BinTec X4000 User Manual Download Page 335

Page: 335 / 498

X4000

User’s Guide

335

Access Security

➤

Repeat these steps to define several entries for the selected NAT interface.

10.2.8

Filters (Access Lists)

IP filters (

➤➤

Access Lists

) in

X4000

are based on a concept of

➤➤

filters

rules and so-called chains. IP filters respond to incoming data packets, which

means they can allow or deny access to

X4000

for certain data.

Filters

A filter describes a certain part of the IP data traffic based on the source and/or

destination IP address,

➤➤

netmask

, protocol and source and/or destination

port. If you define a filter, you are telling

X4000

: "Watch out for all data packets

that match the following: ...".

Rule

You use a rule to tell

X4000

what to do with the data packets it has filtered out,

i.e. whether or not it should allow them to pass through. You can also define

several rules, which you arrange in the form of a chain to obtain a certain

sequence.

Chain

There are various approaches for the definition of rules and rule chains:

■

Allow all packets that are not explicitly prohibited, i.e.:

–

Deny all packets that match Filter 1.

–

Deny all packets that match Filter 2.

–

...

–

...

–

Allow the rest.

■

Allow only what is explicitly permitted, i.e.:

–

Allow all packets that match Filter 1.

–

Allow all packets that match Filter 2.

–

...

–

...

–

Deny the rest.

■

Combination of the two possibilities described above

Several rule chains can be created, either completely or partly separated

from each other. The common use of filters is possible and practicable.

Interface

You can also define a rule chain individually for each

X4000

interface.

Summary of Contents for X4000

Page 2: ...ns in accordance with the system configuration To prevent unintentional charges accumulating the operation of the product should be carefully monitored BinTec Communications AG accepts no liability fo...

Page 3: ...safety regulations BAKOM Switzerland registration had not been completed at the time this manual went to print For further information on this see the latest release notes at www bintec de In addition...

Page 4: ...4 X4000 User s Guide...

Page 5: ...Configuration Wizard Basic Unit 109 Basic Configuration of Basic Unit with Setup Tool 119 Advanced Configuration of the Basic Unit with the Setup Tool 187 Configuration of Expansion and Resource Card...

Page 6: ...6 X4000 User s Guide Table of Contents...

Page 7: ...3 BinTec Companion CD 20 1 4 Documentation from BinTec 22 1 5 System Requirements 23 1 6 Guarantee Terms 24 1 7 About this Manual 25 1 7 1 Contents 25 1 7 2 Meaning 27 1 8 Feedback 29 2 General Safety...

Page 8: ...Over ISDN 74 4 2 Logging In 76 4 3 Configuration Options 78 4 3 1 Methods of Configuration 78 4 3 2 Using the Setup Tool 79 4 4 Procedure for Initial Configuration 91 5 Man Machine Interface MMI Displ...

Page 9: ...Configuration 117 7 Basic Configuration of Basic Unit with Setup Tool 119 7 1 Basic Router Settings 120 7 1 1 Entering License s 121 7 1 2 Entering System Data 123 7 1 3 Configuring the LAN Interface...

Page 10: ...c ISDN AO DI 206 8 2 5 Layer 1 Protocol ISDN B Channel 219 8 2 6 IP Transit Network 222 8 2 7 Transfer of DNS and WINS IP Addresses to WAN Partner 225 8 2 8 Routing Information Protocol RIP 229 8 2 9...

Page 11: ...gital Modems as Remote Access Server 295 9 5 Resource Card for Encryption and Compression 306 9 5 1 Configuration with the Setup Tool 306 10 Configuration of Security Functions and Firewall 307 10 1 A...

Page 12: ...358 10 4 1 Startup Procedure 358 10 4 2 Auto Logout 358 10 4 3 Prevention of Denial of Service Attacks 358 10 5 Checklist 360 11 Configuration Management 363 11 1 Administration of Configuration File...

Page 13: ...2 3BRI WAN Interface Card for ISDN BRI Basic Rate Interface 406 13 3 2 X4E 1 2PRI WAN Interface Card for ISDN PRI Primary Rate Interface and or G 703 407 13 3 3 X4E 2FE LAN Interface Card for 10 100...

Page 14: ...14 X4000 User s Guide Table of Contents...

Page 15: ...lution for use in small and medium sized firms Figure 1 1 X4000 the workgroup access router for present and future applications X4000 can provide various applications with only a basic unit Router for...

Page 16: ...d with powerful resource cards with digital modems This makes extremely high efficiency and high port or modem density possible Ergonomic design The well proven BinTec Setup Tool for the router config...

Page 17: ...nst unauthorized access The future New technologies and developments are vital for BinTec Communications AG X4000 s flexible platform with an expansion slot and a powerful processor enable the rapid u...

Page 18: ...ease notes if required Additional material 19 inch mounting kit only with 19 inch built in unit License card with license information Single user license for RVS COM Lite Leaflet with X4000 guarantee...

Page 19: ...DN BRI to be optionally equipped with a resource card with digital modems XTR S XTR M and or a resource card for encryption and compression XTR ENC X4E 2FE LAN interface card for 10 100 Mbps to be opt...

Page 20: ...u can view and edit all SNMP tables and variables The Java Status Monitor allows you to request system information over an Internet browser Remote CAPI Client The Remote CAPI Client allows you to use...

Page 21: ...ich you can find the following for example The documentation in electronic form see chapter 1 4 page 22 A copy of the router software UNIX Tools administration Adobe s Acrobat Reader Configuration exa...

Page 22: ...on functions described here a reference for the internal SNMP table structures and the operation of the SNMP shell Extended Features Reference PDF Online reference for extra functions some of which a...

Page 23: ...00 Mbps or a serial connection Your router can therefore be used in many different operating system environments such as DOS Windows UNIX AS 400 Macintosh or Novell If you want to use the Configuratio...

Page 24: ...confirmation by return As a registered user you not only have the advantage of an extended guarantee but also receive regular information about new products if you wish Please read the enclosed leafle...

Page 25: ...an expansion card and how to connect the equipment Description of boot sequence 4 Configuration Requirements Description of access and configuration options A basis for working with the Setup Tool Pro...

Page 26: ...tions and Firewall How to configure security mechanisms using SAFERNET e g NAT Network Address Translation or filters 11 Configuration Management How to administrate configuration files and how to per...

Page 27: ...lls and explains how to avoid them Brings to your attention general and important points Explains required fundamental information Brings your attention to important safety precautions Levels of dange...

Page 28: ...e SNMP shell that you must enter as shown Used to display the Setup Tool IP address Indicates inputs in which you enter a value for the term shown in the brackets Do not enter the pointed brackets bol...

Page 29: ...don t like what we should do better what you like what you think is especially successful etc Your constructive criticism is always welcome and will help us design the documentation for BinTec produc...

Page 30: ...30 X4000 User s Guide Welcome 1...

Page 31: ...to prevent objects getting inside the equipment Foreign bodies located in the equipment during operation create a danger of electric shock and short circuits Ensure that no sharp objects can damage th...

Page 32: ...not accept liability for any damage occurring or for any adverse effects on operation The equipment guarantee is invalidated in such cases Connect the equipment as described in the manual Arrange the...

Page 33: ...nly be opened by service centers authorized by BinTec Always disconnect the power cord before opening the equipment Unauthorized opening and improper repairs can result in serious danger for the user...

Page 34: ...34 X4000 User s Guide General Safety Precautions 2...

Page 35: ...Expansion and resource cards chapter 3 2 page 53 Design of expansion cards chapter 3 2 1 page 53 Installation and replacement of expansion card chapter 3 2 2 page 55 Setting up and connecting X4000 ch...

Page 36: ...ilt in unit for 19 inch cabinet The X4000 basic unit is not fitted with an expansion card in the ex works state The expansion slot provided for the expansion card at the rear of the equipment is close...

Page 37: ...splay and Input Keys BinTec s Man Machine Interface MMI a convenient user guide with display and input keys guides the user through a number of basic functions of X4000 You will find a detailed descri...

Page 38: ...Installation 3 Display unit on 19 inch built in unit The display unit on the 19 inch built in unit can be mounted on the front or back of X4000 The instructions for changing the position are containe...

Page 39: ...nit 2 Status LEDs red and green 8 X 21 V 35 V 36 interface 3 RJ11 socket for display 9 X 21bis interface 4 Mini DIN socket console 10 Fixing screws for expansion card and dummy cover 5 Ethernet LAN 10...

Page 40: ...described below X4000 is flexible and can be installed as follows with its front panel towards the front and the connections towards the back in your 19 inch cabinet cf Installation with Front Panel T...

Page 41: ...housing for connecting or operating or for installing or removing the expansion card If the housing is opened this tears the guarantee label on X4000 which invalidates the guarantee Never open the hou...

Page 42: ...and fixing parts are required for installation in a 19 inch cabinet Figure 3 4 Exploded drawing showing the main components and mounting parts for the installation of X4000 in a 19 inch cabinet 1 1 4...

Page 43: ...ews supplied Other screws may not withstand the mechanical loads or may damage the equipment Step 2 Connect the necessary interface cables to the sockets provided cables must already be installed if y...

Page 44: ...tion Figure 3 6 X4000 installed in a 19 inch cabinet For connecting your 19 inch built in unit go to chapter 3 3 page 59 Removal from 19 inch cabinet To remove X4000 from the 19 inch cabinet e g for r...

Page 45: ...pened this tears the guarantee label on X4000 which invalidates the guarantee Never open the housing Danger Live components are exposed when the equipment is open There is a risk of electric shock Nev...

Page 46: ...the narrow side of the front panel marked with a grip slightly towards the display see Figure 3 7 page 46 This releases the plastic cover which can be removed from the front The blue Power LED with th...

Page 47: ...de 47 Basic Unit 3 Figure 3 8 Removing the display Step 3 Turn the display unit by approx 40 to the left and remove the display unit to the front away from the metal housing bayonet connection see Fig...

Page 48: ...the X4000 connections to the front Figure 3 9 Exploded drawing showing the main components and mounting parts for the installation of X4000 in a 19 inch cabinet 1 5 4 4 2 2 3 6 1 1 Mounting bracket 4...

Page 49: ...holes Step 4 Using the two brackets and screws supplied with the equipment screw the brackets to the rear fixing holes provided on the side of X4000 see Figure 3 10 page 49 Always use the screws suppl...

Page 50: ...ware Description and Installation 3 Figure 3 11 Mounting the display on a fixing bracket Step 5 Mount the display unit on one of the two fixing brackets Make sure that the display unit engages properl...

Page 51: ...eassembled unit with the two brackets screwed to it into the cabinet and screw the preassembled unit to the longitudinal sections of the cabinet these screws are not supplied with X4000 but are includ...

Page 52: ...tion of installation Figure 3 13 X4000 installed with connections at the front For connecting your 19 inch built in unit go to chapter 3 3 page 59 Removal from 19 inch cabinet To remove X4000 from the...

Page 53: ...ith digital modems XTR S XTR M and or a resource card for encryption and compression XTR ENC X4E 2FE LAN interface card for 10 100 Mbps can be optionally equipped with a resource card for encryption a...

Page 54: ...sion Card X4E 2 3BRI Figure 3 14 Rear view of a BRI expansion card PRI G 703 Expansion Card X4E 1 2PRI Figure 3 15 Rear view of a PRI G 703 expansion card 1 ISDN BRI port 2 LEDs 3 Screws 1 ISDN PRI G...

Page 55: ...By connecting a loopback plug to the OUT socket it is also possible to prevent the provider s exchange disconnecting the line if the expansion card fails LAN Expansion Card X4E 2FE Figure 3 16 Rear v...

Page 56: ...t connect X4000 to the power supply until the equipment is completely closed and you have rechecked the installation Danger Do not touch any parts inside the expansion slot when installing or replacin...

Page 57: ...cover or withdraw the existing expansion card from the slot Keep the two screws of the dummy cover as these are used for fixing the expansion card Mount the resource card s on the expansion card if a...

Page 58: ...viously unscrewed from the dummy cover or the expansion card to be replaced see Figure 3 17 page 57 Removal To remove an expansion card carry out the installation steps described above in the reverse...

Page 59: ...ins unit 2 Status LEDs red and green 8 X 21 V 35 V 36 interface 3 RJ11 socket for display 9 X 21bis interface 4 Mini DIN socket console 10 Fixing screws for expansion card and dummy cover 5 Ethernet L...

Page 60: ...functions of X4000 Connecting X4000 to WAN If you want to use the ISDN BRI interface in your applications scenario Connect the ISDN BRI interface no 6 see Figure 3 18 page 59 of X4000 to your ISDN con...

Page 61: ...it Connect X4000 to a mains socket or to the power supply of the 19 inch cabinet using the IEC AC power cord supplied with the equipment X4000 selftest X4000 carries out a selftest see chapter 3 5 pag...

Page 62: ...ower Hardware basic settings Make the necessary hardware basic settings via the keyboard and display a detailed description is contained in chapter 5 page 93 Select interactive language in the MMI Ent...

Page 63: ...LEDs on the back of X4000 One red and one green LED on the back of the X4000 basic unit see Figure 3 2 page 39 indicate the general status of each of the individual interfaces If the green LED flashe...

Page 64: ...nd green to each port The LEDs indicate the following status messages Table 3 2 LED status messages of a BRI expansion card PRI G 703 Expansion Card X4E 1 2PRI The PRI G 703 expansion card has two LED...

Page 65: ...light up if Ethernet collisions occur and the green LEDs indicate activity on the Ethernet Table 3 4 Status messages of LEDs on a LAN expansion card LED lights LED flashes Meaning Port is not activat...

Page 66: ...peration mode Functions The BOOTmonitor makes the following functions available which you select by entering the relevant digit for more detailed information refer to Software Reference 1 Boot system...

Page 67: ...Boot Sequence 3 If you change the baud rate the preset value is 9600 baud make sure the terminal program used also uses this baud rate If this is not the case you will not be able to establish a seria...

Page 68: ...68 X4000 User s Guide Hardware Description and Installation 3...

Page 69: ...following tasks How to access X4000 chapter 4 1 page 70 How to log in to X4000 chapter 4 2 page 76 Which methods of configuration are available to you chapter 4 3 page 78 How the Setup Tool is constru...

Page 70: ...various ways of doing this Over the Man Machine Interface MMI Over the serial interface Over your LAN Over an ISDN connection Figure 4 1 Possible connections to X4000 The various connection methods ar...

Page 71: ...iguration on X4000 before you have entered an IP address and netmask To connect X4000 to your computer over the serial interface connect the serial interface on the basic unit of X4000 to the serial i...

Page 72: ...le of a command line for using tip tip 9600 dev ttyb If the login prompt does not appear after pressing Return several times the connection to X4000 has not been set up successfully Check the COM1 or...

Page 73: ...E Tools Running telnet Now establish a connection to X4000 with telnet Windows Click the Windows Start button and then Run Type telnet IP address of X4000 You can reach X4000 from the LAN over the tel...

Page 74: ...gure 4 2 page 74 This is also possible even if X4000 has not been initially configured i e is still in the ex works state Connection is then obtained by means of a BinTec router that is already config...

Page 75: ...LAN in the usual way In the SNMP shell type in isdnlogin number of the ISDN connection of X4000 e g isdnlogin 1234 The login prompt will appear in the window You are now in the SNMP shell of X4000 Co...

Page 76: ...r name admin For security reasons passwords are not normally shown on the Setup Tool screen in plain language but only as asterisks The user names appear in plain language The security concept of X400...

Page 77: ...s successful Closing the SNMP shell To leave the SNMP shell after completing the configuration enter exit and press Return Caution To prevent unauthorized access to X4000 you should change the passwor...

Page 78: ...t keys You can do this quickly and easily without having to log in The MMI cannot be used to set up a comprehensive configuration You should use the Setup Tool or Configuration Wizard for this purpose...

Page 79: ...MIB tables and MIB variables You can access these directly via the SNMP shell Configuration Manager and other SNMP managers The Configuration Manager is a Windows based SNMP manager provided by BinTec...

Page 80: ...tem name of X4000 is also displayed This is especially helpful if you are using several BinTec routers with different system names The configuration window is where the actual entries are made and the...

Page 81: ...X4000 User s Guide 81 Configuration Options 4 The help line tells you how to move around in the menu currently displayed or which entries you can change...

Page 82: ...list of possible entries functions with VT 100 emulation when using a terminal program Esc Esc Esc twice in succession To return to the previous menu Cancels any changes made Space To toggle the delet...

Page 83: ...ly configured Schaltfl che Meaning ADD To create or add an item to a list A submenu appears for entering the desired settings CANCEL To discard all changes made in the current menu DELETE To delete al...

Page 84: ...tically jumps to the first match it finds in the list The characters entered for the search are displayed in the help line at the bottom of the menu Do not enter invisible characters such as Tabulator...

Page 85: ...racters in the password To change a password proceed as follows Select the password field and enter the new password The field changes to the change mode and the message Change Password appears in the...

Page 86: ...ing CANCEL or Esc Esc the password change is not saved If the two passwords you entered were not the same the field is reset to the old password and Password doesn t match Try again is displayed in th...

Page 87: ...ius Server IP adr pool LAN DHCP IP adr pool WAN PPP Token Auth Firewall OSPF Loc Serv Acc Control WAN Partner PPP Advanced Settings Compuserve Login WAN Numbers Advanced Settings Bridge IP Advanced Se...

Page 88: ...asic system settings of X4000 e g system name and passwords FAST ETHERNET This menu is for configuring the LAN interface of X4000 Here you enter data such as the IP address and netmask of X4000 ISDN S...

Page 89: ...different hosts in the connected networks You can thus prevent your X4000 from establishing unintended connections to the ISDN IP BANDWIDTH ON DEMAND BOD is for defining filters for the Bandwidth on...

Page 90: ...this to assign user names and passwords to users of the X4000 s CAPI applications This makes sure that only authorized users can receive incoming calls and make outgoing calls via CAPI CONFIGURATION...

Page 91: ...cord must be connected set the desired display language enter the IP address and netmask Connect X4000 as explained in chapter 3 3 page 59 Create a basic configuration using either the Configuration...

Page 92: ...92 X4000 User s Guide Configuration Requirements 4...

Page 93: ...the following information An overview of the MMI facilities chapter 5 1 page 94 A description of how to use the display and input keys chapter 5 2 page 96 A diagram of the MMI menu architecture which...

Page 94: ...settings in each menu without having to search for each menu individually You can still open a certain menu if you wish Logo After switching on X4000 first performs a few selftests and then shows the...

Page 95: ...X4000 User s Guide 95 Overview 5 You can change from Monitoring Mode to Configuration Mode and vice versa in the main menu Display Settings see chapter 5 3 1 page 100...

Page 96: ...h and The arrow keys enable you to move up and down in the menu system You always move on one level only e g changing from one main menu to another Selecting a menu with OK To select a menu item press...

Page 97: ...eys of the MMI are equipped with LEDs see Table 5 1 page 97 to provide simple convenient operation Keys are only illuminated if they can be used Pressing keys that are not illuminated has no effect Ta...

Page 98: ...vigation bars example The vertical navigation bar at the left edge of the display is for the main menus The horizontal navigation bar at the bottom edge indicates in which menu of the second level of...

Page 99: ...r 5 3 3 page 103 Information about X4000 Basic Unit see chapter 5 3 4 page 104 Information about X4000 Expansion Card see chapter 5 3 5 page 105 Monitoring see chapter 5 3 6 page 106 l l l l l l Displ...

Page 100: ...Deutsch English OK l l l l l l OK OK OK OK OK OK Min aus 1 2 3 4 5 0 1 2 3 0 2 4 6 8 10 l Display Settings Language Contrast MMI Mode Change PIN for Configuration Mode The language has been changed to...

Page 101: ...Mode For changing from Configuration Mode to Monitoring Mode and vice versa To change to Configuration Mode you need the set PIN Changing the PIN for Configuration Mode Here you can change the PIN Per...

Page 102: ...git with and and confirming each by pressing OK The IP address is saved after confirming the last digit Netmask Enter the netmask of the network in which X4000 is located This is done by pressing and...

Page 103: ...his is done by selecting the day month and year in succession with and and confirming each by pressing OK System Time For setting the current time in X4000 This is done by selecting the hours and minu...

Page 104: ...navigation bars OK C OK C OK C OK C OK OK OK OK OK OK OK OK OK OK OK OK OK OK C OK C OK C OK C l l l l l l l l System Name Serial Number Mask Key OK OK l Interfaces onboard Interfaces onboard OK Infor...

Page 105: ...System Name Displays the system name of X4000 see chapter 7 1 2 page 123 Logic Version Displays the version of X4000 s firmware logic Hardware Revision Displays the hardware version of X4000 Software...

Page 106: ...measured on the expansion card A PRI expansion card is equipped with two temperature sensors and a BRI or LAN expansion card with one sensor Temp1 The current maximum permissible temperature is 60 C...

Page 107: ...screen as default screen for the MMI proceed as follows Use the input keys to indicate the desired screen Keep the C key pressed for three seconds Confirm with OK The selected screen is shown and used...

Page 108: ...Proceed as follows to restart X4000 using the input keys Keep the OK key and C key pressed for three seconds Press OK The restart is executed after 5 seconds Saving configuration Configuration saved A...

Page 109: ...veral possible ways of configuring your X4000 Access to your X4000 in this case is via the serial interface Please note that you can only use the Configuration Wizard to configure your ISDN BRI interf...

Page 110: ...you are installing a new network simply use the example values given Internet access For access to the Internet via your Internet Service Provider ISP you will need access information that should be p...

Page 111: ...for partner s name must be identical your entry for partner s name and your partner s entry for local name must also be identical TCP IP protocol testing and installation Make sure the TCP IP protoco...

Page 112: ...k setup exe Click BRICKware The setup program starts Specify the directory in which BRICKware should be installed The DIME Tools which are part of BRICKware for Windows contain mainly assistants for c...

Page 113: ...values At the end the configuration is transferred to the router and saved on the PC You can carry out the configuration in either Quick Mode or Expert Mode If you are unfamiliar with networking techn...

Page 114: ...ion Wizard If you have configured X4000 as a DHCP server with the Configuration Wizard the PCs must be assigned an IP address at the end of the configuration This happens automatically under Windows N...

Page 115: ...ata communications network with BinTec s Remote CAPI RVS Com Lite will provide you with the necessary COM port driver RVS COM Lite installation To install RVS COM Lite click RVS Com Lite in the setup...

Page 116: ...de Fast Configuration with the Configuration Wizard Basic Unit 6 Click the DNS Configuration tab and enter the IP address of X4000 under DNS Server Search Order Click Add and then OK Follow the instru...

Page 117: ...r BinTec s WWW site offers you the latest news updates and documentation Caution Incorrect configuration of the devices in your LAN may result in unintended connections and increased charges Monitor y...

Page 118: ...118 X4000 User s Guide Fast Configuration with the Configuration Wizard Basic Unit 6...

Page 119: ...ration Wizard see chapter 6 page 109 Where do we go from here chapter 7 1 6 page 136 This chapter tells you what to do next after you have completed the basic router settings Configuring the WAN inter...

Page 120: ...age 121 Entering system data e g passwords chapter 7 1 2 page 123 Configuring the LAN interface chapter 7 1 3 page 126 Configuring X4000 as a DHCP server optional chapter 7 1 4 page 129 Setting NetBIO...

Page 121: ...e Licenses are all subsystems available to X4000 as well as their current state builtin always available valid activated not_valid not activated The license entries are shown under Serialnumber Mask K...

Page 122: ...The subsystems activated by your license data are now listed The license entered is displayed with the state ok Subsystems Meaning IP IP routing OSPF Open Shortest Path First only with extra license...

Page 123: ...X4000 Setup Tool BinTec Communications AG SYSTEM Change System Parameters MyRouter System Name MyRouter Local PPP ID default BigBoss Location 3rd floor Contact admin BigBoss com Syslog Output on Seria...

Page 124: ...in with the user name admin Local PPP ID This entry is necessary for identification of X4000 if PPP authentication e g PAP or CHAP is carried out that is not specific to a partner see chapter 8 1 3 pa...

Page 125: ...ntains the settings necessary for monitoring X4000 with the Windows Activity Monitor Tool see chapter 10 1 6 page 322 and BRICKware for Windows The menu SYSTEM EXTERNAL SYSTEM LOGGING contains the set...

Page 126: ...e network If your X4000 is connected to a LAN that consists of two subnets you should enter a Second Local IP Number and a Second Local Netmask for it for the second subnet This is explained in the fo...

Page 127: ...netmask in X4000 with the MMI before the basic configuration Even if you have you should still check the entries in the following menu X4000 Setup Tool BinTec Communications AG LAN Configure LAN Inter...

Page 128: ...l IP Number is located Encapsulation Defines the kind of header added to the IP packets that run over this LAN interface Possible values Ethernet II conforms to IEEE 802 3 Ethernet SNAP You can genera...

Page 129: ...229 IP Accounting Proxy ARP see chapter 8 2 10 page 234 and Back Route Verification see chapter 10 2 10 page 352 How to use the LAN interface for ADSL connections over the T DSL connection of Deutsche...

Page 130: ...r WINS and standard gateway Go to IP IP ADDRESS POOL LAN DHCP ADD X4000 Setup Tool BinTec Communications AG IP DHCP ADD Add Range of IP Addresses MyRouter Interface en1 IP Address 192 168 1 1 Number o...

Page 131: ...dress pool including the first IP address IP Address Lease Time Minutes Specifies the length of time an address from the pool can be assigned to a host After the Lease Time Minutes expires the address...

Page 132: ...vice Provider ISP e g in order to forward WINS requests from PCs in your network This means that X4000 asks your ISP which host name can be assigned an IP address These connections are unnecessary bec...

Page 133: ...FILTER and the entries have been saved Now define a second filter as follows Go to IP ACCESS LISTS FILTER ADD Enter Description all Select Protocol any Select Source Port any X4000 Setup Tool BinTec C...

Page 134: ...rule Select Action deny M Select Filter wrong_dns 1 Press SAVE You have returned to IP ACCESS LISTS RULES and the entries have been saved Now define a second rule as follows Go to IP ACCESS LISTS RUL...

Page 135: ...IP ACCESS LISTS with EXIT X4000 Setup Tool BinTec Communications AG IP ACCESS RULE Configure IP Access Rules MyRouter Abbreviations RI Rule Index M Action if filter matches FI Filter Index M Action if...

Page 136: ...igure the WAN partners chapter 7 3 page 159 Configuration examples ISP T Online Internet Access over T Online page 183 ISP Compuserve Internet Access over Compuserve page 184 Configure the interfaces...

Page 137: ...using PPP over Ethernet see chapter 7 2 3 page 155 If you use a LAN expansion card see chapter 9 3 2 page 288 Installing an expansion card enables other WAN interfaces to be used on X4000 if applicab...

Page 138: ...up Tool BinTec Communications AG WAN WAN Interface MyRouter Result of Autoconfiguration Euro ISDN point to multipoint ISDN Switch Type autodetect on bootup D Channel dialup B Channel 1 dialup B Channe...

Page 139: ...r ISDN provider The following parameters are possible autodetect on bootup automatic D channel detection default setting Euro ISDN point to multipoint Euro ISDN for point to multipoint Euro ISDN point...

Page 140: ...esult of Autoconfiguration Once the setting has been found it is displayed e g Euro ISDN point to multipoint D Channel D channel configuration The selection can only be changed if ISDN Switch Type lea...

Page 141: ...wn local network to access hosts within your LAN This subsystem also enables outgoing data calls to be set up to WAN partners outside your local network If the ISDN protocol is not detected it can be...

Page 142: ...X4000 to receive and send faxes To be able to use CAPI applications e g RVS COM Lite from the hosts in the LAN with the X4000 basic unit you must also carry out the Remote CAPI configuration on the in...

Page 143: ...Login service To avoid this be sure to make the necessary entries here As soon as you have made one or more entries in this menu the matching incoming calls are distributed to the corresponding servic...

Page 144: ...dow opens X4000 Setup Tool BinTec Communications AG WAN INCOMING Incoming Call Answering MyRouter Item Number Mode Username CAPI 1 1 EAZ 1 Mapping 11 right to left CAPI 1 1 EAZ 1 Mapping 11 right to l...

Page 145: ...em entered above can be reached Mode Mode in which X4000 compares the digits of Number with the called party number of the incoming call right to left default value left to right DDI Always select if...

Page 146: ...odem Profile 1 which were selected in the menu MODEM PROFILE CONFIGURATION PROFILE 1 PPP DOVB Data transmission Over Voice Bearer useful in the USA for example where voice connections are sometimes ch...

Page 147: ...n CM 1BRI ISDN S0 INCOMING CALL ANSWERING ADD under Number If you use a communication application on your PC that is based on Remote CAPI 1 1 current version Remote CAPI 2 0 X4000 must translate the M...

Page 148: ...have assigned to all phone numbers the services to be reached under these numbers This concludes the configuration of Incoming Call Answering X4000 now distributes the incoming calls to the internal s...

Page 149: ...T 1 can be used as interface type X 21bis V 28 The change from DCE to DTE Mode and vice versa for this port can only be made by using a DCE or DTE cable Table 7 10 Functionality of serial ports Making...

Page 150: ...menu is available for configuring the X 21 V 35 V 36 and X 21bis interface of X4000 X4000 Setup Tool BinTec Communications AG SLOT 3 UNIT 0 SERIAL Configure Serial Interface MyRouter Interface Type X...

Page 151: ...erface Connector Defines the pin assignment of the port see chapter 13 2 4 page 393 This setting only affects the pin assignment for the first serial port CM SERIAL SERIAL UNIT 0 a suitable DCE or DTE...

Page 152: ...al if Connector dte You can usually accept this setting external X4000 receives the clock signal irrespective of the setting selected under Connector internal X4000 sends the clock signal irrespective...

Page 153: ...rk such as Datex P dte The address field has the value for DTE dce The address field has the value for DCE Interface Leads Defines whether X4000 checks the status of the interface lines The same value...

Page 154: ...ds e g disabled Press SAVE You have returned to the main menu and the entries have been saved Advanced configuration If you use a leased line you can implement a backup solution using the Bandwidth on...

Page 155: ...special features of your ADSL connection that need to be observed The following restrictions and security risks exist as the X4000 connection to T DSL is established only over one Ethernet interface I...

Page 156: ...necessary configuration steps The LAN interface of X4000 and the ADSL modem NTBBA of Deutsche Telekom AG are connected to your hub as described in chapter 3 3 page 59 NTBA ISDN NTBA TAE ADSL T ISDN T...

Page 157: ...page 194 Select PPPoE Ethernet Interface en1 Press SAVE Go to WAN PARTNER ADD see Table 7 13 page 163 Enter your Partner Name e g t online Select Encapsulation PPP Go to WAN PARTNER ADD PPP see Table...

Page 158: ...transit network Select Partner Interface e g t online Enter Metric e g 1 Press SAVE Go to IP NETWORK ADDRESS TRANSLATION see Activating Network Address Translation NAT page 181 Select the PPPoE interf...

Page 159: ...have to configure the LAN of your branch office as a WAN partner If you have set up one or more leased lines on configuring the WAN interface s of X4000 a WAN partner for each leased line is already c...

Page 160: ...rovider To enter a WAN partner proceed as follows Go to WAN PARTNER This is where all WAN partners currently configured are listed with the corresponding Partner name Protocol and State State can have...

Page 161: ...make an entry in the list proceed as follows Use ADD to add a new entry or select an existing entry Confirm with Return to change the entry Another menu window opens X4000 Setup Tool BinTec Communica...

Page 162: ...r Encapsulation Encapsulation Defines how the data packets are packed for transfer to the WAN partner Possible values PPP Multi Protocol LAPB Framing Multi Protocol HDLC Framing Async PPP over X 75 As...

Page 163: ...values MPPE 40 MPPE version 1 with 40 bit key MPPE 56 MPPE version 1 with 56 bit key MPPE V2 40 MPPE version 2 with 40 bit key MPPE V2 56 MPPE version 2 with 56 bit key DES 56 DES with 56 bit key Blow...

Page 164: ...e g none if applicable Go to WAN PARTNER ADD WAN NUMBERS Entering extension numbers Protocols Encapsulation Compression STAC MS STAC IP IPX X X PPP X X X Async PPP over X 75 X X X Async PPP over X 75...

Page 165: ...s the following selection options Table 7 16 Direction X4000 Setup Tool BinTec Communications AG WAN ADD WANNUMBERS ADD Add or Change WANNumbers BigBoss MyRouter Number 0911987654321 Direction outgoin...

Page 166: ...ssary for external line access this 0 must be considered when entering the access number Wildcard Meaning Example Incoming calls Outgoing calls Number X4000 accepts incoming calls e g with Outgoing ca...

Page 167: ...AN partner before it accepts the call The router needs the necessary data for this which you should enter here First establish the type of authentication process that should be performed then enter a...

Page 168: ...PP ID LittleIndian Local PPP ID BigBoss PPP Password Secret Keepalives off Link Quality Monitoring off OK CANCEL Use Space to select Field Meaning Authentication Authentication protocol Partner PPP ID...

Page 169: ...s Meaning PAP Only run PAP PPP Password Authentication Protocol the password is transferred uncoded CHAP Only run CHAP PPP Challenge Handshake Authentication Protocol as per RFC 1994 the password is t...

Page 170: ...old you specify how much time should pass after the last exchange of data before the connection is cleared You enter a percentage based on the last charging unit The value of the idle timer can theref...

Page 171: ...000 always clears the connection based on static short hold and never gives dynamic short hold a chance to disconnect In this case enter a value for Static Short Hold sec that is a little more than th...

Page 172: ...ED Advanced Settings BigBoss MyRouter Callback no Static Short Hold sec 20 Idle for Dynamic Short Hold 0 Delay after Connection Failure sec 300 Layer 1 Protocol ISDN 64 kbps Channel Bundling no Extend...

Page 173: ...ns e g telnet specify a high value e g 80 90 to avoid clearing connections during short phases without data exchange For Internet connections e g WWW http etc specify a medium to high value e g 50 80...

Page 174: ...d Field Meaning IP Transit Network Defines whether X4000 sets up a transit network to the WAN partner Local IP Address IP address of X4000 You do not normally need to make an entry here unless you wis...

Page 175: ...the following settings in WAN PARTNER ADD IP IP address is assigned dynamically Select IP Transit Network dynamic client IP address is assigned statically Select IP Transit Network yes Local ISDN IP A...

Page 176: ...Return to change the entry Another menu window opens X4000 Setup Tool BinTec Communications AG IP ROUTING IP Routing MyRouter The flags are U Up D Dormant B Blocked G Gateway Route I Interface Route S...

Page 177: ...0 Setup Tool BinTec Communications AG IP ROUTING ADD IP Routing MyRouter Route Type Network route Network WAN without transit network Destination IP Address 10 1 1 0 Netmask 255 255 255 0 Partner Inte...

Page 178: ...le Network Defines the type of connection LAN WAN see Table 7 23 page 179 Destination IP Address IP address of the destination host or LAN Netmask Netmask of the partner LAN only possible for Route Ty...

Page 179: ...N that can be reached via a WAN partner with transit network Refuse X4000 discards data packets using this route and sends the sender a message saying the destination of the packet is unreachable Igno...

Page 180: ...of several LANs with different network IP addresses and netmasks subnets If you do not enter the access to such a network as a default route e g because you have already set up your Internet access a...

Page 181: ...Here you can activate Network Address Translation NAT for your WAN partner This conceals your whole network to the outside world with just one IP address You should certainly do this for your connect...

Page 182: ...ave configured a WAN partner In order to permit certain external connections to hosts in the LAN in spite of activated NAT you must define the sessions allowed exactly How to do this is described in c...

Page 183: ...DD PPP Authentication CHAP PAP Local PPP ID user account T Online number joint user account e g 123456789012081512345678 0001 PPP Password e g mycat Keepalives off Link Quality Monitoring off In WAN P...

Page 184: ...efault route Network WAN without transit network Partner Interface T Online Metric e g 1 In IP NETWORK ADDRESS TRANSLATION T_Online Return Network Address Translation on Internet Access over Compuserv...

Page 185: ...Host CIS User ID your user name Password In WAN PARTNER ADD IP IP Transit Network dynamic client In WAN PARTNER ADD IP ADVANCED SETTINGS RIP Send none RIP Receive none Van Jacobson Header Compression...

Page 186: ...tion data as a file in the flash memory The SNMP shell of X4000 appears with the login prompt All the changes you have made with the Setup Tool are saved The next time you start your X4000 the configu...

Page 187: ...The following configuration steps are described General WAN Settings chapter 8 1 page 188 Settings Specific to WAN Partners chapter 8 2 page 198 Basic IP Settings chapter 8 3 page 242 IPX Settings cha...

Page 188: ...hese IP addresses can be assigned to dial in WAN partners for the duration of the connection Configuration is made in IP IP ADDRESS POOL WAN PPP WAN PARTNER EDIT IP WAN PARTNER EDIT IP ADVANCED SETTIN...

Page 189: ...que number for identifying the address pool A pool may comprise a number of address ranges IP Address First IP address in the address pool Number of Consecutive Addresses Total number of IP addresses...

Page 190: ...ice This ensures that only users entered with a user name and password can use X4000 CAPI services Example This means for example that an incoming fax for the user Winnetou is only passed to Winnetou...

Page 191: ...PI service is to be allowed or denied maximum 16 characters Password Password with which the user Name has to identify to gain access to the CAPI service CAPI Determines whether access to the CAPI ser...

Page 192: ...eached Mode Mode in which X4000 compares the digits of Number with the called party number of the incoming call right to left default mode left to right DDI always select this mode if X4000 is connect...

Page 193: ...1 current version Remote CAPI 2 0 X4000 must translate the MSNs Number multidigit of the incoming call to EAZs single digit CAPI 1 1 can only detect single digit numbers This is why the CAPI entry und...

Page 194: ...CLID This is the case for example if the call is made over an analog line the caller dials into your router via a modem if the caller suppresses the CLID facility In both cases X4000 receives no calli...

Page 195: ...CHAP MS CHAP only CHAP PAP MS CHAP first CHAP if denied then the protocol required by the caller MS CHAP V2 MS CHAP version 2 only none no PPP authentication Radius Server Authentication Settings for...

Page 196: ...196 X4000 User s Guide Advanced Configuration of the Basic Unit with the Setup Tool 8 Select Link Quality Monitoring e g no Press SAVE...

Page 197: ...utoconfiguration has not detected TEI you can set specify manually Specify TEI Value The value for X 31 TEI assigned by the exchange This value is detected automatically by ISDN autoconfiguration but...

Page 198: ...s On Dynamic ISDN AO DI chapter 8 2 4 page 206 Layer 1 Protocol ISDN B Channel chapter 8 2 5 page 219 IP Transit Network chapter 8 2 6 page 222 Transfer of DNS and WINS Server IP Addresses to WAN Part...

Page 199: ...tion is established Dynamic Dynamic channel bundling means that X4000 connects other ISDN B channels to increase the throughput for connections to the WAN partner if this is required e g for large amo...

Page 200: ...Confirm with OK Press SAVE Refer to Bandwidth on Demand BOD function see chapter 8 2 3 page 201 Field Meaning Channel Bundling Defines whether and which type of channel bundling is to be used for con...

Page 201: ...f the relevant interface to the connection partner is 90 or more of the maximum permissible throughput for at least 5 seconds The current throughput is not used as a basis for switching out a B channe...

Page 202: ...PARTNER EDIT WAN NUMBERS ADD menu description in chapter 7 3 page 159 WAN PARTNER EDIT PPP menu description in chapter 7 3 page 159 The menu WAN PARTNER EDIT ADVANCED SETTINGS EXTENDED INTERFACE SETT...

Page 203: ...easured values in Line Utilization Sample sec Line Utilization Sample sec Time interval in seconds Throughput measurements in Line Utilization Sample sec are included in the calculation of the line ut...

Page 204: ...R EDIT ADVANCED SETTINGS EXTENDED INTERFACE SETTINGS OPTIONAL Maximum Number of Dialup Channels Maximum permitted number of channels that are opened for dialup connections The value is only displayed...

Page 205: ...0 BAP Active and Passive Mode Is currently not supported by X4000 BAP Client Active Mode Is currently not supported by X4000 Backup For leased lines only Backup connection is activated if the leased l...

Page 206: ...s SAVE Go to WAN PARTNER EDIT PPP Select Authentication Enter Partner PPP ID Local PPP ID and PPP Password if applicable Confirm with OK Press SAVE 8 2 4 Always On Dynamic ISDN AO DI Always On Dynamic...

Page 207: ...of distance in B Channel Mode time dependent connection charges only for bandwidth intensive applications How Does AO DI Work AO DI is implemented in X4000 via a special PPP interface As soon as the i...

Page 208: ...whether data transfer is to take place exclusively in the D channel How is AO DI Configured The following steps are necessary for configuring X4000 for AO DI Carry out X 31 configuration i e reserve t...

Page 209: ...t Switch Press SAVE You have returned to the CM 1BRI ISDN S0 menu Press SAVE You have returned to the main menu The main menu now contains the X 25 menu which you need for the following configuration...

Page 210: ...menu are relevant for this configuration step Table 8 14 X 25 ROUTING ADD Select Source Link local Select Destination Link e g x31d2 0 1 Field Meaning L3 Packet Size Permissible size of data packets f...

Page 211: ...o WAN PARTNER ADD Enter Partner Name e g AODI partner Select Encapsulation PPP Proceed as follows to make the PPP settings Go to WAN PARTNER ADD PPP Select Authentication e g CHAP Leave out Partner PP...

Page 212: ...ANCED SETTINGS EXTENDED INTERFACE SETTINGS OPTIONAL Field Meaning Layer 1 Protocol Defines which Layer 1 Protocol X4000 is to use There is only one meaningful setting for AO DI AO DI Channel Bundling...

Page 213: ...e interval over which the mean of the measured throughput data is taken and weighted with Line Utilization Weighting Gear Up Threshold Utilization threshold at which another B channel is added for a c...

Page 214: ...Enter the Number e g 0911123456 Select Direction outgoing Press SAVE Possible values Meaning BAP Active Mode The Bandwidth Allocation Protocol BAP knows three different options for negotiating a bandw...

Page 215: ...rs are defined that determine which IP packets and thus applications are to influence the available bandwidth If several filters are defined they can be interlinked using a rule chain Proceed as follo...

Page 216: ...NDWIDTH ON DEMAND BOD RULES FOR BOD ADD The Action field which indicates how a filtered out data packet is to be handled contains the following selection options Table 8 19 Action Field Meaning Direct...

Page 217: ...his interface e g mail_smtp_out Press SAVE Leave IP BANDWIDTH ON DEMAND BOD CONFIGURE INTERFACES FOR BOD EDIT with Exit Leave IP BANDWIDTH ON DEMAND BOD CONFIGURE INTERFACES FOR BOD with Exit Leave IP...

Page 218: ...as follows to define a rule for BOD Go to IP BANDWIDTH ON DEMAND BOD RULES FOR BOD ADD Select Action invoke M Select Direction outgoing Select Number of Channels 1 Select Filter hostxy_http_out 1 Pres...

Page 219: ...Go to IP BANDWIDTH ON DEMAND BOD RULES FOR BOD ADD Select Action deny Select Direction incoming Select Number of Channels 1 Select Filter mail_pop3_in 2 Press SAVE Leave IP BANDWIDTH ON DEMAND BOD RU...

Page 220: ...es which Layer 1 Protocol X4000 is to use This setting applies only to outgoing calls to the WAN partner and to incoming calls from the WAN partner if they have been identified from the calling party...

Page 221: ...FIGURATION PROFILE 1 DOVB Data transmission Over Voice Bearer useful in the USA for example where voice connections are sometimes cheaper than data connections V 110 1200 38400 For GSM connections wit...

Page 222: ...ly have this information available You use an additional ISDN IP address each for X4000 and the WAN partner You thus set up a virtual IP network during the connection a so called transit network You d...

Page 223: ...8 1 LAN LAN link with transit network BI AN C A BR IC K XM ISDN Partner IP 200 200 200 1 Partner IP 200 200 200 2 LAN IP 192 168 1 254 LAN IP 10 1 1 1 ISDN IP 200 200 200 1 ISDN IP 200 200 200 2 X4000...

Page 224: ...ke any entry here Exception You set up several WAN partners use a transit network for one or more WAN partners and no transit network for the other WAN partners Then enter the Local IP Address LAN IP...

Page 225: ...of DNS and WINS IP Addresses to WAN Partner IP address A Domain Name Server DNS or Windows Internet Name Server WINS is used for converting host names and NetBIOS names into IP addresses Possible val...

Page 226: ...the LAN at a low level and optimizes performance in the LAN as requests to frequently used addresses or addresses already resolved are answered by X4000 itself How to configure the DNS Proxy function...

Page 227: ...ED SETTINGS Field Meaning Dynamic Name Server Negotiation In the event of dynamic name server negotiation defines whether X4000 receives IP addresses for Primary Domain Name Server Secondary Domain Na...

Page 228: ...S Press SAVE Possible values Meaning off X4000 does not send or answer requests for WINS or DNS IP addresses yes The response is linked to the mode for issuing receiving an IP address setting in WAN P...

Page 229: ...ket to ensure that it arrives at its destination as quickly and cheaply as possible with the fewest possible intermediate stations The entries in the routing table can be defined statically or the rou...

Page 230: ...active routers and store it but do not pass on their own routing entries X4000 can do both WAN partner If you negotiate to receive and or send RIP packets from to your WAN partner X4000 can exchange r...

Page 231: ...S Select RIP Send Select RIP Receive Confirm with OK Press SAVE Press SAVE Go to CM 100BT FAST ETHERNET ADVANCED SETTINGS Select RIP Send Select RIP Receive Press SAVE Possible values Meaning none Not...

Page 232: ...ta compression for Windows clients Check Mode 4 in RFC 1974 Select this if you dial into a Windows Remote Access Server Van Jacobson Header Compression VJHC Reduces the size of TCP IP packets Van Jaco...

Page 233: ...R EDIT Select Compression Press SAVE VJHC Proceed as follows to set VJHC Go to WAN PARTNER EDIT IP ADVANCED SETTINGS Activate Van Jacobson Header Compression on Confirm with OK Press SAVE Press SAVE P...

Page 234: ...ose in the network What is the hardware address of host x If Proxy ARP is activated in X4000 and the desired host can be reached over a defined WAN connection X4000 answers the ARP request with its ow...

Page 235: ...P requests Possible values Meaning off Disables Proxy ARP via the interface to the WAN partner on up or dormant X4000 answers an ARP request only if the status of the connection to the WAN partner is...

Page 236: ...If you have connected two or more LANs over a dialup connection e g between the LAN of the head office and the LAN of a branch office as in Figure 8 3 page 237 a central server is frequently located i...

Page 237: ...e can be reached If none of the hosts to be checked answers a corresponding request after three consecutive attempts connection setup by the central server is prevented by X4000 deactivating the inter...

Page 238: ...t expires before X4000 indicates that a PC can be reached again depends on the monitoring interval set Interval In some countries e g Switzerland costs may still occur for these useless dial in attemp...

Page 239: ...000 Interval Defines the time interval in s to be used for reachability of hosts default value 300 The smallest time interval is used within a group That is all the hosts in a group are checked by X40...

Page 240: ...1 10 FirstIfIndex Defines the first interface of an interface range in X4000 for which the action defined under DownAction is to be executed Possible values 10001 15000 default value 10001 Interfaces...

Page 241: ...wn Enter FirstIfIndex 10001 Type in Range 4999 Press SAVE These settings ensure that X4000 checks the reachability of hosts 192 168 1 10 and 192 168 1 20 at intervals of 300 s If neither of the two ho...

Page 242: ...246 Port Numbers chapter 8 3 3 page 265 BOOTP Relay Agent chapter 8 3 4 page 266 The necessary configuration steps are explained below 8 3 1 System Time System time You need the system time to obtain...

Page 243: ...u press SAVE Note If you select ISDN as Time Protocol you must set the Time Offset to 0 If you change Time Offset sec turn back the time there should be no data flow Time Update Interval sec Time inte...

Page 244: ...e first ISDN connection has been ended X4000 derives the system time from the ISDN Time server Proceed as follows to derive the system time from a time server Go to IP STATIC SETTINGS Select Time Prot...

Page 245: ...e server If you enter the IP address of your PC for Time Server make sure the time server of DIME Tools is active on your PC every time you start X4000 If your computer has no fixed IP address but is...

Page 246: ...stores the relevant IP addresses for host names in the form of DNS records and resolves the names if a relevant request is received i e the name server sends a DNS record with the IP address associat...

Page 247: ...PCs in the LAN do not have any static DNS entries but are assigned these dynamically by X4000 as DHCP server Forwarding entries enable X4000 to decide which DNS is to be used for the resolution of cer...

Page 248: ...IP addresses in X4000 If you save frequently needed IP addresses in this way X4000 can answer relevant DNS requests itself and the connection to an external name server is not necessary This speeds u...

Page 249: ...s 127 0 0 1 can be entered as global name server If necessary X4000 can send or receive the addresses of name servers to and from WAN partners Default interface In Default Interface you can also selec...

Page 250: ...olutions Strategy for Name Resolution in X4000 A DNS request is handled by X4000 as follows 1 Can the request be answered directly from the static or dynamic cache IP address or negative answer If yes...

Page 251: ...rst WAN partner which is configured so that addresses of DNS can be sent provided this has not previously been attempted If name server negotiation is successful these are entered as global name serve...

Page 252: ...ning Domain Name Defines X4000 s Domain Name Primary Domain Name Server IP address of X4000 s first global Domain Name Server DNS Secondary Domain Name Server IP address of another global Domain Name...

Page 253: ...e deleted static entries are not deleted Negative Cache Enables negative dynamic entries in the cache Possible values enabled default value Names that could not be resolved are saved in the cache as n...

Page 254: ...nt as name server address global The addresses of the global name servers entered in X4000 are sent IPCP Assignment Defines which name server addresses are sent by X4000 to a WAN partner for dynamic n...

Page 255: ...main after confirming with SAVE Response Defines the type of static entry Possible values positive default value A DNS request for Name is answered with a DNS record which contains the associated Addr...

Page 256: ...ds only at the start of Name e g bintec de If an incomplete name is entered without a dot this is completed with Default Domain after confirming with SAVE Interface Defines the WAN partner to which a...

Page 257: ...he TTL Indicates how many seconds the dynamic entry remains in the cache The entry is deleted on expiry of TTL When a positive dynamic entry is saved in the cache the value of the TTL field Time To Li...

Page 258: ...IP DNS DYNAMIC CACHE STATIC A dynamic entry can be converted to a static entry by tagging the entry with the Space bar and confirming with STATIC The relevant entry then disappears from IP DNS DYNAMI...

Page 259: ...time If Maximum Number of DNS Records is reduced by the user dynamic entries are also deleted if necessary Static entries are not deleted Maximum Number of DNS Records cannot be set lower than the cu...

Page 260: ...nvalid DNS packets received DNS Requests Displays the number of correct DNS requests received Cache Hits Displays the number of requests that could be answered with static or dynamic entries from the...

Page 261: ...n step Table 8 46 WAN PARTNER EDIT IP ADVANCED SETTINGS Field Meaning Dynamic Name Server Negotiation In the event of dynamic name server negotiation defines whether X4000 receives IP addresses for Pr...

Page 262: ...Domain Name Server if applicable Possible values Meaning off X4000 does not send or answer requests for name server addresses yes The response is linked to the mode for issuing receiving an IP addres...

Page 263: ...s for the static and dynamic entries Go to IP DNS ADVANCED SETTINGS Enter Maximum Number of DNS Records Enter Maximum TTL for Pos Cache Entries Enter Maximum TTL for Neg Cache Entries Press SAVE How t...

Page 264: ...rtner or from the WAN partner to X4000 as applicable Go to WAN PARTNER EDIT IP ADVANCED SETTINGS Select Dynamic Name Server Negotiation Confirm with OK Press SAVE Monitoring and statistics How to obta...

Page 265: ...plication This addresses the relevant X4000 application and the incoming data can be processed You can define important port numbers in IP STATIC SETTINGS Table 8 48 IP STATIC SETTINGS As the settings...

Page 266: ...ss and other configuration information on booting The BOOTP client sends a BOOTP Request a BOOTP server answers the request with a BOOTP Response and supplies the client with the necessary information...

Page 267: ...INGS To do Proceed as follows Go to IP STATIC SETTINGS Enter BOOTP Relay Server Press SAVE Field Meaning BOOTP Relay Server IP address of the BOOTP server If a WAN connection is needed for the connect...

Page 268: ...sed mainly in Novell networks Novell clients and Novell servers can use IPX to communicate via LAN WAN connections The configuration steps necessary for IPX connections are explained below General Set...

Page 269: ...dress Change this value only if it is already used somewhere else in the network Internal Network Number of a Remote IPX router has the same value Enable IPX Spoofing Enables and disables NCP session...

Page 270: ...8 4 2 Configuring the LAN Interface The next step is to configure X4000 s LAN interface to the IPX network The LAN interface is the physical interface to the local network In the next menu you tell t...

Page 271: ...iguring WAN Partners If the connection to one or more WAN partners is implemented with the IPX protocol you must define a number of IPX specific settings for the WAN partner Field Meaning Local IPX Ne...

Page 272: ...ng Protocol packets are sent by X4000 to the WAN partner In IPX networks RIP and SAP packets are sent as broadcasts to connected networks to provide information about current routes and services The d...

Page 273: ...es Periodic update Remarks off never no no All routes and services must be entered statically triggered piggyback on changes only if link active only for changes yes yes This is the default setting wh...

Page 274: ...274 X4000 User s Guide Advanced Configuration of the Basic Unit with the Setup Tool 8 Confirm with OK Press SAVE...

Page 275: ...X4000 User s Guide 275 Bridging 8 8 5 Bridging X4000 supports the bridging function The description of the configuration of X4000 as a bridge can be found in the Software Reference...

Page 276: ...ant extra licenses are activated by adding the information received with the license in the Setup Tool menu LICENSES see chapter 7 1 1 page 121 Extra licenses are currently obtainable for the followin...

Page 277: ...ource cards please follow the installation guide supplied with the cards and chapter 3 2 page 53 This chapter is broken down as follows WAN Interface Card for ISDN BRI Basic Rate Interface chapter 9 1...

Page 278: ...n and compression see chapter 9 5 page 306 9 1 1 Configuration with the Setup Tool The additional interfaces are shown in the Setup Tool main menu under Module as follows The interface s are configure...

Page 279: ...erface first tell X4000 how it is to respond to incoming calls over this interface these settings are not necessary for a leased line Go to X4E 3BRI ISDN S0 UNIT 0 INCOMING CALL ANSWERING This menu li...

Page 280: ...ns that when a data call is received for the Called Party Number 0911 123 30 it is put through to the PPP routing service Repeat these steps until you have assigned to all phone numbers the services t...

Page 281: ...th 30 B channels and 1 D channel which you can use for both dialup and leased lines over ISDN G 703 With an X4000 G 703 interface you can install a G 703 leased line to a connection partner This is al...

Page 282: ...03 port X4E 2PRI ISDN S2M UNIT 1 for the second ISDN PRI G 703 port X4000 Setup Tool BinTec Communications AG MyRouter Licenses System LAN CM 100BT Fast Ethernet Module X4E 2PRI ISDN S2M WAN CM 1BRI I...

Page 283: ...bootup automatic D channel detection default setting Euro ISDN S2M user profile TE Euro ISDN S2M network profile NT leased line B1 B30 leased line 1 hyperchannel leased line chann E1 31 diff endpoint...

Page 284: ...CRC4 Select Clock Mode e g external Clock Mode Defines which connection partner sends the clock signal for synchronization between transmitter and receiver If the clock signal is not generated by the...

Page 285: ...n to change the entry Select the Item e g PPP routing Enter the Number e g 091112330 Select the Mode e g right to left Select the Bearer e g data Press SAVE You have returned to menu X4E 2PRI ISDN S2M...

Page 286: ...Tool 9 WAN partner To enable X4000 to make connections to networks or hosts outside your LAN you must configure the partners you want to connect to as WAN partners on your X4000 This applies to outgo...

Page 287: ...p Tool The additional interfaces are shown in the Setup Tool main menu under Module as follows You can configure the interfaces in the following menus X4E 100BT FAST ETHERNET UNIT 0 for the first addi...

Page 288: ...ion If you wish to use the IPX protocol you will find an explanation of how to configure the LAN interface for IPX in chapter 8 4 page 268 Information about bridging can be found in the Software Refer...

Page 289: ...X4000 s basic unit The ADSL modem is connected to one of the LAN interfaces of the expansion card Figure 9 1 Example scenario IP address configuration Proceed as follows to define the IP address of X4...

Page 290: ...e default value Go to PPP The following field is relevant Table 9 2 PPP Proceed as follows to define the necessary PPP settings Select your PPPoE Ethernet Interface e g en2 Press SAVE WAN partner sett...

Page 291: ...ield Meaning Partner Name Enter a name for uniquely identifying the PPP over Ethernet partner Encapsulation Encapsulation defines how the data packets are packed for transfer to the WAN partner PPP ov...

Page 292: ...D Comprises the following elements Kennung T Online Nr Mitbenutzer Nr t online de Kennung the 12 digit user account here 000460004256 T Online Nummer telephone number here 091169386 Mitbenutzer Nr 4 d...

Page 293: ...PARTNER ADD IP Select IP Transit Network dynamic client Press SAVE Press SAVE Leave WAN PARTNER with EXIT Creating a default route Go to IP ROUTING ADD Field Meaning Layer 1 Protocol Here you can defi...

Page 294: ...ons to the Internet appear only under a single dynamically assigned IP address Go to IP NETWORK ADDRESS TRANSLATION Select the WAN interface on which you want to activate NAT e g t online and confirm...

Page 295: ...tions it can be used as Remote Access Server for ISDN and GSM connections and for analog connections dial in fax gateway please observe future software releases and release notes 9 4 1 X4000 with Digi...

Page 296: ...lly assumes the settings of the appropriate modem profile on connection setup A modem profile defines the modem settings that are required for a connection to the opposite terminal e g automatic baud...

Page 297: ...arty dialing in has not been assigned a modem profile or the calling party cannot be authenticated the modem automatically uses modem profile 1 Modem profile 1 is therefore used as default setting and...

Page 298: ...11 123 48 for dialing in according to which analog modem type they use Dial in users who use an ISDN connection use 0911 123 30 Dial in users who dial in with a mobile phone over a GSM connection use...

Page 299: ...ODEM PROFILE CONFIGURATION 2 Define other modem profiles 2 8 as necessary in MODEM PROFILE CONFIGURATION 3 Use the settings for Incoming Call Answering to control the use of the modem profiles accordi...

Page 300: ...iption of the modem profile Modulation Defines the modem standard to be used The selected modem standard must be supported by the analog modem of the opposite terminal V 90 and lower are supported by...

Page 301: ...rates that can be negotiated with the opposite terminal are smaller than the value set here Scalable from 300 default value to 56000 Max Receive Bps Defines the maximum baud rate of incoming data ups...

Page 302: ...V 42bis Compression Defines whether V 42bis compression can be negotiated for a connection Possible values auto Negotiation is allowed off V 42bis compression is not used MNP5 Compression Defines whet...

Page 303: ...If applicable select Max Transmit Bps e g 33600 Possible values Meaning none Error correction is not used required First LAPM and then MNP4 is tried for error correction If both fail the modem clears...

Page 304: ...the first interface of an ISDN BRI expansion card Add a new entry with ADD Select Item e g PPP Modem Profile 2 Enter Number e g 091112342 Select Mode e g right to left Select the Bearer e g any Press...

Page 305: ...a general example to show how you could meaningfully use the modem profiles in X4000 Table 9 11 Standard set of modem profiles Profile Modulation Error Correction Automode Min Bps Max Receive Bps Max...

Page 306: ...sion provides hardware support for STAC compression and symmetrical encryption processes DES 3DES CAST Twofish Blowfish This enables the available bandwidth to be fully utilized and costs cut without...

Page 307: ...features can only be configured by making entries directly in the MIB tables and not by using the Setup Tool The relevant tables and variables are given in the respective section This chapter is brok...

Page 308: ...r chapter 10 1 5 page 321 Activity Monitor chapter 10 1 6 page 322 10 1 1 Syslog Messages All major events on X4000 s various subsystems ISDN PPP CAPI etc are logged in the form of syslog messages sys...

Page 309: ...ools can record the data and distribute to various files depending on the contents see BRICKware for Windows Settings for syslog messages are made in SYSTEM SYSTEM EXTERNAL SYSTEM LOGGING CM 100BT FAS...

Page 310: ...rfaces Possible values yes no Message Level for Syslog Table Specifies the priority of the syslog messages to be recorded internally Possible values emerg emergency messages highest priority alert ale...

Page 311: ...ty of the syslog messages to be sent to Log Host Corresponds to Message Level for Syslog Table in SYSTEM Facility Syslog facility at Log Host Only required if the Log Host is a Unix computer Type Mess...

Page 312: ...ivate IP accounting for a LAN partner X4000 then generates and records accounting messages for the selected LAN partner from TCP UDP and ICMP sessions Go to CM 100BT FAST ETHERNET ADVANCED SETTINGS Ac...

Page 313: ...Interface statistics comparative display of several interfaces TCP IP statistics Syslog messages see chapter 10 1 1 page 308 ISDN connections Proceed as follows to display ISDN connections Go to MONIT...

Page 314: ...ase the tagged ISDN connection Select c to display the list of existing ISDN connections again Credits Based Accounting System Proceed as follows to display the state of the Credits Based Accounting S...

Page 315: ...r isdnlogin Credits MyRouter Total Maximum reached Time till end of measure interval sec 7794 86400 91 Number of Incoming Connections 0 2 0 Number of Outgoing Connections 0 20 0 Time of Incoming Conne...

Page 316: ...Based Accounting System ISDN charges X4000 s Credits Based Accounting System enables you to control the costs billed for ISDN charges for data connections This means you can keep the effects of possib...

Page 317: ...in good time before your telephone bill gets too big Syslog messages Syslog messages are generated if the number of connections reaches 90 or 100 of the limit and if a connection is prevented by the...

Page 318: ...re Time sec If you activate this setting with on you can enter the desired value in the line below Maximum Number of Outgoing Connections Number of outgoing connections allowed during the Measure Time...

Page 319: ...desired value Activate Maximum Time for Outgoing Connections sec if applicable and enter the desired value Activate Maximum Number of Current Incoming Connections if applicable and enter the desired v...

Page 320: ...age of the BinTec router with the system name System Name is displayed with the IP address entered The HTTP status page contains three tables System description In addition to the version of the syste...

Page 321: ...with all the X4000 MIB tables Clicking a table name lists the variables contained in the table 10 1 5 Java Status Monitor The Java status monitor offers you another facility for displaying informatio...

Page 322: ...E tool A permanent overview of the utilization of X4000 s interfaces is possible How does it work A Status Demon collects information on X4000 and transfers it in the form of UDP packets to the broadc...

Page 323: ...every 5 seconds Client UDP Port Port number for Activity Monitor default value 2107 registered by IANA Internet Assigned Numbers Authority Type Type of information sent in the UDP packets to the Windo...

Page 324: ...User s Guide Configuration of Security Functions and Firewall 10 To do Proceed as follows Go to SYSTEM EXTERNAL ACTIVITY MONITOR Enter Client IP Address Client UDP Port Type and Update Interval sec P...

Page 325: ...ss Translation NAT chapter 10 2 7 page 331 Filters chapter 10 2 8 page 335 Local Filters chapter 10 2 9 page 348 Back Route Verification chapter 10 2 10 page 352 TAF chapter 10 2 11 page 353 Extended...

Page 326: ...possible that another number e g 5678 is displayed at the called party s terminal instead of the calling party s own extension number e g 1234 X4000 can detect this from the Caution All BinTec routers...

Page 327: ...g MIB tables or variables only incoming calls with the corresponding screening indicator are accepted For incoming PPP connections Screening variable in biboDialTable For incoming ISDN Login connectio...

Page 328: ...number or PAP CHAP MS CHAP authentication Identification is made in the first case without call acceptance as the calling party number is transferred over the ISDN D channel and in the second case wi...

Page 329: ...ients over data transmission networks yes delayed CLID only X4000 calls back after approx four seconds if requested to by the WAN partner yes PPP negotiation callback optional Corresponds to the value...

Page 330: ...NER EDIT WAN NUMBERS EDIT ADVANCED SETTINGS Select Closed User Group specify Enter the CUG index Confirm with OK 10 2 6 Access to Remote CAPI The special features offered by BinTec routers include imp...

Page 331: ...owed if explicitly enabled Figure 10 1 Forward NAT Permanent monitoring of the connections via the router with indication of the source and destination addresses and ports See your syslog messages for...

Page 332: ...ESS TRANSLATION Return Field Meaning Name Interface name Nat Indicates if NAT is activated for the relevant interface Possible values off NAT not activated on Forward NAT activated reverse Reverse NAT...

Page 333: ...g Service Service allowed for connections to the host defined under Destination Possible values ftp telnet smtp domain udp domain tcp http nntp user defined If you do not use any of the predefined ser...

Page 334: ...ost in the LAN Go to IP NETWORK ADDRESS TRANSLATION EDIT Add an entry with ADD or select an existing entry and confirm with Return Select Service Select Protocol if applicable Enter Port 1 for any if...

Page 335: ...00 what to do with the data packets it has filtered out i e whether or not it should allow them to pass through You can also define several rules which you arrange in the form of a chain to obtain a c...

Page 336: ...various interfaces Configuration is made in IP ACCESS LISTS FILTER IP ACCESS LISTS RULES IP ACCESS LISTS RULES REORG IP ACCESS LISTS INTERFACES Rule 1 Next Rule 2 Rule 2 Next Rule 3 Rule 4 Next Rule 2...

Page 337: ...nly if Protocol icmp Possible values any echo reply destination unreachable source quench redirect echo time exceeded param problem timestamp timestamp reply address mask address mask reply See RFC 79...

Page 338: ...Destination Address Destination IP address of the data packets that matches the filter Destination Mask Destination Netmask The combination of Destination Address and Destination Mask describes a ran...

Page 339: ...Port specify range Permits the entry of a range of port numbers under Specify Port priv 0 1023 Port numbers 0 1023 server 5000 32767 Port numbers 5000 32767 clients 1 1024 0 4999 Port numbers 1024 49...

Page 340: ...tination port numbers to Service Protocol Port number File Transfer Protocol FTP data TCP 20 File Transfer Protocol FTP commands TCP 21 Telnet TCP 23 Simple Mail Transfer Protocol SMTP TCP 25 Domain N...

Page 341: ...e g 21 The FTP server then answers with IP packets that use 21 as source port and xyz as destination port Figure 10 3 Example FTP connection BI AN C A BR IC K XM ISDN 1 2 192 168 1 1 192 168 1 2 192...

Page 342: ...es Insert behind Rule Appears only if a new rule is defined Defines the rule behind which the new rule is inserted You start a new independent chain with none Action Defines the action to be taken for...

Page 343: ...ess Security 10 You can change the order of rules in a chain in the submenu IP ACCESS LISTS RULES REORG Table 10 18 IP ACCESS LISTS RULES REORG Field Meaning Index of Rule that gets Index 1 Defines th...

Page 344: ...of chain reorganization In IP ACCESS LISTS INTERFACES you can define which interface starts with which rule and if and how the sender of a packet is to be informed if the packet is denied by X4000 due...

Page 345: ...terface Deny Silent Defines whether the sender of a packet is to be informed of its denial due to a filter violation Possible values no Packet is denied sender is informed by a corresponding ICMP erro...

Page 346: ...peat these steps until you have defined all the desired filters Ensure that you don t lock yourself out when configuring the filters For example if you link the first filter to a rule that executes Ac...

Page 347: ...Press SAVE Repeat these steps until you have defined all the desired rules Leave IP ACCESS LISTS RULES with EXIT Interface Go to IP ACCESS LISTS INTERFACES Select an interface and confirm with Return...

Page 348: ...ters exists in X4000 incoming requests for the corresponding local services of X4000 are only allowed if 1 the source address is 127 0 0 1 loopback address or 2 no entry exists for the corresponding s...

Page 349: ...d if one or more entries for this service exist in the list but none of these matches the request Local filters therefore provide an additional tool that is different to handle than global filters and...

Page 350: ...0 service to which access is to be controlled with this entry Possible values snmp udp rip udp bootps udp dns udp telnet tcp trace tcp snmp tcp capi tcp tapi tcp rfc1086 tcp http tcp nbns udp statmon...

Page 351: ...ed to the service selected under Service If a request has a different source address the next entry is checked If the value of Mask is 0 0 0 0 or 255 255 255 255 the entry is a host entry i e the IP a...

Page 352: ...00 function If Back Route Verification is activated at a WAN partner only those data packets are transported via the interface to the WAN partner that would be routed over the same interface on the ba...

Page 353: ...n address X4000 can also include the protocol source and destination port type of service TOS and the status of the destination interface in the decision If there are entries in the Extended Routing T...

Page 354: ...mented as BinTec proprietary solutions MPPE V2 The MPPE Version 2 encryption protocol the successor to MPPE has been developed by Microsoft and also uses a 40 bit or 56 bit key These are generated on...

Page 355: ...Encryption Defines the type of encryption Possible values MPPE 40 MPPE version 1 with 40 bit key MPPE 56 MPPE version 1 with 56 bit key MPPE V2 40 MPPE version 2 with 40 bit key MPPE V2 56 MPPE versi...

Page 356: ...is partner Select Encryption e g DES 56 Field Meaning Encryption Key Negotiation Defines whether a key for the connection to the WAN partner is generated automatically or defined statically Possible v...

Page 357: ...firm with OK Press SAVE 10 3 2 VPN with extra license X4000 can set up a VPN Virtual Private Network using the PPTP Point to Point Tunneling Protocol This provides safe encrypted transmission of data...

Page 358: ...2 Auto Logout Connections to X4000 via telnet isdnlogin or serial interface are disconnected automatically if no entry is made on the keyboard for a period of 15 minutes This makes it difficult to re...

Page 359: ...pass the router You can prevent some DoS attacks that operate with fake source IP addresses by using the Back Route Verification function see chapter 10 2 10 page 352 You can counter DoS attacks that...

Page 360: ...accesses with a password If applicable have you activated Network Address Translation NAT for the connection to the Internet Service Provider ISP See chapter 10 2 7 page 331 Have you limited the IP d...

Page 361: ...t computers have access to the Remote CAPI interface what applications are used on them and whether the connections used with these applications are desired Do you use BinTec s user concept chapter 7...

Page 362: ...362 X4000 User s Guide Configuration of Security Functions and Firewall 10...

Page 363: ...ur configuration files and on updating the X4000 software The following areas are covered Administration of Configuration Files Where are the configuration files What is flash and memory How do I hand...

Page 364: ...hapter 7 4 page 186 This file is then saved in the flash as a boot configuration file under the name boot When X4000 is started again this very file the configuration file with the name boot is loaded...

Page 365: ...ce to select Field Meaning Operation Operation you want to perform TFTP Server IP Address The IP address or host name if the host name can be resolved of the TFTP server which you want to transfer a c...

Page 366: ...FLASH TFTP Transfer configuration file Name in Flash from flash to TFTP host with the IP address TFTP Server IP Address TFTP File Name is then overwritten or recreated on the TFTP host with the conten...

Page 367: ...og message Possible values Meaning If an error should occur while running get TFTP FLASH and the operation is aborted the file to be overwritten in the flash is deleted So if you transfer a boot file...

Page 368: ...t operation displays running When the operation has been executed successfully the operation is displayed under Type of last operation State of last operation assumes the value done If you want to use...

Page 369: ...st operation check your settings Have you entered an incorrect IP address under TFTP Server IP Address Does the name of the configuration file consist of more than 8 characters and the extension of mo...

Page 370: ...ake the settings of brick cf take immediate effect in X4000 proceed as follows Flash memory Reselect Operation load FLASH MEMORY Select Name in Flash e g boot Select START OPERATION and press Return A...

Page 371: ...us ways to update software This chapter will show you how to update with the help of the update command in the SNMP shell which is described step for step The alternatives to this method can be found...

Page 372: ...ur PC The directory is normally C BRICK for Windows PCs and tftpboot for Unix workstations You can use this name Press SAVE The boot image is saved on your PC Activate a TFTP server on your PC For a W...

Page 373: ...iguration is overwritten X4000 requires a connected block of working memory that is somewhat larger than the new software image If insufficient memory is available on X4000 X4000 offers an incremental...

Page 374: ...374 X4000 User s Guide Configuration Management 11...

Page 375: ...n in the SNMP shell Check the syslog messages created by X4000 see chapter 10 1 1 page 308 It is wise to forward syslog messages to an external host and save them to be able to evaluate the outputs fo...

Page 376: ...an quickly obtain the version of the current software release or the current operating status of the interfaces The MMI is easy to use and the display messages are intuitive This is explained in detai...

Page 377: ...erpret data packets sent or received over ISDN D and B channels and over the LAN An explanation of the syntax can be found in chapter 14 1 page 412 Examples Enter trace ip next to display data packets...

Page 378: ...DIME Tracer is a part of DIME Tools A detailed explanation can be found in BRICKware for Windows bricktrace Unix The bricktrace program enables data sent over X4000 s ISDN channels to be inspected at...

Page 379: ...unconfigured ex works state Connect your router over the serial interface to X4000 as explained in chapter 3 3 page 59 Switch X4000 off and then switch it on again You see various selftests and then...

Page 380: ...ngly If this doesn t succeed proceed as described under I have forgotten my password page 379 12 2 2 ISDN Connections Here you will find possible causes of errors in ISDN connections Your telephone bi...

Page 381: ...it is accessed from a client port to destination port 53 Do not try to resolve NetBIOS names with DNS Use debug all or trace to check if an application on a PC in the LAN is trying to resolve names t...

Page 382: ...Check in the MIB table isdnStkTable if the MIB variable Status has the value loaded Make sure your own number is correctly entered in CALLS ADD This also applies to outgoing calls Incoming calls canno...

Page 383: ...X4000 s LAN Check if a router between them filters out the SAP packets Check with isdnlogin if an ISDN connection can be made between client and server Check if you have made the correct entries in Lo...

Page 384: ...vated enable IPX spoofing and enable SPX spoofing with yes Check if any RCONSOLE is running with a constantly changing screen e g MONITOR IPXCON TCPCON screensaver etc Check if NetBIOS over IPX is use...

Page 385: ...User s Guide 385 Typical Errors and Procedure 12 If the disconnect for the client is lost SPX connections could remain until timeout These connections would then be displayed in ipxAdmSpxConns until t...

Page 386: ...386 X4000 User s Guide Troubleshooting 12...

Page 387: ...p unit 19 inch built in unit 2 6 kg 2 1 kg Transport weight incl documentation cabling packaging Desktop unit 19 inch built in unit 5 1 kg 4 6 kg Ambient requirements Storage temperature Operating tem...

Page 388: ...ket of the mains unit to the power supply using the power cord supplied with the equipment Table 13 2 Technical data for mains unit Electrical ratings Mains unit Wide range mains unit without fan Main...

Page 389: ...Ethernet LAN interface WAN interfaces Serial mini DIN 10 100 Base T auto sensing RJ45 socket ISDN interface BRI S T RJ45 socket 2 x X 21 V 35 V 36 X 21bis 26 pole mini Delta ribbon socket up to 2048 k...

Page 390: ...erial Console Interface Pin assignment of serial console interface of basic unit 8 pole mini DIN socket Figure 13 1 Serial console interface with pin assignment 1 For test purposes 5 RXD 2 For test pu...

Page 391: ...t LAN interface RJ45 socket of basic unit with pin assignment The LAN cable used must have the following technical features 100 Base T cable CAT5 STP Shielded Twisted Pair 8 pole RJ45 plug fully shiel...

Page 392: ...Guide Technical Data 13 13 2 3 ISDN BRI Interface Pin assignment of ISDN BRI interface RJ45 socket Figure 13 3 ISDN BRI interface RJ45 socket of basic unit with pin assignment 1 NC 5 R 2 NC 6 T 3 T 7...

Page 393: ...erface type X 21bis V 28 Changing this port from DCE to DTE Mode and vice versa is only possible using a DCE or DTE cable The cables to be used are not supplied with X4000 but can be ordered from your...

Page 394: ...r X 21bis page 399 This is followed by a description of the two serial X4000 ports used for implementing the stated interfaces in X4000 26 Pole Mini Delta Ribbon Socket for X 21 V 35 and V 36 page 400...

Page 395: ...socket DCE have the following pin assignment Table 13 4 Pin assignment of DB 15 plug for X 21 ISO 4903 Variable Connector DTE Signal direction Pin no Variable Connector DCE ITU T Signal Signal ITU T 1...

Page 396: ...Connector DTE Signal direction Pin no Variable Connector DCE ITU T Signal Signal ITU T 101 ChGND A ChGND 101 102 SigGND B SigGND 102 103 TDA P RDA 104 103 TDB S RDB 104 104 RDB R TDB 103 104 RDA T TD...

Page 397: ...X4000 User s Guide 397 Features of Basic Unit 13 DB 37 Plug for V 36 A DB 37 plug to ISO 4902 is normally used for a V 36 interface Figure 13 6 DB 37 plug 1 5 10 15 19 20 25 30 37...

Page 398: ...al Signal ITU T 101 ChGND 1 ChGND 101 102 SigGND 19 SigGND 102 103 TDB 22 RDB 104 103 TDA 4 RDA 104 104 RDB 24 TDB 103 104 RDA 6 TDA 103 105 RTSB 25 RTSB 106 105 RTSA 7 CTSA 106 106 CTSB 27 RTSB 105 1...

Page 399: ...ent Table 13 7 Pin assignment of DB 25 plug for X 21bis ISO 2110 DTE cable Signal direction Pin no DCE cable ITU T Signal Signal ITU T 101 ChGND 1 ChGND 101 103 TD 2 RD 104 104 RD 3 TD 103 105 RTS 4 C...

Page 400: ...V 35 and V 36 The serial X 21 V 35 V 36 interface of X4000 is designed as a 26 pole mini Delta ribbon socket The interface can be used for X 21 V 35 or V 36 depending on the setting under Interface T...

Page 401: ...in M34 V 36 pin DB 37 101 1 1 PG A ChGND 1 ChGND 102 2 8 SG B SigGND 19 SigGND 103 3 9 T S TDB 22 TDB 103 4 2 T P TDA 4 TDA 104 5 11 R T RDB 24 RDB 104 6 4 R R RDA 6 RDA 105 7 10 C 25 RTSB 105 8 3 C C...

Page 402: ...34 V 36 pin DB 37 101 1 1 PG A ChGND 1 ChGND 102 2 8 SG B SigGND 19 SigGND 104 3 9 R S RDB 22 RDB 104 4 2 R P RDA 4 RDA 103 5 11 T T TDB 24 TDB 103 6 4 T R TDA 6 TDA 106 7 10 I 25 RTSB 106 8 3 I C CTS...

Page 403: ...atures of Basic Unit 13 20 Pole Mini Delta Ribbon Socket for X 21bis The serial X 21bis interface of X4000 is a 20 pole mini Delta ribbon socket Figure 13 9 20 pole mini Delta ribbon socket second ser...

Page 404: ...ed for DTE Mode and a DCE cable for DCE Mode Table 13 10 Pin assignment of 26 pole mini Delta ribbon socket DTE DCE ITU T Signal Signal direction Pin no X 21bis DB 25 101 ChGND 1 1 103 TD 2 2 104 RD 3...

Page 405: ...t 13 13 2 5 Display Interface The RJ11 socket for the display plug has the following pin assignment Figure 13 10 RJ11 socket for display plug with pin assignment 1 VDD 3 3V Supply Voltage 3 SDA I2 C S...

Page 406: ...J45 sockets have the following pin assignment Figure 13 11 ISDN BRI interface RJ45 socket of BRI expansion card Feature Description Interfaces 3 x ISDN interfaces BRI S T Operating temperature 0 C to...

Page 407: ...ce RJ45 socket of PRI G 703 expansion card Feature Description Interfaces 2 x interfaces for ISDN PRI G 703 with 2 sockets each IN and OUT If X4000 is switched off the IN socket is looped to the OUT s...

Page 408: ...XTR S M L Resource Cards with Digital Modems The resource cards with digital modems are available in the following versions for X4E 3BRI and X4E 2PRI XTR S with 8 digital modems Feature Description In...

Page 409: ...n The ISDN PRI or G 703 expansion card is equipped as standard with hardware support for encryption and compression The ISDN BRI expansion card and the LAN expansion card can be optionally equipped wi...

Page 410: ...s it is not always possible to guarantee delivery of resource cards for encryption and compression If you are using an expansion card with resource card s in the X4000 built in unit BinTec Communicati...

Page 411: ...411 14 14 Important Commands This chapter describes the following commands SNMP shell commands telnet ping trace isdnlogin debug ifconfig ifstat netstat date t nslookup BRICKtools for Unix commands br...

Page 412: ...eful for establishing connections to non telnet ports e g uucp or smtp host IP address or name of host port port number ping ping i f precount d msec c count target size Is used to test communication...

Page 413: ...the packets to be sent trace For WAN interfaces trace h23aFADtpiNxX T tei c cref channel unit slot next ifcname For LAN interfaces trace h23iNxX1 d destination MAC filter o s source MAC filter 0 0 sl...

Page 414: ...e 416 d destination MAC filter set destination MAC address filter LAN only s source MAC filter set source MAC address filter LAN only o combine two or more d filters or s filters with a logical OR ope...

Page 415: ...ng message all displays debugging information for all subsystems acct displays debugging information for the accounting subsystem system displays debugging information for all subsystems except the ac...

Page 416: ...mally the information is only displayed up to the twelfth character u only displays information on interfaces that are in the up status r displays the filters defined for the interface ifcname only di...

Page 417: ...eck how a name or an IP address is resolved by X4000 or another name server a displays all the data received n prevents the resolution of the indicated name server address without this option an attem...

Page 418: ...418 X4000 User s Guide Important Commands 14 The update command can be found in chapter 11 2 page 371 Further SNMP commands can be found in the Software Reference Entering usually provides syntax help...

Page 419: ...put a asynchronous HDLC B channel only e ETS300075 Euro File Transfer output F fax B channel only p PPP B channel only i IP output B channel only N Novell IPX output B channel only t output in ASCII t...

Page 420: ...at the end of the information line l long output default A detailed interpretation is given for each parameter in the CAPI message Each CAPI message is preceded by a line containing the following info...

Page 421: ...r Sie Buchsen oder Erweiterungskarten von X4000 ber hren Ber hren Sie die Erweiterungskarten grunds tzlich nur an den R ndern und fassen Sie nicht auf Bauteile oder Leiterbahnen Halten Sie den nicht b...

Page 422: ...n frei zug nglich ist Zur vollst ndigen Netztrennung mu der Netzstecker gezogen werden Beachten Sie beim Verkabeln die Reihenfolge wie im Handbuch beschrieben Verwenden Sie nur Kabel die den Spezifika...

Page 423: ...f llen z B besch digtes Geh use oder Bedienelement Eindringen von Fl ssigkeit oder Fremdk rpern sofort die Stromversorgung und verst ndigen Sie den Service Reinigung und Reparatur Das Ger t darf nur v...

Page 424: ...mit k n esineet eiv t voi joutua laitteen sis lle Jos laitteessa on k yt n aika na vieraita esineit siit aiheutuu s hk isku ja oikosulkuvaara Huolehdi siit ett mitk n ter v t esineet eiv t vahingoita...

Page 425: ...eleita ukonilman aikana M r ystenmukainen k ytt k ytt X4000 on tarkoitettu k ytett v ksi toimistoymp rist ss X4000 on moniprotokollareititin jonka avulla voidaan luoda j rjestelm konfiguraatiosta riip...

Page 426: ...ukaisemista Asiaton aukaiseminen ja asiantuntemattomat korjaukset voivat aiheuttaa k ytt j lle huomattavia vaaroja esim s hk isku Anna vain BinTec in valtuuttaman huoltokorjaamon korjata laitetta Huol...

Page 427: ...sants ni aux circuits conducteurs Refermez les emplacements des cartes d extension non utilis es avec des caches borgnes de mani re ce que rien ne puisse p n trer l int rieur de l appareil Si des obje...

Page 428: ...livraison Dans le cas o vous utiliseriez d autres c bles que ces derniers la soci t BinTec Communications AG d cline toute responsabilit pour des dommages ventuels ou pour tout d faut de fonctionnemen...

Page 429: ...s l appareil par ex d connectez imm diatement l alimentation en courant et contactez le service apr s vente Nettoyage et r parations L appareil doit tre ouvert uniquement par un point de service apr s...

Page 430: ...430 X4000 User s Guide General Safety Precautions in 15 Different Languages 15 Router X4000 X4000 X4000 RJ11 X4000 X4000 X4000...

Page 431: ...X4000 User s Guide 431 15 100 240 VAC 50 60 Hz BinTec Communications AG X4000 Router Multi Protokoll X4000 WAN...

Page 432: ...432 X4000 User s Guide General Safety Precautions in 15 Different Languages 15 X4000 IEC950 EN60950 50 C X4000 Jumper BinTec BinTec...

Page 433: ...X4000 User s Guide 433 15...

Page 434: ...etrino oggetti nell apparecchio Se nell apparec chio ci sono corpi estranei durante il funzionamento sussiste pericolo di scosse elettriche e di corto circuito Fare in modo che nessun oggetto appuntit...

Page 435: ...n questi casi decade la garanzia per l apparecchio Per il collegamento dell apparecchio ci si deve attenere alle istruzioni del manuale Disporre i collegamenti in modo che non costituiscano fonte di p...

Page 436: ...servizio assistenza Pulizia e riparazione L apparecchio deve essere aperto soltanto da un centro di assistenza Bin Tec autorizzato Prima di aprire l apparecchio estrarre assolutamente la spina di alim...

Page 437: ...breidingsslots die niet gebruikt worden met de blinde afdekking ges loten houden zodat er geen voorwerpen in het inwendige deel van het toe stel terecht kunnen komen Als er zich tijdens het gebruik vr...

Page 438: ...de volgorde zoals in het handboek wordt beschreven Gebruik enkel kabels die aan de specificaties in dit handboek voldoen of die meegeleverd werden Indien u andere kabels ge bruikt is BinTec Communicat...

Page 439: ...ellijk de stroomverzorging en neemt u contact op met de service dienst Reiniging en reparatie Het toestel mag alleen door een door BinTec geautoriseerde servicedienst geopend worden Voor het openen va...

Page 440: ...d blinddekselet slik at ingen gjenstander kan komme inn i apparatets indre Hvis det finnes uvedkommende gjenstander i apparatet under drift er det fare for elektrisk st t og kortslutning Pass p at ikk...

Page 441: ...n bli skadet og at de ikke danner farekilder fare for snuble I tordenv r m du verken tilkople dataoverf ringsledningene eller frakople eller ber re dem Forskriftsmessig bruk drift X4000 er beregnet p...

Page 442: ...utorisert pning og usakkyndige reparasjoner kan det oppst alvorlige risikoer for brukeren f eks fare for elektrisk st t Se til at reparasjoner p apparatet kun utf res av et BinTec autorisert serviceve...

Page 443: ...ada fechada com a cobertura cega de modo a que n o possa entrar qualquer objecto no interior do aparelho Se durante o funcionamento houver algum objecto estranho dentro do aparelho existe perigo de ch...

Page 444: ...a BinTec Communications AG n o se responsabiliza por danos da decorrentes ou por limita es de funcionamento Nestes ca sos a garantia do aparelho anulada Aquando da conex o do aparelho respeite as ind...

Page 445: ...ra ao servi o de assist ncia t cnica Limpeza e repara o O aparelho s pode ser aberto num servi o de assist ncia t cnica BinTec autorizado Antes de abrir o aparelho indispens vel retirar a ficha de re...

Page 446: ...kontaktu d oni z puszkami lub kartami rozszerzenia X4000 Karty poszerzaj ce chwyta zawsze na obrze ach nie dotyka bezpo rednio cie ek drukowanych oraz element w elektronicznych Nie u ywane pole do dod...

Page 447: ...nej jest atwo dost pne Aby przerwa w pe ni zasilanie pr dem wtyczka musi by wyci gni ta z gniazdka Przy przy czaniu przewod w nale y przestrzega kolejno ci opisanej w instrukcji obs ugi Nale y u ywa t...

Page 448: ...trzeba ustawia W sytuacjach awaryjnych np uszkodzona obudowa lub element obs ugi wnikni cie cieczy b d cia obcych nale y natychmiast przerwa zasilanie urz dzenia pr dem elektrycznym i zawiadomi serwi...

Page 449: ...X4000 User s Guide 449 15...

Page 450: ...e circuitos impresos Mantenga cerrada la ranura de expansi n con la cubierta ciega para que no pueda penetrar ning n objeto en el interior del aparato Si durante el servicio hubiera dentro alg n objet...

Page 451: ...os cables BinTec Communications AG no se har responsable en el caso de que se produzcan da os o una merma en el funcionamiento En estos ca sos la garant a pierde su validez Al conectar el aparato resp...

Page 452: ...cnico Limpieza y reparaci n S lo personal de un servicio t cnico autorizado por Bin Tec puede abrir el aparato Antes de abrirlo es imprescindible desconectar el enchufe de la red Si se abre de forma n...

Page 453: ...de f rem l kan komma in i apparaten Risk f r str mst tar och kortslutning om fr mmande f rem l finns i apparaten under drift S kerst ll att displaymodulens displayf nster inte kan skadas av n gra spet...

Page 454: ...tning av apparaten Drag kablarna s att de inte kan utg ra n gon fara de f r inte ligga s att man kan snubbla ver dem och s att de inte kan skadas Data verf ringskabeln f r inte anslutas dras ut eller...

Page 455: ...rviceverkstad Drag alltid ut n tkontakten innan apparaten ppnas Obeh rigt ppnande resp ej sakkunniga reparationer p apparaten kan medf ra fara f r anv ndaren t ex elektriska st tar Reparationer f r ba...

Page 456: ...gellemek i in kullan lamayan mod l soketlerini k rtapalarla kapat n z Kullan m esnas nda cihaz n i inde yabanc cisimler bulunuyorsa elektrik arpmas ve elektrik ba lant lar n n k sa devre yapma tehlike...

Page 457: ...dolay sorumluluk stlenmez Bu durumlarda garanti hakk ortadan kalkar Cihaz ba larken el kitapc ndaki a klamalara dikkat ediniz Kablolar tehlike kayna olamayacak ve zarar g rmeyecek ekilde tak lma tehli...

Page 458: ...ik ve Tamir Cihaz sadece BinTec in yetkili servisi taraf ndan a labilir Cihaz a madan nce mutlaka elektrik fi ini prizden ekiniz M saade edilen i lemler d nda a lmas ve uygun olmayan ekilde tamir edil...

Page 459: ...z rja le vakfed llel hogy ne ker lhessenek idegen t rgyak a k sz l k belsej be Amennyiben idegen t rgyak ker lnek a k sz l k belsej be ram t s s r vidz rlat vesz lye ll fenn gyeljen arra hogy a displ...

Page 460: ...l p v ltoz sok rt a BinTec Communications AG nem v llal felel ss get Ebben az esetben megsz nik a garanciajogosults ga Vegye figyelembe a k sz l k csatlakoztat s n l a k zik nyvben le rt ide vonatkoz...

Page 461: ...s jav t s A k sz l ket csak a BinTec ltal feljogos tott szervizek nyithatj k fel A k sz l k felnyit sa el tt felt tlen l h zza ki a h l zati csatlakoz t A k sz l k jogtalan felnyit sa s a helytelen ja...

Page 462: ...i ovac slot z slepkou tak aby do vnit ku p stroje nemohly vniknout ciz p edm ty Pokud se b hem provozu v p stroji nach zej ciz p edm ty hroz nebezpe zasa en elektrick m proudem nebo zkratu Dbejte na t...

Page 463: ...nk nost Ru en za p stroj v t chto p padech zanik P i p ipojov n p stroje dbejte na pokyny uveden v p ru ce Veden ukl dejte tak aby se nestala zdrojem nebezpe nap zakopnut m a aby se nepo kodily B hem...

Page 464: ...aopravy P stroj sm otv rat pouze autorizovan servis firmy BinTec P ed otev en m se p stroj z sadn mus odpojit od s t vyt hnout z str ku Nepovolan m otev r n m a neodborn mi opravami se u ivatel vysta...

Page 465: ...re Er der fremmede gen stande i apparatet under driften er der fare for elektriske st d og kortslut ninger S rg for at ingen spidse genstande beskadiger displaymodulets displayru de Beskyt displaymodu...

Page 466: ...at de ikke beskadiges og at de ikke er til fare for omgivelserne fare for at snuble Undlad at tilslutte eller tr kke datatransmissionsledninger ud af apparatet n r det er tordenvejr og undlad at ber...

Page 467: ...og ukorrekt udf rte reparationer kan medf re betydelige farer for brugeren f eks elektrisk st d Lad kun et autoriseret BinTEC servicev rksted udf re reparationer p apparatet Din forhandler kan oplyse...

Page 468: ...468 X4000 User s Guide General Safety Precautions in 15 Different Languages 15...

Page 469: ...nd high speed data communication over POTS ARP Address Resolution Protocol ARP belongs to the TCP IP protocol family ARP resolves IP addresses into their corresponding MAC addresses Asynchronous trans...

Page 470: ...ic This is done by using filter functions that allow data packets to pass to certain network segments only Some BinTec routers can be operated in Bridging Mode Broadcast Broadcasts data packages are s...

Page 471: ...same a connection is not set up The user name and password are encoded in CHAP before they are sent to the partner as opposed to PAP CLID Calling Line Identification A security mechanism during the e...

Page 472: ...istrator Prerequisite TCP IP must be configured at the clients so that they can request their IP address from the server X4000 can be used as a DHCP server DIME Desktop Internetworking Management Envi...

Page 473: ...ony systems In this method pressing a key on the telephone keypad generates two simultaneous tones which are correspondingly evaluated by the PABX or exchange E1 T1 E1 European variant of the 2 048 Mb...

Page 474: ...d for selecting terminals within the PABX Filters A rule that defines a set of packets that should or should not be transmitted by the router Firewall Designates the whole range of mechanisms to prote...

Page 475: ...is identified in an IP network e g 192 168 1 254 See also netmask IPX SPX Internet Packet Exchange Sequenced Packet Exchange Protocol suite from Novell for the transmission of data in a network The tw...

Page 476: ...organization that co ordinates the construction and operation of telecommunications networks and services LAN Local Area Network A network covering a small geographic area and controlled by its owner...

Page 477: ...54321 corresponds to the MSN Usually three such MSNs are assigned to each ISDN BRI point to multipoint connection in Germany Multiprotocol router A router that can route several protocols e g IP IPX e...

Page 478: ...ce model for networks Defines interface standards between computer manufacturers for software and hardware requirements OSPF Open Shortest Path First Routing protocol used in networks to exchange info...

Page 479: ...ween three or more data stations or set up via switching systems Point to multipoint connection Point to multipoint Several different terminals can be connected to a point to multipoint connection The...

Page 480: ...An ISDN subscriber interface The PRI consists of a D channel and 30 B channels in Europe In America 23 B channels and a D channel Compare ISDN Basic Rate Interface Protocol Protocols are used to defin...

Page 481: ...can access ISDN resources parallel to one another This means new CAPI 2 0 applications can be used on the network or on the same PC parallel to old applications based on CAPI 1 1 RIP Routing Informati...

Page 482: ...HCP server In client server architecture a server is the software part that executes functions for its clients e g TFTP server In such a case the server is not necessarily a computer server Setup Tool...

Page 483: ...s increases the bandwidth in the network Switches can also be used for conversion between networks with different speeds e g 100 Mbps and 10 Mbps networks Synchronous Transmission process in which the...

Page 484: ...5 km The main U ADSL applications are POTS Internet access UDP User Datagram Protocol A transport protocol similar to TCP UDP offers no control or acknowledgment mechanisms but is faster than TCP UDP...

Page 485: ...synchronization over short ranges VJHC Van Jacobson Header Compression data compression procedure for IP header compression VPN Virtual Private Network The use of existing structures such as the Inter...

Page 486: ...ser s Guide Glossary X 25 An internationally agreed standard protocol that defines the interface between network components and a packet switched data network X 31 For integration of X 25 compatible D...

Page 487: ...B Back route verification 352 Bandwidth on Demand 201 Basic configuration with Setup Tool 119 Basic IP settings 242 Basic router settings 120 Basic unit 36 389 Built in unit 40 Desktop unit 37 Interf...

Page 488: ...Setup Tool 187 Basic configuration with Configuration Wizard 109 Basic configuration with Setup Tool 119 Basic router settings 120 Configuration 117 Configuration Management 363 Configuring a PC 115...

Page 489: ...ce 405 Distribution of incoming calls 141 DNS 225 246 Documentation 22 Domain Name 246 Dynamic IP address server 188 E Encapsulation 159 Encryption 354 357 Errors typical 379 Expansion cards 53 Instal...

Page 490: ...SDN Login 141 Routing 141 Input keys 93 Instructions for initial configuration 91 Internet access 159 Compuserve 182 T Online 182 IP Basic settings 242 Name resolution 246 Transit Network 222 IP addre...

Page 491: ...ction 159 Layer 1 Protocol 219 Leased lines 137 148 LEDs 63 93 License Additional license 276 Entering 121 License card 18 Line tapping security 354 Local filters 348 Logging in 76 325 M Mains unit 38...

Page 492: ...181 331 Novell networks 268 P PAP 159 194 327 Passwords 76 123 Port 265 Ports 335 PPP authentication 159 327 General settings 194 PPP settings 194 PPTP 357 Proxy ARP 234 R RAM 364 Release Notes 22 Re...

Page 493: ...lecting 159 194 General Settings 194 Service 265 335 Setting up and connecting 59 Setup Tool 79 Advanced configuration 187 Basic configuration 119 Menu architecture 79 Monitoring functions 313 Using 7...

Page 494: ...9 U Update 371 User concept 141 V V 24 interface Technical data 393 Van Jacobson Header Compression 232 Virtual Private Network VPN 357 VPN 357 W WAN interfaces 137 WAN partner advanced functions 198...

Page 495: ...X4000 User s Guide 495 Index WINS 225 246 X X 21 148 X 21 interface Configuring 148 Technical data 393 XIPR 353...

Page 496: ...496 X4000 User s Guide Index...

Page 497: ...manual O no O yes the following Does the manual contain unnecessary information O no O yes the following How do you rate the clarity of the manual O very good O good O average O bad O very bad How do...

Page 498: ...498 X4000 User s Guide Document 71000L Version1 3...

Search results

Summary of Contents for X4000

Reviews:

Related manuals for X4000

Brands by name

Popular brands

BinTec X4000, User Manual

Search results

Summary of Contents for X4000

Reviews:

Related manuals for X4000

Brands by name

Popular brands