Главная
/
Patton electronics
/
ipRocketLink IAD 3086
/
Руководство пользователя

Patton electronics ipRocketLink IAD 3086, Руководство пользователя

Поделиться

Страница: 127 / 196

Patton electronics ipRocketLink IAD 3086 Скачать руководство пользователя страница 127

Intrusion Detection System (IDS)

127

Model 3086 G.SHDSL Integrated Access Device User Guide

6 • Security

Sets the duration for blocking all suspicious hosts. The firewall detects when the system is being scanned
by a suspicious host attempting to identify any open ports.

– Victim Protection Block Duration:Default = 600 seconds (10 minutes).

Sets the duration of the block in seconds.

– Maximum TCP Open Handshaking Count:Default = 100

Sets the maximum number of unfinished TCP handshaking sessions per second that are allowed by a
firewall before a SYN Flood is detected. SYN Flood is a DOS attack. When establishing normal TCP
connections, three packets are exchanged: (1) A SYN (synchronize) packet is sent from the host to the
network server. (2) A SYN/ACK packet is sent from the network server to the host. (3) An Ack
(acknowledge) packet is sent from the host to the network server. If the host sends unreachable source
addresses in the SYN packet, the server sends the SYN/ACK packets to the unreachable addresses and
keeps resending them. This creates a backlog queue of unacknowledged SYN/ACK packets. Once the
queue is full, the system will ignore all incoming SYN request and no legitimate TCP connections can
be established.

– Once the maximum number of unfinished TCP handshaking sessions is reached, an attempted DOS

attack is detected. The firewall blocks the suspected attacker for the time limit specified in the DOS
Attack Block Duration parameter.

– Maximum Ping Count:Default = 15

Sets the maximum number of pings per second that are allowed by the firewall before an Echo Storm is
detected. Echo Storm is a DOS attack. An attacker sends oversized ICMP datagrams to the system using
the ‘ping’ command. This can cause the system to crash, freeze, or reboot, resulting in denial of service
to legitimate users.

– Maximum ICMP Count:Default = 100

Sets the maximum number of ICMP packets per second that are allowed by the firewall before an ICMP
Flood is detected. An ICMP Flood is a DOS attack. The attacker tries to flood the network with ICMP
packets in order to prevent transmission of legitimate network traffic.

4.

After selecting the chosen parameters, click on

Apply

.

«
...
125
126
127
128
129
...
»

Содержание ipRocketLink IAD 3086

Страница 1: ...E mail support patton com WWW www patton com Part Number 07M3086 Rev E Revised February 16 2012 Important This is a Class A device and is intended for use in a light industrial environment It is not...

Страница 2: ...ts and will at our option repair or replace the product should it fail within one year from the first date of the shipment This warranty is limited to defects in workmanship or materials and does not...

Страница 3: ...17 Protocol support 17 PPP Support 18 ATM Protocols 18 Protocol Support 18 Management 18 Security 19 Front Panel Status LEDs Test Mode Switches and Console Port 19 Console port outlined in red 21 Rear...

Страница 4: ...g the V 35 or X 21 port via DIP switches 40 Switch Bank S2 42 Switches S2 1 through S2 7 42 Switch S2 8 43 Switch Bank S3 43 Switch S3 1 CO CP selection 43 Switch S3 3 Transmit Clock Mode 44 T1 Interf...

Страница 5: ...Rate 56 Actual DSL Rate 56 Intended Serial Interface Data Rate 57 DSL Rate Number of i Bit 57 Terminal Type 57 Interface Type 58 PCM Mode 58 PCM Transmit Polarity 58 PCM Receive Polarity 58 Loopback...

Страница 6: ...6 PPPoA Bridged RFC 2364 Configuration 79 Routed application configurations to a DSLAM 81 RFC 1483 Routed 81 PPPoH Routed 88 PPPoA Routed RFC 2364 95 IPoA Routed RFC 1577 107 5 Specialized Configurati...

Страница 7: ...ction 144 Contact information 144 Warranty Service and Returned Merchandise Authorizations RMAs 144 Warranty coverage 144 Out of warranty service 144 Returns for credit 144 Return for credit policy 14...

Страница 8: ...shielded RS 232 console port EIA 561 160 Serial port 161 V 35 M 34 Connector 161 V 35 DB 25 Female Connector 161 X 21 DB 15 Connector 162 E1 T1 RJ 48C Connector 162 Power input 162 E Command Line Int...

Страница 9: ...a specified group 179 Set variable attributes on a specified channel 180 Web Configuration Methods 180 FRS Overview Screen 180 Group Channel Level Configuration Screen 181 Frame Relay Network Interwor...

Страница 10: ...Web Based Configuration of the Frame Relay Channel 192 Serial Interface Configuration 192 Configuration Variables Available 192 Clock Mode 192 Clock Invert Functions rxClkInv receive clock txClkInv t...

Страница 11: ...features and capabilities Chapter 2 contains an overview describing IAD operation Chapter 3 provides quick start installation procedures Chapter 4 describes configuring the IAD for typical applicatio...

Страница 12: ...ol and WARNING heading indicate a potential electric shock hazard Strictly follow the warning instructions to avoid injury caused by electric shock The alert symbol and WARNING heading indicate a pote...

Страница 13: ...hin 10 feet 3 meters of the device shall be easily accessible and pro tected by a circuit breaker For AC powered units ensure that the power cable used meets all applica ble standards for the country...

Страница 14: ...m would display them dir Bold Courier font indicates where the operator must type a response or command Table 2 Mouse conventions Convention Meaning Left mouse button This button refers to the primary...

Страница 15: ...l support 17 PPP Support 18 ATM Protocols 18 Protocol Support 18 Management 18 Security 19 Front Panel Status LEDs Test Mode Switches and Console Port 19 Console port outlined in red 21 Rear panel con...

Страница 16: ...The following sections describe Model 3086 features and capabilities General attributes see page 16 G SHDSL Characteristics Model 3086 see page 17 Ethernet see page 17 Protocol support see page 17 PPP...

Страница 17: ...end to end management Ethernet Auto sensing Full Duplex 10Base T 100Base TX Ethernet Standard RJ 45 connector Built in MDI X cross over switch IEEE 8021 d transparent learning bridge up to 1 024 addre...

Страница 18: ...networking with IP RFC 741 TCP RFC 793 UDP RFC 768 ICMP RFC 950 ARP RFC 826 IP Router with RIP RFC 1058 RIPv2 RFC 2453 Up to 64 static routes with user selectable priority over RIP OSPF routes Built i...

Страница 19: ...ents and Real Time alerts Logging or SMTP on event Password protected system management with a username password for console and virtual terminal Sepa rate user selectable passwords for SNMP RO RW str...

Страница 20: ...the DTE device attached to the serial port is active binary 1 T1 E1 Link Green On indicates the T1 E1 interface is connected to a live T1 E1 line LOS Red On indicates a T1 E1 loss of frame condition I...

Страница 21: ...universal power supply The Model 3086 offers internal or external AC power supply options The internal power supply connects to an AC source via an IEC 320 connector 100 240 VAC 200 mA 50 60 Hz The ex...

Страница 22: ...follows When in the default out position the Ethernet circuitry takes on a straight through MDI configuration and functions as a transceiver It will connect directly to a hub When in the in position t...

Страница 23: ...23 Chapter 2 Product Overview Chapter contents Product Overview 24 Applications Overview 24 Internet Extranet Access 25 IP FR and TDM Access 25 IP FR and Voice over DSL 25 Metro Intranet Access 26...

Страница 24: ...ables data to be bridged or routed The supported transports are PPPoA PPPoE Frame Relay RFC 1483 Multiprotocol Encapsulation over ATM AAL5 IPoA PPPoH and Ethernet Configuring an interface and transpor...

Страница 25: ...der s network VCs transport data across the WAN to their final destination Additionally the Model 3086 supports PPP encapsulation FR to ATM network internetworking or FR to ATM Service internetworking...

Страница 26: ...the Model 3096RC separates PCM voice and IP data traffic for transport over the WAN Metro Intranet Access Patton s Model 3086 symmetrical G SHDSL modulation scheme allows deployment in back to back co...

Страница 27: ...n Chapter contents Hardware installation 28 What you will need 28 Installing the AC power cord 28 Connecting network cables 29 IP address Quick Start modification 30 Web Operation and Configuration 30...

Страница 28: ...owser in preparation for configuring the modem see Web Operation and Configura tion on page 30 What you will need Model 3086 G SHDSL IAD Ethernet cable with RJ45 plugs on each end included with IAD DB...

Страница 29: ...or dumb terminal Use the RJ45 RJ45 straight through cable between the adapter and the red marked RJ45 port on the 3086 IAD 2 Do NOT connect the IAD to the Ethernet LAN now 3 On the PC start a HyperTe...

Страница 30: ...list interfaces enter To see if the change in IP address is correct fi system config save enter To save the new IP address in flash memory Wait for configuration saved message Saving configuration fi...

Страница 31: ...1 Model 3086 G SHDSL Integrated Access Device User Guide 3 Quick Start Installation The Model 3086 home page displays see Figure 3 Figure 3 Model 3086 home page The Model 3086 menu structure is shown...

Страница 32: ...3 Quick Start Installation Model 3086 G SHDSL Integrated Access Device User Guide 32 Hardware installation Figure 4 Model 3086 Menu Structure...

Страница 33: ...4 T1 Interface 44 T1 Interface Connection 44 T1 Interface Configuration 45 DIP Switch Configuration 45 Switch Bank S2 45 Switches S2 1 through S2 7 46 Switch S2 8 46 Switch Bank S3 47 Switch S3 1 CO C...

Страница 34: ...t 57 Terminal Type 57 Interface Type 58 PCM Mode 58 PCM Transmit Polarity 58 PCM Receive Polarity 58 Loopback 58 Annex Type 58 Line Probe 58 TDM Plus Ethernet Traffic 58 CLI configuration 59 Selecting...

Страница 35: ...ernet extension HDLC PPPOH Bridged 64 Network Extension HDLC PPPoH Routed 67 DSLAM Connections with remote CPE units 73 Bridged application configurations to a DSLAM 73 RFC 1483 Bridged Configuration...

Страница 36: ...vated In addition to configuring the DSL link the user must configure the routing or bridging features and must choose from HDLC or ATM encapsulation Configuration for these applications is presented...

Страница 37: ...ce is pre Routed WAN Services Bridged WAN Services Web Page Parameter RFC 1483 PPPoA IPoA PPPoE HDLC RFC 1483 PPPoA HDLC Description X X X X X X X X VPI X X X X X X default 0 VCI X X X X X X default 3...

Страница 38: ...Guide 38 TDM Port sented on a female DB 15 connector while the T1 E1 interface is presented on an RJ 48C jack additionally the E1 interface is presented on dual BNC Figure 5 shows the different connec...

Страница 39: ...have the option for DTE configuration a tail circuit cable will be required this cable is available from most datacomm supply vendors The tail circuit cable will cross most interface signals so that...

Страница 40: ...nnector DCE configuration To change to DTE configuration lift the daughter board from the connector turn it around so that the DTE label an arrows point to the X 21 connector and place it back on the...

Страница 41: ...ent Implementation of DIP switch settings can be done in two ways Set up DIP switches and then cycle power On Off On Set up DIP switches and then turn the implementation switch S2 8 to the Off positio...

Страница 42: ...2 8 Switch configuration On Toggle On Off On To activate DIP configuration S7 S6 S5 S4 S3 S2 S1 Data Rate kbps On On On On On On Off 64 On On On On On Off On 128 On On On On On Off Off 192 On On On On...

Страница 43: ...ly When deploying the model 3086s units installed at the Customer location should be set to CP and units On On Off On Off Off Off 1472 On On Off Off On On On 1536 On On Off Off On On Off 1600 On On Of...

Страница 44: ...eight position keyed modular jack configured as a RJ 48C for connection to 100 ohm twisted pair lines Figure 10 3086 T1 port pinout T1 Interface Connection The 3086 will usually connect either to a lo...

Страница 45: ...ipped with all DIP switches set to the ON posi tion While in this setting the Model 3086 can be configured only via software console Telnet HTTP SNMP If you want to use the DIP switches to configure t...

Страница 46: ...take effect if S2 8 isn t toggled S7 S6 S5 S4 S3 S2 S1 Data Rate kbps On On On On On On Off 64 On On On On On Off On 128 On On On On On Off Off 192 On On On On Off On On 256 On On On On Off On Off 320...

Страница 47: ...t to point operation one unit must be CO while the other must be CP Switch S3 3 Transmit Clock Mode Use Switches S3 3 to configure the 3086 for internal or external net work clock mode Table 7 S3 Summ...

Страница 48: ...hms Selecting T1 automatically sets the framing to Extended Super Frame and B8ZS line code Switch S3 8 Switch S3 applies to E1 applications for T1 applications this switch is ignored Web Interface Con...

Страница 49: ...ig menu E1 Interface The 3086 enables T1 or E1 device located at customer locations to access a carrier s network over two wire long reach DSL links This capability allows providers to offer T1 E1 ser...

Страница 50: ...f a PC for configuration Note The Model 3086 is shipped with all DIP switches set to the ON posi tion While in this setting the Model 3086 can be configured only via software console Telnet HTTP SNMP...

Страница 51: ...vely When deploying the model 3086s units installed at the Customer location should be set to CP and units On On Off On On Off Off 1216 On On Off On Off On On 1280 On On Off On Off On Off 1344 On On O...

Страница 52: ...7 Use S3 7 to configure the TDM interface for T1 or E1 service Note that selecting E1 automati cally sets the E1 line rate to HDB3 line impedance to 120 ohms Selecting T1 automatically sets the frami...

Страница 53: ...E1 Multi Frame CAS E1 with CRC Consult with your service provider which option is required Line Code Choose from AMI or HDB3 Most E1 applications use HDB3 Line Build Out Select 120 ohm if the E1 conn...

Страница 54: ...the next example DIP Switch Configuration Set switch S2 8 from On to Off wait 3 to 4 seconds set it back to On CLI configuration When using the console port or Telnet session via Ethernet port the use...

Страница 55: ...figuration Note Press the Enter key at the end of each command line fi gshdsl set terminal remote fi gshdsl set dslrateTS 32 fi gshdsl set interface hdlc fi gshdsl set pcmmode Serial fi gshdsl set ghs...

Страница 56: ...Counters Selecting Clear will reset the error counters displayed in the Status screen Intended DSL Data Rate This is the DSL line rate at which you wish to connect In a point to point deployment the u...

Страница 57: ...placed in the upper slots of the DSL frame while Ethernet data is placed in the lower DSL frame timeslots When the serial port is not used set the Intended Serial Interface to Not used The 3086 will...

Страница 58: ...possible that the clock and data arriving at the 3086 may be out of synchronization causing data errors Inverting the polarity of the receive clock at the 3086 may solve this problem Use the Normal se...

Страница 59: ...d Ethernet data At the command prompt type fi gshdsl set pcmmode EthernetandSerial enter Assigning bandwidth to serial and Ethernet ports In this example half of the bandwidth 1 152 Mbps 18 TS assigne...

Страница 60: ...ype Selects between HDLC and ATM transport To select HDLC for both 3086 type fi gshdsl set interface hdlc enter Annex Type Select between Annex A and Annex B To select Annex B type fi gshdsl set ghsan...

Страница 61: ...yed in the Status screen Intended DSL Data Rate This is the DSL line rate at which you wish to connect In a point to point deployment the unit designated as Central will impose the line rate on the un...

Страница 62: ...he upper slots of the DSL frame while Ethernet data is placed in the lower DSL frame timeslots When the serial port is not used set the Intended Serial Interface to Not used The 3086 will automat ical...

Страница 63: ...y be out of synchronization causing data errors Inverting the polarity of the receive clock at the 3086 may solve this problem Use the Normal setting when using short serial cables less than 6 feet or...

Страница 64: ...lled ip1 with an IP address of 192 168 1 1 Let s change the IP address so it is in the same subnet as both PCs For example to 192 168 100 2 fi ip set interface ip1 ipaddress 192 168 100 2 255 255 255...

Страница 65: ...ice User Guide 4 Basic Application Configurations Verify the settings to be Interface 1 LLC header mode dialout LLC header mode off HDLC header mode on No authentication Leave User name and Password b...

Страница 66: ...control port fi ip list interfaces One IP interface is called ip1 with an IP address of 192 168 1 1 Change the IP address so it is in the same subnet as both PCs For example to 192 168 100 3 fi ip set...

Страница 67: ...e Configure button In the Action submenu under G SHDSL change Action to Deactivate then click on Action Return to Action select Start and click on Action Network Extension HDLC PPPoH Routed Model 3086...

Страница 68: ...c If changed then click on Configure Click on Action Select deactivate for Action Click on the Action button 2 On the Menu go to Configuration then to WAN Connections Delete both default WAN services...

Страница 69: ...ntegrated Access Device User Guide 4 Basic Application Configurations Click on Configure 3 Go to Configuration Menu Configuration WAN connections Edit for PPPoH Routed service Edit IP Interface Ipaddr...

Страница 70: ...Menu Configuration IP Routes Click on Create new Ip V4 Route Create the gateway to the remote 3086 by entering the WAN IP address of the remote 3086 in this example enter 192 168 164 3 in the Gateway...

Страница 71: ...etric values are different although the process is the same From the command line interface CLI via the RS 232 control port fi ip list interfaces fi ip clear routes fi pppoh clear transports fi ethern...

Страница 72: ...ption field enter the description you wish In this example it is called PPPoH Routed Description PPPoH Routed Interface 1 WAN IP address 192 168 164 3 LLC Header Mode off HDLC Header Mode ON No authen...

Страница 73: ...idged services are offered RFC 1483 Bridged PPPoA Bridged and HDLC Bridged The configurations show a desktop on one end and a laptop on the other The laptop and its Model 3086 would be replaced with a...

Страница 74: ...ip set interface ip1 ipaddress 192 168 100 2 255 255 255 0 1 Now you can bring up the web page management system on your browser by entering the IP address of the 3086 2 On the Menu go to Configurati...

Страница 75: ...command line interface CLI via the RS 232 control port fi ip list interfaces One IP interface is called ip1 with an IP address of 192 168 1 1 Change the IP address so it is in the same subnet as both...

Страница 76: ...Return to Action select Start and click on Action PPPoH Bridged Configuration Model 3086 Remote Configuration Steps PPPoH Bridged From the command line interface CLI via the RS 232 control port fi ip...

Страница 77: ...wish In this example it is called PPPoH Bridged Interface 1 LLC header mode dialout LLC header mode off HDLC header mode on No authenticaion Leave User name and Password blank Click on Apply 3 Go to...

Страница 78: ...address of the 3086 2 On the Menu go to Configuration then to WAN Connections Delete the factory default WAN services already defined Click on Create a new service in the main window select PPPoH_Brid...

Страница 79: ...on Steps PPPoA Bridged From the command line interface CLI via the RS 232 control port fi ip list interfaces One IP interface is called ip1 with an IP address of 192 168 1 1 Change the IP address so i...

Страница 80: ...A Bridged From the command line interface CLI via the RS 232 control port fi ip list interfaces One IP interface is called ip1 with an IP address of 192 168 1 1 Change the IP address so it is in the s...

Страница 81: ...WAN services are offered RFC 1483 PPPoH IPoA PPPoA and PPPoE Routed RFC 1483 Routed RFC 1483 provides the simplest method of connecting end stations over an ATM network User data in the form of Ethern...

Страница 82: ...Click on G SHDSL in the Configuration Menu Configuration verify that Terminal Type is Central and Interface Type is atm If changed then click on Configure Click on Action Select deactivate for Action...

Страница 83: ...FC 1483 Routed Change the configuration parameters to match the following Description RFC 1483 Routed VPI 0 VCI 35 Encapsulation Method LLC SNAP WAN IP Address 192 168 164 2 Click on Configure 3 Confi...

Страница 84: ...the Configuration Menu then the submenu Status The Modem State should be deactivated If not go to the Action and change it to deactivate Then in the Action submenu under G SHDSL change Action to Star...

Страница 85: ...2 229 so in this example change the IP address of the 3086 to 192 168 172 3 The default IP mask is 255 255 255 0 fi ip set interface ip1 ipaddress 192 168 100 2 255 255 255 0 1 Now you can bring up th...

Страница 86: ...go to Configuration then to WAN Connections Delete both default WAN services already defined Click on Create a new service in the main window select RFC 1483 Routed and click on the Configure button I...

Страница 87: ...3 Configuration Menu Configuration IP Routes Click on Create new Ip V4 Route Create the gate way to the remote 3086 by entering the WAN IP address of the remote 3086 in this example enter 192 168 164...

Страница 88: ...tivated If not go to the Action and change it to deactivate Then in the Action submenu under G SHDSL change Action to Start then click on Action The modems should link up within 30 seconds or so and t...

Страница 89: ...e IP address of the 3086 Click on G SHDSL in the Configuration Menu Configuration verify that Terminal Type is Central and Interface Type is hdlc If changed then click on Configure Click on Action Sel...

Страница 90: ...r Guide 90 DSLAM Connections with remote CPE units Username blank Password blank Click on Configure 3 Go to Configuration Menu Configuration WAN connections Edit for PPPoH Routed service Edit IP Inter...

Страница 91: ...Configuration IP Routes Click on Create new Ip V4 Route Create the gate way to the remote 3086 by entering the WAN IP address of the remote 3086 in this example enter 192 168 164 3 in the Gateway fie...

Страница 92: ...on to Start then click on Action Model 3086 Central Configuration Steps PPPoH Routed From the command line interface CLI via the RS 232 control port fi ip list interfaces fi pppoh clear transports One...

Страница 93: ...hen click on Configure Click on Action Select deactivate for Action Click on the Action button 2 On the Menu go to Configuration then to WAN Connections Delete both default WAN services already define...

Страница 94: ...on Create new Ip V4 Route Create the gate way to the remote 3086 by entering the WAN IP address of the remote 3086 in this example enter 192 168 164 2 in the Gateway field OK The other fields should...

Страница 95: ...with Remote and 3086 A may represent a home PC which is connecting to a central ized PPP server Local and 3086 B Since this is a routed application there are differences to be noted Referring to the a...

Страница 96: ...ick on Action Select deactivate for Action Click on the Action button 2 On the Menu go to Configuration then to WAN Connections Delete both default WAN services already defined Click on Create a new s...

Страница 97: ...rify or change the following parameters on the Edit PPP webpage Server false Create Route true Specific Route false Subnet Mask 0 0 0 0 Route Mask 0 0 0 0 Hdlc false LLC false Lcp Max Configure 10 Lcp...

Страница 98: ...Give DNS to Relay true Give DNS to Client true Remote DNS 0 0 0 0 Remote Secondary 0 0 0 0 LCP Echo Every 10 Auto Connect false Idle Timeout 0 Termination true Click on Change button 4 Click on Edit A...

Страница 99: ...nfor mation while setting up the PPP connection 7 Go to G SHDSL in the Configuration Menu then the submenu Status The Modem State should be deactivated If not go to the Action and change it to deactiv...

Страница 100: ...6 Click on G SHDSL in the Configuration Menu Configuration verify that Terminal Type is Central and Interface Type is atm If changed then click on Configure Click on Action Select deactivate for Actio...

Страница 101: ...n this example it is called PPPoA Routed Change the configuration parameters to match the following Description PPPoA Routed VPI 0 VCI 800 WAN IP Address 192 168 164 2 LLC Header Mode off HDLC Header...

Страница 102: ...parameters on the Edit PPP webpage Parameters in red italics are those requiring changes from the default configuration Server true Create Route true Specific Route false Subnet Mask 0 0 0 0 Route Mas...

Страница 103: ...User Guide 4 Basic Application Configurations IP Addr from IPCP true Discover Primary DNS false Discover Secondary DNS false Give DNS to Relay false Give DNS to Client false Remote DNS 0 0 0 0 Remote...

Страница 104: ...4 Basic Application Configurations Model 3086 G SHDSL Integrated Access Device User Guide 104 DSLAM Connections with remote CPE units Click on Change button...

Страница 105: ...asic Application Configurations 4 Click on Edit ATM Channel Verify the Options to match the following Change if necessary Tx Vci 800 Tx Vpi 0 Rx Vci 800 Rx Vpi 0 Peak Cell Rate 2000 Burst Tolerance 0...

Страница 106: ...rameters Ipaddr 192 168 164 2 Mask 255 255 255 0 Dhcp false MTU 1500 Enabled true Click on the Change button if changes were made 6 Again Configuration Menu Configuration IP Routes Click on Create new...

Страница 107: ...n and change it to deactivate Then in the Action submenu under G SHDSL change Action to Start then click on Action IPoA Routed RFC 1577 User data in the form of IP packets is encapsulated into AAL 5 P...

Страница 108: ...entering the IP address of the 3086 2 On the Menu go to Configuration then to WAN Connections Delete the factory default WAN services already defined Click on Create a new service in the main window s...

Страница 109: ...ed Access Device User Guide 4 Basic Application Configurations 3 Returning to the 3086 Configuration Menu click on Configuration then IP Routes Click on Create new Ip V4 Route Destination 0 0 0 0 Gate...

Страница 110: ...110 DSLAM Connections with remote CPE units 4 Go to G SHDSL in the Configuration Menu then the submenu Configuration Change Terminal Type to Central and Interface Type to atm Click on the Configure bu...

Страница 111: ...e subnet as both PCs For example to 192 168 172 3 The default IP mask is 255 255 255 0 fi ip set interface ip1 ipaddress 192 168 172 3 255 255 255 0 1 Now you can bring up the web page management syst...

Страница 112: ...on Create new Ip V4 Route Destination 0 0 0 0 Gateway 192 168 164 2 Mask 0 0 0 0 Cost 1 Interface leave blank Click on OK 4 Go to G SHDSL in the Configuration Menu then the submenu Configuration Leav...

Страница 113: ...113 Chapter 5 Specialized Configurations Chapter contents IP Configurations 114 Router 114 DHCP Server and Relay 114...

Страница 114: ...nter the IP address of the gateway which is the WAN IP address of the device on the other end of the DSL link in the Value field of Gateway 5 Enter the appropriate netmask in the Value field of Netmas...

Страница 115: ...gure on the DHCP Server web page to change the configuration for any of the DHCP param eters The three categories of configuration parameters on this web page are the Address Range of the DHCP Server...

Страница 116: ...NS client provides a method for retrieving a list of IP addresses for a host name as well as acquiring the host name for a given IP address The DNS client will cache any results from the name server w...

Страница 117: ...DNS Relay web page up to 10 DNS server addresses may be added to utilize the DNS servers already being used by the network 1 Select Enabled 2 Click on Configure 3 Enter the DNS server address in the f...

Страница 118: ...5 Specialized Configurations Model 3086 G SHDSL Integrated Access Device User Guide 118 IP Configurations...

Страница 119: ...contents Introduction 120 Configuring the IAD 120 Configuring the security interfaces 121 Deleting a Firewall Policy 122 Enabling the Firewall 123 Firewall Portfilters 123 Security Triggers 124 Intru...

Страница 120: ...by using security triggers Triggers tell the security mechanism to expect these second ary sessions and how to handle them Rather than allowing a range of port numbers triggers handle the situa tion...

Страница 121: ...both as 0 0 0 0 because this is the gateway default route 5 Click on Create and the route will be entered 6 The default gateway can be verified by clicking on IP Routes under Status in the menu Config...

Страница 122: ...d etoi is added between the external and internal interfaces 1 Under Policies Triggers and Intrusion Devices on the Security page click on Firewall Policy Configuration 2 In the Current Firewall Polic...

Страница 123: ...ge State The network is now secure All the interfaces which have been defined are protected and all traffic is blocked between different the different interface types That is all traffic is blocked be...

Страница 124: ...ity Triggers Security triggers are used to allow an application to open a secondary port in order to transport data The most common example is FTP This procedure is to set up a trigger on the Firewall...

Страница 125: ...el add a trigger which will open a secondary channel only when data is being passed This prevents the need to open too many ports which offer a security risk 1 From the Configuration Menu Configuratio...

Страница 126: ...led Enables Victim Protection Victim Protection protects the victim from an attempted spoofing attack Web spoofing allows an attacker to create a shadow copy of the world wide web WWW All access to th...

Страница 127: ...unreachable addresses and keeps resending them This creates a backlog queue of unacknowledged SYN ACK packets Once the queue is full the system will ignore all incoming SYN request and no legitimate...

Страница 128: ...6 Security Model 3086 G SHDSL Integrated Access Device User Guide 128 Intrusion Detection System IDS...

Страница 129: ...129 Chapter 7 NAT Network Address Translation Chapter contents Introduction 130 Enabling NAT 130 Global address pool and reserved map 131...

Страница 130: ...can also be used so that different inside hosts can share a global address by mapping different ports to different hosts For example Host A is an FTP server and Host B is a web server By mapping the F...

Страница 131: ...Pool The global IP addresses need to be created and put into the Global Address Pool 3 Set the parameters to the following values Interface Type internal Use Subnet Configuration Use IP Address Range...

Страница 132: ...r Guide 132 Introduction 6 Set the parameters to the following values Global IP Address 100 100 100 101 Internal IP address 10 1 1 2 Transport Type all Port Number 65535 This port number means all por...

Страница 133: ...133 Chapter 8 Monitoring Status Chapter contents Status LEDs 134...

Страница 134: ...ive binary 1 off indicates CTS is binary 0 DTR Green ON indicates the DTR signal from the DTE device attached to the serial port is active binary 1 T1 E1 Link Green On indicates the T1 E1 interface is...

Страница 135: ...l Analog Loopback LAL Serial Port Loop 137 Operating Remote Digital Loopback RDL DSL Loop 137 T1 E1 Diagnostics 138 Network Loop 138 T1 E1 Local Loop 139 QRSS BIT Error Rate Diagnostics 140 T1 E1 conn...

Страница 136: ...oftware upgrades which are at no charge contact upgrades patton com for the location of the new firmware and follow these instructions 1 Get the firmware image from Patton and save on your PC It is a...

Страница 137: ...data sent to the local Model 3086 in this test mode will be echoed returned to the user device i e characters typed on the key board of a terminal will appear on the terminal screen Figure 12 Local Li...

Страница 138: ...modems You should then check the twisted pair line for proper connections and continuity T1 E1 Diagnostics The 3086 K offers two diagnostics loops for the T1 E1 interface Network line loopback and lo...

Страница 139: ...menu click on the Activate Test Mode button 2 Perform a BER bit error rate test Replace the Local T1 E1 equipment PBX with a T1 E1 tester and initiate a BER test to verify integrity of the cable and...

Страница 140: ...vice and looped to the 3086 originator the far end device i e PBX or routers s T1 E1 port must be set to line loop The local 3086 decodes the received bits using the same polynomial If the received bi...

Страница 141: ...nd alarm for the following Red Alarm Yellow alarm Blue Alarm Remote Alarm carrier loss and Sync Loss Transceiver Status This section displays status for the following Search FAS Search CRC Search CAS...

Страница 142: ...ern generator and detector 511 with Errors Initiates a built in 511 bit pseudo random pattern generator and detector The test pattern generator also injects intentional errors approximately once per s...

Страница 143: ...ntents Introduction 144 Contact information 144 Warranty Service and Returned Merchandise Authorizations RMAs 144 Warranty coverage 144 Out of warranty service 144 Returns for credit 144 Return for cr...

Страница 144: ...ore ship ment All of our products are backed by a comprehensive warranty program Note If you purchased your equipment from a Patton Electronics reseller ask your reseller how you should proceed with w...

Страница 145: ...Completing a request on the RMA Request page in the Support section at www patton com By calling 1 301 975 1000 and speaking to a Technical Support Engineer By sending an e mail to returns patton com...

Страница 146: ...10 Contacting Patton for assistance Model 3086 G SHDSL Integrated Access Device User Guide 146 Warranty Service and Returned Merchandise Authorizations RMAs...

Страница 147: ...apter contents Compliance 148 EMC 148 Safety 148 PSTN Regulatory 148 Radio and TV Interference FCC Part 15 148 CE Declaration of Conformity 148 Authorized European Representative 149 FCC Part 68 ACTA...

Страница 148: ...tallation However there is no guarantee that inter ference will not occur in a particular installation If the equipment causes interference to radio or television reception which can be determined by...

Страница 149: ...to maintain uniterrupted service If trouble is experienced with this equipment for repair or warranty information please contact our company If the equipment is causing harm to the telephone network t...

Страница 150: ...e supplier Any repairs or alterations made by the user to this equipment or equipment mal functions may give the telecommunications company cause to request the user to disconnect the equipment Users...

Страница 151: ...53 T1 E1 Interface 3086 RIK and RIT models only 153 64K G 703 Port 3086 RIF Model 153 Protocol Support 153 PPP Support 154 ATM Protocols 154 Management 154 Security 155 Compliance Standard Requirement...

Страница 152: ...nectors for Ethernet Line and Console Field Factory Default Option Standard 1 year warranty G SHDSL Characteristics Full duplex 2 3 Mbps speed over 2 wire in accordance with ETSI ITU standard G 991 2...

Страница 153: ...ector AMI Line Coding Protocol Support Complete internetworking with IP RFC 741 TCP RFC 793 UDP RFC 768 ICMP RFC 950 ARP RFC 826 IP Router with RIP RFC 1058 RIPv2 RFC 2453 Up to 64 static routes with...

Страница 154: ...al Link Control LLC Subnetwork Access Protocol SNAP encapsulation Default VC mux mode ATM UNI 3 0 3 1 and 4 0 signaling ATM QoS with UBR CBR nrt VBR and rt VBR and per VC queuing and shaping IISP V 1...

Страница 155: ...ogging or SMTP on events POST POST errors line DSL PPP DHCP IP Compliance Standard Requirements FCC part 15 Class A US EMC CE per RTTE 99 5 EC EMC LVD FCC Part 68 US Permission to connect CTR 12 CTR 1...

Страница 156: ...Device User Guide 156 Power and Power Supply Specifications Fuse rating 250 Volts 400 mA time delay Connect the equipment to a 36 60 VDC source that is electri cally isolated from the AC source The 3...

Страница 157: ...157 Appendix C Cable Recommendations Chapter contents DSL Cable 158 Ethernet Cable 158 Adapter 158...

Страница 158: ...Cable DSL Cable 10 foot 3 m RJ 11 RJ 11 refer to RJ 11 non shielded port on page 160 Ethernet Cable Ethernet cable P N 10 2500 refer to RJ 45 shielded 10 100 Ethernet port on page 160 Adapter EIA 561...

Страница 159: ...45 shielded 10 100 Ethernet port 160 RJ 11 non shielded port 160 RJ 45 non shielded RS 232 console port EIA 561 160 Serial port 161 V 35 M 34 Connector 161 V 35 DB 25 Female Connector 161 X 21 DB 15 C...

Страница 160: ...ed port Single twisted pair TP for full duplex transmission The signals are not polarity sensitive RJ 45 non shielded RS 232 console port EIA 561 Pin No Signal Direction Signal Name 1 Output TX 2 Outp...

Страница 161: ...DCE Source U XTC Transmit Clock DTE Source V RC Receiver Clock DCE Source W XTC Transmit Clock DCE Source X RC Receiver Clock DCE Source Y TC Transmitter Clock DTE Source AA TC Transmitter Clock DTE...

Страница 162: ...Data A DTE Source 15 TC Transmitter Clock B DCE Source 16 RD Receive Data A DCE Source 17 RC Receiver Clock A DCE Source 18 LL Local LIne Loop 19 RTS Request to Send B DTE Source 20 DTR Data Terminal...

Страница 163: ...inology 164 Local VT 100 emulation 164 Remote Telnet 164 Using the Console 165 Administering user accounts 166 Adding new users 166 Setting user passwords 166 Changing user settings 167 Controlling lo...

Страница 164: ...oA IP over ATM PPPoH Point to Point over HDLC Ethernet Interface bridges and routers both have interfaces A single transport is attached to a bridge or router via an interface Object an object is anyt...

Страница 165: ...d on the next lines For example ethernet After typing the you will not see the add delete set show list clear ethernet Then you may enter one of the keywords on the displayed list followed by a space...

Страница 166: ...r accounts Adding new users To add a new user username use the command system add user username Comment system add login user username Comment The first command creates a user who can access the syste...

Страница 167: ...r example to change the set tings for user fred system set user fred access default engineer superuser system set user fred maydialin enabled disabled system set user fred mayconfigure enabled disable...

Страница 168: ...teN 32 fi gshdsl set dataRateI 0 fi gshdsl set Action Start Attribute Type Value Description Version RO The version number of the DSL driver Platform RO The platform name of the unit e g 3086 or 3086...

Страница 169: ...istering user accounts 169 Model 3086 G SHDSL Integrated Access Device User Guide E Command Line Interface CLI Operation Default Setting of the unit Terminal Remote Interface Hdlc DataRateN 24 DataRat...

Страница 170: ...E Command Line Interface CLI Operation Model 3086 G SHDSL Integrated Access Device User Guide 170 Administering user accounts...

Страница 171: ...ame Relay Service Interworking FRF 8 176 FRS Configuration Options 176 DE Mapping 176 FECN Mapping 177 Translation Mode 177 FRS Name 178 CLI Configuration Method 179 Show one of the eight groups 179 S...

Страница 172: ...transport 191 List all active Frame Relay Channels 191 Set configuration variables for the specified frame relay transport 191 Show detailed configuration information on the specified channel 191 Web...

Страница 173: ...ch section describes the CLI and web interface for the feature set Frame Relay Local Management Interface The Frame Relay Local Management Interface LMI is a mechanism that enables two separate frame...

Страница 174: ...te Defines the current state of the DTE side LMI Possible options are as follows Mgt_Port_DOWN Currently the LMI on the DTE side is DOWN Mgt_Port_UP Currently the LMI on the DTE side is UP mgtAutoStar...

Страница 175: ...erface The following options are available Show current configuration Command lmi show fi lmi show FR_Mgt Type no_maintenance FR_Mgt State Mgt_Port_DOWN Full Report Cycle 6 User Max Errors 3 Net Max E...

Страница 176: ...e transport service level Frame Relay Service Interworking functions are defined by the Frame Relay Forum specification Frame Relay ATM PVC Service Interworking Implementation Agreement FRF 8 1 FRS Co...

Страница 177: ...a constant value of 1 ATM All ATM cells will have the EFCI bit set to a constant value of 1 Convert Frame Relay to ATM Direction The system will convert the FECN bit received from the Frame Relay pac...

Страница 178: ...RS encapsulation conversion using Translate Mode Transparent The second translation mode option is to set the protocol value to transparent Transparent is used when the Protocol being used is not one...

Страница 179: ...to all eight channels within that group Each channel is configured independently and will all run over as single LMI ses sion or with no LMI running The FRS FRF 8 connections are configured using the...

Страница 180: ...r with the possible options available fi frs set group 1 DEMapping convert one zero fi frs set chn1 DEMapping convert Set variable attributes on a specified channel Command frs set channel variable va...

Страница 181: ...Configuration Screen By selecting the Group link in the FRS Overview screen the detailed channel level information screen is displayed as shown below This screen allows configuration of all variables...

Страница 182: ...ions that are required to supply a Frame Relay Network Interworking function The Frame Relay Network Interworking functions are defined by the Frame Relay Forum specification Frame Relay ATM PVC Netwo...

Страница 183: ...Priority Indication bit in the ATM cell will be mapped to the DE Discard Eligibility bit of the resulting Frame Relay packet There are two options available Fr_sscs_only The FR SSCS removed from the...

Страница 184: ...ata Link Connection Identifier Frame Relay side DLCI for the associated channel FRN Channel Name Allows the user to name the FRN channel This is helpful when viewing multiple channel connections to de...

Страница 185: ...DLCI Activate Mux Mode port1 main 0 100 100 disable mux_one_to_one port2 backup 10 110 110 disable mux_one_to_one port3 none 20 120 120 disable mux_one_to_one port4 none 30 130 130 disable mux_one_to...

Страница 186: ...E that after the first line the was used to determine the possible configuration options available to the user Note At any point during the typing of the command selecting the will display the possibl...

Страница 187: ...l variables Note that the port num ber must be specified along with the channel as described in the above chart The following screen capture shows the setting of the DLCI for port 5 channel 1 Note tha...

Страница 188: ...s that are available Each Port Number in the left column is a hyperlink that will display a more detailed view of the port along with the configuration of the channel level information This screen is...

Страница 189: ...nels associated with the specified port Note that in the screen show below only a single channel is avail able for configuration This is because the port shown above is set to a MuxMode of one to one...

Страница 190: ...ne fragmentation of the packets based on the Frame Relay Forum IA FRF 12 If this variable is set to 0 then FRF 12 Frame Relay Fragmentation will be disabled If set to any other value it will set the f...

Страница 191: ...t name number Delete a single frame relay connection using either the connection name or number name the name used when creating the transport number the ID number found when listing the transports Li...

Страница 192: ...rough either the CLI or web interface on the unit Clock Mode Determines the source of timing for the unit Internal The unit will generate the appropriate clock speed defined by the speed setting of th...

Страница 193: ...internal Intf Speed 2048 Tx Sample Point txclk Tx Clk Inv normal Rx Clk Inv normal Gain help about the Serial Interface Command serial help This command will request that the system provide help about...

Страница 194: ...s the configuration variables as they are displayed on the web management screen Ping and Trace Route The ping and trace route features are now available from both the web and CLI of the Patton Electr...

Страница 195: ...p traceroute start 192 168 50 2 fi traceroute to 192 168 50 2 192 168 50 2 30 hops max 12 byte packets 1 192 168 50 2 192 168 50 2 0 ms 0 ms 0 ms If the traceroute is unsuccessful it can be canceled u...

Страница 196: ...system This feature can be found on the web under the System link The following screen capture shows the backup and restore web page Backup Configuration To backup the configuration of the unit selec...

Отзывы:

Нет отзывов

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды