manualshive.com logo in svg

BinTec VICAS, User Manual

Download the free user manual for BinTec VICAS to get detailed instructions on optimizing your network performance. With step-by-step guides and troubleshooting tips, this manual is essential for getting the most out of your device. Get your manual at manualshive.com.

Share
Download
background image

How do I configure access lists to protect my network?

111

User’s Guide: Version 1.2

How do I configure access lists to protect my network?

Access Lists provide a filtering mechanism that allows you to limit the
types of traffic you want the V!CAS to route. For example, you might
want to control access to the telnet service on a specific host to one or two
remote ISDN hosts. This is done using Allow and Deny lists.

Below is a brief example of how the Allow and Deny Lists are used.

Before you begin

First decide what types of IP traffic you want to limit. You’ll want to take
the following things into consideration.

• What interface do you want to monitor incoming traffic on.
• What services and/or hosts do you want to allow/deny access to.
• What services do you absolutely need (DNS, FTP, HTTP).

Configure it

Configure Allow Entries

First, configure the Allow entries for the interface you want to moni-
tor IP traffic on. The Source/Destination Address/Mask/Port fields
should be set appropriately depending on what you are filtering.

Mode

allow

Source Interface/Partner

<name of interface to monitor>

Allow Entries

 Deny Entries

rsh

pop

nntp

rsh

http

nntp

nntp

udp

pop

ftp

ftp

pop

(any TCP)

(any ftp, telnet, rsh)

http

ftp

egp

telnet

ISDN

anyhost

dialup1

http

Src Port Dest Port

21

<abc>

Src Port Dest Port

23

<def>

Src Port Dest Port

514

<efg>

Secure LAN

!

(p. 63)

IP

A

CCESS

L

ISTS

ADD

Summary of Contents for VICAS

Page 1: ...V CAS User s Guide Hardware and Installation Version 1 2 October 1997 Document 70016...

Page 2: ...he property of their respective companies Warning As a multi protocol ISDN router this product is known to establish ISDN connections as needed depending upon the system s configuration To avoid unwan...

Page 3: ...ause harmful interference to radio communica tions However there is no guarantee that interference will not occur in a particular instal lation If this equipment does cause harmful interference to rad...

Page 4: ...o rest on any of the attached cables and do not locate the product where persons will walk or trip on the cables Connect this equipment only to an ap proved properly grounded and accessi ble socket ou...

Page 5: ...s guide 6 2 Installing the V CAS Connecting the V CAS to the LAN 8 Connecting the V CAS to the ISDN 10 Connecting analog devices to the V CAS 10 Connecting the V CAS to a PC or terminal 11 The BOOT se...

Page 6: ...a leased line connection 102 How do I configure an Ethernet interface 103 IP Features 104 How do I configure dialup TCP IP access for an ISDN partner 104 How do I configure Dialup Access to CompuServ...

Page 7: ...w can I configure my POTS ports using more than one MSN 132 General 134 How can I retrieve accounting information ISDN and TCP IP 134 How do I use the V CAS as a Bridge to link two LANs over ISDN 136...

Page 8: ...168 The Main Board 168 Firmware 169 Upgrading System Software 169 BOOTmonitor 169 Automatic booting over TFTP 172 General System Specifications 173 A Technical Data Pin Assignments 174 ISDN S0 interf...

Page 9: ...nTec Communications GmbH Willst tterstra e 30 D 90449 N rnberg GERMANY e Mail Sales sales BinTec de Service support BinTec de WWW http www BinTec de 1INTRODUCTION What s covered How to contact BinTec...

Page 10: ...ation consists of this User s Guide the introductory Getting Started and Los Geht s manuals and the online references BRICK ware for Windows Software Reference and The Management Information Base This...

Page 11: ...tab lished connection Suffix Dialling Nachwahl from an analog tel ephone connected to a POTS port these digits are not only sent as DTMF tones but also as keypad data packets You can access special fu...

Page 12: ...tion temporarily gives up one of its B channels for the duration of the voice call STAC compression V CAS supports the STAC compression ac cording to RFC 1974 and 1962 standards PPP Stac LZS Compres s...

Page 13: ...ce to the Setup Tool menus Chapter 5 How do I Configure answers the most common questions asked when configuring the V CAS If you just want to know how to con figure feature X this is the first place...

Page 14: ...he beginning of a list of steps re quired to configure a V CAS feature References to information in other sections or documents that may be helpful Points out important information such as safety prec...

Page 15: ...installing the V CAS on your LAN and attaching a serial console Then we ll cover the brief BOOT sequence the V CAS goes through when starting up and describe the login proce dures you should use when...

Page 16: ...directly attached to the network cabling using a BNC connector as shown in figure 1 below A transceiver is usually not required 1 Attach the BNC T connector to the BNC port on the back plane marked 1...

Page 17: ...port of each station on the network to a central 10BaseT concen trator You can attach the V CAS to your ethernet using the 10BaseT port 1 Attach a twisted pair cable to your V CAS by inserting the 8 p...

Page 18: ...s to ports A and B you can use the following functions without any further con figuration Free of charge internal calls between the two connected devices the device at port A can be reached by diallin...

Page 19: ...using the BOOTmoni tor which is described in Chapter 8 The BOOT sequence Each time you power up the system the V CAS moves between three dif ferent modes The LEDs on the front panel correspond to sta...

Page 20: ...into the V CAS for the first time enter admin at the login prompt then enter bintec when prompted for a password Note that the V CAS uses three different login names and passwords to grant various le...

Page 21: ...3 User s Guide Version 1 2 IDs correspond to Community Names used in the SNMP For informa tion on the differences between these user IDs or changing the default password settings please refer to Setup...

Page 22: ...14 Logging in for the first time V CAS...

Page 23: ...powerful product Of course if you re al ready farmiliar with the BIANCA BRICK family of routers and the Set up Tool feel free to skip this section Then we ll cover using Setup Tool i e menu structure...

Page 24: ...example the administrator at host zeus could manage the rout er bingo using an SNMP management application such as Sun s Net manager After booting the V CAS starts a login shell We sometimes refer to...

Page 25: ...om the SNMP shell these variables are represented by various System Ta bles which are arranged into functional groups Entering the g com mand displays a list of groups while the l command shows a long...

Page 26: ...also possible to re trieve and transmit configuration files to from remote hosts These ac tions can be performed using the Configuration Management menu in Setup Tool or from the SNMP shell by using...

Page 27: ...when transmitting data Connection security authentication at connect time Network security what types of traffic don t you want routed The characteristics you configure for a software interface depend...

Page 28: ...mplexity of administering the V CAS and allows you to configure the features you need using a simple character based menu system Keeping Setup Tool character oriented means you can administer the V CA...

Page 29: ...l n Ctrl p to scroll Space tag untag DELETE Return to edit V CAS Setup Tool BinTec Communications GmbH vicas IP ROUTING IP Route Table The flags are U Up D Dormant B Blocked G Gateway Route I Interfac...

Page 30: ...terface LAN Interface Advanced Settings Advanced Settings Incoming Call Answering WAN Partner ISDN Numbers IP IPX Advanced Settings IP IPX POTS Routing Static Settings Network Address Translation SNMP...

Page 31: ...n item to a list CANCEL Discards all changes made within the cur rent menu Note ONLY the current menu DELETE This command deletes all entries tagged for deletion from a list Changes are saved to memor...

Page 32: ...e previous menu Use the spacebar to toggle the delete flag for special entries that may be deleted While holding down the Control Key press L to redraw the screen While holding down the Control Key pr...

Page 33: ...Tool This chapter is divided into five sections which correspond to the Setup Tool Main Menu Basic System Configuration Hardware Interfaces Partner Management Configuring Protocols System Administrati...

Page 34: ...nterface Displays the type of the feature module installed in your V CAS Used for adding deleting ISDN partners Based on the information you provided in the Licenses menu this section lists the protoc...

Page 35: ...guration files For example you can save delete files locally on the V CAS or on a remote IP host using TFTP These menus are useful in debugging problems on your network and allow you to monitor the V...

Page 36: ...e available builtin Select to enter a new license Select to remove a license that has been marked for dele tion using the spacebar Select to accept the entries and return to the main menu Subsystem BR...

Page 37: ...for this V CAS This text string must contain a valid email address if the system adminstrator is to be contaced from the V CAS HTTP status page Login Password SNMP Community These three fields define...

Page 38: ...messages with a priority less than or equal to this value are displayed Possible levels include 1 Excluding password and license variables 2 Changes only saved to memory lost upon reboot Note Since th...

Page 39: ...Host An IP address of a host to send messages to Level Defines the level of messages to send to this host See Mes sage level for the syslog table p 30 for info on message levels Facility The facility...

Page 40: ...er the LAN either Ethernet II and Ethernet SNAP may be used IPX Configuration local IPX NetNumber Defines the IPX network number assigned to the LAN connected to this interface CM BNCTP ETHERNET V CAS...

Page 41: ...the type of header applied to IPX packets sent over this interface Bridging Setting to on allows bridging packets to pass over this inter face Set to off to disable IPX Encapsulation Supports IP IPX X...

Page 42: ...his interface When turned on accounting information for each TCP UDP or ICMP session routed over this interface is recorded in the ipSessionTable Once a session is closed an accounting record is gener...

Page 43: ...the autodetection fea ture is disabled for this interface The follwoing protocols are supported for dialup and leased lines CM 1BRI ISDN S0 V CAS Setup Tool BinTec Communications GmbH WAN WAN Interfa...

Page 44: ...in D channel above B channel 2 How to use the second B channel See above SPID B Channel 1 2 Required for the AT T protocols and sets the SPID Service Profile Identifier to use for both B channels SPID...

Page 45: ...in service However you ll proba bly want most calls to be given to the routing service By default all incoming calls are dispatched to the login service The incoming call answering is handled by the e...

Page 46: ...types listed below except for the specific PPP Modem Profile 2 8 settings if the calls are signalled correctly as is the case in most of Europe If in doubt try this value ISDN Login login service PPP...

Page 47: ...rified by your ISDN provider To enable X 31 select specify and then specify your TEI X 31 TEI Service Most sites will leave this settings to Packet Switch May also be set to CAPI or CAPI Default V CAS...

Page 48: ...highlight the partner then enter Return Select to create a new ISDN partner Select to remove a partner configuration that has been marked for deletion Using the spacebar Select to accept the partner...

Page 49: ...the link to this partner will support Encapsulation Defines the type of encapsulation to use over this link Depending on which protocols you enabled for this partner the available encapsulation metho...

Page 50: ...ticated at connection time If calling line identification is not used at least one authentication mechanism must be used Partner PPP ID The PPP ID this caller must use at connection time WAN Partner L...

Page 51: ...cal PPP ID from the menu is displayed as a default setting PPP Password The password this partner uses at connection time ISDN Ports to use This field defines which ISDN interfaces can be used to open...

Page 52: ...tly supported wildcards V CAS Setup Tool BinTec Communications GmbH WAN ADD ISDN NUMBERS ISDN Numbers vicas ISDN Numbers for this partner ISDN Number Direction ADD DELETE EXIT ISDN Number Wildcard Mat...

Page 53: ...to accept the list of ISDN number s and return to the previous menu To change an existing ISDN number highlight the entry and then en ter Return Note If the Calling Party s Number from the incoming ca...

Page 54: ...e primary and secondary domain name server from this partner at connection time local ISDN IP Address The V CAS IP address on the transit net work Partner s ISDN IP Address The partner s IP address on...

Page 55: ...n IPX networks RIP and SAP packets are broadcast to adjacent networks to inform them of current routes and services The traffic generated by RIP and SAP is okay for LANs but for adjacent networks conn...

Page 56: ...wback timed update always yes yes May lead to higher ISDN costs piggyback never yes yes At least 1 static route service must be configured for partner triggered piggyback only for changes yes yes defa...

Page 57: ...he interface is blocked for this many seconds Channel Bundeling The type of channel bundeling to use for this partner The number of channels N in the table below is defined by the next field Total Num...

Page 58: ...so sends the netmask of the prop agated IP address which allows the V CAS to propagate RIP packets to networks that do not use the default netmask for their respective network class RIP Receive Which...

Page 59: ...for most incoming mo dem connections as they usually originate from the analogue tele phone network where no calling party numbers are supplied with the calls is taken from the settings The following...

Page 60: ...he password to use for the User ID specified above 1 For direct access 2 For indirect access via the T Online gateway V CAS Setup Tool BinTec Communications GmbH WAN EDIT ADVANCED PROVIDER Provider Co...

Page 61: ...hich can be used to control access to from hosts on the connected networks is used to manage the pool of IP addresses the V CAS uses when operating as an IP address server contains resources the V CAS...

Page 62: ...or more IP routes mark the entries for deletion using the spacebar then select Select to accept the entries and return to the menu Note that the changed routing table becomes effective immediately V...

Page 63: ...twork If discard is used the V CAS disregards all packets matching this route Transit Networks Some sites may require an intermediate transit network mainly sites using routing equipment from differen...

Page 64: ...sk Only for network routes If left blank a standard netmask for the appropriate network class will be used Partner Interface For routes using a WAN link without a transfer network scroll through the l...

Page 65: ...IP Static Settings vicas Domain Name bricks com Primary Domain Name Server 199 1 1 99 Secondary Domain Name Server Time Protocol TIME UDP Time Offset seconds 0 Time Update Interval seconds 86400 Time...

Page 66: ...umber to use for CAPI connections Default value 6000 Remote TRACE Server TCP port The port number the V CAS uses for TRACE requests Default value 7000 RIP UDP port The port number used on the V CAS fo...

Page 67: ...everse NAT means allow all traffic arriving on this interface Traffic destined for this interface is only accepted if explicitly allowed1 1 Or the traffic is return data from a session initiated inter...

Page 68: ...e select To delete a session mark the entry for deletion using the spacebar then select Select to accept the session list and return to the previous menu Select to discard all changes made since the l...

Page 69: ...allow for user defined services Port The port number to allow Use 1 to allow all ports for the specified protocol If a specific port is set it must match the port number used by the internal host Des...

Page 70: ...stination addresses the Internet Protocol uses source and destination ports numbers to identify data connections uniquely The client side generates a number xyz which is used as the V CAS Setup Tool B...

Page 71: ...match or any to match all protocols Source Interface Partner Select the interface or partner to moni tor incoming IP frames on Set to any to monitor all interfaces V CAS Setup Tool BinTec Communicati...

Page 72: ...all ports numbers or one of the predefined ranges as explained in the table below Destination Address optional The IP address of the destination host to match Destination Mask optional Apply an option...

Page 73: ...sses In the following menu there are two required fields IP Address Enter the first number of the address block Number of consecutive addresses Enter the number of address es in the block including th...

Page 74: ...ease time has run out the server is free to reassign the IP address when needed The DHCP serv er also informs clients of the appropriate nameserver biboAdmNameServ er is used and default gateway Selec...

Page 75: ...ease time runs out Internet Access for the LAN using DHCP and NAT DHCP can be used in combination with NAT Network Address Transla tion to provide easy Internet access for a complete LAN The main ad v...

Page 76: ...trap broadcasting When turned on the V CAS broadcasts SNMP traps over its LAN interface SNMP trap community By default the snmp trap community is used Select to accept the these settings and return t...

Page 77: ...r V CAS Change only if this value conflicts with a remote IPX router s net number enable IPX spoofing Set to yes or no to enable disable NCP session watchdog spoofing and handling of broadcast message...

Page 78: ...only NetBIOS hosts attached to the V CAS via LAN interfaces can access each other WAN links won t be opened for Net BIOS packets no NetBIOS hosts in different LANs can not access each other Selecting...

Page 79: ...them respectively contains the V CAS X 25 routing table is used to configure the Multiprotocol Routing over X 25 MPX25 feature Select to return to the main menu V CAS Setup Tool BinTec Communications...

Page 80: ...nnect ed to an official X 25 data network When connected directly the V CAS ascertains its X 25 address automatically The X 25 address must be set here for sites implementing private X 25 networks or...

Page 81: ...ices from your ISDN provider an X 31 link is also present X 31 links have the format x31d slot number unit number TEI Before an X 25 compatible interface can be used its link characteristics must firs...

Page 82: ...s the highest number that can be assigned to a Virtual Channel Partner MAC Address LLC Used when configuring a link for a partner on the LAN and specifies the host s MAC or hardware ad dress Layer 2 B...

Page 83: ...X 25 packets the first matching route is always used To edit an X 25 route highlight the entry and then enter Return Select to create a new X 25 route Select to remove an X 25 route entry that has bee...

Page 84: ...than one route The first matching route is always used Also note that there are different X 25 addressing standards and depending on where the X 25 partner is calling from the actual X 25 ad dress rec...

Page 85: ...e a new MPX25 link Select to remove an MPX25 link tagged for deletion Select to accept the list of MPX25 links and return to the previous menu Note The underlying X 25 subsystem must first be configur...

Page 86: ...at the remote MPX25 partner must be configured to use the same encapsulation X 25 Destination Address The X 25 address for this partner There must be an appropriate X 25 route for this address in the...

Page 87: ...on page 46 but only apply to this MPX25 partner x25 mpr ipx This is where you configure the IPX settings for the remote MPX25 part ner This menu is only available if IPX has been enabled Note The sett...

Page 88: ...er port and are used to configure the type of device connected to the POTS ports as well as the ports internal and external numbers Select to return to the main menu V CAS Setup Tool BinTec Communicat...

Page 89: ...enu contains the TAPI server port Remote TAPI Server Port The TCP port number to use for TAPI connections Default value 6001 V CAS Setup Tool BinTec Communications GmbH POTS STATIC POTS Static Setting...

Page 90: ...or internal i e toll free calls V CAS Setup Tool BinTec Communications GmbH POTS POTS A POTS A Configuration vicas Type any Internal Number 1 External Numbers SAVE CANCEL Use Space to select Type Acce...

Page 91: ...ber highlight the entry and press Return To add a new number select To remove one or more numbers mark the entries for deletion using the spacebar then select To accept the entries and return to the m...

Page 92: ...it needs This will work in most cases only older modems will be unable to negotiate the necessary values but will require more time to negotiate the connection parameters at connect time After starti...

Page 93: ...omode enable on or disable off negotiation of speed and modulation parameters Min Bps the minimum baudrate you want to use with this profile You can set any speed supported by the current modulation i...

Page 94: ...unction with the K56flex mod ulation Sets the maximum transmit baudrate downstream server to client you want to use with this profile K56flex modulation is not supported for your feature module V 42bi...

Page 95: ...gement vicas Operation put FLASH TFTP TFTP Server IP Address 200 1 1 99 TFTP File Name test1 cf Name in Flash boot new Type of last operation put FLASH TFTP State of last operation done START OPERATIO...

Page 96: ...nu for cause To perform the selected operation select and enter Return Select to return to the previous menu 1 Host must support TFTP file must exist and be writeable put If successful1 overwrites cre...

Page 97: ...lets you monitor traffic by interface displays system messages generated by the V CAS system logging and accounting mechanisms menu lets you monitor IP traffic by protocol menu lets you monitor OSPF...

Page 98: ...and enter s statistics Enter d to see details for this call The h istory listing shows a list of the last 20 completed calls incoming and outgoing connections since the last system reboot V CAS Setup...

Page 99: ...n for both completed and active ISDN calls The s tatistics listing shows transfer activity for established ISDN calls Remote Number 2 Direction out State Cause Local Cause Local Number Dispatch Item S...

Page 100: ...shows currently established X 25 connections The h istory listing shows a list of completed X 25 connections both incoming and outgoing since the last system reboot V CAS Setup Tool BinTec Communicat...

Page 101: ...leted calls The s tatistics listing shows transfer activity for established X 25 calls Clear Cause Proro ID Source Interface Packet Size In Out Clear Diag State paris dialup 128 128 dataxfer 1 VC Numb...

Page 102: ...aces displays the number of B channels currently in use Duration For ISDN interfaces the duration of the connection in sec onds The command displays additional information about an interface and can b...

Page 103: ...he previous menu You can also move this interface to the up or down state Move to the field and choose an operation to perform then select the command and enter Return V CAS Setup Tool BinTec Communic...

Page 104: ...the previous menu Select to delete all System Logging messages V CAS Setup Tool BinTec Communications GmbH MONITOR MESSAGE Syslog Messages vicas Subj Lev Message SNMP DEB sent TRAP linkUp 0 115 bytes...

Page 105: ...munications GmbH MONITOR IP IP Statistics vicas InReceives 3912 OutNoRoutes 0 InHdrErrors 0 ReasmTimeout 500 InAddrErrors 0 ReasmReqds 0 ForwDatagrams 0 ReasmOKs 0 InUnknownProtos 0 ReasmFails 0 InDis...

Page 106: ...ou to the SNMP shell prompt Note If changes have been made in a submenu and were subse quently saved these changes are currently active in memory and are not removed upon exiting Setup Tool If you wan...

Page 107: ...rmation you ll need before you begin to configure a feature This section explains step by step instructions on how to configure the V CAS features This section contains references to other information...

Page 108: ...S detects the cor rect D channel protocol at boot time and during normal operation and displays the results here ISDN Switch Type Normally this is set to allow autodetection Only if autodetection is i...

Page 109: ...udes three different MSNs We might configure the V CAS to dispatch calls received for 0911 713 to the Login service and have other calls be given to Routing service WAN Interface These settings aren t...

Page 110: ...gure the WAN partner attached to the other end of the line The V CAS automatically creates a temporary WAN partner interface named according to the slot and unit the leased line was configured for For...

Page 111: ...ddress and netmask to use and the type of header information to ap ply to frames sent over this interface This information is configured in the menu Under the menu the following advanced features can...

Page 112: ...N telephone number to use If PAP or CHAP authentication is used The partner s PPP ID and PPP password the V CAS will use for authentication IP Address and Netmask if non standard mask is used Configur...

Page 113: ...standard netmask you can leave the Netmask field empty IP Transit Network no Partner s LAN IP Address your partner s IP Address Partner s LAN Netmask optional For sites that need to use a transfer net...

Page 114: ...cis Enabled Protocols IP Encapsulation Async PPP over X 75 Identify by Calling Number yes PPP Authentication Protocol none Then under set ISDN Number CIS s telephone number Direction outgoing Under as...

Page 115: ...N partner server The WAN partner that assigns the V CAS IP address is configured just like any other WAN partner with one exception The following field must be set to dynamic IP Transit Network dynami...

Page 116: ...pool Define the set of IP addresses the V CAS should use for dialup clients IP Address 1st address in the block Number of consecutive addresses total of addresses If you don t have a complete block of...

Page 117: ...N telephone number The PPP ID of the system your V CAS will dial into The V CAS PPP Password An IP address not needed if assigned dynamically Configure it Configure ISP interface Configure a new ISDN...

Page 118: ...ional Routing Settings Note that routing settings on some work stations on your LAN may need to be modified to include a default route that specifies the LAN address of your V CAS Check your operating...

Page 119: ...the following things into consideration What interface do you want to monitor incoming traffic on Whatservicesand orhostsdoyouwanttoallow denyaccessto What services do you absolutely need DNS FTP HTT...

Page 120: ...found in RFC 1700 On UNIX workstations refer to the etc services file or the man page for serv ices Separate Access Lists for IP IPX and Bridging traffic are supported however currently only IP access...

Page 121: ...clients Configure it Set Server s IP Address Set the IP address of the host operating as the RADIUS server RADIUS Server IP Address Set the RADIUS Client Key Set the key the V CAS will use when pollin...

Page 122: ...REQ WAN ADD PPP Password CHAP Password REQ WAN ADD PPP Password NAS Identifier REQ System System Name Service Type ANS fixed value framed Framed Protocol ANS fixed value ppp Framed IP Address ANS WAN...

Page 123: ...ul to have a BOOTP relay agent forward requests responses between the clients and server Before you begin To configure the Relay Agent all you need is the server s IP address Configure it Set BOOTP Se...

Page 124: ...if required by the remote router a network number for the WAN link Your remote IPX router s telephone number The remote router s PPP ID and Password if authentication is used An Internal IPX Network N...

Page 125: ...y used for IPX and may be different than the hostname of your V CAS If the default Internal Network Number used by the V CAS is already in use by another router change its value here see the ipx inter...

Page 126: ...e configured X 25 routes An X 25 route can lead to a point to multipoint interface such as an ethernet or a point to point interface such as a dialup ISDN or X 25 network partner Another option is the...

Page 127: ...re it VerifyLicense Verify your X 25 license is valid You should find X25 valid Configure the X 31 Link If the V CAS is connected to the ISDN subscriber outlet you re receiv ing the X 31 service on yo...

Page 128: ...nk You can test the X 31 link from a remote X 25 host using a PAD Packet Assembler Disassembler by calling the V CAS at it s X 25 address In Germany a special Echo Port provided by the Deutsche Tele k...

Page 129: ...t can be used as a virtual router for all X 25 hosts Individual X 25 Partner interfaces are not required Before you begin You will need the following information The V CAS ISDN telephone number Case A...

Page 130: ...for incoming calls This will allow calls coming from our PHI interface that are addressed to the V CAS X 25 telephone number to be given to the local1 interface Source Link interface name for PHI Dest...

Page 131: ...e going to need the following information The V CAS X 25 address The LAN partner s MAC address A locally assigned X 25 address for the LAN partner Configure it Configure X 25 Local Address First verif...

Page 132: ...m this LAN Partner that are addressed to the V CAS X 25 address to the special local1 interface Source Link en1 slot llc Destination Link local Destination X 25 Address V CAS X 25 address Edit X 25 Ro...

Page 133: ...e X 25 partner s ISDN telephone number Configure it Configure X 25 Local Address Verify the V CAS X 25 address is set here Edit WAN Partner Create a new WAN partner interface and enable only X 25 traf...

Page 134: ...nt X 25 links are described beginning on page 119 Before you begin Before you start you re going to need the following information The V CAS X 25 address The remote partner s X 25 address The remote p...

Page 135: ...ress V CAS IP address Partner s ISDN IP Address MPX25 partner s IP address Partner s LAN IP Address optional Partner s LAN Netmask optional More Info Depending on how you ve set up X 25 routing you ca...

Page 136: ...ial information is required to configure the V CAS as an ISO TP0 bridge Please note however that TCP clients must support RFC 1006 which describes how to transmit TP0 packets over TCP Configure it Ver...

Page 137: ...for this mechanism are as follows For more detailed reference please refer to RFCs 1006 and 1086 respectively TCP Client requests connection to X 25 Server Here the TCP Client initiates a connection a...

Page 138: ...V CAS to accept incoming calls addressed to an X 25 address 123 and route the connection to the registered TCP port number 6002 and IP address 10 5 5 5 Note The V CAS will listen for incoming calls t...

Page 139: ...you begin All you need to know is your ISDN telephone number MSN Configure it Take the following steps for both POTS port A and B POTS A Type Select the type of device connected to port A using the s...

Page 140: ...ed to know your ISDN telephone numbers which of these num bers to use for which POTS port and which device is connected to which POTS port Configure it POTS A Type Select the type of device connected...

Page 141: ...er Add a new external number entry Use the ISDN telephone number you want to use for this telephone as External Number 7655 in our example and set the Direction field to both with the spacebar Now add...

Page 142: ...ISDN connec tions such as duration of call called and calling number charging information and error causes IP Accounting contains information relating to IP sessions such as source and destination add...

Page 143: ...this facility must correspond to the sys log facility local 0 9 configured there See the man pages for sys log conf More Info You don t have to configure individual Log Hosts to actually see account i...

Page 144: ...ess The remote gateway s ISDN telephone number The remote gateway s PPP ID only if PAP or CHAP is used The V CAS PPP Password only if PAP or CHAP is used Configure it Configure Gateway Configure the r...

Page 145: ...addresses from remote LANs and begins to fill its forwarding table This is particularly important when bridging over ISDN links so that unneccessary ISDN charges can be avoided More Info Additional c...

Page 146: ...system is configured you should change these settings and protect the passwords Dial in Partner Authentication When adding ISDN dialup partners in the menu you have the option of using the Calling Lin...

Page 147: ...RICK ware Configuring the V CAS to forward messages to a LogHost is de scribed on page 134 Examine your SysLog Messages from time to time to see what s hap pening on your system access list violations...

Page 148: ...st be controlled using Access Lists RIP Information The Routing Interior Protocol is used by routers to learn and teach IP routes You can control which interfaces the V CAS learns about new IP routes...

Page 149: ...edures The V CAS can be configured as a RADIUS client that polls the RADIUS server at connection time See page 113 Identification of ISDN dialup X 25 partners A special Rewriting Rule for X 25 calls c...

Page 150: ...connecting to remote sites From this page users can then in form the system administrator via email if a problem exists To access the status page point a WWW browser Netscape Navigator or Microsoft s...

Page 151: ...reasons for the different states column three are as follows SNMP Table Browsing The contents of the V CAS SNMP tables can be browsed via HTTP brows ers using the SNMP Tables link from the V CAS main...

Page 152: ...ways 1 A symbolic object identifier e g iso org dod internet mgmt mib 2 interfaces ifEntry ifTable 2 An numerical object identifier e g 1 3 6 1 2 1 2 2 1 3 A unique MIB 2 or BinTec MIB table or varia...

Page 153: ...ifindex oid isdnchstate oid isdnchreceivedoctets oid isdnchtransmitoctets oid isdnchreceivederrors refreshtime 10 Login The login link will open a telnet session to your V CAS which can e g be used fo...

Page 154: ...ess the V CAS status page V CAS BinTec The final link on the main page will take you to our WWW server where you can get the latest information on our products as well as current sys tem software and...

Page 155: ...30 Message level for the syslog table debug Alternatively from the same menu you can set Syslog output on serial console yes then exit Setup Tool and let the messages scroll to the screen Debugging To...

Page 156: ...nspect and disassemble the data be ing sent over the ISDN channels The bricktrace command will attach to TCP IP port 7000 so you must specify the IP address for the host you wish to trace This is done...

Page 157: ...is only possible on the console If you can still login as the admin user on the console connection over the serial port you can move the boot configuration file as mentioned above Then restart the sys...

Page 158: ...he sapCircTable SAP packets are being filtered out by one of the intermediate rout ers The ISDN connection can t be established The service is being removed through aging see the Update and AgeMultipl...

Page 159: ...ntly reconnecting In general RIP SAP packets do not force ISDN to be established on the V CAS Is there an entry in the ipxDenyTable that is preventing Novell se rialization packets from being sent ove...

Page 160: ...closed ISDN Connections This section covers some of the problems you may encounter when cofig uring ISDN connections and suggests where to look first for possible so lutions The following sections gi...

Page 161: ...ncoming calls do not connect Verify the incoming call was initially received by viewing the front panel indicators Refer to Chapter 8 for the meanings of individual LEDs Check the isdnCallHistoryTable...

Page 162: ...kets are continually routed over ISDN Is there a loop in the local network or a directly connected net work Verify the network configuration or disable RIP with biboAdmRipUdpPort 0 Unable to establish...

Page 163: ...ct the output to a file bricktrace HsystemA 0 0 2 chD sysA 2 Trace the B channels of system A in the background and redirect the output to a file bricktrace HsystemA h2pi 1 0 2 chB1 sysA bricktrace Hs...

Page 164: ...l calls do not appear in the ISDN History That s right They re not supposed to show up there because they are not strictly speaking ISDN connections but internal con nections free of charge My analog...

Page 165: ...an optional port parameter ping ping c count host size The ping program can be used to test communication with another host Ping sends ICMP echo_request packets of length size to host You can limit th...

Page 166: ...ay between packets in seconds s Sends 10000 packets internal netnumber Specifies the server s Internal Network Number manda tory node Specifies the destination node xx xx xx xx xx xx traceroute tracer...

Page 167: ...ack to use for this login C Try to use compression V 42bis s service 1TR6 service code for outgoing calls a addinfo 1TR6 additional info code for outgoing calls b bits Use only bits bits for transmiss...

Page 168: ...ccess Possible values for outgocug 0 9999 b bcug Bilateral Closed user group Possible values for bcug 0 9999 x25address Either a standard X 121 address or an extended address Minipad is also useful fo...

Page 169: ...figure debug debug t show all subs subs The debug command is available from the SNMP shell The debug command can be used to selectively display debugging informa tion originating from one or more of t...

Page 170: ...interface parameter is used ifconfig dis plays the current settings for the interface Options and their respective ipRouteTable entries are as follows interface Interface name ifDescr destination dest...

Page 171: ...t B Channel only N Novell c IPX output B Channel only t ascii text output B Channel only x raw dump mode T tei set TEI filter D Channel only c cref set callref filter D Channel only r cnt receive only...

Page 172: ...e l long output default Give a detailed interpretation of each parameter includ ed in the CAPI message This option is activated by default Each message displayed is preceded by a line containing the f...

Page 173: ...nd at the same time serve as a small PBX with two POTS ports for analog end devices telephones faxes etc In this chapter we ll cover the V CAS hardware and some important tasks you may need to perform...

Page 174: ...erational modes Power Up Mode BOOTmonitor Mode Normal Operation Mode These meanings are described in the following tables Power Up Mode BOOTmonitor Mode LED State Meaning PWR On Power is being supplie...

Page 175: ...in use or awaiting keyboard input Blinking BOOTmonitor decompressing boot image LED State Meaning PWR On Power is being supplied FAX Reserved for future updates LAN On Packet being sent over the LAN i...

Page 176: ...our ISDN subscriber outlet Telephony Ports The V CAS also has two telephony ports POTS1 ports marked A B on the back plane for the connection of analogue devices e g telephones fax machines etc 1 Plai...

Page 177: ...e via TFTP BOOTmonitor After the internal self test has been successfully completed the V CAS switches into BOOTmonitor mode and displays a BOOTmonitor prompt to the screen if a terminal is connected...

Page 178: ...the new image should be transferred to the V CAS If trans ferring over TFTP you will be prompted for IP addresses for the sending receiving stations and the file name of the new image If the transfer...

Page 179: ...he V CAS The IP address for the TFTP server The image file to load retrieve Automatic boot file retrieval over TFTP The IP address settings defined here are used strictly for the BOOT monitor and are...

Page 180: ...menu item 5 After setting the local and remote IP addresses and the name of the image file to retrieve an swer yes to the question Do you want to boot automatically from the TFTP server y or n to have...

Page 181: ...or Power 100 240 VAC 60 50 Hz max 0 2 A universal power supply1 with internal fan Dimensions 151 mm 45 mm x 305 mm WHD 1 The universal power supply senses the incoming voltage and adjusts accordingly...

Page 182: ...s V CAS Pin Assignments ISDN S0 interface The pin assignment for the S0 port is as follows Figure 5 ISDN S0 BRI Interface RJ45 socket Pin Function 1 2 Not used 3 Transmit 4 Receive 5 Receive 6 Transmi...

Page 183: ...ry to connect analog telecommunications equipment telephone fax modem etc Figure 6 POTS port RJ11 socket Pin Function 1 Not used 2 Not connected 3 A 4 B 5 Not connected 6 Not used Note Please note tha...

Page 184: ...ial port is as follows Figure 7 9 Pin Serial Port Pin Function 1 DCD not connected 2 Receive 3 Transmit 4 DTR DSR redirected to pin 6 5 Ground 6 DSR DTR redirected to pin 4 7 RTS CTS redirected to pin...

Page 185: ...ve to use a crossover cable where the pins are connected as follows Figure 8 Twisted pair port 10 Base T and BNC port 10 Base 2 Pin Function 1 TD 2 TD 3 RD 4 Not used by 10BaseT 5 Not used by 10BaseT...

Page 186: ...erf ringsledningerne skal under tordenvejr hverken tilsluttes eller frakobles Ved systemets ledningsinstallation l g venligst m rke til r kkef lgen som beskrevet Pas p at ingen objekter f eks smykkek...

Page 187: ...leren op de betreffende voorschriften voor ingebruikneming De leidingen voor de gegevenstransmissie niet bij onweer aansluiten of loskoppelen Let op de juiste kabelaansluitingen in de aange geven volg...

Page 188: ...kaista j rjestyst Varmista ett pieni osia esim koruketjuja pa peripinteit tai nesteit ei p se tunkeutumaan laitteen sis osaan s hk isku oikosulku Ved h t tilanteessa esim vioittunut kotelo tai ohjauso...

Page 189: ...c blage du syst me respecter l ordre de priorit d crit dans le manuel Faire attention ce qu aucun objet par ex bi joux trombonnes ou qu aucun liquide ne tombe dans l appareil d charge lectrique coupur...

Page 190: ...gsleitungen w h rend eines Gewitters weder an noch ziehen Sie sie ab Beachten Sie beim Verkabeln des Systems die Rei henfolge wie beschrieben Achten Sie darauf da keine Gegenst nde z B Schmuckkettchen...

Page 191: ...Greek 183 User s Guide Version 1 2 Greek Safety Instructions 100 240 VAC 50 60 Hz max 0 2 A 100 240 VAC 60 50 Hz max 0 2 A...

Page 192: ...184 Greek V CAS BinTec Communications BinTec Communications BRICK Numeris...

Page 193: ...pettive indicazioni nelle istruzioni di funziona mento Non allacciate n staccate le linee di trasmissione dati durante un temporale Cablando il sistema attenetevi all ordine come descritto Assicuratev...

Page 194: ...pmerksom p at hverken gjenstander for eks smykkekjeder binders osv eller vesker kommer inn i apparatet elektrisk st t korts lutningsfare I en n dsituasjon for eks n r kabinettet eller et betjeningsele...

Page 195: ...completa separa o da rede dever desli gar se a ficha de rede Coloque as linhas de forma a que estas n o con stituam qualquer fonte de perigo perigo de trope ar nem possam sofrer quaisquer danifi ca e...

Page 196: ...ablar vid skv der Beakta den beskrivna ordningsf ljden vid ans lutning av systemets kablar Se noga till att inga f rem l smycken gem o dyl eller v tskor kommer in i maskinen D finns risk f r elektrisk...

Page 197: ...de servicio No conecte ni desconecte los cables de transmis i n de datos durante una tormenta Al instalar los cables del equipo observe la se cuencia de operaciones conforme a las instruc ciones Obse...

Page 198: ...190 Spanish V CAS...

Page 199: ...174 biboAdmSyslogTable 152 biboPPPTable 153 BNC Port 8 BNC port 177 BOOTmonitor 169 BOOTP 58 115 bricktrace 148 153 154 155 163 Bridging 136 153 Btx 159 bundelling 49 C callback 49 CAPI 3 28 port 139...

Page 200: ...ting 134 call answering 37 switch type 35 ISDN monitor 90 isdnCallHistoryTable 148 152 153 isdnDispatchTable 153 isdnlogin 148 152 159 isdnlogind 159 isdnStkTable 153 L leased line 102 licenses 28 M m...

Page 201: ...r 58 trace 58 SNMP port 68 SNMP Shell priority 161 STAC compression 4 41 sysName 29 system administration 87 system messages 96 T TAPI 28 Remote 3 server port 80 TCP IP dialup connection 104 statistic...

Page 202: ...194 Index V CAS X X 25 local X 25 address 72 routing 76 X 25 monitor 92 X 25 over ISDN 125 X 31 119 CaseA B 121 XMODEM 170...

Reviews:

No comments

Related manuals for VICAS

D-Link DSL-2750U Quick Start Manual preview
DSL-2750U
Brand: D-Link Pages: 2
Ubiquiti Bullet Quick Start Manual preview
Bullet
Brand: Ubiquiti Pages: 40
Observint NVR4 Firmware User Manual preview
NVR4
Brand: Observint Pages: 117
CyberTAN WR214C User Manual preview
WR214C
Brand: CyberTAN Pages: 67
Uniflair PCOWeb Instruction Manual preview
PCOWeb
Brand: Uniflair Pages: 24
National Instruments SC-2040 User Manual preview
SC-2040
Brand: National Instruments Pages: 56
Ubiquiti EdgeSwtch 5XP Quick Start Manual preview
EdgeSwtch 5XP
Brand: Ubiquiti Pages: 13
TP-Link VIGI NVR1004H-4P Quick Installation Manual preview
VIGI NVR1004H-4P
Brand: TP-Link Pages: 2
Ubiquiti PBE-M5-400-ISO Quick Start Manual preview
PBE-M5-400-ISO
Brand: Ubiquiti Pages: 28
Keysight Technologies U3024AH10 User'S And Service Manual preview
U3024AH10
Brand: Keysight Technologies Pages: 106
Acces PCI-COM-1S User Manual preview
PCI-COM-1S
Brand: Acces Pages: 21
Hame 434T User Manual preview
434T
Brand: Hame Pages: 37
Enterasys X-Pedition XSR-1850 Getting Started Manual preview
X-Pedition XSR-1850
Brand: Enterasys Pages: 114
Aztech na8300 Easy Start preview
na8300
Brand: Aztech Pages: 13
Avaya VSP 8284XSQ-AC Quick Install Manual preview
VSP 8284XSQ-AC
Brand: Avaya Pages: 2
Billion BiPAC 645 Quick Start Manual preview
BiPAC 645
Brand: Billion Pages: 16
Supero AOC-SIMLP-3+ User Manual preview
AOC-SIMLP-3+
Brand: Supero Pages: 66
LAWO A_madi4 User Manual preview
A_madi4
Brand: LAWO Pages: 68

Brands by name

Popular brands

Load more brands