Avocent Access Router Cyclades-PR2000 Manual de usuario

Cyclades-PR2000Installation ManualAccess RouterCyclades Corporation

Cyclades-PR200010Chapter 1 - How to Use This ManualCyclades Technical Support and Contact InformationAll Cyclades products include limited free techn

100Chapter 12 - Filters and RulesCyclades-PR2000Steps necessary to activate filtering on the exterior router in the example:1 There are two interfaces

101Cyclades-PR2000Chapter 12 - Filters and RulesThe configuration for “Let e-mail in” is shown in the following figure (obtained by selecting CONFIG =

102Chapter 12 - Filters and RulesCyclades-PR2000Filter_list Name exterior_outRule 0Status EnabledScope PermitProtocol TCPSource IP Operator EqualSourc

103Cyclades-PR2000Chapter 12 - Filters and RulesInterior RouterIf an interior router exists in the network, the administrator may decide to use a Defa

104Chapter 12 - Filters and RulesCyclades-PR2000The configuration for “Stop forged packets” is shown in the following listing:Rules ListsRule List Nam

105Cyclades-PR2000Chapter 12 - Filters and RulesTraffic Rule ListsThere are three kinds of traffic rules that can be configured in CyROS. The first t

106Chapter 12 - Filters and RulesCyclades-PR2000The third determines which services have priority flowing through the router:3 Service Prioritization.

107Cyclades-PR2000Chapter 12 - Filters and RulesRules ListsRule List Name Rule Default List LinkedStatus Scope Type RuleListtraffic_1 Enabled TrafficF

108Chapter 12 - Filters and RulesCyclades-PR2000Rule 1Status EnabledFlow Priority 0Rule bandwidth 25%Bandwidth priority 2Protocol 0Source IP Operator

109Cyclades-PR2000Chapter 12 - Filters and RulesAn example showing the third type of traffic control is given in Figure 12.8. The network administrat

Cyclades-PR200011Chapter 1 - How to Use This ManualThe mailing address and general phone numbers for Cyclades Corporation are:Cyclades CorporationPho

110Chapter 12 - Filters and RulesCyclades-PR2000The configured rules will appear as shown in the following listing.Rules ListsRule ListNameRule Defaul

Cyclades-PR2000Chapter 13 - IPX 111CHAPTER 13 IPX (INTERNETWORK PACKET EXCHANGE)IPX is an alternative to IP, proprietary to Novell. When IPX is act

Cyclades-PR2000Chapter 13 - IPX 112Enabling IPXThe first step is to activate the IPX feature in the router. This is accomplished using the menu optio

Cyclades-PR2000Chapter 13 - IPX 113The parameter Send SAP Update can be set to Demand, Periodic, or None. This parameter affects both SAPand RIP. Pe

Cyclades-PR2000Chapter 13 - IPX 114The routing table is displayed by the menu option INFO => SHOW ROUTING TABLE => IPX. For the example,and usi

Cyclades-PR2000Chapter 14 - Virtual Private Network Configuration 115CHAPTER 14 VIRTUAL PRIVATE NETWORK CONFIGURATIONThe Virtual Private Network util

Cyclades-PR2000Chapter 14 - Virtual Private Network Configuration 116An example showing a local security network and two remote security networks is s

Cyclades-PR2000Chapter 14 - Virtual Private Network Configuration 117ETH0PR3000RouterRSG3 - RemoteSecurity GatewayRouter IP Address:190.190.190.1Link

Cyclades-PR2000Chapter 14 - Virtual Private Network Configuration 118STEP THREEUse the menu item INFO =>SHOW ROUTING TABLE to confirm that the othe

Cyclades-PR2000Chapter 14 - Virtual Private Network Configuration 119STEP SIXNow, the Remote Security Networks must be defined. This is done in the C

Cyclades-PR2000Chapter 2 - What is in the Box 12CHAPTER 2 WHAT IS IN THE BOXThe Cyclades-PR2000 is accompanied by the following accessories:Back Pane

Cyclades-PR2000Appendix A - Troubleshooting 120APPENDIX A TROUBLESHOOTINGWhat to Do if the Login Screen Does Not Appear When Using a Console.1 Check

Cyclades-PR2000Appendix A - Troubleshooting 121What to Do if the Router Does Not Work or Stops Working.1 Check that the cables are connected correctly

Cyclades-PR2000Appendix A - Troubleshooting 122Testing the Ethernet InterfaceAfter configuring the Ethernet interface, return to the main menu using t

Cyclades-PR2000Appendix A - Troubleshooting 123Testing the WAN InterfacesThe WAN interface can be tested using ping as described in the previous secti

Cyclades-PR2000Appendix A - Troubleshooting 124•The S column reveals the stage of the test at the time the table was created — D = data transfer, S =s

Cyclades-PR2000Appendix A - Troubleshooting 125LEDsThe LEDs on the PR1000’s case display the following information:• Power - Lit when the PR1000 is tu

126Cyclades-PR2000Appendix B - Hardware SpecificationsAPPENDIX B HARDWARE SPECIFICATIONSGeneral SpecificationsThe Cyclades-PR2000 power requirements

Appendix B - Hardware Specifications 127Cyclades-PR2000External InterfacesThe WAN InterfacesThe WAN interfaces are provided on a DB-25 female connecto

128Cyclades-PR2000Appendix B - Hardware SpecificationsThe Asynchronous InterfaceASYNCHRONOUS PORTPinSignal1RTS2DTR3TxD4Ground5CTS6RxD7DCD8DSR18FIGURE

Appendix B - Hardware Specifications 129Cyclades-PR2000CablesThe Straight-Through Cable2345678151720222423456781517202224TxDRxDRTSCTSDSRGndDCDTxClk_DT

Chapter 2 - What is in the Box 13Cyclades-PR2000•Quick Installation Manual • Console Cable• Installation Manual & Reference Guide (on CD) • Mounti

130Cyclades-PR2000Appendix B - Hardware SpecificationsDB-25 - M.34 AdaptorDB-25 FemaleSignalPGndRTSCTSDSRGndDCDTxD/V.35 (B)TxD/V.35 (A)RxD/V.35 (B)RxD

Appendix B - Hardware Specifications 131Cyclades-PR2000The ASY/Modem CablePR2000RJ-45 / 8 pinsPin36251784SignalTxDRxDDTRCTSRTSDCDDSRGndModem(DB-25)Pin

132Cyclades-PR2000Appendix B - Hardware SpecificationsDB-25 Male DB-25 MalePin132457820613111412241715192516211318SignalPGndRxDTxDRTSCTSGndDCDDTRDSRRx

Appendix B - Hardware Specifications 133Cyclades-PR2000DB-25 Loopback Connector234582011131214151724161925182123DB-25 MaleFIGURE B.10 LOOPBACK CONNEC

Appendix C - Configuration Without a ConsoleCyclades-PR2000134APPENDIX C CONFIGURATION WITHOUT A CONSOLEWhen a terminal or PC is not available for us

Cyclades-PR2000Index 135BBackup Linkconfiguration 35Bandwidth Reservation 105Boot Messages 120CCablesparallel 13Router MD/V.35 13with a DB-25 con

Cyclades Corporation41829 Albrae StreetFremont, CA 94538 - USAPhone: (510) 770-9727Fax: (510) 770-0355www.cyclades.comCyclades South AmericaPhone: 5

Cyclades-PR2000Chapter 3 - Using CyROS Menus 14Chapter 3 Using CyROS MenusThis chapter explains CyROS menu navigation and special keys. There are fo

Chapter 3 - Using CyROS Menus 15Cyclades-PR2000Once the console connection is correctly established, a Cyclades banner and login prompt should appear

Cyclades-PR2000Chapter 3 - Using CyROS Menus 16Special Keys<Enter> or <Ctrl+M> These keys are used to end the input of a value.<ESC>

Chapter 3 - Using CyROS Menus 17Cyclades-PR2000The CyROS Management UtilityAfter one of the interfaces has been connected and configured, there is ano

Cyclades-PR2000Chapter 3 - Using CyROS Menus 18The link Configuration Menu Interface will present an HTML version of the CyROS Main Menu, describedpre

Cyclades-PR200019Chapter 4 - Step-by-Step InstructionsCHAPTER 4 STEP-BY-STEP INSTRUCTIONS FOR COMMON APPLICATIONSThis chapter provides detailed examp

Cyclades-PR2000 Installation ManualVersion 1.2 – May 2002Copyright (C) Cyclades Corporation, 1998 - 2002We believe the information in this manual i

Cyclades-PR200020Chapter 4 - Step-by-Step InstructionsSTEP ONEThe first step is to determine the parameters needed to configure the Ethernet interface

Cyclades-PR200021Chapter 4 - Step-by-Step InstructionsSTEP TWONo more parameters are necessary for the Ethernet interface. The other interface to be

Cyclades-PR200022Chapter 4 - Step-by-Step InstructionsMenu CONFIG=>INTERFACE=>SWAN=>NETWORK PROTOCOL=>IPParameter Example Your Applicatio

Cyclades-PR200023Chapter 4 - Step-by-Step InstructionsSTEP FOURThe Encapsulation parameters for PPP are less straight-forward. Many of them are based

Cyclades-PR200024Chapter 4 - Step-by-Step InstructionsSTEP FIVEA static route must be added to tell the router that all traffic not intended for the l

Cyclades-PR200025Chapter 4 - Step-by-Step InstructionsSTEP SEVENNAT parameters will now be determined for routing outside of the local LAN. Network A

Cyclades-PR200026Chapter 4 - Step-by-Step InstructionsInstructions for creating a backup of the configuration file.Use the menu option ADMIN =>WRIT

Cyclades-PR200027Chapter 4 - Step-by-Step InstructionsExample 2 A LAN-to-LAN Example Using Frame RelayThis section will guide you through a complete

Cyclades-PR200028Chapter 4 - Step-by-Step InstructionsSTEP ONEThe first step is to determine the parameters needed to configure the Ethernet interface

Cyclades-PR200029Chapter 4 - Step-by-Step InstructionsSTEP TWONo more parameters are necessary for the Ethernet interface. The other interface to be

Cyclades-PR2000Table of Contents 3Table of ContentsCHAPTER 1 HOW TO USE THIS MANUAL ...

Cyclades-PR200030Chapter 4 - Step-by-Step InstructionsSTEP THREEThe network protocol parameters, shown in Figure 4.12, are similar to those for the Et

Cyclades-PR200031Chapter 4 - Step-by-Step InstructionsSTEP FOURThe Encapsulation parameters for Frame Relay are less straight-forward. Many of them a

Cyclades-PR200032Chapter 4 - Step-by-Step InstructionsMenu CONFIG=>INTERFACE=>SWAN=>ENCAPSULATION=>FRAME RELAY=><ESC>=>ADD DLC

Cyclades-PR200033Chapter 4 - Step-by-Step InstructionsMenu CONFIG=>STATIC ROUTES=>IP=>ADD ROUTEParameter Example Your ApplicationDestination

Cyclades-PR200034Chapter 4 - Step-by-Step InstructionsInstructions for creating a backup of the configuration file.Use the menu option ADMIN =>WRIT

Cyclades-PR200035Chapter 4 - Step-by-Step InstructionsExample 3 Link BackupThis example shows the configuration of a backup link, with a swan connect

Cyclades-PR200036Chapter 4 - Step-by-Step InstructionsSTEP ONEThe bandwidth used by CyROS for multilink circuit calculations is that given in the traf

Cyclades-PR200037Chapter 4 - Step-by-Step InstructionsMenu CONFIG=>MULTILINK=>MULTILINK CIRCUIT NUMBER=>ADD/MODIFY INTERFACEParameter Example

Cyclades-PR200038Chapter 4 - Step-by-Step InstructionsSTEP THREEUp to this point, the configuration can be used either for link back up or for load ba

Cyclades-PR200039Chapter 4 - Step-by-Step InstructionsSTEP FOURNow, a static backup route must be created for the secondary link. It is assumed that

Cyclades-PR2000Table of Contents 4The IP Protocol...

Cyclades-PR200040Chapter 4 - Step-by-Step InstructionsSTEP SIXThe multilink circuit can be tested by temporarily deactivating the interface on the pri

Chapter 5 - Configuration of the Ethernet Interface 41Cyclades-PR2000CHAPTER 5 CONFIGURATION OF THE ETHERNET INTERFACEThe PR2000 has one Ethernet 10B

Cyclades-PR2000Chapter 5 - Configuration of the Ethernet Interface 42Network Protocol Menu (Continued)Parameter DescriptionSecondary IPAddressApplies

Chapter 5 - Configuration of the Ethernet Interface 43Cyclades-PR2000IP BridgeAn IP Bridge is used to divide a network without subnetting. Whenever a

Cyclades-PR2000Chapter 5 - Configuration of the Ethernet Interface 44Network Protocol Menu (Continued) -- (IP Bridge)Parameter DescriptionIP Bridge Ac

Chapter 6 - The SWAN and Async Interfaces 45Cyclades-PR2000CHAPTER 6 THE SWAN AND ASYNC INTERFACESThis chapter describes how to configure a SWAN inte

Chapter 6 - The SWAN and Async Interfaces 46Cyclades-PR2000STEP TWOThe second step is to choose a data-link protocol in the Encapsulation Menu. There

Chapter 6 - The SWAN and Async Interfaces 47Cyclades-PR2000STEP FOURIf PPP Encapsulation is being used, a type of authentication should be chosen. T

Cyclades-PR2000Chapter 7 Network Protocols48CHAPTER 7 NETWORK PROTOCOLSThe second step in most interface configurations is to choose which network p

Chapter 7 Network Protocols49Cyclades-PR2000The IP ProtocolIf the preset values provided by the operating system are accepted, the interface will wor

Cyclades-PR2000Table of Contents 5Creation of user accounts and passwords...

Cyclades-PR2000Chapter 7 Network Protocols50Network Protocol (IP) Menu (Continued)Parameter DescriptionIP MTU Assigns the size of the Maximum Transmi

Chapter 7 Network Protocols51Cyclades-PR2000The Transparent Bridge ProtocolThe Transparent Bridge Protocol can be used in conjunction with either IP

Cyclades-PR2000Chapter 8 - Data-Link Protocols (Encapsulation) 52CHAPTER 8 DATA-LINK PROTOCOLS (ENCAPSULATION)Each encapsulation option is presented

Cyclades-PR200053Chapter 8 - Data-Link Protocols (Encapsulation)PPP Menu (Continued)Parameter DescriptionDisable LCP EchoRequestsLCP (Link Control Pro

Cyclades-PR2000Chapter 8 - Data-Link Protocols (Encapsulation) 54CHARThe configuration of the CHAR data-link protocol is confined to one menu, CONFIG

Cyclades-PR200055Chapter 8 - Data-Link Protocols (Encapsulation)PPPCHARThe configuration of the PPPCHAR protocol is contained in the menu CONFIG =>

Cyclades-PR2000Chapter 8 - Data-Link Protocols (Encapsulation) 56The Local Management Interface (LMI) Protocol provides services not available in simp

Cyclades-PR200057Chapter 8 - Data-Link Protocols (Encapsulation)STEP TWOAfter configuring the general parameters, each DLC must be defined. An exampl

Cyclades-PR2000Chapter 8 - Data-Link Protocols (Encapsulation) 58Rio de JaneiroNetwork: 192.168.201.0RecifeNetwork: 192.168.202.0São PauloNetwork: 192

Cyclades-PR200059Chapter 8 - Data-Link Protocols (Encapsulation)Add DLCI Menu CONFIG=>INTERFACE =><LINK> =>ENCAPS =>FRAME RELAY =&g

Cyclades-PR2000Table of Contents 6Testing the WAN Interfaces...

Cyclades-PR2000Chapter 8 - Data-Link Protocols (Encapsulation) 60Modem orDSU/CSUX.25Switch / DCESwitch / DCERouter / DTERouter / DTEFIGURE 8.2 PUBLIC

Cyclades-PR200061Chapter 8 - Data-Link Protocols (Encapsulation)X.25 Menu CONFIG=>INTERFACE=><LINK>=>ENCAPSULATION =>X.25Parameter

Cyclades-PR2000Chapter 8 - Data-Link Protocols (Encapsulation) 62X.25 Menu (Continued)Parameter DescriptionPacket Size The packet size to be sent acro

Cyclades-PR200063Chapter 8 - Data-Link Protocols (Encapsulation)STEP TWOThe next step is to create a static routing table associating each remote X.12

Cyclades-PR2000Chapter 9 - Routing Protocols 64CHAPTER 9 ROUTING PROTOCOLSRouting StrategiesRouting can be done either statically or dynamically.Stat

Cyclades-PR2000Chapter 9 - Routing Protocols 65Static RoutesRouters used in very small or simple networks may use static routes as the primary routing

Cyclades-PR2000Chapter 9 - Routing Protocols 66UnnumberedInterfacesPoint-to-Point ConnectionSlot 1ETH0ETH0Slot 3Router 110.0.0.3192.168.100.1Router 2A

Cyclades-PR2000Chapter 9 - Routing Protocols 67Add Static Route Menu CONFIG =>STATIC ROUTES =>IP =>ADD ROUTEParameter DescriptionDestination

Cyclades-PR2000Chapter 9 - Routing Protocols 68RIP ConfigurationCyROS supports three basic types of RIP:1 RIP1 [RFC 1058]2 RIP2 with broadcast (compat

Cyclades-PR2000Chapter 9 - Routing Protocols 69OSPFThe OSPF (Open Shortest Path First) routing protocol is significantly more complicated than RIP. T

Cyclades-PR20007Chapter 1 - How To Use This ManualCHAPTER 1 HOW TO USE THIS MANUALThree Cyclades manuals are related to the PR2000.1 The Quick Instal

Cyclades-PR2000Chapter 9 - Routing Protocols 70First, some definitions:• An Autonomous System (AS) is a portion of the network that will use a single

Cyclades-PR2000Chapter 9 - Routing Protocols 71OSPF Menu (continued)External Metric Defines the metric that will be advertised by OSPF.External Metric

Cyclades-PR2000Chapter 9 - Routing Protocols 72OSPF Global ConfigurationsSTEP THREEAfter completing the OSPF interface configuration for all interface

Cyclades-PR2000Chapter 9 - Routing Protocols 73OSPF Global Commands (Continued)Parameter DescriptionRIP External Metric-TypeApplies when Advertise RIP

Cyclades-PR2000Chapter 9 - Routing Protocols 74Area Menu (continued)Area Range N Status An Area Border Router (ABR) advertises link states for all net

Cyclades-PR2000Chapter 9 - Routing Protocols 75STEP SIXIt is not always possible to connect all areas directly to the backbone. When an area is conne

Cyclades-PR2000Chapter 9 - Routing Protocols 76BGP-4 ConfigurationThe BGP-4 routing protocol is used for routing on the Internet, performed between Au

Cyclades-PR2000Chapter 9 - Routing Protocols 77The last option is to aggregate the addresses contained in the local autonomous system in order to pres

Cyclades-PR2000Chapter 9 - Routing Protocols 78CONFIG=>IP=>BGP4=>GLOBALParameter DescriptionBGP4 Protocol Activates the protocol.Local AS Num

Cyclades-PR2000Chapter 9 - Routing Protocols 79STEP TWOThe neighbor menu identifies the routers inside and outside the AS that will communicate with t

Cyclades-PR20008Chapter 1 - How To Use This ManualChapter 12 - Filters and Rules - demonstrates how to protect your router from undesired traffic.Chap

Cyclades-PR2000Chapter 9 - Routing Protocols 80CONFIG=>IP=>BGP4=>NEIGHBOR=>ADD (continued)Keepalive Interval between keepalive messages se

Cyclades-PR2000Chapter 9 - Routing Protocols 81123456...PR3000100.10.0.0/16UndesiredRouteBackupRoutePrteeferredRouFIGUR

Cyclades-PR2000Chapter 9 - Routing Protocols 82STEP FOURAn access list needs at least one rule. The example in Figure 9.6 shows three access lists, e

Cyclades-PR2000Chapter 9 - Routing Protocols 83CONFIG=>IP=>BGP4=>ACCESS LIST=>CONFIGURE RULES=><ACCESS LIST NAME>=>ADDParamete

Cyclades-PR2000Chapter 9 - Routing Protocols 84STEP SIXA route map can either apply to all routes not discarded by the access lists, as shown in Figur

Cyclades-PR2000Chapter 9 - Routing Protocols 85CONFIG=>IP=>BGP4=>ROUTE MAP=>ADDParameter DescriptionRoute Map Number Identifies the route

Cyclades-PR2000Chapter 9 - Routing Protocols 86CONFIG=>IP=>BGP4=>AGGREGATE ADDRESSES=>ADDParameter DescriptionNumber An ID for reference.A

Cyclades-PR2000Chapter 10 - CyROS, the Operating System 87CHAPTER 10 CYROS, THE OPERATING SYSTEMThis chapter explains various operating system featur

Cyclades-PR2000Chapter 10 - CyROS, the Operating System 88Other users can be created and the user “usr” can be assigned a password. The password of t

Cyclades-PR2000Chapter 10 - CyROS, the Operating System 89login name is indicated when the auto user is configured, the user is logged in to the remot

Cyclades-PR20009Chapter 1 - How To Use This ManualConvention DescriptionCONFIG=>INTERFACE=>L A combination of menu items, with the last being ei

90Cyclades-PR2000Chapter 11 - NATCHAPTER 11 NAT (NETWORK ADDRESS TRANSLATION)NAT exists to convert local IP addresses into Internet “global” IP addr

91Cyclades-PR2000Chapter 11 - NATThere are two types of NAT available in CyROS -- Normal NAT and Expanded NAT. This chapter describesExpanded NAT. A

92Cyclades-PR2000Chapter 11 - NATNAT Static Translation Table# Global address / port local address / Port Protocol1 200.240.230.225 / 20 192.168.0.30

93Cyclades-PR2000Chapter 11 - NATAn overview of the NAT menu is shown in the table below.NAT Menu CONFIG =>SECURITY =>NATMenu Option Descriptio

94Cyclades-PR2000Chapter 11 - NATSTEP TWOThe parameters in the Timeout Menu are explained in more detail below. The preset values should beappropria

95Cyclades-PR2000Chapter 11 - NATSTEP FOURIf static translations are to be performed, as described in the example, the parameters in the Static Transl

96Chapter 12 - Filters and RulesCyclades-PR2000CHAPTER 12 RULES AND FILTERSThere are four basic types of rules:1 IP filter rules,2 Radius rules (actu

97Cyclades-PR2000Chapter 12 - Filters and RulesConfigIPRule List NameRule StatusRule List TypeDefault ScopeIncoming Rule List NameOutgoing Rule List N

98Chapter 12 - Filters and RulesCyclades-PR2000Exterior RouterInterior RouterRouterExtension to NetworkBastionHostETH0ETH0192.168.0.2192.168.0.310.0.0

99Cyclades-PR2000Chapter 12 - Filters and RulesExterior RouterThe exterior router is the network’s first defense against attacks. For this reason, it