ADC SG-1 Bedienungsanleitung

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226

Zur Seite of

Richtige Gebrauchsanleitung

Die Vorschriften verpflichten den Verkäufer zur Übertragung der Gebrauchsanleitung ADC SG-1 an den Erwerber, zusammen mit der Ware. Eine fehlende Anleitung oder falsche Informationen, die dem Verbraucher übertragen werden, bilden eine Grundlage für eine Reklamation aufgrund Unstimmigkeit des Geräts mit dem Vertrag. Rechtsmäßig lässt man das Anfügen einer Gebrauchsanleitung in anderer Form als Papierform zu, was letztens sehr oft genutzt wird, indem man eine grafische oder elektronische Anleitung von ADC SG-1, sowie Anleitungsvideos für Nutzer beifügt. Die Bedingung ist, dass ihre Form leserlich und verständlich ist.

Was ist eine Gebrauchsanleitung?

Das Wort kommt vom lateinischen „instructio”, d.h. ordnen. Demnach kann man in der Anleitung ADC SG-1 die Beschreibung der Etappen der Vorgehensweisen finden. Das Ziel der Anleitung ist die Belehrung, Vereinfachung des Starts, der Nutzung des Geräts oder auch der Ausführung bestimmter Tätigkeiten. Die Anleitung ist eine Sammlung von Informationen über ein Gegenstand/eine Dienstleistung, ein Hinweis.

Leider widmen nicht viele Nutzer ihre Zeit der Gebrauchsanleitung ADC SG-1. Eine gute Gebrauchsanleitung erlaubt nicht nur eine Reihe zusätzlicher Funktionen des gekauften Geräts kennenzulernen, sondern hilft dabei viele Fehler zu vermeiden.

Was sollte also eine ideale Gebrauchsanleitung beinhalten?

Die Gebrauchsanleitung ADC SG-1 sollte vor allem folgendes enthalten:
- Informationen über technische Daten des Geräts ADC SG-1
- Den Namen des Produzenten und das Produktionsjahr des Geräts ADC SG-1
- Grundsätze der Bedienung, Regulierung und Wartung des Geräts ADC SG-1
- Sicherheitszeichen und Zertifikate, die die Übereinstimmung mit entsprechenden Normen bestätigen

Warum lesen wir keine Gebrauchsanleitungen?

Der Grund dafür ist die fehlende Zeit und die Sicherheit, was die bestimmten Funktionen der gekauften Geräte angeht. Leider ist das Anschließen und Starten von ADC SG-1 zu wenig. Eine Anleitung beinhaltet eine Reihe von Hinweisen bezüglich bestimmter Funktionen, Sicherheitsgrundsätze, Wartungsarten (sogar das, welche Mittel man benutzen sollte), eventueller Fehler von ADC SG-1 und Lösungsarten für Probleme, die während der Nutzung auftreten könnten. Immerhin kann man in der Gebrauchsanleitung die Kontaktnummer zum Service ADC finden, wenn die vorgeschlagenen Lösungen nicht wirksam sind. Aktuell erfreuen sich Anleitungen in Form von interessanten Animationen oder Videoanleitungen an Popularität, die den Nutzer besser ansprechen als eine Broschüre. Diese Art von Anleitung gibt garantiert, dass der Nutzer sich das ganze Video anschaut, ohne die spezifizierten und komplizierten technischen Beschreibungen von ADC SG-1 zu überspringen, wie es bei der Papierform passiert.

Warum sollte man Gebrauchsanleitungen lesen?

In der Gebrauchsanleitung finden wir vor allem die Antwort über den Bau sowie die Möglichkeiten des Geräts ADC SG-1, über die Nutzung bestimmter Accessoires und eine Reihe von Informationen, die erlauben, jegliche Funktionen und Bequemlichkeiten zu nutzen.

Nach dem gelungenen Kauf des Geräts, sollte man einige Zeit für das Kennenlernen jedes Teils der Anleitung von ADC SG-1 widmen. Aktuell sind sie genau vorbereitet oder übersetzt, damit sie nicht nur verständlich für die Nutzer sind, aber auch ihre grundliegende Hilfs-Informations-Funktion erfüllen.

Inhaltsverzeichnis der Gebrauchsanleitungen

  • Seite 1

    SG-1 Service Gateway System User Manual Document Number: SG1-UM-8500-03[...]

  • Seite 2

    R EVISION H ISTORY The Revision Histo ry provides a summary o f any chan ges in this manual. Please m ake sure you are usin g the latest revision of this ma nual. June 30, 2006 This manual is available online at ADC’ s website ( www .adc.com/doc umenta tionlibrary/) or you can order cop ies of the manual by contacting you r sales represent at ive[...]

  • Seite 3

    T able of Content s SG1-UM-8500-03 iii About This Manual ....... ............................................... .......................................... .......... xi Introduction ................................. .......................................... ....................................... .... ......... xi Organization ...................[...]

  • Seite 4

    T able of Contents June 30, 2006 iv SG1-UM-8500-03 Chapter 5: Using the Command Line Interface ............ ............................ ............ ....... 5-1 Configuring the SG-1 .......................................................................................................... ..... 5-1 Logging On .......................................[...]

  • Seite 5

    June 30, 2006 T able of Contents SG1-UM-8500-03 v Appendix B: Redirection Server .... ................................ ............................................. B-1 ORUP Commands ................................................................................................................. .. B-3 Service Name Commands ........................[...]

  • Seite 6

    T able of Contents June 30, 2006 vi SG1-UM-8500-03[...]

  • Seite 7

    List of Figures SG1-UM-8500-03 vii Figure 1-1. SG-1 10U ......... ................................................. ................................. ............... 1 -2 Figure 2-1. S traight-Through and Cross-Over Cable Pi n-Outs ......... ............... ........... ........ 2-3[...]

  • Seite 8

    List of Figures June 30, 2006 viii SG1-UM-8500-03[...]

  • Seite 9

    List of T ables SG1-UM-8500-03 ix T able 1-1. Packing List ...... ................................................. ................................................. .1 - 4 T able 1-2. System Inst allation Notes ............... ........................................................... .......... 1-4 T able 1-3. Possible SG-1 Opti ons ............[...]

  • Seite 10

    List of T ables June 30, 2006 x SG1-UM-8500-03[...]

  • Seite 11

    SG1-UM-8500-03 xi A BO UT T HIS M ANUAL I NTROD UCTION This manual applies to ADC's Service Gateway ( SG) syst em, hereaf ter referred to as "SG-1." This d ocument includes an overview of the plat form, inst alla tion procedures, and an SG-1 commands refer ence. O RGANIZATION This manual includes th e following chapters: I NTEND ED A[...]

  • Seite 12

    About This Manual June 30, 2006 xii SG1-UM-8500-03 C ONVENTIONS The following style conventions and term inology are used throu ghout this guide. EU C OMPLIANCE This product has been CE marked in accordance with the requirement s of European Directive 73/23/EEC; the following mentioned product is in conformity with Low V o lt age Directive 73/23/EE[...]

  • Seite 13

    SG1-UM-8500-03 1-1 1 Chapter O VERVIEW The SG-1 is a service creation plat form op timized for delivering dif ferentiated services to residential, mobile, and private subscribers. The SG- 1 enables service providers to offer attractive new services that can be selected dynamically and automatically by thei r wireless, dial-up and br oadba nd users.[...]

  • Seite 14

    Chapter 1: Overview June 30, 2006 1-2 SG1-UM-8500-03 The SG-1 comprises two types of syst em chassis: 1U and 10U. The 1U chassi s (or Mini Syste m Chassis) has 2 service creation slots and 1 power supply slot built into the cha ssis. The 10U chassis (or Full-Size System Chassis) has 16 service creations slot s and 4 power supply slot s for loa d sh[...]

  • Seite 15

    June 30, 2006 Chapter 1: Overview SG1-UM-8500-03 1-3 • Identify any required proced ures and test s. • On an equipment p la n, make a preliminary decision that locates each of the SG-1 chassis that you plan to install. • Read this manual, whether you are replacing or ad ding a SG-1 chassis that is being inst alled. • V erify the list of rep[...]

  • Seite 16

    Chapter 1: Overview June 30, 2006 1-4 SG1-UM-8500-03 T able 1-1. Packing List T able 1-2. System Inst allation Notes Item Cat alog/Part Number SG-1 Service Gatewa y System Chas sis SG-1 Service Gateway System User Manual SG-1 Service Gateway Sy stem Installation Kit • T en (10) 6-32 x 3/16 screws: • T wo (2) 8-32 x 5/16 screws: • Eight (8) 12[...]

  • Seite 17

    June 30, 2006 Chapter 1: Overview SG1-UM-8500-03 1-5 R EQUIRED T OOLS AND E QUIPMENT The following tools are required to inst all the SG-1 chassis: • Grounding o r ESD-preventive wrist strap • No. 2 Phillip s-head screwdr iver • Multimeter (for continuity testing) • Wire stripper • Wire-wrap tool • Box cutter • #26 A WG wire S PECIFIC[...]

  • Seite 18

    Chapter 1: Overview June 30, 2006 1-6 SG1-UM-8500-03 T able 1-3. Possible SG-1 Options P OWER R EQUIREMENT S The following specifies the power versi ons available for the SG1 chassis, then specifies the power requirement s for your facility relative to the SG1 power version you selected. SG-1 Chassis The SG-1 chassis provides four 100 to 240 V ac ([...]

  • Seite 19

    June 30, 2006 Chapter 1: Overview SG1-UM-8500-03 1-7 Chassis Ground and Power Cabling The recommended cabling to ground the SG- 1 chassis is 6 A WG (minimum) stranded copper wire. For the SG-1 chassis, the recommended cabling is 14 A WG (1.88 mm diamete r) stranded copper or 14 A WG (1.628 mm diameter) solid wire to c onnect the DC terminal block t[...]

  • Seite 20

    Chapter 1: Overview June 30, 2006 1-8 SG1-UM-8500-03[...]

  • Seite 21

    SG1-UM-8500-03 2-1 2 Chapter I NSTALLATION This chapter provides detailed information abou t inst alling the SG-1. M OUNTING THE SG-1 C HASSIS T o mount the SG-1, complete the following procedure. C ONNECTING THE SG-1 C HASSIS G ROUND T o connect the SG-1 chassis ground, complete the following procedure. Attach yo ur ant is t atic wri s t strap to [...]

  • Seite 22

    Chapter 2: Installation June 30, 2006 2-2 SG1-UM-8500-03 Connecting AC Power to an SG-1 AC Chassis Connect an AC power cord( s) to AC power connectors, as required. I NST ALLING I NTERFACE C ABLES This section provides procedures for installing the cablin g for the network, subscribe r , and management interfaces. Connecting Network Cards Connect t[...]

  • Seite 23

    June 30, 2006 Chapter 2: Installation SG1-UM-8500-03 2-3 T able 2-1. RJ -45 Pin-Out s Figure 2-1 shows the pin-out s for straight -through and cross- connect cabling . Figure 2-1. S tr aight -Through and Cross-Ov er Cable Pin-Out s MDI Pin Number MDI-X Pin Number Signal a a.NC = no connection. Symbol Direction 1 3 Transmit Data (+) TX+ (TX0+) Out(B[...]

  • Seite 24

    Chapter 2: Installation June 30, 2006 2-4 SG1-UM-8500-03 Connecting to an Ethernet Port C ONNECTING THE C RAF T P ORT I NTERFACE In situations where a Rear I/O card is inst alled, the default craf t port is on th e Rear I/O card. Moving a jumper on the Rear I/O card is required if you wish to use the front craft port. P OWERING U P THE SG-1 Connect[...]

  • Seite 25

    June 30, 2006 Chapter 2: Installation SG1-UM-8500-03 2-5 Inst alling Blank Faceplates Use the blank faceplat e iden tified in the “ Blank Faceplate Requirement” on p age 1-6 . S ERIAL C ABLE ! IMPORT AN T Install blank faceplates in the SG-1 chassis to cover unused slots. Unused slots must be covered to prevent personnel contact with back panel[...]

  • Seite 26

    Chapter 2: Installation June 30, 2006 2-6 SG1-UM-8500-03[...]

  • Seite 27

    SG1-UM-8500-03 3-1 3 Chapter C OMMAND -L INE I NTERFACE (CLI) This chapter describes the SG-1 Command-Line Interface (CLI) , the step s to a ccess the CLI, an d the steps to perform initial confi guration using the CLI. O VERVIEW The SG-1 Service Gateway System man agement interface is accesse d using a CLI, which provides comprehensive SG-1 system[...]

  • Seite 28

    Chapter 3: Command-Line In terface (CLI) June 30, 2006 3-2 SG1-UM-8500-03 C OMMANDS AND N AVIGATIO N Navigate the command-line interface by entering a command name or a command string to move to the appropriate command level. The command level is indicated b y th e prompt. Y ou can abbre viate command-line interface commands if the ab breviations a[...]

  • Seite 29

    June 30, 2006 Chapter 3: Co mmand-Line Interface (CLI) SG1-UM-8500-03 3-3 C OMMAND -L INE E DI TING The command-line interface provides a DOS-like environment fo r editing. It provides spec ial key functions an d other special functions developed for a VT100-type terminal. T able 3-3. Navigation Commands Note: Commands may not be recognized under s[...]

  • Seite 30

    Chapter 3: Command-Line In terface (CLI) June 30, 2006 3-4 SG1-UM-8500-03[...]

  • Seite 31

    SG1-UM-8500-03 4-1 4 Chapter A CCESSING THE C OMM AND L INE I NTERFACE The initial step for managing the SG-1 Service Gateway System is to log on locally to an SCC or rear I/O port (if a rear I/O card option is used) and set an IP address to a llow for remote management via a T elnet session. This IP address should place the SG-1 system on the same[...]

  • Seite 32

    Chapter 4: Accessing the Comm and Line Interface June 30, 2006 4-2 SG1-UM-8500-03 S ETTING THE IP A DDRESS Set the management card IP add ress, subnet mask, an d default gateway (if a gate way exist s) to enable communication with external networks and to enable access to the SG-1 CLI for T elnet sessions. T o set a new IP address and subnet mask f[...]

  • Seite 33

    June 30, 2006 Chapter 4: Access ing the Command Line Interface SG1-UM-8500-03 4-3 Parameter(s) <slot number><port number> The SCC and rear I/O interfaces have specific designations as shown in T able 4-2 . T able 4-2. Interface Identification <ipaddr> The SCC IP address for interface in question. This address is set up to be on t[...]

  • Seite 34

    Chapter 4: Accessing the Comm and Line Interface June 30, 2006 4-4 SG1-UM-8500-03 D ISPLAYING THE IP A DDRESS From the Host> prompt, ente r the show configuration command to verify your co nfiguration. Example(s) When the show configuration comma nd is entered, A scree n similar to th e one above displays th e SG-1 SCC card’s Ethernet por t IP[...]

  • Seite 35

    SG1-UM-8500-03 5-1 5 Chapter U SING THE C OMMAND L INE I NTERFACE There are multiple ways to access an SG-1 for manag em ent. Also, there are rules that determine the number of accesses that can be made at one time to an SG-1 sy stem. Once you have access, you can complete the configuration and management of the SG-1. C ONFIGURI NG THE SG-1 The ope[...]

  • Seite 36

    Chapter 5: Using the Command Line Interface June 30, 2006 5-2 SG1-UM-8500-03 W HAT TO D O N EXT From the command-lin e interface, use the proce dur es in this manu al to (among other things): • Configure the network card por ts, followed by services for the network connectio ns, including Automatic Pro- tection Switching (APS) for the OC3 card. ?[...]

  • Seite 37

    SG1-UM-8500-03 6-1 6 Chapter F IRST -L EVEL C OMMANDS This chapter describes the commands available at the first command level of each SCC. Y ou can enter the entire command or the first two letters of most commands an d command-line argument s. If there are two commands with the same first two letters, enter enough letters to di f f er entia te be[...]

  • Seite 38

    Chapter 6: First-Level Commands June 30, 2006 6-2 SG1-UM-8500-03 S HOWING A L IST OF A VAILABLE P ARAMET ERS Using the GREP command The GREP command may be o perated on any of the system commands. Usage system-command | grep "string" Example(s) Using the ? command The list of available p aramete rs can be viewed by typing ? at the first-l[...]

  • Seite 39

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-3 Example(s) Using the show ? command From the first-level Host> prompt, enter show ? to view a list of available commands. Example(s) Host> ? show - Display running configuration and status write - Write running configuration copy-TFTP - copy-TFTP file from server ping - Ping com[...]

  • Seite 40

    Chapter 6: First-Level Commands June 30, 2006 6-4 SG1-UM-8500-03 These commands are discussed below . Using the show version command Enter show version to see version levels of hardware and sof tware. Usage show version <software|hardware|pack> show version software <SCC> show version hardware <2> Parameter(s) <software|hardwar[...]

  • Seite 41

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-5 Example(s) Host> show version software Module Num Application ______ ___ ___________ SCC-ATM155 1 10.0T2.05 Jun 08 2006 17:18:19 Host> Host> show version hardware Module Num Part No. Serial No. Slot _________ ___ _____________________ __________ ____ Backplane 1 710-200-0 Rev[...]

  • Seite 42

    Chapter 6: First-Level Commands June 30, 2006 6-6 SG1-UM-8500-03 Displaying the configuration in NVRAM Usage show configuration Host> show configuration[...]

  • Seite 43

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-7 Example(s) Host> show configuration # version: 10.0T2.05 Jun 08 2006 17:25:51 interface ethernet 01 172.16.1.13 255.255.255.128 auto interface ethernet 02 172.16.13.193 255.255.255.128 auto password viewer Tw)wtx- password operator Tw)wtx- password superuser +5z!#r-MGA password t[...]

  • Seite 44

    Chapter 6: First-Level Commands June 30, 2006 6-8 SG1-UM-8500-03 ip local-pool pool1 162.10.1.1 162.10.1.254 internal ip domain-name POPmaestro ip primary-name-server 62.90.133.233 ip secondary-name-server 0.0.0.0 ip default-gateway 172.16.1.1 ip tcp adjust-mss on ip dhcp relay server Ethernet 02 1 172.16.1.15 debug watchdog-TimeValue 60 time-serv[...]

  • Seite 45

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-9 Displaying Ethernet port configurations Displayin g Ethernet Port St atistics Use the show ethernet command to display th e Ethernet port p arameters for the Rear I/O Eth ernet port. Usage show ethernet <slot number> <port number> Parameter(s) <slot number> The slot [...]

  • Seite 46

    Chapter 6: First-Level Commands June 30, 2006 6-10 SG1-UM-8500-03 Example(s) Host> show ethernet 0 1 Interface Slot 0 Port 1 is up, line protocol is up Hardware address is 008042195FB7 Internet address is 10.0.1.220 Mask is 255.255.255.0 Gateway IP address is 10.0.1.253 Duplex mode sensed by auto-negotiation is full-duplex Ethernet speed is 1 [...]

  • Seite 47

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-1 1 Displaying SONET port s t atus Usage show port sonet Parameter(s) None. Example(s) Host> show port sonet Host> show port sonet ATM_SCC> show port sonet Slot Port Status Capacity Redundant Redundant Conf Status ____ ______ ________ ___ ___________ ______ 2 1 OK 155 working a[...]

  • Seite 48

    Chapter 6: First-Level Commands June 30, 2006 6-12 SG1-UM-8500-03 Displayin g A TM Po rt St atus Usage show atm pvc Parameter(s) None. Example(s) Host> show atm pvc Host> show atm pvc Name VPI VCI Slot Port Sub-port PCR Status ______ ____ ____ ____ ______ ________ ___ ______ none 0 32 2 1 1 155 UP test 2 32 2 1 1 155 UP test 2 33 2 1 1 155 UP[...]

  • Seite 49

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-13 Displayi ng User St atus Usage show [<cr>|<number>] Parameter(s) [<number>] The line number of the user to be viewed. Example(s) Host> show user Host> show users Line Line User User Name IP Address Duration Calling Type Type hh:mm:ss Number ____ ____ ____ ____[...]

  • Seite 50

    Chapter 6: First-Level Commands June 30, 2006 6-14 SG1-UM-8500-03 Host> show users 704 Line number: 702 Line type: ANet User type: PPP User name: 0_220 IP address: 10.220.3.191, IP pool name: 1 Next Hop: 10.0.1.253 Tunnel ID(in): 4798 Tunnel Session ID(in): 21182 LAC source IP 10.0.1.64 Session duration/timeout: 00:00:39 / 17:59:21 Idle duration[...]

  • Seite 51

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-15 Displaying Routing T ables Use this command to display the configured routes. Usage show ip-route Parameter(s) None. Example(s) Displaying System Administ rators Usage Use this command to display the system admi nistrators that are logged onto the system. Parameter(s) None. Example(s[...]

  • Seite 52

    Chapter 6: First-Level Commands June 30, 2006 6-16 SG1-UM-8500-03 Displaying System Parameters Usage show system show system <load> Parameter(s) <load> Calculates the throughput thro ugh each interface in Mb ps. Example(s) Host> show system Host> show system Up-time: 1 Hours, 56 Minutes, 58 Seconds Total number of network incoming[...]

  • Seite 53

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-17 Host> show system load Calculating load ... Total current connected users: 0 Total sessions' capacity: 2000 System load: 0% CPU usage: 1% Interface 0/2 Throughput [5 sec. Avg.]: 0.0 Mbit/s In, 0.0 Mbit/sec Out Total available throughput: 100 Mbit/s In, 100 Mbit/sec Out Traffi[...]

  • Seite 54

    Chapter 6: First-Level Commands June 30, 2006 6-18 SG1-UM-8500-03 Displaying License Attrib utes This command displays the system license information . Usage show license Parameter(s) None. Host> show license[...]

  • Seite 55

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-19 Example(s) Host> show license Working license : permanent Temp License Magic: T001001086 [CREATION] DATE=December 22 2005 16:03:57 [VERSION] MAJOR=10 [SN] SNSOURCE=1 SNNUM=1 SN1=6046838 [MAGIC] Magic String=C000000067 MaxAllowedDays=30 [OPTIONS] Allow Maximum 500 Users=off Allow M[...]

  • Seite 56

    Chapter 6: First-Level Commands June 30, 2006 6-20 SG1-UM-8500-03 Filter Redirection=on Location Based Service=on Service Selection=on Native IP=on Dynamic IP Changing=on Application Awareness=on MPLS=on Native IP Roaming=on Host>[...]

  • Seite 57

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-21 Displaying VRRP attributes Use this command to display the configured Virtual Rou ter Redu ndancy Protocol (VRRP) st atus on the specified interfaces. Usage show vrrp interface (<ethernet>|<vlan>) <slot number> <port number> <number> Parameter(s) (<et[...]

  • Seite 58

    Chapter 6: First-Level Commands June 30, 2006 6-22 SG1-UM-8500-03 For the backup: Displaying active GRE and IP-in-IP tunnels This command displays the active GR E and IP-in-IP tunnels in the system. Usage show ip-tunnel [gre | ip-in-ip [<remote endpoint Ip address> <tunnel direction>]] Parameter(s) None. Host> show vrrp interface Eth[...]

  • Seite 59

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-23 Example(s) Host> show ip-tunnel <cr> Tunnel IP Tunnel Total Tunnel Tunnel Endpoint Sessions Status Type --------------- ---------- -------- ------- ------ 192.168.1.1 remote 20 unknown gre 10.10.2.234 remote 11 up ip-in-ip 10.10.1.20 remote 7 down ip-in-ip Host> Host> [...]

  • Seite 60

    Chapter 6: First-Level Commands June 30, 2006 6-24 SG1-UM-8500-03 Displaying show mpls-labe ls commands It displays the incoming labels binding received from the neighbors and the ou t- going label binding distributed by the system. When no specific FEC is defined, the system sh ows all FECs. Usage Show mpls-labels <standard | vc> <out | i[...]

  • Seite 61

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-25 VC in for Martini draft: VC OUT for Martini draft: S t andard in specific FEC lable: Host> show labels vc in VC ID VC Type Group ID Label Tunnel Endpoint Upper stack FEC ID 1 LAN 0xc2010000 123876 192.0.1.8 1 2 LAN 0xc2010000 123876 192.0.1.8 1 1 VLAN 0xc2010001 1034 212.1.3.4 2 1[...]

  • Seite 62

    Chapter 6: First-Level Commands June 30, 2006 6-26 SG1-UM-8500-03 Displaying show mpls l2transport vc commands It shows confine redirected interface traf fic th rough MPLS l2vpn tunnel based on Mar tini draf t. Example(s) Displaying a list of available write commands This command shows the available write commands enabled on the SCC. Usage write [&[...]

  • Seite 63

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-27 Example(s) Host> write terminal # version: 10 May 21 2006 15:14:31 password viewer Tw)wtx- password operator Tw)wtx- password superuser +5z!#r-MGA password technician Koz!# password pre-authentication +k(~#i+^#43,6 def-service-auth ppp-auto multilink-mode multi-cage radius-server[...]

  • Seite 64

    Chapter 6: First-Level Commands June 30, 2006 6-28 SG1-UM-8500-03 Using the copy-TFTP command Use this command to copy a new application software (im age) or license file from a TFTP server to the flash memory of the SCC-ETH card. Usage copy-TFTP flash [<IP address> | <license>] <ip address> <file name> Parameter(s) <ip a[...]

  • Seite 65

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-29 The destination ip address to ping. [-c <number>] The number of echoes. [-i <number>] The number of wait se conds. [-s <number>] The number of bytes. [atm] The A TM interface. [atm <slot number>] The A TM slot number ( A TM uses slot 2 ). [atm <atm port num[...]

  • Seite 66

    Chapter 6: First-Level Commands June 30, 2006 6-30 SG1-UM-8500-03 Using the reload command to re st art the system Use the reload non-gr aceful command to reset the sy stem and relo ad the sof tware . Usin g this command will terminate all sessions. Usage reload non-graceful Parameter(s) None. Example(s) Host> reload non-graceful Host> reload[...]

  • Seite 67

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-31 Clearing Users A specific user can be disconnected fro m the SG-1 by writing the clear user comman d followed by its line number . Usage clear user <line number> Parameter(s) <line number> The line number of the user to be clear ed. Example(s) Host> clear user Note: Y [...]

  • Seite 68

    Chapter 6: First-Level Commands June 30, 2006 6-32 SG1-UM-8500-03 Using the T raceroute Command Use the traceroute command to track the route a packet t akes to a network host. Usage traceroute <ip address> [-h <number>| -i <seconds>] Parameter(s) <ip address> The IP address to which the trace is to be performed. [ -h <nu[...]

  • Seite 69

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-33 Using the exit command This command exits the user from the curr ent configuration leve l. W hen used at the first level, the user is logged out of the session. Usage exit Parameter(s) None. Example(s) Host> exit Host> (config-debug)# exit Host> (config)# Host> (config)# [...]

  • Seite 70

    Chapter 6: First-Level Commands June 30, 2006 6-34 SG1-UM-8500-03 U SING D EBUG M ODE This section provides informatio n on the co mmands and options available in debug mode. Switching to Debug Mode Use the debug command at the first-level prompt ( Host> ) to switch the system to the second-level debug prompt: Host(debug)# . This prompt indicate[...]

  • Seite 71

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-35 Using the show command in debug mode Use the show command to display memor y , system, and fragmentation information. Usage show [memory | system |log-modules | statistics | arp] Parameter(s) [memory] Display memory allocation. [system] Display connection information. [log-modules] D[...]

  • Seite 72

    Chapter 6: First-Level Commands June 30, 2006 6-36 SG1-UM-8500-03 Example(s) Host(debug)# show statistics fragmentation Total number of packets that were fragmented: 0 Total number of packets that were reassembled: 0 Total number of upstream packets in which the MSS field was adjusted: 0 Total number of downstream packets in which the MSS field was[...]

  • Seite 73

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-37 Host(debug)# show log-modules Group Error Error Event Event Trace Name Min Max Min Max AAA 0 DEF 0 DEF DEF User 0 DEF 0 DEF DEF IP 0 DEF 0 DEF DEF Route 0 DEF 0 DEF DEF System 0 DEF 0 DEF DEF PPP 0 DEF 0 DEF DEF Service 0 DEF 0 DEF DEF NativeIP 0 DEF 0 DEF DEF Interface 0 DEF 0 DEF D[...]

  • Seite 74

    Chapter 6: First-Level Commands June 30, 2006 6-38 SG1-UM-8500-03 Module Gro up Error Er ror Event Event Trace Name Name Min Max Min Max ABM User 0 DEF 0 DEF DEF AbmFSM User 0 DEF 0 DEF DEF AbmIpPool User 0 DEF 0 DEF DEF AbmMlPPP User 0 DEF 0 DEF DEF AbmRadius AAA 0 DEF 0 DEF DEF AbmService User 0 DEF 0 DEF DEF AbmRadiusProxy AAA 0 DEF 0 DEF DEF ED[...]

  • Seite 75

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-39 This comma nd displays the arp tabl e informatio n. Usage Show arp [<index ><NextAd dress>] Parameter(s) <index> The interface on which this entry’s equivalence is e ffectiv e. Numbers are 1 to 65,0 00. <NextAdd ress> This is the IP address corresponding to [...]

  • Seite 76

    Chapter 6: First-Level Commands June 30, 2006 6-40 SG1-UM-8500-03 It clears the arp table entry (only dynamic entries) , th e clear arp specific, clear s any entr y except the static ones. Note: when deleting a non-volatile arp entry the s ystem might re-creates it as a dynamic entry. Usage Clear arp [ arp-specific <ifindex><NetAdd ress>[...]

  • Seite 77

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-41 Host(debug)# show memory Free memory: region 0: 9583616 region 1: 56918016 Largest memory : region 0 buffer: 9583616 region 1 buffer: 56901632 pNA statistics: Number of classes: 8 - blocks: 15000 free: 12492 wait: 0 drops: 0 Buffer size 0 - blocks: 9000 free: 6500 wait: 0 drops: 0 Bu[...]

  • Seite 78

    Chapter 6: First-Level Commands June 30, 2006 6-42 SG1-UM-8500-03 Defining port-ethernet redundancy-mode command It immediately activates th e Ethernet redundancy ope ration. Usage port-ethernet redundancy-mode <working slot><working port> [<auto | force- protecting | force-working>] Parameter(s) [working slot] It is the working,[...]

  • Seite 79

    June 30, 2006 Chapter 6: First-Level Commands SG1-UM-8500-03 6-43 Checking the system RADIUS interface This command checks the system RADIUS interface, by authenticating user -name and p a ssword the same way the system authenticates a connected call (including retries a nd RADIUS redundancy). Usage radius-server check <user-name> <passwor[...]

  • Seite 80

    Chapter 6: First-Level Commands June 30, 2006 6-44 SG1-UM-8500-03[...]

  • Seite 81

    SG1-UM-8500-03 7-1 7 Chapter S ECOND L EVEL C OMMANDS This chapter describes the prima ry co mmands ava ilable at the second command level. For addition al seco nd level commands, refer to Appendix B: Redi rection Server . Using the configure command Use the configure terminal command at th e first level prompt to switch the system to the seco nd-l[...]

  • Seite 82

    Chapter 7: Second Level Comma nds June 30, 2006 7-2 SG1-UM-8500-03 Example(s) Host> configure network 155.226.20.250 filename Loading file ... Preparing TFTP download...Done. Starting the TFTP download....completed(downloaded size is 892 ). Converting file ... File loaded successfully Host> Host> configure terminal Host(config)#[...]

  • Seite 83

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-3 B ANNER C OMMAND Creating a Login Banner You may create a greeting message or banner, to be disp layed on the user 's termina l when they log in. Th e banner may be a string of up to 32 alphanumeric characters. To set "Welcome to SG-1" as a banner: At the second level [...]

  • Seite 84

    Chapter 7: Second Level Comma nds June 30, 2006 7-4 SG1-UM-8500-03 <ethernet mode> The operating mode of the inte rface to be configured (see Table 7-2 ). (mtu) The maximum transmission u nit. Select either: • 1500 (default) • 1544 Example 1 Example 2 T able 7-1. Configure Ethernet Ports Host(config)# interface ethernet 0 2 12.3.66.211 [...]

  • Seite 85

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-5 T able 7-2. Ethernet Operating Mode Usage no interface Ethernet <slot numb er><port number> Parameter(s) <slot number> This is the interface slot number you want to configure. <port number> This is the physical port nu mber you want to configure. Example(s) V[...]

  • Seite 86

    Chapter 7: Second Level Comma nds June 30, 2006 7-6 SG1-UM-8500-03 Configuring Ethernet Redundancy The system support s redundancy be tween 01 and 02 ethernet interface or be tween 11 or 1 2 Ethernet inter face. The system, automatically while detects a malfun ction in the working Ethernet (fo r example link down), switches to the protecting (r[...]

  • Seite 87

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-7 Example(s) Using the no port-ethernet redundancy-enable command This command disables redundancy bet ween the two Ethernet inter faces. Usage no port-ethernet redundancy-enable <working slot><working port> <protecting slot> <protecting port> Parameter(s) <[...]

  • Seite 88

    Chapter 7: Second Level Comma nds June 30, 2006 7-8 SG1-UM-8500-03 L OOPBACK C OMMANDS Configuring interface loopback This command enables the administrato r to either add or ch ange the loopback interface. Usage interface loopback <interface number> <IP address> <mask> Parameter(s) <interface number> This is the interface n[...]

  • Seite 89

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-9 Example(s) Using the no interface loopback command This command delete s the loopback interface. Usage no interface loopback <interface number> Parameter(s) <interface number> This is the loopback inte rface number to be deleted; va lid range is 1 to 200. Example(s) VLAN [...]

  • Seite 90

    Chapter 7: Second Level Comma nds June 30, 2006 7-10 SG1-UM-8500-03 Usage interface vlan <slot number> <port number> <vlan id> <IP address> <mask> [ name <VLAN name> | QinQ <start ID><range>] Parameter(s): <slot number> Slot number of the physical card. <port number> Port number of the c[...]

  • Seite 91

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-1 1 Using no interface VLAN co mmand This command deletes a VLAN defi nitio n for the Ethernet interface. Usage no interface vlan <slot number> <port number> < id> Parameter(s) <slot number> This is the slot number of the physical card. <port number> Thi[...]

  • Seite 92

    Chapter 7: Second Level Comma nds June 30, 2006 7-12 SG1-UM-8500-03 Setting the default-se rvice authentication mode When using authenticat ion by userna me and password two protocols are available: • PA P (Password Authentication Pro tocol )–the most basic form of authentication. In P AP , a user's name and password are tr ansmitted over [...]

  • Seite 93

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-13 Changing domain authentication settings In a SG-1 system, virtual private t unnels (VPNs) are created upon RADIUS requ est. The tunneling service is always enabled within the SG-1 (there is no configuration command for turning it on or of f). The domain-auth entication configuration[...]

  • Seite 94

    Chapter 7: Second Level Comma nds June 30, 2006 7-14 SG1-UM-8500-03 Example 1: The “no” command set the system web authentication mode to PAP. Example 2 : AT M C OMMANDS This section describes the procedure for configuring an ATM PVC (Per m anent Virtual Circuit). The following requirements must be met bef ore a circuit can be created. • The [...]

  • Seite 95

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-15 Usage port sonet <slot> <port> type (OC3c|STM1) Parameter(s) <slot> The line card slot to be configured. Use the value 2 to indicate the configurat ion of the SONET/SDH po rt. <port> The line card port to be configured (either 1 or 2 ). (OC3c|STM) The type [...]

  • Seite 96

    Chapter 7: Second Level Comma nds June 30, 2006 7-16 SG1-UM-8500-03 <protect port> The port number to be des ignated as the prot ect port (valid value = 1 or 2). [SFBER (value)] Signal Fail Bit Error Rate Threshold. Valid valu es = 3 to 12, Default = 3. [SDBER (value)] Signal Degrade Bit Erro r Rate Threshold. Valid values = 5 to 12, Default [...]

  • Seite 97

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-17 [loopback] Places a logical loopback on the bridge-route interface. <loopback number> Numeric value assigned to the bridge-route loopback. [mtu] Used to set the int erface's Maximum Tran smission Unit (MTU) (valid values are 1500 or 15 44 ). Example(s) Using the pppoa ena[...]

  • Seite 98

    Chapter 7: Second Level Comma nds June 30, 2006 7-18 SG1-UM-8500-03 Using the no pppoa enable command The no pppoa enab le interface command disables PPPoA negotiation for a specific interface in th e system. Usage No pppoa enable interface <slot number><port number[sub-interface number]> For para meters see T abl e 7-6 . Using the in[...]

  • Seite 99

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-19 T able 7-6. int erfa ce atm command p arameters Example(s) After this command is run, the system deletes the ATM interfac e, as well as all of the enabled applications for this interface (such as, PPPo E, PVC, PPPoA, etc.). Usage no interface atm <slot number><port number&[...]

  • Seite 100

    Chapter 7: Second Level Comma nds June 30, 2006 7-20 SG1-UM-8500-03 Configuring a single PVC This command creates a permanent vir tual circuit (PVC) on an A TM interface. Usage atm pvc <vpi> <vci> <slot> <port> <sub-interface> [name <pvc name>] | [ OAM <on|off|on-cc> | ubr <peak cell rate>] Parameter([...]

  • Seite 101

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-21 [OAM] Operation And Manage ment mode • on - Enable OAM mode • off - Disable OAM mode • on-cc - Enable OAM mode with continuity check Example(s) Configuring a range of PVC’ s Use this command to configure a range of PVC's on an A TM interface. Usage atm pvc range <vpi[...]

  • Seite 102

    Chapter 7: Second Level Comma nds June 30, 2006 7-22 SG1-UM-8500-03 [OAM] Operation And Manage ment mode • on - Enable OAM mode • off - Disable OAM mode • on-cc - Enable OAM mode with continuity check Example(s) RADIUS C OMMANDS Configuring the RADIUS server in the SG-1 configuration Each RADIUS server should be configured in the syst em. The[...]

  • Seite 103

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-23 Parameter(s) <port address> The authentication po rt number can be a ny number betwee n 0 and 65535. The de fault value is 181 2. <port number> The accounting port number can be any number between 0 and 6 5535. T he acct-port default value is 1813. <m, i, or s> m ([...]

  • Seite 104

    Chapter 7: Second Level Comma nds June 30, 2006 7-24 SG1-UM-8500-03 Example(s) Using the service cache command The SG-1 is able to cache each r eceived service's in for mation based on a configured aging time . Oper atin g this capability via the service cache command causes t he system to authenticate a serv ice once during the specified agin[...]

  • Seite 105

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-25 Example(s) Using the no ip radius source-interface command This command deletes the radius source-interface configuration by setting it to it s default value. Usage no ip radius source-interface Example(s) A CCESS L IST C OMMANDS An access list is a mechanism that filters the reques[...]

  • Seite 106

    Chapter 7: Second Level Comma nds June 30, 2006 7-26 SG1-UM-8500-03 access-list EDS-permit <source IP address> <mask> <cr> access-list native-ip <source IP address> <mask> <cr> native-ip-pass-through <source IP address> <mask> <cr> After keying in one of the above co mmands, the system responds [...]

  • Seite 107

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-27 Parameter(s) <source ip address> This is the allowed network sou rce IP; it must be a legal network IP address. <source mask> This is the allowed network sou rce mask; it must be a legal network IP address. Example(s) Using the no access-list native-ip command This comma[...]

  • Seite 108

    Chapter 7: Second Level Comma nds June 30, 2006 7-28 SG1-UM-8500-03 Example(s) Using the no access-list native-ip-pass-thro ugh co mmand The no access-list native-ip-p ath-t hrough comman d deletes a p ath through native IP access list configuration. It deletes the static native-ip access list configuration. Usage no access-list native-ip-pass-thro[...]

  • Seite 109

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-29 When using the group parameter , there are thr ee options for the first command line argument: • aaa –Major alarm. Any defined RADIUS serv er marked in the system DB as dead (inactive) will be reported via SNMP . Any defined RADIUS serve r marked in the syst em a s ALIVE after b[...]

  • Seite 110

    Chapter 7: Second Level Comma nds June 30, 2006 7-30 SG1-UM-8500-03 T UNNEL COMMANDS This command defines a r emote (the tunnel initiator ) tun nel endp oint IP addr ess, which allowed opening ip-in-ip or GRE tunnels to the system. The local tunnel end point ip address (tunn el destination) should be one of the system IP addresses ( E thernet, VLAN[...]

  • Seite 111

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-31 The tunnel interface should appear in t he ifT able with type tunnel (131) and should inclu de the st andar d interface information. The maximum number of tunnel interfaces in the system is 500. The system should add the tunnel inform ation to the GRE or ip-in-ip tab les as a loca l[...]

  • Seite 112

    Chapter 7: Second Level Comma nds June 30, 2006 7-32 SG1-UM-8500-03 Example(s) Using the ip tunnel echo command This command defines the source IP address to be used for the ICMP ech o message in the redundancy operation. Usage ip tunnel echo <echo source IP address> Parameter(s) <echo source ip address> It is the source IP address to b[...]

  • Seite 113

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-33 T IMEOUT S C OMMANDS Setting the Session-Timeout The session timeout is used to disconnect a user after a specifi ed number of second s. Usage session-timeout <number> Parameter <number> It is the seconds nu mber, session timeout in secon ds 0 - 4250000 ( 0 = unlimited) [...]

  • Seite 114

    Chapter 7: Second Level Comma nds June 30, 2006 7-34 SG1-UM-8500-03 N ATIVE IP C OMMANDS Using the native-ip dhcp pre- auth-mode command The system should enable u pon configur atio n to pre-authenticate a Native IP session, wh ich uses DHCP (DHCP discover) for IP allocation based on its MAC address. A successful pre- authentication will forward th[...]

  • Seite 115

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-35 Example(s) Using the native-ip enable command This command enables native ip service on a specific interface. It enables the native IP for a specific VLAN or interface . Phase 1 should include Ether net interface and VLAN-Id o nly . Phase 2 should include interface atm. Usage native[...]

  • Seite 116

    Chapter 7: Second Level Comma nds June 30, 2006 7-36 SG1-UM-8500-03 Example(s) The system should disable th e native-ip enable command in case Native IP capability is not license d (set to off ). T he system should report an op eration erro r with the following message format: Using the no native-ip enable command It deletes a native ip enabled con[...]

  • Seite 117

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-37 Using native-ip realm command The native-ip realm command specifies the realm string the system sh ould use in the na tive-ip authent icating, accounting, and service operations. The realm should be added to the u ser-name field in a ll native-ip user's authentic ation and acco[...]

  • Seite 118

    Chapter 7: Second Level Comma nds June 30, 2006 7-38 SG1-UM-8500-03 Parameter(s) <slotport> The Ethernet slot number (valid number range is 0 to 2). The Ethernet port number (1 or 2). <slotportsub-interface> The Ethernet slot n umber (valid number range is 0 to 2) , The Ether net port number (1 or 2), and VLAN id entifier, sub-interf[...]

  • Seite 119

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-39 M AXIMUM S EGMENT S IZE (MSS) C HANGING Using the ip tcp adjust-mss command The system, when configur ed so that ip tcp adjust-mss is set to on , should adjust the TCP MSS option value on SYN packets to 1436 (for MSS op tion larger than 1436) in both dire ctions for each connected u[...]

  • Seite 120

    Chapter 7: Second Level Comma nds June 30, 2006 7-40 SG1-UM-8500-03 L2TP AND PPP C OMMANDS The L2TP commands are used for configuring the L2tp source-addr ess. When the l2tp source-address is configured, the system set s the l2tp sou rce address in the respo nse packet s regardl ess o f the original l2tp LAC request. Only one source interface may b[...]

  • Seite 121

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-41 Configuring the primary DNS Usage ip primary-name-server <IP address> Example(s) Configuring the secondary DNS Usage ip secondary-name-server <IP address> Example(s) Setting tunnel servers Each IAS (Internet Access Swit ch) which will send its users to the SG-1 must be c[...]

  • Seite 122

    Chapter 7: Second Level Comma nds June 30, 2006 7-42 SG1-UM-8500-03 <mask> The mask of the network allowed connecting the LNS. <alpha-numeric string> Password used for auth entic ating between LAC and LNS. Example(s) Setting multi-link mode The SG-1 allows the user to use higher bandwidth by using ML- PPP. Typically ML-PPP is used to co[...]

  • Seite 123

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-43 Parameter(s) <pool_name> The IP pool name (an alpha-numeric string) . <starting_IP> Starting IP address. <last_IP> Ending IP address. <internal | external> This fourth command-line a rgument is optional and has two options: • internal –For internal use on[...]

  • Seite 124

    Chapter 7: Second Level Comma nds June 30, 2006 7-44 SG1-UM-8500-03 Using the lcp echo command This command configures the LCP echo behavior in all PPP sessions. • The system default L CP configuration is of f. • The system LCP echo retries value is 3. • The lcp on defau lt is 30 seconds. In this mode the LCP echo is active for all PPP sessio[...]

  • Seite 125

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-45 Using the service internal command The system default internal service is Framed-PPP. When c onfigur ed to th e defau lt value, write ter minal does not present the configuration line. Usage service internal <Framed-PPP | VPDN <tunnel id> <l2tp tunnel password> <Pr[...]

  • Seite 126

    Chapter 7: Second Level Comma nds June 30, 2006 7-46 SG1-UM-8500-03 PPPoE support SG-1 PPP over Ethernet (PPPoE) sup port enables multiple hosts at a remote site to connect through the same customer premise acce ss device . It also provides access control and billing func tionality in a manner similar to dial- up services using PPP . In many access[...]

  • Seite 127

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-47 2. SG-1 as xDSL aggregator using Gig abit Ethernet ne twork In this scenario, a PPP session is initiated on an Etherne t-connected client thr ough a st andard ADSL mode m. The session is transported over the Ethernet and te rminated by the SG-1, which is acting as an xDSL aggregator[...]

  • Seite 128

    Chapter 7: Second Level Comma nds June 30, 2006 7-48 SG1-UM-8500-03 DHCP C OMMANDS Dynamic Host Configuration Pr otocol (DHCP) is a communica tions protocol that lets net work administrators manage centrally and automate th e assignment of Internet Protocol (IP) addresses in an organization's n etwork. Using the Internet Protocol, each machine[...]

  • Seite 129

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-49 Using the ip dhcp relay information o ption command The ip dhcp relay information option command enables the syst em to insert a DHCP relay agent information option in forwarded BOOT REQUEST messages t o the DHCP ser ver . Usage ip dhcp relay information option <Ethernet | VLAN |[...]

  • Seite 130

    Chapter 7: Second Level Comma nds June 30, 2006 7-50 SG1-UM-8500-03 DHCP Agent ID Overwrite When configured, the SG-1 should overwrite the DHCP agent ID and the server identifier to its ID ( IP address) in the DHCP reply messages. The system d oes not overwr ite the DHCP agent ID in it s default behavior . Using the ip dhcp relay agent-id-ove rwrit[...]

  • Seite 131

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-51 IGMP C OMMANDS Using the ip igmp proxy command The ip igmp proxy up stream-interface command enables the IGMP Proxy cap abilities on a specific upstream interface. When the upstream interfac e is not configured, the system does not support the IGMP proxy capability . Additionally , [...]

  • Seite 132

    Chapter 7: Second Level Comma nds June 30, 2006 7-52 SG1-UM-8500-03 R OUTING C OMMAND Using the ip forward command This command enables IP forwarding between the Ethernet in terfaces. The system's defaul t setting does not use IP forwarding. Usage ip forward This command disables IP forwardi ng betwee n the Ether net interfaces. Usage no ip fo[...]

  • Seite 133

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-53 Example(s) Add an IP route: Modify an Existing IP route: Route network 192.168.4.0 to Ether net interface 2 : Route network 192.168.4.0 to A TM interface 213: <loopback interface> Loopback interface number 1 - 200 <tunnel interface ip> Tunnel interface identifier 1 - 5[...]

  • Seite 134

    Chapter 7: Second Level Comma nds June 30, 2006 7-54 SG1-UM-8500-03 Route network 192. 168.4.0 to Loopback in ter face 2: Route network 192.168.4.0 to Ether net interface 02: Route native IP user side n etwork 192.168.4. 0 to 192.168.1.1: Route network 10. 0.4.0/24 to tu nnel inter fa ce 3: Host(config)# ip route 192.168.4.0 255.255.255.0 194.90.1[...]

  • Seite 135

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-55 Deleting an IP route line This command deletes the existing route. Usage no ip route [nip] <destination prefix> <network mask> <next-hop IP-address> Parameter(s) T able 7-15. no ip route command p arameters Example(s) Using the ip default-gateway comman d Use this [...]

  • Seite 136

    Chapter 7: Second Level Comma nds June 30, 2006 7-56 SG1-UM-8500-03 Usage no ip default-gateway Example(s) When assigning a default-ga teway that is not in the subnet of the primary or secondary Ethernet interface s, the system provides a warning. Using the router command This command defines the system default routing proces s. In cases where adve[...]

  • Seite 137

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-57 Example(s) This command disables the system default r outing process. Usage no router Using the IP rip authentication key command The ip rip command is located beneath the "conf igure terminal" menu. It is used to define the password for the Router Information Protocol (RI[...]

  • Seite 138

    Chapter 7: Second Level Comma nds June 30, 2006 7-58 SG1-UM-8500-03 Example(s) Using the no ip osp f interface command This command disables OSPF on an interface. Usage no ip ospf interface <Ethernet | VLAN | ATM> <slot number><port number> [<sub-interface>] For para meters and examples, refer to “Using the ip ospf inter[...]

  • Seite 139

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-59 Using the ip osp f interface dead- interval command The command specifies the number of seconds that a devic e's hello p acket s must not have bee n seen before it s neighbor declares th e OSPF router down. Usage ip ospf interface <Ethernet | VLAN | ATM> <slot number&g[...]

  • Seite 140

    Chapter 7: Second Level Comma nds June 30, 2006 7-60 SG1-UM-8500-03 Parameter(s) <simple-pass | message-digest | null> This is the authenticat ion type specified for neig hbor in g OSPF routers. Options include: • simple-p ass –using simple password authent ication; to configure see “Using the ip ospf interfa ce authentica- tion-key com[...]

  • Seite 141

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-61 Usage no ip ospf interface <Ethernet | VLAN | ATM> <slot number><port number> [<sub-interface>] authentication-key For para meters and examples, refer to “Using the ip ospf interfac e a uthentication-key command” . Using the ip osp f interface messa ge-[...]

  • Seite 142

    Chapter 7: Second Level Comma nds June 30, 2006 7-62 SG1-UM-8500-03 Using the ip osp f area s tub command This command configures an OSPF area as a stub area. The system default stubb in g option is no-stub and th e system default advertisemen t behavior is su mmary . Usage ip ospf area <area-id> [stub | no-stub] [no-summary | summary] Parame[...]

  • Seite 143

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-63 Using the no ip osp f ad ve rtise networ k co mmand This command deletes adver tisement of a network. Usage no ip ospf advertise network <area-id> <Network> For para meters and examples, refer to “Using the ip ospf adver tise network comma nd” on p age 7-62 . Using t[...]

  • Seite 144

    Chapter 7: Second Level Comma nds June 30, 2006 7-64 SG1-UM-8500-03 Parameter(s) <slot number> This is the SCC slot number; valid number range is 0 to 2. <port number> This is the SCC port number; valid values are 1 or 2. <sub-interface> This is the SCC for A TM sub-interface number; valid number range is 1 to 4095. Example(s) Usi[...]

  • Seite 145

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-65 Example 1: create mpls L2 VPN based on Martini draft for redirection Example 2: create mpls L2 VPN based on Martini draft for ternination Using the no mpls l2transport interface command This command detect s an MPLS l2vpn interfa ce based on Martini. Usage no mpls l2transport interf[...]

  • Seite 146

    Chapter 7: Second Level Comma nds June 30, 2006 7-66 SG1-UM-8500-03 <vc-id> This assigns a VC ID to the virtual ci rcuit between the system and the remote PE. Example: Route VLAN interface through an MPLS L2 VPN based on Martini draf t Using the no mpls l2transport route command It detects redire cted inter face tr af fic thr ough MPLS l2vpn [...]

  • Seite 147

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-67 Using mpls ip default-route comma nd It enables the distributio n of labels as sociated with the IP d efault route. Usage mpls ip default-route Example Using no mpls ip default-route command It disables the distribution of label s associated with t he IP default route. Usage no mpls[...]

  • Seite 148

    Chapter 7: Second Level Comma nds June 30, 2006 7-68 SG1-UM-8500-03 T able 7-17. vrrp command p arameters The following examples use two SCCs (Service Creation Ca rds): Example 1 (SCC1 configuration): Example 2 (SCC2 configuration): The following two examples show the configu ration wi th preemption ca p abilities: Parameter Description Legal value[...]

  • Seite 149

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-69 Example 1 (SCC1 configuration): Example 2 (SCC2 configuration): Host(config)# vrrp interface Ethernet 01 1 ip 192.168.1.100 priority 200 preempt- mode on Host(config)# vrrp interface Ethernet 01 2 ip 192.168.1.101 priority 201 preempt- mode on Host(config)# vrrp interface Ethernet[...]

  • Seite 150

    Chapter 7: Second Level Comma nds June 30, 2006 7-70 SG1-UM-8500-03 Using the no vrrp command This comma nd deletes the virtual r outer configuration in the system. Usage no vrrp interface <Ethernet | VLAN> <slot number> <port number> [ <VLAN ID>] <number> Parameter(s) T able 7-18. no vrrp command p arameters Exampl[...]

  • Seite 151

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-71 Example(s) D EBUG C OMMANDS Use the commands at the se cond level prompt to s witch the system to the second -level debug prompt, Host(config-debug)# . This indicates that the user is now in t he second level debug mode and has acce ss to the commands in the debug menu. There are th[...]

  • Seite 152

    Chapter 7: Second Level Comma nds June 30, 2006 7-72 SG1-UM-8500-03 Configure time server Usage (config-debug)# time-server-ip <IP address> Parameter <IP address> It is timer host IP addr ess, legal IP address. Example Configure error level commands (config-debug)# error-level < default | Module | Group> Parameters <default>[...]

  • Seite 153

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-73 Example (config-debug)# error-level default [ set-all <number>] Parameters set-all Will set all modules back to default <number> value of default maximum error leve l , numbers are …. Examples Usage (config-debug)# error-level < default | M odule | Gr oup > Param[...]

  • Seite 154

    Chapter 7: Second Level Comma nds June 30, 2006 7-74 SG1-UM-8500-03 Debug modules Usage (config-debug)# error-level Module ABM < max | min | default > Parameters < max > Maximum level < min > Minimum level < default > Set module's levels to default (config-debug)# error-level M odule <cr> - ABM - AbmFSM - AbmIpPoo[...]

  • Seite 155

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-75 Examples Usage (config-debug)# error-level Group AAA < max | min | default > < max > Maximum level < min > Minimum level < default > Set module's levels to default Examples Debug group s (config-debug)# error -level Module ABM default (cr) (config-debug)[...]

  • Seite 156

    Chapter 7: Second Level Comma nds June 30, 2006 7-76 SG1-UM-8500-03 Examples T race commands Usage Parameters <default> System's Default trace settin g <Module> System's trace log by Mo dule <Group> System's trace log by Mo dule Usage Parameters <set-all> Set all modules back to default < off > without t[...]

  • Seite 157

    June 30, 2006 Chapter 7: Second Level Commands SG1-UM-8500-03 7-77 Examples Configure Usage (config-debug)# sysLog-server-ip <IP addr ess> Parameter <IP address > It is the SysLogger IP address. Usage (config-debug)# e xit This command will cause ex it current config uration level. Example (config-debug)# tr ace default on (cr) (config-[...]

  • Seite 158

    Chapter 7: Second Level Comma nds June 30, 2006 7-78 SG1-UM-8500-03 Usage (config-debug)# end This command will cause Return to first configuration level. Example (config-debug)# end <cr> (config)#[...]

  • Seite 159

    SG1-UM-8500-03 A- 1 A Appendix SG-1 V ENDOR -S PECIFIC A TTRIBUTES This appendix describes the v endor-specific attributes relat ed to SG-1 EDS archite cture . O VERVIEW The vendor-specific attr ibutes are based on RFC-2 865 RADIUS recomme ndat ion. The first 4 octets are the vendor id (supported vendor ID 2454, 2014). The next two octe ts are the [...]

  • Seite 160

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-2 SG1-UM-8500-03 6 service-name user 16 V5.0 Contains the information of the service name, which was given to the connected peer or the peer requested service name. 7 personal-s ite user 17 V5.0 Contains the personal site to whic h the user should be redirected . 8 mac-address us er 18 V[...]

  • Seite 161

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A- 3 19 service-timeout service 50 V5.0 Defi nes the service session timeout measured in seconds. 20 next-service- name service 51 V5.0 Defines the name of the next service to provide when a service "session time out" expir es. 21 auto-service - name service 52 V5[...]

  • Seite 162

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-4 SG1-UM-8500-03 33 nip-pipe-next- hop rou te 72 V7.0 Defin es the next-hop router to be used for the traffic destined to a native IP user. 34 advertise- protocol route 73 V7.0 Defines the routing protocol to be use to advertise the session IP address. 35 forward-addr route 74 V90 Define[...]

  • Seite 163

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A- 5 47 acl-down-m ean- rate qos 93 V7.0 Specifies the average number of bits per second allowed to the user in the downstream direction per a specified access list. 48 cos qos 94 V7.0 Defines the class of service that should be set for a specified access list. 49 acl-prior[...]

  • Seite 164

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-6 SG1-UM-8500-03 Hierarchical Attribute Mode Most of the EDS attributes are operat ed in hierarchy mode . In th is mode, eac h session includes per each attribute 3 hierarchy-operating level sp aces. The firs t level sp ace is the syst em default that is being configured, either by manag[...]

  • Seite 165

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A- 7 Scenario Examples: • enable – Enables the sending of the accounting information. • lastp acket – This accounting operation mod e enables last p acket accountin g sessi on time , which is based on the last user's p acket timestamps . The last p acket ac co [...]

  • Seite 166

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-8 SG1-UM-8500-03 Format: adc-avpair = "user:accounting=[disable | enable | lastpacket |enable-on-ip- update | interim-update;<accounting update in seco nds>]", Example 1: adc-avpair = "user:accounting=disable", Example 2: gcon-avpair = "user:accounting=inte[...]

  • Seite 167

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A- 9 General: Format: adc-avpair = "user:auth-type= <pr e-auth | service-selection | web-auth>", Example: adc-avpair = "user:auth-type =pre -auth", user:action sub-attr ibut e The user:action sub-attribute defin es the acti on that should be taken [...]

  • Seite 168

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-10 SG1-UM-8500-03 General: Format: adc-avpair = "user:action= <Rejec t | echo | macantispoof | user_space_overwr ite | user_space_overwrite_on_next_service >">" , Example: adc-avpair = "user:action= Reject ", user: SSC-host sub-attribut e This vendor-spe[...]

  • Seite 169

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-1 1 General: Format: adc-avpair = "user:service-name= <service name>, Example: adc-avpair = "user:service-name= SRV1", user:personal-site sub-attribute The user:personal-site sub-attr ibute cont ains the per sonal site informati on of a connected user[...]

  • Seite 170

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-12 SG1-UM-8500-03 Format: adc-avpair = "user:personal-site= <site URL>", Example: adc-avpair = "user:personal-site= www.walla.co.il", user:mac-address sub-att ribute The user:mac-address sub-attribute cont ains the MAC addre ss information of a connect ed user a[...]

  • Seite 171

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-13 user:max-allowed-sessions sub- att ribut e The user:max-allowed-sessions sub-attribute define s the maximum number o f sessions allowed in a single blade per username. When the system receives this attribute in the authentication process, it checks for the number of co[...]

  • Seite 172

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-14 SG1-UM-8500-03 user:eds-enc-key sub-att r ibute The user:eds-enc-key sub-attribute c ont ains an encryption key for EDS o peration. The encryp tion key sho uld be exactly 16 characters long, comprised solely of character s from the set (“0 - 9”, “a - f”, “A - F”) . Every t[...]

  • Seite 173

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-15 user:original-url-prefix sub-at tribute The user:original-url -pr efix sub-attribute contains a str ing that should be pref ixed by the RDS to the user original requested url when redirecting the user to its perso nal si te. This sub-attribute indicates the RDS that th[...]

  • Seite 174

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-16 SG1-UM-8500-03 DHCP GROUP dhcp:dhcp-server sub-att ribute The dhcp:dhcp-server attri bute defines the DHCP server IP address, which the system should relay the user's DHCP requests . It may be activated dynamically , enabling t he change of DHCP se rver IP of a connected user on [...]

  • Seite 175

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-17 dhcp:opt82-relay-remote-id sub-attribute The dhcp:opt82-relay-remote-id attribute cont ains the re ceived option 82 relay remote ID sub-option, wh ile each byte information is in h exadecimal format. General: Format: adc-avpair = "dhcp:opt82-relay-remote-id= <O[...]

  • Seite 176

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-18 SG1-UM-8500-03 PROTOCOL GROUP protocol:type sub-attribu te There is a need in Access Request messages to receive a hint of the protocol ne gotiated with the peer . The protocol:type sub-attribute fu lfills this need and enables th e operator to manage the connections. The system sen d[...]

  • Seite 177

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-19 service:next-service-na me This vendor specific sub-attribute defines the name of the next service to use when a service "session timeout" expires. The system then chec ks if the authentication base is of service type a nd a ne xt service is configured for th[...]

  • Seite 178

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-20 SG1-UM-8500-03 service:auth-source This sub-attribute defines the source name to be used wh en t he PO Pma est ro author izes or authen ticate s a service with the RADIUS. The POPmaestro p erforms a RADIUS access request when a serv ice is activated. The service:auth-source attribut e[...]

  • Seite 179

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-21 Example: adc-avpair = "service:data-quota= 5000000", service:dat a-quot a-used The service:data- quota-used con tains the session's used quot a in bytes. It is being sent only if a quota has been established for the session. It is being sent in autho r i[...]

  • Seite 180

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-22 SG1-UM-8500-03 General: Format: adc-avpair = "service:acl-data-quota= <access-list number>;<data quota in by tes>", Example: adc-avpair = "service:acl-data-quota= 101;5000000", service:service-ca che The service:service-cache sub- attr ibute contains t [...]

  • Seite 181

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-23 General: Format: adc-avpair = "service:acl-data-quota-used = [access-list name;]<used data quo ta in bytes>", Example: adc-avpair = "service:acl-data-quota-used = video;5000000", service:acl-packet -quota The service:acl-list-packet-quota sub-[...]

  • Seite 182

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-24 SG1-UM-8500-03 General: Format: ADC-avpair = "service:acl-packet-quota =<access-list name>;<packet quota>;<quota period in seconds> ", Example: ADC-avpair = "service:acl-packet-quota=mail;100;300", service:acl- packet-quota-u sed This sub-attribu [...]

  • Seite 183

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-25 General: Format: adc-avpair = "service:acl-packet-quota-used =access-list name;<used packet quota>;<time period since last ACL packet> ", Example: adc-avpair = "service:acl-packet-quota-used=mail;100;245", service:roaming This sub-attrib[...]

  • Seite 184

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-26 SG1-UM-8500-03 ROUTE GROUP route:remote-fil ter-redirect-gw This vendor specific sub-attribute def ines the remote redirection gateway fo r redirecting the p a cket s th at did not pass the defin ed filter s. It also wo rk s d ynamically and allows chang ing the use r-redire cted g at[...]

  • Seite 185

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-27 system ignores all other instances. Note that the next hop must b e directly connect ed otherwise the packet s will be discarded. General: Format: adc-avpair = "route:nip-pipe-next-hop= <Next-hop IP address>", Example: adc-avpair = "route:nip-pipe-[...]

  • Seite 186

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-28 SG1-UM-8500-03 General: Format: adc-avpair = "route:forward-addr =<IP address> ", Example: adc-avpair = "route:forward-addr =192.168.1.4” Operation Mode: Access-Accept message Service-Accept message Vendor-type: 74 Vendor-length = 2 + 7-15 + attribute length[...]

  • Seite 187

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-29 route:acl-tcp-nat- redire ct att ribut e The route:acl-tcp-nat-redirect attribute defines a destination IP address to wh ich the system shoul d TCP redir ect all session packets. In this case the system should perform NA T redirection for all TCP packets that me et the[...]

  • Seite 188

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-30 SG1-UM-8500-03 General: Format: adc-avpair = "vpdn:l2tp-tunnel-password= <password>", Example: adc-avpair = "vpdn:l2tp-tunnel-password= test", vp dn:ip-address at tribute This attribute indicates the address o f the server end of the tunnel. This attr ibute i[...]

  • Seite 189

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-31 vp dn:tunnel-client-ip-address This attribute contains the address of the initiator end of the tunnel (LAC IP address). It enables th e operator to distinguish between users that accessed t he network from dif ferent access servers. General: Operation Mode: Access-Requ[...]

  • Seite 190

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-32 SG1-UM-8500-03 Format: adc-avpair = "vpdn:tunnel-client-ip-addre ss-= <tunnel client ip address>", Example: adc-avpair = "vpdn:tunnel-server-client-i p-address= 192.168.3.5", vp dn:nativeip sub-attribu te This attribute defines a session as a native IP pipe, [...]

  • Seite 191

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-33 QOS GROUP qos:up-mean-rate The qos:up-mean-rate sub- attribute specifies th e average num ber of bits per second allowed by the user in the upstream direction. It is sent in an Access-Accept message and it overwrites th e curr ent up stream r ate allocated to the user [...]

  • Seite 192

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-34 SG1-UM-8500-03 General: Format: adc-avpair = "qos:acl-up-mean-rate= <access list name>;<up mean rate in Kbit s>", Example: adc-avpair = "qos:acl-up-mean-rate= acl1;128", qos:acl-down-mean-rate sub attribute The qos:acl-down-mean-rate sub-attribute speci[...]

  • Seite 193

    June 30, 2006 Appendix A: SG-1 V end or-S pecific Attributes SG1-UM-8500-03 A-35 Example: The system sets DIFFSERV field to 12 of a ll the packet s that passed access-list vide o. Filter-Id = "video out permit 192.168.1.0 255.255.255.0 12", adc-avpair = "qos:cos=video;12" qos:acl-priority sub attribute The qos:acl-priority sub-a[...]

  • Seite 194

    Appendix A: SG-1 V endor-S pecific Attributes June 30, 2006 A-36 SG1-UM-8500-03 DNS GROUP dns:ip-primary The dns:ip-primary attribute define s the primar y DNS server to be used by the connected peer . General: Format: adc-avpair = "dns:ip-primary= <Primary DNS IP>", Example: adc-avpair = "dns:ip-primary= 194.90.1.5", dns:[...]

  • Seite 195

    SG1-UM-8500-03 B- 1 B Appendix R EDIRECTION S ERVER The Redirection Server (RDS) is an AD C’ s product that red i rect s all pee rs’ Http r equests to their personal-sites as pre-defined in th e Radius server . The RDS uses ADC’s EDS (Enhanced Dynami c Services) policy to r edire ct the connected peers and it actually act s as a sophisticated[...]

  • Seite 196

    Appendix B: Redirection Server June 30, 2006 B-2 SG1-UM-8500-03 Usage password <user type> <password> Parameter(s) <user type> It is the user type to change the password by operator or technician. <password> It is th e new pas sword , 6 to 64 alphanumeric characters. Example: Using default-redirection-site command • The de[...]

  • Seite 197

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B- 3 ORUP C OMMANDS Using ORUP (Original Requested URL Prefix) Usage <user personal site><ORUP fi eld><origina l URL reque st> Parameter: <ORUP field> This is the ORUP field value. Example • The ORUP field value is: ?url= • The user tries to connect to www .yaho[...]

  • Seite 198

    Appendix B: Redirection Server June 30, 2006 B-4 SG1-UM-8500-03 S ERVICE N AME C OMMANDS Using service-name command • The service-name command defines the se rvice to be operated for all sessions. • The command located at the “configure ter minal” menu. Usage service-name <ser vice name> Example: Using no service-name co mmand • The[...]

  • Seite 199

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B- 5 Usage event-le vel <NUM> output-device <Loggin g media> Parameter(s) <NUM> It is the event level number. It is a number between 0-1000 Initial va lue 0. <Logging media> The media to use for logging, console: sys-L og ger none, Initial value none Example: TFTP C[...]

  • Seite 200

    Appendix B: Redirection Server June 30, 2006 B-6 SG1-UM-8500-03 Example 1: Successful software download Example 2: Unsuccessful sof t ware download Using copy-TFTP flash def-re direction-p age comma nd • The copy-TFTP flash de f-red-p age command enables the updating of the de fault redirection p age (RDS.HTM L). • It is located at the “ADC_M[...]

  • Seite 201

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B- 7 Example 1: Successful software download Example 2: Unsuccessful sof t ware download Using sysLog-server-ip command • The sysLog-serve r-ip command defines the IP addr ess of the sysLog server . • It is located at the “configure terminal” menu. • SysLog server IP initial valu[...]

  • Seite 202

    Appendix B: Redirection Server June 30, 2006 B-8 SG1-UM-8500-03 S HOW C OMMANDS Using show version command • The show version comm and displays the soft wa re and har dwa re ver sions. • It is located at the “main” menu. Usage show version <software | hardware | pack> Parameter(s) <software> It shows the current sys tem software[...]

  • Seite 203

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B- 9 Example 3: Using show configuration command • The show configuration co mm and displays RDS configuration. • It is located at the “main” menu. Usage show configuratio n Example: Using show system command • The show system command displays the system information of the RDS. ?[...]

  • Seite 204

    Appendix B: Redirection Server June 30, 2006 B-10 SG1-UM-8500-03 Example: E THERNET C OMMANDS Using interface Ethernet command • The Ethernet command is used for configuring th e RDS IP address. • It is located at the “configure terminal” menu. • The change is af fe cting immediately . Usage interface Ethe rnet 1 <RDS IP address> &l[...]

  • Seite 205

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-1 1 Using no inter face Ether net comma nd • The command is located a t the “configure termin al” menu. • It deletes the c onfigured inter face. • The change is af fe cting immediately . Usage no interface Ethernet <Interface number> Parameter <Interface numb er> It[...]

  • Seite 206

    Appendix B: Redirection Server June 30, 2006 B-12 SG1-UM-8500-03 D EFAULT G ATEWAY C OMMANDS Using ip default-gateway command • The command is located a t the “configure termin al” menu. • It configures the sy stem default gateway . • The change is af fe cting immediately . Usage ip defaul t-gatew ay <gateway IP address> Parameter &[...]

  • Seite 207

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-13 Format Operation Error: Default-gateway is out of subn et. Example 1: U SING R ELOAD C OMMAND • The reload co mmand rest art s the RDS. • The command is located a t the “main” menu. Usage reload <non-gracefu l> Parameter <non-gracefu l> It is for reset the Machine [...]

  • Seite 208

    Appendix B: Redirection Server June 30, 2006 B-14 SG1-UM-8500-03 W RITE C OMMANDS Using write terminal command • The write terminal command displays the running RD S config uration. • It is located at the “main” menu. Usage write terminal Example 1: Example 2: Write terminal comm and performe d before co nfiguring the RDS RDSHost> RDSHos[...]

  • Seite 209

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-15 Using write memory command • The write memo ry command writes the ru nning RDS configuration to the NV memory . • It is located at the “main” menu. Usage write memory Example: U SING P OWEROFF C OMMAND • The powerof f command brings the system down in a secur e way . • It [...]

  • Seite 210

    Appendix B: Redirection Server June 30, 2006 B-16 SG1-UM-8500-03 Parameter(s) <IP address> It is the Permitted source IP ad dress. <source mask> It is the Permitted source mask. Example: Using no access-list SNMP-permit command • The no access-list SNM P-permit command deletes SNMP a ccess definitions . • It is located at the “con[...]

  • Seite 211

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-17 Parameter <community string> It is an Alpha community numeric string. Example: U SING R ESET C ONFIGURATION C OMMAND • The reset configuration command de letes the RDS stored co nfiguration. • It is located at the “ADC” menu. Usage reset configuration HTTP C OMMANDS Usin[...]

  • Seite 212

    Appendix B: Redirection Server June 30, 2006 B-18 SG1-UM-8500-03 Usage http-proxy-s erver port <por t number > Parameter <port number > It is the supported HTTP proxy port num ber. Legal port number (1 – 65 ,000). Example: Using no http-proxy-server port command • The no http-proxy-server por t comma nd deletes co nf igu red Http-pr[...]

  • Seite 213

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-19 N AME S ERVER Using ip primary-name-server command • The ip primary-name-ser ver command defines the primar y DNS se rver IP address the RDS should use fo r the Http proxy functionality . • The command is located in the “configure terminal” menu. Usage ip primary-name-server &[...]

  • Seite 214

    Appendix B: Redirection Server June 30, 2006 B-20 SG1-UM-8500-03 Using ip remote-proxy command • The ip remote-proxy command defines the Http proxy and port to be used in the Http proxy functionality . • The command is located in the “configure terminal” menu. Usage ip remote-proxy <IP address> <port number> Parameter <IP add[...]

  • Seite 215

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-21 U SING H OSTNAME C OMMAND • The hostname command defines the system h ostname name. • The command is located in the “configure terminal” menu. • The default hostname is “RDSHost”. Usage hostname <host name> Parameter <host name> Example: U SING EDS-URL-IDENTI[...]

  • Seite 216

    Appendix B: Redirection Server June 30, 2006 B-22 SG1-UM-8500-03 U SING N O EDS-URL-IDENTITY C OMMAND • The no eds-url-ide ntity command deletes the eds name configu ration to be used in the EDS URL. The system uses its default value (system primary IP address) . • The command is located in the “configure terminal” menu. Usage no eds-url-id[...]

  • Seite 217

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-23 Example: Using no remote-ip-in-ip command • The no re mote-ip-in-ip command d eletes the r emote en dpoint definition. • The command is located in the “configure terminal” menu. Usage no remote-ip-in-ip <IP address> Parameter <IP address> It is the remote ip-in-ip [...]

  • Seite 218

    Appendix B: Redirection Server June 30, 2006 B-24 SG1-UM-8500-03 S HOW U SER C OMMANDS Using show users command • The command displays con nected users informatio n. • The command is located at ADC menu. Usage show users Output format: Default of L inux w comman d. Using show proc command • The command display running processes information. ?[...]

  • Seite 219

    June 30, 2006 Appendix B: Redirection Server SG1-UM-8500-03 B-25 Usage show cpu Output format: Default of L inux cat /proc/cpuinfo command. U SING D EBUG P ROTOCOL C OMMAND • The command enables the snif fing of tcp, udp, ether , fddi , ip, arp, rarp, decent, lat, sca, moprc, mopdl, icmp, igrp, nd. • The command is located at ADC menu. Usage de[...]

  • Seite 220

    Appendix B: Redirection Server June 30, 2006 B-26 SG1-UM-8500-03 U SING D ATE C OMMAND • The command sets RDS date. • The command is located at ADC menu. Usage date <time> <date> Parameter(s) <time> It is Time of the day in H24:MM:SS format. <date> It is the Date in DD/MM/YYYY format. Example: RDSHost(ADC)> date 18:07[...]

  • Seite 221

    SG1-UM-8500-03 C- 1 C Appendix P RODUCT S UPPORT ADC Customer Service Group provides expert pre-sales su ppor t and tr aining for all of it s pro duct s. T echnical support is available 24 hours a day , 7 days a week by conta cting t he ADC T echnical Assistance Center . Sales Assistance: 800.366.3891 Quotation Proposals, Ordering and De livery Gen[...]

  • Seite 222

    Appendix C: Product Suppor t June 30, 2006 C-2 SG1-UM-8500-03[...]

  • Seite 223

    SG1-UM-8500-03 GL- 1 G LOSSARY A ACL – Access Control List AT M – Asynchronous T ransfer Mode APS – Automatic Protection System C CBR – Constant Bit Rate CLEI – Common Language Equipment Identifier CLI – Command Line Interfa ce D DS3 – Digital Signal, Level 3 E EMS – Element Management Syste m F FRF .5 – Frame Relay/A TM Network I[...]

  • Seite 224

    Glossary June 30, 20 06 GL-2 SG1-UM-8500-03[...]

  • Seite 225

    Certification and W arranty FCC Class A Comp liance This equipment has been tested and found to comply with t he limit s for a Class A digit al device , pursuant to Pa rt 15 of the FCC Rules. These limits are desig ned to provide reasonable pr otection against harmfu l interference when the equipment is operated in a co mmercial environmen t. This [...]

  • Seite 226

    World Headqua rters ADC T e lec ommunications, Inc. PO Box 1 101 Minneapolis, MN 55440-1 101 USA For T echnic al Assistance T el: 800.366.3891 SG-1 Service Gateway System User Manual Document Number: SG1-UM-8500-03 ´-jv¶4£¨ 1374864[...]