Allied Telesis AT-AR300 - Manuals

Allied Telesis AT-AR300 – Manual in PDF format online.

Manuals:

Manual

Manual Allied Telesis AT-AR300

Summary

Page 2 - Introduction; Hardware Platforms; Rapier i Series

2 Release Note Software Release 2.3.1 C613-10325-00 REV B Introduction Allied Telesyn International announces the release of Software Release 2.3.1 on the AR300 and AR700 Series routers, Rapier Series layer 3 switches, and AR800 Series modular switching routers. This release note describes software ...

Page 3 - Hot Swapping Network Service Modules

Software Release 2.3.1 3 Software Release 2.3.1C613-10325-00 REV B Hot Swapping Network Service Modules In routers and switches that have NSM bays, this release allows the following NSMs to be hot swapped, so that they can be installed and uninstalled without powering down the entire router or switc...

Page 5 - Software Features; Major features

Software Release 2.3.1 5 Software Release 2.3.1C613-10325-00 REV B Software Features The following features are available on all routers and switches supported by this release, unless otherwise stated: Major features ■ NSM Hot Swap software support for models with NSM bays (“ NSM Hot Swap Software S...

Page 7 - Domain Name Server Enhancements; DNS Caching

Software Release 2.3.1 7 Software Release 2.3.1C613-10325-00 REV B Figure 2: Example output from the SHOW INTERFACE command for a specific interface. Domain Name Server Enhancements Software Release 2.3.1 includes two enhancements to Domain Name Server (DNS) functionality: ■ The router can now store...

Page 8 - Server Selection

8 Release Note Software Release 2.3.1 C613-10325-00 REV B If the DNS servers have already been configured, the configuration information can be set using the command: SET IP DNS [DOMAIN={ANY| domain-name }] {INTERFACE= interface | [PRIMARY= ipadd ] [SECONDARY= ipadd ]} For example, to add or set the...

Page 9 - Automatic Nameserver Configuration; Telnet Server Port Number

Software Release 2.3.1 9 Software Release 2.3.1C613-10325-00 REV B Automatic Nameserver Configuration The primary and secondary name server ’s addresses can either be statically configured as above, or learned dynamically over an interface. Name servers can be learned via DHCP over an Ethernet inter...

Page 10 - ENCO Channels

10 Release Note Software Release 2.3.1 C613-10325-00 REV B SET TRIGGER= trigger-id [INTERFACE[= interface ]] EVENT={UP| DOWN|FAIL|ANY} [CIRCUIT= miox-circuit ] [CP={APPLE|ATCP|BCP| CCP|DCP|DNCP|IPCP|IPXCP|LCP}] [DLCI= dlci ] [AFTER= hh:mm ] [BEFORE= hh:mm ] [{DATE= date |DAYS= day-list }] [NAME= nam...

Page 12 - OSPF on Demand

12 Release Note Software Release 2.3.1 C613-10325-00 REV B OSPF on Demand OSPF on demand circuits allow data link connections to be closed when not carrying application traffic. A new parameter, DEMAND, has been added to the following commands to support this feature: ADD OSPF INTERFACE [DEMAND={ON|...

Page 14 - Paladin Firewall Enhancements

14 Release Note Software Release 2.3.1 C613-10325-00 REV B Paladin Firewall Enhancements The existing firewall NAT performs address translation for traffic passing between a pair of interfaces. With Software Release 2.3.1, firewall rules can also be configured which selectively perform address trans...

Page 19 - Further Examples; Firewall and IPsec Tunnel

Software Release 2.3.1 19 Software Release 2.3.1C613-10325-00 REV B redirection any web traffic from the user ’s PC or laptop can be redirected to the ISP's web server. This forces the user to arrange payment for using the service before being able to browse to any other site. With appropriate suppo...

Page 20 - Standard NAT; Double NAT; Internet

20 Release Note Software Release 2.3.1 C613-10325-00 REV B Figure 5: Using enhanced NAT in an IPsec tunnel with different IPsec and default gateways. Standard NAT To translate the source address of traffic received on the private interface eth0 and destined for addresses in the range 210.25.4.1-210....

Page 21 - SHOW Output

Software Release 2.3.1 21 Software Release 2.3.1C613-10325-00 REV B Reverse NAT To redirect all traffic received on a private interface to a destination of 210.25.7.1, without changing the source address, use the command: ADD FIREWALL POLICY=zone1 RULE=51 ACTION=NAT NATTYPE=REVERSE INT=eth1 PROTOCOL...

Page 22 - Firewall HTTP Proxies and Firewall Policies; HTTP Filters

22 Release Note Software Release 2.3.1 C613-10325-00 REV B Firewall HTTP Proxies and Firewall Policies To add or delete a Firewall HTTP proxy, use the new HTTP option for the PROXY parameter in the commands: ADD FIREWALL POLICY= policy-name PROXY={ HTTP |SMTP} INTERFACE= interface GBLINTERFACE= inte...

Page 24 - HTTP Cookies

24 Release Note Software Release 2.3.1 C613-10325-00 REV B Figure 6: Example of a HTTP filter file. HTTP Cookies By default, HTTP cookie requests are allowed to pass through the HTTP proxy configured under the firewall policy. To discard cookie sets from particular domains or URLs, put entries in th...

Page 25 - Firewall Policy Debugging; SHOW FIREWALL POLICY

Software Release 2.3.1 25 Software Release 2.3.1C613-10325-00 REV B To re-enable HTTP cookie requests to pass through the HTTP proxy, use the command: ENABLE FIREWALL POLICY= name HTTPCOOKIES For example, to enable the passing of HTTP cookies through HTTP proxies configured for the policy zone1, use...

Page 26 - VRRP Port Monitoring

26 Release Note Software Release 2.3.1 C613-10325-00 REV B VRRP Port Monitoring Virtual Router Redundancy Protocol (VRRP) is now able to monitor ports in the VLAN over which it is running, and reduce the priority of the router or switch if ports in the VLAN fail. Ports that are part of a VLAN over w...

Page 29 - IP and Interface Counters

Software Release 2.3.1 29 Software Release 2.3.1C613-10325-00 REV B Internet Protocol (IP) In conjunction with BGP-4, a number of new commands have been added to the implementation of IP, and several commands have been modified. The new commands are: ■ ADD IP ASPATHLIST ■ ADD IP COMMUNITYLIST ■ ADD ...

Page 34 - Bandwidth Limiting; Syntax; Description

34 Release Note Software Release 2.3.1 C613-10325-00 REV B Bandwidth Limiting This feature will be available on Rapier i Series layer 3 switches only, when these models become available. Ingress and egress bandwidth limits are specified separately. Limits can be configured for each switch port using...

Page 35 - SHOW TELNET; Installation

Software Release 2.3.1 35 Software Release 2.3.1C613-10325-00 REV B ENABLE TELNET SERVER Syntax ENABLE TELNET SERVER Description This command enables the Telnet server to be accessed remotely. The Telnet server is enabled by default. SHOW TELNET Syntax SHOW TELNET Description This command displays i...