Ruggedcom RuggedRouter RX1100 Uživatelský manuál

Procházejte online nebo si stáhněte Uživatelský manuál pro Hardware Ruggedcom RuggedRouter RX1100. RuggedCom RuggedRouter RX1100 User Manual Uživatelská příručka

  • Stažení
  • Přidat do mých příruček
  • Tisk
  • Strana
    / 341
  • Tabulka s obsahem
  • KNIHY
  • Hodnocené. / 5. Na základě hodnocení zákazníků

Shrnutí obsahu

Strany 1 - RuggedRouter®

RuggedRouter®RX1000/RX1100™ User GuideRuggedCom Inc.300 Applewood Crescent,Concord, OntarioCanada L4K 5C7Tel: +1 905 856 5288Fax: +1 905 856 1995Toll

Strany 2 - RuggedRouter® User Guide

RuggedRouter®Revision 1.14.3 10 RX1000/RX1100™30.2.4. Access Control ...

Strany 3 - Table of Contents

12. Configuring PPP And the Embedded ModemRevision 1.14.3 100 RX1000/RX1100™12. Configuring PPP And the Embedded Modem12.1. IntroductionThis chapter f

Strany 4

12. Configuring PPP And the Embedded ModemRevision 1.14.3 101 RX1000/RX1100™client is configured to dial on demand, the default gateway option will be

Strany 5

12. Configuring PPP And the Embedded ModemRevision 1.14.3 102 RX1000/RX1100™12.2.1. Modem ConfigurationFigure 12.2. Edit Internal Modem ConfigurationF

Strany 6

12. Configuring PPP And the Embedded ModemRevision 1.14.3 103 RX1000/RX1100™The RADIUS Authentication field will cause incoming PPP connections to be

Strany 7

12. Configuring PPP And the Embedded ModemRevision 1.14.3 104 RX1000/RX1100™%C3 - Enable MNP5 and V.42bis compression negotiation. (default)Line quali

Strany 8

12. Configuring PPP And the Embedded ModemRevision 1.14.3 105 RX1000/RX1100™To edit an existing connection, click the Edit link for that connection.To

Strany 9

12. Configuring PPP And the Embedded ModemRevision 1.14.3 106 RX1000/RX1100™The Maximum Dial Attempts field specifies the number of consecutive times

Strany 10

12. Configuring PPP And the Embedded ModemRevision 1.14.3 107 RX1000/RX1100™The Client Nameserver field controls which nameserver (if any) th

Strany 11

12. Configuring PPP And the Embedded ModemRevision 1.14.3 108 RX1000/RX1100™12.2.5. Modem Incoming Call LogsFigure 12.8. Incoming Call LogsThis page s

Strany 12 - List of Figures

12. Configuring PPP And the Embedded ModemRevision 1.14.3 109 RX1000/RX1100™12.2.7. Modem PPP Connection LogsFigure 12.10. PPP Connection LogsThis pag

Strany 13

RuggedRouter®Revision 1.14.3 11 RX1000/RX1100™34.6.2. System Configuration ...

Strany 14

13. Configuring PPP And The Cellular ModemRevision 1.14.3 110 RX1000/RX1100™13. Configuring PPP And The Cellular Modem13.1. Introduction This chapter

Strany 15

13. Configuring PPP And The Cellular ModemRevision 1.14.3 111 RX1000/RX1100™13.1.1.4. LED Designations The RuggedRouter dedicates two LEDs to indicat

Strany 16

13. Configuring PPP And The Cellular ModemRevision 1.14.3 112 RX1000/RX1100™13.2.1. Cellular Modem Account Activation Prior to use, a CDMA-type cellu

Strany 17

13. Configuring PPP And The Cellular ModemRevision 1.14.3 113 RX1000/RX1100™Figure 13.4. Manual Account Activation1. First, establish an account with

Strany 18

13. Configuring PPP And The Cellular ModemRevision 1.14.3 114 RX1000/RX1100™Necessary parameters are configured in the top part of the screen, and mod

Strany 19 - About this User Guide

13. Configuring PPP And The Cellular ModemRevision 1.14.3 115 RX1000/RX1100™The fields and format of the Modem Status display varies among installed c

Strany 20 - Quick Start Recommendations

13. Configuring PPP And The Cellular ModemRevision 1.14.3 116 RX1000/RX1100™CDMA Modem StatusThe CDMA cellular modem lists several of the same fields

Strany 21 - Physical Interface Related

13. Configuring PPP And The Cellular ModemRevision 1.14.3 117 RX1000/RX1100™13.2.4. Modem PPP ClientFigure 13.9. Configure Modem PPP ClientThe Connect

Strany 22 - Additional Configuration

14. Configuring The FirewallRevision 1.14.3 118 RX1000/RX1100™14. Configuring The Firewall14.1. IntroductionThis chapter familiarizes the user with:•

Strany 23 - 1.1. Introduction

14. Configuring The FirewallRevision 1.14.3 119 RX1000/RX1100™In practice an iptables rule file and a script are all that are needed to load the netfi

Strany 24 - 1.2.2. From SSH

RuggedRouter®Revision 1.14.3 12 RX1000/RX1100™List of Figures1.1. RuggedRouter Setup Main Menu ...

Strany 25 - 1.3.1. Configuring Passwords

14. Configuring The FirewallRevision 1.14.3 120 RX1000/RX1100™When connections are attempted from the Internet to the intranet, the NAT gateway will h

Strany 26

14. Configuring The FirewallRevision 1.14.3 121 RX1000/RX1100™11. Activate the firewall. It is usually a good idea to port scan the firewall after act

Strany 27

14. Configuring The FirewallRevision 1.14.3 122 RX1000/RX1100™Interfaces are defined in the file /etc/shorewall/interfaces and are modified

Strany 28

14. Configuring The FirewallRevision 1.14.3 123 RX1000/RX1100™• Reject all other connection requests.Note that a client on the Internet that is probin

Strany 29

14. Configuring The FirewallRevision 1.14.3 124 RX1000/RX1100™Rule Interface Subnet Address Protocol Ports4 w1ppp eth1 100.1.101.165 w1ppp eth1 100.1.

Strany 30

14. Configuring The FirewallRevision 1.14.3 125 RX1000/RX1100™Action The action as described in the previous table.Source-Zone The zone the connection

Strany 31

14. Configuring The FirewallRevision 1.14.3 126 RX1000/RX1100™wider subnet mask such as 0.0.0.0/0. It is important that the vpn zone be declared befor

Strany 32

14. Configuring The FirewallRevision 1.14.3 127 RX1000/RX1100™The above figure shows the firewall menu prior to configuration.Configure the firewall t

Strany 33 - Table 1.1. Meaning of LEDs

14. Configuring The FirewallRevision 1.14.3 128 RX1000/RX1100™14.6.1. Network ZonesFigure 14.3. Firewall Network ZonesThis menu allows you to add, del

Strany 34 - 2. Webmin Configuration

14. Configuring The FirewallRevision 1.14.3 129 RX1000/RX1100™14.6.2. Network InterfacesFigure 14.4. Firewall Network InterfacesThis menu allows you t

Strany 35 - 2.2.1.1. Ports And Addresses

RuggedRouter®Revision 1.14.3 13 RX1000/RX1100™6.3. Editing a Network Interface ...

Strany 36 - 2.2.3. Logging

14. Configuring The FirewallRevision 1.14.3 130 RX1000/RX1100™The arp_filter option causes this interface to only answer ARP "who-has" reque

Strany 37 - 2.2.4. Authentication

14. Configuring The FirewallRevision 1.14.3 131 RX1000/RX1100™14.6.3. Network Zone HostsFigure 14.6. Firewall Zone HostsThis menu allows you to add, d

Strany 38 - 2.2.5. Webmin Events Log

14. Configuring The FirewallRevision 1.14.3 132 RX1000/RX1100™Figure 14.8. Editing A Firewall Default PolicyThe Syslog level field causes a log entry

Strany 39 - 3. Configure Webmin Users

14. Configuring The FirewallRevision 1.14.3 133 RX1000/RX1100™The Network to masquerade fields determine the interface or subnet on the private networ

Strany 40 - 3.4. Webmin Users Menu

14. Configuring The FirewallRevision 1.14.3 134 RX1000/RX1100™The Action field specifies the final action to take on incoming requests matching the ru

Strany 41 - 3.5. Edit Webmin User menu

14. Configuring The FirewallRevision 1.14.3 135 RX1000/RX1100™This menu allows you to add, delete and static NAT translations. Add a new translations

Strany 42

14. Configuring The FirewallRevision 1.14.3 136 RX1000/RX1100™This menu allows you to control which addresses the firewall will accept connections fro

Strany 43

15. Traffic ControlRevision 1.14.3 137 RX1000/RX1100™15. Traffic Control 15.1. Traffic Control (TC) Fundamentals Traffic Control is a subsystem of the

Strany 44 - 4. Configuring The System

15. Traffic ControlRevision 1.14.3 138 RX1000/RX1100™15.1.1.3. TC RulesMark Source Destination Protocol Source Port Dest Port Test Length TOS2 Any Any

Strany 45 - 4.2. Bootup And Shutdown

15. Traffic ControlRevision 1.14.3 139 RX1000/RX1100™Clicking on a link in the Interface column will allow you to edit or delete a traffic classificat

Strany 46 - 4.3. Change Password Command

RuggedRouter®Revision 1.14.3 14 RX1000/RX1100™12.8. Incoming Call Logs ...

Strany 47 - 4.5. Scheduled Cron Jobs

15. Traffic ControlRevision 1.14.3 140 RX1000/RX1100™Add a new traffic class by selecting the Add a new traffic classification class link or by clicki

Strany 48

15. Traffic ControlRevision 1.14.3 141 RX1000/RX1100™The tos-minimize-cost option field specifies that a packet with the minimize cost ToS (ToS bit 6

Strany 49 - 4.7. System Time

15. Traffic ControlRevision 1.14.3 142 RX1000/RX1100™Clicking on a link in the Mark column will allow you to edit or delete a traffic classification r

Strany 50 - 5. Configuring Networking

15. Traffic ControlRevision 1.14.3 143 RX1000/RX1100™specified in the / field, to apply to both marks prior to comparison. Mark and mask may be in the

Strany 51 - 5.3.1. Core Settings

16. Configuring IPsec VPNRevision 1.14.3 144 RX1000/RX1100™16. Configuring IPsec VPN 16.1. IntroductionThis chapter familiarizes the user with:• Confi

Strany 52 - Default Routes

16. Configuring IPsec VPNRevision 1.14.3 145 RX1000/RX1100™IP payload. Tunnel mode is most commonly used between gateways, the gateway acting as a pro

Strany 53 - Figure 5.4. Static Routes

16. Configuring IPsec VPNRevision 1.14.3 146 RX1000/RX1100™NoteUse of pre-shared keys require that the IP addresses of both ends of the VPN connection

Strany 54 - 5.3.3.2. Other Static Routes

16. Configuring IPsec VPNRevision 1.14.3 147 RX1000/RX1100™connection can be used without change at either end. One side of the connection (typically

Strany 55 - 5.3.5. DNS Client

16. Configuring IPsec VPNRevision 1.14.3 148 RX1000/RX1100™Upon the first entry to this menu you will prompted to generate a VPN host key. Key generat

Strany 56 - 5.3.7. End To End Backup

16. Configuring IPsec VPNRevision 1.14.3 149 RX1000/RX1100™Figure 16.3. IPsec VPN Configuration After Connections Have Been Created16.2.3. Server Conf

Strany 57

RuggedRouter®Revision 1.14.3 15 RX1000/RX1100™17.6. Core Interface Parameters ...

Strany 58 - Figure 5.9. End To End Backup

16. Configuring IPsec VPNRevision 1.14.3 150 RX1000/RX1100™16.2.4. L2TPD ConfigurationFigure 16.5. L2TPD Configuration MenuThe Local IP Address field

Strany 59 - 6.1. Introduction

16. Configuring IPsec VPNRevision 1.14.3 151 RX1000/RX1100™NoteAES encryption was designed to be more computationally efficient than 3DES. AES256 or A

Strany 60 - 6.1.5. Bridge Fundamentals

16. Configuring IPsec VPNRevision 1.14.3 152 RX1000/RX1100™This menu lists available certificate files, their corresponding key files and details whet

Strany 61 - 6.2. Ethernet Configuration

16. Configuring IPsec VPNRevision 1.14.3 153 RX1000/RX1100™“Start Connection” button). If “Start connection” is chosen then the connection will be aut

Strany 62 - 6.2.1. Ethernet Interfaces

16. Configuring IPsec VPNRevision 1.14.3 154 RX1000/RX1100™16.2.8.2. Left/Right System's SettingsFigure 16.10. Editing A VPN Connection, Part 2Th

Strany 63

16. Configuring IPsec VPNRevision 1.14.3 155 RX1000/RX1100™16.2.9. Showing IPsec StatusIPsec Status1 interface lo/lo 127.0.0.12 interface eth1/eth1

Strany 64 - 6.2.4. Bridge Configuration

16. Configuring IPsec VPNRevision 1.14.3 156 RX1000/RX1100™41 #3093: "openswantest" STATE_MAIN_R3 (sent MR3, ISAKMP SA established); EVENT_S

Strany 65 - 6.2.6. Edit PPPoE Interface

16. Configuring IPsec VPNRevision 1.14.3 157 RX1000/RX1100™Select A Certificate AuthorityBegin by constructing the required certificates. You m

Strany 66 - 6.2.7. PPP Logs

16. Configuring IPsec VPNRevision 1.14.3 158 RX1000/RX1100™is the pass phrase that was used to generate the certificate) must be added to the end of t

Strany 67 - 7.1. Introduction

16. Configuring IPsec VPNRevision 1.14.3 159 RX1000/RX1100™Add the following firewall rules:Action Source-Zone Destination-Zone Protocol Dest-PortACCE

Strany 68 - 7.2. T1/E1 Configuration

RuggedRouter®Revision 1.14.3 16 RX1000/RX1100™24.1. Sources of Delay and Error in an End to End Exchange ...

Strany 69

17. Configuring Dynamic RoutingRevision 1.14.3 160 RX1000/RX1100™17. Configuring Dynamic Routing17.1. IntroductionThis chapter familiarizes the user w

Strany 70

17. Configuring Dynamic RoutingRevision 1.14.3 161 RX1000/RX1100™subnet or connected to that interface may exchange routes. A neighbor is a specific r

Strany 71 - 7.2.2.2. E1 Settings

17. Configuring Dynamic RoutingRevision 1.14.3 162 RX1000/RX1100™17.1.5. Key OSPF And RIP Parameters17.1.5.1. Network AreasNetwork areas determine the

Strany 72

17. Configuring Dynamic RoutingRevision 1.14.3 163 RX1000/RX1100™NoteThe default setting of Passive Interface Default means that you must explicitly c

Strany 73 - 7.2.3.2. Frame Relay DLCIs

17. Configuring Dynamic RoutingRevision 1.14.3 164 RX1000/RX1100™17.1.5.10. Administrative DistancesThe router may work with different routing protoco

Strany 74 - 7.2.5.1. Link Statistics

17. Configuring Dynamic RoutingRevision 1.14.3 165 RX1000/RX1100™Router 1 and 2 must enable link-detect, to stop advertising 1.1.1.0/24 in the event o

Strany 75

17. Configuring Dynamic RoutingRevision 1.14.3 166 RX1000/RX1100™17.2.1. Enable ProtocolsFigure 17.3. Dynamic Protocol Enable MenuThis menu enables RI

Strany 76 - 7.2.6. T1/E1 Loopback

17. Configuring Dynamic RoutingRevision 1.14.3 167 RX1000/RX1100™The Hostname field sets the hostname for the core daemon. This value is only used as

Strany 77 - Figure 7.12. T1/E1 Loopback

17. Configuring Dynamic RoutingRevision 1.14.3 168 RX1000/RX1100™This menu contains the configuration and status of BGP on the router.The BGP Global P

Strany 78 - 7.2.9. Upgrading Firmware

17. Configuring Dynamic RoutingRevision 1.14.3 169 RX1000/RX1100™The Telnet Password field sets the password to be used for telnet access to bgpd. Thi

Strany 79 - 8.1. Introduction

RuggedRouter®Revision 1.14.3 17 RX1000/RX1100™32.7. IRIGB GPS Status ...

Strany 80 - 8.2. T3/E3 Configuration

17. Configuring Dynamic RoutingRevision 1.14.3 170 RX1000/RX1100™17.2.3.2. BGP NetworksFigure 17.9. BGP Networks MenuNeighbors are other BGP routers w

Strany 81 - Figure 8.4. Edit T3 Interface

17. Configuring Dynamic RoutingRevision 1.14.3 171 RX1000/RX1100™17.2.3.3. BGP Network Neighbor ConfigurationFigure 17.10. BGP Network Neighbor Config

Strany 82 - Figure 8.5. Edit E3 Interface

17. Configuring Dynamic RoutingRevision 1.14.3 172 RX1000/RX1100™17.2.3.4. BGP StatusFigure 17.11. BGP Status DisplayThe BGP Status menu displays:• A

Strany 83 - 8.2.3. T3/E3 Statistics

17. Configuring Dynamic RoutingRevision 1.14.3 173 RX1000/RX1100™17.2.3.5. View BGP ConfigurationFigure 17.12. View BGP Configuration MenuThis menu di

Strany 84 - 8.2.5. Upgrading Software

17. Configuring Dynamic RoutingRevision 1.14.3 174 RX1000/RX1100™17.2.4.1. OSPF Global ParametersFigure 17.14. OSPF Global ParametersThe Enable Passwo

Strany 85 - 9.2. DDS Configuration

17. Configuring Dynamic RoutingRevision 1.14.3 175 RX1000/RX1100™configuration for each interface. The cost for each interface can also be set in the

Strany 86 - 9.2.1. DDS Network Interfaces

17. Configuring Dynamic RoutingRevision 1.14.3 176 RX1000/RX1100™The Redistribute BGP fields control distribution of routes learned by BGP. When enabl

Strany 87

17. Configuring Dynamic RoutingRevision 1.14.3 177 RX1000/RX1100™The Retransmit Interval field controls the delay between retransmissions.The Transmit

Strany 88 - 9.2.4. DDS Statistics

17. Configuring Dynamic RoutingRevision 1.14.3 178 RX1000/RX1100™This menu contains the configuration and status of RIP on the router.The RIP Global

Strany 89 - 9.2.5. DDS Loopback

17. Configuring Dynamic RoutingRevision 1.14.3 179 RX1000/RX1100™The Distance field sets the administrative distance to use for all routes unless over

Strany 90 - 9.2.7. Upgrading Software

RuggedRouter®Revision 1.14.3 18 RX1000/RX1100™34.42. Software Upgrade System ...

Strany 91 - 10.1. Introduction

17. Configuring Dynamic RoutingRevision 1.14.3 180 RX1000/RX1100™17.2.5.3. RIP InterfacesFigure 17.19. RIP InterfacesParameters specific to one interf

Strany 92

17. Configuring Dynamic RoutingRevision 1.14.3 181 RX1000/RX1100™17.2.5.4. RIP NetworksFigure 17.20. RIP NetworksNeighbors are specific routers with w

Strany 93 - 10. Multilink PPP over T1/E1

18. Link BackupRevision 1.14.3 182 RX1000/RX1100™18. Link Backup18.1. IntroductionThis chapter familiarizes the user with:• Configuring link backup• O

Strany 94 - 11.1. Introduction

18. Link BackupRevision 1.14.3 183 RX1000/RX1100™Figure 18.1. Link Backup ExampleThe daemon will construe the main link as having failed (even if its

Strany 95 - 11.1.2.5. LED Designations

18. Link BackupRevision 1.14.3 184 RX1000/RX1100™18.2.2. Link Backup ConfigurationsFigure 18.3. Link Backup ConfigurationsThis menu displays existing

Strany 96 - 11.2. ADSL Configuration

18. Link BackupRevision 1.14.3 185 RX1000/RX1100™The Startup Delay field configures the length of time to wait for the main link to come up at the sta

Strany 97

18. Link BackupRevision 1.14.3 186 RX1000/RX1100™18.2.5. Link Backup StatusFigure 18.6. Link Backup StatusThe link backup status menu displays the sta

Strany 98

18. Link BackupRevision 1.14.3 187 RX1000/RX1100™• 'interface' is the main interface as configured for the link backup.• 'begin' i

Strany 99 - 11.2.6. Upgrading Software

18. Link BackupRevision 1.14.3 188 RX1000/RX1100™Mar 27 12:43:11 brouter blinktest 1.0: ERROR Begin: Invalid interface: 0Mar 27 12:43:45 brouter blink

Strany 100 - 12.1. Introduction

19. Configuring VRRPRevision 1.14.3 189 RX1000/RX1100™19. Configuring VRRP19.1. IntroductionThis chapter familiarizes the user with:• Configuring VRRP

Strany 101 - 12.2. PPP Modem Configuration

About this User GuideRevision 1.14.3 19 RX1000/RX1100™About this User GuideThe aim of this user guide is to provide a reference and to aid in the conf

Strany 102 - 12.2.1. Modem Configuration

19. Configuring VRRPRevision 1.14.3 190 RX1000/RX1100™Each Virtual Router has a user-configured Virtual Router Identifier (VRID) and an Virtual IP add

Strany 103

19. Configuring VRRPRevision 1.14.3 191 RX1000/RX1100™In the following network, both host 1 and host 2 use a gateway of 192.168.3.10. The external sid

Strany 104

19. Configuring VRRPRevision 1.14.3 192 RX1000/RX1100™19.2. VRRP Configuration19.2.1. VRRP Main MenuFigure 19.3. VRRP Main MenuNote that VRRP is di

Strany 105 - 12.2.3. Modem PPP Client

19. Configuring VRRPRevision 1.14.3 193 RX1000/RX1100™The VRRP groups under the Group Name column define virtual IP groups. Clicking on a link will al

Strany 106 - 12.2.4. Modem PPP Server

19. Configuring VRRPRevision 1.14.3 194 RX1000/RX1100™Generally, one will need to monitor logical network interfaces, as they participate directly in

Strany 107

19. Configuring VRRPRevision 1.14.3 195 RX1000/RX1100™The VRRP Instances Status menu displays the current status of VRRP instances. This menu doesnot

Strany 108 - 12.2.6. Modem PPP Logs

20. Traffic PrioritizationRevision 1.14.3 196 RX1000/RX1100™20. Traffic Prioritization 20.1. IntroductionThis chapter familiarizes the user with:• Ena

Strany 109

20. Traffic PrioritizationRevision 1.14.3 197 RX1000/RX1100™20.1.1.2. FiltersFor each packet to be transmitted on a prioritized interface, the packet

Strany 110 - 13.1. Introduction

20. Traffic PrioritizationRevision 1.14.3 198 RX1000/RX1100™MD MT MR MMC Descriptions Priority Queue1 0 1 0 MD+MR High1 0 1 1 MD+MR+MMC High1 1 0 0 MD

Strany 111 - 13.1.1.4. LED Designations

20. Traffic PrioritizationRevision 1.14.3 199 RX1000/RX1100™23, respectively. The TcpModbus port number is not common, and must be explicitly entered.

Strany 112

RuggedRouter®RuggedRouter® User Guidefor use with RX1000/RX1100 ProductsROX™ 1.14.3 release date: July 6, 2010User guide: December 22, 2010RuggedCom I

Strany 113

About this User GuideRevision 1.14.3 20 RX1000/RX1100™NoteMeans reader take note. Notes contain helpful suggestions or references to materi

Strany 114 - 13.2.2.2. Modem Status

20. Traffic PrioritizationRevision 1.14.3 200 RX1000/RX1100™20.2.2. Interface Prioritization MenuFigure 20.2. Interface Prioritization MenuThis menu a

Strany 115 - HSPA/GPRS Modem Status

20. Traffic PrioritizationRevision 1.14.3 201 RX1000/RX1100™If you delete a queue referenced by filters, the filters will be adjusted to use the next

Strany 116 - CDMA Modem Status

20. Traffic PrioritizationRevision 1.14.3 202 RX1000/RX1100™20.2.3. Prioritization StatisticsFigure 20.5. Prioritization StatisticsThis menu displays

Strany 117 - 13.2.4. Modem PPP Client

21. Link Layer Discovery Protocol (LLDP)Revision 1.14.3 203 RX1000/RX1100™21. Link Layer Discovery Protocol (LLDP) The IEEE standard, 802.1AB Link

Strany 118 - 14. Configuring The Firewall

22. Configuring Generic Routing EncapsulationRevision 1.14.3 204 RX1000/RX1100™22. Configuring Generic Routing Encapsulation 22.1. IntroductionThis ch

Strany 119 - 14.2.4. Port Forwarding

22. Configuring Generic Routing EncapsulationRevision 1.14.3 205 RX1000/RX1100™22.2. GRE Configuration22.2.1. GRE Main MenuFigure 22.2. GRE Main MenuT

Strany 120 - 14.3. Shorewall Quick Setup

22. Configuring Generic Routing EncapsulationRevision 1.14.3 206 RX1000/RX1100™NoteEach tunnel must have a unique combination of local and remote addr

Strany 121 - 14.4.2. Interfaces

23. Network UtilitiesRevision 1.14.3 207 RX1000/RX1100™23. Network Utilities23.1. IntroductionThis chapter familiarizes the user with:• Pinging hosts,

Strany 122 - 14.4.4. Policy

23. Network UtilitiesRevision 1.14.3 208 RX1000/RX1100™23.3. Ping Menu Figure 23.2. Ping MenuThe Hostname field accepts the host name or IP address t

Strany 123 - 14.4.5. Masquerading And SNAT

23. Network UtilitiesRevision 1.14.3 209 RX1000/RX1100™The main Ping Check menu also contains links to Add a new Ping check... or to Edit an existinge

Strany 124 - 14.4.6. Rules

About this User GuideRevision 1.14.3 21 RX1000/RX1100™Basic Web Based Configuration11. Change the router password from the System menu, Change Passwor

Strany 125

23. Network UtilitiesRevision 1.14.3 210 RX1000/RX1100™The Verbose Output? field causes ping to present the maximum of output.The Lookup Addresses? fi

Strany 126 - 14.6. Firewall Configuration

23. Network UtilitiesRevision 1.14.3 211 RX1000/RX1100™23.7.1. Tcpdump A Network Interface Figure 23.7. Tcpdump MenuThe Interface to capture on field

Strany 127

23. Network UtilitiesRevision 1.14.3 212 RX1000/RX1100™23.7.2. Frame Relay Link Layer Trace A WAN InterfaceFigure 23.8. Frame Relay Trace MenuFrame Re

Strany 128 - 14.6.1. Network Zones

23. Network UtilitiesRevision 1.14.3 213 RX1000/RX1100™23.8. Interface Statistics MenuFigure 23.10. Interface Statistics MenuThis menu provides basic

Strany 129 - 14.6.2. Network Interfaces

23. Network UtilitiesRevision 1.14.3 214 RX1000/RX1100™This menu displays the current routing table and the state of the router's interfaces.Sele

Strany 130

24. Configuring Serial ProtocolsRevision 1.14.3 215 RX1000/RX1100™24. Configuring Serial Protocols 24.1. IntroductionThis chapter familiarizes the use

Strany 131 - 14.6.4. Default Policies

24. Configuring Serial ProtocolsRevision 1.14.3 216 RX1000/RX1100™24.1.2. Serial Protocols Applications24.1.2.1. Character EncapsulationCharacter enca

Strany 132 - 14.6.5. Masquerading

24. Configuring Serial ProtocolsRevision 1.14.3 217 RX1000/RX1100™Initially, the remote servers will place connections to the host server. Th

Strany 133 - 14.6.6. Firewall Rules

24. Configuring Serial ProtocolsRevision 1.14.3 218 RX1000/RX1100™• Packetize on full packet.If configured to packetize on a specific character, the s

Strany 134 - 14.6.7. Static NAT

24. Configuring Serial ProtocolsRevision 1.14.3 219 RX1000/RX1100™24.1.4.2. MultiMaster CapabilityIt is possible for multiple masters to simultaneousl

Strany 135 - 14.6.9. Actions When Stopped

About this User GuideRevision 1.14.3 22 RX1000/RX1100™Additional Configuration25. You may wish to configure a backup interface to use in the event of

Strany 136

24. Configuring Serial ProtocolsRevision 1.14.3 220 RX1000/RX1100™Figure 24.1. Sources of Delay and Error in an End to End ExchangeIn step 1 the maste

Strany 137 - 15. Traffic Control

24. Configuring Serial ProtocolsRevision 1.14.3 221 RX1000/RX1100™24.1.5.6. A Worked ExampleA network is constructed with two Masters and 48 RTUs on f

Strany 138 - 15.1.1.3. TC Rules

24. Configuring Serial ProtocolsRevision 1.14.3 222 RX1000/RX1100™When a message with an unknown DNP source address is received on a local serial port

Strany 139 - 15.2.2. TC Classes

24. Configuring Serial ProtocolsRevision 1.14.3 223 RX1000/RX1100™Note that the Serial Protocols server is disabled by default and may be enabled via

Strany 140 - Figure 15.4. Edit TC Classes

24. Configuring Serial ProtocolsRevision 1.14.3 224 RX1000/RX1100™24.2.4. RawSocket MenuFigure 24.5. Raw Socket MenuThis menu configures the Raw Socke

Strany 141 - 15.2.3. TC Rules

24. Configuring Serial ProtocolsRevision 1.14.3 225 RX1000/RX1100™The Response Timer field configures the maximum time from the last transmitted chara

Strany 142 - Figure 15.6. Edit TC Rule

24. Configuring Serial ProtocolsRevision 1.14.3 226 RX1000/RX1100™The Max Conns field configures the maximum number of incoming DNP connections.The Lo

Strany 143

24. Configuring Serial ProtocolsRevision 1.14.3 227 RX1000/RX1100™24.2.7. Serial Protocols Statistics MenuFigure 24.9. Serial Protocols Statistics Men

Strany 144 - 16. Configuring IPsec VPN

24. Configuring Serial ProtocolsRevision 1.14.3 228 RX1000/RX1100™24.2.8. Serial Protocols Trace MenuFigure 24.10. Serial Protocols Trace MenuThis men

Strany 145 - 16.1.1.2. Policy-Based VPNs

24. Configuring Serial ProtocolsRevision 1.14.3 229 RX1000/RX1100™type of decoding may be specified. The tool may also be used to force the port to tr

Strany 146 - 16.1.1.6. NAT Traversal

1. Setting Up And Administering The RouterRevision 1.14.3 23 RX1000/RX1100™1. Setting Up And Administering The Router1.1. Introduction This chapter

Strany 147 - 16.2. IPsec VPN Configuration

25. Synchronous Serial PortsRevision 1.14.3 230 RX1000/RX1100™25. Synchronous Serial Ports 25.1. IntroductionThis chapter familiarizes the user with c

Strany 148 - 16.2.2. VPN Main Menu

25. Synchronous Serial PortsRevision 1.14.3 231 RX1000/RX1100™Figure 25.1. Synchronous Serial Main MenuNote that the Serial Protocols server is disabl

Strany 149 - 16.2.3. Server Configuration

25. Synchronous Serial PortsRevision 1.14.3 232 RX1000/RX1100™Figure 25.3. Edit Synchronous Serial Port Parameters25.2.2. Configuring Raw Socket On Sy

Strany 150 - 16.2.4. L2TPD Configuration

25. Synchronous Serial PortsRevision 1.14.3 233 RX1000/RX1100™When multiple oubound connections are configured and present in the table, a Delete butt

Strany 151 - 16.2.7. List Certificates

26. Configuring Layer 2 TunnelsRevision 1.14.3 234 RX1000/RX1100™26. Configuring Layer 2 Tunnels26.1. IntroductionRuggedRouter is capable of extending

Strany 152 - 16.2.8. VPN Connections

26. Configuring Layer 2 TunnelsRevision 1.14.3 235 RX1000/RX1100™The Media Access Control (MAC) destination address of frames received from Ethernet i

Strany 153

26. Configuring Layer 2 TunnelsRevision 1.14.3 236 RX1000/RX1100™NoteAvoid network configurations where the daemons can form a traffic loop. The simpl

Strany 154

26. Configuring Layer 2 TunnelsRevision 1.14.3 237 RX1000/RX1100™26.2.2. General Configuration MenuFigure 26.2. General Configuration MenuThis menu co

Strany 155 - IPsec Status

26. Configuring Layer 2 TunnelsRevision 1.14.3 238 RX1000/RX1100™Figure 26.4. GOOSE MenuThis menu configures a GOOSE tunnel.The Ethernet Interface fie

Strany 156

26. Configuring Layer 2 TunnelsRevision 1.14.3 239 RX1000/RX1100™This menu configures a generic layer 2 tunnel.The Ethernet Interface field configures

Strany 157

1. Setting Up And Administering The RouterRevision 1.14.3 24 RX1000/RX1100™• Superuser account "root", password "admin",• SSH and

Strany 158

26. Configuring Layer 2 TunnelsRevision 1.14.3 240 RX1000/RX1100™26.2.5. GOOSE Statistics MenuFigure 26.8. GOOSE Statistics MenuThis menu presents sta

Strany 159 - ACCEPT vpn loc

26. Configuring Layer 2 TunnelsRevision 1.14.3 241 RX1000/RX1100™26.2.6. Generic L2 Tunnel Statistics MenuFigure 26.9. Generic L2 Statistics MenuThis

Strany 160 - 17.1. Introduction

26. Configuring Layer 2 TunnelsRevision 1.14.3 242 RX1000/RX1100™26.2.7. Activity Trace MenuFigure 26.10. Activity Trace MenuThis menu displays captur

Strany 161 - 17.1.4. OSPF Fundamentals

27. Configuring The DHCP serverRevision 1.14.3 243 RX1000/RX1100™27. Configuring The DHCP server27.1. IntroductionThis chapter familiarizes the user w

Strany 162 - 17.1.5.2. Router-ID

27. Configuring The DHCP serverRevision 1.14.3 244 RX1000/RX1100™Many settings are only supported by certain specific types of clients, and are ignore

Strany 163 - 17.1.5.9. RIP Authentication

27. Configuring The DHCP serverRevision 1.14.3 245 RX1000/RX1100™• Boot file server: The IP address of the tftp server to boot from. This only applies

Strany 164 - 17.1.6.1. Area And Subnets

27. Configuring The DHCP serverRevision 1.14.3 246 RX1000/RX1100™1. Enable eth1 in the 'Edit Network Interfaces' menu.2. Click 'add a

Strany 165 - 17.1.6.2. VRRP Operation

27. Configuring The DHCP serverRevision 1.14.3 247 RX1000/RX1100™Assign a client at switch port 3 address 192.168.1.103.Assign multiple clients at swi

Strany 166 - 17.2.2. Core

27. Configuring The DHCP serverRevision 1.14.3 248 RX1000/RX1100™The switch port 2 is on vlan2 using subnet 192.168.2.0/24 and should assign addresses

Strany 167 - 17.2.3. BGP configuration

27. Configuring The DHCP serverRevision 1.14.3 249 RX1000/RX1100™27.2. DHCP Configuration27.2.1. DHCP Server Main MenuFigure 27.1. DHCP Server MenuThe

Strany 168

1. Setting Up And Administering The RouterRevision 1.14.3 25 RX1000/RX1100™1.3.1. Configuring PasswordsThe Change Passwords command changes the

Strany 169

27. Configuring The DHCP serverRevision 1.14.3 250 RX1000/RX1100™Figure 27.2. DHCP Shared Network ConfigurationThe settings specific to the Create/Edi

Strany 170 - 17.2.3.2. BGP Networks

27. Configuring The DHCP serverRevision 1.14.3 251 RX1000/RX1100™Figure 27.3. DHCP Subnet ConfigurationThe settings specific to the Create/Edit Subnet

Strany 171

27. Configuring The DHCP serverRevision 1.14.3 252 RX1000/RX1100™Figure 27.4. DHCP Group ConfigurationThe settings specific to the Create/Edit Host Gr

Strany 172 - 17.2.3.4. BGP Status

27. Configuring The DHCP serverRevision 1.14.3 253 RX1000/RX1100™The Host description field is used to describe the host as desired.The Host name fiel

Strany 173 - 17.2.4. OSPF

28. DHCP RelayRevision 1.14.3 254 RX1000/RX1100™28. DHCP Relay 28.1. IntroductionThis chapter familiarizes the user with the use and configuration of

Strany 174

28. DHCP RelayRevision 1.14.3 255 RX1000/RX1100™The Servers field configures the list of DHCP servers to which DHCP/BOOTP requests will

Strany 175

29. Configuring NTPRevision 1.14.3 256 RX1000/RX1100™29. Configuring NTP29.1. IntroductionThis chapter familiarizes the user with:• Enabling/Disabling

Strany 176 - 17.2.4.2. OSPF Interfaces

29. Configuring NTPRevision 1.14.3 257 RX1000/RX1100™29.1.1.1. The NTP Sanity Limit The NTP daemon corrects the system time through two means,

Strany 177 - 17.2.5. RIP

29. Configuring NTPRevision 1.14.3 258 RX1000/RX1100™Note that the NTP server is disabled by default and may be enabled via the System folder, Bootup

Strany 178

29. Configuring NTPRevision 1.14.3 259 RX1000/RX1100™The Version field indicates the version of the NTP protocol used to communicate with this host.C

Strany 179 - 17.2.5.2. RIP Key Chains

1. Setting Up And Administering The RouterRevision 1.14.3 26 RX1000/RX1100™1.3.3. Setting The Hostname and Domain The Set Hostname command sets the h

Strany 180 - 17.2.5.3. RIP Interfaces

29. Configuring NTPRevision 1.14.3 260 RX1000/RX1100™29.2.6. Viewing The NTP LogFigure 29.5. NTP LogThe NTP Log menu displays the log of recent NTP ev

Strany 181 - 17.2.5.5. RIP Status

29. Configuring NTPRevision 1.14.3 261 RX1000/RX1100™29.2.7. Viewing GPS StatusFigure 29.6. GPS StatusIf the router is equipped with a Precision Time

Strany 182 - 18. Link Backup

30. Configuring SSHRevision 1.14.3 262 RX1000/RX1100™30. Configuring SSH 30.1. IntroductionThis chapter familiarizes the user with:• Configuring SSH A

Strany 183 - 18.2.1. Link Backup Main Menu

30. Configuring SSHRevision 1.14.3 263 RX1000/RX1100™30.2. SSH Configuration30.2.1. SSH Main MenuFigure 30.1. SSH ServerNote that the SSH server is en

Strany 184

30. Configuring SSHRevision 1.14.3 264 RX1000/RX1100™30.2.3. NetworkingFigure 30.3. SSH Server NetworkingThe Listen on addresses fields determine an I

Strany 185 - 18.2.4. Link Backup Logs

30. Configuring SSHRevision 1.14.3 265 RX1000/RX1100™The Only allow users field specifies the users allowed to connect by SSH. The specification can b

Strany 186 - 18.2.5. Link Backup Status

31. Configuring The Telnet ServerRevision 1.14.3 266 RX1000/RX1100™31. Configuring The Telnet Server 31.1. IntroductionThis chapter familiarizes the u

Strany 187 - 18.2.7.2. Logging output

31. Configuring The Telnet ServerRevision 1.14.3 267 RX1000/RX1100™any configured IP address. If "All addresses" is not selected, then the t

Strany 188

32. Configuring IRIGB And IEEE1588Revision 1.14.3 268 RX1000/RX1100™32. Configuring IRIGB And IEEE158832.1. IntroductionThis chapter familiarizes the

Strany 189 - 19. Configuring VRRP

32. Configuring IRIGB And IEEE1588Revision 1.14.3 269 RX1000/RX1100™PTP Identifier DescrptionNTP The PTP clock is a secondary reference standard clock

Strany 190 - Figure 19.1. VRRP Example

1. Setting Up And Administering The RouterRevision 1.14.3 27 RX1000/RX1100™stopped. If access to the shell has been made through ssh the session will

Strany 191

32. Configuring IRIGB And IEEE1588Revision 1.14.3 270 RX1000/RX1100™32.1.2.2. Reference ClocksGPS provides the highest quality reference clock. It wil

Strany 192 - 19.2. VRRP Configuration

32. Configuring IRIGB And IEEE1588Revision 1.14.3 271 RX1000/RX1100™Dielectric Type Time Delay in ns/m (ns/ft)Air Space Polyethylene (ASP) 3.45-3.63 (

Strany 193 - Figure 19.5. VRRP Instance

32. Configuring IRIGB And IEEE1588Revision 1.14.3 272 RX1000/RX1100™This menu allow you to configure IRIGB parameters. The save button will

Strany 194 - 19.2.4. Editing A VRRP Group

32. Configuring IRIGB And IEEE1588Revision 1.14.3 273 RX1000/RX1100™32.2.5. IRIGB StatusFigure 32.5. IRIGB GPS StatusThis page shows whether GPS is lo

Strany 195

32. Configuring IRIGB And IEEE1588Revision 1.14.3 274 RX1000/RX1100™32.2.7. IRIGB LogFigure 32.7. IRIGB GPS StatusThis page reflects reference clock c

Strany 196 - 20. Traffic Prioritization

33. Configuring the Intrusion Detection SystemRevision 1.14.3 275 RX1000/RX1100™33. Configuring the Intrusion Detection System33.1. IntroductionThis c

Strany 197 - 20.1.1.3. TOS Prioritization

33. Configuring the Intrusion Detection SystemRevision 1.14.3 276 RX1000/RX1100™33.1.1.3. Alerting MethodsAlerts generated by snort are stored by one

Strany 198

33. Configuring the Intrusion Detection SystemRevision 1.14.3 277 RX1000/RX1100™33.2.1.2. InterfacesFigure 33.2. Snort Main Menu part 2The Interfaces

Strany 199

33. Configuring the Intrusion Detection SystemRevision 1.14.3 278 RX1000/RX1100™Each rule can be individually enabled, disabled or deleted. Most rules

Strany 200

33. Configuring the Intrusion Detection SystemRevision 1.14.3 279 RX1000/RX1100™33.2.3. PreProcessorsFigure 33.6. Snort PreprocessorsPreprocessors are

Strany 201

1. Setting Up And Administering The RouterRevision 1.14.3 28 RX1000/RX1100™Figure 1.9. RuggedRouter Hardware Information Menu1.3.9. Restoring A Config

Strany 202

34. Maintaining The RouterRevision 1.14.3 280 RX1000/RX1100™34. Maintaining The Router34.1. IntroductionThis chapter familiarizes the user with:• View

Strany 203 - 21.1. LLDP Status

34. Maintaining The RouterRevision 1.14.3 281 RX1000/RX1100™34.2.1. Alert Main MenuFigure 34.1. Alert Main MenuThis menu displays active alerts a

Strany 204 - 22.1. Introduction

34. Maintaining The RouterRevision 1.14.3 282 RX1000/RX1100™Select Alert Configuration to change the generic configuration and alert filter configurat

Strany 205 - 22.2. GRE Configuration

34. Maintaining The RouterRevision 1.14.3 283 RX1000/RX1100™This menu configures an alert filter, which defines the forwarder destination for active a

Strany 206

34. Maintaining The RouterRevision 1.14.3 284 RX1000/RX1100™34.2.2.3. Change Alert DefinitionFigure 34.5. Change Alert Definition MenuThis menu allows

Strany 207 - 23. Network Utilities

34. Maintaining The RouterRevision 1.14.3 285 RX1000/RX1100™The Sample Interval configures how often should the system run configured shell command to

Strany 208 - 23.4. Ping Check Menu

34. Maintaining The RouterRevision 1.14.3 286 RX1000/RX1100™• Temperatures• Voltages• User logins/logouts• Network Interface traffic• CPU load• Disk u

Strany 209 - 23.5. Traceroute Menu

34. Maintaining The RouterRevision 1.14.3 287 RX1000/RX1100™34.3.2.1. Configuring Industrial Defender AddressesFigure 34.7. Industrial Defender Config

Strany 210 - 23.7. Trace Menu

34. Maintaining The RouterRevision 1.14.3 288 RX1000/RX1100™34.3.2.3. Configuring remote sysloggingOnce a key is successfully obtained from an SEM uni

Strany 211 - Figure 23.7. Tcpdump Menu

34. Maintaining The RouterRevision 1.14.3 289 RX1000/RX1100™2. Visit the Shorewall Firewall menu, Network Zones sub-menu and add the "net" a

Strany 212

1. Setting Up And Administering The RouterRevision 1.14.3 29 RX1000/RX1100™Figure 1.10. Selecting a configuration to reloadInitially, your RuggedRoute

Strany 213

34. Maintaining The RouterRevision 1.14.3 290 RX1000/RX1100™Note that granting these uncontrolled accesses to the router is not required in normaloper

Strany 214 - 23.8.1.1. Interface Status

34. Maintaining The RouterRevision 1.14.3 291 RX1000/RX1100™The order of the firewall rules is significant. Any rules that are entered after the Acces

Strany 215 - 24.1. Introduction

34. Maintaining The RouterRevision 1.14.3 292 RX1000/RX1100™• All configuration settings are saved in a configuration archive,• Webmin configuration s

Strany 216 - 24.1.2.2. RTU Polling

34. Maintaining The RouterRevision 1.14.3 293 RX1000/RX1100™This menu configures the backup system.The Automatic Nightly Backup field specifies when t

Strany 217

34. Maintaining The RouterRevision 1.14.3 294 RX1000/RX1100™When activated by pressing the Start Configuration Rollback Monitoring button, each subseq

Strany 218

34. Maintaining The RouterRevision 1.14.3 295 RX1000/RX1100™34.5.3. Archive HistoryFigure 34.15. Archive HistoryThe Archive History menu displays curr

Strany 219

34. Maintaining The RouterRevision 1.14.3 296 RX1000/RX1100™34.5.4. Archive BackupFigure 34.16. Archive BackupThis menu allows the user to manually cr

Strany 220

34. Maintaining The RouterRevision 1.14.3 297 RX1000/RX1100™Figure 34.18. Archive Restore MenuClick on one of the links under Archive Name to start th

Strany 221 - 24.1.5.6. A Worked Example

34. Maintaining The RouterRevision 1.14.3 298 RX1000/RX1100™34.5.6. Archive Difference ToolFigure 34.20. Archive Differences MenuThe Archive Differenc

Strany 222

34. Maintaining The RouterRevision 1.14.3 299 RX1000/RX1100™The difference will be shown by two methods. The difference between the two targets will b

Strany 223 - 24.2.3. Port Settings Menu

RuggedRouter®Revision 1.14.3 3 RX1000/RX1100™Table of ContentsAbout this User Guide ...

Strany 224 - 24.2.5. TcpModBus Menu

1. Setting Up And Administering The RouterRevision 1.14.3 30 RX1000/RX1100™Figure 1.12. Signing On To The Router With A Web Browser1.4.2. SSL Certific

Strany 225 - 24.2.6. DNP Menu

34. Maintaining The RouterRevision 1.14.3 300 RX1000/RX1100™The first version of SNMP, V1, provides the ability to send a notification of an event via

Strany 226

34. Maintaining The RouterRevision 1.14.3 301 RX1000/RX1100™34.6.3. Network Addressing Configuration For reference, the set of currently configured an

Strany 227

34. Maintaining The RouterRevision 1.14.3 302 RX1000/RX1100™The first part of the Access control page allows the creation and deletion of SNMP V1

Strany 228

34. Maintaining The RouterRevision 1.14.3 303 RX1000/RX1100™34.6.5. Trap ConfigurationFigure 34.29. Trap Configuration Menu, Trap OptionsThe Trap Conf

Strany 229

34. Maintaining The RouterRevision 1.14.3 304 RX1000/RX1100™Figure 34.31. Trap Destinations V3The SNMP V3 Trap Destinations part of the menu all

Strany 230 - 25. Synchronous Serial Ports

34. Maintaining The RouterRevision 1.14.3 305 RX1000/RX1100™MIB Name MIB DescriptionTCP-MIB The MIB module for managing TCP implementationsIP-MIB The

Strany 231

34. Maintaining The RouterRevision 1.14.3 306 RX1000/RX1100™RADIUS authentication activity is logged to the authorization log file, "au

Strany 232

34. Maintaining The RouterRevision 1.14.3 307 RX1000/RX1100™The WEBMIN service allows the configuration of multiple operator accounts, each logged sep

Strany 233

34. Maintaining The RouterRevision 1.14.3 308 RX1000/RX1100™The Shared Secret field configures a unique password used to authenticate communications w

Strany 234 - 26.1. Introduction

34. Maintaining The RouterRevision 1.14.3 309 RX1000/RX1100™34.9. Chassis ParametersFigure 34.35. Chassis Parameters MenuThis menu displays the chassi

Strany 235

1. Setting Up And Administering The RouterRevision 1.14.3 31 RX1000/RX1100™Figure 1.13. RuggedRouter Web Interface Main Menu WindowThe index frame pre

Strany 236

34. Maintaining The RouterRevision 1.14.3 310 RX1000/RX1100™Figure 34.36. PoE pinout on 10/100BaseT ports34.10.1. Power over Ethernet MenuFigure 34.37

Strany 237 - 26.2.3. GOOSE Tunnels Menu

34. Maintaining The RouterRevision 1.14.3 311 RX1000/RX1100™34.11. Banner ConfigurationFigure 34.38. Banner Configuration MenuThis menu allows you

Strany 238 - Figure 26.4. GOOSE Menu

34. Maintaining The RouterRevision 1.14.3 312 RX1000/RX1100™• Last login causes information about the last login to be displayed: what time, from wher

Strany 239

34. Maintaining The RouterRevision 1.14.3 313 RX1000/RX1100™34.12. System LogsSystem logs are records of activities that have occurred on the router,

Strany 240 - 26.2.5. GOOSE Statistics Menu

34. Maintaining The RouterRevision 1.14.3 314 RX1000/RX1100™34.12.1. Syslog Factory DefaultsAlthough new logs can be created (and the type of informat

Strany 241

34. Maintaining The RouterRevision 1.14.3 315 RX1000/RX1100™Remote logging can replace disk logging or can augment it.If you wish to replace disk logg

Strany 242 - 26.2.7. Activity Trace Menu

34. Maintaining The RouterRevision 1.14.3 316 RX1000/RX1100™34.13. Upgrade SystemFigure 34.42. Software Upgrade SystemThe Software Upgrade system prov

Strany 243 - 27.1. Introduction

34. Maintaining The RouterRevision 1.14.3 317 RX1000/RX1100™firewall or ssh client. A router upgrade involves replacing some of these packages with ne

Strany 244

34. Maintaining The RouterRevision 1.14.3 318 RX1000/RX1100™If you configure this field with a major/minor/patch release number such as "rr1.7.2&

Strany 245

34. Maintaining The RouterRevision 1.14.3 319 RX1000/RX1100™NoteIf the currently installed version of ROX predates release 1.14.1, the upgrade procedu

Strany 246

1. Setting Up And Administering The RouterRevision 1.14.3 32 RX1000/RX1100™The System Menu provides the ability to:• Change the router password,• Enab

Strany 247

34. Maintaining The RouterRevision 1.14.3 320 RX1000/RX1100™• post-upgrade will be downloaded by the router and executed immediately after the upgrade

Strany 248

34. Maintaining The RouterRevision 1.14.3 321 RX1000/RX1100™The Upload/Download Files menu provides a means to transfer files to and from the router.T

Strany 249 - 27.2. DHCP Configuration

35. Security ConsiderationsRevision 1.14.3 322 RX1000/RX1100™35. Security Considerations35.1. IntroductionThis chapter describes actions to take to se

Strany 250

Appendix A. Setting Up A RepositoryRevision 1.14.3 323 RX1000/RX1100™Appendix A. Setting Up A RepositoryThe RuggedCom software upgrade mechanism requi

Strany 251

Appendix A. Setting Up A RepositoryRevision 1.14.3 324 RX1000/RX1100™A.3. Upgrading The RepositoryRuggedRouter releases are obtained from the RuggedCo

Strany 252

Appendix A. Setting Up A RepositoryRevision 1.14.3 325 RX1000/RX1100™A.4.2. Upgrading ConsiderationsThe RuggedRouter offers you the ability to perform

Strany 253

Appendix B. Re-Flashing Router SoftwareRevision 1.14.3 326 RX1000/RX1100™Appendix B. Re-Flashing Router Software B.1. IntroductionRuggedRouter incorpo

Strany 254 - 28. DHCP Relay

Appendix B. Re-Flashing Router SoftwareRevision 1.14.3 327 RX1000/RX1100™ +-------------------------------------------------------------------------+

Strany 255

Appendix C. Installing Apache Web Server On WindowsRevision 1.14.3 328 RX1000/RX1100™Appendix C. Installing Apache Web Server On WindowsA number of cu

Strany 256 - 29. Configuring NTP

Appendix D. Installing IIS Web Server On WindowsRevision 1.14.3 329 RX1000/RX1100™Appendix D. Installing IIS Web Server On WindowsA number of customer

Strany 257 - 29.2. NTP Configuration

1. Setting Up And Administering The RouterRevision 1.14.3 33 RX1000/RX1100™Figure 1.14. LED Status PanelThe LEDs are organized into three primary grou

Strany 258 - 29.2.3. Servers Configuration

Appendix D. Installing IIS Web Server On WindowsRevision 1.14.3 330 RX1000/RX1100™Visit the router you wish to upgrade and visit the Maintenance menu,

Strany 259 - 29.2.5. Viewing NTP Status

Appendix E. RADIUS Server ConfigurationRevision 1.14.3 331 RX1000/RX1100™Appendix E. RADIUS Server ConfigurationThis section describes the configurati

Strany 260 - 29.2.6. Viewing The NTP Log

Appendix E. RADIUS Server ConfigurationRevision 1.14.3 332 RX1000/RX1100™The following two sections illustrate how to add this information to a RADIUS

Strany 261 - 29.2.8. Viewing The GPS Log

Appendix E. RADIUS Server ConfigurationRevision 1.14.3 333 RX1000/RX1100™• Windows-Group matches the group corresponding to the user's privilege

Strany 262 - 30. Configuring SSH

Appendix E. RADIUS Server ConfigurationRevision 1.14.3 334 RX1000/RX1100™Figure E.3. IAS Window - Add Attribute6. In the Multivalued Attribute Informa

Strany 263 - 30.2. SSH Configuration

Appendix E. RADIUS Server ConfigurationRevision 1.14.3 335 RX1000/RX1100™Figure E.5. IAS Window - Vendor-Specific Attribute Information8. In the Confi

Strany 264 - 30.2.4. Access Control

Appendix E. RADIUS Server ConfigurationRevision 1.14.3 336 RX1000/RX1100™Figure E.7. Active Directory - User Account Properties

Strany 265

Appendix F. VPN/L2TP Configuration in WindowsRevision 1.14.3 337 RX1000/RX1100™Appendix F. VPN/L2TP Configuration in WindowsThis section describes how

Strany 266 - 31.2. Telnet Fundamentals

IndexRevision 1.14.3 338 RX1000/RX1100™IndexAAccess ManagerSecurity, 288Accountsroot, 23rrsetup, 23ADSL InterfacesBridged Mode Logical Interfaces, 98C

Strany 267

IndexRevision 1.14.3 339 RX1000/RX1100™Ignore All ICMP ECHO, 51Ignore ICMP Broadcasts, 51Send ICMP Redirect, 51Syncookie Protection, 51IP AddressesCon

Strany 268 - 32.1. Introduction

2. Webmin ConfigurationRevision 1.14.3 34 RX1000/RX1100™2. Webmin Configuration2.1. IntroductionThis chapter familiarizes the user with configuring th

Strany 269 - 32.1.2. IRIGB Fundamentals

IndexRevision 1.14.3 340 RX1000/RX1100™Link Detect, 163Link State Advertisements, 161Neighbors, 161Operation With VRRP, 165Redistributing Routes, 163P

Strany 270 - 32.1.2.2. Reference Clocks

IndexRevision 1.14.3 341 RX1000/RX1100™T1 Settings, 71Upgrading Firmware, 78Upgrading Software, 78, 78T1E1 InterfacesUpgrading Software, 90, 90T3E3 In

Strany 271 - 32.2.3. IRIGB Configuration

2. Webmin ConfigurationRevision 1.14.3 35 RX1000/RX1100™force attacks. The best way of addressing this problem is to restrict access to specific IP ad

Strany 272

2. Webmin ConfigurationRevision 1.14.3 36 RX1000/RX1100™2.2.2. Change Help ServerFigure 2.4. Webmin Configuration Menu, Change Help ServerThe Web mana

Strany 273 - 32.2.6. IEEE1588 Status

2. Webmin ConfigurationRevision 1.14.3 37 RX1000/RX1100™This menu allows you to log actions taken by Webmin administrators.It is also possible to log

Strany 274 - 32.2.7. IRIGB Log

2. Webmin ConfigurationRevision 1.14.3 38 RX1000/RX1100™2.2.5. Webmin Events LogFigure 2.7. Webmin Events LogThis menu allows you to search the Webmin

Strany 275 - 33.1. Introduction

3. Configure Webmin UsersRevision 1.14.3 39 RX1000/RX1100™3. Configure Webmin Users3.1. IntroductionThis chapter familiarizes the user with:• Configur

Strany 276 - 33.2. IDS Configuration

RuggedRouter®Revision 1.14.3 4 RX1000/RX1100™4. Configuring The System ...

Strany 277 - 33.2.1.3. Rulesets

3. Configure Webmin UsersRevision 1.14.3 40 RX1000/RX1100™Webmin users using a common RADIUS server, eliminating the need to replicate the

Strany 278 - 33.2.2. Network Settings

3. Configure Webmin UsersRevision 1.14.3 41 RX1000/RX1100™Click on manually created user name to change its setting.Click the Delete Selected button t

Strany 279 - 33.2.5. Edit Config File

3. Configure Webmin UsersRevision 1.14.3 42 RX1000/RX1100™3.6. Current Login Sessions MenuFigure 3.3. Current login sessions menuThis menu allows you

Strany 280 - 34. Maintaining The Router

3. Configure Webmin UsersRevision 1.14.3 43 RX1000/RX1100™A Note on Regular ExpressionsThe Password restriction mechanism in ROX uses PERL regul

Strany 281 - 34.2.1. Alert Main Menu

4. Configuring The SystemRevision 1.14.3 44 RX1000/RX1100™4. Configuring The System4.1. IntroductionThis chapter familiarizes the user with:• Enabling

Strany 282 - 34.2.2. Alert Configuration

4. Configuring The SystemRevision 1.14.3 45 RX1000/RX1100™4.2. Bootup And Shutdown Figure 4.1. Bootup and Shutdown, Part 1This menu allows you to enab

Strany 283

4. Configuring The SystemRevision 1.14.3 46 RX1000/RX1100™NoteThe RuggedRouter never enters a permanent shutdown state. If the RuggedRouter is instruc

Strany 284

4. Configuring The SystemRevision 1.14.3 47 RX1000/RX1100™4.4. Scheduled CommandsFigure 4.4. Scheduled CommandsThis menu allows you to schedule a comm

Strany 285 - 34.3. Industrial Defender

4. Configuring The SystemRevision 1.14.3 48 RX1000/RX1100™Initially, there will be no scheduled jobs. Follow the create link to create one.Figure 4.7.

Strany 286

4. Configuring The SystemRevision 1.14.3 49 RX1000/RX1100™If you have multiple jobs, the arrows in the Move column will alter the order

Strany 287

RuggedRouter®Revision 1.14.3 5 RX1000/RX1100™8. Configuring Frame Relay/PPP And T3/E3 ...

Strany 288 - 34.4. Access Manager Security

5. Configuring NetworkingRevision 1.14.3 50 RX1000/RX1100™5. Configuring Networking5.1. IntroductionThis chapter familiarizes the user with:• Configur

Strany 289

5. Configuring NetworkingRevision 1.14.3 51 RX1000/RX1100™Select the Core Settings icon to configure kernel networking settings such as syncookies fil

Strany 290 - ACCEPT net fw VRRP any

5. Configuring NetworkingRevision 1.14.3 52 RX1000/RX1100™assuming that R1 has a route to H2 via R2, R1 will send an ICMP redirection message to H1 in

Strany 291 - 34.5. Backup And Restore

5. Configuring NetworkingRevision 1.14.3 53 RX1000/RX1100™reachable via any other routing entry in the system will be forwarded to the default gatewa

Strany 292 - 34.5.1. General Configuration

5. Configuring NetworkingRevision 1.14.3 54 RX1000/RX1100™NoteA "blackhole", or "null" route may be installed by entering "nu

Strany 293

5. Configuring NetworkingRevision 1.14.3 55 RX1000/RX1100™5.3.4. Static Multicast RoutingFigure 5.5. Static Multicast RoutingThis menu allows you to c

Strany 294

5. Configuring NetworkingRevision 1.14.3 56 RX1000/RX1100™This menu allows you to display and configure various DNS client fields.The DNS servers fiel

Strany 295 - 34.5.3. Archive History

5. Configuring NetworkingRevision 1.14.3 57 RX1000/RX1100™Figure 5.8. End To End Backup ExampleThe backup is “end to end” because connectivity is dete

Strany 296 - 34.5.5. Archive Restore

5. Configuring NetworkingRevision 1.14.3 58 RX1000/RX1100™5.3.7.1. Configuring End To End BackupFigure 5.9. End To End BackupThis menu allows you to d

Strany 297

6. Configuring Ethernet InterfacesRevision 1.14.3 59 RX1000/RX1100™6. Configuring Ethernet Interfaces6.1. IntroductionThis chapter familiarizes the us

Strany 298

RuggedRouter®Revision 1.14.3 6 RX1000/RX1100™12.2.7. Modem PPP Connection Logs ...

Strany 299 - 34.6. SNMP Configuration

6. Configuring Ethernet InterfacesRevision 1.14.3 60 RX1000/RX1100™Source MAC address) is set to 0x8100, denoting 802.1Q (VLAN). The next 2-bytes of t

Strany 300 - 34.6.2. System Configuration

6. Configuring Ethernet InterfacesRevision 1.14.3 61 RX1000/RX1100™NoteCare must be taken when adding interfaces to the bridge. Any network services r

Strany 301 - 34.6.4. Access Control

6. Configuring Ethernet InterfacesRevision 1.14.3 62 RX1000/RX1100™6.2.1. Ethernet InterfacesFigure 6.2. Current and Boot Time Ethernet ConfigurationT

Strany 302

6. Configuring Ethernet InterfacesRevision 1.14.3 63 RX1000/RX1100™This menu allows you to make changes to the currently active interfaces. T

Strany 303 - 34.6.5. Trap Configuration

6. Configuring Ethernet InterfacesRevision 1.14.3 64 RX1000/RX1100™This menu allows you to make permanent changes to interfaces and to immediately app

Strany 304 - 34.6.6. MIB Support

6. Configuring Ethernet InterfacesRevision 1.14.3 65 RX1000/RX1100™Figure 6.7. List PPPoE InterfacesThe PPPoE Interfaces table allows you to add a PPP

Strany 305 - 34.7. RADIUS Authentication

6. Configuring Ethernet InterfacesRevision 1.14.3 66 RX1000/RX1100™The MTU field defines the MTU size to request when connecting to the PPPoE server.

Strany 306 - The WEBMIN Service

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 67 RX1000/RX1100™7. Configuring Frame Relay/PPP And T1/E17.1. IntroductionThis chapter familia

Strany 307

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 68 RX1000/RX1100™Unlike PPP, a Frame Relay link can provide multiple connections. Each connect

Strany 308 - 34.8. Outgoing Mail

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 69 RX1000/RX1100™7.2.1. T1/E1 Network InterfacesFigure 7.2. T1/E1 Network Interfaces Initial C

Strany 309 - 34.10. Power over Ethernet

RuggedRouter®Revision 1.14.3 7 RX1000/RX1100™16.1.1. VPN Fundamentals ...

Strany 310

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 70 RX1000/RX1100™Once all timeslots have been assigned to channels, the “Timeslots..” link wil

Strany 311 - 34.11. Banner Configuration

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 71 RX1000/RX1100™NoteOnce a channel is created, and an interface is constructed on it, the nam

Strany 312

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 72 RX1000/RX1100™7.2.3. Editing A Logical Interface (Frame Relay) Figure 7.6. Editing A Logica

Strany 313 - 34.12. System Logs

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 73 RX1000/RX1100™messages are sent every EEK Timer x T391 seconds. This timer may be configure

Strany 314 - 34.12.2. Remote Logging

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 74 RX1000/RX1100™7.2.5. T1/E1 StatisticsWhen at least one logical interface is configured, T1/

Strany 315

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 75 RX1000/RX1100™OOF (Out of Frame) – This alarm signifies the occurrence of a particular dens

Strany 316 - 34.13. Upgrade System

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 76 RX1000/RX1100™7.2.5.3. PPP Interface StatisticsFigure 7.10. PPP Link Statistics7.2.6. T1/E1

Strany 317 - 34.13.2. Upgrade to RX1100

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 77 RX1000/RX1100™Figure 7.11. T1/E1 Loopback MenuThe loopback test provides a means to test th

Strany 318

7. Configuring Frame Relay/PPP And T1/E1Revision 1.14.3 78 RX1000/RX1100™7.2.7. Current Routes & Interface TableThe table provided by this command

Strany 319

8. Configuring Frame Relay/PPP And T3/E3Revision 1.14.3 79 RX1000/RX1100™8. Configuring Frame Relay/PPP And T3/E38.1. IntroductionThis chapter familia

Strany 320

RuggedRouter®Revision 1.14.3 8 RX1000/RX1100™20.1.2. Prioritization Example ...

Strany 321

8. Configuring Frame Relay/PPP And T3/E3Revision 1.14.3 80 RX1000/RX1100™8.2. T3/E3 Configuration Figure 8.1. T3/E3 Trunks And InterfacesThis menu all

Strany 322 - 35. Security Considerations

8. Configuring Frame Relay/PPP And T3/E3Revision 1.14.3 81 RX1000/RX1100™Figure 8.3. T3/E3 Network Interface With Logical Interfaces8.2.1.1. Naming Of

Strany 323 - A.2. Initial Repository Setup

8. Configuring Frame Relay/PPP And T3/E3Revision 1.14.3 82 RX1000/RX1100™8.2.1.3. E3 Interface Parameters Figure 8.5. Edit E3 InterfaceThe Framing fie

Strany 324 - A.4. Setting Up The Routers

8. Configuring Frame Relay/PPP And T3/E3Revision 1.14.3 83 RX1000/RX1100™Figure 8.7. Edit Logical Interface (Frame Relay)8.2.2.2. Editing A Logical In

Strany 325

8. Configuring Frame Relay/PPP And T3/E3Revision 1.14.3 84 RX1000/RX1100™Link, Frame Relay And PPP Interface Statistics are as described in detail in

Strany 326 - B.2. Use Cases

9. Configuring Frame Relay/PPP And DDSRevision 1.14.3 85 RX1000/RX1100™9. Configuring Frame Relay/PPP And DDS9.1. IntroductionThis chapter familiarize

Strany 327 - Figure B.1. Bootloader Menu

9. Configuring Frame Relay/PPP And DDSRevision 1.14.3 86 RX1000/RX1100™This menu allows you to display and configure DDS Trunks. The Current Routes me

Strany 328

9. Configuring Frame Relay/PPP And DDSRevision 1.14.3 87 RX1000/RX1100™9.2.2. Editing A Logical Interface (Frame Relay)Figure 9.4. Edit Logical Interf

Strany 329 - Figure D.1. Installing IIS

9. Configuring Frame Relay/PPP And DDSRevision 1.14.3 88 RX1000/RX1100™9.2.3. Editing A Logical Interface (PPP)Figure 9.6. Edit Logical Interface (PPP

Strany 330

9. Configuring Frame Relay/PPP And DDSRevision 1.14.3 89 RX1000/RX1100™9.2.4.1. Link StatisticsFigure 9.7. DDS Link Statistics9.2.4.2. Frame Relay And

Strany 331

RuggedRouter®Revision 1.14.3 9 RX1000/RX1100™25.2.1. Synchronous Port Settings Menu ...

Strany 332

9. Configuring Frame Relay/PPP And DDSRevision 1.14.3 90 RX1000/RX1100™9.2.7. Upgrading SoftwareFor some customers, access to remote sites in accompli

Strany 333

10. Multilink PPP over T1/E1Revision 1.14.3 91 RX1000/RX1100™10. Multilink PPP over T1/E1 10.1. IntroductionThis chapter familiarizes the user with:•

Strany 334

10. Multilink PPP over T1/E1Revision 1.14.3 92 RX1000/RX1100™Figure 10.1. T1/E1 WAN InterfacesClick on Assign new MLPPP logical interfaces to specify

Strany 335

10. Multilink PPP over T1/E1Revision 1.14.3 93 RX1000/RX1100™The statistics of the PPP links comprising the MLPPP bundle can also be displayed by clic

Strany 336

11. Configuring PPPoE/Bridged Mode On ADSLRevision 1.14.3 94 RX1000/RX1100™11. Configuring PPPoE/Bridged Mode On ADSL11.1. IntroductionThis chapter fa

Strany 337

11. Configuring PPPoE/Bridged Mode On ADSLRevision 1.14.3 95 RX1000/RX1100™addresses of the ISPs DNS servers to the router. You should use these DNS s

Strany 338

11. Configuring PPPoE/Bridged Mode On ADSLRevision 1.14.3 96 RX1000/RX1100™Link (Green) indicates when the DSL link is established.TX (Red) indicates

Strany 339

11. Configuring PPPoE/Bridged Mode On ADSLRevision 1.14.3 97 RX1000/RX1100™This menu presents connection statuses but does not update them in real tim

Strany 340

11. Configuring PPPoE/Bridged Mode On ADSLRevision 1.14.3 98 RX1000/RX1100™NoteIf the negotiated MTU is different from the requested MTU, a warning wi

Strany 341

11. Configuring PPPoE/Bridged Mode On ADSLRevision 1.14.3 99 RX1000/RX1100™The Gateway IP Address field defines the IP address to use as the gateway f

Komentáře k této Příručce

Žádné komentáře