Orolia Seven Solutions WR-ZEN Series Скачать руководство пользователя страница 102 | Manualshive

Страница: 102 / 167

Orolia Seven Solutions WR-ZEN Series Скачать руководство пользователя страница 102

Caution:

When TACACS and RADIUS work and have been configured on

the same client device, be careful with the order of the configuration lines
in /etc/pam.d/sshd. The TACACS configuration line must be added always
in first place and after it, the RADIUS configuration line. This is because
when the RADIUS configuration is the first line, authentication of the first
password always goes to the RADIUS server and, if is the password of
TACACS, the authentication will fail. With TACACS configuration in first
line, the first password is verified with both TACACS and RADIUS.

6.5

Firewall

The WRZ-OS is shipped with the standard iptable firewall that came in most of the Linux
distribution.

The default rules applied is to forbid everything in the timing network (the optical fiber
interface named wrX) so that only the necessary services can be accessed. The table
below resume the port that can be accessed:

Table 6-1:

Default firewall configuration

Timing (wrX)

Service

Port

DNS

53

DHCP/BootP

67-68

NTP

123

PTP/WR

319-320

If an advanced user needs to customize the access to meet a specific security policy, he
can use the persistent custom files (

"Persistent Custom Files" on page 147

) to overwrite

the default rules with its own configuration.

6.5.1

Example to only allow a specific IP for management

This is a typical use case where only a single IP (or a subnetwork) should be allowed to
access to the management port of the device.

##First

append

the

current

rule

to

existing

rule

(overwise

flush)

iptables

- A

INPUT

- i

eth0

- s

192.168.7.1

- j

ACCEPT

iptables

-

A

INPUT

-

i

eth0

-

j

DROP

iptables

- A

INPUT

- i

eth1

- s

192.168.7.1

- j

ACCEPT

iptables -A INPUT -i eth1 -j DROP

92

CHAPTER

6

•

WR-Z16 User Manual Rev. v3.4

6.5 Firewall

«
...
100
101
102
103
104
...
»

Содержание Seven Solutions WR-ZEN Series

Страница 1: ...WR Z16 MODEL User Manual Revision v3 4 Date 14 October 2022 ...

Страница 2: ......

Страница 3: ...ng such products for distribution within their organization in order to use the products Orolia authorized partners systems integrators government contractors and other similarly situated third party installers may without the need for a written license from Orolia reproduce Orolia product documentation including media type changes and create derivative works thereof in the form of com pilations f...

Страница 4: ...Blank page II WR Z16 User Manual ...

Страница 5: ...2 2 Rear panel 9 2 3 Monitoring LEDs 10 2 3 1 System Status 10 2 3 2 Timing Output 11 2 3 3 Timing Input 12 2 3 4 SFP Ports 12 2 4 Product Specifications 13 2 5 Safety Notes 14 2 6 Rack Installation 16 2 7 Regulatory Compliance 18 2 7 1 EMC 18 2 7 2 Safety 18 2 7 3 RoHS 18 CHAPTER 3 Device Connectivity 19 3 1 Default Configuration 20 3 2 Connecting to the Device 20 3 2 1 Necessary Items for Connec...

Страница 6: ...iguration 36 4 3 1 Network configuration from CLI 37 4 4 CLI Monitoring 39 4 4 1 Listing parameters 39 4 4 1 1 Readback a specificparameter 40 4 4 2 Applying changes online 41 4 4 3 Other functionalities 41 4 5 Other CLI tools 42 CHAPTER 5 Timing 43 5 1 Multi sources Resiliency 44 5 1 1 Timing Sources 44 5 1 2 FOCA The Failover Clock Algorithm 44 5 1 3 Virtual Clock Overview 47 5 2 General Timing ...

Страница 7: ...TP license management 64 5 4 2 Configuration 65 5 4 2 1 Configuration of PTP Profiles 67 5 4 3 Info Overview 69 5 5 External Reference GM 73 5 5 1 Configuration 73 5 5 2 Info Overview 74 5 6 NTP 75 5 6 1 Configuration 75 5 6 1 1 NTP Provider 75 5 6 1 2 NTP Timing Source Configuration 76 5 6 2 Info Overview 77 5 6 3 Stratum Levels 77 5 7 Holdover 78 5 7 1 Configuration 79 5 7 2 Info Overview 80 5 8...

Страница 8: ...logs 97 7 1 3 Remote logs 97 7 1 4 Logging tools 97 7 1 5 Configuration 98 7 2 SNMP 99 7 2 1 Configuration 100 7 2 1 1 Generalconfiguration 102 7 2 1 2 SpecificSNMP v1 v2 configuration 103 7 2 1 3 SpecificSNMPv3 configuration 104 7 2 2 SNMP Traps 105 7 2 2 1 Trap objects 106 7 2 2 2 Trap notifications 107 7 2 2 3 Trap configuration 108 7 2 2 4 Basictrap receptor NMS configuration 108 7 3 LLDP 109 ...

Страница 9: ...irmware Update 126 8 2 1 Hardware version and firmware 127 8 2 2 Using Web interface 127 8 2 3 Using SSH SCP 129 8 3 Recovery Mode 130 8 3 1 Manual recovery mode 131 8 3 1 1 Using reset button 131 8 3 1 2 From SerialUART 132 8 4 Factory Config Mode 132 8 5 Failsafe Mode 133 APPENDIX Appendix 135 9 1 Acronyms 136 9 2 Troubleshooting 137 9 2 1 Frequently answered questions FAQ 137 9 2 2 Health gener...

Страница 10: ...4 3 Others 146 9 5 Persistent Custom Files 147 9 6 TACACS and RADIUS server configuration 148 9 6 1 TACACS server installation and configuration 148 9 6 2 RADIUS server installation and configuration 149 9 7 List of supported SFPs 150 9 8 List of Tables 151 9 9 List of Images 151 9 10 Document Revision History 153 INDEX VIII WR Z16 User Manual TABLE OF CONTENTS ...

Страница 11: ...1 WR Z16 User Manual 1 CHAPTER 1 Introduction The following topics are included in this Chapter 1 1 About this Document 2 1 2 About WR Z16 2 1 3 About WRZ OS 3 1 4 About White Rabbit High Accuracy Technology 4 ...

Страница 12: ...ver plug and play fiber links It provides very precise IEEE 1588 PTP in all its optical interfaces and supports NTP interoperability Picosecond level fre quency distribution is available through digital clock The WR Z16 incorporates failover mechanisms which combine multi source redundancy and holdover capabilities to ensure continued operation Its design is optimized for datacenter environment wh...

Страница 13: ...ipped with the default profile of PTPv2 IEEE1588 2008 Other con figuration including specific profiles support requires activation license HATI license Enable the WR Z16 to provide high accuracy synchronization to the HATI FPGA IP CORE This license might be available per port or within a pack 1 3 About WRZ OS The WR Z16 is part of a full ecosystem of products which maintain sub nanosecond accur ac...

Страница 14: ...y on its management inter faces IRIG B NMEA and ToD WR ZEN TP 32BNC Expanded 2U form factor version of the WR ZEN TP It has a front dual power supply It includes 1PPS 10 MHz SMA outputs and standard PTP interoperability on its management interfaces The main characteristic is that it includes 32 BNC ports configured to work as 16 x 1PPS and 16 x 10 MHz outputs A configuration with 32 x 1PPS is poss...

Страница 15: ...ffective solution WR avoids expensive costs related to calibration and com plex deployments with high requirements of maintenance allowing plug and play links in Local Area Networks LANs Integration WR is based on existing protocols and standards such as PTP and Eth ernet so it is very easy to integrate into your existing network infrastructure 1 4 About White Rabbit High Accuracy Technology CHAPT...

Страница 16: ...BLANK PAGE 1 4 About White Rabbit High Accuracy Technology 6 CHAPTER 1 WR Z16 User Manual Rev v3 4 ...

