Enterasys Networks XSR-3150 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110

Ir para a página of

Bom manual de uso

As regras impõem ao revendedor a obrigação de fornecer ao comprador o manual com o produto Enterasys Networks XSR-3150. A falta de manual ou informações incorretas fornecidas ao consumidor são a base de uma queixa por não conformidade do produto com o contrato. De acordo com a lei, pode anexar o manual em uma outra forma de que em papel, o que é frequentemente utilizado, anexando uma forma gráfica ou manual electrónicoEnterasys Networks XSR-3150 vídeos instrutivos para os usuários. A condição é uma forma legível e compreensível.

O que é a instrução?

A palavra vem do latim "Instructio" ou instruir. Portanto, no manual Enterasys Networks XSR-3150 você pode encontrar uma descrição das fases do processo. O objetivo do manual é instruir, facilitar o arranque, a utilização do equipamento ou a execução de determinadas tarefas. O manual é uma coleção de informações sobre o objeto / serviço, um guia.

Infelizmente, pequenos usuários tomam o tempo para ler o manual Enterasys Networks XSR-3150, e um bom manual não só permite conhecer uma série de funcionalidades adicionais do dispositivo, mas evita a formação da maioria das falhas.

Então, o que deve conter o manual perfeito?

Primeiro, o manual Enterasys Networks XSR-3150 deve conte:
- dados técnicos do dispositivo Enterasys Networks XSR-3150
- nome do fabricante e ano de fabricação do dispositivo Enterasys Networks XSR-3150
- instruções de utilização, regulação e manutenção do dispositivo Enterasys Networks XSR-3150
- sinais de segurança e certificados que comprovam a conformidade com as normas pertinentes

Por que você não ler manuais?

Normalmente, isso é devido à falta de tempo e à certeza quanto à funcionalidade específica do dispositivo adquirido. Infelizmente, a mesma ligação e o arranque Enterasys Networks XSR-3150 não são suficientes. O manual contém uma série de orientações sobre funcionalidades específicas, a segurança, os métodos de manutenção (mesmo sobre produtos que devem ser usados), possíveis defeitos Enterasys Networks XSR-3150 e formas de resolver problemas comuns durante o uso. No final, no manual podemos encontrar as coordenadas do serviço Enterasys Networks na ausência da eficácia das soluções propostas. Atualmente, muito apreciados são manuais na forma de animações interessantes e vídeos de instrução que de uma forma melhor do que o o folheto falam ao usuário. Este tipo de manual é a chance que o usuário percorrer todo o vídeo instrutivo, sem ignorar especificações e descrições técnicas complicadas Enterasys Networks XSR-3150, como para a versão papel.

Por que ler manuais?

Primeiro de tudo, contem a resposta sobre a construção, as possibilidades do dispositivo Enterasys Networks XSR-3150, uso dos acessórios individuais e uma gama de informações para desfrutar plenamente todos os recursos e facilidades.

Após a compra bem sucedida de um equipamento / dispositivo, é bom ter um momento para se familiarizar com cada parte do manual Enterasys Networks XSR-3150. Atualmente, são cuidadosamente preparados e traduzidos para sejam não só compreensíveis para os usuários, mas para cumprir a sua função básica de informação

Índice do manual

  • Página 1

    X-Pedition ™ Security Router XSR-3150 Getting Started Guide V ersion 3.0 P/N 9033865-06 8.5x11-inch cover with bleed on 4 sides[...]

  • Página 2

    [...]

  • Página 3

    i Notice Enterasys Networks  reserv es  the  right  to  make  changes  in  s pecifications  and  other  information  contained  in  this  document  and  its  web  site  without  prior  notic e.  The  reader  should  in  all  cases  consult  Enterasys Networks [...]

  • Página 4

    ii Regulatory Compliance Information Federal Communications Commiss ion (FCC) Notice The  XSR  complies  with  Title  47,  Par t  15,  Class  A  of  FCC  rules.  Operation  is  subject  to  the  following  tw o  conditions: •T h i s  device  may  no t  cause  harmful  i[...]

  • Página 5

    iii Industry Canada Notices This  digital  apparatus  does  not  exceed  the  class  A  limits  for  radio  noise  emissions  from  di gital  apparatus  set  out  in  the  Radio  Interfer ence  Regulations  of  the  Canadian  Department  of  Communications. Le ?[...]

  • Página 6

    iv Product Safety This  product  complies  with  the  following:  UL  60950,  CSA  C22.2  No.  60950,  73/23/EEC,  EN  60950,  EN  60825,  IEC  60950. Use  the  XSR  with  the  Advanced  Pow e r  Soluti ons  (APS61ES ‐ 30)  power  supply  included  with  [...]

  • Página 7

    v ѻ ѻ ક䇈ᯢк䰘ӊ Supplement to Product Instructions ᳝↦᳝ᆇ⠽䋼៪ܗ㋴ (Hazardous Substance) 䚼ӊৡ⿄ (Parts) 䪙 3E ∲ +J 䬝 &G ݁Ӌ䫀 &U   ໮⒈㘨㣃 3%% ໮⒈Ѡ㣃䝮 3%'( 䞥ሲ䚼ӊ (Metal Parts) hƻ ƻ h ƻ ƻ ⬉䏃῵ഫ ( Circuit M[...]

  • Página 8

    vi VCCI Notice This  is  a  class  A  product  based  on  the  standard  of  the  V oluntary  Control  Council  for  Interference  by  Information  Te c h n o l o g y  Equipment  (VCCI)  V ‐ 3.  If  this  equipment  is  used  in  a  domestic  environment,[...]

