3Com OfficeConnect Remote 812 - Manual

vii IP RIP Packet Filtering Using CLI 6 -50 IPX Source and Destination Network Filtering Using CLI 6 -51 IPX Source and Destination Host Filtering Using CLI 6 -51 IPX Source and Destination Socket Number Filtering Using CLI 6 -51 IPX RIP Packet Filtering Using CLI 6 -52 IPX SAP Packet Filtering Usin...

viii B CLI C OMMAND D ESCRIPTION CLI Commands B -1 ADD B -1 add access <ip subnet address> B -1 add auto_filter eth_blk_dst B -1 add auto_filter vc_blk_netbios B -1 add bridge network <network_name> B -1 add dns host <host_name> address <ip_address> B -2 add dns server <do...

ix delete ipx service <service_name> B -11 delete pat tcp vc <vc_name> B -11 delete pat udp vc <vc_name> B -11 delete nat [dynamic | static ] vc <vc name> public_pool_start <address> B -12 delete network service <service_name> B -12 delete snmp community <name&...

xi list services B -21 list snmp communities or list snmp trap_communities B -21 list syslog B -21 list tcp connections B -22 list tftp clients B -22 list udp listeners B -22 list tunnel B -22 list users B -22 list vc B -22 login_required B -22 password B -22 PAUSED COMMANDS B -22 PING B -23 ping &l...

xii set system B -34 set syslog <ip_address> loglevel [level] B -34 set time <time> B -34 set tunnel <tunnel_name> B -34 set user <user_name> B -35 set vc <vc_name> B -36 set vc <vc_name> atm B -38 SHOW B -39 show access B -39 show atm status B -39 show adsl stati...

xiii show memory B -50 show network <name> settings B -50 show network <name> counters B -50 show ppp on vc <vc_name> counters B -51 show ppp on vc <vc_name> settings B -51 show ppp on interface <name> counters B -51 COUNTERS for PPP BUNDLE 1 B -51 COUNTERS for PPP LINK...

xiv POSITIONAL HELP B -57 Command Completion B -57 Output Pause B -58 Command Kill B -58 Comments B -58 3C OM C ORPORATION L IMITED W ARRANTY FCC C LASS A V ERIFICATION S TATEMENT FCC C LASS B S TATEMENT FCC D ECLARATION OF C ONFORMITY

1 A CCESSING THE C ONFIGURATION I NTERFACE This chapter explains how to attach to the configuration interface locally via the console port or remotely via a Telnet session. This chapter also introduces you to the capabilities and conventions associated with management of your OfficeConnect â Remote ...

1-2 C HAPTER 1: A CCESSING THE C ONFIGURATION I NTERFACE UNIX-Based Computers Kermit, minicom and tip are typical terminal emulation programs for UNIX-based computers. Depending on the platform you’re using, you may need to modify a configuration file for vt100 settings. Remote Connection If you wan...

2 CLI C OMMAND C ONVENTIONS AND TERMINOLOGY This chapter describes the command syntax, conventions and terminology used within the Command Line Interface. Reviewing and understanding this chapter is essential for you to understand subsequent chapters. Command Structure Format Commands can be followe...

2-2 C HAPTER 2: CLI C OMMAND C ONVENTIONS AND TERMINOLOGY The type of value you enter must match the type requested. Numbers are either decimal or hexadecimal. Text can be either a string that you create, or it may be a list of options you must choose from. When choosing an option, type the text of ...

Command Structure 2-3 Help is most useful during configuration: query the list of possible parameters by typing ? and, when you find the value you need, type it without losing your place in the argument. Just be sure to leave a space between the keyword and the question mark. Conventions Most comman...

3 C ONFIGURATION M ETHODS The OCR 812 CLI offers three setup choices, all of which are described in this section: the automated, Quick Setup method, the QuickVC Setup method, and the manual method. Review the capabilities of each below and decide which configuration method best suits your needs, the...

3-2 C HAPTER 3: C ONFIGURATION M ETHODS Manual Setup Instructions Once you become familiar with the CLI interface, you might find it more efficient to manage the OCR 812 manually. Manual configuration is most versatile in that you only enter commands that need to effectively change from the current ...

4 Q UICK S ETUP This chapter will describe in detail the operations of the Quick Setup program. It will identify the required information, steps involved, and sample output scripts from the execution of this program. CLI Quick Setup Script Introduction The CLI Quick Setup program allows you to quick...

4-2 C HAPTER 4: Q UICK S ETUP Downgrading the Remote 812 Software to a Previous Version Downgrading the 812 software to an older version is not recommended (we suggest you upgrade to obtain the latest and most reliable software available). If you do choose to downgrade, we suggest you delete your ex...

CLI Quick Setup Script 4-3 Quick Setup Identification Information Quick Setup Management Information An SNMP community names a group of systems that can manage your system via SNMP. It is a rudimentary form of security. Along with a community name, you can limit access to a specific management stati...

4-4 C HAPTER 4: Q UICK S ETUP TELNET information For TELNET management of the system, you need to create a user name and password to control access. Quick Setup IP Information The OCR 812 uses a network name to identify the network for future management commands. The IP mask can be specified either ...

CLI Quick Setup Script 4-5 The OCR 812 can act as a DHCP server, providing IP addresses to other stations on the local LAN. It is possible to restrict access to the TFTP server to a specific system or a list of systems. Quick Setup will allow you to enter one system that is allowed or allow access t...

4-6 C HAPTER 4: Q UICK S ETUP Quick Setup Bridge Information The network name is used by the OCR 812 to identify your bridging setup. The spanning tree algorithm is used to eliminate loops in a network that is linked together with bridges. Would you like to review your current settings before execut...

CLI Quick Setup Script 4-7 Sample Output Display as Quick Setup Executes OCR-DSL> set system name "name" OCR-DSL>set system location "vienna" OCR-DSL>set system contact "jc" OCR-DSL>enable command password “password” OCR-DSL>add snmp community public address 0....

5 Q UICK VC S ETUP This chapter will describe in detail the operations of the OCR 812 QuickVC Setup Wizard program. It will identify the required information, steps involved, and sample output scripts from the execution of this program. CLI QuickVC Setup Script Introduction The CLI QuickVC Setup pro...

5-2 C HAPTER 5: Q UICK VC S ETUP The Category of Service and cell rate parameters only affect data transmitted from the OCR 812 to the remote site (upstream direction). The default value of UBR with a Peak Cell Rate of 0 will attempt to use all available upstream bandwidth when transmitting to the r...

CLI QuickVC Setup Script 5-3 The IP configuration for VC “name” is now complete. IP Configuration (Network Service RFC 1483) Port Address Translation (PAT) allows a single WAN-side IP address to be ‘shared’ by multiple LAN-side devices. If you choose to run PAT the WAN interface must be Numbered. (i...

5-4 C HAPTER 5: Q UICK VC S ETUP IPX Routing (Network Service PPP) The IPX configuration for VC “name” is now complete. IPX Routing (Network Service RFC 1483) The IPX configuration for VC “name” is now complete. Bridging The OCR 812 can be configured to send and receive the routed (IP and IPX) packe...

CLI QuickVC Setup Script 5-5 Sample Identification Information This section contains a sample of possible settings. Encapsulation type: PPP ATM information:VPI/VCI: 0/33 Category of Service: UBR Peak Cell Rate: 0 IP: EnabledLocal WAN IP Address: Learned Remote WAN IP Address: Learned WAN Interface T...

6 M ANUAL S ETUP This chapter describes how to manually set up the OCR 812 for routing or bridging. Configuration Overview The following steps provide an outline to follow when configuring the OCR 812 to route or bridge to remote networks. 1 Determine how the OCR 812 will be used (as an IP, IPX Rout...

6-2 C HAPTER 6: M ANUAL S ETUP Remote Site Management Each remote site that you want to connect to is accessed through a single ATM Virtual Channel connection. To set up connections over the WAN, a VC (remote site) profile must be created and edited. With this profile, you specify ATM Virtual Channe...

Remote Site Management 6-3 For example, if you want to change the PPP authentication password to testpassword for a profile called Internet you would do the following: disable vc Internet set vc Internet send_password testpassword enable vc Internet Configuring Network Service Information A Network ...

6-4 C HAPTER 6: M ANUAL S ETUP When the Network Service is set to RFC 1483, the profile’s IP WAN addresses can be dynamically learned with the DHCP protocol. To enable DHCP on a Remote Site profile: 1 Set the network service to RFC 1483: set vc <vc name> dynamic_ip_addressing dhcp_client 2 Ena...

Setting Up a Virtual Private Network (VPN) Tunnel 6-5 set vc name <vc name> atm vci <vci value> vpi <vpi value> You should have been provided with Category Of Service parameters. UBR - Unspecified Bit Rate; No limit has been specified for the upstream data flow. CBR - Constant Bit ...

6-6 C HAPTER 6: M ANUAL S ETUP VPN Tunneling Overview A VPN tunnel is a private virtual circuit that uses public wires to connect two nodes. For example, it is common practice to create VPNs that use the Internet as the public medium over which private information is sent and received. Tunnelling is...

