Manuals / Enterasys Networks / Computer Equipment / Network Router

Enterasys Networks CSX6000, CSX5500, CSX7000 manual Configuring AN ACE Authentication Server

Models: CSX7000 CSX6000 CSX5500

1 729

Download 729 pages 41.51 Kb

Page 220

USER’S GUIDE

ACE AUTHENTICATION SERVER

CONFIGURING AN ACE AUTHENTICATION SERVER

Note: In order for the CyberSWITCH to reference an ACE server, the following configuration steps must first be completed:

•basic IP routing information must be configured for ACE

•a LAN Network interface must be configured appropriately for the IP network connected to each LAN port on the system

•at least one WAN Network Interface must be configured for ACE to be operable

After ACE configuration but before attempting to access the ACE Server, both the ACE Server and the CyberSWITCH need to agree upon a “secret.” After configuring the ACE server on the CyberSWITCH, issue the sentry ace system command. This command will establish the necessary secret for communications between the two systems.

USING CFGEDIT

1.Select option (4), ACE from the Off-node Server Information menu. If you need guidance to find this menu, refer to the instructions provided in the CSM Authentication Server configuration section. The following screen will be displayed:

ACE Authentication Server Menu:
	Primary (Master) Server
		is Not Configured
	Secondary (Slave) Server
		is Not Configured
	Access Request
	Number of Access Retries	is 3
	Time between Retries	is 1 second
	Encryption Method	SDI
	Source IP address	is Not Configured
ACE Server Options:
1)	Primary (Master) Server
2)	Secondary (Slave) Server
3)	Miscellaneous Information
4)	Load ACE configuration file.

Select function from above or <RET> for previous menu: 1

2.Select Primary Server and enter the following information:

a.IP address of the Authentication Server

b.UDP port number used by the Authentication Server

3.If your configuration includes an ACE Slave server, then select Secondary Server. Enter its IP address. The UDP port number for the Master and Slave servers will be the same, regardless of which server configuration screen from which it is entered.

4.Select Miscellaneous Information to finish the configuration.

a.Specify the number of access request retries that the system will send to the Authentication Server.

220 CyberSWITCH

Image 220

Enterasys Networks CSX6000, CSX5500, CSX7000 manual Configuring AN ACE Authentication Server

