Avocent Cyclades-PR2000 guide

Cyclades-PR2000

STEP TWO

The parameters in the Timeout Menu are explained in more detail below. The preset values should be appropriate for most applications.

Timeout and Options Menu CONFIG =>SECURITY =>NAT =>TIMEOUT AND OPTIONS

Parameter	Description
UDP Timeout	Inactivity time required before a UDP translation is removed from the translation table.
	An entry is created in the translation table the first time a UDP packet passes through the
	interface. Five minutes is a reasonable time.
DNS Timeout	Inactivity time required before a DNS translation is removed from the translation table.
TCP Timeout	Inactivity time required before a TCP translation is removed from the translation table.
	This time should be relatively long, because under normal conditions TCP connections
	are formally disconnected with FIN (No more data from sender) or RST (Reset
	Connection) flags.
TCP Flags Timeout	Inactivity time required, after the receipt of a FIN, RST, or SYN (Synchronize sequence
	numbers) flag, before a TCP translation is removed from the translation table. This time
	can be relatively short, because after the TCP connection has been closed, there is no
	further need for its address translation.

STEP THREE

The next step is to define the global address range to which the local addresses will be translated. This is done in the menu CONFIG =>SECURITY =>NAT =>GLOBAL ADDRESSES =>ADD RANGE. The First IP Address in the example in Figure 11.1 is 200.240.230.225, while the Last IP Address is 200.240.230.238.

The local address ranges must also be entered into the router in the menu CONFIG =>SECURITY =>NAT =>LOCAL ADDRESSES =>ADD RANGE. Here, the Network IP Address (192.168.0.0 in the example) and Network Mask (255.255.255.0 in the example) are entered. Since this range is to be translated, the parameter Should This Range be Translated should be set to Yes. In the example, the network 200.200.200.0 is not to be translated. This can be configured by adding a new range and setting the translation parameter to No, or by simply not adding the range.

Chapter 11 - NAT

94

Image 94

Avocent Cyclades-PR2000 installation manual Interface. Five minutes is a reasonable time

Contents

Cyclades-PR2000 FCC Warning Statement Cyclades-PR2000 Installation ManualCanadian DOC Notice Table of Contents Static Routing Dynamic Routing 112 127 HOW to USE this Manual Installation Assumptions Text Conventions Icons CONFIG=INTERFACE=LConvention Description Icon Meaning Why CONFIGURATION=ALL Cyclades Technical Support and Contact Information Cyclades Corporation USA To Wall Outlet Gender Changer DB-25 DB-9 Male What is in the BOXInterface RJ-45 Male RJ-45 to DB-25 DB-25 Male RS-232 Modem With DB-25 Interface Using CyROS Menus Login Prompt and Main Menu Lmi-typeANSI, Group of four, None Ansi CONFIGURATION=TO Flash Special Keys Cyros Management Utility CyROS Management Utility Cyclades-PR2000 Host STEP-BY-STEP Instructions for Common ApplicationsRS-232 Modem Network IP PC192.168.0.0 PR2000 Host 192.168.0.30 255.255.255.0 IP MTU Step ONEParameter Example Your Application NAT Step TWO Step Three Swan Network Protocol IP Menu Parameters Step Four Mlppp Step Five Step SIX Step Eight Step SevenStep Nine Instructions for creating a backup of the configuration file Instructions for listing the configuration ETH0 PR2000 Example 2 a LAN-to-LAN Example Using Frame RelayNetwork IP Mask 200.240.230.1 10 Ethernet Network Protocol Menu Parameters 11 Swan Physical Menu Parameters 12 Swan Network Protocol IP Menu Parameters LMI Snap IPCIR 14 DLC Configuration Menu Parameters Dlci 15 Static Route Menu Parameters Instructions for creating a backup of the configuration file Example 3 Link Backup 17 Traffic Control Parameters Swan 18 Addition of the Primary Main Link This parameter has no effect for link backup. For load 20 Multilink Circuit Attributes 21 Static Backup Route Parameters Instructions for creating a backup of the configuration file IP Network Protocol Configuration of the Ethernet InterfaceParameter Description Config =RULES LIST=IP=CONFIGURE RULES=ADD RULE=ALLOW Incoming IP Accounting PR2000 Link PR3000 IP Bridge200.240.240.9 200.240.240.3 200.240.240.2 200.240.240.1 200.240.240.8 200.240.240.4 Other Parameters Swan and Async Interfaces Clock Source is always External Step TWO Protocol Be used for authentication Network Protocols Network Protocol IP Protocol Detailed Incoming IP Accounting Transparent Bridge Protocol DATA-LINK Protocols Encapsulation PPP The Point-to-Point Protocol PPP Menu Char Hdlc PppcharFrame Relay CONFIG=INTERFACE=SWAN =TRAFFIC Control =GENERAL =BANDWIDTH T391 Interval between the LMI Status Enquiry messages N391 Dlci 200.1.1.1 São Paulo Rio de Janeiro Network Salvador Recife Network For static address mapping Switch / DCE Router / DTE Menu CONFIG=INTERFACE=LINK=ENCAPSULATION =X.25 Menu With PAD Packet Assembler/Disassembler Static Routing Routing ProtocolsRouting Strategies Dynamic Routing 192.168.100.0 Static Routes142.10.0.0 Mask 10.0.0.0 Unnumbered Interfaces Add Static Route Menu Config =STATIC Routes =IP =ADD Route RIP Configuration Ospf Ospf Configuration on the Interface 10Mbps, 65 for T1, 1785 for 56kbps, etc Ospf Global Configurations =PASSWORD CONFIG=STATIC ROUTES=IP=ADD ROUTE=OSPF Advertises this=ROUTING Protocol =OSPF =ADVERTISE this NON-OSPF Interface Applies when Area Range N Status is Active Only when Virtual Link Status is Active =IP=OSPF=AREA=AUTHENTICATION Type BGP-4 Configuration Example System with PR2000 in AS 100 Being Configured 255.255.255.0 200.50.50.0 PR3000 200.200.200.2 Tele Brutus CONFIG=IP=BGP4=GLOBAL CONFIG=IP=BGP4=BGP NETWORK=ADD CONFIG=IP=BGP4=NEIGHBOR=ADD Route Reflector Client Step Three Up Ro 100.10.0.0/16 Route PR3000 RredParameter Description Routes Seq Rule Message From Tele Popeye Route Map Parameter Description DiscardedDiscarded RoutesRoutes Seq RuleMessage From Tele Popeye Rule CONFIG=IP=BGP4=ROUTE MAP=ADD CONFIG=IP=BGP4=AGGREGATE ADDRESSES=ADD CYROS, the Operating System Creation of user accounts and passwordsCreation of the host table Slip Detailed information can be accessed via Snmp IP Accounting Networks 192.168.0.0 NAT Network Address TranslationGlobal Address Range Ftp Network Server Mask Server 192.168.0.31 Translated Types of Address Translation Menu Option Description Interface. Five minutes is a reasonable time Step Four Configuration of IP Filters Rules and Filters Rules List Rule List Exterior Router Perimeter Network Slot 192.168.0.0 Bastion Host 10.0.0.0 Extension to Network Let Mail out Exterior RouterLet Telnet Connections Out Filters and Rules 100 Output for Exterior Router Example Filters and Rules 102 Interior Router Stop Forged Packets Don’t Allow Access to NewsStop Telnets From the Outside Except Bastion Host Output for Interior Router Example Link 33.33.33.1 25% or less Traffic Rule ListsClient B Filters and Rules 106 Output Showing Parameters for Traffic Rule Example Filters and Rules 108 Port 25 Smtp Mail Server Web ServerMail Server Web Client 10 Output Showing Parameters for Traffic Rule Example Internal Network IPX Internetwork Packet ExchangeNumber Mac Address 00 60 2E 00 11 Configuring Other Interfaces Configuring the Ethernet InterfaceEnabling IPX Routing Frame RelayParameter Value for the Example SAP Service Advertisement Protocol Table Routing Table for the Example Virtual Private Network Configuration Virtual Private Network Configuration 116 RSG3 Remote IP Network 9.1 Security Gateway Router Link Link IP10..255.255.0Router IP Address IP172.16.0.0 Link Virtual Private Network Configuration 118 Virtual Private Network Configuration 119 Test Appendix a TroubleshootingBoot Code step CPU What to Do if the Router Does Not Work or Stops Working Event CPU LED Morse code Testing the Ethernet Interface Host host00 Testing the WAN Interfaces Figure A.3 General Statistics Table Appendix a Troubleshooting 124 Cyclades PR2000 LEDs Appendix B Hardware Specifications WAN Interfaces External InterfacesLAN Interface Asynchronous Interface Console Interface Cables Straight-Through Cable TxClkDTE B Female Retention Screw Male DB-25 Female Signal Pin PGndDB-25 M.34 Adaptor TxClkDTE a ASY/Modem Cable Cross Cable Cross Cable Signal Pin Pin Signal PGnd TxD RxD20 DTR DB-25 Loopback Connector Figure B.10 Loopback Connector DB-25 Male Procedure Appendix C Configuration Without a ConsoleRequirements RIP Snmp Cyclades Philippines