  • Página 9

    vii Australian T elecom WA R N I N G :  Do  not  install  phone  line  connections  during  an  el ectrical  storm. WA R N I N G :  Do  not  connect  phone  line  until  the  inte rface  has  been  configured  through  loc al  management.  The  servic e  provider  m[...]

  • Página 10

    viii E nterasys N etworks , I nc . F irmware L icense A greement BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT, CAREFULLY READ THIS LICENSE AGREEMENT. This  document  is  an  agreemen t  (“ Agreement” )  betw een  the  end  user  (“Y ou”)  and  Enterasys  Networks,  Inc.,  on  behalf  of[...]

  • Página 11

    ix If  the  Program  is  exported  from  the  United  Stat es  pursuant  to  the  License  Exce ption  TSR  unde r  the  U.S.  Export  Administration  Regulations,  in  addition  to  the  restriction  on  transfer  set  forth  in  Secti on  1  or  [...]

  • Página 12

    x 11. ASSIGNMENT. You  may  not  assign,  transfer  or  sublicense  this  Agreement  or  any  of  Your  rights  or  obligations  under  this  Agreement,  except  that  You  may  assign  this  Agreem ent  to  any  person  or  entity  which  acquires  s[...]

  • Página 13

    xi Contents About This Guide Contents of the Guide ..... .................... ................... .................... ................ ................... ...... .................... .......... xv Conventions Used in This Guid e ........... ................... .................... ................... ................ ........... ..................[...]

  • Página 14

    xii PRI Configuration ......... ................ ................... .................... ................... ................ .......... ...................... .. 3-8 BRI Configuration ......... ................ ................... .................... ................... ................ .......... ...................... .. 3-9 BRI Leased Line ..[...]

  • Página 15

    xiii bU ............. ................ .................... ................... ................ .................... ................... . ............ ................... 3-37 cd ................. ................ ................... ................... .................... ................ ................. ............ ................ ... 3-37[...]

  • Página 16

    xiv[...]

  • Página 17

    xv About This Guide This  guide  provides  a  general  ov erview  of  the  XSR ‐ 3150  hardware  and  softw are  features  and  describes  how  to  quickly  install  and  configure  the  XSR.  Re fer  to  the  XSR  CLI  Reference  Guide  and  XSR  User[...]

  • Página 18

    xvi Electrical Hazard : W arns against an action that could result in persona l injury or death due to an electrical hazard. Riesgo Electric o: Advierte contra una acción que pudiera re sultar en lesión corporal o la muerte debido a un riesgo eléctrico. Elektrisc her Gefahr enhinweis: Installationen sollten nur durch ausgebilde tes und qualifizi[...]

  • Página 19

    xvii Getting Help For  additional  support  related  to  the  XSR,  contact  Enterasys  Netw orks  using  one  of  the  following  methods: Before  contacting  Enterasys  Networks  for  technic al  support,  have  the  following  information  ready: •Y o u r  Enteras[...]

  • Página 20

    xviii[...]

  • Página 21

    XSR Getting Started Guide 1-1 1 Overview This chapter introduces the key features of the XSR-3150 and briefly describes har dware installation. System Description The XSR is a networking device designed for enterp rise r egional offices that provides IP routing over GigabitEthe rnet LAN and T1/E1, Se rial (RS 232, X.21, V .35, RS422/530, RS449), Di[...]

  • Página 22

    System Description 1-2 Overview Figure 1-1 T ypical XSR-3150 T opology Hardware Features The semi-modular XSR, shown in Figure 1-2 , comes equipped with the following featur es: • Standard 1U chassis (1-1 1/16 inches high by 17 in ches wide by 21 inches deep) mountable in a standard 19” rack. • Broadcom 1250 dual-CPU, 64-bit processor (1 700 [...]

  • Página 23

    System Description XSR Getting Started Guide 1-3 Figure 1-2 XSR-3150 • T wo Network Interface Module (NIM) card slots for these NIMs: – 1, 2, or 4 full, fractional and channelize d T1/E1 W AN NIM with integral CSU/DSU or Primary Rate Interface (PRI) ports (RJ-48C). – 1-port T3/E3 channelized/unch annelized W AN NIM with BNC ports. This NIM is[...]

  • Página 24

    System Description 1-4 Overview • 14 diagnostic LEDs to displ ay port and system st atus as well as indicate a Flash upgrade in progr ess. • Five system fans with failur e detection capabili ty and three i n-board fans ded icated to power supply cooling. Sof tware Features The XSR provides the following software featur es: Operating System • [...]

  • Página 25

    System Description XSR Getting Started Guide 1-5 • Simple Network T ime Protocol (SNTP) server •O S f a l l b a c k IP Routing • Static and multipl e routes to the same dest ination • Redistribution of r outes from RIP , OSPF , BGP , connected, or static into RIP , OSPF , and BGP •R I P - 1 & R I P - 2 •O p e n S h o r t e s t P a t[...]

  • Página 26

    System Description 1-6 Overview Security • Stateful inspection firewall e ngine • F TP , H.323, and RPC (SUN and Microsoft) ALG support • Application commands for F TP , SMTP , & HTTP • Firew all logging and authentication • Fir ewall interaction with NA T & VPN • Standard and Extended Access Control Lists • Denial of Service [...]

  • Página 27

    System Description XSR Getting Started Guide 1-7 • Periodic Keep-Alive message s to learn of connection problems • Multi-pr otocol interconnect over Frame Relay - RFC-2427 • RFC-2390 Frame Relay Inverse ARP to discover IP address of r emote peer when used in multi- point mode and responds to incoming Inverse ARP r equests independent of P2P o[...]

