Perle Systems P850 Configure PPP Security

Applications

49

Configure PPP Security

The P850 provides support for both PAP and CHAP PPP security

authentication. An outgoing user name, PAP password , and CHAP

secret are defined that the P850 will use when responding to an

authentication request from a remote site PPP router.

The cold start defaults for the security user name and passwords are as

follows. These defaults will exist when the P850 is first started before

and configuration is entered, and after a Full Reset has been performed.

These default values are also set when the P850 is placed in TFTP

Network load mode for upgrading the operating software via TFTP

transfers. Care should be taken when upgrading a group of P850s that

have security levels set.

Default user name is the same as the default device name.

Default PAP password and CHAP secret are both set to “none”.

The complete security configuration for both incoming and outgoing

calls is defined within the Security menu of the WAN Set up section.

7Security Level

Location: Main

Ä Configuration

Ä WAN Set up

Ä Security Set up

Ä Security Level

The security level defines the type of security that

this P850 will request when a remote site PPP

router attempts to establish a PPP connection. The

security may defined as none, PAP, or CHAP.

When a security level is defined on this P850, an entry for each remote site

PPP router that may be connected to this P850 must be placed in the

security database. The security database is used to store the user names and

passwords of the remote site PPP routers.

Contents

Main Federal Communications Commission (FCC) Canadian Emissions Standard ICES-003 Page Page Page Page Page Contents 1 - I Unpack the P850 Select a Site Identify the Connectors Connect to the Console Make the LAN Connections Make the WAN Link Connection Page Power Up the Router Login and Enter the Required Configuration Mandatory Configuration Setting the Link Interface Type (Universal WAN only) Setting the T1/E1Parameters (T1/E1 WAN only) Page Page Installation 14 Identify the Status LEDs Rx Power LAN Tx Page 2 - TYPICAL APPLICATIONS & HOW TO CONFIGURE THEM Managing the P850 Using Menus Conventions Basic Frame Relay Configuration 7 Auto Learning the Frame Relay Configuration Manual Configuration - LMI Type 7 Quick Start Frame Relay 7 Basic Leased Line Configuration 7 Quick Start PPP Leased Line Connections 7 Page Should You Bridge or Route? Configure as an Ethernet Bridge 7 Page Configure as an Ethernet IP Router 7 Define an IP Default Gateway 7 Define an IP Static Route 7 Define an IP Subnet Mask Page Page Configure as an Ethernet IPX Router Novell Servers in Both Locations Page Novell Servers in One Location Only 7 PPP Link Configuration Overview Numbered Links Unnumbered Links Configure Dynamic Host Configuration Protocol 7 Page Configure Network Address Translation (NAT) 7 Configure PPP Security 7 Configure Firewall Page 7 Dest IP Address Destination Mask Source IP Address Source Mask Page Configure Remote Site Profiles for PPPoE Page Page Page QOS - Priority Queuing Location: Main Page 3 - INTRODUCTION TO FILTERING MAC Address Filtering Pattern Filtering Page Page Popular Filters Banyan IP Router NetBIOS over TCP Other interesting TCP Ports APPENDIX A MENU TREES Configuration Menu Tree 4] Access Set-Up LAN IPX Set-Up Usage Set-Up Menu Tree software release: F5P6.04.xx Firewall Set-Up LAN / WAN Firewall Set-Up Designated Servers APPENDIX B OCTET LOCATIONS ON ETHERNET FRAMES Page Octet Locations on Ethernet Frames 72 ETHERNET Type Codes Page Page APPENDIX C SERVICING INFORMATION Opening of the case is only to be performed by qualified service personnel. WARNING ! Opening the case Identifying the Internal Components J2 CPU J1 CPU Sanity Timer Force ZMODEM Software Load To Clear a Lost Password Page WAN Interface Connection Pinout Information CSU/DSU V.35 Module: CSU/DSU Module: T1/E1 Module: T1/E1 UNIVERSAL WAN Module: 83 V.35 Link Pinouts Figure C - 6 V.35 Link Pin Outs Page RS232C / V.24 Link Pinouts Con 86 RS530 / RS422 Link Pinouts Figure C-8 RS530 / RS422 Link Pinouts V.11 / X.21 Link Pinouts 88 V.11 / X.21 DB25 to DB15 Connector Cable Page 90 RS232 / V.24 Null-Modem Cable Figure C-12 RS232 / V.24 Null-Modem Cable 91 RS530 / RS422 Null-Modem Cable Figure C-13 RS530 / RS422 Null-Modem Cable APPENDIX D SOFTWARE UPGRADES