manualshive.com logo in svg

Black Box LE2101A-BT-R2, Manual

The Black Box LE2101A-BT-R2 is a cutting-edge device that offers exceptional functionality. It comes with an easy-to-understand manual, allowing users to make the most of its features. You can conveniently download this user manual for free from our website, ensuring a seamless setup and operation experience of this remarkable product.

Share
Download
background image

81

TERMINAL SERVERS

4.13 Configuring Security Options

4.13.1 U

SER

S

ECURITY

L

EVELS

Three levels of security are available for Terminal Server ports:

• Privileged status—The user at a privileged port has access to the entire

Terminal Server command set including commands that manage the
Terminal Server, its ports, its sessions, and its services.

Any user who knows the privileged password can set a port’s status to
privileged with the SET PRIVILEGED command. For security reasons, 
a Terminal Server usually has only one privileged user—the person
managing the Terminal Server.

• Non-privileged status—Non-privileged status is the default for all

interactive ports. Users at a non-privileged port cannot access commands
that change the state of the Terminal Server or other ports, but they can
use all commands required for connecting to LAT services and Internet
hosts from an interactive port.

Non-privileged users can also modify certain port characteristics and
display information about the Terminal Server, its port, and service
nodes.

• Secure status—Secure status restricts the commands that are available on

a port to a subset of the non-privileged commands. This subset includes
commands that are required for connecting to Telnet services and
Internet hosts from that particular port. Secure users have access to only
limited display information and cannot use the broadcast feature that is
available to non-privileged users. Also, secure users cannot use CHANGE
and DEFINE commands (only the SET keyword is valid).

All commands that you can enter from a secure port are identified in

Chapters 6, 7, 

and

8

, by the designation “secure.” To view all secure

commands, issue the SET PORT SECURITY ENABLED command and
then access the Terminal Server online help. The commands listed will 
be those available to secure users.

Summary of Contents for LE2101A-BT-R2

Page 1: ... Drive Lawrence PA 15055 1018 Web site www blackbox com E mail info blackbox com FEBRUARY 1998 LE2101A BT R2 LE2204A BNC R2 LE2101AE BT R2 LE2204A TP R2 LE2101A T R2 LE2508A AUI R2 LE2101AE T R2 LE2508A BNC R2 LE2104A AUI R2 LE2508A TP R2 LE2104A BNC R2 LE2608A AUI R2 LE2104A TP R2 LE2608A BNC R2 LE2204A AUI R2 LE2608A TP R2 Terminal Servers POWER LAN 1 2 3 4 5 6 7 8 RESET PORT ERR LAN PWR INPUT 1...

Page 2: ......

Page 3: ... operated in a commercial environment Operation of this equipment in a residential area is likely to cause interference in which case the user at his own expense will be required to take whatever measures may be necessary to correct the interference Changes or modifications not expressly approved by the party responsible for compliance could void the user s authority to operate the equipment This ...

Page 4: ...avabo sótano mojado o cerca de una alberca etc 6 El aparato eléctrico debe ser usado únicamente con carritos o pedestales que sean recomendados por el fabricante 7 El parato eléctrico debe ser montado a la pared o al techo sólo como sea recomendado por el fabricante 8 Servicio El usuario no debe intentar dar servicio al equipo eléctrico más allá a lo descrito en las instrucciones de operación Todo...

Page 5: ...s contactos y receptáculos donde salen del aparato 14 El equio eléctrico debe ser limpiado únicamente de acuerdo a las recomendaciones del fabricante 15 En caso de existir una antena externa deberá ser localizada lejos de las lineas de energia 16 El cable de corriente deberá ser desconectado del cuando el equipo no sea usado por un largo periodo de tiempo 17 Cuidado debe ser tomado de tal manera q...

Page 6: ...8 Port Terminal Servers 29 3 4 Restoring Factory Defaults 30 3 4 1 Single Port Terminal Server 30 3 4 2 4 and 8 Port Terminal Servers 31 4 Configuration Guide 32 4 1 Introduction 32 4 2 Access to Management Commands 34 4 2 1 Using Privileged Mode 34 4 2 2 Using the Online Help 35 4 2 3 Command Line Editing Special Keys 39 4 2 4 Naming Conventions for the Terminal Server and for LAT Services 40 4 2...

Page 7: ... Ports 71 4 12 Configuring PPP Ports 74 4 12 1 Using Advanced PPP Parameters 76 4 12 2 Verifying PPP Port Configuration and Status 78 4 13 Configuring Security Options 81 4 13 1 User Security Levels 81 4 13 2 Conventions for Specifying Passwords 82 4 13 3 Using a General Password 84 4 14 Authentication Using RADIUS 84 4 14 1 Implementing RADIUS Authentication 87 4 14 2 Using PAP and CHAP 88 4 15 A...

Page 8: ... SET DEFINE CHANGE Commands 123 ACCOUNTING privileged 123 ACCOUNTING ADDRESS privileged 124 ACCOUNTING RETRIES privileged 125 ACCOUNTING SECRET 125 ACCOUNTING TIMEOUT privileged 126 AUTHENTICATION 126 AUTHENTICATION ADDRESS 127 AUTHENTICATION RETRIES 128 AUTHENTICATION SECRET privileged 128 AUTHENTICATION TIMEOUT privileged 129 BOOTP privileged 130 BOOTP VENDOR privileged 131 INTERNET privileged 1...

Page 9: ...PORT NAME privileged 153 PORT PARITY nonprivileged 154 PORT PARITY CHECK nonprivileged 154 PORT PASSWORD privileged 155 PORT PPP privileged 155 PORT PPP IPCP 156 PORT PPP IPCP ADDRESS 156 PORT PPP IPCP COMPRESSION 157 PORT PPP IPCP COMPRESSION STATES 158 PORT PPP IPCP HOST ADDRESS nonprivileged 158 PORT PPP LCP ACFC 159 PORT PPP LCP AUTHENTICATION privileged 160 PORT PPP LCP MAP 160 PORT PPP LCP M...

Page 10: ...vileged 174 PORT TELNET SERVER NEWLINE FROM TERMINAL privileged 174 PORT TELNET SERVER NEWLINE TO TERMINAL privileged 174 PORT TERMINATION 175 PORT USERNAME nonprivileged 175 PORT VERIFICATION secure 175 PRIVILEGED NONPRIVILEGED secure 176 SERVER privileged 177 SERVER ACCESS PASSWORD privileged 177 SERVER ANNOUNCEMENTS privileged 4 and 8 Port models only 178 SERVER BROADCAST privileged 178 SERVER ...

Page 11: ...SERVICE QUEUE privileged 4 and 8 Port models 188 SESSION LAT secure 4 and 8 Port models only 189 SESSION TELNET secure 189 SESSION TELNET AO REQUEST secure 190 SESSION TELNET AYT REQUEST secure 190 SESSION TELNET BINARY secure 190 SESSION TELNET BREAK BRK REQUEST secure 191 SESSION TELNET CHARACTER SIZE secure 191 SESSION TELNET ECHO secure 191 SESSION TELNET IP REQUEST secure 192 SESSION TELNET N...

Page 12: ... and 8 Port models 215 SERVER nonprivileged 216 SERVICES secure 4 and 8 Port models 217 SESSIONS secure 218 SNMP 219 SYSTEM CHARACTERISTICS secure 220 Telnet LISTENER secure 221 USERS nonprivileged 221 9 CLEAR PURGE Commands 222 INTERNET GATEWAY privileged 222 INTERNET HOST privileged 224 INTERNET NAMEserver privileged 225 PORT PPP HOST ADDRESS privileged 226 SERVICES privileged 4 and 8 Port model...

Page 13: ... 1 DB15 female and 4 or 8 RJ 45 BNC multiport models 1 BNC and 4 or 8 RJ 45 TP multiport models 1 RJ 45 10BASE T and 4 or 8 RJ 45 serial Speed Ethernet 10 Mbps Serial up to 115 Kbps Operating Temperature 32 to 122 F 0 to 50 C Humidity 0 to 90 noncondensing Power LE2101A R2 Input 120 VAC 60 Hz Output 12 VDC 800 mA 9 6 VA LE2101AE R2 Input 220 VAC 50 Hz Output 12 VDC 800 mA 9 6 VA LE2104A R2 LE2204A...

Page 14: ...a network name Terminal Server to convert text node names into numeric IP addresses A local host table displays IP address resolution which permits the use of a host name instead of an IP address thereby simplifying the use of the Telnet protocol Digital Equipment Corporation LAT Local Area Transport protocol is supported on almost all DEC operating systems for terminal connections on local networ...

Page 15: ...uthentication Protocol and CHAP Challenge Handshake Authentication Protocol sub protocols of PPP 2 3 Available Models The following models are available Single Port Terminal Server 10BASE T part number LE2101A T R2 Single Port Terminal Server 10BASE T BNC part number LE2101A BT R2 Terminal Server 4 TCP IP AUI part number LE2104A AUI R2 Terminal Server 4 TCP IP BNC part number LE2104A BNC R2 Termin...

Page 16: ...net workstation or a Terminal Server with a direct connection to the Ethernet network and an Ethernet address Devices connected to a Terminal Server serial port are excluded by this category A host is a computer attached to the network A host is generally an interactive computer that enables users to log in Local Mode is when the user issues commands directly to the Terminal Server In local mode a...

Page 17: ...l Server Direct connectivity simplifies terminal cabling saves physical ports on the host and enables the terminal to be available for multiple hosts Load Balancing The load balancing feature enables a Terminal Server to connect to the most unoccupied node when a LAT service is provided by more than one node CPU utilization is thereby balanced and improves response times to the user UNIX Compatibi...

Page 18: ...it user access to services by using group codes The Terminal Server can be configured for automatic logout of a session when a device is turned off or upon port disconnection Ports can be restricted to give a limited view of the network and be prevented from issuing privileged commands Password protection is available for privileges ports services and remote access Ports may be locked by users and...

Page 19: ... the installation is far more complex the principles of initial hardware server and individual port configuration remain the same Take care when connecting Terminal Servers to the Ethernet network You may need certain adapters and or cables to connect all the individual components of the Terminal Server subsystem such as terminals printers and modems All the relevant information is provided in thi...

Page 20: ...and ERROR LE2104A R2 Power socket and 110 220 VAC PWR LAN and LE2204A R2 Switch Reset Button 50 60 Hz 4x port LE2508A R2 Power socket and 110 220 VAC PWR LAN and LE2608A R2 Switch Reset Button 50 60 Hz 8x port NOTES 1 AC DC unregulated adapter with TUV UL or CSA approval Input 220 VAC 50 Hz or 120 VAC 60 Hz Output 12 VDC 800 mA 9 6 VA Cord 5 5 2 1mm barrel center negative 2 PWR indicates that the ...

Page 21: ... 2 Power On Diagnostic Indication Code Description 9 Base RAM test 8 N A 7 N A 6 N A 5 N A 4 TIMER test 3 LAN Ethernet test 2 NVRAM test 0 Power On test completed If this flashes more than twice NVRAM has been restored to default ...

