Patton electronics Access Server Administrator'S Reference Manual Download Page 53 | Manualshive

Page: 53 / 262

background image

Setting Up Authentication

53

Access Server Administrators’ Reference Guide

5 • Authentication

as freeware for most computer platforms and is an excellent method for managing user dial-in security.
Any RADIUS entries will require an associated server to process authentication requests from the access
server or the access server will reject users access. For more information about RADIUS, see RADIUS User
Authentication, below.

•

tacacs Users(3)—This feature is not currently available

•

static Then RADIUS(4)—Check the internal user database first, if no match is found, then use RADIUS
to authenticate and provision user services.

•

static Then Tacacs(5)— Check the internal user database first, if no match is found, then use TACACS to
authenticate and provision user services. Not currently implemented.

Note

The following options apply only when using an external authentica-
tion server.

Host Address (auHostAddress)

Tells the access server the IP address of the primary external authentication server. This must be the IP address
as the access server will not resolve a Fully Qualified Domain Name.

Secondary Host Address (auSecondaryHostAddress)

When using a remote authentication server (RADIUS) this variable provides an alternative server IP address.

Host Port (auHostPort)

This variable tells the access server which UDP port to use when connecting to the host specified in the Host
Address variable. The RADIUS standard, as per RFC 2138, specifies port 1812 for RADIUS authentication.
Some older installations of RADIUS use port 1645.

Timeout (auTimeout)

This option specifies the time, in seconds, before the access server will retransmit an authentication request to
an external authentication server.

Retries (auRetries)

This option specifies the number of times the access server will resend an authentication request to a RADIUS
server after a TIMEOUT occurs. If this number is exceeded then the secondary host will be tried. If this num-
ber is exceeded by the secondary host, the user will be rejected.

Secret (auSecret)

The Secret variable sets the shared secret between the authentication client (access server) and the authentica-
tion server (RADIUS). It is used to encrypt an authentication request and to decrypt an incoming reply from
the server. The secret on the access server and the RADIUS server must match and must be 15 or fewer print-
able, non space, ASCII characters.

Note

The same secret word must used on the access server and in the
RADIUS clients file.

«
...
51
52
53
54
55
...
»

Summary of Contents for Access Server

Page 1: ... Administrator s Reference Guide Sales Office 1 301 975 1000 Technical Support 1 301 975 1007 E mail support patton com WWW www patton com Document Number 107001U Rev B Part Number O7MDAS ARG B Revised March 12 2001 ...

Page 2: ...ton com WWW www patton com Copyright 2000 2001 Patton Electronics Company All rights reserved The information in this document is subject to change without notice Patton Electronics assumes no liability for errors that may appear in this document The software described in this document is furnished under a license and may be used or copied only in accor dance with the terms of such license ...

Page 3: ...ls diMaxActive 35 Percentage CPU Idle boxIdleTime 35 DSPs Not Working dspFailed 35 Total DRAM Detected boxDetectedMemory 35 Running Since Last Boot sysUpTime 35 Immediate Actions 36 3 Import Export 37 Introduction 38 Export Configuration 38 Import Configuration 40 4 Alarms 41 Introduction 42 Displaying the Alarms window 42 Alarm Response Outputs 43 Minor Alarm Syslog Priority minSyslogPriority 44 ...

Page 4: ...s auAuthenticationsDenied 51 Primary server retries auPrimaryServerRetrys 51 Secondary server retries auSecondaryServerRetrys 51 Accounting server retries auAccountingServerRetrys 51 Primary server timeouts auPrimaryServerTimeouts 51 Secondary server timeouts auSecondaryServerTimeouts 51 Accounting server timeouts auAccountingServerTimeouts 51 Maximum Response Time 51 Last Response Time 52 Setting...

Page 5: ...dex 68 ML ID diactMultiIndex 68 User diactusername 68 State diactState 68 Duration diactSessionTime 68 Disconnect Reason diactTerminateReason 69 Modulation diactModulation 69 Connect Speed diactSpeed 69 Dial In Details 70 Dial In Modify window 71 Modify Login 72 IP Address Pool diIpPool 72 Login Technique diLoginTechnique 72 Username Prompt diUsernamePrompt 73 Password Prompt diPasswordPrompt 73 I...

Page 6: ...imeout 77 Call History Timeout min diLingerTime 77 Modify Modem Configuration 78 V34 diModemV34Enable 78 V32 diModemV32Enable 78 V22 diModemV22Enable 78 V21 diModemV21Enable 79 MaxSpeed diModemMaxSpeed 79 MinSpeed diModemMinSpeed 79 Guard Tone diModemGuardTone 79 CarrierLossDuration diModemCarrierLossDuration 79 Billing Delay diBillingDelay 79 Retrain diModemRetrain 79 TxLevel diModemTxLevel 79 Pr...

Page 7: ...diStatLocalToPeerACCMap 89 Peer Local ACC Map diStatPeerToLocalACCMap 89 Local Remote PPP Protocol Comprsn diStatLocalToRemoteProtComp 89 Remote Local PPP Protocol Comprsn diStatRemoteToLocalProtComp 89 Local Remote AC Comprsn diStatLocalToRemoteACComp 89 Remote Local AC Comprsn diStatRemoteToLocalACComp 89 Transmit Frame Check Seq Size diStatTransmitFcsSize 90 Receive Frame Check Seq Size diStatR...

Page 8: ...s doActive 97 User doactUsername 97 State doactState 98 Session Time doactSessionTime 98 Disconnect Reason doactTerminateReason 98 Dial Out Details window 99 Dial Out Modify window 100 Modify Login 100 TCP Port doTcpPort 100 TCP Type doServiceType 100 Restrict to Lan doRestrictToLan 101 Login Technique doLoginTechnique 101 Username Prompt doUsernamePrompt 101 Password Prompt doPasswordPrompt 101 I...

Page 9: ...e 107 Time Left In Session doactRemainingSession 107 Phone 107 Number Called doactNumberDialed 107 Data 107 Octets Sent doactSentOctets 108 Octets Received doactReceivedOctets 108 Physical Layer 108 Connection Modulation doactModulation 108 Connection Speed doactSpeed 108 Error Correction Protocol doactErrorCorrection 108 Data Compression Protocol doactCompression 109 Modulation Symbol Rate doactS...

Page 10: ...Admin State dspDesiredState 118 DSP Use dspUse 119 Connects dspSuccessfullyConnects 119 Fails dspFailedConnects 119 DSP information window 120 Status 120 DSP State dspState 120 Used By dspUse 121 Desired DSP State dspDesiredState 121 Call Statistics 121 Originating Calls dspOriginatingCalls 121 Answering Calls dspAnsweringCalls 121 Local Disconnects dspLocalDisconnects 121 Successful Connects dspS...

Page 11: ...4 11 Ethernet 125 Introduction 126 Ethernet statistics 126 Alignment Errors dot3StatsAlignmentErrors 126 FCS Errors dot3StatsFCSErrors 126 Single Collision Frames dot3StatsSingleCollision Frames 126 Multiple Collision Frames dot3StatsMultipleCollisionFrames 126 SQE Test Errors dot3StatsSQETestErrors 126 Deferred Transmissions dot3StatsDeferredTransmissions 126 Late Collisions dot3StatsLateCollisio...

Page 12: ... on Link 140 Transmit Bits Sec framerelTxOctets 140 Receive Bits Sec framerelRxOctets 140 No Buffers Available framerelRxNoBufferAvailable 140 Data Overflow framerelRxDataOverflow 140 Message Ends framerelRxMessageEnds 140 Packets Too Long framerelRxPacketTooLong 140 Overflow framerelRxOverflow 140 Aborts FramerelRxAbort 140 Bad CRC framerelRxBadCrc 140 Invalid Frames framerelRxInvalidFrame 140 Tx...

Page 13: ...s 151 Destinations Unreachable IcmpInDestUnreachs IcmpOutDestUnreachs 151 Times Exceeded icmpInTimeExcds icmpOutTimeExcds 151 Parameter Problems icmpInParmProbs icmpOutParmProbs 151 Source Quenchs icmpInSrcQuenchs icmpOutSrcQuenchs 151 Redirects icmpInRedirects icmpOutRedirects 152 Echos icmpInEchos icmpOutEchos 152 Echo Replys icmpInReps icmpOutReps 152 Time Stamps icmpInTimestamps icmpInTimestam...

Page 14: ...ow 161 Forwarding ipForwarding 162 Default Time To Live ipDefaultTTL 162 Total Datagrams Received ipInReceives 162 Discarded for Header Errors ipInHdrErrors 162 Discarded for Address Errors ipInAddrErrors 162 Forwarded Datagrams ipForwDatagrams 162 Discarded for Unknown Protos ipInUnknownProtos 162 Discarded w No Errors ipInDiscards 162 Total Deliveries ipInDelivers 163 Out Requests ipOutRequests ...

Page 15: ...teNextHop 168 Interface ipRouteIfIndex 168 Type ipRouteType 168 Protocol ipRouteProto 169 Info ipRouteInfo 169 IP Routing Destination window 170 Route Destination ipRouteDest 170 Mask ipRouteMask 170 Interface ipRouteIfIndex 170 Protocol ipRouteProto 170 Seconds Since Updated ipRouteAge 171 Tag RouteTag 171 Gateway RouteGateway 171 Cost RouteCost 171 State RouteState 171 Address Translation Inform...

Page 16: ...de 178 Forward Seize lineSigForwardSeize 179 Back Acknowledge lineSigBackAck 179 Back Answer lineSigBackAnswer 180 Minimum Transition Time lineSigMinTransTime 180 Minimum Detection Time lineSigMinDetectTime 180 Protocol Timeout lineSigProtoTimeout 180 Interregister Signalling 180 Called Number 181 Total Digits interRegCalledNumDig 181 First and Middle Response Code interRegCalledNumFirst 181 Last ...

Page 17: ...93 ASN ParseErrors snmpInASNParseErrs 193 Error Status Too Big snmpInTooBigs 193 No Such Names snmpInNoSuchNames 193 Bad Values snmpInBadValues 193 Error Status Read Only snmpInReadOnlys 193 Generated Errors snmpInGenErrs 193 Get Get Next Variables snmpInTotalReqVars 193 Set Variables snmpInTotalSetVars 193 Get Requests snmpInGetRequests 193 Get Next Requests snmpInGetNexts 194 Set Requests snmpIn...

Page 18: ... Revision boxManufacturePcbRevision 201 General Information boxManufactureGeneralInfo 201 Message Blocks 201 Packet Holding Message Blocks 201 Total boxMsgBlksConfigured 201 Free boxMsgBlksFree 201 Total Time Waited boxCountMsgBlkTaskWait 201 Total Times Unavailable boxCountMsgBlkUnavailable 201 Operating System Heap Memory 202 Total Size boxHeapSize 202 Free boxHeapFreeSpace 202 Largest boxHeapLa...

Page 19: ...07 Physical Location sysLocation 207 System Services sysServices 207 System Packet Holding Message Blocks 207 Buffer Size boxbuffersize 208 No of Buffers boxbuffercount 208 No Free boxbuffersfree 208 No of Tasks Waited boxCountBufferTaskWait 208 No of Times Unavailable boxCountBufferUnavailable 208 21 System Log 209 Introduction 210 System Log Main Window 210 System Log Modify 211 Daemons 211 SysL...

Page 20: ...k Pseudo Failure 223 TS16 Alarm Indication Signal Failure 223 Loss Of MultiFrame Failure 223 Far End Loss Of Multiframe Failure 223 SNMP MIB definition 224 Line Status Configuration 225 Time Elapsed dsx1TimeElapsed 226 Valid Intervals dsx1ValidIntervals 226 WAN Circuit Configuration Modify 227 Line Interface Settings 228 Circuit ID dsx1CircuitIdentifier 228 Line Type dsx1LineType Type dsx1LineType...

Page 21: ...alNumber 235 Errored Seconds dsx1intervaless 235 Severely Errored Seconds dsx1IntervalSESs 235 Severely Errored Frame Seconds dsx1IntervalSEFSs 235 Unavailable Seconds dsx1IntervalUASs 235 Controlled Slip Seconds dsx1IntervalCSSs 236 Path Code Violations dsx1IntervalPCVs 236 Line Errored Seconds dsx1IntervalLESs 236 Bursty ErroredSeconds dsx1IntervalBESs 236 Degraded Minutes dsx1IntervalDMs 236 Li...

Page 22: ...d Seconds dsx1FarEndIntervalLESs 240 Bursty Errored Seconds dsx1FarEndIntervalBESs 240 Degraded Minutes dsx1FarEndIntervalDMs 240 Line Code Violations dsx1FarEndIntervalLCVs 240 Far End Line Statistics Totals 241 Errored Seconds dsx1FarEndTotalESs 241 Severly Errored Seconds dsx1FarEndTotalSESs 241 Severely Errored Frame Seconds dsx1FarEndTotalSEFSs 241 Unavailable Seconds dsx1FarEndTotalUASs 241 ...

Page 23: ...Received udpInDatagrams 250 Received With No Ports udpNoPorts 250 Others Received with No Delivery udpInErrors 250 Sent udpOutDatagrams 250 Listener Table udpTable 251 Local Address udpLocalAddress 251 Local Port udpLocalPort 251 25 About 253 Introduction 254 Patton Electronics Company contact information 254 26 License 255 Introduction 256 End User License Agreement 256 1 Definitions 256 2 Title ...

Page 24: ...Contents Access Server Administrators Reference Guide 24 ...

Page 25: ... 2 describes configuring the Home window Chapter 3 describes configuring the Import Export window Chapter 4 describes configuring the Alarms window Chapter 5 describes configuring the Authentication window Chapter 6 describes configuring the DAX window Chapter 7 describes configuring the Dial In window Chapter 8 describes configuring the Dial Out window Chapter 9 describes configuring the Drop and...

Page 26: ...DIUS attributes Typographical conventions used in this document This section describes the typographical conventions and terms used in this guide General conventions The procedures described in this manual use the following text conventions Table 1 Text conventions Convention Meaning Futura bold type Indicates the names of menu bar options Italicized Futura type Indicates the names of options on p...

Page 27: ...his word means to move the mouse in such a way that the tip of the pointing arrow on the screen ends up resting at the desired location Click Means to quickly press and release the left or right mouse button as instructed in the procedure Make sure you do not move the mouse pointer while clicking a mouse button Double click means to press and release the same mouse button two times quickly Drag Th...

Page 28: ...About this guide Model 2960 RAS Getting Started Guide 28 ...

Page 29: ...29 Chapter 1 Introduction Chapter contents Introduction 30 Logging into the HTTP HTML Administration Pages 30 HTTP HTML and SNMP Object Format 30 Saving HTTP HTML Object Changes 31 ...

Page 30: ... browser After you enter the IP address the access server will ask for your user name and password as shown in figure 1 Figure 1 Access server login window Your access server will accept the following default administrative passwords superuser this password carries full permission to change and view any parameters in the access server monitor this password allows full viewing of any non password o...

Page 31: ... pages Do the following to make changes to read write variables 1 Select the appropriate Modify screen 2 Make changes to the desired parameter 3 Click on the Submit button 4 Return to the HOME screen 5 Click on the Record Current Configuration button Note Make sure you follow steps 1 through 5 when modifying the HTTP HTML pages Otherwise your changes will be lost when the access server is power cy...

Page 32: ...1 Introduction Access Server Administrators Reference Guide 32 Saving HTTP HTML Object Changes ...

Page 33: ... Operating Status Variables 35 Active Calls diActive 35 Peak Active Calls diMaxActive 35 Percentage CPU Idle boxIdleTime 35 DSPs Not Working dspFailed 35 Total DRAM Detected boxDetectedMemory 35 Running Since Last Boot sysUpTime 35 Immediate Actions 36 ...

Page 34: ...the HOME page from any other page The HOME window is divided into two panes the Configuration Menu pane and the configuration information pane see figure 3 The Configuration Menu contains the links to the various access server subsystems while the configuration information pane is where you can view status and other information or make changes to the system configuration Unlike the Configuration M...

Page 35: ...r The return value is a percentage of free CPU cycles since the last time the variable was read DSPs Not Working dspFailed This number should always be zero The DSP s in the access server are arranged as a resource pool and called upon at ring time Therefore if a DSP does not work chances are you ll never know as the access server will automatically remove the faulty DSP from the resource pool One...

Page 36: ... next time the access server is re booted Hard Reset this button causes the access server to perform a cold restart When you select Hard Reset the access server confirm that you want to execute this command Then the access server will disconnect all current sessions re initialize the interfaces and re load configuration parameters from FLASH Set Factory Default Configuration this button clears out...

Page 37: ...37 Chapter 3 Import Export Chapter contents Introduction 38 Export Configuration 38 Import Configuration 40 ...

Page 38: ...peruser access privileges To import or export a configuration click on Import Export under the Configuration Menu to display the Import Export main window see figure 6 Figure 6 Import Export main window Export Configuration Note The exported configuration file is a text format file Do not try how ever to edit the operating characteristics contained in the file Note The parameters that will be expo...

Page 39: ...3 Import Export To export the flash configuration click on the Export Flash link on the Import Export main page The access server will display text configuration information resembling that shown in figure 7 Figure 7 Typical access server flash memory configuration data ...

Page 40: ...tion data as a text file Import Configuration To import a configuration file into the access server type the complete path and filename for the configuration file you wish to load or click on the Browse button to select the desired file then click on the Submit Query button see figure 6 on page 38 Upon successfully importing the file the access server will display Configuration Load Complete indic...

Page 41: ...rapIp 44 Major Alarm Trap IP majorTrapIp 44 Clear All Alarms 44 Alarms 44 Alarm ID 44 Alarm Name 44 Alarm Time 44 Alarm Count 44 Generate Alarm 44 Clear Alarm 44 Modify Response Configuring the alarm response system 45 Minor Alarm Syslog Priority minSyslogPriority 45 Major Alarm Syslog Priority majorSyslogPriority 45 Minor Alarm Trap IP minorTrapIp 45 Major Alarm Trap IP majorTrapIp 45 Modify Alar...

Page 42: ... a power supply failure or if a T1 E1 PRI port malfunctions There are 11 access server items that can be configured by the user to generate alerts based on the condition of the access server Displaying the Alarms window Click on Alarms under the Configuration Menu to to display the Alarm System main window figure 9 Note The system administrator can manually generate a specific alarm for testing pu...

Page 43: ...or SYSLOG messages click on the Alarm Response link go to Modify Response Configuring the alarm response system on page 45 Besides enabling a user to view current alarm status manually generate an alarm as a test and clear the alarm time and alarm count variables the Alarms main window also contains links to the following Modify Response Clicking on this link takes you to a window where you can ch...

Page 44: ...t to 0 0 0 0 then no trap message will be sent in response to a minor alarm Clear All Alarms Clicking on this button resets all alarms to a non alarm condition Alarms This portion of the Alarms main window displays the alarm status table where you can view current alarm sta tus manually generate an alarm as a test and clear the alarm time and alarm count variables Alarm ID This number identifies t...

Page 45: ...larm SYSLOG message SYSLOG outputs that have a priority less than this value will receive the minor alarm SYSLOG message Major Alarm Syslog Priority majorSyslogPriority Sets the SYSLOG priority of the major alarm SYSLOG message SYSLOG outputs that have a priority less than this value will receive the minor alarm SYSLOG message Minor Alarm Trap IP minorTrapIp The IP address of a host system which i...

Page 46: ...e eleven alarms items that can be configured to generate alarm conditions Each alarm item can be set for one of the following severity levels Ignore 0 Do not generate an alarm Minor 1 Generate a minor alarm that will not reset until the administrator manually clears it Major 2 Generate a major alarm that will not reset until the administrator manually clears it MinorSelfClearing 3 Generate a minor...

Page 47: ...major or minor alarm is left up the administrator Some examples of typical major and minor include Box Over temperature Major Alarm Power Supply Failure Minor Alarm WAN Port Yellow Alarm MajorSelfClearing WAN Port Red Alarm MajorSelfClearing To set an alarm click on the drop down menu for the desired alarm item choose the new setting then click on Submit Query ...

Page 48: ...4 Alarms Access Server Administrators Reference Guide 48 Modify Alarms Configuring alarm severity levels ...

Page 49: ...Timeouts 51 Secondary server timeouts auSecondaryServerTimeouts 51 Accounting server timeouts auAccountingServerTimeouts 51 Maximum Response Time 51 Last Response Time 52 Setting Up Authentication 52 Validation auValidation 52 Host Address auHostAddress 53 Secondary Host Address auSecondaryHostAddress 53 Host Port auHostPort 53 Timeout auTimeout 53 Retries auRetries 53 Secret auSecret 53 NAS Ident...

Page 50: ... section describes the authentication parameters The access server uses static and or RADIUS authentication to decide which dial in users can access the system refer to Appendix A Supported RADIUS Attributes for a full list of RADIUS attributes Displaying the Authentication window Do the following 1 Click on Authentication under the Configuration Menu see figure 13 Figure 13 Authentication main sc...

Page 51: ...ast access server reset Denied authentications auAuthenticationsDenied The total number of authentication attempts requested but denied since the last access server reset Primary server retries auPrimaryServerRetrys The number of times the access server needed to make subsequent requests for a call to the primary RADIUS authentication server Secondary server retries auSecondaryServerRetrys The num...

Page 52: ...tic users Figure 14 Authentication Configuration screen Validation auValidation Selects how the access server will authenticate an incoming call Select from No Validation 0 Select this to allow un authenticated calls into the access server and on to your LAN using the default service static Users 1 Use the access server internal user database only to authenticate Static users are simply users and ...

Page 53: ...stAddress When using a remote authentication server RADIUS this variable provides an alternative server IP address Host Port auHostPort This variable tells the access server which UDP port to use when connecting to the host specified in the Host Address variable The RADIUS standard as per RFC 2138 specifies port 1812 for RADIUS authentication Some older installations of RADIUS use port 1645 Timeou...

Page 54: ...bling or disabling the reporting of accounting information on the access server The following options are available enableAccounting Begin accounting of RADIUS authenticated users disableAccounting Disable the accounting feature enableAccounting no validation When a response is received from either the authentication or the accounting server it is validated using the defined secret If the secret d...

Page 55: ...iables found in the Static User Identification section Figure 15 Static User Identification setup ID suID Identifies the entry in the table of users For the next user select the next unused number If you select a num ber that is already displayed in the Static User Identification table you will overwrite a current entry in user database Username suUsername This is a unique name to be provided at l...

Page 56: ... server will negotiate a SLIP connection cslip Access server will negotiate a Compressed SLIP connection dialout Access server will give a dialout connection The dialout connection is an AT command set driven connection into one of the access server modems On line help is provided by typing at help cr vpn This option is currently not supported Note If a user attempts to login in using a different ...

Page 57: ... server will use the default values for Telnet port number 23 and RLogin port number 513 Note After you have submitted all changes click on the HOME link in the Configuration Menu Once there click on the Record Current Con figuration button located under Immediate Actions to save the changes to FLASH memory on the access server All changes made to the running configuration must be saved to FLASH m...

Page 58: ...5 Authentication Access Server Administrators Reference Guide 58 Static User Authentication ...

Page 59: ...hapter 6 DAX Chapter contents Introduction 60 Configuring the DAX 60 Circuit Type daxClockMode 60 Main Reference daxClockMainRef 61 Fallback Reference daxClockFallbackRef 61 Clock Status daxClockFailure 62 ...

Page 60: ...s the overall clocking scheme for the entire access server refer to Circuit Type dax ClockMode Main Reference Determines which WAN link supplies the clock for the system refer to Main Reference daxClockMainRef on page 61 Fallback Reference Enables the configuration of a back up clock reference should the Main Reference fail refer to Fallback Reference daxClockFallbackRef on page 61 Circuit Type da...

Page 61: ...timing from a slave circuit netref 2 102 Use to obtain system timing from a slave circuit oscillator 200 Use internal free run oscillator for the system clock Fallback Reference daxClockFallbackRef The fallback reference enables the configuration of a back up clock reference should the main reference fail The following settings are available none 0 No clock selection This would be used in conjunct...

Page 62: ...arms the DAX page will indicate No Alarms see figure 17 on page 60 Should one or more alarms be present an Alarms Present message will be displayed with the following list of potention clock failures figure 18 no failures 0 No alarms present main ref fail 1 The main clock reference has failed fallback ref fail 2 The fall back clock reference has failed master system clock fail 4 The Master System ...

Page 63: ...ue diLoginTechnique 72 Username Prompt diUsernamePrompt 73 Password Prompt diPasswordPrompt 73 Initial Banner diBanner 73 Modify Service 73 Default Service diService 73 Default IP Service diServiceIP 73 Default Service Port diServicePort 74 Force Next Hop diForceNextHop 74 Modify Domain Name Server 74 Primary Domain Name Server diPrimaryDNS 74 Secondary Domain Name Server diSecondaryDNS 74 Primary...

Page 64: ...mCarrierLossDuration 79 Billing Delay diBillingDelay 79 Retrain diModemRetrain 79 TxLevel diModemTxLevel 79 Protocol diModemProtocol 80 Compression diModemCompression 80 Dial In User Statistics window 81 Call Identification 82 Call ID diactIndex 82 State diactState 82 Username diactUsername 82 Password diactPassword 82 Shared Unique ID diactMultiIndex 82 Protocol diactProtocol 82 Security Level di...

Page 65: ...ocalACComp 89 Transmit Frame Check Seq Size diStatTransmitFcsSize 90 Receive Frame Check Seq Size diStatReceiveFcsSize 90 IP 90 Operational Status diIpOperStatus 90 Local Remote VJ Protocol Comprsn diIpLocalToRemoteCompProt 90 Remote Local VJ Protocol Comprsn diIpRemoteToLocalCompProt 90 Remote Max Slot ID diIpRemoteMaxSlotId 90 Local Max Slot ID diIpLocalMaxSlotId 91 Force Next Hop diForceNextHop...

Page 66: ...ators Reference Guide 66 Locally Initiated Renegotiates diactLocalRenegotiates 93 Locally Initiated Retrains diactLocalRetrains 93 Remote Initated Renegotiates diactRemoteRenegotiates 93 Remote Initated Retrains diactRemoteRetrains 93 ...

Page 67: ...o view or modify individual user settings select an active user in the State column for example if you wanted to modify user jill you would click on the online 6 link next to jill s username For more informa tion about modifying individual user settings refer to Dial In User Statistics window on page 81 Details link clicking on the Details link takes you to the page where you can see how the syste...

Page 68: ...er to this ID as a pointer to the bundlehead or originating call ML ID diactMultiIndex Subsequent calls in a multilink PPP ISDN call have a pointer to the bundlehead or originating call User diactusername The user name that the caller entered This can be a static user or a radius user s login name State diactState As the call comes into the access server it can be in one of five states Ringing The...

Page 69: ... link unknown 0 v21 1 V 21 modulation v22 2 V 22 modulation v32 3 V 32 modulation v34 4 V 34 modulation k56 5 K56 Flex modulation x2 6 X 2 modulation v90 7 V 90 modulation v110 8 V 110 modulation not currently implemented isdn64 9 ISDN 64 modulation isdn56 10 ISDN 56 modulation not currently implemented 12tp 11 12tp tunnelled multilink call Connect Speed diactTxSpeed The connected speed of the lin...

Page 70: ...et up to handle dial in users To view this page select Details from the main Dial In window Scroll down the window to view additional Dial In access server parameters To modify the Dial In access server parameters click on the Modify link For more information about modifying Dial In settings refer to Dial In Modify window on page 71 Figure 20 Dial In Details window ...

Page 71: ...e 74 Dial in attempts access server parameters see Modify Attempts on page 75 Link compression MRUs MultiLink and MultiBox access server parameters see Modify Configuration on page 75 Time out access server parameters for the session idle time to login and the MIB data linger time see Modify Maximum Time on page 77 Modem configuration objects for dial in users see Modify Modem Configuration on pag...

Page 72: ...xt logins or PPP calls using PAP authentication text 2 A username prompt is displayed and a username must be entered If the received username is a static user with no password defined then the connection completes and no password prompt is issued If a password is required then a password prompt is displayed and a password must be entered pap 3 This setting assumes that all calls will be PPP users ...

Page 73: ... the user The message can be up to 39 characters and should be an ASCII printable string It can include carriage returns and line feeds The username prompt immediately follows the initial banner This banner only appears for text login users Modify Service This portion of the Dial In Modify window see figure 21 on page 71 describes changing user login services Default Service diService This object ...

Page 74: ...DIUS attribute used to set the Force Next Hop is attribute 209 a Patton vendor extension For a full list of RADIUS attributes see Appendix A Supported RADIUS Attributes Modify Domain Name Server This portion of the Dial In Modify window see figure 21 on page 71 describes modifying the primary and secondary domain name servers for IP and Microsoft Windows Primary Domain Name Server diPrimaryDNS The...

Page 75: ... of up to 254 characters in length that will be displayed to a user if authentication fails This message only appears when the authentication technique is Text Login Attempts Allowed diAllowAttempts The maximum number of attempts a user will be given to login before being disconnected This applies to Text authentication only PAP and CHAP authentication are only allowed a single attempt Modify Conf...

Page 76: ... of the frame check sequence FCS that the local node will generate when sending packets to the remote node This setting becomes active when the link is in the up able to pass packets operational state for more information refer to Operational Status diIpOperStatus on page 90 Compression diIpConfigCompression Determines whether the local node will attempt to negotiate IP compression The following o...

Page 77: ...is is a default setting and it can be overridden by the authentication settings of a specific user Setting the parameter to 0 means the connection will never be terminated Maximum Idle Time min diIdleTimeout This is the maximum time in minutes that a connection is allowed to be idle with no traffic After this time the connection will be terminated This is a default setting and it can be overridden...

Page 78: ...re available disable 0 None of the options are enabled v34Only 1 Support V 34 operation only v34andK56 2 Support V 34 and K56 Flex operation only v34andV90 3 Support V 34 and V 90 operation only v34 and k56 and v90 4 Support V 34 K56 Flex and V 90 operation V32 diModemV32Enable Allow V 32 and V 32bis modulations up to 14 4 kbps The following options are available disable 0 Neither option is enable...

Page 79: ...not used tone1800 3 Guard tone is enabled CarrierLossDuration diModemCarrierLossDuration The number of 100ms intervals that the carrier signal must be missing before the connection is considered lost Choosing a setting of 255 indicates forever The range is 1 to 255 Billing Delay diBillingDelay The number of seconds after answering the call during which the modem should remain silent Retrain diMode...

Page 80: ...egotiate for V 42 error correction or if V 42 correction is not available will use no error correction requireV42 2 V 42 error correction is mandatory otherwise disconnect Compression diModemCompression Assigns the data compression protocol to use with the modem This setting is in effect only when V 42bis error correction see Protocol diModemProtocol is active Direct 0 No compression will be used ...

Page 81: ...ters defined under these sections refer to each under the access server Con figuration Menu Figure 24 User Statistics Call Identification Session The Dial In User Statistics window see figure 21 is where you can view the following Call Identification information see Call Identification on page 82 Session information see Session on page 83 PPP statistics see PPP Statistics on page 87 IP statistics ...

Page 82: ...f nego tiating the type of modulation V 34 V 32 ISDN or 56K Authenticating The access server is in the process of verifying the user s password by using static or RADIUS authentication Online The access server has completed authentication and the user is now able to access the Internet Kill The administrator can manually disconnect the user by activating this parameter Dead The user s call has bee...

Page 83: ...ws which T1 E1 channel the call is on This is a number from 1 30 IP Address diactIP The currently assigned IP address from the IP address pool or the RADIUS server The remote users PC is assigned to this address The address appears in the IP address 0 0 0 0 format Port on Remote Machine diactPort The TCP port number being used by this connection The range is from 0 to 65 535 Ports in the range of ...

Page 84: ...Calls 21 Exceeds maximum number of channels that can be allocated to the same call notPapReq 24 The access server is waiting for a PAP request packet containing the username password for a call but the packet received was not a PAP request packet noIpPoolAddr 30 Authentication server did not assign an IP address and access had no IP address pool defined to assign an IP address noIpAddr 31 Authenti...

Page 85: ...ng number digit The number of calling number digits expected is more than the digits actually being sent or the Last response code is configured incorrectly so the 2800 and switch can not continue on with the interregister signalling mfr2DisAckCalling 58 Call disconnected while we were in the process of sending back the ack tone for a calling number digit or while we were waiting for the terminati...

Page 86: ...on the connection in a timely manner The following are internal access server errors Please contact technical support if you see these termination reasons noPoll 12 ipcPutMsdErr 13 pollErr 15 ioctlErr 16 pppPutMsgErr 17 dspIoctlErr 18 timerErr 19 pppOpenErr 22 ipLinkErr 23 pppLinkErr 25 tcpOpenErr 26 tcpPushErr 27 tcpPutMsgErr 28 invalidPrim 29 noTimers 33 tcpLinkErr 34 dspLinkErr 35 dspPutMsgErr ...

Page 87: ...2tpOpenErr 77 l2tpLinkErr 78 reLinkErr 79 State at termination diactTerminateState Indicates the value of diactState when the call was terminated PPP Statistics This portion of the Dial In User Statistics window see figure 25 shows PPP statistics as 32 bit variables of the current user selected Figure 25 User Statistics PPP Statistics LCP Statistics IP ...

Page 88: ...alMRU The current value of the MRU for the local PPP entity This value is the MRU that the remote entity is using when sending packets to the local PPP entity This setting becomes active when the link is in the up able to pass packets operational state for more information refer to Operational Status diIpOperStatus on page 90 Remote MRU diStatRemoteMRU The current value of the MRU for the remote P...

Page 89: ...ansmitting packets to the remote PPP entity This setting becomes active when the link is in the up able to pass packets operational state for more information refer to Operational Status diIpOperStatus on page 90 These are the available options disabled 0 PPP compression is disabled enabled 1 PPP compression is enabled Remote Local PPP Protocol Comprsn diStatRemoteToLocalProtComp Indicates whether...

Page 90: ...Status diIpOperStatus on page 90 The values are from 0 to 128 IP This portion of the Dial In User Statistics window see figure 25 on page 87 shows operational status and the type of IP compression used Operational Status diIpOperStatus The current operational state of the interface These are the available options up 1 able to pass packets down 2 unable to pass packets testing 3 in test mode and un...

Page 91: ...link the value of this object will be 0 The range is from 0 to 255 Force Next Hop diForceNextHop All packets received on the dial up link are forwarded to this gateway A setting of 0 0 0 0 indicates that this option is not in effect Filters diStatIpFilterAtoJ The filters applied to the user s connection Phone This portion of the Dial In User Statistics window see figure 26 shows the phone numbers ...

Page 92: ...s payload Packets Received diactReceivedDataFrames The number of packets received by the user during this call Version 6 nomenclature for a packet is Ipv6 header plus payload Bad Packets diactErrorFrames Number of bad received packets received during this call Bad packets are those that failed CRC error checks Physical Layer This portion of the Dial In User Statistics window see figure 26 on page ...

Page 93: ...rror correction on the call V42 Error correction mode V120 Mode for ISDN B Data Compression Protocol diactCompression The modem data compression technique used during this call None No compression V42bis Compression is running Stac Compression is running Modulation Symbol Rate diactSymbolRate The modulation symbol rate during the call This is used only when in V 34 and above modulations Locally In...

Page 94: ...7 Dial In Access Server Administrators Reference Guide 94 Dial In User Statistics window ...

Page 95: ...ner 101 Modify Attempts 101 Failure Banner doFailureBanner 101 Login Attempts Allowed doAllowAttempts 101 Modify Maximum Time 102 Maximum Session Time doSessionTimeout 102 Maximum Idle Time doIdleTimeout 102 Time to Login sec doLoginTimeout 103 Call History Timeout min doLingerTime 103 Modify Modem Configuration 103 ISDN doModemISDNEnable 103 V34 doModemV34Enable 103 V32 doModemV32Enable 103 V22 d...

Page 96: ...ctRemainingSession 107 Phone 107 Number Called doactNumberDialed 107 Data 107 Octets Sent doactSentOctets 108 Octets Received doactReceivedOctets 108 Physical Layer 108 Connection Modulation doactModulation 108 Connection Speed doactSpeed 108 Error Correction Protocol doactErrorCorrection 108 Data Compression Protocol doactCompression 109 Modulation Symbol Rate doactSymbolRate 109 Locally Initiate...

Page 97: ...r test you would click on the online 3 link next to test s username For more informa tion about modifying individual user settings refer to Dial Out User Statistics window on page 105 Details link clicking on the Details link takes you to the page where you can view current dial out parameters For more information about the Details page refer to Dial Out Details window on page 99 Modify link click...

Page 98: ...unable to bring up the physical line by successfully negotiating the modula tion userHangup will be registered if the remote modem gave up trying to complete the call modemCanNotConnect 6 The modems are not able to bring up the physical line by successfully negoti ating the modulation The access server has stopped trying to complete the physical connection ModemError 7 Not able to activate the mod...

Page 99: ... unknownBearerContent 43 Dial Out Details window The Dial Out Details window see figure 28 shows the active Dial Out configuration of the access server Scroll down the window to view additional Dial Out access server parameters You can modify Dial Out parameters by clicking on the Modify link see figure 28 For more information about modifying Dial Out settings refer to Dial Out Modify window on pa...

Page 100: ...m Time on page 102 Outgoing modem configuration parameters Modify Modem Configuration on page 103 To reach this window select Modify from the Dial Out Details window or in the Dial Out main window Figure 29 Dial Out Modify window Login Attempts Modify Login Use this section to configure the outgoing TCP port and general login information TCP Port doTcpPort The TCP port number that the dialout oper...

Page 101: ... include carriage returns and line feeds For example the prompt could be Enter your username Password Prompt doPasswordPrompt This prompt for a password is displayed at user authentication time A valid password should consist of ASCII characters and can include carriage returns and line feeds For example the prompt could be Enter your password Initial Banner doBanner This is usually a message welc...

Page 102: ...doSessionTimeout This is the maximum time in minutes that a connection is allowed to be maintained After this time the con nection will be terminated even if there is active traffic on the connection This is a default setting which can be overridden by the authentication of a specific user Maximum Idle Time doIdleTimeout This is the maximum time in minutes that a connection is allowed to be idle w...

Page 103: ...ifying the outgoing modem configuration ISDN doModemISDNEnable Enables ISDN modulation The following options are available disable 0 enable 1 V34 doModemV34Enable Allow V 34 and V 34 annex 12 K56 and V 90 modulations The following options are available disable 0 V 34 and V 34 annex 12 modulations are disabled V34only 1 V34andK56 2 V34andV90 3 V34andK56andV90 4 V32 doModemV32Enable Allow V 32 and V...

Page 104: ...lity none 0 Do not allow modem to retrain fallback or fall forward retrain 1 Allow the modem to retrain if the line quality is poor fallForwardFallBack 2 Allow the modem to fallback to a slower speed if the line quality is poor of fall forward to a faster speed if the line quality is good Tx Level doModemTxLevel This variable should be set with caution and normally only after talking to a factory ...

Page 105: ... to alter modem operation through the use of AT commands disable 0 The user can alter modem operation through the use of AT commands enable 1 The user is prevented from modifying the modem settings Dial Out User Statistics window This window shows statistics for individual dial out users The hyperlink headings DSP Link and WAN Link shown below point to the DSP Link and Fractional tables for a uniq...

Page 106: ...lick on the online 3 link next to test s username Unique ID This portion of the Dial Out User Statistics window see figure 31 on page 106 is where you can view current call progress and the DSP WAN link and time slot this call the call is using Current Progress doactState Indicates current progress authenticating 0 commandmode 1 connecting 2 online 3 dead 4 kill 5 DSP Link doactDSPIndex Indicates ...

Page 107: ...s active Minutes Until Timeout doactRemainingIdle Number of minutes until idle timeout counts down Time Left In Session doactRemainingSession Amount of time left in this session counts down Phone This portion of the Dial Out User Statistics window see figure 31 on page 106 shows the phone numbers that were used by this caller Number Called doactNumberDialed The phone number that was dialed into Fi...

Page 108: ...odem con nection It includes modulation and other modem related statistics that are helpful when troubleshooting modem problems This section covers only modem type statistics not ISDN connections Connection Modulation doactModulation The modulation of the link unknown 0 v21 1 v22 2 v32 3 v34 4 k56 5 x2 6 v90 7 v110 8 isdn64 9 isdn56 10 12tp 11 Connection Speed doactSpeed The connected speed of the...

Page 109: ... Initiated Renegotiates doactLocalRenegotiates The number of times the local side this unit has initiated a modem speed renegotiate Locally Initiated Retrains doactLocalRetrains The number of times the local side this unit has initiated a modem carrier retrain Remote Initiated Renegotiates doactRemoteRenegotiates The number of times the far modem has initiated a modem speed renegotiate Remote Init...

Page 110: ...8 Dial Out Access Server Administrators Reference Guide 110 Dial Out User Statistics window ...

Page 111: ... Active Calls drActive 112 Session ID dractIndex 112 Originating Link dractLinkIndex 112 Originating Channel dractChannel 113 Passed to Link dractPassLinkIndex 113 Passed to Channel dractPassChannel 113 Number Dialed dractNumberDialed 113 Calling Number dractCallingPhone 113 Session Time dractSessionTime 113 Remaining Time dractRemainingSession 113 State dractState 113 ...

Page 112: ...unique session ID If there are no drop and insert connections to the access server this screen will be blank Session Timeout drSessionTimeout This is the maximum time in minutes which a connection is allowed to be maintained After this time the connection will be terminated even if there is active traffic on the connection A setting of 0 disables the time out Call History Timeout drLingerTime Numb...

Page 113: ...mberDialed The phone number that was used to dialed into the server if this service is available from the exchange Calling Number dractCallingPhone The phone number that was dialed from if this service is available from the exchange Session Time dractSessionTime The amount of time this call was is active Remaining Time dractRemainingSession The amount of time remaining in this session State dractS...

Page 114: ...9 Drop and Insert Access Server Administrators Reference Guide 114 Drop and Insert main window ...

Page 115: ... Originating Calls dspOriginatingCalls 121 Answering Calls dspAnsweringCalls 121 Local Disconnects dspLocalDisconnects 121 Successful Connects dspSuccessfulConnects 122 Failed Connects dspFailedConnects 122 Local Halts dspLocalHalts 122 MFR2 Starts dspMfr2Starts 122 MFR2 Stops dspMfr2Stops 122 Local Retrain Shutdowns dspLocalRetrainShutdown 122 Remote Retrains dspRemoteRetrains 122 Remote Renegoti...

Page 116: ...spStatusBufferOutOfSynch 123 Command Extended Wait dspCommandExtendedWait 123 Bad Rx Pointers dspBadRxPointers 124 Receive Buffer Overflow dspReceiveBufferOverflow 124 Tx Interrupt When Not Online dspTxInterruptWhenNotOnline 124 Bad Tx Pointers dspBadTxPointers 124 Debug Statistics 124 Reserved A dspReservedA 124 Reserved B dspReservedB 124 Reserved C dspReservedC 124 Reserved D dspReservedD 124 ...

Page 117: ...main window Click on DSP under the Configuration Menu to display the DSP Settings main window DSP Settings main window This is where you can view and modify current DSP parameters DSP Detected dspDetected Indicates the number of installed DSPs the access server detected at time of boot up DSP Available dspAvailable Indicates the number of DSPs available for use DSP Failed dspFailed Indicates the n...

Page 118: ...the DSP see section DSP information window on page 120 DSP State dspState Identifies the state of the DSP Administrator selectable states are reboot 1 Allows administrator to reboot the DSP unavailable 3 DSP has been taken out of the resource pool available 4 DSP is available for use Non selectable states these are states that indicate an error hardwarefailure 8 DSP hardware has failed self diagno...

Page 119: ...in idle 1 The DSP is idle and awaiting allocation dialin 2 The DSP is processing a dial in call dialout 3 The DSP is processing a dial out call framerelay 4 The DSP is allocated to frame relay processing future option fracPPP 5 The DSP is allocated to PPP procssing on the WAN link signalling 6 The DSP is being used to process WAN link signalling Connects dspSuccessfullyConnects The number of calls...

Page 120: ...dow see figure 35 shows information about the overall status of the DSP DSP State dspState Identifies the state of the DSP Administrator selectable states are reboot 1 Allows administrator to reboot the DSP unavailable 3 DSP has been taken out of the resource pool available 4 DSP is available for use Non selectable states these are states that indicate an error hardwarefailure 8 DSP hardware has f...

Page 121: ...The DSP is processing a dial out call framerelay 4 The DSP is allocated to frame relay processing future option fracPPP 5 The DSP is allocated to PPP procssing on the WAN link signalling 6 The DSP is being used to process WAN link signalling Desired DSP State dspDesiredState The state of the DSP desired by the administrator this state may be different than its actual state refer to DSP State dspSt...

Page 122: ...mote modem has asked for a retrain to be done This is cumulative over all calls Remote Renegotiates dspRemoteRenegotiates The number of times the remote modem has asked for a renegotiation to be done This is cumulative over all calls Local Renegotiates dspLocalRenegotiates The number of times the local DSP has requested a renegotiation to be done This is cumulative over all calls Local Retrains ds...

Page 123: ...istics Page Requests dspPageRequests This is the number of page requests the DSP has made The DSP does not have enough memory to hold all of the modulation protocols The DSP will make a page request when it needs to download a new protocol not currently in its memory Spurious Rx Interrupt dspSpuriousRxInterrupt The DSP was interrupted from an invalid vector Spurious Tx Interrupt dspSpuriousTxInter...

Page 124: ...ows statistics on DSP rebooting The information contained within these MIB variables are subject to change without notice Reserved A dspReservedA The number of times the DSP rebooted due to five failed consecutive connects When the DSP detects that it has failed to successfully complete five consecutive calls it will reboot itself in case the failed connections are due to an error with the DSP Res...

Page 125: ...6 Deferred Transmissions dot3StatsDeferredTransmissions 126 Late Collisions dot3StatsLateCollisions 127 Excessive Collisions dot3StatsExcessiveCollisions 127 Other Errors dot3StatsInternalMacTransmitErrors 127 Carrier Sense Errors dot3StatsCarrierSenseErrors 127 Received Frames Too Long dot3StatsFrameTooLongs 127 Other Received Errors dot3StatsInternalMacReceiveErrors 127 Chip Set ID dot3StatsEthe...

Page 126: ...th and do not pass the FCS check FCS Errors dot3StatsFCSErrors The number of frames received that are an integral number of octets in length but do not pass the FCS check Single Collision Frames dot3StatsSingleCollision Frames The number of successfully transmitted frames in which there was exactly one collision Multiple Collision Frames dot3StatsMultipleCollisionFrames The number of successfully ...

Page 127: ... fails due to an internal MAC sublayer transmit error Carrier Sense Errors dot3StatsCarrierSenseErrors The number of times that the carrier sense condition was lost or never asserted when attempting to transmit a frame on a particular interface Received Frames Too Long dot3StatsFrameTooLongs The number of frames received that exceed the maximum permitted frame size Other Received Errors dot3StatsI...

Page 128: ...y to Model 2800 Series Remote Access Servers only Collision Count Bin dot3CollCount A histogram cell that represents the number of collisions that occured before an ethernet frame was sent successfully Collision Frequency dot3CollFrequencies A count of the number of ethernet frames that had exactly the number of collisions represented by the associ ated bin before a successful tranmission of the f...

Page 129: ... Source IP Mask filterIpSourceMask 132 Destination IP filterIpDestinationIp 132 Destination Mask filterIpDestinationMask 132 Source Port FilterIpSourcePort 132 Action filterIpSourcePortCmp 132 Destination Port filterIpDestinationPort 133 Action filterIpDestinationPortCmp 133 Protocol filterIpProtocol 133 TCP Established filterIpTcpEstablished 133 Default for dialin filterIpDefaultDialin 133 ...

Page 130: ...user connection The same filter can be shared by several users The access server enables 20 separate filters to be defined of which up to 10 can used during a single user con nection A single filter can be assigned to a user via the Static Users Authentication Multiple filters can be assigned by using the RADIUS Filter Id attribute Filters can be configured with default settings that are used for ...

Page 131: ...rs window The following parameters can be configured for IP Filtering Note Any changes to a filter take place immediately This can aid in trou bleshooting a filter profile while the user is online Name filterIpName This is the name of the filter Direction filterIpDirection Specifies the direction of the filter that is whether it applies to data packets inbound or outbound from the access server Th...

Page 132: ...of 0 0 0 0 will have the effect of disabling source IP address comparison Source IP Mask filterIpSourceMask This is the Source IP Mask filterIpSourceMask used when comparing a packet s source address Bit positions that are set to 1 will be compared and 0 s will be ignored Thus a setting of 0 0 0 0 will have the effect of dis abling source IP address comparison Destination IP filterIpDestinationIp ...

Page 133: ...equal 1 The port in the destination IP packet Is the same lessThan 2 The port in the destination IP packet is less than greaterThan 3 The port in the destination IP packet is greater than Protocol filterIpProtocol Specifies the IP Protocol number to use for filtering Some examples of protocol numbers are 1 for ICMP 6 for TCP and 17 for UDP A list of protocol numbers can be found in RFC 1340 A sett...

Page 134: ...12 Filter IP Access Server Administrators Reference Guide 134 Defining a filter ...

Page 135: ...Long 140 Overflow framerelRxOverflow 140 Aborts FramerelRxAbort 140 Bad CRC framerelRxBadCrc 140 Invalid Frames framerelRxInvalidFrame 140 Tx Underrruns framerelTxUnderrun 140 LINK Resets framerelResets 140 Produce Status Change Trap frTrapState 140 DLMI window 141 Data Link Protocol 142 DLCI Length 142 Polling Interval T391 142 Full Enquiry Interval N391 142 Error Threshold N392 142 Monitored Eve...

Page 136: ...eference Guide 136 Throughput bits frCircuitThroughput 145 IP Address FrameIPAddr 145 Congestion frameEnableCongestion 145 Adding DLCIs 145 Configuring IP routing with a Frame Relay Link 145 Adding a route 146 Link Status and the IP Forwarding 147 ...

Page 137: ...erver as a DCE and connecting to a provider s Frame switch via a T1 E1 line In this application the access server will establish a point to point link via one or more DLCI s or virtual channels Each DLCI is a pipe with an associated far end IP address You may then modify the access server s routing table and enter in routes to use the Frame Relay link as the next hop A Frame Relay link is configur...

Page 138: ...n WAN Channel Assignment main screen The next stage in configuring a Frame Relay link is to set the number of n x 64 channels on the T1 E1 that will carry the data Each channel is 64 kbps in speed and must correspond to the same channels that your provider is using Usually your provider will start from channel 1 For example a 256 kbps link could be divided into 64 kbps channels numbered 1 2 3 and ...

Page 139: ...lso has the following links Modify Clicking on the Modify link enables you to set up Frame Relay or to change any configuration parameters see DLMI window on page 141 DLCI The Data Link Connection Identifier DLCI provides each PVC with a unique identifier at both the access server and the Frame Relay switch Within each link DLMI there can be multiple Permanent Virtual Circuits PVC Each of these PV...

Page 140: ...s received with message correct endings This value increases each time a valid Frame Relay packet is received Packets Too Long framerelRxPacketTooLong The number of packets received that were too long Overflow framerelRxOverflow The number of packets received with overflow as indicated by software Aborts FramerelRxAbort The number of packets received that were aborted Bad CRC framerelRxBadCrc The ...

Page 141: ... variable you will need to change The DLMI window see figure 41 is where you set up Frame Relay or change configuration parameters Note Most of the factory default settings can be left as is when setting up your link requiring only minor changes to comply with your service provider s Frame Relay link configuration Figure 41 DLMI window The common link management or signaling protocols are LMI Fram...

Page 142: ...tus Enquiry messages are of two different varieties 1 Link Integrity Verification which simply exchange sequence numbers between peers and 2 Full Status messages which is a request from the peer for the list of all active inactive PVCs The default is 6 Error Threshold N392 N392 is the number of errors T392 and T391 timeouts and sequence number errors before action is taken Action consists of chang...

Page 143: ...Virtual Circuits The Data Link Connection Identifier DLCI provides each PVC with a unique identifier at both the access server and the Frame Relay switch Within each link DLMI there can be multiple Permanent Virtual Circuits PVC Each of these PVCs are point to point links to remote locations and define the data path between the access server and the Frame Relay network DLCI window Within each DLMI...

Page 144: ... service or your connection will not function properly If your provider has informed you of the DLCIs and IP addresses you may manually enter in the connections DLCI frCircuitDlci The Data Link Connection Identifier DLCI for this virtual circuit Note DLCIs can automatically appear if your Frame Relay Service provider has already configured your link In this case all you will need to enter is the I...

Page 145: ...ng table with this address Congestion frameEnableCongestion This option enables or disables congestion tracking enable 0 Enables Congestion tracking disable 1 Disables Congestion tracking Adding DLCIs To add DLCIs type the following information under the Add DLCIs section 1 Under the DLCI entry type the number given to you by your provider 2 Under the IP Address entry type the IP address of the fa...

Page 146: ...ent across the Frame Relay link Figure 43 also shows a network route using the Frame Relay link as its next hop The destination of 192 168 1 0 255 255 255 255 specifies the gateway or next hop of 192 168 1 3 With this entry any IP packet with the destination address in the range of 192 168 1 1 192 168 1 254 will automatically be sent down the Frame Relay link to the device with the IP address of 1...

Page 147: ... if you wish to forward a C class address you would specify the mask as 255 255 255 0 5 Type in the next hop gateway 6 Click Add Route The route will now appear in the routing table Link Status and the IP Forwarding If the Frame Relay link is down the address will automatically be removed from the routing table If there are any routes which specify this IP address as the next hop the routing table...

Page 148: ...13 Frame Relay Access Server Administrators Reference Guide 148 Link Status and the IP Forwarding ...

Page 149: ...51 Times Exceeded icmpInTimeExcds icmpOutTimeExcds 151 Parameter Problems icmpInParmProbs icmpOutParmProbs 151 Source Quenchs icmpInSrcQuenchs icmpOutSrcQuenchs 151 Redirects icmpInRedirects icmpOutRedirects 152 Echos icmpInEchos icmpOutEchos 152 Echo Replys icmpInReps icmpOutReps 152 Time Stamps icmpInTimestamps icmpInTimestamps 152 Time Stamp Replys icmpInTimestampsReps icmpOutTimestampsReps 152...

Page 150: ...group is mandatory for all TCP IP networks Figure 46 ICMP window Click on ICMP under the Configuration Menu to monitor access server ICMP statistics Modify ICMP redirect action This section is where you configure how the access server handles ICMP redirects Enabling the access server to receive redirected messages is generally considered a security breach Block ICMP redirects boxBLockIcmpRedirects...

Page 151: ...nt Each time a packet passes through a gateway that gateway reduces the time to live TTL field by one The default starting number is defined under the IP sec tion If the gateway processing a packet finds that the TTL field is zero it will discard the packet and send the ICMP time exceeded message Time exceeded will also be incremented when a host which is reassembling a framented packet cannot com...

Page 152: ...reply is a response to an echo request Send echos icmpOutEchos will increment when the access server is pinged Time Stamps icmpInTimestamps icmpInTimestamps The number of ICMP time stamp messages received sent Time stamp and time stamp replies were originally designed into the ICMP facility to allow network clock synchronization Subsequently a new protocol Net work time protocol NTP has taken over...

Page 153: ...fOperStatus 157 Last Change ifLastChange 157 Received Octets ifInOctets 157 Received Unicast Packets ifUcastPkts 157 Received Non Unicast Packets ifNUcastPkts 157 Received and Discarded w No Errs ifInDiscards 158 Received Errored Packets ifInErrors 158 Received w Unknown Protocol ifInUnknownProtos 158 Transmitted Octets ifOutOctets 158 Requested Unicast Packets ifOutUcastPkts 158 Requested Non Uni...

Page 154: ...ry for all systems Figure 47 Interfaces main window Click on Interfaces under the Configuration Menu to to monitor interfaces statistics Interfaces main window This section explains the meaning of the other items contained in the main window Click on the Details link to monitor the status of each connected interfaces see Interface Details on page 156 The Interfaces main window displays the total n...

Page 155: ...twareLoopback 24 slip 28 frame relay 32 Admin Stat ifAdminStatus The desired state of the interface up 1 The selected interface is ready to pass frames down 2 The selected interface is not ready to pass frames testing 3 The selected interface is being tested No operational frames may be passed in this mode Operational Status The current operational state of the interface up 1 The selected interfac...

Page 156: ...erfaces table Figure 48 Interface Details window Description ifDescr A textual string containin information about the interface This string should include the name of the manu facturer the product name and the version of the hardware interface Type ifType The type of interface distinguished according to the physical link protocol s immediately below the net work layer in the protocl stack The foll...

Page 157: ...erface is not ready to pass frames testing 3 The selected interface is being tested No operational frames may be passed in this mode Operational Status ifOperStatus The current operational state of the interface up 1 The selected interface is ready to pass frames down 2 The selected interface is not ready to pass frames testing 3 The selected interface is being tested No operational frames may be ...

Page 158: ...e interface including framing characters Requested Unicast Packets ifOutUcastPkts The total number of packets that higher level protocols requested be transmitted to a subnetwork unicast address including those that were discarded or not sent Requested Non Unicast Packets ifOutNUcastPkts The total number of packets that higher level protocols requested be transmitted to a non unicast that is a sub...

Page 159: ...meout 163 of Reassembled Fragments ipReasmReqds 163 Successfully Reassembled ipReasmOKs 163 Reassembly Failures ipReasmFails 163 Fragmented OK ipFragOKs 164 Fragmented Failed ipFragFails 164 Fragments Created ipFragCreates 164 Valid but Discarded ipRoutingDiscards 164 Modify 164 Forwarding ipForwarding 164 Default Time To Live ipDefaultTTL 164 Addressing Information 165 IP addressing Information D...

Page 160: ... Info ipRouteInfo 169 IP Routing Destination window 170 Route Destination ipRouteDest 170 Mask ipRouteMask 170 Interface ipRouteIfIndex 170 Protocol ipRouteProto 170 Seconds Since Updated ipRouteAge 171 Tag RouteTag 171 Gateway RouteGateway 171 Cost RouteCost 171 State RouteState 171 Address Translation Information 171 Interface ipNetToMediaEntry 171 Net Address ipNetToMediaNetAddress 172 Physical...

Page 161: ...t will enable you to modify IP parameters Modify This window is where you can modify forwarding and time to live settings see Modify on page 164 Addressing Info This window see Addressing Information on page 165 displays IP addressing details for the default address for outgoing IP datagrams the local or loopback address of the box and the IP address of the box as defined in Chapter 20 System Rout...

Page 162: ...ion number mismatch other format errors time to live exceeded errors discovered in processing their IP options and so on Discarded for Address Errors ipInAddrErrors The number of input datagrams discarded because the IP address in their IP header s destination field was not a valid address to be received at this entity This count includes invalid addresses e g 0 0 0 0 and addresses of unsupported ...

Page 163: ... Discarded for No Routes ipOutNoRoutes The number of IP datagrams discarded because no route could be found to transmit them to their destination Note The Discarded for No Routes counter includes any packets counted in ipForwDatagrams which meet this no route criterion This includes any datagrams which a host cannot route because all of its default gateways are down Reassembly Timeout ipReasmTimeo...

Page 164: ...n window see figure 50 is where you can change IP forwarding and time to live settings Figure 50 IP configurations modification window Forwarding ipForwarding Determines whether this entity is acting as an IP gateway that will forward datagrams received by but not addressed to this entity IP gateways forward datagrams IP hosts do not except those source routed via the host Note For some managed no...

Page 165: ...ace Index ipAdEntIfIndex The index value that identifies the interface to which this entry applies Entry Subnet Mask ipAdEntNetMask The subnet mask associated with the IP address of this entry The value of the mask is an IP address with all the network bits set to 1 and all the hosts bits set to 0 Entry Broadcast Address ipAdEntBcastAddr The value of the least significant bit in the IP broadcast a...

Page 166: ... forwarding table window on page 168 Figure 53 IP Routing Information window Destination ipRouteDest The destination IP address of this route An entry with a value of 0 0 0 0 is considered a default route Multiple routes to a single destination can appear in the table but access to such multiple entries is dependent on the table access mechanisms defined by the network management protocol in use T...

Page 167: ...outes can be calculated Interface ipRouteIfIndex The index value that identifies the local interface through which the next hop of this route should be reached The interface identified by a particular value of this index is the same interface as identified by the same value of ifIndex State RouteState invalid 1 This setting deletes the route active 2 A valid route is in use nopath 3 No route is av...

Page 168: ...est field For those systems that do not support arbitrary subnet masks an agent constructs the value of the ipRouteMask by determining whether the value of the correspondent ipRouteDest field belongs to a Class A B or C network and then using the appropriate mask from table 3 on page 167 Next Hop ipRouteNextHop The IP address of the next hop of this route In the case of a route bound to an interfa...

Page 169: ...mination of the relevant ipRouteType object Protocol ipRouteProto The routing mechanism via which this route was learned Inclusion of values for gateway routing protocols is not intended to imply that hosts must support those protocols unknown 0 local 1 Added by the access server to support an interface For example adding a route for a new dial in user user 2 Added by an administrator on the IP Ro...

Page 170: ... by determining whether the value of the corresponding ipRouteDest field belongs to a Class A B or C network and and then using the appropriate mask from table 3 on page 167 Interface ipRouteIfIndex The index value which uniquely identifies the local interface through which the next hop of this route should be reached The interface identified by a particular value of this index is the same interfa...

Page 171: ...n rela tion to learned routes can be calculated State RouteState Defines the state which a route may be in during its lifetime invalid 1 This setting deletes the route active 2 A valid route is in use nopath 3 No route is available to the specified gateway The gateway is not known to local networks agedout 4 Invalid route soon to be removed costly 5 A valid route but not in use because of it s hig...

Page 172: ...onding entry in the ipNetToMediaTable That is it effectively dissasociates the interface identified with said entry from the mapping identified with said entry It is an implementation specific matter as to whether the agent removes an invalidated entry from the table Accordingly management stations must be prepared to receive tabular information from agents that corresponds to entries not currentl...

Page 173: ...its interRegCallingNumDig 176 First and Middle Response Code interRegCallingNumFirst 176 Last Response Code interRegCallingNumLast 176 MFR Version 2 Modify 177 Line Signalling 177 Country lineSigCountry 178 Idle Code lineSigIdleCode 178 Forward Seize lineSigForwardSeize 179 Back Acknowledge lineSigBackAck 179 Back Answer lineSigBackAnswer 180 Minimum Transition Time lineSigMinTransTime 180 Minimum...

Page 174: ...17 MFR Version 2 Access Server Administrators Reference Guide 174 ...

Page 175: ...rsion 2 main window The MFR Version 2 window displays parameters for networks that use Signalling System R2 The MFR Ver sion 2 window also has the Modify link that you can click to modify Line Signalling parameters see MFR Version 2 Modify on page 177 Line Signalling This portion of the MFR Version 2 main window contains information described in the following sections Country lineSigCountry Displa...

Page 176: ... Version 2 main window contains information described in the following sections Called Number Total Digits interRegCalledNumDig The number of digits expected for the called number First and Middle Response Code interRegCalledNumFirst The code specifying what is done after every digit is sent except the last for the called number Last Response Code interRegCalledNumLast The code specifying what is ...

Page 177: ...annels in each direction per cir cuit Figure 58 MFR Version 2 Modify window Line Signalling This portion of the MFR Version 2 Modify window contains information described in the following sec tions Set the access server objects based upon codes that pertain to Idle Seized Answered Clear back Release and Blocked conditions Note Line Signalling setup codes are country specific Please refer to Rec om...

Page 178: ...lling objects are country specific Please refer to the host country s PTT for national signalling specifications ituStandard 1 custom 2 mexicoModified 3 czechRepublic 4 pbxDropOut 5 brazil 6 chinaRI 7 southAfrica 8 india 9 Idle Code lineSigIdleCode Code to indicate that a line is in use abcd 0000 0 abcd 0001 1 abcd 0010 2 abcd 0011 3 abcd 0100 4 abcd 0101 5 abcd 0110 6 abcd 0111 7 abcd 1000 8 abcd...

Page 179: ... 0010 2 abcd 0011 3 abcd 0100 4 abcd 0101 5 abcd 0110 6 abcd 0111 7 abcd 1000 8 abcd 1001 9 abcd 1010 10 abcd 1011 11 abcd 1100 12 abcd 1101 13 abcd 1110 14 abcd 1111 15 Back Acknowledge lineSigBackAck Code to indicate there is an agreement to use a line abcd 0000 0 abcd 0001 1 abcd 0010 2 abcd 0011 3 abcd 0100 4 abcd 0101 5 abcd 0110 6 abcd 0111 7 abcd 1000 8 abcd 1001 9 abcd 1010 10 abcd 1011 11...

Page 180: ...110 14 abcd 1111 15 Minimum Transition Time lineSigMinTransTime The minimum transition time in milliseconds Minimum Detection Time lineSigMinDetectTime The minmum detect time in milliseconds Protocol Timeout lineSigProtoTimeout The time for a protocol timeout in milliseconds Interregister Signalling The Interregister Signalling parameters are end to end 2 out of 6 in band code signals that use bac...

Page 181: ...gits interRegCalledNumDig The number of digits expected for the called number First and Middle Response Code interRegCalledNumFirst The code specifying what is done after every digit is sent except the last for the called number a1 1 a2 2 a3 3 a4 4 a5 5 a6 6 a7 7 a8 8 a9 9 a10 10 a11 11 a12 12 a13 13 a14 14 a15 15 Last Response Code interRegCalledNumLast The code specifying what is done after the ...

Page 182: ...r the calling number First and Middle Response Code interRegCallingNumFirst The code specifying what is done after every digit is sent except the last for the calling number a1 1 a2 2 a3 3 a4 4 a5 5 a6 6 a7 7 a8 8 a9 9 a10 10 a11 11 a12 12 a13 13 a14 14 a15 15 Last Response Code interRegCallingNumLast The code specifying what is done after the last digit is sent for the calling number a1 1 a2 2 a3...

Page 183: ...MFR Version 2 Modify 183 Access Server Administrators Reference Guide 17 MFR Version 2 a6 6 a7 7 a8 8 a9 9 a10 10 a11 11 a12 12 a13 13 a14 14 a15 15 ...

Page 184: ...17 MFR Version 2 Access Server Administrators Reference Guide 184 MFR Version 2 Modify ...

Page 185: ...ddress 187 Domain rip2IfConfDomain 187 Authentication Type rip2IfConfAuthType 188 Authentication Key rip2IfConfAuthKey 188 Send rip2IfConfSend 188 Receive rip2IfConfReceive 188 Metric rip2IfConfDefaultMetric 188 Status rip2IfConfStatus 189 RIP Version 2 Statistics 189 Subnet IP Address rip2IfStatAddress 189 Bad Packets rip2IfStatRcvBadPackets 189 Bad Routes rip2IfStatRcvBadRoutes 189 Sent Updates ...

Page 186: ...ration window see RIP Version 2 Configuration on page 187 This window is where you can configure objects for each subnet address including authentication method RIP Version 1 or Version 2 compatibility and metric value Address xxx xx xxx xxx Clicking on the link under the Address column displays the RIP Version 2 Status window see RIP Version 2 Statistics on page 189 where you can view routing and...

Page 187: ...liant with RFC 1058 rip2 2 rip1Compatible implies broadcasting RIP 2 updates using RFC 1058 route subsumption rules rip1Orrip2 3 doNotReceive 4 4 Click on Submit Further modifications can be made by clicking on the Address link of the specific subnet see RIP Version 2 Configuration RIP Version 2 Configuration The RIP Version 2 Configuration window see figure 60 shows objects for each subnet addres...

Page 188: ...2IfConfSend What the router sends on this interface ripVersion 1 implies sending RIP updates compliant with RFC 1058 rip1Compatible implies broadcasting RIP 2 updates using RFC 1058 route subsumption rules ripVersion2 implies multicasting RIP 2 updates ripV1Demand indicates the use of Demand RIP on a WAN interface under RIP Version 1 rules ripV2Demand indicates the use of Demand RIP on a WAN inter...

Page 189: ... the least significant 24 bits N is the ifIndex for the IP Interface in network byte order Bad Packets rip2IfStatRcvBadPackets The number of RIP response packets received by the RIP process which were subsequently discarded for any reason e g a version 0 packet or an unknown command type Bad Routes rip2IfStatRcvBadRoutes The number of routes in valid RIP packets which were ignored for any reason e...

Page 190: ...18 RIP Version 2 Access Server Administrators Reference Guide 190 RIP Version 2 Statistics ...

Page 191: ... Get Next Variables snmpInTotalReqVars 193 Set Variables snmpInTotalSetVars 193 Get Requests snmpInGetRequests 193 Get Next Requests snmpInGetNexts 194 Set Requests snmpInSetRequests 194 Get Responses snmpInGetResponses 194 Traps snmpInTraps 194 Out 194 Out Packets snmpOutPkts 194 Error Status Too Big snmpOutTooBigs 194 No Such Names snmpOutNoSuchNames 194 Bad Values snmpOutBadValues 194 Generated...

Page 192: ...he Configuration Menu to to display the SNMP window see figure 62 Figure 62 SNMP window SNMP window The SNMP window displays incoming and outgoing SNMP statistics and has links for downloading and dis playing the following MIB documents Corporate MIB Enterprise MIB Product MIB In Packets snmpInPkts The total number of Messages delivered to the SNMP entity from the transport service Bad Version snm...

Page 193: ...e delivered to the SNMP protocol entity and for which the value of the error status field is badValue Error Status Read Only snmpInReadOnlys The total number of valid SNMP PDUs that were delivered to the SNMP protocol entity and for which the value of the error status field is readOnly It should be noted that it is a protocol error to generate an SNMP PDU which contains the readOnly value in the e...

Page 194: ...DUs that were generated by the SNMP protocol entity and for which the value of the error status field is tooBig No Such Names snmpOutNoSuchNames The total number of SNMP PDUs that were generated by the SNMP protocol entity and for which the value of the error status is noSuchName Bad Values snmpOutBadValues The total number of SNMP PDUs that were generated by the SNMP protocol entity and for which...

Page 195: ...tity Authentication Failure Traps snmpEnableAuthenTraps Indicates whether the SNMP agent process is permitted to generate authentication failure traps The value of this object overrides any configuration information as such it provides a means whereby all authentication failure traps may be disabled Note that it is strongly recommended that this object be stored in non volatile memory so that it r...

Page 196: ...19 SNMP Access Server Administrators Reference Guide 196 Out ...

Page 197: ...acturePcbRevision 201 General Information boxManufactureGeneralInfo 201 Message Blocks 201 Packet Holding Message Blocks 201 Total boxMsgBlksConfigured 201 Free boxMsgBlksFree 201 Total Time Waited boxCountMsgBlkTaskWait 201 Total Times Unavailable boxCountMsgBlkUnavailable 201 Operating System Heap Memory 202 Total Size boxHeapSize 202 Free boxHeapFreeSpace 202 Largest boxHeapLargestSpace 202 Enc...

Page 198: ...nitorPassword 206 LAN IP 206 Method to Obtain Address boxIPAddressTechnique 206 Address boxIPAddress 206 Mask boxIPMask 206 Payable Features 206 Enable Payable Features boxFeatureEnableKey 206 Installation 206 Country installCountry 207 Other 207 System Manager sysContact 207 Box Name sysName 207 Physical Location sysLocation 207 System Services sysServices 207 System Packet Holding Message Blocks...

Page 199: ...Configuration Menu to to display the System main window Figure 63 System main window CPU SNMP and HTTP LAN IP Manufacturer and Message Blocks System main window From this window you can view CPU SNMP and HTTP LAN IP manufacturer and message block informa tion The main window also has the following links Modify click on this link to change SNMP and HTTP LAN IP payable features country of installati...

Page 200: ... in the following sections Version boxSnmpVersion This parameter indicates the SNMP version number supported by this unit for example snmpv1 1 means SNMP version 1 is supported SNMP2 is not currently supported Super User Password boxSnmpMasterPassword This displays the super user password for SNMP and HTTP see figure 63 on page 199 User Password boxSnmpMonitorPassword This displays the user monito...

Page 201: ...ure 63 on page 199 Message Blocks This portion of the System main window contains information described in the following sections Packet Holding Message Blocks Buffer usage of access server message blocks based upon message block sizes see figure 63 on page 199 Total boxMsgBlksConfigured The total number of message blocks on the system see figure 63 on page 199 Free boxMsgBlksFree The number of fr...

Page 202: ...rating System Heap Memory This portion of the System main window contains information described in the following sections Total Size boxHeapSize The size of the operating system heap memory see figure 64 Free boxHeapFreeSpace The amount of operating system heap memory currently available see figure 64 Largest boxHeapLargestSpace The largest contiguous memory block in the memory heap see figure 64 ...

Page 203: ...tem main window contains information described in the following section Country installCountry Specifies the country that the access server is installed in so it can be configured in accordance with local laws see figure 64 on page 202 Other This portion of the System main window contains information described in the following sections Total DRAM Detected boxDetectedMemory The total number of byte...

Page 204: ...lege Specifies the privileges given to the monitor user Privileges can be removed or additional write access can be given beyond read only access The following options are available none 0 The monitor user can not log in read only 2 This is the default setting The monitor user can view but not change any parameters Mon itor can not view passwords writeUser 18 The monitor user can change all parame...

Page 205: ...TTP LAN IP payable features country of installation and other parameters Figure 65 System Modify window SNMP and HTTP This portion of the System Modify window contains information described in the following sections Version boxSnmpVersion This parameter selects the SNMP version number supported by this unit see figure 65 Select snmpv1 1 only SNMP2 is not currently supported ...

Page 206: ...ootp 3 The Bootstrap Protocol A protocol described in RFCs 951 and 1084 and used for booting disk less workstations dhcp 4 Dynamic Host Configuration Protocol A protocol introduced by Microsoft on their NT server with version 3 5 in late 1994 This protocol provides a means to dynamically allocate IP addresses to IBM PCs running on a Microsoft Windows local area network The system administrator ass...

Page 207: ...r this managed node together with information on how to contact this person as defined by specification RFC1213 MIB Box Name sysName This is An administratively assigned name for this managed node By convention this is the node s fully qual ified domain name RFC1213 MIB Physical Location sysLocation The physical location of this node e g telephone closet 3rd floor RFC1213 MIB System Services sysSe...

Page 208: ...buffer No of Buffers boxbuffercount The number of buffers this size which are currently free for use No Free boxbuffersfree The number of buffers this size which are currently free for use No of Tasks Waited boxCountBufferTaskWait The number of times a task has waited for this buffer size No of Times Unavailable boxCountBufferUnavailable The number of times one of these buffers was unavailable ...

Page 209: ... Priority for Console RS 232 syslogConsolePriority 212 Min Priority for Flash Storage syslogFlashPriority 212 Min Priority for SNMP Trap Daemon syslogTrapPriority 212 Min Priority for RAM SyslogTablePriority 213 Unix Facility syslogUnixFacility 213 Call Trace syslogCallTrace 214 Maintenance 214 Maintain Flash Storage syslogFlashClear 214 System Log Volatile Memory 215 Time slTick 215 Message slMes...

Page 210: ...ting utility the System Log main window also contains links to the following Modify Clicking on this link displays syslog and SNMP trap daemon locations priority and maintenance information see System Log Modify on page 211 Volatile Memory Clicking on this link displays timestamp and stored system log message information System Log Volatile Memory on page 215 Non Volatile Memory Clicking on this l...

Page 211: ...owing sections SysLog Daemon IP Address syslogDaemonIP The IP address of a host system which is running a syslog daemon System messages with a priority greater than or equal to syslogDaemonPriority will be sent to this IP address SNMP Trap Daemon IP Address syslogTrapIP The IP address of a host system which is running a SNMP trap daemon System messages with a priority greater than or equal to sysl...

Page 212: ...e priorityDisable will turn off all messages priorityVerbose 5 priorityDebug 10 priorityInfo 20 priorityOddity 40 priorityService 60 prioritySystem 80 priorityDisable 1000 Min Priority for Flash Storage syslogFlashPriority System messages which have a priority equal to or greater than this setting will be permenantly stored in the Flash PROM Some maximum number of messages may be stored in the Fla...

Page 213: ... will provide PriorityVerbose will generate the most messages while priorityDisable will turn off all messages priorityVerbose 5 priorityDebug 10 priorityInfo 20 priorityOddity 40 priorityService 60 prioritySystem 80 priorityDisable 1000 Unix Facility syslogUnixFacility This setting is used when syslog messages are sent to a Unix type syslog daemon In this case the message will include the facilit...

Page 214: ...ing on the computer monitor Maintenance This portion of the System Log Modify window contains information described in the following section Maintain Flash Storage syslogFlashClear Setting this variable to syslogFlashClear will cause the erasing of any system messages which have been saved in the Flash On reading this variable will indicate if the syslog Flash is rejecting messages because it is f...

Page 215: ...stem Log Volatile Memory The System Log Volatile Memory window see figure 69 displays timestamp and stored system log message information Figure 69 System Log Volatile Memory window Time slTick The time stamp in 10 ms intervals of the stored message Message slMessage Stored system log message ...

Page 216: ...tem Log Non Volatile Memory The System Log Non Volatile window see figure 70 displays non volatile RAM messages for each 10 ms time stamp Figure 70 System Log Non Volatile Memory window Time slfTick The time stamp in 10 ms intervals of the stored message Message slfMessage Stored system log message ...

Page 217: ...eElapsed 226 Valid Intervals dsx1ValidIntervals 226 WAN Circuit Configuration Modify 227 Line Interface Settings 228 Circuit ID dsx1CircuitIdentifier 228 Line Type dsx1LineType Type dsx1LineType 228 Line Coding dsx1LineCoding 229 Transmit Clock Source dsx1TransmitClockSource 229 Receive Equalizer linkRxEqualizer 229 Line Build Out linkLineBuildOut 230 Yellow Alarm Format linkYellowFormat 230 FDL d...

Page 218: ...s dsx1IntervalCSSs 236 Path Code Violations dsx1IntervalPCVs 236 Line Errored Seconds dsx1IntervalLESs 236 Bursty ErroredSeconds dsx1IntervalBESs 236 Degraded Minutes dsx1IntervalDMs 236 Line Code Violations dsx1IntervalLCVs 236 Near End Line Statistics Totals 236 Errored Seconds dsx1TotalESs 236 Severely Errored Seconds dsx1TotalSESs 237 Severely Errored Frame Seconds dsx1TotalSEFSs 237 Unavailab...

Page 219: ...sx1FarEndIntervalCSSs 240 Path Code Violations dsx1FarEndIntervalPCVs 240 Line Errored Seconds dsx1FarEndIntervalLESs 240 Bursty Errored Seconds dsx1FarEndIntervalBESs 240 Degraded Minutes dsx1FarEndIntervalDMs 240 Line Code Violations dsx1FarEndIntervalLCVs 240 Far End Line Statistics Totals 241 Errored Seconds dsx1FarEndTotalESs 241 Severly Errored Seconds dsx1FarEndTotalSESs 241 Severely Errore...

Page 220: ...ation about the objects in this window refer to T1 E1 Link Activity main window on page 221 Line Status This variable indicates interface line status If any condition other than No Alarms exists you can click on the Alarms Present link to view the Line Status Alarms window For more information about these objects refer to Line Status dsx1LineStatus on page 222 Line Status Configuration link clicki...

Page 221: ...39 Far End Line Statistics Totals link clicking on this link takes you to the page that displays the total far end statistics of errors that occurred during the previous 24 hour period For more information about this page refer to Far End Line Statistics Totals on page 241 T1 E1 Link Activity main window The T1 E1 Link Activity window has three main sections that display the following T1 E1 parame...

Page 222: ...dow see figure 72 Figure 72 Line Status Alarms window The alarms currently present on the line will be indicated by the ACTIVE label next to the alarm type Failure States The following failure states are reported in the dsx1LineStatus object The items listed in this section comprise those contained in RFC 1406 Definitions of Managed Objects for the DS1 and E1 Interface Types Far End Alarm Failure ...

Page 223: ...either positive or negative polarity The LOS failure is cleared upon observing an average pulse density of at least 12 5 over a period of 175 75 contiguous pulse positions starting with the receipt of a pulse For E1 links the Loss Of Signal failure is declared when greater than 10 consecutive zeroes are detected see O 162 Section 3 4 4 Loopback Pseudo Failure The Loopback Pseudo Failure is declare...

Page 224: ...nly if no other flag is set If the dsx1LoopbackState bit is set the loopback in effect can be determined from the dsx1LoopbackConfig object The various bit positions are 1 dsx1NoAlarm No Alarm Present 2 dsx1RcvFarEndLOF Far end LOF a k a Yellow Alarm 4 dsx1XmtFarEndLOF Near end sending LOF Indication 8 dsx1RcvAIS Far end sending AIS 16 dsx1XmtAIS Near end sending AIS 32 dsx1LossOfFrame Near end LO...

Page 225: ...ormation about the DS1 inter face including the type of line D4 Superframe or Extended Superframe and kind of line coding B8ZS or AMI To modify the WAN circuit configuration click on the Modify link For more information about modifying WAN circuit settings refer to WAN Circuit Configuration Modify on page 227 Figure 73 WAN Circuit Configuration window Note Click on the Modify link to change the se...

Page 226: ...only The WAN Circuit Configuration window also displays the amount of time that has passed and the number of intervals passed during which valid data was collected Time Elapsed dsx1TimeElapsed The number of seconds that have elapsed since the beginning of the current error measurement period Valid Intervals dsx1ValidIntervals The number of previous intervals for which valid data was collected The ...

Page 227: ...on Modify Clicking on the Configuration link in the T1 E1 Link Activity window displays the WAN Circuit Configura tion Modify window see figure 75 From this window you can change line interface settings signalling set tings test settings and change the T1 E1 pulse shapes Figure 75 WAN Circuit Configuration Modify window ...

Page 228: ...portion of the WAN Circuit Configuration window contains information described in the following sections Circuit ID dsx1CircuitIdentifier This variable contains the transmission vendor s circuit identifier for the purpose of facilitating troubleshooting Line Type dsx1LineType Type dsx1LineType This variable indicates the type of DS1 Line implemented on this circuit The type of circuit affects the ...

Page 229: ...ero bits dsx1HDB3 3 dsx1ZBTSI 4 May use dsx1ZBTSI or Zero Byte Time Slot Interchange This feature is not currently implemented dsx1AMI 5 Refers to a mode wherein no zero code suppression is present and the line encoding does not solve the problem directly In this application the higher layer must provide data which meets or exceeds the pulse density requirements such as inverting HDLC data other 6...

Page 230: ...link and is the sum of the capabilities other 1 Indicates that a protocol other than one following is used dsx1Ansi T1 403 2 Refers to the FDL exchange recommended by ANSI dsx1Att 54016 3 Refers to ESF FDL exchanges dsx1Fdl none 4 Indicates that the device does not use the FDL Signalling Settings This portion of the WAN Circuit Configuration window contains information described in the following s...

Page 231: ...arm But yellow alarm may be automatically transmitted linkYellowOn Force the transmission of a yellow alarm even if the received signal is in frame linkYellowDisable Do NOT transmit a yellow alarm even if the received signal is out of frame Loopback Config dsx1LoopbackConfig This variable represents the loopback configuration of the DS1 interface Agents supporting read write access should return b...

Page 232: ...ng a fixed test pattern of 3 bits set in 24 dsx1SendOtherTestPattern Sending a test pattern other than those described by this object Error Injection linkInjectError Force an output error to see if the other end detects it noErrorInjection 0 injectCRCerrorBurst 1 injectLineErrorBurst 2 Line Status Channel Assignment Clicking on the Line Status Channel Assignment link in the T1 E1 Link Activity win...

Page 233: ... server will not accept any signals on this channel clear 9 Intended for robbed bit signalling protocols the access server will not add bits to the signal Near End Line Statistics Current Click on Near End Line Statistics Current to display line statistics for the current 15 minute interval see figure 78 Figure 78 Current Near End Performance window Errored Seconds dsx1CurrentESs The number of err...

Page 234: ...ing violations encountered by a DS1 interface in the current 15 minute interval Line Errored Seconds dsx1CurrentLESs The number of line errored seconds encountered by a DS1 interface in the current 15 minute interval Bursty ErroredSeconds dsx1CurrentBESs The number of bursty errored seconds BESs encountered by a DS1 interface in the current 15 minute interval Degraded Minutes dsx1CurrentDMs The nu...

Page 235: ...l 96 intervals are valid Errored Seconds dsx1intervaless the number of errored Seconds encountered by a DS1 interface in one of the previous 96 individual 15 minute intervals Severely Errored Seconds dsx1IntervalSESs The number of severely errored seconds encountered by a DS1 interface in one of the previous 96 individual 15 minute intervals Severely Errored Frame Seconds dsx1IntervalSEFSs The num...

Page 236: ...econds dsx1IntervalBESs The number of bursty errored seconds BESs encountered by a DS1 interface in one of the previous 96 indi vidual 15 minute intervals Degraded Minutes dsx1IntervalDMs The number of degraded minutes DMs encountered by a DS1 interface in one of the previous 96 individual 15 minute intervals Line Code Violations dsx1IntervalLCVs The number of line code violations LCVs encountered...

Page 237: ...er of controlled slip seconds encountered by a DS1 interface in the previous 24 hour interval Path Code Violations dsx1TotalPCVs The number of path coding violations encountered by a DS1 interface in the previous 24 hour interval Line Errored Seconds dsx1TotalLESs The number of line errored seconds encountered by a DS1 interface in the previous 24 hour interval Bursty ErroredSeconds dsx1TotalBESs ...

Page 238: ...y Errored Seconds dsx1FarEnd CurrentSESs The number of far end severely errored seconds encountered by a DS1 interface in the current 15 minute interval Severely Errored Frame Seconds dsx1FarEndCurrentSEFSs The number of far end severely errored framing seconds encountered by a DS1 interface in the current 15 minute interval Unavailable Seconds dsx1FarEndCurrentUASs The number of far end unavailab...

Page 239: ...er of far end degraded minutes DMs encountered by a DS1 interface in the current 15 minute interval Far End Line Statistics History Click on Far End Line Statistics History to display far end statistics for previously completed 15 minute intervals see figure 82 Figure 82 History of Far End Performance window Far End Interval dsx1FarEndIntervalNumber A number between 1 and 96 where 1 is the most re...

Page 240: ...untered by a DS1 interface in one of the previous 96 indi vidual 15 minute intervals Path Code Violations dsx1FarEndIntervalPCVs The number of far end path coding violations encountered by a DS1 interface in one of the previous 96 indi vidual 15 minute intervals Line Errored Seconds dsx1FarEndIntervalLESs The number of far end line errored seconds encountered by a DS1 interface in one of the previ...

Page 241: ...rrored Frame Seconds dsx1FarEndTotalSEFSs The number of far end severely errored framing seconds encountered by a DS1 interface in the previous 24 hour interval Unavailable Seconds dsx1FarEndTotalUASs The number of far end unavailable seconds encountered by a DS1 interface in the previous 24 hour in 24 hour interval Controlled Slip Seconds dsx1FarEndTotalCSSs The number of far end controlled slip ...

Page 242: ...rsty Errored Seconds dsx1FarEndTotalBESs The number of far end bursty errored seconds BESs encountered by a DS1 interface in the previous 24 hour interval Degraded Minutes dsx1FarEndTotalDMs The number of far end degraded minutes DMs encountered by a DS1 interface in the previous 24 hour interval ...

Page 243: ...eOpens 245 Passive Opens tcpPassiveOpens 245 Attempt Fails tcpAttemptFails 245 ESTABLISHED Resets tcpEstabResets 245 Current ESTABLISHED tcpCurrEstab 245 Total Received tcpInSegs 245 Total Sent tcpOutSegs 245 Total Retransmitted tcpRetransSegs 245 Total Received in Error tcpInErrs 245 Total Sent w RST Flag tcpOutRsts 245 TCP Details 246 Local Port tcpConnLocalPort 246 Remote Address tcpConnRemAddr...

Page 244: ...t value used for retransmitting unacknowledged octets Retransmit Timeout Minimum tcpRtoMin The minimum value permitted by a TCP implementation for the retransmission timeout measured in milli seconds More refined semantics for objects of this type depend upon the algorithm used to determine the retransmission timeout In particular when the timeout algorithm is rsre 3 an object of this type has the...

Page 245: ...om the SYN RCVD state ESTABLISHED Resets tcpEstabResets The number of times TCP connections have made a direct transition to the CLOSED state from either the ESTABLISHED state or the CLOSE WAIT state Current ESTABLISHED tcpCurrEstab The number of TCP connections for which the current state is either ESTABLISHED or CLOSE WAIT Total Received tcpInSegs The total number of segments received including ...

Page 246: ...ort The remote port number for this TCP connection State tcpConnState The state of this TCP connection The only value which may be set by a management station is dele teTCB 12 Accordingly it is appropriate for an agent to return a badValue response if a management station attempts to set this object to any other value If a management station sets this object to the value deleteTCB 12 then this has...

Page 247: ...TCP Details 247 Access Server Administrators Reference Guide 23 TCP established 5 finWait1 6 finWait2 7 closeWait 8 lastAck 9 closing 10 timeWait 11 deleteTCB 12 ...

Page 248: ...23 TCP Access Server Administrators Reference Guide 248 TCP Details ...

Page 249: ...S UDP Broadcasts boxNetbiosUdpBridging 250 Received udpInDatagrams 250 Received With No Ports udpNoPorts 250 Others Received with No Delivery udpInErrors 250 Sent udpOutDatagrams 250 Listener Table udpTable 251 Local Address udpLocalAddress 251 Local Port udpLocalPort 251 ...

Page 250: ...t of 137 and 138 from other interfaces to the local LAN interface Netbios uses these packets to communicate with WINS servers A WINS server can work with out this option enabled but the remote PC will appear to be on the LAN The following options are available doNotPassNetbiosBroadcasts 0 passNetbiosBroadcasts 1 Received udpInDatagrams The total number of UDP datagrams delivered to UDP users Recei...

Page 251: ...ning UDP listener information Local Address udpLocalAddress The local IP address for this UDP listener In the case of a UDP listener that is willing to accept datagrams for any IP interface associated with the node the value 0 0 0 0 is used Local Port udpLocalPort The local port number for this UDP listener ...

Page 252: ...24 UDP Access Server Administrators Reference Guide 252 Introduction ...

Page 253: ...253 Chapter 25 About Chapter contents Introduction 254 Patton Electronics Company contact information 254 ...

Page 254: ...s Company contact information Click on About under the Configuration Menu to display the About main window see figure 87 Figure 87 About window Patton Electronics Company contact information Patton Electronics Company 7622 Rickenbacker Drive Gaithersburg Maryland 20879 U S A Phone 1 301 975 1000 Fax 1 301 869 9293 E mail sales patton com support patton com WWW www patton com ...

Page 255: ...255 Chapter 26 License Chapter contents Introduction 256 End User License Agreement 256 1 Definitions 256 2 Title 257 3 Term 257 4 Grant of License 257 5 Warranty 257 6 Termination 257 ...

Page 256: ...elow End User License Agreement By opening this package operating the Designated Equipment or downloading the Program s electronically the End User agrees to the following conditions 1 Definitions A Effective Date shall mean the earliest date of purchase or download of a product containing the Patton Electronics Company Program s or the Program s themselves B Program s shall mean all software soft...

Page 257: ... kind Patton Electronics Company and its licen sors disclaim all warranties either express or implied including but not limited to the implied warranties of merchantability fitness for a particular purpose or non infringement In no event shall Patton Electronics Company or its licensors be liable for any damages whatsoever including without limitation damages for loss of business profits business ...

Page 258: ...26 License Access Server Administrators Reference Guide 258 End User License Agreement ...

Page 259: ...259 Appendix A Supported RADIUS Attributes Chapter contents Access Accept Attributes 260 Access Request Attributes 260 Accounting Start Attributes 261 Accounting Stop Attributes 262 ...

Page 260: ...0 Filter Id 11 Framed MTU 12 Framed Compression 13 Login IP Host 14 Login Service 15 Login Port 16 Reply Message 18 Callback Number 19 State 24 Class 25 Session Timeout 27 Idle Timeout 28 Termination Action 29 Port Limit 62 Force Next Hop 209 User Password 2 CHAP Password 3 NAS IP Address 4 NAS Port 5 Service Type 6 Framed Protocol 7 State 24 Called Station Id 30 Calling Station Id 31 NAS Identifi...

Page 261: ... Attributes User Name 1 NAS IP Address 4 NAS Port 5 Service Type 6 Framed Protocol 7 Class 25 Called Station Id 30 Calling Station Id 31 NAS Identifier 32 Account Status Type 40 Account Delay Time 41 Account Session Id 44 Account Authentic 45 Account Multiple Session Id 50 NAS Port Type 61 Data Rate RX 197 Xmit Rate TX 255 ...

Page 262: ...ype 6 Framed Protocol 7 Framed IP Address 8 Class 25 Called Station Id 30 Calling Station Id 31 NAS Identifier 32 Account Status Type 40 Account Delay Time 41 Account Input Octets 42 Account Output Octets 43 Account Session Id 44 Account Authentic 45 Account Input Packets 47 Account Output Packets 48 Account Multiple Session Id 50 NAS Port Type 61 Data Rate RX 197 Xmit Rate TX 255 ...

Reviews:

No comments

Related manuals for Access Server

Brand: Vicon Pages: 2

Brand: BlueBroadcaster Pages: 21

ReadyNAS 3220 Series

Brand: NETGEAR Pages: 4

Brand: 360 Systems Pages: 148

SuperServer 6026TT-HIBQF

Brand: Supero Pages: 112

Brand: Discover Video Pages: 148

eServer xSeries 205 Type 8480

Brand: IBM Pages: 168

Brand: PRG Pages: 50

Brand: Protogate Pages: 30

SuperServer 5013G-M

Brand: Supero Pages: 104

Brand: Ekselans Pages: 37

Brand: Fujitsu Pages: 280

Brand: QNAP Pages: 49

HES-V1000 - Home Entertainment Server

Brand: Sony Pages: 155

Xtreme PC NG-6600

Brand: Chip PC Pages: 4

Brand: DM&P Group Pages: 27

Brand: 3onedata Pages: 4

Brand: 3onedata Pages: 111

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands