Manuals / Carrier Access / Computer Equipment / Network Router

Carrier Access CMG Router Authentication of Remote, Local Security Server, Type, Address

Models: CMG Router

1 296

Download 296 pages 50.58 Kb

Page 48

Profile Directory:Router Card Profile

Security

Authentication of Remote

Protocol: CHAP, PAP or NONE

Use this field to identify the authentication protocol to be used by this Adit unit when authenticating remote devices.

Local Security Server

Use these fields to identify the local server that is used to authenticate remote devices. This field is only necessary if you are using either the <RADIUS> or <TACACS+> security authentication method. If you are not using either of these security methods, the Adit unit will respond to the authentication requests of remote devices and will accept or reject them based on their validity.

Type

Use the [SPACEBAR] to choose the security authentication method that you are using.

<None> Use this setting if the local Adit unit will be used to authenticate remote devices. Please note that you may not use the <None> setting if the Security Server field for a remote device has been set to <External Server>

<RADIUS> Will set the server to use the RADIUS (Remote Authentication Dial-In Service) protocol. RADIUS is a client/server-based authentication software system.

<TACACS+> Will set the server to use the TACACS+ (Terminal Access Controller Access Control System) protocol. TACACS+ provides services of authentication, authorization and accounting independently.

Address

Enter the IP Address of the local server that will be used during the authentication process. If <None> was selected in the <Type> field, this field will be disabled.

Password

Enter the password of the local server that will be used during the authentication process. You must make sure that the password entered into the server is the same as the value entered here or the authentication process will fail. If <None> was selected in the <Type> field, this field will be disabled.

3-10	CMG Router - Release 2.7

Image 48

Carrier Access CMG Router user manual Authentication of Remote, Local Security Server, Type, Address, Password

Contents

CMG Router Supporting Software Version Warranty Warranty ProcedurePreface Limitation of Warranty & Limitation of Remedies Warranty Product Returns Vii Viii CMG Router Release Table of Contents Management Window Profile DirectoryRouter Card ProfileProfile DirectoryLocal Profile Profile DirectoryRemote ProfileBasic Configuration Verification WindowStatistics Window System Reports WindowRouter Configuration Exit WindowUser Events Troubleshooting Protocol TypesGlossary Index Chapter Installation Install a Router CardInstall Country Specific Ringer Tones OverviewManeuvering in the System Fields Scroll FieldSelect Field Edit FieldHelp Bar Connecting to the Router Establish a Telnet SessionSet a New Password Introduction Management Window Management Overview System Time/Login Level Config allows the user to view and change all screens Users, as well as change all three passwordsSystem Date and Time LevelAuto-Logout Timer View PasswordConfig Password Admin PasswordEnhanced Security When Telneting into the Router the following will appear Upload/Download To Setup the Router for Uploads/Downloads Management Window Upload/Download Setup Menu Fields Reboot After Load CodeConfig Upload/Download Load Defaults Software Images Choices Management Window Profile DirectoryRouter Card Profile Configuration Main MenuSelect Router Card Setup and select Enter RIP Mode Receive RIP Mode SendSelection is RIP1, RIP2, or RIP1/RIP2 Trunk WAN Trunk Setup Menu Fields WAN Link #WAN Connection WAN Connection Type Multilink GroupData Speed Voice BW Limit %Select Security Configure and select Enter SecuritySecurity Setup Menu Fields Authentication by RemoteProtocol CHAP, PAP or None User IDAuthentication of Remote PasswordLocal Security Server TypeSnmp Snmp Setup Menu Fields SYS NameSYS Contact SYS LocationAccess Snmp Trap Destinations Location Select DNS Proxy Configure and select Enter DNS ProxyDNS Proxy Setup Menu Fields Domain NameDNS Server SiteSelect Spanning Tree Protocol Configure and select Enter Spanning Tree ProtocolBridge Forward Delay Bridge Hello TimeBridge Max Age Bridge PrioritySelect Network Time Protocol Configure and select Enter Network Time ProtocolSPACEBAR, select Enter Network Time Protocol Setup Menu Fields SysLog SysLog Setup Menu Fields Sys LogFacility LevelSelect DNS Resolver Configure and select Enter DNS ResolverDNS Resolver Cache Contents DNS ResolverMy Domain Name My Node NameStatic Host List View or Modify Quality of Service Select Quality of Service Configure and select EnterQuality of Service Menu Fields Routed Voice PriorityTOS Mgcp Mgcp Setup Menu Fields Mgcp Interoperability Settings Mgcp Interoperability Menu Fields Mgcp Keep-Alive Timeout Mgcp Type of ServiceQuarantine Notification Handling Quarantine Event HandlingVoice Algorithm Names Voice Algorithm Name Fields Algorithm IDAlgorithm Definition Algorithm AliasVoIP VoIP Setup Fields Call Detail RecordVoice Algorithm Settings T38 FaxVoice Algorithm Settings VoIP Algorithm FieldsSelect Voice Channels Configure and select Enter Voice ChannelsVoIP Setup Fields Profile DirectoryRouter Card Profile Signaling Type RFC2833 Options Signals Payload TypeRepeat Count Repeat IntervalSelect Dial Plan Configure and select Enter Dial PlanDial Plan Menu Fields Short Inter DigitLong Inter Digit Profile DirectoryLocal Profile Main Menu Profile Directory window Local Profile window LAN Local Profile Setup To Setup a Local Profile Local Profile Setup Menu Fields Profile Setup for LocalUnitLAN Network Updates ProtocolLAN Default Router IP AddressSubnet Mask Setup Static Networks Profile DirectoryLocal Profile To Setup Static Networks Select Configuration Profile Directory from the Main menu,Select LAN Setup and Enter Static Networks Fields NetworkMetric HopsTicks Next GatewayStatic Addresses Static MAC Address Setup Setup Static Static Addresses FieldsDevice Name MAC AddressTo Define and Enable Filters FiltersSelect Define Filter Custom Select LAN Setup -and select Enter Forward Mode Filters FieldsDefine Filter Filter TypeSource/Destination Filter NameDefining Custom Filters Select Define Filter Custom and EnterDefining Protocol Filters Defining Address Filters Advertise Network/Server Advertise Network Server Window Setup Advertise Network/Server FieldsSelected Items IPX Server Advertising Advertise Network/Server IPX Server Fields TypeName Dhcp Server/Client/Relay Dhcp Dhcp Mode Server Domain NameStart IP Address NumberNetBIOS over TCP/IP Lease DurationDomain Name Servers Option Type ValueDhcp Mode Relay Forward DHCP/TOOTP Requests toDhcp Mode Client Automatic DNSSet Tx Packets Broadcast Bit RequestLAN Collision Threshold Collision Threshold Provisioning LAN Collision Threshold Fields To Configure Spanning Tree Spanning TreeSelect Setup Spanning Tree and select Enter Spanning Tree Fields Port PriorityPort Cost Secondary IP Address To Add a Secondary IP AddressSecondary IP Address Fields Link Speed To Set the Link SpeedLink Speed Fields Profile DirectoryLocal Profile Profile DirectoryRemote Profile LocalUnit LAN Setup Profile DirectoryRemote ProfileRemote Profile window Remote WAN Profile Profile Setup for RemoteUnit Transmission Options ModeProtocol Route Blocked Bridge Optimize WAN Network Updates GRE TunnelEnabled with GRE Tunnel Disabled Enabled with GRE Tunnel By NetworkNAT Gateway Enabled with GRE Tunnel All Tunnel NameRemote IP Tunnel Address Encryption AlgorithmDefault Router NumberedSetup bottom of the Remote main window Security/Options Following Security/Options setup window will display Security/Options Fields Security ServerCompression Typical DataStatic/VPN Networks Profile DirectoryRemote Profile Select WAN Setup -on the RemoteUnit line and press Enter VPN Features Static/VPN Networks FieldsGRE Tunnel EncryptTunnel data ? Encryption Algorithm not supported in this releaseStatic NAT Addresses Local IP Address NAT IP AddressNAT Bypass Subnets Press Ctrl a to add a NAT Bypass Static Addresses Static Addresses Window MAC Address Static Addresses Window IP Address Symbol Description Firewall FiltersTo Add a Firewall Filter Select Ctrl a to add an IP Firewall Rule Firewall Filters Fields Rule NumberAction Pass/Drop Service Service EstablishmentName Description Local IP Address/Network Remote IP Address/NetworkPackets which match this rule Significant BitsFilter Network/Server Filter Network /Server Filter Network/Server Fields Selected Items Filter/LearnNetwork Filter LearnTo Configure Spanning Tree Select Setup Spanning Tree and select Enter Port Priority Trunk Port WAN Connection Type PPP in Frame Relay, or Frame Relay ML QOS InterleavingML Fragment Threshold Basic Configuration Start Basic Configuration Select Yes to enter the setup program and select Enter Router Identification FieldsDirections for LAN Network Updates RIP mode to be received from remotesRIP mode to send to remotes Protocol remotes will use to authenticate local LocalUnitAuthentication User ID Protocol LocalUnit will use to authenticate all remotesChange the PAP Secret LocalUnit will send? WAN Interface Connections Port NumberFor Frame Relay, Set Option for PVC Management Link Quality Monitoring SensitivitySet Poll Interval Set Poll CounterRemote Adit Profile Profile NameOther Select WAN Port Number Subnet MaskConnection WAN Connection TypeSnmp Configuration Snmp CommunitiesStatistics Averaging Interval Setup Complete Verification Window Ping Utility Access Port LAN Port Tests FieldsDst Host Src IP AddressResponse Window Fields Single PingContinuous Ping Timeout Count Result or Last ResultResponse Count Trace Route Trace Route Utility Start Tracert DstHostSrc Port SrcIP PortTimeout MethodSize IP TosPort Monitor Port Name Start MonitorTrap On Number of bytes to display for each packetVerification Window Verification Window Statistics Window Run-Time Auto-Update Run-Time FieldsClear Totals Press ENTER. The Run-time Statistics window will displayErrors LAN Packet TotalsWAN Packet Totals ReceivedRemote’s Name Forwarded to WANThroughput to/from WAN Comp. Ratio to/from WANVoIP Channel View VoIP Channel View Fields SlotCall Agent Endpoint PrefixRsip Status Field ValueMeaning Type MeaningPriority Queue Priority Queue Fields Clear AllPriority Fields Priority Traffic TypeStatistics Window System Reports Window Events To View the Event LogEvents Fields TimeMessage CountAlarms Alarms Fields Networks/Servers Networks/Servers Fields DisplayLearned From Press ENTER. The Networks/Servers listing will displayFrame Type Address Tables Address Tables Fields Flush Learned EntriesDisplays the information, listing by Port System Reports Window Exit Window Logout Reinitialize 10-4 Router Configuration Basic Setup Command DescriptionBasic VoIP Setup OverviewSet the controller to use CLI commands Command Description Fax and Modem Setup Following will configure the Fax and ModemCMG Router Release 11-7 Select Voip Configure -and select Enter Tab to Voice Algorithm Settings and select Enter 11-10 CMG Router Release 11-11 Card Maximum # of Channels configured for T.38 Reserved CMG Router Release 11-13 PPP Internet Connection and Public IP Address Routing Router in SlotCMG Router Release 11-15 Back-to-Back with PPP Boulder Router in SlotDenver Router in Slot Back-to-Back with Multi-Link PPP CMG Router Release 11-19 Back-to-Back with Frame Relay CMG Router Release 11-21 11-22 Appendix a User Events DescriptionAuthenticate Events Triggered Events Alarms User Events Appendix B Protocol Number in Firewall Filters Number Keyword Protocol ReferenceLEAF-2 Tlsp Reference SRP Ethernet Protocol Types HEXAT&T 8047 Protocol Types Protocol Types KTI Appendix C Communication Related Issues LAN Related IssuesExcessive Triggered Update Events on the Events screen LAN Related Issues Unable to access the Local LAN Router unit via Telnet Unable to access a remote unit via TelnetDiagnostics and Performance Tools Verification Ping UtilityStatistics Run-TimeSystem Reports EventsIdentify Alarm State DescriptionDisplay Alarms Clear Alarm Troubleshooting Algorithm Annex DBandwidth BitChallenge Handshake Authorization Protocol Chap Command LineBridge Ethernet FirewallFrame Frame relayHost InternetProtocol IP Local Area Network LANLoopback Media Access Control MAC Mbps Multilink PPPPing Protocol Point-to-Point Protocol PPPQoS Rsip Spanning Tree ProtocolTelnet Trace Route Trunk Voice over IP VoIPIndex Index CMG Router Release Index Snap RIP IPX Index SYS Index Index