ZyXEL Communications IES-1248-51V Support Notes Download Page 44

Page: 44 / 90

IES-1248-51V Support Notes

will go via 0/34. And the 0/33 get the higher priority. The video traffic will go first

when the two traffics arrive at the same time.

802.1x Application

IEEE 802.1x port-based authentication is desired to prevent unauthorized ports

(clients) from gaining access to the network. It is an extended authentication protocol

that allows support of RADIUS (Remote Authentication Dial in User Service,

RFC2138, 2139) for centralized user profile management on a network RADIUS

server.

We want to deploy 802.1x environment in this application. The following figure

shows the 802.1x example. PC1(supplicant) and PC2(supplicant) want to access to the

application server. If PC1 is not unauthorized, the traffic from PC1 to application

server will be blocked. If PC2 is an authorized client, then it can access to the

application server. From the figure, IES-1248-51V acts as an authenticator.

Authentication

Server (RADIUS)

Station/

Application server

Authorized

Unauthorized

Port x

(Authenticator)

IES-1248-51V

ADSL

Port y

PC 1

(Supplicant)

PC 2

(Supplicant)

How to set up an 802.1x environment.

We should configure Authenticator, RADIUS and Supplicant three parts in 802.1x

Summary of Contents for IES-1248-51V

Page 1: ...IES 1248 51V 48 port ADSL2 remote IP DSLAM with embedded Media Gateway Support Notes Version 3 53 November 2007...

Page 2: ...48 Setting up the Ring Environment 50 How to set up a Ring Environment 51 Setting up the IGMP Snooping IGMP Filtering 57 How to set up IGMP snooping IGMP filtering 58 Static Multicast 60 How to config...

Page 3: ...f IES 1248 51V 84 What are the system limitations of IES 1248 51V 84 What are the VoIP limitations of IES 1248 51V 85 What kind of the voice CODECs does the IES 1248 51V support 85 What is the ADSL ch...

Page 4: ...rks with distributed softswitch call control and independent Media Gateways In addition to the legacy circuit switch equipment suppliers the equipment market reshuffles and opens to new vendors Media...

Page 5: ...The following figure describe the SIP messages exchanged for call establishment and tear down Step Description 1 Invite User A initiates a call to user B This message is an invitation for B to partici...

Page 6: ...cognize the URI format when read the packets Otherwise the requests will be discarded if SIP server cannot support Default URI Type is SIP 3 802 1p Priority 0 7 and DSCP Differentiated Service Code Po...

Page 7: ...er transferring the two parties can chat 7 DTMF digital tone multi frequency Relay is voice band signal normally used to identify which dial button is pressed on the phone Now IES 1248 51V supports fo...

Page 8: ...as E 164 format before transmitting Number plan consists of numbers of entries Each entry has two fields first is number pattern and second one is translating rule The entry order plane is significant...

Page 9: ...8 10 1 Port 5060 Authentication User A for Analog phone A SIP Number 111 Password 111 User B for Analog phone B SIP Number 112 Password 112 IES 1248 51V VoIP Service IP Address 192 168 10 11 24 VLAN I...

Page 10: ...B to communicate with each other via VoIP service 1 System login 2 Set the IES 1248 51V s VoIP service IP address to 192 168 10 11 3 Configure 802 1Q VLAN for VoIP service 4 Create a SIP profile 5 Cr...

Page 11: ...ernet browser The default IP address of IES 1248 51V is 192 168 1 1 Enter the default username and password to access the device Username admin Password 1234 The main screen is the first screen that d...

Page 12: ...s to set up the IES 1248 51V s VoIP IP configuration a In the navigation panel click Basic Setting IP Setup The IP Setup screen appears b In the VoIP field for IP Address enter 192 168 10 11 and for D...

Page 13: ...ick Advanced Application VLAN on the navigation panel The VLAN Status screen appears Click the Static VLAN Settings tab b Click VID 2 s index number c Click to select the Active check box d In the ENE...

Page 14: ...b g Type 2 in the PVID field of ENET2 h Select 7 from the Priority drop down list box of ENET2 This will assign the highest 802 1p priority to the untagged VoIP frames received on ENET2 i Click Apply...

Page 15: ...ur example it is sipserver c Type 192 168 10 1 in the SIP IP Doman Name field and 5060 in the Port field d Type 192 168 10 1 in the Registrar IP Domain Name field and 5060 in the Port field e Type 192...

Page 16: ...or the profile For our example it is 111 c Type 111 in the Password field and retype it in the Retype Password to Confirm field d Click the Add button to create the 111 profile for User A e Type 112 i...

Page 17: ...IES 1248 51V Support Notes 16 All contents copyright c 2007 ZyXEL Communications Corporation...

Page 18: ...ort View screen appears Click port 1 s index number a Click to select the Enable check box b Enter 111 in the VoIP Tel Number field c Select sipserver from the SIP Profile dorp down list box d Select...

Page 19: ...Click to select the Enable check box h Enter 112 in the VoIP Tel Number field i Select sipserver from the SIP Profile dorp down list box j Select 112 from the Call Service Profile drop down list box k...

Page 20: ...IES 1248 51V Support Notes 19 You can see details of the VoIP settings configured on the two ports in the Port View screen All contents copyright c 2007 ZyXEL Communications Corporation...

Page 21: ...20 7 Save your configuration Click Config Save Config Save on the navigation panel and then click the Save button to save your configuration to nonvolatile memory All contents copyright c 2007 ZyXEL...

Page 22: ...oIP Line Status and Info on the navigation panel The following screen appears Now Service Status of port 1 is Idle Some information of RTP and SIP is only shown when communication is established For t...

Page 23: ...IES 1248 51V Support Notes 22 The following screen shows port 2 s line status and information All contents copyright c 2007 ZyXEL Communications Corporation...

Page 24: ...lick VoIP Diagnostic MLT Test on the navigation panel The following screen appears For the following example we select All to perform all the MLT tests and select Forced to perform these tests immedia...

Page 25: ...r high speed requirement with upstream downstream is 25M 1 2Kbps We suppose there are general subscribers from port 1 to port 24 with a low speed profile and some enterprise users from port 25 to port...

Page 26: ...own Stream In this case we set 512Kbps and 2048Kbps for Up Stream and Down Stream Set up High Speed Profile Give this profile a name like Profile_HighSpeed and input the MaxRate for Up Stream and Down...

Page 27: ...peed to port 1 Click a number 1 in the Port index field to enter Port setup screen Select the Profile_LowSpeed profile and press Apply button Copy the settings of port 1 to the ports from 2 to 24 Afte...

Page 28: ...o and press Apply button The settings of port 1 will be copied to other ports For the high speed profile you can set the Profile_HighSpeed to port 25 You also can select ADSL2 mode in Mode combobox Th...

Page 29: ...Telnet 2 1 Menu1 General Setup Go to Menu 1 In this menu we must set Rout IP NO and Bridge YES 2 2 Menu4 Internet Access Setup The encapsulation must be RFC 1483 for bridge mode The Multiplexing shoul...

Page 30: ...rofile with Active Yes The Encapsulation and the Multiplexing are the same as the menu 4 Setting Edit ATM Options Yes will enter Menu 11 6 2 4 Menu11 6 Remote Node ATM Layer Options Check the values a...

Page 31: ...o multiple logical networks Stations on a logical network belong to one group called VLAN group A station can belong to more than one group The stations on the same VLAN group can communicate with eac...

Page 32: ...and ADSL CPE We use ZyXEL Prestige 660R 61 CPE here Because the two ports belong to different VLAN want to go to the Internet via Uplink port of IES 1248 51V we need to set up an extra VLAN and let t...

Page 33: ...es 32 Add VLAN20 Assign Port 2 ENET1 and ENET2 to be members of VLAN20 as shown Add VLAN200 Assign Port 1 Port2 ENET1 and ENET2 to be members of VLAN200 as shown All contents copyright c 2007 ZyXEL Co...