Setting Up a Virtual Private Network (VPN) Tunnel 6-7 Enabling and Disabling a VPN Tunnel To enable a VPN, enter the enable tunnel command. To disable a VPN, enter the disable tunnel command. Before you attempt to set or change any parameter for a VC, you must first disable the VC using the DISABLE ...

6-8 C HAPTER 6: M ANUAL S ETUP be blank (assigned with the value “”). You can change the PASSWORD and SEND_PASSWORD using the SET TUNNEL [PASSWORD | SEND_PASSWORD] command. You must change the SEND_PASSWORD (to the appropriate authentication password value expected by the VPN Server) using the SET T...

Setting Up a Virtual Private Network (VPN) Tunnel 6-9 For example, to change the SEND_PASSWORD settings of a tunnel named ZOOM to VPN, enter the following command: SET TUNNEL ZOOM SEND_PASSWORD VPN You must disable the tunnel using the disable tunnel <tunnel_name> command before you can change...

6-10 C HAPTER 6: M ANUAL S ETUP Configuring Authentication and Encryption To learn how to use CLI commands to configure authentication and encryption for the OCR 812, please refer to the following: To configure authentication parameters, see set ppp receive_authentication [ANY | ANY_EXCEPT_MSCHAP | ...

Setting Up a Virtual Private Network (VPN) Tunnel 6-11 An administrator may also set up a Windows 2000 Server as a router with a private IP subnet set to 98.76.54.0/C. To add DHCP Services on the Windows 2000 Server, an administrator can use any IP addresses from 98.76.54.1 to 98.76.54.253 inclusive...

6-12 C HAPTER 6: M ANUAL S ETUP vpdn-group 1 accept-dialin protocol l2tp virtual-template 25 terminate-from hostname OfficeConnect local name c7200 no l2tp tunnel authentication source-ip 192.180.3.2 3 In Cisco router configuration mode, enter the following commands to configure the private network ...

Setting Up a Virtual Private Network (VPN) Tunnel 6-13 ppp authentication pap 6 Ensure RIP and IP Pool configuration parameters are set to the following values: RIP Configuration router rip ver 2 network 192.180.3.0 IP Pool for L2TP Tunnel ip local pool L2TP 192.168.200.3 192.168.200.10 At this poin...

6-14 C HAPTER 6: M ANUAL S ETUP Adding a Framed Route for a VPN Tunnel If you wish to set up a route to a network on the private (LAN) side of a remote site, use a framed route. To add a framed route for a VPN tunnel, enter the add framed_route vc command or the add framed_route tunnel command at th...

6-16 C HAPTER 6: M ANUAL S ETUP You can obtain a list of all configured networks using the command list networks . To only list IP networks, use list ip networks . By default, the network is enabled when it is created. You can disable the network using the following command: disable ip network <n...

IP Routing 6-17 The IP address associated with the local side of the WAN connection can be specified by you, learned from the remote site (if you are using PPP as the Network Service for the connection), or the interface can be Unnumbered. To specify the local IP address use the command: set vc <...

6-18 C HAPTER 6: M ANUAL S ETUP If you are using address translation for a remote site connection (NAT) you must set ip_routing to LISTEN or NONE. This is because you have set up a private LAN network and therefore do not want to be broadcasting information to other routers. The OCR 812 will not all...

Address Translation 6-19 IP Tools The OCR 812 CLI provides a standard set of IP utility programs including Ping, TELNET and RLOGIN. Address Translation Public IP addresses are registered and can be used within a public network (e.g., the Internet). Due to the limitation of IP version 4 address space...

6-20 C HAPTER 6: M ANUAL S ETUP PAT allows multiple private IP addresses to use one public IP address by dynamically and statically mapping each private IP source address and private IP source port to one public IP source address and one public IP source port. Super NAT should be used to optimize ad...

6-22 C HAPTER 6: M ANUAL S ETUP memory. If you do not enter the save all command before a reboot, unsaved changes made since the last save will be lost. Intelligent PAT Enabled by default, Intelligent PAT provides a “best guess” as to where an incoming packet should be delivered when : A default PAT...

Address Translation 6-25 If you choose (optionally) to add static or dynamic mappings for Super NAT, do not use the public WAN port IP address of the OfficeConnect 812 as one of the Super NAT static or dynamic public IP addresses. To configure OCR812 to use Super NAT, perform the following steps: 1 ...

