Technicolor - Thomson SpeedTouchTM620 manual Refinement Service

Page 92

Chapter 8

SpeedTouch™ Remote Access

Refinement of the

Service

If needed, the service can be fine-tuned to restrict the allowed traffic to: A single IP address

A subnet

A range of IP addresses

Use the following CLI command to restrict the allowed traffic to 1 IP address.

=>:service system ipadd name=HTTP ip=192.6.11.5 =>

Use the following CLI command to restrict the allowed traffic to a subnet.

=>:service system ipadd name=HTTP ip=192.6.11.0/24 =>

Use the following CLI command to restrict the allowed traffic to a range of IP addresses.

=>:service system ipadd name=HTTP ip=192.6.[2-55].[2-55] =>

82

E-DOC-CTC-20051017-0155 v1.0

 

Page 91 Page 93
Image 92
Page 91 Page 93
Contents SpeedTouch620 Page SpeedTouch 620 Document Information CopyrightTrademarks Contents SpeedTouch Software Modules Integrated SpeedTouch Isdn Modem How to Add an Snmp User 152 How to Restrict Snmp Access 157How to Configure the Traps 158 10.1.1 Basic Concepts 135 10.1.2 MIBs Explained 136SLA Monitoring Contents About this Operator’s Guide About this Operator’s Guide Introduction IntroductionChapter SpeedTouch Command Line Interface About the CLI Interface CLI web page access requirementsCLI Telnet access requirements CLI serial access requirementsCLI Access via Telnet or Serial Console Access via a Telnet session or serial console=help Command group navigationBasic Navigation =help firewall list Going to the beginningOr end of a line Chapter Firewall list Command Line Interface CommandsExecuting Commands from the Top Level Executing Commands From the Command Group Chapter Menu-driven CLI Navigation Chapter SpeedTouch System Software About the System Software SpeedTouch System SoftwareSystem Software Management via FTP Topic SeeFtpcd dl Backup System Software via FTPStep Action Get the system software file Software version commandSubdirectory’s contents Upgrade or Restore System Software via FTP Upgrade/Restore procedureTransfer system software to the SpeedTouch Use the quote site software version command to checkSoftware deletepassive command to delete it Ftp put ZZUIAA5.411 Activate the upgrade/ restored system software Mark system software file as Passive Software VersionManual System Software Management via BOOTP/TFTP server System softwareManagement Important note=software upgrade SpeedTouch Configuration Management SpeedTouch Configuration ManagementConfiguration Management via the SpeedTouch Web Interface Configurations via Basic Web Interface Step ActionGo to Home SpeedTouch Configuration Click Save or Restore ConfigurationLocal disk, you want to restore on your SpeedTouch Restoring configurations via the basic Web InterfaceSpeedTouch Configuration Management Proceed as follows Go to expert mode Click Save All to save the current configurationOpen the Update page via Home SpeedTouch System Update Click BackupIntend to restore. Select the file and click OK Restoring a configuration via the expert pagesOpen the Upgrade page via Home SpeedTouch System Update Configuration Management via Telnet FTP access SpeedTouch configuration filesConfig CLI Command Group Config saveConfig backup filename = user configuration filename Config dumpDefaults = noyes Loadip = noyesFlush = yesno Echo = noyesBack up Configurations via FTP SpeedTouch Multi Level Access Policy Configuration GuideSite saveall command Get the latest configuration file fromFtp get user.ini Configuration you saved in is stored in the user.ini fileOther configuration files stored via Store Configurations via FTP Introduction Restore/change procedureSoftware cleanup CLI command Transfer the configuration file to the SpeedTouchQuote site saveall command Ftp put config.ini Matches totalFtp quote site config load Connection for /bin/ls Jun 1971 Start.cmd Rwxrwxrwx Template files on the SpeedTouch file system SpeedTouch Service TemplatesTemplate Description Open the Upload File page via Home SpeedTouch System Update SpeedTouch System Languages ManagementSwitch between system languages Go to the Expert Mode Open the language page via Home SpeedTouch System UpdateLanguage Step Action Click on the Language Packs tabChapter SpeedTouch Software Modules Software Modules ST620 ST608WL ST605SpeedTouch Software Modules Software keySoftware Activation Key Management Table Item Description=software addon list How to Install a Software Key SpeedTouch System Services Service SeeSpeedTouch System Services Overview This chapter covers the following servicesSpeedTouch Dynamic DNS SpeedTouch CLI dyndns commands Dyndns serviceDyndns host =dyndns helpExample dynamic DNS subscription Adding a dynamic DNS host name Adding a dynamic DNS client=dyndns host add group=MyDynDNSHost name=johndoe.dyndns.org =dyndns add name=MyDynDNSGroup = MyDynDNSHost Modifying the dynamic DNS client=dyndns modify Name = MyDynDNS Refining the dynamic DNS service settings Service listDNS Service Use multiple hosts configure an additional host=dyndns modify name=MyDynDNS status=enabled Checking dynamic DNS client ResolvingSpeedTouch Sntp Client Manual tab Select Manual to Step Action Sntp add and sntp delete Sntp configSntp list Website Filtering Method DescriptionSection See Website Filtering Configuration Pages How to Verify the Filtering Configuration Content level becomes available. Refer to 6.3.3 How to Web Section DescriptionFiltering license is available InformationHow to Activate a Web Filtering License Configuring the Actions for Uncategorised Sites Filter Priority Actions for Uncategorised SitesHow to Create an Address Based Filter How to Create a New Proceed as follows Entry Step ActionGo to the first bullet in the list Address Based Filtering Want to create an entry in the filterHow to Create a Content Based Filter Select the content level of your choiceLevel All Legal Teenagers Children BlockAllHow to Create a Content Level View Step ActionLevel Step Action Go to the Web site filtering OverviewContent Level Step Action Pick a Task... list, select Create a new content levelToolbox section, click Intrusion Detection Intrusion Detection and ProtectionTask Description Remote Assistance About Remote Assistance How to Set Up Remote AssistanceHow to Log On To The SpeedTouch Remotely Chapter Chapter To the SpeedTouch SpeedTouch File SystemOpening an FTP session Access rights to the file system Preparing for FTP file transfersFiles stored on the file system FtpcdChapter Access method System service name SpeedTouch Remote AccessSpeedTouch access methods Chapter Remote Web Interface Access Configuration via CLI commands=service system list name=HTTP expand=enabled =service system ifadd name=HTTP group=wan =Refinement Service =service system ipadd name=HTTP ip=192.6.11.5 ==service system ipadd name=HTTP ip=192.6.11.0/24 = =service system ipadd name=HTTP ip=192.6.2-55.2-55 =NAT configuration menu, but always in System Services =service system modify name=HTTP state=enabled port=82 ==service system list name=HTTPs expand=enabled Secure Remote Web Interface AccessHTTPs service Introduction =service system ifadd name=HTTPs group=wan = =service system ipadd name=HTTPs ip=192.6.2-55.2-55 = =service system ipadd name=HTTPs ip=192.6.11.5 ==service system ipadd name=HTTPs ip=192.6.11.0/24 = =service system modify name=HTTPs state=enabled port=448 = 448=service system list name=TELNET expand=enabled Remote Telnet Access=service system ifadd name=TELNET group=wan = Refinement of the Service =service system ipadd name=TELNET ip=192.6.11.5 ==service system ipadd name=TELNET ip=192.6.11.0/24 = =service system ipadd name=TELNET ip=192.6.2-55.2-55 ==service system modify name=TELNET state=enabled port=50 = Remote SSH Access SSH service Introduction SSH authentication=ssh config auth=password =ssh config shell=enabled=ssh publickey list =service system list name=SSH expand=enabled SSH=service system ifadd name=SSH group=wan =service system ipadd name=SSH ip=192.6.2-55.2-55 =service system ipadd name=SSH ip=192.6.11.5=service system ipadd name=SSH ip=192.6.11.0/24 =service system modify name=SSH state=enabled port=35 =service system ifadd name=FTP group=wan Remote FTP Access=service system list name=FTP expand=enabled =service system ipadd name=FTP ip=192.6.2-55.2-55 =service system ipadd name=FTP ip=192.6.11.5=service system ipadd name=FTP ip=192.6.11.0/24 =service system modify name=FTP state=enabled port=26 Remote Sftp Access =ssh config sftp=enabled101 102 103 104 105 LAN Based Auto-Configuration LAC Support TR-064 Configuration Options How to Configure LAC SyntaxParameter Descripion Value Description Enabled orDisabled CPE WAN Management Protocol Cwmp Support TR-069 How to Configure Cwmp Syntax Parameter Value Description How to ConfigureParameter Descripion How to Configure the Cwmp Server Syntax Cwmp Server Parameter Description Value112 Overview This chapter covers the following topics Integrated SpeedTouch Isdn ModemIntegrated SpeedTouch Isdn Modem About the Isdn Modem 115 How to Configure the Isdn Modem Isdn Backup Action SeeHow to Configure the Isdn Dial-In Connection Isdn backupClick Connections Click Routed PPoI119 Enabled or disabled How to Configure the PPP Connection Pap , chap or auto Cidr , dotted or noneEnable or disable dial-on-demand Will engage the Isdn backup ifDemanddial DOD. This means that the systemIsdn Callback 125 126 Called party must also be set to Support callback128 129 130 How to Install Remote Proceed as follows Isdn Remote Capi\windows\system32\capi2032.dll RemoteCAPISelect Remote Capi Daemon SpeedTouch Monitoring SpeedTouch MonitoringAn Introduction to Snmp Snmp in the SpeedTouch OverviewManagement Information Base Basic Commands Basic ConceptsMIBs Explained RFC1213 MIB-IIRFC3417 Transport Mappings for Snmp MIB RFC3418 SNMPv2-MIB Standard MIBs MIBs About SnmpSpeedTouch Monitoring From previous 138 Snmp configuration Task SeeHow to Allow Access to the Snmp Agent How to View the Snmp Configuration About the Snmp ServiceYou can the same command to view the SNMPV3 Traps This returns the following outputHow to View the System Contact, Name and Location How to Configure SNMPv1 Configure the community to have these group rightsAllow external access to the Snmp agent Create a new communityConfigure the target parameters Enable trapsCreate a new target Create a notify filterHow to Configure the System contact, Name and Location Enable or disableParameters This command has the following parameters Enable or disable the sendingHow to Force the Source IP Address MTUHow to Configure the Snmp Target Parameters The command has the following parametersDestination How to Read Snmp Parameters via the CLI To update the traffic load, useWith objectid the object identity to getNext from To get the iP address table, useAdministratorsnmp=walk ObjectId=1.3.6.1.2.1.1 How to Allow Remote Snmp =service system ifadd name SNMPV3AGENT group wanHow to Add an Snmp User Group Description Use the following command to create a new view Notification access to that viewUse the following command to create a new user Use the following command to add the user to the groupThis results in the following output Communities How to Restrict Snmp Access SNMPV3AGENTHow to Configure the Traps Use the snmp targetparams add commandUse the snmp notifyfilter add command Use the snmp notifyprofile add commandUse the snmp target add command Use the following command sequenceSpeedTouch Syslog What is Syslog SpeedTouch Syslog DaemonSpeedTouch Syslog daemonPriority Notation Code 163 Syslog via the Web Interface 165 Syslog CLI command group Syslog via the CLI=syslog help =syslog msgbuf helpRemote Syslog Notification =syslog ruleadd fac=all sev=debug dest=192.168.1.10 =saveall=service system list name=SYSLOG expand=enabled Syslog host on a remote networkSpeedTouch Identification on AWS Advantages SpeedTouch IdentificationSpeedTouch Identification over AWS SpeedTouch Advanced Diagnostics About the Advanced Diagnostics OverviewOffice Network Web 173 174 Click... To Diagnostic WebOpening SpeedTouch Diagnostic Web Interface 176 177 178 Command Line Interface Diagnostics About CLI Diagnostics Accessing the CLIDiagnostical CLI CommandsLower Layer Diagnostics TmmbAtm debug aal5stats Atm debug gstatsAtm debug portstats Atm oam cc send=autopvc list ATM Auto-Configuration via TR-37/ Ilmi=autopvc config mode=active = Router Services Diagnostics Dhcp client debug statsDhcp server debug stats Dhcp relay debug stats=dns server debug stats Dns server debug statsDisplays statistics of SpeedTouch’s DNS server/forwarder =firewall rule debug stats Routing DiagnosticsFirewall rule debug stats Below is an example of a ping command and its reply It uses the following parametersCommand Below is an example of a traceroute command and its replyEthernet Diagnostics =eth switch mirror capture port=4 =190 Displays SpeedTouch cpu and memory statistics Management DiagnosticsSystem debug stats 192 SLA Monitoring =sla ping add test=internet addr=11.0.0.138Parameter Description Values =sla ping start test=internet = =sla ping listName Description SLA Monitoring Following results will be displayedSLA Traceroute configuration =sla traceroute add test=route addr=11.0.0.138 =198 =sla traceroute start test=route = Starting the SLA Traceroute=sla traceroute modify test = route Addr = =sla traceroute list Dffield = no Result Info Status=sla traceroute hist test route owner modem 202 Resetting the SpeedTouch Resetting the SpeedTouch=system reboot =system reset factory=yes proceed=yesSwitch off the SpeedTouch Press and hold the reset buttonSwitch on the SpeedTouch Keep the reset button pushed in for ca secondsPage Need more help?
Top Page Image Contents