  • Página 28

    System Description 1-8 Overview • Bandwidth optimization (BoD) & Dial on Demand (DoD) • Bandwidth Allocation Protocol (BAP) • Security: P AP/CHAP • Call monitoring • Multili nk PPP (MLPPP) • Per call activation for NTT switches • Frame Relay over ISDN Quality of Service (QoS) • T raffic classification using IP Precedence and Dif[...]

  • Página 29

    System Description XSR Getting Started Guide 1-9 Certificates (embedded/smart cards) – Micr osoft only •E n c r y p t i o n • Advanced Encryption Standar d (AES), T rip le Data Encryption Standard (3DES), Data Encryption Standard (DES) • 3DES/DES acceleration • Data Integrity • MD5 & SHA-1 algorithms • Internet Protocol Security ([...]

  • Página 30

    System Description 1-10 Overview Asynchronous Digit al S ubscriber Line (ADSL) • POTS and ISDN circuit support • A TM Frame UN I (FUNI) data framing format • OAM cells: AI S, RDI, CC, Loopback ove r F4 and F5 flows • Up to 3 0 A TM Permanent V irtual Circuit s (PVCs) • A TM UB R traffic class • A TM Ad aption Layers 0, 5 • PDU encapsu[...]

  • Página 31

    Installation Overview XSR Getting Started Guide 1-11 • Switched PPP Multilink connections • Backup using ISDN & MLPPP connections • Dialer interface spoofing • Dialer watch Inst allation Overview Installing the XSR consists of performing the fo llowing general steps. For detailed instructions, ref er to Chapters 2 and 3 of this manual. [...]

  • Página 32

    Installation Overview 1-12 Overview[...]

  • Página 33

    XSR Getting Started Guide 2-1 2 Hardware Installation Introduction This chapter provides a checklist to verify your shipment, suggestions for the installation si te, and describes how to instal l the following XSR har dware: • NIM cards • Optional - CompactFlash card • Connecting cables V erifying Y our Shipment Before installing the XSR, fir[...]

  • Página 34

    Installing NIM Cards and Rack Mounting 2-2 Hardware Installation • Each XSR AC power supply requires a th ree-pr onged power receptacle capable of delivering the current and voltage specified in Appendix A . An AC outlet on a separately fused circuit is requir ed for each XSR to provide power r edundancy , and must be located within 182 centimete[...]

  • Página 35

    Installing NIM Cards and Rack Mounting XSR Getting Started Guide 2-3 4. Remove the NIM slot cover , as shown in Figur e 2-2 , by grasping the handle and pr essing it to the side before pulling it out. Figure 2-2 Removing NIM Slot Covers 5. Carefully attach the NIM card(s) to the connect or on the mothe rboard and secur e with four screws, as shown [...]

  • Página 36

    Installing NIM Cards and Rack Mounting 2-4 Hardware Installation 7. Attach the rack brackets to the chassi s with the scr ews supplied, as shown in Fi gure 2-4 . Figure 2-4 Fastening Rack Bracket s 8. Mount the bracketed XSR to your rack, as shown in Figur e 2-5 . Figure 2-5 Att aching XSR to Rack NIM 1 NIM 2 1000 GB IC Link TX 10/100/1000 10/100/1[...]

  • Página 37

    Installing a CompactFlash Memory Card XSR Getting Started Guide 2-5 Inst alling a Comp actFlash Memory Card An optional CompactFlash (CF) memory card provides additional non-volatile storage capabilities in 8, 16, 32, or 64 Mbyte increments. Th e CF’s contr oller interfaces with a host system allowing data to be written to and read fr om the CF?[...]

  • Página 38

    Installing a CompactFlash Memory Card 2-6 Hardware Installation Gently insert the CF into the sl ot, taking care that the CF’s wider gr ooved edge fits into the wider track of the PCMCIA interfa ce. If the car d does not seat easily but stops halfway i nto the slot, do not force it in - the card was inserted in corr ectly . Flip it over and re-in[...]

  • Página 39

    Connecting Cables XSR Getting Started Guide 2-7 Connecting Cables Perform any of the following steps to connect your cabling to optional W AN or LAN NIM s, GigabitEthernet ports, and power supplies: 1. Connect the serial COM cable pro vided in the packing box to your P C connector , as shown in Figur e 2-9 . Figure 2-9 Connecting Seri al COM (Conso[...]

  • Página 40

    Connecting Cables 2-8 Hardware Installation Figure 2-1 1 Connecting High Speed Ser ial Connector Figure 2-12 Att aching T3/E3 BNC Connectors NIM 1 NIM 2 SECURITY ROUTERS XSR-3150 NIM 1 NIM 2 SECURITY ROUTERS XSR-3150 ALARM LOS ENABLE LOF Tx Rx id[...]

  • Página 41

    Connecting Cables XSR Getting Started Guide 2-9 Figure 2-13 Connecting ADSL Connector A CompactFlash card is provided with the XSR ADSL NIM. It is loaded with the Digi tal Signal Processing (DSP) firmware ( adsl.fls ) r equired to communicate with your DSLAM. When inserted into the Compa ct Flash slot - upon firs t configu ring an A TM interface - [...]

  • Página 42

    Connecting Cables 2-10 Hardware Installation 3. Connect the Ethernet port(s) to your LAN connectors with a cable, as shown in Figure 2-15 . Figure 2-15 Att aching GigabitEtherne t Connector 4. Insert the Mini-GBIC module in the GBIC slot then connect the optical cable, as shown in Figure 2- 16 . Figure 2-16 Inserting Mini-GBIC Module 1000 GBIC Link[...]

  • Página 43

    Connecting Cables XSR Getting Started Guide 2-11 5. Attach either the Ethernet or Fi ber E thernet LAN NIM, as shown in Fig ure 2-17 and Figure 2- 18 , respectively . Figure 2-17 Att aching Ethernet LAN NIM Connector Figure 2-18 Att aching Ethernet Fiber LAN NIM Connector NIM 1 NIM 2 SECURITY ROUTERS XSR-3150 ACT LIN K N IM - ETH R- 01 NIM 1 NIM 2 [...]

  • Página 44

    Connecting Cables 2-12 Hardware Installation 6. Attach the dual power supply cords to the conne ctors at the re ar of the XSR, as shown in Figure 2- 19 , and plug in the country-specific power co rds to a wall socket. The XSR will power up. Figure 2-19 Connecting Dual Interna l Power Supply Cords Y ou are now ready to c onfigure the softwar e and i[...]

  • Página 45

    XSR Getting Started Guide 3-1 3 Software Configuration This chapter describes how to init ializ e, quickly set up and verify your configurati on for the XSR. Refer to the XSR CLI Referenc e Guide for a more thor ough explanation of commands and parameter options. The chapter also includes sample co nfiguration scripts, de tailed XSR rebooting chara[...]

  • Página 46

    Initializing XSR Software 3-2 Software Configuration • ETH 10/100/1000 LEDs tu rn ON and OFF a fe w times during initialization as the XSR pro ce ed s f rom bo ot rom to po we r u p d ia gn os ti cs to sof tw are im a ge, th en th ey rem ai n O N o r OFF depending on the LA N type. • ETHERNET Activity LEDs bl ink when frames pass on the LAN. ?[...]

  • Página 47

    Opening a COM (Console) Session XSR Getting Started Guide 3-3 only the first error will be r eported, along with a count of the sum of errors incurr ed. In the case of a single error , only the error line will be rep or te d. Er ror me ss ag es wi ll b e l og ge d a s well. Because the r esult of continuing to process a flawed startup-config is not[...]

  • Página 48

    Optional: Configuring Remote Auto In stall 3-4 Software Configuration Note the use of a helper-address to specify a destination address for UDP br oadcasts and forward traffic to the DNS and TF TP servers. In the example below , DNS and TF TP servers reside o n the same node - 10.10.1.2 (configuration of DNS and TF TP servers are not shown here). I[...]

  • Página 49

    Optional: Configuring Remote Auto Install XSR Getting Started Guide 3-5 + TFTP transfer succeeded in copy ing the hostname file to the Flash: startup-config file. ****************** REMOTE AU TO INSTALL TERMINATING***************** + The RAI process is complete and is preoceding to s ystem in itialization where it will process the new startup- conf[...]

  • Página 50

    Optional: Configuring Remote Auto In stall 3-6 Software Configuration + Creates a VPDN session group and links it to a virtual template. accept-dialin protocol pppoe virtual-template 1 pppoe limit per-mac 10 + This is an optional command. pppoe limit max-sessions 320 00 + This is an optional command. interface GigabitEthernet1/0 /0 no ip address ne[...]

  • Página 51

    Configuring the XSR Name and User Information XSR Getting Started Guide 3-7 Phase 3 - ADSL - trying to c onnect on 0/35 with snap PPPoE + PVC 0/35 is found, SNAP PPPoE encapsulation is applied and authentication tried if required. Phase 3 - ADSL - waiting for IP to connect (54 sec) + The XSR waits one minute for the PPPoE connection to come up. Pha[...]

  • Página 52

    Configuring the LAN Ports 3-8 Software Configuration Enter the following command to conf igure the XSR as an SNTP client: XSR(config)#sntp-client serv er [primary | A.B.C.D.][alternate | A.B.C.D.] Enter the following command to configure the XSR as an SNTP server: XSR(config)#sntp-server enab le Remember to save your conf iguration after all edits.[...]

  • Página 53

    Configuring the WAN Ports XSR Getting Started Guide 3-9 This command allows multiple l ogical W AN interf aces to be cr eated on a single channelized T1/E1/ISDN-PRI port, ranging from 0 - 23 for T1 lines, and 0 - 31 for E1 lines. Also, fr om 1 - 24 T1 and 1 - 31 E1 timeslots can be set. Channel speed options ar e 56 (T1 ) or 64 (E1) kbps. 6. Enter [...]

  • Página 54

    Configuring the WAN Ports 3-10 Software Configuration 4. Enter encapsulation ppp to select PP P encoding. 5. Enter no shutdown to keep the BRI interface enabled. BRI Leased Frame Relay 1. Enter interface bri 0:<1 | 2>.<1-30> to ac quire BRI Interface mode and select the BRI port and channel 1 or 2. 2. Enter encapsulation frame-relay to [...]

  • Página 55

    Configuring the WAN Ports XSR Getting Started Guide 3-11 ADSL Configuration ADSL can be configur ed using three dif ferent ty pes of encapsulati on: PPPoA, PPPoE, and IPoA. Continue configuration with th e ADSL type of your choice. PPPoE The following commands configure a sample PPPoE topology . The first set configures the LAN interface with dire [...]

  • Página 56

    Firewall Sample Configuration 3-12 Software Configuration The commands below configure the A TM interface an d sub-interface with a ne gotiated IP address, CHAP username and password, and bans keepalives. XSR(config)#interface ATM 0 XSR(config-if<ATM0/0>)#no sh utdown XSR(config-if<ATM0/0.1>)#int erface ATM 0.1 XSR(config-if<ATM0/0.1[...]

  • Página 57

    Firewall Sample Configuration XSR Getting Started Guide 3-13 Figure 3-1 XSR with Firewall T opology In this configuration , the firewall provides pr otected access from th e private to dmz networks. That is, access is restricted to W eb and mail traffic onl y . The hosts in the private network ar e provided full access to the Internet but access is[...]

  • Página 58

    Setting Up RIP Routing 3-14 Software Configuration XSR(config)#ip firewall filt er allowICMP private dmz protocol-id 1 XSR(config)#ip firewall filt er allowICMP private ANY_EXTERNAL protocol-id 1 XSR(config)#ip firewall filt er allowICMP ANY_EXTERNAL dmz protocol-id 1 T rial load the completed configuration into the firewall engine, and if successf[...]

  • Página 59

    Configure OSPF Routing XSR Getting Started Guide 3-15 10. Enter ip rip receive version < 1 | 2 > to allow a RIP version of updated transmissions. Accept both RIP V1 and V2 is the default value. 11 . E n t e r router rip to acquir e Router configuration mode and enable RIP r outing. 12. Enter network < xxx.xxx.xxx.xxx > (IP address) of t[...]

  • Página 60

    Setting Up an SNMP Community String, Traps and V3 Values 3-16 Software Configuration 5. Enter media-type V35 to match the corr ect cabling interface. The def ault media type for Frame Relay is RS-232. 6. Enter frame-relay traffic-shaping to enable congestion contr ol. 7. Enter map-class frame-relay < name > to designate this map-class and acq[...]

  • Página 61

    Configuring Message Logging and Severity Level XSR Getting Started Guide 3-17 5. Optional . For SNMPv3, enter snmp-server group < name > v3 { auth | nonauth | priv } read < name > write < name > to add a group. Groups of fer users authorization ch oices and read/write privileges. 6. Optional. For SNMPv3, enter snmp-server view <[...]

  • Página 62

    Viewing Your Configuration 3-18 Software Configuration V iewing Y our Configuration 1. Enter show running-config to verify your current configuration. The XSR will display the co mmands you issued up to this point. Default values ar e not displayed. Connecting Remotely via the W eb 1. Enter configure to acquire Configuration mode. 2. Enter ip http [...]

  • Página 63

    Connecting Remotely via the Web XSR Getting Started Guide 3-19 Click on Pr oduct V ersion to bring up the Pr oduct V ersion window for a hos t of hardwar e, bootrom, and softwar e information as shown in Figure 3-3 . Figure 3-3 Web Pr oduct V ersion Window Product V ersion Copyright 2004 by Enterasys Networks, Inc. Ha rdw are : Processor boar d ID:[...]

  • Página 64

    LAN-PPP Services Sample Configuration 3-20 Software Configuration LAN-PPP Services Sample Configuration The sample configuration below , see Figur e 3-4 , creates a PPP , fractional T1 leased line connection from the XSR branch node to the Central Site router and a backup serial dial up link to the Backup Si t e re g io n a l ro u te r . Figure 3-4[...]

  • Página 65

    LAN-PPP Services Sample Configuration XSR Getting Started Guide 3-21 XSR(config-controller<T1-1/0 >)#no shutdown + Enables T1 controller XSR(config)#interface serial 1/0:0 + Configures Serial interface 1, port 1 us ing channel group 0 and acquires Interface mode XSR(config-if<S1/0:0>)#encap sulation ppp + Enables PPP encapsulation XSR(c[...]

  • Página 66

    Frame Relay WAN Link with PPP Backup Sample Configuration 3-22 Software Configuration Frame Relay W AN Link with PPP Backup Sample Configuration The sample configuration below , similar to the preceding configuration except that the cloud supporting the primary line is Frame Relay rath er than Public Service T elephone Network, configures one LAN p[...]

  • Página 67

    Frame Relay WAN Link with PPP Backup Sample Configuration XSR Getting Started Guide 3-23 XSR(config-cmap<data_class>) #match access-group 133 + Assigns ACL 133 to this class map XSR(config)#policy-map prior ity-policy + Adds a policy map and acquires Policy Map mode XSR(config-pmap<priority-pol icy>)#class rtp_class + Adds a queue for t[...]

  • Página 68

    Frame Relay WAN Link with PPP Backup Sample Configuration 3-24 Software Configuration XSR(config)#interface serial 1/0.2 multipoint + Configures FR port: Serial card in slot 1, port 0, s ub-in terface 2 for multipoint links and acquires Interface mode XSR(config-if<S1/0.2>)#frame -relay class CLASS_SI + Adds another FR map class XSR(config-if[...]

  • Página 69

    Frame Relay WAN Link with PPP Backup Sample Configuration XSR Getting Started Guide 3-25 Configure OSPF Routing XSR(config)#router ospf 1 + Enables OSPF with a router ID and acquires Router mode XSR(config-router)#network 1 92.168.1.0 0.0.0.255 area 0.0.0.10 + Configures the area ID for the specified network XSR(config-router)#network 1 54.68.1.0 0[...]

  • Página 70

    Frame Relay WAN Link with PPP Backup Sample Configuration 3-26 Software Configuration XSR(config-if<D1>)#encapsula tion ppp + Enables PPP encapsulation XSR(config-if<D1>)#ip addres s 192.31.27.84 255.255.255.0 + Sets the IP address on the interface XSR(config-if<D1>)#dialer st ring 4165557922 + Sets dialer phone # XSR(config-if<[...]

  • Página 71

    VPN Site-to-Site Sample Configuration XSR Getting Started Guide 3-27 VPN Site-to-Site Sample Configuration The following VPN topology , s hown in Figure 3-5 , configur es a central site XSR to connect over IPSec tunnels with a remote ANG-1 105 and two XSRs. Figure 3-5 VPN Site-to-Site T opology The following script config ur es the VPN topology sho[...]

  • Página 72

    VPN Site-to-Site Sample Configuration 3-28 Software Configuration XSR(config)#access-list 101 permit udp ah any any XSR(config)#access-list 101 deny ip any any XSR(config)#access-list 190 permit ip any 112.16.72.0 0.0.0.255 XSR(config)#access-list 191 permit ip any 112.16.76.0 0.0.0.255 XSR(config)#access-list 192 permit ip any 112.16.80.0 0.0.0.25[...]

  • Página 73

    VPN Site-to-Site Sample Configuration XSR Getting Started Guide 3-29 XSR(config)#crypto map acme 91 XSR(config-crypto-m)#set tra nsform-set esp-3des-sha XSR(config-crypto-m)#match a ddress 191 XSR(config-crypto-m)#set pee r 112.16.244.7 XSR(config)#crypto map acme 90 XSR(config-crypto-m)#set tra nsform-set esp-3des-sha XSR(config-crypto-m)#match a [...]

  • Página 74

    VPN Sample Configuration with Network Extension Mode 3-30 Software Configuration Configuring Authentication (AAA) Configur e an AAA use r and DEF AUL T AAA group for r emote users. When an ANG tunnels into the XSR, it will be assigned dynamically to the IP pool AUTH . Be aware that gr oups must be created before users can be added to them. Remember[...]

  • Página 75

    VPN Sample Configuration with Network Extension Mode XSR Getting Started Guide 3-31 Generate the master key . Refer to the following sampl e key: XSR(config)#crypto key maste r generate New key is 2173 4521 3764 2f f5 163b 4bdf fe92 dbc1 1232 ffe0 f8d9 3649 Apply the following A CLs to the public inte rface of the XSR befo r e creating the VPN conf[...]

  • Página 76

    VPN Sample Configuration with Network Extension Mode 3-32 Software Configuration Create user(s), specify an IP from virtual subnet, and assign a password: XSR(config)#aaa user nem-tes t XSR(config)#password welcome XSR(config)#aaa user jeffb XSR(config)#password welcome Check to make sure the transforms and pr oposals were cr eated properly: XSR#sh[...]

  • Página 77

    XSR Rebooting Characteristics XSR Getting Started Guide 3-33 Create the multi-point VPN virtual port required to terminate many clients: XSR(config)#interface vpn1 m ulti-point XSR(config)#description “VPN Virtual Interface Int0” XSR(config)#ip address 10.10 .10.1/24 XSR(config)#ip rip send vers ion 2 XSR(config)#ip rip receive v ersion 2 XSR(c[...]

  • Página 78

    XSR Rebooting Characteristics 3-34 Software Configuration Testing S/W Integrity << PAS SED >> Loading Router S/W to addres s 0x80020000 Verifying uncompressed chksu m ... Starting from 0x80020000... Attaching shared memory obje cts at 0xa0000600... done Attaching interface lo0...do ne Verifying flash:xsr3000.fls file ... Router S/W size[...]

  • Página 79

    Bootrom Monitor Mode Commands XSR Getting Started Guide 3-35 Reload Command from the CLI Y ou can reboot the XSR firmwar e by issuing the com mand reload <cold | warm> . Y ou are then prompted to confirm the command. Once the firmwa re is r eloaded, the configuration is loaded from the startup-config file. Bootrom Monitor Commands bc and bw U[...]

  • Página 80

    Bootrom Monitor Mode Commands 3-36 Software Configuration All the commands in each group ca n be listed by entering the command gr oup letter . The main menu provides the following functions: • Reboot warm or cold • Update Bootrom • File system-related commands for the Flash ROM file system • Modify network parameters • V arious status/sh[...]

  • Página 81

    Bootrom Monitor Mode Commands XSR Getting Started Guide 3-37 bootFirst size=28992 sum=0xc 2e5 compressed_size=28992 entry=0x80020000 bootrom size=842656 sum=0xfa 65 compressed_size=347728 entry=0x81e00000 OK Proceed with erasing current Bootrom in flash and replace with btXSR3000_1_ 2.fls? (y/n) y First copy of Bootrom ... Erasing 3 sectors at addr[...]

  • Página 82

    Bootrom Monitor Mode Commands 3-38 Software Configuration df This command shows free disk space. Sample output is shown as follow s: XSR-3150:df Free space on flash: is 3383 296 bytes (0x33a000). del This command removes a file fr om flash: or cflash: memory . dir This command lists the contents of the curr ent directory in long format. The command[...]

  • Página 83

    Bootrom Monitor Mode Commands XSR Getting Started Guide 3-39 Set working directory to fla sh: Using default Bootrom passwo rd. The system is not secure!!! Use “bp” to change password ffc This command formats the CompactFlash card. ng This command retrieve s a file over the network using a remote IP addre ss/file path. np This command modifies n[...]

  • Página 84

    Bootrom Monitor Mode Commands 3-40 Software Configuration remove This command removes a file using the syntax remove <sour ce name> <destination name> rename This command renames a file using the syntax rename <source name> <destination name > sb This command displays boot values. Sample output is shown as fol lows: XSR-3150[...]

  • Página 85

    Bootrom Monitor Mode Commands XSR Getting Started Guide 3-41 ...... si This command displays XSR 30 00 Series inventory with this sample output: XSR-3150: si Hardware: Motherboard Information: XSR-3150 ID: 9002914-04 REV0 A CPLD Rev 3 Serial Number: 2914024201123 206 Processor: Broadcom BCM1250 Rev 2 at 600MHz PowerSupply1, PowerSupply2 Fans 1 2 3 [...]

  • Página 86

    Bootrom Monitor Mode Commands 3-42 Software Configuration sv This command shows the bootr om version with sample output below: XSR-3150: sv X-Pedition Security Router B ootrom Copyright 2003 Enterasys Net works Inc. HW Version: 9002914-04 REV0A Serial Number: 3646031700233215 CPU: Broadcom BCM1250 Rev 2 VxWorks version: VxWorks5.4. 2 Bootrom versio[...]

  • Página 87

    A-1 A Specifications System S pecifications This appendix details XSR data about har dware functionality including : • Process or , system memory , chassis, power supply , interfaces • Required cabling, CompactFlash and other accessories • Pinout assignments for W AN and LAN interfaces •L E D b e h a v i o r Refer to tables throughout this [...]

  • Página 88

    Cable, CompactFlash and Accessory Specifications A-2 Cable, Comp actFlash and Accessory Specifications Refer to the following table for s pecifications of cables, CompactFlash and accessories for the XSR. This equipment can all be obtained separately fr om Enterasys Networks or thr ough any computer supply retailer . Power Consumption T ypical valu[...]

  • Página 89

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-3 1000Base-SX Mini-GBI C with connector 1000Base-LX Mini-GBI C with connector 1000Base-SX Mini-GBI C with connector Short-haul LC Long-haul LC Short-haul MTRJ MGBIC- LC01 MGBIC- LC09 MGBIC-MT01 Ether net lin k to 1000B aseT line Ether net lin k to 1000B aseT line Ether net[...]

  • Página 90

    Cable, CompactFlash and Accessory Specifications A-4 COM (Console) Po rt The XSR comes equipped with a COM serial port useful for initial configuration and management. Using a serial ( null modem) cable, you can attach the route r ’s DB-9 COM port to a data terminal port and directly configur e the XSR over th e asynchr onous connection. Then, op[...]

  • Página 91

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-5 GigabitEtherne t Port s The XSR comes equipped with three GigabitEthernet (LAN) ports that support full-duplex 10, 100, or 1000 Mbps transmission. The ports conform to IEEE 802.3 standar d s with 8-pin modular RJ-45 connectors. Because these ports ha ve internal MDI cr o[...]

  • Página 92

    Cable, CompactFlash and Accessory Specifications A-6 Copper/Fiber-optic Ethernet NIMs The single-port Copper or Fiber - optic Ethernet NIMs, shown in Figure A-3 and Figure A-4 , provide interfaces for half and full-d uplex 10/10 0Base-T or fiber-optic 100Base-F transmission over LAN or W AN networks, respectively . The Co pp er Ethernet NIM incorpo[...]

  • Página 93

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-7 2/4-Port Serial NIM Card Port The High Speed Serial NIM car d, as shown in Figure A-6 , provides a W AN interface supporting a serial link to four differ ent types of DTEs: DB-15, 25 , 37, and V .35. This interface supports dual and quad traffic up to 8 Mbps. Figure A-6 [...]

  • Página 94

    Cable, CompactFlash and Accessory Specifications A-8 Figure A-8 E IA-232/5 30 DTE Pin Assignments 17 18 19 27 21 3 16 2 RxD2 + RxD 2- TxD 2 + 1 2 3 11 5 10 4 7 6 8 12 13 15 16 9 14 6 22 3 16 2 14 4 19 5 13 15 12 17 9 7 20 23 1 DSR0+ DS R0 - RxD0 + RxD 0- TxD 0 + TxD0- RTS 0 + RT S0- CTS 0 + CT S0- TxC 0 + TxC0- RxC0 + RxC 0- Si gnal GND Shield GND [...]

  • Página 95

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-9 Figure A-9 EIA-449 DTE Pin Assignment s 17 18 19 27 21 26 20 1 2 3 11 5 10 4 7 6 8 12 13 15 16 9 14 11 29 6 24 4 22 7 25 9 27 5 23 8 26 37 12 30 1 ON0+ ON0- RD0+ RD 0 - SD0+ SD 0 - RS0+ RS 0 - CS0+ CS 0 - ST0+ ST0 - RT0+ RT0 - SG0 Shie ld GND RC0 TR0+ TR 0 - 35 36 37 45 [...]

  • Página 96

    Cable, CompactFlash and Accessory Specifications A-10 Figure A-10 Combined V .35/EI A-232/530 DTE Pin Assignment s 1 2 3 11 5 10 4 7 6 8 12 13 15 16 9 14 3 16 2 14 4 19 5 13 15 12 17 9 7 20 23 1 RxD3+ RxD3- TxD3+ TxD3- RTS3+ RTS3- CTS3+ CTS3- TxC3+ TxC3- RxC3+ RxC3- Signal GND Signal GND DTR3+ DTR3- J1 J2 6 22 DSR3+ DSR3- 35 37 45 39 44 38 49 40 50[...]

  • Página 97

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-11 Figure A-1 1 V .35 DTE Pin Assignment s 17 19 27 21 26 1 3 11 5 10 4 15 6 16 12 13 9 14 E R T P S C D Y AA V X B H A DSR 0 RD0+ RD 0 - SD0+ SD 0 - RTS 0 CTS 0 SC T 0 + SC T0- SCR0 + SC R 0 - Si g nal GND Shield G ND Si g nal GND 35 37 45 39 44 38 40 46 47 49 50 43 48 J1[...]

  • Página 98

    Cable, CompactFlash and Accessory Specifications A-12 T1/E1/ISDN PRI NIM Card Port s The T1/E1/ISDN PRI NI M, as shown in Figure A-12 , comes equipped with either 1, 2 or 4 Ethernet (W AN) ports that support fractional T1/E1 transmission in full-channel, fractional or unchannelized format with 8-pin modular RJ-4 8C connectors and include a built-in[...]

  • Página 99

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-13 Balun for E1 or PRI NIM Cards Some overseas electrical systems r e quir e that yo u use a balun and grounding shunt when utilizi ng an E1 or PRI NIM card on the XSR. A balun is an adapte r employed to connect a 75-ohm coaxial cable pair (2 BNC connectors) to a 120- ohm [...]

  • Página 100

    Cable, CompactFlash and Accessory Specifications A-14 Grounding Shunt for E1 NIM Cards If you connect a balun to a 75-ohm line , you wi ll also need to attach a g r ounding shunt (or terminal strip) to any NIM pins whose RJ-48C con n ectors utilize the balun. The XSR r equires that you use a shunt (shown in Figure A -15 ), or terminal strip to gr o[...]

  • Página 101

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-15 T3/E3 NIM Card The T3/E3 full and sub-rate NIM, as shown in Figur e A-17 , is equipped with 1 Ethernet (W AN) port that supports fractional T3 /E3 transm ission in un-channelize d or clear channel mode with BNC connectors. User data ar e encapsulated in HDLC packets bef[...]

  • Página 102

    Cable, CompactFlash and Accessory Specifications A-16 1/2-Port BRI-S/T ISDB NIM Card Port s The XSR provides a serial NIM card for 1 or 2 W AN interfaces over an ISDN-S/T BRI line, as shown in Figur e A-18 . The Port 0 and 1 LEDs shin e when the lines ar e active and r eady to receive traffic. See Figure A-19 for pinout assignments. Figure A-18 ISD[...]

  • Página 103

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-17 Inst alling Shunt/T erminal Strip T o install the shunt or terminal strip, attach two dual-pin units vertically to P1 and P2 four-pin jumpers corresponding to the RJ-45 port using a balun, as shown in Figure A-20 . Any other RJ-45 ports on the NIM car d connected to 120[...]

  • Página 104

    Cable, CompactFlash and Accessory Specifications A-18 1/2-Port BRI-U NIM Card Port s The XSR provides a serial NIM car d for 1 or 2 W A N interfaces over an ISDN BRI-U line, as shown in Figure A- 21 . Port 0 and 1 LEDs shine when the lines are active and ready to re ceive traffic. Figure A-21 ISDN BR I-U NI M Card (RJ-49C port s shown) Refer to Fig[...]

  • Página 105

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-19 1-Port ADSL NIM Card Port The XSR’s Asymmetric Digital Subscriber Line (A DSL) NIM card, as shown in Figur e A-23 , provides 1 W AN port on an ADSL over POTS (A nnex A/C) or ISDN (Annex B) line with a 6-pin RJ-1 1 connector . The ADSL NIM supports both G. dmt and G.li[...]

  • Página 106

    Cable, CompactFlash and Accessory Specifications A-20 T1/E1 Drop & Insert (D&I) NIM The XSR’s 2-port T1/E1 D& I NIM card, as shown in Figur e A-25 , is designed as an intermediary between the Central Of fice T1/E1 line and a PBX. It de-couples Channel Associated Signaling (CAS) and V oice DS0 timeslots and redirects them to a PBX, and[...]

  • Página 107

    Cable, CompactFlash and Accessory Specifications XSR Getting Started Guide A-21 Comp actFlash Memory Card The optional plug-in CompactFlash (CF) memory card, shown in Figure A-27 , comprises a single chip controller and flash memory modules in a matchbook-sized package with a 50-pin, PC MCIA connector consisting of two r ows of 25 fema le contacts [...]

  • Página 108

    Cable, CompactFlash and Accessory Specifications A-22 VPN ON VPN tunnel is up OFF No VPN tunnel connected COM(munication) Blinking Port is transmitting or receiving data OFF Port is idle Ethernet Port 1, 2, 3 Amber only ON 10Base-T link is au to-detected Green only ON 100Base-T link is auto-detected Both ON 1000Base-T link is auto-de tected Blinkin[...]

  • Página 109

    Index-1 Index B Balun description A-13 Balun adapte r A-3 BRI S/T card part numbers A-3 BRI S/Tpin assignments A-16 BRI U card part numbers A-3 BRI-U pin assignme nts A-18 , A-19 , A-20 Broadcom 1250 processor 1-2 C cable/accessory guide A-2 cabling part numbers A-2 Canadian notices iii channelized card specifications A-3 chassis dimensions 1-2 spe[...]

  • Página 110

    Index-2 features 1- 1 GigabitEthernet port pi nouts A-5 hardware features 1-2 hardware specifications A-1 how to attach the Ethernet serial cable 2-10 how to attach the internal power supply cord 2-12 how to attach the serial Console cable 2-7 how to attach the WAN cables 2-7 how to configure Frame Relay 3-15 how to configure IP routing 3-14 how to[...]