Страница 17: ...w of the WR Z16 Model its cap abilities main technical features and specifications The following topics are included in this Chapter 2 1 Front panel 8 2 2 Rear panel 9 2 3 Monitoring LEDs 10 2 4 Product Specifications 13 2 5 Safety Notes 14 2 6 Rack Installation 16 2 7 Regulatory Compliance 18 ...

Страница 18: ...S232 adaptor not included Logging from the UART on page 20 Pin 1 Pin 2 Pin 3 RXD Pin 4 GND Pin 5 Pin 6 TXD Pin 7 Pin 8 5 2x Man agement Eth ernet RJ45 10 100 1000 ethernet network inter face eth0 eth1 Product Specifications on page 13 6 16x SFP Fiber ports 1Gbps SFP compatible White Rabbit on page 58 IEEE 1588 2008 PTPv2 on page 62 Timing input 7 Timing Input LED OK Green Warning Yellow Critical R...

Страница 19: ...nnector F Digital output High level output 3 0V 0 2V with 50 Ω termination Virtual Clock Overview on page 47 12 10 MHz output SMA connector F Digital output High level output 3 0V 0 2V with 50 Ω termination Virtual Clock Overview on page 47 2 2 Rear panel Figure 2 2 Rear panel of the WR Z16 Table 2 2 RearPanel Legend Name Information Ref 1 Ground Ground connector of the device Power Supply 2 2 Rea...

Страница 20: ...on the status of the WR Z16 The blinking behavior of the front panel LEDs is represented by the Visual column in the following tables using a sequence of three consecutive instants 2 3 1 System Status This LED is mainly used to inform the state of the system itself Daemons loaded Fans power supply Temperature CPU load Available space etc This led is also used to identify the various stages and mod...

Страница 21: ...evice blinks in orange 2 3 2 Timing Output This LED is used to summarize the timing state see Timing on page 43 of the device and if the user should expect to receive a PPS out from SMA connector according to the configuration of PPS Mode Blinking behavior in this context refers to blinking continuously at 1Hz in parallel to the PPS output of the device Table 2 4 Timing Output LED behavior Visual ...

Страница 22: ...e device is locking to its GM source PPS CLK on front panel are detected Steady Red In a locking process with its GM source The device lost the PPS signal or PPS CLK signal at the same time on front panel Blinking Yel low GM preset is active PPS on front panel is detected Idle GM is not active and PPS on front panel is not detected 2 3 4 SFP Ports The network ports of the device are arranged in a ...

Страница 23: ...eceived on this port 1 wr1 wr1 corresponds to lower SFP in the stack A Link down When link is down led A is disabled Link up When link is up the led A stays in green Activity Blinks in orange each time a packet is received on this port C Master Dis abled Led C is disabled if this port is providing timing to other equipment master mode or disabled Active slave Led C is green when port is the active...

Страница 24: ...Hz OUT LVTTL PPS OUT LVTTL PPS IN TTL LVTTL 10MHz IN TTL CMOS ECL clipped sine Back panel Power Supply 2x Redundant Hot swappable 100 240VAC 50 60 Hz 50W max 80W Fan 2 x Swappable fan modules Airflow blowing out 2 5 Safety Notes Safety Symbols Used Table 2 7 Safety symbols used in this document or on the product Symbol Signal word Definition DANGER Potentially dangerous situation which may lead to...

Страница 25: ... into the stand by condition and to identify the control to shift to or to indic ate the state of low power consumption SAFETY Before You Begin Installation DANGER Do not block the air vents which are located on the front panel of the device the internal temperature might increase and damage the equip ment DANGER The FAN modules must only be replaced by a skilled person Once rein stated its screw ...

Страница 26: ...g is available Caution To increase the lifetime of your device it is recommended to use it in a controlled temperature environment and limit to the ambient con dition Temperature 10 C 50 C Humidity 0 90 RH Note The use of dust covers is recommended for the unused SFP SFP slots 2 6 Rack Installation The device has been designed to be mounted in a standard 19 inch 48 3 cm equipment rack and thus res...

Страница 27: ...and cold aisles The default airflow of the device is from front panel cold to back panel hot To properly mount the device to a rack cabinet 1 Place the device on the floor or on a sturdy table near the rack 2 Use a tape measure to verify the interior dimensions of the rack 3 Carefully lift the device and position the rear of the device between the equipment rack mounting posts and slide the device...

Страница 28: ... 2016 EN55035 2017 EN61000 3 2 2014 EN61000 3 3 2013 FCC 47 CFR Part 15B 10 1 15 Edition ICES 003 Issue 6 2 7 2 Safety IEC 62368 1 2014 AC 2015 A11 2017 2 7 3 RoHS 2011 65 UE 2015 863 UE 18 CHAPTER 2 WR Z16 User Manual Rev v3 4 2 7 Regulatory Compliance ...

Страница 29: ...User Manual 19 CHAPTER 3 Device Connectivity This chapter includes instruction to aid in device connectivity The following topics are included in this Chapter 3 1 Default Configuration 20 3 2 Connecting to the Device 20 ...

Страница 30: ...SSH This section will first introduce the general concepts on how to log to the device and then it will provide the specific steps depending on the user OS 3 2 1 Necessary Items for Connectivity These are the required cables and adapters RJ 45 Cat5 6 7 Ethernet cable RJ45 RS232 m and RS232 f USB cable 3 2 2 Logging from the UART In order to connect to the WR Z16 device it is required to connect th...

Страница 31: ...ender the device accessible only by UART There are three main ways to connect to the WR Z16 device from SSH 1 To use the default static IP on eth1 Connect the RJ 45 Ethernet cable to the eth1 interface Connect the host interface to the same LAN and configure its IP address to be within the same netmask Access the device by typing in the host terminal ssh root 192 168 77 100 2 To use a DHCP server ...

Страница 32: ...anel of the WR Z16 as shown in the Front panel on page 8 Hardware section The recommended software to manage UART connections on Linux is picocom which you should be able to install just by running with super user privileges sudo apt install picocom Once installed the command to establish the connection with picocom is similar to picocom b 115200 dev ttyUSB X where ttyUSB x corresponds to the inst...

Страница 33: ...210x converter detected 4 620195 usb 3 6 1 2 cp210x converter now attached to ttyUSB0 In the case of the above output dev ttyUSB0 would be the device s name As a recommended alternative Putty for Linux works properly Programs like minicom or screen can be used although they are not fully recommended for color compatibility issues 3 2 4 2 Logging from SSH Ubuntu distributions and many others have a...

Страница 34: ...able to the Windows PC a new serial port identified by COM number at the Device Manager as can be checked in the figure below Figure 3 1 Device manager New serial port detected Afterwards the connection can be made through Putty The connection type should be marked as Serial at 1 The serial port name COM number should be placed at 2 and the port speed 115200 Bd at 3 see below 24 CHAPTER 3 WR Z16 U...

Страница 35: ...config In order to make Putty compatible with the wrz_ config color scheme and avoid strangecharacters it is recommended to try the following configuration 1 Change remote character set to ISO 8859 1 2 Uncheck Override with UTF 8 if locale says so 3 Select Use Unicode line drawing code points this is the default 3 2 6 Logging from web Once the device is set with an IP address it can be accessed by...

Страница 36: ...responding password for the root user see Default Configuration on page 20 Figure 3 4 Login page of the web interface Having logged in all sections from the web interface will be shown as in the figure below Further instructions on the available features and how to use them in the WR Z16 s web interface are detailed in the GUI CGI Tools on page 29 section 26 CHAPTER 3 WR Z16 User Manual Rev v3 4 3...

Страница 37: ...Figure 3 5 All sections on the web interface 3 2 Connecting to the Device CHAPTER 3 WR Z16 User Manual Rev v3 4 27 ...

