Patton OnSite 2603 User Manual Download | Manualshive

Page: 76 / 131

background image

Intrusion Detection System (IDS)

76

Models 2603, 2621, and 2635 User Manual

7

• Security

1.

To enable IDS, click on Enabled for “Intrusion Detection Enabled” on the “Security Interface Configura-
tion” page. Then click on

Change State

.

2.

Click on

Configure Intrusion Detection...

3.

You may choose which of the parameters to configure and for which value.

– Use Blacklist: Default = 10 minutes when enabled.

If IDS has detected an intrusion an external host, access to the network is denied for ten minutes.

– Use Victim Protection: Default = Disabled.

Victim Protection. When enabled, Victim Protection protects the victim from an attempted spoofing attack.
Web spoofing allows an attacker to create a ‘shadow’ copy of the world wide web (WWW). All access to the
shadow Web goes through the attacker’s machine, so the attacker can monitor all of the victim’s activities and
send false data to or from the victim’s machine. When enabled, packets destined for the victim host of a spook-
ing style attack are blocked.

– Victim Protection Block Duration: Default = 600 seconds

– DOS Attack Block Duration:Default = 1800 seconds (30 minutes).

A Denial of Service (DOS) attack is an attempt by an attacker to prevent legitimate users from using a service.
If a DOS attack is detected, all suspicious hosts are blocked by the firewall for a set time limit

– Scan Attack Block Duration:Default = 86400 seconds

Sets the duration for blocking all suspicious hosts. The firewall detects when the system is being scanned by a
suspicious host attempting to identify any open ports.

– Victim Protection Block Duration:Default = 600 seconds (10 minutes).

Sets the duration of the block in seconds.

– Maximum TCP Open Handshaking Count:Default = 100

Sets the maximum number of unfinished TCP handshaking sessions per second that are allowed by a firewall
before a SYN Flood is detected. SYN Flood is a DOS attack. When establishing normal TCP connections,
three packets are exchanged: (1) A SYN (synchronize) packet is sent from the host to the network server. (2) A
SYN/ACK packet is sent from the network server to the host. (3) An Ack (acknowledge) packet is sent from the
host to the network server. If the host sends unreachable source addresses in the SYN packet, the server sends
the SYN/ACK packets to the unreachable addresses and keeps resending them. This creates a backlog queue of

WinNuke

TCP

yes

Xmas Tree Scan

TCP

yes

IMAP SYN/FIN Scan TCP

yes

Smurf

ICMP

If victim protection set

SYN/FIN/RST Flood TCP

If scanning threshold
exceeded

Net Bus Scan

TCP

yes

Back Orifice Scan

UDP

yes

Attack Name

Protocol Attacking Host Blacklisted?

«
...
74
75
76
77
78
...
»

Summary of Contents for OnSite 2603

Page 1: ...nded for use in a light industrial environment It is not intended nor approved for use in an industrial or residential environment Sales Office 1 301 975 1000 Technical Support 1 301 975 1007 E mail s...

Page 2: ...should it fail within one year from the first date of the shipment This warranty is limited to defects in workmanship or materials and does not cover customer damage abuse or unauthorized modificatio...

Page 3: ...6 WAN Services 48 7 Security 66 8 DHCP and DNS Configuration 80 9 IP Services 91 10 System Configuration 94 11 SNTP Client Configuration 103 12 System Status 107 13 Contacting Patton for assistance 11...

Page 4: ...Ethernet 18 Protocol support 18 PPP Support 18 WAN Interfaces 18 Management 18 Security 19 Front Panel Status LEDs and Console Port 19 Console port 20 Rear panel connectors and switches 21 Power conn...

Page 5: ...OnSite Series 2603 for T1 Operation 45 Web Configuration 45 Configuring the OnSite Series 2603 for E1 Operation 46 Web Configuration 46 6 WAN Services 48 WAN Services 49 Configuring the OnSite Series...

Page 6: ...CP and DNS Configuration 80 Introduction 81 Services and features normally associated with each other 81 DHCP Server 82 Parameters for the DHCP Server subnet 84 IP Addresses to be available on this su...

Page 7: ...Contacting Patton for assistance 111 Introduction 112 Contact information 112 Patton support headquarters in the USA 112 Alternate Patton support for Europe Middle East and Africa EMEA 112 Warranty S...

Page 8: ...sical Connectors 122 RJ 45 shielded 10 100 Ethernet port 123 RJ 45 non shielded RS 232 console port EIA 561 123 Serial port 123 V 35 M 34 and DB 25 Connector 123 X 21 DB 15 Connector 124 E1 T1 RJ 48C...

Page 9: ...rt attributes 40 20 Configurable Ethernet parameters 41 21 Model 2621 X 21 serial port configuration parameters 44 22 Model 2635 V 35 serial port configuration parameters 44 23 Model 2603 T1 E1 WAN po...

Page 10: ...age 89 65 DNS Relay configuration webpage 90 66 DNS Relay configuration completed 90 67 System Services configuration web page 92 68 Authentication web page showing default superuser 96 69 Creating ne...

Page 11: ...e OnSite 56 4 Features and services matrix 82 5 Standard port numbers for the System Services 93 6 Status LED descriptions 110 7 Ethernet Port MDI X switch in out position 123 8 RS 232 Control Port 12...

Page 12: ...cribes configuring the serial WAN interfaces Chapter 6 on page 48 describes configuring WAN services Chapter 7 on page 66 describes configuring security for the router Chapter 8 on page 80 describes D...

Page 13: ...ORTANT heading calls attention to important information CAUTION The alert symbol and CAUTION heading indicate a potential haz ard Strictly follow the instructions to avoid property damage CAUTION The...

Page 14: ...qualified service personnel Mains Voltage Do not open the case the when the power cord is attached Line voltages are present within the power supply when the power cords are connected The mains outlet...

Page 15: ...ures described in this manual use the following text conventions Table 1 General conventions Convention Meaning Garamond blue type Indicates a cross reference hyperlink that points to a figure graphic...

Page 16: ...tes 17 Ethernet 18 Protocol support 18 PPP Support 18 WAN Interfaces 18 Management 18 Security 19 Front Panel Status LEDs and Console Port 19 Console port 20 Rear panel connectors and switches 21 Powe...

Page 17: ...ia common WAN services The OnSite routers boast easy installa tion offering Console VT 100 Telnet HTTP and SNMP management options The following sections describes the OnSite series features and capab...

Page 18: ...tion NAT RFC 3022 with network address port translation NAPT MultiNat with 1 1 Many 1 Many Many mapping Port IP redirection and mapping Frame Relay with Annex A D LMI RFC 1490 and FRF 12 Fragmentation...

Page 19: ...ssword protected system management with a username password for console and virtual terminal Sepa rate user selectable passwords for SNMP RO RW strings Access list determining up to 5 hosts networks w...

Page 20: ...een ON indicates the CTS signal from the router is active binary 1 off indicates CTS is binary 0 DTR Green ON indicates the DTR signal from the DTE device attached to the serial port is active binary...

Page 21: ...wer supply connects to an external source providing 5 VDC via a barrel type connector 48 VDC power supply The DC power supply connects to a DC source via a terminal block Rated voltage and current 36...

Page 22: ...the default out position the Ethernet circuitry takes on a straight through MDI configuration and functions as a transceiver It will connect directly to a hub When in the in position the Ethernet cir...

Page 23: ...23 Chapter 2 Product Overview Chapter contents Introduction 24 Applications Overview 25...

Page 24: ...c ture is understood Also while configuring The OnSite Series router via a browser using the built in HTTP server is very intuitive an understanding of the architecture is essential when using the com...

Page 25: ...powerful data routing to make shared Internet connectivity simple and easy With NAT support the OnSite routers offer convenient and economical operation by using a single IP address while the integra...

Page 26: ...le on the OnSite 2603 s T1 E1 interface port 27 Installing an interface cable on the OnSite 2621 s X 21 interface port 29 Installing an interface cable on the OnSite 2635 s V 35 interface port 31 Inst...

Page 27: ...plugs on each end included with router DB9 RJ45 adapter included with router RJ45 RJ45 straight through cable for connecting to control port included with router PC computer with HyperTerminal or equ...

Page 28: ...interconnecting cables shall be acceptable for external use and shall be rated for the proper application with respect to volt age current anticipated temperature flammability and mechanical serviceab...

Page 29: ...o section Installing the AC power cord on page 33 Installing an interface cable on the OnSite 2621 s X 21 interface port The OnSite Model 2621 comes with an X 21 interface presented on a female DB 15...

Page 30: ...6 X 21 serial port can be config ured as DCE and a regular straight through cable can then be used Do the following to configure the X 21 port as a DCE 1 Open the OnSite device s case by inserting a s...

Page 31: ...is configured as a DTE the clocking mode for the port must be set for external clock 4 Re assemble the case The interface cable has been installed go to section Installing the AC power cord on page 33...

Page 32: ...t erf ac e Po we r Note The OnSite comes with a V 35 cable configured as a tail circuit Use this cable to interconnect the OnSite device s V 35 port to a device configured as a DCE Figure 11 Connectin...

Page 33: ...e proper application with respect to volt age current anticipated temperature flammability and mechanical serviceability Note Do not connect the other end of the power cord to the power outlet at this...

Page 34: ...out how to replace it with a compatible power cord 4 Connect the male end of the power cord to an appropriate power outlet 5 Verify that the green Power LED is lit see figure 13 6 Unplug the AC power...

Page 35: ...te Series router to power up the router 5 Type superuser for Login and press Enter 6 Then type superuser for the password press Enter 7 A message will display Login Successful By typing the character...

Page 36: ...In order to connect the PC to the Ethernet LAN to communicate with The OnSite Series router the PC s IP address should be on the same subnet as the router Connect a straight through Ethernet cable bet...

Page 37: ...Hardware Installation 37 Models 2603 2621 and 2635 User Manual 3 Initial Configuration Figure 15 Model 2621 home page Figure 16 Model 2635 home page...

Page 38: ...38 Chapter 4 Ethernet LAN Port Chapter contents Introduction 39 LAN Connections 39 Ethernet Port 39...

Page 39: ...ices Configura tion in the Configuration Menu LAN Change default LAN port IP address button on the main win dow See figure 17 The primary IP address and mask can be modified here but if you do you wil...

Page 40: ...es See figure 19 Figure 19 Advanced Ethernet port attributes The three configurable parameters are all either true or false Auto Negotiation the autonegotiation can be enabled default or disabled In s...

Page 41: ...t Full Duplex Mode the default value is true for Full Duplex operation Setting it to false configures the Ethernet port to operate only in half duplex mode Rarely do these parameters require a change...

Page 42: ...rt Configuration 43 Serial Interface 43 Variables 43 Web Interface Configuration 44 T1 E1 Interface Configuration 44 Configuring the OnSite Series 2603 for T1 Operation 45 Web Configuration 45 Configu...

Page 43: ...l RX Clock Invert TX Clock Invert Inverted The clock invert functions could be used to invert the clocks that are used on the serial interface It is not recommended to change this parameter unless req...

Page 44: ...rs Figure 22 Model 2635 V 35 serial port configuration parameters After the serial port has been configured go to WAN Service Configuration on page 50 section WAN Ser vice Configuration on page 50 for...

Page 45: ...port configuration parameters Configuring the OnSite Series 2603 for T1 Operation Web Configuration Launch Netscape Internet Explorer or similar web browser type the IP address of the 2603 enter usern...

Page 46: ...erwise by your service provider Idle code Enabled Disabled When enabled the 2603 inserts idle codes 7E hex on unused timeslots Set this option to Disabled unless instructed otherwise Power Down Normal...

Page 47: ...on therefore select Fdl none for E1 applications Clocking Mode Options are Internal or Receive Recover Clock network In most applications clocking for the 2603 will be derived from the E1 network set...

Page 48: ...al Site Configuration 51 PPP Routed 52 Remote site configuration 52 Central Site Configuration 55 LMI Management Frame Relay links 56 LMI Configuration 56 Frame Relay Local Management Interface 56 LMI...

Page 49: ...E1 G 703 G 704 Consult with your service provider which option is required Line Code Choose from AMI or HDB3 Most E1 applications use HDB3 Line Build Out Select 120 Ohms if the E1 connection is made v...

