Ln -s . usr Ln -s . tftpboot | Nortel Networks 14.2 manual

Configuring Remote Access for AN and Passport ARN Routers

Restricting TFTP Access to Specified Directories

To restrict TFTP access to a specific directory:

1.Log in to your UNIX workstation as root.

2.Insert the appropriate line in the /etc/inetd.conf file.

The examples in Table 2-4 restrict access to the /tftpboot directory. You can substitute any directory you want.

Table 2-4.	Restricting TFTP Access to Specified Directories

Operating
System	Sample Line to Insert in /etc/inetd.conf File, or Other Instruction

SunOS	tftp dgram udp wait root /usr/etc/in.tftpd in.tftpd -s
	/tftpboot

Solaris	tftp dgram udp wait root /usr/sbin/in.tftpd in.tftpd
	-s /tftpboot

HP-UX	tftp dgram udp wait root /etc/tftp tftp -s /tftpboot

AIX	Use the System Management Interface Tool (SMIT) to configure TFTP.
	For instructions, see the IBM guides on TCP/IP daemons and TFTP.

3.Create a symbolic link in the specified directory for every startup file path name.

For example, to set up symbolic links in the /tftpboot directory:

a.Enter the following command to move to the /tftpboot directory: cd tftpboot

Note: Do not insert a slash (/) in the cd tftpboot command. A symbolic link cannot contain references to directories above the directory specified in the tftpd command line.

b.Enter the following commands to create symbolic links:

ln -s . usr

ln -s . tftpboot

2-10	308614-14.20 Rev 00

Image 50

Nortel Networks 14.2 manual Restricting Tftp Access to Specified Directories, Ln -s . usr Ln -s . tftpboot

Contents

Configuring Remote Access for AN and Passport ARN Routers Restricted Rights Legend Copyright 1999 Nortel NetworksTrademarks Statement of Conditions Nortel Networks NA Inc. Software License Agreement Iii 308614-14.20 Rev Contents Chapter Setting Up a Unix Boot Server Chapter Managing ANH Repeater Ports Appendix C Using the Quick-Start Local Boot Procedure Figures Page Tables Page Preface Before You Begin Ping Text ConventionsBold text Example Enter show ip alerts routes Acronyms Italic text Ccitt Hard-Copy Technical Manuals How to Get Help Technical Solutions Center Telephone Network Configuration and Management Tools Chapter Understanding Tools and Options Router Startup Procedure Startup Files Startup Options Router Startup Files Summary of Startup Options for AN/ANH and ARN Routers Pcmcia Boot Process Netboot Process Configuring Remote Access for AN and Passport ARN Routers Calculating an IP Address Direct Access PVC or Standard PPP Key AN/ANH/ARN Obtaining the Kernel and Configuration Files Obtaining the Configuration File Obtaining the Kernel File Local Boot Process Establishing an IP Network Interface Preparing for the Initial Startup Selecting the Initial Startup Option EZ-Install Local Boot Providing a Tailored Configuration File Netboot Recommendations NetbootSelecting the Routine Startup Option Directed Netboot Local Boot Steps for Completing Startup Options EZ-Install Netboot Directed Netboot Local Boot Topic Chapter Setting Up a Unix Boot ServerTo Configure This Startup Option Complete These Sections Configuring BootPD Setting Up a BootP ServerSetting Up BootP Sockets Copying BootPD on Sun Workstations Enter the following command cp /usr/wf/bin/bootpd /etc Setting Up BootPD to RunSetting Up BootPD to Respond to AN/ANH and ARN Routers Log in to the Unix workstation as root Cp /usr/wf/config/bootptab /etc Save the bootptab file changesEditing the bootptab File BootPD Tags for a Router Host Name Required or Tag Optional Value Example BootPD Tags for a Kernel File Name Required Tag Or Optional Value Example Verifying Consistent BootP Service Sample bootptab File T130=0x0004\ T129=/rte3/cfg/ANChic.cfg\ tc=general Providing Tftp Access to All Directories Setting Up a Tftp ServerSetting Up Tftpd Providing Tftp Access to All Directories Ln -s . usr Ln -s . tftpboot Restricting Tftp Access to Specified DirectoriesRestricting Tftp Access to Specified Directories Editing the /etc/inetd.conf File Setting Up Static Routes to Next-Hop RoutersAdding a Tftp User for an HP 9000 Workstation Tftpuseridgroupno.//bin/false Log in as root Verifying the RoutesLoading the Changes into Memory Netstat -r What to Do Next Kill -1Page Configuring Netboot Services with Site Manager Preparing Configuration and Image Files Creating Configuration Files Module Name Mnemonic Connector Type Configuration Manager Module Names for AN and ANHARN Base Module Configurations Base Module Site Manager Module Name Expansion Module Site Manager Module Name ARN Expansion Module ConfigurationsARN Adapter Module Configurations Adapter Module Site Manager Module Name Preparing an Image Choose Protocols Choose Global Protocols Enabling Netboot or Directed NetbootSite Manager Procedure You do this System responds Configuring Netboot Services with Site Manager Adding a Netboot or Directed Netboot Interface Choose Interfaces Configuring a Netboot or Directed Netboot Interface Setting Up Routing Paths for Netboot Enabling Router Interfaces Enabling BootP Relay in a Sample Network Choose Protocols Creating BootP Relay Agent Forwarding TablesChoose Edit Circuit Choose Relay Agent Interface Table Input IP Address Output IP Address Creating the BootP Client Interface Table IP Address Dlci Number Page Chapter Configuring Netboot Client Services For This Startup Configuration Complete These Sections Using Netboot Configuration Commands Bconfig -d image config Setting the Boot ConfigurationUsing the bconfig Command Format Bconfig image config local network TFTPhost TFTPpathname Examples of Using the bconfig Command Bconfig image network bconfig config network Fr -annexd -lmi -annexa-intclk Setting the Netboot Interface ConfigurationConfiguring a Serial Interface for Network Booting Ifconfig Command Options for a Serial Interface Configuring an Ethernet Interface for Network Booting Ifconfig Command Options for an Ethernet Interface Configuring an ARN Token Ring Interface for Network Booting Ifconfig Command Options for an ARN Token Ring Interface Enabling and Disabling Interfaces with the ifconfig Command Examples of Using the ifconfig Command Verifying Your Configuration Getcfg What to Do Next Page Chapter Managing ANH Repeater Ports Enabling and Disabling ANH Repeater Ports Tools Choose Configuration ManagerChoose Setup Repeater Choose Port Status Port ANH Port Status Window Port ANH Port Status Window Choose Group Parameters Testing and Resetting ANH Repeater PortsReset SelftestPage Appendix a Site Manager Parameters Parameter Boot Config From Network Netboot and Directed Netboot ParametersParameter Boot Image From Network Parameter Boot Config Pathname Parameter Boot Server AddressParameter Boot Image Pathname Parameter Connector IP Address Netboot Interface ParametersParameter Connector Parameter Slot Parameter Connector Protocol Mask Parameter Connector Subnet MaskParameter Connector Next Hop Parameter Connector State Parameter Output IP Address BootP Relay Agent Interface ParametersParameter Input IP Address Parameter Dlci Number BootP Client Interface Address ParametersParameter IP Address Parameter Selftest Parameter ResetRepeater Port Group Parameters Page Appendix B Troubleshooting Network Boot Problems Solving Startup Problems Router Fails to Get IP Address Upstream Router Not Receiving BootP RequestsUpstream Router Not Sending BootP Responses Router Fails to Netboot See Verifying the BootP Server Setup on page B-14 Router Not Sending BootP ResponsesBootP Server Not Sending BootP Responses Router Fails to Perform Directed Netboot Router Netboots, but Fails to Load Applications Get wfDrivers.*.0 Get wfTokenRingEntry.*.1.connector Get wfSyncEntry.*.1.connectorGet wfCSMACDEntry.*.1.connector Set wfDrivers.wfTMS380Load.0 2147483648commit Displaying Messages from the Router Console Identifying Remote Connectivity ProblemsDisplaying Statistics and Error Messages Guidelines for Using Packet Capture Guidelines for Using a LAN Protocol Analyzer Resolving Connectivity Problems Displaying Parameter Settings Troubleshooting Network Boot Problems Debugging the BootP Server Compare the bootptab file with the bootpd.dmp file Table B-1 BootP Messages Message Explanation Verifying the BootP Server Setup Bootptab file for an ARN should contain these entries Displaying the BootP Server IP Routes Netstat -rn grep -i -n IPaddress Quick Get Instructions Get wfBootpRelayIntfEntry.*.IPaddressDisplaying the Number of Packets Forwarded and Dropped Select the following path Maintaining the Router Software Upgrading the Software Image Restoring a Local File System Setup Hints Hints and Notes Implementation Notes Appendix C Using the Quick-Start Local Boot Procedure Configuring Remote Access for AN and Passport ARN Routers What Is Quick-Start?Using the Worksheets Fill out one Wide Area Protocol worksheet Using the Quick-Start Local Boot ProcedureFill out the Global Information worksheet completely Prompt Options Your Response Global Information WorksheetGlobal Information Worksheet Using the Quick-Start Local Boot Procedure Router Protocol Worksheets RIP Worksheet Ospf Worksheet Nbma Enter a router priority value. The lower Wide Area Protocol Worksheets DCE Frame Relay Worksheet PPP Worksheet See Configuring PPP Services for Requested Information Options Your Response Using the Quick-Start Local Boot Procedure Smds WorksheetRunning the Quick-Start Script Enter Manager to log Restart the router by entering bootEnter dir to check the contents of the flash memory card Follow the script online Save the configuration file Task Action Details To cancel the test, type q Symbols Index Index-2 Index-3 Index-4 Index-5 Index-6 Index-7