Configuration — Command Line Interface BSG8ew and BSG12ew/aw/tw 1.0 Business Services Gateway Document Status:Standard Document Number: NN47928-501 Document Version: 02.
Copyright © 2008 Nortel Networks, All Rights Reserved All rights reserved. The information in this document is subject to change without notice. The statements, configurations, technical data, and recommendations in this document are believed to be accurate and reliable, but are presented without express or implied warranty. Users must take full responsibility for their applications of any products specified in this document. The information in this document is proprietary to Nortel Networks.
Contents 3 Contents Contents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 How to Get Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5 Getting Help from the Nortel Web site . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5 Getting Help over the phone from a Nortel Solutions Center . . . . . . . . . . . . . . . . . . . .
Contents Wireless network configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 Prerequisites to wireless network configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 Wireless network configuration procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 Configuring a wireless network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 SIP configuration . . . . . . . . . . . . . . . . . . . . . . .
How to Get Help This section explains how to get help for Nortel products and services. Getting Help from the Nortel Web site The best way to get technical support for Nortel products is from the Nortel Technical Support Web site: http://www.nortel.com/support This site provides quick access to software, documentation, bulletins, and tools to address issues with Nortel products.
How to Get Help Getting Help through a Nortel distributor or reseller If you purchased a service contract for your Nortel product from a distributor or authorized reseller, contact the technical support staff for that distributor or reseller.
Introduction This document describes how to configure the Business Service Gateway (BSG) using the Web user interface.
Introduction NN47928-501
WAN configuration This section describes the procedures to configure the Wide Area Network (WAN) setup for the Business Services Gateway (BSG) system. WAN configuration navigation • • • Ethernet (page 9) DSL (page 16) T1/E1 (page 19) Ethernet This section describes Ethernet configuration. Ethernet appears under WAN configuration if you are connected to a BSG8ew or BSG12ew.
WAN configuration Figure 1 Ethernet WAN configuration procedures Configuring the Ethernet WAN Complete this procedure to configure the Ethernet WAN. Prerequisites • Access the box through an interface other than the WAN as this procedure will take down the WAN.
WAN configuration 7 11 Exit interface configuration mode. exit The system is now in global configuration mode. 8 Add a default route: ip route 0.0.0.0 0.0.0.0 1 9 Assign the addresses of the DNS servers: dns-server forwarder primary secondary 10 Exit all levels of configuration mode: end End Variable definitions The following table describes the variables and values for configuring Ethernet WAN.
WAN configuration 4 Exit all levels of configuration mode: end End Variable definitions The following table describes the variables and values for configuring the uplink rate limit. Variable Value speed-in-bps Specifies the uplink rate limit over the WAN interface (in bps). The range is 100,000 to 100,000,000 bps. PPPoE WAN configuration This section describes PPPoE WAN configuration. Prerequisites for WAN configuration • You must have SYSTEM - READ WRITE permission.
WAN configuration 13 Figure 2 PPPoE WAN configuration procedures Configuring the PPPoE WAN Complete this procedure to configure the PPPoE WAN. Prerequisites • Access the box through an interface other than the WAN because this procedure closes down the WAN.
WAN configuration ppp username password 8 Enable the interface: no shutdown 9 Exit from PPP interface configuration mode: exit The system is now in global configuration mode. 10 Enter interface configuration mode on the WAN interface: interface fastethernet 0/9 11 Enable the interface: no shutdown 12 Exit all levels of configuration mode: end End Variable definitions The following table describes the variables and values for configuring PPPoE WAN.
WAN configuration 15 end End Variable definitions The following table describes the variables and values for configuring the uplink rate limit. Variable Value speed-in-bps Specifies the uplink rate limit over the WAN interface (in bps). The range is 100,000 to 100,000,000 bps.
WAN configuration DSL DSL appears under WAN configuration if you are connected to a BSG12aw. Prerequisites for DSL configuration • You must have access read/write permission to configure DSL. DSL configuration procedures The following task flow shows the sequence of procedures to perform to configure DSL. Figure 3 DSL configuration procedures Configuring DSL Complete this procedure to configure DSL.
WAN configuration 17 vpi 0 4 Configure the Virtual Channel Identifier: vci 35 5 Configure the Maximum Receivable Units: mru 1492 6 Exit from interface configuration mode: exit 7 Enter interface configuration mode on the PPP interface: interface ppp 1 8 Bind the PPP to the PVC: layer pvc 1/1 9 Configure the username and password for the PPP interface: ppp username user_name password pass_word 10 Enable the interface: no shutdown 11 Exit from PPP interface configuration mode: exit 12 Enter
WAN configuration Configuring the uplink rate limit Complete this procedure to enable the uplink rate limit. The rate limit value is based on the uplink bandwidth of the ADSL service.
WAN configuration 19 T1/E1 T1/E1 appears under WAN configuration if you are connected to a BSG12tw. Prerequisites for T1/E1 configuration • You must have access read/write permission to configure T1/E1. T1/E1 configuration procedures The following task flow shows the sequence of procedures to perform to configure T1/E1. Figure 4 T1/E1 configuration procedures Configuring the T1 interface Complete this procedure to configure the T1 interface.
WAN configuration Procedure steps Step Action 1 Enter global configuration mode: configure terminal 2 Enter interface configuration mode on the T1 interface: controller t1 1 3 Configure framing: framing {esf|sf} 4 Configure line code: linecode b8zs 5 Configure line mode: mode {csu|dsu} 6 Configure long cablelength (if mode is csu): cablelength long {neg225db|neg15db|neg75db|zerodb} 7 Configure short cablelength (if mode is dsu): cablelength short {133|266|399|533|655} 8 Configure clock
WAN configuration 21 Variable Value mode The line mode. Options: channel service unit (csu)—select if cable length is equal to or more than 655 feet. data service unit (dsu)—select if cable length is less than 655 feet. The default value is csu. cablelength long Cable length options (if mode is csu). Options are: neg225db, neg15db, neg75db, zerodb. cablelength short Cable length options (if mode is dsu). Options are: 133, 266, 399, 533, 655 clock source The clock source.
WAN configuration write startup-config 5 Reboot the BSG: reload 6 Enter global configuration mode: configure terminal 7 Enter interface configuration mode on the E1 interface: controller e1 1 8 Configure framing: framing {e1|e1crc} 9 Configure line code: linecode b8zs 10 Configure line mode: mode {csu|dsu} 11 Configure long cablelength (if mode is csu): cablelength long {neg225db|neg15db|neg75db|zerodb} 12 Configure short cablelength (if mode is dsu): cablelength short {133|266|399|533|6
WAN configuration 23 Variable Value mode The line mode. Options: channel service unit (csu)—select if cable length is equal to or more than 655 feet. data service unit (dsu)—select if cable length is less than 655 feet. The default value is csu. cablelength long Cable length options (if mode is csu). Options are: neg225db, neg15db, neg75db, zerodb. cablelength short Cable length options (if mode is dsu). Options are: 133, 266, 399, 533, 655 clock source The clock source.
WAN configuration no private link 7 Enable the interface: no shutdown 8 Exit from PPP interface configuration mode: exit 9 Configure the DNS server: dns-server forwarder primary 47.129.66.100 secondary 47.129.66.101 10 Exit all levels of configuration mode: end End Variable definitions The following table describes the variables and values for configuring the PPP interface and IP information. Variable Value ip address The IP address of the PPP interface.
VLAN configuration This section describes the procedures for configuring the virtual local area network (VLAN) settings for the Business Service Gateway (BSG). VLAN1 is the default VLAN. The BSG provides VLAN1 as a fully functioning VLAN using all eight ports. Prerequisites to VLAN configuration • You must have SYSTEM - READ WRITE, L2 - READ WRITE, and L3 - READ WRITE permission to access the information on the VLAN configuration panels.
VLAN configuration Figure 5 VLAN configuration procedures VLAN configuration navigation • • • Creating a new VLAN (page 26) Configuring the virtual interface (page 28) Configuring DHCP pool settings (page 29) Creating a new VLAN Complete this procedure to create a new VLAN.
VLAN configuration 3 27 Assign the ports to the vlan: ports untagged name 4 Exit from vlan configuration mode: exit The system is now in global configuration mode. 5 For each one of the interface ports in the ports command, do steps 6 through 8. 6 Enter interface configuration mode on the interface port.
VLAN configuration Variable Value vlan-name The VLAN name. port The port number of a tagged or untagged port. Configuring the virtual interface Complete this procedure to configure the virtual interface.
VLAN configuration 29 Configuring DHCP pool settings Complete this procedure to configure DHCP pool settings.
VLAN configuration NN47928-501
Wireless network configuration This section describes the procedures to configure the wireless network for the Business Services Gateway (BSG) system. Prerequisites to wireless network configuration • • • You must have WIRELESS - READ WRITE permission. You must configure DHCP pool settings for the VLAN used for the wireless network. You must configure the radio port as a member port of the VLAN used for the wireless network.
Wireless network configuration Procedure steps Step Action 1 Enter global configuration mode: configure terminal 2 Create a wireless LAN: config wlan create 3 Tie the WLAN to the VLAN: config wlan interface 4 Set the WLAN authorization type config wlan security auth-type 5 Configure the authorization key: config wlan security pre-shared-key 6 Enable the WLAN: config wlan enable 7 Set the c
Wireless network configuration 33 Variable definitions The following table describes the variables and values for configuring the wireless network. Variable Value wlan-id The ID number of the WLAN. Range is 1 to 4. SSID The SSID is alphanumeric and is mapped to the VLAN ID. SSID length ranges between 1 and 32. The mapping must be unique. Only one SSID number per VLAN ID is allowed. vlan-name The VLAN ID to which SSID users belong.
Wireless network configuration NN47928-501
SIP configuration This section describes the procedures to configure SIP for the Business Services Gateway (BSG) system. Note: You should configure the emergency number (for example, 911) before you use the SIP server. This ensures that an emergency call originating on your system reaches its destination if the SIP server becomes unavailable. To configure the emergency number, see Configuring FXO (page 41). Prerequisites to SIP configuration • • You must have VOICE - READ WRITE permission.
SIP configuration Figure 7 SIP configuration procedures SIP configuration navigation • • • • • Configuring SIP system settings (page 37) Configuring CAC (page 38) Configuring FXS/FXO global information (page 39) Configuring FXS (page 40) Configuring FXO (page 41) NN47928-501
SIP configuration 37 Configuring SIP system settings Complete this procedure to configure SIP system settings. Procedure steps Step Action 1 Enter global configuration mode: configure terminal The system is now in global configuration mode.
SIP configuration Variable Value port-number The port number for the transport protocol. Values range from 1to 65535. The default value is 5060 interval The polling interval in seconds. Enter a number between 10 and 600. The default value is 30 seconds. retries The number of polling retries. Values range from 1 to 10. The default value is 2. transport-protocol Select the required transport protocol for SIP.
SIP configuration 39 Variable definitions The following table describes the variables and values for configuring CAC settings. Variable Value WAN-interface Specifies the WAN interface. Valid values are: Fa0/9 - for a direct ethernet connection ppp1 - when using DSL MaxCalls Type the maximum simultaneous calls allowed on the WAN link. The range is from 1 to 100. The default value for BSG8ew is 50. The default value for BSG12ew/aw/tw is 100.
SIP configuration Variable Value country-code Valid options are: us | uk | japan | china | india | germany | south-africa | korea | brazil | australia Configuring FXS Complete this procedure to configure FXS information. Procedure steps Step Action 1 Enter global configuration mode: configure terminal 2 Enter VOIP configuration mode: voip1000 3 Disable VOIP: shutdown 4 Exit VOIP configuration mode: exit The system is now in global configuration mode.
SIP configuration 41 set fxs line enable 13 Set phone number for FXS line 2: set fxs channel-number 14 Set the display name: set fxs display-name “John Doe” 15 Set the password for FXS line 2: set fxs password 16 Exit from interface configuration mode: exit 17 Enter VOIP configuration mode: voip1000 18 Enable VOIP: no shutdown 19 Exit from all configuration modes: end End Variable definitions The following table describes the variables and values for config
SIP configuration Procedure steps Step Action 1 Enter global configuration mode: configure terminal 2 Enter VOIP configuration mode: voip1000 3 Disable VOIP: shutdown 4 Exit VOIP configuration mode: exit The system is now in global configuration mode.
SIP configuration 43 End Variable definitions The following table describes the variables and values for configuring FXO information. Variable Value fxo-phone-number The phone number assigned to the line. fxo-password The password to access the FXO line. fxo-forward-phone-nu mber Number to use when an incoming call on the FXO channel requires forwarding. max-number-rings The ring count. This is the maximum number of rings within which FXO must get an answer from the remote number.
SIP configuration NN47928-501
VPN configuration This section describes the procedures to configure the Virtual Private Network (VPN) for the Business Services Gateway (BSG) system. Note: If you are connecting two BSG units at either end of the VPN tunnel, ensure the IP addresses are different. Prerequisites for VPN configuration • You must have VPN - READ WRITE permission.
VPN configuration Figure 8 Client tunnel configuration procedures Client tunnel configuration navigation • • • • • Configuring remote identity (client) (page 46) Configuring users (page 47) Configuring the address pool (page 48) Configuring client termination (page 49) Enabling VPN (client) (page 50) Configuring remote identity (client) Complete the following procedure to configure the remote identity.
VPN configuration 1 47 Enter global configuration mode: configure terminal 2 Assign a VPN remote identity: vpn remote identity psk 3 Exit from all configuration modes: end End Variable definitions The following table describes the variables and values for configuring VPN global settings. Variable Value identity-type The user identity type that uniquely identifies the peer.
VPN configuration Variable definitions The following table describes the variables and values for configuring the user database. Variable Value username The user name. The range is 1 to 31 characters. password The password for the user. The range is 1 to 31 characters. Configuring the address pool Complete this procedure to configure the address pool. Prerequisites Note: The address pool cannot be in the same subnet as DHCP addresses.
VPN configuration 49 Configuring client termination Complete this procedure to configure client termination. Procedure steps Step Action 1 Enter global configuration mode: configure terminal 2 Create a policy map and enter crypto configuration mode crypto map 3 Set the mode for the cryptographic key crypto key mode ravpn-preshared-key 4 Set the cryptographic IPsec mode crypto ipsec mode tunnel 5 Set the identity of the other end of the connection.
VPN configuration Variable definitions The following table describes the variables and values for configuring client termination. Variable Value policy-name A IPsec policy name. Each policy must have a unique name. The range is 1 to 63 characters. Policy name ALL is not allowed. id-type The id-type has to match an id type that was set in the remote identity.
VPN configuration 51 set vpn enable 3 Exit from all configuration modes: end End Configuration — Command Line Interface
VPN configuration Branch office tunnel configuration procedures The following task flow shows the sequence of procedures to configure a branch office tunnel. Figure 9 Branch office tunnel configuration procedures Branch office tunnel configuration navigation • • • Configuring remote identity (branch office) (page 52) Configuring IKE (page 53) Enabling VPN (branch office) (page 55) Configuring remote identity (branch office) Complete the following procedure to configure the remote identity.
VPN configuration 3 53 Exit from all configuration modes: end End Variable definitions The following table describes the variables and values for configuring VPN global settings. Variable Value identity-type The user identity type that uniquely identifies the peer.
VPN configuration 5 Set the identity of the other end of the connection.
VPN configuration Variable Value exch-mode The exchange mode. Valid values are: • Main - for the highest level of Security. • Aggressive - for speed lifetime-units The life time unit. Valid values are secs | mins | hrs lifetime-value The life time value. The range is 5 minutes to 8 hours. source-IP The Source IP address of the outbound traffic. source-subnet-mask The Network mask of the outbound traffic. dest-IP The Destination IP address of the outbound traffic.
VPN configuration NN47928-501
QoS configuration This section describes the procedures to configure Quality of Service (QoS) for the Business Services Gateway (BSG) system. QoS provides different types and levels of service for network traffic. With QoS you can assign different priorities for different types of data and guarantee a certain level of performance. Prerequisites for QoS configuration • • • • You must have SYSTEM - READ WRITE permission to configure QoS. QoS Status must be enabled (it is enabled by default).
QoS configuration Figure 10 QoS configuration procedures QoS configuration navigation • • • • • • Configuring the uplink rate limit (page 59) Configuring a policy map (page 59) Configuring a class map (page 60) Configuring QoS marking (page 61) Configuring port-based QoS (page 62) Configuring queue settings (page 63) NN47928-501
QoS configuration 59 Configuring the uplink rate limit Complete this procedure to configure the uplink rate limit. This procedure is optional for the Ethernet WAN.
QoS configuration police type trtcm PIR CIR PBS CBS 3 Exit all levels of configuration mode: end End Variable definitions The following table describes the variables and values for configuring policy map settings. Variable Value policer-id The unique ID of the policer. PIR-value The PIR key value in bytes per second. The default value is 3250000. CIR-value The CIR key value in bytes per second. The default value is 3000000.
QoS configuration 61 End Variable definitions The following table describes the variables and values for configuring class maps. Variable Value class-map classifier-id The Class Map identifier. The value ranges from 1 to 2147483647. protocol The protocol ID to identify the packet flow. Valid values are: • TCP – only TCP packets are classified using the class map. • UDP – only UDP packets are classified using the class map. policer-id The Policy Map identifier.
QoS configuration Procedure steps Step Action 1 Enter global configuration mode: configure terminal 2 Set the priority and the DSCP of the class: class set ip dscp priority 3 Exit all levels of configuration mode: end End Variable definitions The following table describes the variables and values to configure markings. Variable Value classifier-id The Class Map identifier. The value ranges from 1 to 2147483647.
QoS configuration 63 End Variable definitions The following table describes the variables and values for configuring port-based QoS. Variable Value interface-type Type of the ingress L3 interface. The physical or virtual interface type. interface-id The specific interface of the interface type. priority-value The priority for the traffic class. Values range from 0 to 7. traffic-class The traffic classes supported on the port. The values ranges from 0 to7.
QoS configuration Repeat steps 3 and 4 for each queue that you need to configure. 5 Exit all levels of configuration mode: end End Variable definitions The following table describes the variables and values for configuring QoS queue settings. Variable Value interface-type Type of the ingress L3 interface. The physical or virtual interface type. interface-id The specific interface of the interface type. queue-number Specifies the value for the queue number.