Page 34: ...LAN we can see Vlan10 Vlan20 and Vlan200 as shown Now click VLAN Port Setting to set the PVID We assign VLAN 200 PVID to ENET1 ENET2 Also we assign VLAN 10 and VLAN 20 to Port1 and port2 respectively...

Page 35: ...er to the procedures in previous application Triple play Application The IES 1248 51V allows you to use different channels also called Permanent Virtual Circuits or PVCs for different services Define...

Page 36: ...fic We also can expand this application to triple play environment Internet Internet Access VLAN 20 CPE 802 1Q VLAN Switch How to set up a Multiple PVCs environment S 1248 51V VLAN aware AN like proce...

Page 37: ...LAN20 as show We need to check the Tx Tagging on ENET1 1 2 VC profile setup Click Basic Setting and xDSL Profile Setup in navigation panel to display the configuration screen as shown Click VC profile...

Page 38: ...be LLC the same as IES 1248 51V Class should be CBR which has higher priority in ATM QoS 1 3 Multiple PVCs setup Click Basic Setting and xDSL Port Setup in navigation panel to display the configuratio...

Page 39: ..._CBR profile which we created before Press Apply button to make it take effect Then we add the VPI VCI with 0 34 We apply the DEFVAL profile to this channel 2 Prestige 660R 61 Settings We need to set...

Page 40: ...lation and the Multiplexing are the same as the menu 4 Setting Edit ATM Options Yes will enter Menu 11 6 2 2 Menu11 6 Remote Node ATM Layer Options We should set up another VPI VCI with 0 34 the same...

Page 41: ...IES 1248 51V Support Notes 40 Add VLAN10 Assign Port 1 Port 10 to be members of VLAN10 as show We need to check the Tx Tagging on Port 10 All contents copyright c 2007 ZyXEL Communications Corporation...

Page 42: ...LAN20 as show We need to check the Tx Tagging on Port 10 3 2 PVID setup Click Advanced Application and VLAN in navigation panel to display configuration screen as shown Click VLAN Port Setting to show...

Page 43: ...rt Notes 42 Let 10 be the PVID of Port 1 and 20 be the PVID of Port 2 In this application you will see the video traffic will go via 0 33 and data traffic All contents copyright c 2007 ZyXEL Communica...

Page 44: ...02 1x environment in this application The following figure shows the 802 1x example PC1 supplicant and PC2 supplicant want to access to the application server If PC1 is not unauthorized the traffic fr...

Page 45: ...splay configuration screen as shown Click Enable Authentication Server and set the RADIUS server IP address UDP port and shared Secret which is the same as Radius server Then click Apply to make the s...

Page 46: ...k RADIUS RADIUS SERVER in the navigation panel to display configuration screen as shown You can use the default values or change the Authentication port Shared Secret Remember these values MUST be the...

Page 47: ...here 3 1 802 1x MD5 challenge setup Open the Local Area connection Properties and then click Authentication page Check the Enable IEEE 802 1x authentication for this network and select the MD5 challen...

Page 48: ...Communications Corporation 47 After click the icon there will be a dialog for entering the user name and password Click ok after input the correct user name and password that are in the database of a...

Page 49: ...x Syslogd and Kiwi s Syslog Daemon http www kiwisyslog com When DSL or Ethernet ports are linked up down IES 1248 51V sends a record to Syslog server The Syslog server can be placed on the network whi...

Page 50: ...e Start Menu And you will see following dialog And the Server s IP is 192 168 1 77 IES 1248 51V settings n SysLog in the navigation panel to display configuration 2 Click Advanced Applicatio screen as...

Page 51: ...server Setting up the Ring Environment The Ring topology is used to guarantee the network being normal even if one link between two device broken So in ring topology the network will work well if one...

Page 52: ...e PC in the network even one of the links broken Following sections will describe the detailed procedures to set up the environment 1 IES 1248 51V settings 1 1 Enable Spanning Tree protocol on Etherne...

Page 53: ...nable it on ENET1 port and ENET2 port 2 Setup IES 2000 2 1 Enable Spanning Tree protocol Click Switch Setup in the navigation panel to display configuration screen as shown Then check Spanning Tree Pr...

Page 54: ...ree protocol on Ethernet ports Click Port Setup in the navigation panel to display configuration screen as shown Click msc to display MSC card Port setup Click Uplink2 to set up this port All contents...

Page 55: ...S 1248 51V Support Notes 54 Check Spanning Tree Protocol to enable it Take the same procedures with Uplink1 Please see the following figure All contents copyright c 2007 ZyXEL Communications Corporati...

Page 56: ...e Protocol in the navigation panel to display configuration screen as shown You will see the Spanning Tree Protocol Status page Click Configuration to configure panning tree protocol settings Click Ac...

Page 57: ...as shown after we connect After we remove the cable between port 1 of IES 1248 51V and port 1 of ES4024 the connection still exists We can remove any one of the cable That will not affect the connecti...

Page 58: ...ve members of that group IGMP snooping generates no additional network traffic allowing you to significantly reduce multicast traffic passing through the IP DSLAM IGMP filtering is for allowing a port...

Page 59: ...annel movie 1 and movie 2 If we don t enable the IGMP snooping every one can see all movies If we don t set the IGMP filtering on the port the subscriber behind the port will receive all movies 1 IES...

Page 60: ...And click the IGMP Filter Profile to show the setup page In this case we only allow the subscriber to join movie 1 and movie 2 That means only the groups 240 10 10 8 and 240 10 10 9 can be forwarded t...

Page 61: ...ges of MAC multicast addresses An administrator can control multicast traffic per switch port basis with static multicast filter By default all multicast traffic are dropped without static multicast f...

Page 62: ...icast IP address to Multicast MAC address because IES IPDSLAM using Multicast MAC address to forwarding multicast traffic This feature can also be combined with IGMP Snooping feature to make ports kno...

Page 63: ...rs can specify which video channels based on multicast MAC addresses are allowed or denied to be received by each subscribe The Multicast traffic MAC address of different channels as follows IGMP Quer...

Page 64: ...same step to add 01 00 5e 00 00 02 static multicast entry 4 Please add channel 1 multicast MAC address 01 00 5e 01 01 01 and channel 2 multicast MAC address 01 00 5e 02 02 02 as above All contents cop...

Page 65: ...ld be set as non member of these 2 channels Please single click port 1 to change its status of group address 01 00 5e 01 01 01 and 01 00 5e 02 02 02 as non member 6 For port 2 set it as non member of...

Page 66: ...oined to ADSL ports set adsl port multicast MAC join leave Use join leave to add remove multicast MAC address on specified ADSL ports a range of ADSL ports or all ports delete multicast MAC Remove a s...

Page 67: ...fault status is Leave so please choose the better way to do static multicast filter configuration to get most convenience Limit the users behind the certain DSL port ISP may want to limit the number o...

Page 68: ...panel to display configuration screen as shown You will see the MAC Filter setup page Select the Port 3 and input the MAC address you allow to access the Internet And don t forget the press Apply butt...

Page 69: ...the MAC address number you want to limit to access the Internet And don t forget the press Apply button to let it takes effect Note that the MAC filter and Port security can t be used at the same time...

Page 70: ...and option 82 string They can easily to achieve this with DHCP Relay Option 82 feature and a DHCP server supporting Option 82 function to set up DHCP Relay Option 82 Environment Here we will set up an...

Page 71: ...99 and the IP pool is between 192 168 1 201 and 192 168 1 203 for VID 1 DSL port 25 and the option 82 string is 1248 1 IES 124 C configuration screen as sho DHCP relay and Option 82 function Fill the...

Page 72: ...Notes 71 Input the DHCP IP address or domain name and click ok Our IP is 192 168 1 99 Input user name and password The default user name is administrator and All contents copyright c 2007 ZyXEL Commun...

Page 73: ...sword is incognito It will bring up the following screen please make sure that your DHCP is in online status Then click wizard in the top tool bars and select rule wizard All contents copyright c 2007...

