Watson SHDSL Router Application Manual



Similar documents
Scenario 1: One-pair VPN Trunk

Setting up VPN connection: DI-824VUP+ with Windows PPTP client

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

Installation of the On Site Server (OSS)

Recommended QoS Configuration Settings for. Dell SonicWALL SOHO Router

Cisco - Configure the 1721 Router for VLANs Using a Switch Module (WIC-4ESW)

Chapter 10 Troubleshooting

What is VLAN Routing?

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

NB6 Series Quality of Service (QoS) Setup (NB6Plus4, NB6Plus4W Rev1)

Lab Configuring Access Policies and DMZ Settings

Edgewater Routers User Guide

24 Port Gigabit Ethernet Web Smart Switch. Users Manual

VLAN 802.1Q. 1. VLAN Overview. 1. VLAN Overview. 2. VLAN Trunk. 3. Why use VLANs? 4. LAN to LAN communication. 5. Management port

Configuring Switch Ports and VLAN Interfaces for the Cisco ASA 5505 Adaptive Security Appliance

Digi Connect WAN Application Guide Using the Digi Connect WAN and Digi Connect VPN with a Wireless Router/Access Point

Edgewater Routers User Guide

16-PORT POWER OVER ETHERNET WEB SMART SWITCH

Multi-Homing Dual WAN Firewall Router

Barracuda Link Balancer

ProSafe Plus Switch Utility

Firewall VPN Router. Quick Installation Guide M73-APO09-380

Wireless Local Area Networks (WLANs)

Simulating Transparent Mode for Multiple Subnets

Setting up D-Link VPN Client to VPN Routers

TotalCloud Phone System

IP Office Technical Tip

Recommended QoS Configuration Settings for. Fortinet FortiGate 30D Router

VLAN for DekTec Network Adapters

1 PC to WX64 direction connection with crossover cable or hub/switch

ProSAFE 8-Port and 16-Port Gigabit Click Switch

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Broadband Router ESG-103. User s Guide

Optimum Business SIP Trunk Set-up Guide

ERserver. iseries. Remote Access Services: PPP connections

Monitoring Network Traffic Using SPAN

Chapter 3 Security and Firewall Protection

SonicOS Enhanced Release Notes

Chapter 7 Troubleshooting

Configuring UTStarcom DSL Equipment

Hosting more than one FortiOS instance on. VLANs. 1. Network topology

Network Agent Quick Start

Primary VLAN. This document shows how to view and change the primary VLAN for the HP Procurve Series 2500 Switches:

VLANs. Application Note

How To Switch In Sonicos Enhanced (Sonicwall) On A 2400Mmi 2400Mm2 (Solarwall Nametra) (Soulwall 2400Mm1) (Network) (

GVRP Overview. Overview

IP Filter/Firewall Setup

UIP1868P User Interface Guide

application note LAN Power: HP Web QoS with HP ProCurve Switches What is WebQoS? How WebQoS Classifies and Prioritizes Traffic

Fonality. Optimum Business Trunking and the Fonality Trixbox Pro IP PBX Standard Edition V p13 Configuration Guide

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Knowledgebase Solution

Best Practices: Pass-Through w/bypass (Bridge Mode)

Enabling NAT and Routing in DGW v2.0 June 6, 2012

Configuring the Edgewater 4550 for use with the Bluestone Hosted PBX

CCT vs. CCENT Skill Set Comparison

Router - Network Address Translation (NAT)

PC/POLL SYSTEMS Version 7 Polling SPS2000 Cash Register TCP/IP Communications

Enabling Multiple Wireless Networks on RV320 VPN Router, WAP321 Wireless-N Access Point, and Sx300 Series Switches

Starting a Management Session

Configuring H.323 over Port Network Address Translation (PNAT) for Avaya IP Endpoints using the Avaya SG200 Security Gateway - Issue 1.

VMware ESX Server Q VLAN Solutions W H I T E P A P E R

Broadband Phone Gateway BPG510 Technical Users Guide

Apache CloudStack 4.x (incubating) Network Setup: excerpt from Installation Guide. Revised February 28, :32 pm Pacific

ADSL Router Quick Installation Guide Revised, edited and illustrated by Neo

Configuring Static IP for your Pace Devices

Comtrend 1 Port Router Installation Guide CT-5072T

V310 Support Note Version 1.0 November, 2011

DOORKING SYSTEMS 1830 SERIES NETWORK WORKSHOP LAN APPLICATIONS ACCESS CONTROL SOLUTIONS LOCAL AREA NETWORK (LAN) CONNECTION REV 04.

ASUS WL-5XX Series Wireless Router Internet Configuration. User s Guide

Fiber Channel Over Ethernet (FCoE)

AXIS 205 Network Camera Quick Installation Guide

Avaya P330 Load Balancing Manager User Guide

To configure firewall policies, you must install the Policy Enforcement Firewall license.

Issue 1 April 2, 2009 Using the VT2442 Web User Interface

Quick Installation Guide DSL-2640U. Wireless N 150 ADSL2+ Modem Router

DSL-2600U. User Manual V 1.0

How to Open HTTP or HTTPS traffic to a webserver behind the NetVanta 2000 Series unit (Enhanced OS)

Quick Start Guide. WRV210 Wireless-G VPN Router with RangeBooster. Cisco Small Business

Smart Web Manager for VoIP Gateway Series

Innominate mguard Version 6

Figure 41-1 IP Filter Rules

DSL-2500U. D-Link. User Manual. ADSL2/2+ Ethernet Router. RECYCLABLE 2006/08/30 Ver Building Networks for People

IS SERIES. QuikStart Programming Guide. IP Network Direct System. Programming Videos

Com.X Router/Firewall Module. Use Cases. White Paper. Version 1.0, 21 May Far South Networks

Management Software. User s Guide AT-S88. For the AT-FS750/24POE Fast Ethernet Smart Switch. Version Rev. B

Application Notes for Configuring a SonicWALL VPN with an Avaya IP Telephony Infrastructure - Issue 1.0

Recommended QoS Configuration Settings for TP-LINK Archer C3200 Wireless Router

Network Configuration Example

Exhibit n.2: The layers of a hierarchical network

ZyXEL AES-100 V2.03(AS.0) Release Notes/Manual Supplement

Application Note Startup Tool - Getting Started Guide

PRILINK PRI Management System

A Guide to Simple IP Camera Deployment Using ZyXEL Bandwidth Solutions

Abstract. Avaya Solution & Interoperability Test Lab

ProSafe Plus Switch Utility

TW100-BRF114 Firewall Router. User's Guide. Cable/DSL Internet Access. 4-Port Switching Hub

ADSL MODEM. User Manual V1.0

Broadband Router ALL1294B

Transcription:

Watson SHDSL Router Document Identification Watson-SHDSL-Router-Application-Manual.doc Document Document Revision 2010-03-29 Distribution Customer

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc Revision History Version Date Author Comment 1.1-01 100329 MLr Major cleanup and added Stacked VLAN 1.0-02 081201 MLr Added Bridge Management 1.0-01 0811111 MLr Initial Version for Watson SHDSL Router Copyright 2010 by Schmid Telecommunication, Zurich, Switzerland. All rights reserved. Reproduction of part or all of the contents in any form is expressly prohibited without the prior written consent of Schmid Telecommunication. Schmid Telecommunication has used its discretion, best judgments and efforts in preparing this document. Any information contained in this document is provided without any warranty of any kind. Schmid Telecommunication hereby disclaims any liability to any person for any kind of damage. Schmid Telecommunication may make improvements and/or changes of this document at any time. ii Revision: 2010-03-29

Table of Contents Table of Contents... 3 1 LAN Extension... 1-1 1.1 Theory of operation... 1-1 1.2 DSL configuration... 1-2 1.2.1 Master modem... 1-2 1.2.2 Slave modem... 1-2 1.3 Bridge configuration... 1-3 2 VLAN Transparent Bridging... 2-1 2.1 Theory of operation... 2-1 2.2 Bridge configuration... 2-1 2.3 Switch configuration... 2-2 3 Management over VLAN... 3-1 3.1 Theory of operation... 3-1 3.2 Create VLAN interface... 3-1 3.2.1 Edit Management VLAN Interface... 3-2 4 QoS Application... 4-1 4.1 Theory of Operation... 4-1 4.2 Enabling QoS... 4-1 4.3 Traffic shaping... 4-2 4.4 Traffic priority... 4-3 4.5 DSCP settings... 4-5 4.6 Class statistics... 4-5 5 Port-based VLAN tagging... 5-1 5.1 Theory of operation... 5-1 5.2 Modem configuration... 5-1 5.2.1 Management consideration... 5-1 5.2.2 LAN Switch Initialization... 5-1 5.2.3 Adding VLAN configuration... 5-2 6 Management Security... 6-1 6.1 Theory of operation... 6-1 6.2 Secured Bridge Configuration... 6-1 6.3 Disabling Local Management... 6-2 7 Stacked VLAN... 7-1 7.1 Theory of operation... 7-1 7.2 Stacked VLAN configuration... 7-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc 4 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 1 LAN Extension 1.1 Theory of operation With the Watson SHDSL Router (SZ.441.Vxxx) it is possible to build an application that enables clients to extend LANs over one to four DSL lines. This section shows the concept of this application as well as the necessary configuration of the modems: Both networks have the same IP address subnet. The Watson SHDSL Routers will be configured as Bridges. Revision: 2010-03-29 1-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc 1.2 DSL configuration 1.2.1 Master modem Internet Connections -> Settings EFM encapsulation can be selected. In EFM mode each DSL port is independent. The Line rate can be set differently for each DSL port (up to 1:4). The aggregated DSL link is persistent to a wire-pair failure. The Master modem has to be configured as STU-C. Select which pair is enabled and the linerates. The SHDSL Status tab gives information about the link performance. You can adapt the linerate to reach a good RX SNR margin (minimum 4 db is recommended). 1.2.2 Slave modem The DSL Slave modem configuration is similar. The slave modem has to be configured as STU-R. 1-2 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router In the slave modem you only have to select which pair is enabled. The line rate is set automatically by the master modem. 1.3 Bridge configuration By default the Watson SHDSL router is set as NAT. To configure a bridge between the LAN and the WAN interface do the following: System -> Network Connections -> New Connection -> Advanced Connection -> Network Bridging After clicking Next the router will be reconfigured as a bridge. The MAC address of the LAN interface will be replaced with a new Bridge MAC address. Therefore your web-browser will temporarily lose connection to the Web-based management. In order to accelerate the reconnection you can delete the ARP table entries of your PC. For MS Windows users you can use the arp d command from a CMD shell. Revision: 2010-03-29 1-3

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc Bridge Settings Perform the Bridge configuration on the master and the slave devices. You can use the Bridge properties settings to set the local IP Management Address (ex. 192.168.1.20 for the master and 192.168.1.40 for the slave). 1-4 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 2 VLAN Transparent Bridging 2.1 Theory of operation In the previous example we have configured the Watson SHDSL Router to extend the LAN over one to four DSL lines. By default the Bridge is not transparent to VLANs. This section shows how to make the Bridge VLAN transparent: 2.2 Bridge configuration To make the Bridge VLAN transparent do the following way: System -> Network Connections -> Edit Bridge Connection Select the edit VLANS buttons for the WAN Ethernet and the LAN Switch in the Bridging tabs of the Bridge properties screen. Revision: 2010-03-29 2-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc A new screen will appear. Select Enable VLAN and All VLAN IDs. Click OK to accept the configuration. The bridge is now transparent to all VLANs. 2.3 Switch configuration By default the integrated Ethernet switch is VLAN transparent. To check the configuration open the LAN Switch Properties page. Select the VLAN tab of the LAN Switch Properties screen: If you want the switch to be VLAN transparent select Transparent in the switch settings: Refer to chapter 5 (Port-based VLAN tagging) if you want to use VLAN tagging based on the Ethernet Switch ports. 2-2 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 3 Management over VLAN 3.1 Theory of operation In this scenario we will configure the Watson SHDSL Router (SZ.441.Vxxx) to make it accessible from a management VLAN. The Watson SHDSL Router was previously configured as VLAN transparent Bridge. We have to create a new VLAN interface (for example VLAN ID 4094) and add it a management IP address. 3.2 Create VLAN interface System -> Network connections -> New Connection -> Advanced Connection -> VLAN Interface Create the first VLAN interface with Bridge as underlying protocol and VLAN ID 4094. You can edit the VLAN interface and give it a user friendly name (ex. Management VLAN 4094). Revision: 2010-03-29 3-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc 3.2.1 Edit Management VLAN Interface In order to manage the bridge over the newly created VLAN interface, you need to define the IP address of this interface. Select the Management VLAN 4094 interface. Under settings -> Internet Protocol, you can enter the Management IP address for this interface. 3-2 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 4 QoS Application 4.1 Theory of Operation The Watson SHDSL Router (SZ.441.Vxxx) is able to process higher priority traffic before lower priority traffic. The most significant bottleneck is where the high speed LAN meets limited broadband bandwidth. Special QoS mechanisms is built into Watson SHDSL router to ensure that this sudden drop in connectivity speed is taken into account when prioritizing and transmitting real-time service-related data packets. This example shows how to configure the SHDSL router to prioritize traffic that is tagged with DSCP priority marking. 4.2 Enabling QoS In order to enable QoS processing do the following: Select Services -> QoS. The Quality of Service screen will appear, displaying the General tab. Select User Defined from the combo-box. Enter the Rx and Tx bandwidth of your DSL interface in Kbit/s. Select the default QoS profile. This turns QoS on without special preferences. We will configure our preferences later. Revision: 2010-03-29 4-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc 4.3 Traffic shaping The traffic shaping configuration is needed to have several classes of services each having different priority and different rate limiting. In this example we will create two classes ( class 1 and class 2). Select the Traffic Shaping tab. Click the edit button of the Default WAN device. The Tx Bandwidth of the WAN is 22784 Kbit/s as defined above. Let s create two service classes (class 1 and class2). Class 1 has the hight priority 0 and a reserved bandwidth of 20%. Class 2 has the priority 1 and a reserved bandwidth of 3000 kbbit/s. Note that the reserved bandwidth cannot be used by another class. Traffic exceeding the maximum bandwidth (ex.: Class 2, 6000 Kbit/s) will be discarded. 4-2 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 4.4 Traffic priority We have to set rules determining the priority that packets, traveling through the device, will receive. This can be done here: Select the Traffic Priority tab. We can now create the following two QoS output rules for the WAN interface. Rule #0 detects packets with DSCP 0x2E and put them in Class 1. Rule #1 detects packets with DSCP 0x1A and put them in Class 2. Revision: 2010-03-29 4-3

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc 4-4 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 4.5 DSCP settings Select the DSP Settings tab. In this table you can add or modify the mapping of the DSCP Value to a priority. Note that in our example DSCP 0x2E is set to high priority and DSCP 0x1A is set to medium priority. 4.6 Class statistics The Class Statistics tab show the two classes and the default class statistics. Check the statistics to see if the QoS is correctly configured. Revision: 2010-03-29 4-5

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 5 Port-based VLAN tagging 5.1 Theory of operation In this scenario we want to configure the Watson SHDSL Router (SZ.441.Vxxx) to create VLANs based on the Ethernet switch port number. We will also configure Ethernet port 8 to have local access to the management of the router. 5.2 Modem configuration 5.2.1 Management consideration Before to start with the VLAN configuration of the switch you have to ask yourself how do you access the management of the Watson SHDSL router once that the 802.1q VLAN mode is turned on in the Switch. One way to access the management is to create a new VLAN interface on the router (for example 4094). When a LAN interface is created the management can be access when management traffic is tagged with VLAN. This was previously described in chapter 3: Management over VLAN. In this scenario we will reserve one Ethernet port (port 8 in this example) for the local access to the management of the router. We will configure the switch to send all traffic coming from port 8 as untagged packets. Therefore we do not need to create a special VLAN interface for the management. 5.2.2 LAN Switch Initialization Open the LAN switch configuration page: System -> Network Connections -> LAN Switch Select the VLAN tab. Turn on the VLAN mode: Select 802.1q as VLAN Mode Do not click apply until the configuration is complete, otherwise you will lose access to the management. Revision: 2010-03-29 5-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc Configure the Default VLAN ID: Port 8 and Trunk must have the same VLAN ID (4094 in this example) Create a new entry in the VLAN table: Enter the same VLAN ID as the default VLAN ID (4094 in this example) and select U (Untagged) for the port 8 and the Trunk port. Click OK. Now the VLAN table should look like this. If the table looks identical you can click Apply. Otherwise correct the table before to proceed. Do not forget that you will completely lose access to the device if your configuration is not correct. You probably have to refresh your browser to access the management. Also check that you are connected to port 8 of the Ethernet switch. Port 1 to 7 will not have access to the management anymore. 5.2.3 Adding VLAN configuration The switch has been set to VLAN mode and port 8 is configured as untagged in order to access the management of the Watson SHDSL router. You are now ready to add your application related VLAN configuration. For example port 1 and 2 build VLAN 10. Traffic connected to these ports is untagged. Traffic leaving the trunk port (going toward DSL) will be tagged with VLAN ID 10. Similarly Port 3, 4 and the Trunk port will be part of another VLAN 20. 5-2 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router Revision: 2010-03-29 5-3

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 6 Management Security 6.1 Theory of operation This chapter described secured ways to configure local and/or remote management of the Watson SHDSL Router. It is recommended to follow this procedure to minimize the risk of unauthorized access to the Watson SHDSL router. 6.2 Secured Bridge Configuration By default, when the SHDSL Router is configured as a Bridge, the Internet Connection Firewall is disabled. In this case Web-based management, telnet and SSH access to the management is possible from the LAN and from the WAN sides. This can be unsecured and therefore it is recommended to enable the Internet Connection Firewall. But before to enable this settings you have to prepare Remote Management Access, otherwise you will lose access to the management. Configure the router to bridge mode. The procedure is described in a previous chapter. Then take a look at the Bridge Advanced Properties : System -> Network Connections -> Bridge -> Advanced Here you see that the Internet Connection Firewall is disabled by default. Revision: 2010-03-29 6-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc Before to enable Internet Connection Firewall you need to allow remote management. If you do not enable remote management you will lose connection to the device when you enable the Internet Connection Firewall. In the example below the HTTPS and the SSH connection are enabled. Once the remote administration is configured. You can go back to the Bridge properties and enable Internet Connection Firewall. 6.3 Disabling Local Management If you need to prevent HTTP Web-based management access from the LAN, you can setup a filter rule to drop packet with the destination IP address of the SHDSL Router. 6-2 Revision: 2010-03-29

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router Service -> Firewall -> Advanced Filtering -> Input Rules Set -> (LAN Ethernet Rules) New Entry Revision: 2010-03-29 6-3

Watson-SHDSL-Router-Application-Manual.doc Watson SHDSL Router 7 Stacked VLAN 7.1 Theory of operation In this example we will see how to configure the Watson SHDSL Router to perform a stacked VLAN operation based on the Ethernet switched port. With this setup an S-VLAN taga ging (Service provider tag) will be performed to packets based on Ethernet switch port number. Even if the customer traffic is C- VLAN tagged (Customer VLAN) a second tag (S-tag) will be added to packets ingressing the switch ports. In order to access the device management a dedicated VLAN management is needed. 7.2 Stacked VLAN configuration The first step is to create a Bridge between LAN and WAN as described in chapter 1.3: Bridge configuration. The second step is to create a VLAN interface in order to access the management over a management VLAN. The procedure is described in chapter 3: Management over VLAN. Now you are ready to enter the stacked VLAN configuration: Network Connections -> Bridge Properties Revision: 2010-03-29 7-1

Watson SHDSL Router Watson-SHDSL-Router-Application-Manual.doc Turn on the Port-based Stacked VLAN mode: Select Port Based as Stacked VLAN Mode You need to specify the Ethertype of the VLAN stacking. If you need to interoperate with older switch you may have to use a TPID (Service Tag) of 8100. You have also to enter the management VLAN ID. If the configuration is correct and you have setup a VLAN management you can hit apply and try to reconnect. You may have to use another IP address depending on which management interface you try to access (with or without VLAN). Finally you can enter the S-VLAN port configuration. In the above example we have mapped port 1-4 to S-VLAN ID 444 and port 5-8 to S-VLAN ID 333. 7-2 Revision: 2010-03-29

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information