NetVanta Series (with Octal T1/E1 Wide Module)



Similar documents
Configuring T1 and E1 WAN Interfaces

NetVanta 3000 Series (with T1/FT1 or T1/FT1 with DSX-1 Network Interface Module)

How To Set Up A Netvanta For A Pc Or Ipad (Netvanta) With A Network Card (Netvina) With An Ipa (Net Vanta) And A Ppl (Netvi) (Netva)

Figure 1 - T1/E1 Internet Access

Packet Filtering using the ADTRAN OS firewall has two fundamental parts:

Configuring IP Load Sharing in AOS Quick Configuration Guide

! encor en etworks TM

Common Application Guide

This Technical Support Note shows the different options available in the Firewall menu of the ADTRAN OS Web GUI.

IP Router QUICK START GUIDE

How To Block On A Network With A Group Control On A Router On A Linux Box On A Pc Or Ip Access Group On A Pnet 2 On A 2G Router On An Ip Access-Group On A Ip Ip-Control On A Net

Terminal Server Router QUICK START GUIDE

Configuring Network Address Translation

Configuring Network Address Translation (NAT)

WANPIPE TM. Multi-protocol WANPIPE Driver CONFIGURATION M A N U A L. Author: Nenad Corbic/Alex Feldman

Evaluation guide. Vyatta Quick Evaluation Guide

Configure ISDN Backup and VPN Connection

Octal T1-10/100 RIOP Installation Guide

Using the NetVanta 7100 Series

Chapter 4 Customizing Your Network Settings

Chapter 4 Customizing Your Network Settings

Configuration Guide. Independent T1 Timing. 6AOSCG A February 2012

Prestige 202H Plus. Quick Start Guide. ISDN Internet Access Router. Version /2004

Cisco Discovery 3: Introducing Routing and Switching in the Enterprise hours teaching time

PBX Q-SIG Networking, Access to a Frame Relay Network

Quick Note 53. Ethernet to W-WAN failover with logical Ethernet interface.

What is VLAN Routing?

Configuring an efficient QoS Map

Internet Protocol: IP packet headers. vendredi 18 octobre 13

Troubleshooting Layer 2 Protocols over T1 Using the CLI

Product Overview. Features CHAPTER

Introduction about cisco company and its products (network devices) Tell about cisco offered courses and its salary benefits (ccna ccnp ccie )

IP Routing Configuring Static Routes

SSVP SIP School VoIP Professional Certification

Welcome to Todd Lammle s CCNA Bootcamp

The Book of GNS by Jason C. Neumann

VPN SECURITY POLICIES

configure WAN load balancing

Multi-Homing Security Gateway

Cisco CCNA Optional Semester 4 Labs Wide Area Networking LAB 1 T1 TSU WAN LINK OVERVIEW - Instructor Guide (Estimated time: 30 minutes)

ASA/PIX: Load balancing between two ISP - options

The BANDIT Device in the Network

How To Configure A Network Monitor Probe On A Network Wire On A Microsoft Ipv6 (Networking) Device (Netware) On A Pc Or Ipv4 (Network) On An Ipv2 (Netnet) Or Ip

Chapter 2 - The TCP/IP and OSI Networking Models

Network Scenarios Pagina 1 di 35

How To Configure A Vyatta As A Ds Internet Connection Router/Gateway With A Web Server On A Dspv.Net (Dspv) On A Network With A D

ICTTEN6172A Design and configure an IP- MPLS network with virtual private network tunnelling

Interconnecting Cisco Network Devices 1 Course, Class Outline

Prestige 310. Cable/xDSL Modem Sharing Router. User's Guide Supplement

How do I configure multi-wan in Routing Table mode?

WAN Data Link Protocols

Chapter 52 WAN Load Balancing

Configure WAN Load Balancing

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.


Configuring a Leased Line

Overview of Dial Interfaces, Controllers, and Lines

ISOM3380 Advanced Network Management. Spring Course Description

Chapter 51 WAN Load Balancing

IP Routing Configuring RIP, OSPF, BGP, and PBR

Integrated Traffic Monitoring

How To. Configure E1 links. Introduction. What information will you find in this document?

Digi Connect WAN Application Helper NAT, GRE, ESP and TCP/UPD Forwarding and IP Filtering

Introduction to Routing and Packet Forwarding. Routing Protocols and Concepts Chapter 1

Service Managed Gateway TM. How to Configure a T1/E1 Connection

BGP Configuration Guide

Physical WAN Circuit Types

Chapter 5 Customizing Your Network Settings

2. IP Networks, IP Hosts and IP Ports

ADSL WAN Connections. Contents

Networking Basics for Automation Engineers

Enterprise Edge Communications Manager. Data Capabilities

PowerLink Bandwidth Aggregation Redundant WAN Link and VPN Fail-Over Solutions

Notes Odom, Chapter 4 Flashcards Set:

: Interconnecting Cisco Networking Devices Part 1 v2.0 (ICND1)

Virtual Private Network (VPN)

WAN. Introduction. Services used by WAN. Circuit Switched Services. Architecture of Switch Services

Skills Assessment Student Training Exam

Guideline for setting up a functional VPN

WAN Routing Configuration Examples for the Secure Services Gateway Family

How To Learn Cisco Cisco Ios And Cisco Vlan

Network Monitoring White Paper

Cisco 12 CCNA Certification

Vocia MS-1 Network Considerations for VoIP. Vocia MS-1 and Network Port Configuration. VoIP Network Switch. Control Network Switch

Routing. Static Routing. Fairness. Adaptive Routing. Shortest Path First. Flooding, Flow routing. Distance Vector

"Charting the Course...

Configuring SNA Frame Relay Access Support

Appendix C Network Planning for Dual WAN Ports

IOS NAT Load Balancing for Two ISP Connections

How To Configure A Cisco Router With A Cio Router

Troubleshooting Layer 2 Protocols Over T1 Using the CLI

Document No. FO1101 Issue Date: Work Group: FibreOP Technical Team October 31, 2013 FINAL:

Configuring the Channelized 12-port CT3/T1 Optical Services Modules

Configuring an IPSec Tunnel between a Firebox & a Check Point FireWall-1

Cisco Network Performance Evaluation Using Packet Tracer

Configuring Routers and Their Settings

Transport and Network Layer

Transcription:

NET 1 LAN 1 NET 2 LAN 2 WIDE SLOT 1 ACTIVITY TEST NET 1 NET 1 LAN 1 LAN 2 WIDE SLOT 1 NET 2 ACTIVITY TEST LAN 1 NET 2 LAN 2 NET 1 WIDE SLOT 1 ACTIVITY TEST LAN 1 NET 2 LAN 2 WIDE SLOT 1 ACTIVITY TEST NetVanta Series (with Octal T1/E1 Wide Module) Quick Configuration Guide 61202843L1-42A November 2005 Before You Begin This quick configuration guide assumes that you have already connected to the NetVanta by following the instructions in the Quick Start Guide provided with your unit. This quick configuration guide provides step-by-step instructions for configuring the example application. The configuration parameters used in the example outlined in this document are for instructional purposes only. Please use your specific parameters to configure your application. Network Diagram 1 1 to 8 T1s/E1s Frame Relay 2 Internet PPP T1/E1 Frame Relay (Multilink Optional) 3 In the example network shown above, a corporate office provides centralized Internet access for three branch offices. Each branch is connected back to the corporate office using a Frame Relay link. The public Internet connection at the corporate office is provided using a point-to-point (PPP) connection to the Internet service provider (ISP). Refer to the following chart for configuration parameters required for this example. Technical Support 1-888-4ADTRAN (1-888-423-8726)

Configuration Parameter Chart Parameter Corporate HQ Branch 1 Branch 2 Branch 3 Interface(s) t1 3/1 (1-24) t1 3/2 (1-24) t1 3/3 (1-24) t1 1/1 (1-24) t1 1/1 (1-24) t1 1/1 (1-24) LAN: Eth 0/1 IP 10.10.0.7/24 10.10.10.1/24 10.10.20.1/24 10.10.30.1/24 Frame Relay Interface(s) fr 1.16 fr 1.17 fr 1.18 DLCI 16 17 18 fr 1.19 fr 1.20 fr 1.21 19 20 21 Signaling Type Annex D Annex D Annex D Annex D IP Address 192.168.72.1/30 192.168.72.5/30 192.168.72.9/30 192.168.72.2/30 192.168.72.6/30 192.168.72.10/30 Internet Connection t1 3/8 (1-18) N/A N/A N/A PPP Interface ppp 1 IP Address 68.22.15.2/30 Configuration Overview Configuring the example network consists of the following steps: 1. Configure the physical interfaces (Ethernet and interfaces) 2. Configure the Layer 2 (L2) protocol(s) 3. Cross-connect the physical and virtual (L2) interfaces 4. Create access lists and policies (including NAT parameters) 5. Apply the policies to interfaces 6. Configure the routing information (static routes, OSPF, RIP, etc.) This document outlines the procedures for completing each of the steps listed above. In addition to the commands required to configure the sample network, each configuration step provides a brief discussion of available settings, but does not elaborate on parameters that are normally left in the default state. For detailed information regarding wide area network () configuration parameters, refer to the supplemental documentation provided on your ADTRAN OS System Documentation CD. 2 Technical Support 1-888-4ADTRAN (1-888-423-8726) 61202843L1-42A

Configure the Physical Interfaces To begin configuring physical interfaces, you must first activate the appropriate interface configuration mode from the Global Configuration mode prompt. For example, enter the following commands to activate the interface configuration mode for the first T1 interface on the Octal T1/E1 Wide Module: interface t1 3/1 (config-t1 3/1)# The NetVanta Network Interface Modules (NIMs) use a slot/port notation for interface identification. All non-modular interfaces built into the base unit (e.g., the Ethernet ports) are identified using 0 as the slot number. Configuring the Ethernet Interface(s) Ethernet interface configuration can range from assigning an IP address and activating the interface to activating the Dynamic Host Configuration Protocol (DHCP) client to poll the network DHCP server to gain an IP address. Standard Ethernet configurations generally contain an IP address, a speed, and a duplex setting. By default, all NetVanta Ethernet interfaces are configured to automatically detect the speed (as 10 or 100 Mbps) and are set to full-duplex. For most cases, these settings should suffice and will not be changed from the default state. The following command listing configures the IP address (10.10.0.7/24) and activates the interface for the Corporate Router eth 0/1 interface: interface eth 0/1 (config-eth 0/1)#ip address 10.10.0.7 255.255.255.0 (config-eth 0/1)#no shutdown (config-eth 0/1)#exit Configure each of the branch sites in the same manner by replacing the IP address with one appropriate for the location. Configuring the T1/E1 Interface(s) There are four main settings to consider when configuring T1/E1 network interfaces. The line coding (coding), framing format (framing), active channels (tdm-group), and clock source (clock source) must all be configured to match the circuit supplied by your network provider. By default, all NetVanta T1 interfaces are configured for ESF (framing esf) and B8ZS (coding b8zs), and to recover clocking from the network circuit (clock source line). By default, all NetVanta E1 interfaces are configured for standard multiframe without the optional CRC-4 error 61202843L1-42A Technical Support 1-888-4ADTRAN (1-888-423-8726) 3

correction (no framing crc4), and to recover clocking from the network circuit (clock source line). Generally, the line coding, framing format, and clock source default values will be the correct ones for your application and should not be changed. Each configured T1/E1 interface must have the active channels specified using the tdm-group command because there are no default M groups. The active channels are entered as a single number representing 1 of the 24 (T1) or 31 (E1) channel timeslots or as a contiguous group of channels. The following command listing specifies the configuration parameters required for the Corporate Router T1 (or E1) interfaces: interface t1 3/1 (config-t1 3/1)#tdm-group 1 timeslots 1-24 (config-t1 3/1)#no shutdown (config-t1 3/1)#exit interface t1 3/2 (config-t1 3/2)#tdm-group 2 timeslots 1-24 (config-t1 3/2)#no shutdown (config-t1 3/2)#exit interface t1 3/3 (config-t1 3/3)#tdm-group 3 timeslots 1-24 (config-t1 3/1)#no shutdown (config-t1 3/3)#exit interface t1 3/8 (config-t1 3/8)#tdm-group 4 timeslots 1-18 (config-t1 3/1)#no shutdown (config-t1 3/8)#exit Configure each of the Branch sites in the same manner using the appropriate T1 slot and port and active channels for the location. Configure the L2 Protocol(s) To begin configuring the L2 protocol(s), first determine whether you need to configure Frame Relay, PPP, or high-level data link control (HDLC). Each L2 protocol has unique configuration specifications. For the purpose of this guide, we will briefly discuss Frame Relay and PPP. Configuring the Frame Relay Interfaces (and Sub-Interfaces) There are two settings to consider when configuring Frame Relay interfaces. The interface type (frame-relay intf-type) and signaling type (frame-relay lmi-type) must be configured to match the specifications supplied by your network provider. By default, all NetVanta Frame Relay interfaces are configured as a data terminal equipment (DTE) interface (frame-relay intf-type dte) with Annex D signaling (frame-relay lmi-type ansi). Multilink operation is also configured in the Frame Relay interface using the frame-relay multilink command. 4 Technical Support 1-888-4ADTRAN (1-888-423-8726) 61202843L1-42A

Frame Relay interfaces have a sub-interface component for each permanent virtual circuit (PVC) which must also be configured. Each Frame Relay sub-interface contains a data link correction identifier (DLCI) (frame-relay interface-dlci) and IP address (ip address). You must manually configure the Frame Relay sub-interface DLCI and IP address because there are no default DLCIs or IP addresses defined. Access policies are also applied at the sub-interface level (but these are discussed later in this document). Each PVC should also have a configured committed burst value (frame-relay bc) (equivalent to the committed information rate (CIR) given to you by your network provider) and a negotiated burst rate (frame-relay be) (equivalent to the excess information rate (EIR) given to you by your network provider). Both the CIR and EIR should be decided on by you and your service provider when defining your service agreement. To determine the appropriate committed burst value and EIR, you need to know the CIR and physical bandwidth for both the local and remote connections. If one side transmits data at a rate much higher than the other side s CIR (or physical bandwidth), packets will be dropped, causing a decrease in efficiency. A general rule is to provision the committed burst value with the remote side CIR and configure the EIR with the difference between the CIR and the actual physical bandwidth at the location. The committed burst value plus the EIR should not be greater than the physical bandwidth. The following command listing specifies the configuration parameters required for the corporate router Frame Relay interface: interface fr 1 (config-fr 1)#frame-relay multilink (config-fr 1)#no shutdown (config-fr 1)#exit The following command listing specifies the configuration parameters required for the corporate router Frame Relay sub-interfaces: interface fr 1.16 (config-fr 1.16)#frame-relay interface-dlci 16 (config-fr 1.16)#frame-relay bc 768000 (config-fr 1.16)#frame-relay be 768000 (config-fr 1.16)#ip address 192.168.72.1 /30 (config-fr 1.16)#no shutdown (config-fr 1.16)#exit interface fr 1.17 (config-fr 1.17)#frame-relay interface-dlci 17 (config-fr 1.17)#frame-relay bc 768000 (config-fr 1.17)#frame-relay be 768000 (config-fr 1.17)#ip address 192.168.72.5 /30 (config-fr 1.17)#no shutdown (config-fr 1.17)#exit interface fr 1.18 (config-fr 1.18)#frame-relay interface-dlci 18 (config-fr 1.18)#frame-relay bc 768000 (config-fr 1.18)#frame-relay be 768000 (config-fr 1.18)#ip address 192.168.72.9 /30 (config-fr 1.18)#no shutdown (config-fr 1.18)#exit 61202843L1-42A Technical Support 1-888-4ADTRAN (1-888-423-8726) 5

Labeling the Frame Relay sub-interfaces using the DLCI (such as 1.16 indicating a DLCI of 16) is useful for quickly determining (from a configuration printout) which sub-interface corresponds to which PVC. The Frame Relay interfaces and sub-interfaces for each branch site are configured in the same manner. Configuring the PPP Interface There are two settings to consider when configuring PPP interfaces: the IP address and the maximum transmission unit (MTU). There are no default IP addresses, so each interface must be manually programmed with the appropriate address (ip address). All NetVanta PPP interfaces have a default MTU of 1500 bytes, which works for most applications. Multilink PPP is also configured on the PPP interface (using the ppp multilink command). The following command listing specifies the configuration parameters required for the corporate router PPP interface: interface ppp 1 (config-ppp 1)#ip address 68.22.15.2 /30 (config-ppp 1)#no shutdown (config-ppp 1)#exit Cross-Connect the Physical and Virtual (L2) Interfaces Virtual interfaces must be cross connected to physical interfaces to create a interface where L2 signaling occurs. Use the cross-connect command to connect the physical and virtual interfaces together. A single virtual interface is assigned to a single physical interface, except in the case of multilink operation, where one virtual interface is connected with multiple physical interfaces. Each created cross connect has a unique label identifier and specifies a virtual and a physical interface. 6 Technical Support 1-888-4ADTRAN (1-888-423-8726) 61202843L1-42A

The following command listing specifies the cross connects required to complete the interface configuration for the corporate router: cross-connect 1 t1 3/1 1 fr 1 cross-connect 2 t1 3/2 2 fr 1 cross-connect 3 t1 3/3 3 fr 1 cross-connect 4 t1 3/8 4 ppp 1 Cross connects are configured in the same manner for each branch site. 61202843L1-42A Technical Support 1-888-4ADTRAN (1-888-423-8726) 7

Create the Access Lists and Policies Access lists (ACLs) and access policies (ACPs) are used to regulate traffic through your routed network. ACLs and ACPs can block, filter, and manipulate traffic to make your network more secure. ACLs are traffic selectors that include a matching parameter (to select the traffic) and an action statement (to either permit or deny the matched traffic). Standard ACLs (using the ip access-list standard command) provide pattern matching for source IP addresses only. Use extended ACLs (using the ip access-list extended command) for more flexible pattern matching (including destination IP addresses). ACPs use configured ACLs to permit, deny, or manipulate (using NAT) data on each interface where the ACP is applied. When packets are received on an interface, the configured ACPs are applied to determine whether the data will be processed or discarded. Creating access policies is a five-step process: 1. Determine what traffic needs to be regulated 2. Enable the security feature (using the ip firewall command) 3. Create an ACL to act as a traffic selector 4. Create an ACP to either permit, deny, or manipulate (using NAT) the traffic selected using an access list 5. Apply the ACP to an interface (or multiple interfaces) For our example, evaluate the incoming and outgoing traffic on all the interfaces (fr 1, eth 0/1, and ppp 1). Use ACLs and ACPs to provide connectivity for traffic between all the private local area networks (LANs) (branch sites and corporate headquarters), grant access to the public Internet connection for all users (branch sites and corporate headquarters), and restrict inbound access from the public domain over the PPP and Frame Relay connections to protect the network. The following table outlines our traffic concerns: Public Interface fr 1 Traffic to Select Traffic from remote LANs (10.10.10.0/24, 10.10.20.0/24, and 10.10.30.0/24) to local LAN (10.10.10.0/24) Traffic from remote LANs (10.10.10.0/24, 10.10.20.0/24, and 10.10.30.0/24) to the public Internet through the ppp 1 interface eth 0/1 Traffic to the remote LANs (10.10.10.0/24, 10.10.20.0/24, and 10.10.30.0/24) Traffic to the public Internet through the ppp 1 interface Begin by planning the ACL selectors for the traffic received on fr 1. Use extended ACLs for source and destination IP addresses to sort the traffic received on fr 1 from the remote LANs into two categories traffic destined for other LANs or traffic destined for the public Internet. Each category requires an extended ACL to select the appropriate traffic. All traffic destined for the public Internet requires a many-to-one network address translation (NAT) configuration. 8 Technical Support 1-888-4ADTRAN (1-888-423-8726) 61202843L1-42A

Next, plan the ACL selectors for the traffic received on the eth 0/1 interface (the corporate LAN). Use extended ACLs for source and destination IP addresses to sort the traffic received on eth 0/1 into two categories traffic destined for other LANs or traffic destined for the public Internet. Each category requires an extended ACL to select the appropriate traffic. All traffic destined for the public Internet requires a many-to-one NAT configuration. The following table provides sample ACL commands for the various traffic on our sample network. Action Description Command(s) Allow Traffic between LANs (10.10.0.0/16) permit ip 10.10.0.0 0.0.255.255 10.10.0.0 0.0.255.255 Allow All traffic from remote LANs (10.10.0.0/16) to the Internet through the ppp 1 interface permit ip 10.10.0.0 0.0.255.255 any Allow Allow Traffic from corporate LAN (10.10.0.0/16) to remote LANs (10.10.0.0/16) Traffic from corporate LAN (10.10.0.0/24) to the Internet through the ppp 1 interface permit ip 10.10.0.0 0.0.255.255 10.10.0.0 0.0.255.255 permit ip 10.10.0.0 0.0.255.255 any The traffic selectors required for traffic on the fr 1 and eth 0/1 interfaces are identical. Therefore, we can create a single set of ACLs that can be used in multiple ACPs on multiple interfaces. The following activates the security features in the NetVanta and creates two extended ACLs to select our traffic: ip firewall ip access-list extended INTERLAN (config-ext-nacl)#permit ip 10.10.0.0 0.0.255.255 10.10.0.0 0.0.255.255 (config-ext-nacl)#exit ip access-list extended INTERNET (config-ext-nacl)#permit ip 10.10.0.0 0.0.255.255 any (config-ext-nacl)#exit Now, create the access policy to allow the traffic between the LANs and NAT traffic bound for the public Internet. ip policy-class INTERLANwNAT (config-policy-class)#allow list INTERLAN (config-policy-class)#nat source list INTERNET interface ppp 1 overload (config-policy-class)#exit Apply the ACPs to the interface(s) to complete the configuration. For our example, the INTERLANwNAT ACP should be applied to the fr 1 and eth 0/1 interfaces. 61202843L1-42A Technical Support 1-888-4ADTRAN (1-888-423-8726) 9

The following command listing applies the ACP to the fr 1 and eth 0/1 interfaces: interface fr 1 (config-fr 1)#access-policy INTERLANwNAT (config-fr 1)#exit interface eth 0/1 (config-eth 0/1)#access-policy INTERLANwNAT (config-eth 0/1)#exit ACLs and ACPs are configured in the same manner for each branch site, but the many-to-one NAT is not required. The NAT operation should be handled by the router with the public connection. Configure the Routing Information AOS products support various routing protocols including static routes, RIP, OSPF, and BGP. RIP, OPSF, and BGP are all routing protocols that allow routers to share the information contained in their route tables with other routers in the network. These routing protocols are generally used on networks that frequently change, or contain a large number of nodes. For small applications (such as our example network), manually adding static routes to the router s route table is the easiest method of configuration. Manually adding static routes to the route table requires two steps: 1. Determine the routes needed (destination address and subnet mask as well as the next-hop address or forwarding interface). Be sure to plan the default route. 2. Use the ip route command to add the route to the route table. The following table outlines the static routes needed in the corporate router. Destination Address Subnet Mask Next-Hop Address/Forwarding Interface 10.10.10.0 255.255.255.0 fr 1.16 10.10.20.0 255.255.255.0 fr 1.17 10.10.30.0 255.255.255.0 fr 1.18 Default Route (0.0.0.0) 0.0.0.0 ppp 1 (public Internet) 10 Technical Support 1-888-4ADTRAN (1-888-423-8726) 61202843L1-42A

The following command listing adds the necessary static routes to the corporate router s route table: ip route 10.10.10.0 255.255.255.0 fr 1.19 ip route 10.10.20.0 255.255.255.0 fr 1.20 ip route 10.10.30.0 255.255.255.0 fr 1.21 ip route 0.0.0.0 0.0.0.0 ppp 1 Each of the branch sites will need a route to the corporate LAN (10.10.0.0/24) and a default route set as the Frame Relay interface connection back to the corporate router. 61202843L1-42A Technical Support 1-888-4ADTRAN (1-888-423-8726) 11

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information