Contents

USER’S Guide Virus Disclaimer Trademarks DOC Notice Contents Software Overview Hardware Installation Configuration Tools CfgeditSecurity Overview Configuring System Options and Information Configuring Off-node Server Information Configuring Encryption Configuring Advanced Bridging Configuring IPX Central Site Remote Access Switch Configuring Snmp Configuring Other Advanced Options Verifying the Base System Verifying Routing Protocols LCD Messages System Commands System Statistics Routine Maintenance Cfgedit Map Using this Guide Documentation SET Cfgedit MAPGuide Conventions Cfgedit ScreensUser’s Guide CyberSWITCH System OverviewCyberswitch Unique System Features Hours of UsageUSER’S Guide Central Site Remote Access Switch Radius Interoperability OverviewInteroperability Protocols Interoperability Devices Network Layer Encryption OverviewLink Layer Security Overview Network Interface OverviewIsdn System ComponentsRemote Isdn Devices Switches Supported System Platforms Hardware OverviewPlatform Number Main Speed Slots CSX5500 System Platforms EMI To reduce the risk of electrical shock or energy hazards CSX6000 Cleaning the CSX6000 AIR Filter To reduce the risk of electrical shock or energy hazards CSX7000 Disk Drives Number of 1/3 height IDE disk drives supported NE 2000-II a Network Express Platform Front ViewPlatform Characteristics NE 4000 a Network Express Platform USER’S Guide NE 5000 Platform a Network Express Platform Cleaning the NE 5000 AIR Filter EMI Hardware Characteristics System AdaptersEthernet Adapters MtbfBasic Rate Adapters 75000hrs PRI-8 Primary Rate AdaptersPRI-23 PRI-23/30 Jumper UsagePRI-8, PRI-23, and PRI-23/30 Connection Expander AdapterAdapter 35 Pin Data Set Ready No Connect Gnd Signal Return No Connect Ring IndicatorTransmit Clock Receive Data No ConnectWith error control With error control and data compressionDigital Modems With data compressionDM-8 LSI Logic LR33000RISCMvip DM-24Encryption Adapter Administration Software Software OverviewOverview System SoftwareConfiguration Files System FilesOperational Files User Level Security Files System Installation Accessing the CyberSWITCHOrdering Isdn Service US only Ordering NI-1 Lines Using EZ-ISDN CodesOrdering NI-1 Lines Using NI-1 Isdn Ordering Codes Ordering BRI Isdn Lines Using Provisioning SettingsProvisioning Settings for AT&T 5ESS Switches NI-1 AT&T Custom Point-to-PointAT&T 5ESS NI-1 Service UnrestrictedCSV limit CSV NB limit CSD limit CSD NB limitProvision Settings for Northern Telecom DMS-100 Switches CSV limitAny CSD limitPVC Version Functional Yes Number of call AppearancesBasic Information for Ordering PRI Isdn Lines US Only Type of Switch DisabledOption Local Bell Operating Company SprintHardware Installation PRE-INSTALLATION RequirementsChoose a suitable setup location Verify system power requirementsVerify administration console requirements Provide a diskette for configuration backupIf you are installing only WAN adapters If you are installing WAN adapters and DM adaptersAdapter Settings If you are installing WAN adapters and an Encryption adapterAdapter Interrupt and I/O Address Settings Configured Slot Interrupt Jumper Address Switch Setting SW1DM-24 Adapter Interrupt and I/O Address Settings SW2 SW3Encryption Adapter Settings Mvip SettingsDES/RSA Adapter OFFLine Type Settings Additional Adapter SettingsTop Left Top Pair Right Pair Jumper Jumper Setting North American PRI-23 Clock SettingsJ10 J11 J12 J13 J14 JP1 JP3JP6 JP9 MvipInserting the Adapters Into the Cyberswitch Connecting Adapter INTER-BOARD Cables Connecting Multiple AdaptersFlat Bus Ribbon Cable Connecting a WAN Adapter to the LCD Summary of Guidelines Making Connections Accessing the CyberswitchDirect Connection DCD DTR DSR RCV Xmit GND RTS CTS NULL-MODEM Connection to a PCRemote Connection Using Telnet On the CyberSWITCH side On the remote administration console sideRemote Connections Modem to Modem COM1From Cfgedit Options, select Default Async Protocol Establishing AN Administration Session Accessing the Release Notes Installing Software Upgrading System SoftwareCouldn’t open the file C\SYSTEM\PLATFORM.NEI Local Upgrade Upgrading System SoftwareRemote Upgrade Accessing the Release Notes Basic Configuration Configuring Basic BridgingConfiguration Tools CfgeditDynamic Management Executing CfgeditSaving Cfgedit Changes Executing Dynamic ManagementUtility Dynamic Management Commands Saving Dynamic Management ChangesUsing the Network Worksheets Using the Configuration ChaptersConfiguring Resources Using Cfgedit Configuring Resources and LinesResources Resource Configuration Elements Resource Background Information PPP Configuring Lines Using Cfgedit LinesMultiframe CRC Characteristic PRI/T1 lines E1 lineCommonChannel Select Change from the Data Lines menu of Physical Resources Line Configuration Elements Auto TEIDirectory Numbers Switch Type Number of Data Number of SPIDsDMS100 custom NI-1 Directory Numbers Line Encoding Commport Information Line Background InformationConfiguring a Subaddress Using Cfgedit Subaddress Configuration ElementsSubaddresses Subaddresses Background InformationConfiguring Basic Bridging ENABLING/DISABLING Bridging Using CfgeditSelect Enable/Disable Bridging MAC Layer Bridging Configuration ElementsMAC Layer Bridging Background Information Enabling IP Using Cfgedit Configuring Basic IP RoutingInternet Protocol IP Option IP Operating Mode IP Option Configuration ElementsConfiguring the IP Operating Mode Using Cfgedit IP Background InformationIP Operating Mode Configuration Elements IP Operating Mode Background InformationConfiguring Interfaces Using Cfgedit IP Network InterfacesUSER’S Guide Network Interface Configuration Elements MTU Transmit Broadcast IP Address Default switch for numbered WAN interfaces IP RIP Receive Control IP Network Interface Background Information IP Network Interface Type Associated Remote Device IP Host RFC1294WAN Direct Host IP Host RFC1294 Hdlc BridgeUSER’S Guide Example 1 LAN, WAN and WAN Direct Host Interfaces Example 2 LAN, WAN UnNumbered, WAN Remote LAN Interfaces IP RIP and the IP Network Interfaces Isdn Isdn IP RIP Over Dedicated Connections Isdn Network Flattening Redundant Configurations for BackupProxy ARP Secondary IP Addressing Example IP Host Communications in Flattened NetworksConfiguring Static Routes Static RoutesIP address for the destination network or host Static Route Configuration Elements Central Site Remote Access Switch Isdn Static Route Background InformationConfiguring Default Routes Default RoutesDefault Route Configuration Elements ENABLING/DISABLING IP RIP Using Cfgedit Routing Information Protocol RIP OptionIP RIP Configuration Elements IP RIP StatusIP RIP Background Information LANConfiguring Security Level Security and Encryption OptionsSecurity Overview Security LevelSystem Options and Information Device Level DatabasesUser Level Databases Network Login InformationOFF-NODE Server Information Configuring Security Level Database Device Level User Level Administration Security On-Node YesConfiguring no Security Using Cfgedit No SecurityDevice Level Security Configuring Device Level Security Using CfgeditDevice Level Security Background Information User Level Security Configuring User Level Security Using CfgeditUser Level Security Background Information User Level Security Isdn Responding to Login Prompts Making a Telnet ConnectionConfiguring Device and User Level Security Using Cfgedit Device and User Level SecurityTacacs ACEDevice and User Level Background Information Configuring System Options Using Cfgedit Configuring System Options and InformationSystem Options System Options Configuration Elements System OptionsBridge MAC Calling Line Id Authentication Address PAP ChapSystem Options Background Information PAP ChapConfiguring System Information Using Cfgedit System Information Configuration ElementsSystem Information Optional Calling Line IdConfiguring Administrative Sessions Using Cfgedit Administrative SessionSystem Information Background Information Administrative Session Configuration Elements Administrative Session Background Information Emergency Telnet Server Port Number Background Information Configuring AN ON-NODE Device Database Configuring Device Level DatabasesON-NODE Device Database Configuring ON-NODE Device Entries ON-NODE Device EntriesOn-node Device Entries No pvc configured for Device DAN SVC None 0.0 IP SubNetwork number ON-NODE Device Database Configuration Elements Base Data Rate Frame Relay Access Configuration Elements Chap Secret Outbound Authentication RIP/SAP Appletalk Information Configuration Elements Bridge Information Configuration Elements ON-NODE Device Database Background Information Bridging with Hdlc Bridge DevicesIP Routing with Hdlc Bridge Devices Security Mode On-node Device Table Configuration DataLine Id IP Routing with IP Host Devices RFC1294 IP Routing with PPP IP Devices Using IpcpPAP or Chap PAP Password or Bridging with PPP Bridge Devices Using BCPIP Routing with PPP Bridge Devices Using BCP Configuring OFF-NODE Device Database Location Using Cfgedit OFF-NODE Device Database LocationOFF-NODE Device Database Location Configuration Elements OFF-NODE Device Database Location Background InformationUser Level Authentication Database Location Configuring User Level DatabasesConfiguring Authentication Database Location Using Cfgedit Database Telnet Port Number Configuring OFF-NODE Server Information Multiple Administration Login NamesName John Doe Name mynode1 Address Remote Office1 Type communications serverCSM Authentication Server Configuring CSM Authentication ServerCSM Authentication Server Background Information CSM Authentication Server Configuration ElementsConfiguring a Radius Authentication Server Is SHAREDSECRET1234 Radius Authentication Server Configuration Elements Radius Authentication Server Background InformationConfiguring a Radius Accounting Server Select 5 Off-node Server InformationReturn to the Off-node Server Information Menu Radius Accounting Server Configuration Elements Radius Accounting Server Background InformationEnabling Radius Type Using Cfgedit Radius RFC2138Radius Type Configuration Elements Configuring the Dynamic Device Option Using CfgeditDynamic Device Option Radius TypeDynamic Device Configuration Elements Tacacs Authentication Server Configuring a Tacacs Authentication ServerTacacs Authentication Server Configuration Elements Tacacs Authentication Server Background InformationACE Authentication Server Configuring AN ACE Authentication ServerACE Authentication Server Configuration Elements ACE Authentication Server Background Information Network Login General Configuration Configuring Network Login InformationConfiguring General Network Login Information Using Cfgedit Select the type of authentication desired Network Login General Configuration Background Information Network Login BannersConfiguring Network Login Banners Using Cfgedit Network Login Banners Background Information Login Configuration Specific to Radius ServerConfiguring Radius Server Login Information Using Cfgedit Login Configuration Specific to Radius Server Login Configuration Specific to Tacacs Server Configuring Tacacs Server Login Information Using CfgeditLogin Configuration Specific to Tacacs Server USER’S Guide Configuring Encryption ConfigurationConfiguring AN Encryption Adapter Using Cfgedit Select Add a ResourceSelect IP Security Associations Select Add. Respond to the following series of questionsConfiguring Link Layer Encryption PPP Encryption only Select Device Level Databases Select On-node device entriesEncryption Configuration Elements Final Destination IP Address Encryption Background Information IP Network Layer Encryption12345678 8888CCCC 8888CCCC 12345678Link Layer Encryption IsdnInteraction with Other Features For IP Layer encryption For Link Layer encryptionAdvanced Configuration Configuring Alternate AccessesDedicated Accesses Configuring Alternate AccessesConfiguring a Dedicated Access Using Cfgedit Dedicated Access Configuration Elements Dedicated Access Background InformationAccesses Configuring AN X.25 AccessAccesses USER’S Guide Configuration Elements Lapb Configuration Elements Timers Maximum Window Size Nonstandard Default Transmit Window Size PVC Configuration Elements Access Background Information B1 B2 Configuring a Frame Relay Access Frame Relay AccessesSelect Access Information Select Add a PVC Frame Relay General Configuration Elements Frame Relay PVC Configuration Elements LMILMI Format Dlci ValuePVC Name Frame Relay Access Background Information Local Management Interface Overview Allowed Not Allowed Configuring Advanced Bridging Bridge Dial OUTUnder ISDN, select Dial Out Phone Number Configuring Spanning Tree Protocol Using Cfgedit Spanning Tree ProtocolSpanning Tree Protocol Configuration Elements Spanning Tree Protocol Background InformationBridge Mode of Operation Configuring the Bridge Mode of Operation Using CfgeditBridge Mode of Operation Configuration Elements Bridge Mode of Operation Background InformationConfiguring Bridge Filters Using Cfgedit Bridge FiltersProtocol Definition Commands Source MAC Filter CommandsProtocol Filter Commands Destination MAC Filter CommandsPacket Data Filter Commands Bridge Filter Configuration Elements Lsap in HEXFilter Type Maximum Number of Each Bridge Filters Background InformationFilter Destination MAC Unrestricted Mode Bridge Filters Source Discard Connect Destination Protocol PacketCentral Site Remote Access Switch Filter Action Distribution Result List Packet matching this filter will not be forwardedOn any LAN port. The packet will be sent to remote Sites connected over the WAN according toOn LAN port 1. The packet will be sent to remote Sites connected over the WAN and to LAN portAccording to the normal learning bridge methods On LAN port 2. The packet will be sent to remoteRestricted Mode Bridge Filters Restricted Mode Forwarding ActionCentral Site Remote Access Switch Filter Distribution Result Action List Packet matching this filter will only be forwardEd on the LAN ports. The packet will not be sent to Any remote sites connected over the WANEd on LAN port 1. The packet will not be sent to re Mote sites connected over the WAN or to LANPort Ed on LAN port 2. The packet will not be sent to rePacket matching this filter will be discarded on LAN ports. The packet will be sent to allPacket matching this filter will be discarded to Remote sites connected on the WAN. The packetConfiguring a Destination MAC Address Filter PreliminariesDiscard Connect Configuring the Known Connect List Known Connect ListKnown Connect List Configuration Elements Known Connect List Background InformationConfiguring Advanced IP Routing Static ARP Table EntriesConfiguring Static ARP Table Entries Using Cfgedit Static ARP Table Entries Configuration ElementsStatic ARP Table Entries Select Static ARP Table Entries from the IP menuIsolated Mode Static Route Lookup VIA RadiusStatic Route VIA Radius Configuration Elements Configuring AN IP Address Pool Using CfgeditIP Address Pool Configuration Elements IP Address PoolIP Filters IP Address Pool Background InformationInitiating the IP Filter Configuration Using Cfgedit Configuring Packet Types Using CfgeditTCP UDP Icpm Specify a control value any, established, or not established Select Icmp Type Configuring Forwarding Filters Select Add a Forwarding FilterConfiguring Connection Filters Configuring Exception Filter Select IP Interfaces Applying FiltersSelect Apply Global Forwarding Filter IP Filters Configuration Elements TCP and UDP PortsRange NEQIP Filters Background Information Packet Types Forwarding FiltersConnection Filters Exception FiltersApplication to Network Interfaces Common Portion LimitationsExample of AN IP Filter Configuration FTP WWW SfvraForward Configuring a Dhcp Relay Agent Using Cfgedit Dhcp Relay AgentDhcp Configuration Elements Dhcp Background InformationBridge to Bridge Environment Router to Bridge EnvironmentIP Router to IP Router with Relay Agents on both USER’S Guide Remote Bridge to IP Router w/Relay Agent = WAN Rlan Dhcp Proxy Client Configuring the Dhcp Proxy ClientSelect Dhcp Proxy Client Dhcp Proxy Client ENABLE/DISABLE Flag Sample Configuration IP Router with Dhcp Proxy Client Configuring Security Associations Using Cfgedit Configuration for IP Router ChloeSecurity Associations DNS and Netbios Addresses Configuring DNS and Netbios Addresses Using CfgeditDNS/NBNS Configuration Elements DNS/NBNS Background InformationConfiguring IPX Configuring IPX Information IPX Option Configuration Element ENABLING/DISABLING IPX Using CfgeditIPX Routing Option Configuring the IPX Internal Network Number Using Cfgedit IPX Internal Network Number Configuration ElementIPX Internal Network Number IPX Option Background InformationIPX Network Interfaces Configuring IPX Network Interfaces Using CfgeditIPX Network Number Background Information Displays the current IPX network interface data IPX Network Interface Configuration Elements SAP IPX Network Interface Configuration Elements IPX Network Interface Background Information IPX Routing Protocol Configuration Elements Configuring IPX Routing Protocols Using CfgeditIPX Routing Protocols IPX Routing Protocol Background Information SAPSpecial Considerations Remote LAN Interface Configuring IPX Static Routes Using Cfgedit IPX Static RoutesIPX Static Routes Configuration Elements IPX Static Routes Background InformationIPX Netware Static Services Configuring IPX Netware Static Services Using CfgeditIPX Netware Static Services Configuration Elements Configuring IPX Spoofing Using Cfgedit IPX Netware Static Services Background InformationIPX Spoofing IPX Spoofing Configuration Elements IPX Spoofing Background InformationWatchdog Protocol IPX Type 20 Packet Handling Configuration Elements Configuring IPX Type 20 Packet Handling Using CfgeditIPX Type 20 Packet Handling IPX Isolated Mode Configuring IPX Isolated Mode Using CfgeditIPX Isolated Mode Configuration Elements IPX Isolated Mode Background InformationConfiguring Triggered RIP/SAP Global Timers Using Cfgedit Displaying WAN Peer ListTriggered RIP/SAP Background Information Configuring IPX Devices IPX-SPECIFIC Information for DevicesIPX-Specific Information for Devices Remote LAN Devices Enable Bridging and disable Make calls for bridge data IPX Configuration Elements for DevicesNone IPX Background Information for Devices Configuring Snmp Configuring SnmpConfiguring Snmp Snmp Configuration Elements Snmp Background Information WAN Central Site Remote Access Switch Using Cabletron NMS Systems CT-CONTAINER-MIB CT-WAN-MIB CTMIB2-EXT-MIBEnabling Appletalk Routing Using Cfgedit Configuring Appletalk RoutingAppletalk Routing Option Appletalk Routing Option Configuration Element Configuring Appletalk Ports Using CfgeditAppletalk Ports Appletalk Routing Background InformationAppletalk Ports Configuration Elements Appletalk Ports Background Information Overview Configuration Configuring Appletalk Static Routes Using CfgeditAppletalk Static Routes ConsiderationsAppletalk Routing Static Routes Configuration Elements Configuring Appletalk Capacities Using CfgeditAppletalk Capacities Configuration Elements Appletalk CapacitiesAppletalk Isolated Mode Configuring the Appletalk Isolated Mode Using CfgeditAppletalk Isolated Mode Configuration Elements Appletalk Capacities Background InformationConfiguring Call Control Call Control MenuConfiguring the Throughput Monitor Throughput MonitorThroughput Monitor Configuration Elements Throughput Monitor Background InformationCondition Trigger Number Window Size Utilization 90%Underload Condition Monitoring USER’S Guide Call Interval Parameters Monthly Call ChargeMonthly Call Charge Configuration Elements Configuring Call Restrictions Using CfgeditCall Restrictions Monthly Call Charge Background InformationCall Restriction Configuration Elements Maximum Calls PER DAY Maximum Call Minutes PER Month Bandwidth Reservation Configuring Bandwidth ReservationCall Restrictions Background Information Bandwidth Reservation Bandwidth Reservation Configuration Elements Select Bandwidth ReservationSemipermanent Connections Configuring Semipermanent Connections Using CfgeditBandwidth Reservation Background Information Semiperm Call Device Commands Semipermanent Connections Configuration ElementsSemipermanent Connections Background Information Call Restrictions Throughput MonitorConfiguring CSM for Call Control Using Cfgedit CSM AS a Call Control ManagerCall Control Management Channel Callback Configuring D Channel Callback Using CfgeditSelect D Channel Callback Channel Callback Configuration Elements Channel Callback Background InformationDigital Modem Inactivity Timeout Modem Inactivity Timeout Configuration ElementsModem Inactivity Timeout Background Information Configuring Other Advanced Options Configuring for a Digital Modem Using CfgeditDigital Modem For IP routingFor AppleTalk routing For IPX routingDigital Modem Background Information Digital Modem Default Async Protocol PPP Mode Using CfgeditCall Disconnect Using Cfgedit Terminal Mode Using CfgeditDefault Async Protocol Configuration Elements Data Timeout Value Autosense Feature Configuring PPP PPP ConfigurationPPP Configuration Elements PPP Configuration PPP Background Information Default Line Protocol Configuring Default Line Protocol Using CfgeditDefault Line Protocol Configuration Elements Default Line Protocol Background InformationConfiguring LOG Options Using Cfgedit LOG OptionsFrom Log Options, select Authentication Message DA log LOG Options Configuration ElementsSelect Add a Syslog Server From Log Options, select Call Detail RecordingUDP Port LOG Options Background InformationCentral Site Remote Access Switch System Messages CDR Log Report Event Report Contents Call Detail Recording EventsRecord Connect/Term Connect Event Report Contents Disconnect/Term Disconnect Event Report ContentsReject Event Report Contents Term Succ Event Report ContentsTerm Fail Event Report Contents System Up Event Report ContentsConfiguring Compression Options Using Cfgedit Verify Event Report ContentsCompression Options Compression Options Configuration Elements Compression Options Background Information Central Site Remote Access Switch Tftp Configuration Elements Configuring TftpTftp Background Information File Attributes Configuration Elements Configuring File AttributesFile Attributes File Attributes Background Information Verification and Diagnosis ARPHardware Resources OPERATIONAL? Verifying the Base SystemWAN Adapter INITIALIZED? To correct the problem, try the following LAN Adapter INITIALIZED?WAN Lines Available for USE? Verifying WAN Line AvailabilityDedicated Serial Connections LAN Connection OPERATIONAL? Bridge INITIALIZED? Try the following to correct the problemIP Router INITIALIZED? Remote Device Connectivity Set-upSecurity Rejection-Invalid Calling Line Id # MULTI-LEVEL Security To verify multi-level securityIP Host Mode DisabledIP Host Mode OPERATIONAL? IP Host INITIALIZED?Try the following Alternate Accesses Dedicated ConnectionsFrame Relay Connections Connections A Terminal Server Menu IP Routing OPERATIONAL? Verifying Routing ProtocolsIP Routing Over a LAN Interface IP Routing Over a WAN Interface Ping 192.100.1.1 return IP Routing Over a WAN Direct Host Interface 100.0.0.1 100.0.0.0 Host B 100.0.0.3 Host a 100.0.0.2 IP Routing Over a WAN Remote LAN Interface IP Routing Over a WAN Unnumbered Interface IP Filters Ip filter trace discard returnIp filter trace off return If you are still experiencing problemsIP RIP INITIALIZED? IP RIP Output Processing on a LAN Interface IP RIP Input Processing on a LAN Interface IP RIP Output Processing on a WAN Interface IP RIP Input Processing Operational on a WAN Interface IPX IPX Router INITIALIZED?IPX Routing OPERATIONAL? IPX Routing Over a LAN ConnectionIPX Remote LAN Connection Xxxx IPX Routing Over a WAN Connection Triggered RIP/SAPIpx trigreq device Appletalk Routing INITIALIZED? Appletalk RoutingAppletalk Routing OPERATIONAL? Appletalk Routing Over the LAN Connection Atalk port Appletalk Routing Over a WAN Connection USER’S Guide Verifying System Options SnmpUSER’S Guide Dial OUT Set Up Call Detail Recording Compression Reserved Bandwidth CyberSWITCH does not have Compression EnabledPeer Protocol-Rejects CCP Verifying the Relay Agent is Enabled Verifying Dhcp Relay Agent InitializationVerifying the Relay Agent is Operational USER’S Guide Verifying the Proxy Client is Enabled Verifying Dhcp Proxy Client InitializationVerifying the Proxy Client is Operational Ip addrpool return Modem Callback Verifying a Semipermanent Connection Proxy ARP Proxy ARP Troubleshooting LCD MessagesLCD Messages LCD Message GroupsInitialization LCD Message Normal Operation LCD MessagesError LCD Messages LCD Message Groups Auto Over Max Charge System Messages Error Messages Informational MessagesInitialization Messages Normal Operation MessagesPort LAN Adapter, operating in remote mode only Port LAN Adapter, operating in local and remote modeCall has exceeded the configured maximum duration System Message SummaryAcct Warning code Timeout Adapter #’x’ failed to respond from bootstrapActivation Failure- Session not active Adapter does not respond adapter #’x’Attempting to load FileName for Upgrade Attempt to initialize unconfigured DM card in slot slot #Auth ACE Could not create service file Auth ACE Could not write service fileAuth ACE Error receiving server log message acknowledgment Auth ACE Login rejected user user nameAuth ACE Node verification received Client initialized Auth Radius Chap rejected for device device nameAuth Radius Login rejected device device name Auth Radius IP Host rejected IP Host id IP host IdAuth Radius IP Resolve rejected IP Address IP address Auth Radius PAP rejected device device nameAuth Tacacs Login rejected user user name Auth Warning code 0001 TimeoutAuth Warning code 0004 No authentication node available Auth Warning code 0007 Authentication mode mismatchBooting System Software Bootstrap came alive on DM card in slot slot #Bootstrap came alive on WAN card in slot slot # Bad auth result in smgrauthaanotify for device device nameCall Restrictions have been disabled by user command Calculating CRC’sCallback type call back type ID is not currently supported CallID in use in HostcallrequestCall Restrictions have been enabled by user command Call Restriction statistics reset for new dayCall Restriction statistics reset for new month Call Restrictions will allow calls to be made this hourCentral Site Remote Access Switch Cause cause code received for Dlci dlci index Cause Code EventCCP Internal Decompression Failure CCP Option Negotiation Failure, Non-Convergence detectedChannel in use in Hostcallrequest Chap Authentication Failure remote device not respondingCNTR-TMRTimed out waiting for TMR number interrupt Configured adapter # ’x’ type does not exist Couldn’t find speech service slot #, port #Current monthly charges reset for new month Connection disconnected for license violationData link test successful DSL port # , CES DCE Data Rate is invalid on FrStartPVCDedicated connection down slot #, port # DHCP-P Failed to close UDP port x, erc = yDHCP-P Proxy Client disabled DHCP-P Proxy Client enabledDHCP-P Proxy Client initialization failed DHCP-P UDP port 67 closedDHCP-R Relay Agent disabled DHCP-R Relay Agent enabledDHCP-R Failed to close UDP port 67, erc = DHCP-R Failed to open UDP port 67, erc =DM card in slot slot # is not usable, could not upgrade DM card in slot slot # signals it is operationalDM card type configured in slot slot # does not exist DM card failed Flash download bad xx SrecDM card in slot slot # will not come out of reset DM upgrade started. Board=board #, Modem=modem #DM upgrade success. Board=board #, Modem=modem # Downloading Bootstrap to DM card in slot slot #Edrv transmit error error code Error closing file ’s’Error downloading bootstrap program to adapter #’x’ Error downloading operational software to adapter ’x’Error during channel initialization Access access index Error during port initialization Access access indexError during PVC initialization Access access index Error initializing WAN card WAN card IdError opening file \system\ethernt2.bin Error programming adapter #’x’ hardwareError reading file file name, section = section name Error reading sdconf.rec fileFailed to get a tone signaling session Facility not subscribed Slot=slot # Port=port #Failed to allocate enough memory for Xilinx load file Failed to obtain Terminal info in smgrprocterminalauthsessFailure during Static RAM test on adapter # ’x’ Failure during read of file ’s’Failure to allocate enough memory for Xilinx load file Central Site Remote Access Switch File Access Err Formatting Flash MemoryFrietf detected PPP protocol from NAME, shutting down PVC Frame Relay event queue fullInstalling File Set into Flash Memory Interrupt fault on WAN Adapter in Slot slot #Invalid Cllm received on Access access index Invalid Password password givenIP Error from ESP datagram discarded IP x.x.x.x not added to the pool Unknown error yInvalid SERIAL.001 file present, file is ignored Invalid serial number in SERIAL.001, file is ignoredIP Default Route not added, invalid next hop IP address # IP Invalid configuration for Network Interface ddIP Cannot stop Proxy Arp for IP address #, no cmd buf avail IP Failed to de-register with IP Address Pool Manager erc=xIP Invalid Peer IP Address IP address, WAN IP Stream Closed IP IP host is initialized successfullyIP IP router is initialized successfully IP Network initialized successfully on ddd.ddd.ddd.dddIpcp IP Address Pool Out of IP addresses Ipcp Option Negotiation Failure, Non-Convergence detectedIpcp Remote device does not negotiate IP address IP Host Call Dropped XID was not received from remoteIP RIP All network interfaces used IP RIP Buffers allocatedIP RIP Initialization failed, unable to allocate buffers IP RIP Send queue fullIPX Invalid Ipxwc passed IPX Network initialized successfully onIPX Network Interface on LAN port port # not initialized IPX IPX router initialized successfullyIPX SAP Space available in service table IPX SAP Unable to add service, service table fullIpxwan IPX Internal Network Number must be configured IPX SAP Buffers allocatedLAN Adapter Command Timeout LAN Adapter configuration conflictLAN Adapter Fatal Error Reported LAN Adapter HW upgrade may be requiredLAN Adapter Reset LAN Adapter Response TimeoutLAN Adapter System resource error LAN Init ErrorLAN Xmit Error LMI alarm on Access access indexLMI alarm reset Access access index Manage Mode updates have been successfully committedMemory Access Timeout Mismatch of configured and installed DM card in slot slot #Manual restart initiated on DM board in slot slot # Max ATI3 retries exceeded on modem modem # of slot slot #Modem modem # of DM card in slot slot # is unusable Modem revision on modem modem # of slot slot # failedNegotiation Failure with Semipermanent device Network loop between site1 and siteNetwork sent Cause Spid not supported slot #, port # Network sent Status with state = 0, tear down callNo Active Calls Active Sites No Active List entry available in INMOut of LAN Adapter transmit command descriptors No Sites ConnectedNot enough memory for Security module Offnode server lookup of Dial Out User failedAuto For over 5 minutes Report problem to Phone company PAP Identification timeout on remote devicePAP Invalid password for name given by remote device Out Svc # slot # , port #PAP Remote device rejected System Information error message PAP Unknown name name given by remote devicePost number, Hdlc #number External Loopback Test Failed Post number, Hdlc #number Internal Loopback Test FailedPVC for Dlci dlci index not Active PVC not allocated for dlci indexPVC rcv wait q already full R2 not capable of Multichannel or Non-circuit callsRBS LIFAddTimer failure RBSoutSMchannel # Timeout waiting for WinkReattempting to Install File Set into Flash Memory RebootingReplace Lithium Battery Contact your Representative Reserved signalReceived charge amount charge amount Remote peer ID discrepancySecurity Rejection Invalid Password password given Security Rejection No Password given by callerSecurity Rejection Timeout on Startup Complete Security Rejection Caller did not negotiate securitySemipermanent. Device x disconnected by admin Semipermanent. Device x reconnected by adminSignal for unknown CallCmd task task Id Slot #, port # Cfg ErrorSnmp Authentication failure, unknown community name Snmp Snmp initialization failure unable to open UDP portSnmp Snmp initialized successfully Snmp Unable to obtain an Snmp Trap queue entry bufferSSB Post 27 i960timer82c54FAILURE SSB i960 Post number not equal to i386’sSSB Post 23 i960hostintreg Failure SSB Post 24 i960iointreg FailureSSB Post 32 i960hdlc1 Failure SSB Post 33 i960hdlc2 FailureSSB Post 34 i960hdlc3 Failure SSB Post 35 i960hdlc4 FailureSuccessfully Loaded Release X.Y Issue Z Switch could not recognize phone number nnnnnnnSystem Clock Fault on Wan Adapter in Slot slot # TCP Connection to CSM at IP address is UPTftp Local error #2 Feature not initialized Tftp Local error #3 Server not initializedTftp Local error #4 UDP rejected packet filename Tftp Local error #5 UDP open failedTftp Local error #14 Bad file name Tftp Local error #15 Bad mode stringTftp Local error #18 Unable to open file filename Tftp Local error #19 Disk full filenameTftp Remote error # 1 Text from Remote Host Tftp Remote error # 2 Text from Remote HostTftp Remote error # 3 Text from Remote Host Tftp Remote error # 4 Text from Remote HostThis card does not support R2 Signaling Timeout detected on connection establishmentTimeout detected on receiving caller’s number Timeout on Startup CompleteType mismatch of configured & installed adapter # ’x’ Too many digits in TN in HostcallrequestTried to free unallocated buffer sub name, size=size Unable to Decrypt DatagramUnable to open \config\devdb.nei file Unable to open Modem Upgrade fileUnable to restore original ISRs for Interrupt interrupt # Unable to get Digital Modem resource to place callUnexpected error during transmission of LMI frame Unmatched Login TaskUpdating CyberSWITCH from FileName Unknown Calling Bridge MAC addressWAN card in slot slot # signals it is operational Watchdog timeout detected on DM board in slot slot #Watchdog timeout detected on WAN board ’x’ X25 facilities error, facilities not allowed in PVCX25 facilities error, bad facility length X25 facilities error, invalid facilities lengthX25 facilities error, invalid DTE address X25 facilities error, facility not allowedX25 facilities error, facility not available X25 facilities error, packet length negotiation not allowedX25 facilities error, window size negotiation not available X25 facilities error, Rpoa not availableZone allocation failed, maximum capacity already configured Trace Messages Call Trace Messages Location CausesCall Trace Message Summary Inband treatment has been applied Configure ack slot #-BRD CFG ACK Slot=slot # Init data link slot #, port #, ces Out configure port # Interworking unspecified causeOff-hook warning tone on Origination call address is non-ISDNReceived unknown signal value Out init data link slot #, port # , cesRecall dial tone on Received unknown progress valueIP Filters Trace Messages PPP Packet Trace Messages Configure Request Configure ACKConfigure NAK Configure RejectTrace Messages Echo ReplyDiscard Request Trace Message SummaryX25 Data LCN logical channel number, number of bytes bytes X25 DCE RR LCN logical channel number, number of bytes bytesSystem is sending a call request to the network Lapb Trace Messages Lapb Trace Message SummaryLapb Sabme Lapb UAOut Lapb Disc Out Lapb DMSystem Maintenance Remote ManagementRemote Management SITE.HQ Installation and Configuration Usage InstructionsTelnet IsdnEarlier Releases Central Site Remote Access Switch Setting UP a NEW Number Setting UP Server TypeWIN95 DIAL-UP Networking General tabDialing OUT Site HQ Isdn Users Report Files Statistics Files Config files Other Files Changing Carbon Copy Configuration Parameters Carbon CopyModem Type COM1Baud Rate Performing a File Transfer Using Carbon Copy Copy LCNETWORK.NEI HC\CONFIG\NETWORK.NEI Running Without Carbon CopyRemoving Carbon Copy System Commands Accessing Administration ServicesSetting the IP Address Accessing Dynamic ManagementViewing Operational Information Neif Connected Second column is the potential number of connections Viewing Throughput Information Throughput Monitor Contents Saving Operational Information Clearing Operational InformationTerminating and Restarting the Cyberswitch CONFIGURATION-RELATED CommandsTerminating Administration Sessions Setting the Date and TimeLogin-Id Appletalk Routing Commands Type StateDefault zone Network rangeFlags Physical addressDistance Zones validBridge Commands ZoneCall Control Commands Indicates that a call request process has been initiated Call peer phone number data rate device bearer Calling phone number at data rate, device PPP Call Detail Recording Commands Call Restriction CommandsCSM Commands Compression Information CommandsDhcp Commands Digital Modem Commands Frame Relay Commands Clears all statistics associated with the fr stat command IP Routing Commands Disables the trace Mask used for the destination Time since the last update was received IPX Routing Commands Ipx diag host ipx address timeout Isdn Usage Commands LAN Commands LOG CommandsPacket Capture Commands Pkt display Banyan Vines Packet Detail Screen Bridged Packet Radius Commands Radius ipres Serial Interface Commands Snmp CommandsSpanning Tree Commands Spanning Tree Port InformationSpanning Tree Bridge Information Bridge priority of the root bridge TCP Commands Telnet Commands Possible send parameters are defined as follows Terminal Commands Tftp Commands Tftp GETTrace Commands Tftp PUTUDP Commands User Level Security CommandsWAN Commands Commands Clears the statistics for the default VC System Statistics Connectivity StatisticsCall Statistics Call Restriction StatisticsThroughput Monitoring Statistics Appletalk Statistics Appletalk Protocol StatisticsNumber of AppleTalk Echo requests received Count of AppleTalk Echo replies received Number of NBP LookUp Requests received Appletalk Port Statistics Bridge Statistics Call Detail Recording StatisticsCompression Related Statistics Compression StatisticsDecompression Related Statistics Dhcp Relay Agent statistics and Dhcp Proxy Agent statistics Dhcp StatisticsCommon Dhcp Statistics Dhcp Relay Agent Statistics Dhcp Proxy Client Statistics Digital Modem Statistics Access Related StatisticsFrame Relay Statistics Init PVC Related Statistics LAN Statistics IP Statistics IP Group StatisticsNumber of IP datagrams successfully reassembled Icmp Group Statistics IPX Statistics IPX General StatisticsNetwork number portion of the IPX address of this system IPX RIP Statistics IPX Triggered RIP Statistics IPX Route StatisticsIPX SAP Statistics IPX Triggered SAP StatisticsIPX Service Statistics RIP StatisticsRIP Global Statistics RIP Interface StatisticsSerial Interface Statistics Snmp StatisticsSnmpInBadVersions SnmpInGetNexts TCP Statistics Statistics for Server or Remote Initiated Tftp Activity Tftp StatisticsStatistics for Local or Client Initiated Tftp Activity Statistics for ALL Tftp Activity WAN Frietf Statistics UDP StatisticsLayer 1 PRI Error Statistics WAN L1P StatisticsWAN Statistics Layer 1 General StatisticsStatistics Maximum number of active VCs allowed at any time Virtual Circuit VC Related Statistics USER’S Guide Routine Maintenance INSTALLING/UPGRADING System SoftwareExecuting Configuration Changes Making Changes Using CfgeditMaking Changes Using Manage Mode Configuration Backup and RestoreObtaining System Custom Information Appendices System WorksheetsSystem Adapters Ethernet Adapter Side View Ethernet AdapterBRI-4 Adapter Side View Basic Rate AdapterFront View PRI-8 Adapter Side View Primary Rate Adapters PRI-8PRI-23 Adapter PRI-23/30 Adapter Front View PRI-8 Expander Adapter Side View Front View Adapter Side View Front View RS232 Adapter Side View DM-8 Adapter Digital Modems DM-8DM-24 Adapter OFF DM-24+ Adapter DM-24+/DM-30+DM-24+ Adapter Back view USA System Worksheets Network Topology Resources System DetailsLines Accesses Over IsdnAuthentication Information Frame Relay Information Device InformationBridging and Routing Information IP RoutingIP Routing IPX RoutingAppletalk Routing AppleTalk Routing/Port InformationMain Menu IPXSnmp PPP FR DBUPhysical Resources Menu Options Menu WAN RlanDhcp SPISnmp FR DBU CSM Radius Tacacs ACE Security MenuSVC, PVC CSM Radius PPP STAC-L25CSM TCP port Getting Assistance Reporting ProblemsContacting Cabletron Systems Phone FAX Cabletron Systems System Problem Report To Customer Service FromNumber of Pages Including this Administrative Console Commands Table Command Use Cdr verify Verifies call detail recording servers are configuredClears administration screen Displays authentication messagesAdministrative Console Commands Table Generates a triggered RIP/SAP update request to Local log file only displays the call detail recording logLog cdr erase Local log file only erases the call detail recording logChanges password for current access level Displays system errors and system messages Displays the current Tftp statisticsWrites current authentication messages to disk Access or the specified accessSets LCN index default value to m Specified X.25 accessManage Mode Commands Table Adds/changes/deletes an IPX address from the IPX Address poolIpxsvc add/change/delete Adds/changes/deletes an IPX service Central Site Remote Access Switch Cause Codes Table Cause Codes Table USER’S Guide Central Site Remote Access Switch USER’S Guide Central Site Remote Access Switch Dec Value Hex Value Cause UnknownAtalk IndexBr stat Clid 195 Cr stats 596 crossover cable DateHelp 113 Ip addrpoolIsdn usage commands 607 isolated mode IpcpModem devices Netstat -r 443 network flatteningOffnode 213, 216 STAC-LZSRadius Server configuring Restart 585 restoreSnmp 352 snmp stats 614 socket number 336 software Srcfilt 270 startneTerminal mode 33, 102, 392, 393 Trace lapbWr 72, 584 ws 72 Wan