6-26 C HAPTER 6: M ANUAL S ETUP Configuring the 812 for SIP Phone Support The OCR 812 can be configured to use SIP phones. Overview A SIP phone (Session Initiation Protocol phone) is a network-capable telephone that uses Ethernet connectivity to place and receive calls over the Internet. SIP phones ...

DHCP 6-27 caller identity (and finds, then connects to, the recipient’s IP address ). The IP address of the intended recipient is their (SIP) phone number . By creating and storing a caller identity, a proxy server enables party A to call party B (and vice-versa), even if the recipient’s IP address ...

6-28 C HAPTER 6: M ANUAL S ETUP Configuring the DHCP Server The OCR 812’s DHCP Server has the following fields that will need to be configured: Hostname Domain Name IP Address Pool, Start and End address IP Subnet address mask Lease period WINS Server addresses DNS Server addresses The Hostname is t...

DNS 6-29 assigned, the corresponding workstation MAC addresses, and remaining time before the lease expires. show dhcp server counters list dhcp server leases The DHCP Server configuration is displayed with the show dhcp server settings command. Configuring the DHCP Relay The OCR 812 can relay DHCP ...

6-30 C HAPTER 6: M ANUAL S ETUP Configuring DNS To enable DNS functionality on the OCR 812, use the command: enable dns To disable DNS functionality, use the command: disable dns You can configure three global DNS parameters that control the operation of the DNS proxy. Number of Retries : the number...

IPX Routing 6-31 To display the contents of the DNS Server table, use the command: list dns servers To delete a domain entry, use the command: delete dns server <domain name> Access Lists Access lists enable you to restrict which Remote Subnets are allowed to access the Management services of ...

Bridging 6-35 delete ipx_service vc <vc name> name <service name> type <type> Remember to disable and then re-enable the VC profile for the change to take effect. Configuring IPX RIP and SAP IPX RIP is used to exchange IPX routing information with other IPX routers. SAP is a protoc...

6-38 C HAPTER 6: M ANUAL S ETUP MAC-Encapsulated Routing Because routers base their forwarding decision on network-level addresses, packets that are routed over a WAN are transmitted without MAC-layer addresses. Additionally, address resolution procedures that can be used to determine the destinatio...

System Administration 6-39 2 Forward Unicast Packets Only: If a protocol is configured for routing, and a packet for that protocol type is received from the LAN that is not addressed to the MAC address of the OCR 812, it is bridged. Additionally, ARP broadcasts for IP addresses other than that of th...

System Administration 6-41 If more than one OCR 812 is installed in your network, each OCR 812 is assigned a different primary NTP server (the assignment of a primary NTP server to a given OCR 812 is based on the unique MAC address of that OCR 812 unit). To specify a secondary NTP server, use the fo...

6-42 C HAPTER 6: M ANUAL S ETUP To specify a time zone for NTP, use the following command: set timezone <timezone_name> The default time zone is GMT. To display NTP time zone settings, use the following command: list timezone To display NTP settings, use the following command: show ntp <set...

6-44 C HAPTER 6: M ANUAL S ETUP Providing TFTP Access Trivial File Transfer Protocol (TFTP) provides a simple way to transfer files from one machine to another. The OCR 812 has a TFTP server that allows you to copy files to or from the unit. All you have to do is set up TFTP access on the OCR 812 an...

System Administration 6-45 After logging in to the CLI, you can exit the CLI with the command: exit cli

6-46 C HAPTER 6: M ANUAL S ETUP To set the idle timeout period, use the command: set command idle_timeout <timeout> where < timeout > specifies the idle timeout period in minutes. By default, there is no idle timeout period. This capability is useful for system administrators or users wh...

OfficeConnect Remote 812 Filtering Capabilities 6-47 Packet filters control inter-network data transmission by accepting or rejecting the passage of specific packets through network interfaces based on packet header information. When data packets are received by a network interface such as an Ethern...

6-48 C HAPTER 6: M ANUAL S ETUP Generic Filters Generic filters are protocol-independent and are specified by byte and offset values in a packet. Packets are filtered by comparing each packet’s offset value and byte information with the values that you define in the filter. The router will accept or...

Creating Filters Using Command Line Interface 6-49 Filter File Components in CLI You define the filtering rules used by the router within filter files. Filter files are text files that are stored in the unit’s FLASH memory. You can create and modify filter files using an off-line text editor, then T...

6-50 C HAPTER 6: M ANUAL S ETUP the first match that occurs . If there is no match, by default the packet is accepted. For this reason, you should order your protocol rules so that the rules you expect to be most frequently matched are in the beginning of the section. This reduces the amount of pars...

Creating Filters Using Command Line Interface 6-51 Generic Filter Rule The syntax for generic filters is slightly different than that for other filters: <line #> <verb> GENERIC => ORIGIN = <FRAME > DATA>/OFFSET = <# of bytes>/LENGTH = <# of bytes>/MASK = < 0x M...

6-52 C HAPTER 6: M ANUAL S ETUP IP Source and Destination Network Filtering Using CLI Source and destination address filtering is generally used to limit permitted access to trusted hosts and networks only, to explicitly deny access to hosts and networks that are not trusted, or to limit external ac...

Creating Filters Using Command Line Interface 6-53 If the router is listening for, or broadcasting RIP messages, you should allow them to pass in the appropriate direction(s). You define IP RIP filtering rules in the IP-RIP protocol section of the filter file. For example, if you want to filter all ...

6-54 C HAPTER 6: M ANUAL S ETUP IPX:1 ACCEPT src-socket = 0x001;999 DENY; IPX RIP Packet Filtering Using CLI Routing Information Protocol (RIP) packets are used to identify all attached networks as well as the number of router hops required to reach them. The responses are used to update a router's ...

Creating Filters Using Command Line Interface 6-55 3 ACCEPT generic=>origin=FRAME/offset=12/length=2/mask=0xFFFF/value=0x8136;4 ACCEPT generic=>origin=FRAME/offset=12/length=2/mask=0xFFFF/value=0x8137;999 DENY; Step by Step Guide to Creating Filter Files Using CLI You can create filter files u...

For example, from the workstation command line enter: tftp <OfficeConnect Remote 812 IP address> put <filter filename> 12 The router does not recognize a filter file stored in its FLASH memory until you add it to the managed filter table. To notify the unit about the filter file for the ...

Applying Filters Using CLI 6-57 Most importantly, the router does not know which interface an outgoing packet came in through. If a potential intruder forges a packet with a false source address (in order to appear as a trusted host or network), there is no way for an output filter to tell if that p...

Configuring Filters for a VPN Tunnel To configure filters for a VPN tunnel, use the following commands: set tunnel <tunnel name> input_filter <filter_name>set tunnel <tunnel name> output_filter <filter_name> For more information about configuring a VPN Tunnel (including infor...

Managing Filters Using CLI 6-59 It may be helpful to use the list files command to see files successfully stored in the FLASH memory. Removing a Filter from an Interface Using CLI To remove a filter that is assigned to an interface, use the following command: set interface <interface name> inp...

A-2 A PPENDIX A: OFFICECONNECT REMOTE 812 SAMPLE CONFIGURATION Configuring the Sample Network The following sections discuss the six steps required to configure our sample network. Global Configuration IP LAN Network DHCP and DNS IPX LAN Network Bridge LAN Network Remote Sites Global Configuration G...

Configuring the Sample Network A-3 set dhcp server dns1 192.168.200.254 dns2 0.0.0.0 set dhcp server wins1 0.0.0.0 wins2 0.0.0.0 add dns host ocrdsl-3com.com addr 192.168.200.254 add dns server MyCorp.com primary 192.168.1.253 add dns server * vc Internet enable dns When a DNS request is received fr...

Configuring the Sample Network A-5 set vc corp-net ip_routing both set vc corp-net ipx_address 0 ipx_routing all enable vc corp-net

B CLI Command Description CLI Commands ADD Use the ADD command to define: Networks you will connect to Hosts you need to access SNMP communities Users who will dial out, dial in, access the network, or use the CLI Note that some parameters have default values. add access <ip subnet address> Th...

B-2 A PPENDIX B: CLI C OMMAND D ESCRIPTION You must use add user to create a network type user for this command, and set user to specify the protocol and other parameters related to bridging. add dns host <host_name> address <ip_address> Adds the named host to the Local Host Table. When ...

CLI Commands B-3 You must correct the filter file in a text editor, use TFTP to export the updated file to the system’s FLASH file system, and use the verify filter command to check the filter’s syntax. add framed_route vc <name> ip_route [ip_address] metric [number] Adds a framed (static) net...

B-4 A PPENDIX B: CLI C OMMAND D ESCRIPTION add ip network <network_name> address [ip_net_address] frame [ETHERNET_II | SNAP | LOOPBACK] { interface [eth:1] } { enabled [yes] } Adds an IP network to the list of IP networks available over the specified interface. add ip route <ip_net_address&...

CLI Commands B-5 add ipx route <ipx_net_address> gateway [ipx_host_address] metric [metric_number] ticks [tick_number] Adds an IPX static route (for the LAN) to the system’s IPX Route table, which defines static routes to remote IPX networks. The command list ipx routes displays currently defi...

B-6 A PPENDIX B: CLI C OMMAND D ESCRIPTION Below is a partial list of the IPX services available: add ipx_route vc <name> ipx_net [ipx_address] metric [hop_count] ticks [tick_number] Adds an IPX route for the a user over the WAN. add ipx_service vc <name> ipx_net [ipx_address] hops [numb...

CLI Commands B-7 You must supply the name, internal ipx network number, node number, socket, and type of service for this service. The user must also supply gateway information to indicate the next router hop. Below is a partial list of the IPX services available: add network service <service_nam...

B-8 A PPENDIX B: CLI C OMMAND D ESCRIPTION close_active_connections [TRUE | FALSE] This configures a network listener process that provides a certain type of service. To see the available server types, use list services . The table below shows configurable parameters for TELNET services, which are s...

CLI Commands B-9 Adds to the list of SNMP authorized users. The community name and IP address of SNMP requests from managers on the network must match the list, which you can see using list snmp communities . add snmp trap_community <name> address [ip_address] Adds to the list of community nam...

B-10 A PPENDIX B: CLI C OMMAND D ESCRIPTION add user [name] password [password] {enabled [yes]} Adds a Telnet user to the local user table. The list users command displays these parameters for all users. add vc [name] Creates a virtual channel (VC) profile. Each profile represents a connection to a ...

CLI Commands B-11 delete dns host <host_name> Deletes the specified host from the DNS Local Host Table. Use list DNS hosts to view the DNS Local Host table. After deletion, requests for that host will be processed through a DNS server, instead of locally. Use list DNS servers to see which serv...

B-12 A PPENDIX B: CLI C OMMAND D ESCRIPTION delete nat [dynamic | static ] vc <vc name> public_pool_start <address> public_address <ip_address> Deletes the static NAT mapping to this public IP address for the associated VC. public_pool_start <ip_address> Deletes the dynamic N...

CLI Commands B-13 DIAL dial <vc_name> Generates an outgoing connection to the location specified by the vc name. You can use list vcs to list the defined vc profiles, and their current status. DISABLE disable access Disables the Access List feature. When disabled, all hosts are permitted to ac...

B-14 A PPENDIX B: CLI C OMMAND D ESCRIPTION disable lan access When the access list is enabled, this command disables access to Hosts on the local LAN interface. When disabled, all frames received on the LAN interface are subject to the access list check. If the corresponding LAN subnet is not in th...

CLI Commands B-15 ENABLE enable access Enables the Access List feature. When enables, only Remote Hosts in the access list are permitted access to the Router’s management services. enable bridge network <network_name> Enables bridging over the specified network. You must have previously run ad...

B-16 A PPENDIX B: CLI C OMMAND D ESCRIPTION enable link_traps interface <interface_name> This command tells SNMP to send linkup and linkdown traps for the specified interface. You can see if the interface is currently enabled for traps using the show interface settings command. enable network ...

CLI Commands B-17 hangup vc <vc_name> Causes the connection for the specified VC to drop. You can see which VCs have active connections using list vcs . Also see disable vc , which causes a VC’s session to drop, and prevents new sessions which use that VC from being established. HELP help <...

CLI Commands B-19 list interfaces Displays the installed interfaces, along with their operational status, administration status, and interface index. If an interface is down, you can use enable interface to try to bring it up. The command lists: Index - number used to identify the interfaces positio...

B-20 A PPENDIX B: CLI C OMMAND D ESCRIPTION Prot - LOCAL or RIP NextHop - address of the gateway used to reach this route Metric - number of router hops away this route is from the system If - interface that the route uses list ipx networks Displays the IPX networks that you previously defined using...

CLI Commands B-21 Type - STATIC or DYNAMIC network Network Address - address of the network list processes Displays all processes running on the system. Index - a reference number in the process table Name - designation of the process (e.g.: Domain Name System) Type - SYSTEM, APPLICATION, FORWARDER ...

B-22 A PPENDIX B: CLI C OMMAND D ESCRIPTION list tcp connections Displays information about all TCP connections. Connection status is defined in RFC-793. Local Address - IP address of the local host for this connection Local Port - TCP port number used by the local connection Remote Address - IP add...

CLI Commands B-23 PING ping <ip_name_or_addr> output [output_filename] count [count] interval [interval] timeout [timeout_value] Sends an ICMP echo request to a remote IP host. A reply from the pinged address indicates success. QUICKVC Runs the QuickVC Setup program to easily configure a virtu...

B-24 A PPENDIX B: CLI C OMMAND D ESCRIPTION SAVE save all Saves all changes you have made during your session with the CLI. It is a good idea to save your changes frequently, just as you should with any type of editor. SET set adsl reset Resets the ADSL interface. set adsl wire [pair] Overrides the ...

CLI Commands B-25 set date <date> Sets the system date, and leaves the time unchanged. Use show date to see what the current settings are. The format is: dd-mmm-yyyy. The month should be the first three characters of the month name. The year can be either 2 or 4 digits (97 or 1997). set dhcp m...

B-26 A PPENDIX B: CLI C OMMAND D ESCRIPTION set dhcp server DNS1 <IP_address> DNS2 <IP_address> domain <string> end_address <IP_address > hostname <string> lease <seconds> mask <IP_address> router <IP_address> start_address <IP_address> WINS1 <...

CLI Commands B-27 set facility <facility_name> loglevel [level] Sets the severity reporting level for a facility. The hosts that will receive the error log entries are defined using add syslog loglevel . Use list facilities to see what the current loglevel is for each facility. The levels: CRI...

CLI Commands B-29 set ip routing autonomous_system_number [number] table_maximum_size [number] metric_maximum_entries [number] rip_flags [METRICS, SEND_REQUEST] router_id [router_id] Sets parameters for IP routing to the specified IP router address, which is the gateway to an Autonomous System. Para...

B-30 A PPENDIX B: CLI C OMMAND D ESCRIPTION set ipx network <network_name> delay_ticks [number] diagnostics [DISABLE | ENABLE] maximum_learning_retries [number] netbios [ENABLE | DISABLE] netbios_name_cache [DISABLE | ENABLE] netbios_cache_timer [seconds] netbios_max_hops [number] packet_maxim...

CLI Commands B-31 set ipx system priority [priority level] default_gateway [ipx_host_add] initial_pool_address [ipx_addr] pool_members [number] Sets parameters for dynamic IPX networks. set network service <admin_name> server_type [server_type] socket [socket_number] data [“string”] close_acti...

B-32 A PPENDIX B: CLI C OMMAND D ESCRIPTION set ppp receive_authentication [ANY | ANY_EXCEPT_MSCHAP | CHAP | MSCHAPV1 | MSCHAPV2 | NONE | PAP] Sets the type of inbound authentication to be used when establishing PPP connections for PPTP and L2TP tunnels. For in-depth information about CHAP and PAP, ...

CLI Commands B-33 set tunnel <tunnel_ name>encryption_algori thm [AUTO | MICROSOFT_128BIT | MICROSOFT_40BIT |MICROSOFT_56BIT | NONE | REQUIRED] Sets encryption for a PPTP or L2TP tunnel. Encryption can be set to any of the parameters shown in the Table below. However , a tunnel can only be con...

B-34 A PPENDIX B: CLI C OMMAND D ESCRIPTION set system name [“name”] location [“location”] contact [“contact info”] transmit_authentication_name [name] Specifies system contact information, which is displayed using show system . The user name is the remote account name. Location , name and contact n...

CLI Commands B-35 set user <user_name> message [“message”] password [password] session_timeout [seconds] tcp_port [tcp_port] terminal_type Modifies user parameters. SEND_PASSWORD <password> The SEND_PASSWORD must match the authentication password on the VPN server. You must change the de...

B-36 A PPENDIX B: CLI C OMMAND D ESCRIPTION set vc <vc_name> address_selection [negotiate | assign | specified] bridging [enable | disable] default_route_option [enable | disable] destination_address [ip address] end_time [ HH:MM:SS ] header_compression [none | TCPIP] idle_timeout [seconds] in...

B-38 A PPENDIX B: CLI C OMMAND D ESCRIPTION set vc <vc_name> atm set [number] category_of_service [Unspecified (UBR) | Variable (VBR)] pcr [number] scr [number] type [PVC | SVC] vci [number] vpi [number] management_ip_address Secondary IP address on the VC for Management purposes only. If the ...

CLI Commands B-39 Sets ATM parameters for VCs. SHOW Show commands display details about system entities. show access Displays the current status of the access list feature. Administration Status - Indicates status of the access list feature. Options are Enabled or Disabled . LAN Access - Indicates w...

B-40 A PPENDIX B: CLI C OMMAND D ESCRIPTION show adsl statistics Statistics for both near end and far end ADSL/ATM link. Counters include corrected frames, CRC errors, and HEC errors for the Fast and Interleaved path. show adsl performance Fields: Number of link down events Total time since system r...

CLI Commands B-41 show bridge settings Displays the settings for all bridge networks. Use set bridge to modify these values. Base Aging Time - time to age out a known MAC address, default 300 Spanning Tree Forward Delay - delay after coming up before learning, default is 15 Spanning Tree Priority - ...

B-42 A PPENDIX B: CLI C OMMAND D ESCRIPTION History Depth: 10 Current Prompt: OCR-DSL> Local Prompt: OCR-DSL> show configuration Displays a variety of system information including: System Identification, Authentication Remote, Remote Accounting, Interfaces, IP forwarding, IPX Default Gateway, ...

B-44 A PPENDIX B: CLI C OMMAND D ESCRIPTION DNS #1 - IP address of the primary DNS server that the DHCP server will utilize when resolving names. DNS #2 - IP address of the secondary DNS server that the DHCP server will utilize when resolving names. WINS #1 - IP address of the primary WINS server th...

CLI Commands B-45 BR-ETH - CALL - Ethernet bridge call filter rules IP - IP data filter rules IP-CALL - IP call filter rules IP-RIP - IP RIP advertisement filter rules show icmp counters Shows the Input and Output Counters for ICMP. Two types of ICMP messages - error and query messages - are sent to...

CLI Commands B-51 show ppp on vc <vc_name> counters This shows counters for the Point-to-Point Protocol on the Virtual Circuit. show ppp on vc <vc_name> settings This shows the settings for the Point-to-Point Protocol on the Virtual Circuit. show ppp on interface <name> counters Di...

B-52 A PPENDIX B: CLI C OMMAND D ESCRIPTION SETTINGS for PPP BUNDLE 1 Operational Status - opened or not opened Number Active Links - number of links active on this PPP bundle User Profile - user whose parameters were used in creating links Local MMRU - MRU the remote entity uses when sending packet...

CLI Commands B-53 Remote To Local ACC Compression - Indicates whether the remote PPP entity will use Address and Control Compression when sending packets to the local PPP entity. Default: ENABLED. SETTINGS for PPP LINK 1 - 5 AUTHENTICATION Operational Status - not opened or opened Local To Remote Co...

B-54 A PPENDIX B: CLI C OMMAND D ESCRIPTION Total Set MIB Objects - sum of MIB objects altered successfully as the result of receiving valid SNMP Set-Request PDUs Get Request PDUs - sum of SNMP Get-Request PDUs accepted and processed Get Next Request PDUs - sum of SNMP Get-Next PDUs accepted and pro...

CLI Commands B-55 show telnet Displays the status of the TELNET escape feature (ENABLED or DISABLED). It is set using the disable and enable TELNET escape commands. show tcp counters Displays system-wide TCP statistics. TCP COUNTERS Active Opens - number of times TCP connections have made a direct t...

show user <name> settings Displays the parameters defined for the specified TELNET user. You can use list users to see which users are defined. show vc <vc_name> settings Displays the parameters defined for the specified VC. You can use list vc to see which virtual channels are defined. ...

CLI Exit Commands B-57 set_escape <string> Allows changing the TELNET escape character from ^] to something else. Control characters are specified using the carat character followed by another character. For example, to set the TELNET escape character to control - X, type set_escape ^X . statu...

B-58 A PPENDIX B: CLI C OMMAND D ESCRIPTION Output Pause The output will pause when there is more than 24 lines of output. Type ‘more’ (or press CR) to continue, or ‘quit’ to stop. Command Kill To discontinue the current command action, and flush any commands which have been typed ahead, use ^C (con...

i INDEX A Add command 2 -2Address filtering, source and destination 6 -44Address Translation Configuring NAT 6 -23Configuring PAT 6 -21Configuring Super NAT 6 -24Monitoring NAT 6 -24Monitoring PAT 6 -23Monitoring Super NAT 6 -25Network Address Translation (NAT) 6 -23Overview 6 -19 ADSL reset B -24 A...

v N Network Address Translation (NAT) 6 -23Network Service, configuring 6 -3Network user 2 -2, 2 -3, 4 -4, 4 -5, 4 -6 O Output data filters 6 -45Output Filters 6 -54 P Package, what’s included 1 -1Packet filters 6 -44Password 2 -2, 2 -3password B -22Password Protection 6 -43password protection 4 -2P...

FCC C LASS B S TATEMENT This device complies with Part 15 of the FCC Rules. Operation is subject to the following two conditions: 1 This device may not cause harmful interference, and 2 This device must accept any interference received, including interference that may cause undesired operation. WARN...