Arris NVG599 Administrator'S Handbook Download Page 45 | Manualshive

Page: 45 / 228

Arris NVG599 Administrator'S Handbook Download Page 45

45

Wireless Security

By default, wireless security is set to

WPA-PSK

with a pre-defined

WPA-Default Key

.

Other options are available from the

Security

drop-down menu:

WEP - Manual:

WEP security is a privacy option that is based on encryption between the router and any PCs

(clients) you have with wireless cards. For WEP-Manual encryption to work, both your wireless access point
and each client must share the same wireless ID (SSID), and both must be using the same encryption keys.
See

“WEP-Manual” on page 45

.

WPA-PSK:

Allows you to enter your own key, the most secure option for your wireless network. The key

can be between 8 and 63 characters, but for best security it should be at least 20 characters. If you select

WPA-PSK

as your privacy setting, the

WPA Version

drop-down menu allows you to select the WPA ver-

sion(s) that will be required for client connections. Choices are:

• Both

, for maximum interoperability

• WPA-1

, for backward compatibility

• WPA-2

, for maximum security

All clients must support the version(s) selected in order to successfully connect.

Be sure that your Wi-Fi cli-

ent adapter supports this option. Not all Wi-Fi clients support WPA-PSK.

OFF - No Privacy:

Disables privacy on your network, allowing any wireless users to connect to your wireless

LAN. Select this option if you are using alternative security measures such as VPN tunnels, or if your network
is for public use.

Click the

Save

button.

WEP-Manual

You can provide a level of data security by enabling WEP (Wired Equivalent Privacy) for encryption of network
data. You can enable 40- or 128-bit WEP Encryption (depending on the capability of your client wireless card)
for IP traffic on your LAN.

WEP - Manual

allows you to enter your own encryption keys manually. This is a difficult process, but only

needs to be done once. Avoid the temptation to enter all the same characters.

Key Length

: The drop-down menu selects the length of each encryption key. The longer the key, the stronger

the encryption and the more difficult it is to break the encryption.

NOTE:

WEP is a less current and less secure authentication method than WPA-PSK. It may be required if your wire-
less clients do not support WPA.

NOTE:

WEP is a less current and less secure authentication method than WPA-PSK. It may be required if your wire-
less clients do not support WPA.

«
...
43
44
45
46
47
...
»

Summary of Contents for NVG599

Page 1: ...ARRIS NVG599 VDSL2 Gateway ARRIS Embedded Software Version 9 1 0 Administrator s Handbook ...

Page 2: ...WARRANT THAT THE SYSTEM WILL MEET CUSTOMER S REQUIREMENTS OR THAT THEIR OPERATION WILL BE UNINTERRUPTED OR ERROR FREE OR THAT ANY ERRORS CAN OR WILL BE FIXED ARRIS HEREBY DISCLAIMS ALL OTHER WARRANTIES EXPRESS OR IMPLIED ORAL OR WRITTEN WITH RESPECT TO THE SYSTEM AND SERVICES INCLUDING WITHOUT LIMITATION ALL IMPLIED WARRANTIES OF TITLE NON INFRINGEMENT INTEGRATION MERCHANTABILITY OR FITNESS FOR AN...

Page 3: ...LLATION 12 PRODUCT VENTILATION 12 Status Indicator Lights 13 Battery Installation optional 16 Battery Door Instructions 17 Set up the ARRIS Gateway 18 Microsoft Windows 18 Macintosh MacOS 8 or higher or Mac OS X 20 Accessing the Web Management Interface 21 Broadband Network Redirect Pages 22 IP Diagnostics Page Redirect 23 Offline Troubleshooting 23 Device Status Page 24 Device Access Code 24 Tab ...

Page 4: ... Firewall Advanced 76 Diagnostics 78 Logs 81 Update 83 Resets 84 Syslog 85 Event Notifications 86 NAT Table 86 CHAPTER 3 Basic Troubleshooting 87 Status Indicator Lights 88 LED Function Summary Matrix 91 Factory Reset Switch 95 Log Event Messages 96 CHAPTER 4 Command Line Interface 101 Overview 103 Starting and Ending a CLI Session 105 Logging In 105 Ending a CLI Session 105 Using the CLI Help Fac...

Page 5: ...y ALG Commands 142 Dynamic DNS Commands 143 Link Commands 143 Management Commands 146 Remote Access Commands 148 Physical Interfaces Commands 150 PPPoE Relay Commands 157 NAT Pinhole Commands 157 Security Stateful Packet Inspection SPI Commands 158 VoIP Commands 160 Targeted Ad Insertion Commands 171 System Commands 173 Debug Commands 178 Disclaimer and Warning Text 178 Commands 178 TR 069 CLI CSh...

Page 6: ...ecykling 187 Cuidando do meio ambiente através da reciclagem 187 Var rädd om miljön genom återvinning 187 Copyright Acknowledgments 189 Open Source Software Information 189 Appendix A ARRIS Gateway Captive Portal Implementation 213 Overview 214 Captive Portal RPC 215 X_00D09E_GetCaptivePortalParams RPC 215 X_00D09E_SetCaptivePortalParams RPC 216 Appendix B Quality of Service QoS Examples 217 Overv...

Page 7: ...Bridge mode is available for download Related Documentation ARRIS provides a suite of technical documents for its family of intelligent enterprise and consumer gateways This documentation consists of Administrator s Handbook this document Dedicated user manuals Specific white papers covering related technology The documents are available in electronic form as Portable Document Format PDF files The...

Page 8: ...sans serif Menu commands and button names underlined sans serif Web GUI page links terminal Computer display text bold terminal User entered text Italic The complete titles of manuals Convention Graphics Description An excerpt from a Web page or the visual truncation of a Web page An area of emphasis on a Web page Convention Description Optional command arguments are shown with straight brackets A...

Page 9: ...e and individual command examples for each mode are provided Chapter 5 Technical Specifications and Safety Information Presents system and device specifications and important compliance and safety statements Appendix A ARRIS Gateway Captive Portal Implementation Describes the ARRIS Gateway Captive Por tal Implementation Appendix B Quality of Service QoS Examples Describes the ARRIS Gateway Quality...

Page 10: ...Administrator s Handbook 10 ...

Page 11: ...lowing instructions cover installation in Router mode This chapter covers Important Safety Instructions on page 12 Status Indicator Lights on page 13 Battery Installation optional on page 16 Battery Door Instructions on page 17 Set up the ARRIS Gateway on page 18 Accessing the Web Management Interface on page 21 Device Status Page on page 24 Tab Bar on page 27 Broadband Tab on page 34 Home Network...

Page 12: ...ng and in particular specifies that the CATV cable ground be connected to the grounding system of the building as close to the point of cable entry as practical PRODUCT VENTILATION The NVG599 is intended for use in a consumer s home Ambient temperatures should not exceed 104 F 40 C The NVG599 should not be used in locations exposed to outside heat radiation or where it is subject to trapping of it...

Page 13: ...grade which takes a few minutes the Power LED will flashes amber flash writing to memory and all other LEDs are off 3 The NVG599 restarts automatically As the device reboots the LEDs display power on behavior All during Boot process Power LED Flashing Green All other LEDs Off If the device does not boot and fails its self test or fails to perform initial load of the bootloader Power LED Flashing R...

Page 14: ...with a five second steady Red while attempting or waiting to establish a broadband connection This pattern continues until the broad band connection is successfully established Flashing Red No DSL signal on the line This display is not used during times of temporary no tone during the training sequence Off The device is not powered Broadband 1 LED is also the Gigabit Ethernet WAN LED when that is ...

Page 15: ...r no powered devices are connected to the associated ports LED Activity Ethernet 1 2 3 4 Flashing Amber A Gigabit Ethernet device is connected to each port Solid Green A 10 100 Ethernet device is connected Flickering Green Ethernet traffic activity Off The device is not powered or no powered devices are connected to the associated ports NOTE The NVG599 supports two VoIP lines over one RJ14 FXS VoI...

Page 16: ...e battery contacts seat securely in the unit 3 Close the compartment door See Battery Door Instructions on page 17 CAUTION The battery used in this device may present a risk of fire or chemical burn if mistreated Do not disassemble heat above manufacturer s maximum temperature limit or incinerate Replace battery with ARRIS P N 586185 002 00 only Use of another battery may present a risk of fire or...

Page 17: ...h the battery door side up 2 Push in and upward to open the battery door as shown in Figure 1 3 Swing back the battery door See Figure 2 4 Insert the battery in the compartment as shown in Figure 3 5 Swing the door back down and snap closed Figure 1 Figure 2 Figure 3 ...

Page 18: ...ure it at all Windows 7 follows a path like this Start menu Control Panel Network and Sharing Center Change adapter settings Local Area Connection Change settings of this connection Local Area Connection Properties Internet Protocol TCP IP Properties Windows XP follows a path like this Start menu Settings Control Panel Network Connections Local Area Connection Internet Protocol TCP IP Properties 2...

Page 19: ...19 3 Set the radio buttons to the values shown above and click the OK button Windows Vista ...

Page 20: ...rol panel Mac OS X follows a path like this Apple Menu System Preferences Network MacOS Classic follows a path like this Apple Menu Control Panels TCP IP Control Panel 2 Select Ethernet 3 Select Configure Using DHCP 4 Close and save if prompted Proceed to Accessing the Web Management Interface on page 21 ...

Page 21: ...ation such as Firefox or Microsoft Internet Explorer from the computer con nected to the NVG599 device 2 Enter http 192 168 1 254 in the Location text box While the NVG599 is determining the broadband network type the following screen appears The Device Status page appears ...

Page 22: ...e Web sites by typing a URL in your browser s location box or by selecting one of your favorite Internet bookmarks Broadband Network Redirect Pages After a few minutes if the broadband network cannot be determined the following screen appears Contact AT T Customer Care at the number shown on your screen for assistance If you click the Continue button the following screen appears Here you can manua...

Page 23: ...estions For additional troubleshooting information see Diagnostics on page 78 and Basic Troubleshooting on page 87 When your connection is restored or the problem is resolved the Broadband LED turns GREEN Offline Troubleshooting If the WAN is down the following information is displayed at the top of the page NOTE For AT T this function is enabled by default See the CLI command set management lan r...

Page 24: ...cess the Home page type http 192 168 1 254 in your Web browser s location box Device Access Code On the Device Status page you may be required to provide your device access code to access the Web management configuration pages The device access code is unique to your device It is printed on a label on the side of the NVG599 Enter your device access code and click the Continue button ...

Page 25: ...25 The Device Status page appears DeviceStatusWindow ...

Page 26: ...n The default SSID for the NVG599 is attxxx where xxx is the last 3 digits of the serial number located on the side of the NVG599 Authentication Type The type of wireless encryption security in use May be Disabled WPA WEP Default Key or Manual Network Key Wireless network encryption key in use Coax to STB Status Off or On Voice Line 1 Indication of VoIP or other phone connection Line 2 Indication ...

Page 27: ...example the Help section at right is displayed on the System Information page Links Bar The links bar appears at the top of each page allowing you to configure aspects of the features displayed on the page For example the links bar on the Home Summary page is as shown below The links bar on the Device Status page includes the following links For more information about each link see the related sec...

Page 28: ...your local area network IPv4 address network name MAC address and other status information Home Network Devices MAC Address Client device s unique hardware address IPv4 Address Name Client device s IP address or device network name Last Activity Date and time of last traffic for this client device Status May be off or on Allocation Type of IP address assignment for example static or DHCP Connectio...

Page 29: ...ce the last Home Network Devices summary update Link System Information When you click the System Information link the System Information page appears The page displays the following information System Information Manufacturer Manufacturer s identifier name Model Number Manufacturer s model number Serial Number Unique serial number of your device Software Version Version number of the current embe...

Page 30: ...cters Example fru1tfl13s_likeabanana Enter your old access code your new access code and click the Use New Access Code button The new access code takes effect immediately You can always return to the original default password by clicking the Use Default Access Code button First Use Date Date and time the NVG599 device is first used This field changes to the current date and time after a reset to f...

Page 31: ...lue field 3 Click the radio button that describes the type of remote access to allow Read only access to allow the remote access session to view but not change the configuration and col lected statistics of the gateway Update access to allow the session to make changes to the gateway s configuration 4 Click the Enable Remote Access button The NVG599 updates the Remote Access page and displays the ...

Page 32: ...an off hook voice notification to the subscriber if the NVG599 battery is low and needs recharging or faulty and needs replacing After playing the recorded voice notification the NVG599 provides a dial tone The alarm is triggered when the NVG599 determines that the installed battery is Below 35 charge and in need of recharging or Unable to charge past 80 of capacity and in need of replacing To cha...

Page 33: ...e NVG599 is restarted it will disconnect all users initialize all its interfaces and load the operating system software In some cases when you make configuration changes you may be required to restart for the changes to take effect ...

Page 34: ...lable on the Broadband tab provide access to pages that allow you to view information about the broadband connection and configure connection details Link Broadband Status When you click the Broadband tab the Broadband Status page is the first to appear ...

Page 35: ...unit before packets are broken into multiple packets DSL Status for each line Line State May be Up connected or Down disconnected Downstream Sync Rate The rate at which your connection can download receive data on your DSL line in kilobits per second Upstream Sync Rate The rate at which your connection can upload send data on your DSL line in kilobits per second Modulation Method of regulating the...

Page 36: ...Unicast statistics Receive Multicast Receive Multicast statistics Transmit Multicast Transmit Multicast statistics Receive Drops Received packets dropped Transmit Drops Sent packets dropped Receive Errors Count of received errored packets that were fixed successfully without a retry Transmit Errors Number of times data packets have had to be resent due to errors in transmission Collisions Count of...

Page 37: ... from DSL to Ethernet or from Ethernet to DSL the device will prcoceed to reconnect as in its ini tial connection to the Internet as described earlier See Accessing the Web Management Interface on page 21 The WAN connection is automatically configured However you can adjust the Maximum allowable MTU maximum transmittable unit value if your service provider suggests it The default 1500 is the maxim...

Page 38: ... Handbook 38 Link IGMP Stats When you click the IGMP Stats link the IGMP Stats screen appears The IGMP statistics screen reports IGMP proxy groups and multicast forwarding information It also displays a packet counter ...

Page 39: ...estion feature provides simple data to the user to show the level of network congestion in each wireless channel This data can be used to determine router placement or to determine which channels to avoid The display tells the user how many access points APs are active within each channel and provides a score of 1 10 to indicate how clear the channel is A higher score indicates less congestion in ...

Page 40: ...istics Transmit Packets IPv6 packets transmitted Transmit Errors Errors on IPv6 packets transmitted Transmit Discards IPv6 packets dropped WiFi Status WiFi Radio Status Status of the Wi Fi radio Enabled or Disabled Mode May be 802 11B only 802 11G only 802 11N only 802 11 B G or 802 11 B G N For the 5 0 Ghz radio may be 802 11AC as well Bandwidth The capacity of the wireless LAN to carry traffic i...

Page 41: ...ransmitted on the Wi Fi network Receive Error Packets The number of errors on packets received on the Wi Fi network Transmit Discard Packets The number of packets transmitted on the Wi Fi network that were dropped Receive Discard Packets The number of packets received on the Wi Fi network that were dropped LAN Ethernet Statistics State May be Up or Down Transmit Speed The maximum speed of which th...

Page 42: ...full or half duplex 100M full or half duplex or 1G full or half duplex MDI X Auto the default self sensing crossover setting Off or On Click the Save button Link HPNA Configure When you click the HPNA Configure link the HPNA Configure page for the HomePNA network appears Here you can set HomePNA Networking On or Off If desired you can also set the Output Jack as either the Coax jack or the Phone j...

Page 43: ...as well Bandwidth The capacity of the wireless LAN to carry traffic in megahertz 20 or 40 Channel The radio channel on which your Wi Fi network is broadcasting Power Level May be adjusted up to 100 lower if multiple wireless access points are in use and might interfere with each other User SSID Enable May be either On or Off for either frequency Guest SSID Enable May be either On or Off for the 2 ...

Page 44: ...leave it as is or change it by entering a freeform name of up to 32 characters for example Brian s Wireless LAN In client PC software this might also be called the wireless ID The Network Name is used to identify this particular wireless LAN Depending on their operating system or client wireless card users must either Select from a list of available wireless LANs that appear in a scanned list on t...

Page 45: ... Be sure that your Wi Fi cli ent adapter supports this option Not all Wi Fi clients support WPA PSK OFF No Privacy Disables privacy on your network allowing any wireless users to connect to your wireless LAN Select this option if you are using alternative security measures such as VPN tunnels or if your network is for public use Click the Save button WEP Manual You can provide a level of data secu...

Page 46: ...nk MAC Filtering When you click the MAC Filtering link the MAC Filtering page appears MAC filtering allows you to specify which client PCs are allowed to join the wireless LAN by unique hardware MAC address To enable this feature select Blacklist or Whitelist from the MAC Filtering Type menu Blacklist means that only MAC addresses you specify will be denied access Whitelist means that only MAC add...

Page 47: ...ulated radio frequencies that vary from region to region Channel selection can have a significant impact on performance depending on other wireless activity close to this device You need not select a channel at any of the computers on your wireless network They will automatically scan available channels seeking a wireless device broadcasting on the SSID for which they are configured This scan will...

Page 48: ... mask of your LAN DHCP DHCPv4 Start Address First IP address in the range being served to your LAN by the NVG599 DHCP server DHCPv4 End Address Last IP address in the range being served to your LAN by the NVG599 DHCP server DHCP Lease Specifies the default length for DHCP leases issued by the router Enter lease time in dd hh mm ss days hours minutes seconds format Public Subnet Public Subnet Enabl...

Page 49: ... prompted restart the NVG599 device Link IP Allocation When you click the IP Allocation link the IP Allocation page appears The IP Allocation page lets you set aside or assign IP addresses to client devices on your network With IP allocation you can configure known devices to either use DHCP for dynamic IP address assignment or set aside a specific IP address for a client device When IP allocation...

Page 50: ...ent Click Address from DHCP Pool to set the client to accept any valid DHCP address available standard operation Click any of the private fixed IP addresses 192 168 1 64 to 192 168 1 253 shown in the list to allocate that IP address to the selected client 4 Click the Save button to save the IP allocation settings A red Changes saved message appears at the top of the IP Allocation page ...

Page 51: ...y clicking the Run extended Test button The following page appears as a warning about this invasive test If you do not run the extended test the station to station performance section is not displayed You can generate updated statistics by clicking the Refresh button HomePNA statistics for the current and previous intervals are displayed below the following static values Station ID HPNA MAC Addres...

Page 52: ...smitted Frames Rx Number of frames received Bytes Tx Bytes transmitted Bytes Rx Bytes received Unicast Tx Number of unicast packets transmitted Unicast Rx Number of unicast packets received Multicast Tx Number of multicast packets transmitted Multicast Rx Number of multicast packets received Local Control Req Number of requests made to the device by local control Local Control Repl Number of repli...

Page 53: ...The Voice page displays information about your VoIP phone lines if configured Your device supports two phones Line 1 and Line 2 If either one or both are registered with a SIP server by your service provider or not registered the Voice page will display their Registration Details The links at the top of the Voice page provide access to a series of pages that allow you to configure and monitor feat...

Page 54: ...icking the Register Line 1 or Register Line 2 button To test if the lines are enabled click the Ring Line 1 or Ring Line 2 button If enabled and registered the respective phone will ring for 30 seconds To clear the current state of each phone line click the Reset Line 1 or Reset Line 2 button This will disconnect any calls currently in progress as well To update the display click the Refresh butto...

Page 55: ...55 Link Call Statistics When you click Call Statistics the Call Statistics page appears ...

Page 56: ...ckets expected This number will be calculated on every RTCP SR packet Sum of the fraction lost is calculated with all the RTCP packets Sum of Franc Loss Squared Fraction lost is squared with every RTCP SR or RR packet Sum of all values will give the Sum of Franc Loss Squared Max One Way Delay One way delay will be calculated in milliseconds on every RTCP SR or RR packet This value is systime lsr d...

Page 57: ...udio codec used for decoding the call packet traffic Far End Host Information SIP server IP information IP address and port number Far End Caller Information Caller ID information if available Cumulative Since Last Reset Last Reset Timestamp Date and time of the last call Number of Calls Total number of calls for each VoIP line Duration Time in seconds since the last call Number of Incoming Calls ...

Page 58: ...k Up Idle Off N A Off Enabled On hook Up Registered On N A Solid Enabled Off hook Up Registered On Dial tone Blink Enabled On Off hook Up Failure Off N A Off Enabled On Off hook Down Idle Off N A Off VoIP Line 1 2 WAN Status Hook State Reg state FXS Voltage Tone LED Disabled Down Off hook Idle On to off Off Off Enabled Down On Off hook Idle On Congestion Off Enabled Up Off hook Registered On Conge...

Page 59: ...allowed through the firewall Stateful inspection is a security feature that prevents unsolicited inbound access when network address translation NAT is disabled You can configure UDP and TCP no activity periods that will also apply to NAT timeouts if stateful inspection is enabled on the interface Stateful Inspection parameters are active on a WAN interface only if enabled on your system Stateful ...

Page 60: ...ld read the next few sections to learn more about how these powerful security tools work WARNING Before attempting to configure filters and filtersets please read and understand this entire section thor oughly The ARRIS NVG599 device incorporating NAT has advanced security features built in Improperly add ing filters and filtersets increases the possibility of loss of communication with the device...

Page 61: ...twork less secure Be sure each individual filter s purpose is clear Determine how filter priority will affect the set s actions Test the set on paper by determining how the fil ters would respond to a number of different hypothetical packets Consider the combined effect of the filters If every filter in a set fails to match on a particular packet the packet is Forwarded if all the filters are conf...

Page 62: ...source IP address or destination IP address this filter will match on As you create new matches the list items change There can only be one match from each match type for a given rule Match types like Source Port Destination Port and TCP Flags are only available if other matches for example Protocol TCP have previously been created 5 Select a protocol if necessary from the pull down menu ICMP TCP ...

Page 63: ...herefore if the behavior you want is to force the routing of a certain type of packet and pass all others through the normal routing mechanism you must configure one filter to match the first type of packet and apply Force Routing A subsequent filter is required to match and forward all other packets Management IP traffic If the Force Routing filter is applied to source IP addresses it may inadver...

Page 64: ...9 from access to that same server perhaps they were abusing the system in some way We would need the following rules Input Rules Rule Order Action Source IP Destination IP Protocol Source Port Destination Port 1 Drop 207 53 17 9 TCP 8080 2 Pass 207 53 17 0 24 TCP 8080 3 Drop TCP 8080 Caution If the packet filter or port forwarding rule involves TCP port 80 or 3389 or UDP port 47806 43962 69 123 or...

Page 65: ...et IP address information and select Save at the bottom of the view 4 Select Firewall Packet Filter to create a packet filter that will allow specific traffic to flow to a public LAN client 5 Scroll to the bottom of the screen and select Add a Pass Rule This rule will allow traffic to flow through the public subnet based on the match criteria that will be set up next The new rule will be at the bo...

Page 66: ... GUI to the Packet Rules list 9 Select Add Match below the rule created earlier 10 Select Destination Port from the Match Type drop down menu and enter 21 this value corresponds to FTP in the Match Value entry box 11 Click Enter Match 12 Select Add Match below the same rule created earlier 13 Select Destination IP Address from the Match Type drop down menu and enter the IP address entered in Step ...

Page 67: ... translation is enabled You can host different games and software on different PCs From the Service drop down menu you can select any of a large number of predefined games and software See List of Supported Games and Software on page 71 In addition to choosing from these predefined services you can also select a user defined custom service See Custom Services on page 69 ...

Page 68: ...on For example 1 Select a hosting device from the Needed by Device drop down menu 2 Once you choose a software service or game click Add 3 Select a PC to host the software from the Select Host Device drop down menu and click Save Each time you enable a software service or game your entry will be added to the list of Service names dis played on the NAT Configuration page ...

Page 69: ...nique identifier for the custom service Global Port Range Range of ports on which incoming traffic will be received Base Host Port The port number at the start of the port range your NVG599 device should use when for warding traffic of the specified type s to the internal IP address Protocol Protocol type of Internet traffic TCP or UDP Once you define a custom service it becomes available in the A...

Page 70: ... the list of service names displayed on the Custom Services page Changes are saved immediately To remove this Service click the Delete button To edit this Service click the Edit button NOTE You cannot edit a custom service if that service is active it must be inactive before it can be edited ...

Page 71: ...S Server Dark Reign Delta Force Client and Server Delta Force 2 Delta Force Black Hawk Down Diablo II Server Dialpad DirecTV STB 1 DirecTV STB 2 DirecTV STB 3 Doom 3 Dues Ex Dune 2000 Empire Earth Empire Earth 2 F 16 Mig 29 F 22 Lightning 3 FTP Far Cry Fighter Ace II GNUtella Grand Theft Auto 2 Multiplayer H 323 compliant Netmeeting CUSeeME HTTP HTTPS Half Life Half Life 2 Steam Half Life 2 Steam ...

Page 72: ... SSH server ShoutCast Server SlingBox Soldier of Fortune StarCraft StarLancer v 1 0 Starfleet Command TFTP TeamSpeak Telnet Tiberian Sun Command and Con quer Timbuktu Total Annihilation Ultima Online Unreal Tournament Server Urban Assault v 1 0 VNC Virtual Network Computing Warlords Battlecry Warrock Westwood Online Command and Conquer Win2000 Terminal Server Wolfenstein Enemy Territory World of W...

Page 73: ...ARRIS Gateway s public address assigned to it It also provides PAT port address translation or NAPT network address and port translation via the same public IP address for all other hosts on the private LAN subnet Using IP Passthrough the public WAN IP is used to provide IP address translation for private LAN computers The public WAN IP is assigned and reused on a LAN computer ...

Page 74: ...f your ARRIS device This mode works the same as the DHCP modes Unsolicited WAN traffic will get passed to this client The client is still able to access the ARRIS NVG599 device and other LAN clients on the 192 168 1 x network etc The Passthrough DHCP Lease By default the passthrough host s DHCP leases will be shortened to two min utes This allows for timely updates of the host s IP address which w...

Page 75: ... bound application might use For example some network games select arbitrary port numbers when a connection is opened When you want all unsolicited traffic to go to a specific LAN host This feature allows you to direct unsolicited or non specific traffic to a designated LAN station With NAT on in the device these packets normally would be discarded For instance this feature could be used for appli...

Page 76: ...ul inspection is enabled on the interface Stateful Inspection parameters are active on a WAN interface only if enabled on your NVG599 device Stateful inspection can be enabled on a WAN interface whether NAT is enabled or not DoS Protection Denial of service DoS attacks are common on the Internet and can render an individual PC or a whole network practically unusable by consuming all its resources ...

Page 77: ...ffic On by default Flood limit TCP enable Allows exclusion of TCP traffic Off by default Flood limit TCP SYN cookie Allows TCP SYN cookies flooding to be excluded Neighbor Discovery Attack protection Prevents downstream traffic from an upstream device that sends excessive traffic but receives no replies On or Off ESP Header Forwarding Allows the use of Encapsulating Security Payload ESP data paylo...

Page 78: ...ions to the data traffic being sent by users through the router You can run all the tests in order by clicking the Run Full Diagnostics button The device will automatically test a number of components to determine any problems You can see detailed results of the tests by clicking the Details buttons for each item The details presented depend on the configuration of your router and your network typ...

Page 79: ...P echo request and waiting for a reply Traceroute displays the path to a destination by showing the number of hops and the router addresses of these hops NSLookup converts a domain name to its IP address and vice versa Detect Missing Filter if you click the Detect Missing Filter button a warning message appears at the top since the detection takes up to 2 minutes When completed the Progress area m...

Page 80: ...Action If Ping Fails Possible Causes Are From the Check Connection Page Ping the Internet default gateway IP address DSL is down DSL settings are incorrect gateway s IP address or subnet mask are wrong gateway router is down Ping an Internet site by IP address Site is down Ping an Internet site by name Servers are down site is down From a LAN PC Ping the modem s LAN IP address IP address and subne...

Page 81: ...g button You can save logs to a text TXT file by clicking the Save to File button This will download the file to your browser s default download location on your hard drive The file can be opened with your favorite text edi tor NOTE Some browsers such as Internet Explorer for Windows XP require that you specify the ARRIS device s URL as a Trusted site in Internet Options Security This is necessary...

Page 82: ...Administrator s Handbook 82 The following is an example log portion saved as a TXT file ...

Page 83: ...d select the file 2 Click the Update button The LEDs will operate normally as described in Status Indicator Lights on page 88 3 The installation may take a few minutes and the Web page will indicate a 3 part countdown before returning you to the Home page wait for it to complete During the software installation you will lose Internet and phone service The LEDs will function as follows The Power LE...

Page 84: ...o refresh your Internet WAN IP address LAN side users will be briefly disconnected from the Internet but will otherwise be unaffected Click the Reset Connection button to disconnect and reconnect all of your connections including your VoIP phones Click the Reset Device button to reset the Gateway back to its original factory default settings Click the Restart button to reboot the device Previous c...

Page 85: ...red either in dotted decimal format or as a DNS name of up to 63 characters You can specify the UNIX Syslog facility to use by selecting from the Facility drop down menu From the Log Level drop down menu you can select a level from a list organized in decreasing severity level Emergency Alert Critical Error Warning Notice Info or Debug By toggling each event descriptor to either On or Off you can ...

Page 86: ...you select the Missing Filter Notification checkbox the device will alert users on your network if hardware line filters are either missing or improperly installed In that event troubleshooting suggestions will display Link NAT Table When you click the NAT Table link the NAT Table page appears The NAT Table page displays the network address translation sessions in use by the NVG599 device You can ...

Page 87: ...Gateway s initial configuration This chapter covers the following topics Status Indicator Lights on page 88 Factory Reset Switch on page 95 Event Log Messages on page 96 Before troubleshooting make sure you have Read this guide Plugged in all the necessary cables Set your PC s TCP IP controls to obtain an IP address automatically ...

Page 88: ... normally 2 During the firmware upgrade which takes a few minutes the Power LED will flashes amber flash writing to memory and all other LEDs are off 3 The NVG599 restarts automatically As the device reboots the LEDs display power on behavior All during Boot process Power LED Flashing Green All other LEDs Off If the device does not boot and fails its self test or fails to perform initial load of t...

Page 89: ...second steady Red while attempting or waiting to establish a broadband connection This pattern continues until the broad band connection is successfully established Flashing Red No DSL signal on the line This display is not used during times of temporary no tone during the training sequence Off The device is not powered Broadband 1 LED is also the Gigabit Ethernet WAN LED when that is in play and ...

Page 90: ...ed or no cable or no powered devices are connected to the associated ports LED Action Ethernet 1 2 3 4 Flashing Amber A Gigabit Ethernet device is connected to each port Solid Green A 10 100 Ethernet device is connected Flickering Green Ethernet traffic activity Off The device is not powered or no powered devices are connected to the associated ports NOTE The NVG599 supports two VoIP lines over on...

Page 91: ...ed port includes devices with wake on LAN capability where a slight voltage is sup plied to the Ethernet connec tion Flashing Green Activity seen from devices associated with the port The flickering of the light is synchro nized to actual data traffic Off The device is not powered no cable or no powered devices connected to the associated ports WiFi Solid Green Wi Fi is powered Flashing Green Acti...

Page 92: ... during times of temporary no tone during the training sequence Off The device is not powered Service Solid Green IP connected The device has a WAN IP address from DHCP or 802 1x authenti cation and the broadband con nection is up Flashing Green Attempting PPP connection þ Attempting IEEE 802 1X authenti cation or attempting to obtain DHCP information Red Device attempted to become IP con nected a...

Page 93: ... to the associated ports WPS Solid Green Wi Fi Protected Setup has been completed suc cessfully It should stay on for 5 minutes or until push but ton is pressed again Flashing Green Indicates when WPS is broad casting Solid Red Error unrelated to security such as failed to find any partner or proto col prematurely aborted It should stay Solid Red for 5 min or until push but ton is pressed again Fl...

Page 94: ... at the central office DSLAM Make sure the DSL modem is not plugged into a micro filter Ethernet Make sure the you are using the yellow Ethernet cable not the DSL cable The Ethernet cable is thicker than the standard telephone cable Make sure the Ethernet cable is securely plugged into the Ethernet jack on the PC Make sure the Ethernet cable is securely plugged into the Ethernet port on the DSL mo...

Page 95: ... switch being pressed The lights will blink whether the switch is still being pressed or has been released The indicator lights will flash for a minimum of five seconds even if the reset switch is released within five seconds of being pressed If the reset switch is held for more than five seconds it will continue to blink until released or until ten sec onds have elapsed see below If you press the...

Page 96: ... user tries to access the router s management interface and authentication fails because of an incorrect username 5 administrative access denied invalid password This log message is generated whenever the user tries to access the router s management interface and authentication fails because of an incorrect password 6 administrative access denied telnet access not allowed This log message is gener...

Page 97: ...message is generated whenever a packet traversing the router or destined to the router itself is dropped because the IP length is greater than the received packet length or if the length is too small for an IP packet 6 dropped fragmented packet This log message is generated whenever a packet traversing the router is dropped because it is fragmented stateful inspection is turned ON on the packet s ...

Page 98: ...NM_LOGDROP_CAT_ETH_DST_ADDR ETH DST Ethernet destination MAC address NM_LOGDROP_CAT_ETH_PROT ETH PROTOCOL Ethernet Protocol NM_LOGDROP_CAT_ETH_VLAN ETH VLAN Ethernet VLAN ID where applica ble NM_LOGDROP_CAT_IP IP IP header generic NM_LOGDROP_CAT_IP_SRC IP SRC IP source address NM_LOGDROP_CAT_IP_DST IP DST IP destination address NM_LOGDROP_CAT_IP_PROT IP PROTOCOL IP Protocol NM_LOGDROP_CAT_IP_SPOOF...

Page 99: ...S QUERY DNS query packets received on a WAN interface NM_LOGDROP_CAT_POLICY_WAN_DHCP_TO SRVR POLICY WAN SIDE DHCP TO SRVR DHCP Discover request received on a WAN interface NM_LOGDROP_CAT_POLICY_AH POLICY IPV6 AH IPv6 packets with AH header if so configured NM_LOGDROP_CAT_POLICY_ESP POLICY IPV6 ESP IPv6 packets with ESP header if so configured NM_LOGDROP_CAT_POLICY_DEP_HEADER POLICY DEPRECATED HEAD...

Page 100: ...Administrator s Handbook 100 ...

Page 101: ...nd line interface to enter and update the unit s configuration settings monitor its performance and restart it This chapter covers the following topics Overview on page 103 Starting and Ending a CLI Session on page 105 Using the CLI Help Facility on page 106 About SHELL Commands on page 106 SHELL Commands on page 107 About CONFIG Commands on page 118 CONFIG Commands on page 121 Debug Commands on p...

Page 102: ...ds on page 139 NTP Commands on page 142 Application Layer Gateway ALG Commands on page 142 Dynamic DNS Commands on page 143 Link Commands on page 143 Management Commands on page 146 Remote Access Commands on page 148 Physical Interfaces Commands on page 150 PPPoE Relay Commands on page 157 NAT Pinhole Commands on page 157 Security Stateful Packet Inspection SPI Commands on page 158 VoIP Commands o...

Page 103: ...Run self test download Download config file exit Quit this shell ffbb Show the number of POST fault states help Get more help all or help help install Download and program an image into flash log Add a message to the diagnostic log loglevel Report or change diagnostic log level netstat Show IP information nslookup Send DNS query for host ping Send ICMP echo request quit Quit this shell 6rd check S...

Page 104: ...e Protocol options gateway Gateway options link WAN link options management System management options physical Physical interface options dsl DSL configuration options enet Ethernet options pinhole Pinhole options pppoe relay Point to Point Protocol over Ethernet relay options preferences Shell environment preferences queue Queue options security Security firewall options system Gateway s system o...

Page 105: ...uses 192 168 1 254 as the IP address for its LAN interface You can use a Web browser to configure the NVG599 IP address Logging In The command line interface log in process emulates the log in process for a UNIX host To log in enter the user name and your password Entering the administrator password lets you display and update all NVG599 settings When you have logged in successfully the command li...

Page 106: ...ELL mode the CLI prompt is the name of the NVG599 device followed by a right angle bracket For example if you open a CLI connection to the NVG599 device named ARRIS 3000 9437188 you would see ARRIS 3000 9437188 as your CLI prompt SHELL Command Shortcuts You can truncate most commands in the CLI to their shortest unique string For example you can use the truncated command q in place of the full qui...

Page 107: ...You can include one or more of the following arguments with the download command If you omit arguments the console prompts you for this information The server_address argument identifies the IP address of the TFTP server from which you want to copy the NVG599 configuration file The filename argument identifies the path and name of the configuration file on the TFTP server If you include the option...

Page 108: ...vial status messages 2 or medium Medium level informational messages or greater includes status messages that can help monitor network traffic 3 or high High level informational messages or greater includes status messages that may be significant but do not constitute errors 4 or warning Warnings or greater includes recoverable error conditions and useful operator information 5 or failure Failures...

Page 109: ...lution Protocol ARP cache on your unit reset crash Clears crash dump information which identifies the contents of the NVG599 registers at the point of system malfunction reset dhcp server Clears the DHCP lease table in the NVG599 device reset enet all Resets Ethernet statistics to zero Resets individual LAN switch port statistics as well as wireless and WAN Ethernet statistics where applicable res...

Page 110: ...ure mode show crash Displays the most recent crash information if any for your NVG599 device show dhcp server leases Displays the DHCP leases stored in RAM by your NVG599 device show dhcp client Displays the DHCP clients stored in RAM by your NVG599 device show dsl all Displays DSL port statistics such as upstream and downstream connection rates and noise levels show dslf device association Displa...

Page 111: ... OK 253 Transmit unicastpkts 0 Tx Octets 16192 Tx Collision 0 Receive OK 24 Receive unicastpkts 0 Receive errors 0 Rx Octets 4781 10 100 1000 Ethernet port 3 Port Status Link down 10 100 1000 Ethernet port 4 Port Status Link down HPNA port 5 counter values include management traffic Port Status Link up Duplex Full Speed 200 MBPS Transmit OK 1702 Transmit unicastpkts 1173 Tx Octets 226117 Tx Collis...

Page 112: ...Tx Discards 0 Tx Octets 31692 10 100 Ethernet phy enet port Port Status Link up Duplex Full duplex active Speed 100BASE T Transmit OK 434 Transmit unicastpkts NA Receive OK 267 Receive unicastpkts 267 show enet tx queue show enet tx queue This is an output of what is should look like NOS 128600225699776 UNLOCKED show enet tx queue No transmit software queue configured on Ethernet port 1 No transmi...

Page 113: ...ution table stored in your NVG599 device show ip igmp Displays the contents of the IGMP Group Address table and the IGMP Report table maintained by your NVG599 device show ip interfaces Displays the IP interfaces for your NVG599 device show ip firewall Displays firewall statistics show ip lan discovery Displays the LAN Host Discovery table of hosts on the wired or wireless LAN and whether or not t...

Page 114: ...ll show firewall log Displays blocks of information from the NVG599 firewall log show memory all Displays memory usage information for your NVG599 device If you include the optional all argument your NVG599 will display a more detailed set of memory statistics show ptm Displays statistics information for each PTM session show post results Displays Power On Self Test results show pppoe Displays sta...

Page 115: ...the name of the device to which you want to connect for example telnet ftp arris com The ip_address argument is the IP address in dotted decimal notation of the device to which you want to connect The port argument is the number of the port over which you want to open a Telnet session traceroute ip_address hostname Traces the routing path to an IP destination upload server_address filename confirm...

Page 116: ...Maintenance OAM loopback calls to the specified VPI VCI destination There is a five second total timeout interval Use the segment argument to ping a neighbor switch Use the end to end argument to ping a remote end node reset dhcp client release vcc id Releases the DHCP lease the NVG599 device is currently using to acquire the IP settings for the specified DSL port The vcc id identifier is an index...

Page 117: ...raming show atm all Displays ATM statistics for the NVG599 device The optional all argument displays a more detailed set of ATM statistics show ppp stats lcp ipcp Displays information about open PPP links You can display a subset of the PPP statistics by including an optional stats lcp or ipcp argument for the show ppp command start ppp vccn Opens a PPP link on the specified virtual circuit ...

Page 118: ...p ARRIS 3000 9437188 ip As a shortcut you can enter the significant letters of the node name in place of the full node name at the CONFIG prompt The significant characters of a node name are the letters that uniquely identify the node For example since only one CONFIG node starts with b you could enter the letter b to move to the bridge node Jumping down several nodes at once You can jump down sev...

Page 119: ...o enter complete CLI commands When you are in step mode the command line interface prompts you to enter required and optional settings If a setting has a default value or a current setting the command line interface displays the default value for the command in parentheses If a command has a limited number of acceptable values those values are presented in brackets with each value separated by a v...

Page 120: ...xit For example ARRIS 3000 9437188 top set system system name ARRIS 3000 9437188 Mycroft Diagnostic Level High medium Stepping mode ended Validating Your Configuration You can use the validate CONFIG command to make sure that your configuration settings have been entered correctly If you use the validate command the NVG599 device verifies that all required settings for all services are present and...

Page 121: ...cifies whether the device should use Routing Information Protocol RIP broadcasts to advertise its routing tables to other gateways RIP Version 2 RIP 2 is an extension of the original Routing Information Protocol RIP 1 that expands the amount of useful information in the RIP packets While RIP 1 and RIP 2 share the same basic algorithms RIP 2 supports several additional features including inclusion ...

Page 122: ...N link oid LAN LAN WAN PPPoE type static static dhcpc ppp side lan lan wan lan type private private public public delegated mcast forwarding off off on rip send off off v1 v2 v1 compat v2 md5 rip receive off off v1 v2 v1 compat v2 md5 fs egress Security QosUpstream WanEgress fs ingress Security QosUpstream WanEgress static ipaddr 192 168 1 254 netmask 255 255 255 0 dhcp server enable on off on dhc...

Page 123: ...pecifies the first address in the DHCP address range The NVG599 can reserve a sequence of up to 253 IP addresses within a subnet beginning with the specified address for dynamic assignment The default is 192 168 1 64 set conn name name dhcp server end addr ipaddr If dhcp server enable is set to on specifies the last address in the DHCP address range The default is 192 168 1 253 set conn name name ...

Page 124: ...rovide packet filtering and QoS configuration Packets are identified by characteristics that allow QoS and forwarding decisions to be made These characteristics can be at the MAC layer IP layer TCP UDP ICMP layer s or in applicable circumstances 802 1q p VLAN tagging layer Your NVG599 device is capable of adding and stripping 802 1Q tags to and from frames before transmission on its LAN interfaces...

Page 125: ...eld set filterset name filterset_name rule number match src ip addr ip_address_range Matches supplied value with packet s source IP address field set filterset name filterset_name rule number match dst ip addr ip_address_range Matches supplied value with packet s destination IP address field set filterset name filterset_name rule number match protocol protocol_string Matches supplied value with pa...

Page 126: ...set_name rule number match dst port number number Matches TCP UDP destination port field or port range set filterset name filterset_name rule number match tcp flags tcp_flag_string Matches TCP flags in a packet The flag string is comma delimited set filterset name filterset_name rule number match packet length number number Matches packet length against value or range set filterset name filterset_...

Page 127: ...ough all of a filter s rules without a match then the filter set s default actions come into play These behave the same way that rule actions behave set filterset name filterset_name default action set qos marker qos_marker_string Tags the packet according to the queue marker name set filterset name filterset_name default action set tos number Sets the packet TOS field to the supplied value set fi...

Page 128: ... pass drop Executes the named filter set s default action pass or drop set gfs name filterset_name rule number enable on off Dynamically enables or disables the specified filter set rule set gfs name filterset_name rule number active on off Activates or deactivates the specified filter set rule set gfs name filterset_name rule number type either ipv4 ipv6 Specifies whether the named filter set rul...

Page 129: ...nless there are tail drops The maximum size bytes of a queue balances how much burstiness can be buffered versus having a queue that is simply too long Burstiness smoothing requires queueing up the buffers For example if the upstream line rate is 1 mbps but the traffic source sends 100 mbps bursts for 10 ms every second which coincidentally averages 1 mbps then src ip addr ip 4 6 address or subnet...

Page 130: ... have three different packet dropping options byte packet fifo bpfifo random early discard red stochastic fairness queuing sfq set queue name queue_name type basic ingress priority wfq Sets the type of queue set queue name queue_name options off red sfq Sets the queue packet dropping options set queue name queue_name size 1 64 Sets the maximum number of packets that can be enqueued set queue name ...

Page 131: ...ny excess bandwidth is offered to higher priority entry first otherwise any excess bandwidth is distributed to the weights ratio set queue name queue_name entry number weight 0 100 Sets the weight level of this weighted fair queue Weight units are dependent on bps mode setting If bps mode is set to bps then setting the weight to 0 will allocate the remaining available bandwidth to the queue entry ...

Page 132: ...affic class clear on set ip6 conn name WANv6 6rd tunnel type cpe set ip6 conn name WANv6 6rd tunnel ipv4 conn WAN set ip6 conn name WANv6 6rd tunnel use dhcp values off set ip6 conn name WANv6 6rd tunnel prefix set ip6 conn name WANv6 6rd tunnel prefix length 1 set ip6 conn name WANv6 6rd tunnel ipv4 common bits 0 set ip6 conn name WANv6 6rd tunnel relay ipv4 addr 0 0 0 0 set ip6 conn name WANv6 6...

Page 133: ...i ip4 invalid addr drop on set security spi ip4 private addr drop off set security spi flood limit enable off set security ip6 firewall level low set security ip6 enable on ip6 gateway conn set ip6 gateway enable on off Enables or disables IPv6 default gateway set ip6 gateway conn value Sets the default gateway to point to an associated link specified by the conn oid value Normally this would be t...

Page 134: ... Connections ip6 conn type rd side wan This WAN connection type is a 6rd tunnel over an IPv4 conn in accordance with RFC 5569 set ip6 conn name name 6rd tunnel type cpe gateway The 6rd connection can operate in cpe or gateway mode as configured by the type parameter cpe mode is used when operating as a CPE gateway mode is used when operating as a 6rd relay as per RFC 5569 set ip6 conn name name 6r...

Page 135: ... gateway AICCU SixXS tunnel broker Connections ip6 conn type aiccu side wan This connection type enables an IPv6 connection to the IPv6 Internet over an IPv4 NAT UDP tunnel to a tunnel endpoint administered by tunnel broker SIXXS www sixxs net You set up an account with SIXXS and subsequently get assigned a tunnel and a subnet usually a 48 subnet set ip6 conn name name aiccu username username Sets...

Page 136: ...tateless IPv6 prefixes and addresses as well as addition client parameters such as MTU size and IPv6 addressable DNS servers set ip6 conn name name radv enable off on The on parameter sets router advertisement to enabled for this connection set ip6 conn name name radv min rtr adv interval seconds 3 1350 The minimum time allowed between sending unsolicited multicast router advertisements from the l...

Page 137: ...erver will respond with a DHCPNAK message causing the client to forget its IP address and try to get a new one If authoritative is set to off the server will ignore the client s request The default is on set ip6 dhcp server rapid commit on off Enables or disables the rapid commit option per RFC 3315 Section 22 14 The default is on set ip6 dhcp server unicast off on Enables or disables server unica...

Page 138: ... prefix length set ip6 static route name metric value 0 255 Metric assigned to route T1 The time at which the client contacts the server from which the addresses in the IA_NA were obtained to extend the lifetimes of the addresses assigned to the IA_NA T1 is a time duration relative to the current time expressed in seconds Defaults to 302400 3 5 days T2 The time at which the client contacts any ava...

Page 139: ...s support IGMP Version 1 Version 2 or Version 3 IGMP Snooping is a feature of Ethernet Layer 2 switches that listens in on the IGMP conversation between computers and multicast routers Through this process it builds a database of locations where the multicast routers reside by noting IGMP general queries used in the querier selection process and by listening to other router protocols From the host...

Page 140: ... messages sent before the gateway assumes that there are no members of the host group being queried on this interface The default last mem ber query count is 2 Fast Leave Set to off by default fast leave enables a non standard expedited leave mechanism The querier keeps track of which client is requesting which channel by IP address When a leave message is received the querier can check its intern...

Page 141: ...waits to receive a response to a Group Specific Query message The last member query interval is also the amount of time in seconds between successive Group Specific Query messages The default is 1 second 10 deci seconds set ip igmp last member count value Sets the last member query count the number of Group Specific Query messages sent before the gateway assumes that there are no members of the ho...

Page 142: ...The ALG determines if the connection should be allowed or not and then establishes a connection with the destination computer All communications go through two connections client to ALG and ALG to destination The ALG monitors all traffic against its rules before deciding whether or not to forward it Because the ALG is the only address seen by the public Internet the internal network is concealed I...

Page 143: ...dynamic DNS services The default is off If you specify dyndns org you must supply your host name user name for the service and password Number of retries defaults to 5 Default Server Settings set ip wan allocation mode normal defaultserver Sets the WAN mode to direct your NVG599 to forward all externally initiated IP traffic TCP and UDP protocols only to a default host on the LAN otherwise this fe...

Page 144: ...ou set this to a value greater than 0 all packets of this VLAN with unmarked priority bits pbits will be re marked to this priority set link name name supplicant type none eap tls Specifies whether the EAP TLS supplicant is enabled on the link named name Default is eap tls set link name name supplicant priority 0 7 Sets the supplicant priority on the link named name when supplicant type is eap tls...

Page 145: ...30 set link name name ppp connection type instant on always on Specifies whether a PPP connection is maintained by the NVG599 device when it is unused for extended periods If you specify always on the NVG599 never shuts down the PPP link If you specify instant on the NVG599 shuts down the PPP link after the number of seconds specified in the timeout setting below if no traffic is moving over the c...

Page 146: ...ne the NVG599 is trying to connect Management Commands All management related items are grouped in this section set management account administrator username username Specifies the username for the administrative user The default is admin set management account user username username Specifies the username for the non administrative user The default is user set management cwmp enable off on Turns ...

Page 147: ...NVG599 Default is 15 minutes for Telnet set management shell ssh port 1 65534 Specifies the port number for secure shell SSH communication with the NVG599 Defaults to port 0 off set management shell telnet port 1 65534 Specifies the port number for Telnet CLI communication with the NVG599 device Because port numbers in the range 0 1024 are used by other protocols you should use numbers in the rang...

Page 148: ...ctivity for remote HTTP access to the NVG599 after which a user must log in to the device Default is 20 minutes for HTTP set management remote access http max clients number Specifies the maximum number of client sessions for remote Web access management Defaults to 1 one set management remote access https port 1 65534 Sets the secure Web access port for remote access management of the NVG599 Defa...

Page 149: ...ss ssh idle timeout 1 120 Specifies a timeout period of inactivity for remote secure shell SSH access to the NVG599 device after which a user must log in to the device Default is 5 minutes for SSH set management remote access ssh total timeout 1 120 Specifies a total timeout period of inactivity for remote secure shell SSH access to the NVG599 device after which a user must log in to the device De...

Page 150: ...mode for the DSL connection whether a single line or bonded If the default auto is set the device will try both single and bonded attempting to detect and lock on the mode in use set physical dsl loopback off on Turns the DSL loopback mode off or on Default is off set physical dsl annexm off on Turns optional DSL Annex M off or on Default is off If enabled data rates can be as high as 12 or 24 Mbi...

Page 151: ... set physical dsl profile 12b on off Enables or disables VDSL2 profile 12b governing upstream and downstream bandwidth Default is on set physical dsl profile 17a on off Enables or disables VDSL2 profile 17a governing upstream and downstream bandwidth Default is on set physical dsl profile 30a on off Enables or disables VDSL2 profile 30a governing upstream and downstream bandwidth Default is off se...

Page 152: ...ux ipoa vcmux pppoa Specifies the data link encapsulation type Default is llcsnap eth set physical dsl atm vcc 1 vpi 0 255 Sets the virtual path identifier VPI for the circuit Default is 0 set physical dsl atm vcc 1 vci 32 65535 Sets the virtual channel identifier VCI for the circuit Default is 35 set physical dsl atm vcc 2 enable off on Turns ATM on or off on vcc 2 Default is on set physical dsl ...

Page 153: ...ate to the PTM interface when the queue type is egress set physical dsl ptm rx queue queue_name Attaches the ingress queue to the PTM interface when the queue type is ingress set physical dsl atm vcc 1 auto vpi vci on off Turns automatic VPI VCI detection on or off If you leave the default on the device will try a series of VPI VCI pairs that are commonly used by service providers When one pair su...

Page 154: ...queue queue_name Attaches the ingress queue to the Ethernet interface when the queue type is ingress set physical enet 1 4 port power save enable Turns power saving mode off or on set physical ensw max age seconds Sets the maximum delay on the Ethernet switch in seconds Default is 300 5 minutes set physical ensw qos mode off p bit Sets QoS up on Ethernet switch classified by priority bit mapping D...

Page 155: ...work will broadcast This is a frequency range within the 2 4 Ghz band Channel selection can have a significant impact on performance depending on other wireless activity close to this router Channel selection is not necessary at the client computers the clients will scan the available channels seeking access points using the same SSID as the client Defaults to 6 set physical wireless power 1 100 S...

Page 156: ...hysical wireless ssid 1 security none wep wpa Sets the wireless privacy type none wep or wpa psk Default is none set physical wireless ssid 2 enable off on Enables or disables the second available SSID set physical wireless ssid 3 enable off on Enables or disables the third available SSID set physical wireless ssid 4 enable off on Enables or disables the fourth available SSID set physical wireless...

Page 157: ...lnet TCP 23 SMTP TCP 25 TFTP UDP 69 set pinhole name name protocol tcp udp Specifies the identifier for the entry in the NVG599 device s pinhole table You can name pinhole table entries sequentially 1 2 3 by port number 21 80 23 by protocol or by some other naming scheme Specifies the type of protocol being redirected set pinhole name name ext port range 0 49151 Specifies the first and last port n...

Page 158: ... Enables or disables whether broadband packets with invalid source or destination addresses should be dropped Default is on set security spi ip4 private addr drop on off Enables or disables whether broadband packets with private source or destination addresses should be dropped Default is off set security spi unknown ethertypes drop on off Enables or disables whether packets with unknown ether typ...

Page 159: ... off on Enables or disables whether TCP packet flooding should be detected and offending packets be dropped Defaults to off set security spi flood limit tcp syn cookie on off Allows TCP SYN cookies flooding to be excluded Defaults to on Reflexive ACL set security spi ip6 allow inbound on off Turns reflexive ACL on or off for IPv6 Reflexive access control lists ACL provide that Layer 4 session info...

Page 160: ... known port number the station using the profile will use to connect to the SIP proxy Default is 5060 set voip profile 1 4 proxy transport udp Assigns a proxy transport protocol to the VoIP profile Default is udp set voip profile 1 4 registrar server address Specifies the IP address or fully qualified domain name of the SIP registrar server that stations using the profile will connect to set voip ...

Page 161: ...ng the named profile may attempt to retry registration set voip profile 1 4 reg min expires seconds Assign the profile a minimum length of time until a registration expires and must be renewed set voip profile 1 4 registration period seconds Sets the amount of time that a registration remains valid set voip profile 1 4 max retrans invite times Assigns the profile a maximum number of INVITE message...

Page 162: ...namic payload value Sets the dynamic payload value for the identified profile Default 101 set voip profile 1 4 sip advanced setting sip dtmf mode inband rfc2833 info Assigns a DTMF signaling mode for the SIP profile inband sends the DTMF digits as a normal inband tone rfc2833 default sends the DTMF digits as an event as part of the RTP packet header information info sends the DTMF digits in the SI...

Page 163: ... profile set voip profile 1 4 sip advanced setting sip allow ip list string Defines a string of named SIP servers that the profile may use set voip profile 1 4 sip advanced setting sip t1 timer value 500 Assigns a SIP t1 estimated round trip time value to the profile set voip profile 1 4 sip advanced setting sip t2 timer value 4000 Assigns a SIP t2 maximum non INVITE retransmit time value to the p...

Page 164: ...VITE retransmit request wait time value to the profile set voip profile 1 4 sip advanced setting sip timer k value 0 Assigns a SIP K timer response retransmission wait time value to the profile set voip profile 1 4 sip advanced setting sip reset code code Sets the SIP reset code for the profile Default 101 set voip profile 1 4 sip advanced setting sip timer shortinterdigit value value Sets an inte...

Page 165: ...elephony setting t38 option on off Enables or disables T 38 fax capability for the VoIP profile set voip profile 1 4 advanced telephony setting sip dynamic line selection on off Turns dynamic next available line selection off or on for the identified VoIP profile Default is off set voip profile 1 4 advanced telephony setting sip dns ns on off Enables or disables SIP DNS NS records for Authoritativ...

Page 166: ... of line tests for the VoIP profile Default 10 set voip profile 1 4 user account 1 4 enable on off Enables or disables the identified VoIP user account individual account on the specified VoIP profile set voip profile 1 4 user account 1 4 voip testline option on off Enables or disables the test line option for the named user account on the VoIP profile Default off set voip profile 1 4 user account...

Page 167: ...e Assigns a packetization time value to the Mu law G711U codec on the user account Default 20 set voip profile 1 4 user account 1 4 codec G711A priority 1 7 none Assigns a priority value to the a law G711A codec on the user account Default 2 set voip profile 1 4 user account 1 4 codec G711A packetization time value Assigns a packetization time value to the a law G711A codec on the user account Def...

Page 168: ...the user account Default 20 set voip profile 1 4 user account 1 4 codec G726_32 priority 1 7 none Assigns a priority value to the 32 kbit s G 726 codec on the user account Default 5 set voip profile 1 4 user account 1 4 codec G726_32 packetization time value Assigns a packetization time value to the 32 kbit s G 726 codec on the user account Default 20 set voip profile 1 4 user account 1 4 codec G7...

Page 169: ...Default 20 set voip profile 1 4 user account 1 4 call feature call forwarding all option on off Turns unconditional call forwarding on or off for the specified user account set voip profile 1 4 user account 1 4 call feature call forwarding on busy option on off Enables or disables call forwarding when the line is busy for the specified user account set voip profile 1 4 user account 1 4 call featur...

Page 170: ...t voip profile 1 4 user account 1 4 call feature call disconnsupervision option on off Enables or disables disconnection supervision on the user account set voip profile 1 4 user account 1 4 call feature call osi signaldur value Assigns an OSI signal duration value to the account Default 800 set voip profile 1 4 user account 1 4 dsp settings echo option echo off echo on echo on nlp echo on cng nlp...

Page 171: ...p identifier of the ad carousel server set targeted ad insertion key identification counter 0 n Sets a counter value for the ad key indentifier set targeted ad insertion authentication key string Specifies an authentication key for the targeted ads set targeted ad insertion channel change notification on off Turns the change the channel notification on or off Default is on set targeted ad insertio...

Page 172: ...al for retransmission of ad insertion in seconds Default is 300 seconds set targeted ad insertion vcc ip address ip_address Specifies the VCC IP address of the ad carousel server set targeted ad insertion vcc port 0 n Specifies the VCC port of the ad carousel server set targeted ad insertion zones zone_number Specifies the zone for targeted ads when v zone ad is set to on set targeted ad insertion...

Page 173: ...ttempted violations of the firewall rules Default is on set system firewall log persist on off When set to on causes the log information to be kept in flash memory Default is off set system firewall log file size 4096 65536 Specifies a size for the firewall logs The most recent entries are posted to the beginning of the log When the log becomes full the oldest entries are dropped The default is 16...

Page 174: ... device should poll the update server monthly or biweekly The default is monthly set system calendar update protocol http https tftp Specifies the protocol for accessing the update server The default is http set system calendar update server server_address Specifies the address of the update server by name or IP address The default is cpems bellsouth net set system calendar update username string ...

Page 175: ...s the NVG599 Syslog function The Syslog function is disabled by default If Syslog is enabled the following additional Syslog settings may be configured set system syslog server ip IPv4 IPv6 Address set system syslog server port port set system syslog facility local0 local7 set system syslog level 0 7 set system syslog log system on off set system syslog log firewall on off set system syslog log ig...

Page 176: ...bles or disables the delivery of IGMP log messages to the Syslog server The IGMP log is disabled by default set system syslog log voice on off Enables or disables the generation of voice log messages for the Syslog server Voice log is disabled by default set system voice check enable off on When this is set to on and a voice call is in progress when a software update is scheduled the software upda...

Page 177: ...agnostic level medium the diagnostic log will retain medium level informational messages alerts and failure messages Use the following guidelines low Low level informational messages or greater includes trivial status messages medium Medium level informational messages or greater includes status messages that can help monitor network traffic high High level informational messages or greater includ...

Page 178: ...rom normal Config level Warning Accessing these commands may impact the normal operation of this device Exit now if you entered by mistake Commands console Makes this session the console mirror src port dst port Mirrors one port s traffic to another Causes traffic transmitted or received on src port to be mirrored on dst port Ports must support Ethernet IPoA and PPPoA ATM ports are not supported m...

Page 179: ...DSL2 single line VDSL2 bonded ADSL2 single line ADSL RJ 14 One port 10 100 1000 Ethernet RJ 45 Power Supply 115VAC 36W 12VDC 3A 2phone 5REN RINGING Environment Operating temperature 0 C to 42 C 32 F to 107 F 8 to 95 Non Condensing Relative Humidity Storage temperature 20 C to 85 C 4 F to 185 F Relative storage humidity 20 to 80 noncondensing Software and protocols Software media Software preloaded...

Page 180: ...le displays statistics counters web based management traceroute nslookup and diagnostic commands Agency approvals North America Safety Approvals United States UL 60950 Third Edition Canada CSA CAN CSA C22 2 No 60950 00 EMC United States FCC Part 15 Class B Canada ICES 003 Telecom United States 47 CFR Part 68 Canada CS 03 Integrated Battery Hazardous Materials Regulations and Procedures CFR Title 4...

Page 181: ...r modifications not expressly approved by the party responsible for compliance could void the user s authority to operate this equipment This transmitter must not be co located or operating in conjunction with any other antenna or transmitter Operations within the 5 15 5 25GHz band are restricted to indoor use only Radiation Exposure Statement This equipment complies with FCC radiation exposure li...

Page 182: ... should be aware that compliance with the above conditions may not prevent degradation of service in some situations Repairs to the certified equipment should be made by an authorized Canadian maintenance facility designated by the supplier Any repairs or alterations made by the user to this equipment or equipment malfunctions may give the telecommunications company cause to request the user to di...

Page 183: ...serves as the main power disconnect locate the direct plug in power supply near the product for easy access For use only with CSA Certified Class 2 power supply rated 12VDC 1 0A Telecommunication installation cautions Never install telephone wiring during a lightning storm Never install telephone jacks in wet locations unless the jack is specifically designed for wet locations Never touch uninsula...

Page 184: ...e telephone company b List all applicable certification jack Universal Service Order Codes USOC for the equipment RJ11 c A plug and jack used to connect this equipment to the premises wiring and telephone network must comply with the applicable FCC Part 68 rules and requirements adopted by the ACTA A compliant telephone cord and modular plug is provided with this product It is designed to be conne...

Page 185: ...d alarm equipment connected to the telephone line ensure that the installation of this ARRIS NVG599 VDSL2 Gateway does not disable your alarm equipment If you have questions about what will disable alarm equipment consult your telephone company or qualified installer RF Exposure Statement NOTE Installation of the wireless models must maintain at least 20 cm between the wireless NVG599 device and a...

Page 186: ...nciales o comerciales Algunos países o regiones tales como la Unión Europea han organizado sistemas para recoger y reciclar desechos eléctricos y electrónicos Comuníquese con las autoridades locales para obtener información acerca de las prácticas vigentes en su región Si no existen sistemas de recolección disponibles solicite asistencia llamando el Servicio al Cliente de ARRIS Recyclage de votre ...

Page 187: ...a União Européia criaram sistemas para colecionar e reciclar produtos eletroeletrônicos Para obter informações sobre as práticas estabelecidas para sua região entre em contato com as autoridades locais Se não houver sistemas de coleta disponíveis entre em contato com o Serviço ao Cliente da ARRIS para obter assistência Återvinning av din ARRIS utrustning Kasta inte denna produkt tillsammans med de...

Page 188: ...Administrator s Handbook 188 ...

Page 189: ...tice this list of conditions and the following disclaimer 2 Redistributions in binary form must reproduce the above copyright notice this list of conditions and the following disclaimer in the documentation and or other materials provided with the distribution 3 Neither the name of SixXS nor the names of its contributors may be used to endorse or promote products derived from this software without...

Page 190: ...nics dhcp dhcp isc 4 1 1 P1 Copyright 2004 2011 by Internet Systems Consortium Inc ISC Copyright 1995 2003 by Internet Software Consortium Permission to use copy modify and or distribute this software for any purpose with or without fee is hereby granted provided that the above copyright notice and this permission notice appear in all copies THE SOFTWARE IS PROVIDED AS IS AND ISC DISCLAIMS ALL WAR...

Page 191: ...he following disclaimer in the documentation and or other materials provided with the distribution 3 Neither the name of the copyright holder nor the names of contributors may be used to endorse or promote products derived from this software without specific prior written permission THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTOR S AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING BUT ...

Page 192: ...lso Copyright c Rusty Russell Copyright c The Regents of the University of California Copyright c USAGI WIDE Project Copyright c Free Software Founcation Copyright c Intel Corp Copyright c Robert Olsson Uppsala Univer sity Sweden Copyright c Harald Welte iptables 1 4 0 also Copyright c Netfilter Core Team libnetfilter_conntrack also C 2005 2011 Pablo Neira Ayuso libnfnetlink also c 2001 2005 Netfi...

Page 193: ...ION AND MODIFICATION 0 This License applies to any program or other work which contains a notice placed by the copyright holder saying it may be distributed under the terms of this General Public License The Program below refers to any such program or work and a work based on the Program means either the Program or any derivative work under copyright law that is to say a work containing the Progra...

Page 194: ...for a charge no more than your cost of physically performing source distribution a complete machine readable copy of the corresponding source code to be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange or c Accompany it with the information you received as to the offer to distribute corresponding source code This alternative is allowed onl...

Page 195: ...ribution limitation excluding those countries so that distribution is permitted only in or among countries not thus excluded In such case this License incorporates the limitation as if written in the body of this License 9 The Free Software Foundation may publish revised and or new versions of the General Public License from time to time Such new versions will be similar in spirit to the present v...

Page 196: ... we want to make it very clear that there is no warranty for the free library Also if the library is modified by someone else and passed on the recipients should know that what they have is not the original version so that the original author s reputation will not be affected by problems that might be introduced by others Finally software patents pose a constant threat to the existence of any free...

Page 197: ... this License d If a facility in the modified Library refers to a function or a table of data to be supplied by an application program that uses the facility other than as an argument passed when the facility is invoked then you must make a good faith effort to ensure that in the event an application does not supply such function or table the facility still operates and performs whatever part of i...

Page 198: ... and 2 will operate properly with a modified version of the library if the user installs one as long as the modified version is interface compatible with the version that the work was made with c Accompany the work with a written offer valid for at least three years to give the same user the materials specified in Subsection 6a above for a charge no more than the cost of performing this distributi...

Page 199: ...grams whose distribution conditions are incompatible with these write to the author to ask for permission For software which is copyrighted by the Free Software Foundation write to the Free Software Foundation we sometimes make exceptions for this Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reus...

Page 200: ...isclaimer in the documentation and or other materials provided with the distribution The name of the author may not be used to endorse or promote products derived from this software without specific prior written permission THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTA...

Page 201: ...R CONSEQUENTIAL DAMAGES INCLUDING BUT NOT LIMITED TO PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES LOSS OF USE DATA OR PROFITS OR BUSINESS INTERRUPTION HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY WHETHER IN CONTRACT STRICT LIABILITY OR TORT INCLUDING NEGLIGENCE OR OTHERWISE ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE This product includes cr...

Page 202: ...yright notice this list of conditions and the following disclaimer Redistributions in binary form must reproduce the above copyright notice this list of conditions and the following disclaimer in the documentation and or other materials provided with the distribution Neither the name of the University of Cambridge nor the names of its contributors may be used to endorse or promote products derived...

Page 203: ...lowing acknowledgment This product includes software developed by Paul Mackerras paulus samba org THE AUTHORS OF THIS SOFTWARE DISCLAIM ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY SPECIAL INDIRECT OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE DATA OR PROFI...

Page 204: ...nc 6920 Koll Center Parkway Pleasanton CA 94566 Permission to use copy modify and distribute this software for any purpose and without fee is hereby granted provided that this copyright and permission notice appear on all copies and supporting documentation the name of Livingston Enterprises Inc not be used in advertising or publicity pertaining to distribution of the program without specific prio...

Page 205: ...oods derived from original work by Spencer Thomas and Joseph Orost Redistribution and use in source and binary forms with or without modification are permitted provided that the following conditions are met 1 Redistributions of source code must retain the above copyright notice this list of conditions and the following disclaimer 2 Redistributions in binary form must reproduce the above copyright ...

Page 206: ...blic License as published by the Free Software Foundation either version 2 of the License or at your option any later version Copyright C 1995 Jean loup Gailly and Mark Adler This software is provided as is without any express or implied warranty In no event will the authors be held liable for any damages arising from the use of this software Permission is granted to anyone to use this software fo...

Page 207: ...SE Original version by James Carlson Copyright c 2002 Google Inc All rights reserved Redistribution and use in source and binary forms with or without modification are permitted provided that the following conditions are met 1 Redistributions of source code must retain the above copyright notice this list of conditions and the following disclaimer 2 Redistributions in binary form must reproduce th...

Page 208: ...ilisé sans son accord préalable explicite Ce logiciel est fourni tel quel sans aucune garantie support ou responsabilité d aucune sorte Ce logiciel est dérivé de sources d origine University of California at Berkeley et Digital Equipment Corporation couvertes par des copyrights L Institut d Informatique et de Mathématiques Appliquées de Grenoble IMAG est une fédération d unités mixtes de recherche...

Page 209: ...sion message and or README you are not permitted to redistribute that version of the software in any way or form 1 All terms of all other applicable copyrights and licenses must be followed 2 Redistributions of source code must retain the authors copyright notice s this list of conditions and the following disclaimer 3 Redistributions in binary form must reproduce the authors copyright notice s th...

Page 210: ...led by a name other than ssh or Secure Shell loginrec c is written primarily by Andre Lucas Jason Downs Theo de Raadt Copyright c 2000 Andre Lucas Portions copyright c 1998 Todd C Miller Portions copyright c 1996 Jason Downs Portions Copyright c 1996 Theo de Raadt loginrec h is written by Andre Lucas Copyright c 2000 Andre Lucas atomicio h atomicio c written by Theo de Raadt 1995 1999 Copyright c ...

Page 211: ... to use copy modify merge publish distribute sublicense and or sell copies of the Software and to permit persons to whom the Software is furnished to do so subject to the following conditions The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software THE SOFTWARE IS PROVIDED AS IS WITHOUT WARRANTY OF ANY KIND EXPRESS OR IMPLIED INC...

Page 212: ...y subject to the following restrictions 1 The origin of this software must not be misrepresented you must not claim that you wrote the original software If you use this software in a product an acknowledgment in the product documentation would be appreciated but is not required 2 Altered source versions must be plainly marked as such and must not be misrepresented as being the original software 3 ...

Page 213: ...213 Appendix A ARRIS Gateway Captive Portal Implementation This section contains information about the ARRIS Gateway Captive Portal Support ...

Page 214: ...es a comma separated string which can be Individual IP addresses or a range of IP addresses For a range of IP addresses a subnet mask is required The following formats of IP address are accepted Individual IP address 144 130 120 62 or 144 130 120 62 32 Range of 64 IP addresses 144 130 120 64 26 The White IP address list gets rewritten on any changes Clearing the Captive Portal URL disables Captive...

Page 215: ...mentation If true the Captive Portal is enabled xs documentation xs documentation If false the Captive Portal is disabled xs documentation xs annotation xs element xs element name RedirectURL xs annotation xs documentation the URL to be redirected to xs documentation xs annotation xs simpleType xs restriction base xs string xs maxLength value 512 xs restriction xs simpleType xs element xs element ...

Page 216: ...X_00D09E_SetCaptivePortalParams xs element name X_00D09E_SetCaptivePortalParams xs annotation xs documentation X_00D09E_SetCaptivePortalParams message to set the Captive Portal parameters on a CPE xs documentation xs annotation xs complexType xs sequence xs element name CaptivePortalParamStruct type tns CaptivePortalParamStruct xs sequence xs complexType xs element X_00D09E_SetCaptivePortalParamsR...

Page 217: ...217 Appendix B Quality of Service QoS Examples This section contains information about the ARRIS Gateway QoS implementation ...

Page 218: ... queuing or bandwidth shaping across critical networking bottlenecks Packets forwarded through the system are classified using sets of filter rules to match various criteria for example p bit DSCP IP address port etc The matching rule can set the classification which is the name of the queue that is to be used Figure 1 Illustration of upstream congestion all traffic is consistently delayed Figure ...

Page 219: ...weighted fair queue 1 or more input 1 output Schedules the packets according to bandwidth constraints Packets are enqueued to basic queues and only to basic queues Basic queues are output to priority queues and weighted fair queues which act as plumbing elements that alter the dequeuing order and rate respectively Priority queues and weighted fair queues can contain one another Weighted fair queue...

Page 220: ...rst the packets are classified via the filterset to set the QoS marker with the name of the desired basic queues The queues are shown here with packets traveling from left to right Each basic queue feeds into a WFQ entry and is shaped between the minimum bandwidth defined by weight and the maximum rate defined by peak If there is sufficient bandwidth the WFQ entry shapes at the peak rate If there ...

Page 221: ... value that is set via a filter rule which allows for advanced classification criteria to be used Even though the LAN interface might not be tagged there is still an internal priority field which is used to convey this information to the switch Downstream QoS Egress queues The secondary method of downstream QoS is to assign egress queues to the LAN port configuration This is less efficient however...

Page 222: ...Administrator s Handbook 222 ...

Page 223: ...L mode 106 View command 119 Command ARP 107 116 Ping 108 Telnet 115 Command line interface see CLI CONFIG Command List 104 Configuration mode 118 Connection commands 121 Custom Service 69 D Default Server 75 designing a new filter set 61 Detect Missing Filter 79 Device Access Code 24 Device List 28 DHCP lease table 109 Diagnostic log 109 114 Diagnostics 78 Documentation conventions 8 Downstream Qo...

Page 224: ...le 86 NAT Gaming 67 NSLookup 79 NTP commands 142 P Packet Filters 60 Password Administrator 105 User 105 Physical interfaces commands 150 Ping 79 Ping command 108 PPP 117 priority queue 219 Prompt CLI 106 118 Q QoS 217 Quality of Service 217 R Redirect page 23 149 Reset Connection 84 Reset Device 84 Reset IP 84 Resets 84 Restart 84 110 Restart command 106 Restart Modem 33 S Safety Instructions 12 ...

Page 225: ...TP server 108 Traceroute 79 Trivial File Transfer Protocol 107 Troubleshoot 78 Truncation 118 U Update 83 Upstream QoS 220 User name 105 User password 105 V View command 119 view config 115 Voice 53 Voice over IP 160 VoIP 160 W weighted fair queue 219 WiFi Key 45 Wireless 43 Wireless Security 45 ...

Page 226: ...Administrator s Handbook 226 ...

Page 227: ...227 ARRIS DSL Gateways ARRIS Enterprises Inc 600 North U S Highway 45 Libertyville Illinois 60048 USA Telephone 1 847 523 5000 December 6 2013 ...

Page 228: ...Administrator s Handbook 228 ...

Reviews:

No comments

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands