Enabling Snmp in the Taos unit | Lucent Technologies 7820-0802-003

Performing Basic Configuration

Recommended basic security measures

Following are the parameters related to SNMP security:

SNMP

enabled = no read-community = public read-write-community = write enforce-address-security = no

read-access-hosts = [ 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 ] write-access-hosts = [ 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 ] contact = ""

location = "" queue-depth = 0

Enabling SNMP in the TAOS unit

If you leave the Enabled parameter in the SNMP profile set to No (the default), SNMP utilities cannot access the TAOS unit. The following commands enable SNMP on a unit:

admin> read SNMP SNMP read

admin> set enabled = yes

admin> write SNMP written

Setting community strings

You can specify up to 32 characters as the Read-Write-Community string. The following example changes the default community strings:

admin> read snmp SNMP read

admin> list enabled = yes read-community = ******

read-write-community = *****

enforce-address-security = no

read-access-hosts = [ 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 ] write-access-hosts = [ 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 ] contact = ""

location = here queue-depth = 0

admin> set read-community = private

admin> set read-write-community = secret

admin> write SNMP written

Setting up address security

If the Enforce-Address-Security parameter is set to No (its default value), any SNMP manager that presents the correct community name is allowed access. If the parameter is set to Yes, the TAOS unit checks the source IP address of the SNMP manager and allows access only to those IP addresses listed in the Read-Access-Host and Write-Access-Host arrays. Each array can include up to five host addresses.

APX 8000/MAX TNT/DSLTNT Physical Interface Configuration Guide

1-11

Image 31

Lucent Technologies 7820-0802-003 Enabling Snmp in the Taos unit, Setting community strings, Setting up address security