Page 50: ...fice and connects to a router or bridge at a ser vice provider location this can be another OnSite router This application shows configuration for two OnSite units in bridged mode If using a third par...

Page 51: ...C header mode dialout LLC header mode off HDLC header mode on No authentication Leave User name and Password blank Click on Create Central Site Configuration If the central site also has an OnSite you...

Page 52: ...not necessary You can use a third party router as long as it supports PPP routed operation If using a third party router at the Central site review the router s configuration See figure 29 Remote site...

Page 53: ...5 255 255 LLC Header Mode off HDLC Header Mode ON No authentication Username blank Password blank Figure 30 PPP Routed Configuration menu 4 Click on Create 5 Go to Services Configuration WAN Edit for...

Page 54: ...enter 192 168 164 3 in the Gateway field See figure 32 8 Click the Update button Figure 32 Configuring the gateway The other fields should be Destination 0 0 0 0 Gateway 192 168 164 3 Mask 0 0 0 0 Co...

Page 55: ...uration web pages In this example the PC s IP address is 192 168 172 229 24 Notice that this subnet differs from the subnets of the WAN service link and also the Ethernet port of the remote OnSite whi...

Page 56: ...the Edit PPP web page follow this path Services Configuration WAN Edit Edit PPP LMI Management Frame Relay links LMI Configuration Frame Relay Local Management Interface The Frame Relay Local Manageme...

Page 57: ...617 protocol will be used The unit will operate as both the Net work and User side of the connection Management State Defines the current state of the DTE side LMI Possible options are as follows Mgt...

Page 58: ...ay service can be configured for either bridged or routed applications The use of DLCI values since the original publication of the Frame Relay specifications has been modified as to their use For the...

Page 59: ...vice in the main window select Frame Relay bridged and click on Continue 4 Enter the description for the circuit in the Description field This is a mandatory field Without a descrip tion you cannot cr...

Page 60: ...nfiguration Central site configuration Note If you are using a OnSite at the Central location follow the instructions below otherwise refer to your third party router documentation for configu ration...

Page 61: ...ction For routed applications the port should be set to frf for bridged applications the port should be set to fr Click on the Create button This conclude the central site configuration Frame Relay Ro...

Page 62: ...encapsulation type that will be used by the channel Choose the encapsulation method best suited for your network needs from the following options Routed IP default value Raw WAN IP address Enter the I...

Page 63: ...n this example it is the default 8192 Channel segment size The channel segment size is used to define fragmentation of the packets based on the Frame Relay Forum IA FRF 12 If this variable is set to 0...

Page 64: ...bnet for configuring the OnSite via the web pages 1 Bring up the web page management system on your browser by entering the IP address of the OnSite 2 On the Menu go to Services Configuration then to...

Page 65: ...DU Enter the number of transmit side max PDU in this example it is the default 8192 Channel segment size The channel segment size is used to define fragmentation of the packets based on the Frame Rela...

Page 66: ...nfiguring the security interfaces 70 Configuring Security Policies 71 Deleting a security Policy 72 Enabling the Firewall 73 Firewall Portfilters 73 Security Triggers 74 Intrusion Detection System IDS...

Page 67: ...on exam ple is FTP An FTP client establishes a connection to a server using port 21 but data transfers are done on a separate connection or port The port number and who makes the connection can vary d...

Page 68: ...the two OnSite router Routers will be PPP routed 1 Click on WAN under Services Configuration in the OnSite router s Configuration Menu 2 Click on Create a new service 3 Select PPP routed and click on...

Page 69: ...gateway IP address on the OnSite 1 Click on IP routes under Services Configuration in the Configuration Menu 2 Click on the Create a new Ip route hyperlink 3 Enter 192 168 101 2 in the box adjacent to...

Page 70: ...the external interface since it is on public side of the modem connection 1 Go to the Security Interface Configuration webpage as follows Configuration Menu Services Configu ration Security See figure...

Page 71: ...re 46 Define ppp 0 interface as External Configuring Security Policies Continue the previous example by defining security policies We will add only one Firewall policy called etoi signifying an extern...

Page 72: ...ct the parameters so the policy is defined as follows Between interfaces of types external internal Validators will allow traffic Click on Apply Deleting a security Policy To delete a security policy...

Page 73: ...he different interface types That is all traffic is blocked between the external and internal interfaces The next section describes how to configure the Firewall for allowing certain types of data tra...

Page 74: ...nly portfilter for FTP and add it to the item0 policy 6 Following the path given in step 1 for the ping portfilter in the previous section click on Add TCP Filter 7 The Port Range is entered as 21 for...

Page 75: ...Enable Session Chaining Block Enable UDP Session Chaining Block Binary Address Replacement Block Address Translation Type none 3 Click on Create Figure 52 Adding trigger for FTP data transfer You shou...

Page 76: ...sers from using a service If a DOS attack is detected all suspicious hosts are blocked by the firewall for a set time limit Scan Attack Block Duration Default 86400 seconds Sets the duration for block...

Page 77: ...IP address and the IP address of an internal PC A Global Address Pool is a pool of addresses seen from the outside network Each external interface creates a Global Address Pool with a single address...

Page 78: ...obal Address Pool 3 Set the parameters to the following values See figure 53 Interface Type internal Use Subnet Configuration Use IP Address Range IP Address 100 100 100 101 Subnet Mask IP Address 2 1...

Page 79: ...n to NAT 79 Models 2603 2621 and 2635 User Manual 7 Security Figure 54 NAT Reserved mapping configuration The PC on the Ethernet side of the OnSite can now communicate with the public or global side t...

Page 80: ...ith each other 81 DHCP Server 82 Parameters for the DHCP Server subnet 84 IP Addresses to be available on this subnet 85 DNS server option information 86 Default gateway option information 87 Addition...

Page 81: ...CP client s point of view The relay operates by forwarding all broadcast client request to known DHCP servers The DHCP relay listens on all available interfaces All relay server communi cation is unic...

Page 82: ...N service and Bridged means a bridged WAN service DHCP Server and DHCP Relay cannot be used simultaneously NAT can be used only if a Routed WAN service is configured 1If a DHCP Server were used with a...

Page 83: ...r this subnet defines the subnet and netmask the origin of the subnet maximum lease time and default lease time IP addresses to be available on this subnet either define the IP address range for the D...

Page 84: ...Four parameters are in the section for defining the DHCP subnet See figure 57 Figure 57 DHCP Server subnet parameters The first two parameters are applicable when you will define the subnet Subnet va...

Page 85: ...t value is 86 400 seconds Default lease time the default value is 43 200 seconds IP Addresses to be available on this subnet The next section see figure 58 has three parameters Figure 58 DHCP IP addre...

Page 86: ...S server IP addresses Enter the IP addresses of the primary and secondary DNS servers Subsequently the client will receive these addresses when assigned an IP address When the client makes a DNS inqui...

Page 87: ...server POP3 server NNTP server WINS server Time servers Refer to figure 61 as an example of multiple options to be sent to the clients Figure 61 DHCP server optional information example DHCP Relay Wit...

Page 88: ...f the DHCP Relay webpage enter the IP address of a DHCP server and click on the Cre ate button See figure 63 The IP addresses will appear in the section Edit DHCP server list In the second section you...

Page 89: ...DNS server responses to the client You can configure the DNS Relay for two IP addresses These are for access to primary and secondary DNS servers Configuring the DNS Relay Go to the DNS Relay webpage...

Page 90: ...webpage You can change the IP address of the DNS servers on the DNS Relay webpage see figure 66 by modifying the IP address requiring the change and clicking on the Update button To delete the IP addr...

Page 91: ...91 Chapter 9 IP Services Chapter contents IP Services 92 WEB Server 92 CLI Configuration 92 Associated Ports for the different System IP Services 93...

Page 92: ...t be wisely disabled is the WEB Server After you disable the WEB Server from the web page you can no longer access the any of the OnSite device s web pages The only way to enable it is through the Com...

Page 93: ...Services This section is for information purposes only Consult the table to identify which ports are associated with the different System IP Services Table 5 Standard port numbers for the System Serv...

Page 94: ...System Configuration Chapter contents Introduction 95 Authentication 96 Alarm 97 Remote Access 98 Update 98 Save 99 Backup Restore 99 Restart 100 Website Settings 100 Error Log 101 SNMP Daemon 101 Sys...