Page 22: ... download state A loader prompt is displayed on the terminal where the INIT UPDATE command was executed L flashing A new software module is currently being downloaded into the base unit P Final phase of software downloading updating the FLASH memory FLASH EPROM clearing one segment moving every few seconds ...

Page 23: ...d Processor FEP is not responding d Inconsistency in DPRAM protocol version Turns to L and prompts the LOADER r Rebooting the Terminal Server warm boot h High rise FEP not responding j Jumper is set to Restore Factory defaults b Hardware problem in base FEP F Software error caused a processor fault ...

Page 24: ...network points are accessible Allow for at least 4 inches 10 cm clearance above and to all sides of the unit for cable connections Place the Terminal Server on a secure flat surface The ambient operating temperature for the Terminal Server is 32 to 122 F 0 to 50 C at a relative humidity of up to 90 noncondensing 3 3 3 CONNECTING THE TERMINAL SERVER TO THE LAN NETWORK Connect the Terminal Server to...

Page 25: ...quired to establish maintain and terminate connections and also provide the signal conversions required for communication between a data terminal equipment and the telephone line or data circuit Modems connected to the serial port of the Terminal Server in order to overcome the RS 232 50 ft distance limit are considered to be DCE devices The Terminal Server serial ports act as individual DTEs A si...

Page 26: ...or RS 423 interfaces Figure 3 2 describes the pin layout used in the RJ 45 ports 1 2 3 4 5 6 7 8 1 Clear To Send CTS input 2 Data Terminal Ready DTR output 3 Transmit TX 4 Transmit Return TX 5 Receive Return RX 6 Receive RX 7 Data Set Ready DSR input 8 Request To Send RTS output Figure 3 2 RJ 45 Serial Port Pinout ...

Page 27: ... 25 port to the Terminal Server s RJ 45 serial port Table 3 5 RJ 45 to DB25 DTE Conversion RJ 45 Pin RJ 45 Signal Name DB25 pin RS 232 DB9 pin 1 Clear to Send CTS 4 RTS 7 2 Data Terminal Ready DTR 6 DSR 6 3 Transmit TX 3 RCV 2 4 Transmit Return TX 7 GND 5 5 Receive Return RX 7 GND 5 6 Receive RX 2 XMT 3 7 Data Set Ready DSR 20 DTR 4 8 Request to Send RTS 5 CTS 8 ...

Page 28: ...TS 5 CTS 8 2 Data Terminal Ready DTR 20 DTR 4 3 Transmit TX 2 XMT 3 4 Transmit Return TX 7 GND 5 5 Receive Return RX 7 GND 5 6 Receive RX 3 RCV 2 7 Data Set Ready DSR 6 DSR 6 8 Request to Send RTS 4 RTS 7 The pins marked with an asterisk are required only for modem control or for flow control so you may ignore these pins when connecting a terminal For applications requiring DTR handshaking or for ...

Page 29: ... turns ON and the device goes through initial Power On diagnostic tests During these tests which last for approximately three seconds all the unit LEDs should alternate ON and then OFF If a hardware failure is detected during any test one or more of the LEDs will flash at a constant rate If this happens call for technical support The PWR LED always remains ON when connected to power 3 3 2 4 AND 8 ...

Page 30: ...e privileged password will be restored to system The following sections describe the procedure to restore factory defaults in all the different Terminal Server models 3 4 1 SINGLE PORT TERMINAL SERVER 1 Turn the power OFF by unplugging the terminal server power cable 2 Remove the lid of the unit by pressing the four tabs 3 Place the factory default jumper JP2 located in the corner nearest the PWR ...

Page 31: ...nnected Unscrew its mounting screw and carefully lift and disconnect the small board from its socket connector 4 Plug in the power cord and switch the power back on WARNING Do not touch the power supply area You might be shocked 5 Wait until the LEDs display an error pattern a sequence in which all the LEDs light for a few seconds and finally display an error code 6 Switch the power off unplug the...

Page 32: ...fully read through the general description issues and then refer to the section that is best suited for your needs The description for each task in the following sections will contain A general description of the major Terminal Server feature involved in the task A relevant example showing the required sequence of commands needed to implement the feature In each particular example the most common ...

Page 33: ... Using the BOOTP protocol TCP IP for Remote Connecting remote stations Configuring SLIP Access mode with SLIP Ports Connecting remote stations Configuring PPP with PPP Ports Security Using RADIUS for Implementing authentication RADIUS authen tication Using the RADIUS Accounting using accounting facility RADIUS Management Using an SNMP agent Configuring the SNMP agent LAT Basic configuration of LAT...

Page 34: ...ce accessed either from a directly connected terminal or from the network the same command language is used for configuration and operation of the server 4 2 1 USING PRIVILEGED MODE Many of the Terminal Server configuration commands require that the user be in a special mode known as privileged mode which is equivalent to becoming a superuser This mode is initialized with the SET PRIV command whic...

Page 35: ...o recall the privileged password if its is forgotten Keep a record of the password in a safe place If the password is forgotten the administrator will have to restore the factory default settings see Chapter 3 which will discard all the configuration changes made to the Terminal Server since initialization 4 2 2 USING THE ONLINE HELP You can display brief descriptions of all Terminal Server comman...

Page 36: ...1800 2000 2400 4800 9600 19200 38400 57600 and 115200 The default port speed is 9600 The speed of each direction can be specified independently INPUT SPEED specifies the speed from the device to the Terminal Server OUTPUT SPEED specifies the speed from the Terminal Server to the device Restriction A port that is active in the AUTOBAUD process cannot accept SPEED modifications Local Figure 4 2 The ...

Page 37: ...rs the Terminal Server will auto matically display a new prompt line with the initial command already in place and with the cursor at the end of the preceding chosen keyword The Terminal Server now waits for the additional parameters to be entered which can include a further question mark Figure 4 3 shows the logical sequence of events in finding out from the online help how to change the Terminal...

Page 38: ...ust that portion of the command seen in capital letters for it to be recognized by the Terminal Server Therefore INTERNET can be abbreviated to INT and PORTS to PO If the whole parameter is in small letters such as ip_address in the previous example then it should be entered as an equivalent value such as 111 222 222 111 ...

Page 39: ...viously entered command line Similarly an arrow down will progress to a more recently entered command line dependent on terminal program Backspace or Delete Deletes the one character to the left of the cursor Ctrl U Deletes the current command line Ctrl Z Operates like a Ctrl U except when entered in response to a password or verification prompt It stops the password entering process either the pa...

Page 40: ... 5 COMMAND REQUIREMENTS AND RESTRICTIONS You can enter the Terminal Server commands in either uppercase or lowercase characters or a combination of both since the Terminal Server is not case sensitive The words in a command line must be separated by one or more spaces Command lines can contain up to 132 characters You can continue a command line onto a second terminal display line provided you do ...

Page 41: ...ucts the server to perform a specific operation The two major categories of commands are Management Command Used to configure the Terminal Server These are implemented mainly by the system administrator However some limited management commands are also available to an ordinary user Here the relevant commands will affect the user s own port only User Commands Used to operate the Terminal Server by ...

Page 42: ... is switched on the contents of the PDB are copies to the ODB In fact parameters associated with the serial and parallel ports of the Terminal Server are copied from the PDB to the ODB each time that port is accessed or disconnected Table 4 4 shows the confines of each management command A indicates that the specified database is influenced by the relevant command while an X means that it is not i...

Page 43: ...access speed flow control signals messages Break and a password Defining session characteristics This includes definition of the default protocol dedication session limits auto connect For Telnet sessions specifically there is the definition of CR translation binary translation special characters and for LAT sessions there are settings of groups queues and services 4 3 1 BASIC IP SETUP The followi...

Page 44: ...router gateway that will be used for transmitting frames to stations outside the local network and builds the Routing Table of the Terminal Server The router IP address in this example is defined as 111 122 133 155 The ANY parameter specifies that IP frames to any network will be transferred through this router You may add more entries to the Routing Table specifying distinct networks and hosts Re...

Page 45: ...ine test com 2 Local DEFINE INTERNET NAMESERVER sample ADDRESS 222 223 224 225 Figure 4 6 DNS Server Setup Step 1 Defines the Domain Name Statement 1 defines the domain name in which the Terminal Server is operating This allows users to specify the default relative host name when referring to an address within the defined domain and to omit the domain name from each specific request Step 2 Defines...

Page 46: ...its specific hardware address Ethernet MAC address It is the BOOTP server that provides the hardware to IP address resolution With BOOTP the network manager can assign all the network IP addresses using only one file on the BOOTP server This also allows him to update the default router and DNS server on all the devices from one centralized location The BOOTP server can run on any UNIX based machin...

Page 47: ... will become the settings for the Terminal Server Step 2 Defining the Save Option The IP parameters received from the BOOTP server are implemented with immediate effect These values will also be saved in non volatile memory Statement 2 saves these values Statement 3 specifies which BOOTP extensions if any are to be used See Chapters 6 7 and 8 for more details 4 4 Configuring Serial Ports One can c...

Page 48: ... PORT n AUTOBAUD command Multiple Characteristics in a Single Command Line You may enter multiple options in a single command line restricted only by the 132 character limit For example if you wish to set port 3 on the Terminal Server for not receiving broadcast messages even parity and a port speed of 19200 you would type the following command line at the local prompt Local SET PORT 3 BROADCAST D...

Page 49: ...R PRINTER_1 4 4 2 SPECIFYING A PORT LIST When specifying a port list in a Terminal Server command you can refer either to a single port or to a range of ports lowest to highest or vice versa The parallel port is designated a name PRINTER When setting port characteristics with one or more options the port list can have embedded spaces 1 Local DEFINE PORT 2 AUTOBAUD DISABLED SPEED 19200 2 Local DEFI...

Page 50: ...d by these standards Modem Attached Terminal The terminal is connected via modem and therefore avoids the distance limitations mentioned above The modem may be asynchronous leased line or any dialup modem The modem near the server port should be connected with a straight DCE cable to the serial port of the Terminal Server 4 5 1 PHYSICAL CHARACTERISTICS DIRECTLY ATTACHED TERMINALS The following exa...

Page 51: ... xxxx and DEFINE PORT OUTPUT SPEED yyyy Step 2 Define the Port Async Parameters Statement 2 specifies the character size parity setting and number of stop bits This example shows the most common scenario sometimes referred to in literature as 8 N 1 8 bits per character No parity and 1 stop bit Step 3 Define the Port Flow Control Statement 3 dictates that the port will use XON XOFF flow control als...

Page 52: ...ded flow control mechanism for modem attached terminals CTS RTS is implemented NOTE CTS RTS is a flow control between the Terminal Server and the attached modem The modem itself must be configured to use the same flow control mechanism Step 3 Define the Modem Control Options Statements 4 and 5 define the ability of the Terminal Server to work with the RS 232 or RS 423 signal lines DTR and DSR sign...

Page 53: ... port which means that it prevents users from logging on to any other server than that specified 111 112 113 114 By default using a dedicated setting on a port makes that port AUTOC ONNECT disable BREAK and allows a single session 2 Defining the Port as Preferred Statement 2 specifies a preferred host on the specified port This is useful when you need to allow the user to connect to any host not n...

Page 54: ...ing stage of the Telnet session to advise the host as to the type of terminal in use Most UNIX applications will use this information in order to determine the appropriate data stream for communication with the terminal The Terminal Server itself does not use this information when communicating with the attached device nor does it verify the validity of the name entered so any character string may...

Page 55: ...INE PORT SECURITY ENABLED DISABLED This forces the port into a secure status where only several non privileged commands are permitted Default DISABLED meaning that the port is not secured DEFINE PORT TELNET CLIENT These parameters control the behavior and options of the Telnet session initiated by the terminal connected to the port The default conditions are generally appropriate Reasons for chang...

Page 56: ...se characters should nevertheless be forwarded since they have special meaning that can not be altered In such a case these characters must be disabled or changed in the Terminal Server Table 4 6 lists functions of the Terminal Server that are set by default to use specific characters It shows the functions the default keys that are assigned to them and the commands that alter them NOTES Some func...

Page 57: ...the session list Switch to local mode NONE PORT LOCAL SWITCH Send TELNET Abort Output O PORT TELNET CLIENT AO AO request Send TELNET Are you there T PORT TELNET CLIENT AYT AYT request Send TELNET Break BRK NONE PORT TELNET CLIENT BRK request Send TELNET End of Record Y PORT TELNET CLIENT EOR EOR request Send TELNET Interrupt Y PORT TELNET CLIENT IP Process IP request Send TELNET Synch X PORT TELNE...

Page 58: ...ice groups to be available to this port If this command is omitted only group 0 will be authorized The user may later use the PORT GROUPS command to restrict the authorized groups further and to associate himself with only part of the groups For example when he uses the SHOW SERVICES command he will see only a partial listing of available services those that belong to his group Statement 3 specifi...

Page 59: ... and that several printers may be connected at once Therefore there may be several Telnet listeners defined on one specific Terminal Server each listening on its own TCP port and directing the information received by the session to a specific serial or parallel port The Reverse Telnet or Telnet Listener service of the Terminal Server may be used for many common applications Connecting printers to ...

Page 60: ... REMOTE port and sets the baud rate to 9600 You can also define a local port or a dynamic port to be a Telnet listener This access parameter only determines who can login and from which end of the connection The access itself is allowed regardless of the Telnet Listener itself The AUTOBAUD mechanism cannot be used as the port would not be able to receive the Enter keystroke required for automatic ...

Page 61: ...Define the Telnet Server Statements 3 specify that the Telnet server function used with this port will disregard the following special Telnet signals AO abort output AYT Are you there BRK Break and IP Interrupt Process These are relevant to binary communication and not always required The BRK option is an important one to point out because it specifies whether a local break request initiated by th...

Page 62: ...Terminal Server from another LAT node for management purposes A LAT service may be defined to allow access to the Terminal Server itself When a LAT session from any LAT node to the Terminal Server is started the same user interface is presented to the operator as if he was accessing the server from a terminal connected directly to one of its serial ports Connecting printers to the Terminal Server ...

Page 63: ...VICE justaname PORTS ACCESS Figure 4 17 A LAT Service Accessible Port 1 Definition of a Port Statement 1 defines port 1 with the ACCESS REMOTE characteristic allowing it to be accessed from the LAN 2 Definition of the LAT Service Statement 1 and 2 define a new LAT service called justaname and enable it Moreover statement 3 defines it as an access service which means that a user initiating a sessio...

Page 64: ... 4 8 1 ADDING TCP IP PRINTERS The process of configuring a printer in a TCP IP environment involves two key steps Definition of a Telnet listener function to the port where the printer is connected Defining the printer in the host printing system by having it use either Telnet or the compatible prtcp program as the printing program A Telnet listener is defined in the Terminal Server and a printer ...

Page 65: ...ue for example CSqueue CSqueue lp dev null sd usr spool of etc CSprint 2 Create the etc CSprint shell script bin csh f telnet 130 34 28 10 2007 You can now use the following standard command for printing LPR PCSqueue file_name Where CSqueue is the queue defined in step 1 and file_name is the file to be printed IBM AIX Follow these steps for each printer 1 Define a printer device cp dev null dev pr...

Page 66: ...inal Server If prtcp is used replace the Telnet program in the above script with prtcp Note that in this case you must start the STREAMS environment of the AIX by executing the strload command Refer to the AIX documentation regarding PSE Portable STREAMS Environment for more information on the STREAMS environment The prtcp program uses the TLI system services provided by PSE 8 Make the script exec...

Page 67: ...y the following script cat 6 telnet IP_address_of_Passaport TCP_port 3 If prtcp is used replace the Telnet program in the above script by prtcp 4 The script will pipe the printed data through the Telnet command to the IP address of the Terminal Server and to the TCP port defined in the Telnet listener command at the Terminal Server 5 Restart the lpsched process by executing lpshut and lpsched so t...

Page 68: ...ort 4 If prtcp is used replace the Telnet program in the above script by prtcp 5 The script will pipe the printed data through the Telnet command to the IP address of the Terminal Server and to the TCP port defined in the Telnet listener command at the Terminal Server 6 Restrat the lpsched process by executing lpshut and lpsched so that the new definition will be used 7 Use the accept and enable c...

Page 69: ...ure 4 19 VMS Procedure In this example serv_name is the name of the LAT service defined on the Terminal Server for the printer node_name is the node name of the Terminal Server The Terminal Server does not have a default name but this may be changed by using the DEFINE SERVER NAME command see Advanced LAT Definitions queue_name is the name of the VMS queue created and initiated by this procedure p...

Page 70: ...rval between consecutive messages sent for maintaining a LAT session when there is no data to transmit The allowed range is 10 to 180 seconds The default is 20 seconds Modifying this value may effect the amount of traffic on the local network 4 10 Advanced Telnet Definitions The Terminal Server has a group of commands relating to a specific port as a TELNET CLIENT and another for a port as a TELNE...

Page 71: ... 5 Local DEFINE PORT 2 SLIP HOST 111 122 133 144 6 Local DEFINE PORT 2 USERNAME SLIP 2 Figure 4 20 Configuring a Port for a SLIP Connection Step 1 Define the Port Characteristics Command 1 defines a fixed speed of 19200 baud unlike for directly attached terminals Step 2 Define port as Dedicated SLIP and Enable it Statement 2 specifies that the port will be attached automatically as a SLIP host whe...

Page 72: ...the device Step 4 Define the Port User Name Statement 6 defines a permanent user name to the port eliminating the request prompt usually displayed when the user logs in This setting is overridden if the port log in is to be authenticated by a RADIUS server USING COMPRESSED SLIP Compressed SLIP is an improvement on the regular SLIP protocol Since IP is a protocol used on a network with many devices...

Page 73: ...er checks the first IP packets received from the node and uses the CSLIP only if initiated by it Step 2 Define the Port CSLIP States Statement 3 defines the maximum number of CSLIP states to be used on the port The Van Jacobson compression method uses a STATE data structure for each concurrent TCP connection This parameter can limit the number of states Valid values are between one and sixteen The...

Page 74: ...nal Server is connected The following example shows how to define the characteristics of a port for PPP connection 1 Local DEFINE PORT 1 AUTOB DISABLED SPEED 19200 2 Local DEFINE PORT 1 DEDICATED PPP 3 Local DEFINE PORT 1 PPP ENABLED 4 Local DEFINE PORT 1 FLOW DISABLED BREAK DISABLED 4 Local DEFINE PORT 1 SIGNAL CONTROL ENABLED SIGNAL CHECK ENABLED 5 Local DEFINE PORT 1 PPP IPCP HOST 111 112 113 1...

Page 75: ...nnections such as when a modem is used Command 4 disables the flow control that is implemented in any case by the PPP itself Step 4 Define the Port IPCP Address Statement 5 configures the IP address of the port The IP address can be configured in one of three different methods Configuration using the Terminal Server command language as in this example Configuration by a RADIUS server Learning duri...

Page 76: ...nables the nodes to negotiate the use of this compression method to reduce the overhead of the TCP IP headers Statement 3 specifies the number of TCP connections that the Terminal Server can decompress from the peer at any given time while 4 specifies that the Terminal Server should attempt to negotiate the IP address for both ends of the link If the negotiation is rejected the IP layer will fail ...

Page 77: ...ng on the bytes representing XON XOFF This command prevents the Terminal Server from sending through any character that could be wrongly translated by the modem as flow control characters For passive PPP devices as control devices that need to be reconnected after any loss of connection you should use the DEF PORT n PPP UP PASSIVE DISABLE command 4 12 2 VERIFYING PPP PORT CONFIGURATION AND STATUS ...

Page 78: ...istics LCP Enabled Passive Open Enabled Restart Timer 3 seconds Max Configure 10 transmissions Max Terminate 2 transmissions Max Failure 10 transmissions LCP Options Local MRU 1500 Character Map FFFFFFFF Authentication None Link Quality Disabled Magic Number Disabled PF Compress Disabled ACF Compress Disabled FCS Size 16 Bit Figure 4 24 LCP Configuration for a Port ...

Page 79: ...RT 1 LCP STATUS Port 1 PPP 1 Server CS_0020d2070790 LCP Status State Opened Authentication None LCP Options Local MRU 1500 Character Map FFFFFFFF Authentication None Link Quality Disabled Magic Number Disabled PF Compress Disabled ACF Compress Disabled FCS Size 16 Bit Figure 4 25 Checking the LCP Status ...

Page 80: ... transmissions Max Terminate 2 transmissions Max Failure 10 transmissions IPCP Options Local Negotiate Address Enabled Remote IP Address 111 112 113 114 Compress Header Disabled Compress States 16 Figure 4 26 Verifying the IPCP Configuration To find out the current state of the IPCP layer check the IPCP status as follows Local SHOW PORT 1 IPCP STATUS Port 1 PPP 1 Server CS_0020d2070790 IPCP Status...

Page 81: ... required for connecting to LAT services and Internet hosts from an interactive port Non privileged users can also modify certain port characteristics and display information about the Terminal Server its port and service nodes Secure status Secure status restricts the commands that are available on a port to a subset of the non privileged commands This subset includes commands that are required f...

Page 82: ...pt When you specify a new password the Terminal Server displays a verification prompt and waits for you to re enter the password which again is not echoed If both entries match the password is approved and the local mode prompt is displayed If the password is rejected the Terminal Server returns to the local mode prompt You can press Ctrl Z at any time to interrupt password processing and return t...

Page 83: ... connects to port 1 and tries to log in he will be prompted to enter the correct server password with a prompt 4 14 Authentication Using RADIUS RADIUS Remote Authentication Dial In User Service is a system of distributed accounting and security that both secures remote access to networks and network services against unauthorized access and monitors the accounting activity of sessions RADIUS securi...

Page 84: ...authentication validated or Reject authentication failed The RADIUS server is usually implemented on UNIX workstations and is downloadable as free public domain for most UNIX and also for Windows NT operating systems The RADIUS clients communicate with the RADIUS server using UDP Many separate RADIUS clients may use the services of a single RADIUS server even when the server is connected to a diff...

Page 85: ...authenticates users through a series of communications between the client and the server Once a user is authenticated the client provides that use with access to the appropriate network services 3 2 1 4 Figure 4 29 User Authentication Host RADIUS Server Terminal Server PPP ...

Page 86: ...ion Server validates the request and decrypts the data packet to access the user name and password information This information is passed on to the appropriate security system being supported either UNIX password files or Kerberos a commercially available security system or even a custom developed security system If the user name and password are correct the server sends an Authentication Acknowle...

Page 87: ...nate RADIUS Authentication Server Configuration The Terminal Server must be configured with a valid RADIUS server IP address and a shared secret Statements 1 define the Internet addresses of two valid RADIUS servers primary and alternate at least one of which must be accessible for authentication of users The third command line specifies that the Terminal Server should retry sending an authenticat...

Page 88: ...s andy and the password is abcdef The user would be connected automatically via Telnet to the specified address of 111 222 111 222 4 14 2 USING PAP AND CHAP Authorization protocols are not mandatory on a PPP link but they are important because they provide a certain level of security on the serial connection A port used for PPP connection commonly requires user authentication to eliminate unwanted...

Page 89: ...ing string is returned to the server along with the client hostname The server then performs the same computation as the client on the challenge string The server only permits the client to connect if the results are identical An additional security feature of CHAP is that the client authentication is not only required at the initial connect time but the server also sends challenge strings to the ...

Page 90: ...DIUS Accounting Server configuration This setup is the same as for RADIUS authentication servers discussed in the previous example However the accounting server does not necessarily have to be the same physical server as that used for authentication 2 Enabling RADIUS Accounting Statement 3 enables RADIUS accounting on all the ports There would not be much sense in enabling accounting without authe...

Page 91: ...n Client Id 111 122 133 144 Client Port Id 6 Acct Status Type Start Acct Session Id IP 111 122 133 144 Session 004 Mon Jul 8 09 25 55 1996 User Name john Client Id 111 122 133 144 Client Port Id 6 Acct Status Type Stop Acct Session Id IP 111 122 133 144 Session 004 Figure 4 34 Accounting Log 4 16 Configuring the SNMP Agent The Terminal Server can be managed through the network using SNMP Simple Ne...

Page 92: ...assigned to a specific SNMP management station to permit it to control the Terminal Server Statement 1 assigns the community name PASSa MGMT to this IP address The community name must be configured into the management station and is verified by the protocol on every request 2 Assign Capabilities for a Given Community Statement 2 configures the Terminal Server to answer any SNMP GET requests from t...

Page 93: ...ters These MIBs can be accessed using MIB browser or any management application Table 4 7 MIBs Supported by the Terminal Server MIB Description RFC 1213 Management Information Base MIB II for Internet Protocol suite management RFC 1316 Definitions of Managed Objects for Character Stream Devices the Character MIB RFC 1317 Definitions of Managed Objects for RS 232 like hardware devices the RS 232 li...

Page 94: ... port number can also be added For example to connect to port 2005 of host 111 122 133 144 Local TELNET 111 122 133 144 2005 NAVIGATION BETWEEN SESSIONS The break key switches the user back to local mode while keeping any current sessions alive in the background Once in local mode you can use the FORWARDS and BACKWARDS commands to step through active sessions Specific keys can be assigned as short...

Page 95: ...a current specific or even all the sessions OPENING SLIP SESSIONS Presuming the port has been configured correctly for SLIP one can use the following to initiate a PPP session Local CONNECT PPP NOTE PPP cannot be enabled on ports with MULTISESSIONS ENABLED 5 2 Examples of Common Applications Example 1 Dedicated User Port In this scenario a user needs to be connected to a dedicated port on a specif...

Page 96: ... will use the reverse Telnet or Telnet Listener method Here the modem is to be connected to port 5 at 9600 baud Local DEFINE PORT 5 AUTOBAUD DISABLE SPEED 9600 Local DEFINE PORT 5 ACCESS REMOTE Local DEFINE PORT 5 TELNET LISTENER 2005 PORT 5 ENABLED Local DEFINE PORT 5 TELNET LISTENER 2005 CONNECTIONS ENABLED Local DEFINE PORT 5 TELNET SERVER NEW FROM TERMINAL LF Local LOGOUT PORT 5 Local INIT DEL...

Page 97: ...Local DEFINE PORT n AUTOBAUD DISABLE SPEED speed Local DEFINE PORT n USERNAME user_name Local DEFINE PORT n DEDICATED ip_address PORT 200n Local DEFINE PORT n TELNET CLIENT NEW LINE TO TERMINAL CR Local DEFINE PORT n TELNET CLIENT ip ayt synch ao brk NONE Local INIT DELAY 0 Figure 4 3 Local Site Telnet Setup Each in a separate command line At the remote site the user sets up a Telnet Listener Loca...

Page 98: ...or data entered into the card reader is transmitted to its controller over TCP IP Example 4 Remote Access with PPP and Windows 95 In this scenario a user wishes to use a PC running Windows 95 to establish a dedicated PPP link via a modem In earlier versions of Windows the dialup was achieved by using third party Winsock applications such as Trumpet and a script In Windows 95 the TCP IP stack is in...

Page 99: ...ndow to the Dialup Networking configuration This is achieved in the following manner Open Dialup Networking from the Control Panel and if necessary double click on Make New Connection and fill in the relevant details when prompted Right click on the new connection icon you have just created and choose Properties Click on the Configure button and choose the Options tab Make sure the box that brings...

Page 100: ...e modem to disconnect as it receives data from the RS 232C while it is still in negotiation To overcome this problem you can monitor the DCD line instead which is asserted only after negotiation is complete This means incorporating a change on the modem end of the RS 232C cable moving the wire from pin 6 to pin 8 Modem settings are also important to establishing reliable PPP sessions Typically the...

Page 101: ...ADCAST nonprivileged BROADCAST PORT port list message text ALL message text This nonprivileged command sends a message to other Terminal Server ports PORT port list Indicates one or more ports to receive your message ALL This privileged parameter indicates that the message is sent to all ports on the Terminal Server message text This is the text of the message Uppercase letters are used to broadca...

Page 102: ...inal Server to the port is turned off Restriction Nonprivileged users must specify a single target port Only privileged users can specify ALL or a port list to transmit a message to multiple ports Example Local BROADCAST ALL Shutting down in 5 minutes This command sends the string Shutting down in 5 minutes to all ports CLOSE PORT secure See the DISCONNECT CLOSE PORT command page 109 for informati...

Page 103: ...nt to connect If the service is offered by multiple service nodes the Terminal Server connects to the node with the highest service rating In order to use a specific protocol other than the default choose one of the specific connect requests listed below CONNECT LAT secure 4 and 8 Port models only CONNECT LAT service name NODE node name SERVICE PORT DESTINATION port name PORT This secure command r...

Page 104: ...ined the first command connects the port to its preferred service the second command connects the port to the service ADMIN and the last command connects the port to the service METDATA at PORT 6 on the Terminal Server DATAserver CONNECT ANY secure CONNECT ANY host name This command determines whether a specified host is using the Telnet or LAT protocol First the Terminal Server checks the Telnet ...

Page 105: ...col Restrictions The port must have PPP enabled Only one SLIP or PPP session per port is allowed at any given time During a PPP session all switch characters are passed on as data Example Local CONNECT PPP This command starts a PPP session on the current port CONNECT SLIP secure CONNECT SLIP This command which is available to all users specifies that a SLIP session will be started on the port If S...

Page 106: ...ver checks the protocol enabled on the requested port prior to connection This command is available to all users This command works the same way as OPEN Telnet Either of the following methods may be used to make connections Specify the host either by host name or ip addr and specify the tcp port Specify only the host either by host name or ip addr The default tcp port 23 is assumed CONNECT OPEN or...

Page 107: ...te e g don sales radlinx com or relative e g sales radlinx PORT tcp port The TCP port number on an internet host For example the Telnet server well known port is 23 decimal The default on a Telnet connection request where the TCP port number is not specified is port 23 Example Local CONNECT Telnet BART 2001 This command connects your port to Telnet host BART at TCP port number 2001 ...

Page 108: ... default session is the current session Examples Local CLOSE SESSION 1 This command disconnect session 1 Local DISCONNECT ALL This command disconnects all sessions on the port DISCONNECT CLOSE PORT privileged DISCONNECT PORT port number CLOSE This privileged command is used to terminate a session to a dedicated service on another port The LOGOUT PORT command may be used to disconnect sessions of i...

Page 109: ... users HELP secure HELP topic subtopic This command displays conventional on line HELP for the Terminal Server Section 4 2 2 provides an overview of the most common form of on line help Different Help displays are available for privileged nonprivileged limited view or secure users For example if you enter HELP at a nonprivileged port only those commands and characteristics that can be specified by...

Page 110: ...FLASH product option The update process always executes on physical port 1 of the Terminal Server where it expects a software file to be uploaded in ASCII format e g from a PC equipped with PROCMM communication software or equivalent After this command is entered the Terminal Server displays Loader The user must then enter the LOAD command and initiate the ASCII mode file transfer on the PC side i...

Page 111: ...elapsed Restrictions The INITIALIZE UPDATE command requires the FLASH product option The INITIALIZE UPDATE command always executes on physical port 1 of the Terminal Server INITIALIZE CANCEL privileged INITIALIZE server CANCEL This privileged command discontinues a previous INITIALIZE command if the initialization process has not begun ...

Page 112: ...Terminal Server prompts you to enter the password twice The password does not display on your terminal The Terminal Server displays an unlock password prompt Unlock Password when both password entries are equivalent Your terminal remains locked until you enter the password again returning you to local mode Example Local LOCK Lock Password MINE not displayed Verification MINE not displayed Local Po...

Page 113: ... drops outgoing modem signals when a port has signal control enabled PORT Causes a full logout from your own port ALL This privileged option logs out all ports other than the port where the command is entered port list This privileged option specifies the port s you want to log out The default is your own port however if your port is not indicated in the list it will not be logged out Examples Loc...

Page 114: ...inues until the user presses any key or terminates the session with the DISCONNECT CLOSE SESSION command The ping session continues up to 100 times NOTE If the BREAK key or local switch was pressed during a PING session the PING does not stop The user may RESUME the PING session or has to DISCONNECT it PING or TEST INTERNET This command indicates that an Internet Control Message Protocol ICMP Requ...

Page 115: ...ueue Removing an entry from the Terminal Server queue causes the Terminal Server to send a message to the service node that requested the remote access that the queued entry was deleted by a Terminal Server user ALL Indicates that all entries in the queue are removed ENTRY entry number Specifies a particular entry by number NODE node name Specifies all entries initiated from the specified node SER...

Page 116: ...e session from local mode This command is available to all users SESSION session number Specifies the session to be resumed Your current session is resumed by the Terminal Server when this parameter is omitted Examples Local RESUME Local RESUME SESSION 8 The first command resumes your current session The second command resumes session 8 in your session list ...

Page 117: ...EAK BRK The BREAK or BRK command sends a Telnet Break command to the remote host This command indicates that the Break key or the Attention key was pressed however different remote hosts may interpret this differently EOR End of Record Sends a Telnet End of Record command to the remote host indicating the end of the current input record IP Interrupt Process Sends a Telnet command to the remote hos...

Page 118: ...defined as AO SYNCH Drops all input currently en route to the remote process This includes input queued both by the local Terminal Server and the remote host Example Local SEND Telnet AO This command invokes the Abort Output AO function on the current Telnet session TEST INTERNET For information on this command refer to the PING command TEST LOOP Privileged TEST LOOP ethernet address This privileg...

Page 119: ...65535 The default value is 23 lines Specify NONE to produce a continuous display then press any key to terminate the display WIDTH n Specifies the number of characters per line range 1 to 132 default 72 LOOPBACK A privileged parameter that specifies that test data is looped back from an EXTERNAL port loopback connector or from the INTERNAL port hardware default no loopback Restriction You must set...

Page 120: ...results is displayed by the Terminal Server when completed service name Indicates the name of the service to be tested NODE node name Specifies the service node to be tested The default node is the highest rated node that supports the specified service DESTINATION port name Specifies which port offering the service is to be tested COUNT n Specifies the number of test buffers to be sent default 1 T...

Page 121: ... This counter is reset only after an initialization or after turning on the power of the Terminal Server ALL Zeroes all counters except port INTERNET Clears the internet counters corresponding to the specified entity NAME RESOLUTION Indicates that only internet domain name system internet counters are to be cleared NODE node name Zeroes counters for data exchanges between the Terminal Server and t...

Page 122: ...fied port SNMP Clears all SNMP error and access counters Examples Local ZERO INTERNET Clears the Terminal Server internet counters Local ZERO PORT 5 SLIP Clears the SLIP specific counters for port 5 Local ZERO SNMP COUNTERS Clears the SNMP access and error counters ...

Page 123: ...l not modify either database ACCOUNTING privileged SET DEFINE ACCOUNTING ENABLED CHANGE DISABLED This privileged command designates the use of the RADIUS ACCOUNTING protocol The RADIUS Remote Authorization Dial In User Service can be used to record the Terminal Server login and logout events on an accounting server During the ACCOUNTING process the user s username port ID and IP address for IP ses...

Page 124: ...e the RADIUS accounting protocol This is the default ACCOUNTING ADDRESS privileged SET DEFINE ACCOUNTING PRIMARY ADDRESS ip address CHANGE ALTERNATE This privileged command specifies the addresses of the primary and alternate RADIUS accounting servers Once an accounting event occurs the Terminal Server will send an accounting request to the primary accounting server If it does not get an acknowled...

Page 125: ... is 2 10 The default is 5 ACCOUNTING SECRET SET DEFINE ACCOUNTING PRIMARY SECRET secret CHANGE ALTERNATE This privileged command specifies the secret password that is used by the Terminal Server when communicating with the RADIUS ACCOUNTING server This secret should be configured both in the Terminal Server and in the RADIUS server PRIMARY This parameter specifies that the secret is configured for...

Page 126: ...imeout and several retries both can be configured an alternate server is tried Once a positive answer is received the user login request is granted and the user may access the Terminal Server s services If a negative response is received or no response at all the user request is rejected and the user is disconnected The addresses of the primary and alternate authentication server are configured us...

Page 127: ...command specifies the addresses of the primary and alternate RADIUS authentication servers During the verification of the user s name and password the Terminal Server will send an authentication request to the primary authentication server If it does not get a response it will retry it again The timeout value and the retries count can be configured with the AUTHENTICATION TIMEOUT and AUTHENTICATIO...

Page 128: ...2 10 The default is 5 AUTHENTICATON SECRET privileged SET DEFINE AUTHENTICATION PRIMARY SECRET secret CHANGE ALTERNATE This privileged command specifies the secret password that is used by the Terminal Server when communicating with the RADIUS authentication server This secret should be configured both in the Terminal Server and in the RADIUS server PRIMARY This parameter specifies that the secret...

Page 129: ...and specifies the timeout value in seconds after which the Terminal Server will re send an authentication request to the authentication server seconds This parameter specifies the number of seconds after which the Terminal Server will re send its request to the authentication server The allowed range is 2 60 The default is 2 ...

Page 130: ... BOOTP VENDOR command DISABLE Do not use the BOOTP protocol to obtain the Terminal Server s IP address ALWAYS When initialized always use the BOOTP protocol to obtain the Terminal Server s IP address ONZERO When initialized if the Terminal Server configured IP address is null use the BOOTP protocol to obtain the Terminal Server s IP address This is the default SAVE Save all the parameters received...

Page 131: ... Using this extension the Terminal Server can obtain the IP address IP mask and default gateway NONE This parameter specifies the use of no extension for the BOOTP protocol Using this option the Terminal Server can obtain only its IP address INTERNET privileged SET ADDRESS ip address DEFINE INTERNET NONE CHANGE SUBNET MASK net mask NONE This privileged command modifies the Terminal Server internet...

Page 132: ...urrent Terminal Server internet address The default for a Class A subnet mask is 255 0 0 0 for a Class B 255 255 0 0 and for a Class C 255 255 255 0 No default subnet mask exists if an internet address has not been defined NONE Deletes a previously defined internet subnet mask Restrictions You cannot use the Set or Change option to change the internet address while the internet protocols are runni...

Page 133: ...Y as the default HOST ADDRESS ip address Indicates a host that is accessible through the gateway Use this option to define a gateway to a specific host rather than to a network ANY This default option specifies that ANY network address can be reached through the defined gateway net address Specifies a network that is reachable through the gateway Use this option to define a gateway to a network ra...

Page 134: ...ple Local CHANGE INTERNET GATEWAY 192 114 l 60 NETWORK 127 10 1 0 This command enters an internet gateway with an internet address of 192 114 l 60 and a network address of 127 10 1 0 in the Terminal Server operational and permanent databases Omitting the SUBNET MASK option causes the Terminal Server to use the current internet subnet mask in the Terminal Server operational database and no subnet m...

Page 135: ...ternet host name The name length may range from 1 to 50 characters ip address Specifies the internet address of the internet host Valid internet addresses must be of the form n n n n where n is a decimal number ranging from 0 to 255 Restriction The DNS HOSTS table can contain up to 20 entries Example Local SET INTERNET HOST COMPUSERVE COM ADDRESS 198 4 8 1 Internet host COMPUSERVE COM is entered i...

Page 136: ...g whereas any other form denotes a relative name For example Gong Foo is an absolute name which will be searched for literally Chin Ho COM is a relative name MODE Specifies the order in which resources will be searched to resolve IP names In LOCAL mode the Terminal Server searches for internet addresses in its own DNS HOSTS table for data entered through previous command s In REMOTE mode the Termi...

Page 137: ...This name is used for descriptive purposes and is not checked for correctness to ensure that this indeed is the true name of the name server whose ip address is specified in the next parameter ip address Specifies the IP address of the DNS name server This parameter determines the name server against which DNS name resolution will be attempted The address must be a valid IP address of the form n n...

Page 138: ... Port characteristics revert to the permanent database values the next time the port is logged in To change port characteristics in both the permanent and operational databases use the CHANGE PORT command This command performs the functions of both the DEFINE PORT and SET PORT commands ALL This is a privileged parameter that indicates that the defined characteristics are applicable to all ports po...

Page 139: ...ng the port can accept CAUTION Changes in a port s access become effective on the next port login You should use the DEFINE or CHANGE command to preserve them after logout LOCAL Allows access to the Terminal Server local mode command set This is the default REMOTE Grants access to the port device typically a line printer by service node applications or to a port device offered as a LAT service or ...

Page 140: ... request to this port will be authenticated If this characteristic is enabled the user will be prompted to enter a username and a password in terminal mode or go through PAP CHAP process in PPP mode In addition it overrides the PORT PASSWORD verification Only if PORT AUTHENTICATION is set to DISABLE the PORT PASSWORD option may be used ENABLED Authenticate user login requests for this port verify ...

Page 141: ...D To enable or disable all groups for the port specify ALL group list One or more decimal codes ranging in value from 0 to 255 each representing a LAT group code Multiple codes may be indicated by specifying a range of ascending numbers by using commas between individual numbers or a combination of both For example the group list 1 3 5 8 14 specifies groups 1 3 5 6 7 8 and 14 ENABLED DISABLED ENAB...

Page 142: ...e a preferred or dedicated service requires you to press the Return key once more to connect to the service CAUTION Modifications of this characteristic are implemented on the next port login Use the DEFINE or CHANGE command to preserve these changes after logout PORT AUTOCONNECT nonprivileged SET DEFINE PORT AUTOCONNECT ENABLED CHANGE DISABLED This nonprivileged option indicates if the Terminal S...

Page 143: ...ristic PORT BREAK secure SET LOCAL DEFINE PORT BREAK REMOTE CHANGE DISABLED This option sets the Break key specifications during a session This option is available to all users LOCAL Defines a break signal as a local switch character for the Terminal Server and takes the user back to local mode This is the default REMOTE When this option is used the Terminal Server transfers the LAT session break ...

Page 144: ...ged PORT DEDICATED privileged SET DEFINE PORT DEDICATED CHANGE service name NODE node name DESTINATION port name 4 and 8 Port models NONE NONE host name PORT tcp port NONE This privileged option permanently assigns a service to a local terminal port The default option is no dedicated service When the value for service name NODE or DESTINATION is NONE any previous entered value is overridden Change...

Page 145: ... name or address and an optional Telnet TCP port number PPP Specifies that the local access port is permanently assigned to a single PPP session SLIP Specifies that the local access port is permanently assigned to a single SLIP session Restrictions The word Telnet is not valid as a service name or host name If the target port is not currently logged in you can specify DEDICATED with the SET PORT c...

Page 146: ...es on the TCP IP network before searching for resources on the LAT network LAT Fixes the LAT protocol as the default if the user has not specified a protocol with the CONNECT command PPP Defines the default protocol as PPP If you do not specify a protocol with the CONNECT command the Terminal Server defaults to the PPP protocol SLIP Defines the default protocol as SLIP If you do not specify a prot...

Page 147: ... a Terminal Server should log out a port that has a disabled attached device DSRLOGOUT can only be enabled when the port hardware supports DSR signals When DSR flow control is enabled DSRLOGOUT must not be specified DSRLOGOUT is disabled by default ENABLED The Terminal Server will logout a port id DSR is deasserted DISABLED The Terminal Server will not use the DSR signal status to logout a port Th...

Page 148: ...ection to the port from the Terminal Server is requested This may signal the modem connected to the port to dial a number that is preconfigured to the modem When the session is terminated the Terminal Server will deassert the DTR For ports defined with ACCESS LOCAL the DTR signal will always be deasserted DISABLED The DTR signal is always asserted by the Terminal Server for both LOCAL and REMOTE p...

Page 149: ...GE XON DISABLED A nonprivileged option that identifies the flow control category used by the Terminal Server to control data transmission with the port CTS Specifies Clear To Send Request To Send CTS RTS modem signal flow control This option is exclusively applicable to Terminal Servers that support these signals This type of flow control is usually used by null modems When the Terminal Server det...

Page 150: ...d GROUPS should be utilized to select the port s nodes and services you want displayed Logging in to a port enables all authorized groups for that port Consequently when port characteristics are reset to their defaults the default for GROUPS corresponds to the default for AUTHORIZED GROUPS i e group 0 ENABLED and all other groups DISABLED To add or remove groups within the authorized list use the ...

Page 151: ...port If a port is set to ACCESS REMOTE and there is no activity for a session the Terminal Server terminates the session and logs out the port after the time out period elapses The Terminal Server characteristic INACTIVITY TIMER should be used to set the time out period More details are available in the terminal SERVER INACTIVITY TIMER command The default is DISABLED PORT INTERRUPTS privileged SET...

Page 152: ...e default is DISABLED PORT LOCAL SWITCH secure SET DEFINE PORT LOCAL SWITCH character CHANGE NONE This option specifies a switch character that can be used for reestablishing local mode from service mode Although the switch character can be any keyboard character unused characters such as Ctrl L is recommended NONE the default option clears an existing switch This option is available to all users ...

Page 153: ...ISABLED prevents the use of the LOCK command The default is ENABLED PORT LOSS NOTIFICATION nonprivileged SET DEFINE PORT LOSS NOTIFICATION ENABLED CHANGE DISABLED This nonprivileged option determines whether a beep is sounded upon losing an input character because of data error or overrun The default is ENABLED Restriction LOSS NOTIFICATION is only relevant when PORT ACCESS is LOCAL or DYNAMIC POR...

Page 154: ...anged for a port that is currently in the AUTOBAUD process PORT PARITY CHECK nonprivileged SET CHECK DEFINE PORT PARITY NOCHECK CHANGE This is a nonprivileged option that specifies whether the Terminal Server will check the parity on data arriving at the port CHECK The Terminal Server will check the parity according to the setting of DEFINE PORT PARITY This is the default NOCHECK The Terminal Serv...

Page 155: ...int protocol PPP session may be started on the specified port If this option is ENABLED the PPP session startup prepares for a link startup The default status is DISABLED The LCP ENABLE DISABLE and LCP PASSIVE ENABLE DISABLE commands determine the LINK startup PPP and LCP must be ENABLED to bring up a PPP session NOTE If PPP is DISABLED on a port running a PPP session the session is taken down imm...

Page 156: ...dress for both ends of this link If ENABLED the Terminal Server always attempts to negotiate using IPCP option 3 ADDRESS first as this is the preferred method If the attached device does not support option 3 the Terminal Server falls back and attempts to negotiate using option 1 ADDRESSES The Terminal Server internet IP address is always proposed as the Terminal Server s local address If the port ...

Page 157: ...tus Only a privileged user can enter this command from a remote port PORT PPP IPCP COMPRESSION SET DEFINE PORT PPP IPCP COMPRESSION ENABLED CHANGE DISABLED This option specifies whether the Terminal Server negotiates the use of a compression protocol The Van Jacobson Compressed TCP IP protocol is the only compression protocol supported If it is used it must be implemented by each peer in both dire...

Page 158: ...now what IP device is directly attached on the other side of the PPP link The default for this characteristic is address 0 0 0 0 no address defined Use the CLEAR PURGE PORT PPP or SLIP HOST ADDRESS command to remove an existing address Restrictions The IPCP HOST ADDRESS must be configured manually on both sides of the link if address negotiations are not used A nonprivileged status is required for...

Page 159: ...ly by a privileged user from a port other than the one on which the PPP session is running PORT PPP LCP ACFC SET DEFINE PORT PPP LCP AUTHENTICATION PAP CHANGE DISABLE This command allows a link to be configured so that the address and control field compression ACFC is negotiated PPP uses unnumbered HDLC frames to encapsulate each packet it sends These frames include address and control bytes which...

Page 160: ...e encapsulated into a two byte sequence that allows the original character to pass as data By default the low 32 ASCII bytes are byte stuffed which requires additional overhead and consumes bandwidth on a slow serial line The fewer characters that require byte stuffing on a given line the better the performance This option provides a means to inform the peer of which specific characters require by...

Page 161: ...striction The DEFINE and CHANGE commands require privileged status The SET command requires secure status PORT PPP LCP PASSIVE SET DEFINE PORT PPP LCP PASSIVE ENABLED CHANGE DISABLED This option controls whether the LCP will actively open the LCP link on connection or will wait passively for packets from the peer to start the link The LCP waits for the peer to begin negotiations if LCP PASSIVE is ...

Page 162: ... commands require privileged status The SET command requires secure status PORT PPP LCP IPCP MAXCONFIGURE SET DEFINE PORT PPP LCP MAXCONFIGURE nn CHANGE IPCP This option determine how many times the LCP IPCP or ATCP will send a configure request packet to the peer without receiving a configure acknowledgment signal The LCP IPCP assumes that the peer cannot respond if the peer failed to send an ack...

Page 163: ...alue for this characteristic is 10 Restriction The DEFINE and CHANGE commands require a privileged status The SET command has a nonprivileged status PORT PPP LCP IPCP MAXTERMINATE SET DEFINE PORT PPP LCP MAXTERMINATE nn CHANGE IPCP This option determines how many times the LCP IPCP or ATCP will send a terminate request packet to the peer without receiving a terminate acknowledgment signal A takedo...

Page 164: ...nds Restriction The DEFINE and CHANGE commands require a privileged status The SET command has a nonprivileged status PORT PREFERRED nonprivileged SET DEFINE PORT PREFERRED CHANGE service name 4 and 8 Port models only NODE node name DESTINATION portname NONE NONE host name PORT tcp port NONE This nonprivileged option sets a preferred network service when a CONNECT command is specified for the port...

Page 165: ...T of the preferred service use the DEFINE PORT command The default setting connects you to the first available port that offers the service Restriction NODE and DESTINATION are valid only when LAT service is specified as the preferred service PORT QUEUING nonprivileged 4 and 8 port models only SET DEFINE PORT QUEUEING ENABLED CHANGE DISABLED This nonprivileged option determines whether queuing of ...

Page 166: ...e port To prevent this make sure REMOTE MODIFICATION and SECURITY are not enabled on the same port PORT SECURITY privileged SET DEFINE PORT SECURITY ENABLED CHANGE DISABLED This privileged option indicates if secure status on the port is ENABLED or DISABLED When ENABLED the commands available on the port are limited to a subset of nonprivileged commands When DISABLED all nonprivileged commands are...

Page 167: ...on begins when the CTS signal is asserted by the modem The default is DISABLED Restriction SIGNAL CHECK should not be used for a port using CTS flow control DSR flow control or SIGNAL CONTROL PORT SIGNAL CONTROL privileged SET DEFINE PORT SIGNAL CONTROL ENABLED CHANGE DISABLED This privileged option determines if modem signals are asserted by the Terminal Server DISABLED should be specified for po...

Page 168: ...he physical ports not including the remote management console Restriction You cannot enable SLIP on ports with the MULTISESSIONS command or characteristics enabled PORT SLIP COMPRESSION nonprivileged SET secure DEFINE PORT SLIP COMPRESSION ENABLED CHANGE DISABLED AUTOCOMPRESS This nonprivileged command determines whether or not the TCP IP header compression is used on SLIP CSLIP The default for th...

Page 169: ...ure option PORT SLIP COMPRESSION STATES privileged SET DEFINE PORT SLIP COMPRESSION STATES CHANGE This privileged command determines how many compression states are used on the SLIP datalink The same number of states are used in each direction number The number of COMPRESSION STATES used by the port must be between 3 to 16 states Restriction The SET SLIP PORT COMPRESSION command is a secure option...

Page 170: ...host address must be in the same subnet If the port already has a SLIP HOST address you cannot use the SET or CHANGE command Use the DEFINE command with the new address and log out of the port to alter an existing address A port can have only one IP address Both SLIP and PPP use the same address that can be configured by the SLIP or PPP protocol command see PORT PPP IPCP HOST ADDRESS command PORT ...

Page 171: ...DYNAMIC This nonprivileged command notifies the Terminal Server to use 1 or 2 stop bits when to output a character Set STOP BITS to 2 when the port speed is up to 134 bps Set STOP BITS to 1 for a port speed above 134 bps To determine the number of stop bits depending on the output speed of the port use DYNAMIC The default is DYNAMIC PORT TELNET CLIENT secure SET DEFINE PORT ALL Telnet CLIENT chara...

Page 172: ...e the DEFINE or CHANGE command with this characteristic ALL and port list are privileged PORT TELNET CLIENT TERMTYPE secure SET DEFINE PORT TELNET CLIENT TERMTYPE term_type CHANGE ANSI This option changes the existing Telnet Client characteristics for the specified ports in the Terminal Server database This option is available to all users term_type The terminal type to be negotiated when new Teln...

Page 173: ...NEWLINE CHARACTER SIZE PORT TELNET SERVER AYT INDICATION privileged SET DEFINE PORT TELNET SERVER AYT INDICATION character CHANGE NONE AYT Are You There designates which character will be relayed to the Terminal Server port of the Telnet server connection when an AYT request is transmitted by the remote user There is no default character PORT TELNET SERVER BREAK BRK INDICATION privileged SET BRK c...

Page 174: ...er which will be sent to the Telnet server connection s associated Terminal Server port when the remote user generates an IP request There is no character defined by default PORT TELNET SERVER NEWLINE FROM TERMINAL privileged SET DEFINE PORT TELNET SERVER NEWLINE FROM TERMINAL string CHANGE CR CRLF NONE LF This characteristic specifies a l or 2 character sequence that is interpreted as a new line ...

Page 175: ...ort The default is no USERNAME Setting a username with the DEFINE PORT command deletes the USERNAME prompt on the subsequent login This prompt can be retained by specifying another DEFINE PORT USERNAME command as well as a quoted Null String for the USERNAME characteristics PORT VERIFICATION secure SET DEFINE PORT VERIFICATION ENABLED CHANGE DISABLED This option determines if informational message...

Page 176: ...NONPRIVILEGED command or logging out the port will return the port back to nonprivileged status to prevent unauthorized use Setting the privileged status effects all terminal sessions Example Local SET PRIVILEGED Password SYSTEM not displayed Local SET server PRIVILEGED PASSWORD Password SECRET not displayed Verification SECRET not displayed Local SET NONPRIVILEGED This example illustrates enterin...

Page 177: ...mmand resets values for the circuit and keepalive timers These values return to their permanent database values upon reinitialization of the Terminal Server SERVER ACCESS PASSWORD privileged SET DEFINE SERVER ACCESS PASSWORD password CHANGE This privileged command designates a password that users accessing the Terminal Server not through a physical port must enter No password checking is the defau...

Page 178: ... privileged SET DEFINE SERVER BROADCAST ENABLED CHANGE DISABLED This privileged option determines whether the BROADCAST is ENABLED or DISABLED for users on port devices The default is ENABLED SERVER CIRCUIT TIMER privileged 4 and 8 port models only SET DEFINE SERVER CIRCUIT TIMER milliseconds CHANGE This privileged LAT protocol option defines the interval between messages sent to LAT service nodes...

Page 179: ...n The SET command cannot be used with this parameter during an active LAT session SERVER INACTIVITY TIMER privileged SET DEFINE SERVER INACTIVITY TIMER minutes CHANGE This privileged option indicates the time out period ranging 1 to 120 minutes for ports having the port characteristic INACTIVITY LOGOUT when ENABLED The timer specifies the length of time that a local terminal port can be logged in ...

Page 180: ...d indicates if the LOCK command can be accessed by interactive port users The default is ENABLED SERVER LOGIN PASSWORD privileged SET DEFINE SERVER LOGIN PASSWORD password CHANGE This is a privileged command that designates a password that interactive users are required to use during Terminal Server login The port characteristic PASSWORD must be specified as ENABLED to obtain the password prompt a...

Page 181: ...er name ranging from l to 16 characters The default is CS_nnnnnnnnnnnn where each n is one of the 12 hexadecimal characters in the CS Terminal Server s Ethernet address Restriction The SET command cannot be used with this parameter during an active session SERVER NODE LIMIT privileged 4 and 8 port models only SET DEFINE SERVER NODE LIMIT limit CHANGE NONE This privileged LAT protocol command speci...

Page 182: ...s more information on password specification SERVER PRIVILEGED PASSWORD privileged SET DEFINE SERVER PRIVILEGED PASSWORD password CHANGE This privileged option designates the password required by a user to access privileged Terminal Server commands at the port issuing the SET PRIVILEGED command When PRIVILEGED PASSWORD is the only characteristic in the command line the password value may be omitte...

Page 183: ...00 for remote terminal to Terminal Server ports This number is called the depth of the queue The default value is 100 The queue is disabled when ascribed a value of 0 NONE is equal to the maximum number of queued connection requests allowed SERVER RESPONDER privileged 4 and 8 port models only SET DEFINE SERVER RESPONDER ENABLED CHANGE DISABLED This privileged command enables or disables the RESPON...

Page 184: ... node information when it receives a Solicited Information request targeted to itself SERVER RETRANSMIT LIMIT privileged 4 and 8 port models only SET DEFINE SERVER RETRANSMIT LIMIT limit CHANGE This privileged option sets the number of times a LAT message will be retransmitted to a service node if acknowledgment messages are not received by the Terminal Server The value ranges from 4 to 120 times ...

Page 185: ... codes in the 0 to 255 range each representing a LAT group code Multiple codes can be set by individual numbers separated by commas by listing a range of ascending numbers or a combination of both For instance the group list l 5 10 13 designates groups l 5 6 7 8 9 10 and 13 SERVER SESSION LIMIT privileged SET DEFINE SERVER SESSION LIMIT limit CHANGE NONE This privileged option indicates the maximu...

Page 186: ...ll continue to try retransmission until the limit is reached Then it will disconnect the telnet session SERVICE privileged 4 and 8 port models only SET DEFINE SERVICE service name characteristic characteristic s CHANGE This privileged option designates local LAT services and characteristics service name This is a privileged command that indicates the name of the LAT service to be designated The ma...

Page 187: ...e default is that no description is transmitted The id string value is a string of 1 to 40 ASCII characters Specifying the command with a quoted null string clears an identification string SERVICE PASSWORD privileged 4 and 8 port models only SET DEFINE SERVICE service name PASSWORD password CHANGE This is a privileged option that designates a LAT service terminal password that a user must provide ...

Page 188: ... default is ALL DISABLED ALL This command enables or disables use of the Telnet service by all ports ACCESS This command affects the LAT remote access users port list Indicates the port s affected by the defined characteristics The default is your own port SERVICE QUEUE privileged 4 and 8 port models only SET DEFINE SERVICE service name QUEUE ENABLED CHANGE DISABLED This is a privileged option tha...

Page 189: ... transfer ASCII files PASSALL Disables all switch characters Terminal Server messages and XON XOFF flow control at the Terminal Server port during the current session This option should be used to transfer binary files Restriction During the current session all messages broadcast to your port are ignored when you SET SESSION to PASSALL or PASTHRU mode Example Local SET SESSION LAT PASSALL This exa...

Page 190: ...secure character DEFAULT CTRL O SET SESSION Telnet AO REQUEST DEL NONE Are You There AYT request designates a keyboard character to call up the Telnet AYT function The remote host then returns a message that it is still up and running The default character is Ctrl T If DEL is to be designated as the keyboard character enter DEL including the angle brackets SESSION TELNET BINARY secure DISABLED SET...

Page 191: ... TRANSMIT CHARACTER SIZE 7 RECEIVE 8 This secure command determines if the characters sent and received on this connection are 7 bit or 8 bit 8 bit is the default in both directions SESSION TELNET ECHO secure SET SESSION TELNET ECHO LOCAL REMOTE This secure Echo ECHO option indicates if this connection s input will be echoed locally by the Terminal Server or remotely by the remote host The default...

Page 192: ... SET SESSION TELNET NEWLINE FROM TERMINAL CRLF LF NONE This secure command designates a 1 or 2 character sequence which is interpreted as a new line when received by the Terminal Server from the terminal The default is CR If the keyboard character is to be CR enter DEL including the angle brackets SESSION TELNET NEWLINE TO TERMINAL secure string CR SET SESSION TELNET NEWLINE TO TERMINAL CRLF LF NO...

Page 193: ...nnection CHARACTER is the default SESSION TELNET QUOTE secure SET SESSION TELNET QUOTE character NONE This is a secure option that designates a keyboard character that causes the character entered next to be interpreted as ordinary user data To enter keys that are mapped to Telnet functions e g Ctrl T to AYT Ctrl O to AO etc as ordinary data use a QUOTE character first No default QUOTE character e...

Page 194: ... enable or suppress echoing on a connection For example the user might toggle echo OFF while entering a password The default character is Ctrl E Restriction The TOGGLE ECHO character functions only when the Terminal Server locally echoes input SNMP STATE privileged SET ENABLED DEFINE SNMP STATE DISABLED CHANGE This is a command for privileged users that configures the Simple Network Management Pro...

Page 195: ...LED GET ENABLED GET NEXT ENABLED and SET DlSABLED community name This is an ASCII string enclosed in double quotes with a maximum of 32 printable characters per community name When the number of characters for any one name surpasses the 32 character limit the name is truncated to 32 characters Each community name will be associated with either ADDRESS ANY or with one particular ip address ANY is t...

Page 196: ...GET Permits members of the community to read values from the Terminal Server management information base MIB when ENABLED The default is ENABLED GET NEXT Permits members of the community to sequentially read values from the Terminal Server supported MIBs when ENABLED The default is ENABLED SET Permits exclusion of the word sequentially from the Terminal Server supported MIBs by members of the comm...

Page 197: ...rver must have an internet address assigned to enable the SNMP agent You may use up to 32 characters for a community name However it is recommended to use fewer characters per name so as to allow more community names Examples Local DEFINE SNMP COMMUNITY SHELLY ADDRESS 192 114 34 60 This example defines a SNMP community name SHELLY which can be accessed exclusively by the internet host with a addre...

Page 198: ...that remote users specify in their connect request The default TCP port number is 2000 physical port number CONNECTIONS Determines if the listener is ENABLED or DISABLED for connection reception The default is DISABLED IDENTIFICATION id string A descriptive text string that is associated with the listener for SHOW displays The default is no id string PORTS Specifies the Terminal Server physical po...

Page 199: ... the Terminal Server port number s See Chapter 6 for more information on specifying port list Restrictions You cannot use SET or CHANGE PORTS until CONNECTIONS is DISABLED Telnet listener ports cannot be DISABLED during active sessions You can only ENABLE connections to a Telnet listener if the listener is associated with an Terminal Server ports or if the internet address has been specified on th...

Page 200: ...commands enable a Telnet listener on tcp port 23 designating it as a remote access port LOCAL DEFINE Telnet LISTENER 2001 PORTS 1 2 LOCAL DEFINE Telnet LISTENER 2001 CONNECTIONS ENABLED These commands enable Telnet listener 2001 on Terminal Server ports 1 and 2 The Terminal Server permanent database is effected by these commands ...

Page 201: ...nnn nnn nnn Alternate Server nnn nnn nnn nnn Timeout nn Retries nn Note that the secret is not shown The only way to verify its value is to set it again using the DEFINE ACCOUNTING SECRET command AUTHENTICATION privileged SHOW AUTHENTICATION LIST This option displays information about the authentication setting from the Terminal Server s internal database Presented are the addresses of the primary...

Page 202: ...meters of the internet protocol such as the internet address This is the default display COUNTERS Displays the existing values of the different counters of the internet protocol Restriction COUNTERS does not work with the LIST command Examples Local SHOW INTERNET COUNTERS Existing values of the different counters of the internet protocol in the operational database are shown with this command Loca...

Page 203: ...s the internet gateways known to the Terminal Server in addition to the networks and hosts that are available to the user This command is available to all users Restriction INTERNET GATEWAY cannot be used when PORT LIMITED VIEW CHARACTERISTICS is ENABLED Example Local SHOW INTERNET GATEWAY This command specifies the information available to the user such as all current gateways in the operational ...

Page 204: ...t CACHED Indicates to display only hosts that the Terminal Server has in the DNS cache LOCAL Designates that only those hosts defined locally at the Terminal Server will be shown domain name Specifies the domain name of a host STATUS Specifies the time to live TTL numbers for each host shown SUMMARY Displays a one line summary of information about the host This is the default Restrictions CACHED i...

Page 205: ...y configured and learned cached that serve the current default domain of the Terminal Server If you change the value of the default domain the SHOW INTERNET NAME RESOLUTION command will display different name servers CHARACTERISTICS Displays the current settings of the user definable parameters associated with the Terminal Server DNS module including domain name query time limit resolution time ou...

Page 206: ...s The second number Use shows how many buffers of that size are used at the moment The third number Max shows what was the highest consumption of buffers from the time the Terminal Server was reset high water mark The fourth number Fail shows how many times a buffer allocation request was failed due to shortage in buffers in this pool If this happens the Terminal Server will allocate a buffer from...

Page 207: ...mation for all authorized service nodes with Reachable Unknown or Unreachable status currently selected on the port The default display provides only currently selected nodes that are Reachable or Unknown unless ALL is indicated node name Specifies a service node for which information is displayed COUNTERS Shows existing counter values for the node s indicated STATUS This command provides full inf...

Page 208: ...E PORT commands This command is available to all users ACCESS type This command indicates that information is shown exclusively for ports with ACCESS set to the type chosen such as LOCAL REMOTE DYNAMIC or NONE ACCESS is a port characteristic defined with the SET DEFINE CHANGE PORT command ALL Indicates that information for all ports is shown port list Specifies one or more ports for displaying inf...

Page 209: ...ary This is the default when ALL or ACCESS is specified Restriction Port designations port list ALL and ACCESS cannot be accessed by users on secure ports in these commands Examples Local SHOW PORT ACCESS REMOTE SUMMARY This command shows a one line summary of information for those Terminal Server ports whose ACCESS characteristics are designated as REMOTE Local SHOW PORTS ALL Displays the operati...

Page 210: ...ommand COUNTERS The COUNTERS command displays information about all the counters relevant to the LCP or IPCP protocol operation This command is normally used as a diagnostic aid You can zero each of these counters using the CONNECT and DISCONNECT commands STATUS The STATUS command display information about the state of the LCP or IPCP implementation in the access server Because of the nature of PP...

Page 211: ...r PORT port list Displays sessions for the specified port s The default displays sessions for the existing port SESSION ALL Displays all sessions for the specified port SESSION session id Identifies the session number of the specified port to be displayed The current session is the default CHARACTERISTICS Displays the current settings for session characteristics This is the default STATUS Displays...

Page 212: ... Binary Disabled Will Binary Disabled Do Echo Disabled Will Echo Enabled Do SGA Disabled Will SGA Enabled Do Status Enabled Will Status Disabled Do End of Record Disabled Will End of Record Disabled Do Remote Flow Control Disabled Will Remote Flow Control Disabled Will Terminal Type Enabled UNKNOWN Port 1 session 3 Protocol Telnet no status information available for Telnet sessions ...

Page 213: ...pecifies one or more ports for which information is displayed default the port you are using CHARACTERISTICS Display current values for port SLIP characteristics This is the default COUNTERS Displays current counter values for the specified port s Restrictions When using the MONITOR command your port type characteristic should be set to ANSI otherwise the displayed information will scroll off the ...

Page 214: ...l Server port number s for which the Telnet database is to be displayed Telnet Shows the Telnet characteristics of the Terminal Server port database CLIENT Displays Telnet CLIENT characteristics This is the default SERVER Shows Telnet server characteristics CHARACTERISTICS Displays the current port parameters associated with Telnet Restriction The port list characteristic is available only on priv...

Page 215: ... the Terminal Server The default display selection is ALL NODE node name Displays information for all LAT queue entries requested by the specified LAT node PORT port number Shows information for all LAT queue entries that are served by the specified port s SERVICE service name Displays information for all LAT queue service name entries for the specified service Examples Local SHOW QUEUE NODE SUPPO...

Page 216: ... SERVICE GROUPS command This is the default display type COUNTERS Displays current Ethernet data link protocol and LAT protocol counter values for the Terminal Server STATUS Provides status information for the Terminal Server SUMMARY Shows a summary of information for the Terminal Server such as name address identification string as well as a summary of all groups currently selected by all ports o...

Page 217: ...ur current group codes LOCAL is functional only in SHOW commands because LIST commands display only local node LAT services service name Displays information for the specified service s provided they are included in your current group codes If you do not specify a service name or LOCAL the Terminal Server displays all LAT services that match your current group codes CHARACTERISTICS Displays defina...

Page 218: ...s session information from the operational database for one or all ports on the Terminal Server Unlike the SHOW PORT SESSIONS command that displays session characteristics for one session at a time this command displays all sessions Sessions utilizing the Telnet to LAT or LAT to Telnet gateway feature are virtual sessions and are indicated as V for example V05 ALL Displays sessions for all ports o...

Page 219: ...tics GET GETNEXT SET and TRAP COUNTERS Displays current SNMP error and access counters STATUS Displays whether SNMP is running or not running Restrictions SNMP CHARACTERISTICS is a privileged command The LIST command is invalid for SNMP COUNTERS or SNMP STATUS Examples Local SHOW SNMP STATUS This command displays whether the SNMP protocol is running or not running Local LIST SNMP CHARACTERISTICS T...

Page 220: ...cteristics such as the system location and the system contact person CHARACTERISTICS Displays in ASCII format system information such as the name of the system contact person system manager and the system location Example Local SHOW SYSTEM The above command displays system group characteristics as recorded in the Terminal Server operational database ...

Page 221: ...on about the Telnet listener associated with the specified TCP port is to be displayed CHARACTERISTICS Specifies that the characteristics of the Telnet listener s are to be displayed Restriction Telnet listener is not available to ports if the LIMITED VIEW port characteristic is enabled Example Local SHOW Telnet LISTENER 2001 This command shows the characteristics of the Telnet listener on TCP por...

Page 222: ...ESS ip address ip address NETWORK ANY net addr SUBNET MASK submask Erases existing gateway entries from the Terminal Server database for privileged users ALL Specifies all existing gateway entries in the Terminal Server database ip address Indicates the local network internet address of the gateway to be erased You may also use the NETWORK net address and HOST ip address options otherwise the defa...

Page 223: ...net mask in the Terminal Server s operational database when the mask option is omitted Restrictions Gateway entries with active connections cannot be removed by the CLEAR command However the PURGE command does remove gateway entries with active connections since it affects only the permanent database The HOST and NETWORK characteristics are not valid with the ALL characteristic Examples Local CLEA...

Page 224: ...y this command LOCAL Deletes only hosts that have been defined locally at the Terminal Server Restriction The CACHED characteristic is not valid with the PURGE command Examples Local CLEAR INTERNET HOST CACHED This command acts on the Terminal Server s operational database to delete all internet hosts from the Terminal Server s DNS cache Local PURGE INTERNET HOST ALL This command acting on the Ter...

Page 225: ...rver to be deleted ADDRESS ip address Specifies the name of the domain name server to be deleted This option is useful when there are two or more defined name servers with the same name The address must be a valid internet address of the form n n n n where n is a decimal number in the ranging from 0 to 255 Examples Local PURGE INTERNET NAMEserver ALL This command deletes all name server entries fr...

Page 226: ...nd keywords PPP and SLIP are interchangeable Restriction You cannot use the CLEAR command with a PPP address on a port with an existing PPP or SLIP session Example Local PURGE PORT 5 PPP HOST In this command the address of the PPP host at port 5 is deleted from the access server s permanent database SERVICES privileged 4 and 8 Port models only CLEAR SERVICE service name PURGE LOCAL This privileged...

Page 227: ...a locally defined service SNMP COMMUNITY privileged CLEAR SNMP COMMUNITY ALL PURGE community name This privileged command clears an SNMP community name from the Terminal Server database ALL This command indicates the SNMP communities currently defined in the community database except for the default community PUBLIC community name Specifies a community name or a community s characteristics in the ...

Page 228: ...eged CLEAR Telnet LISTENER tcp port PURGE ALL This privileged command resets a predefined Telnet listener in the Terminal Server database back to the factory set defaults An error message appears if the CLEAR Telnet LISTENER command is entered while there are sessions active from the specified listener Before executing the CLEAR command log out the ports on which these sessions are fixed ...

Page 229: ...nnections ENABLED and Ports ACCESS when the listener specified is 23 used for Telnet remote access ALL Indicates all Telnet listeners currently defined in the designated database Restriction The CLEAR Telnet LISTENER command cannot be used with an active session Example Local CLEAR Telnet LISTENER 2010 The Telnet listener mapped to TCP port 2010 is reset to factory set defaults Connections DISABLE...

Page 230: ...ting XON XOFF emulation such as PCPLUS PROCOMM or Windows Terminal You can get the new release via a 3 5 diskette containing a single file in a self extracting compressed format The file name is saved in the form ver_id exe where ver_id is the name of the new version release for example CS2_3_0 exe for version 2 3 Follow these steps to upgrade to the new version 1 Copy this file to a suitable work...

Page 231: ...O Select terminal options and set Duplex FULL Soft flow ctl XON XOFF ON CR translation CR b In Microsoft Windows Terminal Select the Setting Communication option and set Baud rate 9600 115200 Data bits 8 Stop bits 1 Parity NONE Flow control XON XOFF Connector your choice Parity check NO Carrier detect NO 5 Physically connect the serial port of the PC to port 1 on the 4 and 8 port Terminal Server U...

Page 232: ...o a In Procomm v2 x or above Press PgUp and then A to indicate ASCII transfer Type the file name ver_id hex and press Enter b In Microsoft Windows Terminal Select Transfers and choose Send Text File Set the Append LF and Strip LF to NO Select the correct path to the source file ver_id hex and click OK The update procedure takes around fifteen minutes at 38400 baud After every ten lines of code of ...

Page 233: ...ulation to 19200 baud the loader s initial speed for this mode Turn the Terminal Server off and then on The loader header will be displayed and the process can be retried For better performance you can change the loading speed by typing speed speed at the loader prompt and changing the terminal emulation baud rate to match it accordingly ...

Page 234: ...Port Terminal Server 1 Disconnect the power and all other cables 2 Remove the lid of the Terminal Server case by pressing in the four tabs 3 Locate U12 and U13 These are the EPROM integrated circuits 4 Remove them with a flat screwdriver Do this gently so you don t damage them physically and pay careful attention to their fragile pins Take normal precautions against the dangers of electrostatic di...

Page 235: ...ble as an uncompressed ver_id hex file where ver_id is the version id number of the release The following is an example of the EPROM that is supported Single Port Terminal Server 27C020 12 NOTE You must set the programmer to use LOW BYTE HIGH BYTE or split level option when programming these EPROMs for use with the Terminal Server This is because the software is originally stored as 16 bit words a...

Page 236: ...1000 Park Drive Lawrence PA 15055 1018 724 746 5500 Fax 724 746 0746 Copyright 1998 Black Box Corporation All rights reserved ...

Reviews:

No comments

Related manuals for LE2101A-BT-R2

Canon ColorPASS-Z5000 Printing Manual preview
ColorPASS-Z5000
Brand: Canon Pages: 134
IBM x3655 - System - 7985 User Manual preview
x3655 - System - 7985
Brand: IBM Pages: 118
Sun Oracle Sun Blade T6340 Installation And Administration Manual preview
Sun Blade T6340
Brand: Sun Oracle Pages: 82
H3C UniServer BT716F User Manual preview
UniServer BT716F
Brand: H3C Pages: 44
NAIM UNITISERVE - Quick Start Manual preview
UNITISERVE -
Brand: NAIM Pages: 18
NEC EXP339 User Manual preview
EXP339
Brand: NEC Pages: 128
BELINEA o.center User Manual preview
o.center
Brand: BELINEA Pages: 53
Digital Equipment Server 3100 series Installation Manual preview
Server 3100 series
Brand: Digital Equipment Pages: 71
Avaya Aura 5300 User Manual preview
Aura 5300
Brand: Avaya Pages: 119
Portwell PNA-3303 User Manual preview
PNA-3303
Brand: Portwell Pages: 21
IBM P 615 series Service Manual preview
P 615 series
Brand: IBM Pages: 491
ACTi ACD-2000Q Quick Installation Manual preview
ACD-2000Q
Brand: ACTi Pages: 11
IBM 88643RU - System x3850 - 8864 Service Manual preview
88643RU - System x3850 - 8864
Brand: IBM Pages: 192
ABB doGATE Installation Instructions Manual preview
doGATE
Brand: ABB Pages: 9
ABB SPA OPC User Manual preview
SPA OPC
Brand: ABB Pages: 68
Supermicro SUPERSERVER 5028TK-HTR User Manual preview
SUPERSERVER 5028TK-HTR
Brand: Supermicro Pages: 138
Gigabyte G492-ID0 User Manual preview
G492-ID0
Brand: Gigabyte Pages: 108
4xem IPVS1E User Manual preview
IPVS1E
Brand: 4xem Pages: 66

Brands by name

Popular brands

Load more brands