Contents

APX 8000 /MAX TNT/DSLMAX Lucent Technologies Calling Lucent from within the United States Customer ServiceAdvantage Services Gathering information you will need Calling Lucent from outside the United States Other telephone numbersObtaining assistance through correspondence Contents Chapter Configuring the Thermal Profile for Fan Chapter Configuring MultiDSP Cards Chapter Configuring T1 FrameLine Cards Chapter Configuring Serial WAN Swan Cards Chapter Configuring OC3-ATM Cards Signaling System 7 SS7 18-1 Appendix a Figures Page Tables Page About This Guide What is in this guideWhat you should know Boldface mono Documentation conventionsDocumentation conventions Convention Meaning Documentation set Installation and basic configurationConfiguration Documentation set Reference Radius Taos Radius Guide and Reference Introduction to basic configuration Performing Basic Configuration Section Description of task Related commands or parameters Introduction to basic configuration New MAX TNT or Dsltnt unit Connecting to a new unitConnecting to a new unit New APX 8000 unit Admin set ip-address = 10.2.3.4/24 admin write Admin ping Admin date Setting the system dateSetting the system name Setting the log level Admin read ip-global Configuring a default gatewayConfiguring basic DNS information Configuring a default gateway Host-1%ping Pinging the Taos unit from a local hostRecommended basic security measures Pinging the Taos unit from a local host Assigning a Telnet password Changing the Admin passwordSecuring the serial port Ignoring Icmp redirects Requiring acceptance of the pool addressDisabling directed broadcasts Overview of Snmp security Configuring Snmp access to the unit Enabling Snmp in the Taos unit Setting community stringsSetting up address security Admin set enabled = yes Where to go next Where to go next Overview of redundancy operations Configuring Shelf-Controller Redundancy APXShelf-controller startup and primary election Overview of redundancy operations Normal operation Log messages Configuring the APX 8000 for shelf-controller redundancyController switchover Configuring the APX 8000 for shelf-controller redundancy Assigning the system IP address Examples of setting shelf-controller Ethernet IP addressAssigning an Ethernet IP address Example of setting the soft IP address Defining the soft IP interface for fault tolerance Physical interface profiles Configuring shelf-controller redundancyRedundancy profile Admin set primary-preference = right-controller-preferred Resetting the controllers Resetting shelf controllers and clearing controller Nvram Clearing Nvram Viewing controller up time Viewing controller status Admin uptime -a Clearing the fatal-error history log Setting up a trap to monitor the secondary controllerPage Overview of the Thermal profile for fan tray operations Configuring the Thermal Profile for Fan Tray Operations APXParameter Specifies Overview of the Thermal profile for fan tray operations Example of configuring thermal controls Related log messages Thermal alarms Thermal status reporting Fanstatus commandThermal status reporting Admin thermalstatus Thermalstatus commandPage Full-duplex 10/100Mbps Ethernet-3 slot card Configuring Ethernet CardsIntroduction to Ethernet slot cards Full-duplex 10/100Mbps Ethernet-2 slot card Ethernet profile Overview of Ethernet configurationUnderstanding the Ethernet-related profiles Upgrading to the Ethernet-2 and Ethernet-3 slot cards Admin set duplex-mode = half Configuring duplex mode on the 100Mbps Ethernet portConfiguring duplex mode on the 100Mbps Ethernet port Admin read ethernet 1 7 4 ETHERNET/ shelf-1slot-7 4 readPage Overview of configuring modem cards Configuring Series56 II III Modem and Hybrid Access Cards Description of task Section Associated parameters Specifying modem negotiation settingsSpecifying modem negotiation settings Admin read terminal-server TERMINAL-SERVER read Configuring an additional AT answer string for modem calls Series56 II and III Call-Route profiles Admin callroute -dSeries56 II and III Call-Route profiles Hybrid Access card implementation Page Introduction to MultiDSP Configuring MultiDSP Cards MAX TNT, APX Introduction to MultiDSP Port MultiDSP card 110 Supported MultiDSP servicesCard configuration constraints Data Voice over IP VoIP PHS Obtaining status information about a MultiDSP card Displaying information about all installed cardsDisplaying information about an installed MultiDSP card Obtaining status information about a MultiDSP card Configuring a MultiDSP card Configuring a MultiDSP card Base profile parameter Value if supported Verifying that MultiDSP services are enabled Admin dir call-r Verifying call routes for MultiDSP services About the Call-Route-Type parameter Call-Route-Type values for Description MultiDSP services Viewing call-routing database entries Adding an additional MultiDSP service Admin slot -r 1 Page Configuring T1 Cards Introduction to T1 Introduction to T1Nailed or unchannelized T1 Channelized line-side vs. trunk-side T1 Overview of T1 configuration Overview of T1 configurationSection Description of task Associated parameters NFAS-ID Configuring T1 Cards Making a profile the working profile Admin read t1 1 2Making a profile the working profile Assigning names to T1 line profiles Admin read t1 1 12 0 admin set name = T1 TrunkAssigning names to T1 line profiles Specifying the framing and encoding Configuring Isdn PRI signalingAdmin set line enabled = yes Enabling a line Configuring overlap receiving on PRI lines Configuring Isdn network-side emulationConfiguring Isdn network-side emulation Configuring overlap receiving on PRI lines Configuring inband robbed-bit signaling Configuring inband robbed-bit signaling Admin set robbed-bit-mode = wink-start Admin set signaling-mode = inbandAdmin set default call type = voice Configuring Nfas Configuring NfasConfiguring a single Nfas group Configuring multiple Nfas groups T1/ shelf-1 slot-2 2 read Configuring Isdn Nfas for Japanese switch types Admin read t1 1 5 Admin set front-end-type = dsx admin set dsx-line-length = Configuring clockingConfiguring the front-end transceiver Configuring clocking Configuring channel usage Configuring channel usage Assigning telephone numbers to switched channels Assigning telephone numbers to switched channelsAdmin list line channel Read system Configuring trunk groupsAdmin set 13 phone = Admin set use-trunk-groups = yes admin write Admin set trunk-group = 4 admin write Configuring nailed channelsConfiguring a back-to-back T1 connection Configuring nailed channels Specifying analog encoding for Taos unit codecs Configuring specialized optionsSpecifying analog encoding for Taos unit codecs Admin list line-interface enabled = no Sample T1 configurationSample T1 configuration Admin set physical-address = 1 2 Default Call-Route profiles Overview of supported features Configuring T1 FrameLine CardsIntroduction to T1 FrameLine Routing protocols Overview of T1 FrameLine configurationOverview of T1 FrameLine configuration Frame Relay Configuring the clock source Configuring the clock sourcePage Configuring E1 Cards Nailed or unchannelized E1 Overview of E1 configurationIntroduction to E1 Isdn Primary Rate Interface PRI Overview of E1 configuration Understanding configuration requirements Understanding configuration requirements Admin read e1 1 2 Assigning names to E1 line profiles Assigning names to E1 line profiles Specifying the framing Configuring a back-to-back connectionAdmin read e1 1 12 0 admin set name = E1 Trunk Admin set back-to-back = truefalse Admin set line signaling-mode = signalingmode admin write Specifying E1 signalingSpecifying E1 signaling Admin set line frame-type = G7032DSD4esf Adminlist line-interface Adminread e1 1 15 Admin read e1 1 13 Configuring E1 R1 signalingConfiguring E1 R2 signaling Configuring E1 R1 signaling Configuring E1 R2 signaling Configuring Dpnss signaling Configuring Dpnss signaling Admin set loop-avoidance = Configuring the front-end E1 transceiverAdmin set front-end-type=short-haullong-haul Admin read system System read Admin set trunk-group = Admin list Admin read e1 1 1Admin set trunk-group = Admin set channel = nailed admin set nailed = 3 admin write Default Call-Route profiles Page Introduction to E1 FrameLine Configuring E1 FrameLine Cards Overview of E1 FrameLine configuration Overview of E1 FrameLine configuration Example E1 FrameLine configuration Administrative profiles for E1 FrameLine Administrative profiles for E1 FrameLine Device-State profile Administrative commands and status informationAdmin-State profile Administrative commands and status information Configuring the clock source Overview of T3 configuration Configuring T3 CardsIntroduction to T3 Understanding T3 configuration requirements Understanding T3 configuration requirementsParameter Difference Understanding T3 slot card profiles Understanding T3 slot card profilesT3 profile Call-Route profile T1 profiles Assigning a name to a T3 profileAssigning a name to a T3 profile Admin read t3 1 12 0 admin set name = T3 Trunk Configuring the T3 physical linkAdmin read t3 1 2 Page Overview of Swan configuration Configuring Serial WAN Swan CardsIntroduction to Swan Understanding Swan card configuration requirements Understanding Swan card configuration requirementsElement Explanation Element Admin dir Swan Assigning a name to a Swan profile Admin read Swan 1 12 0 admin set name = SWAN1 admin writeAdmin read Swan 1 2 Admin set line nailed-group= Specifying the Swan internal clock speed Adminread swan 1 13Adminlist line-config Adminlist clocking Frame Relay configuration Frame Relay configurationAdminset divider=4 adminset exp=2 Supported features Configuring Unchannelized DS3 CardsIntroduction to unchannelized DS3 Overview of unchannelized DS3 configuration Overview of unchannelized DS3 configurationUsing the UDS3 profile Configuring the UDS3 physical link Admin read uds3 1 2 Configuring the UDS3 physical linkAdmin set name = uds3-LA admin set enabled = yes Page Overview of DS3-ATM settings Configuring DS3-ATM Cards Overview of DS3-ATM settings Configuring DS3-ATM Cards Configuring redundant cards Examples of DS3-ATM configurationsExamples of DS3-ATM configurations Looping back the line Overview of OC3-ATM settings Configuring OC3-ATM CardsIntroduction to OC3-ATM Overview of OC3-ATM settings Configuring OC3-ATM Cards MAX TNT/DSLTNT Using OC3-ATM ports as a clock source Using OC3-ATM ports as a clock source Example of an OC3-ATM configuration Example of an OC3-ATM configuration Introduction to STM-0 Configuring STM-0 Cards Admin read stm 1 7 1 STM/ shelf-1slot-7 1 read Using STM and T1 profilesSample STM-0 configurations Example of configuring an STM profile Sample STM-0 configurations Example of configuring a T1 data trunkPage Introduction to DSL technologies Configuring DSL ConnectionsIdsl overview Upstream rate Downstream rate Distance Wire gauge Upstream rate Downstream rate DistanceAdsl overview Introduction to DSL technologies Sdsl overview Wire gauge AWG Data transfer rate Distance Configuring switched connections DSL configurationDSL configuration Admin set telco call-type = off Configuring nailed connectionsConfiguring nailed connections Admin read connection dslpipe-1 Parameter Cards it applies to Configuring data transfer ratesConfiguring data transfer rates for Adsl lines Configuring data transfer rates Admin list line-config Configuring data transfer rates for Sdsl linesAdmin read adsl-cap 2 3 2 ADSL-CAP/shelf-2slot-3 2 read Admin set enabled=yes Admin set max-rate=1552000 Configuring per-session data transfer ratesAdminread sdsl 2 1 Adminset enabled=yes Admin read conn adslpipe-1 Configuring per-session data rates using modem rate control Admin set tx-data-rate-limit=64000 Configuring per-session data rate limitsAdmin read connection sdsl-1 CONNECTION/sdsl-1 read Admin set rx-data-rate-limit=64000 Configuring DSL Connections Dsltnt Configuring DSLPipe Plug and Play Configuring DSLPipe Plug and PlayHow Plug and Play works Dhcp server requirements DSLPipe unit obtaining its configuration Plug and Play This menu These are the defaults DSLPipe default configurationTftp server requirements Admin list bootp-relay Configuring the DsltntConfiguring Bootp Relay Configuring the Sdsl profile Admin set link-type = dce Configuring a Frame Relay profile Configuring a Connection profile Configuring Idsl voice connections Incoming calls Configuring the Idsl profileOutgoing calls Configuring a Connection profile for the remote device Configuring trunk groups Configuring the Configure profile Configuring the PipelineChan Usage=Switch/Switch My Num A=55105554444 Sample Frame Relay Idsl configuration Sample DSL configurationsSample DSL configurations Admin list .. telco-options Configuring the DsltntAdmin set encapsulation-protocol=frame-relay Admin set frame-relay-profile=idsltnt-fr Admin set nailed-group = Configuring the Frame Relay profileAdmin read idsl 1 7 18 IDSL/ shelf-1slot-7 18 read Admin set channel-usage = nailed-64-channel My Addr=192.1.2.1/24 Configuring a static route to the gatewayConfiguring the Pipeline Chan Usage=Leased/Unused Sample Adsl nailed PPP connection Configuring the Connection profileName=idsl-fr List the IP-Options submenu admin list ip-options Configuring the Adsl profile Configuring the DSLPipe Rem Addr=104.178.115.163/24 My Addr=10.10.73.1/24 Example Sdsl setup with interface-based routing Admin new ip-route sdsl-pipeline Configuring the IP-Route profile Configuring the Frame-Relay profile LAN Adrs=192.168.23.142/30 Configuring the DSLPipe-SRem Addr=192.168.23.142/30 FR Prof=Frame Relay Name=Frame Relay Example Sdsl setup with system-based routing Specify the encapsulation type as Frame Relay Configuring the Sdsl profile Rem Addr=192.168.215.135/24 Page Introduction to SS7 Signaling System 7 SS7Platform Ipdc Asgcp Q.931+ Taos unit as terminator of data calls in an SS7 network System requirements for SS7 operationsSystem requirements for SS7 operations Taos unit terminating voice and data calls in an SS7 network Continuity tests Configuring an SS7 signaling gatewayInterface between a signaling gateway and Taos unit Configuring an SS7 signaling gateway Parameter Specifying the SS7 control protocol Configuring transport-layer options Operations. This parameter is currently not used System IP address considerations T1 lines as SS7 data trunks Example of a basic configuration Example of configuring a T1 data trunk Example of configuring a T3 card for SS7 dataUsage for SS7 data trunks E1 lines as SS7 data trunks SS7 link establishment timer Bearer capability for SS7 calls using IpdcTwo-wire continuity check on T1 and E1 lines Incoming-Procedure Outgoing-Procedure Element Description Outgoing continuity tests on T1 and T3Digital milliwatt tone support on T1 and T3 Analog milliwatt tone and variable tone support Reporting VoIP call statistics When the unit reports VoIP statistics Admin ss7nmi -s Statistics and error reporting on SS7 connectionsSs7nmi debug-level command Command output when no errors are detected Output field Description ASG Command output showing errors Cause codes for SS7 Asgcp calls to the Taos unit Cause codes for SS7 Asgcp calls to the Taos unitOutput field Ipdc generation of a globally unique call ID SS7 Ipdc support for call ID and disconnect cause codesGlobal-Call-ID parameter Code Definition Start and Stop recordsDisconnect cause codes Event CUG Snmp support for SS7 Snmp support for SS7Event Code Definition Page Network, host, and dual-purpose devices Configuring Call Routing Field Contains Understanding the call-routing databaseUnderstanding the call-routing database Network slot cards Host slot cards Dual-purpose slot cards Modem usage and database sort order How call routes affect device usageField Shelfslotitemlogical item Hdlc channel usage and database sort order Working with Call-Route profiles Call-Route profile settingsWorking with Call-Route profiles Trunk line usage and sort order Outbound call routing by trunk group Trunk group 8 connecting to a Taos unit Example with two E1 lines in an MFR bundle Multilink Frame Relay requirements with Hybrid Access Example with six E1 lines in an MFR bundle Concentrating multilink calls on one Hybrid Access card Another way to route incoming calls deprecated Another way to route incoming calls deprecatedDedicating Series56 cards to modem processing Enabling Series56 cards to handle Hdlc processing Localization of call routes within a quadrant Call routing algorithmsCall routing algorithms Matching call information to a database entry How the system finds a route Third pass telephone numbers Details of how a route is chosenFirst pass trunk group number Second pass Isdn subaddresses Fifth pass source device addresses Fourth pass destination device addressesLast pass comparison routing type Configuring Call Routing Provisioning the switch for T1 access Provisioning the SwitchTranslation Optional or required What you need from your E1 service provider What you need from your T1 service providerWhat you need from your T1 service provider CAS IndexPage DNS DSL Page Idsl OC3-ATM PRI Page Phone numbers, 7-19trunk groups TCP/IP WAN