same serial port A sniffer menu is presented to the user and they can choose to Open a sniff session Open a read write session Cancel a connection Send a message to other users connected to the same serial port Read Write do not Read write sessions are opened and the sniffer menu won t be presented show menu ReadOnly do not show menu Read only sessions are opened and the sniffer menu won t be presented 74 Cyclades CS Console Server Installation Administration and User Guide To configure multiple sessions and port sniffing for one or more serial ports Go to Ports Physical Ports in Expert mode and select a port or ports to modify Click the Multi User tab 3 To allow or to prevent multiple sessions select an option from the Allow Multiple Sessions pull down menu The options are No Yes show menu Read Write do not
56. cted devices without the ability to change the configuration of the console server By default any user can access any port as long as a valid user ID and password are used Step 1 Network Settings Step 2 Port Profile Step 3 Access Add users who will be able to access all ports Step 4 Data Buffering By default all users can access all ports Step 5 System Log Users root admin tomr Change Password Delete Figure 4 4 Wizard Step 3 Access The Access form lists the currently defined users and features Add Change Password and Delete buttons In the Users list by default there is a root account that cannot be deleted The root has access privileges to all the Web Manager s functionality as well as access to all the serial ports on the console server Click the Add button The following form is displayed AB http 11172 26 31 4 Add User Microsoft Internet Explorer EOR ox User Name Password Repeat Password Group Regular User Y Shea Comments Figure 4 5 Wizard Step 3 Access Add User Dialog Box 22 Cyclades CS Console Server Installation Administration and User Guide If you click the Change Password button the following dialog box appears 9 https 192 168 48 11 Change Us ioj xj oK Cancel New Password Repeat C 777 New Password Done 192 168 48 1 2 Figure 4 6 Wizard Step 3 Change Password Dialog Box To ad
57. d a user 1 Select Step 3 Access The Access form displays Click Add The Add User dialog box appears Enter the user name and password in the User Name and Password fields and enter the password again in the Repeat Password field Select from the Group menu options a To create a regular user account without administrator privileges select Regular User Default from the Group pull down menu b To create an account with administrator privileges select Admin from the Group pull down menus NOTE To define a new group switch to Expert mode and select Security Users and Groups 3 6 de 8 Enter the default shell in the Shell field optional Enter comments to identify the user s role or configuration in the Comments field optional Click OK Click the apply changes button To delete a user 1 2 3 4 Select Step 3 Access The Access form displays Select the user name to delete Click Delete Click apply changes Chapter 4 Configuring the Cyclades CS Console Server in Wizard Mode 23 To change a password open to anyone who knows the default password and the console server s IP address For security reasons change the root password from the default avocent as soon as possible Select Step 3 Access The Access form displays Select the name of the user whose password you wish to change Click Change Password The Change User Password dialog box displays Enter the new password in both
58. dio lectriques d passant les limites applicables aux appareils num riques de la classe A prescrites dans le r glement sur le brouillage radio lectrique edict par le Ministere des Communications du Canada Cyclades CS Console Server Installation Administration and User Guide Avocent the Avocent logo and The Power of Being There and Cyclades are registered trademarks of Avocent Corporation or its affiliates All other marks are the property of their respective owners O 2007 Avocent Corporation All rights reserved 590 752 501A ODE Ee Instructions This symbol is intended to alert the user to the presence of important operating and maintenance servicing instructions in the literature accompanying the appliance Dangerous Voltage This symbol is intended to alert the user to the presence of uninsulated dangerous voltage within the product s enclosure that may be of sufficient magnitude to constitute a risk of electric shock to persons Power On This symbol indicates the principal on off switch is in the on position Power Off This symbol indicates the principal on off switch is in the off position Protective Grounding Terminal This symbol indicates a terminal which must be connected to earth ground prior to making any other connections to the equipment TABLE OF CONTENTS OF CONTENTS Chapter 1s Installation 0 ica ee 1 Overview AA eii 1 Product Models and Configurations ooonococnonnconnnnnn
59. disable selected ports click the Disable Selected Ports button NOTE By default all Serial Ports are disabled from the factory The Administrator can activate and assign specific users to individual physical ports 4 Click apply changes General form Under Ports Physical Ports if you select one or more ports from the ports list and click the Modify button the General form appears as shown in the following form Chapter 8 Ports Menu and Forms 65 Multi User Other General Access Connection Protocol Console Telnet Baud Rate Kbps 9600 v Flow Control None v Data Parity None Y Stop Bits DCD State Disregard v ROTURA Done Figure 8 2 Ports Physical Ports General Form The General form allows you to define general port settings and select the connection type to a serial port SSH Telnet or both The number of the selected port or ports displays next to the Done button at the bottom of the form in the format Selected ports N where N stands for the port number Connection profiles The following sections describe the available connection protocols for each connection to the serial ports Console Access Server CAS profile connection protocols When a serial port is connected to the console port on a device a CAS profile must be defined for the serial port Selecting the appropriate connection protocol on the Ports Physical Ports General is part of defining the CAS
60. e to upgrade the ACS s 92 flash 89 flow control 19 forms common features of administrator 13 mapping Expert mode 28 regular user 10 fragments 46 frame 82 FTP 91 FTP server using 91 G Group Authorization on LDAP 60 group adding 54 groups users 53 GSM 1 H host settings 34 host table 49 host to connect 75 IDE timeout 74 input interface 46 installation procedures basic 3 inverted checkbox 44 IP alias port 74 IPaddress default 8 ISDN 1 J JCPU 56 K keep alive interval TCP 74 L LDAP 70 LDAP local 70 LDAPdownlocal 71 local terminal 67 local radius 71 local TACACS 71 logging into the web manager 14 login banner 75 logins configuring authentication for Cyclades CS 57 management information base MIB 37 85 mapping Expert mode menus and forms 28 master 77 menus and forms mapping Expert mode 28 methods of accessing the web manager other 8 MIB 37 85 Index 107 management information base 37 85 mode Expert 16 wizard 15 Modem 67 modem connection protocol 67 modes overview of administrative 15 mounting the Cyclades CS console server 3 multi user 73 N notification alarm 86 email 84 pager 85 serial ports alarm 86 SNMP trap 85 notifications 84 NTP 87 server using 87 O OID 39 online help 94 OpenSSH 61 OpenSSL 61 options stty 74 other methods of accessing the web manager 8 output interface 46 overrun 82 overview of administr
61. e Security option from the menu panel The Security form appears Enter your current password in the Current Password field Enter the new password in the New Password and the Repeat New Password fields Click OK Log out and log in using your new password to verify your password change rum 13 Web Manager for Administrators This chapter is for system administrators who use the Web Manager to configure the Cyclades CS console server and its users For information on how to configure the console server using vi or Command Line Interface CLI please consult the Cyclades CS console server Command Reference Guide The console server s Web Manager for Administrators describes two modes of operation Wizard and Expert Common Features of Administrator Forms The following figure and table shows and describes the control buttons displayed at the bottom of the form when logged into the Web Manager as administrator 0 9 7 gt 2 no unsaved changes back try changes cancel changes apply changes Help next Figure 3 1 Administrator Web Manager Buttons Table 3 1 Description of Administrator Web Manager Buttons Button name Use and Results back Only appears in Wizard mode Returns the previous form try changes For testing the changes entered on the current form without saving them by updating the associated configuration files Changes are preserved if you log in and log out or restart the system Changes st
62. e or inactive If the Watchdog Timer is active the console server reboots if the software crashes Unit boot from Specify whether to boot the console server from Flash or from the network Boot Type Select to boot from a TFTP server a BootP server or both Boot File Name Filename of the boot program Server s IP Address The IP address of the TFTP or the BootP server Console Speed An alternative console speed from 4800 to 115200 9600 is the default Flash Test Select to test boot from the Flash card You can skip this test or do a full test 90 Cyclades CS Console Server Installation Administration and User Guide Table 9 2 Boot Configuration Form Fields Continued Field Name Definition RAM Test Select to test boot from RAM You can skip this test do a quick test or a full test Fast Ethernet The speed of the Ethernet connection Select the appropriate Ethernet setting if you need to change the Auto Negotiation default value e 100BaseT Half Duplex e 100BaseT Full Duplex e 10BaseT Half Duplex e 10BaseT Full Duplex Fast Ethernet Max The maximum number of packets that the CPU handles before an interrupt 0 is Interrupt Events the default To configure the console server boot 1 Goto Administration Boot Configuration in Expert mode The Boot Configuration form displays 2 Enter the IP address of the console server in the IP Address assigned to Ethernet field 3 Accept or
63. ed for the specified IP address and if you add a value in the Destination IP field outgoing packets are filtered for the specified IP address A value in the Mask field means incoming or outgoing packets are filtered for IP addresses from the network in the specified subnet Protocol You can select a protocol for filtering Fields that appear for each protocol are explained in the following sections Numeric protocol fields If Numeric is selected as the protocol when specifying a rule a text field appears to the right of the menu for the desired number TCP protocol fields If TCP is selected as the protocol when specifying a rule the additional fields shown in the following figure appear on the bottom of the form TCP Options Section Source Port to Inverted Destination Port to Inverted TCP Flags SYN any 7 ack any y FIN any 7 rst any y URG any 7 PSH any y Inverted Figure 6 13 Firewall Configuration TCP Protocol Fields and Menu Options Chapter 6 Network Menu and Forms 45 Table 6 3 Expert TCP Options Fields E E a Field Menu Option Definition Source Port A port number for filtering in the Source Port or Destination Port field A range of OR IP address can be specified by adding a second port number in the to field TCP Destination Port packets are filtered for for the range of specified IP addresses AND to TCP Flags The TCP flags cause packets to be filtered for the specified flag
64. ed to an external modem SLIP Starts a SLIP session Assumes the specified console server serial port is connected to an external modem CSLIP Starts a CSLIP session Assumes the specified console server serial port is connected to an external modem To configure a serial port connection protocol for a console connection This procedure assumes that the selected serial port is physically connected to a console port on a device 1 Go to Ports Physical Ports in Expert mode select a port or ports to modify click the appropriate Modify Ports button The General form appears 2 Click the General tab The General form appears with the number s of the selected port s next to the Done button at the bottom of the form All active tabs are yellow 3 To change the connection protocol select one of the options from the Connection Protocol pull down menu Console Telnet Console SSH Console Telnet amp SSH or Console Raw The default is Console Telnet 68 Cyclades CS Console Server Installation Administration and User Guide If you wish to change any of the other current settings see To configure serial port settings to match the connected devices on page 69 To further configure the serial port s connection protocol e For user access and authentication methods see Access on page 70 e For TCP Port number and other port configuration options see Other on page 74 To configure a serial port connection protocol
65. enden CAUTION To help protect the Cyclades CS console server from electrical power fluctuations use a surge suppressor line conditioner or uninterruptible power supply Be sure that nothing rests on the cables of the console server and that they are not located where they can be stepped on or tripped over Do not spill food or liquids on console server Vorsicht Um den Cyclades CS console server vor elektrischen Netzschwankungen zu bewahren bitte Uberspannungsfilter Entst rfilter oder eine UVS einsetzen Stellen Sie bitte sicher dass sich keine Gegenst nde auf den Kabeln des Cyclades CS console server befinden und dass die Kabel tritt und stolpersicher gef hrt sind Bitte keine Lebensmittel oder Fl ssigkeiten Uber den Cyclades CS console server sch tten CAUTION Do not push any objects through the openings of the Cyclades CS console server Doing so can cause fire or electric shock by shorting out interior components Vorsicht Zur Vermeidung von Brandgefahr oder elektrischen Schlagen bitte keine Gegenstande durch die Offnungen des Cyclades CS console server stecken CAUTION Keep your Cyclades CS console server server away from heat sources and do not block host s cooling vents Vorsicht Der Cyclades CS console server muss vor Hitzequellen gesch tzt werden und die L fterausg nge d rfen nicht blockiert sein Working inside the console server Do not attempt to service the console server yourself except when following instruc
66. ep4 Data Buffering Local The following figure shows the form when Enable Data Buffering is checked and the Destination is set to Remote Step 2 Port Profile Step 3 Access Set up data buffering to the output from the consoles in a Step 4 Data Buffering console log file The previous port specific parameters Step 5 System Log will be discarded Enable Data Buffering Destination Remote Y NFS File Path Record the timestamp in the data buffering file Show Menu Show all options Figure 4 8 Wizard Step 4 Data Buffering Remote The difference between Local and Remote data buffering is as follows e For local files set a file size greater than zero Make sure the file size does not exceed the space available on the console server s Flash memory e With the remote server data is stored in files sequentially The NFS server must be configured with the mount point shared exported In linear mode data is written into a continuous sequence of files and the file spaces is not reused The administrator needs to allow enough space for the expected amount of data and take measures such as moving unneeded data files off line to ensure data does not outgrow the available space Chapter 4 Configuring the Cyclades CS Console Server in Wizard Mode 25 The following table provides description for each field whether local or remote destination 1s selected Table 4 2 Wizard Data Buffer
67. er screen in Expert mode The main difference in the interface when you switch between the two modes is the addition of a top menu bar in the Expert mode to support more detailed and customized configuration In Expert mode the top menu bar contains the primary commands and the left menu panel contains the secondary commands Based on what you select from the top menu bar the left menu selections will change accordingly Network Syslog SNMP DHCP Firewall Configuration Host Tables Static Routes Host Name Console Banner ces cyclades cs Ethernet Port Primary IP Network Mask 172 26 31 4 255 255 252 0 Secondary IP Secondary Network Mask MTU 1500 DNS Service Primary DNS Server Secondary DNS Server 172 26 29 4 Figure 3 3 Example of Web Manager Form in Expert Mode 17 Configuring the Cyclades CS Console Server in Wizard Mode After Logging In When you first log into the Cyclades CS console server the Web Manager will open the Ports Status form in Expert mode To begin using Web Manager Wizard to configure the console server click the Wizard button at the lower left corner of the window Step 1 Network Settings Selecting Step 1 Network Settings displays a form for reconfiguring existing network settings During initial setup of the console server the basic network settings required to enable logins were configured through the Web Manager Skip this step if the dis
68. erlastung Bitte beachten Sie beim elektrischen Anschluss der Ger te dass diese zum Schutz vor Uberlastung mit entsprechenden Schutzvorkehrungen ausgestattet sein k nnen Bitte sorgen Sie gegebenenfalls f r Klarheit durch entsprechende Beschriftung Reliable earthing Reliable earthing of rack mounted equipment should be maintained Particular attention should be given to supply connections other than direct connections to the branch circuit such as power strips or extension cords Zuverl ssige Erdung Eine ausreichende Erdung der im Rack montierten Ger te muss sichergestellt sein Insbesondere sollte indirekten Verbindungen zur Stromversorgung ber Powerleisten oder Verl ngerungen besondere Aufmerksamkeit gewidmet werden Safety precautions for operating the console server Please read all the following safety guidelines to protect yourself and your Cyclades CS console server Sicherheitsvorkehrungen beim Betrieb des Cyclades CS console server Bitte lesen Sie alle folgenden Sicherheitsrichtlinien um sich und Ihren Cyclades CS console server vor Sch den zu bewahren WARNING Do not operate your Cyclades CS console server with the cover removed Vorsicht Bitte betreiben Sie den Cyclades CS console server nicht mit ge ffnetem Geh use CAUTION To avoid shorting out your Cyclades CS console server when disconnecting the network cable first unplug the cable from the Host Server unplug external power if applicable from the
69. ers list by entering its IP address in the New Syslog Server field and clicking the Add button 5 Configure the message filtering as per your requirements 6 Click apply changes SNMP Simple Network Management Protocol SNMP is a set of protocols for managing complex networks SNMP works by sending messages called protocol data units PDUs to different parts of a network SNMP compliant devices agents store data about themselves in Management Information Bases MIBs and return this data to the SNMP requesters The console server SNMP agent supports SNMPv1 v2 and v3 To use SNMP v1 or v2 you need to specify a community name a source IP address or a range of IP addresses an object ID OID and permission read write or read only SNMP v3 requires user name password OID and permission Selecting Network SNMP displays the form shown in the following figure 38 Cyclades CS Console Server Installation Administration and User Guide To activate the snmpd services you should go to the Security gt Services section System Information Settings SysContact Avocent_Corporation SysLocation Cyclades cs Access Control SNMPv1 SNMPv2 Configuration Community Source 01D Permissi Add Delete Edit SNMPv3 Configuration User name Permission OID Ada Delete Edit Figure 6 4 Expert Network SNMP You can use this form to enable notifications about significant eve
70. field NOTE The SNMPv3 password must be fewer than 31 characters 5 6 7 For any version of SNMP perform the following a Enter the unique object identifier for the object in the OID field b Choose Read Only or Read Write from the Permission field Click OK Click apply changes NOTE In addition to SNMP configuration described in this section you need to make sure SNMP service is enabled and configured for one or more serial ports in order to send SNMP traps Chapter 6 Network Menu and Forms 41 Firewall Configuration Firewall configuration also known as IP filtering refers to the selective blocking of the passage of IP packets between global and local networks The filtering is based on rules that describe the characteristics of the packet For example the contents of the IP header the input output interface or the protocol This feature is used mainly in firewall applications to filter the packets that could potentially harm the network system or generate unnecessary traffic in the network Selecting Network Firewall Configuration displays the form shown in the following figure ACCEPT FORWARD ACCEPT D 0 ACCEPT Ei petete ada Edit Rules Figure 6 7 Expert Network Firewall Configuration You can use the Firewall Configuration form to enable a firewall on the console server You can define rules to allow or disallow packets and configure filtering of packets that are
71. fields and click OK A ASA Click apply changes Step 4 Data Buffering Selecting Step 4 Data Buffering displays a form to allow logging the console data to a data buffer file either locally in the console server or remotely to an external storage source such as an NFS server or Syslog server Once Enable Data Buffering is selected the form displays a number of fields The displayed fields depends on whether selected Destination is Local or Remote The values set in this form apply to all serial ports Data buffering allows a site to save a record of all communication during a serial port connection session You can set up data buffer files to be stored either in local files on the console server s Flash memory or on the hard disk of an external server such as an NES or Syslog server 24 Cyclades CS Console Server Installation Administration and User Guide The following figure shows the form when Enable Data Buffering is checked and the Destination is set to Local Step 1 Network Settings Step 2 Port Profile Step 3 Access Set up data buffering to the output from the consoles in a Step 4 Data Buffering console log file The previous port specific parameters Step 5 System Log will be discarded Enable Data Buffering Destination Local Mode Circular Y File Size Bytes 0 Record the timestamp in the data buffering file Show Menu Show all options Figure 4 7 Wizard St
72. for a terminal server This procedure assumes that the selected serial port is physically connected to a terminal For more information on Terminal Server connection protocols see Terminal Server TS profile connection protocols on page 66 1 Goto Ports Physical Ports in Expert mode select a port or ports to modify click the appropriate Modify Ports button The General form appears 2 Click the General tab The General form appears with the number s of the selected port s next to the Done button at the bottom of the form and the active tabs in yellow 3 To change the connection protocol select a Terminal Server connection from the Connection Protocol pull down menu Telnet SSHv1 SSHv2 Local Terminal or Raw Socket 4 To configure a terminal to automatically connect to the console server perform the following steps a Select Local Terminal from the Connection Protocol pull down menu b Define a terminal profile menu The Terminal Profile Menu form is found under the Expert Applications Terminal Profile Menu 5 To configure a terminal to automatically connect to a server perform the following steps a Select Telnet SSHv1 SSHv2 or Raw Socket from the Connection Protocol pull down menu b Specify authorized users groups and the authentication method in the Access form c Specify the TCP Port number the IP address of the remote host and the terminal type using the Other form The Other form is located at Ports
73. gram start a connection session select an available COM port and enter the following console parameters e Bits per second 9600 bps e Data bits 8 e Parity None e Stop bit 1 Flow control None Chapter 1 Installation 5 Console server serial port pinout information Table 1 2 Cyclades CS Console Server Serial Port Pinout a nn ee ee ee Pin No Signal Name Input Output 1 RTS OUT 2 DTR OUT 3 TXD OUT 4 GND 5 CTS IN 6 RxD IN 7 DCD IN 8 DSR IN Turning on the console server and the connected devices Perform the following procedures in the order shown to ensure proper operation of connected devices To turn on the console server 1 Make sure the console server s power switch is off 2 Plug in the power cable 3 Turn the console server s power switch es on To turn on connected devices Turn on the power switches of the connected devices only after you have completed the physical connection to the console server Performing basic network configuration using the wiz command The following procedure assumes that a hardware connection is made between the console server s Console port and the COM port of a server 6 Cyclades CS Console Server Installation Administration and User Guide To log into the console server through the console From your terminal emulation application log into the console port as root console server login root Password avocent WA
74. ication server is set up for that method The following is a summary of the things you need to know about setting up authentication servers e The Cyclades CS console server must be on the same subnet as the authentication server Each authentication server must be configured and operational e The console server administrator should obtain the necessary information from each authentication server administrator in order set up and identify those servers on the Cyclades CS console server For example if LDAP authentication were to be used for logins to the console server for logins to serial ports then the console server needs to have network access to an LDAP authentication server The administrator needs to perform setup on the console server for both types of authentication servers The administrator completes the appropriate form through the Web Manager Expert Security Authentication to setup an authentication server for every authentication method to be used by the console server and its ports To configure a RADIUS authentication server Perform the following procedure to configure a RADIUS authentication server when the console server or any of its ports are configured to use RADIUS authentication method or any of its variations Local RADIUS RADIUS Local or RADIUS DownLocal 1 Goto Security Authentication RADIUS in Expert mode 2 Fill in the form according to your local RADIUS server configuration 3 Click apply
75. ing Field Names and Definitions Field name Definition Destination Where the buffer files should be stored Local for example Flash or Remote on a server Mode For Local Destination Select Linear for sequential files or Circular for non sequential format Local data buffering stores data in circular or linear mode In circular mode data is written into the specified local data file until the upper limit on the file size is reached then the data is overwritten starting from the top of the file as additional data comes in Circular buffering requires the administrator to set up processes to examine the data during the timeframe before the data is overwritten by new data File Size Bytes For Local Destination Sets the value for this field to be greater than zero Record the timestamp If enabled the system inserts a timestamp in the buffer NFS File Path For Remote Destination Includes the path where the data buffer file should be stored Show Menu Defines the options you wish to show in the menu of the buffer file To configure data buffering Select Step 4 Data Buffering Click the Enable Data Buffering checkbox The Destination pull down menu appears 3 Select a location for the data files from the Destination pull down menu either Local or Remote Additional pull down menus and fields appear depending on which destination is selected 4 When the destination is local perform the following steps
76. l Portszuuseesuseiesehnsngge arena oa an 77 Figure 8 5 Ports Virtual Ports New Modify Port Dialog Box uerseessersersneennesnennnennerennnen 78 Figure 8 6 Ports Virtual Ports New Modify Port Dialog Box urersernersnernnesnennnennennennnenn 79 Figure 8 7 Ports Virtual Ports New Modify Port Names Dialog box nossos 80 Figure 8 8 Ports Ports Status REAd OMLY cccssccsssecesceessceesseceseeessecentecceeeneceneeseceaceceeeeeeeeenees 80 Figure 8 9 Ports Port Statistics Read Only onnoconicnincnncnnnnnocnnanconnnanonncnnnonnonnnonnc ono cononnncanannnono amp 1 Figure 9 1 Expert Administration Time Date 1 1cccsccsccescessceceseeescesseeseessecsecsensecnseeeenseeaees 87 Figure 9 2 Expert Administration Time and Date NTP Enable n 88 Figure 9 3 Expert Administration Time Date Edit Custom rserseesserseesnersnesnesnnennennennennnenn 88 Figure 9 4 Expert Administration Online Help coninicnnninonncnnonnocnnancnncnnnonnc rn non nc ono cnnonnncnnannnon 93 ix LisTOF TABLES OF TABLES Table 1 1 Cyclades CS Console Server Models ooononcciconocionnonnconacnnconnonnoonncononnncononan cnn nnan cnn non ncnn conos 1 Table 1 2 Cyclades CS Console Server Serial Port PinQUt oionioninonnnnnnonnconnnnnconanancnnnnan cnn conc cnn conos 5 Table 2 1 Common Form Information 22222422222B020nennensennennennnensnnnnensnennonsnesnnnnnesnnnnnernnennnnn 10 Table 2 2
77. l to be used to connect to devices Console ssh that are connected to serial ports Console Telnetssh Console ssh encrypts data and Console Raw authentication information Console Telnetssh allows users to connect using either protocol Console Raw is for unnegotiated plain socket connections Use Expert mode if you wish to specify any of several other connection protocols that are listed under Ports Physical Ports Modify General Flow Control None Default Must match the flow control method of the devices Hardware connected to all serial ports Software Parity None Default Odd Even Must match the parity used by the devices connected to all serial ports 20 Cyclades CS Console Server Installation Administration and User Guide Table 4 1 Port Profile Setup Options Continued Parameter Options Description Baud Rate Kbps 9600 Default Must match the baud rates of the devices connected Options range from 2400 921600 Kbps to all serial ports Data Size 8 Default Must match the number of data bits used by the Options range from 5 8 devices connected to all ports Stop Bits 1 Default Must match the number of stop bits used by the Options are either 1 or 2 devices connected to all ports Authentication Required Check for enabled Unchecked for disabled Default If the Authentication Required is enabled user authentication is enforced using the local pas
78. lades CS 90 bootp 89 break 82 break interval 75 break sequence 75 buffering data 71 bytes RX 82 bytes TX 81 Cc Canadian doc notice 102 CAS profile console access server 65 CDMA 1 Certificate for HTTP Security 61 command wiz 5 common features of administrator forms 13 community 39 configuration backup 90 boot 89 firewall 41 configuring authentication for Cyclades CS logins 57 authentication servers 58 ports 7 connect 10 29 connect to Cyclades CS 11 106 Cyclades CS Console Server Installation Administration and User Guide connect to serial ports 11 connect host to 75 connection protocol 12 19 protocol modem 67 protocols terminal server TS profile 66 console access server CAS profile 65 raw 66 SSH 66 Telnet 66 TelnetSSH 66 CPU usage 56 CSLIP 67 Cyclades CS boot to configure 90 connect to 11 firmware to upgrade 92 logins configuring authentication for 57 to reboot 93 Cyclades CS console server mounting 3 working inside the 100 working inside the console server 100 D data buffering 71 Destination 25 File Size 25 Mode 25 NFS File Path 25 time stamp 25 data size 20 data buffering events 84 daylight savings time 89 default IPaddress 8 E email notification 84 email notifications 84 Ethernet 90 events data buffering 84 Expert mode 16 menus and forms mapping 28 F fallback mechanism 70 FCC compliance 101 FCC warning statement 101 firewall configuration 41 firmwar
79. layed If this message appears click OK to continue Add button If the Add button is pressed the Add Chain dialog box shown in the following figure appears https 192 168 48 11 Add Chain 0 x OK Cancel Name 192 168 48 11 y Figure 6 9 Expert Firewall Configuration Add Chain Dialog Box Adding a chain only creates a named entry for the chain Rules must be configured for the chain after it is added to the list of chains Chapter 6 Network Menu and Forms 43 Edit Rules button If the Edit Rules button is pressed a form appears with a list of headings like the one shown in the following figure The example shows the OUTPUT chain selected for editing Edit Rules for Chain OUTPUT Packets Bytes Target Source Destination Protocol Figure 6 10 Firewall Configuration Edit Rules for chain_name Form The buttons shown in the following figure appear at the bottom of the form Figure 6 11 Firewall Configuration Edit Rules for chain_name Buttons e Pressing the Add button opens the Add Rule dialog box e Selecting a rule and pressing the Edit button opens the Edit Rule dialog box e Selecting a rule and pressing the Up or Down button moves the rule up and down the list Options on the Add Rule and Edit Rule dialog boxes The Add Rule and Edit Rule dialog boxes have the fields and options shown in the following figure Ohttps 192 168 48
80. menu 4 Help for online help Connect When you select the Connect option the form displayed will allow you to connect to the console server or to serial ports Permission to access a port is granted by the administrator when your user account is created Chapter 2 Web Manager for Regular Users 11 Connect to the console server When you click the Connect to CS400X radio button on the Connect form a Java applet viewer appears running an SSH session on the console server The IP address of the console server is followed by the session type Table 2 2 Java Applet Buttons for Connecting to the Console Server Button Purpose SendBreak To send a break to the terminal Disconnect To disconnect from the Java applet Select the left icon to reconnect to the server or device or select the right icon to end x the session and disconnect from the Java applet Connect to serial ports The list of serial ports includes the port names or administrator defined aliases only for ports you have permission to access Port access requirements When you connect to a serial port to access a server or another device access rights to the specific serial port on the console server is required NOTE If an authentication server is set up in your network an authentication method and the related parameters should be set up to allow access to the connected devices When you select a port from the Serial pull down list and click the
81. n Administration and User Guide 33 Network Menu and Forms This chapter describes the Network menu and related forms The following table provides a description of the left menu panel Table 6 1 Expert Network Menu Descriptions Menu Selection Use This Menu to Host Settings on page 34 Configure the network parameters such as Host Name IP addresses DNS services and Gateway Syslog on page 36 Configure how the console server will handle its syslog messages The console server generates syslog messages related to users connecting to ports login failures and other information that can be used for audit and control purposes SNMP on page 37 Configure SNMP with community names OID and user names This section and the dialog boxes guide you to configure the required parameters Firewall Configuration on page 41 Configure static IP tables and how packets should be filtered Host Table on page 49 View information about the local network environment View table of hosts create edit and delete hosts Static Routes on page 49 Manually add routes Static routes are a very quick and effective way to route data from one subnet to different subnets 34 Cyclades CS Console Server Installation Administration and User Guide Host Settings When you select Network Host Settings the following form appears MI DHCP Host Name Console Banner ccs Cyclades cS Figure 6 1 Expert Network Host Setti
82. network settings manually 3 Enter the required network information Select apply changes to save configuration to Flash 5 Select the Next button or proceed to Step 2 Port Profile Step 2 Port Profile Selecting Step 2 Port Profile displays a form for configuring the Console Access Profile CAS The protocol used to access the serial ports can be configured in this form Chapter 4 Configuring the Cyclades CS Console Server in Wizard Mode 19 Step 1 Network Settings Step 3 Access Step 4 Data Buffering Step 5 System Log Set up the CAS Console Access Server profile for the serial ports Specify the serial parameters for all ports The previous port specific parameters will be discarded Connection Protocol Flow Control Parity Enable all ports Y Console Telnet None None v Authentication Required v Baud Rate Kbps Data Size Stop Bits Figure 4 3 Wizard Step 2 Port Profile In Wizard mode the system assumes that all devices will be connected to the serial ports with the same parameter values If you need to assign different parameters to the serial ports that each server or device is connected to use the Expert mode Ports Physical Ports to assign individual port parameters Table 4 1 Port Profile Setup Options Parameter Options Description Connection Protocol Console Telnet Default Sets the protoco
83. ngs DHCP Enabled If the DHCP is not enabled other options appear on the form as shown in the following figure EY DHCP Host Name Console Banner ccs Cyclades cs Ethernet Port Primary IP Network Mask 172 26 31 4 255 255 252 0 Secondary IP Secondary Network Mask MTU 1500 DNS Service Primary DNS Server Secondary DNS Server 172 26 29 4 Domain Name corp avocent con Gateway IP 172 26 28 1 Figure 6 2 Expert Network Host Settings DHCP disabled To configure host settings Expert 1 Go to Network Host Settings The Host Settings form appears By default the DHCP is enabled To disable DHCP click the checkbox to remove the check mark Additional fields appear Chapter 6 Network Menu and Forms 35 Enter the name assigned to the IP address of the console server in the Host Name field which 1s the fully qualified domain name identifying the specific host server on the network Enter a console banner in the Console Banner field The console banner appears on the console upon logging into and exiting from a port as a way to verify or identify the particular port connection Under Ethernet Port complete or edit the following fields as necessary a b c d Enter the IP address of the console server in the Primary IP field Enter the netmask in the Network Mask field Specify the network mask of the secondary IP in the Secondary Network Mask field Specify the desired maximum transmission unit in
84. nnennerseennennensnesnennnennnnn 91 Table 9 4 Backup Configuration if Using Storage Device oooononicnincnoninnnnnnnnannnannan cnn nono nac rn nonnccn nos 91 Table A 1 Technical Specifications for the Cyclades CS console server Hardware 97 x Cyclades CS Console Server Installation Administration and User Guide Installation Overview The Cyclades CS console server is a 1U device that serves as a single access point for using and administering servers and other devices Product Models and Configurations There are four models of the Cyclades CS console server based on the number of serial ports Table 1 1 Cyclades CS Console Server Models Product Model Name Number of Serial Ports Cyclades CS4001 1 Cyclades CS4004 4 Cyclades CS4008 8 Cyclades CS4016 16 Accessing the Cyclades CS Console Server and Connected Devices You can access the console server and the connected servers or devices locally or remotely using any of the following methods e Using the Web Manager through LAN WAN IP networks e Using a modem ISDN GSM or CDMA e Using the Web Manager you can login and launch a console session such as Telnet or SSH to connect to the console of devices that are connected to the console server s serial ports e By connecting a computer running a terminal emulation program a console server administrator can log into the console server and enter commands in the console server shell or use the C
85. nnensnnnnensnennennnennnn 56 Table 8 1 List of Procedures for Serial Port Configuration uusscrseesnersnennersnesnnennesnnennennennenn 64 Table 8 2 Connections Protocols When Serial Port is Connected to Device Console Port 66 Table 8 3 Available Connection Protocols When Terminal is Connected to a Serial Port 66 Table 8 4 Connection Protocols for Modems urzuusersnernersnesnnennesnnennernonnnennonnnennnnnnensnennannnesnnn 67 Table 8 5 Access Form Menu and Fields oonoonnninnnnanicinnnonaconncnncnnncononnn cnn nnnn nan nnn ran corno nn con ncn nacos 70 Table 8 6 Expert Authentication Methods and Fallback Mechanisms ooooniocinnnnnnncnnccnnnnnonncnnnnos 70 Table 8 7 Available Options from the Allow Multiple Sessions Pull down useeenenee 73 Table 8 8 Other Form Fields usnnees sense kenfeenesneripnleesn 74 Table 8 9 Expert Port Status Read Only Form uneesssssessessnessesnnennensnennonnnensnenennnensne nase sn amp 1 Table 8 10 Expert Ports Port Status Read Only FO0TM oonminninninnnnnnnnonencnncrnnonn cono cnnonn cnn cnn amp 1 Table 9 1 System Information Form esscrseesnersersnensnesnnennesnernnesnennnensonsnnnsonsnensnnsennnesnnnnesnenanen 83 Table 9 2 Boot Configuration Form Fields c cscccscccesccessecenceessceescenseeceacecuneeeneceeneeseceaceceeeeeaeeeenees 89 Table 9 3 Backup Configuration Settings if Using FTP Server unnennes
86. nnnnnnnnnnnn nono non no nac on non ne on nene ono canennncnnn rana rnnannnrns 1 Accessing the Cyclades CS Console Server and Connected Devices nunneeneenneenernnennenneen 1 LAD KLA EEPE EEEE E E 2 Prerequisites for Using the Web Manager 1 ccsccsccessesceseeseeeseeeeeessessecaecasecaecuseaeenseeseeeeeeseees 2 TYPES of USCIS iaa 3 Important Pre installation Requirements esersersnernersnesnnesnernnennessennnernennnennonnnennensnonsorsonnnssnennnennen 3 Basic Installation Procedures dd id eat nie in aan len 3 Making an Ethernet connection 2u22s222nrnnesnesnnensennnensnnnennnonsnensonsnennensnesnnnsnesnnennensennensnnnnnnnn 4 Making a direct connection to configure the network parameters euseeneeneesnesnneneenensennnensenen 4 Turning on the console server and the connected devices uunseesernersnesnnennesnnennerernnennnnnnenn 5 Performing basic network configuration using the wiz command l 5 Adding users and configuring ports using the Web Manager n se 7 Other Methods of Accessing the Web Mand ge 1 ccsccsccesseescessesseeeeeeeeseescecaecnsecaecaeeaecnseeseeeeeeneees 8 Chapter 2 Web Manager for Regular Users uuuunnsannsannnnnnnnnnnnannnnnnnnnnnnnnnunnnnnnnnannnnnnn 9 Using the Web Manager 2 2 22 a E EA O EEE EE E EERS 9 Features of Regular User Formis nonon nreti e E Oea enie E E S 10 COMME A ii 10 Connect to the console Server union into Rabe 11 Connect 10 SCTIGL por ae ias 11 C
87. nts or traps from the console server to an SNMP management application such as HP Openview Novell NMS IBM NetView or Sun Net Manager Chapter 6 Network Menu and Forms 39 The following table explains the required parameters to complete the SNMP form and the associated dialog boxes Table 6 2 Expert Fields and Menu Options for SNMP Configuration Field or Menu Option Description SysContact The email address of the console server s administrator for example ccs_admin avocent com SysLocation The physical location of the console server Community SNMP v1 and v2 only A Community defines an access environment The type of access is classified under Permission either read only or read write The most common community is public NOTE Take caution in using a public community name as it is commonly known By default the public community cannot access SNMP information on the console server Source SNMP v1 and v2 only Valid entries are default or a subnet address for example 193 168 44 0 24 OID Object Identifier Each managed object has a unique identifier Permission Read Only access to the entire MIB except for SNMP configuration objects Read Write access to the entire MIB except for SNMP configuration objects User Name and Password SNMP v3 only Clicking the Add or Edit buttons under SNMPv1 SNMPv2 Configuration displays the New Mod SNMP v1 v2 Configuration dialog box as shown in the foll
88. of the console server must be known When DHCP is enabled a leased IP address is assigned to console server The leased IP address may change every time console server reboots Therefore an additional step needs to be taken to find out the dynamically assigned IP address before the Web Manager can be accessed through the browser Following are three ways to find out the dynamically assigned IP address e Make an inquiry to the DHCP server on the subnet that the console server resides using the MAC address The MAC address is labeled at the bottom of the console server e Connect to console server remotely using Telnet or SSH and use the ifconfig command e Connect directly to the console server and use the ifconfig command through a terminal emulator application e A user account must be defined on the Web Manager e By default the administrator has an account on the Web Manager An administrator can add regular user accounts with permissions to access to the connected servers or devices using the Web Manager Chapter 1 Installation 3 Types of Users The Cyclades CS console server supports the following user account types The root user who can manage the console server and its connected devices The root user performs the initial network configuration Access privileges are full read write and management NOTE It is recommended to change the default password avocent to another password before setting up the console server for
89. ommand Line Interface CLI tool NOTE Only one user logged in as root or admin can have an active CLI or Web Manager session A second user who connects through the CLI or the Web Manager as the root or admin has a choice to abort the session or close the other user s session 2 Cyclades CS Console Server Installation Administration and User Guide Web Manager Cyclades CS console server administrators perform most tasks through the Web Manager either locally or from a remote location The Web Manager runs in a browser and provides a real time view of all the equipment that is connected to the console server The console server administrator can use the Web Manager to configure users and ports An authorized user can access connected devices through the Web Manager to troubleshoot maintain recycle power and reboot connected devices Access to the Web Manager is through one of the following ways e Through the IP network e Through a dial in connection with an optional external modem connected to one of the serial ports Prerequisites for Using the Web Manager The prerequisites described in this section must be completed before anyone can access the Web Manager If you have questions about any of the following prerequisites contact your system or network administrator e Basic network parameters must be defined on the console server so the Web Manager can be launched over the network e The IP address
90. on Methods and Fallback Mechanisms Authentication Type Definition None No authentication LDAP Authentication is performed against an LDAP database using an LDAP server LDAP Local LDAP authentication is tried first switching to Local if unsuccessful Chapter 8 Ports Menu and Forms 71 Table 8 6 Expert Authentication Methods and Fallback Mechanisms Continued RE nn OTE XA EEEPEA GEA lt A gt EEE ne ee ee un in 2 Authentication Type Definition LDAPDownLocal Local authentication is performed only when the LDAP server is down Local Authentication is performed locally For example using the etc passwd file Local Radius Authentication is performed locally first switching to Radius if unsuccessful Local TACACS Authentication is performed locally first switching to TACACS if unsuccessful Radius Authentication is performed using a Radius authentication server Radius Local Radius authentication is tried first switching to Local if unsuccessful RadiusDownLocal Local authentication is performed only when the Radius server is down TACACS Authentication is performed using a TACACS authentication server TACACS Local TACACS authentication is tried first switching to Local if unsuccessful TACACS DownLocal Local authentication is tried only when the TACACS server is down To configure a serial port login authentication method This procedure configures an authentication method that
91. onnection protocols for serial pOYES oooonininnoncnonnnonanannnnnnnnnnnc nn non conan on nc ono on near cnn an nn cnc nnnrnn nn 12 SOC 13 VENEN PRESSEN o NEE E E RE doviouatveuee S 12 Chapter 3 Web Manager for AdMinistratorS ooonmnnnnnnccnnnnnnnnnecnnacrnnanan cnn ranas 13 Common Features of Administrator Forms uusersesnersnesnnennessnesnnennesnnennernnnnnennonnnensnnsnensne nennen 13 Logging Into the Web Manager ursessersersnensnennennesnnennennonnnonsnnnsonsnennansnesnnennesnnenensennnnssnnnnensannne 14 Overview of Administrative Modes oins sea aan E E A E e REESE a EEE san 15 Wizard MOTE asses taaa as 15 Expert mode o e do o id bet 16 Chapter 4 Configuring the Cyclades CS Console Server in Wizard Mode 17 iv Cyclades CS Console Server Installation Administration and User Guide After Los MEM did de dd 17 Step 1 Network ANT A davies sdascedsveosivesdepasssasedebcobapestevapeaseacbee 17 Step 2 Port Profilen aiii paro eae dts 19 SMOEPILACCOS iii cs 21 Step 4 Data Buffering acid ii di daa td 23 Step I Sy Stem LOG aiii iaa aaa aida 26 Chapter 5 Applications unsusennannnnnnnnnenannnnnnnnnnnnannnnnnnnnnnannnnnnnnnnnnnnnennannnnnnnnnnnannnnn ann 27 Configuring the Console Server in Expert Mode uursersersnesnnennesnennonnnennnnnnensnnsennnesnnenennennenn 27 Overview of menus and forms zuuescessersersensensnennnesnesnnenernnennennonnnnnnnennonsennensnonnnnsnesnnennennennnnnnn 27
92. or about 2ms ona 9600bps line Overrun The amount of time it takes for the new data to overwrite the older unread data 83 Administration Menu and Forms System Information Selecting Administration System information in Expert mode displays a form containing information about all of the system parameters as shown in the following table Table 9 1 System Information Form Information Parameters System Information Kernel Version Current Date Up Time e Power Supply State CPU Information CPU Type e Clock Speed Revision Bogomips Memory Information MemTotal SwapFree MemFree Dirty Buffers Writeback Cached Mapped SwapCached e Slab Active e CommitLimit Inactive Committed_AS HighTotal PageTables HighFree VmallocTotal LowTotal e VmallocUsed LowFree VmallocChunk SwaptTotal Ram Disk Usage Filesystem 1k blocks Used Available Use e Mounted 84 Cyclades CS Console Server Installation Administration and User Guide To view system information Go to Administration System Information in Expert mode The System Information form displays Scrolling down the form allows you to see all of the information Notifications Selecting Administration Notifications in Expert mode displays the Notifications form allowing you to set up alarm notifications about system issues or other events of interest that occur on
93. ore sending an authentication failure message to the user enter a number in the Retries field Click apply changes The LDAP authentication server Perform the following procedure to configure an LDAP authentication server when the console server or any of its ports are configured to use the LDAP authentication method or any of its variations LDAP LDAP Local or LDAPDownLocal You can enter information in the LDAP User Name LDAP Password and LDAP Login Attribute fields but an entry is not required Work with the LDAP server administrator to ensure that the following types of accounts are set up on the LDAP server and that the administrators of the console server and the connected devices know the passwords assigned to the accounts An account for admin If LDAP authentication is specified for the console server accounts for all users who need to log into the console server to administer connected devices If LDAP authentication is specified for serial ports accounts for users who need administrative access to the connected devices To configure an LDAP authentication server 1 Go to Security Authentication LDAP in Expert mode The LDAP form displays with LDAP Server and LDAP Base fields filled in from with the current values in the etc ldap conf file 60 Cyclades CS Console Server Installation Administration and User Guide AuthType Radius Ldap Server 127 0 0 1 Ldap Base de padl de com
94. ored in the NFS File Path field NOTE If you are configuring data buffer files to be stored remotely make sure that a system administrator has already configured an NFS server and shared the mount point 7 Click the checkbox next to Record the timestamp in the data buffering file to specify whether to include a timestamp with the data Chapter 8 Ports Menu and Forms 73 8 From the Show Menu pull down menu choose Show all options No Show data buffering file only or Show without the erase options 9 If you checked Buffer to Syslog enter the IP address of the syslog server in the Syslog Server field 10 Choose an option from the Facility Number pull down menu 11 Enter the maximum size of the buffer in the Syslog Buffer Size field 12 Click the radio button next to one of the following options a Buffer Syslog at all times b Buffer only when nobody is connected to the port 13 Click Done 14 Click apply changes To configure alarm notifications to be sent based on the type of buffered data use the Notifications form Expert Administration Notifications Multi User Under Ports Physical Ports in Expert Mode after you select one or more serial ports and click the Modify Port s you can select the Multi User form from the tabbed menu The Multi User form appears The Multi User form enables you to open more than one session from the same serial port Multiple users can connect simultaneously to a serial port To
95. orm to view who is logged into each port and the processes they are running Open sessions are displayed with their identification and statistical data the related data such as CPU usage for a specific client JCPU processes and PCPU processing time The Kill Sessions and Refresh buttons either end or refresh the selected session The following table defines the active ports sessions form fields Table 7 1 Expert Active Ports Sessions Information Field Name Definition User First eight characters of the user name TTY Connection method From Where the network connection is from Login Login time in hours and minutes If login was not on the same day the date of login also appears Idle How long since last activity JCPU The amount of CPU time consumed by all active processes including currently running background jobs PCPU The amount of CPU time consumed by the current process What Name of the current process Chapter 7 Security Menu and Forms 57 To view kill or refresh active user sessions 1 Goto Security Active Ports Sessions The Active Ports Sessions form appears 2 To refresh the display click the Refresh button 3 To kill a session select the desired session and click the Kill Sessions button Authentication Selecting Security Authentication displays the form shown in the following figure which includes AuthType Radius Tacacs and Ldap tabs Users and Groups A
96. ou wish to assign as slaves Choices are 1 4 8 and 16 Enter the First Local Port Number This is the first port number on the master Enter the Local IP address This is the IP address of the master Enter the First Local TCP Port Number This is the first TCP port number on the master Enter the Remote IP address This is the IP address of the slave Enter the First Remote TCP Port Number This is the first TCP port number of the slave The default is 7001 8 Select the communication protocol between the master and the slave from the Protocol pull down menu The options are Telnet or SSH ST Oy Re To assign names to slave ports in the cluster Selecting the Port Names button on the New Modify Port dialog box displays the form shown in the following figure 80 Cyclades CS Console Server Installation Administration and User Guide 2 168 48 11 New Modify Port Microsoft Internet Explorer _ Cancel Port Port Local IP Local Remote IP Remote Protocol Name TCP Port TCP Port 17 SunRay 192 168 48 12 7017 192 168 48 11 7001 SSH 18 Win Server 192 168 48 12 7018 192 168 48 11 7002 SSH 19 Sun_server 192 168 48 12 7019 192 168 48 11 7003 SSH 20 IT Oral 192 168 48 12 7020 192 168 48 11 7004 SSH 21 eM wep 192 168 48 12 7021 192 168 48 11 7005 SSH 22 Prolienti 192 168 48 12 7022 192 168 48 11 7006 SSH 23 Proliantz 192 168 48 12 7023 192 168 48 11 7007 SSH 24 Ciscos000 192 168 48 12 7024 192 168 48 11
97. owing figure Done Community Source OID Permission https 192 168 48 11 New Mod SNMP v1 OK Cancel lalx Read Only Y 192 168 48 11 Figure 6 5 Expert New Mod SNMP v1 v2 Configuration Dialog Box Clicking the Add or Edit buttons under SNMPv3 Configuration displays the New Mod SNMP v3 Configuration dialog box as shown in the following figure 40 Cyclades CS Console Server Installation Administration and User Guide https 192 168 48 11 New Mod S 101 x Username T 7 OID a Permission Read Only y Done 192 168 48 11 9 y Figure 6 6 Expert New Mod SNMP v3 Configuration Dialog Box To configure SNMP Go to Networks SNMP The SNMP form appears To enable any version of SNMP perform the following a To add an SNMPv1 SNMPv2 entry press the Add button under the SNMPv1 SNMPv2 Configuration table b To add an SNMPVv3 entry press the Add button at the bottom of the SNMPv3 Configuration table The New Modify SNMP Daemon Configuration dialog box appears For SNMP vl or v2 configuration enter or change the following information a Enter the community name in the Community field b Enter the source IP address or range of IP addresses in the Source field For SNMP v3 configuration enter or change the following information a Enter the user name in the User name field b Enter the password in the Password
98. played settings are correct In Expert mode under Network menu you can specify additional networking related information and perform other advanced configuration tasks If DHCP is disabled the form appears as shown in the following figure DHCP Host Name Console Banner ccs Cyclades cs Ethernet Port Primary IP Network Mask 172 26 31 4 255 255 252 0 Secondary IP Secondary Network Mask MTU 1500 DNS Service Primary DNS Server Secondary DNS Server 172 26 29 4 Figure 4 1 Wizard Step 1 Network Settings DHCP Disabled 18 Cyclades CS Console Server Installation Administration and User Guide If the DHCP is enabled the following form appears Step 2 Port Profile Step 3 Access Set up the network parameters Step 4 Data Buffering Select the DHCP checkbox for automatic configuration Step 5 System Log Uncheck the DHCP box to perform manual configuration DHCP lv ES Figure 4 2 Wizard Step 1 Network Settings DHCP Enabled To configure the network settings 1 Select Step 1 Network Settings The DHCP form is displayed By default DHCP is active NOTE If DHCP is enabled a local DHCP server assigns the console server a dynamic IP address that can change The administrator chooses whether or not to use DHCP during initial setup 2 Ifyou are using DHCP proceed to Step 2 Port Profile if not click on the checkbox to deselect DHCP and enter your
99. port number for the serial port enter another number in the TCP Port field Po gt To assign a name to the port s IP address enter an alias in the Port IP Alias field console connection protocol only To change the keep alive interval enter another number in the TCP Keep alive Interval field To change the idle timeout interval enter another value in the Idle Timeout field Specify stty options if desired in the STTY Options field To change the break interval enter a new number in the Break Interval field om ND MH To change the break sequence enter a new sequence in the Break Sequence field 10 To change the content of the login banner enter new content in the Login Banner field 11 Click Done 12 Click apply changes To configure terminal server connection options Perform this procedure if you have connected a server terminal to a serial port 1 Select the port and choose a TS profile from the Connection Protocol pull down menu on General form 2 Click the Other tab The Other form displays 76 Cyclades CS Console Server Installation Administration and User Guide To change the port number used to access the serial port enter another number in the TCP Port field To change the keep alive interval enter another number in the TCP Keep alive Interval field To change the idle timeout interval enter another value in the Idle Timeout field Specify stty options if desired in the STTY Options field
100. priate connection protocol on the Ports Physical Ports General form is part of defining the TS profile When configuring serial ports to support server terminals you can e Dedicate a terminal to access a single remote server by means of either Telnet SSHv1 SSHv2 or Raw Socket connections e Enable a terminal to access multiple servers through the console server The TS profile must specify the TCP port number the terminal type and the IP address for the remote host on the Ports Physical Ports Other form Table 8 3 Available Connection Protocols When Terminal is Connected to a Serial Port Protocol Name Result Telnet Dedicates a server terminal connected to a serial port to access a server using the Telnet protocol When the attached terminal is powered on the console server opens a Telnet session on the server The server s IP address should be specified on the Other form Ports Physical Ports Other SSHv1 Dedicates a server terminal connected to the selected serial port to access a server using the SSHv1 protocol When the attached terminal is powered on the console server opens an SSHv1 session on the server The server s IP address should be specified on the Other form Ports Physical Ports Other Chapter 8 Ports Menu and Forms 67 Table 8 3 Available Connection Protocols When Terminal is Connected to a Serial Port Continued A Se ee ee Se ee ee ee eee Protocol Name Result SSHv2 Dedicate
101. profile The CAS connection protocols apply in the following cases When a user accesses the serial port through the Web Manager the session automatically uses the specified protocol to connect to the console of the connected device e When a user logs in remotely to the serial port access is allowed only for the selected protocol If another protocol is used then access is denied For example if you specify the Console SSH protocol the user can use SSH but cannot use Telnet to access the serial port 66 Cyclades CS Console Server Installation Administration and User Guide Table 8 2 Connections Protocols When Serial Port is Connected to Device Console Port Protocol Name Result Console Telnet Authorized users can use Telnet to connect to the console of the connected device Console SSH Authorized users can use SSH to connect to the console of the connected device Console TelnetSSH Authorized users can use Telnet and or SSH to connect to the console of the connected device simultaneously When the multiple sessions feature is configured simultaneous Telnet and or SSH sessions are allowed through the serial port Console Raw Authorized users can make a Raw Socket connection to the console of the connected device Terminal Server TS profile connection protocols When a server terminal is connected to the console port on a device a TS profile must be defined for the serial port Selecting the appro
102. r left of the screen you are in Expert mode Overview of menus and forms Figure 5 1 shows a typical Expert mode screen The top menu bar contains the primary commands and the left menu panel contains the secondary commands Based on what you select from the top menu bar the left menu panel selections change accordingly and the form area may include tabs for other options as shown Users and Groups AuthType i Radius ale Tacacs Active Ports Sessions Services Unit Aenate Local Figure 5 1 Expert Mode Forms Elements 28 Cyclades CS Console Server Installation Administration and User Guide Table 5 1 Expert Mode Forms Elements Information Number Description Number Description 1 Top menu 4 Main form area 2 Secondary Left navigation menu 5 Command buttons 3 Form tabs not available on all forms 6 Wizard Expert selection button Mapping the expert mode menus and forms The following tables illustrate mapping of the menus and forms available in Expert mode Table 5 2 Expert Mode Menu and Forms Applications Network and Security Applications Network Security Connect Host Settings Users and Groups Terminal Profile menu Syslog Active Ports Sessions SNMP Authentication Firewall Configuration Auth Type Host Tables Radius Static Routes Tacacs Ldap Serial port settings Table 5 3 Expert Mode Menu and Forms
103. rom a group Adding a User If you click the Add button on the Security Users and Groups form under the Users List the Add User dialog box appears The following table describes the fields in the Add User dialog box Adding a Group If you click the Add button on the Security Users and Groups form under the Group List the Add Group dialog box appears Add a new group by entering a group name and add individual users separated by commas To add a user Go to Security Users and Groups The Users and Groups form displays Click Add The Add User dialog box displays Enter the name of the user to be added in the User Name field Enter the password associated with the user name in the Password and Repeat Password fields O Ea Assign a group from the Group pull down menu NOTE To configure a user to be able to perform all administrative functions select the Admin group 6 Optional Select a shell from the Shell pull down menu The default shell is bin sh when the user makes a SSH or Telnet connection 7 Optional Enter information as desired about the user s role or responsibilities 8 Click OK 9 Click apply changes To delete a user or group 1 Go to Security Users and Groups The Users and Groups form displays 2 Select the name of a user or group to delete 3 Click Delete 4 Click apply changes To change a user s password 1 Goto Security Users and Groups The Users and Groups form displays 2
104. rt Applications Empty Terminal Profile Menu The menu can contain any command recognized by the Linux operating system on the console server The most common use of this feature is to create multiple menu options for launching SSH sessions on remote hosts When you click Add the Add Option dialog box appears Chapter 5 Applications For example you can create a menu called SSH to Servers with options that launch SSH connections to several servers as shown in the following example Menu title SSH to Servers Menu Options Action Name Action Command SSH SunRay ssh 192 168 48 11 SSH MyLinux ssh 192 168 48 15 SSH W2K3 ssh 192 168 48 12 Edit Delete Add up Down Figure 5 4 Expert Terminal Profile Menu Example The command menu appears when the terminal is powered on To create a menu for a local server terminal 1 Goto Applications Terminal Profile Menu The Terminal Profile menu displays 2 Enter a title for the menu in the Menu title field 3 To edit an existing menu option select the Action Name from the table and then click Edit 4 To add a new menu option click Add The Add Option dialog box displays a Enter a title for the menu option in the Title field b Enter an action or command to be executed when the user clicks the menu option in the Action Command field 5 Click OK Click apply changes 31 32 Cyclades CS Console Server Installatio
105. s a server terminal connected to the selected serial port to access a server using the SSHv2 protocol When the attached terminal is powered on the console server opens a SSHv2 session on the server The server s IP address should be specified on the Other form Ports Physical Ports Other Local Terminal Dedicates a server terminal connected to the selected serial port for connecting to the console server When the attached terminal is powered on the console server opens a Telnet session on itself The user then can use any of the console server s Linux commands You can also create a terminal profile menu Applications Terminal Profile Menu that enables the user to quickly launch sessions on any number of remote hosts Raw Socket Dedicates a server terminal connected to the selected serial port to access a specific remote host using the Raw Socket protocol When the attached terminal is powered on the console server opens a Raw Socket session on the host using an IP address and TCP port number specified on the Other form Ports Physical Ports Other Modem connection protocols Table 8 4 Connection Protocols for Modems Protocol Name Result PPP No Auth Starts a PPP session without interactive authentication required Assumes the specified console server serial port is connected to an external modem PPP Starts a PPP session with authentication required Assumes the specified console server serial port is connect
106. s and hostname AS ak di 6 7 Go to Network Host Tables The Host Tables form appears To edit a host select the host IP address from the list and click the Edit button To add a host click the Add button The host table dialog box appears Enter the new or modified host address in the IP Address fieldand the host name in the Name field Click OK To delete a host select the host you wish to delete and click Delete Click apply changes Static Routes The Static Routes form allows you to add routes manually The Routing Table defines which interface should transmit an IP packet based on destination IP information Static routes are a quick and effective way to route data from one subnet to another Selecting Network Static Routes displays the form shown in the following figure 50 Cyclades CS Console Server Installation Administration and User Guide Host Settings a Syslog Destination IP Destination Mask Gateway Interface Metri SNMP default 172 26 28 1 Firewall Configuration Host Tables Static Routes Figure 6 20 Expert Network Static Routes Clicking the Edit or Add buttons displays the form shown in the following figure https 192 168 48 11 New Modify Route Mozilla Firefo 10 xj apply Era Route Default Goto Gateway ha Metric EE o o El Done 192 168 48 11 9 y Figure 6 21 Expert Static Routes Add and Edit Dialog
107. sLog Servers New SysLog Server Figure 4 9 Wizard Step 5 System Log NOTE To configure syslog with data buffering features for specific ports switch to the Expert mode then select Ports Physical Ports Modify Selected Ports Data Buffering Before setting up syslogging make sure a pre configured syslog server is available on the same network as the console server From the syslog server administrator obtain the the IP address of the syslog server and the facility number for messages coming from the syslog server To add a syslog server Select Step 5 System Log The System Log form displays From the Facility Number pull down menu select the facility number 3 Inthe New Syslog Server field enter the IP address of a syslog server and then click the Add button Repeat this step until all syslog servers are listed 4 The new server s appears in the Syslog Servers list 5 Click apply changes To delete a syslog server 1 From the Syslog Server list select the syslog server that you wish to delete from the current facility location and then click Delete 2 Click apply changes 27 Applications Configuring the Console Server in Expert Mode Most applications require that you set the Web Manager to Expert mode If you are in Wizard mode and need to perform advanced configuration click the Expert button at the bottom of the left menu panel to switch to Expert mode If the Wizard button displays at the lowe
108. secure access to the connected servers or devices Users who can be part of an Admin group with administrative privileges This may be a regular user who can perform the same tasks as an administrator Regular users who can access the connected devices through the serial ports they are authorized for Regular users have limited access to the Web Manager features Important Pre installation Requirements Before installing and configuring the console server ensure that you have the following Root Access on your local UNIX machine to use the serial ports An appropriate terminal application for your operating system IP address DNS Network Mask and Gateway addresses of your server or terminal the console server and the machine to which the console server is connected A web browser that supports the console server Web Manager such as Netscape Internet Explorer Firefox or Mozilla Java 2 Runtime Environment JRE version 1 4 2 or later If a more recent version is available go to http java com to locate and download the latest version of J2RE Basic Installation Procedures Mounting the console server You can mount the Cyclades CS console server on a wall rack or cabinet or place it on a desktop or other flat surface Two brackets are supplied with six hex screws for attaching the brackets to the console server for mounting Brackets A Figure 1 1 Placement of Mounting Brackets Forward Mounting Configuration Sho
109. show menu ReadOnly 4 To configure the type of data that displays on the monitor in a port sharing session select an option from the Sniff Mode pull down menu 5 If you have allowed multiple sessions complete the following fields a Add user names to the Privilege Users field Enter a hotkey in the Menu Hotkey field to display the sniffer menu on the monitor The default shown is Az The caret stands for the Ctrl key c Enable the Notify Users field if desired 6 Click Done 7 Click apply changes Other Under Ports Physical Ports in Expert Mode after you select one or more serial ports and click Modify Port s you can select the Other form from the tabbed menu to configure other options The Other form appears You can use this form to configure other settings The options on this form may be less common settings The following table describes the available fields in the Other form Table 8 8 Other Form Fields Field Name Definition TCP Port The TCP Port number for a serial port The TCP port numbers by default start from 7001 and increment by 1 up to the number of serial ports that the console server unit has For example a console server unit with 8 serial ports have TCP port numbers 7001 through 7008 Port IP Alias A name alias for the IP of the selected port A port IP alias field appears when a console CAS profile is selected from the Connection Protocol pull down menu on the General form
110. ssecesoessenneosseensens 36 Figure 6 4 Expert Network SNMP ooonnniccinniocinnncnnconncnncnno cnn corn nan ran non conan on non nero none cnn cnn nin an nrinen 38 Figure 6 5 Expert New Mod SNMP vl v2 Configuration Dialog Box unseseennennerseennenn 39 Figure 6 6 Expert New Mod SNMP v3 Configuration Dialog BOX ooninininninnninninnemnmmmmnm m 40 Figure 6 7 Expert Network Firewall Configuration usseeseerseeseersersnennernnennennennnennennnensennn 41 Figure 6 8 Expert Firewall Configuration Edit Chain Dialog Box useesernsesnernnennersennnenn 42 Figure 6 9 Expert Firewall Configuration Add Chain Dialog BOX oossoo 42 Figure 6 10 Firewall Configuration Edit Rules for chain_name Form ueneenseseennennerseennenn 43 Figure 6 11 Firewall Configuration Edit Rules for chain_name Buttons s s s 43 Figure 6 12 Expert Firewall Configuration Add Rule and Edit Rule Dialog Boxes 43 Figure 6 13 Firewall Configuration TCP Protocol Fields and Menu Options 44 Figure 6 14 Firewall Configuration Add Rule and Edit Rule UDP Protocol Fields 45 viii Cyclades CS Console Server Installation Administration and User Guide Figure 6 15 Input Output Interface Fields and Fragments Menu Options uneaseesnersnennerseennenn 46 Figure 6 16 Firewall Configuration Add Rule and Edit Rule LOG Target Fields 46 Figure 6 17 Firewall
111. swd database To specify other authentication methods such as RADIUS TACACS or LDAP go to Expert mode and select Security Authentication Expert mode provides additional options for custom configuration of serial ports such as assigning an alias to a serial port specifying individual parameters to the serial ports or groups of serial ports or using any of several other connection protocols To set parameters for all serial ports This step configures all serial ports with the same values Use this form if all the devices connected to the serial ports on the console server can run using the same connection protocol with the same speed Also make sure the values you specify here are the same as those in effect on the connected devices Change network parameters as needed 2 To change whether authentication is required check the Authentication Required checkbox to enable or leave it unchecked to disable 3 Select apply changes to save configuration to Flash Select the Next button or proceed to the next section Step 3 Access Chapter 4 Configuring the Cyclades CS Console Server in Wizard Mode 21 Step 3 Access Selecting Step 3 Access displays the form shown in the following figure that enables you to add or delete user accounts and set or change existing passwords In addition administrative privileges can be granted to added users by adding the user accounts to an admin group enabling them to administer the conne
112. the devices connected to the serial ports You can configure notifications to be sent to users through email pager or SNMP traps Clicking the Edit button displays the Notifications Entry dialog box The form allows you to define alarm trigger actions and specify how to handle them Different fields appear on the dialog boxes depending on whether Email Pager or SNMP Trap notification have been selected from the Notifications form To choose a method for sending notifications for serial port data buffering events Go to Administration Notifications in Expert mode The Notifications form displays Enable Notification Alarm for Data Buffering by clicking the checkbox Select Email Pager or SNMP Trap from the pull down menu To create a new entry for an event to trigger an alarm or notification click the Add button AR YN To edit a previously configured trigger click the Edit button Email Notifications Entry When you select Email from the pull down menu and click either the Add or Edit button the Email Notification dialog box is displayed To configure a trigger for email notification for serial ports 1 Go to Administration Notifications in Expert mode and select Email from the pull down menu If desired enable Notification Alarm for Data Buffering for an alarm to sound when the trigger action occurs and click either Add or Edit The Notifications Entry dialog box displays Specify the event you wish to trigger a notifica
113. the Maximum Transmission Unit field Under DNS Service specify or change the following information if desired a b c d Enter the address of the domain name server in the Primary DNS Server field If there is a backup DNS server enter the address of the secondary DNS in the Primary DNS Server field Enter the domain in the Domain Name field Enter the IP address of the gateway in the Gateway IP field Click apply changes 36 Cyclades CS Console Server Installation Administration and User Guide Syslog When Network Syslog is selected the form shown in the following figure appears CAS Ports Facility Local Y Syslog Destination Console v Root User Server Syslog Servers New Syslog Server ilter CAS log messages by level Emergency Y Alert 7 Critical Warning V Notice Y Info Filter Data Buffering log messages by level Emergency v Alert v Critical v Warning v Notice v Info Filter Web log messages by level Emergency Y Alert V Critical Warning Y Notice Y Info Filter System log messages by level Emergency v Alert v Critical Warning Notice Info Figure 6 3 Expert Network Syslog Yo
114. the changed address Enter the console server s default IP address https 192 168 160 10 to bring up the Web Manager and log in Web Manager for Regular Users Using the Web Manager Cyclades CS console server users perform most tasks through the Web Manager The Web Manager runs in a browser providing a real time view of all other equipment connected to the console server The console server administrator can use the Web Manager to configure users and ports An authorized user can access connected devices through the Web Manager to troubleshoot and maintain connected devices To log into the Web Manager 1 Connect your web browser to the console server by typing in the console server s IP address e g https 10 10 10 10 in your browser s address field 2 Press Enter The system displays the console server Web Manager Login form 3 Type in your username and password 10 Cyclades CS Console Server Installation Administration and User Guide Features of Regular User Forms The following figure shows features of the Web Manager when regular users log in 1 3 Security O Connect to CS4008 O Serial W Figure 2 1 Regular User Form NOTE The form in the middle changes according to which menu option is selected Table 2 1 Common Form Information Number Description Number Description 1 Web interface main form area 3 logout button and system information 2 Secondary Left navigation
115. time DST acronym of your choice in the DST Acronym field Enter the number of hours and minutes HH MM format the clock will be reset at the beginning of the daylight savings time period Positive number only In the following fields enter the date month day and time hours minutes for both the beginning and ending dates of daylight time Click OK to update the Time Date settings and return to the main Time Date form Click apply changes Boot Configuration Boot configuration defines the location from which the console server loads the operating system The console server can boot from its internal firmware or from the network By default the Cyclades CS console server boots from Flash memory Selecting Administration Boot Configuration in Expert mode displays the Boot Configuration form If you need to boot from the network make sure the following prerequisites are met A TFTP or BootP server must be available on the network An upgraded console server boot image file must be downloaded from Avocent and made available on the TFTP or BootP server The Cyclades CS console server must be configured with a fixed IP address The boot filename and the IP address of the TFTP or BootP server is known Table 9 2 Boot Configuration Form Fields Field Name Definition IP Address assigned A fixed IP address or a DHCP assigned IP address to the console server to Ethernet Watchdog Timer Whether the Watchdog Timer is activ
116. tion in the Alarm Trigger field If you need to edit an existing notification select it from the pull down list and proceed Enter or change the recipient for the notification email in the To field Enter or change the sender email address in the From field Enter or change the subject in the Subject field Enter or edit the text message in the Body field Enter or change the SMTP server s IP address in the SMTP Server field Enter or change the SMTP port number in the SMTP Port field 10 Click OK ar OOS N Or Be ID Chapter 9 Administration Menu and Forms 85 11 Click apply changes Pager notifications entry When you go to Administration Notifications select Pager from the pull down menu and click on Add or Edit button the Pager Notifications Add Edit dialog box displays To configure a trigger for pager notification for serial ports 1 Goto Administration Notifications in Expert mode and select Pager from the pull down menu If desired enable Notification Alarm for Data Buffering for an alarm to sound when the trigger action occurs and click either Add or Edit The Notifications Add Edit dialog box displays Specify the event you wish to trigger a notification in the Alarm Trigger field If you need to edit an existing notification select it from the pull down list and proceed Enter or change the pager number in the Pager Number field Enter or edit the text that describes the event in the Text field Dy cps ED
117. tion procedures described in the Cyclades CS Console Server Command Reference Guide 62 Cyclades CS Console Server Installation Administration and User Guide 63 Ports Menu and Forms Physical Ports When Physical Ports is selected under Ports Physical Ports in Expert mode the following form appears Virtual Ports aan Ports Status Modify Selected Ports ify All Ports Ports Statistics Enable Selected Ports Disable Selected Ports Port Disable Alias Connection Protocol Serial Config ConsoleDl Console Telnet 9600 8N1 4 IPDU_O1 Power Management 9600 8N1 ws_D1 Console SSH 9600 8N1 ws_02 Console 38H 9600 8N1 ws_03 Console 33H 9600 8N1 WS_Stby Console SSH 9600 8N1 IPDU_D2 Power Management 9600 8N1 K o u DB_F02 Console TelnetSsH 9600 8N1 DB_F03 Console TelnetSSH 9600 8N1 DB_FO4 Console TelnetSSH 9600 8N1 DUO JAnra DUNA Figure 8 1 Ports Physical Ports Using this form you can enable or disable ports and configure parameters for individual or a group of serial ports You can select contiguous serial ports on the form by using the Shift key or non contiguous ports by using the Ctrl key on your keyboard You can select Enable Selected Ports or Disable Selected Ports by pressing the corresponding button You can select the Modify All Ports button to specify the same parameters for all the serial ports or you can select the Modify Selected Ports button and set v
118. tions from Avocent Technical Support personnel In the latter case first take the following precautions 1 Turn the console server off 2 Ground yourself by touching an unpainted metal surface on the back of the equipment before touching anything inside the unit Electrostatic Discharge ESD Precautions When handling any electronic component or assembly you must observe the following antistatic precautions to prevent damage e Always wear a grounded wrist strap when working around printed circuit boards e Treat all assemblies components and interface connections as static sensitive Appendices 101 e Avoid working in carpeted areas e Keep body movement to a minimum while removing or installing boards to minimize the buildup of static charge Arbeiten am Cyclades CS console server Bitte versuchen Sie nicht den Cyclades CS console server selbst zu warten mit Ausnahme unter Befolgung der Anweisungen von Avocent technischem Personal In diesem Fall bitte folgenden Vorsichtsma nahmen einhalten 1 Schalten Sie den Cyclades CS console server aus 2 Erden Sie sich bitte selbst durch Ber hren einer blanken Metalloberfl che auf der R ckseite des Ger tes bevor Sie das Innere beriihren Vorsichtsmassnahmen gegen Elektrostatische Entladung ESD Zur Vermeidung von Besch digungen sind bei Arbeiten an elektronischen Komponenten oder Baugruppen die folgenden Vorsichtsma nahmen einzuhalten e Bitte immer ein Erdungsarmband w hrend
119. u can use the Syslog form to configure how the console server handles system logged messages The Syslog form allows you to perform the following e Specify one or more syslog servers to receive syslog messages related to ports e Specify rules for filtering messages The top field on the form CAS Ports Facility is used to tell the console server where to send syslog messages You can specify a facility number for the messages from serial ports Chapter 6 Network Menu and Forms 37 You can send the syslog messages e To the console port for logging the messages even if no user is logged in e To all sessions where the root user is logged in e To one or more syslog servers You can add or remove syslog servers The bottom part of the form has filtering rules for specifying which types of messages are forwarded based on the following criteria e Severity level Emergency Alert Critical Error Warning Notice Info Debug e Category CAS log Data Buffering log Web log or System log To configure syslogging for serial ports and specify message filtering 1 Go to Network Syslog in Expert mode The Syslog form appears 2 Select a facility number for messages generated by serial ports by selecting the number from the CAS Ports Facility pull down menu 3 Select a destination for the syslog messages by clicking the checkbox next to one or all of the options Console Root User or Server 4 Add a syslog server to the Syslog Serv
120. uthType Active Ports Sessions Authentication Services Unit Authentication Local Figure 7 3 Expert Security Authentication You can use the Authentication forms to select a method for authenticating logins to the console server or to identify authentication servers that are configured for logins either to the console server or to the serial ports Configuring authentication for console server logins The default authentication method for the console server is Local You can either accept the default or select another authentication method from the Unit Authentication pull down menu on the AuthType form Any authentication method selected for the console server is used for authentication of any user attempting to log into the console server through Telnet SSH or the Web Manager To configure the console server login authentication method 1 Go to Security Authentication The AuthType form is displayed 2 To specify an authentication method for login to the console server select a method from the Unit Authentication pull down menu NOTE Make sure an authentication server is specified for the selected authentication type 3 Click apply changes 58 Cyclades CS Console Server Installation Administration and User Guide Configuring authentication servers for logins to the console server and connected devices If you are configuring any authentication method other than Local make sure an authent
121. ver Asegurase que este tocando tierra antes de tocar cualquier otra cosa que puede ser al tocar la parte trasera del equipo 104 Cyclades CS Console Server Installation Administration and User Guide Appendix C Technical Support Our Technical Support staff is ready to assist you with any installation or operating issues you encounter with your Avocent product If an issue should develop follow the steps below for the fastest possible service To resolve an issue 1 Check the pertinent section of this manual to see if the issue can be resolved by following the procedures outlined 2 Check our web site at www avocent com support to search the knowledge base or use the online service request 3 Call the Avocent Technical Support location nearest you 105 CN A access 70 access requirements port 11 access server CAS profile console 65 accessing the web manager other methods of 8 active ports sessions 56 adding a group 54 a user 54 users 7 admin 53 administrative modes overview of 15 administrator forms common features of 13 alarm notification 86 notification serial ports 86 alias 81 alias port IP 74 authentication 57 for Cyclades CS logins configuring 57 methods 70 servers configuring 58 authorization raccess 58 authorized users groups 70 authtype 57 B backup configuration 90 banner login 75 basic installation procedures 3 baud rate 20 81 boot configuration 89 boot to configure Cyc
122. ver uses the IP address provided by the DHCP server If your network does not use DHCP then console server will default to 192 168 160 10 Do you want to use DHCP to automatically assign an IP for your system y n y 5 To change the default static IP address enter a valid IP address at the prompt System IP 192 168 160 10 lt console server_IP_address gt 6 Enter the domain name Domain name avocent com lt domain_name gt 7 Enter the IP address for the Primary DNS domain name server Primary DNS Server 192 168 44 21 lt DNS_server_IP_address gt 8 Enter the IP address for the gateway Gateway IP eth0 lt gateway_IP address gt 9 Enter the netmask for the subnetwork Network Mask lt netmask gt The network configuration parameters appear 10 Enter y after the prompts shown in the following screen example Are all these parameters correct y n n y Do you want to activate your configurations now y n ly y Do you want to save your configuration to Flash y n n y 11 To confirm the configuration enter the ifconfig command Adding users and configuring ports using the Web Manager NOTE From the factory the console server is configured with all serial ports disabled The administrator can add users enable or disable the serial ports and select and assign specific users to individual ports For more information on managing users and ports see Security Menu and Forms on page 53 and Ports Menu and Forms
123. vironment may be greater than room ambient temperature Therefore consideration should be given to installing the equipment in an environment compatible with the manufacturer s maximum rated ambient temperature See above Erh hte Umgebungstemperatur im betrieb Bitte treffen Sie entsprechende Vorkehrungen um die Herstellerangaben zur maximalen Umgebungstemperatur einzuhalten Bitte beachten Sie dass bei einer Installation des Cyclades CS console server in einem geschlossenen oder mehrfach bestiicktem Rack die Umgebungstemperatur im Betrieb h her sein kann als die Raumtemperatur Reduced air flow Installation of the equipment in a rack should be such that the amount of air flow required for safe operation of the equipment is not compromised Luftdurchsatz F r einen sicheren Betrieb bitte auf ausreichenden Luftdurchsatz im Rack achten Mechanical loading Mounting of the equipment in the rack should be such that a hazardous condition is not achieved due to uneven mechanical loading Sicherer mechanischer Aufbau Bitte vermeiden Sie beim Einbau der Ger te ungleichm ige mechanische Belastung Appendices 99 Circuit overloading Consideration should be given to the connection of the equipment to the supply circuit and the effect that overloading of circuits might have on overcurrent protection and supply wiring Appropriate consideration of equipment nameplate ratings should be used when addressing this concern Elektrische Ub
124. w one from the Trap Number pull down menu a Ae ae gt Enter a community in the Community field 86 Cyclades CS Console Server Installation Administration and User Guide 7 Enter the IP address of the SMTP Server 8 Enter a message in the Body text area 9 Click OK 10 Click apply changes Serial ports alarm notification You can configure the notification entry form to monitor the DCD signal so that the system will generate an alarm in any of the following events e A serial console cable is removed from the console server e A device server attached to the console is powered down The configuration also enables you to detect if a modem is in use and is still powered on and active To configure a trigger for serial port alarm notification Go to Administration Notifications in Expert mode Enable the checkbox for Notification Alarm for Data Buffering Select Email Pager or SNMP Trap from the pull down menu Click the Add button Enter Port in the Alarm Trigger field Configure the parameters selected in step 3 See Notifications on page 84 Click OK Click apply changes EDEN Be Oo ES Chapter 9 Administration Menu and Forms 87 Time Date Selecting Administration Time Date in Expert mode displays the form shown in the following figure System Information Notifications Boot Configuration Timezone Pacific pst v EditCustom Backup Config Upgrade Firmware Network Time Protocol Disable v
125. wn 4 Cyclades CS Console Server Installation Administration and User Guide To rack mount the console server 1 Install the brackets on to the front or back edges of the console server using a hex screw driver and the screws provided 2 Mount the console server unit in a secure position Making an Ethernet connection Connect a CAT 5 patch cable from the console server port labeled 10 100BaseT to an Ethernet hub or switch To connect devices to serial ports Using patch cables with RJ 45 connectors and DB 9 console adaptors assemble crossover cables to connect the console server serial ports to the device s console port Making a direct connection to configure the network parameters Ensure that a suitable terminal emulation program is installed on your Windows workstation On servers running a UNIX based operating system such as Solaris or Linux make sure that a compatible terminal emulator such as Kermit or Minicom is installed To connect to the console port You can use a CAT 5 straight through cable with RJ 45 connectors and the appropriate adaptor provided with the product box to assemble a console cable All adaptors have an RJ 45 connector on one end and either a DB25 or DB9 male or female connector on the other end 1 Connect the RJ 45 end of the cable to the Console port on the console server 2 Connect the adaptor end of the cable to the Console port of your server or device 3 Open your terminal emulation pro
126. wn menu and enter the address of the gateway or the name of the interface in the adjacent field Click apply changes 52 Cyclades CS Console Server Installation Administration and User Guide 53 7 Security Menu and Forms Users and Groups The Users and Groups form allows you to perform the following tasks e Set up user access to the console server Web Manager e Assign users to specific groups that share common access rights e Assign or change passwords e Create new groups and add to the group list The two groups to which you can assign a user are e Admin Read Write Access e Regular User Limited Read Write Access CAUTION There is only one root user for the initial setup of the console server by the administrator The user name is root and the default password is avocent For security purposes make sure you change this default password as soon as possible Selecting Security Users and Groups in Expert mode displays the form shown in the following figure Users and Groups Active Ports Sessions Authentication User List Group List Services root admin tomr Figure 7 1 Expert Security Users and Groups Form 54 Cyclades CS Console Server Installation Administration and User Guide You can use the Users and Groups form to perform the following e Add or delete users e Assign or change user passwords e Add or delete groups e Add users to a group e Delete users f
127. xclamation point before the user or group name For example to explicitly deny access to a user called noadmin and enable access only to a single user called johnd you would enter the following Inoadmin johnd Successive names are separated by a comma Type Select an authentication type for the serial port from the pull down list The default is no authentication Type None To configure user access to serial ports Use this procedure if you wish to specify a list of authorized users or groups 1 Goto Ports Physical Ports in Expert mode and select a port or ports to modify Click the Access tab The Access form appears 3 To restrict access to one or more users or to a group of users enter previously defined user or group names in the Authorized Users Groups field with names separated by commas 4 To deny access to one or more users or groups preface the user or group names with an exclamation point 1 5 Click Done 6 Click apply changes Authentication methods and fallback mechanism The following table provides a brief description of the authentication methods When an authentication method is configured to be performed by an authentication server such as LDAP RADIUS or TACACS the user can get access denial if either the authentication server is down or 1t does not authenticate An authentication fallback mechanism can be defined in case the first authentication level fails Table 8 6 Expert Authenticati
Download Pdf Manuals
Related Search