Page 95: ...ccess to the OnSite Update update the OnSite software from here Save to save the OnSite configuration in non volatile memory Backup Restore used to save the OnSite device s configuration on a PC or to...

Page 96: ...efault administrative user and is given authority to configure the OnSite but the default settings have disabled the ability to authenticate through a remote connection To enable remote access authen...

Page 97: ...cking on the Clear button the alarm is cleared that is turned off however the Time and Count parame ters remain Only by clicking on the Reset button can you clear the alarm and reset the Time and Coun...

Page 98: ...connec tion is set on this webpage If set for zero 0 no user can access the OnSite remotely However if a user is authorized for access then the time is the limit before the remote access session is c...

Page 99: ...ed only in volatile memory mean ing that if the OnSite is restarted all configuration changes are lost Click on the Save button and wait until seeing the message Saved information model to im conf Fig...

Page 100: ...factory default settings see figure 76 Then click on the Restart button No warning is given before beginning the reboot process You will need to configure the IP address of the Ethernet port again as...

Page 101: ...aemon For remote management from an SNMP capable management station the OnSite device s SNMP Daemon must be configured To identify a specific OnSite configure the Static Variables which the system adm...

Page 102: ...of the SNMP trap along with its password System Tools The System Tools webpage provides two utilities for testing network connectivity The two utilities are ping and traceroute Enter the IP address of...

Page 103: ...1 SNTP Client Configuration Chapter contents Introduction 104 Configuring the SNTP Client 104 SNTP Client Mode Configuration Parameters 104 SNTP Client General Configuration Parameters 105 System Cloc...

Page 104: ...ultipoint to point mode Broadcast mode is for use when the SNTP server is on the local network that is the same subnet as the OnSite When Unicast mode is enabled the OnSite sends a request to the serv...

Page 105: ...n no response after the timeout period is received from the SNTP server the OnSite will send another request for the number times configured in this parameter The maximum number of retries is 10 Defau...

Page 106: ...2635 User Manual 11 SNTP Client Configuration After entering the system clock values click on the Set Clock button to save in volatile memory If the OnSite is rebooted either soft or by power cycling...

Page 107: ...107 Chapter 12 System Status Chapter contents System Status 108 Port Connection Status 108 LAN Status 109 WAN Status 109 Hardware Status 109 Defined Interfaces 109 Status LEDs 110...

Page 108: ...er web pages WAN Status parameters and links to the WAN services defined on the serial port PPPoE Status the connection authentication status is available when the PPPoE WAN service is configured and...

Page 109: ...P address of the WAN service is statically assigned or as a DHCP client Default gateway the gateway defined by the IP Routes submenu item under Services Configuration in the Configuration Menu Primary...

Page 110: ...RD Green Green indicates a binary 0 condition off indicates a binary 1 or idle condition Sync Serial TD Green Green indicates a binary 0 condition off indicates a binary 1 or idle condition RD Green...

Page 111: ...support headquarters in the USA 112 Alternate Patton support for Europe Middle East and Africa EMEA 112 Warranty Service and Returned Merchandise Authorizations RMAs 112 Warranty coverage 112 Out of w...

Page 112: ...1007 Fax 1 253 663 5693 Alternate Patton support for Europe Middle East and Africa EMEA Online support available at http www patton inalp com E mail support email sent to support patton inalp com wil...

Page 113: ...will be issued upon receipt and inspection of the equipment 30 to 60 days We will add a 20 restocking charge crediting your account with 80 of the purchase price Over 60 days Products will be accepte...

Page 114: ...x A Compliance information Chapter contents Compliance 115 EMC 115 Safety 115 PSTN Regulatory 115 Radio and TV Interference FCC Part 15 115 CE Declaration of Conformity 115 Authorized European Represe...

Page 115: ...he equipment causes interference to radio or television reception which can be determined by disconnecting the cables try to correct the interference by one or more of the following measures moving th...

Page 116: ...Characteristics 117 Ethernet 117 Sync Serial Interface 117 T1 E1 Interface 117 Protocol Support 118 PPP Support 118 Management 118 Security 119 Dimensions 119 Power and Power Supply Specifications 119...

Page 117: ...y Front panel LEDs indicate Power WAN Ethernet LAN speed and status Field Factory Default Option Standard 1 year warranty Ethernet Auto sensing Full Duplex 10Base T 100Base TX Ethernet Standard RJ 45...

Page 118: ...rated Application Level Gateway with support for over 80 applications NAT MultiNat with 1 1 mapping NAT Many 1 NAT Many Many mapping NAT Port IP redirection and mapping IGMPv2 Proxy support RFC 2236 F...

Page 119: ...ELNET Logging or SMTP on events POST POST errors PPP DHCP IP Dimensions 1 58H x 4 16W x 3 75D in 10 6H x 4 1W x 8 8D cm Power and Power Supply Specifications The OnSite router may come with either an...

Page 120: ...120 Appendix C Cable Recommendations Chapter contents Ethernet Cable 121 Adapter 121...

Page 121: ...l be rated for the proper application with respect to volt age current anticipated temperature flammability and mechanical serviceability Adapter EIA 561 to DB 9 P N 16F 561 refer to RJ 45 non shielde...

Page 122: ...ical Connectors Chapter contents RJ 45 shielded 10 100 Ethernet port 123 RJ 45 non shielded RS 232 console port EIA 561 123 Serial port 123 V 35 M 34 and DB 25 Connector 123 X 21 DB 15 Connector 124 E...

Page 123: ...e 4 5 6 RX to OnSite 7 8 RJ 45 non shielded RS 232 console port EIA 561 The RS 232 serial control port of the OnSite is configured to operate as a DCE Table 8 RS 232 Control Port Pin No Signal Name Di...

Page 124: ...C b from DTE AA 12 TC b to DTE 13 S 14 TD b from DTE Y 15 TC a to DTE T 16 RD b to DTE V 17 RC a to DTE L 18 Local Loopback to DTE 19 H 20 DTR from DTE N 21 Remote Loopback to DTE 22 23 U 24 XTC a fro...

Page 125: ...p 3 Shield Receive 4 Transmit Ring 5 Transmit Tip 6 Shield Transmit 7 8 6 S Signal Timing a to DTE 7 8 Ga DTE Common Return 9 T Transmit Data a from DTE 10 C Control b from DTE 11 R Receive Data b to...

Page 126: ...1 2 3 4 5 6 7 8 RX RX TX TX Serial port 126 Models 2603 2621 and 2635 User Manual D OnSite Physical Connectors Figure 86 T1 E1 RJ 48C connector...

Page 127: ...Introduction 128 CLI Terminology 128 Local VT 100 emulation 128 Remote Telnet 128 Using the Console 128 Administering user accounts 130 Adding new users 130 Setting user passwords 130 Changing user s...

Page 128: ...for example interfaces transports static routes and NAT rules List Objects are numbered entries in a list For example if you have created more than one Ethernet trans port the following command ether...

Page 129: ...ethernet list transports ethernet list transports enter Ethernet transports ID Name Port 1 eth1 ethernet Another example shows when the user must provide a parameter ip list clear add delete set attac...

Page 130: ...add user username Comment system add login user username Comment The first command creates a user who can access the system via a dialin connection using PPP for example The second command creates a u...

Page 131: ...e command Changing user settings To change any of the default settings for a user use the following commands For example to change the set tings for user fred system set user fred access default engin...

Reviews:

No comments

Related manuals for OnSite 2603

Brand: Ubiquiti Pages: 24

Brand: NETGEAR Pages: 60

Brand: HiTi Digital Pages: 26

Brand: IBM Pages: 44

Brand: NetComm Pages: 50

Brand: Huawei Pages: 117

Brand: Huawei Pages: 24

Brand: Huawei Pages: 122

Brand: Huawei Pages: 78

Brand: Huawei Pages: 25

Brand: Huawei Pages: 172

Brand: Huawei Pages: 37

Brand: Huawei Pages: 17

Brand: Huawei Pages: 33

AP6510DN-AGN-US

Brand: Huawei Pages: 14

Brand: Huawei Pages: 17

Brand: Huawei Pages: 27

Brand: Huawei Pages: 118

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands