Cisco Systems 15310-MA 8.9 FTP Support for ENE Database Backup

8-42

Cisco ONS 15310-MA SDH Reference Manual, Release 9.1 and Release 9.2

78-19417-01

Chapter 8 Management Network Connectivity

FTP Support for ENE Database Backup

In non-secure mode, IPv6 is supported on the front and the rear Ethernet interfaces. You can start a CTC

or TL1 session using the IPv6 address provisioned on the on the front and rear ports of the NE.

In secure mode, IPv6 is only supported on the rear Ethernet interface. The front port only supports IPv4

even if it is disabled on the rear Ethernet interface. For more information about provisioning IPv6

addresses in secure mode, see the Cisco ONS 15310-MA SDH Procedure Guide.

IPv6 has the following configuration restrictions:

• You can provision an NE as IPv6 enabled only if the node is a SOCKS-enabled or firewall-enabled

GNE/ENE.

• IPSec is not supported.

• OSPF/RIP cannot be enabled on the LAN interface if NE is provisioned as an IPv6 node.

• Static route/firewall/proxy tunnel provisioning is applicable only to IPv4 addresses even if the IPv6

is enabled.

• In secure mode, IPv6 is supported only on the rear Ethernet interface. IPv6 is not supported on the

front port.

• ONS platforms use NAT-PT internally for providing IPv6 native support. NAT-PT uses the IPv4

address range 128.x.x.x for packet translation. Do not use the 128.x.x.x address range when you

enable IPv6 feature.

8.9 FTP Support for ENE Database Backup

The Cisco ONS 15310-MA SDH provides FTP database backup and restore download to ENEs when

proxy/firewall is enabled. This feature allows you to provision a list of legal FTP hosts in CTC, that can

be used with TL1 commands to perform database backup/restore or software download. The FTP hosts

can be provisioned to elapse after a specified time interval with the enable FTP relay function.

Once FTP host are provisioned, and FTP Relay is enabled, TL1 users can then use the COPY-RFILE

command to perform database backup/restore or software download to and from this list of legal FTP

hosts that are provisioned to ENEs. Also, TL1 supports TID to IP address translation for the GNE TID

that is specified in the FTP URL of COPY-RFILE and COPY-IOSCFG commands.

Using the FTP Host provisioning feature in CTC and TL1 you can configure up to 12 valid FTP hosts.

ENEs are allowed access through the firewall according to the time configured in the FTP Relay Timer

in CTC or TL1. The time interval is 1 to 60 minutes, and once the timer elapses, all FTP access to the

FTP host is blocked again. A time of 0 disallows ENE access to FTP commands through the firewall.

When the firewall is not enabled (Proxy only), all FTP operations to the ENE will be allowed – software

download, database backup/restore and IOS config file backup/restore. All FTP operations to the ENEs

will be blocked when firewall is enabled.