Page 74: ...V Support Notes 73 Give a name and description to the new rule Assign a range of IP addresses or just one IP address to this rule In our case we set All contents copyright c 2007 ZyXEL Communications...

Page 75: ...S 1248 51V Support Notes 74 the IP pool from 192 168 1 201 to 192 168 1 203 After input IP pool we select DHCP Option in Keywords combobox All contents copyright c 2007 ZyXEL Communications Corporatio...

Page 76: ...1 binary data For port 25 VLAN 1 1248 please key in 0019000131323438 as the key value and click OK Please note that the first 2 bytes define port number the second 2 bytes is VLAN ID and the other by...

Page 77: ...rt Notes 76 Then pop up the following screen and you can just press Next button Then you can add DHCP template option such as gateway DNS server and so on All contents copyright c 2007 ZyXEL Communica...

Page 78: ...1248 51V Support Notes 77 Here we use 192 168 1 1 as gateway IP address of DHCP client PC You can apply DDNS service to DHCP server or not All contents copyright c 2007 ZyXEL Communications Corporati...

Page 79: ...IES 1248 51V Support Notes 78 The rule creation has been finished All contents copyright c 2007 ZyXEL Communications Corporation...

Page 80: ...fic packets like IP ARP DHCP EAPoL PPPoE NETBIOS and IGMP Network Ethernet Port Client 2 to Filter Some Specific Packet k NETBIOS protocol packets IES 1248 51V settings n Filter in the navigation pane...

Page 81: ...lear the NetBios check box Meanwhile you will see Filter Out in NetBios check box Press Add button make the change take effect So you will see the port 1 will block the NetBios protocol packets All co...

Page 82: ...1248 51V Please see the figure above We only set the one connected to the ISP as Daisy Chain mode In Daisy Chain mode connect the Ethernet Port 1 to the Ethernet backbone and connect the Ethernet Port...

Page 83: ...wn a voice call DTMF signals are also translated into SIP signals or transmitted in the voice band What is the maximum line rate of IES 1248 51V It can support ADSL2 so line rate can reach to 1 2Mbps...

Page 84: ...Support 512 multicast groups Support 50 members in a multicast group Static multicast forwarding IGMP group count limiting per DSL port IGMP filtering profile What kind of the Media Gateway Signaling...

Page 85: ...up per DSL port is 16 IGMP maximum host IPs per DSL port is 16 IGMP maximum host IPs per Ethernet port is 1024 Number of DHCP snooping 32 Maximum joined MVLAN 4 Maximum ACL profile mapping 8 What are...

Page 86: ...HCP snoop 3 User Account 16 Mvlan number 16 4 per ADSL port at most What are the VoIP limitations of IES 1248 51V Number of SIP profiles 128 Number of SIP Call Service profiles 128 Number of DSP profi...

Page 87: ...ot working properly the voltage readings are outside the tolerance levels or an alarm has been detected on the ALARM input pins What is the default console rate of IES 1248 51V 9600 8bit data no parit...

Page 88: ...ion root VOIP root rpm ivh ser 0 8 12 0 i386 rpm root VOIP ser configure root VOIP ser make root VOIP ser make install root VOIP root rpm ivvh ser mysql 0 8 12 0 i386 rpm install ser and mysql package...

Page 89: ...cycle 10 if constant make sure server lives and fifo is on Server Sip EXpress router 0 8 12 i386 linux Now Mon Sep 20 16 37 32 2004 Up Since Tue Sep 14 19 21 40 2004 Up time 508552 sec Transaction St...

Page 90: ...ipRH9B ser usr sbin serctl add 200 1234 john foo bar MySql password default is heslo new user added root voipRH9B mysql usr sbin serctl monitor You need to set environment variable SIP_DOMAIN e g to f...

Search results

Summary of Contents for IES-1248-51V

Reviews:

ZyXEL Communications IES-1248-51V, Support Notes, Page: 44 / 90

Search results

Summary of Contents for IES-1248-51V

Reviews: