Nortel NN46110-602 02.01 - Manual

Nortel NN46110-602 02.01

Nortel NN46110-602 02.01 – Manual, read for free online in PDF format. We hope this helps you resolve any issues you may have. If you have further questions, please contact us through the contact form.

1 Page 1
2 Page 2
3 Page 3
4 Page 4
5 Page 5
6 Page 6
7 Page 7
8 Page 8
9 Page 9
10 Page 10
11 Page 11
12 Page 12
13 Page 13
14 Page 14
15 Page 15
16 Page 16
17 Page 17
18 Page 18
19 Page 19
20 Page 20
21 Page 21
22 Page 22
23 Page 23
24 Page 24
25 Page 25
26 Page 26
27 Page 27
28 Page 28
29 Page 29
30 Page 30
31 Page 31
32 Page 32
33 Page 33
34 Page 34
35 Page 35
36 Page 36
37 Page 37
38 Page 38
39 Page 39
40 Page 40
41 Page 41
42 Page 42
43 Page 43
44 Page 44
45 Page 45
46 Page 46
47 Page 47
48 Page 48
49 Page 49
50 Page 50
51 Page 51
52 Page 52
53 Page 53
54 Page 54
55 Page 55
56 Page 56
57 Page 57
58 Page 58
59 Page 59
60 Page 60
61 Page 61
62 Page 62
63 Page 63
64 Page 64
65 Page 65
66 Page 66
67 Page 67
68 Page 68
69 Page 69
70 Page 70
71 Page 71
72 Page 72
73 Page 73
74 Page 74
75 Page 75
76 Page 76
77 Page 77
78 Page 78
79 Page 79
80 Page 80
81 Page 81
82 Page 82
83 Page 83
84 Page 84
85 Page 85
86 Page 86
87 Page 87
88 Page 88
89 Page 89
90 Page 90
91 Page 91
92 Page 92
93 Page 93
94 Page 94
95 Page 95
96 Page 96
97 Page 97
98 Page 98
99 Page 99
100 Page 100
101 Page 101
102 Page 102
103 Page 103
104 Page 104
105 Page 105
106 Page 106
107 Page 107
108 Page 108
109 Page 109
110 Page 110
111 Page 111
112 Page 112
113 Page 113
114 Page 114
115 Page 115
116 Page 116
117 Page 117
118 Page 118
119 Page 119
120 Page 120
121 Page 121
122 Page 122
123 Page 123
124 Page 124
125 Page 125
126 Page 126
127 Page 127
128 Page 128
129 Page 129
130 Page 130
131 Page 131
132 Page 132
133 Page 133
134 Page 134
135 Page 135
136 Page 136
137 Page 137
138 Page 138
139 Page 139
140 Page 140
141 Page 141
142 Page 142
143 Page 143
144 Page 144
145 Page 145
146 Page 146
147 Page 147
148 Page 148
149 Page 149
150 Page 150
151 Page 151
152 Page 152
153 Page 153
154 Page 154
155 Page 155
156 Page 156
157 Page 157
158 Page 158
159 Page 159
160 Page 160
161 Page 161
162 Page 162
163 Page 163
164 Page 164
165 Page 165
166 Page 166
167 Page 167
168 Page 168
169 Page 169
170 Page 170
171 Page 171
172 Page 172
173 Page 173
174 Page 174
175 Page 175
176 Page 176
177 Page 177
178 Page 178
179 Page 179
180 Page 180
181 Page 181
182 Page 182
183 Page 183
184 Page 184
185 Page 185
186 Page 186
187 Page 187
188 Page 188
189 Page 189
190 Page 190
191 Page 191
192 Page 192
193 Page 193
194 Page 194
195 Page 195
196 Page 196
197 Page 197
198 Page 198
199 Page 199
200 Page 200
201 Page 201
202 Page 202
203 Page 203
204 Page 204
205 Page 205
206 Page 206
207 Page 207
208 Page 208
209 Page 209
210 Page 210
211 Page 211
212 Page 212
213 Page 213
214 Page 214
215 Page 215
216 Page 216
217 Page 217
218 Page 218
219 Page 219
220 Page 220
221 Page 221
222 Page 222
223 Page 223
224 Page 224
Page: / 224

Table of Contents:

  • Page 3 – Nortel Networks Inc. software license agreement
  • Page 5 – Contents
  • Page 11 – Preface; Before you begin; This guide uses the following text conventions:
  • Page 12 – italic text; Status
  • Page 13 – or
  • Page 14 – Related publications
  • Page 15 – Hard-copy technical manuals; , find the product for; How to get help; Finding the latest updates on the Nortel Web site
  • Page 16 – Help from the Nortel Web site; download software, documentation, and product bulletins; Help over the phone from a Nortel Solutions Center
  • Page 17 – Getting help through a Nortel distributor or reseller
  • Page 19 – New in this release; The following sections detail what’s new in; Features; Branch office NAT Traversal
  • Page 21 – Supported software and hardware; “Supported software and hardware” on page 23; Two factor authentication; “Branch office connection problems” on page 104; Other changes; “Removed content” on page 21; Removed content
  • Page 22 – Nortel VPN Router Troubleshooting — Client; Restructured content; Nortel VPN Router Troubleshooting
  • Page 23 – VPN Router Release 8.0 supports the following hardware platforms:
  • Page 33 – PCAP; Two options exist when you capture packets:
  • Page 34 – Nortel VPN Router Administration; PCAP features; The VPN Router uses PCAP to perform the following tasks:
  • Page 35 – Security features; openpcap; File format
  • Page 36 – Capture types; Physical interface captures
  • Page 37 – IP address of the remote peer on the tunnel session; Global IP captures; “Filters and triggers” on page 38
  • Page 38 – Filters and triggers; Capture filters; If capture objects for physical interfaces or tunnels run at the
  • Page 39 – Memory considerations
  • Page 40 – You can display the same information by entering the command; Performance considerations; Hardware LEDs; “Status and logging” on page 81
  • Page 41 – The following table identifies the LEDs on a VPN Router 600.
  • Page 42 – The following table identifies the LEDs on a VPN Router 1600.
  • Page 51 – For more information, see the following sections:; Standard tools; Ping; The following list explains the command parameters:
  • Page 52 – Traceroute
  • Page 53 – Provide the necessary details in the; Trace Route; Click; mtrace; For more information, see Figure 1
  • Page 56 – ARP
  • Page 57 – ARP Delete; Configuring core dump retrieval on diskless routers
  • Page 58 – Nortel VPN Router Using the Command; Enabling packet capture on a VPN Router
  • Page 59 – Enter; The Welcome window appears.; The serial main menu appears.; Access the command line interface by typing the letter
  • Page 60 – Saving captured data; “Starting, stopping, and saving capture objects” on page 67
  • Page 61 – Capturing packets to disk file; Nortel VPN Router; Setting the PCAP file path; Setting the size of the RAM buffer
  • Page 62 – where size is the size of the RAM buffer.; Setting the size of a disk capture file; where max_size is the size of the capture file.; Setting the maximum number of disk capture files
  • Page 63 – Configure and run packet capture objects; Nortel VPN Router Using the; Creating a capture object; “Capture types” on page 36
  • Page 64 – Configuring a capture object
  • Page 65 – Edit one or more parameters as required.
  • Page 66 – Tunnel capture parameters; , navigates to Capture Configuration mode, and
  • Page 67 – Global IP parameters; rawip; Starting, stopping, and saving capture objects; Displaying capture status
  • Page 68 – In the following example, the; command is run with no object; command for a specific capture object.
  • Page 69 – Sample packet capture configurations; Interface capture object using a filter and direction; Capture Configuration
  • Page 70 – To stop the capture and save the buffer contents to a file called; Interface capture object using triggers; In the following example, you configure a capture object called
  • Page 72 – After Telnet traffic activates the stop trigger, the; command
  • Page 73 – Tunnel capture object using a remote IP address
  • Page 74 – View a packet capture output file on a PC; Installing Ethereal software; Download; Saving, downloading, and viewing PCAP files
  • Page 75 – “Enabling packet capture on a VPN Router” on page 58; Ethereal; Viewing a PCAP file with Sniffer Pro; “Viewing a PCAP file with Sniffer Pro” on page 75
  • Page 76 – “Installing Ethereal; Protocol Forcing
  • Page 77 – Deleting capture objects and disabling packet capture; “Enabling packet capture
  • Page 78 – TunnelGuard tools
  • Page 79 – Other tools; “Troubleshooting tools” on page 79; System configuration; File management; Use the Admin
  • Page 81 – This chapter includes the following topics:; Introduction; security log
  • Page 82 – Normal; Sessions
  • Page 83 – System
  • Page 84 – Accounting; Accounting records; The results of accounting record searches can be incorrect if
  • Page 85 – RADIUS accounting; Accounting. The VPN Router creates a file for each day and keeps the; Data collection task; The VPN Router does not sort accounting records and displays
  • Page 86 – “Field IDs for data collection records” on page 86
  • Page 87 – Logs; Event log
  • Page 89 – Refresh; System log; “Event log” on page 87; Security log
  • Page 90 – Configuration log
  • Page 92 – Accessing the diskette drive
  • Page 93 – Starting from a recovery diskette; Reset; Using recovery on a diskless system; REC
  • Page 94 – Restoring factory defaults or a backup configuration; either ide0
  • Page 95 – Reformatting the hard disk; Reformat
  • Page 97 – Navigating the file system from the recovery diskette
  • Page 98 – For some reason, the NVR configuration is lost.
  • Page 99 – “Introduction” on page 99; connectivity
  • Page 100 – Nortel VPN Router Troubleshooting —; Troubleshoot connectivity problems; Modem and dial-up problems; “I cannot browse the Web or check my e-mail over my dial-up connection.”; Extranet connection problems
  • Page 101 – Problems with name resolution using DNS services; Client connection problems
  • Page 102 – Serial PPP problems; I connected a modem, but I cannot form a PPP connection.
  • Page 103 – Settings) and restart the VPN Router. To use the Serial Menu,
  • Page 104 – SFTP connection problems; Branch office connection problems; Cause
  • Page 105 – Open a command prompt and ping the host with a fully qualified host; Network browsing problems; Cannot browse the network (with NetBEUI)
  • Page 106 – A Windows Internet Name Service (WINS) server is not configured for
  • Page 107 – Diagnosing WAN link problems; HDLC framing
  • Page 108 – Manager; Checking the HDLC framing; Manager WAN statistics; Check the PPP layer
  • Page 109 – while you view the WAN statistics window. If the state is; Hardware encryption accelerator connectivity; Troubleshoot performance problems; “Eliminating modem errors” on page 109; Eliminating modem errors
  • Page 110 – Performance tips for configuring Microsoft networking; DHCP Server assigns IP addresses to clients
  • Page 111 – What do I need to configure on the PPTP or IPsec client?; Dial; What is the preferred way to access neighbors on the network?; . If you experience delays using Network; Why are WINS settings different for extranet access?
  • Page 112 – What WINS settings does Nortel recommend?; Configuration
  • Page 113 – What can I try on the WINS server if it does not work?; Can I control which machine is the master browser?
  • Page 114 – Why are subnet masks important?
  • Page 115 – What must I do about subnets?
  • Page 116 – Why can I not browse another client in a different tunnel?; If you do not use a WINS server, this action is not possible because
  • Page 117 – “Additional information” on page 119
  • Page 118 – The Microsoft Windows 2000 or Windows XP and Windows NT; on Windows NT or; on Windows 2000 or Windows XP.
  • Page 119 – Additional information; Troubleshoot general problems; “Web browser problems and the Nortel VPN Client Manager” on page 120
  • Page 120 – “Reporting a problem with a Web browser” on page 124; Web browser problems and the Nortel VPN Client Manager; Display setting; Enabling Web browser options; Tools; and then select one of the following options:
  • Page 121 – Edit; , and then select one of the following options:; Long delays when Web browsing; HTTP—Sometimes when you use HTTP to connect to the Web interface,; Improving performance with Internet Explorer 4.0
  • Page 122 – manually clear the browser cache in Netscape V4.x, select; Web browser error messages; No data in post message; To see the window, use the left navigational area to select it.; Internal error message; VPN Router is very low on memory.; Document not found message
  • Page 123 – New administrator logon ignored
  • Page 124 – Reporting a problem with a Web browser; Excessive active sessions logged
  • Page 125 – Group and user profile settings not saved
  • Page 126 – Solving routing problems; The following sections describe routing problems.; Routing
  • Page 127 – The client machine receives ICMP redirect messages.; commands
  • Page 128 – Cannot enable IGMP Global; No multicast data traffic passes; No IGMP control traffic flows towards or from downstream
  • Page 129 – Solving firewall problems; An error occurred while parsing the policy
  • Page 130 – Unable to communicate with the VPN Router
  • Page 131 – System files were not loaded properly
  • Page 132 – Restart the browser and browse to the; Services; Reload the; Stateful Firewall Manager; Diagnosing LDAP problems; Admin; command. This command lists all the ports the
  • Page 136 – Certificate messages; Manually delete all files in the; Nortel manufactures the VPN Router with trusted CA certificates; tCert: Shutdown complete
  • Page 137 – tCert: X.509 certificates disabled in flash memory; ISAKMP messages; ISAKMP
  • Page 142 – This message indicates a mismatch in the Diffie-Hellman; IPsec messages; Authentication failure detected--npbuf 0x009d7c60; An authentication failure occurs on the hardware accelerator.
  • Page 143 – Inbound ESP from; Branch office messages; Couldn't install route for
  • Page 144 – Using RFC 3947 NAT traversal
  • Page 145 – IPSec NAT traversal disabled in system; User tunnel messages
  • Page 146 – SSL messages; Child cert
  • Page 147 – trusted on the VPN Router.; Database messages; Reinstall the VPN Router software.; Restore the VPN Router software from a File Transfer Protocol (FTP)
  • Page 148 – could not back up; Security messages; uid; not found in account
  • Page 152 – SchemaCls: Database schema not available; The external LDAP server does not support a schema entry so it is; being referenced by; Another LDAP entry references the specific LDAP entry, for; uid invalid—authentication failed; The IPsec hashed user ID (UID) is not found in the LDAP database.; invalid uid—authentication failed; The group UID is not found in the LDAP database, or the UID is; session rejected—system is initializing; The VPN Router rejected an incoming request because it is still
  • Page 153 – xxx—
  • Page 154 – IP address assignment failed; L2TP host; account has max links; account has max sessions
  • Page 156 – connect Qos level
  • Page 159 – RADIUS accounting messages; RADIUS: Cannot send accounting request to <; port number
  • Page 160 – error; Indicated packet length too large
  • Page 161 – > accounting record to; number; Received bad attribute type from server; The RADIUS attribute value is incorrect.; Response OK; This message indicates that the router receives a valid response.
  • Page 162 – > accounting record sent to; RADIUS authentication messages; to DNS translation failure
  • Page 163 – port; > server timed out authenticating; > server error while authenticating
  • Page 166 – RADIUS access challenge received; The Nortel VPN Client receives this message. The client receives a; RADIUS server rejected access
  • Page 167 – Routing messages; Unable to create; for OSPF
  • Page 168 – OSPF Enabled
  • Page 173 – mask
  • Page 174 – PPP messages
  • Page 175 – control packet was transmitted.; Hardware messages; This message indicates that the configuration file contains an; nnn
  • Page 176 – ERR ADSL Slot 3 Interface 1 on line (microcode loaded)
  • Page 177 – the number in this message. If the numbers do not match, contact GNTS.; Management messages; Ethernet [02] Unable to deactivate circuit mapping; the circuit mapping for the management interface.
  • Page 178 – DNS messages; This message indicates a DNS Proxy datagram was destined for a
  • Page 179 – Novell IPX MIB; The VPN Router supports the IPX MIB distributed by Novell, Inc.
  • Page 180 – The VPN Router supports RFC 1213,; RFC 1724—RIP Version 2 MIB Extension; The VPN Router supports RFC 1724,
  • Page 181 – RFC 1850—OSPF Version 2 Management Information Base; The VPN Router supports RFC 1850,; RFC 2571—Snmp-Framework MIB; The VPN Router supports RFC 2667,
  • Page 182 – The VPN Router supports RFC 2787,
  • Page 183 – RFC2790—Host Resources MIB
  • Page 184 – RFC 2863—Interface MIB (64 bit counters support)
  • Page 185 – The objects and their parameters(indices) are; VPN Router MIB provides trap acknowledgement.
  • Page 186 – cestraps.mib—Nortel proprietary MIB
  • Page 188 – newoak
  • Page 190 – Hardware-related traps
  • Page 196 – Software-related traps
  • Page 197 – Intrusion-related traps
  • Page 198 – Information passed with every trap
  • Page 199 – “Trap categories” on page 199
  • Page 221 – Index
Loading the manual

Version 8.00

Part No. NN46110-602 02.01
315900-F Rev 01
13 October 2008
Document status: Standard

600 Technology Park Drive
Billerica, MA 01821-4130

Nortel VPN Router
Troubleshooting — Server

"Loading the manual" means you need to wait until the file loads and becomes available for online reading. Some manuals are very large, and the time they take to appear depends on your internet speed.

Summary

Page 3 - Nortel Networks Inc. software license agreement

3 Nortel VPN Router Troubleshooting — Server Portions of the code in this software product may be Copyright © 1988, Regents of the University of California. All rights reserved. Redistribution and use in source and binary forms of such portions are permitted, provided that the above copyright notice...

Page 5 - Contents

5 Nortel VPN Router Troubleshooting — Server Contents Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Before you begin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 T...

Page 11 - Preface; Before you begin; This guide uses the following text conventions:

11 Nortel VPN Router Troubleshooting — Server Preface This guide provides information about how to manage and troubleshoot the Nortel VPN Router. Before you begin This guide is for network managers who monitor and maintain the Nortel VPN Router. This guide assumes that you have experience with syste...

Other Nortel Models

All Nortel Other