iMG/RG Gateway Release 3-7-04 Software Reference Manual Document Issue 1.
ii iMG/RG Software Reference Manual
i. Preface I Introduction I.I Purpose of this manual The Allied Telesis Gateway product set delivers multiple IP-based broadband services to home over high speed, always-on broadband connection. This family of devices enables the delivery of voice, data, and video to customer premises, offering benefits both to service providers and to final users.
III How this Document is Organized This preface provides an overview of the supported devices and the documentation sections that are relevant to these devices. Using this preface, the customer should be able to see where the device fits within the ATI iMG portfolio - and at a high level - how it is different from the other members of the family. This Preface has four main subsections: 1.
IV Allied Telesis Gateway Family Feature Summary IV.I VLAN OPERATION This family of devices supports IEEE 802.1Q tagged VLAN operation across its all switch ports. It therefore offers a powerful combination of wirespeed Layer 2 switching between VLANs as well as high performance Layer 3 routing between VLANs in one highly cost effective unit. IV.
This results in high-quality, high-bandwidth video streaming without affecting Internet surfing or IP telephony on adjacent ports. The gateway also supports IGMP proxying to allow forwarding of multicast packets at Layer 3 with or without NAT. IV.VI MANAGEMENT & CONFIGURATION This family of devices is designed for high volume deployment, this is reflected in the Zero Touch Configuration model, whereby no user intervention is required when installing a unit.
V Gateway Types V.I ADSL Gateways Asymmetric Digital Subscriber Line (ADSL) is used to provide cost-effective, high speed local loop access for Internet and other applications where data flows downstream to end users faster that it does upstream from end users. ADSL provides asymmetric transmission over one pair of copper telephone wires with downstream data transmission rates ranging from 32 Kbps to 26 Mbps with ADSL2+. One single telephone line can be used simultaneously for voice and data transmission.
There is also a subset of this family of devices that support RF Overlay. These are derivations of base models with an “RF” suffix in the model name. This is supported by the addition of a second fiber and an optical module that supports Analog Fiber to RF Conversion. The devices are connected to the WAN via a dual single-mode fibre optical interface: one fibre delivers triple-play services similarly to the iMG613BD, the second fibre receives the video broadcast channels.
V.V Modular Gateways Allied Telesyn Modular Outdoor Gateways offer a full suite of choices to the customer - for both WAN interfaces and for LAN interfaces. This hardened device is designed for ease of installation - and long lasting robust service. It allows the customer to select a Base platform for deployment and management - that can be enhanced as needs evolve. This base platform supports 2 or 4 Voice ports and 6 10/100M TX Ports.
VI Supported Products The following table lists all the Gateway Series devices supported by this software release along with information indication the types of interfaces available.
TABLE i-3 Type Modular iMG/iBG Modela iMG634WA-R2 iMG634WB-R2 Customerb FXS=2, LAN=4 802.11b/g Networkc ADSL2+ (A/ B) 2-5 - 3-5 - 3-6 - iBG910A FXS=4, ISDN=2, LAN=8 FXS=4 or 2, LAN=6, HPNA/T1. FXS=4 or 2, LAN=6, Gig Lan=1, HPNA/T1. ADSL2+(A) - - iBG910A 3-7 iMG634W A-R2 iMG634WB -R2 iBG910A BD, PON - - iMG626 iMG646 iMG626 iMG646 100M-BD, 1000M-BD PON - - - iMG726 iMG746 iMG646MOD iMG626MOD iMG746MOD iMG726MOD a. b. c. d.
VII Functional Groupings Below is a table that lists all the iMG models that are supported in 3-7. They are grouped by distinguishing characteristics - such as hardware resources available on the device. There is also a column which identifies what is unique regarding this grouping.
VIII Documentation Structure In the table below is a high level index of the remainder of the document - along with columns for each of the groupings defined above. Where a section applies to that group of devices, an X is placed in the cell. If it is left blank, then that section does not apply. Minor differences are managed via note sections within the different sections.
TABLE i-5 Main Features and where they apply to Product Type Fiber Chapter Section 10 “LAN Module Management” “ HPNA LAN Module” page 2 “ HPNA Command Reference” page 3 “ CES LAN Module” page 8 “ Circuit Emulation Command Reference” page 9 i-12 iMG/RG Software Reference Manual (Preface) Modular A B C D E ADSL A B C x x x x
IX Reason for Update The following table lists the updates that have occurred for this release, due to hardware, software, and document changes. Note: Document errors have also been corrected where necessary. TABLE i-6 Feature 3-7-03 and Before 3-7-04 Notes QoS functions for iMG devices Present on Ethernet-based devices Includes the: Refer to TABLE i-5 iMG634-A/B iMG634-WA/WB iMG624-A/B iMG624-A R2 iMG634-A/B R2 Split Management Not available Provides Refer to 1.1.2.
TABLE i-6 PPPoE and TCP MSS On the iMG or the PPPoE value S concentrator/RA should be configured to clamp the maximum TCP MSS value. Refer to 8.7.2.5 SIP EPS Configuration Note that each EPS allows a maximum of three calls per line. The number of SIP users and media port limit is clarified. Refer to 6.2.3 IGMP Included is a description of the new IGMP functionality (including also extended IGMP messages flow charts) plus the description of the old IGMP functionality.
Table of Contents i Preface - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - i-1 1 System Configuration - - - - - - - - - - - - - - - - - - - - - - - - - - -1-1 1.1 System Management - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-1 1.1.1 System Configuration - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-1 1.1.1.
1.3.2 Emergency configuration - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-47 1.3.3 Save and activate emergency configuration.- - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-48 1.3.4 -Emergency command reference - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-49 1.3.4.1 Emergency CLI commands - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-49 1.
1.6.4 Configuring notification filters - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-99 1.6.4.1 Creating a notification filter- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-99 1.6.4.2 Associating a filter with a notification parameter - - - - - - - - - - - - - - - - - - 1-101 1.6.5 Configuring source address checking- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-101 1.6.5.
2.3.2 Bridge Functional Description - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2-37 2.3.2.1 Source MAC based forwarding - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2-37 2.3.2.2 Destination MAC based forwarding - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2-37 2.3.2.3 Port based forwarding - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2-38 2.3.2.
4 IPNetwork Functions - - - - - - - - - - - - - - - - - - - - - - - - - - -4-1 4.1 IP - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 4.1.1 Overview - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 4.1.2 IP Interfaces - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 4.1.
4.3.2 Firewall command reference - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 4-106 4.4 Network address translation - NAT- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 4-134 4.4.1 Overview - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 4-134 4.4.2 NAT support on AT-iMG Models - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 4-135 4.4.2.
5.3.1 SNTP features - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 5.3.2 Time zones and daylight savings (summer time) conversion - - - - - - - - - - - - - - - 5.3.3 SNTP command reference - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 5.3.3.
6.2.10 VoIP SIP ALERTINFO command reference- - - - - - - - - - - - - - - - - - - - - - - - - - - 6-57 6.2.10.1 VoIP SIP ALERTINFO CLI commands - - - - - - - - - - - - - - - - - - - - - - - - - 6-57 6.3 VoIP phone ports- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 6-59 6.3.1 Port configuration - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 6-60 6.3.1.
7.1.5 Classifier command reference - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 7.1.5.1 Classifier CLI commands - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 7.1.6 Meter command reference - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 7.1.6.1 Meter CLI commands- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 7.1.6.
8.7.2 PPPoE Functional Overview - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 8-64 8.7.2.1 PPPoE Connections- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 8-64 8.7.2.2 PPPoE connections over ATM - VLAN Unaware - - - - - - - - - - - - - - - - - - - 8-65 8.7.2.3 PPPoE connections - VLAN Aware - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 8-65 8.7.2.
10.1.1 10.1.2 10.1.3 10.1.4 Default Factory Configuration - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 10-1 Adding/Removing & Changing LAN Modules - - - - - - - - - - - - - - - - - - - - - - - - 10-1 Device and Module Compatibility - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 10-1 Functional Differences for LAN Modules Management in Product Categories - - - 10-2 10.
TOC-12 iMG/RG Software Reference Manual (Table of Contents)
List of Tables Table i-1 Active Fiber Gateways - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - i-5 Table i-2 Active Fiber Gateways with RF Overlay - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - i-6 Table i-3 RG/iMG Models - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - i-8 Table i-4 iMG Models Supported in 3-7 - - - - - - - - -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 6-25 Table 6-5 VoIP SIP Location Server CLI Commands - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 6-38 Table 6-6 Commands for VoIP Proxy Server - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 6-4
List of Figures Figure 1-1 4 MByte Flash Memory partitions - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-6 Figure 1-2 8 MByte Flash Memory partition - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-8 Figure 1-3 Configuration files backup process - example - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-11 Figure 1-4 The Windows™ Loader - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 1-58 Figure 1-5 The
Figure 6-4 VoIP subsystem configuration - basic steps - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 6-61 Figure 7-1 Gateway Architecture - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 7-2 Figure 7-2 Metering for Traffic Control - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 7-8 Figure 7-3 Overview of Scheduler Functionality - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 7-10 Figure 7-4 Scheduling P
System Configuration System Management 1. System Configuration 1.1 System Management This section provides information regarding access to the gateway, the login process, command line interface (CLI) and the different types of user access. 1.1.1 System Configuration 1.1.1.1 Access to the Gateway The gateway can be configured in different ways,either through the CLI or using the web interface. The CLI is accessible through the serial interface, Telnet, or an SSH connection.
System Management System Configuration The default “factory” configuration has the DHCP client enabled on all interfaces, including xDSL in the xDSLbased modem with a bridged RFC1483 over PVC 0.35. The IP management interface is set dynamically at startup. It is possible to connect remotely to the gateway using Telnet of SS4 once an IP address has been assigned to the gateway. In order to access the gateway, the user is required to enter a username and password.
Command Line Interface and Console System Management • Login: manager • Password: friend • To install a custom minimal configuration on the gateway see the section related to the software update module. 1.1.2 Command Line Interface and Console On the gateway two types of consoles are available: • Standard CLI (Command Line Interface): this is used to configure and manage the system. It provides full access to the system modules included in this manual.
System Management Command Line Interface and Console access level mayConfigure Allowed CLI operations superuser disabled No access to CLI superuser enabled Full CLI commands access (read and write operations) To create new user accounts, use the SYSTEM ADD USER or SYSTEM ADD LOGIN commands. The accounts created by these commands default to low privileges. To change user privileges, use the SYSTEM SET USER ACCESS or SYSTEM SET LOGIN ACCESS commands.
File system System Management access level engineer/ superuser mayConfigureWeb enabled Allowed CLI operations Status pages, Statistics, Wireless settings (basic & advanced), Security (NAT and Firewall) Settings DHCP server settings Routing configuration User password change Firmware Upgrade Configuration saving 1.1.2.3 Split management Split management is part of the NMS provisioning framework.
System Management File system The software running on the gateway is a multi thread application where each task typically needs to load configuration information when it starts, and store configuration changes for future use. To support the above requirements, two dedicated file systems are provided. These are called the In Store File System and the Flash File System. The two file systems provide a standard file interface to application processes.
File system System Management start the main application code because, if for example the main partition has been corrupted by a system power-off during software upgrade. Services available in the Recovery Application Code are a subset of those available in the Main Application Code: for example VoIP modules, SSH and SNMP access are not available. Note: Recovery Application Code uses the same configuration file as the Main Application Code.
System Management File system Configuration Partition 1 (256 KByte) Configuration Partition 2 (128 KByte) Main Partition (3200 KByte) Recovery Partition (768 KByte) Boot Partition (128 KByte) FIGURE 1-2 8 MByte Flash Memory partition 1.1.3.3 Boot partition The Boot ROM program resides in a special partition (the Boot Partition) on the flash device. This is the first code that runs when the system is booted and provides self-test code as well as the ability to load the main run-time images.
Configuration Management Note: System Management Recovery Application Code uses the same configuration file used by Main Application Code. Configuration parameters for modules not available on Recovery Application Code are simply ignored when the CPE runs in recovery mode. 1.1.3.
System Management Configuration Management N ImGwaSips ImGwaSips N ImGwaSip ImGwaSips.gwa A ControlProtocol SIP A Enable true A Authentication proxy A DefaultPort 5060 A KeepAlive disabled A KeepAlive_Time 300 A NAT none A NetInterface ip0 A RTT 500 A SE 1800 A Support none A TimerB 32 To create a configuration that stores the current running system configuration, simply use the system config create command.
Configuration Management System Management Figure 1-3 details the backup process executed when a configuration file is created and set as bootstrap configuration. Phase A Phase B FIGURE 1-3 1st Configuration Partition (256 KByte) (active) im.conf, cm.boot, version (10) 2nd Configuration Partition (256 KByte) (back-up) im.conf, cm.boot, version (9) > system config create boot2 1st Configuration Partition (256 KByte) (back-up) im.conf, cm.
System Management System command reference Following the example in Figure 1-4; when the configuration file “boot2” is set to be the bootstrap configuration file via the system config set command (phase B), the backup process first copies the content of the active configuration partition (now the second partition) to the backup configuration partition (the first partition). It then updates the im.
System command reference TABLE 1-1 System Management System Commands Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C SYSTEM ADD USER X X X X X X X X X SYSTEM ADD LOGIN X X X X X X X X X SYSTEM CONFIG CREATE X X X X X X X X X SYSTEM CONFIG DELETE X X X X X X X X X SYSTEM CONFIG GET X X X X X X X X X SYSTEM CONFIG HELP X X X X X X X X X SYSTEM CONFIG LIST X X X X X X X X X SYSTEM CONFIG PUT X X X X X X
System Management System command reference Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C SYSTEM NAME X X X X X X X X X --> system name AT-iMG616BD-Routed X X X X X X X X X SYSTEM LOCATION X X X X X X X X X SYSTEM RESTART X X X X X X X X X SYSTEM SET LOGIN ACCESS X X X X X X X X X SYSTEM SET LOGIN MAYCONFIGURE X X X X X X X X X SYSTEM SET LOGIN MAYCONFIGUREWEB X X X X X X X X X SYSTEM SET LOGIN MAYDIALIN
System command reference Options System Management The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value NAME A unique user name made up of more than one character that identifies an individual user and lets the user access the system. N/A COMMENT An optional comment about the user that is displayed when you type the commands SYSTEM LIST USERS and SYSTEM LIST LOGINS.
System Management System command reference Option Description Default Value NAME A unique login name made up of more than one character that identifies an individual user and lets the user access the system. N/A COMMENT An optional comment about the user that is displayed when you type the commands SYSTEM LIST USERS and SYSTEM LIST LOGINS. Blank (No comment added) Example --> system add login ckearns "temporary contractor" See also SYSTEM DELETE LOGIN SYSTEM LIST LOGINS 1.1.5.1.
System command reference System Management SYSTEM CONFIG SET SYSTEM CONFIG SHOW 1.1.5.1.4 SYSTEM CONFIG DELETE Syntax SYSTEM CONFIG DELETE Description This command deletes the configuration file named from the flash. It’s not possible delete a configuration file that has been set as bootstrap configuration file. In this case it’s necessary change the bootstrap configuration file (for example setting it to none) before deleting it.
System Management System command reference device can be present a maximum of two configuration files (factory + two more configuration files). The address of the remote file to be downloaded is expressed accordingly to the following url syntax depending by the protocol used for the remote connection: ftp or tftp.
System command reference System Management The following command retrieves a configuration file named myconf.cfg from the TFTP server tftp.atkk.com root directory: -->system config get tftp://tftp.atkk.com/myconf.cfg The following command retrieves the configuration file named my.cfg from the FTP server ftp.atkk.it. User “manager” and password “friend” are used to log on the FTP server: --> system config get ftp://manager:friend@ftp.atkk.it/ my.
System Management System command reference 1.1.5.1.8 SYSTEM CONFIG PUT Syntax SYSTEM CONFIG PUT Description This command store a configuration file on a remote TFTP server. filename is the name of the local file url is the address of the remote server accordingly to the following url syntax. tftp://host[:port]/path/filename Where: Options • host is the address of the TFTP server. Can be used expressed as hostname or IPv4 address.
System command reference Description System Management This command tries to restore the configuration to factory without the need to reboot the units. 1.1.5.1.10 SYSTEM CONFIG SET Syntax SYSTEM CONFIG SET { | factory | none } Description This command set one of the existing configuration files as bootstrap configuration file. If factory is selected, the gateway is set to the default factory configuration (see Section 1.1.1.2).
System Management System command reference 1.1.5.1.11 SYSTEM CONFIG SHOW Syntax SYSTEM CONFIG SHOW [ ] Description This command returns the name of the bootstrap configuration file. If filename is specified the command displays the contents of the configuration file. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
System command reference System Management Description This command deletes a user that has been added to the system using the SYSTEM ADD USER command or the SYSTEM ADD LOGIN command. Only a Super user can use this command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option NAME Description The name of an existing user.
System Management System command reference Description This command displays copyright information about the software that you are using. Example --> system legal (C) Copyright 2009 Allied Telesis Holdings K.K. - All rights reserved. 1.1.5.1.17 SYSTEM LIST ERRORS Syntax SYSTEM LIST ERRORS Description This command displays a system error log.
System command reference Example --> system list openfiles bun qid console console console See also System Management devuse 0000004b 00000027 00000003 appuse 00000000 00000000 00000000 colour 00400000 00400000 00400000 flags 3 5 5 lasterrno 0 0 0 SYSTEM LOG ENABLE|DISABLE 1.1.5.1.19 SYSTEM LIST USERS Syntax SYSTEM LIST USERS Description This command displays a list of users and logins added to the system using the SYSTEM ADD USER and SYSTEM ADD LOGIN commands.
System Management Description System command reference This command displays a list of logins and users added to the system using the SYSTEM ADD LOGIN and SYSTEM ADD USER commands. The same information is displayed by the SYSTEM LIST USERS command.
System command reference System Management Option Description Default Value NOTHING No extra output is displayed. N/A WARNINGS Non-fatal errors are displayed. N/A INFO Certain program messages are displayed. Also displays the values for the warnings option. N/A TRACE Detailed trace output is displayed. Also displays the values for info and warnings options. N/A ENTRYEXIT A message is displayed every time a function call is entered or left.
System Management System command reference The RIP and IP modules provide separate categories that are enabled and disabled independently. For example, if you enable IP RAWIP, it does not affect IP UDP, and so on. To display a list of modules and categories and their enable/disable status, see SYSTEM LOG LIST. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
System command reference ip ip ip ip ip ip ip ip isdn isdn isdn isdn isdn isdn isdn isdn isdn isdn rip rip rip snmp sshd sshd sshd sshd sshd sshd sshd sshd upload upload upload voip voip voip voip voip voip voip voip voip voip config icmp l2cyan rawip socket tcp udperr udp aft aftbg aux00 iapi indtol4 isdnmod msgh msgnisdn ss statin errors rx tx packet fatal error info verbose debug debug1 debug2 debug3 info preserve get aep ca dep gwadrv mep mgcp-event mgcp-msg mgcp-trace mod sep System Management (dis
System Management voip voip voip webserver webserver Example voip voip voip voip voip voip voip voip voip voip voip voip voip See also System command reference sip-event sip-msg sip-trace access file (disabled) (disabled) (disabled) (disabled) (disabled) --> system log list voip aep ca dep gwadrv mep mgcp-event mgcp-msg mgcp-trace mod sep sip-event sip-msg sip-trace (disabled) (disabled) (disabled) (disabled) (disabled) (disabled) (disabled) (disabled) (disabled) (disabled) (disabled) (disabled) (disab
System command reference System Management Description This command sets the system contact reported by system info command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option SYS-CONTACT Example Description Usually a reference to some contacts. Default Value none --> system contact admin@his_desk 1.1.5.1.
System Management System command reference Option Description Default Value NAME The name of an existing user. N/A DEFAULT/ ENGINEER/ SUPERUSER Access permissions for a user. Default Example --> system set login ckearns access engineer See also SYSTEM SET LOGIN MAYCONFIGURE SYSTEM SET LOGIN MAYDIALIN For more information on the types of user access permissions, see Section 1.1.2.1. 1.1.5.1.
System command reference System Management Description This command sets configuration permissions for a user who has been added to the system using the SYSTEM ADD LOGIN or the SYSTEM ADD USER command. Only a Super user can use this command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value NAME The name of an existing user.
System Management System command reference 1.1.5.1.33 SYSTEM SET USER ACCESS Syntax SYSTEM SET USER ACCESS {DEFAULT|ENGINEER|SUPERUSER} Description This command sets the access permissions of a user who has been added to the system using the SYSTEM ADD USER command. Only a Super user can use this command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
System command reference System Management 1.1.5.1.35 SYSTEM SET USER MAYDIALIN Syntax SYSTEM SET USER MAYDIALIN {ENABLED|DISABLED} Description This command sets dial in permissions for a user who has been added to the system using the SYSTEM ADD USER command. Only a Super user can use this command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Webserver Introduction 1.2 Webserver 1.2.1 Introduction The gateway also offers an alternative management interface to the one depicted in the sections above, and the process in charge of managing this access (parsing CLI commands and remote management using Telnet, SSH and SNMP) is the webserver.
Web pages • • • • Webserver Recovery Application code version System Name, Location and Contact Routing and ARP table Wireless stations 1.2.2.2 Configuration page The Configuration page is used to access Wireless and DHCP Server configuration parameters. On the Wireless configuration pages it’s possible to specify both Basic and Advanced parameters.
Webserver Webserver command reference • Configuration save • Users password settings • System date and time setting 1.2.3 Webserver command reference This section describes the commands available on the gateway to configure and manage the webserver module. 1.2.3.
Webserver command reference TABLE 1-2 Webserver Webserver Commands Provided by the CLI Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C WEBSERVER ENABLE/DISABLE X X X X X X X X X WEBSERVER ADD MANAGEMENTSUBNET X X X X X X X X X WEBSERVER LIST MANAGEMENTSUBNETS X X X X X X X X X WEBSERVER CLEAR MANAGEMENTSUBNET X X X X X X X X X WEBSERVER DELETE MANAGEMENTSUBNET X X X X X X X X X WEBSERVER CLEAR STATS X X X X X X X X X
Webserver Webserver command reference Option Example Description ENABLE Enables the Web Server process. DISABLE Disables the Web Server process. Default Value enable --> webserver disable WebServer is disabled See also WEBSERVER SHOW INFO 1.2.3.1.2 WEBSERVER ADD MANAGEMENTSUBNET Syntax WEBSERVER ADD MANAGEMENTSUBNET Description This command restricts the telnet access to the gateway only on the specified IP addresses.
Webserver command reference Description This command delete all the active management subnets Example --> webserver clear managementsubnet See also WEBSERVER LIST MANAGEMENTSUBNET Webserver 1.2.3.1.5 WEBSERVER DELETE MANAGEMENTSUBNET Syntax WEBSERVER DELETE MANAGEMENTSUBNET Description This command delete a specific management subnet Example --> webserver delete managementsubnet fortelent See also WEBSERVER LIST MANAGEMENTSUBNET 1.2.3.1.
Webserver Webserver command reference tors the interface. The IGD can handle changes to the interface definition (for example, if the IP address changes through a DHCP update, the IGD will use the newly assigned address) This command has been superseded by webserver add managementsubnets command that extends configuration flexibility. Example --> webserver set interface ip0 See also WEBSERVER ADD MANAGEMENTSUBNETS 1.2.3.1.
Webserver command reference Example Webserver --> webserver set port 1080 1.2.3.1.11 WEBSERVER SET TELNETPORT Syntax WEBSERVER SET TELNETPORT Description This command sets the telnet port number that the Web Server process will use to answer telent connection requests. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Webserver Webserver command reference Option SECCLASSES Description Supported secclasses values are as follows: Default Value all all- allows access to the HTTP AppService via all existing security interfaces none- prevents access to the HTTP AppService via any existing security interface internal- allows access to the HTTP AppService via the existing internal security interface external- allows access to the HTTP AppService via the existing external security interface dmz - allows access to the HTTP
Webserver command reference Webserver Option SECCLASSES Description all- allows access to the Telnet AppService via all existing security interfaces Default Value all none- prevents access to the Telnet AppService via any existing security interface internal- allows access to the Telnet AppService via the existing internal security interface external- allows access to the Telnet AppService via the existing external security interface dmz - allows access to the Telnet AppService via the existing dmz s
Webserver Webserver command reference • Permitted HTTP Security Classes • Permitted UPnP Security Classes • Permitted Telnet security Classes • Management IP address 1.2.3.1.15 WEBSERVER SHOW STATS Syntax WEBSERVER SHOW STATS Description This command tells you how many bytes have been transmitted and received by the Web Server. Bytes transmitted: bytes sent by the webserver. Bytes received: bytes received by the webserver.
Introduction Emergency mean alloc chunk: Mean of the allocated chunk to variable or fixed memory pool. max free chunk: Maximum free chunk available in variable or fixed memory pool. Example --> webserver show memory Variable allocation pool: total pool size139968 free57840 allocated82128 mean alloc chunk82 max free chunk55088 Buffer pool: total pool size25568 free 24480 allocated 1088 mean alloc chunk217 max free chunk 24464 See also WEBSERVER SHOW INFO 1.
Emergency Save and activate emergency configuration. When Ethernet connection is used, the intelligent Multiservice Gateway Ethernet ports are set to belong to the default vlan as untagged port. When running in recovery mode, there is no support to tagged VLANs on the Ethernet interfaces. When ADSL connection is used, the intelligent Multiservice Gateway tries to connect to the remote NOC via an RFC1483 LLC/SNAP Bridged connection type with VPI/VCI = 0/35 without any tagging scheme.
Emergency command reference Emergency Optione2prom recovery config. data Î bootstrap file recovery config. data Ð NOT AVAILABLE AVAILABLE 1.3.4 NOT AVAILABLE AVAILABLE If the system restarts in recovery mode, the recovery application will then use the default configuration data coded within the recovery application.
Emergency Emergency command reference TABLE 1-3 Emergency CLI Commands Fiber A Option Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C EMERGENCY ADD EMERGENCY CREATE EMERGENCY DELETE EMERGENCY SET DHCP EMERGENCY SET IPINTERFACE GATEWAY EMERGENCY SET IPINTERFACE IPADDRESS EMERGENCY SHOW EMERGENCY UPDATE 1.3.4.1.1 EMERGENCY ADD Syntax EMERGENCY ADD VLAN PORT FRAME TAGGED Description This command adds and tags an Ethernet port to the specified vlan.
Emergency command reference Emergency 1.3.4.1.2 EMERGENCY CREATE Syntax EMERGENCY CREATE LAN Description This command defines a new vlan on which will be attached the ip interface used to reach the system when running in recovery mode. Creating a new vlan requires also the definition of which Ethernet port must be tagged for this vlan. To add an Ethernet port to the new vlan, use the EMERGENCY ADD command.
Emergency Emergency command reference Option port_name Description The name of an Ethernet port. Available values are: lan1, lan2, lan3 and lan4. To display the current tagged port configured in the emergency module, use the EMERGENCY SHOW command. Default Value N/A Option Description Default Value Example emergency delete vlan 2 port lan4 emergency delete vlan 2 See also EMERGENCY ADD EMERGENCY SHOW EMERGENCY UPDATE 1.3.4.1.
Emergency command reference Emergency 1.3.4.1.5 EMERGENCY SET IPINTERFACE GATEWAY Syntax Syntax EMERGENCY SET IPINTERFACE GATEWAY Description This command sets the default gateway ip address to be used when the system runs in recovery mode. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option ip_address Description The default gateway ipaddress in IPv4 format (e.g. 192.168.1.
Software update See also Emergency command reference EMERGENCY SET IPINTERFACE GATEWAY EMERGENCY SHOW EMERGENCY UPDATE 1.3.4.1.7 EMERGENCY SHOW Syntax EMERGENCY SHOW Description This command displays the current emergency configuration settings. These settings are not active until the EMERGENCY UPDATE command is entered or the Residential Gateway configuration is saved and then the system is restarted. Example emergency show EMERGENCY CONFIGURATION - GENERAL PARAMETERS device ip address: 192.168.1.
Emergency command reference Software update • SwUpdate module, available both on Main Application code and Recovery Application Code designed to update the Main Application code or the Recovery Application code and to upload any configuration file Product Name Loader SwUpdate Web Interface AT-RG613 Loader_RG600E_x-y_z.exe rg600E-x-y_z.zip N/A AT-iMG616 Loader_IMG616E_x-y_z.exe iMG616E-x-y_z.zip N/A AT-iMG634A N/A iMG634A-x-y_z.zip iMG634A-main-x-y_z.bin N/A iMG634B-x-y_z.
Software update Emergency command reference • Recovery Application Software Naming Convention table Product Name Loader SwUpdate Web Interface AT-RG613 RecLoader_RG600_ab_c.exe rg6xx-rec-a-b_c.zip N/A AT-iMG616 RecLoader_IMG616E_ab_c.exe iMG616E-rec-a-b_c.zip N/A AT-iMG634A N/A iMG634A-rec-a-b_c.zip iMG634A-recovery-a-b_c.bin N/A iMG634B-rec-a-b_c.zip iMG634B-recovery-a-b_c.bin AT-iMG624A N/A iMG624A-rec-a-b_c.zip iMG624A-recovery-a-b_c.bin AT-iMG624B N/A iMG624B-rec-a-b_c.
Windows™ Loader Software update • FLASH image Naming Convention table Product Name Flash Image AT-RG613 rg600E-image-2-2_y-3-7_x.bin AT-iMG616 iMG616E-image-2-2_y-3-7_x.bin AT-iMG634A iMG634A-image-3-7_x.bin AT-iMG634WA AT-iMG634B iMG634B-image-3-7_x.bin AT-iMG634WB AT-iMG624A iMG624A-image-3-7_x.bin AT-iMG624B iMG624B-image-3-7_x.bin AT-iMG634A-R2 iMG634A-R2-image-3-7_x.bin AT-iMG634WA-R2 AT-iMG634B-R2 iMG634B-R2-image-3-7_x.bin AT-iMG634WB-R2 AT-iMG624A-R2 iMG624A-R2-image-3-7_x.
Software update Upgrade via Web Interface The loader uses the TFTP services provided by the gateway to download on the unit the application file plus all other support files avoiding the user to download each file separately. The loader can be used to upgrade an existing software version or can be used to download a new complete software release if the gateway is running in recovery mode.
Upgrade via Web Interface Software update • iMG634xxx-recovery-x-y_z.bin to load the Recovery Application code. • After the file has been selected, the software will be uploaded and written on the device. A progress bar will be displayed on the web interface. When the process is finished the web interface will display a “Restart” button. Click it to restart the device and run the loaded software version.
Software update SwUpdate module FIGURE 1-6 The Web Interface Firmware Update page 1.4.3 SwUpdate module SwUpdate module is a basic FTP/TFTP client module running on the gateway that contacts periodically a predefined FTP/TFTP server and retrieves from it the required software or support files.
SwUpdate module Software update In order to distinguish the correct DHCP Offer (in case more than one DHCP server is present in the network), the gateway will consider only DHCP Offers that include the option 60 (‘dhcp-class-identifier’) with one of the following possible values depending on the product code: Product code Legacy RG Product code Ethernet Uplink Product code ADSL Uplink Product code Outdoor and Business AT-RG613 AT-iMG606TX AT-iMG624A AT-iMG646MOD AT-RG623 AT-iMG606BD AT-iMG624B
Software update SwUpdate module Residential Gateway DNS Server FTP Server NULL Unit Bootstrap DNS Lookup: Retrieve FTP list file: MD5SUM FTP fileS: image, derivedata.dat, im.conf, ... Unit Restart FIGURE 1-7 Normal SwUpdate operation mode In order to inform the SwUpdate module about which files it must download from the FTP/TFTP server, a special file named MD5SUM must be created on the FTP/TFTP server.
SwUpdate module Software update d99f017e2652516d9146dd14f787f16e 7e722ffb74af07265b3e22d51496d1c3 d90657f8851b761d8336fbd0b34156df ec6fc5ddc6adaa1e7943ce463de283c3 iMG616BD-recovery-4-4_25.bin iMG616BD-main-3-7-01_26.bin snmpd.cnf.orig snmpinit The above procedure is valid both for upgrade the Main Application code, the Recovery Application code and any configuration file requested by the CPE. The swupdate module is able to detect based on the file type, on which flash partition the file will be stored.
Software update SwUpdate module It then connects to the FTP/TFTP server and retrieves a file named MD5SUM from the directory defined by the path parameter (and eventually by the MAC parameter). This file contains a list of all files available on the server, with the corresponding MD5 value that the SwUpdate module must retrieve from the FTP server. It compares the MD5SUM file downloaded from the server with the local MD5 file calculated on the current flash file system.
SwUpdate module Software update Start Time 0 0, 6, 12 x x x Stop Time 0 minute minute hours hours day-of-month day-of-month month month day-of-week day-of-week 00:00 06:00 04:00 4, 10, 16 12:00 10:00 x x x 00:00 16:00 Monday Thursday 00:00 06:00 Fall Fall Fall Fall 04:00 random (15 secs - Retry-Period) FIGURE 1-8 SwUpdate scheduling example 1 Figure 1-8 above shows a schedule example where the SwUpdate is started every day of the week at hours 0, 6, 12 and is stopped aft
Software update SwUpdate module Start Time 0 0, 6, 12 x x x Stop Time 0 minute minute hours hours day-of-month day-of-month month month day-of-week day-of-week 00:00 06:00 4, 10, 16 12:00 10:00 x x x 00:00 16:00 20:00 Monday Thursday 00:00 06:00 Fall Fall Fall Fall Fall Fall random (15 secs - Retry-Period) FIGURE 1-9 SwUpdate scheduling example 2 1.4.3.
SwUpdate module Software update By default SwUpdate module is set to work in TFTP mode trying to get all the TFTP server parameters from the DHCP parameters list option passed by the external DHCP server When working in TFTP mode, the gateway requires that the IP interface connected to the swupdate network is set dynamically. Swupdate will use the feature of the dhcpclient to request the DHCP option 66 (“tftp-filename”) and the DHCP option 60 (dhcp-class-identifier).
Software update SwUpdate command reference This feature is useful when network administrators need to create specific configuration for each residential gateway. To enable this feature a special flag named MAC can be used.
SwUpdate command reference TABLE 1-4 Software update SwUpdate Commands Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C SWUPDATE MAC X X X X X X X X X SWUPDATE SET LOGIN X X X X X X X X X SWUPDATE SET PASSWORD X X X X X X X X X SWUPDATE SET PATH X X X X X X X X X SWUPDATE SET RETRY PERIOD X X X X X X X X X SWUPDATE SET SERVER X X X X X X X X X SWUPDATE SHOW X X X X X X X X X SWUPDATE START X X X X X X
Software update SwUpdate command reference Option DISABLED Description Default Value Disable the use of MAC address as qualifier for the working directory. Example --> swupdate mac enable See also SWUPDATE SET PATH SWUPDATE SHOW 1.4.4.1.2 SWUPDATE SET LOGIN Syntax SWUPDATE SET LOGIN < login> Description This command set the login name used when SwUpdate connects to an FTP server.
SwUpdate command reference See also Software update SWUPDATE SET LOGIN SWUPDATE SHOW 1.4.4.1.4 SWUPDATE SET PATH Syntax SWUPDATE SET PATH Description This command set the path used when SwUpdate navigate into the FTP server. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option PATH Description The path used when SwUpdate navigate into the FTP server. ‘none’ means no path is used.
Software update SwUpdate command reference 1.4.4.1.6 SWUPDATE SET SERVER Syntax SWUPDATE SET SERVER Description This command set the server address to which SwUpdate tries to connect. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option SERVER_ADDRESS Description The hostname or IPv4 address of the ftp server. Host can be a maximum of 256 chars long (when using hostname format).
SwUpdate command reference Software update 1.4.4.1.8 SWUPDATE START Syntax SWUPDATE START Description This command forces the software update to start immediately and remain active until the next stop command is sent or the download is executed successfully. Example --> swupdate start See also SWUPDATE STOP 1.4.4.1.
ZTC SwUpdate command reference See also SWUPDATE START 1.4.4.1.11 SWUPDATE STOP TIME Syntax SWUPDATE STOP TIME {NONE | MINUTE HOUR DAY-OF-MONTH MONTH DAY-OF-WEEK } Description This command set the scheduled stop time. See the relative section about the syntax used for the stop time. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Functional blocks ZTC 1.5.1 Functional blocks The ZTC is a component-based application, which consists of different logical blocks that can be distributed on independent runtime environments or machines (see Figure 1-10). WEB Browser WEB Interface HTTP ZTC Server RMI LDAP Database LDAP Residential Gateway TFTP FIGURE 1-10 TFTP Server ZTC network architecture 1.5.1.
ZTC ZTC Client • The ZTC Embedded Client. This client is installed on the devices to communicate with the ZTC Server. Typically, the devices connect to ZTC Server to perform the following operations: • Communicate their actual configuration to ZTC Server • Download, if existing, new configurations from ZTC Server The components of ZTC are independent, and they can run on different machines and platforms, in a threetiered architecture fashion. The core of the application is the ZTC Server.
ZTC Client ZTC Similarly to the static configuration, ZTCCLIENT ENABLE DYNAMIC LISTENINTERFACE command turns on the ztcclient module forcing the module to query the server to retrieve the unit configuration file. Note: ZTC client can be enabled dynamically only if the IP interface where it is bind, it's a dynamic IP interface. Attempting to enable ZTC client module dynamically on a static IP interface results is an error. 1.5.2.
ZTC ZTC Client Residential Gateway DHCP Server ZTC Server LDAP Database NULL Unit Bootstrap Setup Dyn Interface Start ZTC Client Run New Configuration Start ZTC Timeout ZTC Idle FIGURE 1-11 Pull-at-Startup ZTC phase 1.5.2.3 Scheduled-pull Figure 1-11 shows the Scheduled-pull phase executed by the ZTC client module when the ztcclient polling timeout expires.
ZTC Client ZTC The ZTC Client contacts the ZTC Server, passing in the parameters list the Residential gateway MAC address, the application filename and the hash key derived from the current running configuration. This information defines the actual state of the device. The ZTC Server checks whether there is a configuration for the gateway looking for the device MAC address into the LDAP server, and if necessary, it returns the configuration file to the device.
ZTC ZTC Client Residential Gateway ZTC Server LDAP Database ZTC Idle ZTC Timeout Expires Start ZTC Client Compare Client Config with LDAP Config Abort TFTP Yes Is it the same? No Unit Restart Start ZTC Client Run New Configuration Start ZTC Timeout ZTC Idle FIGURE 1-12 1-80 Scheduled-pull ZTC phase iMG/RG Software Reference Manual (System Configuration)
ZTC command reference ZTC 1.5.3 ZTC command reference This section describes the commands available on the gateways to configure and manage the ZTC Client module. 1.5.3.
ZTC ZTC command reference Option IPINTERFACE Description The name of an existing IP interface.To see the list of existing interfaces, use the IP LIST INTERFACE command. Default Value N/A Example --> ztcclient enable dynamic listeninterface ip0 See also ZTCCLIENT DISABLE 1.5.3.1.2 ZTCCLIENT ENABLE STATIC Syntax ZTCCLIENT ENABLE STATIC ZTCSERVERADDR Description This command enables the ztcclient, and set the ZTC Server IP address.
ZTC command reference ZTC 1.5.3.1.4 ZTCCLIENT SHOW Syntax ZTCCLIENT SHOW Description This command shows the ZTC Client configuration parameters. Example The following example shows the ZTC client parameters when a dynamic configuration is set. ZTC CLIENT CONFIGURATION - GENERAL PARAMETERS enabled: false dynamic: true configuration timeout: 60 seconds server address in use: 192.168.1.10 - DYNAMIC CONFIGURATION interface: ip0 - STATIC CONFIGURATION server address for static configuration: 0.0.0.0 1.
SNMP ZTC command reference Description This command changes the value of the pollingtimeout, which is the polling time interval used by the ztcclient when it attempts the first synchronization. After the gateway is synchronized, the ztc client switches to the configtimeout polling time to check if new configurations are available on the ZTC server. The timer is used to force a fast synchronization without generate high network traffic when the gateway is already configured.
ZTC command reference SNMP • a component of an SNMP entity that determines the function of the entity. Applications include a command generator, command responder, notification originator, notification receiver, proxy forwarder, etc. The SNMP entity that is commonly called a MANAGER is an engine plus a command generator application and a notification receiver application.
SNMP SNMP configuration within the SNMPv3 adminis- 1.6.1 SNMP configuration within the SNMPv3 administration framework The SNMPv3 Administration Framework is a configuration infrastructure for SNMPv3 users, but it can also be used to remotely configure and administer SNMPv1 and SNMPv2c community strings.
SNMP configuration within the SNMPv3 administration framework SNMP • The shared secret key, which has been xored with the hexadecimal value ‘5C ’(opad), • The intermediate digest to produce the final digest. The HMAC function is summarized by the following expression: ⊗ ⊗ FIGURE 1-15 hmac expression HMAC is used in the following manner to protect against threats to management operations: • The sender and intended recipient of the SNMPv3 message share a secret key.
SNMP SNMP configuration within the SNMPv3 adminis- When an SNMP agent receives a message, it verifies that the received message is timely by comparing the time value inside the packet with the current time. If the time value from the packet is within a “safe”window of the actual current time, the packet is accepted.
SNMP configuration within the SNMPv3 administration framework SNMP usmUserEngineID is an OctetString which is the authoritative SNMP engine’s administratively-unique identifier. For a detailed explanation of snmpEngineID, refer to the next section. For Get, GetNext, GetBulk, and Set requests, the SNMP entity containing the command responder application is authoritative. Therefore, the value of the usmUserEngineID field of the usmUserEntry in the agent ’s configuration file will be localSnmpID.
SNMP SNMP configuration within the SNMPv3 adminis- 1.6.1.5.2 Breakdown of an snmpEngineID An snmpEngineID is a globally unique identifier for an SNMP entity. All SNMPv3 entities must possess an snmpEngineID. The snmpEngineID of an SNMP agent can be retrieved by sending a Get request to the agent for the MIB object snmpEngineID. The following snmpEngineID are registered for Allied gateways models: Model 1-90 OID Model OID AT-RG613 1.3.6.1.4.1.207.1.17.1 AT-iMG634B 1.3.6.1.4.1.207.1.17.
SNMP configuration within the SNMPv3 administration framework Model OID SNMP Model OID AT-iMG606TX 1.3.6.1.4.1.207.1.17.31 AT-iMG616TXW 1.3.6.1.4.1.207.1.17.76 AT-iMG606BD 1.3.6.1.4.1.207.1.17.32 AT-iMG616LHW 1.3.6.1.4.1.207.1.17.77 AT-iMG606LH 1.3.6.1.4.1.207.1.17.33 AT-iMG616BD-R2 1.3.6.1.4.1.207.1.17.78 AT-iMG606SH 1.3.6.1.4.1.207.1.17.34 AT-iMG616LH-R2 1.3.6.1.4.1.207.1.17.79 AT-iMG646BD-ON 1.3.6.1.4.1.207.1.17.35 AT-iMG606W 1.3.6.1.4.1.207.1.17.80 AT-iMG646PX-ON 1.3.6.1.4.1.
SNMP Additional configuration for SNMPv3 agent enti- request message from this user (originating from another SNMP entity) can be received if the message was sent using no security or using MD5 authentication. The SNMP agent can send Trap messages to this user using no security or using MD5 authentication. usmUserEntry localSnmpID myV3AuthNoPrivUser usmHMACMD5AuthProtocol usmNoPrivProtocol nonVolatile whereValidRequestsOriginate myV3UserAuthPassword 1.6.1.5.
Additional configuration for SNMPv3 agent entities SNMP vacmViewTreeFamilyViewName is a human readable string representing the name of this family of view subtrees. vacmViewTreeFamilySubtree is an OBJECT IDENTIFIER that identifies a subtree of the MIB; e.g. enterprises.207. This value and vacmViewTreeFamilyMask are used to determine if an OBJECT IDENTIFIER is in this family of view subtrees. vacmViewTreeFamilyMask is an OctetString represented as a sequence of hexadecimal numbers separated by colons.
SNMP Additional configuration for SNMPv3 agent enti- OID vacmViewTreeFamilyMask 1 . 3 . 6 . 1 . 2 . 1 . 2 . 2 . 1 . 0 . 2 1 1 1 1 1 1 1 1 1 0 1 FIGURE 1-16 vacmViewTreeFamilyMask would require an exact match on all fields except the table column (i.e., the 0 in ifEntry.0.2).
Additional configuration for SNMPv3 agent entities SNMP vacmAccessSecurityLevel is noAuthNoPriv for no authentication and no privacy, and authNoPriv is for MD5 authentication with no privacy. vacmAccessContextMatch is exact or prefix to indicate how the context of a request must match vacmAccessContextPrefix.
SNMP Configuring notifications vacmSecurityToGroupStorageType is nonVolatile, permanent, or readOnly. It's possible define more than one vacmSecurityToGroupEntry. The list of all the vacmSecurityToGroupEntry entries is named vacmSecurityToGroupTable. 1.6.3 Configuring notifications SNMP agent is designed to support SNMPv1 Traps, SNMPv2c Traps, or SNMPv3 Traps. To send TRAPs, it's necessary perform some basic SNMP engine configuration as defined in the following sections.
Configuring notifications SNMP 1.6.3.2 Defining target addresses To configure a target address (to which a notification should be sent), add one or more snmpTargetAddrEntry definition in the snmpd.
SNMP Configuring notifications snmpTargetAddrTMask is a bitfield mask for the snmpTargetAddrTAddress and appears in the snmpd.cnf file in the same format as the snmpTargetAddrTAddress For notifications, the value must be 255.255.255.255:0 to indicate that the Trap or Inform message will be sent to a specific address. Note: SNMP does not allow for the broadcasting of notifications.
Configuring notification filters SNMP 1.6.4 Configuring notification filters After the SNMP entity has been properly configured to send notifications, the SNMP engine will dutifully send SNMPv1, SNMPv2c, and SNMPv3 notification messages on behalf of the notification generator application. Depending upon the nature of the specific notification generator application, this may result in the sending of few or many notifications.
SNMP Configuring notification filters colons. Each octet is within the range 0x00 through 0xff. A zero-length OctetString is represented with a dash (-). snmpNotifyFilterType is included or excluded. This object indicates whether the family of filter sub-trees defined by this entry are included in or excluded from a filter. snmpNotifyFilterStorageType is nonVolatile, permanent, or readOnly.
Configuring source address checking SNMP So the snmpNotifyFilterMask entry would be ff:bf With this value for snmpNotifyFilterMask and all other appropriate entries in the con figuration file, a notification containing values from any of the following ifTable objects would match the filter and would not be sent: ifIndex.2 ifDescr.2 ifType.2 ifMtu.2 ifSpeed.2 ifPhysAddress.2 ifAdminStatus.2 ifOperStatus.2 ifLastChange.2 ifInUcastPkts.2 ifInErrors.2 ifOutUcastPkts.2 ifOutErrors.2 ifOutQLen.2 ifSpecific.2 1.
SNMP Configuring source address checking To configure a source address (from which a message will be received), add one or more snmpTargetAddrEntry definition in the snmpd.
Configuring source address checking SNMP snmpTargetAddrParams is a human readable string which must be present but is ignored by the SNMP engine. This field should be set to a dash (-). snmpTargetAddrStorageType is nonVolatile, permanent, or readOnly. snmpTargetAddrTMask is a bit field mask for the snmpTargetAddrTAddress and appears in the snmpd.cnf file in the same format as the snmpTargetAddrTAddress. For example, if snmpTargetAddrTDomain is ‘snmpUDPDomain ‘, a valid mask would be 255.255.255.0:0.
SNMP Configuring source address checking byte 1 byte 2 byte 3 byte 4 1111 0 0 0 0 1111 decimal 01 01 01 0 1 0000 01 01 01 0 1 0000 FIGURE 1-21 01 01 01 0 1 0000 01 01 01 0 1 0000 binary 1111 snmpTargetAddrTMask (continued) This indicates that none of the bits of the source address will be compared to the value of snmpTargetAddrTAddress, and consequently, an incoming SNMP request will not be reject based on its source address. 1.6.5.
Examples SNMP byte 4 1111 01 011 0 1 0011 1111 snmpTargetAddrTMask (binary) 01 011 0 1 0011 1111 snmpTargetAddrTAddress (binary) 1 01 ?1 ?1 ? ???? 1 1 1 1address of SNMP request source FIGURE 1-24 snmpTargetAddrTMask (continued) Therefore, to not be rejected, the source address of an incoming SNMP request must be 192.147.142.xxx where ‘xxx’ is a value between 0 (expressed as ‘00000000’in binary) and 127 (expressed as ‘01111111’ in binary). 1.6.
SNMP authNoPriv SNMPv3 users To authorize the sending of SNMPv3 noAuthNoPriv Trap messages to a user at exactly one SNMP manager station (one IP address), add the following lines to the snmpd.cnf configuration file together with the usmUserEntry for the user “myV3NoAuthNoPrivUser”.
Additional configuration for SNMPv3 agent entities SNMP To relax the agent configuration so that this user can access the MIB objects from additional hosts, change the snmpTargetAddrTMask to perform wildcard matching of the source address of the incoming request message. To relax the agent configuration so that this user can access the MIB objects from any host, change “whereValidRequestsOriginate” in the usmUserEntry to a dash (-).
SNMP Additional configuration for SNMPv1 and The configuration of context names is static and must be performed before the SNMP agent is launched for the first time. To configure a context name, add a vacmContextEntry line to the snmpd.cnf file accordingly the following syntax: vacmContextEntry vacmContextName is a human readable string representing the name of a context to be supported by this configuration. Note: Note that the default context is always supported by an SNMPv3 agent.
Additional configuration for SNMPv1 and SNMPv2 agent entities SNMP snmpCommunityTransportTag is a human readable string that is used to select a set of entries in the snmpTargetAddrTable for source address checking. Entries in the snmpTargetAddrTable are selected if the value of snmpCommunityTransportTag appears in the list of (space-separated) tags in snmpTargetAddrTagList. If the SNMP entity should not perform source address checking, then this field should contain a dash (-).
SNMP MIB snmpTargetAddrEntry myV2cManager_allRequests snmpUDPDomain 192.147.142.35:0 0 0 whereValidRequestsOriginate -nonVolatile 255.255.255.
MIB SNMP OID RFC1213 Implementation IFMTU Read-Only Read-Only IFSPEED Read-Only Read-Only IFPHYSADDRESS Read-Only Read-Only IFADMINSTATUS Read-Write Read-Write IFOPERSTATUS Read-Only Read-Only IFLASTCHANGE Read-Only Read-Only IFINOCTETS Read-Only Read-Only IFINUCASTPKTS Read-Only Read-Only IFINNUCASTPKTS Read-Only Read-Only IFINDISCARDS Read-Only Read-Only IFINERRORS Read-Only Read-Only IFINUNKNOWNPROTOS Read-Only Read-Only IFOUTOCTETS Read-Only Read-Only IFOUTUCA
SNMP MIB OID 1-112 RFC1213 Implementation IPINUNKNOWNPROTOS Read-Only Read-Only IPINDISCARDS Read-Only Read-Only IPINDELIVERS Read-Only Read-Only IPOUTREQUESTS Read-Only Read-Only IPOUTDISCARDS Read-Only Read-Only IPOUTNOROUTES Read-Only Read-Only IPREASMTIMEOUT Read-Only Read-Only IPREASMREQDS Read-Only Read-Only IPREASMOKS Read-Only Read-Only IPREASMFAILS Read-Only Read-Only IPFRAGOKS Read-Only Read-Only IPFRAGFAILS Read-Only Read-Only IPFRAGCREATES Read-Only Re
MIB SNMP OID RFC1213 Implementation IPROUTEAGE Read-Write Read-Only IPROUTEMASK Read-Write Read-Only IPROUTEMETRIC5 Read-Write Read-Only IPROUTEINFO Read-Write Read-Only IPNETTOMEDIAIFINDEX Read-Write Read-Only IPNETTOMEDIAPHYSADDRESS Read-Write Read-Only IPNETTOMEDIANETADDRESS Read-Write Read-Only IPNETTOMEDIATYPE Read-Write Read-Only IPROUTINGDISCARDS Read-Only Read-Only ICMPINMSGS Read-Only Read-Only ICMPINERRORS Read-Only Read-Only ICMPINDESTUNREACHS Read-Only Rea
SNMP MIB OID RFC1213 Implementation ICMPOUTSRCQUENCHS Read-Only Read-Only ICMPOUTREDIRECTS Read-Only Read-Only ICMPOUTECHOS Read-Only Read-Only ICMPOUTECHOREPS Read-Only Read-Only ICMPOUTTIMESTAMPS Read-Only Read-Only ICMPOUTTIMESTAMPREPS Read-Only Read-Only ICMPOUTADDRMASKS Read-Only Read-Only ICMPOUTADDRMASKREPS Read-Only Read-Only TCPRTOALGORITHM Read-Only Read-Only TCPRTOMIN Read-Only Read-Only Read-Write Read-Only TCPRTOMAX TCPMAXCONN TCPACTIVEOPENS TCPPASSIVEOPENS
MIB SNMP 1.6.10.3 Enterprise (private) MIB The gateway implements private objects in order to give access to specific unit configuration parameters that are not mapped in any standard MIB. All the private MIB objects are located under the following OID: enterprise.207.8.44.
SNMP MIB OID Max-Access Description SYSRESTART Read-Write If set to 1 (true), this object force a system restart. The value returned by get requests is always 2 (false) SYSCONFIGSAVE Read-Write If set to 1 (true) this object force a system configuration save. The value returned by get requests is always 2 (false) SYSPOWERBACKUPSYSTEM Read-Only The object returns the value 1 if the backup battery system is present otherwise it returns a value of 2.
MIB SNMP OID Specific Trap Code VOIPMGCPPROTOCOLRESTARTTRAP 6 This trap indicates that MGCP protocol has been restarted. VOIPMGCPENDPOINTPH0RESTARTTR 7 This trap indicates that MGCP endpoint #1 has been restarted. 8 This trap indicates that MGCP endpoint #2 has been restarted. 9 This trap indicates that MGCP endpoint #3 has been restarted. IGMPSNOOPINGVLANENABLETRAP 10 This trap indicates that igmp snooping has been enabled on a VLAN.
SNMP 1-118 MIB iMG/RG Software Reference Manual (System Configuration)
Layer 2 Switching in the Network Overview 2. Switching 2.1 Overview 2.1.1 Layer 2 Switching in the Network The System consists of a Layer 2 switch coupled to a Network Processor. The aggregate is viewable as a single Layer 2 switch, but this functionality is spread across the two devices - switch and the bridge - with interconnectivity being provided by the CPU port. Rate Limiting, QOS - and VLAN Tag management is provided at the edge of the system - via port configuration.
Switching Layer 2 switch functional description The layer 2 switch uses one additional l 00Mbps or 1000Mbps port as an internal port to communicate to the central processor in order to access layer 3 services such as routing, VoIP protocols, firewall and NAT security modules. The following is the complete set of features available in the switch module: • • • • • • • • • IEEE 802.
Layer 2 switch functional description Switching 2.2.2.3 Address management The primary function of the layer 2 switch is to receive good packets from the ports, process them and forward them to the appropriate ports for transmission. This frame processing involves the Ingress Policy, Queue Controller, Output Queues and Egress Policy. The normal packet flow involves learning how to switch packets only to the correct ports.
Switching Layer 2 switch functional description To detect a loop on ethernet ports, the Gateway periodically sends a “special” ping message. If the gateway receives the same ping message back, it means that a loop is present. In this case the Gateway disables all the traffic to/from the port (except the “special” ping) until the loop has been removed. 2.2.2.
Layer 2 switch functional description Switching IEEE 802.1p is a spin-off of the IEEE 802.1q (VLAN tagging) standard and they work in tandem (see Figure 1). The 802.1q standard specifies a VLAN tag that appends to a MAC frame. The VLAN tag carries VLAN information. The VLAN tag has two parts: The VLAN ID (12-bit) and User Priority (3-bit). The User Priority field was never defined in the VLAN standard. The 802.1q implementation defines this prioritizing field.
Switching Layer 2 switch functional description 7 PREMB 1 START FRAME 6 DESTINATION 6 SOURCE 2 LENGTH/TYPE = 2 TAG CONTROL 2 MAC CLIENT MAC TA head IP User User IP CF Versio TO Preceden 42 - octect IP T D R M O Total Identificati FRAME CHECK Flag Fragment TT Protoc Header Protoc Source IP Destination IP FIGURE 2-1 IP packet overview 2.2.2.
Functional Differences for Switching in Product Categories Switching 2.2.2.9 Port Diagnostics On some devices, it is possible to perform diagnostics on the physical wiring that is connected to the Gateway’s ethernet port. This is in effect a TDR mechanism - that can detect opens, shorts or good connections - and can also determine the distance to the terminating point. 2.2.
Switching Functional Differences for Switching in Product 5. Supports 4 Queues 6. Fixed value that is not provisionable - only supported on 7x6MOD 7. Up to thirty different rate limits are supported: 128Kbps, 256Kbps, 512Kbps, 756Kbps, 1Mbps, 1.5Mbps 2Mbps, 3Mbps, 4 Mbps, 5Mbps, 6Mbps, 7Mbps, 8Mbps, 9Mbps, 10Mbps, 12Mbps, 14Mbps, 16Mbps, 18Mbps, 20Mbps, 25Mbps 30Mbps, 35Mbps, 40Mbps, 45Mbps, 50Mbps, 60Mbps, 70Mbps, 80Mbps and 90Mbps independently on each port and on the frame direction: Tx or Rx 8.
Switch command reference 23. Switching For 6x6MOD and 7x6MOD devices when 802.1P is Disabled, the P-Bit Setting on any received packet is converted to 0. So if a packet is received with a P-Bit setting of 3 - the P-Bit of the packet when transmitted is 0. To assist in managing the implications of this - the default setting for the WAN and the CPU port 802.1p port attributes is Enabled. 2.2.
Switching Switch command reference TABLE 2-2 Switch commands (Continued) Commands Fiber A X Fiber D Fiber E Modular X X X X X SWITCH SET LEARNING SWITCH SET LOOPDETECTION Fiber C X SWITCH SET AGING-TIME SWITCH SET AGINGTIMER Fiber B X ADSL A ADSL B ADSL C X X X X X X X X X X X X SWITCH SET PORT 802.
Switch command reference TABLE 2-2 Switching Switch commands (Continued) Fiber A Commands SWITCH SET QOS PRIORITY Fiber B X Fiber D Fiber E Modular X ADSL A ADSL B ADSL C X X SWITCH SET ROUTING-LIMIT X SWITCH SHOW Fiber C X X X X X X X X X SWITCH SHOW 802.1P SWITCH SHOW FDB A B A B B B A B B SWITCH SHOW PORT X X X X X X X X X SWITCH SHOW QOS X X X SWITCH SHOW QOS 802.1P X X X X X X SWITCH SHOW QOS DSCP X X X X X X 2.2.4.1.
Switching Switch command reference Example switch disable ageingtimer See also SWITCH ENABLE AGEINGTIMER SWITCH SHOW 2.2.4.1.3 SWITCH DISABLE LEARNING Syntax SWITCH DISABLE LEARNING Description This command stops the learning engine used to update the look up table when frame are received from new Source Addresses. To restore the learning process, use the SWITCH ENABLE LEARNING command. To show the current switch status, use the SWITCH SHOW command.
Switch command reference Switching Please see notes under Port management for the applicability of the FLOW and JAMMING options. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value Port-name The name of the switch port to be configured. See Section 2.3 for a list of possible port names.
Switching Switch command reference 2.2.4.1.8 SWITCH ENABLE LOOPDETECTION Syntax SWITCH ENABLE LOOPDETECTION Description This command turns on the loop detection feature on the switch. The Residential Gateway will start sending special “ping” messages to all the switch ports configured as “coax”. All the switch ports having a speed valued different from “coax” will not be involved in the loop detection process.
Switch command reference Description Switching This command current status of all the Ethernet Ports on the device. The port ID and current state are also displayed - this allows the user to gather a broad view of the state of the system. Options None.
Switching Description Switch command reference This command resets the counters of the switch port if a port is specified. Only the counters related to the selected port are reset without removing any FDB entries. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value Port-name The name of the switch port to be configured. See Section 2.3 for a list of possible port names.
Switch command reference Switching 2.2.4.1.15 SWITCH SET AGE-TIMER Syntax SWITCH SET AGE-TIME Description This command sets the value of the ageing timer, after which an un-refreshed dynamic entry in the Forwarding Database is automatically removed. Acceptable values are from 16 secs to 4080 secs. To show the current switch status, use the SWITCH SHOW command.
Switching Switch command reference 2.2.4.1.17 SWITCH SET AGINGTIMER Syntax SWITCH SET AGINGTIMER [fast|normal|value] Description This command sets the value of the ageing timer, after which an un-refreshed dynamic entry in the Forwarding Database is automatically removed. FAST sets the aging timer to 800 µSec, while NORMAL sets the aging timer to 300 Sec Acceptable values are from 16 secs to 4080 secs. To show the current switch status, use the SWITCH SHOW command.
Switch command reference Description Switching This command changes the rate of the “special” ping messages used to detect loop condition on one or more Ethernet ports. If more then one port is configured for loop detection, each port will generate a “ping” message rate equal to the polling time multiplied by the number of “coax” ports. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Switching Switch command reference Option Description Default Value Enabled | Disabled When Enabled, the incoming packets are placed in the appropriate priority queue based on the P-Bit setting. Disabled When Disabled, there is no prioritization based on P-Bit. default_vlanid The VLAN identifier to be associated to untagged frames that arrive to this port. This valid range is from 1 to 4095. Example --> switch set port lan1 802.1p Enabled See also SWITCH SHOW PORT Disabled 2.2.4.1.
Switch command reference Switching 2.2.4.1.22 SWITCH SET PORT DEFAULTPRIORITY Syntax SWITCH SET PORT DEFAULTPRIORITY Description This command sets the priority value on the 802.1p priority field for all the frames that arrive on the switch port as untagged frames. This command works only if the 802.1p support has been previously enabled via the switch set port 802.1p enable command.
Switching Switch command reference 2.2.4.1.23 SWITCH SET PORT DEFAULTVID Syntax SWITCH SET PORT DEFAULTVID { default_vlanid } Description This command specifies the vlan identifier used as IEEE Tagged VID added during egress to untagged frames that arrived at this port. Frames will be processed as frames. To show the current port status, use the SWITCH SHOW PORT command.
Switch command reference Options Switching The following table gives the range of values for each option which can be specified with this command and a default value (if applicable). Option Description Default Value port-name The name of the switch port to be configured. See Section 2.3 for a list of possible port names. N/A Enabled | Disabled When Enabled, the support of DSCP IP field management is active. Disabled When Disabled, any QoS policy based on DSCP field is disabled.
Switching Switch command reference 2.2.4.1.26 SWITCH SET PORT FLOW Syntax SWITCH SET PORT FLOW { Enabled | Disabled } Description This command enables/disables full duplex flow control on the selected switch port. To show the current port status, use the SWITCH SHOW PORT command. Options The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Switch command reference Switching 2.2.4.1.28 SWITCH SET PORT INFILTERING Syntax SWITCH SET PORT INFILTERING { Enabled | Disabled } Description This command enables/disables the infiltering process on incoming tagged frames. When infiltering is enabled, an incoming tagged frame having a VLAN identifier different from the vlan where the switch port is configured will be dropped.
Switching Options Switch command reference The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value port-name The name of the switch port to be configured. See Section 2.3 for a list of possible port names. N/A mcastlimit The maximum rate if ingress multicast traffic that will be accepted on the switch port. none See Section 2.
Switch command reference Description Switching This command specifies the ingress data rate limit. These limits apply to all frame types entering on the selected switch port. To show the current port status, use the SWITCH SHOW PORT command. Options Example The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value port-name The name of the switch port to be configured. See Section 2.
Switching Description Switch command reference This command specifies the ingress data rate limitfor the low priority traffic. These limits apply to all frame types entering on the selected switch port that are categorized as low prirority. To show the current port status, use the SWITCH SHOW PORT command. Options Example The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Switch command reference Switching Example --> switch set port lan1 speed 10F See also SWITCH SHOW PORT 2.2.4.1.35 SWITCH SET PORT STATUS Syntax SWITCH SET PORT STATUS { Enabled | Disabled } Description This command disables or enables the switch port. To show the current port status, use the SWITCH SHOW PORT command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Switching Switch command reference 2.2.4.1.37 SWITCH SET PORT TRSLIMIT-HIGH Syntax SWITCH SET PORT TRSLIMIT-HIGH < trslimit > Description This command specifies the ingress data rate limit for high priority packets. These limits apply to all frame types entering on the selected switch port that are high priority. To show the current port status, use the SWITCH SHOW PORT command.
Switch command reference Switching Description This command sets the switch base priority. If an 802.1p bit value is higher than or equal to this value - then it goes into the high priority queue. Otherwise - it goes into the low priority queue. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example Option Description Default Value 802.1p_base_priority The system priority value.
Switching Description Switch command reference This command is used to map an incoming frame with a specific TOS/DiffServ/Traffic class value in the IP header into one of the four egress queues available on the switch. To show the current port status, use the SWITCH SHOW PORT command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Switch command reference Switching 2.2.4.1.43 SWITCH SET ROUTING-LIMIT Syntax SWITCH SET ROUTING-LIMIT Description This command set the maximum number of frame per seconds that the layer 2 switch forward to the Residential Gateway network processor for routing purposes. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Switching Switch command reference Max Ports: Max VLANS: Max Queues: See also 10 16 4 SWITCH SHOW PORT 2.2.4.1.45 SWITCH SHOW 802.1P Syntax SWITCh SHOW 802.1P Description This command displays the current mapping of the switch egress queues respect the 802.1p priority field value of the tag header of the an incoming tagged frame. Please note that the four queues are shown in the following way: Example • low queue --> .
Switch command reference Example Switching Option Description Default Value port-name The name of the switch port to be that entries are to be displayed for.. N/A vlan-id The VLAN Identifier that it is of interest to show all the FDB entries for.
Switching Description Switch command reference This command displays the current mapping of user priority level to QOS egress queue for the switch. Switch Quality Of Service configuration -------------------------------------------------------------------Priority Map: Addr | 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 ----------------------------------------------00 | . . . . . . . . . . . . . . . . . . . . 20 | . . . . . . . . . . . . . . . . . . . .
Overview BRIDGE 2.3 BRIDGE 2.3.1 Overview The Bridge module acts as an extension to the existing Layer 2 switch - providing connectivity between the applications and services provided in the CPU and the devices connected to the LAN ports also provides support for virtual LANs in order to create multiple domains in which the packets are forwarded.
BRIDGE Bridge Functional Description particular destination might be present. It is also used to create multicast entries and forward multicast packets to all ports listening for that particular multicast address. The destination based MAC entries (named also static unicast entries destination based) can be created/deleted by the user. For a specific MAC address, there can exist either a static unicast entries source based or a destination unicast entries source based.
Bridge Functional Description BRIDGE To regenerate priority mapping, it can be configured for each port such that, whenever a tagged packet is received with a specified priority in the tag header, it is mapped to the corresponding regenerated priority and the tag header is reset with the new priority. Additionally, it can be configured to prioritize traffic based on certain traffic classes defined for each outgoing port.
BRIDGE Functional Differences in Product Categories • If there already exists an Dynamic entry with MAC address that matches the source MAC address, it updates the last seen time and the source port for the entry. • If there exists a Static entry with MAC address that matches the source MAC address, it updates entry’s source port field with the received port. 2.3.
Bridge command reference BRIDGE 2.3.4.
BRIDGE Bridge command reference TABLE 2-4 Bridge commands (Continued) Commands Fiber A Fiber B Fiber C Fiber D Fiber ADSL ADSL ADSL E Modular A B C BRIDGE DELETE UCASTENTRY X X X X X X BRIDGE DELETE UCASTINTERFACE X X X X X X BRIDGE DETACH X X X X X X X X X BRIDGE FLUSH X X X X X X X X X BRIDGE LIST FDBS X X X X X X BRIDGE LIST FWDALL SHARED X X X X X X BRIDGE LIST FWDUNREG SHARED BRIDGE LIST INTERFACE STATS X X X X X X X X X BRIDGE LIST INT
Bridge command reference TABLE 2-4 BRIDGE Bridge commands (Continued) Fiber A Fiber B Fiber C Fiber D BRIDGE SET INTERFACE TRAFFICCLASSTATUS X X X X X X X X X BRIDGE SET WANTOWANFORWARDING X X X X X X X X X BRIDGE SHOW X X X X X X X X X X X X X X X X X X X Commands X BRIDGE SHOW FDB BRIDGE SHOW INTERFACE X X X Fiber ADSL ADSL ADSL E A B C Modular X BRIDGE SHOW INTERFACE REGENPRIORITY X X X X X X BRIDGE SHOW INTERFACE TRAFFICCLASSMAP X X X X
BRIDGE Bridge command reference Option Description Default Value fdbnumber A number that identifies an existing Forwarding Database. To display the list of FDBs, use the bridge list fdbs command. The number appears in the first column under the heading ID.
Bridge command reference BRIDGE Example bridge add fwdunreginterface shared FDB_1 bridge1 See also BRIDGE ADD FWDALLINTERFACE BRIDGE LIST FWDALL SHARED 2.3.4.1.3 BRIDGE ADD INTERFACE Syntax BRIDGE ADD INTERFACE < name > Description This command adds a named interface to the bridge. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
BRIDGE Bridge command reference fdbname The name of an existing Forwarding Database. See bridge add vlan CLI command to configure a new Filtering Database. N/A fdbnumber A number that identifies an existing Forwarding Database. To display the list of FDBs, use the bridge list fdbs command. The number appears in the first column under the heading ID.
Bridge command reference BRIDGE Name Description Dafault Value entryname Name of an existing Multicast Forwarding Entry. To display the list of all statically configured multicast entries, that the user can delete, use bridge list static mcastentries. This command also displays the entire egress interface list for that entry. N/A entrynumber A number that identifies an existing Multicast Forwarding Entry.
BRIDGE Bridge command reference Name Description name An arbitrary name that identifies the entry. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit Dafault Value The name has to be unique for all unicast entries (source MAC and destination MAC based) in a Filtering Database. fdbname The name of an existing forwarding database to which the entry will be added. fdbn umber A number that identifies an existing Forwarding Database.
Bridge command reference BRIDGE Option Description name An arbitrary name that identifies the entry. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit Default Value The name has to be unique for all unicast entries (source MAC and destination MAC based) in a Forwarding Database. fdbname The name of an existing forwarding database to which the entry will be added. fdbn umber A number that identifies an existing Forwarding Database.
BRIDGE Bridge command reference entryn umber A number that identifies an existing unicast forwarding entry. To display the list of statically configured unicast entries, use bridge list static ucastentries. The number appears in the first column under the heading ID. fdbname The name of an existing filtering database to which the filtering entry will be added. See Note on filtering database in this command. fdbn umber A number that identifies an existing Filtering Database.
Bridge command reference BRIDGE Name Description Default Value Transport A name that identifies an existing transport. To display transport names, use the list transports command. N/A Example --> bridge attach bridge1 my1483 See also BRIDGE LIST INTERFACES 2.3.4.1.
BRIDGE Bridge command reference Options T he following table gives the range of values for each option that can be specified with this command and a default value (if applicable) Name Description fdbname The name of an existing Forwarding Database. See bridge add vlan CLI command to configure a new Forwarding Database. fdbnumber A number that identifies an existing Forwarding Database. To display the list of FDBs, use the bridge list fdbs command.
Bridge command reference BRIDGE egress interface list of all VLANs, multicast filtering entries and Forward All/Unregistered group entries. Example --> bridge clear interfaces See also BRIDGE ADD INTERFACE BRIDGE DELETE INTERFACE 2.3.4.1.
BRIDGE Bridge command reference Name Description entryname Name of an existing Multicast Forwarding Entry. To display the list of all statically configured multicast entries, that the user can delete, use bridge list static mcastentries. This command also displays the entire egress interface list for that entry. entrynumber A number that identifies an existing Multicast Forwarding Entry. To display the list of statically configured multicast entries, use bridge list static mcastentries.
Bridge command reference See also BRIDGE BRIDGE ADD UCASTENTRY SRC BRIDGE ADD UCASTENTRY DEST 2.3.4.1.17 BRIDGE CLEAR UCASTINTERFACES Syntax BRIDGE CLEAR UCASTINTERFACES {| ) {| ) Description This command removes all the interfaces from the egress interface list of the named unicast forwarding entry.
BRIDGE Bridge command reference CLI command). The Forward All Group represents the set of interfaces to which all the multicast frames would be forwarded. Options T he following table gives the range of values for each option that can be specified with this command and a default value (if applicable) Name Description fdbname The name of an existing Forwarding Database. See bridge add vlan CLI command to configure a new Forwarding Database.
Bridge command reference BRIDGE fdbnumber A number that identifies an existing Forwarding Database. To display the list of FDBs, use the bridge list fdbs command. The number appears in the first column under the heading ID. interface name The name of a bridge interface that has previously been added and attached to a transport using the bridge add interface and bridge attach CLI commands, respectively.
BRIDGE Bridge command reference egress interface list of the entry (previously added using the bridge add mcastinterface shared CLI command). Options T he following table gives the range of values for each option that can be specified with this command and a default value (if applicable)bridge list mcastentries shared Name Description entryname Name of an existing Multicast Forwarding Entry.
Bridge command reference BRIDGE Name Description entryname Name of an existing Multicast Forwarding Entry. To display the list of all statically configured multicast entries, that the user can delete, use bridge list static mcastentries. This command also displays the entire egress interface list for that entry. entrynumber A number that identifies an existing Multicast Forwarding Entry. To display the list of statically configured multicast entries, use bridge list static mcastentries.
BRIDGE Bridge command reference entryname A name that identifies an existing unicast forwarding entry. To display the list of statically configured unicast entries, use bridge list static ucastentries. This command also displays the egress interface list for each unicast entry. entryn umber A number that identifies an existing unicast forwarding entry. To display the list of statically configured unicast entries, use bridge list static ucastentries.
Bridge command reference BRIDGE fdbnumber A number that identifies an existing Forwarding Database. To display the list of FDBs, use the bridge list fdbs command.
BRIDGE Bridge command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Portname The name of a bridge interface that has previously been added and attached to a transport using the bridge add interface and bridge attach CLI commands respectively. N/A Example --> bridge flush bridge1 See also BRIDGE ADD INTERFACE BRIDGE ATTACH BRIDGE LIST INTERFACE STATS 2.3.
Bridge command reference Example BRIDGE Name Description fdbname The name of an existing Filtering Database. See bridge add vlan CLI command to configure a new Filtering Database. fdbnumber A number that identifies an existing Filtering Database. To display the list of FDBs, use the bridge list fdbs command. The number appears in the first column under the heading ID.
BRIDGE Bridge command reference See also BRIDGE ADD FWDALLINTERFACE BRIDGE LIST FWDALL SHARED 2.3.4.1.30 BRIDGE LIST INTERFACE STATS Syntax BRIDGE LIST INTERFACE STATS Description This command displays the statistical information of all the configured bridge interfaces. Example • ID: The numerical identifier automatically assigned to the object when it was created. • Name: The name manually assigned to the object when it was created. • Rx Frames: Number of frames received on the interface.
Bridge command reference BRIDGE ID: 1 Name: defaulti Filter| PVID | Accept | Ingress | User | Transport Type | | FrameType | Filtering | Prio | ------|-------|-----------|-----------|-------|-------------All | 1 | ALL | disabled | 0 | default ------------------------------------------------------------- See also BRIDGE BRIDGE BRIDGE BRIDGE BRIDGE BRIDGE BRIDGE BRIDGE SET SET SET SET SET SET SET SET INTERFACE INTERFACE INTERFACE INTERFACE INTERFACE INTERFACE INTERFACE INTERFACE FILTERTYPE PORTFILTER P
BRIDGE Bridge command reference 2.3.4.1.33 BRIDGE LIST STATIC FWDALL SHARED Syntax BRIDGE LIST STATIC FWDALL SHARED {|} Description This command lists the interfaces added statically (See bridge add fwdallinterface shared CLI command to add an egress interface) in the egress interface list of the Forward All Group for the named Forwarding Database. The Forward All Group represents the set of interfaces to which all the multicast frames would be forwarded.
Bridge command reference BRIDGE fdbnumber A number that identifies an existing Forwarding Database. To display the list of FDBs, use the bridge list fdbs command. The number appears in the first column under the heading ID. Example bridge list static fwdunreg shared FDB_1 See also BRIDGE ADD FWDALLINTERFACE BRIDGE LIST FWDALL SHARED 2.3.4.1.
BRIDGE Bridge command reference Description Options This command displays information about the statically configured unicast forwarding entries for the named Forwarding Database. The fields are listed below: • IDA number that identifies an existing unicast forwarding entry. • NameA name that identifies an existing unicast forwarding entry. • TypeIndicates whether the entry is a source MAC address or destination MAC address based forwarding entry.
Bridge command reference Options Example BRIDGE • ID: The numerical identifier automatically assigned to the object when it was created. • Type: One of the following types: • source MAC address-based • destination MAC address-based, statically configured • destination MAC address-based, dynamically learnt • Special Entry • destination MAC address-based, statically configured and dynamically learnt. • MAC Address: Ethernet MAC address associated with the entry.
BRIDGE Bridge command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Filterage The time (in seconds) after which MAC addresses are removed from the filter table when there has been no activity. The time may be an integer value between 10 and 100,000 seconds.. 300 Example --> bridge set filterage 1000 See also BRIDGE SHOW 2.3.4.1.
Bridge command reference BRIDGE 2.3.4.1.40 BRIDGE SET INTERFACE DEFAULTUSERPRIORITY Syntax BRIDGE SET INTERFACE {|} DEFAULTUSERPRIORITY Description This command specifies the user priority that should be assigned to untagged frames, received on the interface. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
BRIDGE Bridge command reference Name Description IP Allows only IP/ARP types of ethernet packets through the port. Pppoe Allows only PPPoE type of ethernet packets through the port. Example --> bridge set interface bridge1 filtertype ip See also BRIDGE LIST INTERFACES Default Value 2.3.4.1.42 BRIDGE SET INTERFACE INGRESSFILTERING Syntax BRIDGE SET INTERFACE {|} INGRESSFILTERING {disable|enable} Description This command adds a named interface to the bridge.
Bridge command reference BRIDGE Description This command specifies the number of traffic classes supported by the bridge interface. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Name A name that identifies an existing bridge interface. To display interface names, use the bridge list interfaces command.
BRIDGE Bridge command reference want to forward packets to several ports, enter a bridge set interface portfilter command for each port. If you want to forward packets to all ports, enter the command and specify the all value. If a unicast packet is received by an interface with a portfilter set to all, the portfilter rule is ignored. The unicast packet is still only sent to one port.
Bridge command reference Options BRIDGE The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Name An arbitrary name that identifies an object. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A Number A number that identifies an existing bridge interface.
BRIDGE Bridge command reference Name Description Default Value pri1 The regenerated user-priority to which the user priority with value 1 in the incoming frame should be mapped. 1 pri2 The regenerated user-priority to which the user priority with value 2 in the incoming frame should be mapped. 2 pri3 The regenerated user-priority to which the user priority with value 3 in the incoming frame should be mapped.
Bridge command reference See also BRIDGE BRIDGE SET INTERFACE NUMTRAFFICCLASSES BRIDGE SET INTERFACE TRAFFICCLASSMAP BRIDGE SET INTERFACE REGENPRIORITY 2.3.4.1.48 BRIDGE SET LANTOLANFORWARDING Syntax BRIDGE SET LANTOLANFORWARDING ENABLE/DISABLE Description This command is used to enable/disable LAN to LAN forwarding (where data received on a LANside bridge interface is forwarded to other LAN-side bridge interface.).
BRIDGE Bridge command reference Description This command displays the global configuration settings for the bridge. Example --> bridge show See also BRIDGE LIST INTERFACES 2.3.4.1.51 BRIDGE SHOW FDB Syntax BRIDGE SHOW FDB {|} Description This command displays the statistical information of a single user-configured filtering database.
Bridge command reference Options Example BRIDGE • Filter Type: The type of Ethernet filtering performed by the named bridge interface, by default it is set to All. • Port Filter: The list of bridge interfaces that the frames can go through, if the frames are received on this bridge interface. • Transport: The name of the transport attached to the bridge using the bridge attach CLI command. • PVID: Port VLAN ID associated with the interface.
BRIDGE Bridge command reference Options Example • User Priority: It is the priority that comes in the VLAN tagged or priority tagged incoming packets as per the 802.1p. • Regenerated priority: The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Name A name that identifies an existing bridge interface. To display interface names, use the bridge list interfaces command.
Bridge command reference Options Example BRIDGE The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Name A name that identifies an existing bridge interface. To display interface names, use the bridge list interfaces command. N/A Number A number that identifies an existing bridge interface. To display interface names, use the bridge list interfaces command.
BRIDGE Bridge command reference Options Example • Transmit Delay Discards: Number of frames discarded due to transmit delay. • Unknown VLAN Discards: Number of frames discarded due to unknown VLAN • Buffer O/F Discards: Number of frames discarded due to buffer overflow. • Ingress Discards: Number of frames discarded due to ingress filtering. • Frame Type Discards: Number of frames discarded due to the acceptable frame type setting on the interface.
Bridge command reference Example BRIDGE Name Description entryname Name of an existing Multicast Forwarding Entry. To display the list of all statically configured multicast entries, that the user can delete, use bridge list static mcastentries. This command also displays the entire egress interface list for that entry. entrynumber A number that identifies an existing Multicast Forwarding Entry. To display the list of statically configured multicast entries, use bridge list static mcastentries.
VLAN Overview Options • Receive InterfaceReceive interface for source MAC address based entries. See the bridge add ucastentry src for more information. • Egress InterfacesEgress interface list. T he following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example Name Description entryname A name that identifies an existing unicast forwarding entry.
Overview VLAN Many Ethernet switches support virtual LAN (VLAN) technologies. By replacing hubs with VLAN switches, the network administrator can create a virtual network within existing network. With VLAN, the network logical topology is independent of the physical topology of the wiring. Each computer can be assigned a VLAN identification number (ID), and computers with the same VLAN ID can act and function as though they are all on the same physical network.
VLAN Overview • To allow the frame to indicate the format of MAC Address information carried in MAC user data; • To allow VLANs to be supported across different MAC types. Tagging a frame requires: • The addition of a tag header to the frame. This header is inserted immediately following the destination MAC Address and source MAC Address fields of the frame to be transmitted; • Recomputation of the Frame Check Sequence (FCS). When relaying a tagged frame between 802.
Overview VLAN • Tag Control Information (TCI). The TCI field is two octets in length, and contains user priority, CFI and VID (VLAN Identifier) fields. Figure ... illustrates the structure of the TCI field: • User priority. The user priority field is three bits in length, interpreted as a binary number. The user priority is therefore capable of representing eight priority levels, 0 through 7.
VLAN VLAN Functional Description TABLE 2-5 Reserved VID Values VID Value (Hexadecimal) Meaning/Use 0 The null VLAN ID. Indicates that the tag header contains only user priority information; no VLAN identifier is present in the frame. This VID value shall not be configured as a PVID, configured in any Filtering Database entry, or used in any Management operation. 1 The default PVID value used for classifying frames on ingress through a switch port.
VLAN Functional Description VLAN • A port can be member of two or more VLANs only if it is tagged on all the VLANs or it is untagged on one VLAN only and tagged on all the other VLANs. A port cannot be member of two or more VLANs as untagged port. To change the tagged/untagged frame format of a port for a specific VLAN it's necessary remove the port from the VLAN and then re-add the port to the VLAN, specifying the required frame format.
VLAN VLAN Functional Description All the incoming tagged frames that from the ADSL port arrive to the residential gateway on the PVC channel specific for the RFC1483 transport and having the VID value different to the VID value of VLAN specified are silently discharged. Note that it’s possible assign the same RFC1483 transport to manage tagged frames for more than one VLAN simply entering multiple times the command RFC1483 SET TRANSPORT FRAME TAGGED for each VLAN to be configured.
VLAN Functional Description VLAN Default Configuration VLAN Creation IP Interface Creation VLAN Port Adding IP Interface Configuration VLAN Ethernet Transport Adding IP and VLAN Attach IP Interface on VLAN FIGURE 2-3 IP interface over LAN - first steps The maximum number of primary IP interfaces that can be defined is 16 and is equal to the maximum number of VLANs that it is possible to create on the residential gateway.
VLAN Functional Differences in Product Categories 2.4.3 Functional Differences in Product Categories There are a number of different options that are available to manage VLANs in the newer devices, however the Basics for creating and configuring a VLAN - are simplified into a small subset of commands that are described below. For more sophisticated users, access to the BRIDGE VLAN commands can provide additional flexibility.
VLAN command reference VLAN 2.4.4 VLAN command reference This section describes the commands available to create, configure and manage VLANs. 2.4.4.
VLAN VLAN command reference Commands VLAN DELETE Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C X X X X X X X X X X X X X X X X VLAN LIST X VLAN SHOW X X VLAN TRANSLATE X X X X 2.4.4.1.1 BRIDGE ADD VLAN Syntax BRIDGE ADD VLAN Description This command adds a named VLAN (either the default VLAN or a user-defined VLAN) to the bridge.
VLAN command reference See also VLAN BRIDGE DELETE VLAN BRIDGE LIST STATIC VLAN BRIDGE LIST VLANS 2.4.4.1.2 BRIDGE CLEAR VLANS Syntax BRIDGE CLEAR VLANS Description This command deletes the statically configured VLANs from the bridge. The egress interfaces and multicast filtering entries (for an IVM configuration) associated with the VLANs are also deleted by this command.
VLAN VLAN command reference 2.4.4.1.4 BRIDGE LIST STATIC VLANS • • • • Syntax BRIDGE LIST STATIC VLANS Description This command displays all of the statically configured VLANs. See bridge add vlan CLI command to statically configure a VLAN. For each of the VLANs, the command displays all of the statically added egress interfaces. See the bridge add vlaninterface CLI command to add an interface to the named VLAN. ID: The sequence number given by the CLI system for the VLAN in the CLI listing.
VLAN command reference VLAN .ID.|.VLAN ID.|.VLAN Name..|.FDB Name..|.Type....| ---------------------------------------------------------..1.|.2.......|.VLAN_1.....|.FDB_1.....|.static..| Tagged Interfaces: bridge1 Untagged Interfaces: bridge2 ------------------------------------------------------------See also BRIDGE ADD VLAN BRIDGE ADD VLANINTERFACE BRIDGE LIST STATIC VLANS 2.4.4.1.6 BRIDGE SHOW VLAN Syntax BRIDGE Description This command displays a single statically configured VLAN.
VLAN VLAN command reference Example Name Description Default Value Number A number that identifies an existing VLAN. To display the list of statically configured VLANs, use the bridge list static vlans command. The number appears in the first column under the heading ID.
VLAN command reference VLAN --> bridge clear interfacevlanstats VLAN_1 --> bridge clear interfacevlanstats VLAN_1 bridge1 See also BRIDGE ADD VLAN BRIDGE ADD VLANINTERFACE BRIDGE LIST INTERFACEVLANSTATS 2.4.4.1.8 BRIDGE LIST INTERFACEVLANSTATS Syntax BRIDGE LIST INTERFACEVLANSTATS { < vlanname > | < vlannumber > Description This command displays the statistical information of the egress interfaces of the named VLAN. } • Name: The name of an existing VLAN.
VLAN VLAN command reference 2.4.4.1.9 BRIDGE SHOW INTERFACEVLANSTATS Syntax BRIDGE SHOW INTERFACEVLANSTATS {< vlanname > | < vlannumber >} Description This command adds a named interface to the bridge. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example Option Description Default Value Vlanname The name of an existing VLAN.
VLAN command reference Options VLAN The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Name A name that identifies an existing VLAN. To display the list of statically configured VLANs, use bridge list static vlans. To display the list of all the static and dynamic VLANs in the bridge use bridge list vlans CLI command. N/A Number A number that identifies an existing VLAN.
VLAN VLAN command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Name A name that identifies an existing VLAN. To display the list of statically configured VLANs, use bridge list static vlans. To display the list of all the static and dynamic VLANs in the bridge use bridge list vlans CLI command.
VLAN command reference Options VLAN The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Name A name that identifies an existing VLAN. To display the list of statically configured VLANs, use bridge list static vlans. To display the list of all the static and dynamic VLANs in the bridge use bridge list vlans CLI command.
VLAN VLAN command reference vlanid VLAN Id on which the transport is created. A VLAN corresponding to the vlanid should be already created for this command to be successful. Use bridge add vlan CLI command to add a VLAN. Example bridgevlan add transport vt1 2 See also bridgevlan delete transport bridgevlan list transports 2.4.4.1.14 BRIDGEVLAN CLEAR TRANSPORTS Syntax BRIDGEVLAN CLEAR TRANSPORTS Description This command deletes all the configured VLAN transports from the system.
VLAN command reference VLAN 2.4.4.1.16 BRIDGEVLAN LIST TRANSPORTS Syntax BRIDGEVLAN LIST TRANSPORTS Description This command displays information about all of the configured VLAN transports. See bridgevlan add transport on page 62. The following fields are displayed: • IDThe numerical identifier automatically assigned to the object when it was created. • NameThe name that identifies an existing VLAN transport.
VLAN VLAN command reference Name Description Default Value TAGGED/ UNTAGGED Specify if the switch port must be set as tagged or untagged port for the selected vlan. N/A Example --> vlan add voip lan1 frame tagged See also VLAN LIST 2.4.4.1.18 VLAN ADD PORT Syntax UNTAGGED} VLAN ADD PORT FRAME {TAGGED | Description This command adds an Ethernet port to an existing named VLAN that has been created with the command VLAN ADD VID.
VLAN command reference Description VLAN This command defines a new VLAN that has the specified VID value. The VLAN name can be 16 characters length; it cannot start with a digit and cannot contain dots '.' or the slash symbols '/'. This command specifies also the priority value of the tagged packets that from the network processor are sent to the layer 2 switch and then to the network.
VLAN VLAN command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Vlanname An existing VLAN. To display the existing VLANs, use the VLAN LIST command. N/A Example --> vlan clear voip See also VLAN LIST 2.4.4.1.
VLAN command reference VLAN --> vlan add interface wan_net cpu frame tagged --> vlan add interface lan_net cpu frame tagged --> vlan translate lan_net 20 --> vlan translate wan_net 10 See also VLAN LIST 2.4.4.1.22 VLAN DELETE Syntax VLAN DELETE Description This command removes a switch port to be membership of an existing VLAN. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
VLAN VLAN command reference Example • VLAN Name: The name of the VLAN. • VLAN ID: The numerical VLAN identifier of the VLAN (VID). • Untagged port(s): A list of untagged ports that belong to the VLAN. • Tagged port(s): A list of tagged ports that belong to the VLAN.
VLAN command reference VLAN VLAN information --------------------------------------------Name: default Identifier 1 Status static 802.1p Priority 7 Untagged port(s) lan3, lan2 Tagged port(s) cpu Name: voip Identifier 10 Status static 802.1p Priority 7 Untagged port(s) lan2 Tagged port(s) lan1 --------------------------------------------See also VLAN ADD PORT VLAN ADD VID 2.4.4.1.
VLAN VLAN command reference The VLAN name can be 16 characters length; it cannot start with a digit and cannot contain dots '.' or the slash symbols '/'. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Name Description Default Value Vlanname An arbitrary name that identifies the VLAN. The name must not be already in use for another VLAN. The VLAN name can be at most 16 chars long.
Multicasting overview IGMP snooping 3. IGMP 3.1 IGMP snooping 3.1.1 Multicasting overview Multicasting is a technique developed to send packets from one location in the Internet to many other locations, without any unnecessary packet duplication. In multicasting, one packet is sent from a source and is replicated as needed in the network to reach as many end-users as necessary. The concept of a group is crucial to multicasting.
IGMP snooping Multicasting overview not contain any hosts that want to receive them. Given that the main reason for having multicasting is to make efficient use of bandwidth, this would not be a good approach. So, a more efficient approach is needed. This is where IGMP comes in. 3.1.1.2 IGMP protocol IGMP (Internet Group Management Protocol) is the protocol whereby hosts indicate that they are interested in receiving a particular multicast stream.
IGMP snooping Functional Overview (Includes New Functionality) IGMP snooping 230.20.20.20 corresponds to MAC 01-00-5e-14-14-14 224.10.10.10 corresponds to MAC 01-00-5e-0a-0a-0a Consequently, this is not a one-to-one mapping, but a one-to-many mapping: 224.10.10.10 corresponds to MAC 01-00-5e-0a-0a-0a 226.10.10.10 corresponds to MAC 01-00-5e-0a-0a-0a, as well.
IGMP snooping IGMP snooping Functional Overview (Includes The following sections describe the IGMP snooping functionality for iMG models belonging to group Fiber-B, Fiber-D, Fiber-E, Modular and ADSL-B, ADSL-C. 3.1.2.1 Multicast router port discovery The system listens for IGMP General Query messages and records the port(s) where any such message has been received.
IGMP snooping Functional Overview (Includes New Functionality) FIGURE 3-1 IGMP snooping IGMP messages flow when Snoop-Only mode is active 3.1.2.2.1 Joining a Multicast Group The Residential Gateway detects unsolicited IGMP Report messages that hosts send to join a multicast channel. The Residential Gateway updates the local multicast group database storing the information about the requested stream and the requesting port.
IGMP snooping IGMP snooping Functional Overview (Includes 3.1.2.2.2 Leaving a multicast group Periodically the multicast router sends Generic Queries to check whether there are multicast hosts that are still active. If one or most hosts are still interested to receive multicast streams, they will reply with IGMP Report messages and the corresponding entries on the local multicast group database will be refreshed.
IGMP snooping Functional Overview (Includes New Functionality) IGMP snooping Instead, if the received IGMP report message refers to a multicast channel that is already registered in the local database, the IGMP process will drop it without forwarding it to the multicast router and will update the local database, if needed. Periodically the multicast router sends Generic Queries to check the presence of active multicast hosts.
IGMP snooping IGMP snooping Functional Overview (Includes FIGURE 3-2 3-8 Two Hosts Join Two Different Mulitcast Channels iMG/RG Software Reference Manual (IGMP)
IGMP snooping Functional Overview (Includes New Functionality) IGMP snooping 3.1.2.3.2 Leaving a Multicast Stream Under Proxy operational mode, when an host wants to leave a multicast group and sends an IGMP Leave message, the IGMP process takes different actions depending if the Fast Leave feature is enabled or disabled.
IGMP snooping IGMP snooping Functional Overview (Includes FIGURE 3-3 Two Hosts Join Two Different Multicast Channels In case a multicast host is disconnected from the network, the IGMP process is able to detect such condition checking the absence of IGMP reports on the port where the host left. This process takes a time that is usually longer than the case where the host leaves the network in a gracefully way.
IGMP snooping Functional Overview (Includes New Functionality) FIGURE 3-4 IGMP snooping Host Disconnects - No Leave Message • Fast Leave Enabled When Fast Leave support is enabled, upon the reception of an IGMP leave message, the IGMP process stops immediately the forwarding of multicast stream towards the internal host. The IGMP process does not send any specific query to check if there are other hosts still interested to receive the multicast stream.
IGMP snooping IGMP snooping Functional Overview (Includes In case other hosts have joined the same multicast stream, the IGMP process purges only the entry matching the corresponding lan port and drop the IGMP leave message. The picture here below shows an example scenarios where an host leaves a multicast stream and a scenario where two hosts leave the same multicast stream.
Old IGMP Snooping Functionality IGMP snooping 3.1.3 Old IGMP Snooping Functionality The following sections describe the IGMP snooping functionality for iMG models belonging to group Fiber-A, Fiber-C, and ADSL-A. 3.1.3.1 Multicast router port discovery IGMP snooping is activated using the IGMP SNOOPING ENABLE command. The system listens for IGMP Membership General Query packets sent to the address 01-00-5e-00-00-01 and records the port(s) where any such message has been received.
IGMP snooping Old IGMP Snooping Functionality Host B sends an unsolicited IGMP Membership report. The Gateway intercepts the IGMP membership report sent by Host B. As a multicast entry for this group already exists, the Gateway simply adds the port to the already existing entry for that multicast group. It also adds another Timeout timer specific for this port to the multicast group.
Old IGMP Snooping Functionality IGMP snooping Upon receiving an IGMP Leave message, the system can either process it immediately - as described above (This is known as FastLeave) - or if configured to do so - send an IGMP Group Specific Query to the port where the IGMP Leave message was received from. The Leave Time value is used in the query message to request a fast response from other hosts that may be present on the same Ethernet segment.
IGMP snooping Functional Differences in Product Categories It is possible to statically define the upstream IP interface. 3.1.4 Functional Differences in Product Categories There are two different implementations of IGMP that are encountered in these ATI Gateways. The original implementation is configured using IGMP SNOOPING and IGMP PROXY commands.
IGMP Snooping command reference IGMP snooping 3.1.5.
IGMP snooping IGMP Snooping command reference TABLE 3-2 Bridge IGMP Snooping Commands (Continued) Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C Functions IGMP SET FORWARDALL X X X X X X X X X IGMP SET LASTMBERQUERYINTVL X X X X X X X X X IGMP SET QUERYINTVL X X X X X X X X X IGMP SET QUERYRESPONSEINTVL X X X X X X X X X IGMP SET ROBUSTNESS X X X X X X X X X IGMP SET UPSTREAMINTERFACE X X X X X X X X X IGMP SHOW FORWARDALL
IGMP Snooping command reference IGMP snooping 3.1.5.1.1 BRIDGE ADD IGMPSNOOP MCASTROUTERINTF Syntax BRIDGE ADD IGMPSNOOP MCASTROUTERINTF Description This command allows the user to add a static multicast router interface. A multicast router interface is also called an upstream interface and a multicast router is connected to this interface. The upstream interface implements the Host portion of the IGMP protocol.
IGMP snooping IGMP Snooping command reference Example --> bridge add igmpsnoop security firstSTB mac 00:01:02:03:04:05 See also BRIDGE LIST IGMPSNOOP SECURITY 3.1.5.1.3 BRIDGE DELETE IGMPSNOOP MCASTROUTERINTF Syntax BRIDGE DELETE IGMPSNOOP MCASTROUTERINTF Description This command allows the user to delete a previously added static multicast router interface. The interface reverts to a downstream interface after deletion.
IGMP Snooping command reference IGMP snooping 3.1.5.1.5 BRIDGE LIST IGMPSNOOP GROUPINFO Syntax BRIDGE LIST IGMPSNOOP GROUPINFO Description This command displays all of the multicast groups in the IGMP database. Example --> bridge set igmpsnoop groupinfo 3.1.5.1.6 BRIDGE LIST IGMPSNOOP INTERFACESTATS Syntax BRIDGE LIST IGMPSNOOP INTERFACESTATS Description This command displays IGMP packet statistics collected for each interface on the bridge. 3.1.5.1.
IGMP snooping IGMP Snooping command reference Query Interval: Robustness Variable: Query Response Interval: V1 Timer Value: Multicast Intf Aging Time: IGMP Snoop Mode: IGMP MAC Security: IGMP MAC Security Learning: IGMP MAC Security Max Number: MAC Address 1: MAC Address 2: MAC Address 3: MAC Address 4: MAC Address 5: MAC Address 6: MAC Address 7: MAC Address 8: MAC Address 9: 41 2 3 133 133 snooponly Disable Disable 5 Empty Empty Empty Empty Empty Empty Empty Empty Empty 3.1.5.1.
IGMP Snooping command reference IGMP snooping 3.1.5.1.10 BRIDGE SET IGMPSNOOP DEFAULTFASTLEAVE Syntax BRIDGE SET IGMPSNOOP DEFAULTFASTLEAVE { defaultfastleave } Description Set the default fast leave state when enabling IGMP. Fast leave, proxy mode only, will force leaves out the WAN facing network upon receipt of a leave on the LAN facing network.
IGMP snooping IGMP Snooping command reference 3.1.5.1.12 BRIDGE SET IGMPSNOOP MCASTROUTERTIMEOUT Syntax BRIDGE SET IGMPSNOOP MCASTROUTERTIMEOUT < mcastroutertimeout > Description This command sets the value for the multicast router time out interval which is the time a dynamic multicast router interface remains an upstream interface after receiving an IGMP Query with a non-zero source IP address.
IGMP Snooping command reference IGMP snooping 3.1.5.1.14 BRIDGE SET IGMPSNOOP NETINTERFACE Syntax BRIDGE SET IGMPSNOOP NETINTERFACE Description This command specifies the IP interface from which IGMP proxy messages should be sourced. Uses IP address 0.0.0.0 if not specified. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
IGMP snooping IGMP Snooping command reference Description This command sets the value for the query response interval. The Max Response Time inserted into the periodic General Queries. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default value queryresponseintvl The query response interval value in seconds.
IGMP Snooping command reference Options IGMP snooping The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default value enable/disable Activates or deactivates the service disable Example --> bridge set igmpsnoop security enable See also BRIDGE LIST IGMPSNOOP SECURITY 3.1.5.1.
IGMP snooping IGMP Snooping command reference Description This command sets the limit on the number of MAC addresses that the IGMP Securitiy feature will allow to be populated in it’s internal table - and thus the number of devices that can get video service.. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
IGMP Snooping command reference IGMP snooping Option Description Default value v1timer The v1timer variable value in seconds. Valid range is 1 to 65535. 400 Example --> bridge set igmpsnoop v1timer 200 See also BRIDGE SHOW 3.1.5.1.23 IGMP SET FORWARDALL Syntax IGMP SET FORWARDALL Description This command allows you to enable/disable your router’s ability to forward multicast traffic to ALL interfaces.
IGMP snooping Options IGMP Snooping command reference The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default value lastmberqueryintvl The last member query interval value in seconds. Valid range is 1 to 255. 1 Example --> igmp set lastmberqueryintvl 5 See also IGMP SHOW STATUS 3.1.5.1.
IGMP Snooping command reference IGMP snooping Option Description Default value queryresponseintvl The query response interval value in seconds. Query response interval cannot be greater than or equal to the query interval. Valid range is 1 to 254. 10 Example --> igmp set queryresponseintvl 20 See also IGMP SET QUERYINTVL 3.1.5.1.
IGMP snooping IGMP Snooping command reference Option Description Default value ip_interface The name of an existing router interface that you want to set as the upstream interface N/A none Disables IGMP proxy N/A Example --> igmp set upstream interface ip1 See also IGMP SHOW 3.1.5.1.29 IGMP SHOW FORWARDALL Syntax IGMP SHOW FORWARDALL Description This command displays the status of the ForwardAll configuration.
IGMP Snooping command reference IGMP snooping Description This command displays the All the timer settings for the IGMP Proxy. This includes the Robustness setting, Query Interval, Query response interval and the last member query interval. Example --> igmp proxy show status IGMP Proxy configuration: Robustness Query Int Query Rsp Int Last Member Query Int See also IGMP IGMP IGMP IGMP SET SET SET SET : : : : 2 125 10 1 LASTMEMBERQUERYINT QUERYINTERVAL| QUERYRSPINTERVAL ROBUSTNESS 3.1.5.1.
IGMP snooping IGMP Snooping command reference Option Description Default value vlan_name The name of an existing vlan where igmp snooping has been previously enabled. N/A Example Æ igmp snooping disable vlan_video See also IGMP SNOOPING ENABLE 3.1.5.1.34 IGMP SNOOPING ENABLE Syntax IGMP SNOOPING ENABLE Description This command enables the layer-2 IGMP snooping feature.
IGMP Snooping command reference IGMP snooping messages will use the ip address of the IP interface immediately attached to the multicast vlan. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default value secondary_net_interface The name of an existing IP interface to be used as reference source IP address.
IGMP snooping IGMP Snooping command reference 3.1.5.1.37 IGMP SNOOPING SET LEAVETIME Syntax IGMP SNOOPING SET LEAVETIME Description This command sets the duration of the Leave Period timer for the IGMP snooping process. The timer controls the maximum allowed time before hosts must send a response to Query message issued by the Gateway. When IGMP snooping is enabled, by default this value is set to 10 sec.
IGMP Snooping command reference IGMP snooping 3.1.5.1.39 IGMP SNOOPING SHOW Syntax IGMP SNOOPING SHOW Description This command shows IGMP snooping status. The following information are reported: See also • Timeout Interval Interval after which entries will be removed from the group database • Interface Name VLAN reference • Multicast Router Recognized Multicast route • Group List Membership list for this VLAN • Group The group multicast address.
IGMP snooping IGMP Snooping command reference 3.1.5.1.42 IGMP SNOOPING SECURITY LEARNING Syntax IGMP SNOOPING SECURITY LEARNING Description This command enables/disables the auto-learning option 3.1.5.1.43 IGMP SNOOPING SECURITY ADD Syntax IGMP SNOOPING SECURITY ADD max Description This command statically adds a new MAC address. 3.1.5.1.
IGMP Snooping command reference IGMP snooping 3.1.5.1.47 IGMP PROXY SHOW UPSTREAMINTERFACE Syntax IGMP PROXY SHOW UPSTREAMINTERFACE Description This command displays the status of the upstream interface. If an upstream interface has been set using the IGMP PROXY SET UPSTREAMINTERFACE command, this command displays the current setting. Example --> igmp proxy show upstreaminterface IGMP Proxy configuration Upstream If : ip0 See also IGMP PROXY SET UPSTREAMINTERFACE 3.1.5.1.
IGMP snooping 3-40 iMG/RG Software Reference Manual (IGMP) IGMP Snooping command reference
Overview IP 4. IPNetwork Functions 4.1 IP 4.1.1 Overview This chapter describes the main features of the Internet Protocol (IPv4) and how to configure and operate the AT-iMG models IP interface.
IP IP support on AT-iMG Models 4.1.3 IP support on AT-iMG Models In order to use the IP stack, one or more interfaces must be added to the IP stack and attached to a transport. Each interface must be configured with an IP address and a subnet mask. Together, these define the range of addresses that can be reached via the interface without passing through any other routers.
IP support on AT-iMG Models IP The maximum number of IP interfaces is set to 16, which means that there are up to 16 IP interfaces internally numbered one to 16. Since one interface is reserved for use as a loopback interface, this means up to 15 IP interfaces can be added by the user When a packet arrives on an IP interface, the IP stack determines what to do with the packet. There are two options: • Receive the packet locally; • Forward the packet to another interface 4.1.3.
IP Unconfigured interfaces If the packet cannot be forwarded, an ICMP Destination Unreachable error will be returned to the sender. By default, the checksum of forwarded IP packets is not checked. This is for reasons of efficiency, because calculating the checksum on all packets adds significantly to the forwarding time and reduces throughput. This default setting is common in most IP routers. Locally terminated packets always have their checksum checked. 4.1.
Unnumbered interfaces IP 4.1.5.2 Configuring unnumbered interfaces Unnumbered interfaces are created using the following CLI command: IP ADD INTERFACE 255.255.255.255 For example: ip add interface myinterface 192.168.101.3 255.255.255.255 In this command: • myinterface is the unnumbered interface name. • 192.168.101.3 is the router id. The router ID must be set to the IP address of one of the router’s normal interfaces.
IP Virtual interfaces 4.1.6 Virtual interfaces Usually, each transport only has one router interface associated with it, and each router interface has only one IP address and local subnet associated with. Virtual interfaces allow you to attach more than one IP interface to the same transport. Secondary IP addresses allow you to associate more than one IP address with the same IP interface. Together, these features allow many configurations that would not otherwise be possible.
Secondary IP addresses IP 4.1.6.2 Similarities between virtual interfaces and real interfaces A virtual interface is similar to a real interface: • Virtual interfaces may be manipulated in the same way as real interfaces using the CLI. • The IP stack will route between virtual interfaces and real interfaces in the same way that it routes between real interfaces. Note: Like real interfaces, virtual interfaces must have a unique subnet that does not overlap with other interfaces.
IP TCP/IP command reference The secondary addresses share the same subnet with the interface. Secondary addresses therefore allow the IP stack to have more than one address on the same subnet. After setting the main interface address, one or more additional addresses on the same subnet can be added to the interface. 4.1.7.1 Configuring secondary IP addresses You can create and configure secondary IP addresses using the CLI.
TCP/IP command reference IP 4.1.8.
IP TCP/IP command reference TABLE 4-1 IP CLI commands (Continued) Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C IP INTERFACE LIST STATICARPENTRIES X X X X X X X X X IP LIST APPSERVICES X X X X X X X X X IP LIST ARPENTRIES X X X X X X X X X IP LIST CONNECTIONS X X X X X X X X X IP LIST INTERFACES X X X X X X X X X IP LIST RIPROUTES X X X X X X X X X IP LIST ROUTES X X X X X X X X X STOP PING X X X X
TCP/IP command reference TABLE 4-1 IP IP CLI commands (Continued) Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E A B C Modular Commands IP SET ROUTE X X X X X X X X X IP SET ROUTE X X X X X X X X X IP SET ROUTE ADVERTISE X X X X X X X X X IP SET ROUTE DESTINATION X X X X X X X X X IP SET ROUTE GATEWAY X X X X X X X X X IP SET ROUTE COST X X X X X X X X X IP SET ROUTE INTERFACE X X X X X X X X X IP SET TTL X X X X X X X
IP TCP/IP command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value gateway_ip The IP address of the gateway that this route will use by default, in the format: 192.168.103.3 gateway_ip Example --> ip add defaultroute gateway 192.168.103.3 See also ip ip ip ip add add set set route defaultroute interface rip advertisedefault rip defaultroutecost 4.1.8.2.
TCP/IP command reference IP 4.1.8.2.3 IP ADD DEFAULTROUTE INTERFACE Syntax IP ADD DEFAULTROUTE INTERFACE Description This command creates a default route. It acts as a shortcut command that you can use instead of typing the following: ip add route default 0.0.0.0 0.0.0.0 interface ip3 Note: You can only create one default route. A default route will not be created if you have already created a default route using the ip add route command or the ip add defaultroute gateway command.
IP TCP/IP command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value interface The name of the existing interface that this route will use. To display interface names, use the IP LIST INTERFACES command.
TCP/IP command reference IP Option Description Default Value ipaddress The interface IP address in the format 192.168.102.3 If the IP address is set to the special value 0.0.0.0, the interface is marked as unconfigured. This value is used when the interface address is obtained automatically. For an unnumbered interface, the IP address parameter is used to specify the router-id of the interface. The router-id should be the same as the IP address of one of the router’s numbered interfaces. 0.0.0.
IP TCP/IP command reference the interface can communicate more efficiently with a particular destination by using a different router, then it will learn this fact from an Internet Control Message Protocol (ICMP) redirect message. Options Example The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An arbitrary name that identifies the route.
TCP/IP command reference Note: IP You can only create one default route. A default route will not be created if you have already created a default route using the IP ADD DEFAULTROUTE GATEWAY command or the IP ADD DEFAULTROUTE INTERFACE command. A route specifies a destination network (or single host), together with a mask to indicate what range of addresses the network covers, and a next-hop gateway address or interface.
IP TCP/IP command reference See also ip list interfaces ip add defaultroute gateway ip add defaultroute interface 4.1.8.2.8 IP ATTACH Syntax IP ATTACH {|} Description This command attaches an existing transport to an existing IP interface (e.g., a bridge or router) so that data can be transported via the selected transport method. This command implicitly enables the transport being attached.
TCP/IP command reference Options See also IP The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the ip list interfaces command. N/A number An existing IP interface. To display interface numbers, use the ip list interfaces command. The number appears in the first column under the heading ID.
IP TCP/IP command reference Example --> ip clear arpentries See also IP LIST ARPENTRIES 4.1.8.2.12 IP CLEAR INTERFACES Syntax ip clear interfaces Description This command clears all IP interfaces that were created using the IP ADD INTERFACE command. Example --> ip clear interfaces See also ip delete interface 4.1.8.2.13 IP CLEAR RIPROUTES Syntax ip clear riproutes Description This command deletes all the existing dynamic routes that have been obtained from RIP.
TCP/IP command reference Options IP The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the IP LIST INTERFACES command. N/A number An existing IP interface. To display interface numbers, use the IP LIST INTERFACES command. The number appears in the first column under the heading ID.
IP TCP/IP command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the ip list interfaces command. N/A number An existing IP interface. To display interface numbers, use the ip list interfaces command. The number appears in the first column under the heading ID.
TCP/IP command reference IP --> ip interface ip1 add proxyarpentry 192.168.100.0 255.255.255.0 See also ip interface add proxyarpexclusion ip interface list proxyarpentries 4.1.8.2.19 IP INTERFACE ADD PROXYARPEXCLUSION Syntax IP INTERFACE {|} ADD PROXYARPEXCLUSION [] Description This command configures proxy ARP exclusion functionality on an existing IP interface.
IP TCP/IP command reference 4.1.8.2.20 IP INTERFACE ADD SECONDARYIPADDRESS Syntax IP INTERFACE {|} ADD SECONDARYIPADDRESS [] Description This command adds a secondary IP address to an existing IP interface. A secondary address may be used to create an extra IP address on an interface for management purposes, or to allow the IP stack to route between two subnets on the same interface.
TCP/IP command reference IP Option Description Default Value ipaddress A secondary IP address that you want to add to the main IP interface. You can add any number of secondary IP addresses. The IP address is displayed in the following format: 192.168.102.3 To display the secondary IP addresses, use the IP INTERFACE LIST SECONDARYIPADDRESSES command. N/A netmask The netmask of the secondary IP address displayed in the following format: 255.255.255.
IP TCP/IP command reference 4.1.8.2.22 IP INTERFACE CLEAR PROXYARPENTRIES Syntax IP INTERFACE {|} CLEAR PROXYARPENTRIES Description This command clears all proxy ARP entries and exclusions that were created using the IP INTERFACE ADD PROXYARPENTRY and IP INTERFACE ADD PROXYARPEXCLUSION commands. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
TCP/IP command reference IP IP INTERFACE DELETE SECONDARYIPADDRESS IP INTERFACE LIST SECONDARYIPADDRESSES 4.1.8.2.24 IP INTERFACE CLEAR STATICARPENTRIES Syntax IP INTERFACE {|} CLEAR STATICARPENTRIES Description This command clears all static ARP entries that were created using THE IP INTERFACE ADD STATICARPENTRY command. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
IP TCP/IP command reference See also IP INTERFACE ADD PROXYARPENTRY IP INTERFACE LIST PROXYARPENTRIES 4.1.8.2.26 IP INTERFACE DELETE PROXYARPEXCLUSION SyntaxIP INTERFACE {} DELETE PROXYARPEXCLUSION Description This command deletes a single proxy ARP exclusion entry that was created using the IP INTERFACE ADD PROXYARPEXCLUSION command. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
TCP/IP command reference IP Option Description Default Value secondary ipaddress number The number that identifies a secondary IP address that you want to delete from the main IP interface. To display secondary IP address numbers, use THE IP INTERFACE LIST SECONDARYIPADDRESSES command. The number appears in the first column under the heading ID. N/A Example --> ip interface ip1 delete secondaryipaddress 1 See also IP LIST INTERFACES IP INTERFACE LIST SECONDARYIPADDRESSES 4.1.8.2.
IP TCP/IP command reference Options Example • Interface ID numbers • IP address and netmask of proxy ARP entries and exclusions • Exclusion status: true for exclusions, false for inclusions The following table gives the range of values for each option THAT can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the IP LIST INTERFACES command. N/A number An existing IP interface.
TCP/IP command reference Example IP In the example output below, secondary IP addresses without associated netmasks appear as 0.0.0.0 by default. --> ip interface ip1 list secondaryipaddresses ID | IP Address | Netmask -----|----------------------------------1 | 192.168.104.6 | 255.255.255.0 2 | 192.168.103.4 | 0.0.0.0 3 | 192.168.103.2 | 0.0.0.0 ----------------------------------------See also ip list interfaces ip interface list secondaryipaddresses 4.1.8.2.
IP TCP/IP command reference See also IP LIST INTERFACES 4.1.8.2.32 IP LIST APPSERVICES Syntax ip list aPPSERVICES Description A number of system processes use the IP stack to provide services, such as SNMP agent and TFTP server. These services are called AppServices. This command lists the AppServices that are available and have configurable security classes.
TCP/IP command reference IP -----------------|-------------------|--------------|-------20.20.20.20 | 00:20:2b:03:0a:72 | ip2 | no -----------------|-------------------|--------------|-------30.30.30.30 | 00:20:2b:03:09:c4 | ip1 | no ------------------------------------------------------------See also IP CLEAR ARPENTRIES 4.1.8.2.34 IP LIST CONNECTIONS Syntax ip list connections • This command lists the active TCP/UDP connections in use by applications running on the device.
IP TCP/IP command reference 4.1.8.2.35 IP LIST INTERFACES Syntax ip list interfaces Description This command lists information about IP interfaces that were added using the IP ADD INTERFACE command. The following information is displayed: Example • Interface ID numbers • Interface names • IP addresses (if previously specified) • DHCP status • Whether a transport is attached to the interface, and if so, the name of the transport • Whether a virtual interface is attached to a real interface.
TCP/IP command reference Example IP • Timeout - the number of seconds that this RIP route will remain in the routing table unless updated by RIP • Source interface - the name of the existing interface that this route uses --> ip list riproutes IP RIP routes: Destination | Mask | Gateway | Cost | Time |Source ---------------|---------------|---------------|------|------|-----192.168.101.1 | 255.255.255.0 | 10.10.10.
IP TCP/IP command reference 4.1.8.2.38 STOP PING Syntax STOP PING Description This command is used to stop a running ping request. In case, you specify a high number of attempts for the ping request and then intend to stop the running ping request cycle, you need to use the stop ping command to obtain the required functionality. This command involves no parameters. On entering a stop ping request, the statistics for the number of pings attempted so far shall be displayed.
TCP/IP command reference IP type of service (TOS) parameter is used for test packets, and to specify the type of service provided to the outgoing ping request at the IP level. All these additional parameters are optional and hence when these are not specified, the Default Values are used instead. Options Example The following table gives the range of values for each option THAT can be specified with this command and a Default Value (if applicable).
IP TCP/IP command reference Description A number of system processes use the IP stack to provide services, such as SNMP agent and TFTP server. These services are called AppServices. This command allows you to set the security class(es) associated with an AppService. A security class is synonymous with a security interface type. It is assumed that you have already assigned security interfaces to your IP interfaces, using the command security show alg.
TCP/IP command reference See also IP IP IP IP IP SET INTERFACE MTU SET INTERFACE DHCP LIST INTERFACES SET INTERFACE NETMASK 4.1.8.2.41 IP SET INTERFACE IPADDRESS Syntax IP SET INTERFACE {|} IPADDRESS [] Description This command sets the IP address for an existing IP interface. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
IP TCP/IP command reference 4.1.8.2.42 IP SET INTERFACE NETMASK Syntax IP SET INTERFACE {|} NETMASK Description This command sets the netmask for an existing IP interface. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the IP LIST INTERFACES command.
TCP/IP command reference IP Option Description Default Value mtu Maximum Transmission Unit: maximum packet size 1500 (in bytes) an interface can handle. The MTU should be set to a value appropriate for the transport attached to the interface (typically from 576 to 1500 bytes). For example, Ethernet and most other transports support an MTU of 1500 bytes, whereas PPPoE supports an MTU of 1492 bytes.
IP TCP/IP command reference Description For information on setting DHCP client configuration options, see DHCP Client command reference. 4.1.8.2.45 IP SET INTERFACE GATEWAY Syntax IP SET INTERFACE {|} GATEWAY {} Description This command specifies the gateway ip-address associated to the given interface Note: This command is avalable on FIBER B,D,E MODULAR and ADSL B,C models only.
TCP/IP command reference Options IP The following table gives the range of values for each option THAT can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the IP LIST INTERFACES command. N/A number An existing IP interface. To display interface numbers, use the IP LIST INTERFACE COMMAND. The number appears in the first column under the heading ID.
IP TCP/IP command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the IP LIST INTERFACES command. N/A number An existing IP interface. To display interface numbers, use the IP LIST INTERFACES command. The number appears in the first column under the heading ID.
TCP/IP command reference IP Option Description Default Value number An existing IP interface. To display interface numbers, use the IP LIST INTERFACES command. The number appears in the first column under the heading ID. N/A rip send none The interface does not accept RIP messages. rip send none (this command affects all interfaces except loopback interfaces) rip send v1 The interface only sends RIP v. 1 messages (RFC1058) rip send v2 The interface only sends RIP version 2 messages (RFC1723).
IP TCP/IP command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing IP interface. To display interface names, use the IP LIST INTERFACES command. N/A enabled TCP SYN segments routed through this interface will be examined and, if necessary, modified.
TCP/IP command reference IP 4.1.8.2.51 IP SET RIP AUTHENTICATION Syntax ip set rip authentication {enabled | disabled} Description This command enables/disables RIP v2 plain text authentication. If enabled, a plain text authentication string is placed in RIP v2 packets. RIP v2 packets will only be accepted if they contain an authentication entry with the correct password string. Packets with no authentication or the wrong password will be rejected.
IP TCP/IP command reference Note: RIP version 1 does not allow specification of subnet masks; a RIP version 1 route that appears to be to an individual host might in fact be to a subnet, and treating it as a route to the whole network may be the best way to make use of the information. To display the current state of RIP hostroutes, use the IP SHOW COMMAND. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
TCP/IP command reference See also IP IP SET RIP AUTHENTICATION IP SHOW 4.1.8.2.55 IP SET RIP POISON SyntaxIP SET RIP POISON {ENABLED | DISABLED} Description Enables or disables the poisoned reverse flag. If this flag is on, TCP/IP performs poisoned reverse as defined in RFC 1058; see that RFC for discussion. To display the current state of the poisoned reverse flag, use the IP SHOW command.
IP TCP/IP command reference Option Description disabled Disables a static route. Example --> ip set route myroute enabled See also ip list routes, ip add route, ip show route Default Value 4.1.8.2.57 IP SET ROUTE ADVERTISE Syntax IP SET ROUTE {|} ADVERTISE Description This command enables/disables the advertising of an existing static route (including a default route) via RIP.
TCP/IP command reference Options IP The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing route. To display route names, use the IP LIST ROUTES command. N/A number An existing route. To display route numbers, use the IP LIST ROUTES command. The number appears in the first column under the heading ID.
IP TCP/IP command reference Option Description Default Value gateway The IP address of the gateway that the IP routes through, displayed in the following format: 192.168.102.3 If you added a route directly to an interface, the gateway address is set by default to 0.0.0.0 so that no gateway is specified. N/A Example --> ip set route route1 gateway 192.168.102.3 See also IP IP IP IP ADD ROUTE SET ROUTE DESTINATION SET ROUTE COST LIST ROUTES 4.1.8.2.
TCP/IP command reference IP 4.1.8.2.61 IP SET ROUTE INTERFACE Syntax IP SET ROUTE {|} INTERFACE {|NONE} Description This command sets the interface used by a route previously created by the IP ADD ROUTE command. If you want the existing route to route to an address via a gateway device, use none so that no interface is set. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
IP TCP/IP command reference Example --> ip set ttl 60 See also ip show 4.1.8.2.63 IP SHOW Syntax ip show Description Shows current RIP configuration and any other information global to the router. Example --> ip show Global IP configuration: Host routes: Poison reverse: Authentication: Auth password: Advertise default: Default Route Cost: Default TTL: See also false false false false 1 128 IP SET RIP HOSTROUTES IP SET RIP POISON 4.1.8.2.
TCP/IP command reference IP 4.1.8.2.65 IP SHOW INTERFACE Syntax IP SHOW INTERFACE {|} Description This command displays the following information about a named interface: Options Example • IP address and netmask address (if set). For virtual interfaces, the name of the real interface that the virtual interface is attached to is also displayed.
IP TCP/IP command reference Send V1 Accept V2 Send V2 Send Multicast Example : : : : false false false false Virtual IP interface -> ip show interface ip1 IP Interface: ip1 - virtual [ip0] IPaddr Mask Rx Packet Count Tx Packet Count MTU : : : : : 192.168.10.1 255.255.255.
Overview Security The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Options Example Option Description Default Value name An existing route. To display route names, use the IP LIST ROUTES command. N/A number An existing route. To display route numbers, use the IP LIST ROUTES command. The number appears in the first column under the heading ID.
Security Security support on AT-iMG Models • Intrusion Detection Settings (IDS) component; implements security measures to protect your network from suspicious hosts • Security component; manages the Security package, and enables security features such as management stations, triggers, security applications, session tracking and application services 4.2.
Security interfaces Security • An Internal interface is an IP interface that is attached to a network that needs to be protected from the network attached to the External interface. For example, an interface attached to a private LAN is an internal interface. • The External interface is an IP interface that is attached to a network, for example the Internet, containing hosts that may pose a security threat to hosts on the internal interfaces.
Security Security interfaces 4.2.3.
Security interfaces Security Note: TCP session chaining must be always enabled if UDP session chaining is to be used. It's not possible define a UDP session chaining without previously enabling TCP session chaining. Disabling TCP session chaining also automatically disables UDP session chaining.
Security Intrusion Detection Settings An ALG provides a service for a specific application such as FTP (File Transfer Protocol). Incoming packets are checked against existing NAT rules or Firewall filters, IP addresses are evaluated and detailed packet analysis is performed. If necessary, the contents of a packet is modified, and if a secondary port is required, the ALG will open one. The ALG for each application does not require additional configuration.
Intrusion Detection Settings Security Once an intrusion attempt is detected and the attacker is blocked and blacklisted for a set time limit. The length of time that a blacklisted host remains blocked depends on the kind of attack: • For Denial of Service attacks by the SECURITY SET IDS DOSATTACKBLOCK command and by the SECURITY SET IDS MALICIOUSATTACKBLOCK (default is 30 minutes in both cases) • For Port Scan attacks by the SESECURITY SET IDS SCANATTACKBLOCK command.
Security Intrusion Detection Settings Scan Attack Description Back Orifice scan Back Orifice and Back Orifice 2k are Trojan Horse attacks for Windows 95/98/NT. Once installed on the victim’s PC, the attacker commonly listens on UDP ports 31337, 31338 (Back Orifice) and 54320, 54321 (Back Orifice 2k). The attacker can then remotely perform illicit activities. SubSeven attack SubSeven and SubSeven 2.1 are Trojan Horse attacks for Windows platforms.
Intrusion Detection Settings Security The Security module can detect the early stages of the following DoS attacks: Dos Attack Description SMURF Attack Attacker sends pings (Echo Requests) to a host with a destination IP address of broadcast (protocol 1, type 8).
Security Intrusion Detection Settings Dos Attack Description Land Attack This attack targets Microsoft Windows machines. An attacker sends a forged packet with the same source and destination IP address which confuses the victim’s machine, causing it to crash or reboot. Ping of Death It is possible to crash, reboot or otherwise kill a large number of systems by sending a ping of a certain size from a remote machine. A ping is defined as a ping of death when the ping payload exceeds 65535 bytes.
Management stations - Remote Management Security Dos Attack Related Detection settings Block duration setting / (Default) Echo Chargen N/A security set IDS DOSattackblock / (30 min) Echo Storm security set IDS MaxPING security set IDS DOSattackblock / (30 min) Boink N/A security set IDS DOSattackblock / (30 min) Land Attack N/A security set IDS DOSattackblock / (30 min) Ping of Death N/A security set IDS DOSattackblock / (30 min
Security Security logging The exact IP address (or range of addresses) for the management station device(s) must be defined in the following command: security add mgmt-station {range | subnet } Once you have configured a management station and want to enable a remote session to the device’s external port, enter: security set mgmt-station enabled 4.2.
Security command reference TABLE 4-2 Security Security Commands and Product Category (Continued) Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E A B C Modular SECURITY ENABLE | DISABLE {blockinglog| intrusionlog| sessionlog} CONSOLEPRINTIng X X X X X X SECURITY SET BLOCKINGLOG|INTRUSIONLOG|SESSIONLOG LEVEL X X X X X X SECURITY ADD ALG X X X X X X X X X SECURITY DELETE ALG X X X X X X X X X SECURITY LIST ALG X X X X X X X X X X X X X X X
Security Security command reference TABLE 4-2 Security Commands and Product Category (Continued) Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C SECURITY SET TRIGGER BINARYADDRESSREPLACEMENT X X X X X X X X X SECURITY SET TRIGGER MAXACTINTERVAL X X X X X X X X X SECURITY SET TRIGGER ENDPORT X X X X X X X X X SECURITY SET TRIGGER STARTPORT X X X X X X X X X SECURITY SET TRIGGER SECONDARYENDPORT X X X X X X X X X SECURITY SET
Security command reference TABLE 4-2 Security Security Commands and Product Category (Continued) Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E A B C Modular Commands SECURITY SET IDS FLOODPERIOD X X X X X X X X X SECURITY SET IDS FLOODTHRESHOLD X X X X X X X X X SECURITY SET IDS PORTFLOODTHRESHOLD X X X X X X X X X SECURITY SET IDS SCANPERIOD X X X X X X X X X SECURITY SET IDS SCANTHRESHOLD X X X X X X X X X X X X X X X X X X X SECURIT
Security Security command reference 4.2.7.1.
Security command reference Example Security Option Description Default Value enabled The specified logging activity is displayed at the console. Disable disabled The specified logging activity is sent to the event log. blockinglog Specifies where blocking activity is displayed. intrusionlog Specifies where intrusion activity is displayed.. sessionlog Specifies where session activity is displayed.
Security Security command reference Option Description Default Value level The level of logging reported at the event log or the console. You can choose from the following levels: Notice emergency, alert, critical, error, warning, notice, informational, debug. These levels directly correspond to syslog levels. Example --> security set blockinglog warning See also firewall set securitylevel 4.2.7.1.
Security command reference Security 4.2.7.1.6 SECURITY DELETE ALG Syntax security delete alg DescriptionThis command disables a specific ALG. Options Example The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value algname Unique identifier specified to delete the ALG. N/A --> security delete alg alg_sipudp 4.2.7.1.
Security Security command reference Session event logging is: false Blocking event logging is: false Intrusion event logging is: false 4.2.7.1.9 SECURITY SHOW ALG Syntax security SHOW alg Description DescriptionThis command will display the following information about a specific ALG. Options Example • AlgType - Application/Protocol ALG to be enabled. Example – sip. • Transport - Transport protocol. Example – tcp, udp.
Security command reference Security Security enabled. Firewall disabled. Firewall security level: none. NAT disabled. Intrusion detection is disabled. Security logging is enabled. Session logging disabled. Blocking logginisabled. Intrusion logging disabled. Security AEM Logging Interval: 5 Sec(s). See also SECURITY ENABLE | DISABLE FIREWALL SET SECURITYLEVEL 4.2.7.1.
Security Security command reference 4.2.7.1.12 SECURITY CLEAR INTERFACES Syntax security clear interfaces Description This command removes all security interfaces that were added to the Security package using the security add interface command. Example --> security clear interfaces See also SECURITY DELETE INTERFACE 4.2.7.1.
Security command reference Security 2 | i2 | external 3 | i3 | dmz --------------------------See also SECURITY SHOW INTERFACE 4.2.7.1.15 SECURITY SHOW INTERFACE Syntax SECURITY SHOW INTERFACE Description This command displays information about a single interface that was added to the Security package using the security add interface command.
Security Security command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An arbitrary name that identifies the management station. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A start_addr The first remote host IP address in the range allowed.
Security command reference Options Security The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing Management Station. To display Management Station names, use the SECURITY LIST MGMT-STATION command. N/A Example --> security delete mgmt-station ISP See also SECURITY ADD MGMT-STATION SECURITY LIST MGMT-STATION 4.2.7.1.
Security Security command reference Description Example This command lists Management Stations that were added to the Security module using the security add mgmt-station command.
Security command reference Options Example Security The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An arbitrary name that identifies the trigger. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A tcp Adds a trigger for a TCP application to the security package.
Security Security command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An arbitrary name that identifies the trigger. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A Example --> security add trigger t2 netmeeting See also SECURITY LIST TRIGGERS SECURITY ADD TRIGGER TCP|UDP 4.2.
Security command reference Description Example Security This command lists triggers that were added to the Security module using the security add trigger command.
Security Security command reference Option Description tcp Sets address replacement on TCP packets for an existing trigger. udp Sets address replacement on UDP packets for an existing trigger. both Sets address replacement on TCP and UDP packets for an existing trigger. Example --> security set trigger t2 addressreplacement tcp See also SECURITY SET TRIGGER BINARYADDRESSREPLACEMENT Default Value 4.2.7.1.
Security command reference Options Security The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing trigger. To display trigger names, use the security list triggers command. N/A enable Enables the use of binary address replacement on an existing trigger. Disable disable Disables the use of binary address replacement on an existing trigger.
Security Security command reference Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing trigger. To display trigger names, use the security list triggers command. N/A portnumber Sets the end of the trigger port range. N/A Example --> security set trigger t3 endport 21 See also security set trigger startport 4.2.7.1.
Security command reference Security Option Description Default Value portnumber Sets the end of the trigger’s secondary port range. 65535 Example --> security set trigger t3 secondaryendport 1933 See also SECURITY SET TRIGGER SECONDARYSTARTPORT 4.2.7.1.32 SECURITY SET TRIGGER SECONDARYSTARTPORT Syntax SECURITY POLICY SET TRIGGER SECONDARYSTARTPORT Description This command sets the start of the secondary port number range for an existing trigger.
Security Security command reference Option Description disable Disables all session chaining (TCP and UDP) on an existing trigger. Example --> security set trigger t4 sessionnchaining enable See also security set trigger UDPsessionchaining Default Value 4.2.7.1.
Security command reference Description Options Example Security This command displays information about a single trigger that was added to the Security module using the security add trigger command.
Security Security command reference 4.2.7.1.36 SECURITY SET SESSIONTIMEOUT Syntax security set session tiemout {esp | icmp | other | tcpclose | tcpestb | tcpinit | udp} Description This command enables user to configure a time out period after which any session may timeout. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
Security command reference Example Security Option Description Default Value local_mapping_port Specify the TCP/UDP port on local host which this traffic is to be re-directed to N/A local_real_port Specify the TCP/UDP port on which the traffic reaches the router N/A idle_timeout Optionally specify the time-out after which not to expect this traffic N/A enabled Specify whether the waiting-session should be enabled N/A disabled Specify whether the waiting-session should be disabled N/A co
Security Security command reference ‘local_real_port and duration’ attributes of the waitingsession cannot be set once a waitingsession has been created and enabled. To set these the waitingsession must be disabled. Options Example The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
Security command reference Security -----------------------------------------------------------------------------------yahoo-vi.. | ip0 | 192.168.1.1 | 0.0.0.0 | 17 | 5000 | 500 | true ------------------------------------------------------------------------------------ 4.2.7.1.
Security Security command reference Protocol: 17 Local Real Port: 4000 Local Mapping Port: 500 Remote Port: 65535 Duration: 300 Reusable: true Enabled: true Description: whatisit 4.2.7.1.42 SECURITY ENABLE|DISABLE IDS Syntax SECURITY {enable | disable} IDS Description This command explicitly enables/disables IDS (Intrusion Detection Service). You must enable IDS if you want to activate the settings specified in the security IDS commands.
Security command reference Example Security Option Description disable Disables blacklisting of an external host if IDS has detected an intrusion from that host. Default Value --> security enable IDS blacklist 4.2.7.1.44 SECURITY CLEAR IDS BLACKLIST Syntax SECURITY CLEAR IDS BLACKLIST Description This command clears blacklisting of an external host. Blacklisting denies an external host access to the system if IDS has detected an intrusion from that host.
Security Security command reference style attack are blocked. The command allows you to specify the duration of the block time limit. Options Example The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value duration The length of time (in seconds) that packets destined for the victim of a spoofing style attack. are blocked for.
Security command reference Options Example Security The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value duration The length of time (in seconds) that suspicious hosts are blocked for once a malicious attack attempt has been detected. 1800 (30 minutes) --> security set IDS MaliciousAttackBlock 3600 4.2.7.1.
Security Security command reference Example Option Description Default Value max The maximum number (per second) of pings that are allowed before an Echo Storm attempt is detected. 15 --> security set IDS MaxPING 25 4.2.7.1.51 SECURITY SET IDS MAXTCPOPENHANDSHAKE Syntax SECURITY SET IDS MAXTCPOPENHANDSHAKE Description This command sets the maximum number of unfinished TCP handshaking sessions per second that are allowed before a SYN Flood is detected.
Security command reference Security 4.2.7.1.52 SECURITY SET IDS SCANATTACKBLOCK Syntax SECURITY SET IDS SCANATTACKBLOCK Description This command allows you to set the scan attack block duration Intrusion Detection Setting (IDS). If hosts are blocked for a set time limit, this command allows you to specify the duration of the block time limit. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
Security Security command reference set here, the suspected attacker is blocked for the time limit specified in the command SECURITY SET IDS DOSATTACKBLOCK. For example, using the default settings, if more than 20 SYN packets are received per second for a 10 second duration, the attacker is blocked. Options Example The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
Security command reference Security Description This command allows you to set the time limit during which scanning type traffic (such as closed TCP port reviving SYN/ACK, FIN or RST) is counted. If the number of scanning packets counted within the specified duration is greater than the threshold set by SECURITY SET IDS SCANTHRESHOLD, the suspected attacker is blocked for the time limit specified in the command SECURITY SET IDS SCANATTACKBLOCK.
Security Security command reference 4.2.7.1.58 SECURITY SET AEMLOGGINGINTERVAL Syntax SECURITY SET AEMLOGGINGINTERVAL Description This command sets the alarm logging interval value Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value number The interval between each AEM logging message. 5 Example --> security set IDS MaxPING 25 See also security show 4.2.
Overview Firewall Victim Protection Block Duration: Scan Detection Threshold: Scan Detection Period: Port Flood Detection Threshold: Host Flood Detection Threshold: FloodDetectPeriod : Max TCP Open Handshaking Count: Max PING Count: Max ICMP Count: 600 5 10 10 20 10 5 15 100 4.3 Firewall 4.3.1 Overview The AT-iMG Models security system implements a stateful Firewall providing high security by blocking certain incoming traffic based on stateful information.
Firewall Firewall command reference 4.3.1.1 Policy A policy is a relationship between two security interfaces where it is possible to assign portfilter and validator rules between them.
Firewall command reference TABLE 4-3 Firewall Firewall commands and Product Type Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C FIREWALL ENABLE|DISABLE X X X X X X X X X FIREWALL ENABLE|DISABLE IDS X X X X X X X X X FIREWALL ENABLE|DISABLE BLOCKINGLOG|INTRUSIONLOG|SESSIONLOG X X X X X X X X X FIREWALL SET SECURITYLEVEL X X X X X X X X X FIREWALL STATUS X X X X X X X X X FIREWALL LIST POLICIES X X X X X X X X X F
Firewall Firewall command reference TABLE 4-3 Firewall commands (Continued)and Product Type Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C Commands FIREWALL SET IDS MAXICMP X X X X X X X X X FIREWALL SET IDS MaxPING X X X X X X X X X FIREWALL SET IDS MAXTCPOPENHANDSHAKE X X X X X X X X X FIREWALL SET IDS SCANATTACKBLOCK X X X X X X X X X FIREWALL SET IDS FLOODPERIOD X X X X X X X X X FIREWALL SET IDS FLOODTHRESHOLD X X X X X X
Firewall command reference Firewall 4.3.2.0.2 FIREWALL ENABLE|DISABLE IDS Syntax firewall {enable | disable} Description This command explicitly enables/disables IDS (Intrusion Detection Service). You must enable IDS if you want to activate the settings specified in the security IDS commands.
Firewall Firewall command reference Options Example The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value enable Enables the Firewall module. Disable disable Disables the Firewall module. --> firewall enable 4.3.2.0.
Firewall command reference Options Firewall The following tables describe the default policies enabled in the firewall for each of the high, medium and low security levels. The tables tell you whether a certain service can be received in or allowed out by a specific policy.
Firewall Firewall command reference TABLE 4-5 High Security Level Service Default Policies Enabled in the Firewall - Medium Security External< > Internal External< >DMZ DMZ< >Internal Port In Out In Out In Out http 80 N Y Y Y Y Y dns 53 N Y Y Y Y Y telnet 23 N Y N Y N Y smtp 25 N Y Y Y Y Y pop3 110 N Y Y Y Y Y nntp 119 N Y Y Y Y Y real audio/video 7070 Y N N Y N Y icmp N/A N Y N Y N Y H.323 1720 N Y N Y N Y T.
Firewall command reference Example Firewall Option Description Default Value none The factory default setting none is not a security level it allows you to manually configure your own policies/ portfilters. Explicitly setting none sets a security level that does not contain any policies/portfilters. None (factory default setting) high Your system uses the high firewall security level, providing a high level of firewall security between interfaces.
Firewall Firewall command reference Firewall blocking logging enabled. Firewall intrusion logging disabled. See also firewall enable|disable firewall set securitylevel 4.3.2.0.
Firewall command reference Firewall Option Description Default Value name An existing firewall policy. To display policy names, use the FIREWALL LIST POLICIES command. N/A --> firewall show policy ext-dmz Example Firewall Policy: ext-dmz Interface Type 1: external Interface Type 2: dmz Allow Only Validator: false See also FIREWALL LIST POLICIES See also firewall set securitylevel 4.3.2.0.8 FIREWALL LIST PROTOCOL Syntax firewall list protocol Description This command lists the.
Firewall Firewall command reference 4.3.2.0.9 FIREWALL ADD DOMAINFILTER Syntax FIREWALL ADD DOMAINFILTER Description This command adds a new domainfilter. Your must specify the url which is an alphanumeric string including wildcard chars("*") and ".". Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
Firewall command reference Firewall 4.3.2.0.11 FIREWALL DELETE DOMAINFILTER Syntax firewall delete domainfilter Description This command is used for deleting the URL filter created using the previous command Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value filtername Any alphanumeric string.
Firewall Firewall command reference Option Description Default Value name An arbitrary name that identifies the portfilter. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A policyname An existing firewall policy. To display policy names, use the FIREWALL LIST POLICIES command.
Firewall command reference Firewall The following example allows SMTP (Simple Mail Transfer Protocol) packets inbound and outbound between the internal interface to the DMZ interface. This is a popular protocol that is provided by the Firewall. You do not need to specify the portnumber - the Firewall does this for you.
Firewall Firewall command reference Option Description Default Value name An arbitrary name that identifies the portfilter. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A policyname An existing firewall policy. To display policy names, use the FIREWALL LIST POLICIES command. N/A IPaddress The source and destination IP address. The IP address is displayed in the following format: 192.168.102.3 N/A Mask the IP Mask address.
Firewall command reference Options Firewall The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value policyname An existing firewall policy. To display policy names, use the FIREWALL LIST POLICIES command. N/A Example --> firewall clear portfilters ext-int See also FIREWALL DELETE PORTFILTER FIREWALL LIST POLICIES 4.3.2.0.
Firewall Firewall command reference Options Example • Portfilter ID number • Portfilter name • Type - port number range or specified port number • Port range used by the specified TCP or UDP protocol (e.g., 53 for DNS, 25 for SMTP). For non-TCP/UDP protocols, the port range is set to 0-0.
Firewall command reference Description Options Example Firewall This command displays information about a single portfilter that was added to a firewall policy using the firewall policy add portfilter command. The following portfilter information is displayed: • Portfilter name • Transport type used by the protocol (e.g.
Firewall Firewall command reference Status : enabled Permitted? : true See also FIREWALL LIST POLICIES FIREWALL LIST PORTFILTERS 4.3.2.0.18 FIREWALL ADD VALIDATOR Syntax FIREWALL ADD VALIDATOR {INBOUND|OUTBOUND|BOTH} Description This command adds a validator to a firewall policy. Traffic is blocked based on the source/ destination IP address and netmask.
Firewall command reference Example Firewall In the following example, a policy is created, then a validator added to block inbound and outbound traffic from/to the IP address stated. All other traffic is allowed. --> firewall add policy ext-int external-internal blockonly-val --> firewall add validator v1 ext-int both 192.168.102.3 255.255.255.255 See also firewall firewall firewall firewall add policy list policies delete validator show validator 4.3.2.0.
Firewall Firewall command reference • Options Example Host mask address The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value policyname An existing firewall policy. To display policy names, use the FIREWALL LIST POLICIES command.
Firewall command reference Example Firewall Option Description Default Value policyname An existing firewall policy. To display policy names, use the FIREWALL LIST POLICIES command. N/A --> firewall show validator v1 ext-int Firewall Host Validator: v1 Direction: both Host IP: 192.168.103.2 Host Mask: 255.255.255.0 See also FIREWALL ADD VALIDATOR FIREWALL LIST VALIDATORS FIREWALL LIST POLICIES 4.3.2.0.
Firewall Firewall command reference Description Note: This command sets the DOS (Denial of Service) attack block duration Intrusion Detection Setting (IDS). A DOS attack is an attempt by an attacker to prevent legitimate users from using a service. If a DOS attack is detected, all suspicious hosts are blocked for a set time limit. This command allows you to specify the duration of the block time limit.
Firewall command reference Firewall 4.3.2.0.25 FIREWALL SET IDS MAXPING Syntax FIREWALL SET IDS MAXPING Description This command sets the maximum number of pings per second that are allowed before an Echo Storm is detected. Echo Storm is a DOS (Denial of Service) attack. An attacker sends oversized ICMP datagrams to the system using the ‘ping’ command. This can cause the system to crash, freeze or reboot, resulting in denial of service to legitimate users.
Firewall Firewall command reference Once the maximum number of unfinished TCP handshaking sessions is reached, an attempted DOS attack is detected. The suspected attacker is blocked for the time limit specified in the FIREWALL SET IDS DOSattackblock command. Note: This command is nothing but an alias of the corresponding “security set IDS” command Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
Firewall command reference Description Note: Firewall This command allows you to set the time limit during which suspected SYN floods are counted. If the number of SYN floods counted within the specified duration is greater than the threshold set by either FIREWALL SET IDS FLOODTHRESHOLD OR FIREWALL SET IDS PORTFLOODTHRESHOLD, the suspected attacker is blocked for the time limit specified in the command FIREWALL SET IDS DOSATTACKBLOCK.
Firewall Firewall command reference Example --> firewall set IDS floodthreshold 25 See also security set IDS floodthreshold 4.3.2.0.30 FIREWALL SET IDS PORTFLOODTHRESHOLD Syntax FIREWALL SET IDS PORTFLOODTHRESHOLD Description This command allows you to set the maximum number of SYN packets that can be sent to a single port before a port flood is detected.
Firewall command reference Firewall Option Description Default Value duration The length of time (in seconds) that scanning type traffic is counted for. 60 (seconds) Example --> firewall set IDS scanperiod 90 See also security set IDS scanperiod 4.3.2.0.32 FIREWALL SET IDS SCANTHRESHOLD Syntax FIREWALL SET IDS SCANTHRESHOLD Description This command allows you to set the maximum number of scanning packets that can be received before a port scan is detected.
Network address translation - NAT Example Overview • Use Victim Protection status (true or false) • DOS attack block duration (in seconds) • Scan attack block duration (in seconds) • Victim protection block duration (in seconds) • Maximum TCP open handshaking count allowed (per second) • Maximum ping count allowed (per second) • Maximum ICMP count allowed (per second) --> firewall show IDS Firewall IDS: IDS Enabled: Use Blacklist: Use Victim Protection: Dos Attack Block Duration: Scan Atta
NAT support on AT-iMG Models Network address translation - NAT • static NAT: defines a fixed address translation from the internal network to the external network • dynamic NAT: translates from a pool of local IP addresses to a pool of global IP addresses NAT provides a mechanism for reducing the need for globally unique IP addresses. It allows you to use addresses that are not globally unique on your internal network and translate them to a single globally unique external address 10.0.0.3 10.0.0.2 24.
Network address translation - NAT Interactions of NAT and other security features For outbound sessions, an address is picked from a pool by hashing the source IP address for a pool index and then hashing again for an address index. For inbound sessions to make use of the global pool, it is necessary to create a reserved mapping. See below for more information on reserved mappings. 4.4.2.1 Reserved mappings Reserved mapping is used to support NAT traversal.
NAT and secondary IP addresses Network address translation - NAT However, if the firewall is enabled, there is a matter of precedence to consider if reserved mapping has been created for a particular TCP port but the firewall is not configured to allow in TCP data for that port. In this case the blocking by the firewall will take precedence.
Network address translation - NAT TABLE 4-7 NAT command reference NAT CLI Commands and Product Category Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E A B C Modular NAT ENABLE X X X X X X X X X NAT DISABLE X X X X X X X X X NAT ADD GLOBALPOOL X X X X X X X X X NAT ADD GLOBALPOOL X X X X X X X X X NAT CLEAR GLOBALPOOLS X X X X X X X X X NAT DELETE GLOBALPOOL X X X X X X X X X NAT IKETRANSLATION X X X X X X X X X NAT
NAT command reference Description Note: Network address translation - NAT This command enables NAT between an existing security interface and a network interface type. NAT is enabled between the security interface and all the interfaces that belong to the chosen network interface type. You must enable the Security package using the command SECURITY ENABLE if you want to use the NAT module to configure security for your system. An interface is either an inside or outside interface.
Network address translation - NAT NAT command reference Option Description Default Value internal Allows NAT to be enabled/disabled between the interfacename and all interfaces that belong to the internal interface type. N/A dmz Allows NAT to be enabled/disabled between the interfacename and all interfaces that belong to the DMZ interface type. The interfacename must be an external interface type.
NAT command reference Description Note: Network address translation - NAT The NAT ENABLE COMMAND creates an IP address for the outside security interface; however, you may want to use more than one outside IP address. For example, if your ISP provides multiple IP addresses, you might want to map an outside address to an inside interface that is your web server, and map another outside address to an inside interface that is your mail server.
Network address translation - NAT Example NAT command reference Option Description Default Value mask The subnet mask of the network IP address. N/A endaddress The last IP address in the range of addresses that make up the global address pool. N/A Example 1 This example creates a network address pool that allows NAT to translate packets between the external interface and the DMZ interface type.
NAT command reference Network address translation - NAT Option Description Default Value interfacename The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command. N/A Example --> nat clear globalpools extinterface See also nat add globalpool security list interfaces 4.4.5.1.
Network address translation - NAT NAT command reference IKE establishes a shared security policy and authenticates keys for services that require keys, such as IPSec. Before any IPSec traffic can be passed, each router/firewall/host must verify the identity of its peer. This can be done by manually entering pre-shared keys into both hosts or by a CA service.
NAT command reference Example Network address translation - NAT Option Description Default Value interfacename The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command.
Network address translation - NAT Example NAT command reference Option Description Default Value name An existing global IP address. To display global IP addresses, use the NAT LIST GLOBALPOOLS command. N/A interfacename The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command.
NAT command reference Network address translation - NAT Option Description Default Value name An arbitrary name that identifies a reserved mapping configuration. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A interfacename The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using the NAT ENABLE command.
Network address translation - NAT NAT command reference between the outside IP address and the individual host based on the transport information given in this command. Note: Before you can add reserved mapping, you must enable a NAT object using the command NAT ENABLE Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable).
NAT command reference Network address translation - NAT Option Description Default Value rsvp Resource Reservation Protocol (RSVP) is set as the transport type. Supports the reservation of resources across an IP network. See http://www.ietf.org/rfc/ rfc2205.txt. N/A ospf Open Shortest Path First (OSPF) is set as the transport type. A link-state routing protocol. See http:// www.ietf.org/rfc/rfc1583. N/A ipip IP-within-IP Encapsulation Protocol. Encapsulates an IP datagram within a datagram.
Network address translation - NAT Example NAT command reference Option Description Default Value name An arbitrary name that identifies a reserved mapping configuration. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A interface name The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using the NAT ENABLE command.
NAT command reference Description Note: Network address translation - NAT This command maps an outside IP security interface (enabled as a NAT object using the NAT ENABLE command) to an individual IP address inside the network. NAT translates packets between the outside IP address and the individual host based on the transport information given in this command.
Network address translation - NAT NAT command reference Option Description Default Value gre Generic Routing Encapsulation (GRE).Tunneling protocol developed by Cisco that can encapsulate a wide variety of network layer protocol packet types inside IP Tunnel See http://www.ietf.org/rfc/rfc2784.txt. N/A rsvp Resource Reservation Protocol (RSVP) is set as the transport type. Supports the reservation of resources across an IP network. See http://www.ietf.org/rfc/ rfc2205.txt.
NAT command reference Network address translation - NAT Option Description Default Value interfacename The name of an existing security interface (external or DMZ) created and connected to an inside interface (DMZ or internal) using the NAT ENABLE command. To display security interfaces, use the SECURITY LIST INTERFACES command. N/A Example --> nat clear resvmaps extinterface See also NAT DELETE RESVMAP SECURITY LIST INTERFACES 4.4.5.1.
Network address translation - NAT NAT command reference Description This command deletes a single NAT reserved mapping that was added to an outside security interface using the nat add resvmap commands. Options The following table gives the range of values for each option that can be specified with this command and a Default Value (if applicable). Option Description Default Value name An existing global IP address. To display global IP addresses, use the nat list resvmaps command.
NAT command reference Network address translation - NAT Option Description Default Value enable|disable Enables/Disables an existing rule to be used/not to be used to match against inbound packets for translations. N/A Example --> nat set resvmap rm1 extinterface enable See also nat add resvmap interfacename 4.4.5.1.
Network address translation - NAT NAT command reference 4.4.5.1.
NAT command reference Example Network address translation - NAT • NAT object name • Outside security interface name • Inside interface type --> nat status NAT enabled on: ID | Name | Interface | Type -----------------------------------------1 | n2 | ip2 | internal 2 | n1 | if1 | internal -----------------------------------------See also nat enable iMG/RG Software Reference Manual (IPNetwork Functions) 4-157
Network address translation - NAT 4-158 iMG/RG Software Reference Manual (IPNetwork Functions) NAT command reference
DHCP support Dynamic Host Configuration Protocol 5. System Administration 5.1 Dynamic Host Configuration Protocol The Dynamic Host Configuration Protocol (DHCP) is defined in RFC 1541 and provides a mechanism for passing configuration information to hosts on a TCP/IP network. DHCP is based on the Bootstrap Protocol (BOOTP) defined in RFC 1542, but adds automatic allocation of reusable network addresses and additional configuration options.
Dynamic Host Configuration Protocol DHCP server The devices also support DHCP relay functionality. In this case the intelligent Multiservice Gateway picks up DHCP requests sent by hosts connected to the internal interfaces, and forwards their requests to an external DHCP server and then routes back to the hosts the replies that are received from the server. 5.1.
DHCP server Dynamic Host Configuration Protocol The following DHCP server configuration will create a range of 10 available IP addresses in the 19.168.219.0 subnet: dhcpserver add subnet mysubnet 192.168.219.10 192.168.219.20 dhcpserver set subnet mysubnet dhcpserver set subnet mysubnet dhcpserver subnet mysubnet add 192.168.220.30 dhcpserver subnet mysubnet add dhcpserver subnet mysubnet add dhcpserver subnet mysubnet add 192.168.219.0 255.255.255.
Dynamic Host Configuration Protocol Note: DHCP client Note that you will still need to have a suitable subnet declaration – for example, a subnet 192.169.219.0 with netmask 255.255.255.0, as shown earlier. Any configuration options you define in this subnet will also be offered to every fixed host you have added which is also on the given subnet.
DHCP client Dynamic Host Configuration Protocol Addresses allocated by DHCP expire after the specified lease time runs out. If this happens, the DHCP client must relearn its configuration by repeating the process described above. The client will attempt to initiate renewal of a held lease well before it is due to expire (approximately half way through the total duration of the lease). This avoids the problem of an active interface being unexpectedly disabled and dropping normal IP traffic.
Dynamic Host Configuration Protocol DHCP client 5.1.3.2 Support for AutoIP The DHCP client supports also IP address auto-configuration, to be referred to as AutoIP in this manual. This includes support for RFC2563, which allows network administrators to configure DHCP servers to deny this auto-configuration capability to clients. In summary, AutoIP will be engaged after a DHCP client fails to contact a DHCP server and cannot obtain a lease. A pseudo-random algorithm invents an IP address on the 169.
DHCP client Dynamic Host Configuration Protocol If you choose this mode, you must tell DHCP client how large an IP address lease pool you would like the new server to have, and which IP interface you want the new DHCP server to bind to.
Dynamic Host Configuration Protocol DHCP Relay • A lease time of one hour is requested. • A client identifier of 00:20:2b:01:02:03 is specified. • In the event of a DHCP server being unavailable, the DHCP client will automatically assign an address using AutoIP. • Any DNS server addresses received from a server will be passed to the DNS relay. (There is also an analogous option to pass the addresses to the DNS client).
DHCP Server command reference TABLE 5-1 Commands Dynamic Host Configuration Protocol DHCP server CLI commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E A B C Modular DHCPSERVER ADD USERS CLASS X X X X X X X X X DHCPSERVER ADD VENDOR CLASS X X X X X X X X X DHCPSERVER CLEAR CLASSES X X X X X X X X X DHCPSERVER DELETE CLASS X X X X X X X X X DHCPSERVER LIST CLASSES X X X X X X X X X DHCPSERVER SET USERS CLASS X X X X X X X X X DHCPS
Dynamic Host Configuration Protocol Commands DHCP Server command reference Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C DHCPSERVER SET FIXEDHOST IPADDRESS X X X X X X X X X DHCPSERVER SET FIXEDHOST DEFAULTLEASETIME X X X X X X X X X DHCPSERVER SET FIXEDHOST MACADDRESS X X X X X X X X X DHCPSERVER SET FIXEDHOST MAXLEASETIME X X X X X X X X X DHCPSERVER ADD SHAREDNETWORK X X X X X X X X X DHCPSERVER CLEAR SHAREDNETWORKS X X X X
DHCP Server command reference Commands Dynamic Host Configuration Protocol Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C DHCPSERVER SUBNET CLEAR IPRANGES X X X X X X X X X DHCPSERVER SUBNET CLEAR OPTIONS X X X X X X X X X DHCPSERVER SUBNET CLEAR POOLS X X X X X X X X X DHCPSERVER SUBNET DELETE IPRANGE X X X X X X X X X DHCPSERVER SUBNET DELETE OPTION X X X X X X X X X DHCPSERVER SUBNET DELETE POOL X X X X X X X X X DHCPSE
Dynamic Host Configuration Protocol DHCP Server command reference Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Commands DHCPSERVER ENABLE|DISABLE X X X X X X X X X DHCPSERVER FORCERENEW X X X X X X X X X DHCPSERVER LIST OPTIONS X X X X X X X X X DHCPSERVER LIST HOST X X X X X X X X X DHCPSERVER SET ALLOWUNKNOWNCLIENTS X X X X X X X X X DHCPSERVER SET BOOTP X X X X X X X X X DHCPSERVER SET DEFAULTLEASETIME X X X X X
DHCP Server command reference Options Example Dynamic Host Configuration Protocol The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name The name of the class N/A vendorclassdata Vendo calls identifier string to be matched N/A --> dhcpserver add class myclass vendor-class myvendorclass 5.1.5.1.
Dynamic Host Configuration Protocol Example DHCP Server command reference • User class data • cVendor class data --> dhcpserver list classes DHCP Server Classes: ID | Class Name | UserClassData | VendorClassData ----|------------------|----------------------|------------------1 | myclass | myuserclass | -----------------------------------------------------------------5.1.5.1.
DHCP Server command reference Example Dynamic Host Configuration Protocol Option Description Default Value name The name of the class N/A uvendorclassdata Vendo calls identifier string to be matched N/A --> dhcpserver set class myclass vendor-class myvendorclass 5.1.5.1.8 DHCPSERVER SHOW CLASS Syntax DHCPSERVER SHOW CLASS Description This command shwo DHCP server class informations.
Dynamic Host Configuration Protocol Example DHCP Server command reference Option Description Default Value name The name of the class N/A identifier The identifier of the option available from command dhcpserver list options N/A value The value of the option N/A --> dhcpserver class myclass add option subnet-mask 255.255.255.0 5.1.5.1.10 DHCPSERVER CLASS CLEAR OPTION Syntax DHCPSERVER CLASS CLEAR OPTIONS Description This command deletes all DHCP server class options.
DHCP Server command reference Example Dynamic Host Configuration Protocol • DHCP server interface ID number • Option identifier • Option value --> dhcpserver class myclass list options DHCP Server Classes: ID | Identifier | Value | ----|------------------|----------------------| 1 | subnet-mask | 255.255.2555.0 | ---------------------------------------------5.1.5.1.
Dynamic Host Configuration Protocol Options Example DHCP Server command reference The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name The existing name of excluded IP address obtained from the command dhcpserver list excluded N/A --> dhcpserver delete exclude onepc 5.1.5.1.
DHCP Server command reference Dynamic Host Configuration Protocol Option Description Default Value ipinterface The name of the existing interface that you want DHCP server to operate on. To display interface names, use the IP LIST INTERFACES command. N/A Example --> dhcpserver add interface lan See also DHCPRELAY ADD INTERFACE IP LIST INTERFACES 5.1.5.1.
Dynamic Host Configuration Protocol Example --> dhcpserver delete interface lan See also DHCPSERVER ADD INTERFACE DHCPSERVER LIST INTERFACES DHCP Server command reference 5.1.5.1.20 DHCPSERVER LIST INTERFACES Syntax DHCPSERVER LIST INTERFACES Description This command lists the existing DHCP server IP interfaces previously defined using the dhcpserver add interface command.
DHCP Server command reference Example Dynamic Host Configuration Protocol Option Description Default Value Name An arbitrary name that identifies the fixed host mapping. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A IPaddress The IP address that is assigned to a DHCP client based on the client’s MAC address, in the format: 192.168.102.
Dynamic Host Configuration Protocol DHCP Server command reference Option Description Default Value name An existing fixed host. To display fixed host names, use the DHCPSERVER LIST FIXEDHOSTS command. N/A Example --> dhcpserver delete fixedhost myhost See also DHCPSERVER ADD FIXEDHOST DHCPSERVER CLEAR FIXEDHOSTS DHCPSERVER LIST FIXEDHOST 5.1.5.1.
DHCP Server command reference Note: Dynamic Host Configuration Protocol You are not allowed to create a fixed host mapping with an IP address that is already present inside a configured, dynamic IP range on a subnet. The reverse is also forbidden; you cannot add addresses into a dynamic IP range that are already configured as fixed host addresses. The CLI will display a warning if you attempt to do this.
Dynamic Host Configuration Protocol See also DHCP Server command reference DHCPSERVER LIST FIXEDHOSTS DHCPSERVER SET FIXEDHOST MACADDRESS 5.1.5.1.27 DHCPSERVER SET FIXEDHOST MACADDRESS Syntax DHCPSERVER SET FIXEDHOST MACADDRESS Description This command sets the MAC address for an existing fixed host mapping. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
DHCP Server command reference Dynamic Host Configuration Protocol 5.1.5.1.29 DHCPSERVER ADD SHAREDNETWORK Syntax DHCPSERVER ADD SHAREDNETWORK Description This command creates a shared network. All the subnets part of the same physical network should be included in a shared network. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Dynamic Host Configuration Protocol Description Example DHCP Server command reference This command lists the following information about existing DHCP fixed host mappings: • Sahred Nnetwork ID • Sharednetwork name --> dhcpserver list sharednetorks DHCP server fixed host mappings: DHCP Server Shared-Networks: ID | Shared-Network Name ----|-------------------------1 | myshared ------------------------------5.1.5.1.
DHCP Server command reference Options Example Dynamic Host Configuration Protocol The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name The name of the shared network. N/A subnetname Subnet name N/A --> dhcpserver sharednetwork myshared delete sharedsubnet mysubnet 5.1.5.1.
Dynamic Host Configuration Protocol DHCP Server command reference netmask The netmask address of the subnet, for example: 255.255.255.0 N/A startaddr The first IP address in the pool of addresses. The IP address is displayed in the following format: 192.168.102.3 N/A endaddr The last IP address in the pool of addresses. The IP address is displayed in the following format: 192.168.102.3 N/A Example --> dhcpserver add subnet sub1 239.252.197.0 255.255.255.0 239.252.197.10 239.252.197.
DHCP Server command reference See also Dynamic Host Configuration Protocol DHCPSERVER CLEAR SUBNETS 5.1.5.1.
Dynamic Host Configuration Protocol Option name DHCP Server command reference Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. number Example An existing subnet. To display subnet numbers, use the DHCPSERVER LIST SUBNETS command. --> dhcpserver show subnet sub1 DHCP Server Subnet: Subnet: Netmask: Max. lease time: Default lease time: See also N/A sub1 192.168.103.0 255.255.255.0 70000 seconds 30000 seconds DHCPSERVER SHOW 5.1.
DHCP Server command reference Dynamic Host Configuration Protocol 5.1.5.1.43 DHCPSERVER SET SUBNET DEFAULTLEASETIME Syntax DHCPSERVER SET SUBNET {|} DEFAULTLEASETIME Description This command sets the default lease time for an existing subnet. This command setting overrides the global default lease time setting for this particular subnet.
Dynamic Host Configuration Protocol Option name DHCP Server command reference Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. number An existing subnet. To display subnet numbers, use the DHCPSERVER LIST SUBNETS command. N/A enabled Allows DHCP server to give out its own host IP address as the default gateway address.
DHCP Server command reference Dynamic Host Configuration Protocol Example --> dhcpserver set subnet sub1 hostisdnsserver enabled See also DHCPSERVER LIST SUBNETS 5.1.5.1.46 DHCPSERVER SET SUBNET MAXLEASETIME Syntax DHCPSERVER SET SUBNET {|} MAXLEASETIME Description This command sets the maximum lease time for an existing subnet. This command setting overrides the global maximum lease time setting for this particular subnet.
Dynamic Host Configuration Protocol Option name DHCP Server command reference Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. number An existing subnet. To display subnet numbers, use the DHCPSERVER LIST SUBNETS command. N/A ip address The new IP address for the subnet (format: 192.168.102.3) N/A netmask The new netmask address for the subnet, for example: 255.255.255.0 N/A Example --> dhcpserver set subnet sub1 subnet 239.
DHCP Server command reference Dynamic Host Configuration Protocol Example --> dhcpserver subnet sub1 add iprange 239.252.197.0 239.252.197.107 See also DHCPSERVER ADD SUBNET DHCPSERVER LIST SUBNETS DHCPSERVER SUBNET LIST IPRANGES 5.1.5.1.49 DHCPSERVER SUBNET ADD OPTION Syntax DHCPSERVER SUBNET {|} ADD OPTION Description This command allows you to configure the DHCP server using the options detailed in RFC2132.
Dynamic Host Configuration Protocol DHCP Server command reference number An existing subnet. To display subnet numbers, use the DHCPSERVER LIST SUBNETS command. N/A identifier A text string that identifies a DHCP server configuration option. N/A value The value associated with the option identifier.
DHCP Server command reference Dynamic Host Configuration Protocol Option Description Default Value name An existing subnet. To display subnet names, use the DHCPSERVER LIST SUBNETS command. N/A number An existing subnet. To display subnet numbers, use the DHCPSERVER LIST SUBNETS command. N/A Example --> dhcpserver subnet sub1 clear ipranges See also DHCPSERVER SUBNET LIST IPRANGES DHCPSERVER SUBNET DELETE IPRANGE 5.1.5.1.
Dynamic Host Configuration Protocol DHCP Server command reference Description This command delete all the pools of the specified subnet Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example Option Description Default Value name An existing subnet. To display subnet names, use the DHCPSERVER LIST SUBNETS command. N/A --> dhcpserver subnet sub1 clear pools 5.1.5.1.
DHCP Server command reference Dynamic Host Configuration Protocol Description This command deletes a single option that was created using the DHCPSERVER SUBNET ADD OPTION command. Once deleted, the option will no longer be given out by the DHCP server. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing subnet.
Dynamic Host Configuration Protocol DHCP Server command reference 5.1.5.1.57 DHCPSERVER SUBNET LIST IPRANGES Syntax DHCPSERVER SUBNET {|} LIST IPRANGES Description This command lists the IP range(s) for an existing subnet that has been added using the dhcpserver add subnet command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option name Description Default Value An existing subnet.
DHCP Server command reference Option name Dynamic Host Configuration Protocol Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. number Example An existing subnet. To display subnet numbers, use the DHCPSERVER LIST SUBNETS command. N/A --> dhcpserver subnet sub1 list options Options for subnet: sub1 ID | Identifier | Value -----|------------------|-----------------1 | ip-forwarding | false 2 | subnet-mask | 255.255.255.
Dynamic Host Configuration Protocol DHCP Server command reference Description This command adds a class to be allowed by the pool. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example Option Description Default Value name An existing subnet. To display subnet names, use the DHCPSERVER LIST SUBNETS command.
DHCP Server command reference Dynamic Host Configuration Protocol 5.1.5.1.62 DHCPSERVER SUBNET POOL ADD OPTION Syntax DHCPSERVER SUBNET POOL ADD OPTION Description This command add an option to the specified pool. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example Option Description Default Value name An existing subnet.
Dynamic Host Configuration Protocol Example DHCP Server command reference --> dhcpserver subnet sub1 add pool mypool poolrange 10.17.90.1 10.17.90.128 5.1.5.1.64 DHCPSERVER SUBNET POOL CLEAR ALLOWCLASS Syntax DHCPSERVER SUBNET POOL CLEAR ALLOWCLASS Description This command clear all the allowed class fro a pool. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
DHCP Server command reference Options Dynamic Host Configuration Protocol The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option name Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. poolname Example Name/Id of the pool N/A --> dhcpserver subnet sub1 pool mypool clear options 5.1.5.1.
Dynamic Host Configuration Protocol Option name DHCP Server command reference Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. Example poolname Name/Id of the pool N/A classname Name of the class to be allowed by the pool N/A --> dhcpserver subnet sub1 pool mypool delete allowclass myclass 5.1.5.1.
DHCP Server command reference Option name Dynamic Host Configuration Protocol Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. Example poolname Name/Id of the pool N/A identifier The identifier of the option available from command dhcpserver list options identifier --> dhcpserver subnet sub1 pool mypool delete option auto-configure 5.1.5.1.
Dynamic Host Configuration Protocol Option name DHCP Server command reference Description Default Value An existing subnet. To display subnet names, use the N/A DHCPSERVER LIST SUBNETS command. poolname Example Name/Id of the pool N/A --> dhcpserver subnet sub1 pool mypool list allowclass 5.1.5.1.73 DHCPSERVER SUBNET POOL LIST DENYCLASS Syntax DHCPSERVER SUBNET POOL LIST DENYCLASS Description This command list class to be denied by the Pool.
DHCP Server command reference Example Dynamic Host Configuration Protocol --> dhcpserver subnet sub1 pool mypool list options 5.1.5.1.75 DHCPSERVER SUBNET POOL LIST POOLRANGE Syntax DHCPSERVER SUBNET POOL LIST POOLRANGE Description This command allows you to list the poolrange of a pool Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Dynamic Host Configuration Protocol DHCP Server command reference Example --> dhcpserver enable See also DHCPRELAY ENABLE|DISABLE DHCPSERVER ADD INTERFACE 5.1.5.1.77 DHCPSERVER FORCERENEW Syntax DHCPSERVER FORCERENEW Description This command prompts the DHCP server to issue a DHCPFORCERENEW message to the DHCP client at the given IP address. Note that the server will only do this if the DHCP client is on one of the subnets the DHCP server has been configured to serve.
DHCP Server command reference Example Dynamic Host Configuration Protocol --> dhcpserver list options subnet-mask static-routes nisplus-servers time-offset trailer-encapsulation tftp-server-name routers arp-cache-timeout bootfile-name time-servers ieee802-3-encapsulation mobile-ip-home-agent ien116-name-servers default-tcp-ttl smtp-server domain-name-servers tcp-keepalive-interval pop-server log-servers tcp-keepalive-garbage nntp-server cookie-servers nis-domain www-server lpr-se
Dynamic Host Configuration Protocol Options DHCP Server command reference The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value enabled IP addresses are dynamically assigned to unknown clients Enabled disabled IP addresses are not dynamically assigned to unknown clients Example --> dhcpserver set allowunknownclients disabled See also DHCPCLIENT SET INTERFACECONFIG CLIENTID 5.
DHCP Server command reference Options Example Dynamic Host Configuration Protocol The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value enabled DHCP server responds to BOOTP queries. Enabled disabled DHCP server does not respond to BOOTP queries. --> dhcpserver set bootp disabled 5.1.5.1.
Dynamic Host Configuration Protocol DHCP Server command reference Option Description Default Value maxleasetime The maximum time (in seconds) for a lease when the client requesting the lease does not ask for a specific expiry time 86400 Example --> dhcpserver set maxleasetime 90000 See also DHCPSERVER SET DEFAULTLEASETIME 5.1.5.1.
DHCP Client command reference Dynamic Host Configuration Protocol 5.1.6 DHCP Client command reference This section describes the commands available on the AT-RG624/634 Residential Gateway to enable, configure and manage the DHCP Client module. 5.1.6.
Dynamic Host Configuration Protocol DHCP Client command reference Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C Commands DHCPCLIENT SET INTERFACECONFIG DHCPINFORM ENABLED|DISABLED X X X X X X X X X DHCPCLIENT SET INTERFACECONFIG DHCPSERVERPOOLSIZE X X X X X X X X X DHCPCLIENT SET INTERFACECONFIG DHCPSERVERINTERFACE X X X X X X X X X DHCPCLIENT SET INTERFACECONFIG FORCERENEW X X X X X X X X X DHCPCLIENT SET INTERFACECONFIG GIVEDNSTOCLIENT ENAB
DHCP Client command reference Dynamic Host Configuration Protocol Option Description Default Value name An arbitrary name that identifies the client interface. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A ip interface An IP address or An existing IP interface. The interface must have DHCP enabled. To display interface names, use the IP LIST INTERFACES command.
Dynamic Host Configuration Protocol DHCP Client command reference Option Description Default Value name An existing DHCP client interface. To display client interface names, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A number An existing DHCP client interface. To display client interface numbers, use the DHCPCLI- N/A ENT LIST INTERFACECONFIGS command. Example --> dhcpclient delete interfaceconfig config1 See also DHCPCLIENT LIST INTERFACECONFIGS 5.1.6.1.
DHCP Client command reference See also Dynamic Host Configuration Protocol DHCPCLIENT INTERFACECONFIG ADD REQUESTED OPTION DHCPCLIENT INTERFACECONFIG ADD REQUIRED OPTION For information on RFC 2132, see http://www.ietf.org/rfc/rfc2132.txt 5.1.6.1.5 DHCPCLIENT INTERFACECONFIG ADD REQUIRED OPTION Syntax DHCPCLIENT INTERFACECONFIG {|} ADD REQUIRED OPTION
Dynamic Host Configuration Protocol DHCP Client command reference Description This command tells the DHCP client to send a value for the given DHCP configuration option to a DHCP server. The DHCP server’s response depends on the type of option being sent out. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing DHCP client interface.
DHCP Client command reference See also Dynamic Host Configuration Protocol DHCPCLIENT LIST INTERFACECONFIGS DHCPCLIENT INTERFACECONFIG LIST SENT OPTIONS 5.1.6.1.7 DHCPCLIENT INTERFACECONFIG CLEAR SENT OPTIONS Syntax DHCPCLIENT INTERFACECONFIG {|} CLEAR SENT OPTIONS Description This command deletes all options that were previously added to an interfaceconfig using the DHCPCLIENT INTERFACECONFIG ADD SENT OPTION command.
Dynamic Host Configuration Protocol DHCP Client command reference Option Description Default Value name An existing DHCP client interface. To display client interface names, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A number An existing DHCP client interface. To display client interface numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command.
DHCP Client command reference Dynamic Host Configuration Protocol Example --> dhcpclient interfaceconfig client1 delete requested option 1 See also DHCPCLIENT DHCPCLIENT DHCPCLIENT DHCPCLIENT LIST INTERFACECONFIGS INTERFACECONFIG ADD REQUESTED OPTION INTERFACECONFIG ADD REQUIRED OPTION INTERFACECONFIG CLEAR REQUESTED OPTIONS 5.1.6.1.
Dynamic Host Configuration Protocol Description DHCP Client command reference This command lists the options that the DHCP client requests and/or requires from the DHCP server. These options were set using the dhcpclient interfaceconfig add requested/required option commands.
DHCP Client command reference Description Dynamic Host Configuration Protocol This command displays a list of the options that the DHCP client sends to the DHCP server. These options were set using the dhcpclient interfaceconfig add sent option command. The following information is displayed: • Option identification number • Option identifier (name) • Suggested value Options and their values are detailed in RFC2132.
Dynamic Host Configuration Protocol Example DHCP Client command reference • Interface identification number • Interface name • IP interface configured by the client interface • Requested lease time (in seconds) • Client identifier (if set) • Status of ip address auto-configuration (true or false) --> dhcpclient list interfaceconfigs DHCP Client Declarations: Requested ID | Name | Interface | Lease Time | Client ID | AutoIP -----|---------|-----------|------------|-------------------|------1
DHCP Client command reference Dynamic Host Configuration Protocol 5.1.6.1.15 DHCPCLIENT SET INTERFACECONFIG AUTOIP ENABLED|DISABLED Syntax DHCPCLIENT SET INTERFACECONFIG {|} AUTOIP {ENABLED | DISABLED} Description This command enables/disables IP address auto-configuration (Auto-IP). Auto-IP automatically configures an IP address when a DHCP client fails to contact a DHCP server and cannot obtain a lease. An IP address on the 169.
Dynamic Host Configuration Protocol DHCP Client command reference 5.1.6.1.16 DHCPCLIENT SET INTERFACECONFIG CLIENTID Syntax DHCPCLIENT SET INTERFACECONFIG {|} CLIENTID Description This command sets a unique client identifier that DHCP server uses to identify the client. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
DHCP Client command reference Dynamic Host Configuration Protocol Option Description Default Value name An existing DHCP client interface. To display client interface names, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A number An existing DHCP client interface. To display client interface numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A enabled DHCP client uses default gateway information it receives from DHCP server.
Dynamic Host Configuration Protocol DHCP Client command reference number An existing DHCP client interface. To display client interface numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A enabled Enables the dhcpinform message type. IP address and subnet mask will not be negotiated if this mode is selected. disabled disabled Disables the dhcpinform message type.
DHCP Client command reference Dynamic Host Configuration Protocol Example --> dhcpclient set interfaceconfig client1 dhcpserverpoolsize 5 See also DHCPCLIENT LIST INTERFACECONFIGS 5.1.6.1.20 DHCPCLIENT SET INTERFACECONFIG DHCPSERVERINTERFACE Syntax DHCPCLIENT SET INTERFACECONFIG {|} DHCPSERVERINTERFACE Description This command allows the user to specify an existing IP interface on which the automatically configured DHCP server can be created.
Dynamic Host Configuration Protocol DHCP Client command reference DHCP client will attempt to renew its lease early or, if using DHCPINFORM, will attempt to obtain a new set of configuration parameters from the DHCP server. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing DHCP client interface.
DHCP Client command reference Dynamic Host Configuration Protocol Option Description Default Value name An existing DHCP client interface. To display client interface names, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A number An existing DHCP client interface. To display client interface numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A enabled DHCP client passes DNS server addresses to DNS client.
Dynamic Host Configuration Protocol DHCP Client command reference number An existing DHCP client interface. To display client interface numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A enabled DHCP client passes DNS server addresses to DNS relay. enabled disabled DHCP client does not pass DNS server addresses to DNS relay. Example --> dhcpclient set interfaceconfig client1 givednstorelay disabled See also DHCPCLIENT LIST INTERFACECONFIGS 5.1.6.1.
DHCP Client command reference Dynamic Host Configuration Protocol 5.1.6.1.25 DHCPCLIENT SET INTERFACECONFIG NOCLIENTID Syntax DHCPCLIENT SET INTERFACECONFIG {|} NOCLIENTID Description This command deletes a client identifier from a DHCP client. The DHCP server must have ‘allowunknownclients’ enabled in order to work with DHCP clients that are not specifically named in DHCP server configuration or its lease database.
Dynamic Host Configuration Protocol DHCP Client command reference Option Description Default Value name An existing DHCP client interface. To display client interface names, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A number An existing DHCP client interface. To display client interface numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A requested lease time The lease time (in seconds) that a DHCP client requests from the DHCP server.
DHCP Client command reference Dynamic Host Configuration Protocol Option Description Default Value name An existing DHCP client interface. To display client interface names, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A number An existing DHCP client interface. To display client interface numbers, use the DHCPCLIENT LIST INTERFACECONFIGS command. N/A ipaddress The IP address of a DHCP server that DHCP client can use to obtain configuration parameters.
Dynamic Host Configuration Protocol DHCP Client command reference 5.1.6.1.30 DHCPCLIENT SET REBOOT Syntax DHCPCLIENT SET REBOOT Description When the DHCP client is restarted, it tries to reacquire the last address that it had. This command sets the time between the client trying to reacquire its last address and giving up then trying to discover a new address.
DHCP Relay Command Reference Dynamic Host Configuration Protocol The command does not have effect until the DHCPCLIENT UPDATE command is entered. To retrieve the current settings, use the DHCPCLIENT SHOW command. Options Example The following table gives the range of values for each option which can be specified with this command and a default value (if applicable).
Dynamic Host Configuration Protocol DHCP Relay Command Reference 5.1.7.
DHCP Relay Command Reference Dynamic Host Configuration Protocol 5.1.7.1.2 DHCPRELAY CLEAR SERVERS Syntax dhcprelay clear servers Description This command deletes all DHCP server IP addresses stored in DHCP relay's list of server IP addresses. Example --> dhcprelay clear servers See also dhcprelay delete server 5.1.7.1.
Dynamic Host Configuration Protocol DHCP Relay Command Reference Option Description Default Value enable Enables configuration of DHCP relay. enable disable Disables configuration of DHCP relay. enable Example --> dhcprelay enable See also dhcpserver enable|disable 5.1.7.1.5 DHCPRELAY LIST SERVERS Syntax DHCPRELAY LIST SERVERS Description This command displays the DHCP relay's list of DHCP server IP addresses with their identification numbers.
DHCP Relay Command Reference Domain name system - DNS Description This command updates the DHCP relay configuration. Changes made to the relay configuration will not take effect until this command has been entered. Example --> dhcprelay update dhcprelay: Reset request acknowledged. Reset imminent. 5.2 Domain name system - DNS DNS is an abbreviation for Domain Name System, a system for naming computers and network services that is organized into a hierarchy of domains.
Domain name system - DNS DNS Relay 5.2.1 DNS Relay gateway can act as a DNS relay. So, DNS packets that arrive at the Residential Gateway, addressed to the Residential Gateway, will be relayed on to a known DNS Server. In this way, devices on the LAN can treat the Residential Gateway as though it were the DNS Server. Only the Residential Gateway needs to know the address of the real DNS Server looking into it is internal DNS Relay servers list.
DNS Relay command reference TABLE 5-4 Domain name system - DNS DNS Relay Commands Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C DNSRELAY ADD LOCALDATABASE X X X X X X X X X DNSRELAY ADD SERVER X X X X X X X X X DNSRELAY CLEAR SERVERS X X X X X X X X X DNSRELAY DELETE SERVER X X X X X X X X X DNSRELAY ENABLE|DISABLE X X X X X X X X X DNSRELAY ENABLE|DISABLE X X X X X X X X X DNSRELAY SHOW X X X X X X X X
Domain name system - DNS DNS Relay command reference 5.2.3.1.2 DNSRELAY ADD SERVER Syntax DNSRELAY ADD SERVER Description This command adds the IP address of a DNS server to DNS relay’s list of server IP addresses. The relay can store a maximum of 10 DNS server addresses. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
DNS Relay command reference Domain name system - DNS Option Description Default Value ID number A number that identifies the DNS server in the DNS relay list. To display server numbers, use the DNSRELAY LIST SERVERS command. N/A Example --> dnsrelay delete server 3 See also DNSRELAY LIST SERVERS 5.2.3.1.5 DNSRELAY ENABLE|DISABLE Syntax DNSRELAY {ENABLE | DISABLE} Description This command enables/disables DNS relay on your device.
Domain name system - DNS See also DNS Relay command reference DNSRELAY LIST SERVERS 5.2.3.1.7 DNSRELAY LIST SERVERS Syntax DNSRELAY LIST SERVERS Description This command displays the DNS relay’s list of DNS server IP addresses with their identification numbers. Example --> dnsrelay list servers DNS Relay Servers: ID | IP Address -----|-----------------1 | 239.252.197.0 -----------------------5.2.3.1.
DNS Client command reference Domain name system - DNS Description This command sets the LAN domain name of your device. DHCP server can then be configured to give out this address to DHCP clients. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name The LAN domain name that identifies your device. N/A Example --> dnsrelay set landomainname alliedtelesyn.
Domain name system - DNS TABLE 5-5 DNS Client command reference DNS Client Commands Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C DNSCLIENT ADD SEARCHDOMAIN X X X X X X X X X DNSCLIENT ADD SERVER X X X X X X X X X DNSCLIENT CLEAR SEARCHDOMAINS X X X X X X X X X DNSCLIENT CLEAR SERVERS X X X X X X X X X DNSCLIENT DELETE SEARCHDOMAIN X X X X X X X X X DNSCLIENT DELETE SERVER X X X X X X X X X DNSCLIENT DELETE SERVER
DNS Client command reference Domain name system - DNS Description This command adds a server IP address to the server list. This enables you to retrieve a domain name for a given IP address. Options The following table gives the range of values for each that can be specified with this command and a default value (if applicable). Option Description Default Value ipaddress The IP address of the server that has an unknown domain name.
Domain name system - DNS DNS Client command reference Option Description Default Value searchstring A number that identifies a search string used to find the IP address for an incomplete domain name. To list domain search strings, use the DNSCLIENT LIST SEARCHDOMAINS command. N/A Example --> dnsclient delete searchdomain 1 See also DNSCLIENT CLEAR SEARCHDOMAINS DNSCLIENT LIST SEARCHDOMAINS 5.2.4.1.
SNTP features SNTP 1 | alliedtelesyn.com --------------------------5.2.4.1.8 DNSCLIENT LIST SERVERS Syntax DNSCLIENT LIST SERVERS Description This command lists the server IP addresses that you have added to DNS client using the DNSCLIENT ADD SERVER command. DNS client uses this list to retrieve a domain name for a given IP address. Example --> dnsclient list servers DNS Client Servers: ID | IP Address ----|-----------------1 | 192.168.100.7 2 | 192.168.100.1 ------------------------ 5.
SNTP Time zones and daylight savings (summer time) ent is configured to listen, and receives the synchronized time-based information. The client then configures itself based on this information, but sends no reply • Anycast Mode When the client is configured in anycast mode, it sends out a sync request to a local subnet broadcast address. One or several anycast SNTP servers can respond with an individual timestamp and a unicast address.
SNTP command reference TABLE 5-6 SNTP DNS Client Commands Fiber A Fiber B Fiber C Fiber D Fiber E Modular ADSL A ADSL B ADSL C SNTPCLIENT ADD SERVER X X X X X X X X X SNTPCLIENT CLEAR SERVERS X X X X X X X X X SNTPCLIENT DELETE SERVER X X X X X X X X X SNTPCLIENT LIST SERVERS X X X X X X X X X SNTPCLIENT SET DAYLIGHTSAVINGTIME X X X X X X X X X SNTPCLIENT SET TIMEZONE X X X X X X X X X SNTPCLIENT SET MODE X X X X X X X X X SN
SNTP SNTP command reference Example Option Description Default Value sntpipaddress The IP address of the dedicated unicast server that SNTP can use to synchronize its time. N/A sntphostname The hostname of the dedicated unicast server that SNTP can use to synchronize its time. N/A Example 1 - IP address --> sntpclient add server ipaddress 129.6.15.28 Example 2 - hostname --> sntpclient add server hostname time-a.nist.gov 5.3.3.1.
SNTP command reference SNTP 5.3.3.1.4 SNTPCLIENT LIST SERVERS Syntax SNTPCLIENT LIST SERVERS Description This command lists the servers added using the SNTPCLIENT ADD SERVER command. Example --> sntpclient list servers SNTPClient Servers: ID | IP Address -----|-----------------1 | 239.252.197.0 -----------------------See also SNTPCLIENT ADD SERVER 5.3.3.1.
SNTP SNTP command reference ference in time (in hours and minutes) from the UTC, and a description of the area of the world (from west to east) where the time difference is calculated: TABLE 5-7 5-98 Time Abbreviations when Setting Timezone Difference Time Zone + UTC World Area of Time Zone IDLW -1200 International Date Line West NT -1100 Nome HST -1000 Hawaii Standard AKST -0900 Alaska Standard YST -0900 Yukon Standard YDT -0800 Yukon Daylight PST -0800 US Pacific Standard MST
SNTP command reference TABLE 5-7 SNTP Time Abbreviations when Setting Timezone Difference (Continued) MET +0100 Middle European MEWT +0100 Middle European Winter SWT +0100 Swedish Winter BST +0100 British Summer EET +0200 Eastern Europe FST +0200 French Summer MEST +0200 Middle European Summer SST +0200 Swedish Summer IST +0200 Israeli Standard IDT +0300 Israeli Daylight BT +0300 Baghdad IT +0330 Iran USZ3 +0400 Russian Volga USZ4 +0500 Russian Ural INST +0530
SNTP SNTP command reference TABLE 5-7 Example Time Abbreviations when Setting Timezone Difference (Continued) EAST +1000 Eastern Australian Standard GST +1000 Guam Standard CADT +1030 Central Australian Daylight EADT +1100 Eastern Australian Daylight IDLE +1200 International Date Line East NZST +1200 New Zealand Standard NZT +1200 New Zealand NZDT +1300 New Zealand Daylight In the example below, the time zone is set to Unites States Eastern Standard Time, which is five hours earl
SNTP command reference SNTP Anycast mode Options • Enable the SNTP client sends time synchronized broadcast packets to the network and subsequently expects a reply from a valid timeserver. The client then uses the first reply it receives to establish a link for future sync operations in unicast mode. This server will then be added to the server association list. The client ignores any later replies from servers after the first one is received.
SNTP SNTP command reference Options Example The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value pollintv Sets the polling interval (in minutes) that SNTP client will sync with a designated server. This can be any value between 0 and 30. 0 (disabled) --> sntpclient set pollintv 10 5.3.3.1.
SNTP command reference SNTP 5.3.3.1.11 SNTPCLIENT SET RETRIES Syntax SNTPCLIENT SET RETRIES Description This command sets the number of packet retry attempts when no response is received from a timeserver. The SNTP client will send another packet for synchronization after a timeout. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
SNTP SNTP command reference Packet Retry Attempts: Daylight Saving : Daylight Saving Done : sntpclient list servers See also 2 Enabled True SNTPCLIENT LIST SERVERS 5.3.3.1.13 SNTPCLIENT SET CLOCK Syntax SNTPCLIENT SET CLOCK Description This command sets the system clock to a specific time and date. This command can be used as an alternative to synchronizing the local system clock via internal or external timeservers.
MGCP Functional Description VoIP MGCP 6. Voice Service 6.1 VoIP MGCP The MGCP (Media Gateway Control Protocol) is a protocol that assumes a call control architecture where the call control ‘intelligence’ is outside the gateways and is handled by external call control elements, the call agent. MGCP assumes that the gateways have limited storage and functionality.
VoIP MGCP Piggyback 6.1.1.2 Custom endpoints syntax iMG/RG/iBG devices allow analog endpoint MGCP identifiers to be customized to meet VoIP network configuration requirements.
Wildcard VoIP MGCP 6.1.3 Wildcard MG/RG/iBG support wild card endpoint identifiers. By default wild card support is disabled. It can be enabled/disabled via the following CLI command: voip mgcp protocol set wildcard enable|disable When wild card support is enabled, MG/RG/iBG replace the local name description part of the endpoint identifier with the “*” char on RSIP messages.
VoIP MGCP Call Agent Failover When heartbeat is enabled, each endpoint (or User Agent) supervises the operative status of Call Agent independently on the status of the other endpoints. It’s possible force a specific User Agent to check for Call Agent activity and to be master also for the other User Agents. If the specific endpoint does not receive a command from the Call Agent within the heartbeat timer time-out it forces all the User Agents to enter into the disconnected procedure.
VOIP MGCP command reference TABLE 6-1 VoIP MGCP Functional Mapping for VoIP MGCP Fiber Fiber Fiber Fiber Fiber A B C D E Functions Modular ADSL A ADSL B ADSL C Endpoints X X X X X X X X X Piggyback X X X X X X X X X Wildcard X X X X X X X X X Heartbeat X X X X X X X X X Call Agent Failover X X X X X X X X X 6.1.7 VOIP MGCP command reference This section describes the commands available on iMG/RG/iBG to configure and manage the MGCP protocol module.
VoIP MGCP VOIP MGCP command reference TABLE 6-2 VoIP MGCP commands (Continued) Fiber A Fiber B Fiber C Fiber D VOIP MGCP PROTOCOL SET ROUNDTRIPTIME X X X X X X X X X VOIP MGCP PROTOCOL SHOW X X X X X X X X X VOIP MGCP CALLAGENT CREATE X X X X X X X X X VOIP MGCP CALLAGENT SET MASTER X X X X X X X X X VOIP MGCP CALLAGENT DELETE X X X X X X X X X VOIP MGCP CALLAGENT LIST X X X X X X X X X Functions Fiber ADSL ADSL ADSL E Modular A B C 6.1.7.
VOIP MGCP command reference VoIP MGCP Description --> voip mgcp protocol enable See also VOIP MGCP PROTOCOL SHOW VOIP MGCP PROTOCOL DISABLE 6.1.7.1.3 VOIP MGCP PROTOCOL RESTART Syntax VOIP MGCP PROTOCOL RESTART Description This command restarts the VoIP MGCP signaling protocol module. Any pending and active calls are released. This command doesn't release any resources previously created during module configuration. Example --> voip mgcp protocol restart See also VOIP MGCP PROTOCOL ENABLE 6.1.
VoIP MGCP VOIP MGCP command reference 6.1.7.2 VOIP MGCP PROTOCOL SET ENDPOINT-SYNTAX Syntax VOIP MGCP PROTOCOL SET ENDPOINT-SYNTAX port Description This command allows to customize the endpoint identifier (EPID) used inside MGCP messages.
VOIP MGCP command reference TABLE 6-3 VoIP MGCP Possible Combinations for MGCP Profile TBD TBD NONE, AGS, GB and SIEMENS aaln/0@[$IP] for endpoint tel1 aaln/1@[$IP] for endpoint tel2 aaln/2@[$IP] for endpoint tel3 aaln/3@[$IP] for endpoint tel4 MARCONI aaln/1@[$IP] for endpoint tel1 aaln/2@[$IP] for endpoint tel2 aaln/3@[$IP] for endpoint tel3 aaln/4@[$IP] for endpoint tel4 SPHERE $MAC:aaln/0@[$IP] for endpoint tel1 $MAC:aaln/1@[$IP] for endpoint tel2 $MAC:aaln/2@[$IP] for endpoint tel3 $MAC:aaln
VoIP MGCP VOIP MGCP command reference Example --> voip mgcp prot set endpoint-syntax aaln/0@[$IP] port tel1 The endpoint identifier is: aaln/0@[10.17.90.135] Example --> voip mgcp prot set endpoint-syntax $MAC:aaln/0@[$IP] port tel1 The endpoint identifier is: 102030405061:aaln/0@[10.17.90.
VOIP MGCP command reference VoIP MGCP 6.1.7.2.2 VOIP MGCP PROTOCOL SET NAT Syntax VOIP MGCP PROTOCOL SET NAT {NONE | } Description This command sets the NAT host reference. Any MGCP message with local reference is hidden by the NAT address value. Changing the NAT reference causes the MGCP module to restart. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
VoIP MGCP VOIP MGCP command reference Description This command enables/disables the MGCP piggy-back feature as described in RFC3435 (3.5.5 Piggy backing). This feature is enabled by default. This command allow the user to disable it. Example --> voip mgcp protocol set piggyback disable 6.1.7.2.5 VOIP MGCP PROTOCOL SET PROFILE Syntax VOIP MGCP PROTOCOL SET PROFILE Description This command sets specific customer MGCP call agent profile.
VOIP MGCP command reference VoIP MGCP 6.1.7.2.7 VOIP MGCP PROTOCOL SET ROUNDTRIPTIME Syntax VOIP MGCP PROTOCOL SET ROUNDTRIPTIME Description This command sets the maximum time out that an MGCP message needs to be acknowledged by the call agent before the same message is retrasmitted. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
VoIP MGCP VOIP MGCP command reference HeartBeat Refresh Time: Round-trip time: Maximum re-transmition time: Network loss rate: TEL1 Syntax Name: TEL2 Syntax Name: Example 15 10000 msecs. 30 secs. 0 % aaln/0@[$IP] aaln/1@[$IP] -> voip mgcp protocol show tel1 Gateway base protocol: MGCP end-point tel1 --------------------------------------------------------Operational state: Normal Notified call-agent: None Digit-map: (default) x.T (current) See also x VOIP MGCP PROTOCOL ENABLE 6.1.7.2.
VOIP MGCP command reference VoIP MGCP 6.1.7.2.10 VOIP MGCP CALLAGENT SET MASTER Syntax VOIP MGCP CALLAGENT SET MASTER Description This command set an existing call agent as Master. The Master call agent is the call agent that is attempted to be used firstly. In case of failure of the communication with it, the other call agent in the list will be used. Example --> voip mgcp callagent set default master See also VOIP MGCP CALLAGENT LIST VOIP MGCP CALLAGENT DELETE 6.1.7.2.
VoIP SIP iMG SIP Overview Call agent names Note: If a call agent name is longer than 32 chars, the name is shown in a short format (only the initial part of the name is displayed). Example --> voip sip fdb list Gateway call-agents: ID | Name | Master | Contact -----|------------|----------|--------------------1 | default | true * | 172.39.1.201 --------------------------------------------------See also VOIP MGCP CALLAGENT CREATE VOIP MGCP CALLAGENT SHOW 6.
iMG SIP Overview VoIP SIP VOIP IP Network Analog Phone Analog Phone A B Unit Unit SIP Server FIGURE 6-1 Phone --> iMG(A) --> iMG(B) --> Phone A user makes a call with the phone connected to an iMG, which in turn contacts another iMG, which completes the connection to the phone that is attached to it. 6.2.1.3 Calls Involving a Terminal and a SIP Endpoint The following examples illustrate how a phone connected to an iMG terminal can communicate with a LAN SIP endpoint on the IP network.
VoIP SIP VoIP SIP Servers, Users & the Forwarding Data- SIP IP Phone VOIP IP Network Analog (or Digital Phone) A Unit SIP Server FIGURE 6-2 Phone --> iMG(A) --> SIP IP Phone 6.2.2 VoIP SIP Servers, Users & the Forwarding Database The VoIP SIP subsystem on iMG residential gateways is based on the concept of SIP servers, local users, call forwarding rules and access ports. The following section describes SIP servers, local users and forwarding database.
VoIP SIP Servers, Users & the Forwarding Database VoIP SIP is not a local user and the call must be routed to a specific contact that typically is different from the proxy server. Definition of SIP servers, users and optionally forwarding database rules, are three basic steps in correctly configuring the VoIP SIP subsystem (see Figure 8). Default Configuration Signaling Protocol Config.
VoIP SIP VoIP SIP Servers, Users & the Forwarding Data- The system will attempt to register the local users on all the location servers available in the location server list (see VOIP SIP LOCATIONSERVER LIST command) until the first registration phase achieves a positive result. Once a successful registration with a server has been achieved no further registration requests will be performed even if other location servers are defined.
VoIP SIP Servers, Users & the Forwarding Database VoIP SIP Each user must have an associated user number, composed of a address number and, optionally, an area code number if a complete E.164 number must be defined. Users may also have a pseudonym associated with their numeric address (see the VOIP SIP USER CREATE command). Note: In any given system, there cannot be more than one user with the same area code and address.
VoIP SIP VoIP SIP Servers, Users & the Forwarding Data- Detaching a user from a port by means of the VOIP SIP USER REMOVE command, or, by deletion of the port itself will result in a SIP de-registration transaction with the location server (assuming the user is registered with the location server). 6.2.2.3 Forwarding database (FDB) The forwarding database is a component of the iMG that is used to redirect calls to a different destination address based on the called party number.
VoIP SIP Servers, Users & the Forwarding Database VoIP SIP If no match is found in the forwarding database, the INVITE message is routed to the first available proxy server (starting with the Master proxy server if defined) using the calling user domain as called endpoint domain. 6.2.2.3.2 Incoming calls If a match is found, a MOVED TEMPORARY SIP message is sent back to the call originator reporting the contact address defined by the CONTACT field in the matched FDB entry.
VoIP SIP VoIP SIP Embedded Proxy Server 6.2.3 VoIP SIP Embedded Proxy Server All gateway models with the exception of RG600E and RG6x6E variants include support for the embedded SIP proxy server. See table 1 (RG/iMG Models) for further details. Refer to section 6.2.7 for the Embedded Proxy Server (EPS) CLI commands. Also, note the following rules and guidelines for SIP: • The maximum number of sip fdb users is 128, except for the iMG616E (64).
VoIP SIP command reference TABLE 6-4 VoIP SIP VoIP SIP Protocol CLI Commands Commands Fiber Fiber Fiber Fiber Fiber A B C D E Modular ADSL ADSL ADSL A B C VOIP SIP PROTOCOL DISABLE X X X X X X X X X VOIP SIP PROTOCOL ENABLE X X X X X X X X X VOIP SIP PROTOCOL RESTART X X X X X X X X X VOIP SIP PROTOCOL SET AUTHENTICATION X X X X X X X X X VOIP SIP PROTOCOL SET CONTACT-ON-1XX-RESPONSE X X X X X X X X X VOIP SIP PROTOCOL SET DEFAULTPORT X X X X X
VoIP SIP VoIP SIP command reference Syntax VOIP SIP PROTOCOL DISABLE Description This command stops the VoIP SIP signalling protocol and releases all the resources associated to it: • Any analogue or digital port defined in the system is removed • Any user defined in the system is deleted • Any forwarding entry in the FDB is deleted • Any sip server reference (location and proxy) is removed To simply restart the SIP module, use the VOIP SIP PROTOCOL RESTART command.
VoIP SIP command reference VoIP SIP Users previously registered to location servers start to unregister themselves and then re-register on the same location servers. This command doesn't release any resources (users, physical ports and FDB entries) previously created during module configuration. Example --> voip sip protocol restart See also VOIP SIP PROTOCOL ENABLE 6.2.4.1.
VoIP SIP VoIP SIP command reference Example See also --> voip sip protocol set defaultport 5060 Option Description Default Value ipport UDP/TCP port number used for signalling messages. Available values are in the range 1026 to 65534.Only even values can be accepted 5060 VOIP SIP PROTOCOL ENABLE 6.2.4.1.7 VOIP SIP PROTOCOL SET EXTENSION Syntax VOIP SIP PROTOCOL SET EXTENSION Description This command sets extended protocol features.
VoIP SIP command reference Options VoIP SIP The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value token Signal element to be used for the DTMF digit of flash-hook event. These should take the form ‘Signal=x’, where x is one of the digits 0-9, *, #, A, B, C, or D. N/A Example --> voip sip protocol set info DTMF_0 Signal=0 See also VOIP SIP PROTOCOL SHOW 6.2.4.1.
VoIP SIP VoIP SIP command reference Example --> voip sip protocol set invitetimeout 10 See also VOIP SIP PROTOCOL SET ROUNDTRIPTIME 6.2.4.1.11 VOIP SIP PROTOCOL SET KEEP-ALIVE Syntax VOIP SIP PROTOCOL SET KEEP-ALIVE {ENABLE|DISABLE} VOIP SIP PROTOCOL SET KEEP-ALIVE TIME Description This command sets a keep-alive mechanism based on the REGISTER message. When the feature is enabled, iMG sends a REGISTER message every KEEP-ALIVE TIME seconds.
VoIP SIP command reference VoIP SIP Example --> voip sip protocol set nat address iMG.voip.atkk.com --> voip sip protocol set nat interface ip0 See also IP LIST INTERFACES VOIP SIP PROTOCOL ENABLE VOIP SIP PROTOCOL SHOW 6.2.4.1.13 VOIP SIP PROTOCOL SET NETINTERFACE Syntax VOIP SIP PROTOCOL SET NETINTERFACE Description This command sets the IP interface used to access the VoIP network. Signalling and voice packets will use the Source IP address defined for the selected interface.
VoIP SIP VoIP SIP command reference When registration timer expires, the iMG will reattempt a registration to the default (configured) location server. If the the iMG receives a valid path-header value in the response, it will use it for all the subsequent calls untli the registration phase restarts again. Otherwise the iMG will use the default outgoing proxy as configured in the proxy servers list.
VoIP SIP command reference VoIP SIP 6.2.4.1.16 VOIP SIP PROTOCOL SET REGISTRATION-RING-SPLASH Syntax VOIP SIP PROTOCOL SET REGISTRATION-RING-SPLASH {ENABLED|DISABLED} Description This command enables/disables the ring-splash after the user has been registered. If the feature is enabled, as soon as the user is registered the phone connected to the relevant phone port plays a ring-splash. The default value is disabled.
VoIP SIP VoIP SIP command reference Description This command sets how switching between primary & secondary SIP servers is managed by the gateway. • If PERMANENT is set, then once the current server is noted as failed, all subsequent server requests will be routed to the alternate server. The alternate server will continue to be used until such time as it fails, at which point all subsequent server requests will be routed to the original server.
VoIP SIP command reference Options VoIP SIP The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value secs The session expire time in seconds. Available values are in the range 30 to 86400 sec (24 hours). 1800 Example --> voip sip protocol set sessionexpire 180 See also VOIP SIP PROTOCOL SHOW 6.2.4.1.
VoIP SIP VoIP SIP command reference Description By default iMG use his IP address Uri host part of the sent SIP messages. This command allows to configure the URI host part. The possible choices are listed in the following table. Option Description LOCAL-IP The URI host is the IP address of the IP interface where the SIP is attached. DNS-HOSTNAME iMG resolves its DNS-HOSTNAME and uses it as URI host. If the address resolution fails, the LOCAL-IP is used.
VoIP SIP Locationserver command reference Server redundancy: Server switching: Remote Party ID replacement on call-forwarding: Contact header on 1xx response: Event Subscription message-summary: INFO signal mapping: DTMF_0 DTMF_1 DTMF_2 DTMF_3 DTMF_4 DTMF_5 DTMF_6 DTMF_7 DTMF_8 DTMF_9 DTMF_Star DTMF_Gate DTMF_A DTMF_B DTMF_C DTMF_D Flash VoIP SIP permanent on link failure only disabled disabled disabled Signal=0 Signal=1 Signal=2 Signal=3 Signal=4 Signal=5 Signal=6 Signal=7 Signal=8 Signal=9 Signal=* Si
VoIP SIP VoIP SIP Locationserver command reference TABLE 6-5 VoIP SIP Location Server CLI Commands Fiber Fiber Fiber Fiber Fiber A B C D E Commands Modular ADSL ADSL ADSL A B C VOIP SIP LOCATIONSERVER CREATE X X X X X X X X X VOIP SIP LOCATIONSERVER DELETE X X X X X X X X X VOIP SIP LOCATIONSERVER LIST X X X X X X X X X VOIP SIP LOCATIONSERVER SET MASTER X X X X X X X X X 6.2.5.1.
VoIP SIP Locationserver command reference transport The protocol used to transport the signalling messages to the location server. Possible values are: VoIP SIP udp • udp • tcp Example --> voip sip locationserver create default contact 192.168.102.3 See also VOIP SIP LOCATIONSERVER LIST VOIP SIP LOCATIONSERVER SHOW 6.2.5.1.
VoIP SIP VoIP SIP Locationserver command reference • Master whether the server has been set as Master or not. A star symbol in the field identifies the server as the current location server where local users are registered. • Contact the IP address (IPv4 or hostname format) of the location server Note: If a name is longer than 32 chars, the name is shown in a short format (only the initial part of the name is displayed).
VoIP SIP Proxyserver command reference VoIP SIP 6.2.6 VoIP SIP Proxyserver command reference This section describes the commands available on the iMG intelligent Multiservice Gateway to enable, configure and manage the VoIP SIP Proxyserver module. 6.2.6.
VoIP SIP VoIP SIP Proxyserver command reference port The UDP/TCP port on the proxy server to which signalling messages are sent. 5060 transport The protocol used to transport the signalling messages to the proxy server. Possible values are:udptcp udp Example --> voip sip proxy create default contact 192.168.102.3 See also VOIP SIP PROXYSERVER LIST VOIP SIP PROXYSERVER SHOW 6.2.6.1.
VoIP SIP Proxyserver command reference • VoIP SIP Master whether the server has been set as Master or not. A star symbol in the field identifies the server as the current proxy server used by outgoing calls. • Contact the IP address (IPv4 or hostname format) of the proxy server Note: If a name is longer than 32 chars, the name is shown in a short format (only the initial part of the name is displayed).
VoIP SIP VoIP SIP Embeddedserver command reference 6.2.7 VoIP SIP Embeddedserver command reference This section describes the commands available on the AT-iBG900 intelligent Multiservice Gateway to enable, configure and manage the VoIP SIP Embeddedserver module. 6.2.7.
VoIP SIP Embeddedserver command reference VoIP SIP domain The domain name or IPv4 address of the embedded server where signalling messages are sent. N/A host The hostname or IPv4 address of the embedded server where signalling messages are sent. Host can be at most 256 chars long (when using hostname format). N/A port The UDP/TCP port on the embedded server to which signalling messages are sent. 5060 transport The protocol used to transport the signalling messages to the embedded server.
VoIP SIP VoIP SIP Embeddedserver command reference Description This command lists information about embedded servers that were added using the VOIP SIP EMBEDDEDSERVER CREATE command. The following information is displayed: • server ID numbers • server names • NVS (not used) • Contact the IP address (IPv4 or hostname format) of the proxy server Note: If a name is longer than 32 chars, the name is shown in a short format (only the initial part of the name is displayed).
VoIP SIP Embeddedserver command reference See also VoIP SIP VOIP SIP EMBEDDEDSERVER CREATE VOIP SIP EMBEDDEDSERVER LIST VOIP SIP EMBEDDEDSERVER SHOW 6.2.7.1.5 VOIP SIP EMBEDDEDSERVER SET PERMANENT-STORAGE Syntax VOIP SIP EMBEDDEDSERVER SET PERMANENT-STORAGE Description This command enables or disables the permanent storage feature in the embeddedserver module. Option Description Default Value name An arbitrary name that identifies the proxy server.
VoIP SIP VoIP SIP User command reference 6.2.8 VoIP SIP User command reference This section describes the commands available on the iMG intelligent Multiservice Gateway to enable, configure and manage the VoIP SIP User module. 6.2.8.
VoIP SIP User command reference Options VoIP SIP The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value username An existing user (it can be also the ID value associated with the user name). To display the existing users, use the VOIP SIP USER LIST command. N/A portname An existing port. To display the existing ports, use the VOIP EP LIST command.
VoIP SIP VoIP SIP User command reference Option Description Default Value username An arbitrary name that identifies the user. The name must not be present already. The username can be at most 16 characters long; cannot start with a digit and cannot contain dots '.' or slash symbols '/'. N/A digit-map The phone number (E.164) used to reach the user. The address can be 32 characters long. N/A area-number The prefix number to be dialed before the destination number.
VoIP SIP User command reference VoIP SIP VOIP SIP USER REMOVE VOIP SIP USER SHOW 6.2.8.1.3 VOIP SIP USER DELETE Syntax VOIP SIP USER DELETE Description This command deletes a single user created using the VOIP SIP USER CREATE command. To show the list of existing users, use the VOIP SIP USER LIST command. As soon this command is entered, the de-registration phase starts (REGISTER request) to the location server (registrar) removing the user from the user list on the server.
VoIP SIP Note: VoIP SIP User command reference If a user name is longer than 32 chars, the name is shown in a short format (only the initial part of the name is displayed). To show the full name use the VOIP SIP USER SHOW command, specifying the user ID instead of user name.
VoIP SIP User command reference VoIP SIP 6.2.8.1.
VoIP SIP VoIP SIP FDB command reference Attached ports: Call Forwarding: on all calls: on busy: on not answer: not answer time-out: See also VOIP VOIP VOIP VOIP VOIP VOIP VOIP SIP SIP SIP SIP SIP SIP SIP USER USER USER USER USER USER USER port0 not active not active not active 30 Sec. ADD CREATE DELETE LIST REMOVE SHOW SET 6.2.9 VoIP SIP FDB command reference This section describes the commands available on the iMG intelligent Multiservice Gateway to configure and manage the FDB module. 6.2.9.
VoIP SIP FDB command reference VoIP SIP ADDRESS is the called address expected for receiving by the calling end-point in order to forward the call to the CONTACT. CONTACT is the host reference where the call is forwarded. The contact-host part is the default to form the URL domain (Request-URI, From and To fields).
VoIP SIP VoIP SIP FDB command reference tel-number It is the new number to which the call is redirected. N/A Example --> voip sip fdb create default address 9x. contact 192.168.1.10 domain voip.atkk.com See also VOIP SIP FDB LIST VOIP SIP FDB SHOW 6.2.9.1.2 VOIP SIP FDB DELETE Syntax VOIP SIP FDB DELETE Description This command deletes a single FDB entry created using the VOIP SIP FDB CREATE command. To show the list of existing FDB entries, use the VOIP SIP FDB LIST command.
VoIP SIP ALERTINFO command reference VoIP SIP ----|------------|--------------------1 | pstn | 9x. --------------------------------------See also VOIP SIP FDB CREATE VOIP SIP FDB SHOW 6.2.9.1.4 VOIP SIP FDB SHOW Syntax VOIP SIP FDB SHOW Description This command lists information about a named FDB entry added to the forwarding database using the VOIP SIP FDB CREATE command.
VoIP SIP VoIP SIP ALERTINFO command reference TABLE 6-10 VoIP SIP Alertinfo CLI commands Fiber A Fiber B Fiber C Fiber D VOIP SIP ALERTINFO CREATE X X X X X X X X X VOIP SIP ALERTINFO DELETE X X X X X X X X X VOIP SIP ALERTINFO LIST X X X X X X X X X Commands Fiber ADSL ADSL ADSL E Modular A B C 6.2.10.1.
VoIP SIP ALERTINFO command reference VoIP phone ports Option Description Default Value name A name (or the ID value) that identifies the ringing cadence and the alert-info (in SIP message) mapping. N/A Example --> voip sip alertinfo delete distinctive-ring-1 See also VOIP SIP ALERTINFO CREATE VOIP SIP ALERTINFO LIST 6.2.10.1.
VoIP phone ports Port configuration The analogue endpoint module (AEP) is the module in charge to control analogue ports. This module detects hardware events like off-hook and DTMF key press and controls hardware functions such as tone generation and ringing. The analogue endpoint module also performs the voiceband processing required to interface analog or PCM voice, fax with data networks incorporating packet-based protocols such as Internet protocol (IP).
Port configuration VoIP phone ports Default Configuration SIP Signaling Protocol Configuration Access Port Creation Users Creation Location Servers Forwarding Database Proxy Servers Access Port Configuration Users Binding Incoming/Outgoing Calls FIGURE 6-4 VoIP subsystem configuration - basic steps By default, analogue access ports are not configured in the system when the unit starts from a factory default configuration.
VoIP phone ports • • • • Port configuration Digit Map/Dial Mask Voice Coder/Decoder Voice Quality Management Telecom Tone Management 6.3.1.1 Digit map The Digit Map is a rule used by the access port to understand when dialling is to be considered completed and the dialled number is ready to be processed by the call control layer. It works for outgoing calls (in the direction from user to VoIP network).A digit map is defined either by a (case insensitive) string or by a list of strings.
Port configuration VoIP phone ports voip ep analogue set prt0 digitmap [2-4]xx If the number dialled begins with anything other than 2, 3, or 4, the call is rejected and a busy tone is generated. Another way to achieve the same result would be: voip ep analogue set prt0 digitmap [234]xx It is possible to combine two or more expressions in the same Digit Map by using the ‘|’ operator, which is equivalent to OR.
VoIP phone ports Port configuration The signalling protocol (SIP) will negotiate the active codec based on the capabilities supported by the other peer involved in the VoIP connection. In the case of local calls, the call control layer performs codec negotiation locally. The following table lists the codecs available on the iMG units. TABLE 6-11 Codecs Available for iMGs Codec Notes g711a G.711 A law g711u G.711 µ law g729ab G.729 Annex A and Annex B g726-32 G.
Port configuration VoIP phone ports • Telecom tone management and DTMF relay. • This is a SIP protocol dependent solution used to transfer DTMF tones out-of-band either using SIP INFO messages, or by means of RFC2833 ‘Named DTMF Events’ within the RTP stream.
VoIP phone ports Port configuration The iMG detects a flash-hook event when the on-hook period falls within a a time window. The lower bound of this window is one third of the configured flash-hook time, and the upper bound is the lesser of on-hook time and double the configured flash-hook time. 6.3.1.
VoIP ADMIN Command Reference TABLE 6-12 VoIP phone ports Country-specific Telecom tones (Continued) Singapore 425 Continuous 425 750 - 750 425x24 400 - 200 400 - 2000 Spain 425 Continuous 425 200 - 200 425 1500 - 3000 Sweden 425 Continuous 425 250 - 250 425 1000 - 5000 Turkey 450 Continuous 450 500 - 500 450 2000 - 4000 United Kingdom 350+440 Continuous 400 375 - 375 400+450 400 - 200 400 - 2000 United States 350+440 Continuous 480+620 500 - 500 440+480 2000 - 40
VoIP phone ports VoIP ADMIN Command Reference TABLE 6-13 Commands for VoIP Admin Fiber Fiber Fiber Fiber Fiber A B C D E Commands Modular ADSL ADSL ADSL A B C VOIP SHOW X X X X X X X X X VOIP ADMIN ENABLE PROFILE X X X X X X X X X VOIP ADMIN ENABLE RFC3660-DIGIT-INPUT-TIMER X X X X X X X X X VOIP ADMIN DISABLE PROFILE X X X X X X X X X VOIP ADMIN DISABLE RFC3660-DIGIT-INPUT-TIMER X X X X X X X X X VOIP ADMIN PREFIX-REPLACEMENT ADD X X X X X X X
VoIP ADMIN Command Reference VoIP phone ports Note: The command is available only for the SIP protocol Note: The command MUST be executed before users are provisioned. Note: Enabling a specific profile re-sets the numbering plan parameters to default. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
VoIP phone ports VoIP ADMIN Command Reference Note: This command is not available once users have been provisioned. Note: Disabling a specific profile re-sets the numbering plan parameters to default. Example --> voip admin disable profile 6.3.2.1.5 VOIP ADMIN DISABLE RFC3660-DIGIT-INPUT-TIMER Syntax VOIP ADMIN DISABLE RFC3660-DIGIT-INPUT-TIMER Description This command disables the management of critical and partial inter-digit times as specified in RFC3660.
VoIP ADMIN Command Reference VoIP phone ports Description This command creates a prefix-replacement rule. When the rule is added to an endpoint, if the PREFIX digit-map is matched, it is replaced by the REPLACEMENT digit(s). Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value name A string identifies the item, 1 to 16 characters in length.
VoIP phone ports VoIP ADMIN Command Reference Example --> voip admin prefix-replacement delete prefix001 See also VOIP VOIP VOIP VOIP VOIP ADMIN ADMIN ADMIN ADMIN ADMIN PREFIX-REPLACEMENT PREFIX-REPLACEMENT PREFIX-REPLACEMENT PREFIX-REPLACEMENT PREFIX-REPLACEMENT ADD CREATE LIST REMOVE SHOW 6.3.2.1.9 VOIP ADMIN PREFIX-REPLACEMENT LIST Syntax VOIP ADMIN PREFIX-REPLACEMENT LIST Description This command lists all defined prefix-replacement rules.
VoIP ADMIN Command Reference ep-name VoIP phone ports An existing access port. To display existing access port names, use the VOIP EP LIST command. Example --> voip admin prefix-replacement remove prefix001 port prt0 See also VOIP VOIP VOIP VOIP VOIP ADMIN ADMIN ADMIN ADMIN ADMIN PREFIX-REPLACEMENT PREFIX-REPLACEMENT PREFIX-REPLACEMENT PREFIX-REPLACEMENT PREFIX-REPLACEMENT N/A ADD CREATE DELETE LIST SHOW 6.3.2.1.
VoIP phone ports Description VoIP ADMIN Command Reference This command set the E.164 country code. The E.164 country code accepts only digits (not digit-maps), that are 1 to 3 characters in length. No code is provisioned by default. Assignment is only allowed if no users have yet been created. If the E.164 country code is configured, the "userinfo" field of "From" headers in all SIP requests adopts the E.164 global address format <+>.
VoIP EP command reference VoIP phone ports The gateway will now recognise the follow in-dialled numbers: 1017901291, +641017901291 and 00641017901291. See also VOIP ADMIN SET E164-COUNTRY-CODE 6.3.2.1.14 VOIP ADMIN SHOW Syntax VOIP ADMIN SHOW Description This command shows the VoIP admin settings. Example --> voip admin show Gateway Admin: -------------------------------------------------------------------Profile: none E.
VoIP phone ports VoIP EP command reference TABLE 6-14 Commands Commands for VoIP EP Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C VOIP EP CREATE X X X X X X X X X VOIP EP DELETE X X X X X X X X X VOIP EP DIAGNOSE X VOIP EP DISABLE X X X X X X X X X VOIP EP ENABLE X X X X X X X X X VOIP EP LIST X X X X X X X X X VOIP EP SET ALERTING-TIMEOUT X X X X X X X X X VOIP EP SET ATTENDED-CALL-TRANSFER X X X X X X X X X
VoIP EP command reference VoIP phone ports Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Commands VOIP EP SET FLASHHOOK-TIME X X X X X X X X X VOIP EP SET HOLD-LOCAL-TONE-SERVICE X X X X X X X X X VOIP EP SET HOTLINE TIME-OUT X X X X X X X X X VOIP EP SET HOTLINE DISABLE X X X X X X X X X VOIP EP SET HOTLINE ENABLE X X X X X X X X X VOIP EP SET IDT-PARTIAL X X X X X X X X X VOIP EP SET INTERNAL-3-WAY-CALL X X X X X X
VoIP phone ports Options VoIP EP command reference The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An arbitrary name that identifies the access port. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. The maximum length is fixed to 16 characters.
VoIP EP command reference See also VOIP VOIP VOIP VOIP VOIP VOIP EP EP EP EP EP EP VoIP phone ports ANALOGUE ANALOGUE ANALOGUE ANALOGUE ANALOGUE ANALOGUE CREATE DISABLE ENABLE LIST SET SHOW 6.3.3.1.3 VOIP EP DIAGNOSE Syntax VOIP EP ANALOGUE DIAGNOSE {INTERNAL|EXTERNAL} Description This command starts GR.909 metallic loop tests on the selected analogue endpoint. The support for metallic loop tests (internal and/or external) is available only on specific iMG families.
VoIP phone ports VoIP EP command reference PASS : Ring/Ground Voltage : abs >= 38V : -46.888V PASS : Tip/Ring Voltage : abs >= 38V : -41.454V PASS : Tip/Ring Current : abs <= 10mA : .12993mA -------------------------------------------------------------------PASS : AC Ringing Voltage : >=53V : 56.
VoIP EP command reference VoIP phone ports PASS : FEMF Tip/Ring Current : Info Only : .37332mA --------------------------------------------------------------------PASS : Ringer Equivalance : N/A : No Problems Found --------------------------------------------------------------------PASS : Resistive Fault (Tip/Ring) : R >= 150k : 19969k PASS : Resistive Fault (Tip/Ground) : R >= 150k : 2372k PASS : Resistive Fault (Ring/Ground) : R >= 150k : 2553k 6.3.3.1.
VoIP phone ports VoIP EP command reference Option Description Default Value name An existing access port. To display existing access port names, use the VOIP EP LIST command. N/A Example --> voip ep analogue enable prt0 See also VOIP VOIP VOIP VOIP VOIP VOIP EP EP EP EP EP EP ANALOGUE ANALOGUE ANALOGUE ANALOGUE ANALOGUE ANALOGUE CREATE DISABLE DELETE LIST SET SHOW 6.3.3.1.
VoIP EP command reference VoIP phone ports Description This command sets the number of seconds the analogue port rings for before releasing the call if the user doesn’t answer. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value name An existing analogue endpoint name. - sec The number of seconds the port rings before the call is cancelled by the called peer.
VoIP phone ports VoIP EP command reference 6.3.3.1.9 VOIP EP SET BLIND-CALL-TRANSFER Syntax VOIP EP ANALOGUE SET BLIND-CALL-TRANSFER ENABLE PREFIX VOIP EP ANALOGUE SET BLIND-CALL-TRANSFER DISABLE Description This command set the prefix used to activate the blind call transfer feature. The caller is in conversation with “A”, it puts “A” on hold and calls “B” using this prefix. When “B” answers will be in conversation with “A”.
VoIP EP command reference Example VoIP phone ports --> voip ep analogue set tel1 call-on-hold service enabled 6.3.3.1.11 VOIP EP SET CALL-WAITING-SERVICE Syntax VOIP EP ANALOGUE SET CALL-WAITING-SERVICE {ENABLED|DISABLED} Description This command enables/disables the call waiting supplementary service.
VoIP phone ports VoIP EP command reference To display the current call forwarding settings enter the VOIP EP ANALOGUE SHOW CFWD command. Options Example The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value on-prefix The digits to dial before entering the forwarded number.
VoIP EP command reference Example VoIP phone ports Option Description Default Value on-prefix The digits to dial before entering the forwarded number. N/A on-suffix The digit (one digit only) to enter after the forwarded number has been entered via phone dialpad. N/A off-prefix The digits to enter after via phone dialpad to temporary disable the service.
VoIP phone ports VoIP EP command reference Option Description Default Value on-prefix The digits to dial before entering the forwarded number. N/A on-suffix The digit (one digit only) to enter after the forwarded number has been entered via phone dialpad. N/A off-prefix The digits to enter after via phone dialpad to temporary disable the service. N/A timeout The timeout in seconds the CPE waits for user answer before routing the incoming call to the forwarded number.
VoIP EP command reference VoIP phone ports Reactivate-prefix is the prefix used to reactivate the call forwarding feature. When it is dialed, iMG sends and INVITE containing this prefix to inform the server that the call forwarding feature has been enabled using the same previously provisioned forward number. The server must forwards the calls to the number previously configured with the activate-prefix. The forwarding policy (call forward on busy, call forward on no answer, etc.
VoIP phone ports VoIP EP command reference BELL Generate a caller ID accordingly to BELL standard. ETSI Generate a caller ID accordingly to ETSI standard. The ETSI caller ID can be of two type: None DTMF: the DTMF tones can be sent before the first ring (prior-to-ring) or after the first ring (during-ringing). FSK: the FSK signals can be sent before the first ring (prior-to-ring) or after the first ring (during-ringing). If not differently specified the default value is ETSI FSK during-ringing.
VoIP EP command reference Options VoIP phone ports • CC: The country code will be omitted from the CLIP address delivered to the handset. • CC+AC: Both the country code and area code will be omitted from the CLIP address delivered to the handset. • REPLACE: The specified prefix ‘prefix-digit’ will be replaced with ‘digit’. The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
VoIP phone ports VoIP EP command reference on-prefix The digitmap to be used to enable the caller identifier for the successive call. N/A off-prefix The digitmap to be used to disable the caller identifier for the successive call. N/A Example --> voip ep analogue set prt0 clir on off-prefix *1 See also voip voip voip voip voip voip ep ep ep ep ep ep analogue analogue analogue analogue analogue analogue create disable delete enable list show 6.3.3.1.
VoIP EP command reference Description Note: VoIP phone ports This command sets the codec capability list for an existing access port. T.38 support must always be selected together with another speech codec (G711a/u or G726 or G729ab). Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value name An existing access port.
VoIP phone ports Options VoIP EP command reference The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value name A name that identifies an existing access port. To display access port names, use the voip ep list command.
VoIP EP command reference country VoIP phone ports The national signalling system and defines the analogue signalling criteria in use.
VoIP phone ports Options VoIP EP command reference The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value name An existing access port. To display the existing access port names, use the VOIP EP ANALOGUE LIST command. N/A digit-number The number of digits to be removed from the dialled number. Acceptable values are from 0 to 3.
VoIP EP command reference VoIP phone ports Option Description Default Value name An existing access port. To display access port names, use the VOIP EP ANALOGUE LIST command. N/A country The national signalling system and defines the analogue signalling criteria in use.
VoIP phone ports VoIP EP command reference 6.3.3.1.25 VOIP EP SET DIGITMAP Syntax VOIP EP ANALOGUE SET DIGITMAP Description This command sets the digit map rule on the physical port referred to by the named access port. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value name An existing access port.
VoIP EP command reference VoIP phone ports immediately sent and this call can not be interrupted by other incoming calls using the flash-hook key. The feature is available only on SIP protocol and must be supported by the SIP server. Options Example The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
VoIP phone ports VoIP EP command reference For example: If the on-hook time is 900 msec and flash-hook time is 600msec a valid flash-hook event must be higher than 200 msec and lower than 900 msec. If the on-hook time is 800 msec and flash-hook time is 300msec a valid flash-hook event must be higher than 100 msec and lower than 600 msec. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
VoIP EP command reference Example VoIP phone ports --> voip ep analogue set tel1 hold-local-tone-service enabled 6.3.3.1.30 VOIP EP SET HOTLINE TIME-OUT Syntax voip ep analogue set hotline time-out Description This command set the number of seconds between the off hook and the beginning of the digit collection when the feature is enabled. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
VoIP phone ports VoIP EP command reference VOIP EP DIGITAL SET HOTLINE ENABLE ACTI-PREFIX ACTALL-PREFIX DEACT-PREFIX REACT-PREFIX Description This command enables the hotline feature. When enabled, as soon the user pick-up the phone, a call is made automatically to the forwarded number without requiring the user to dial the number on the phone keypad.
VoIP EP command reference VoIP phone ports deact-prefix The suffix used to disable the hot line feature. none It is a digit-map and is the expression string in use to recognize the prefix. Valid characters are digit and symbols ‘#’, ‘*’, ‘.’, ‘|’, ‘[’, ‘]’, ‘-‘, 1 to 10 characters long react-prefix The prefix used to re-activate the hot line feature. none It is a digit-map and is the expression string in use to recognize the prefix. Valid characters are digit and symbols ‘#’, ‘*’, ‘.
VoIP phone ports VoIP EP command reference 6.3.3.1.34 VOIP EP SET INTERNAL-3-WAY-CALL Syntax VOIP EP ANALOGUE SET INTERNAL-3-WAY-CALL {ENABLE | DISABLE} Description This command disables or enables internal 3-way calls. It is disabled by default. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Example Option Description Default Value name An existing access port.
VoIP EP command reference VoIP phone ports VOIP EP ANALOGUE LIST VOIP EP ANALOGUE SHOW 6.3.3.1.36 VOIP EP SET JITTERMODE Syntax VOIP EP ANALOGUE SET JITTERMODE {ADAPTIVE | FIXED | SEQUENTIAL} Description This command sets the type of jitter buffering that will be used by the gateway. The default mode is ‘fixed’. Note: Some gateway products support only fixed jitter buffering.
VoIP phone ports VoIP EP command reference msecs The length in milliseconds of the buffer used for echo cancellation. Valid values are 0, 8, 16, 32 msec depending on iMG family. Example --> voip ep analogue set prt0 lec 16 See also VOIP VOIP VOIP VOIP VOIP VOIP EP EP EP EP EP EP ANALOGUE ANALOGUE ANALOGUE ANALOGUE ANALOGUE ANALOGUE 8 msec CREATE DISABLE DELETE ENABLE LIST SHOW 6.3.3.1.
VoIP EP command reference Options VoIP phone ports The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value name An existing access port. To display the existing access port names, use the VOIP EP ANALOGUE LIST command. N/A msecs The on-hook time in milliseconds. Valid values are in the range 100 to 500msec.
VoIP phone ports VoIP EP command reference VOIP EP ANALOGUE ENABLE VOIP EP ANALOGUE LIST VOIP EP ANALOGUE SHOW 6.3.3.1.41 VOIP EP SET STUTTER-DIAL-TONE Syntax VOIP EP ANALOGUE SET STUTTER-DIAL-TONE {PERIODIC|SINGLE-REPETITION} Description This command sets the mode to play the stutter dial tone usually used to signal a waiting message is available. The tone can be played periodically or only once (single repetition).
VoIP EP command reference Example VoIP phone ports Option Description Default Value name Identifies the access port, 1 to 16 characters in length. Valid characters are any printable characters, except code 0x2E and 0x2F; digits cannot be used as first character and if the space character is present, the string must be quoted. N/A is the expression string in use to know the end of dialling phase.
VoIP phone ports VoIP EP command reference 6.3.3.1.44 VOIP EP SET UNREGISTERED-TONE Syntax VOIP EP ANALOGUE SET UNREGISTERED-TONE {ENABLE|DISABLE} Description This command enables/disables a tone generated when the user is not registered. By default, if the user is not registered and no FDB entries exist a reorder tone is generated. If the unregistered-tone is disabled, no tones are generated.
VoIP EP command reference VoIP phone ports 6.3.3.1.
VoIP phone ports VoIP EP command reference Gateway access port: tel1 -------------------------------------------------------------------Physical port: ep1-1 Typology: AL-FXS-DEL Operational status: Activated Disconnect procedure: immediate-release Suppl.
VoIP EP command reference VoIP phone ports max: Dialling mode: Digit map: Dial mask: Emergency service number: Line Echo Cancellation (LEC): Fax/Modem detection: Jitter Delay: Jitter Mode: Voice Activity Detection (VAD): Hotline: service state: Recognition time: Off-hook: On-hook: Flash-hook: Rx gain: Tx gain: 4 secs. DTMF x.T 0 none 16 enabled 60 msecs. fixed ON Not provisioned service 250 msecs. 1000 msecs. 950 msecs. -6.0 dB. +0.0 dB.
VoIP phone ports Example VoIP EP command reference Option Description Default Value name An existing access port. To display the existing access port names, use the VOIP EP ANALOGUE LIST command.
VoIP EP command reference VoIP phone ports Option Description Default Value name A name that identifies an existing customized signalling created with the VOIP EP SIGNALING CREATE command. To display the existing access port names, use the voip ep list command. N/A port A name that identifies an existing access port. To display the existing customized signalling use the voip ep SIGNALING list command.
VoIP phone ports VoIP EP command reference type The class of the customized signalling. Valid values are: N/A busy-tone dial-tone ring ringback-tone. secs Time interval expressed in seconds. Valid values are from 1 to 3600 seconds. N/A frequency One or more (up to three) tones separated by a “/” char.
VoIP EP command reference VoIP phone ports A customized ring signal with a complext cadence. The ring is executed three times with a cadence of 0.5 sec. on and 0.5 sec. off followed by an infinite cadence of 1 sec on and 2 sec off. The timeout is set to 180 sec. --> voip ep signaling create create myring type ring time-out 180 frequency 25 cadence -3(+0.5-0.5)+continuous(+1.0-2.
VoIP phone ports Example VoIP EP command reference • signaling entry ID value • signaling entry name • signaling entry type --> voip ep signaling list Custom Signaling Protocol items: ID | Name | Type -----|------------|--------------------------------------1 | mydial | dial-tone 2 | mybusy | busy-tone 3 | myring | cai -----|------------|--------------------------------------See also VOIP VOIP VOIP VOIP VOIP EP EP EP EP EP SIGNALING ADD SIGNALING CREATE SIGNAaLING DELETE SIGNAaLING REMOVE SIGNAL
VoIP EP command reference VoIP phone ports voip ep SIGNALING DELETE voip ep SIGNALING LIST voip ep SIGNALING SHOW 6.3.3.1.53 VOIP EP SIGNALING SHOW Syntax VOIP EP SIGNALING SHOW Description This command shows a previously created customized signaling.
Common VoIP attributes: QoS, Media and DTMF-Relay QoS voip ep SIGNALING LIST voip ep SIGNALING REMOVE 6.4 Common VoIP attributes: QoS, Media and DTMF-Relay The following section details voip attributes that are typically used to handle voice quality and that are common for both the two main VoIP protocols (SIP and MGCP). In some specific cases some commands are effective only when a specific voip protocol is selected (see the comand details).
DTMF-RELAY Common VoIP attributes: QoS, Media and DTMF-Relay When VoIP MGCP protocol is used, the lowest ports pair is assigned to the first configured end-point, the subsequent pair is assigned to the second configured end-point and so on. When SIP protocol is used, ports pair are used in a round robin fashion. iMG/RG/iBG devices allow to specify a specific the RTP packetization time as timeframe between to consecutive RTP packets.
Common VoIP attributes: QoS, Media and DTMF-Relay TABLE 6-15 VOIP QOS command reference Functional Mapping for Common VoIP attributes Fiber Fiber Fiber Fiber Fiber A B C D E Functions Modular ADSL ADSL ADSL A B C VOIP QOS CLI COMMANDS X X X X X X X X X VOIP MEDIA CLI COMMANDS X X X X X X X X X VOIP DTMF-RELAY CLI COMMANDS X X X X X X X X X 6.4.
VOIP QOS command reference Note: Common VoIP attributes: QoS, Media and DTMF-Relay To disable DSCP support (i.e. remove any previous configuration performed on DSCP field on signalling and speech packets) use the VOIP QOS SET NONE command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value dscp-code The value of dscp field.
Common VoIP attributes: QoS, Media and DTMF-Relay Description Note: VOIP QOS command reference This command sets the value of the dscp field in the IP header only for VoIP media (RTP) originated packets. To disable DSCP support (i.e. remove any previous configuration performed on DSCP field on signalling and speech packets) use the VOIP QOS SET NONE MEDIA-PROTOCOL command.
VOIP QOS command reference Description Note: Common VoIP attributes: QoS, Media and DTMF-Relay This command sets the value of the tos field in the IP header only for VoIP signaling originated packets. To disable TOS support (i.e. remove any previous configuration performed on TOS field on signalling and speech packets) use the VOIP QOS SET NONE SIGNALING-PROTOCOL command.
Common VoIP attributes: QoS, Media and DTMF-Relay VoIP Media command reference 6.4.5.1.7 VOIP QOS SHOW Syntax VOIP QOS SHOW Description This command shows the value of DSCP or TOS fields used in the IP header of RTP voice packets.
VoIP Media command reference Common VoIP attributes: QoS, Media and DTMF-Relay 6.4.6.1.1 VOIP MEDIA SET PACKETLENGTH Syntax VOIP MEDIA SET PACKETLENGTH Description This command set the size of each local generated voice RTP packets. The packetlength specifies the voice time period that is carried by each voice RTP packet. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
Common VoIP attributes: QoS, Media and DTMF-Relay VoIP Media command reference 6.4.6.1.3 VOIP MEDIA SET RTCP Syntax VOIP MEDIA SET RTCP {OFF | ON} Description This command enables RTCP. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value OFF Turn off the RTCP support. off ON Enable the RTCP support.
VoIP DTMF-RELAY command reference Common VoIP attributes: QoS, Media and DTMF-Relay Description This command shows the media values defined by the VOIP MEDIA SET commands. Example --> voip media show Gateway Media: ------------------------------------------------------Port range: 50600/32 Packet length: 10 msecs. RTCP enable: off RTP session time-out: 0 mins. See also VOIP MEDIA SET PORTRANGE VOIP MEDIA SET RTCP VOIP MEDIA SET SESSIONTIMEOUT 6.4.
Common VoIP attributes: QoS, Media and DTMF-Relay VoIP DTMF-RELAY command reference Description This command sets the value of the DTMF-RELAY mode used to decide if to send DTMF tones in band or out of band. Note the protocol used to send the DTMF tones out-of-band can be configured on the used signalling protocol (SIP). Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
VoIP DTMF-RELAY command reference Description Common VoIP attributes: QoS, Media and DTMF-Relay This command sets the number of milliseconds that a tone is locally played when a telephone event rtp message is received. The value rfc2833 is shown when telephone-event time is set 0 for communicating that the duration is managed in the standard way as described in rfc2833.
Common VoIP attributes: QoS, Media and DTMF-Relay VoIP DTMF-RELAY command reference Example --> voip dtmf-relay show Gateway DTMF-Relay: -------------------------------------------------------Mode: out-of-band Telephone-event final packets: 2 Telephone-event time: rfc2833 Telephone-event Payload Type: default 6-132 iMG/RG Software Reference Manual (Voice Service)
Introduction QOS 7. Quality of Service 7.1 QOS 7.1.1 Introduction The Quality of Service (QoS) support within gateway units allows different classes of traffic, such as specific applications or users of a network, to be offered different levels of service. The key features offered are: • Quality of service for traffic managed by the ADSL module. • Quality of service for local applications such as Voice over IP (VoIP) traffic.
QOS QoS implementation for DIFFSERV Taking into account the QoS related software tools described above, a more detailed view of the gateway architecture is shown below. ADSL Driver ADSL CPU Scheduler TEL 1 VoIP Bridge/Router Software TEL 2 Meter Marker Classifier Layer 2 Switch LAN 2 FIGURE 7-1 LAN 3 LAN 4 Gateway Architecture Note: Note that QoS support is available only for the upstream direction, i.e.
QoS implementation for DIFFSERV QOS Without the packet classifier, every packet arriving on any interface would be treated with the same priority. The same profile can be added to more than one transport, so that the same set of rules are used by multiple transports. Each rule can test any of the following fields in the packet: • • • • IP header DIFFSERV Codepoint (DSCP). Source and/or destination IP address. IP protocol (incorporating TCP/UDP/ICMP/GRE protocols).
QOS QoS implementation for DIFFSERV The Drop priority is used by the Algorithmic dropper component of the Schedule, which when configured drops packets selectively during a congestion condition in Scheduler queues. The packets with a higher drop priority have a higher probability of getting dropped than lower priority packets. The Classifier initially sets the drop priority, and then the drop priority may optionally be modified by the Meter device if the packet is out of profile.
QoS implementation for DIFFSERV QOS classifier profile cp1 set rule rule1 srcaddr 20.20.20.1 255.255.255.
QOS QoS implementation for DIFFSERV 7.1.3.3.1 How metering works The Meter device compares temporal properties of the incoming traffic stream against configured parameters. There are two types of meter: • Two-level meter This meter informs whether a packet is in profile (Green) or out of profile (Red). • Three-level meter This informs whether a packet is completely in profile (Green), partially in profile (Yellow) or out of profile (Red).
QoS implementation for DIFFSERV QOS 7.1.3.3.4 trTCM (two rate three color marker) meter profile Another three-level meter profile named as trTCM (two rate three color marker) meter profile consists of four parameters: • • • • Committed information rate (CIR) Committed burst size (CBS) Peak Information rate (PIR) Peak burst size (PBS) If the packet stream's average rate is within CIR and the burst size is within CBS then the packet is marked Green.
QOS QoS implementation for DIFFSERV Incoming Packet Meter Packet Check Action Action == Drop Discard Packet Set DSCP? Set DSCP Value Set Drop Priority FIGURE 7-2 Metering for Traffic Control Note that the Meter uses the TRUE size of the IP packet for metering. For example, if the Meter receives an Ethernet packet with the following structure: • 14 bytes Ethernet header. • 100 bytes of IP packet (20 bytes IP header + 80 bytes payload). • 4 bytes of Ethernet padding & FCS.
QoS implementation for DIFFSERV QOS 7.1.3.3.6 Configuring the meter To configure the Meter, use the following CLI commands: 1. Create a profile using one of the commands: METER ADD PROFILESRTCM METER ADD PROFILETOKENBUCKET METER ADD PROFILETRTCM The metering algorithm type and associated parameters are specified in the command options. 2. By default, green and yellow packets are passed and red packets are dropped.
QOS • • • • • • • • • QoS implementation for DIFFSERV Priority Queuing. WFQ2+ Queuing. Priority Queuing and Shaping. WFQ2+ Queuing and Shaping. Shaping and Algorithmic Dropper. Priority Queuing and Algorithmic Dropper. WFQ2+ Queuing and Algorithmic Dropper. Priority Queuing and Shaping and Algorithmic Dropper. WFQ2+ Queuing and Shaping and Algorithmic Dropper. The task of qualifying packets arriving on the incoming interfaces to different priority streams is handled by the Classifier device.
QoS implementation for DIFFSERV QOS 7.1.3.4.1 Service discipline The Scheduler Service discipline determines the service provided to packets belonging to distinct scheduling priority streams. The incoming packets are buffered in multiple queues based on the Scheduling Priority value (contained in the buffer) associated with the respective packet buffers. These packets are then selected for transmission, based on the configured Service Discipline (the packet selection algorithm).
QOS QoS implementation for DIFFSERV 7.1.3.4.3 Algorithmic dropper The Scheduler also supports an active queuing mechanism called the Algorithmic Dropper (ALD). ALD uses RED (Random Early Detection) and WRED (Weighted RED) algorithms for congestion avoidance. The user can configure the Algorithmic Dropper on any created queue by setting their relevant attributes. This will lead to the association of an Algorithmic Dropper with that particular queue.
QoS implementation for DIFFSERV QOS 7.1.3.4.5 Scheduling packets Packets forwarded to the Scheduler are buffered internally in multiple queues based on the scheduling priority value associated with each packet. If the Algorithmic Dropper is associated with that particular queue then the Dropper will be invoked, at the time of enqueuing, to decide whether the packet should be enqueued in the queue or dropped. The flow chart below summarises the scheduling process for packet enqueuing.
QOS QoS implementation for DIFFSERV 7.1.3.4.6 Packet Dequeue The packets present in various queues are selected based on the configured service discipline and transmitted to the driver below. As an optimization measure, the Scheduler tries to utilize a low level driver queue fully by pushing as many packets as possible (limited by the driver queue size) to the driver. The flow chart below summarises the scheduling process for packet dequeuing.
ATM QoS Feature QOS The scheduling algorithm type is specified in the command. If the scheduling algorithm is WF2Qplus, then all traffic gets enqueued to a default queue (queue 0) with a weight allocation of 100% by default. To enable enqueuing to the other queues (1-7), assign a weight to the queues using the command SCHEDULER PROFILE SET QUEUE [1-7] WEIGHT 2.
QOS ATM QoS Feature Bridge/Router Software Meter Classifier ATM driver with packet prioritization support HP Queue FIGURE 7-6 LP Queue The ADSL Driver 7.1.4.2 How ATM packet prioritization works The ADSL device driver is responsible for transmit scheduling when packets of different priorities are sent on the same channel.
Classifier command reference QOS • high priority packets would be dropped, because such a large number of buffers are queued from transmission that system buffering resources are exhausted. The ADSL driver provides the following features to prevent this: • Transmit scheduling • Queue depth limiting 7.1.4.2.1 Transmit scheduling The ADSL driver can be configured to support two transmit queues per VC; a high priority queue, and a low priority queue.
QOS Classifier command reference TABLE 7-1 Classifier commands (Continued) Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C CLASSIFIER PROFILE ADD RULE X X X X X X X X X CLASSIFIER PROFILE CLEAR RULES X X X X X X X X X CLASSIFIER PROFILE DELETE RULE X X X X X X X X X CLASSIFIER PROFILE LIST RULES X X X X X X X X X CLASSIFIER PROFILE SET RULE DATALENGTH X X X X X X X X X CLASSIFIER PROFILE SET RULE DROPPRI X X X X X X
Classifier command reference QOS 7.1.5.1.1 CLASSIFIER ADD PROFILE Syntax CLASSIFIER ADD PROFILE Description This command creates a classifier profile. You can add rules to the profile using the classifier profile add rule command. You can then set the profile to work on an ATM transport or transports, using the TRANSPORT SET CLASSIFIER PROFILE command.
QOS Classifier command reference Option name Description Default Value An existing profile. To display profile names, use the N/A CLASSIFIER LIST PROFILES command. number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. Example --> classifier delete profile pr1 See also CLASSIFIER ADD PROFILE N/A 7.1.5.1.
Classifier command reference Option name QOS Description Default Value An existing profile. To display profile names, use the N/A CLASSIFIER LIST PROFILES command. number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A rule name An arbitrary name that identifies the rule. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit.
QOS Classifier command reference Description This command deletes a single rule that was added to an existing profile using the CLASSIFIER PROFILE ADD RULE command. Options The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable). Option name Description Default Value An existing profile. To display profile names, use the N/A CLASSIFIER LIST PROFILES command. number An existing profile.
Classifier command reference QOS If a packet matches the configured fields, the packet is assigned a specific QoSC. If a DSCP is specified by the classifier profile set rule mark command, a DSCP is also assigned. The assigned fields are also displayed in the Test details column. Options The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable). Option name Description Default Value An existing profile.
QOS Classifier command reference If the value of the classifier profile set rule protocol command is set to any or to a valueother than TCP or UDP, this rule compares the payload data length of the IP packet (i.e., IP total length - IP header length) to the and values specified here. Options The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable).
Classifier command reference Option name QOS Description Default Value An existing profile. To display profile names, use the N/A CLASSIFIER LIST PROFILES command. number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A rule name An existing rule. To display rule names, use the CLASSIFIER PROFILE LIST RULES command. N/A An existing rule. To display rule numbers, use the N/A rule number CLASSIFIER PROFILE LIST RULES command.
QOS Classifier command reference Option name Description Default Value An existing profile. To display profile names, use the N/A CLASSIFIER LIST PROFILES command. number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A rule name An existing rule. To display rule names, use the CLASSIFIER PROFILE LIST RULES command. N/A rule number An existing rule. To display rule numbers, use the CLASSIFIER PROFILE LIST RULES command.
Classifier command reference QOS Option Description Default Value number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A An existing rule. To display rule names, use the N/A rule name CLASSIFIER PROFILE LIST RULES command. rule number An existing rule. To display rule numbers, use the N/A CLASSIFIER PROFILE LIST RULES command. addr The destination IP address, displayed in the following format: 192.168.102.3 0.0.0.
QOS Classifier command reference Option name Description Default Value An existing profile. To display profile names, use the N/A CLASSIFIER LIST PROFILES command. number rule name An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A An existing rule. To display rule names, use the N/A CLASSIFIER PROFILE LIST RULES command. rule number An existing rule. To display rule numbers, use the N/A CLASSIFIER PROFILE LIST RULES command.
Classifier command reference QOS Option Description Default Value ifdomain The name of the domain on which to match N/A action The action to be carried out in the event of a match N/A Example --> classifier profile TestProfile set rule TestRule ifdomain example.com action drop See also CLASSIFIER PROFILE LIST RULES CLASSIFIER PROFILE ADD RULE 7.1.5.1.
QOS Classifier command reference See also CLASSIFIER LIST PROFILES CLASSIFIER PROFILE LIST RULES 7.1.5.1.16 CLASSIFIER PROFILE SET RULE MARK TOS Syntax CLASSIFIER PROFILE {|} SET RULE {|} MARK TOS Description This command determines what happens if a rule is matched. You can configure the classifier to mark packets with a specific Type of Service (ToS). If set, the TOS field in the IP header will be changed to the value set here.
Classifier command reference QOS Example --> classifier profile pr1 set rule r1 mark tos 0x04 See also CLASSIFIER LIST PROFILES CLASSIFIER PROFILE LIST RULES 7.1.5.1.17 CLASSIFIER PROFILE SET RULE MARK VPRI Syntax CLASSIFIER PROFILE SET RULE MARK VLANPRI Description This rule marks 802.1p priority in the packet. This rule works on both 802.1q tagged and untagged packets, if the packet is untagged and rule is configured a 4byte field (802.
QOS Classifier command reference 7.1.5.1.18 CLASSIFIER PROFILE SET RULE METERID Syntax CLASSIFIER PROFILE {|} SET RULE {|} METERID Description This command determines what happens if a rule is matched. You can configure the classifier to assign a meter Id to the packet matching a rule.
Classifier command reference QOS Option Description Default Value profilename A name that identifies an existing profile. To N/A display profile names, use the classifier list profiles command. rule name A name that identifies an existing rule. To N/A display rule names, use the classifier profile list rules command.
QOS Classifier command reference Option Description Default Value name A name that identifies an existing profile. To N/A display profile names, use the classifier list profiles command. number A number that identifies an existing profile. N/A To display profile numbers, use the classifier list profiles command. rule name A name that identifies an existing rule. To N/A display rule names, use the classifier profile list rules command.
Classifier command reference Option name QOS Description Default Value An existing profile. To display profile names, use the N/A CLASSIFIER LIST PROFILES command. number rule name An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A An existing rule. To display rule names, use the N/A CLASSIFIER PROFILE LIST RULES command. priority The scheduling priority value or queue ID value, that is any number between 1 and 7 (included).
QOS Classifier command reference Option Description Default Value name An existing profile. To display profile names, use the classifier list profiles command. N/A number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A rule name An existing rule. To display rule names, use the CLASSIFIER PROFILE LIST RULES command. N/A rule number An existing rule. To display rule numbers, use the CLASSIFIER PROFILE LIST RULES command.
Classifier command reference QOS Option Description Default Value number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A rule name An existing rule. To display rule names, use the CLASSIFIER PROFILE LIST RULES command. N/A rule number An existing rule. To display rule numbers, use the CLASSIFIER PROFILE LIST RULES command. N/A addr The source IP address, in the format 192.168.102.3 0.0.0.0 mask The source subnet mask address in the format 255.
QOS Classifier command reference Option Description Default Value number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command. N/A rule name An existing rule. To display rule names, use the CLASSIFIER PROFILE LIST RULES command. N/A rule number An existing rule. To display rule numbers, use the CLASSIFIER PROFILE LIST RULES command. N/A min The start of the source port range for a TCP or UDP protocol.
Classifier command reference QOS Option Description Default Value rule name An existing rule. To display rule names, use the CLASSIFIER PROFILE LIST RULES command. N/A rule number An existing rule. To display rule numbers, use the CLASSIFIER PROFILE LIST RULES command. N/A tos The Type of Service, specified as a hexadecimal (0xNN) in the range 0x00 and 0xfc. The 2 least significant bits are ignored. Set to ‘any’ to cancel the ToS setting.
QOS Classifier command reference 7.1.5.1.27 CLASSIFIER PROFILE SET RULE VLANID Syntax CLASSIFIER PROFILE SET RULE VLANID Description This command classifies packet based on the vlanid range specified. Options The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable).
Classifier command reference QOS Option Description Default Value profilename A name that identifies an existing profile. To N/A display profile names, use the classifier list profiles command. rule name A name that identifies an existing rule. To N/A display rule names, use the classifier profile list rules command.
QOS Meter command reference Options Example The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable) Option Description Default Value name An existing profile. To display profile names, use the CLASSIFIER LIST PROFILES command. N/A number An existing profile. To display profile numbers, use the CLASSIFIER LIST PROFILES command.
Meter command reference TABLE 7-2 QOS Meter commands (Continued) Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E A B C Modular Commands METER ADD PROFILE TRTCM X X X X X X X X X METER CLEAR PROFILES X X X X X X X X X METER DELETE PROFILE X X X X X X X X X METER LIST PROFILES X X X X X X X X X METER SET PROFILE ACTION DROP X X X X X X X X X METER SET PROFILE ACTION MARK DSCP X X X X X X X X X METER SET PROFILE ACTION PASS X X X X X
QOS Meter command reference Option Description Default Value name An arbitrary name that identifies the profile. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A cir Committed Information Rate in kbps. N/A cbs Committed Burst Size in bytes. N/A ebs Excess Burst Size in bytes. N/A Example --> meter add profile mp1 srtcm 80 10000 25000 See also METER ADD PROFILE TOKENBUCKET METER ADD PROFILE TRTCM METER LIST PROFILES 7.
Meter command reference QOS Option Description Default Value name An arbitrary name that identifies the profile. It can be made up of one or more letters or a combination of letters and digits, but it cannot start with a digit. N/A cir Committed Information Rate in kbps. N/A cbs Committed Burst Size in bytes. N/A Example --> meter add profile mp1 tokenbucket 80 10000 See also METER ADD PROFILE SRTCM METER ADD PROFILE TRTCM 7.1.6.1.
QOS Meter command reference Option Description Default Value cir Committed Information Rate in kbps. N/A cbs Committed Burst Size in bytes. N/A pir Peak Information Rate in kbps. N/A pbs Peak Burst Size in bytes. N/A Example --> meter add profile mp1 trtcm 80 10000 120 15000 See also METER ADD PROFILE SRTCM METER ADD PROFILE TOKENBUCKET METER LIST PROFILES 7.1.6.1.
Meter command reference Option name QOS Description Default Value An existing profile. To display names, use the N/A METER LIST PROFILES command. Example --> meter delete profile mp1 See also METER ADD PROFILE SRTCM METER ADD PROFILE TOKENBUCKET METER ADD PROFILE TRTCM 7.1.6.1.6 METER LIST PROFILES Syntax METER LIST PROFILES Description This command lists all of the meter profiles that were created using the METER ADD PROFILE commands.
QOS Meter command reference See also METER ADD PROFILE SRTCM METER ADD PROFILE TOKENBUCKET METER ADD PROFILE TRTCM 7.1.6.1.7 METER SET PROFILE ACTION DROP Syntax METER SET PROFILE {GREEN|RED|YELLOW} ACTION DROP Description This command configures an existing profile to drop packets depending on their metering result. Note that if this command is not applied, by default the green and yellow packets are passed and red packets are dropped.
Meter command reference QOS Option Description Default Value name An existing profile. To display names, use the METER LIST PROFILES command. N/A green Sets the DSCP value in packets with green (in profile) metering results. N/A red Sets the DSCP value in packets with red (out of profile) metering results. N/A yellow Sets the DSCP value in packets with yellow (partially in profile) metering results to be dropped. N/A dscp The Differentiated Service Code Point (DSCP).
QOS Meter command reference Option Description Default Value red Sets packets with red (out of profile) metering results to pass. drop yellow Sets packets with yellow (partially in profile) metering results to pass. pass Example --> meter set profile mp1 green action pass See also METER LIST PROFILES 7.1.6.1.10 METER SHOW PROFILE Syntax METER SHOW PROFILE Description This command displays information about a meter profile that was created using one of the METER ADD PROFILE commands.
Meter command reference Meter Profile Type CIR (kbps) CBS (bytes) PIR (kbps) PBS (bytes) EBS (bytes) Green Action Yellow Action Red Action See also QOS : mp3 : trtcm : 80 : 10000 : 120 : 15000 : : Pass : Pass : Drop METER LIST PROFILES 7.1.6.
QOS Meter command reference by the classifier profile set rule priority command). This value determines the scheduling behavior received by a packet. If a packet is not classified, scheduling priority 0 is assigned to the packet by default. If you select the priority service discipline, the profile supports 8 queues, each corresponding to a scheduling priority from 0-7. Each queue can hold a maximum of 32 packets at any instant.
Meter command reference QOS Option Description Default Value priority Priority Queueing provides prioritized treatment to higher priority traffic. N/A Example --> scheduler add profile prioschlr priority See also SCHEDULER SHOW PROFILE 7.1.6.2.2 SCHEDULER CLEAR PROFILES Syntax SCHEDULER CLEAR PROFILES Description This command deletes all scheduler profiles that were previously created using the SCHEDULER ADD PROFILE command.
QOS Meter command reference Example • Profile ID number • Profile name --> scheduler list profiles Scheduler Profiles: ID | Name ----|-------------1 | sch1 2 | sch2 ------------------See also SCHEDULER ADD PROFILE 7.1.6.2.5 SCHEDULER SET PROFILE SHAPING Syntax SCHEDULER SET PROFILE SHAPING Description This command configures the specified scheduler profile to shape aggregate traffic to the specified maximum rate and burst size.
Meter command reference See also QOS SCHEDULER LIST PROFILES SCHEDULER SHOW PROFILE 7.1.6.2.6 SCHEDULER PROFILE SET QUEUE WEIGHT Syntax SCHEDULER PROFILE SET QUEUE [1-7] WEIGHT Description This command configures a scheduler profile of WF2QPlus service discipline to configure a separate queue for a scheduling priority level with the specified weight value. The weight value is set as a percentage.
QOS Meter command reference See also SCHEDULER LIST PROFILES SCHEDULER SHOW PROFILE 7.1.6.2.7 SCHEDULER PROFILE SET QUEUE ALD PROFILE Syntax SCHEDULER PROFILE SET QUEUE {DEFAULT | [1-7]} ALD PROFILE [ ] Description This command associates a scheduler profile queue with an Algorithmic Dropper (ALD) profile. ALD is a congestion control mechanism.
Meter command reference Example QOS Option Description Default Value 1-7 The scheduling priority value or queue ID value (created using the SCHEDULER PROFILE SET QUEUE WEIGHT command) that you want to associate the ALD profile with. This can be any number between 1 and 7 (included). N/A GreenProfile An existing ALD profile. This is the only profile required if the RED algorithm is used. If you are using the WRED algorithm, this ALD profile is applied to packets with green drop priority.
QOS Meter command reference Option name Description Default Value An existing profile. To display names, use the SCHED- N/A ULER LIST PROFILES command. default The default priority value. See the SCHEDULER ADD N/A PROFILE command description. 1-7 The scheduling priority value or queue ID value (created using the SCHEDULER PROFILE SET QUEUE WEIGHT command) that the ALD profile is associated with. This can be any number between 1 and 7 (included).
Meter command reference See also QOS SCHEDULER LIST PROFILES SCHEDULER ADD PROFILE SCHEDULER SET PROFILE SHAPING 7.1.6.2.10 SCHEDULER SHOW PROFILE QUEUES Syntax SCHEDULER SHOW PROFILE QUEUES Description This command displays the following information about the queues of an existing scheduler profile.
L2Filter Overview 7.2 L2Filter 7.2.1 Overview The purpose of the L2 Filter module is to provide a mechanism by which inbound traffic can be classified and acted upon based on its contents. The module is configured by defining a set of profiles which themselves contain a set of rules. Each rule defines a packet classification and the appropriate action to take in the event of a match. The actions vary from basic operations, such as DROP, to more complex actions such as packet rewriting.
L2Filter Command Reference L2Filter 7.2.1.1.2 Rules The rule is the workhorse of the L2 Filter system. A user defines a set of rules which contain one packet classifier and its associated action. The packet classifier is an offset / value pair that the filter uses to identify packets on which to apply a rule. Several of the basic classifier fields have been pre-defined for use however the user has the ability to define their own. 7.2.1.1.
L2Filter L2Filter Command Reference TABLE 7-4 Commands L2filter commands Fiber A Fiber B Fiber C Fiber D Fiber E Modul ar ADSL A ADSL B ADSL C L2FILTER ADD PROFILE X X X X X X X L2FILTER ADD RULE X X X X X X X L2FILTER CLEAR FIELDTYPES X X X X X X X L2FILTER CLEAR PROFILES X X X X X X X L2FILTER CLEAR RULES X X X X X X X L2FILTER DELETE FIELDTYPE X X X X X X X L2FILTER DELETE RULE X X X X X X X L2FILTER DELETE PROFILE X X X X X X X
L2Filter Command Reference L2Filter 7.2.2.1.1 L2FILTER ADD FIELDTYPE Syntax L2FILTER ADD FIELDTYPE BASE OFFSET MASK Description This command allows the user to create their own filter field types. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
L2Filter L2Filter Command Reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name The name of the rule n/a stage The stage of processing in which this rule will be applied 1 order The order in the stage when this rule will be applied 1 Example --> l2filter add rule TestRule stage 1 order 2 See also L2FILTER SHOW RULE 7.2.2.1.
L2Filter Command Reference L2Filter Description This command deletes the specified fieldtype from the system. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name The name of the field to be deleted n/a Example --> l2filter delete fieldtype TestFieldType See also L2FILTER LIST FIELDTYPES L2FILTER ADD FIELDTYPE 7.2.2.1.
L2Filter L2Filter Command Reference Option Description Default Value name The name of the profile to be deleted n/a Example --> l2filter delete profile TestProfile See also L2FILTER LIST PROFILES L2FILTER ADD PROFILE 7.2.2.1.10 L2FILTER LIST FIELDTYPES Syntax L2FILTER LIST FIELDTYPES Description This command lists the available field types in the system. The system creates a default set of fields at boot time.
L2Filter Command Reference L2Filter 7.2.2.1.13 L2FILTER SHOW PROFILE Syntax L2FILTER SHOW PROFILE Description This command displays information about the specified profile. This information includes which rules the profile will attempt to match. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
L2Filter L2Filter Command Reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name The name of the field to display n/a Example --> l2filter show fieldtype TestFieldType See also L2FILTER ADD FIELDTYPE L2FITLER DELETE FIELDTYPE 7.2.2.1.
L2Filter Command Reference L2Filter Option Description Default Value profile_name The name of the profile from which we want to remove the rule n/a rule_name The name of the rule to remove from the profile n/a Example --> l2filter profile TestProfile detach rule TestRule See also L2FILTER DELETE RULE L2FILTER DELETE PROFILE 7.2.2.1.
L2Filter L2Filter Command Reference Option Description Default Value action_type The action that should be performed. The available actions are the following: n/a drop allow_packet dump_packet mark_dscp mark_8021p mark_vlan untag_packet jump_stage mark_sch mark_meter mark_drop action_data Additional data that may be required to perform the function specified by the action Example --> l2filter rule TestRule add action mark_vlan value 1234 See also L2FILTER ADD RULE 0 7.2.2.1.
L2Filter Command Reference L2Filter Option Description Default Value operation The type of operation that should be used for the test. The available tests are the following: 0 • • • • • • • • GT LT GTEQ LTEQ EQ NEQ INRANGE EXRANGE val1 The first argument to be used in the test 0 val2 The second argument to be used in the test 0 Example --> l2filter rule TestRule add field TestField INRANGE 1 value2 10 See also L2FILTER ADD RULE L2FILTER ADD FIELDTYPE 7.2.2.1.
L2Filter L2Filter Command Reference 7.2.2.1.21 L2FILTER RULE LIST FIELDS Syntax L2FILTER RULE LIST FIELDS Description This command lists all the fields associated with the specified rule. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
L2Filter Command Reference L2Filter Option Description Default Value rule_name The name of the rule from which to delete the action n/a action_type The action that should be deleted. The available actions are the following: n/a drop allow_packet dump_packet mark_dscp mark_8021p mark_vlan untag_packet jump_stage mark_sch mark_meter mark_drop Example --> l2filter rule TestRule delete action drop See also L2FILTER ADD RULE L2FILTER RULE ADD ACTION 7.2.2.1.
L2Filter L2Filter Command Reference See also L2FILTER ADD RULE L2FILTER RULE ADD FIELD 7.2.2.1.24 L2FILTER SET RULE ENABLE Syntax L2FILTER SET RULE ENABLE Description This command enables a rule in the system. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
ADSL upload interface Overview 8. ADSL Port 8.1 Overview 8.1.1 ADSL upload interface The Allied Telesis Gateway product provide an ADSL access to WAN Network, this interface is commonly called upload interface. This chapter will describe the interaction between the ADSL physical port a1 and the TCP/IP stack of the system using different kind of transport layer. 8.1.
ADSL System description Overview 8.2 ADSL System description 8.2.
ADSL connection via RFC1483 bridged mode ADSL System description TCP/IP Stack allowing the termination of IP frames belonging to a specific VLAN to a well defined IP interface (see proper chapter of this manual for further information about ATI Bridge module).
ADSL System description ADSL connection via RFC1483 routed mode #Set a static IP address on the IP interface -->ip set interface ip666 ipaddress 192.168.99.1 255.255.255.0 See also vlan (chapter 2-Layer 2 functions) ethernet (chapter 7-ADSL Port) rfc1483 (chapter 7-ADSL Port) bridge (chapter 7-ADSL Port) ip (chapter 2-Layer 2 functions) 8.2.
Port a1 command reference Port a1 -->pppoa set transport trpppoa password -->pppoa set transport trpppoa welogin auto -->pppoa set transport trpppoa headers llc enabled -->pppoa set transport trpppoa enable See also rfc1483 (chapter 7-ADSL Port) pppoa (chapter 7-ADSL Port) ip (chapter 2-Layer 2 functions) 8.3 Port a1 The following chapter describes all the ADSL port available parameters. Note the ADSL port is physically identified in the system with the name a1.
Port a1 Port a1 command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example --> port list ? Option Description Default Value all all port classes available, classes meaning a grouping of software device driver to manage different media type of protocols, i.s. atm for ADSL ethernet for 802.
Port a1 command reference Port a1 To display a list of valid attributes for the ADSL port, use the PORT A1 SHOW or PORT A1 STATUS command. Options The following table gives the range of values for each attribute option that can be specified with this command and a default value (if applicable).
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value AnnexACapability ONLY Group B devices. Supported AnnexA/annexB capabilities.
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description Default Value AnnexAFramerType ONLY Group B devices Type3 AnnexBFramerType Configures the Framer Type for AnnexA/B. There are five different types of framing structures: Type0: Full overhead framing with asynchronous bit-to-modem timing. Type1: Full overhead framing with synchronous bit-to-modem timing.
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value AnnexAQualificationMode ONLY Group B devices Configures Qualification mode for AnnexA/B. This parameter is mainly used for Qualifications and internal test/debugging.
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description AutoSRAMaxTimeFEC Group A and group C devices ONLY AnnexB AutoSRAUpShiftPeriod Group A and group C devices ONLY AnnexB AutoStart Flag indicating whether the Line should be auto started or not when the system comes up.
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value BisACodingGain ONLY Group B devices auto BisBCodingGain Configures the Coding Gain in Bis/Bis BisMCodingGain Possible values are: auto, 0, 1, 2, 3, 4, 5, 6, 7 BisADsInp ONLY Group B devices BisBDsInp BisMDsInp Possible values are: MinPossible, NextPossible,MaxPossible BisAEcFdmMode ONLY Group B devices EC (BisA/M) BisBEcFdmMode FDM (BisB) BisMEcFdmMode Configures E
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description Default Value BisAFramerType ONLY Group B devices Type3ET BisBFramerType Configures the Framer Type for Bis/Bis+. BisMFramerType There are five different types of framing structures: Type0: Full overhead framing with asynchronous bit-to-modem timing. Type1: Full overhead framing with synchronous bit-to-modem timing.
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value BisAMaxMargin ONLY Group B devices PerCO BisBMaxMargin Configures Maximum SNR Margin for Bis/Bis+ BisMMaxMargin Possible values are: PerCO, Disable BisAMaxSInverse ONLY Group B devices BisBMaxSInverse Limits the number of Code words in a DMT Symbol, BisMMaxSInverse 0x10 configured for Bis/Bis+ Possible values are: 0x02, 0x03, 0x04, 0x05, 0x06,0x07, 0x08, 0x09, 0x0A,0x0
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description Default Value BisAQualificationMode ONLY Group B devices Mode1 BisBQualificationMode Possible values are: Mode0, Mode1, Mode2, Mode3, Mode4, Mode5 Configures Qualification mode for Bis/Bis+ BisMQualificationMode BisARxAutoBinAdjust ONLY Group B devices BisBRxAutoBinAdjust Disable, Enable Disable Possible values are: BisMRxAutoBinAdjust BisARxEndBin ONLY Group B devices BisBRxEndBi
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value BisATxEndBin ONLY Group B devices 31 (BisA) BisBTxEndBin Configures Tx End Bin for Bis/Bis+ 63 (BisM/B) BisATxStartBin ONLY Group B devices 6 (BisA/M) BisBTxStartBin Configures Rx Start Bin for Bis/Bis+ 64 (BisB) BisA_PMmode ONLY Group B devices L2L3Allowed BisB_PMmode Parameter controls which Power Management modes are to be supported on Bis/Bis+ BisMTxEndBin Bis
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description Default Value Capability Group A and Group C devices MA-ALL (AnnexA) This parameter controls if the CPE will attempt to startup using alternate standards, dependent upon CO capability. Possible values are for AnnexA: GDMT, BIS, BIS+, BIS+/GDMT, BIS+/T1413, BIS+/ BIS, BIS+/BIS/T1413, BIS+/BIS/GDMT, A-ALL, MBIS, MBIS+, MBIS+/MBIS, MA-ALL, BIS+/BIS/A/ MULTIMODE, Disable.
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value Defaults Group B devices: None Option to assign defaults to all the parameters. Possible values are: None, All Group A and C devices: Set default parameters based on the standard selected.
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description Default Value FramerType Group A and Group C devices Type3ET There are two types of framing defined per T1.413: full overhead and reduced overhead. Each type has 2 versions thus resulting in four framing structures referred to as 0, 1, 2, and 3. These framing structures are described in Table 4 of T1.413. Framing type 3 should be used for single latency applications.
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value MaxDownRate Group A and Group C devices 511 Set the maximum downstream rate in bits per seconds MaxInterleaveD Group A and Group C devices 511 Sets the Max interleaved Depth Possible values are: 64, 128, 256, 511 MaxRSMemory ONLY Group B devices 32 Configures the Size of RS Memory Possible values are: 16, 24, 32, 48 MaxSNRMargin Group A and Group C devices Disable SNR M
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description Default Value Retrain Enable/disable the automatic full retrain Capability. If enabled, the unit will automatically monitor the following statistics and attempt a full retrain when the following conditions occur: EnableOverallOnly OverallFailure status has a non-zero value. This indicates that one or more failures have occurred for 2.25 seconds or more.
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value SRA Group A and Group C devices Disable Enables/Disables the Downstream SRA feature on Bis/Bis+ Possible values are: Disable, Enable ShowtimeLed To specify which 0 LED is to be used to display State. Possible values are: 0, 1, 2, 3, 4, None Standard This parameter selects the preferred standard compliance. ADSL StandardCompliance to either T1.413, G992.1 (G.dmt), or G992.
Port a1 command reference TABLE 8-2 Port a1 Options for ADSL Port Attributes (Continued) Option Description Default Value StatusFailCount ONLY Annex A devices group ADSL A and group ADSL C 0 TxAttenuation Group A and Group C devices Bis_0DB The user can specify transmit power attenuation. Possible values are: Dmt_0DB, Dmt_0.1DB, Dmt_0.2DB, Dmt_0.3DB, Dmt_0.4DB, Dmt_0.5DB, Dmt_0.6DB, Dmt_0.7DB, Dmt_0.8DB, Dmt_0.
Port a1 Port a1 command reference TABLE 8-2 Options for ADSL Port Attributes (Continued) Option Description Default Value WhipMode ONLY Group B devices Standalone This parameter can be used to set the WHIP Possible values are: WhipOnly (runs only Whip and no APIs), Standalone(disable whip) or Concurrent (run along with APIs) WriteMemory ONLY Group B devices “\0” This Parameter acts as a CLI which allows to write into any DSP memory.
Port a1 command reference CommonHandshake Connected OperationalMode State Watchdog OperationProgress LastFailed TxBitRate RxBitRate DeltACTATPds DeltACTATPus DeltHLINscds ACTPSDDs ACTPSDUs BisTEQError RxATTNDR TxATTNDR AnnexType TxCellRate RxCellRate PhyTXCellCount PhyRXCellCount PhyCellDropCount OverallFailure InterleaveDpDn InterleaveDpUp RSCorrectedErrorsDn RSUnCorrectedErrorsDn RSCorrectedErrorsUp RSUnCorrectedErrorsUp SuperFramesDn SuperFramesUp InterleaveRDn InterleaveRUp InterleaveSDn InterleaveSUp
Port a1 Port a1 command reference BisTUp BisLDn BisLUp BisRDn BisRUp BisSDn BisSUp BisDelayDn BisDelayUp ShowtimeStart ATURVendor ATUCCountry ATURANSIRev ATURANSISTD ATUCANSIRev ATUCANSIId ATUCANSISTD DataBoost LocalITUCountryCode LocalSEF LocalEndLOS LocalSNRMargin LocalLineAttn INPup INPdown PMstatus RawAttn LocalTxPower LocalFastChannelRxRate LocalFastChannelTxRate LocalFastChannelFEC LocalFastChannelCRC LocalFastChannelHEC LocalFastChannelNCD LocalFastChannelOCD LocalFastChannelLCD LocalInterleavedChan
Port a1 command reference LocalInterleavedChannelLCD RemoteTxPower RemoteSEF RemoteLOS RemoteLineAttn RemoteSNRMargin RemoteFastChannelFEC RemoteFastChannelCRC RemoteFastChannelHEC RemoteFastChannelNCD RemoteFastChannelLCD RemoteInterleavedChannelFEC RemoteInterleavedChannelCRC RemoteInterleavedChannelHEC RemoteInterleavedChannelNCD RemoteInterleavedChannelLCD LocalMgmtFEC0 LocalMgmtCRC0 LocalMgmtFECErroredSec LocalMgmtErroredSec LocalMgmtSeverelyErroredSec LocalMgmtLOSErroredSec LocalMgmtUnavailErroredSec
Port a1 Port a1 command reference USBitSwapCnt ProfileStatus Action ActivateLine LineStatus HostControl AutoStart failsafe ShowtimeLed Retrain Defaults ReadMemory WriteMemory DSPTrace LoopbackTest LineMode Whip WhipActive WhipMode DyingGasp UtopiaInterface PhysicalPort ClockType GenericTrace debug MaxRSMemory Profile DetectNoise AnnexAStandard AnnexAEcFdmMode AnnexAMaxBitsPerBin AnnexATxStartBin AnnexATxEndBin AnnexARxStartBin AnnexARxEndBin AnnexARxAutoBinAdjust AnnexATxAttenuation AnnexABitSwap AnnexABit
Port a1 command reference AnnexAFramerType AnnexAFastRetrain AnnexAQualificationMode AnnexAMaxMargin AnnexAForceSNRMarginDn BisAMaxInterleaveD BisASHalf BisACabinetMode BisAPSDMask BisAStandard BisAEcFdmMode BisAMaxBitsPerBin BisATxStartBin BisATxEndBin BisARxStartBin BisARxEndBin BisARxAutoBinAdjust BisATxAttenuation BisABitSwap BisABitSwapUp BisANTRMode BisAMaxDownRate BisACapability BisACodingGain BisAFramerType BisAFastRetrain BisAMaxSInverse BisA_REIN BisA_SRA BisA_PMmode BisAQualificationMode BisAPre
Port a1 Port a1 command reference BisMTxEndBin BisMRxStartBin BisMRxEndBin BisMRxAutoBinAdjust BisMTxAttenuation BisMBitSwap BisMBitSwapUp BisMNTRMode BisMMaxDownRate BisMCapability BisMCodingGain BisMFramerType BisMFastRetrain BisMMaxSInverse BisM_REIN BisM_SRA BisM_PMmode BisMQualificationMode BisMPrecedence BisMMaxMargin BisMDsInp BisMForceSNRMarginDn BisBMaxInterleaveD BisBSHalf BisBCabinetMode BisBPSDMask BisBStandard BisBEcFdmMode BisBMaxBitsPerBin BisBTxStartBin BisBTxEndBin BisBRxStartBin BisBRxEnd
Port a1 command reference BisBMaxSInverse BisB_REIN BisB_SRA BisB_PMmode BisBQualificationMode BisBPrecedence BisBMaxMargin BisBDsInp BisBForceSNRMarginDn SupportedAnnexes T1413A LineCoding LineType AtucInvSerialNumber AtucInvVendorId AtucInvVersionNumber AtucCurrSnrMgn AtucCurrAtn AtucCurrStatus AtucCurrOutputPwr AtucCurrAttainableRate AturInvSerialNumber AturInvVendorId AturInvVersionNumber AturCurrSnrMgn AturCurrAtn AturCurrStatus AturCurrOutputPwr AturCurrAttainableRate AtucChanReceivedBlks AtucChanTra
Port a1 Port a1 command reference AtucChanPerfCurr1DayCorrectedBlks AtucChanPerfCurr1DayUncorrectBlks AtucChanPerfPrev1DayMoniSecs AtucChanPerfPrev1DayReceivedBlks AtucChanPerfPrev1DayTransmittedBlks AtucChanPerfPrev1DayCorrectedBlks AtucChanPerfPrev1DayUncorrectBlks AturChanReceivedBlks AturChanTransmittedBlks AturChanCorrectedBlks AturChanUncorrectBlks AturChanPerfValidIntervals AturChanPerfInvalidIntervals AturChanPerfCurr15MinTimeElapsed AturChanPerfCurr15MinReceivedBlks AturChanPerfCurr15MinTransmitte
Port a1 command reference AtucPerfCurr1DayESs AtucPerfPrev1DayMoniSecs AtucPerfPrev1DayLofs AtucPerfPrev1DayLoss AtucPerfPrev1DayLprs AtucPerfPrev1DayESs AturPerfLofs AturPerfLoss AturPerfLprs AturPerfESs AturPerfValidIntervals AturPerfInvalidIntervals AturPerfCurr15MinTimeElapsed AturPerfCurr15MinLofs AturPerfCurr15MinLoss AturPerfCurr15MinLprs AturPerfCurr15MinESs AturPerfCurr1DayTimeElapsed AturPerfCurr1DayLofs AturPerfCurr1DayLoss AturPerfCurr1DayLprs AturPerfCurr1DayESs AturPerfPrev1DayMoniSecs AturPe
Port a1 Port a1 command reference rvbrPCR_CPS rvbrSCR_CPS vbrPCR_CPS vbrSCR_CPS ubr_CPS RingLength VPIRange VCIRange MaxVcs DefaultPCR DefaultMaxQueue TrafficShaping NiType SnmpIfIndex SnmpIfType SnmpVcListHead resetDefaults portSnmpIfIndex portSnmpIfType See also = = = = = = = = = = = = = = = = = = = 0 0 0 0 12000 1000 12 16 12 2000 16 false nni 3 37 0x01066f3c false 3 37 PORT A1 SET PORT A1 STATUS 8.3.1.1.
Port a1 command reference DriverVersion APIVersion FirmwareVersion DspVersion CommonHandshake Connected OperationalMode State Watchdog OperationProgress LastFailed TxBitRate RxBitRate RxATTNDR TxATTNDR AnnexType TxCellRate RxCellRate OverallFailure DataBoost LocalITUCountryCode INPup INPdown PMstatus PSDMaskStatus StatusFailCount ProfileStatus Action ActivateLine HostControl AutoStart failsafe ShowtimeLed Retrain Defaults Whip WhipActive WhipMode DyingGasp UtopiaInterface PhysicalPort ClockType iMG/RG Sof
Bridge Basic bridge configuration GenericTrace debug MaxRSMemory Profile DetectNoise PortSpeed resetDefaults = = = = = = = DSP disable 32 MAIN Disable 2405 false 8.4 Bridge The transparent bridge on the Allied Telesis Media Gateway main application software provides MAC level bridging for Ethernet-like networks. The transparent bridge may be configured to interconnect different type of interfaces in order to forward packets that arrive from a specific physical media to another different physical media.
Basic bridge configuration Bridge Bridge Software qinterface defaulti a VID 1 (tagged) VID 1 (tagged) bunbridge default VID 1 (untagged) ethernet0 t1 c VID 1 (tagged) b cpu ip0 L2 switch lan1 dynamic FIGURE 8-2 lan2 lan3 lan4 Basic software bridge configuration The bridge software and the overall system architecture has been designed in order to have frames forwarded by the bridge always being tagged frames. All the bridge interfaces must therefore be able to manage tagged frames.
Bridge Multiple VLAN support In the opposite direction, packets arriving from qinterface (connection a) are filtered by the bunbridge module and only tagged packets having VID = 1 are sent to ip0 interface. 8.4.2 Multiple VLAN support Bunbridge port is an intermediate layer between the bridge qinterface and the ethernet transport t1.
Bridge command reference Bridge 8.4.3 Bridge command reference 8.4.3.
Bridge Bridge command reference See also BRIDGE ATTACH BRIDGE LIST INTERFACES BRIDGE LIST VLAN 8.4.3.1.2 BRIDGE ADD VLANINTERFACE Description BRIDGE ADD VLANINTERFACE {|number} {tagged|untagged} This command adds an interface in the egress interface list of the named VLAN. The egress interface list for a VLAN is the union of tagged interfaces and the untagged interfaces.
Bridge command reference Options Bridge The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing bridge interface. To display interface names, use the BRIDGE LIST INTERFACES command. N/A number An existing bridge interface. To display interface numbers, use the BRIDGE LIST INTERFACES command. The number appears in the first column under the heading ID.
Bridge Bridge command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing bridge interface. To display interface names, use the BRIDGE LIST INTERFACES command. N/A number An existing bridge interface. To display interface numbers, use the BRIDGE LIST INTERFACES command. The number appears in the first column under the heading ID.
Bridge command reference Example • Interface ID number • Interface name • Filter type • Name of attached transport (if applicable) Bridge 1) Group ADSL A devices --> bridge list interfaces Bridge Interfaces: ID | Name | Filter Type | Transport -----|------------------|--------------|---------------1 | defaulti | All | default 2 | pvc_0_35_if | All | pvc_0_35 -------------------------------------------------------- Example 2) Group ADSL B and ADSL C devices --> bridge list interfaces ID: 1 Nam
Bridge Bridge command reference 8.4.3.1.
Bridge command reference Bridge Option Description Default Value filter age The filter age is the time (in seconds) after which MAC addresses are removed from the filter table when there has been no activity. The time may be an integer value between 10 and 100,000 seconds. 300 seconds Example --> bridge set filterage 2000 See also BRIDGE SHOW 8.4.3.1.
Bridge Bridge command reference 8.4.3.1.11 BRIDGE SET INTERFACE PORTFILTER Syntax BRIDGE SET INTERFACE {|} PORTFILTER {ALL|} Description This command controls the bridge’s forwarding and broadcasting behavior. It allows you to set a portfilter on a bridge interface to determine which port or ports multicast and unknown packets should be forwarded to. This command sets one destination port at a time.
Bridge command reference • Example Bridge Filter age 1) Group ADSL A devices --> bridge show Global bridge configuration: MAC Address: 0:d:da:7:36:d3 Number of Interfaces: 3 Type: TRANSPARENT Filter Age: 300 seconds LAN-LAN Forwarding: true WAN-WAN Forwarding: true Example 2) Group ADSL B and ADSL C devices --> bridge show Global bridge configuration: MAC Address: Number of Interfaces: Type: Filter Age: LAN-LAN Forwarding: WAN-WAN Forwarding: Unicast-Learning: Multicast-Learning: Interface VLAN ID: T
Bridge Bridge command reference IGMP Snoop: Enable IGMP Net Interface: ip_static_video IGMP Enabled Vlan: 205 Default Fast Leave Enable Last Member Query Interval: 0 Query Interval: 41 Robustness Variable: 2 Query Response Interval: 3 V1 Timer Value: 133 Multicast Intf Aging Time: 133 IGMP Snoop Mode: proxy IGMP MAC Security: Disable IGMP MAC Security Learning: Disable IGMP MAC Security Max Number: 5 MAC Address 1: Empty MAC Address 2: Empty MAC Address 3: Empty MAC Address 4: Empty MAC Address 5: Empty MA
Bridge command reference Example Transports Option Description Default Value number An existing bridge interface. To display interface numbers, use THE BRIDGE LIST INTERFACES command. The number appears in the first column under the heading ID.
Transports Transports command reference For PPPoE commands, see PPPoE CLI commands. For Ethernet commands, see Ethernet CLI commands. 8.5.1 Transports command reference This section describes the commands available on the AT-iMG/AT-iBG to configure and manage the Transports module. 8.5.1.
Transports command reference Transports Description This command deletes a single transport. Options The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable). Option Description Default Value name An existing transport. To display transport names, use the transports list command. N/A number An existing transport. To display transport numbers, use the transports list command.
Transports Transports command reference 8.5.1.1.4 TRANSPORTS SET CLASSIFIER DISABLED Syntax TRANSPORTS SET {|} CLASSIFIER DISABLED Description This command disables packet classification previously set on a specified transport using the transports set classifier profile command. The classifier is removed from the data path. Options The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable).
Transports command reference Transports Option Description Default Value profile name An existing profile. To display transport names, use the classifier list profiles command. N/A profile number An existing profile. To display profile numbers, use the classifier list profiles command. N/A Example --> transports set myrfc classifier profile p1 See also TRANSPORTS SET CLASSIFIER DISABLED TRANSPORTS LIST QOS (chapter X-QOS) CLASSIFIER ADD PROFILE CLASSIFIER LIST PROFILES 8.5.1.1.
Transports Transports command reference 8.5.1.1.7 TRANSPORTS SET METER INSTANCE PROFILE Syntax TRANSPORTS SET {|} METER INSTANCE PROFILE Description This command sets a meter profile on a transport for a specific meter instance. The meter instance matches a meter Id configured using the CLASSIFIER PROFILE SET RULE METERID command. This creates an association between the classified stream and the meter instance.
Transports command reference Transports The same profile can be added to more than one transport. Note: If a scheduler profile is modified after setting on this transport, the new scheduler configuration is not applied to the transport automatically. You must enter this transport set scheduler profile command again with the correct profile specified in order to apply changes.
Transports Transports command reference Option Description Default Value number An existing transport. To display transport numbers, use the TRANSPORTS LIST command. N/A Example --> transports set eth scheduler disabled See also TRANSPORTS LIST TRANSPORTS SET SCHEDULER PROFILE SCHEDULER ADD PROFILE SCHEDULER LIST PROFILES 8.5.1.1.10 TRANSPORTS SHOW Syntax TRANSPORTS SHOW {|} Description This command displays detailed information about an existing transport.
Transports command reference Hdlc LLC Lcp Max Configure Lcp Max Failure Lcp Max Terminate Dialin Auth Dialout Username Dialout Password Dialout Auth Interface ID Magic Number MRU SVC Remote Atm IP Addr From IPCP Give DNSto Relay Give DNSto Client Lcp Echo Every If In Octets If Out Octets If In Errors If Out Errors Packets Sent Good Packets Received Enabled Termination Hdlc Channel Port Classifier Clsfr Profile Clsfr Encap Transports : : : : : : : : : : : : : : : : : : : : : : : : : : false false 10 5 2
Ethernet Ethernet command reference Enabled Atm Channel Tx Vci Rx Vci Peak Cell Rate Class Port Classifier Clsfr Profile Clsfr Encap See also : true : : : : : 600 600 2000 UBR a1 : p1 : Ethernet TRANSPORTS LIST 8.6 Ethernet Ethernet module it’s an intermediate software layer used to interconnect an IP interface to a physical or virtual port where 802.3 frame type traffic is exchanged.
Ethernet command reference Ethernet 8.6.1.1 Ethernet CLI commands The table below lists the Ethernet commands provided by the CLI: TABLE 8-5 Ethernet commands Fiber A ADSL A ADSL B ADSL C ETHERNET ADD TRANSPORT X X X ETHERNET CLEAR TRANSPORTS X X X ETHERNET DELETE TRANSPORT X X X ETHERNET LIST PORTS X X X ETHERNET LIST TRANSPORTS X X X ETHERNET SET TRANSPORT PORT X X X ETHERNET SHOW TRANSPORT X X X Commands Fiber B Fiber C Fiber D Fiber E Modular 8.6.1.1.
Ethernet Ethernet command reference See also ETHERNET LIST TRANSPORTS ETHERNET LIST PORTS PORT LIST 8.6.1.1.2 ETHERNET CLEAR TRANSPORTS Syntax ETHERNET CLEAR TRANSPORTS Description This command deletes all Ethernet transports that were created using the ETHERNET ADD TRANSPORT command. Example --> ethernet clear transports See also ETHERNET DELETE TRANSPORT 8.6.1.1.
Ethernet command reference Ethernet 8.6.1.1.5 ETHERNET LIST TRANSPORTS Syntax ETHERNET LIST TRANSPORTS Description This command lists all Ethernet transports that have been created using the ETHERNET ADD TRANSPORT command. It displays the transport identification number and name, and the name of the port that it uses to transport Ethernet data.
PPPoE PPPoE Overview 8.6.1.1.7 ETHERNET SHOW TRANSPORT Syntax ETHERNET SHOW TRANSPORT {|} Description This command displays the name and port used by an existing Ethernet transport. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Example Option Description Default Value name An existing Ethernet transport. To display transport names, use the ETHERNET LIST TRANSPORTS command.
PPPoE Overview PPPoE The PPPoE client sends out a PADI packet to the broadcast address. This packet can also populate the "servicename" field if a service name has been entered on the dial-up networking properties of the PPPoE broadband connection. If a service name has not been entered, this field cannot be populated.
PPPoE PPPoE Functional Overview shared internet access server PPPoE “Virtual” Connection ISP’s PPPoE Server Internet DSL connection FIGURE 8-4 Example of PPPoE connection 8.7.2 PPPoE Functional Overview 8.7.2.1 PPPoE Connections The system is designed to implement more than one embedded PPPoE clients able to connect to external Access Concentrators. It can support up to 8 PPP simultaneous connections (shared between PPPoE or PPPoA types).
PPPoE Functional Overview PPPoE 8.7.2.2 PPPoE connections over ATM - VLAN Unaware PPPoE connections can be established over a specific ATM channel without or without knowledge of VLANs. If without, all PPPoE frames are untagged and are terminated directly on the IP layer without passing to the internal CPE bridging process.
PPPoE PPPoE Functional Overview 8.7.2.4 Populating automatically routing table and DNS server table During the PPP connection establishment, the Network Control Protocol IPCP is called to negotiate the IP address of the local end of the link and to retrieve, eventually, a list of DNS server ip addresses. The negotiated local IP address is used to assign the ip address value to the un-numbered IP interface attached to the PPPoE transport.
Functional Differences in Product Categories PPPoE requests for DNS primary and secondary IP addresses and, if received, assigns them to the DNS Client and DNS relay lists respectively. This feature can be enabled via the commands: pppoe set transport givedns client enabled|disabled pppoe set transport givedns relay enabled|disabled pppoe set transport discoverdns enabled|disabled 8.7.2.
PPPoE PPPoE command reference TABLE 8-7 PPPOE COMMANDS PROVIDED BY THE CLI Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Functions PPPOE ADD TRANSPORT DIALOUT ETH X X X X X X PPPOE ADD TRANSPORT DIALOUT PVC X X X X X X PPPOE CLEAR TRANSPORTS X X X X X X X X X PPPOE DELETE TRANSPORT X X X X X X X X X PPPOE LIST TRANSPORTS X X X X X X X X X PPPOE SET TRANSPORT ACCESSCONCENTRATOR X X X X X X X X X PPPOE SET TRANSPORT AUTOCONNECT X
PPPoE command reference Functions PPPoE Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C PPPOE SET TRANSPORT IDLETIMEOUT X X X X X X X X X PPPOE SET TRANSPORT INTERFACE X X X X X X X X X PPPOE SET TRANSPORT LCPECHOEVERY X X X X X X X X X PPPOE SET TRANSPORT LCPMAXCONF X X X X X X X X X PPPOE SET TRANSPORT LCPMAXFAIL X X X X X X X X X PPPOE SET TRANSPORT LCPMAXTERM X X X X X X X X X PPPOE SET TRANSPORT LOCALIP X X X X X
PPPoE PPPoE command reference Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Functions PPPOE SET TRANSPORT THEYLOGIN X X X X X X X X X PPPOE SET TRANSPORT USERNAME X X X X X X X X X PPPOE SET TRANSPORT WELOGIN X X X X X X X X X PPPOE SHOW TRANSPORT X X X X X X X X X 8.7.4.1.
PPPoE command reference service name PPPoE A PPPoE tag that identifies a specific service that is acceptable to the PPPoE client. If set, the PPPoE transport will connect to the first access concentrator it finds that uses this service. If an access concentrator is also set, the PPPoE transport will connect to the specified service on the named concentrator. It is your ISP that determines the service name.
PPPoE PPPoE command reference interface The PPP interface to a channel that transports PPPoE data. The interface value must be the ID value of the IP interface that will be attached to the PPPoE transport. The IP ID value is reported by the command ip list interfaces. N/A port The system port that is used to transport ATM data. N/A vpi A field in the ATM header. The VPI is used to identify the virtual path that a circuit belongs to. The VPI can be any value between 0 and 4095.
PPPoE command reference PPPoE 8.7.4.1.4 PPPOE DELETE TRANSPORT Syntax PPPOE DELETE TRANSPORT {|} Description This command deletes a single PPPoE transport. Options The following table gives the range of values for each option that can be specified with this command and a default value for each option (if applicable). Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command.
PPPoE PPPoE command reference See also PPPOE SHOW TRANSPORT 8.7.4.1.6 PPPOE SET TRANSPORT ACCESSCONCENTRATOR Syntax PPPOE SET TRANSPORT {|} ACCESSCONCENTRATOR Description This command specifies the access concentrator that you want PPPoE to connect to. You can also specify a service name using the set transport servicename command so that PPPoE will only accept a specific service via a specific access concentrator.
PPPoE command reference PPPoE Description This command allows you to enable/disable the PPPoE autoconnect function. If enabled, PPPoE automatically connects to TCP/IP whenever a user requests TCP/IP packets from a public destination. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoE transport.
PPPoE PPPoE command reference Option Description Default Value name An existing PPPoE transport. To display transport names, use the pppoe list transports command. N/A number An existing PPPoE transport. To display transport numbers, use the pppoe list transports command. N/A add Adds an autoconnect filter to the specified port. N/A delete Deletes an existing autoconnect filter from the specified port. N/A tcpportadd The TCP port that you want to set the autoconnect filter on.
PPPoE command reference PPPoE burst tolerance Controls the duration of traffic bursts on VBR (Variable Bit Rate) and VBR RT (VBR Real Time) channels. This value overrides an existing MBS value (if set). The BT can be any value between 0 and 100. Example --> pppoe set transport pppoe1 bt 5 See also PPPOE SET TRANSPORT MBS 0 8.7.4.1.
PPPoE PPPoE command reference Description This command specifies whether a route is added to the system after IPCP (Internet Protocol Control Protocol) negotiation is completed. If set to enabled, a route will be created which directs packets to the remote end of the PPP link. This route can either be a default route or a specific route, depending on the value set using the pppoe set transport specificroute command. To display the createroute setting, use the PPPOE SHOW TRANSPORT command.
PPPoE command reference PPPoE number An existing PPPoE transport. To display transport numbers, use the pppoe list transports command. Example --> pppoe set transport pppoe2 dialout See also PPPOE LIST TRANSPORTS N/A 8.7.4.1.13 PPPOE SET TRANSPORT DISCOVERDNS PRIMARY Syntax PPPOE SET TRANSPORT {|} DISCOVERDNS PRIMARY {ENABLED|DISABLED} Description This command enables/disables whether the primary DNS server address is requested from a remote PPP peer using IPCP.
PPPoE PPPoE command reference 8.7.4.1.14 PPPOE SET TRANSPORT DISCOVERDNS SECONDARY Syntax PPPOE SET TRANSPORT {|} DISCOVERDNS SECONDARY {ENABLED|DISABLED} Description This command enables/disables whether the secondary DNS server address is requested from a remote PPP peer using IPCP. The default setting for this command is enabled. The default setting for the PPPOE SET TRANSPORT GIVEDNS commanD is also enabled.
PPPoE command reference Options PPPoE The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A enabled Enables PPP IPCP subnet discovery.
PPPoE PPPoE command reference disabled Example See also Disables a PPPoE transport. --> pppoe set transport pppoe1 enabled See alsoPPPOE LIST TRANSPORTS 8.7.4.1.17 PPPOE SET TRANSPORT ETH Syntax PPPOE SET TRANSPORT {|} ETH Description This command sets the Ethernet port that an existing PPPoE transport uses to transport PPPoE data.
PPPoE command reference PPPoE Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A pppevent level The debug tracing level from 1 to 9.
PPPoE PPPoE command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command.
PPPoE command reference PPPoE Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A enabled IPCP can request a DNS server IP address and then give the address to DNS relay. enabled disabled IPCP cannot request a DNS server IP address and then give the address to DNS relay.
PPPoE PPPoE command reference Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A enabled Packets that have LLC headers can be transmitted/received. enabled disabled Packets that have LLC headers can not be transmitted/ received.
PPPoE command reference PPPoE number An existing PPPoE transport. To display transport numbers, use THE PPPOE LIST TRANSPORTS command. N/A enabled The encapsulation method to be used is llc_routed Disabled disabled Packets that have llc_routed headers cannot be transmitted/received. Example --> pppoe set transport pppoe1 headers llc_routed enabled See also PPPOE LIST TRANSPORTS PPPOE SHOW TRANSPORT PPPOE SET TRANSPORT HEADERS LLC 8.7.4.1.
PPPoE PPPoE command reference See also PPPOE LIST TRANSPORTS PPPOE SHOW TRANSPORT PPPOE SET TRANSPORT HEADERS LLC 8.7.4.1.24 PPPOE SET TRANSPORT HEADERS VCMUX_ROUTED Syntax PPPOE SET TRANSPORT {|} HEADERS VCMUX_BRIDGED {ENABLED|DISABLED} Description This command allows you to enable/disable whether your system can transmit and receive packets containing vcmux_routed packets.
PPPoE command reference Options PPPoE The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command.
PPPoE PPPoE command reference idletimeout The length of time (in minutes) that a PPPoE session connected to an ISP can remain idle before the session is disabled. The time can be any value between 0 and 60. A value of 0 means that no idletimeout is set. Example --> pppoe set transport pppoe1 idletimeout 20 See also PPPOE LIST TRANSPORTS PPOE SET TRANSPORT LCPECHOEVERY 0 8.7.4.1.
PPPoE command reference Options PPPoE The following table gives the range of values for each optionthat can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command.
PPPoE PPPoE command reference lcp max configure Link Control Protocol: the maximum number of configures that can be transmitted without reply before assuming that the destination address is unable to respond. The LCPmaxconf can be any positive value. Example --> pppoe set transport pppoe1 lcpmaxconf 20 See also PPPOE SHOW TRANSPORT PPPOE LIST TRANSPORTS 10 8.7.4.1.
PPPoE command reference PPPoE Description This command sets the Link Control Protocol (LCP) maximum terminate number for an existing PPPoE transport. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport.
PPPoE PPPoE command reference ip-address The IP address of the local ‘client-end’ of an interface displayed in the following format: 111.222.254.4 0.0.0.0 Example --> pppoe set transport pppoe1 localip 192.168.103.2 See also PPPOE SHOW TRANSPORT PPPOE LIST TRANSPORTS PPPOE SET TRANSPORT REMOTEIP 8.7.4.1.
PPPoE command reference PPPoE 8.7.4.1.34 PPPOE SET TRANSPORT MAXREAUTHATTEMPTS Syntax PPPOE SET TRANSPORT {|} MAXREAUTHATTEMPTS Description This command is used to specify the number of re-authentication attempts in case of authentication failure. After the specified number of re-authentication attempts fail, there would be no more configure requests from PPPoE transports until the unsername and/or password are reset.
PPPoE PPPoE command reference Option Description Default Value name An existing PPPoE transport. To display transport names, use the pppoe list transports command. N/A number An existing PPPoE transport. To display transport numbers, use the pppoe list transports command. N/A maximum burst size Controls the maximum burst size for VBR (Variable Bit Rate) and VBR RT (VBR Real Time) channels. This value overrides an existing BT value (if set). The MBS can be any value between 0 and 100.
PPPoE command reference PPPoE 8.7.4.1.37 PPPOE SET TRANSPORT PASSWORD Syntax PPPOE SET TRANSPORT {|} PASSWORD Description This command sets a dialout password on a named transport. The password is required when PPP negotiation takes place and is supplied to the remote PPP server for authentication. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
PPPoE PPPoE command reference Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A peak cell rate Determines the maximum rate at which ATM cells may be sent along the PPPoE transport.
PPPoE command reference PPPoE Example --> pppoe set transport myrfc prilevels 2 See also PPPOE SHOW TRANSPORT 8.7.4.1.40 PPPOE SET TRANSPORT PVC Syntax PPPOE SET TRANSPORT {|} PVC Description This command sets the PVC information for an existing PPPoE transport PVC. The PVC uses the interface that was specified when the transport was created.
PPPoE PPPoE command reference 8.7.4.1.41 PPPOE SET TRANSPORT QOSCLASS Syntax PPPOE SET TRANSPORT {|} QOSCLASS {UBR|CBR|VBR|VBRRT|ABR|QFC} Description This command sets the quality of service class for an existing PPPoE transport that performs dialout over PVC. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoE transport.
PPPoE command reference PPPoE 8.7.4.1.42 PPPOE SET TRANSPORT RANDOMIZECONNECTIONATTEMPTS Syntax PPPOE SET TRANSPORT {|} RANDOMIZECONNECTIONATTEMPTS {ENABLED|DISABLED} Description This command is used to specify that a device should incorporate a ramdom timing delay prior to starting each IP and PPP session.
PPPoE PPPoE command reference Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A enabled Enable the “reauthtimer” option Disabled disabled Disable the “reauthtimer” option Example --> pppoe set transport pppoe1 randomizeconnectionattempts enabled See also PPPOE LIST TRANSPORTS 8.7.4.1.
PPPoE command reference Example PPPoE ipaddress The ip address of the primary local DNS server displayed in the following format: 192.168.102.3 0.0.0.0 (no primary address set) ipaddress2 The ip address of the secondary local DNS server displayed in the following format: 192.168.102.3 0.0.0.0 (no secondary address set) 1 - setting a primary address --> pppoe set transport pppoe1 remotedns 192.168.102.
PPPoE PPPoE command reference Example --> pppoe set transport pppoe1 remoteip 192.168.103.2 See also PPPOE SHOW TRANSPORT PPPOE LIST TRANSPORTS PPPOE SET TRANSPORT LOCALIP 8.7.4.1.46 PPPOE SET TRANSPORT ROUTEMASK Syntax PPPOE SET TRANSPORT {|} ROUTEMASK Description This command sets the subnet mask used by the route that is created when a PPP link comes up. If it is set to 0.0.0.0, the subnet mask is determined by the IP address of the remote end of the link.
PPPoE command reference PPPoE Option Description Default Value name An existing PPPoE transport. To display transport names, use the pppoe list transports command. N/A number An existing PPPoE transport. To display transport numbers, use the pppoe list transports command. N/A mask The subnet mask that is used for the route that is created when a PPP link comes up. 0.0.0.0 0.0.0.0 Example --> pppoe set transport pppoe1 routemask 0.0.0.0 See also PPPOE SHOW TRANSPORT PPPOE LIST TRANSPORTS 8.
PPPoE PPPoE command reference 8.7.4.1.48 PPPOE SET TRANSPORT SERVICENAME Syntax PPPOE SET TRANSPORT {|} SERVICENAME Description This command specifies the service name that is acceptable to the PPPoE client. You can also set the access concentrator using the set transport accessconcentrator command so that PPPoE will only accept a specific service via a specific access concentrator.
PPPoE command reference Description Note: PPPoE This command specifies whether the route created when a PPP link comes up is a specific or default route. If set to enabled, the route created will only apply to packets for the subnet at the remote end of the PPP link. The address of this subnet is obtained during IPCP negotiation. This command is only valid if the PPPOE SET TRANSPORT CREATEROUTE command is set to enabled.
PPPoE PPPoE command reference Example --> pppoe set transport START/STOP TEST See also PPPOE LIST TRANSPORTS 8.7.4.1.51 PPPOE SET TRANSPORT SUBNETMASK Syntax PPPOE SET TRANSPORT {|} SUBNETMASK Description This command sets the subnet mask used for the local IP interface connected to the PPP transport. If the value 0.0.0.0 is supplied, the netmask will be calculated from the class of the IP address obtained during IPCP negotiation.
PPPoE command reference PPPoE Option Description Default Value name An existing PPPoE transport. To display transport names, use the PPPOE LIST TRANSPORTS command. N/A number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A none No authentication method was set. None pap Password Authentication Protocol: the server sends an authentication request to the remote user dialing in.
PPPoE PPPoE command reference number An existing PPPoE transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A username A name that identifies a user and, together with the dialout password, enables a user to login to the remote end. The PPP server will require the username when the user wants to login remotely. It can be made up of one or more characters and/or digits. To display the username, use the PPPOE SHOW TRANSPORT command.
PPPoE command reference chap PPPoE Challenge Handshake Authentication Protocol; the server sends an authentication request to the remote user dialing in. PAP passes the encrypted username and password and identifies the remote end. Example --> pppoe set transport pppoe2 theylogin pap See also PPPOE SET TRANSPORT THEYLOGIN PPPOE SHOW TRANSPORT PPPOE LIST TRANSPORTS 8.7.4.1.
PPPoE PPPoE command reference Options Example • LCP Max Configure • LCP Max Failure • LCP Max Terminate • LCP Echo Every • Autoconnect status (true or false) • User Idle Timeout setting (in minutes) • Access concentrator • Service name • Port name • VPI (PVC transport only) • VCI (PVC transport only) • Quality of Service (QoS) class (PVC transport only) • Peak cell rate (PVC transport only) • Burst tolerance (PVC transport only) • Sustainable Cell Rate (SCR) (PVC transport o
PPPoE command reference PPPoE Description: ppp-ext Interface ID: 2 Server: false PPPoE Admin State: true PPPoE Status: open for IP, sent 130901, received 143026 PPPoE Error Status: Remote NCP Address: 151.99.57.156 HDLC Headers: false LLC Headers: false SVC: IPv6CP: false Local IP: 0.0.0.0 Subnet Mask: 255.255.255.255 Discover IPCP Subnet: false Remote IP: 0.0.0.0 Remote DNS: 0.0.0.0 Propogate DNS to client: false To relay: true Create route: true Specific route: false Route netmask: 0.0.0.
PPPoA PPPoA command reference ATM Traffic Class Peak Cell Rate Burst Tolerance Sustainable Cell Rate Max Burst Size Min Cell Rate Packet Priority Levels See also : : : : : : : UBR 7000 N/A N/A N/A N/A N/A PPPOE LIST TRANSPORTS 8.8 PPPoA 8.8.1 PPPoA command reference 8.8.1.
PPPoA command reference TABLE 8-8 PPPoA PPPOA Command Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E A B C Modular PPPOA SET TRANSPORT GIVEDNS CLIENT ENABLED|DISABLED X X PPPOA SET TRANSPORT GIVEDNS RELAY ENABLED|DISABLED X X X PPPOA SET TRANSPORT HEADERS HDLC X X X X X PPPOA SET TRANSPORT HEADERS LLC PPPOA SET TRANSPORT IDLETIMEOUT X X X PPPOA SET TRANSPORT INTERFACE X X X PPPOA SET TRANSPORT LCPECHOEVERY X X X PPPOA SET TRANSPORT LCPMAXCONF X X X PPPOA S
PPPoA PPPoA command reference TABLE 8-8 PPPOA Command Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C Commands PPPOA SET TRANSPORT SUBNETMASK X X PPPOA SET TRANSPORT THEYLOGIN X X X PPPOA SET TRANSPORT USERNAME X X X PPPOA SET TRANSPORT VCI X X X PPPOA SET TRANSPORT VPI X X X PPPOA SET TRANSPORT WELOGIN X X X PPPOA SHOW TRANSPORT X X X 8.8.1.1.
PPPoA command reference PPPoA Option Description Default Value vpi A field in the ATM header. The VPI is used to identify the virtual path that a circuit belongs to. The VPI can be any value between 0 and 4095. N/A vci Part of the ATM header. The VCI is a tag that identifies which channel a cell will travel over. The VCI can be any value between 1 and 65535.
PPPoA PPPoA command reference Option Description Default Value vpi A field in the ATM header. The VPI is used to identify the virtual path that a circuit belongs to. The VPI can be any value between 0 and 4095. N/A vci Part of the ATM header. The VCI is a tag that identifies which channel a cell will travel over. The VCI can be any value between 1 and 65535. N/A Example --> pppoa add transport pppoa1 dialout pvc 1 a1 0 800 See also PPPOA LIST TRANSPORTS PORT LIST 8.8.1.1.
PPPoA command reference PPPoA 8.8.1.1.5 PPPOA LIST TRANSPORTS Syntax PPPOA LIST TRANSPORTS Description This command lists PPPoA transports that have been created using the PPPOA ADD TRANSPORT commands.
PPPoA PPPoA command reference Option Description disabled Disables PPPoA autoconnect. Example --> pppoa set transport pppoa1 autoconnect enabled See also PPPOA LIST TRANSPORTS Default Value 8.8.1.1.7 PPPOA SET TRANSPORT BT Syntax PPPOA SET TRANSPORT {|} BT Description This command applies to existing PVC transports - it does not apply to SVC transports. This command sets the Burst Tolerance (BT) for an existing PPPoA transport.
PPPoA command reference PPPoA This route can either be a default route or a specific route, depending on the value set using the PPPOA SET TRANSPORT SPECIFICROUTE command. To display the createroute setting, use the PPPOA SHOW TRANSPORT command. The route is removed when the PPP link is disconnected. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable).
PPPoA PPPoA command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command. N/A port The system port that is used to transport ATM data.
PPPoA command reference Options PPPoA The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command. N/A port The system port that is used to transport ATM data.
PPPoA PPPoA command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command. N/A enabled A primary DNS server IP address is requested.
PPPoA command reference PPPoA Option Description Default Value disabled A secondary DNS server IP address is not requested. Example --> pppoa set transport pppoa3 discoverdns secondary enabled See also PPPOA PPPOA PPPOA PPPOA SET SET SET SET TRANSPORT TRANSPORT TRANSPORT TRANSPORT DISCOVERDNS PRIMARY GIVEDNS CLIENT ENABLED|DISABLED GIVEDNS RELAY ENABLED|DISABLED REMOTEDNS 8.8.1.1.
PPPoA PPPoA command reference Description This command controls whether the PPP Internet Protocol Control Protocol (IPCP) can request a DNS server IP address for a remote PPP peer. Once IPCP has discovered the DNS server IP address, it automatically gives the address to the local DNS client so that a connection can be established. You must have the DNS client process included in your image build in order to use this protocol.
PPPoA command reference Options PPPoA The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing pppoa transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command.
PPPoA PPPoA command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command. N/A enabled Packets that have HDLC headers can be transmitted/ received.
PPPoA command reference Options PPPoA The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOE LIST TRANSPORTS command. N/A enabled Packets that have LLC headers can be transmitted/ received.
PPPoA PPPoA command reference Option Description Default Value number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command. N/A idletimeout The length of time (in minutes) that a PPPoA session connected to an ISP can remain idle before the session is disabled. The time can be any value between 0 and 60. A value of 0 means that no idletimeout is set.
PPPoA command reference PPPoA received, the PPP connection is torn down. This functionality is also known as ‘keepalive’. If you do not want to send LCP echo frames, specify zero (0) in the attribute. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command.
PPPoA PPPoA command reference Option Description Default Value lcp max configure Link Control Protocol; the maximum number of 10 configures that can be transmitted without reply before assuming that the destination address is unable to respond. The LCPmaxconf can be any positive value. Example --> pppoa set transport pppoa1 lcpmaxconf 20 See also PPPOA SHOW TRANSPORT PPPOA LIST TRANSPORTS 8.8.1.1.
PPPoA command reference PPPoA Description This command sets the Link Control Protocol (LCP) maximum terminate number for an existing PPPoA transport. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport.
PPPoA PPPoA command reference Option Description Default Value ip-address The ip address of the local ‘client-end’ of an interface displayed in the following format: 111.222.254.4 0.0.0.0 Example --> pppoa set transport pppoa1 localip 192.168.103.2 See also PPPOA SHOW TRANSPORT PPPOA LIST TRANSPORTS PPPOA SET TRANSPORT REMOTEIP 8.8.1.1.
PPPoA command reference Options PPPoA The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command.
PPPoA PPPoA command reference See also PPPOA LIST TRANSPORTS PPPOA SHOW TRANSPORT PPPOA SET TRANSPORT USERNAME 8.8.1.1.28 PPPOA SET TRANSPORT PCR Syntax PPPOA SET TRANSPORT {|} PCR Description This command applies to existing PVC transports - it does not apply to SVC transports. This command sets the Peak Cell Rate (PCR) for an existing PPPoA transport.
PPPoA command reference PPPoA Option Description Default Value number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command. N/A port The system port that is used to transport ATM data. N/A Example --> pppoa set transport pppoa4 port a1 See also pppoa list transports port list 8.8.1.1.
PPPoA PPPoA command reference The command allows you to specify the following PVC information: • The ATM port that will transport data • VPI (Virtual Path Identifier) • VCI (Virtual Circuit Identifier) The port/VPI/VCI combination must be unique for each transport. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport.
PPPoA command reference PPPoA Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command. N/A ubr Unspecified Bit Rate; non-constant and unpredictable data transport rate. PCR (Peak Cell Rate) is the average and maximum speed of transmission.
PPPoA PPPoA command reference If you want to delete an IP address, set the IP address to 0.0.0.0. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing pppoa transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing pppoa transport. To display transport numbers, use THE PPPOA LIST TRANSPORTS command.
PPPoA command reference Options PPPoA The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command.
PPPoA PPPoA command reference Option Description Default Value mask The subnet mask that is used for the route that is created when a PPP link comes up. 0.0.0.0 0.0.0.0 Example --> pppoa set transport pppoa1 routemask 0.0.0.0 See also PPPOA SHOW TRANSPORT PPPOA LIST TRANSPORTS 8.8.1.1.36 PPPOA SET TRANSPORT SCR Syntax PPPOA SET TRANSPORT {|} SCR Description This command applies to existing PVC transports - it does not apply to SVC transports.
PPPoA command reference PPPoA the subnet at the remote end of the PPP link. The address of this subnet is obtained during IPCP negotiation. Note: This command is only valid if the PPPOA SET TRANSPORT CREATEROUTE command is set to enabled. If the CREATEROUTE COMMAND is set to disabled, no route is created and therefore the PPPOA SET TRANSPORT SPECIFICROUTE command is ignored.
PPPoA PPPoA command reference Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport. To display transport numbers, use the PPPOA LIST TRANSPORTS command.
PPPoA command reference PPPoA Option Description chap Challenge Handshake Authentication Protocol; the server sends an authentication request to the remote user dialing in. PAP passes the encrypted username and password and identifies the remote end. Example --> pppoa set transport pppoa2 theylogin pap See also PPPOA LIST PPPOA SHOW SYSTEM ADD SYSTEM SET Default Value TRANSPORTS TRANSPORT USER USER MAYDIALIN 8.8.1.1.
PPPoA PPPoA command reference Description This command applies to existing PVC transports - it does not apply to SVC transports. This command sets the Virtual Circuit Identifier. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing PPPoA transport. To display transport names, use the PPPOA LIST TRANSPORTS command. N/A number An existing PPPoA transport.
PPPoA command reference PPPoA Example --> pppoa set transport pppoa3 vpi 0 See also PPPOA LIST TRANSPORTS PPPOA SHOW TRANSPORT PPPOA SET TRANSPORT VCI 8.8.1.1.43 PPPOA SET TRANSPORT WELOGIN Syntax PPPOA SET TRANSPORT {|} WELOGIN {NONE|AUTO|PAP|CHAP} Description This command sets the authentication protocol used to connect to external PPP servers (dial-out).
PPPoA PPPoA command reference 8.8.1.1.
PPPoA command reference Options Example PPPoA • Rx VCI (for PVC transports only) • Quality of Service (QoS) class (for PVC transports only) • Burst tolerance (for PVC transports only) • Sustainable Cell Rate (SCR) (for PVC transports only) • Maximum Burst Size (MBS) (for PVC transports only) • Maximum Cell Rate (MCR) (for PVC transports only) • Packet Priority Levels setting The following table gives the range of values for each option that can be specified with this command and a default
PPPoA PPPoA command reference Dialout Auth : none Dialin Auth : none Lcp Max Configure : 10 Lcp Max Failure : 5 Lcp Max Terminate : 2 Lcp Echo Every : 10 Auto Connect : false Idle Timeout : 0 ATM address: 47.00.83.10.a2.b1.00.00.00.00.00.00.00.00.20.2b.01.00.07.
RFC1483 command reference RFC1483 MCR : N/A Packety Priority Levels : 2 See also PPPOA LIST TRANSPORTS 8.9 RFC1483 8.9.1 RFC1483 command reference 8.9.1.
RFC1483 RFC1483 command reference TABLE 8-9 RFC1883 Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Commands RFC1483 SET TRANSPORT VCI X X X RFC1483 SET TRANSPORT VPI X X X RFC1483 SHOW TRANSPORT X X X 8.9.1.1.
RFC1483 command reference RFC1483 Option Description Default Value llc LLC encapsulation method. llc vcmux VC Multiplexing encapsulation method. bridged Traffic type that is going to be transmitted/received. routed Traffic type that is going to be transmitted/received. Example --> rfc1483 add transport my1483 myport 0 700 vcmux routed See also RFC1483 LIST TRANSPORTS PORT ? bridged 8.9.1.1.
RFC1483 RFC1483 command reference See also RFC1483 LIST TRANSPORTS 8.9.1.1.4 RFC1483 LIST TRANSPORTS Syntax RFC1483 LIST TRANSPORTS Description This command lists all RFC1483 transports that have been created using the RFC1483 add transport command.
RFC1483 command reference RFC1483 Option Description Default Value burst tolerance Controls the duration of traffic bursts on VBR (Variable Bit Rate) and VBR RT (VBR Real Time) channels. This value overrides an existing MBS value (if set). The BT can be any value between 0 and 100 (999999999). N/A means “0” Example --> rfc1483 set transport my1483 bt 5 See also RFC1483 SET TRANSPORT MBS RFC1483 SET TRANSPORT QOSCLASS 8.9.1.1.
RFC1483 RFC1483 command reference 8.9.1.1.7 RFC1483 SET TRANSPORT MCR Syntax RFC1483 SET TRANSPORT {|} MCR Description This command sets the Minimum Cell Rate (MCR) for an existing RFC1483 transport. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing RFC1483 transport.
RFC1483 command reference RFC1483 Option Description Default Value llc Logical Link Control encapsulation method. LLC vcmux VC Multiplexing encapsulation method. Example --> rfc1483 set transport my1483 mode vcmux See also RFC1483 LIST TRANSPORTS 8.9.1.1.9 RFC1483 SET TRANSPORT PCR Syntax RFC1483 SET TRANSPORT {|} PCR Description This command sets the Peak Cell Rate (PCR) for an existing RFC1483 transport.
RFC1483 RFC1483 command reference Description This command sets the port that an existing RFC1483 transport uses to transport RFC1483 data over ATM. ATM ports are initialized in the initbun file in FlashFS, or using the BUN SET PORT CONSOLE command. Options The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing RFC1483 transport.
RFC1483 command reference RFC1483 Option Description Default Value name An existing RFC1483 transport. To display transport names, use the RFC1483 LIST TRANSPORTS command. N/A number An existing RFC1483 transport. To display transport numbers, use the RFC1483 LIST TRANSPORTS command. N/A prilevels The number of priority levels available on an ATM transport. 1 Example --> rfc1483 set transport myrfc prilevels 2 See also RFC1483 SHOW TRANSPORT 8.9.1.1.
RFC1483 RFC1483 command reference Option Description vbr Variable Bit Rate; non-constant but predictable data transport rate that uses Non-Real-Time (NRT). You can specify Default Value the PCR, SCR, BT and MBS for VBR traffic. vbrrt Variable Bit Rate Real-Time; non-constant but predictable data transport rate that uses Real-Time (RT). You can specify the PCR, SCR, BT and MBS for VBRRT traffic.
RFC1483 command reference RFC1483 Option Description Default Value rxvci Part of the ATM header. The RXVCI is a tag that identifies which channel a cell will be received over. The RXVCI can be any value between 32 and 9999999999. VCI value set when the transport was created using the RFC1483 ADD TRANSPORT command Example --> rfc1483 set transport my1483 rxvci 700 Options RFC1483 LIST TRANSPORTS RFC1483 SET TRANSPORT TXVCI 8.9.1.1.
RFC1483 RFC1483 command reference See also RFC1483 LIST TRANSPORTS RFC1483 SET TRANSPORT TXVPI 8.9.1.1.15 RFC1483 SET TRANSPORT SCR Syntax RFC1483 SET TRANSPORT {|} SCR Description This command sets the Sustainable Cell Rate. This command is only valid if you set VBR or VBR RT as the QoS Class using the RFC1483 SET TRANSPORT QOSCLASS command.
RFC1483 command reference Options RFC1483 The following table gives the range of values for each option that can be specified with this command and a default value (if applicable). Option Description Default Value name An existing RFC1483 transport. To display transport names, use the N/A RFC1483 LIST TRANSPORTS command. number An existing RFC1483 transport. To display transport numbers, use the N/A RFC1483 LIST TRANSPORTS command. txvci Part of the ATM header.
RFC1483 RFC1483 command reference Option Description Default Value name An existing RFC1483 transport. To display transport names, use the N/A RFC1483 LIST TRANSPORTS command. number An existing RFC1483 transport. To display transport numbers, use the N/A RFC1483 LIST TRANSPORTS command. txvpi A field in the ATM header. The TX VPI is used to identify the virtual path that a circuit belongs to and transmits information on. The TX VPI can be any value between 0 and 9999999999.
RFC1483 command reference RFC1483 Option Description Default Value name An existing RFC1483 transport. To display transport names, use the RFC1483 LIST TRANSPORTS command. N/A vci Part of the ATM header. The VCI is a tag that identifies which channel a cell will travel over. The VCI can be any value between 32 and 9999999999.
RFC1483 RFC1483 command reference See also RFC1483 LIST TRANSPORTS RFC1483 SET TRANSPORT RXVPI RFC1483 SET TRANSPORT TXVPI 8.9.1.1.
RFC1483 command reference Example RFC1483 --> rfc1483 show transport my1483 RFC1483 Transport: my1483 Description: Default LAN port Encapsulation: LlcBridged ATM port: a1 Tx VPI: 0 Rx VPI: 0 Tx VCI: 800 Rx VCI: 800 ATM Traffic class: UBR Peak Cell Rate : 0 Burst Tolerance : N/A Sustainable Cell Rate : 800 Max Burst Size : N/A Max Cell Rate : N/A Packety Priority Levels : 2 See also RFC1483 LIST TRANSPORTS iMG/RG Software Reference Manual (ADSL Port) 8-167
RFC1483 8-168 RFC1483 command reference iMG/RG Software Reference Manual (ADSL Port)
Wireless LAN module Wireless Interface 9. Wireless 9.1 Wireless Interface This part of the Software Reference Manual provides an overview about the wireless device configuration and usage on products supporting the wireless interface (“W” models in groups: Fiber D, ADSL A, ADSL B - please refer to the preface for the complete groups table). 9.1.
Wireless Interface Layer 2 switch on wireless port VoIP Network Video Network Management Network Data Network ADSL (single PVC - multi VLANS) VLAN-VoIP VLAN-Data Tel 1 VLAN-Video IP_VoIP VLAN-Mgmt IP_Video IP_Mgmt IP_Data Tel 2 Lan 1 FIGURE 9-1 Lan 2 Lan 3 Lan 4 Wireless Wireless interface usage on a bridged scenario 9.1.2.1 Layer 2 CPE Configuration for ADSL A group wireless products A DHCP server is used to provide addresses on this subnet. 172.32.2.
Layer 2 switch on wireless port Wireless Interface dhcpclient update #Clean up interface ip0 (default) ip set interface ip0 dhcp disabled dhcpclient update ip set interface ip0 ipaddress 0.0.0.0 0.0.0.0 rfc1483 unset transport pvc_0_35 vlan default ip set interface ip_mgmt dhcp enabled dhcpclient update #Management access configuration. 172.30.1.0 and 10.17.90.0 subnets are located on management networks. webserver add managementsubnet mgmt1 172.30.1.0 255.255.255.0 172.30.1.1 172.30.1.
Wireless Interface Layer 2 switch on wireless port dhcpclient interfaceconfig ic_data add requested option routers dhcpclient interfaceconfig ic_data add requested option domain-nameservers dhcpclient interfaceconfig ic_data add requested option domain-name dhcpclient set interfaceconfig ic_data givednstoclient disabled dhcpclient set interfaceconfig ic_data givednstorelay disabled dhcpclient set interfaceconfig ic_data defaultroute enabled ethernet add transport vlan_data rfc1483 set transport pvc_0_35 v
Layer 2 switch on wireless port Wireless Interface voip ep analogue set tel1 country usa voip ep analogue set tel1 clip BELL voip ep analogue set tel1 clir off voip ep analogue set tel1 codec g711u voip ep analogue set tel1 vad off voip ep analogue set tel1 cng off voip ep analogue set tel1 lec 8 voip ep analogue create tel2 type al-fxs-del physical-port tel2 voip ep analogue set tel2 country usa voip ep analogue set tel2 clip BELL voip ep analogue set tel2 clir off voip ep analogue set tel2 codec g711u v
Wireless Interface Layer 2 switch on wireless port swupdate set passwd friend swupdate stop_time none swupdate start_time minute */2 hour * day_of_month * month * day_of_week * #Wireless port configuration for WPA-PSK authentication with password “friendfriend” port wireless set Disable false port wireless set ESSID iMG634WA-example 802.1x authenticator set authentication local 802.
Layer 2 switch on wireless port Wireless Interface dhcpclient update #Management access configuration. 172.30.1.0 and 10.17.90.0 subnets are located on management networks. webserver add managementsubnet mgmt1 172.30.1.0 255.255.255.0 172.30.1.1 172.30.1.254 webserver add managementsubnet mgmt2 10.17.90.0 255.255.255.0 10.17.90.1 10.17.90.254 #VoIP network configuration. A DHCP server is used to provides addresses on this subnet. 172.32.3.1 is the default gateway for this subnet.
Wireless Interface Layer 2 switch on wireless port dhcpclient set interfaceconfig ic_data givednstoclient disabled dhcpclient set interfaceconfig ic_data givednstorelay disabled dhcpclient set interfaceconfig ic_data defaultroute enabled bridge add vlaninterface vlan_data tagged pvc_0_35_if ip attach ip_data vlan_data dhcpclient update #Video network configuration. No IP addresses are assigned on this subnet. vlan create vlan_video 205 vlan add vlan_video lan1 frame untagged switch set port lan1 802.
Layer 2 switch on wireless port Wireless Interface voip ep analogue set tel1 country usa voip ep analogue set tel1 clip BELL voip ep analogue set tel1 clir off voip ep analogue set tel1 codec g711u voip ep analogue set tel1 vad off voip ep analogue set tel1 cng off voip ep analogue set tel1 lec 8 voip ep analogue create tel2 type al-fxs-del physical-port tel2 voip ep analogue set tel2 country usa voip ep analogue set tel2 clip BELL voip ep analogue set tel2 clir off voip ep analogue set tel2 codec g711u v
Wireless Interface Layer 3 routing on wireless port swupdate set passwd friend swupdate stop_time none swupdate start_time minute */2 hour * day_of_month * month * day_of_week * #Wireless port configuration for WPA-PSK authentication with password “friendfriend” port wireless set Disable false port wireless set ESSID iMG634WA-example 802.1x authenticator set authentication local 802.
Layer 3 routing on wireless port Wireless Interface Public Network (Internet) VoIP Network Management Network ADSL (single PVC - multi VLANS) VLAN-VoIP VLAN-Data Tel 1 IP_Data (External) IP_Data IP_VoIP IP_Data (External) Tel 2 Lan 1 FIGURE 9-2 Lan 2 Lan 3 Lan 4 Wireless Wireless interface usage on a routed scenario 9.1.3.1 Layer 3 CPE Configuration for ADSL A group wireless products A DHCP server is used to provides addresses on this subnet. 172.32.2.
Wireless Interface Layer 3 routing on wireless port #Clean up interface ip0 (default) ip set interface ip0 dhcp disabled dhcpclient update ip set interface ip0 ipaddress 0.0.0.0 0.0.0.0 rfc1483 unset transport pvc_0_35 vlan default ip set interface ip_mgmt dhcp enabled dhcpclient update #Management access configuration. 172.30.1.0 and 10.17.90.0 subnets are located on management networks. webserver add managementsubnet mgmt1 172.30.1.0 255.255.255.0 172.30.1.1 172.30.1.
Layer 3 routing on wireless port Wireless Interface pppoe set transport pppoe_data givedns client disabled pppoe set transport pppoe_data givedns relay enabled pppoe set transport pppoe_data createroute enabled ip attach ip_data pppoe_data #Internal private user network. A DHCP server is configured on the CPE to provide addresses to the hosts connected on this network. vlan add vlan_user vid 100 802.
Wireless Interface Layer 3 routing on wireless port voip ep analogue create tel2 type al-fxs-del physical-port tel2 voip ep analogue set tel2 country usa voip ep analogue set tel2 clip BELL voip ep analogue set tel2 clir off voip ep analogue set tel2 codec g711u voip ep analogue set tel2 vad off voip ep analogue set tel2 cng off voip ep analogue set tel2 lec 8 voip sip protocol set netinterface ip_voip voip sip locationserver create loc1 contact 172.30.1.121 voip sip proxyserver create prox1 contact 172.
Layer 3 routing on wireless port Wireless Interface port wireless set Encryption TKIP wpa set shared passphrase friendfriend 9.1.3.2 Layer 3 CPE Configuration for ADSL B group wireless products #Management network configuration. A DHCP server is used to provides addresses on this subnet. 172.32.2.1 is the default gateway for this subnet.
Wireless Interface Layer 3 routing on wireless port dhcpclient set interfaceconfig ic_voip givednstoclient enabled dhcpclient set interfaceconfig ic_voip givednstorelay disabled dhcpclient set interfaceconfig ic_voip defaultroute disabled rfc1483 add transport pvc_voip a1 8 35 bridge add interface if_pvc_voip vlan create vlan_voip 203 bridge attach if_pvc_voip pvc_voip bridge add vlaninterface vlan_voip untagged if_pvc_voip ip attach ip_voip vlan_voip dhcpclient update #Data network configuration.
Layer 3 routing on wireless port Wireless Interface ip add route voice_server2 172.30.1.123 255.255.255.255 gateway 172.32.3.1 ip add route voice_server3 172.30.1.201 255.255.255.255 gateway 172.32.3.1 ip add route mgmt-1 10.17.90.0 255.255.255.0 gateway 172.32.2.1 ip add route mgmt-2 172.30.1.202 255.255.255.255 gateway 172.32.2.1 #Local time and date configuration. sntpclient add server ipaddress 172.30.1.202 sntpclient set pollintv 2 sntpclient set timezone MET #VoIP protocol configuration.
Wireless Interface Authentication Configuration swupdate set server 172.30.1.9 swupdate set path /public/swupdate/3-4_57_02_04/alpha/iMG634B/upload swupdate set login root swupdate set passwd friend swupdate stop_time none swupdate start_time minute */2 hour * day_of_month * month * day_of_week * #Wireless port configuration for WPA2 AES-CCMP authentication with password “friendfriend” port wireless set Disable false port wireless set ESSID iMG634WA-example 802.
Authentication Configuration Wireless Interface 9.1.4.1.2 Open Authentication - WEP Encryption @ 64 bit WEP (Wired Equivalent Privacy) is the basic 802.11's encryption algorithm implemented in the Medium Access Control Layer (MAC layer) of wireless network devices. WEP has been deprecated by IEEE as it provides security that deters only unintentional use, leaving the network vulnerable to deliberate compromise. For better security levels use WPA or WPA2.
Wireless Interface Authentication Configuration Because on shared-key authentication the shared system passes along additional information, this authentication method exposes information that could be used by a hacker to crack the WEP key. For better security levels use WPA or WPA2. 9.1.4.2.
Summary of wireless attribute and configurations Wireless Interface port wireless set Disable false port wireless set ESSID iMG634WA-ST-172.32.2.142 (example) 802.1x authenticator set authentication local 802.1x authenticator set authentication enabled port wireless set Authentication WPA-PSK port wireless set Encryption TKIP wpa set shared passphrase friendfriend (example) 9.1.4.4 WPA2-PSK Authentication and AES_CCMP Encryption WPA2 (formerly IEEE 802.
Wireless Interface Wireless Interface CLI commands ing table summarizes the relationship between these commands and the related port attributes (see next chapter for a detailed description of each one).
Wireless Interface CLI commands TABLE 9-2 Wireless Interface 802.1x Authenticator Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Functions 802.1X AUTHENTICATOR SET AUTHENTICATION X X X 802.1X AUTHENTICATOR SET IDENTITY X X X 802.1X AUTHENTICATOR SET KEY-TRANSMISSION X X X 802.1X AUTHENTICATOR SET REKEY-TIMEOUT X X X 802.1X AUTHENTICATOR SHOW X X X 9.1.6.1.1 802.1X AUTHENTICATOR SET AUTHENTICATION Syntax 802.
Wireless Interface Wireless Interface CLI commands Option Description Default Value string A string used for identification purposes. If not configured manually, the model name and device’s MAC Address is displayed. Model Name and MAC address (i.e.iMG634WA-R2-main 00:0d:da:05:51:8f) 9.1.6.1.3 802.1X AUTHENTICATOR SET KEY-TRANSMISSION Syntax 802.1x AUTHENTICATOR SET KET-TRANSMISSION {ENABLED | DISABLED} Description This command enables/disables key-transmission according to 802.11 specifications.
Wireless Interface CLI commands Entropy Pool Wireless Interface : a508abe250752d01f0aae300146ff200 Supplicants: None 9.1.6.
Wireless Interface Wireless Interface CLI commands Option Description Default Value Authentication Configuration command to be used in conjunction with “Encryption” to easily set up an authentication configuration for the network Open Possible values are: Open - Set an open authentication network Shared - Set a shared authentication network WPA-PSK - Set a WPA/WPA2 authentication network AutoChannel Possible values are: True False - Disable AutoChannel feature True - Enable AutoChannel feature: a
Wireless Interface CLI commands Wireless Interface Option Description Default Value ESSID Service Set Identifier for the access point PRISM_xx_yy_zz where xx/yy/zz are the last 3 bytes of the wireless device MAC address Encryption Configuration command to be used in conjunction with “Authentication” to easily set up an authentication configuration for the network None Possible values are: None - No encryption used (open authentication network) WEP64/WEP128 - Use WEP at 64 or 128 bit encryption me
Wireless Interface Wireless Interface CLI commands Option Description Default Value MacAddressAuth Possible values are: Disabled Disabled - feauture disabled Blacklist - traffic is accepted from all stations except those listed in MacAddressList Whitelist - traffic is discarded from all stations except those listed in MacAddressList MacAddressList A list of station MAC addresses that are allowed or prevented (allowing all others) to communicate with the CPE wireless device, depending on the value o
Wireless Interface CLI commands Wireless Interface Option Description Default Value NitroXMPiggyBack Possible values: True False - NitroXM Piggy Back disabled True - NitroXM Piggy Back will be used on packets sent to and from the device to another device which supports NitroXM Piggy Back Profile This attribute is used to set a “profile” for device operation. Different profiles select different operating parameters. Cards that support 802.11g must default to MIXED_G_WIFI.
Wireless Interface Wireless Interface CLI commands Option Description Default Value WPA Possible values are: False False - Disable WPA1 and WPA2 authentication method True - Enable WPA1 if WPAEnableWPA1 is enabled, WPA2 if WPAEnableWPA2 is enabled, both if either WPAEnableWPA1 and WPAEnableWPA2 are enabled WPA2EnableAES_CC MP Possible values are: False False - Disable AES_CCMP encryption method with WPA2 True - Enable AES_CCMP with WPA2 authentication method, this is the normal mode of operation
Wireless Interface CLI commands Wireless Interface Option Description Default Value WPAEnableTKIP Possible values are: True False - Disable TKIP with WPA1 authentication True - Enable TKIP also for WPA1 authentication, this is the normal mode of operation for WPA1 WPAEnableWPA1 Possible values are: True False - Disable the WPA1 standard authentication method True - Enable the WPA1 support if WPA is also enabled WPAEnableWPA2 Possible values are: True False - Disable the WPA2 authentication met
Wireless Interface Wireless Interface CLI commands ** 26 hexadecimal characters *** 10 hexadecimal characters 9.1.6.2.
Wireless Interface CLI commands MaxFrameBurst Mode128Key0 00-00-00 Mode128Key1 00-00-00 Mode128Key2 00-00-00 Mode128Key3 00-00-00 Mode64Key0 Mode64Key1 Mode64Key2 Mode64Key3 EnableKey0 EnableKey1 EnableKey2 EnableKey3 NitroXMCompression NitroXMConcatenation NitroXMDirectLink NitroXMPiggyBack PlainTextEAPOL Profile PromiscuousEnable RtsThreshold SMDebugLevel TransmitRate WepEncryption WepAuthentication WepKeyMapping WPAEnableWPA1 WPAEnableWPA2 WPA WPAAdvertisedIE RSNAdvertisedIE WPAMICFailures WPAEnablePSK
Wireless Interface WIRELESSTAG AssociatedClients McMsduTx McMsduRx TxSuccessful TxOneRetry TxMultipleRetries TxFailed RxSuccessful RxDups RTSSuccessful RTSFailed ACKFailed FrameReceives FrameErrors FrameAborts FrameAbortsPHY PrivTxRejected PrivRxPlain PrivRxFailed PrivRxNoKey AllocBufTooShort AllocNoBuf AllocNoPCIMap ICNoRxCtrlBuf ICNoRxDataBuf Resets RxErrBus RxErrWrongMAC SMACServiceError TxErrBus TxErrNoBuffers TxErrNoRemap TxErrQDepth TxErrResetOrCancel TxErrSMAC TxErrTooLong TxNoPCIMap TxNoPrefix TxNoT
Wireless Interface CLI commands AssociationsGranted resetDefaults portSnmpIfIndex portSnmpIfType Wireless Interface = = = = 0 false 0 0 9.1.6.2.
Wireless Interface Wireless Interface CLI commands TABLE 9-4 Port Wireless Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Functions WPA SET SHARED X X X WPA SET PMK CACHING X X X WPA GET PMK CACHING X X X 9.1.6.3.1 WPA SET SHARED Syntax WPA SET SHARED
Default Factory Configuration System Overview 10. LAN Module Management The iMG Mods, including the iMG626, iMG646, iMG726, and iMG746, support multiple LAN modules. Each LAN module can be used to provide a different type of service. 10.1 System Overview 10.1.1 Default Factory Configuration When a LAN Module is detected, a port is created that corresponds to the service on that LAN module. Specifically for the HPNA daughter-card, an HPNA ports is created and attached to the default VLAN.
HPNA LAN Module Functional Differences for LAN Modules Manage- 1 GIG BIDI WAN MODULE X X 1 GIG BIDI WAN PLUS 1 GIG COPPER LAN X X HPNA LAN MODULE (120MBPS LOW BAND) X X X X CES LAN MODULE X X X(a) X(a) Note: a) Not compatible with 1 Gig BiDi WAN plus 1 Gig Copper LAN MOdule. 10.1.
Overview HPNA Command Reference FIGURE 10-1 HPNA Section of LAN Module Diagram • HPNA is deployed over coax in a residence – and is capabile of carrying both data and video. In order to ensure that the appropriate priority is observed for the different content sources, the recommended deployment model utilizes VLANs and the associated 802.p priority bits (with a P-bit value of 5 or greated equating to high prioirity Video).
HPNA Command Reference TABLE 10-2 Overview HPNA Commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL A B C D E Modular A B C Functions HPNA SHOW MASTER X HPNA SHOW COUNTERS X HPNA RESET COUNTERS X HPNA SHOW STATIONS X HPNA SHOW STATIONS ALL X HPNA SHOW PERFORMANCE X HPNA UPGRADE ENDPOINT X 10.3.1.0.1 HPNA SHOW MASTER Syntax HPNA SHOW MASTER Description This command displays the status of the iMG HPNA device which is in actual fact the Master node in the HPNA network.
Overview Description Example HPNA Command Reference This command displays the packet counters for the master node of the HPNA Network. Note that it is possible to get related switch counters via the appropriate switch command Option Description Default Value TargetMac | All Mac address of the target device for which to show counters. All will display counter for all attached stations and the Master.
HPNA Command Reference Description Example Overview Command zeros out the counters for the associated HPNA device or all devices if the string “All” is entered Option Description Default Value TargetMac | All Mac address of the target device for which to reset counters. All will display counter for all attached stations and the Master. - hpna reset counters All 10.3.1.0.
Overview HPNA Command Reference 0 00:0c:25:13:90:1b Down True V3 1.7.5 Host 001 Behind Device 0 00:02:b3:98:56:6b Host 002 Behind Device 0 00:30:b6:35:68:80 Host 003 Behind Device 0 00:18:8b:a7:f3:e8 Number of HPNA stations=1 Total number of devices=4 10.3.1.0.
CES LAN Module Description CES Deployment Model This command will force an upgrade of the firmware level of the HPNA Endpoint that is identified – or all if all is specified. The upgrade is to the firmware level equivalent to that loaded on the local Master node. In order to minimize the likelihood of corrupting devices, this command will only work with certified Allied Telesis certified endpoints. At this time only Readylinks endpoints can be upgraded.
Overview Circuit Emulation Command Reference Note that it is possible to connect a PSPAN between a CES daughter-card on an iMG Mod and an iMAP CES8 card. • Key points here are that the PSPANs are all contained in the same VLAN – and have fixed IP addresses assigned. This is required in order to ensure that the pspans remain configured. Note that due to the expected use of this daughter-card – it is never powered down in order to conserve power.
Circuit Emulation Command Reference TABLE 10-3 Overview CES commands Fiber Fiber Fiber Fiber Fiber ADSL ADSL ADSL Modular A B C D E A B C Functions CES SET DEVICE IPINT X CES SET DEVICE PORTTYPE X CES SET PORT DISABLED X CES SET PORT LINEBUILDOUT X CES SET PORT LINEENCODING X CES SET PORT LOOPBACK X CES SET PORT TIMINGREFERENCE X CES SET PSPAN DISABLED X CES SET PSPAN IPDSCP X CES SET PSPAN JITTERDEPTH X CES SET PSPAN LOCALUDP X CES SET PSPAN PAYLOADBYTES X CES SET PSPAN PEERIP X
Overview Circuit Emulation Command Reference 10.5.1.1.1 CES SET DEVICE IPINT Syntax CES SET DEVICE IPINT Description This command associates an IP interface with the CES service – thus providing it with an IP address. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Example Option Description Default Value IP_name An existing ip interface with an IP address assigned.
Circuit Emulation Command Reference Example Overview Option Description Default Value Tdm_port The Physical port on the card (TDM-1 or TDM-2) -none- state True for disabling – False for enabling false ces set port tdm-1 disabled true 10.5.1.1.4 CES SET PORT LINEBUILDOUT Syntax CES SET PORT LINEBUILDOUT Description This command adjusts the power output of the TDM port.
Overview Options Circuit Emulation Command Reference The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable). Option Description Default Value Tdm_port The Physical port on the card (TDM-1 or TDM-2) -none- encoding The line encoding to use on the line B8zs ami b8zs hdb3 Example ces set port tdm-1 lineencoding ami 10.5.1.1.
Circuit Emulation Command Reference Overview 10.5.1.1.7 CES SET PORT TIMINGREFERENCE Syntax CES SET PORT TIMINGREFERENCE Description This command allows the user specify the timeing reference to be used. It is important that the timing reference be correctly selected so that there is only one source on the link. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Overview Circuit Emulation Command Reference 10.5.1.1.9 CES SET PSPAN IPDSCP Syntax CES SET PSPAN IPDSCP Description This command allows the user to configure a priority level for all the RTP packets that are being sent over the PSPAN. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Circuit Emulation Command Reference Overview 10.5.1.1.11 CES SET PSPAN LOCALUDP Syntax CES SET PSPAN LOCALUDP Description This command allows the user to source udp port number to be used in when transmitting packets over the network. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Overview Circuit Emulation Command Reference 10.5.1.1.13 CES SET PSPAN PEERIP Syntax CES SET PSPAN PEERIP Description This command allows the user to specify the peer PSPAN endpoint address. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Circuit Emulation Command Reference Overview Description This command allows the user to specify whether or not rtp packets are to be used for transmission. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Overview Circuit Emulation Command Reference ----------|------------------------|----------------------tdm-1 | 1970/01/01 00:00:24.84 | Loss of Signal pspan-1 | 1970/01/01 00:00:19.55 | Communication Failed 10.5.1.1.19 CES LIST PORTS Syntax CES LIST PORTS Description This command allows the user to display the status of the both the individual tdm ports on the card.
Circuit Emulation Command Reference Overview 10.5.1.1.21 CES SHOW PORT COUNTERS Syntax CES SHOW PORT Description This command allows the user to display the counters associated with a particular TDM Port. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Overview Circuit Emulation Command Reference Description This command allows the user to display the status of the both the individual tdm ports on the card. Example ces list pspans Name | Disabled | Operational | Alarms ----------|----------|-------------|----------pspan-1 | false | down | COMM pspan-2 | true | down | ----------------------------------------------- 10.5.1.1.
Circuit Emulation Command Reference Overview Actual Received Indication(s) Actual Transmitted Indication(s) Local Loss of Carrier Actual Jitter Buffer Size (us) 0 10.5.1.1.25 CES SHOW PSPAN COUNTERS Syntax CES SHOW PSPAN Description This command allows the user to display the counters associated with a particular PSPAN. Options The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Overview Options Example Circuit Emulation Command Reference The following table gives the range of values for each option, which can be specified with this command, and a default value (if applicable).
Circuit Emulation Command Reference 10-24 iMG/RG Software Reference Manual (LAN Module Management) Overview
