Paradyne 916x, 926x Limiting Telnet Access

Security

6-3

9161-A2-GH30-30 April 1998

Limiting Telnet Access

The T1 access unit provides the following methods for limiting access through a

Telnet session:

HDisabling Telnet access completely.

HRequiring a user login ID and password.

HAssigning an access level for the port.

"Procedure

To limit access through a Telnet Session:

1. Follow this menu selection sequence:

Main Menu

→

Configuration

2. Select the desired configuration area and press Return.

Load Configuration From

→

[Current Configuration/

Customer Configuration 1/Customer Configuration 2]

3. Follow this menu selection sequence, pressing Return after each selection:

Configuration Edit/Display

→

User Interface

→

Telnet/FTP Session

The Telnet/FTP Session Options screen appears.

4. Select and set the following configuration options, as appropriate.

To . . . Set the configuration option . . .

Disable Telnet Telnet Session to Disable.

Require a user’s login ID and

password Telnet Login Required to Enable.

NOTE: User login ID and password

combinations must be defined.

Refer to

Creating a Login

on

page 6-8.

Assign an access level for all Telnet

sessions Session Access Level to Level-1, Level-2,

or Level-3.

5. Press Ctrl-a to switch to the screen function key area.

6. To save changes, select Save and press Return.

7. Select the configuration area where you want to save the changes to and

press Return.

Save Configuration To

→

[Current Configuration/

Customer Configuration 1/Customer Configuration 2]

When Save is complete, Command Complete appears at the bottom of the

screen.

Contents

Main Page Page C Important Safety Instructions must D Government Requirements United States Notice to Users of the Telephone Network Warranty, Sales and Service Information Facility Interface Codes Code Description E !WARNING: Canada Notice to Users of the Canadian Telephone Network Warranty, Sales and Service Information i Contents About This Guide 1About the T1 Access Mux 2Management and Control 3Applications 4User Interface 5Setting Up iii 6Security iv 7Displaying System Information 8Operation and Maintenance v 9Troubleshooting vi AMenus and Configuration Worksheets vii BIP Addressing CSNMP Traps DSNMP Cross-Reference ECables, Connectors, and Pin Assignments Page ix About This Guide Document Purpose and Intended Audience Document Summary Section Description x Conventions Used Convention Indicates xi Product-Related Documents Document Number Document Title xii Reference Documents 1-1 About the T1 Access Mux 1 1-2 Components About the T1 Access Mux 1-3 Fully Loaded 5-Slot Housing Fully Loaded Access Carrier 496-1520 1-4 6 97-15645 April 1998 About the T1 Access Mux 1-5 9109 Sync Data Application Module (APM) Installation Instructions 9109 Dual DSX Application Module (APM) Installation Instructions 9109 E&M Analog Voice Application Module (APM) Installation Instructions 9109 FXO Analog Voice Application Module (APM) Installation Instructions Features 1-7 Menu-Driven User Interface. SNMP (Simple Network Management Protocol) Management. LED (Light-Emitting Diode) Monitoring. 1-8 Embedded Data Link (EDL) COM Port Facility Data Link (FDL) Direct Data Link (DDL) 1-9 Menu-Driven User Interface. LEDs. Test jacks. Front Panel. 1-10 2-1 Management and Control 2 IP Addressing Configuring Local Management Control 2-2 Creating a Management Link Through the COM Port Communication Port Port Use Set to Net Link and Port Type Set to Asynchronous Port Use Set to Net Link and Port Type Set to Synchronous 2-3 Configuring an External Device (Connected to the COM Port) External Device (COM Port) 2-4 Configuring End-to-End Management Control Network Interface Management Control Using the ESF FDL 2-5 Management Control Using an EDL Page 3-1 Applications 3 3-2 T1 Access Unit with High Speed Data 3-3 T1 Access Unit with High Speed Data and E&M 3-4 T1 Access Unit with High Speed Data and APL 3-5 T1 Access Unit with High Speed Data, FXS and E&M 3-6 T1 Access Unit with High Speed Data and Drop & Insert 3-7 Channel Bank Replacement and Additions 3-8 Off-Premises Extension (OPX) Direct Inward Dial (DID) 3-9 Video Conferencing 3-10 Consolidated T1 Access of DDS Circuits 4-1 User Interface 4 Quick Reference Introduction Async Terminal User Interface Access Network Management Screen Field Types Page 4-4 Screen Format Description 4-5 Navigating the Screens Keyboard Keys Use the following keyboard keys to navigate within the screens. To . . . Press . . . 4-6 Screen Function Keys 4-7 Selecting from a Menu FXSD fxsd abc Quick Reference Switching Between Screen Work Areas Accessing the User Interface 4-9 Page 5-1 Setting Up 5 Setting Up for SNMP Management Configuring for Alarms and Traps Assigning Cross Connections Considerations When Setting Up Logins 5-3 Adding System Identity Information 5-4 Setting Date and Time Date & Time Configuring the T1 Access Unit 5-5 Recommended Order of Configuration Menus and Configuration Worksheets Configuration Option Areas Accessing and Displaying Configuration Options 5-6 Changing Configuration Options Saving Configuration Options 5-7 Configuring T1 and DSX-1 Interfaces Configuring the Network Interface Network 5-8 Table 5-1. Network Interface Options (2 of 7) 5-9 Table 5-1. Network Interface Options (3 of 7) 5-10 Table 5-1. Network Interface Options (4 of 7) 5-11 Table 5-1. Network Interface Options (5 of 7) 5-12 Table 5-1. Network Interface Options (6 of 7) 5-13 Table 5-1. Network Interface Options (7 of 7) 5-14 Configuring the DSX-1 Interface DSX-1 5-15 Table 5-2. DSX-1 Interface Options (2 of 3) 5-16 Configuring Ports Copying Port Configurations Configuring Sync Data Ports Sync Data Ports 5-17 Table 5-3. Synchronous Data Port Options (1 of 7) 5-18 Table 5-3. Synchronous Data Port Options (2 of 7) 5-19 Table 5-3. Synchronous Data Port Options (3 of 7) 5-20 Table 5-3. Synchronous Data Port Options (4 of 7) 5-21 Table 5-3. Synchronous Data Port Options (5 of 7) 5-22 Table 5-3. Synchronous Data Port Options (6 of 7) 5-23 Table 5-3. Synchronous Data Port Options (7 of 7) 5-24 Configuring Voice Ports Voice Ports 5-25 Table 5-4. E&M Voice Slot ss Port p Options (2 of 2) System & NAM Identity Status 5-26 For FXO Voice Ports: Table 5-5. FXO Voice Slot ss Port p Options (1 of 3) 5-27 Table 5-5. FXO Voice Slot ss Port p Options (2 of 3) 5-28 Table 5-5. FXO Voice Slot ss Port p Options (3 of 3) 5-29 For FXS Voice Ports: Table 5-6. FXS Voice Slot ss Port p Options (1 of 4) 5-30 Table 5-6. FXS Voice Slot ss Port p Options (2 of 4) 5-31 Table 5-6. FXS Voice Slot ss Port p Options (3 of 4) 5-32 Configuring OCU-DP Ports OCU-DP Ports 5-33 Table 5-7. OCU-DP Options Slot ss Port p Options (2 of 3) 5-34 Table 5-7. OCU-DP Options Slot ss Port p Options (3 of 3) 5-35 Copying Port Configurations Copy Ports 5-36 Assigning Cross Connections 5-37 Page 5-39 Assigning DSX-1 Timeslots to the Network Interface yy p ss yy DSX-1 Signaling Assignments and Trunk Conditioning 5-41 Table 5-8. Signaling and Trunk Conditioning Values (1 of 2) Network Side Value Meaning DSX-1 Side Default Value 5-42 Table 5-8. Signaling and Trunk Conditioning Values (2 of 2) Network Side Value DSX-1 Side Default Value Meaning 5-43 Assigning Network 2 Timeslots to Network 1 Interface Timeslots DSX-1 Signaling Assignments and Trunk Conditioning Network to Network Assignments Network to Network Signaling Assignments and Trunk Conditioning 5-44 Assigning Voice Ports to DSX-1 or Network Interface Timeslots Voice Port Assignment Assigning Sync Data Ports 5-45 Sync Data Port Assignment 5-46 Assigning OCU-DP Data Ports NOTES: OCU-DP Port Assignment 5-47 Clearing Port Assignments Clear Assignments 5-48 Setting System Options System Options 5-49 Table 5-9. System Options (2 of 4) 5-50 Table 5-9. System Options (3 of 4) 5-51 Table 5-9. System Options (4 of 4) 5-52 Setting User Interface Options Setting Up the Communication Port Communication Port Options 5-53 Table 5-10. Communication Port Options (2 of 5) 5-54 Table 5-10. Communication Port Options (3 of 5) 5-55 Table 5-10. Communication Port Options (4 of 5) 5-56 Table 5-10. Communication Port Options (5 of 5) 5-57 Setting Up the Communication Port to Support an External Device External Device 5-58 Table 5-11. External Device (COM Port) Options (2 of 3) x.x 5-59 5-60 Control Characters Sequence ASCII Hex 5-61 Setting Up to Support a Telnet or FTP Session 5-62 Table 5-12. Telnet/FTP Session Options (1 of 2) 5-63 Table 5-12. Telnet/FTP Session Options (2 of 2) 5-64 Configuring for Alarms and Traps Alarm Table 5-13. Alarm Options (1 of 3) 5-65 Table 5-13. Alarm Options (2 of 3) 5-66 Table 5-13. Alarm Options (3 of 3) 5-67 Setting Management and Communication Options Setting Communication Protocol Communication Protocol 5-68 Table 5-14. Communication Protocol Options (2 of 3) 5-69 Table 5-14. Communication Protocol Options (3 of 3) 5-70 Setting Up for SNMP Management General SNMP Management Table 5-15. General SNMP Management Options (1 of 2) 5-71 Table 5-15. General SNMP Management Options (2 of 2) 5-72 Setting Up SNMP NMS Security SNMP NMS Security Table 5-16. SNMP NMS Security Options (1 of 2) 5-73 Table 5-16. SNMP NMS Security Options (2 of 2) 5-74 Setting Up for SNMP Traps SNMP Traps 5-75 Table 5-17. SNMP Trap Options (1 of 3) 5-76 Table 5-17. SNMP Trap Options (2 of 3) , 5-77 Table 5-17. SNMP Trap Options (3 of 3) 5-78 Setting Up and Placing a Call 6-1 Security 6 Limiting Access Limiting Async Terminal Direct Access 6-2 6-3 Limiting Telnet Access 6-4 Controlling External Device Access 6-5 Controlling SNMP Access Disabling SNMP Access 6-6 Assigning SNMP Community Names and Access Levels 6-7 Limiting SNMP Access Through IP Addresses 6-8 Save Configuration To Setting Up for SNMP Management [Current Configuration/ Customer Configuration 1/Customer Configuration 2] Creating a Login Admin Login 6-9 Deleting a Login Admin Login Page 7-1 Displaying System Information 7 Displaying System and NAM Identity Information 7-2 Displaying APM Identity Information Identity APM Displaying System and Test Status 7-3 Displaying Voice APM Status Voice Status 7-4 7-5 7-6 7-7 Displaying Cross Connect Status Cross Connect Status Assigning Cross Connections Displaying Network Channels 7-8 The Cross Connect Status Field (bottom) . . . Indicates . . . 7-9 Displaying DSX-1 Channels DSX-1 Channel Display 7-10 7-11 Displaying Port Assignments Port Assignment Display The following information is available for viewing. 7-12 Displaying Device Name and SNMP System Identification Information Viewing Network and Sync Data Performance Statistics AT&T Technical Reference (TR) 54016 What Statistics Can Be Collected? 7-13 Network Performance Statistics Sync Data Performance Statistics 7-14 Displaying Performance Statistics Selecting Performance Statistics Intervals for Display 7-15 9161-A2-GH30-30 April 1998 Example of Network Performance Statistics Screen Line 10 Line 13 Line 16 Line 18 Example of Sync Data Performance Statistics Screen Status Information System Status Messages 7-17 System Health and Test Status Messages Clear Device Fail test status system main 7-18 Table 7-2. Health and Status Messages (1 of 5) 7-19 Table 7-2. Health and Status Messages (2 of 5) 7-20 Table 7-2. Health and Status Messages (3 of 5) 7-21 Table 7-2. Health and Status Messages (4 of 5) p, cccccc cccccc p, cccccc Self-Test Results Messages 7-23 Table 7-3. Self-Test Results Messages (xxxxxxxx xxxxxxxx 7-24 Test Status Messages 7-25 Table 7-4. Test Status Messages (2 of 2) Message What It Indicates Page 8-1 Operation and Maintenance 8 Starting a Session Startup Logging In Logging In Logging Out Starting a Session Operation and Maintenance 8-3 Troubleshooting System Error System Status Displaying System Information Ending a Session 8-5 Supported SNMP Traps Dialing Out and Sending SNMP Traps 8-6 Alarm COM Port Call Setup Maintaining COM Port Directories Displaying Directory Numbers 8-7 Changing Directory Numbers COM Port Call Directories Changing Device Name 8-8 Hot Swapping of APMs APM Insertion 8-9 APM Removal NAM Removal Downloading Software File Transfer 8-10 Creating a Login Performing an Upgrade 8-11 IP address 8-12 Backing Up Your Configuration filename 8-13 Resetting the T1 Access Unit Resetting the T1 Access Unit from the Control Menu Reset Device Restoring Access to the User Interface 8-14 Resetting the T1 Access Unit from the Control Menu 9-1 Troubleshooting 9 Displaying System Information What Are the Troubleshooting Features? How Do I Know There Is a Problem? Test Jacks T1 NAM LEDs General Status LEDs Test Jacks 9-3 Network and DSX Interface LEDs Port 1 and Port 2 LEDs 9-4 T1 NAM Test Jack Functions on page 9-8 for more information on the test jacks. 9161 Single T1 NAM Test Jack Functions Test Jacks 9-5 9261 Dual T1 NAM Test Jack Functions Test Jacks LEDs 9-6 Dual DSX APM LEDs DSX 1 and DSX 2 Interface LEDs General Status LED Test Jacks 9-7 9109 Dual DSX APM Test Jack Functions on page 9-8 for more information on the test jacks. See 9-8 Test Jacks Equipment T1 Access Unit This card . . . Provides these test jacks . . . And provides these test access points . . . Internal Circuitry PBX Sync Data APM Front Panel LEDs 9-10 OCU-DP APM Front Panel LEDs Port (1 to 6) LEDs 9-11 Voice APM Front Panel LED Alarm Options System Alarm Relay System Alarm Relay Enable Alarms Viewing Alarm Messages ASCII Alarm Messages 9-13 ss. hours:minutes:seconds month/day/year hours:minutes:seconds 9-14 Table 9-1. ASCII Alarm Messages (2 of 5) 9-15 Table 9-1. ASCII Alarm Messages (3 of 5) 9-16 Table 9-1. ASCII Alarm Messages (4 of 5) hours:minutes:seconds ss. hours:minutes:seconds 9-17 Table 9-1. ASCII Alarm Messages (5 of 5) 9-18 System Error Messages x x 9-19 Automatic Dialing Out When an Alarm Occurs Changing Directory Numbers Displaying Directory Numbers Operation and Maintenance) 9-20 Manual Dialing Out When an Alarm Occurs Operation and Maintenance Changing Directory Numbers Displaying Directory Numbers COM Port Call Setup Tests Available 9-22 Interface Tests [Network Tests/DSX-1 Tests] 9-23 Line Loopback 9-24 Payload Loopback 9-25 Repeater Loopback 9-26 Remote Loopbacks Network Tests 9-27 Sending and Monitoring Pattern Tests [Network Tests/DSX-1 Tests] 9-28 Data Port Tests DTE Loopback (DTLB) 9-29 DTE Payload Loopback (DTPLB) 9-30 Data Channel Loopback (DCLB) V. 54 Remote Loopback 9-31 Remote FT1 Data Channel Loopback 9-32 Sending and Monitoring Pattern Tests Voice Port Tests 9-33 Digital Loopbacks Analog Loopbacks 9-34 Line Loopbacks Test Tones 9-35 Force and Monitor Signaling 9-36 You can monitor these fields . . . At these settings . . . 9-37 OCU-DP Tests Sending a Latching Loopback [OCU-DP Tests] 9-38 Starting/Stopping Other Loopbacks OCU-DP Local Loopback Tests 9-39 DDS CSU/DSU Latching/Nonlatching Loopback 9-40 OCU Loopback DS-0 Loopback 9-41 Line Loopback 9-42 Data Loopback OCU-DP Remote Loopback Tests Device Tests 9-43 Test Timeout Aborting All Tests Starting and Stopping a Test 9-44 Aborting All Tests Determining Test Status and Results Page A-2 Menu Status Configuration Edit/Display Control Load Configuration from: Recording Configurations A-4 Network A-5 DSX-1 Configuration Option Settings A-6 Sync Data Ports Configuration Option Settings A-7 A-8 A-9 Voice Ports Configuration Option Settings FXS Voice A-10 A-11 Copy Ports Configuration Option Settings System Options Configuration Option Settings A-12 User Interface Configuration Option Settings Default in [Bold] Communication Port A-13 A-14 Management and Communication Configuration Option Settings Default in [Bold] Communication Protocol See Table 5-14 Page A-16 Network T1 Interface ___ Channel Worksheet Network ___ Channel Allocation Signaling and Trunk Conditioning A-17 DSX-1 T1 Interface ___ Channel Worksheet DSX ___ Channel Allocation DSX-1 Signaling and Trunk Conditioning Page B-1 IP Addressing B Selecting an IP Addressing Scheme Page B-3 IP Addressing Scheme Examples Direct Management Links to Remote T1 Access Units B-4 Routing to Remote T1 Access Units on the Same Subnet B-5 Routing to Remote Access Units Using Different Subnets * B-6 Routing to Remote T1 Access Units Using Routers IP Addressing B-7 Assigning IP Addresses and Subnet Masks Page C-1 SNMP Traps C Trap: warmStart C-2 Trap: authentificationFailure Traps: linkUp and linkDown C-3 Interface Possible Cause Sync Data Ports Configuration Sync Data Ports Traps: Enterprise-Specific C-5 C-6 Interface For These Tests enterpriseTestStart/Stop Variable-Bindings D-1 SNMP Cross-Reference D italics . Table D-1. SNMP MIB to User Interface Command Cross-Reference (1 of 16) STATUS D-2 Table D-1. SNMP MIB to User Interface Command Cross-Reference (2 of 16) D-3 Table D-1. SNMP MIB to User Interface Command Cross-Reference (3 of 16) D-4 Table D-1. SNMP MIB to User Interface Command Cross-Reference (4 of 16) clear. D-5 Table D-1. SNMP MIB to User Interface Command Cross-Reference (5 of 16) nearRegisters D-6 Table D-1. SNMP MIB to User Interface Command Cross-Reference (6 of 16) nearRegisters farRegisters D-7 Table D-1. SNMP MIB to User Interface Command Cross-Reference (7 of 16) TEST D-8 Table D-1. SNMP MIB to User Interface Command Cross-Reference (8 of 16) D-9 Table D-1. SNMP MIB to User Interface Command Cross-Reference (9 of 16) D-10 Table D-1. SNMP MIB to User Interface Command Cross-Reference (10 of 16) D-11 Table D-1. SNMP MIB to User Interface Command Cross-Reference (11 of 16) D-12 Table D-1. SNMP MIB to User Interface Command Cross-Reference (12 of 16) D-13 Table D-1. SNMP MIB to User Interface Command Cross-Reference (13 of 16) D-14 Table D-1. SNMP MIB to User Interface Command Cross-Reference (14 of 16) none up/down internal D-15 Table D-1. SNMP MIB to User Interface Command Cross-Reference (15 of 16) read internal alarm D-16 E-1 Cables, Connectors, and Pin Assignments E COM Port E-2 COM Port-to-PC Cable COM Port-to-Terminal/Printer Cable E-3 COM Port-to-Modem Cable Gender Adapter/Changer E-4 LAN Adapter and Cables T1 Network Interface Cable E-5 DSX-1 Port Interface T1 Line Interface Cable E-6 EIA-530A Port Interface CCITT # Direction 25-Pin E-7 9161-A2-GH30-30 April 1998 EIA-530A-to-V.35 DTE Adapter Cable 25-Pin Plug Connector 12 Inches 34-Position Socket Connector E-8 E-9 EIA-530A-to-RS449 DTE Adapter Cable Used as an interface between the 25-position Sync Data Port connector and a DTEs RS449 connector. E-10 25-Pin Plug Pin # Direction 37-Pin Socket E-11 EIA-530A-to-X.21 DTE Adapter Cable Used as an interface between the 25-position Sync Data Port connector and a DTEs X.21 connector. 25-Pin Plug Pin # Direction 15-Pin Socket E-12 Voice APM Cables FXO/FXS Voice APM Connector E-13 E&M Voice APM Connector E-14 E&M 50-Pin Amphenol Connector (2 of 2) Port SignalFunctionPin E-15 Extension Cables E-16 E-17 E-18 E-19 E-20 E-21 E-22 E-23 E-24 E-25 OCU Port OCU Port Connector E-26 T1 Mass Termination Cable RJ48H Connector Pinouts for T1 Mass Termination Cable Circuits Line # T1 1 R1 2 T 3 R F-1 Technical Specifications F F-2 F-3 F-4 F-5 F-6 F-7 Page G-1 Equipment List G G-2 G-3 G-4 Equipment Feature Number Cable Part Number GL-1 Glossary GL-2 GL-3 GL-4 IN-1 Index Numbers A IN-2 B C IN-3 D E IN-4 F G H IN-5 I K L M IN-6 N O IN-7 P R IN-8 S IN-9 T IN-10 U V W