Страница 38: ...BLANK PAGE 3 2 Connecting to the Device 28 CHAPTER 3 WR Z16 User Manual Rev v3 4 ...

Страница 39: ...ement of the device This section will briefly explain the main interactions for both methods and will also provide a detailed example of the con figuration of the network interfaces The following topics are included in this Chapter 4 1 Parameters API Introduction 30 4 2 The Web GUI 32 4 3 CLI Configuration 36 4 4 CLI Monitoring 39 4 5 Other CLI tools 42 ...

Страница 40: ...differ but their OID are always the same Type The type of value stored by the parameters String Datatype to represent text Enum Bool Fixed list of String Integer associations Integer Integer number with different binary representations u8 i8 u16 i16 u32 i32 u64 i64 Decimal Floating point number f32 or f64 Array Vector of binary types handled like a separated string Unit Corresponding unit of the p...

Страница 41: ...s along with their relevant attrib utes An example is given for the network interface where the same directory has been sep arated into two tables to follow the same structure as the web GUI panels The following table corresponds to the parameters related to the configuration of the network interface Table 4 1 Configuration parameters of the network interface OID Name Value Type Description 1 xxx0...

Страница 42: ...ransmitted packets on iface 0 xxx0 10 Rx Packets Integer u32 Received packets on iface 0 xxx0 11 Tx Bytes Integer u32 Transmitted bytes on iface 0 xxx0 12 Rx Bytes Integer u32 Received bytes on iface 0 xxx0 13 Tx Errors Integer u32 Transmission errors on iface 0 xxx0 14 Rx Errors Integer u32 Reception errors on iface 4 2 The Web GUI The web GUI is a user friendly interface that allows you to monit...

Страница 43: ...nt tabs available in the device Figure 4 2 Settings menu in web interface After clicking in each of these tabs the user is redirected to the page that will show all the available parameters for monitoring or management It is noteworthy that some of these tabs contain sub tabs that organize the information depending on the application the inter face or the nature of the parameter read or write 4 2 ...

Страница 44: ... To illustrate how the user should interact with the web interface an example of the con figuration of a static IP for eth0 network interface follows First select the Network section from the left column then select the tab ETH0 to con figure the corresponding interface ETH0 is the default selection when entering the net work configuration Then in the CONFIG panel the user must disable the DHCP op...

Страница 45: ...pear shown in the following image mentioning that the performed changes will only have effect after the next reboot This is because the parameters related to network configuration have Load access instead of Write Load access and thus can not be directly applied The user can then directly execute a reboot clicking on Reboot but ton or continue to perform other configurations before rebooting Figur...

Страница 46: ...ure similar to the web GUI The main menus are the following Timing All timing related configuration of the device see Timing on page 43 for more information Network Network configuration of the management timings interfaces Net work configuration from CLI on the facing page Healthing Power Supplies Fans related configuration Healthing on page 114 Security Configuration related to the security of t...

Страница 47: ...t next reboot Indeed each init d services will load their corresponding values from root config file during startup Caution Avoid manual editing of config file In order to avoid errors such as duplic ated entries it is not recommended to manually edit the root config This might have been suggested for some specific configurations of the pre vious version WRZ OS v2 x but this practice is now discou...

Страница 48: ... DHCP Figure 4 9 wrz_config interface Interface parameters to change 5 Do not forget to Save the changes once the configuration is done The following message will prompt To load this configuration at next reboot the default filename config must be used 38 CHAPTER 4 WR Z16 User Manual Rev v3 4 4 3 CLI Configuration ...

Страница 49: ...ool 4 4 CLI Monitoring The gpa_ctrl command tool can be used to monitor the current value and state of all the parameters in the WRZ OS 4 4 1 Listing parameters If the user directly executes gpa_ctrl without any arguments it will list all the parameters of the WRZ OS Then by specifying some arguments and options the user can slightly modify its usage gpa_ctrl OPTIONS module_name path write_val The...

Страница 50: ...r 5 The unit of the parameter if relevant The user can also list only the parameters related to the right power supply by executing gpa_ctrl hald pws pwsr 4 4 1 1 Readback a specific parameter It might also be interesting to only readback a specific parameter To only get the status of the left and right power supplies the user should execute root z16 006 gpa_ ctrl hald pws pwsl status echo OK 0 ro...

Страница 51: ...yntax gpa_ctrl module_name param_path new_value For example to disable the alert for the right power supply the user must execute gpa_ctrl hald pws pwsr disable_alert Yes If the command returns without any errors this mean that the changes have been properly applied This can be checked by reading back the output of gpa_ctrl hald pws pwsr 4 4 3 Other functionalities To improve legibility the parame...

Страница 52: ...wrz_version Legacy tool to get information about version of firmware and hard ware wrz_flashfw Tool used to flash an uploaded firmware See Firmware Update on page 126 wrz_logdump Tool used to report an error log for the support team See How to report an error on page 139 More information about each tool can be found in their respective section or simply by adding the h flag to output the help mess...

Страница 53: ...l Clock Overview on page 47 centralization system it allows to combine these protocols in mul tiple ways and enable resiliency by configuring multiple timing sources Additionally an optional Holdover Holdover on page 78 oscillator can be included to maintain high accuracy 1 5us 24h after learning 3 days even if all timing references are down The following topics are included in this Chapter 5 1 Mu...

Страница 54: ...ot compatible with the precision needed for WR HA distribution However a combination of PTP SyncE as timing source allows to re distribute timing using WR without significant penalties Note NTP Timing source Survey mode Due to its poor accuracy NTP pro tocol is always in Survey Mode and thus cannot actively discipline the local clock Then a maximum total of 5 timing sources of the same or differen...

Страница 55: ...rces Has been designed with tree network topology in mind and it is not optimized for ring topology The following figure depicts a configuration where the first two timing sources are employ ing WR protocol followed by an external GNSS receiver connected to the front panel ref erence GM and finally ending with the holdover to slowly drift until corrective maintenance It also illustrates how the tw...

Страница 56: ...he FOCA algorithm will select the next available timing source in the list and will thus lock on the external GNSS ref erence With this strategy the only way to use back WR0 as the active ref erence is to restart the devices synchronization daemon etc init d ppsi restart or to reach the last timing source and wait for a critical error Another key aspect of FOCA is how to determine when there is a ...

Страница 57: ...ll announce its own clock information through the outputs Figure 5 3 Data flow between timing sources virtual clock and outputs When using the FOCA policy see Data flow between timing sources virtual clock and outputs above the virtual clock will be fed by the active timing source e g tsrc1 then this information clock quality time properties will be forwarded by all the outputs directly in case of...

Страница 58: ...with all VCS codes is detailed in the Appendix under VCS Code on page 141 Clock Identity Class Accuracy Values announced by the device to inform its own clock information to the timing network These values are fully compatible with the BMCA defined in the IEEE 1588 2019 PTP standard Note Expert Virtual Clock Info With the expert view enabled See GUI CGI Tools on page 29 the user will be able to se...

Страница 59: ... ports i e wr0 wr15 are configured as WR masters Clock accuracy is announced below or equal to 25 nanoseconds Alignment of PPS_in VS PPS_out must be done manually within picoseconds PPS only needed at startup It is recommended to use this preset when the device is configured to be the Grand Master in the timing network and is disciplined using an Atomic Clock as external ref erence Here Atomic Clo...

Страница 60: ... from the GNSS receiver before GNSS signal locked before its 10MHz are locked in phase to its PPS This causes a jump in the time reference To avoid this situ ation the user should configure the GNSS to not output any PPS before locking to GNSS signals Note Inform GNSS status via PPS This preset enforces a continuous detec tion of the PPS input This means that if the GNSS receiver is configured to ...

Страница 61: ...hrough interface wr1 The ethernet ports i e eth0 eth1 are configured as PTP masters This preset targets critical devices used as last hop with PTP The primary timing source is provided using WR through interface wr0 It can failover to a secondary timing source provided using WR through interface wr1 Note PTP on copper ports eth0 eth1 In v3 x PTP will be activated on copper ports only while using P...

Страница 62: ...e most similar to the desired configuration 2 Then add modify the different timing sources in the order they should be evaluated by the FOCA algorithm If the field Type is leaved empty it will not be evaluated 3 Finally each type of timing source will enable its own sub set of parameters in order to complete the configuration a For WR type the user should select the corresponding interface name e ...

Страница 63: ...igure the Fan out ports Through Web After applying the Custom profile under the Timing General Configuration tab the user might need to wait few seconds until the preset is completely loaded Then by clicking on the icon of the Fanout Configuration panel all the remaining interfaces will be available for configuration The user should then just change the protocol used by a specific interface and it...

Страница 64: ...he timing source given the source rank pri orities where 1 is the first source to be executed and 255 the last one If the source rank is set to 0 the port will not be included as a timing source This parameter is not used when the port role is Master Figure 5 8 Port configuration e g wr0 from CLI tool 54 CHAPTER 5 WR Z16 User Manual Rev v3 4 5 2 General Timing Management ...

Страница 65: ...ence Layer It includes the devices that will be fed by several external references in grey such as an Atomic Clock or a GNSS receiver and will receive ToD Time of Day from an NTP server external or embedded These devices will act as Grand Master GM in the timing network and their timing information will be forwarded to all the timing nodes The Fan Out Layer or Middle Layer The devices in this laye...

Страница 66: ...HO to ensure continuous operation even if not locked to any timing sources This option is automatically enabled if detected and the provided presets can be used without any modifications 5 2 3 Timing source info Each timing source shares a common set of values processed by the strategy in order to decide how to discipline the virtual clock of the device By clicking on the tabs Timing General the u...

Страница 67: ...been selected by the policy to actively discipline the virtual clock of our device The timing source can be expanded to show its advanced view by clicking on the but ton Figure 5 11 Advanced info Timing Source 1 The advanced view parameters are described below Table 5 1 Timing source info description OID Name Value Description 3 13x0 xx tsrc_info x xxx Information about the x timing source 3 13x0 ...

Страница 68: ... 10201 By expanding the advanced view Figure Advanced info Timing Source 1 on the pre vious page the user can easily verify that this warning is caused by the fact that the time of day ToD is not properly set due to an NTP Error 5 3 White Rabbit 5 3 1 Configuration After configuring if White Rabbit is a Slave Timing Source or a Master port the only con figuration that might be realized is which Tr...

Страница 69: ...ount Integer u32 Number of updates for the servo It is typically increased by 1 each second 1 1220 10 Mean Delay Decimal f64 Unit s Cable round trip time excluding fixed semistatic cRTT 1 1220 11 Delay MS Decimal f64 Unit s Calculated Delay between Master and Slave considering asymmetry and fixed delays 1 1220 21 Egress Latency Decimal f64 Unit ns Fixed latency between the moment when a PTP packet...

Страница 70: ... WR The port state will be Master if it dis tributes WR timing Color Purple Finally the other states are trans ition states mainly used by BMCA or error states 1 xx10 11 Clock State 0 Idle 1 Locking 2 Locked to REF 3 Hol dover 4 Error 5 Free Running State of the clock internal oscillator shared by all PTP instances Locked to Ref is the desired stated 1 xx10 20 Peer MAC Data Array 6 x u8 MAC addres...

Страница 71: ...10 x net wrX 1 Information of the cor responding WR port instance wrX Where OIDs follow the given pat tern wr0 20xx wr1 21xx wr15 35xx 1 xx10 6 PDet State 0 None 1 Waiting 1st Msg 2 Checking 3 Detected 4 Failure State of the Protocol Detection 1 xx10 5 Ext State 0 Disabled 1 Active 2 PTP Only State of the extension If PTP Only this means that the WR extension has not been detected 1 xx10 5 Rx Sync...

Страница 72: ...f PTP communication paths traversed between this PTP instance to the GrandMaster PTP Instance aka stepsRemoved 1 xx32 xx net wrX 1 clk tprop Time Properties of the cor responding WR port instance wrX 1 xx32 1 Time Source Enum This information only attribute indicates the immediate source of time used by the Grandmaster 1 xx32 12 UTC Offset Valid Bool True if the current UTC offset is known to be v...

Страница 73: ... configure the Role of the port Master Slave Disabled The following table compares the configuration of IEEE 1588 PTP when using or not a valid license It is worth highlighting that without license the PTP master instances will announce themselves with default constant values instead of forwarding the VCS clock information from the active timing source Virtual Clock Overview on page 47 Table 5 2 I...

Страница 74: ...eability Flags From VCS False PTP Timescale From VCS or user defined True UTC Offset From VCS 37 Advanced Settings Offset correction Any number in nanoseconds 0 Servo Fit Algorithm Normal Soft Hard Hardx2 Normal 5 4 1 1 PTP license management All the topics related to PTP license management such as purchasing activating and check ing are explained within the Licenses section Licenses on page 120 O...

Страница 75: ...these restrictions when configuring PTP for a specific profile The parameters associated to PTP are listed below OID Name Value Type Description 19 xx13 x net iface 1 cfg Configuration of the corresponding iface port instance 19 xx13 8 Profile 0 Default 1 Custom 2 Telecom 8275 1 3 Telecom 8265 1 4 C37 238 2011 Power Profile selected Default telecom with a set of options pre configured 19 xx13 9 Tr...

Страница 76: ...on the facing page From 1 packet each 2 4 8 16 32 128 seconds to 1 2 4 8 16 32 61 128 packets per second 19 xx13 22 Delay Req Rate Enums Default 1 pack et s Rate of delay request from slave to master From 1 packet each 2 4 8 16 32 128 seconds to 1 2 4 8 16 32 61 128 packets per second 19 xx13 23 Peer Delayreq Rate Enums Default 1 pack et s Rate of Peer delay request when operating in P2P mode From...

Страница 77: ...ng ITU G 8275 1 Telecom profile for wr4 interface Then if some advanced settings need to be modified the user can click on the button to expand the configuration of a given interface Note Custom Profile In case some advanced settings are modified not accordingly to the specification of the selected profile the web interface will automatically change to use the Custom profile It will not restrict t...

Страница 78: ...1 Transport Mode Multicast 19 xx13 20 Announce Rate 8 19 xx13 21 Sync Rate 16 19 xx13 22 Delay Req Rate 16 19 xx13 24 PTP Timescale PTP 19 xx13 56 Sync E Enabled Telecom ITU T 8265 1 The objective of this profile is to distribute frequency within 16 ppb over a network with some non aware PTP nodes OID Name Default Value Range Note Min Max 19 xx13 x net iface 1 cfg 19 xx13 9 Transport Protocol IPv4...

Страница 79: ...19 xx13 11 Transport Mode Multicast 19 xx13 20 Announce Rate 1 19 xx13 21 Sync Rate 1 19 xx13 23 Peer Delay req Rate 1 19 xx13 24 PTP Times cale PTP 19 xx13 56 Sync E Disabled 5 4 3 Info Overview Each PTP port runs its own PTP instance independently on a specific process The inform ation about the instance can be obtained from command line using for example the fol lowing command for the first por...

Страница 80: ...ts If this port is configured as a timing source it can be Slave active or Passive only handle announce messages à Color Blue The port state is Disabled when the link is down or when the port has been configured with WR instead of PTP The port state will be Master if it distributes PTP timing Color Purple Finally the other states are transition states mainly used by BMCA or error states 19 xx12 3 ...

Страница 81: ... Master instances 19 xx12 33 Tx DelayReq Packets Integer Number of received delay request message Incrementing for Slave instances Then if a specific interface is not disabled Port State None by clicling on the a user will expand the interface to its Advanced View to get more information about the PTP exchange The bi directional exchanges of PTP is resumed in Simplified PTP packets exchange for de...

Страница 82: ...kets Integer Number of received delay request message Incrementing for Slave instances 19 xx12 30 Tx Announce Packets Integer Number of transmitted announce messages Incrementing for Master instances 19 xx12 32 Tx FollowUp Packets Integer Number of transmitted Follow up messages Incrementing for Slave instances with Two Steps 19 xx12 34 Rx DelayResp Packets Integer Number of transmitted Delay Resp...

Страница 83: ...n 3 7110 x gm cfg xxx Configuration of the GM timing source By Preset 3 7110 2 Align PPS Boolean Enable this to align the PPS output to the PPS input during the locking procedure It should be enabled when using a GNSS receiver as external reference as PPS might be shifted from 10MHz after each GNSS relock 3 7110 4 Source Type ATOMIC CLOCK GNSS PTP OTHER Type of timing source announced by the GM It...

Страница 84: ...pected accuracy provided by the external reference It shall be conservatively estimated based on the type of time source e g Atomic Clock 1ns GNSS receiver 50ns Caution If GM is used as a timing source it should always be associated to the configuration of at least one NTP server to properly recover the time of day ToD 5 5 2 Info Overview The GM timing source provides its own overview panel where ...

Страница 85: ...ate that is fur ther in the future The date format is YYYY MM DD HH MM SS 3 7120 5 Leap Second File Validity Bool No Yes Yes if the leap seconds file is valid No if it is expired or missing See Update Leap Seconds File on page 81 for updating this file 5 6 NTP This section is about the configuration and monitorization related to the NTP protocol Note Periodic pooling of NTP offset In the current v...

Страница 86: ...the NTP server are only loaded during initialization of the device and thus a reboot might be needed in order to apply them 5 6 1 2 NTP Timing Source Configuration The configuration of an NTP timing source is divided in two parts The first panel provides the configuration shared by all the NTP timing sources OID Name Value Type Description 3 7001 x ntp cfg xxx Configuration on how to provides NTP ...

Страница 87: ...Levels The NTP stratum is a measure for synchronization distance from the reference clock which might not always reflect the timing performance such as jitter or delay In other words a server synchronized to a stratum n server will be running at stratum n 1 where the upper limit for stratum is 15 Stratum 0 Corresponds to the reference clock sources that relays Coordinated Universal Time UTC Stratu...

Страница 88: ...uring enough time the holdover is learning about its environment using adaptative algorithms This learning period has been set to 3 days in order to ensure to fulfill the accuracy specifications If the holdover is triggered before this learning time it will directly enter the expired state 3 Ready Once the HO has learned enough time to ensure good performance the HO will be ready to be triggered a...

Страница 89: ...ions OID Name Value Type Description 3 7210 x holdover cfg xxx Configuration for the Holdover if avail able 3 7210 0 Source Rank Integer Default 0 Source rank of the holdover as timing source If leaved at zero it will be always placed as the last timing source Then the user can allow to trigger the holdover between W 3 7210 1 Time to expire Integer Default 79800 Time until the holdover is consider...

Страница 90: ...mation about the Holdover timing source 3 7220 2 State Enum 0 UNAVAILABLE 1 DISABLED 2 LOCKING 3 LEARNING 4 READY 5 ACTIVATED 6 EXPIRED Current state of the holdover timing source as explained in the introduction of the section If the holdover is not detected the corresponding state if UNAVAILABLE The user can also manually force it as DISABLED in case to avoid triggered it 3 7220 0 Time Learning ...

Страница 91: ...the leg acy release wr zynq os v2 x 3 8020 x misc info xxx Miscellaneous Timing information 3 8020 1 Uptime Integer u64 Time Manager uptime in seconds 5 8 1 Update Leap Seconds File Besides using 10MHz PPS signals from the front panel the GM time source needs to obtain the Time of Day ToD from an external reference NTP is commonly used because of its easy configuration However the leap seconds mus...

Страница 92: ...ect UTC TAI correction the device that can act as Grand Master on the network can also manually update this file through the Misc panel Figure 5 21 Manual Leap seconds update 82 CHAPTER 5 WR Z16 User Manual Rev v3 4 5 8 Miscellaneous ...

Страница 93: ...le remote authentication for net work access control through a centralized server Additionally the secure version of the network protocols used in the system are implemented i e SCP HTTPS SNMPv3 and a firewall is included to provide a robust system against malicious users The following topics are included in this Chapter 6 1 Upload SSH keys 84 6 2 HTTPS 84 6 3 TACACS 87 6 4 RADIUS 89 6 5 Firewall ...

Страница 94: ...l not be asked in the later connections ssh root 192 168 7 35 Welcome to WR Z16 board Password root z16 005 In order to improve security it is strongly recommended to upload your public key to the device instead of using a password This can easily be done by running the command ssh copy id root device_ip This setting is also available in the Expert mode of the GUI under Security Authentication SSH...

Страница 95: ...ion is active the contents are trans mitted in plain text In order to use the secure mode it is necessary to either use an already existing certificate or generate a new one By using the second window of the HTTPS menu as shown below it is possible to first gen erate a certificate and then download it Figure 6 2 Using HTTPS with generated certificate 6 2 HTTPS CHAPTER 6 WR Z16 User Manual Rev v3 4...

Страница 96: ...ed the web access will be lost and the only way to enable it again will be using CLI Finally the fouth panel of the HTTP HTTPS menu enables Diffie Hellman parameters in the TLS key exchange This is optional but recommended There are two buttons to gen erate and download the DH parameters file Caution Diffie Hellman generation time To generate the Diffie Hellman parameters file it is required to re...

Страница 97: ... file usually located at etc tacacs tac_plus conf 6 3 1 Verification of TACACS installation In order to verify the installation it is possible to use the following set up see figure below The TACACS client will ask for authentication to the server which will answer if the user passed Then the device will ask for credentials which will be validated by the TACACS server and grant access to the user ...

Страница 98: ...assword In order to get debug messages from TACACS the service can be launched with the command tac_ plus g always indicating the configuration file For example in the screenshots of figure a successful access with the TACACS password the first time failed the second time and succeeded the third Below you can see the verbose tac_plus output Figure 6 5 SSH connection with the WR Z16 board 88 CHAPTE...

Страница 99: ...network This section will define the processes necessary to install and configure the RADIUS client on up to two servers on the WR Z16 device The steps to install and configure a RADIUS server on an Ubuntu machine are explained in Appendix TACACS and RADIUS server configuration on page 148 6 4 1 RADIUS configuration files The different existing configuration files to modify the operation of the pr...

Страница 100: ...d secret These parameters can be found in security module root zen 305 gpa_ ctrl s security auth radius server1_ ip 172 17 5 39 root zen 305 gpa_ctrl s security auth radius server1_secret sev ensecret And reboot to apply the changes Now that everything has been configured correctly it is possible to access the WR Z16 board with these new passwords which have been set in the users file In addition ...

Страница 101: ...Figure 6 8 SSH connection with the WR Z16 board Figure 6 9 Freeradius failed attempt with debug information 6 4 RADIUS CHAPTER 6 WR Z16 User Manual Rev v3 4 91 ...

Страница 102: ... network the optical fiber interface named wrX so that only the necessary services can be accessed The table below resume the port that can be accessed Table 6 1 Default firewall configuration Timing wrX Service Port DNS 53 DHCP BootP 67 68 NTP 123 PTP WR 319 320 If an advanced user needs to customize the access to meet a specific security policy he can use the persistent custom files Persistent C...

Страница 103: ... not recommended to edit the iptable files without any local access UART to the device as it is easy to make an error and fully block the network access to this device To revert the changes the user should perform a factory reset or delete the usr local etc iptables rules files 6 5 Firewall CHAPTER 6 WR Z16 User Manual Rev v3 4 93 ...

Страница 104: ...BLANK PAGE 6 5 Firewall 94 CHAPTER 6 WR Z16 User Manual Rev v3 4 ...

Страница 105: ...The WR Z16 device includes enhanced monitoring and logging tools to ease its deployment and manageability during operation The following topics are included in this Chapter 7 1 Syslog 96 7 2 SNMP 99 7 3 LLDP 109 7 4 Healthing 114 7 5 External monitoring tool 117 ...

Страница 106: ...here is something preventing the device from start Remote logs They are saved remotely via rsyslog It is necessary to set up at least one external server for this purpose max 2 7 1 1 Session logs During the operation of the device a log recording is performed saving the information in different local files These files are normally saved at var log and have the following con tent auth log It contai...

Страница 107: ...eboot 7 1 3 Remote logs The devices can be configured to forward the system log information to a remote cent ralized server This server needs to be configured by the user so it supports rsyslog Saving information into the device normally is not practical for huge deployments so it is recom mended to set up a rsyslog server and store the logging in a different machine centralizing the logging for a...

Страница 108: ...from the HW Information related with memory status The systemlog file under var log systemlog Collectd databases Information about uboot and versions Note The Orolia support service will require the wrz_logdump information in order to debug any issues Please download and attach this information when opening a support ticket All the logging information under var log is rotated for security reasons ...

Страница 109: ...ed Enabled Automatic permanent logging backup in the dir ectory root log with a periodicity of 6 hours in case of power cuts 13 2000 6 Log N rotate Integer i e 5 Number of logdumps rotations stored in the device 7 2 SNMP Simple Network Management Protocol SNMP is an application layer protocol defined by the Internet Architecture Board IAB in RFC1157 for exchanging management inform ation between n...

Страница 110: ...ange Note SNMP file route These files are located into media data usr local to make it persistent between reboots and firmware updates Caution usr share snmp snmpd conf modification This file is auto matically generated Any manual changes will be lost when relaunching the SNMP daemon The SNMP parameters sub tree is located under misc and is divided in three main parts SNMP v1 v2 and v3 1 SNMP Gene...

Страница 111: ...ion from the device using SNMP v1 and v2 queries Note In order to disable SNMP v1 and SNMP v2 the value none must be chosen for access_view Note Source mask value By default the localhost source is added If no other source mask is added the device will only accept local queries Caution The default community name is public For security reasons it is recommended to change this parameter Caution Acce...

Страница 112: ...cy encryp tion protocol 7 2 1 1 General configuration In order to configure SNMP from the CLI the wrz_config tool must be accessed Once it has been launched the SNMP configuration is under Management SNMP Figure 7 2 SNMP configuration Under the different tabs all the described information in the previous tables or in the fol lowing sections can be accessed modified and saved On a different thread ...

Страница 113: ... create custom SNMP groups the configuration file us r share snmp snmpd conf can be modified to define or modify them Caution SNMP configuration files customization Oroliais not responsible for any damage caused by the user while manually modifying the SNMP con figuration files If it is needed to restore the default credentials in etc snmp snmpd conf and var lib s nmp snmpd conf the following comm...

Страница 114: ...ss secadminSNMP SHA AES secadminSNMPpass secadminSNMPpass Note SNMP v3 user parameters Only access_view and access_mode para meters can be directly changed Encryption protocols are changed through change_password Note SNMP v3 users UserSNMP and adminSNMP are included for retro compatibility purposes It is recommended to use users relying on SHA and AES encryption In the case of SNMP v3 the default...

Страница 115: ...natively net snmp create v3 user tool can be used after stopping the SNMP daemon or the groups definition can be modified to create users For that purpose the information from the mapping section in usr share snmp snmpd conf can be used as a reference to modify the etc snmp snmpd conf file 7 2 2 SNMP Traps The SNMP traps are synchronous notifications generated by the agent which are sent to the ma...

Страница 116: ...device are sent using SNMP v2 due to effi ciency security and simplicity reasons All traps are sent with snmpinform that tries to confirm the reception of the trap by the Network Man agement System NMS and resends the trap until a timeout expires if it receives no confirmation 7 2 2 1 Trap objects The generated traps in the device contain different objects in order to provide general and specific ...

Страница 117: ...r tup shutdown module open or close and parameter status wrzInit Trap generated when the system completely starts and all services are ini tialized wrzShutdown Trap generated when all services are closed before a system shut down or reboot modOpen Trap generated when a module or service is launched ModClose Trap generated when a module or service is closed okagainParam Trap generated when a parame...

Страница 118: ...NMS IP address 13 3900 6 Start shutdown Enum Enabled Disabled Enable disable star tup and shutdown traps 13 3900 7 Modules Start Close Enum Enabled Disabled Enable disable module launch or close traps 13 3900 8 Prms tracked Enum Enabled Disabled Enable disable tracked parameters traps 13 3900 9 Prms alert Enum Enabled Disabled Enable disable traps when a para meter is in an alert status or back to...

Страница 119: ...le read oid val do if x vars x then vars oid val else vars vars oid val fi done echo trap 1 host ip vars After this step it is important to copy the MIB file from the device into the NMS sudo scp root deviceip wr etc snmp SEVEN PRODUCT MIB txt us r share snmp mibs Finally the snmptrapd service must be stopped and re run to view all the received traps sudo service snmptrapd stop sudo snmptrapd f m ...

Страница 120: ...com patible device 7 3 2 Configuration In order to stop sharing device information to neighbors the user must disable the LLDP protocol By doing this the device will also stop collecting information from its peers A configuration per ports will be coming soon Disabling LLDP can be performed through the wrz_config tool in the CLI Once the tool is launched the related parameter can be found under Ma...

Страница 121: ...ighbors are running a compatible LLDP agent the LLDP daemons of this device will be empty The information gathered by each port running LLDP is then structured into three cat egories Device Information related to the system run by the neighbor Port Information related to the neighbor port Management Information about how the corresponding neighbor is managed OID Name Value Type Description 20 xx10...

Страница 122: ...Version String i e v3 2 1 RC5 Firmware ver sion of the cor responding WRZ OS only peer 20 xx11 11 Hardware Version String i e WR_ZEN v3 1 Hardware ver sion of the cor responding WRZ OS only peer 20 xx12 x net wrX peer 1 dev timing Information about the tim ing con figuration of the neighbor 20 xx12 1 Status String i e Ok General status of the peer device 20 xx12 2 VCS Code Integer i e 20001 Virtua...

Страница 123: ...g i e Axcen Photonics SFP vendor name 20 xx22 2 Part Number String i e AXGE 3454 0531 SFP part number 20 xx22 3 Serial Number String i e AX17460000223 SFP serial num ber 20 xx22 4 Transmission Wavelength Decimal i e 1490 000000 SFP transmission wavelength 20 xx22 5 DOM Availability Boolean i e Yes SFP DOM present flag 20 xx22 6 Temperature Decimal i e 0 000000 SFP tem perature 20 xx22 7 Reception ...

Страница 124: ...HH MM SS UTC System date and hour in UTC format 2 1001 20 RAM total Integer i e 511348 Total available RAM 2 1001 21 RAM free Integer i e 93884 Remaining free RAM 2 1001 31 CPUs Integer i e 2 Total available CPUs 2 1001 31 CPU load 1 Decimal i e 0 054199 Average CPU load during the last minute 2 1001 32 CPU load 5 Decimal i e 0 054199 Average CPU load during the last 5 minutes 2 1001 33 CPU load 1...

Страница 125: ... Critical Global status includ ing timing and sys tem parameters 2 1002 2 Timing state Enum 0 Ok 1 Warning 2 Critical Timing status extracted from the virtual active clock 2 1002 3 System Enum 0 Ok 1 Warning 2 Critical System status extracted from the healthing para meters The devices incorporate redundant power supplies and fans In order to ensure their proper behavior their information can be ch...

Страница 126: ...e 24 000000 W Consumption of the supply output power 0 91x0 fan fanX Information related to the module fanX Where OID 9210à fan0 9220à fan1 0 92x0 1 Status Front Enum 0 OK 1 Unplugged 2 Stopped 3 I2C Error Status of the front ventilator of fanX module 0 92x0 2 Status Back Enum 0 OK 1 Unplugged 2 Stopped I2C Error Status of the back ventilator of fanX module 7 4 2 Configuration Inside the healthing...

Страница 127: ...7 PWSR power OUT Enum No Yes Disable right power supply alerts 0 9210 5 Fan 0 disable alert Enum No Yes Disable fan 0 alerts 0 9220 5 Fan 1 disable alert Enum No Yes Disable fan 1 alerts 7 5 External monitoring tool For this new architecture firmware version an external Grafana monitoring application has been developed in order to provide the user a deep knowledge of the configuration and features...

Страница 128: ...al behavior on some devices can be detected The red samples show the instances in which a device reaches high picks regarding the offset from the master device For this reason the monitoring tool helps the user to isolate issues that are difficult to understand The application also helps to prevent issues in the network due to periodic controls that can be performed Furthermore an alert storage fu...

Страница 129: ...R Z16 User Manual 119 CHAPTER 8 Device Maintenance The following topics are included in this Chapter 8 1 Licenses 120 8 2 Firmware Update 126 8 3 Recovery Mode 130 8 4 Factory Config Mode 132 8 5 Failsafe Mode 133 ...

Страница 130: ...power profile IEEE C37 238 2011 HATI hp_ port Enable High Performance HATI support for a given port The HATI High Accuracy Timing IP is a FPGA core designed to easily integrate high accuracy timing into Xilinx FPGA Please contact with info spain orolia com for more information 8 1 2 Check Licenses The status of the licenses on the device can be retrieved under Management Licenses Overview as shown...

Страница 131: ...olor of the box Grey License is not available See Figure 8 1 Checking available licenses Yellow License is in trial Green License is properly activated OID Name Value Type Description 12 2xyy licenses xxx yyy Information about license feature yyy in group xxx 12 2xyy 1 Feature Name String License feature name 8 1 Licenses CHAPTER 8 WR Z16 User Manual Rev v3 4 121 ...

Страница 132: ...ation is to contact the corresponding FAE in order to receive assistance during this procedure Altern atively contact info spain orolia com for a quotation Once the purchase has been confirmed an email will be sent providing the credentials to access the Seven Solutions Licenses Portal Note For security reasons the generated temporary password expires quickly Click on Forget password in case it wa...

Страница 133: ...the association This panel Figure 8 3 allows to map any purchased licenses to this specific device The user only needs to specify the quantity of a given feature license to associate to the device and save it Mapping Purchased Licenses to Device At this point the license s is are associated but still not generated yet By clicking on the Action Download Capability Response a license file bin will b...

Страница 134: ...e unique device name on the network It is recommended to use the same name as the hostname Run Licenses Server Disabled ID Type ETHERNET ID It corresponds to the eth0 physical address MAC of the device Note The device ID format is based on the eth0 MAC address but without the doble dot and with only upper case characters It can also be obtained from a terminal by executing gpa_ctrl hald net eth0 e...

Страница 135: ...o be used in another device the user should first remote it from the previous device before associating it to the new one Access Seven Solutions Flexera Portal Go to the previous device Click on Action Remove Licenses Select the quantity of the corresponding license to remove and Click Save Review that the Status of the licenses to remove is Waiting for confirmation Then click on Action Download C...

Страница 136: ...up in the management network so that all the devices can directly request an active license to enable a feature This solution has the following advantages Only license server must synchronize to license portal in order to get all the pur chased license This synchronization can be done online seamless or offline using a file Each device only needs to configure the License Server IP The license serv...

Страница 137: ...isplayed in the dashboard The device shown below is a WR Z16 that mounts a Z16v4 0 as main board Figure 8 4 HW version displayed in dashboard The WR Z16 can be updated using the firmware that matches the version of the main board or the new generic family firmware developed from the 3 4 software version wr zynq os v XXX YYYMMDD Z16x x_binaries tar wr zynq os v XXX YYYMMDD Z164 x_binaries tar wr zy...

Страница 138: ...creen until the procedure complete Figure 8 5 Update Procedure Waiting screen If the uploaded version is lower than 3 4 a factory reset is mandatory If this is the case the message in the following Figure will appear Figure 8 6 Downgrade warning on the GUI If an incompatibility figure below has been detected the user should NOT con tinue with the flashing procedure except if the support team has c...

Страница 139: ...he first step of this method is to upload the corresponding firmware to the root folder of the device using SCP scp wr zynq os v3 2 RC1 20210325 ZENv3 x_ binaries tar root deviceip Then login to the device with SSH ssh root deviceip And finally run the wrz_flashfw tool to handle updates with the reboot flag if no errors were detected root be dist8 684 wrz_flashfw r wr zynq os v3 2 RC1 20210325 ZEN...

Страница 140: ...f into a recovery mode This recovery mode consists of a minimal Linux stored into internal memory of the equip ment that allows to Reflash the device with another firmware Recover configuration if possible Clean format SD remotely Once the device has been booted in recovery mode it should apply the network con figuration previously saved in the config file However it might occasionally be impossib...

Страница 141: ...wise another recovery action might be executed 3 Firmware Update Try to flash the firmware again this is the most frequent action to perform when an error has occurred during the flashing procedure 4 Restore Remove any customization and restore the device to its default values WARNING Any specific network settings will be removed If none of these actions can return the device to a normal booting m...

Страница 142: ...01X xx wr7s vX X Jun 25 2018 16 07 12 ZENv3 WR_ZEN vx x Sxx_xxx Hit any key to stop autoboot 0 2 Execute wr7s uboot env run recoveryboot 3 Wait until the recovery image is loaded from QSPI dataflash This can take more than 1 minute 8 4 Factory Config Mode In case a miss configuration of the device invalids its correct login one can manually reset the configuration to default factory value by follo...

Страница 143: ...o if after a failed customization a device does not provide a usable access to its console ssh or UART the failsafe mode can be entered by following the procedure 1 Power cycle the device 2 Wait 30 second until the kernel starts loading 3 Press Reset Button 2 for more than 30s until Status LED 3 starts blinking sev eral times in yellow This mean that the failsafe mode has been triggered 4 Remove f...

Страница 144: ...BLANK PAGE 8 5 Failsafe Mode 134 CHAPTER 8 WR Z16 User Manual Rev v3 4 ...

Страница 145: ... 2 Troubleshooting 137 9 3 Technical Support 141 9 4 VCS Code 141 9 5 Persistent Custom Files 147 9 6 TACACS and RADIUS server configuration 148 9 7 List of supported SFPs 150 9 8 List of Tables 151 9 9 List of Images 151 9 10 Document Revision History 153 WR Z16 User Manual APPENDIX 135 ...

Страница 146: ...ver HTTP Hypertext Transfer Protocol NMEA National Marine Electronics Association NMS Network Management System NTP Network Time Protocol PPS Pulse Per Second PTP Precision Time Protocol PPS Precision Time Protocol PWS Power Supply RTT Round Trip Time SFP Small Form factor Pluggable Transceiver for fiber link SSH Secure Shell SNMP Simple Network Management Protocol SyncE Synchronous Ethernet TAI I...

Страница 147: ...o not using matching blue violet SFPs As in White Rabbit it is of uttermost importance to have equal cable lengths in both directions a single fiber should be used for sending data both directions Additionally White Rabbit should follow the 1000BASE BX10 standard and use 1310 1490 pairs with a single LC connector More specifically the Switch ports transmitting downstream to endpoints should use 14...

Страница 148: ...k info The WR Z16 web interface You can access the WR Z16 graphical interface by setting the device an IP and copying its address into the browser s URL bar General ports mode and other configuration can be consulted or changed in the web SNMP This is the recommended alternative for monitoring purposes Follow the steps on the attached Monitoring Tools User Guide to get SNMP working You will be abl...

Страница 149: ...rite to our Support Team at TimingSupport orolia com Describe the issue found going into details a What was the device s main activity before the error occurred e g the device was acting as a GM taking PPS 10MHz references from another one and running as a PTP master on interface wr0 b Were any relevant actions previously performed on the device before the issue happened e g upgrading firmware or ...

Страница 150: ...allation problems caused by the circumstances under the WRZ device is installed cannot be warranted This includes misuse miswiring overheating operation under loads beyond the design range of the WR Z16 device For warranty or non warranty replacement please write to our Technical Support on the facing page team at TimingSupport orolia com 9 2 7 Contact For more information about our company and pr...

Страница 151: ...k you for your cooperation 9 3 1 Regional Contact Orolia operates globally and has offices in several locations around the world Our main offices are listed below Country Location Phone France Les Ulis 33 0 1 6453 3980 Spain Granada 34 958 285 024 USA West Henrietta NY 1 585 321 5800 Table 9 1 Orolia contact information Additional regional contact information can be found on the Contact page of th...

Страница 152: ...table 187 GM Internal Oscillator Timeout in locking or DAC blocked to the limit 99 of the case because 10MHz are not stable or correct and thus tmgr reach a timeout count VSC 10110 WARNING Locked PPS not present 6 GM Front panel In case we are using an Atomic Clock as the main reference and someone has unplugged the PPS cable we might have some problem on the next reboot PPS defined as not mandato...

Страница 153: ... slave devices VSC HO Device Status Message Clock Class Active Reference Description VSC 20001 OK Locked TRACK_ PHASE 6 BC WR ifname The BC clock is locked using WR and the upstream device provide all the information properly set VSC 20001 OK Locked 6 BC PTP ifname The BC clock is locked using PTP and the upstream device provide all the inform ation properly set VSC 20004 OK Locked Upstream in man...

Страница 154: ...ble This state is enforced by tmgr when it FSM is blocked in WAIT_ LOCK until a timeout VSC 20307 CRITICAL SyncE SSM QL error Not QL PRC 248 Internal Oscillator PTP SyncE is in LOCKED state but the received QL code is not a PRC ePRTC PRTC The device will annouce itself in FR VSC 21307 CHANGEOVER SyncE SSM QL error Not QL PRC 187 BC Hol dover PTP SyncE was in LOCKED state but the received QL code i...

Страница 155: ... Free Running 187 BC Hol dover GM announce itself to be now in FR if we have an act ive HO we should exit through this state and fail to the HO timing source VCS 20501 CRITICAL PLL delocked L1 Sync Sync E error 248 BC WR PTP ifname For some unexpected reason the MPLL is not able to fol low the received frequency from L1 Sync Sync E and it has been delocked VCS 21501 CHANGEOVER PLL delocked L1 Sync...

Страница 156: ... and some announce mes sages sent by a master has been received For GM Ready means that 10M PPS has been detected properly VSC 09100 CRITICAL System Error 248 Internal Oscillator In case we get an unexpect behavior because some of the src modules ppsi ptpd gnss hald has crashed The tmgr will enforce this status in order to alert to the managment and also to other nodes if possible that our current...

Страница 157: ...sage prev prev The last mode that was ready has been exited in HO mode The only thing that we perform here is increasing our clock accuracy and stay in this mode until the timer expired VSC 92411 HO WARNING Holdover Learning 248 Passive The Holdover timing source is learn ing in background from the active timing source If triggered it will dir ectly reach its expired state 9 5 Persistent Custom Fi...

Страница 158: ...lease contact the sup port team to get advices on how to proceed Note These directories are mounted linked only at the early stage of WRZ OS initialization A reboot might be needed to make these custom files appears at the correct place 9 6 TACACS and RADIUS server configuration 9 6 1 TACACS server installation and configuration In order to install TACACS on a server with Ubuntu 18 04 it is possib...

Страница 159: ... reject clients depending on their IP address Note If your WR Z16 unit has been used as the client the password must be configured for the root user Registration of new users is not allowed in this device so root is the only existing user After finishing with the settings it is necessary to restart the protocol by using the fol lowing command service tacacs_plus restart 9 6 2 RADIUS server install...

Страница 160: ...The configuration of the users can be done in the file etc freeradius 3 0 users by using the following lines username Cleartext Password userpassword other configs An example can be test radius Cleartext Password password Note If your WR Z16 unit has been used as the client the password must be configured for the root user Registration of new users is not allowed in this device so root is the only...

Страница 161: ...3 2 UART Settings 21 Table 4 1 Configuration parameters of the network interface 31 Table 4 2 Information related to the network interface 32 Table 5 1 Timing source info description 57 Table 5 2 IEEE 1588 configuration with without license 63 Table 5 3 PTP information for a port interface 70 Table 5 4 Advanced PTP information for a port instance 71 Table 6 1 Default firewall configuration 92 Tabl...

Страница 162: ...rces virtual clock and outputs 47 Figure 5 4 Virtual Clock Overview 48 Figure 5 5 Custom Preset for timing sources configuration 52 Figure 5 6 Mixing PTP and WR master ports wr3 wr4 53 Figure 5 7 Custom Preset with CLI tool 54 Figure 5 8 Port configuration e g wr0 from CLI tool 54 Figure 5 9 Reference topology with different presets 55 Figure 5 10 Info for Timing Source 1 56 Figure 5 11 Advanced i...

Страница 163: ...1 Checking available licenses 121 Figure 8 2 Devices Management in License Portal 123 Figure 8 3 Licenses Configuration Panel 125 Figure 8 4 HW version displayed in dashboard 127 Figure 8 5 Update Procedure Waiting screen 128 Figure 8 6 Downgrade warning on the GUI 128 Figure 8 7 Force flashing incompatible firmware 129 Figure 8 8 Flashing hardware v5 0 with incompatible firmware 129 Figure 8 9 Ma...

Страница 164: ...w features time of day ToD daemon support bug fixes 12 Jul 2022 V3 4 Changes to firmware update section added a new support list Corrected LEDs section and added explanation of new warning message due to firm ware hardware upgrade incompatibility Switch to Orolia branding 14 Oct 2022 154 WR Z16 User Manual APPENDIX ...

Страница 165: ... 18 Environmental 14 External Reference 73 F Factory Config 132 Factory Config Mode 132 Failsafe 133 Failsafe Mod 133 Fanout 53 FAQ 137 Firewall 92 Firmware Update 126 FOCA 44 Front panel 8 G GUI 32 H Healthing 114 Holdover 3 43 44 55 60 78 143 HTTP 84 HTTPS 84 I IEEE 1588 2008 62 Installation 16 WR Z16 User Manual INDEX i ...

Страница 166: ...ecovery Mode 130 Regulatory Compliance 18 Remote logs 97 Resiliency 44 RoHS 18 S Safety instructions symbols 14 Symbols 14 Session logs 96 SFP 12 150 SFP Ports 12 SNMP 99 Specifications 13 SSH 21 84 Stratum 77 Syslog 96 System Status 10 T TACACS 87 Technical support 141 Timing Input 12 Timing Management 48 Timing Output 11 Timing Sources 44 Troubleshooting 137 U UART 20 Update 126 Upgrade 126 ii W...

Страница 167: ...V Virtual Clock 47 W Web GUI 32 White Rabbit 2 58 WR 2 WRZ OS 3 WR Z16 User Manual iii INDEX ...

Отзывы:

Нет отзывов

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды