Model 29xx Series Remote Access Server Administrator’s Reference Guide Sales Office: +1 (301) 975-1000 Technical Support: +1 (301) 975-1007 E-mail: support@patton.com WWW: www.patton.com Part Number: O7MDAS-ARG, Rev.
Patton Electronics Company, Inc. 7622 Rickenbacker Drive Gaithersburg, MD 20879 USA Voice: +1 (301) 975-1000 Fax: +1 (301) 869-9293 Technical Support: +1 (301) 975-1007 Technical Support e-mail: support@patton.com WWW: www.patton.com Copyright © 2012, Patton Electronics Company. All rights reserved. The information in this document is subject to change without notice. Patton Electronics assumes no liability for errors that may appear in this document.
Contents Audience................................................................................................................................................................. 9 Structure................................................................................................................................................................. 9 Typographical conventions used in this document................................................................................................
Contents Access Server Administrators’ Reference Guide Dial Protocol window............................................................................................................................................62 Dial In Details.......................................................................................................................................................65 Dial In Modify default window .............................................................................................
Access Server Administrators’ Reference Guide Contents The Frame Relay main window...........................................................................................................................172 DLMI Window ...................................................................................................................................................174 DLCI window ..............................................................................................................................
Contents Access Server Administrators’ Reference Guide System Log—Modify ..........................................................................................................................................243 System Log—Volatile Memory ...........................................................................................................................247 System Log—Non-Volatile Memory ..............................................................................................................
Access Server Administrators’ Reference Guide Contents Configuring Non-Facility Associated Signaling (NFAS) ......................................................................................316 Configuring Frame Relay ....................................................................................................................................317 Configuring DNIS .......................................................................................................................................
Contents 8 Access Server Administrators’ Reference Guide
About this guide This guide describes configuring a Patton Electronics access server.
Access Server Administrator’s Reference Guide About this guide • Chapter 18 describes configuring the RIP Version 2 window • Chapter 19 describes configuring the SNMP window • Chapter 20 describes configuring the System window • Chapter 21 describes configuring the System Log window • Chapter 22 describes configuring the T1/E1 Link window • Chapter 23 describes configuring the Sync PPP window • Chapter 24 describes configuring Layer 2 Tunneling Protocol (L2TP) • Chapter 25 describes the contents of the Ab
Access Server Administrator’s Reference Guide About this guide Mouse conventions The following conventions are used when describing mouse actions: Table 2. Mouse conventions Convention Meaning Left mouse button This button refers to the primary or leftmost mouse button (unless you have changed the default configuration).
Chapter 1 Introduction Chapter contents Introduction ..........................................................................................................................................................13 Logging into the HTTP/HTML Administration Pages .........................................................................................13 HTTP/HTML and SNMP Object Format ...........................................................................................................
Access Server Administrators’ Reference Guide 1 • Introduction Introduction You may configure the access server by using its internal HTTP/HTML Administration Pages. However, to enter into the HTTP/HTML pages, you must first define the LAN Address Technique, LAN IP Address, and LAN Subnet Mask for the access server. If you have not done so, refer to the Model 29xx Series RAS User Manual available online at www.patton.com/manuals/29xx.pdf.
Access Server Administrators’ Reference Guide 1 • Introduction Saving HTTP/HTML Object Changes Sometimes you will need to save changes that you have made in the HTTP/HTML pages. Do the following to make changes to read/write variables: 1. Select the appropriate Modify screen. 2. Make changes to the desired parameter. 3. Click on the Submit button. 4. Return to the HOME screen. 5. Click on the Record Current Configuration button.
Chapter 2 Home Chapter contents Introduction ..........................................................................................................................................................16 Operating Status Variables ....................................................................................................................................17 Active Calls (diActive) ..........................................................................................................................
Access Server Administrators’ Reference Guide 2 • Home Introduction This chapter describes the HOME window—the first Administration Page that you see after logging into the access server (see figure 3). From HOME, you can monitor current system status, modify the Static User database, save any system changes, or reset the system without power-cycling the server. Note Clicking on the HOME link in the Configuration Menu pane will return you to the HOME page from any other page.
Access Server Administrators’ Reference Guide 2 • Home Operating Status Variables There are seven system variables which describe the immediate operating status access server. These variables are shown in figure 4 and are described in the following sections. Figure 4. STATUS menu Active Calls (diActive) This number, ranging from 0 to 120 displays the total number of calls being processed (connecting, online, authenticating, and so on) in the access server at the time the HOME page was displayed.
Access Server Administrators’ Reference Guide 2 • Home Immediate Actions There are several immediate actions (see figure 5) which, when in superuser mode, will cause the access server to operate according to the descriptions in the following sections. Figure 5. Immediate Actions buttons • Record Current Configuration —clicking this button causes the current configuration to be stored in FLASH memory. Any changes made to the access server configuration are stored in non-volatile RAM.
Chapter 3 Import/Export Chapter contents Introduction ..........................................................................................................................................................20 Export Configuration ............................................................................................................................................20 Import Configuration...................................................................................................................
Access Server Administrators’ Reference Guide 3 • Import/Export Introduction The Import/Export function enables you to make a backup (or export) copy of your access server’s configuration parameters. By exporting the configurations, the saved files can quickly be loaded, or imported, into a replacement access server—greatly speeding up the installation process should an access server need replacing. Note All actions for Import/Export require superuser access privileges.
Access Server Administrators’ Reference Guide 3 • Import/Export To export the flash configuration, click on the Export Flash link on the Import/Export main page. The access server will display text configuration information resembling that shown in figure 7. Figure 7.
Access Server Administrators’ Reference Guide 3 • Import/Export To save the displayed data as a text file, select the Save option on your browser (see figure 8). For example, under Netscape, select File > Save As. A dialog box will display enabling you to save the contents of the export parameters to a text file. Select the location where you want the file stored, type a file name, and click Save. Figure 8.
Chapter 4 Alarms Chapter contents Introduction ..........................................................................................................................................................24 Displaying the Alarms window ..............................................................................................................................25 Total System Alarms:X (alarmTotal) ...............................................................................................................
Access Server Administrators’ Reference Guide 4 • Alarms Introduction The access server has an extensive alarm reporting system which enables users to configure, monitor, and test major and minor alarms. The alarm system can be set to notify if equipment fails (for example, a power supply failure) or if a T1/E1/PRI port malfunctions. There are 11 access server items that can be configured by the user to generate alerts based on the condition of the access server.
Access Server Administrators’ Reference Guide 4 • Alarms • SYSLOG/SNMP—For external notification, the access server can be configured to send a SYSLOG message or an SNMP TRAP to an external management host. To configure the alarm response for either SNMP Traps or SYSLOG messages, click on the Alarm Response link (go to “Modify Response—Configuring the alarm response system” on page 27).
Access Server Administrators’ Reference Guide 4 • Alarms • Modify Alarms—Clicking on this link takes you to a window where you can change how the access server perceives the severity of each alarm (“Modify Alarms—Configuring alarm severity levels” on page 29) Alarm Response Outputs Alarm Response Outputs display the current settings for handling alarm notification via SYSLOG/SNMP messages.
Access Server Administrators’ Reference Guide 4 • Alarms Alarm Name (alarmName) The alarm items are grouped into two categories: Box and WAN trunk alarms. The Box group category lists access server temperature and power supply status. The WAN category monitors the T1/E1/PRI ports for yellow and red alarms. Alarm Severity (alarmSeverity) Shows the alarm severity selected by the system administrator.
Access Server Administrators’ Reference Guide 4 • Alarms Alarm Syslog Priority (syslogAlarmPriority) The SYSLOG priority of the alarm SYSLOG message. If the minimum priority for SYSLOG daemon (set under the System Log link) is less than this value, the SYSLOG daemon will receive the major or critical alarm SYSLOG message (prioritySystem has the highest priority; priorityVerbose the lowest).
Access Server Administrators’ Reference Guide 4 • Alarms Modify Alarms—Configuring alarm severity levels The Modify Alarms window (see figure 12) is where you can set the severity level each alarm condition generates and whether it can be a self-clearing condition. Figure 12. Modify Alarms settings window The following alarm items that can be configured to generate alarm conditions: • Box: Over Temperature—An alarm will be triggered when the current temperature exceeds the temperature threshold.
Chapter 5 Authentication Chapter contents Introduction ..........................................................................................................................................................32 Displaying the Authentication window..................................................................................................................32 The Statistics section ..........................................................................................................................
Access Server Administrators’ Reference Guide 5 • Authentication Secret (auSecret) .............................................................................................................................................39 NAS Identifier (auNASIdentifier) ...................................................................................................................39 Accounting Address (auAcctAddress) .................................................................................................
Access Server Administrators’ Reference Guide 5 • Authentication Introduction Use the Authentication pages to set up system security and to provide specific users with access to appropriate network services. This section describes the authentication parameters. The access server uses static and/or RADIUS authentication to decide which dial-in users can access the system (refer to A, “Supported RADIUS Attributes” on page 300 for a full list of RADIUS attributes).
Access Server Administrators’ Reference Guide 5 • Authentication Validated via static database (auAuthenticationsValidStatic) The number of authentications validated by the Static User database since the last access server reset. Denied authentications (auAuthenticationsDenied) The total number of authentication attempts requested but denied since the last access server reset.
Access Server Administrators’ Reference Guide 5 • Authentication The Configuration section The configuration section of the main Authentication screen (see figure 14) shows how the authentication method used by the RAS is configured. Figure 14. Authentication main screen (Configuration section) Validation (auValidation) Selects how the access server will authenticate an incoming call.
Access Server Administrators’ Reference Guide 5 • Authentication Host Address (auHostAddress) Tells the access server the IP address of the primary external authentication server. This must be the IP address as the access server will not resolve a Fully Qualified Domain Name. Secondary Host Address (auSecondaryHostAddress) When using a remote authentication server (RADIUS) this variable provides an alternative server IP address.
Access Server Administrators’ Reference Guide 5 • Authentication Accounting Port (auAcctPort) This is the UDP port on the accounting server specified in Acct Address that the access server should use to transfer accounting information. RFC 2139 states that port 1813 is the standard RADIUS accounting port. Some older implementations of RADIUS use port 1646 as the accounting port.
Access Server Administrators’ Reference Guide 5 • Authentication • CCCCC—Call ID in hex. The call ID used is the one recorded on the main dial-in screen. Figure 16. 12-Character String RADIUS Session ID format The 12-character session ID is formatted as follows (see figure 16): • MMMM—The last four digits of the MAC address • RR—The number of times the RAS has rebooted since the last code upload. This rolls over to 0 after 100 reboots • S—Not used. • CCCCC—Call ID in hex.
Access Server Administrators’ Reference Guide 5 • Authentication (auValidation)” below), configure the additional parameters as shown in figure 17 to configure RADIUS parameters. See “Static User Authentication” on page 41 to set up Static users. Figure 17. Authentication Configuration screen Validation (auValidation) Selects how the access server will authenticate an incoming call.
Access Server Administrators’ Reference Guide 5 • Authentication Host Address (auHostAddress) Tells the access server the IP address of the primary external authentication server. This must be the IP address as the access server will not resolve a Fully Qualified Domain Name. Secondary Host Address (auSecondaryHostAddress) When using a remote authentication server (RADIUS) this variable provides an alternative server IP address.
Access Server Administrators’ Reference Guide 5 • Authentication Accounting Port (auAcctPort) This is the UDP port on the accounting server specified in Acct Address that the access server should use to transfer accounting information. RFC 2139 states that port 1813 is the standard RADIUS accounting port. Some older implementations of RADIUS use port 1646 as the accounting port.
Access Server Administrators’ Reference Guide 5 • Authentication Static User Authentication To view or modify the static users in the internal user database, click on Authentication in the Configuration Menu. The Authentication window displays. Scroll down until Static User Identification is displayed (see figure 18). Static users consist of usernames and passwords entered into the access server’s internal users database. You can have up to 111 static users in the access server database.
Access Server Administrators’ Reference Guide 5 • Authentication • admin—Not currently implemented. • monitor—Not currently implemented. • rlogin—Causes the access server to rlogin into another host. See “Service IP (suServiceIP)” on page 43 for information on configuring the remote host IP addresss. • telnet—Causes the access server to telnet into another host. • tcpraw—All 8 bits are passed unchecked and unaltered. • ppp—Access server will try to negotiate a PPP session.
Access Server Administrators’ Reference Guide 5 • Authentication Figure 19. Static User settings window Service IP (suServiceIP) This is the IP of the RLogin or Telnet host, or the static IP address assigned to the user. This is determined by the option selected in Service (see “Service (suService)” on page 41). Service Port (suServicePort) This is the port number to connect to the service host.
Chapter 6 DAX Chapter contents Introduction ..........................................................................................................................................................45 Configuring the DAX............................................................................................................................................45 Circuit Type (daxClockMode) .......................................................................................................................
Access Server Administrators’ Reference Guide 6 • DAX Introduction The digital cross-connect (DAX) link allows configuration of the access servers’ digital cross-connect that manages the time slots and clocking between the WAN ports. The access server uses a single clock source for all WAN ports. Therefore, to avoid data loss caused by variations in network timing, each access server should terminate WAN connections from a single timing provider.
Access Server Administrators’ Reference Guide 6 • DAX Main Reference (daxClockMainRef) The main reference parameter determines which WAN link will supply the clock for the system. The following settings are available: • none(0)—No clock selection. This would be used in conjunction with either a secondary or slave circuit. • wan-1(1)—Use WAN Port 1 for primary timing. Generally the first WAN connection will be used as the main reference. • wan-2(2)—Use WAN Port 2 for primary timing.
Access Server Administrators’ Reference Guide 6 • DAX • netref-2(102)—Use to obtain system timing from a slave circuit. • internal(200)—Use internal free-run oscillator for the system clock • external(300)—Not currently implemented. Clock Status (daxClockFailure) The clock status indicates alarm conditions relating to the system clock. If there are no alarms, the DAX page will indicate No Alarms (see figure 20 on page 45).
Chapter 7 Dial In Chapter contents Introduction ..........................................................................................................................................................54 Dial In main window ............................................................................................................................................55 Call Sorting (diPageSort) ....................................................................................................................
Access Server Administrators’ Reference Guide 7 • Dial In Number Called (diactNumberDialed) ............................................................................................................61 Number Called From (diactCallingPhone) .....................................................................................................61 Dial Protocol window............................................................................................................................................
Access Server Administrators’ Reference Guide 7 • Dial In MultiLink (diConfigMultilink) .................................................................................................................71 MultiBox (diConfigMMP) ........................................................................................................................72 Modify Maximum Time .................................................................................................................................
Access Server Administrators’ Reference Guide 7 • Dial In DNIS profile (dnisPoolAssignedProfile) ....................................................................................................79 Status (dnisPoolStatus) ..............................................................................................................................79 DNIS Profiles ...............................................................................................................................................
Access Server Administrators’ Reference Guide 7 • Dial In IP Address (diactIP) ..................................................................................................................................90 Port # on Remote Machine (diactPort) .....................................................................................................90 Session .....................................................................................................................................................
Access Server Administrators’ Reference Guide 7 • Dial In Packets Sent (diactSentDataFrames) ........................................................................................................100 Packets Received (diactReceivedDataFrames) ..........................................................................................100 Bad Packets (diactErrorFrames) ...............................................................................................................100 Physical Layer ...........
Access Server Administrators’ Reference Guide 7 • Dial In Introduction The Dial In main window (see figure 22) is where you can change or view items that are associated with the user dialing in—including call statistics, type of service used, modem specific statistics, as well as configuration parameters for login, service, domain name service, login attempts, configuration of link, maximum time, and modem configuration.
Access Server Administrators’ Reference Guide 7 • Dial In Figure 22. Dial In main window Dial In main window The Dial In window displays statistics for individual users. This window shows currently attached users, the users state, and time that the user has been on access server. This window can also display recently disconnected sessions. The following sections explain the meaning of each statistic. Call Sorting (diPageSort) Change the order of the calls on the screen.
Access Server Administrators’ Reference Guide 7 • Dial In State (diactState) As the call comes into the access server it can be in one of five states. • Ringing—The call has been recognized by the access server and is in process of going off hook. • Connecting—The unit has assigned a DSP to the incoming call and is now in the process of negotiation of the type of modulation—V.34, V.32, ISDN, or 56K.
Access Server Administrators’ Reference Guide 7 • Dial In • v23(24)—V.23 modulation Connect Speed (diactTxSpeed) The connected speed of the link. Dial Modulations window This window shows statistics about the modem connection, listed by unique user ID. Figure 23. Dial Modulations window Call ID: (diactIndex) Unique identification of this active call (for internal use). Username (diactUsername) The caller’s username. State (diactState) Indicates current progress of the selected call.
Access Server Administrators’ Reference Guide 7 • Dial In • Online—The access server has completed authentication and the user is now able to access the Internet. • 12tpTunneled—Subsequent multilink call that was answered by another access server and tunneled to the access server that has the originating call. • Kill—The administrator can manually disconnect the user by activating this parameter. • Dead—The user’s call has been disconnected. This message disappears when the linger time expires.
Access Server Administrators’ Reference Guide 7 • Dial In Receive Connection Speed (diactRxSpeed) The connected speed of the modem link (for example, 28.8 bps). These values, in bits per second, range from 300–53,000. Error Correction (diactErrorCorrection) The modem error correction scheme used during this call.
Access Server Administrators’ Reference Guide 7 • Dial In Dial Telco window This window shows the telco characteristics for individual users. Figure 24. Dial Telco window Call ID: (diactIndex) Unique identification of this active call (for internal use). Username (diactUsername) The caller’s username. State (diactState) Indicates current progress of the selected call.
Access Server Administrators’ Reference Guide 7 • Dial In • Kill—The administrator can manually disconnect the user by activating this parameter. • Dead—The user’s call has been disconnected. This message disappears when the linger time expires. • Bury—The call has been killed and removed from the dial-in main window. Transmit Connection Speed (diactTxSpeed) The connected speed of the modem link (for example, 28.8 bps). These values, in bits per second, range from 300–33,600.
Access Server Administrators’ Reference Guide 7 • Dial In Dial Protocol window This window shows the protocol negotiations of the connection for individual users. Figure 25. Dial Protocol window Call ID: (diactIndex) Unique identification of this active call (for internal use). Shared Unique ID (diactMultiIndex) Used for multi-link PPP, this is the unique identification shared between multi-link active calls. Username (diactUsername) The caller’s username.
Access Server Administrators’ Reference Guide 7 • Dial In • 12tpTunneled—Subsequent multilink call that was answered by another access server and tunneled to the access server that has the originating call. • Kill—The administrator can manually disconnect the user by activating this parameter. • Dead—The user’s call has been disconnected. This message disappears when the linger time expires. • Bury—The call has been killed and removed from the dial-in main window.
Access Server Administrators’ Reference Guide 7 • Dial In • Tacacs(6)- Not currently implemented • Edp(7) • ShivaPap(8)- Not currently implemented Local-Remote VJ Protocol Comprsn (diIpLocalToRemoteCompProt) The IP compression protocol that the local IP entity uses when sending packets to the remote IP entity.
Access Server Administrators’ Reference Guide 7 • Dial In Dial In Details The Dial In Details window (see figure 26) shows how the system is currently set up to handle dial in users. To view this page, select Default Details from the main Dial In window. Scroll down the window to view additional Dial In access server parameters. To modify the Dial In access server parameters, click on the Modify default… link.
Access Server Administrators’ Reference Guide 7 • Dial In Dial In Modify default window The Dial In Modify default window (see figure 27) is where you can make changes to the following: • Login access server parameters (see “Modify Login”) • User login services (see “Modify Service” on page 68) • Primary and secondary domain name servers (see “Modify Domain Name Server” on page 69) • Dial-in attempts access server parameters (see “Modify Attempts” on page 70) • Link compression, MRUs, MultiLink, and Multi
Access Server Administrators’ Reference Guide 7 • Dial In Modify Login This portion of the Dial In Modify default window (see figure 27 on page 66) describes configuring the IP address pool, login technique and general login information. IP Address Pool (diIpPool) The IP address pool contains the IP addresses that are assigned dynamically to the dial-in connections. Type the IP address pool in the space provided.
Access Server Administrators’ Reference Guide 7 • Dial In • textORchapORpap(6)—This setting enables clear text logins or PPP calls using PAP or CHAP authentication. • MschapV1 - This setting assumes that all calls will be PPP users. No username or password prompt will be displayed. The system will go directly to PPP processing. The dial-up user must be configured on his computer for MS-CHAP V1 authentication • MschapV2 - This setting assumes that all calls will be PPP users.
Access Server Administrators’ Reference Guide 7 • Dial In • slip(5)—SLIP or PPP connection will be allowed. SLIP is not currently implemented. • vpn(6)—Not currently implemented. • tcpraw_cpn(7)–Send a Called Party Number Information Element (CPNIE) Packet to the server that accepts the TCP-RAW connection. (This feature is for a proprietary application only; do not use.
Access Server Administrators’ Reference Guide 7 • Dial In Modify Attempts This portion of the Dial In Modify default window (see figure 28) describes modifying the login attempts parameters for dial in users. Figure 28. Dial In Modify window (modify Attempts, Configuration, and Maximum Time objects) Failure Banner (diFailureBanner) This defines a message of up to 254 characters in length that will be displayed to a user if authentication fails.
Access Server Administrators’ Reference Guide 7 • Dial In Login Attempts Allowed (diAllowAttempts) The maximum number of attempts a user will be given to login before being disconnected. This applies to Text authentication only. PAP and CHAP authentication are only allowed a single attempt. Modify Configuration This portion of the Dial In Modify window (see figure 28 on page 70) describes modifying the link compression, MRUs, and MultiLink, and MultiBox parameters.
Access Server Administrators’ Reference Guide 7 • Dial In Set the MultiLink—Max # of Calls per User parameter to the maximum number of channels a user can take for a single connection. Setting the parameter to 0 disables the MultiLink option. MultiBox (diConfigMMP) MultiBox enables a user to have multiple connections even if the subsequent call for an additional channel is on a different access server from the originating channel (bundlehead).
Access Server Administrators’ Reference Guide 7 • Dial In Figure 29. V.92 Configuration window Modify ISDN Configuration V.110 signaling is a form of ISDN rate adaptation (see figure 29). V.110 is a fixed-frame based rate adaptation standard that allows lower data rates to be communicated across 64-kbps ISDN. The following rates are supported: 600, 1200, 2400, 3600, 4800, 7200, 9600, 14400, 19200, 38400, 4800 and 56000. V.
Access Server Administrators’ Reference Guide 7 • Dial In Modify V.92 Configuration This portion of the Dial In Modify Default window (see figure 29) describes modifying the V.92 Configuration parameters. V.92 Features (diModemV92Enable) Enables and disables V92 functionality. Quick Connect (diV92QuickConnect) Quick connect shortens a modem’s time to learn a phone line’s characteristics by reusing some information previously learned. This setting enables or disables quick connect.
Access Server Administrators’ Reference Guide 7 • Dial In V90(diModemV90Enable) Enables or disables V90 modem modulation K56flex(diModemK56Enable) Enables or disables K56flex modem modulation V34(diModemV34Enable) Enables or disables V34 modem modulation V32(diModemV32Enable) Allows V.32 and V.32bix modulations up to 14.4 kbps. The following options are available: • disable(0)—neither option is enabled • enable(1)—support V.32 and V.32bis modulations.
Access Server Administrators’ Reference Guide 7 • Dial In Guard Tone (diModemGuardTone) Normally a guard tone is not required, but one can be inserted. This setting works for Phase Shift Key (PSK) modulations only, not for V.32 or V.34. • tone None(1)—Guard tone is not used • tone1800(3)—Guard tone is enabled CarrierLossDuration (diModemCarrierLossDuration) The number of seconds that the carrier signal must be missing before the connection is considered lost. Choosing a setting of 25 indicates forever.
Access Server Administrators’ Reference Guide 7 • Dial In • Direct(0)—No compression will be used. • requestV42bis(1)—Enable V.42bis compression. If this is selected, the modem will either negotiate for V.42bis data compression or—if V.42bis compression is not available—will use no data compression. • requireV42bis(2)—V.42bis data compression is mandatory, otherwise disconnect. • V44(3)—allows V.44 and V.42bis data compression.
Access Server Administrators’ Reference Guide 7 • Dial In • DNIS Profiles—clicking on the DNIS Profiles link takes you to the page where you can view and change the DNIS profiles. Refer to “DNIS Profiles” on page 80 • DNIS Ip Pools—clicking on the DNIS Ip Pools link takes you to the page where you can view and change the IP address pools. Refer to “DNIS IP Pools Window” on page 82 Manage DNIS main window ID (dnisPoolID) The identification number that uniquely identifies the DNIS configuration.
Access Server Administrators’ Reference Guide 7 • Dial In DNIS Entry Window Clicking on the ID in the Manage DNIS Window displays the DNIS Entry window (see figure 32) where you can change the DNIS configuration. Figure 32. DNIS Entry window WAN Link (dnisPoolDesrcWan) The WAN link the dial-in user must be connected to in order to use this DNIS configuration. Note 0 indicates that the WAN Link is not considered when determining if the dial-in user matches the conditions of the DNIS configuration.
Access Server Administrators’ Reference Guide 7 • Dial In DNIS Profiles DNIS profiles can be set in two different ways: • Per CALLED number: Configured DNIS profile would apply for all calls TO the number specified in the DNIS Profile regardless of the calling number. OR • Per CALLING number Configured DNIS Profile would apply only for the calls made FROM the number specified in the DNIS Profile. In either case, the "Dialed Number" field should be used when creating or modifying a DNIS group.
Access Server Administrators’ Reference Guide 7 • Dial In DNIS Profiles Main Window Figure 33. DNIS Profiles window ID (dnisIpProfileId) The ID that uniquely identifies the DNIS profile. IP Pool (dnisProfileAssignedIpPool) The ID of the IP Address Pool that will be used to select an IP address for the dial-in user. The IP Pool is configured using the DNIS Ip Pool link. Login Technique (dnisProfileLoginTechnique) This variable defines the login sequence that a dial-up user will see.
Access Server Administrators’ Reference Guide 7 • Dial In • chap(4)—This setting assumes that all calls will be PPP users. No username or password prompt will be displayed. The system will go directly to PPP processing. The dial-up user must be configured on his computer for CHAP authentication. Note If the user trying to connect to the DMA is not configured for CHAP he will be disconnected. • chapORpap(5)—This setting assumes that all calls will be PPP users.
Access Server Administrators’ Reference Guide 7 • Dial In Status (dnisIpProfileStatus) Indicates if the DNIS Profile is used in any DNIS configuration. • active(1)—This profile is used in one or more DNIS configurations • notUsed(2)—This profile is not used in any configurations Add a DNIS Profile Use this portion of the window to add a DNIS Profile. 1. Enter a unique ID in the ID field. 2. Enter a valid IP Pool Id 3. Enter the login technique for authentication.
Access Server Administrators’ Reference Guide 7 • Dial In • text(2)—A username prompt is displayed and a username must be entered. If the received username is a static user with no password defined, then the connection completes and no password prompt is issued. If a password is required then a password prompt is displayed and a password must be entered. Note Text login for 56k and 64k ISDN is not currently supported. • pap(3)—This setting assumes that all calls will be PPP users.
Access Server Administrators’ Reference Guide 7 • Dial In Service Port (dnisProfileServicePort) The TCP port that the remote server is listening at for connections. Service IP (dnisProfileServiceIP) The host IP address that rlogin, telnet and tcpraw connections will be forwarded to. Note If the login technique is set to a value other than none, the default service must be configured via RADIUS or the static user database for the user(s) to make use of this redirection feature.
Access Server Administrators’ Reference Guide 7 • Dial In DNIS IP Pools Window Figure 35. DNIS IP Pools window The DNIS IP Pools Window (see figure 35) contains the following items: • Information about DNIS IP Pools set up—to view or modify individual DNIS IP Pools, select an ID in the ID column. For more information about modifying a DNIS IP Pool, refer to “DNIS IP Pool Entry Window” on page 87.
Access Server Administrators’ Reference Guide 7 • Dial In 2. Enter a valid IP Address range. A valid IP address range is of the format xxx.xxx.xxx.aaa-bbb where aaa is less than bbb Note Entering an ID that is already configured will change the configuration. DNIS IP Pool Entry Window Clicking on ID in the DNIS IP Pool Window will take you to this window (see figure 36). In this window you can change the IP Address Pool. Figure 36.
Access Server Administrators’ Reference Guide 7 • Dial In Dial In User Statistics window This window shows statistics for individual dial-in users. The headings DSP Link, Interface Link, and WAN Link, shown in figure 37, pertain to the unique time slot defined for each of these links. For specific details on the function of access server parameters defined under these sections, refer to each under the access server Configuration Menu. Figure 37.
Access Server Administrators’ Reference Guide 7 • Dial In To view individual user statistics, select an active user in the State column on the Dial In main window (see “Dial In main window” on page 55). For example, if you wanted to modify user jill, you would click on the online(6) link next to jill’s username. Call Identification This portion of the Dial In User Statistics window (see figure 37 on page 88) shows user information for a unique user ID.
Access Server Administrators’ Reference Guide 7 • Dial In • Rlogin —The user has an rlogin session running Security Level (diactAccessLevel) This is the security level assigned to the selected call. Passthru is the default security level. Monitor and Change security levels are used by the access server administrator. • Passthru(1)—Allows no access to the configuration screens. • Monitor(2)—Allows read-only access to the configuration screens.
Access Server Administrators’ Reference Guide 7 • Dial In Time Left In Session (diactRemainingSession) Number of seconds remaining in this session. This value is only displayed if session timeout has been activated. Termination Reason (diactTerminateReason) The reason a call was disconnected. • stillActive(0)—Call is currently connected • idleTimeout(2)—Call exceeded idle timeout parameter • killed(3)—Call terminated by administrator • userHangup (5)—DSP discovered remote modem was hung up abruptly.
Access Server Administrators’ Reference Guide 7 • Dial In • papAuthenticationFailure(49)—Invalid username/password combination • papInvalidPacket(50)—Non-printable characters in username or password received from remote end during authentication • authenServerTimeout(51)—Authentication request timed out. The RADIUS server did not send a response to the authentication request before the timer expired. • authenAccountingTimeout(52)—Accounting request timed out.
Access Server Administrators’ Reference Guide 7 • Dial In • telnetError(62) • rloginError(63) • tcpConnAborted(67)—Connection to the remote service has been disconnected abruptly. For example, the administrator of the remote machine killed the process. • tcpConnRefused(69)—Connection to specified service on the remote machine was refused • tcpConnReset(70)—Connection was reset • tcpTimedOut(71)—Request to initiate connection to the remote service timed out.
Access Server Administrators’ Reference Guide 7 • Dial In • dspPutMsgErr(36) • noDsp(37) • lisIpcErr(38) • dspOpenErr(39) • invalidCode(40) • callContention(41) • dspCommErr(42) • unknownBearerContent(43) • dspOutOfState(46) • dspRequestUnsupported(47) • dspBadPrimitive(48) • tcpNoBuffers(68) • udpOpenErr(75) • udpBindErr(76) • l2tpOpenErr(77) • l2tpLinkErr(78) • reLinkErr(79) State at termination (diactTerminateState) Indicates the value of diactState when the call was terminated.
Access Server Administrators’ Reference Guide 7 • Dial In PPP Statistics This portion of the Dial In User Statistics window (see figure 38) shows PPP statistics (as 32-bit variables) of the current user selected. Figure 38. User Statistics (PPP Statistics, LCP Statistics, IP) Bad Address (diStatBadAddresses) The number of packets received with an incorrect address field. Bad Controls (diStatBadControls) The number of packets received on this link with an incorrect control field.
Access Server Administrators’ Reference Guide 7 • Dial In Remote MRU (diStatRemoteMRU) The current value of the MRU for the remote PPP entity. This value is the MRU that the local entity is using when sending packets to the remote PPP entity. This setting becomes active when the link is in the up—able to pass packets—operational state (for more information, refer to “Operational Status (diIpOperStatus)” on page 98).
Access Server Administrators’ Reference Guide 7 • Dial In Remote-Local PPP Protocol Comprsn (diStatRemoteToLocalProtComp) Indicates whether the remote PPP entity will use protocol compression when transmitting packets to the local PPP entity. This setting becomes active when the link is in the up—able to pass packets—operational state (for more information, refer to “Operational Status (diIpOperStatus)” on page 98).
Access Server Administrators’ Reference Guide 7 • Dial In Figure 39. IP window Operational Status (diIpOperStatus) The current operational state of the interface. These are the available options: • up(1)—able to pass packets • down(2)—unable to pass packets • testing(3)—in test mode and unable to pass packets Local-Remote VJ Protocol Comprsn (diIpLocalToRemoteCompProt) The IP compression protocol that the local IP entity uses when sending packets to the remote IP entity.
Access Server Administrators’ Reference Guide 7 • Dial In Primary Domain Name Server (diactPrimaryDNS) This is the DNS sent to us using RADIUS attribute 135. Secondary Domain Name Server (diactSecondaryDNS) This is the DNS sent to us using RADIUS attribute 136. Filters (diStatIpFilterAtoJ) The filters applied to the user’s connection. This includes inactive filters. If an inactive filter is activated, the rules of the filter will be applied immediately to the connection.
Access Server Administrators’ Reference Guide 7 • Dial In Number Called (diactNumberDialed) The phone number that was used to dial into the access server. Number Called From (diactCallingPhone) The user’s phone number—this is a caller ID feature. Data This portion of the Dial In User Statistics window (see figure 40 on page 99) describes the amount of PPP data sent and received by this user. Octets Sent (diactSentOctets) The number of octets (bytes) sent during this call.
Access Server Administrators’ Reference Guide 7 • Dial In • v90(7)—V.90 modulation • v110(8)—V.110 modulation (not currently implemented) • isdn64(9)—ISDN 64 modulation • isdn56(10)—ISDN 56 modulation (not currently implemented) • 12tp(11)—12tp tunnelled multilink call • phase2(20)—Phase 2, an advanced state of modulation in v34 and higher • answerack(21)—acknowledgement phase of modulation • V92(22)—V.92 modulation • moh(23)—Modem is using V.92’s modem-on-hold feature • v23(24)—V.
Access Server Administrators’ Reference Guide 7 • Dial In Locally Initiated Retrains (diactLocalRetrains) The number of times the local modem has initiated a modem carrier retrain. Remote Initiated Renegotiates (diactRemoteRenegotiates) The number of times the remote modem has initiated a modem speed renegotiate. Remote Initiated Retrains (diactRemoteRetrains) The number of times the remote modem has initiated a modem carrier retrain.
Chapter 8 Dial Out Chapter contents Introduction ........................................................................................................................................................107 Dial Out Main Window......................................................................................................................................107 Call Sorting (doPageSort) .........................................................................................................................
Access Server Administrators’ Reference Guide 8 • Dial Out K56flex(diModemK56Enable) ................................................................................................................115 V34(diModemV34Enable) .....................................................................................................................115 V32(diModemV32Enable) .....................................................................................................................115 V23(diModemV23Enable) .
Access Server Administrators’ Reference Guide 8 • Dial Out Compression (modemCompression) .......................................................................................................122 Billing Delay (modemBillingDelay) ........................................................................................................123 Status (modemStatus) .............................................................................................................................123 View modem profile ..
Access Server Administrators’ Reference Guide 8 • Dial Out Packets Sent (doactSentDataFrames) .......................................................................................................130 Packets Received (doactReceivedDataFrames) .........................................................................................130 Bad Packets (doactErrorFrames) ..............................................................................................................130 Physical Layer .............
Access Server Administrators’ Reference Guide 8 • Dial Out Introduction The Dial Out PPP feature allows the Remote Access Server to initiate PPP calls to remote locations. The administrator can set locations to be called manually, continuously, or only when needed (dial-on-demand). The Dial Out window (see figure 41) contains the following items: • Ability to change the order of calls on the main dial-out screen.
Access Server Administrators’ Reference Guide 8 • Dial Out User (doactUsername) The username that the caller entered for a character based call or the location name for a location based call. State (doactState) Indicates current call progress as follows: • commandmode(1)—dial-out character based user is connected to access server, but has no active outbound call. • ringing(2)—The outbound call has been dialed and is waiting for the remote site to go off hook.
Access Server Administrators’ Reference Guide 8 • Dial Out • modemError(7)—an internal DSP error has occurred. • pppClose(8)—This reason will be given after PPP is initiated and the connection is disconnected. An example would be if LCP negotiations failed. • lcpClose(9)—close initiated by LCP. This is a normal shutdown of a call. • loginTimeOut(10)—exceeded time limit to login. • userTerminated(11)—the TCP connection was terminated from the remote side.
Access Server Administrators’ Reference Guide 8 • Dial Out • dspLinkErr(35) • dspPutMsgErr(36) • lisIpcErr(38) • dspOpenErr(39) • invalidCode(40) • dspCommErr(42) • unknownBearerContent(43) Modulation (doactModulation) The modulation of the link: • unknown(0)—unknown modulation • v21(1)—v.21 modulation • v22(2)—v.22, v.22bis modulation • v32(3)—v.32, v.32bis modulation • v34(4)—v.34 modulation • k56(5)—K56 Flex modulation • v90(7)—v.90 modulation • v110(8)—v.
Access Server Administrators’ Reference Guide 8 • Dial Out Figure 42.
Access Server Administrators’ Reference Guide 8 • Dial Out Modify Login Use this section to configure the outgoing TCP port and general login information. TCP Port (doTcpPort) The TCP port number that the dialout operation will listen to for connections. TCP Type (doServiceType) TCP Service Type that will be placed on the TCP connection when established. • telnet(0)—Telnet protocol. • tcpclear(1)—All 8 bits are passed unchecked and unaltered.
Access Server Administrators’ Reference Guide 8 • Dial Out Failure Banner (doFailureBanner) This defines a message that will be displayed to a user if authentication fails. This message only appears when the authentication technique is Text. Login Attempts Allowed (doAllowAttempts) The maximum number of attempts a user will be given to login before being disconnected. This applies to Text authentications only.
Access Server Administrators’ Reference Guide 8 • Dial Out Maximum Session Time (doSessionTimeout) This is the maximum time (in minutes) that a connection is allowed to be maintained. After this time the connection will be terminated, even if there is active traffic on the connection. This is a default setting which can be overridden by the authentication of a specific user. Maximum Idle Time (doIdleTimeout) This is the maximum time (in minutes) that a connection is allowed to be idle with no traffic.
Access Server Administrators’ Reference Guide 8 • Dial Out hard disk space on your server. It is recommended that you only enable this feature when performing specific troubleshooting. Modify Modem Configuration This portion of the Dial Out Modify window (see figure 44 on page 113) describes modifying the outgoing modem configuration. ISDN (doModemISDNEnable) Enables ISDN modulation. Not currently implemented.
Access Server Administrators’ Reference Guide 8 • Dial Out Minimum Speed (doModemMinSpeed) This setting determines the slowest data rate that will be negotiated. Guard Tone (doModemGuardTone) Normally a guard tone is not required. But, one can be inserted. This operates for Phase Shift Key modulations only. • toneNone(1) • tone1800(3) Carrier Loss Duration (doModemCarrierLossDuration) The number of seconds the carrier must be lost before the connection is determined to have been lost.
Access Server Administrators’ Reference Guide 8 • Dial Out Restrict Modification (doModemRestrictMods) Enabling this feature restricts the dialout user from modifying the modem settings. Normally, the dialout user has the ability to alter modem operation through the use of AT commands.
Access Server Administrators’ Reference Guide 8 • Dial Out Add Location Locations are added to the table using the following form at the bottom of the locations window. Figure 46. Add Location Form. Id (locationId) The unique identifier for this location. There are a maximum of 120 locations so the range is from 1 to 120. Location Name (locationName) A name can be given to each location. Maximum size is 12 characters. User Name (locationUserName) This is the username to log into the remote location.
Access Server Administrators’ Reference Guide 8 • Dial Out Multilink (locationConfigMultilink) This is the number of calls to multilink together. When placing more than one call, the first call will be placed, then once it is online, the additional calls will be dialed and multilinked together. Connection Type (locationConnectType) This is the type of dial out to use.
Access Server Administrators’ Reference Guide 8 • Dial Out View/Modify location details To view and/or modify the location details, click on the location ID link on the locations page. From this page, location settings can be modified and submitted. Any changes made will take effect on the next call to this location. Figure 47. View/Modify location details. Dialing Locations To initiate an outbound PPP call to a location, set the status of the location to “dial” and submit.
Access Server Administrators’ Reference Guide 8 • Dial Out Dial Out Modem Profiles Window This window allows the administrator to set up different modem profiles to be used for dialing out to locations. For example, an ISDN modem profile can be set up to dial to locations using ISDN TA’s and v.34 modem profiles can be set up to dial to v.34 based locations. Figure 48. Modem Profile table Add Modem Profile New modem profiles are added to the table using the add modem profile form.
Access Server Administrators’ Reference Guide 8 • Dial Out • analog-v34(4) • analog-v32(5) • analog-v22bis(6) • analog-v22(7) • analog-v21(8) Guard Tone (modemGuardTone) Normally a guard tone is not required, but one can be inserted. This setting works for Phase Shift Key (PSK) modulations only, not for v.32, v.34, or v.90.
Access Server Administrators’ Reference Guide 8 • Dial Out • requireV42bis(2)—v.42bis compression is mandatory, otherwise disconnect. • v44(3)—allow v.42bis and v.44 data compression. Will negotiated for v.44 compression first, if that’s not available, then it will try v.42bis, and if neither is available, will use no compression. Billing Delay (modemBillingDelay) The number of seconds after answering the call during which the modem should be silent.
Access Server Administrators’ Reference Guide 8 • Dial Out • Phone information • Data transfer statistics • Physical layer configuration information Figure 50. Dial out user statistics window. Call Identification This portion of the dial out user statistics window shows user information for a unique user ID. Call ID (doactIndex) Unique identification of this call (for internal use) Username (doactUsername) The callers username for Tcp based calls or the location name for location based calls.
Access Server Administrators’ Reference Guide 8 • Dial Out Dsp Link (doactDSPIndex) The physical DSP chip that the outbound call is on. This is a number from 1 to 64. Wan Link (doactLinkIndex) The T1/E1 port number that the call is on. Time Slot (doactSlotIndex) Shows which T1/E1 channel the call is on. This is a number between 1 and 30. IP Address (doactIP) Used for location based calls. This is the currently assigned IP address of the remote location.
Access Server Administrators’ Reference Guide 8 • Dial Out • pppClose(8)—This reason will be given after PPP is initiated and the connection is disconnected. An example would be if LCP negotiations failed. • lcpClose(9)—close initiated by LCP. This is a normal shutdown of a call. • loginTimeOut(10)—exceeded time limit to login. • userTerminated(11)—the TCP connection was terminated from the remote side. • maxNumCalls(21)—exceeds the maximum number of channels that can be allocated to the same call.
Access Server Administrators’ Reference Guide 8 • Dial Out • dspPutMsgErr(36) • lisIpcErr(38) • dspOpenErr(39) • invalidCode(40) • dspCommErr(42) • unknownBearerContent(43) PPP Statistics This portion of the dial out user statistics window shows PPP statistics of the current user selected. Figure 51. PPP user statistics Bad Address (doStatBadAddresses) The number of packets received with an invalid address field.
Access Server Administrators’ Reference Guide 8 • Dial Out Local MRU (doStatLocalMRU) The current value of the MRU for the local PPP entity. This value is the MRU that the remote entity is using hen sending packets to the local PPP entity. This setting becomes active when the link is in the up—able to pass packets—operational state (for more information, refer to “Operational Status (diIpOperStatus)” on page 98). Remote MRU (doStatRemoteMRU) The current value of the MRU for the remote PPP entity.
Access Server Administrators’ Reference Guide 8 • Dial Out Local PPP Protocol Compression (doStatLocalToRemoteProtComp) Indicates whether the local PPP entity will use protocol compression when transmitting packets to the remote PPP entity. This setting becomes active when the link is in the up—able to pass packets—operational state (for more information, refer to “Operational Status (diIpOperStatus)” on page 98).
Access Server Administrators’ Reference Guide 8 • Dial Out Phone This portion of the Dial Out User Statistics window (see figure 52) shows the phone numbers that were used by this caller. Figure 52. Dial Out User Statistics window Number Called (doactNumberDialed) The phone number that was used to dial the remote location Data This portion of the Dial Out User Statistics window (see figure 52) describes the amount of PPP data sent and received by this user.
Access Server Administrators’ Reference Guide 8 • Dial Out Physical Layer This portion of the Dial Out User Statistics window (see figure 52 on page 130) contains statistics about the modem connection. It includes modulation, levels, and other modem-related statistics that are helpful when troubleshooting modem problems. This section covers only modem-type statistics, not ISDN connections. Connection Modulation (doactModulation) The modulation type of the modem link (for example, V.34).
Access Server Administrators’ Reference Guide 8 • Dial Out Data Compression Protocol (doactCompression) The modem data compression technique used during this call. • None—No compression. • V42bis—Compression is running. • Stac—Not currently implemented. Modulation Symbol Rate (doactSymbolRate) The modulation symbol rate during the call. This is used only when in V.34 and above modulations.
Chapter 9 Callback Introduction ........................................................................................................................................................134 Dial-in Modify Configuration .............................................................................................................................134 Callback (diCallbackConfig) .........................................................................................................................
Access Server Administrators’ Reference Guide 9 • Callback Introduction The RAS has the ability to call back any user dialing into it. This can provide extra security since you can verify the user’s identity by calling back to a known number. Callback can also be used to reverse or reduce toll charges by having the server call the user back. Callback can be configured on a global basis for all users or on a per-user basis.
Access Server Administrators’ Reference Guide 9 • Callback Dial-in Main Window Figure 54.
Access Server Administrators’ Reference Guide 9 • Callback Static User Authentication In the Modify Static User window are two extra settings for callback. The callback type and callback number can be set on a user basis. Figure 55. Static user configuration showing callback configuration Callback Configuration (suCallbackConfig) This is the type of callback allowed for this user. The following options are available: • noCallback(0)—no callback allowed for this user (default).
Access Server Administrators’ Reference Guide 9 • Callback Accounting information Before callback is initiated, the accounting start and stop packets will have service-type set to Callback Framed. The accounting stop packet will have the Callback-Number attribute present with the number the server is calling back. On the callback call, the start and stop packets will have service-type set to framed with no Callback-Number attribute.
Chapter 10 Drop and Insert Introduction ........................................................................................................................................................139 Drop and Insert main window.............................................................................................................................139 Session Timeout (drSessionTimeout) ............................................................................................................
Access Server Administrators’ Reference Guide 10 • Drop and Insert Introduction The Drop and Insert window (see figure 57) contains setup objects associated with using the access server as a drop and insert box to an upstream or downstream location. Figure 57. Drop and Insert window Click on Drop and Insert under the Configuration Menu to display the Drop and Insert main window. Drop and Insert main window This Drop and Insert window contains channel information for each unique session ID.
Access Server Administrators’ Reference Guide 10 • Drop and Insert Originating Link (dractLinkIndex) Which WAN link this call originated on. Originating Channel (dractChannel) Which channel this call originated on. Passed to Link (dractPassLinkIndex) Which link this call was passed to. Passed to Channel (dractPassChannel) Which channel this call was passed to. Number Dialed (dractNumberDialed) The phone number that was used to dialed into the server (if this service is available from the exchange).
Access Server Administrators’ Reference Guide 10 • Drop and Insert Figure 58. Drop and insert diagram Note This functionality can only be done on robbed bit lines. You can not perform drop and insert on a PRI line. Using Drop and Insert 1. Configure each WAN port doing drop and insert. Links 1 and 2 perform drop and insert together. Links 3 and 4 perform drop and insert together.
Chapter 11 Digital Signal Processing (DSP) Chapter contents Introduction ........................................................................................................................................................144 DSP Settings main window .................................................................................................................................145 DSPs Available (dspAvailable) ...............................................................................................
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) Local—Reneg (dspLocalRenegotiates) .....................................................................................................150 Suspect—A (dspTotalWentSuspect) .......................................................................................................150 Suspect—B (dspTotalSavedFromSuspect) ...............................................................................................
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) Introduction The access server uses between 12 and 60 digital signal processors (DSPs) to pass digital information. Each DSP can accept two incoming calls, one on each “instance.” The DSPs are located on chips that contain eight DSPs each. The access server can access these DSPs in several ways: • On a per-instance basis—When a DSP is set to AvailableSecondOnly, the access server can disable the second instance of a DSP.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) DSP Settings main window This is where you can view and modify current DSP parameters. The following sections describe each parameter. DSPs Available (dspAvailable) Indicates the number of DSPs available for use. Detected (dspDetected) Indicates the number of installed DSPs the access server detected at time of boot up. HW Failures (dspFailed) Indicates the number of DSPs taken out of the DSP resource pool.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) • booting(3)—The DSP has just been loaded with code and we are now waiting for an indication from the DSP that the code loaded properly and is running. • hwReseted(4)—The DSP is reset. • swLoaded(5)—Software is downloaded to the DSP or DSP group. • waitForGroup(6)—DSP has responded to start command. DSP is now waiting for other DSPs in the group to respond.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) DSP Memory Capture This portion of the DSP Settings window (see figure 60) will store the memory content in 5 rotating circular buffers. Each buffer contains the program and data memory associated with a call on the DSP. The buffer content is saved when the memory capture is triggered. Do not turn on unless requested by technical support.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) Connection Summaries This part of the window shows DSP statistics as a whole. Originating Calls (dspTotalOriginatingCalls) The number of calls the DSP initiates for outbound calls. Answering Calls (dspTotalAnsweringCalls) The number of calls answered regardless if the call was successfully completed. Successful Connects (dspTotalSuccessfulConnects) The number of calls that successfully connected.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) DSP Connection Totals This portion of the window (see figure 62) shows statistics on a per-DSP basis. Figure 62. Connection Summary portion of DSP Connection Performance window DSP Index (dspIndex) The unique identifier of the DSP being reported on. Clicking on the DSP Index link displays detailed information about the DSP (see section “DSP information window” on page 151).
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) Remote—Reneg (dspRemoteRenegotiates) The number of times the remote modem has asked for a renegotiation to be done. Local—Retrain (dspLocalRetrains) The number of times the local DSP has requested a retrain to be done. Local—Reneg (dspLocalRenegotiates) The number of times the local DSP has requested a renegotiation to be done.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) DSP information window This is where you can view and modify parameters for a single DSP. Figure 63. DSP information window (Call and Debug Statistics) DSP Status This portion of the DSP information window shows information about the overall status of the selected DSP. Desired State (dspDesiredState) The state of the DSP desired by the administrator—this state may be different than its actual state.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) Instance First State (dspStatefirst) Identifies the current state of the first instance of the DSP. • hardwareFailure(1)—During power up a self test routine detected a problem with this DPS. It will not be booted with code or used for calls. • pendingBoot(2)—Software on this DSP has stopped acting properly. This DSP will not be used for calls. At the next convenient time the DSP will be rebooted.
Access Server Administrators’ Reference Guide 11 • Digital Signal Processing (DSP) Successful Connects (dspSuccessfulConnects) The number of calls that successfully connected. Failed Connect (no far modem) (dspFailedConnectPreV8) The number of calls that failed before modulation V8 was completed. Failed Connect (bad negotiation) (dspFailedConnectPostV8) The number of calls that failed to after V8 modulation was completed.
Chapter 12 Ethernet Chapter contents Introduction ........................................................................................................................................................155 Ethernet Main Window ......................................................................................................................................155 State (boxEtherAState) ............................................................................................................................
Access Server Administrators’ Reference Guide 12 • Ethernet Introduction The access server provides management and statistical information in the Ethernet window (see figure 66). Detailed information regarding the SNMP MIB II variables may be downloaded from RFC 1643, Definitions of Managed Objects for the Ethernet-like Interface Types. Click on Ethernet under the Configuration Menu to display the Ethernet main window.
Access Server Administrators’ Reference Guide Note 12 • Ethernet Note that the speed settings indicated above could indicate that the device reached this speed duplex as a result of an auto-negotiated link, or from being forced into this link state. PrimaryIPAddress (boxEtherAPrimaryIpAddress) The Primary ethernet IP address. PrimaryIpMask (boxEtherAPrimaryIpMask) The primary ethernet IP subnet mask.
Access Server Administrators’ Reference Guide 12 • Ethernet Ethernet Modify Window This window allows you to make changes to the ethernet configuration. To reach this window, select Modify from the Ethernet main window. Figure 65. Ethernet Modify Window State (boxEtherAState) Indicates the state of the ethernet interface.
Access Server Administrators’ Reference Guide 12 • Ethernet SecondaryIpAddress (boxEtherASecondaryIpAddress) The secondary ethernet IP address. Note This address is not propagated via RIP. SecondaryIpMask (boxEtherASecondaryIpMask) The secondary IP ethernet IP subnet mask. SecondaryIpFilters (boxEtherASecondaryIpFilters) Filters packets based on the filters assigned to the Secondary IP address of the Ethernet port. Enter the Filter ID of a filter configured under Filter IP.
Access Server Administrators’ Reference Guide 12 • Ethernet Figure 66. Ethernet window FCS Errors (dot3StatsFCSErrors) The number of frames received that are an integral number of octets in length but do not pass the FCS check. Single Collision Frames (dot3StatsSingleCollision Frames) The number of successfully transmitted frames in which there was exactly one collision.
Access Server Administrators’ Reference Guide 12 • Ethernet Received Frames Too Long (dot3StatsFrameTooLongs) The number of frames received that exceed the maximum permitted frame size. Other Received Errors (dot3StatsInternalMacReceiveErrors) The number of frames in which reception fails due to an internal MAC sublayer receive error. Chip Set ID (dot3StatsEtherChipSet) Ethernet-like interfaces are typically built out of several different chips.
Chapter 13 Filter IP Chapter contents Introduction ........................................................................................................................................................162 Defining a filter ...................................................................................................................................................162 Modify Filter ..........................................................................................................................
Access Server Administrators’ Reference Guide 13 • Filter IP Introduction The access server software provides an IP filtering system that enables you to set up security as well as to provision services for selected customers. While IP filters are typically thought of as a security measure, many providers wish to limit some services a customer may have access to. These could include such things as limited access only to an e-mail server or proxy server.
Access Server Administrators’ Reference Guide 13 • Filter IP Figure 68. Filter IP parameters window The following parameters can be configured for IP Filtering: Note Any changes to a filter take place immediately. This can aid in troubleshooting a filter profile while the user is online. Name (filterIpName) This is the name of the filter Direction (filterIpDirection) Specifies the direction of the filter (that is, whether it applies to data packets inbound or outbound from the access server).
Access Server Administrators’ Reference Guide 13 • Filter IP Action (filterIpAction) Specifies the action to take on a packet whether to block or pass the packet. The following options are available: • pass(0)—If pass is selected, checking will continue on to other filters until either a match occurs, a block occurs, or there are no more filters remaining to check. Note If there are any applied PASS filters, then at least one of them must match or the packet will be dropped.
Access Server Administrators’ Reference Guide 13 • Filter IP Destination IP Applies the action based on the results of the stated comparison to the IP address and subnet mask.
Access Server Administrators’ Reference Guide 13 • Filter IP • greaterThan(3) – the destination port in the IP packet must be greater than the source port specified for the filter to be applied Port (filterIpDestinationPort) The port number to be compared to the destination port in the IP packet Protocol (filterIpProtocol) Specifies the IP Protocol number to use for filtering. Some examples of protocol numbers are 1 for ICMP; 6 for TCP; and 17 for UDP. A list of protocol numbers can be found in RFC 1340.
Access Server Administrators’ Reference Guide 13 • Filter IP Figure 69. IP Filter showing default for dialout Default for dialout (filterIpDefaultDialout) This option applies the filter as a default for all dialout locations. If a location has a filter specifically specified for that location (see section “Locations Link” on page 121), the default filter is disabled for that location and only the specified filter(s) is/are used.
Access Server Administrators’ Reference Guide 13 • Filter IP – Protocol: not set – TCP Established: anyPackets – Default for dial-in: apply to Dial-in • ID:2 – Name: WebSite – Direction: inbound – Action:pass – Source IP and mask: not set – Destination IP: 192.10.10.2 mask: 255.255.255.
Access Server Administrators’ Reference Guide 13 • Filter IP • Action: pass • Source IP and mask: not set • Destination IP and mask: not set • Source Port: no compare • Destination Port: no compare • Protocol: 1 • TCP Established: anyPackets • Default for dial-in: apply to Dial-in Note This would also allow traceroute to work.
Chapter 14 Frame Relay Chapter contents Introduction ........................................................................................................................................................172 The Frame Relay main window...........................................................................................................................172 Link X (frDlcmiIfIndex) .............................................................................................................................
Access Server Administrators’ Reference Guide 14 • Frame Relay Congestion (frameEnableCongestion) ...........................................................................................................
Access Server Administrators’ Reference Guide 14 • Frame Relay Introduction Frame Relay is a high-speed datalink communications technology that is used in hundreds of networks throughout the world to connect LAN, SNA, Internet, and voice applications. Within the network, Frame Relay uses a simple form of packet switching that provides high throughput and reliability. (For more information, refer to the Frame-Relay MIB: 1315 Management Base for Frame Relay DTEs.
Access Server Administrators’ Reference Guide 14 • Frame Relay The Frame Relay main window also has the following links: • Modify—Clicking on the Modify link enables you to set-up Frame Relay or to change any configuration parameters (see “DLMI Window” on page xxx). • DLCI—The Data Link Connection Identifier (DLCI) provides each PVC with a unique identifier at both the access server and the Frame Relay switch. Within each link (DLMI) there can be multiple Permanent Virtual Circuits (PVC).
Access Server Administrators’ Reference Guide 14 • Frame Relay Bad CRC (framerelRxBadCrc) The number of packets received that had bad CRC values. Invalid Frames (framerelRxInvalidFrame) The number of packets received that had invalid frames. Tx Underrruns (framerelTxUnderrun) The number of times the transmit buffer was not replenished in time to be sent out on the line. LINK Resets (framerelResets) Number of times the link management (LMI) was reset.
Access Server Administrators’ Reference Guide 14 • Frame Relay Signalling (frDlcmiState) Inband signalling used to communicate link and PVC status between the User equipment and the Network equipment. LMI is the generic term used to indicate Frame Relay signaling, however the three specific types of signaling are: • LMI Frame Relay Forum Implementation agreement. Uses DLCI = 1023 for management • Annex D. ANSI T1.617 Uses DLCI = 0 for management • Annex A. ITU Q.
Access Server Administrators’ Reference Guide 14 • Frame Relay LMI Interface (frDlcmiInterface) LMI is used in the generic sense as an in-band signaling system. The signaling is slightly different depending on which end of the Frame Relay Interface it is, or in other words its orientation. The User end issues periodic STATUS ENQUIRY messages and waits for a STATUS reply from the Network. The USER setting is correct if the access server is a DCE connecting to a Frame Relay network.
Access Server Administrators’ Reference Guide 14 • Frame Relay DLCI (frCircuitDlci) The Data Link Connection Identifier (DLCI) for this virtual circuit. Note DLCIs can automatically appear if your Frame Relay Service provider has already configured your link. In this case, all you will need to enter is the IP address of the router at the far end of the link. Interface # (FrameIPInterfaceNum) The interface number assigned to a DLCI.
Chapter 15 Interfaces Chapter contents Introduction ........................................................................................................................................................179 Interfaces main window.......................................................................................................................................179 Number (ifIndex) ..............................................................................................................................
Access Server Administrators’ Reference Guide 15 • Interfaces Introduction The Interfaces window (see figure 73) shows the quantity of incoming and outgoing traffic, as well as errors that cause frames to be discarded for each of the local interfaces. The statistics listed on the access server Interfaces page comprise those contained in RFC 1213—Management Information Base for Network Management of TCP/IP-based internets: MIB-II. Frames are counted when they arrive on the network.
Access Server Administrators’ Reference Guide 15 • Interfaces Type (ifType) The type of interface, distinguished according to the physical/link protocol(s) immediately “below” the network layer in the protocol stack. The following valid interface options are available: • other(1) • ethernet-csmacd(6) • iso88023-csmacd(7) • ds1(18) • e1(19) • basicISDN(20) • primaryISDN(21) • ppp(23) • softwareLoopback(24) • slip(28) • frame-relay(32) Admin Stat (ifAdminStatus) The desired state of the interface.
Access Server Administrators’ Reference Guide 15 • Interfaces Interface Details When you click on a Details link, the type and description of the interface, speed, status, maximum size of protocol data units (PDUs), and physical address display (see figure 74). The SNMP variables for this table are referenced through the SNMP MIB interfaces table. Figure 74. Interface Details window Description (ifDescr) A textual string containing information about the interface.
Access Server Administrators’ Reference Guide 15 • Interfaces • slip(28) • frame-relay(32) Max Transfer Unit (ifMTU) The size of the largest protocol data unit which can be sent/received on the interface, specified in octets. For interfaces that are used for transmitting network protocol data units, this is the size of the largest network protocol data unit that can be sent on the interface. Speed (ifSpeed) An estimate of the interface’s current bandwidth in bits per second.
Access Server Administrators’ Reference Guide 15 • Interfaces Received and Discarded w/No Errs (ifInDiscards) The number of inbound packets which were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher layer protocol. One possible reason for discarding such a packet could be to free up buffer space.
Chapter 16 IP Chapter contents Introduction ........................................................................................................................................................187 IP main window ..................................................................................................................................................187 Forwarding (ipForwarding) .........................................................................................................................
Access Server Administrators’ Reference Guide 16 • IP Total Received in Error (tcpInErrs) .........................................................................................................193 Total Sent w/RST Flag (tcpOutRsts) ......................................................................................................193 TCP Details ..................................................................................................................................................
Access Server Administrators’ Reference Guide 16 • IP State (RouteState) .........................................................................................................................................201 Add a route: ..................................................................................................................................................201 Adding the default gateway ..........................................................................................................
Access Server Administrators’ Reference Guide 16 • IP Introduction The IP (Internet Protocol) window lists IP configuration statistics and parameters, and enables you to modify IP settings. All items described in this chapter are defined in RFC 1213: Management Information Base for Network Management of TCP/IP-based internets: MIB-II. As specified in the RFC, implementation of the IP, TCP, UDP, and ICMP MIB groups are required for all TCP/IP networks. Figure 75.
Access Server Administrators’ Reference Guide 16 • IP • Modify—This window is where you can modify forwarding and time-to-live settings (see “Modify” on page 190). • Addressing Info—This window (see “Addressing Information” on page 198) displays IP addressing details for the default address for outgoing IP datagrams, the local or loopback address of the box and the IP address of the box as defined in 20, “System” on page 230.
Access Server Administrators’ Reference Guide 16 • IP Forwarded Datagrams (ipForwDatagrams) The number of input datagrams for which this entity was not their final IP destination, as a result of which an attempt was made to find a route to forward them to that final destination. In entities which do not act as IP Gateways, this counter will include only those packets which were source-routed via this entity, and the sourceroute option processing was successful.
Access Server Administrators’ Reference Guide 16 • IP # of Reassembled Fragments (ipReasmReqds) The number of IP fragments received which needed to be reassembled at this entity. # Successfully Reassembled (ipReasmOKs) The number of IP datagrams successfully reassembled. Reassembly Failures (ipReasmFails) The number of failures detected by the IP reassembly algorithm (for whatever reason: timed out, errors, etc.).
Access Server Administrators’ Reference Guide Note 16 • IP For some managed nodes, this object may take on only a subset of the values possible. Accordingly, it is appropriate for an agent to return a "badValue" response if a management station attempts to change this object to an inappropriate value.
Access Server Administrators’ Reference Guide 16 • IP Retransmit-Timeout Algorithm (tcpRtoAlgorithm) The algorithm that determines the timeout value used for retransmitting unacknowledged octets. Retransmit-Timeout Minimum (tcpRtoMin) The minimum value permitted by a TCP implementation for the retransmission timeout, measured in milliseconds. More refined semantics for objects of this type depend upon the algorithm used to determine the retransmission timeout.
Access Server Administrators’ Reference Guide 16 • IP Total Retransmitted (tcpRetransSegs) The total number of segments retransmitted—that is, the number of TCP segments transmitted containing one or more previously transmitted octets. Total Received in Error (tcpInErrs) The total number of segments received in error (e.g., bad TCP checksums). Total Sent w/RST Flag (tcpOutRsts) The number of TCP segments sent containing the RST flag.
Access Server Administrators’ Reference Guide 16 • IP deleteTCB(12), then this has the effect of deleting the TCB (as defined in RFC 793) of the corresponding connection on the managed node, resulting in immediate termination of the connection.
Access Server Administrators’ Reference Guide 16 • IP Handling of NETBIOS UDP Broadcasts (boxNetbiosUdpBridging) Enables the passing of broadcast UDP packets with a port of 137 and 138 from other interfaces to the local LAN interface. Netbios uses these packets to communicate with WINS servers. A WINS server can work without this option enabled, but the remote PC will appear to be on the LAN.
Access Server Administrators’ Reference Guide 16 • IP Figure 80. ICMP window Click on ICMP under the Configuration Menu to monitor access server ICMP statistics (see figure 80). Block ICMP redirects (boxBLockIcmpRedirects) Enables you to configure how the access server handles ICMP redirects. Enabling the access server to receive redirected messages is generally considered a security breach.
Access Server Administrators’ Reference Guide 16 • IP Destinations Unreachable (IcmpInDestUnreachs, IcmpOutDestUnreachs) The number of ICMP destination unreachable messages received/sent. For instance, if the information in a gateway’s routing table determines that the network specified in a packet is unreachable, the gateway will send back an ICMP message stating that the network is unreachable. The following conditions will send back an unreachable message: • The network is unreachable.
Access Server Administrators’ Reference Guide 16 • IP Echo Replys (icmpInReps, icmpOutReps) The number of ICMP echo reply messages received/sent. An echo reply is a response to an echo request. Send echos (icmpOutEchos) will increment when the access server is pinged. Time Stamps (icmpInTimestamps, icmpInTimestamps) The number of ICMP time stamp messages received/sent. Time stamp and time stamp replies were originally designed into the ICMP facility to allow network clock synchronization.
Access Server Administrators’ Reference Guide 16 • IP Figure 82. IP addressing Details window Entry Interface Index (ipAdEntIfIndex) The index value that identifies the interface to which this entry applies. Entry Subnet Mask (ipAdEntNetMask) The subnet mask associated with the IP address of this entry. The value of the mask is an IP address with all the network bits set to 1 and all the hosts bits set to 0.
Access Server Administrators’ Reference Guide 16 • IP Figure 83. IP Routing Information window The IP Routing Information window also has a link to the O/S forwarding table where the forwarding parameters are displayed (“O/S forwarding table window” on page 203). Destination (ipRouteDest) The destination IP address of this route. An entry with a value of 0.0.0.0 is considered a default route.
Access Server Administrators’ Reference Guide 16 • IP Table 3. Masks Mask Network 255.255.255.0 class-C Gateway (RouteGateway) Specifies the IP address to which the packets should be forwarded. Cost (RouteCost) This is the cost of the route as defined by RIP standards. Cost is sometimes considered to be number of hops. A cost of 16 is considered to be infinite. A cost can be given to user-entered routes so their preference in relation to learned routes can be calculated.
Access Server Administrators’ Reference Guide 16 • IP 1. Type the IP address of the host that serves as a gateway for your local network in the Gateway column of the first entry. 2. Click Add Route. Adding a point-to-point route Do the following: 1. Under Destination in the first entry, type the IP address of the remote host to which you want make a point-topoint connection. 2.
Access Server Administrators’ Reference Guide 16 • IP Table 4. Examples of IP routes Examples of correct entries Examples of incorrect entries 192.10.10.0 255.255.255.0 178.3.4.32 255.255.255.224 178.3.4.16 255.255.255.240 178.3.4.16 255.255.255.224 Advanced… Enables a route to be attached to an interface. Packets to a network will be routed to that interface, allowing the gateway IP address to be dynamic.
Access Server Administrators’ Reference Guide 16 • IP Next Hop (ipRouteNextHop) The IP address of the next hop of this route. (In the case of a route bound to an interface which is realized via a broadcast media, the value of this field is the agent's IP address on that interface.) Interface (ipRouteIfIndex) The index value that identifies the local interface through which the next hop of this route should be reached.
Access Server Administrators’ Reference Guide 16 • IP Info (ipRouteInfo) A reference to MIB definitions specific to the particular routing protocol which is responsible for this route, as determined by the value specified in the route’s ipRouteProto value. If this information is not present, its value should be set to the OBJECT IDENTIFIER { 0 0 }, which is a syntactically valid object identifier, and any conformant implementation of ASN.1 and BER must be able to generate and recognize this value.
Access Server Administrators’ Reference Guide 16 • IP • user(2)—Added by an administrator on the IP Routing Information table or via SNMP management tools. • dspf(3)—Not currently implemented. • rip(4)—Learned via reception of RIP packet. • icmp(5)—Learned via reception of ICMP packet. • radius(6)—Provided in RADIUS response packet. Seconds Since Updated (ipRouteAge) The number of seconds since this route was last updated or otherwise determined to be correct.
Access Server Administrators’ Reference Guide 16 • IP Figure 87. Address Translation Information window Interface (ipNetToMediaEntry) Each entry contains one IP address to physical address equivalence. Net Address (ipNetToMediaNetAddress) The IP address corresponding to the media-dependent physical address. Physical (ipNetToMediaPhysAddress) The media-dependent physical address. Type (ipNetToMediaType) The type of mapping.
Chapter 17 MFR Version 2 Chapter contents Introduction ........................................................................................................................................................210 MFR Version 2 main window .............................................................................................................................210 Line Signalling ..................................................................................................................................
Access Server Administrators’ Reference Guide 17 • MFR Version 2 Last Response Code (interRegCallingNumLast)................................................................................ 217 Speech Condition Set-up (interRegGroupBAck ................................................................................
Access Server Administrators’ Reference Guide 17 • MFR Version 2 Introduction The MFR Version 2 window (see figure 88) contains objects for networks that use Signalling System R2. (To set up R2 Signalling in the access server, refer to Recommendations Q.400—Q.490 and to the host country’s PTT for national signalling specifications). Figure 88. MFR Version 2 main window Click on MFR Version 2 under the Configuration Menu to display the MFR Version 2 main window.
Access Server Administrators’ Reference Guide 17 • MFR Version 2 Idle Code (lineSigIdleCode) Code to indicate that a line is in use. Forward Seize (lineSigForwardSeize) Code to indicate there is a desire to use a line. Back Acknowledge (lineSigBackAck) Code to indicate there is an agreement to use a line. Back Answer (lineSigBackAnswer) Code to indicate a call has been completed. Minimum Transition Time (lineSigMinTransTime) The minimum transition time in milliseconds.
Access Server Administrators’ Reference Guide 17 • MFR Version 2 MFR Version 2—Modify In the MFR Version 2 Modify window (see figure 89) you can modify Line Signalling parameters. The Line Signalling parameters are link-by-link digital signals that use two signalling channels in each direction per circuit. Figure 89. MFR Version 2 Modify window Line Signalling This portion of the MFR Version 2—Modify window contains information described in the following sections.
Access Server Administrators’ Reference Guide 17 • MFR Version 2 Country (lineSigCountry) Specifying a particular country or itu Standard defines the values of the remaining fields based on the specs. Custom allows for any values in the following fields (Line Signalling objects are country-specific. Please refer to the host country’s PTT for national signalling specifications).
Access Server Administrators’ Reference Guide 17 • MFR Version 2 Forward Seize (lineSigForwardSeize) Code to indicate there is a desire to use a line. • abcd-0000(0) • abcd-0001(1) • abcd-0010(2) • abcd-0011(3) • abcd-0100(4) • abcd-0101(5) • abcd-0110(6) • abcd-0111(7) • abcd-1000(8) • abcd-1001(9) • abcd-1010(10) • abcd-1011(11) • abcd-1100(12) • abcd-1101(13) • abcd-1110(14) • abcd-1111(15) Back Acknowledge (lineSigBackAck) Code to indicate there is an agreement to use a line.
Access Server Administrators’ Reference Guide 17 • MFR Version 2 • abcd-1100(12) • abcd-1101(13) • abcd-1110(14) • abcd-1111(15) Back Answer (lineSigBackAnswer) Code to indicate a call has been completed.
Access Server Administrators’ Reference Guide Note 17 • MFR Version 2 Interregister Signalling setup codes are country-specific. Please refer to Recommendation Q.400 -Q.490 and to the host country’s PTT for national signalling specifications. Called Number Total Digits (interRegCalledNumDig). The number of digits expected for the called number. First and Middle Response Code (interRegCalledNumFirst). The code specifying what is done after every digit is sent except the last for the called number.
Access Server Administrators’ Reference Guide 17 • MFR Version 2 • a10(10) • a11(11) • a12(12) • a13(13) • a14(14) • a15(15) Calling Number Total Digits (interRegCallingNumDig). The number of digits expected for the calling number. If an a15 tone will be sent after all the calling number digits are sent, set the total digits to a large number (for example, 30). The access server will send the last response code when it sees the a15 tone First and Middle Response Code (interRegCallingNumFirst).
Access Server Administrators’ Reference Guide 17 • MFR Version 2 • a5(5) • a6(6) • a7(7) • a8(8) • a9(9) • a10(10) • a11(11) • a12(12) • a13(13) • a14(14) • a15(15) Speech Condition Set-up (interRegGroupBAck. The code sent when acknowledging the Group B digit to set-up speech conditions.
Chapter 18 RIP Version 2 Chapter contents Introduction ........................................................................................................................................................220 RIP Version 2 main window ...............................................................................................................................220 Route Changes Made (rip2GlobalRouteChanges) .........................................................................................
Access Server Administrators’ Reference Guide 18 • RIP Version 2 Introduction The RIP Version 2 main window (see figure 90) describes routing information as defined by the Routing Information Protocol (RIP). All object identifiers described in this chapter comply with those contained in RFC 1389: RIP Version 2 MIB Extension. \ Figure 90. RIP Version 2 window Click on RIP Version 2 under the Configuration Menu to display the RIP Version 2 main window.
Access Server Administrators’ Reference Guide 18 • RIP Version 2 • ripVersion1 (2)—Send RIP updates compliant with RFC 1058 • rip1Compatible (3)—Broadcast RIP-2 updates using RFC 1058 route subsumption rules • ripVersion2 (4)—Send multicasting RIP-2 updates Receive (rip2IfConfReceive) This indicates which version of RIP updates are to be accepted. Note that rip2 and rip1OrRip2 implies reception of multicast packets.
Access Server Administrators’ Reference Guide 18 • RIP Version 2 RIP Version 2—Configuration The RIP Version 2 Configuration window (see figure 91) shows objects for each subnet address including authentication method, RIP Version 1 or Version 2 compatibility, and metric value. Figure 91. RIP Version 2—Statistics Configuration window Address (rip2IfConfAddress) The IP address of the interface on the access server.
Access Server Administrators’ Reference Guide 18 • RIP Version 2 Receive (rip2IfConfReceive) This indicates which version of RIP updates are to be accepted. Note that rip2 and rip1OrRip2 implies reception of multicast packets.
Access Server Administrators’ Reference Guide 18 • RIP Version 2 Sent Updates (rip2IfStatSentUpdates) The number of triggered RIP updates actually sent on this interface. This explicitly does NOT include full updates sent containing new information. Status (rip2IfStatStatus) Indicates validity of this interface.
Chapter 19 SNMP Chapter contents Introduction ........................................................................................................................................................226 SNMP window....................................................................................................................................................226 In ................................................................................................................................................
Access Server Administrators’ Reference Guide 19 • SNMP Introduction The access server provides management and statistical information on SNMP. Detailed information on the SNMP MIB variables are found in RFC 1213: Management Information Base for Network Management of TCP/ IP-based internets: MIB-II. Select SNMP from the access server Configuration Menu to monitor SNMP statistics. Click on SNMP under the Configuration Menu to display the SNMP window (see figure 93). Figure 93.
Access Server Administrators’ Reference Guide 19 • SNMP • 1406—Definitions of Managed Objects for the DS1 and E1 Interface Types • 1643—Definitions of Managed Objects for the Ethernet-like Interface Types In Packets (snmpInPkts) The total number of Messages delivered to the SNMP entity from the transport service. Bad Version (snmpInBadVersions) The total number of SNMP Messages that were delivered to the SNMP protocol entity and were for an unsupported SNMP version.
Access Server Administrators’ Reference Guide 19 • SNMP Get/Get Next Variables (snmpInTotalReqVars) The total number of MIB objects that have been retrieved successfully by the SNMP protocol entity as the result of receiving valid SNMP Get-Request and Get-Next PDUs. Set Variables (snmpInTotalSetVars) The total number of MIB objects that have been altered successfully by the SNMP protocol entity as the result of receiving valid SNMP Set-Request PDUs.
Access Server Administrators’ Reference Guide 19 • SNMP Generated Errors (snmpOutGenErrs) The total number of SNMP PDUs that were generated by the SNMP protocol entity and for which the value of the error-status field is genErr. Get Requests (snmpOutGetRequests) The total number of SNMP Get-Request PDUs that have been generated by the SNMP protocol entity. Get Next Requests (snmpOutGetNexts) The total number of SNMP Get-Next PDUs that have been generated by the SNMP protocol entity.
Chapter 20 System Chapter contents Introduction ........................................................................................................................................................232 System main window...........................................................................................................................................232 SNMP and HTTP .....................................................................................................................................
Access Server Administrators’ Reference Guide 20 • System SNMP and HTTP ........................................................................................................................................237 Version (boxSnmpVersion) .....................................................................................................................237 Super User Password (boxSnmpMasterPassword) ....................................................................................
Access Server Administrators’ Reference Guide 20 • System Introduction The System main window (see figure 94) contains general setup information about the access server. System parameters are Patton Enterprise MIB object identifiers, though some are contained in RFC 1213, Management Information Base for Network Management of TCP/IP-based internets: MIB-II. Click on System under the Configuration Menu to display the System main window. Figure 94.
Access Server Administrators’ Reference Guide 20 • System Super User Password (boxSnmpMasterPassword) This displays the super user password for SNMP and HTTP. User Password (boxSnmpMonitorPassword) This displays the user monitoring password for SNMP and HTTP. Web Page Refresh Rate (boxWebRefreshRate) The rate at which the main dial-in web page automatically refreshes. The refresh rate can be set from 5 seconds to 5 minutes. The default is to never refresh.
Access Server Administrators’ Reference Guide 20 • System Figure 95. System main window (Operating System Heap Memory, Enclosure System, Payable Features, Installation, and Other) Operating System Heap Memory This portion of the System main window contains information described in the following sections (see figure 95). Total Size (boxHeapSize) The size of the operating system heap memory. Free (boxHeapFreeSpace) The amount of operating system heap memory currently available.
Access Server Administrators’ Reference Guide 20 • System Enclosure System This portion of the System main window contains information described in the following sections (see figure 95 on page 234). Internal Temperature (boxTemperature) Displays the current temperature in celsius (centigrade). Highest Temperature (boxMaxTemperature) The highest temperature registered in celsius (centigrade) sinc the access server was last re-booted.
Access Server Administrators’ Reference Guide 20 • System Physical Location (sysLocation) The physical location of this node (e.g., telephone closet, 3rd floor), as defined in RFC 1213. System Services (sysServices) A value which indicates the set of services that this entity primarily offers, as defined in RFC 1213. Web Settings (boxBackgroundFlag) The following options are available: • disableGraphics(0)—When this option is selected, graphics on WWW pages will not be displayed.
Access Server Administrators’ Reference Guide 20 • System System—Modify window The System—Modify window (see figure 96) is where you can change SNMP and HTTP, payable features, country of installation, and other parameters. Figure 96. System—Modify window SNMP and HTTP This portion of the System—Modify window contains information described in the following sections. Version (boxSnmpVersion) This parameter selects the SNMP version number supported by this unit (see figure 96).
Access Server Administrators’ Reference Guide 20 • System Payable Features This portion of the System—Modify window contains information described in the following section. Enable Payable Features(boxFeatureEnableKey) Not currently implemented. Installation This portion of the System—Modify window contains information described in the following section. Country (installCountry) Specifies the country that the access server is installed in so it can be configured in accordance with local laws.
Access Server Administrators’ Reference Guide 20 • System • disableWeb(2)—When this option is selected, access to the WWW pages is denied for everyone. Monitor Privilege (boxMonitorPrivilege) Specifies the privileges given to the monitor user. Privileges can be removed or additional write access can be given beyond read-only access. The following options are available: • none(0)—The monitor user can not log in. • read-only(2)—This is the default setting.
Access Server Administrators’ Reference Guide 20 • System No. Free (boxbuffersfree) The number of buffers this size which are currently free for use No. of Tasks Waited (boxCountBufferTaskWait) The number of times a task has waited for this buffer size. No. of Times Unavailable(boxCountBufferUnavailable) The number of times one of these buffers was unavailable. System—Packet Holding Message Blocks...
Chapter 21 System Log Chapter contents Introduction ........................................................................................................................................................242 System Log Main Window ..................................................................................................................................242 System Log—Modify .................................................................................................................................
Access Server Administrators’ Reference Guide 21 • System Log Introduction The System Log window (see figure 98) displays the results from the system-wide error reporting utility. The object parameters in the system log are all Patton Enterprise MIB object identifiers. Figure 98.
Access Server Administrators’ Reference Guide 21 • System Log System Log—Modify The System Log—Modify window (see figure 99) displays syslog and SNMP trap daemon locations, priority and maintenance information. Figure 99. System Log—Modify window Daemons This portion of the System Log—Modify window contains information described in the following sections. SysLog Daemon IP Address(syslogDaemonIP) The IP address of a host system which is running a syslog daemon.
Access Server Administrators’ Reference Guide 21 • System Log system logging will provide. PriorityVerbose will generate the most messages, while priorityDisable will turn off all messages.
Access Server Administrators’ Reference Guide 21 • System Log • priorityInfo(20) • priorityOddity(40) • priorityService(60) • prioritySystem(80) • priorityDisable(1000) Min Priority for RAM (SyslogTablePriority) System messages which have a priority equal to or greater than this setting will appear in System Log—Volatile Memory. The lower the number next to the priority listed below, the more details system logging will provide.
Access Server Administrators’ Reference Guide 21 • System Log • authpriv(10) • ftp(11) • local0(16) • local1(17) • local2(18) • local3(19) • local4(20) • local5(21) • local6(22) • local7(23) Call Trace (syslogCallTrace) Enabling this will activate the call tracing utility. This is a powerful debugging utility which will log every single function call and return. At the death of a box the call trace will be printed out and can be sent to tech support.
Access Server Administrators’ Reference Guide 21 • System Log System Log—Volatile Memory The System Log—Volatile Memory window (see figure 100) displays timestamp and stored system log message information. Figure 100. System Log—Volatile Memory window Time (slTick) The time stamp in 10 ms intervals of the stored message. Message (slMessage) Stored system log message.
Access Server Administrators’ Reference Guide 21 • System Log System Log—Non-Volatile Memory The System Log—Non-Volatile window (see figure 101) displays non-volatile RAM messages for each 10 ms time stamp. Figure 101. System Log—Non-Volatile Memory window Time (slfTick) The time stamp in 10 ms intervals of the stored message. Message (slfMessage) Stored system log message.
Chapter 22 T1/E1 Link Chapter contents Introduction ........................................................................................................................................................252 T1/E1 Link Activity main window ......................................................................................................................253 Link (dsx1LineIndex) .................................................................................................................................
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Error Injection (linkInjectError) ..............................................................................................................263 Line Status—Channel Assignment ......................................................................................................................264 Channel (channelIndex) ............................................................................................................................
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Unavailable Seconds (dsx1FarEndCurrentUASs) ..........................................................................................270 Controlled Slip Seconds (dsx1FarEndCurrentCSSs) .....................................................................................270 Line Errored Seconds (dsx1FarEndCurrentLESs) ..........................................................................................
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Introduction The T1/E1 Link Activity window (see figure 102) shows the configuration of the T1/E1 Interface, and reports statistics on the quality of the T1/E1 connection. The statistics listed in this section comprise those contained in RFC 1406—Definitions of Managed Objects for the DS1 and E1 Interface Types. Figure 102.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link • Near End Line Statistics—Current… link—clicking on this link takes you to the page that displays line statistics for the current 15-minute interval. For more information about this page, refer to “Near End Line Statistics—Current” on page 265. • Near End Line Statistics—History… link—clicking on this link takes you to the page that displays line statistics for previous 15-minute intervals.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Circuit ID (dsx1CircuitIdentifier) This is the transmission vendor’s circuit identifier. Knowing the circuit ID can be helpful during troubleshooting. Alarms Present This window indicates alarms on the physical line and in the case of a PRI the status of Layer 2. Figure 103. Line Status Alarms window The physical line failures currently registering will be indicated by the ACTIVE label next to the failure type.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link For E1 links, the Far End Alarm failure is declared when bit 3 of time-slot zero is received set to 1 on two consecutive occasions. The Far End Alarm failure is cleared when bit 3 of time-slot zero is received set to zero.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link ISDN Signaling Alarms (linkSignalStatus) Note ISDN Signaling Alarms will only appear if the T1/E1 is configured as a PRI. Figure 104. ISDN Signalling Alarms • Class Resource—for future use • Class Syntax—for future use • Class State—for future use • Class Unknown—for future use • Q3 Close Anchor—indicates that the D channel is down • Q3 Invalid Parameter—invalid parameter an information element for last call according to Q.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link DESCRIPTION: This variable indicates the Line Status of the interface. It contains loopback, failure, received ‘alarm’ and transmitted ‘alarm’ information. The dsx1LineStatus is a bit map represented as a sum, therefore, it can represent multiple failures (alarms) and a LoopbackState simultaneously dsx1NoAlarm should be set if and only if no other flag is set.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Line Status—Configuration Clicking on the Line Status—Configuration link in the T1/E1 Link Activity window displays the WAN Circuit Configuration window. This window contains general information about the DS1 interface, including the type of line (D4 Superframe or Extended Superframe), and kind of line coding (B8ZS or AMI). To modify the WAN circuit configuration, click on the Modify… link.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link WAN Circuit Configuration—Modify Clicking on the Configuration link in the T1/E1 Link Activity window displays the WAN Circuit Configuration—Modify window. From this window, you can change line interface settings, signalling settings, test settings, and change the T1/E1 pulse shapes. Figure 106. WAN Circuit Configuration—Modify window Note Use the DAX menu to view clock source for the Model 29XX series access servers.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Line Type (dsx1LineType) This variable indicates the type of DS1 Line implemented on this circuit. The type of circuit affects the number of bits per second that the circuit can reasonably carry, as well as the interpretation of the usage and error statistics. The values, in sequence, are: • other(1) —Link is disabled • dsx1ESF(2)—Extended Superframe DS1 • dsx1D4(3)—AT&T D4 format DS1 • dsx1E1(4)—Based on CCITT/ITU G.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Line Build Out (linkLineBuildOut) This variable is used in T1 applications to adjust the T1 pulse shape at the cross connect point. Select the pulse strength needed to minimize distortion at the remote T1 receiver end. The default is t1pulse0dB, which should be adequate for most situations. • triState(0) • e1pulse(1)—Select for E1 configuration • t1pulse0dB(2)—Strong pulse shape. • t1pulse-7dB(3)—Medium pulse shape.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Robbed-Bit Signalling Protocol (linkSignalling) This variable determines which robbed bit signalling technique is used. The techniques designated OFFICE are used to simulate the central office site. These allow back to back connection of access servers.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link • linkYellowOn—Force the transmission of a yellow alarm even if the received signal is in frame. • linkYellowDisable—Do NOT transmit a yellow alarm even if the received signal is out of frame. Loopback Config (dsx1LoopbackConfig) This variable represents the loopback configuration of the DS1 interface. Agents supporting read/write access should return badValue in response to a requested loopback state that the interface does not support.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Line Status—Channel Assignment Clicking on the Line Status—Channel Assignment link in the T1/E1 Link Activity window displays the WAN Circuit Channel Assignment window (see figure 107). T1/E1 lines are segmented into twenty-four (T1) or thirty (E1) individual channels or time slots. Figure 107. WAN Circuit Channel Assignment Channel (channelIndex) This object is the identifier of an entry in the channel table. Figure 108.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link • frameRelay(3)—64 k frame relay connection • privateLine(4)—channel is a dedicated modem connection • dropinsert(7)—the channel passes the data through to another channel on a different WAN port. See How Drop and Insert Works on page xxxx • blocked(8)—Signals the central office that the access server will not accept any signals on this channel.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Errored Seconds (dsx1CurrentESs) The number of errored seconds, encountered by a DS1 interface in the current 15-minute interval. Severely Errored Seconds (dsx1CurrentSESs) The number of severely errored seconds encountered by a DS1 interface in the current 15-minute interval. Severely Errored Frame Seconds (dsx1CurrentSEFSs) The number of severely errored framing seconds encountered by a DS1 interface in the current 15-minute interval.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Near End Line Statistics—History Click on Near End Line Statistics—History to display line statistics for previous 15-minute intervals (96 previous intervals will be shown unless the remote access server has been reinitialized in the last 24 hours). See figure 110. Figure 110.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Controlled Slip Seconds (dsx1IntervalCSSs) The number of controlled slip seconds encountered by a DS1 interface in one of the previous 96, individual 15-minute, intervals. Path Code Violations (dsx1IntervalPCVs) The number of path coding violations encountered by a DS1 interface in one of the previous 96, individual 15-minute, intervals.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Severely Errored Seconds (dsx1TotalSESs) The number of severely errored seconds encountered by a DS1 interface in the previous 24-hour interval. Severely Errored Frame Seconds (dsx1TotalSEFSs) The number of severely errored framing seconds encountered by a DS1 interface in the previous 24-hour interval. Unavailable Seconds (dsx1TotalUASs) The number of unavailable seconds encountered by a DS1 interface in the previous 24-hour interval.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Far End Line Statistics—Current Click on Near End Line Statistics—Current to display far-end statistics for the current 15-minute interval (96 previous intervals will be shown unless the remote access server has been reinitialized in the last 24 hours). See figure 112). Figure 112.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Path Code Violations (dsx1FarEndCurrentPCVs) The number of far-end path coding violations reported via the far-end block error count encountered by a DS1 interface in the current 15-minute interval. Bursty Errored Seconds (dsx1FarEndCurrentBESs) The number of far-end bursty errored seconds (BESs) encountered by a DS1 interface in the current 15minute interval.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Severely Errored Seconds (dsx1FarEndIntervalSESs) The number of far-end severely errored seconds encountered by a DS1 interface in one of the previous 96, individual 15-minute, intervals. Severely Errored Frame Seconds (dsx1FarEndIntervalSEFSs) The number of far-end severely errored framing seconds encountered by a DS1 interface in one of the previous 96, individual 15-minute, intervals.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Far End Line Statistics—Totals Click on Far End Line Statistics—Totals to display the total statistics of errors that occurred during the previous 24-hour period (see figure 114). Figure 114. Far End Performance window Errored Seconds (dsx1FarEndTotalESs) The number of far-end errored seconds encountered by a DS1 interface in the previous 24-hour interval.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Bursty Errored Seconds (dsx1FarEndTotalBESs) The number of far-end bursty errored seconds (BESs) encountered by a DS1 interface in the previous 24-hour interval. Degraded Minutes (dsx1FarEndTotalDMs) The number of far-end degraded minutes (DMs) encountered by a DS1 interface in the previous 24-hour interval. Using Non-Facility Associated Signaling (NFAS) NFAS allows PRIs to be fully utilized by increasing the number of data channels.
Access Server Administrators’ Reference Guide 22 • T1/E1 Link Example 2 The RAS hosts 1 NFAS group containing 3 PRIs Signal setting for each WAN port WAN 1 WAN 2 WAN 3 WAN 4 Switch Type Nil (0) nfsSlave(7) nfsSlave(7) Turned off Interface ID 0 1 2 Primary WAN 1 1 1 Far End Line Statistics—Totals 275
Chapter 23 Sync PPP Introduction ........................................................................................................................................................278 WAN Circuit CONFIGURATION window ......................................................................................................278 Line Status—Channel Assignment ................................................................................................................278 Desired Function (slotfunction) .....
Access Server Administrators’ Reference Guide 23 • Sync PPP Authentication Side (pppAuthenticationSide) .........................................................................................284 Authentication Username (pppAuthenticationUsername) .......................................................................284 Authentication Password (pppAuthenticationPassword) ..........................................................................284 Security Level (pppAccessLevel) ........................
Access Server Administrators’ Reference Guide 23 • Sync PPP Introduction Point-to-point protocol (PPP) is a widely used data link layer protocol for connecting remote devices in pointto-point configuration.
Access Server Administrators’ Reference Guide 23 • Sync PPP Desired Function (slotfunction) ppp(5)—channel is set for synchronous PPP Current State (ChannelState) ppp(7)—Sync PPP connection is up on this channel Figure 116. Channel assignment showing PPP config PPP configuration Once the WAN Link has been set for PPP, proceed to configure the PPP parameters. PPP Main Window Clicking on the PPP link on the left pane of the screen shows the PPP main window.
Access Server Administrators’ Reference Guide 23 • Sync PPP State (pppActState) This is the current state of the PPP negotiation process.
Access Server Administrators’ Reference Guide 23 • Sync PPP Authentication Technique (pppDefaultAuthenticationTechnique) Technique to be used for authenticating • none(0)—no authentication will be used • pap(3)—password authentication protocol will be used • chap(4)—challenge handshake authentication protocol will be used • chapORpap(5)—chap will be negotiated first, if that fails, pap will be attempted Authentication Side (pppDefaultAuthenticationSide) This is the side of the link which will be a
Access Server Administrators’ Reference Guide 23 • Sync PPP Compression (pppDefaultIpCompression) If none(1) then the local node will not attempt to negotiate any IP Compression option. Otherwise, the local node will attempt to negotiate compression mode indicated by the enumerated value. Changing this object will have effect when the link is next restarted. • none(1)—do not negotiate Ip compression negotiated • vj-tcp(2)—van-jacobson TCP/IP header compression will be negotiated per RFC 1332.
Access Server Administrators’ Reference Guide 23 • Sync PPP RECEIVE (framerelRxOctets) Receive rate in bits per second. No Buffers Available (framerelRxNoBufferAvailable) The number of packets received when no receive buffers were available. Data Overflow (framerelRxDataOverflow) The number of packets received with overflow indicated by the hardware. Message Ends (framerelRxMessageEnds) The number of packets received with message-correct endings. This value increases each time a valid packet is received.
Access Server Administrators’ Reference Guide • pap(3)—password authentication protocol will be used • chap(4)—challenge handshake authentication protocol will be used • chapORpap(5)—chap will be negotiated first, if that fails, pap will be attempted 23 • Sync PPP Authentication Side (pppAuthenticationSide) Side of the link which will be authenticating • local(1)—local server will be authenticating. Remote needs to log into local server. • remote(2)—remote server will be authentication.
Access Server Administrators’ Reference Guide 23 • Sync PPP Link Compression (pppLinkCompression) This object enables the PPP link layer address and protocol field compression. When enabled the PPP negotiations will DESIRE link compression but may disable the compression due the other end of the link not accepting link compression. When disabled the PPP negotiations will FORCE no compression on the PPP link.
Access Server Administrators’ Reference Guide 23 • Sync PPP LCP Authentication(pppStatLcpAuth) Authentication type used. The following options are available: • none(1) • pap(2) • chap(3) • MSChap(4)—not currently implemented • tacacs(5)—not currently implemented • edp(6) • ShivaPap(7)—not currently implemented ACC Map (pppStatLocalToPeerACCMap) The current value of the ACC Map used for sending packets from the local server to the remote unit.
Access Server Administrators’ Reference Guide • 23 • Sync PPP enabled(1)—ACC is enabled Remote-Local AC Comprsn (pppStatRemoteToLocalACComp) Indicates whether the remote PPP entity will use address and control compression (ACC) when transmitting packets to the local PPP entity. This setting becomes active when the link is in the up—able to pass packets— operational state. These are the available options: • disabled(0)—ACC is disabled • enabled(1)—ACC is enabled Transmit Frame Check Seq.
Access Server Administrators’ Reference Guide 23 • Sync PPP Remote Max Slot ID (pppIpRemoteMaxSlotId) The Max-Slot-Id access server parameter that the remote node has announced and that is in use on the link. If vjTCP header compression is not in use on the link, the value of this object will be 0. The range is from 0 to 255. Local Max Slot ID (pppIpLocalMaxSlotId) The Max-Slot-Id access server parameter that the local node has announced and that is in use on the link.
Access Server Administrators’ Reference Guide 23 • Sync PPP Modify Link Configuration Window Clicking on the Modify… link in the PPP link window will allow configuration of the individual link settings. Figure 120.
Chapter 24 Layer 2 Tunneling Protocol (L2TP) Introduction ........................................................................................................................................................291 L2TP Configuration............................................................................................................................................291 Static Authentication ..................................................................................................................
Access Server Administrators’ Reference Guide 24 • Layer 2 Tunneling Protocol (L2TP) Introduction This chapter explains the operation of the L2TP feature on the Patton Electronics Remote Access Servers. This feature has been introduced into the Patton RAS line with the 3.8.4 software release.
Access Server Administrators’ Reference Guide 24 • Layer 2 Tunneling Protocol (L2TP) RADIUS Authentication Figure 121. L2TP RADIUS Authentication When RADIUS Authentication is used, the following RADIUS attributes are used to configure the L2TP Tunnel.
Access Server Administrators’ Reference Guide 24 • Layer 2 Tunneling Protocol (L2TP) command is used then the value used (cisco> terminate from patton_lac) would need to match the hostname provided by the RAS device. If this variable is not configured in the RADIUS server, then the RAS box will use the "Box Name" as the hostname.
Access Server Administrators’ Reference Guide 24 • Layer 2 Tunneling Protocol (L2TP) Router(config-if)#ppp authentication chap Router(config-if)#exit Router(config)#vpdn-group 1 Router(config-vpdn)#l2tp tunnel authentication [This will enable the use of tunnel authentication] Router(config-vpdn)#l2tp tunnel password tpass [This will define the password for the tunnel authentication -- this needs to match the value set in TunnelPassword.
Chapter 25 Contacting Patton Chapter contents Introduction ........................................................................................................................................................296 Patton Electronics Company contact information ...............................................................................................
Access Server Administrators’ Reference Guide 25 • Contacting Patton Introduction The About link displays Patton Electronics Company contact information (see “Patton Electronics Company contact information”). Click on About under the Configuration Menu to display the About main window (see figure 122). Figure 122. About window Patton Electronics Company contact information Patton Electronics Company 7622 Rickenbacker Drive Gaithersburg, Maryland 20879 U.S.A.
Chapter 26 License Chapter contents Introduction ........................................................................................................................................................298 End User License Agreement ...............................................................................................................................298 1. Definitions: .....................................................................................................................................
Access Server Administrators’ Reference Guide 26 • License Introduction The License link presents the End User License Agreement for the access server software. Click on License under the Configuration Menu to display the License main window (see figure 123). Figure 123. License window By opening the access server, operating the Designated Equipment or downloading the Program(s) electronically, the End User agrees to the conditions in the “End User License Agreement” below.
Access Server Administrators’ Reference Guide 26 • License 2. Title: Title to the Program(s), all copies of the Program(s), all patent rights, copyrights, trade secrets and proprietary information in the Program(s), worldwide, remains with Patton Electronics Company or its licensors. 3. Term: The term of this Agreement is from the Effective Date until title of the Designated Equipment is transferred by End User or unless the license is terminated earlier as defined in “6. Termination:” below. 4.
Appendix A Supported RADIUS Attributes Chapter contents Access-Accept Attributes......................................................................................................................................301 Access-Request Attributes ....................................................................................................................................301 Access-Challenge Attributes.........................................................................................................
Access Server Administrators’ Reference Guide A • Supported RADIUS Attributes Access-Accept Attributes Username 1 Service-Type 6 Framed-Protocol 7 Framed-IP-Address 8 Framed-Netmask 9 Framed-Route 10 Filter-Id 11 Framed-MTU 12 Framed-Compression 13 Login-IP-Host 14 Login-Service 15 Login-Port 16 Reply-Message 18 Callback-Number 19 State 24 Class 25 Session-Timeout 27 Idle-Timeout 28 Termination-Action 29 Port-Limit 62 Primary-DNS(Ascend Compatibility) 135 Secondar
Access Server Administrators’ Reference Guide A • Supported RADIUS Attributes CHAP-Challenge 60 NAS-Port-Type 61 MS-CHAP Challenge MS-CHAP Response MS-CHAP CPW2 MS-CHAP Nt-Enc-Password MS-CHAP Lm-Enc-Password MS-CHAP Challenge MS-CHAP2 Response MS-CHAP2 CPW MS-CHAP Nt-Enc-Password Access-Challenge Attributes State 24 Session-Timeout 27 Idle-Timeout 28 Accounting-Start Attributes Access-Challenge Attributes User-Name 1 NAS-IP-Address 4 NAS-Port 5 Service-Type 6 Framed-Protocol 7 Fram
Access Server Administrators’ Reference Guide A • Supported RADIUS Attributes Accounting-Stop Attributes Accounting-Stop Attributes User-Name 1 NAS-IP-Address 4 NAS-Port 5 Service-Type 6 Framed-Protocol 7 Framed-IP-Address 8 Class 25 Called-Station-Id 30 Calling-Station-Id 31 NAS-Identifier 32 Account-Status-Type 40 Account-Delay-Time 41 Account-Input-Octets 42 Account-Output-Octets 43 Account-Session-Id 44 Account-Authentic 45 Account-Session-Time 46 Account-Input-Pack
Appendix B MIB trees Chapter contents Model 2960 MIB Tree Structure.........................................................................................................................
Access Server Administrators’ Reference Guide B • MIB trees Model 2960 MIB Tree Structure Model 2960 MIB Tree Structure 305
Appendix C Technical Reference Chapter contents Introduction ........................................................................................................................................................307 Configuring a RADIUS server.............................................................................................................................307 What Is RADIUS? ...........................................................................................................................
Access Server Administrators’ Reference Guide C • Technical Reference Introduction This appendix contains the following information: • “Configuring a RADIUS server” on page 307 • “Using SNMP with the Access Server” on page 313 • “Configuring Non-Facility Associated Signaling (NFAS)” on page 316.
Access Server Administrators’ Reference Guide C • Technical Reference A RADIUS client consists of a Network Access Server (NAS)—such as your Patton RAS—which provides one or more remote users with access to network resources. A single RADIUS Server can serve hundreds of RADIUS clients and up to tens of thousand of end users. Fault tolerance and redundancy concerns can be addressed by configuring a RADIUS client to use one or more alternate RADIUS servers.
Access Server Administrators’ Reference Guide C • Technical Reference RADIUS Authentication Procedure The procedure for RADIUS authentication and authorization is outlined in figure 125: Figure 125. RADIUS authentication and authorization procedure 1. User dials into the RAS and establishes a connection. 2. The RAS prompts for user ID and password (PAP) or challenge (CHAP, MS-CHAP V1 and MS-CHAP V2). 3. User responds with user ID and password (PAP) or challenge response (CHAP, MS-CHAP V1 and MSCHAP V2).
Access Server Administrators’ Reference Guide C • Technical Reference RADIUS—Where Can I Get It? RADIUS available for free Microsoft’s RADIUS implementation for WindowsNT is called IAS and comes included with the WindowsNT operating system. Another freeware option is WinRADIUS, available at http://www.itconsult2000.com/en/product/WinRadius.html. A few of the many freeware implementations of RADIUS for UNIX are available on the Internet at the links below: Product URL FreeRADIUS http://www.freeradius.
Access Server Administrators’ Reference Guide C • Technical Reference Intel: RADIUS Overview http://support.intel.com/support/si/library/bi0407.htm Configuring RADIUS This section describes how to configure your Patton RAS for RADIUS authentication and accounting. Overview You may configure your Patton RAS to use RADIUS Athentication, RADIUS Accounting, or both. Before authenticating any users, your Patton RAS must first authenticate with the RADIUS server to validate its identity.
Access Server Administrators’ Reference Guide C • Technical Reference Figure 126. Authentication window 2. On the Authentication page, define values for the parameters as follows: – Validation: Select staticThenRadius(4) or radiusUsers(2). Note We recommend you select staticThenRadius then add a static user to the RAS’s user database. This will provide you an alternate login method so you can still manage your RAS if RADIUS authentication should fail.
Access Server Administrators’ Reference Guide Note C • Technical Reference Depending on how you define NAS-Identifier, Authentication Request packets sent to the RADIUS server will contain the NAS-Identifier attribute or the NAS-IP Address.
Access Server Administrators’ Reference Guide C • Technical Reference Finding the section of the MIB tree in which the SNMP parameter resides Refer to figure 128 on page 315 and look at the Model 2960 MIB tree. There two sections in the tree: • The Internet standards section, identified by the shaded box surrounding it. In this section are MIBs (Management Information Base) that deal with Internet standards such as SNMP, IP, ICMP, Frame-Relay, and Ethernet.
Access Server Administrators’ Reference Guide C • Technical Reference Figure 128.
Access Server Administrators’ Reference Guide C • Technical Reference Configuring Non-Facility Associated Signaling (NFAS) NFAS allows PRIs to be fully utilized by increasing the number of data channels. Now PRIs can have 24 Bchannels for data rather than the traditional 23 B-channels for data and a D-channel for signaling. The telephone company can configure a group of PRIs to share a single D-channel. In that group of PRIs, one PRI will contain a D-channel and 23 B-channels.
Access Server Administrators’ Reference Guide C • Technical Reference Configuring Frame Relay Frame Relay is a high-speed datalink communications technology that is used in hundreds of networks throughout the world to connect LAN, SNA, Internet, and voice applications. Within the network, Frame Relay uses a simple form of packet switching that provides high throughput and reliability. (For more information, refer to the Frame-Relay MIB: 1315 Management Base for Frame Relay DTEs.
Access Server Administrators’ Reference Guide C • Technical Reference The following settings must match the line configuration provided by the local telephone company. For more information on setting up your T1/E1, see the Model 29xx Series RAS User Manual available online at www.patton.com/manuals/29xx.pdf. 4. Click on the Line Type drop-down menu and choose one of the following options: – For a T1 line, select dsx1ESF(2) (Extended SuperFrame DS1) or dsx1D4(3) (A&T D4 format DS1).
Access Server Administrators’ Reference Guide C • Technical Reference Configuring Frame Relay link parameters Click on Frame Relay under the Configuration Menu to display the Frame Relay main window (see figure 70 on page 172). Click on Modify to display the DLMI window. Figure 129. DLMI window Each Frame Relay instance with the access server is known as the data link management interface or DLMI.
Access Server Administrators’ Reference Guide C • Technical Reference Configuring Permanent Virtual Circuits The data link connection identifier (DLCI) provides each PVC with a unique identifier at both the access server and the Frame Relay switch. Within each link (DLMI) there can be multiple permanent virtual circuits (PVC). Each of these PVCs are point-to-point links to remote locations, and define the data path between the access server and the Frame Relay network.
Access Server Administrators’ Reference Guide C • Technical Reference Configuring IP routing with a Frame Relay Link As each properly configured DLCI will have an IP address representing the next hop on that link, the access server can use a Frame Relay link to access many remote networks. The IP address of the Frame Relay link is unnumbered and specifies the next hop to another router. As such, it is a single-host route with a mask of 255.255.255.255.
Access Server Administrators’ Reference Guide C • Technical Reference 2. Type in the Destination network (see figure 132). This number must correspond to the mask specified. (For example, if you wish to forward a C class address you would leave the last octet as 0.) Figure 132. Adding a route 3. Type in the Mask to define the network. This must correspond to the destination network. (For example, if you wish to forward a C-class address you would specify the mask as 255.255.255.0.) 4.
Access Server Administrators’ Reference Guide C • Technical Reference Configuring DNIS DNIS (Dialed Number Identification Service) is a telephone service that identifies for the the receiver of the call the number that the caller dialed. DNIS works by passing the touch-tone digits (dual-tone multi-frequency of MF digits) to the destination where a special facility can read and display them or make them available for use by the terminating device.
Access Server Administrators’ Reference Guide C • Technical Reference 2. If you wish to apply the parameters specified in steps 1 and 2 based on WAN port then enter the appropriate WAN port. Enter 0 if you want to apply the parameters based on number dialed only. 3. Enter the number dialed—this is not optional. Multiple phone numbers can be entered separated by semicolons (;). Note The number dialed in the phone number received by the RAS from the switch.
Access Server Administrators’ Reference Guide C • Technical Reference ping and beginning a new call. It is recommended to leave this value at the default unless directed to change by technical support Configuring the remote end using Microsoft Windows 1. After installing the modem driver, uncheck Wait for dial tone before dialing under the General tab of the modem properties. Figure 136. Modem properties window 2. Uncheck Use dialing rules in the DUN Connection under the General tab. 3.
Access Server Administrators’ Reference Guide C • Technical Reference Figure 137. Leased Line Properties window—General tab 4. Under the Options tab: set Redial attempts to a high number. 5. Set Time between redial attempts to 3. 6. Disable the idle timer 7. Check the box Redial if line is dropped. Figure 138.