Cabletron Systems 1200 User Manual
Size:
1.65 Mb
Download

EXAMPLE NETWORKS

The interface name is a symbolic name given to the interface. For the WAN (RLAN) interface, you should use a name that describes this interface. Type Satellites for this example.

You will then be asked for the IP address for the interface. In our example, the value you should enter is 198.12.10.1. You will then be asked for the IP subnet mask value. In our example, we are using a Class C address (without any subnetwork addressing) that requires 24 bits of the address to define the network number. Therefore, press <return> to accept the default of “24” significant bits. Press <return> to accept the default packet encapsulation type (Ethernet). Press <return> to accept the default of 1500 as the MTU size. Press <return> to accept the default transmit broadcast address.

The rest of the RLAN interface information requested pertains to the Proxy ARP and, if you have not disabled RIP, the RIP feature. Accept all of the default values, or modify as needed.

The following screen will summarize the configured interfaces:

Current INTERFACES:

 

 

 

id Name

Type

IP address

Mask

-------------------

----------------------------------------------------

1

corpoffice

LAN

128.1.1.1

255.255.0.0

2

satellites

WAN (RLAN)

198.12.10.1

255.255.255.0

(1) Add, (2) Change, (3) Delete, (4) Display a INTERFACE or press <RET> for previous menu?

Return to the Main Menu.

CONFIGURING THESECURITY

This example has two remote devices, and the device information for each of those devices must be configured. Device security is used, and the remote devices are configured in the on-nodeauthentication database. Device security using anon-nodeauthentication database are the default values.

Before beginning, note the following:

This is a system configuration using IP Routing and Bridge MAC Address Security. We will disable IP routing so that the system will recognize particular devices as a remote bridges. When configuring device-levelbridging information for each remote bridge, we will provide the following elements: Device Name, Device Type, Bridge Ethernet Address and associated password, and the IP(Sub-)Network Number of the remote LAN.

Note that there may be multiple remote bridges and LAN segments on the subnetwork 198.12.10.0. (Our example includes two.) When using the RLAN interface, you are only required to enter the subnetwork address of the IP network when configuring each device. In this example, the host at Carmel is 198.12.10.2, and the host at Monterey is 198.12.10.3; but when configuring each device (i.e., bridge) you only enter the IP subnetwork number 198.12.10.0.

To begin the security configuration, press 3 at CFGEDIT’s Main Menu. The Security Configuration Menu will then be displayed. The sections below provide instructions for configuring security information.

54 CyberSWITCH

IP ROUTINGNETWORK WITHREMOTEBRIDGEDEVICES

Configure the CyberSWITCH

CONFIGURING THESECURITYLEVEL

To begin, press 1 at the Security Menu, and the Security Level Menu will be displayed. To enable Device Level Security, press 2.

CONFIGURING THESYSTEMOPTIONS ANDINFORMATION

The default configuration for System Options is all security options enabled, which is acceptable for this network. No System Information or Administration Sessions are required. Therefore, no changes are necessary.

CONFIGURING THEDEVICELEVELDATABASES

Press 3 at the Security Menu, and the Device Level Database Menu will be displayed. To enable the On-nodeDevice Database, press 1 and follow theon-screeninstructions.

To add the remote devices, press 2 (On-node Device entries). Press 1 to configure the information for our first device, Monterey. You will be prompted for the device name, followed by the Device Table Menu:

Device Name? Monterey

Device Table Menu: (Device = "Monterey")

1)ISDN

2)Frame Relay

3)X.25

4)Authentication

5)IP

6)IPX

7)AppleTalk

8)Bridging

9)Compression

Select function from above or <RET> for previous menu: 1

Select 1, ISDN. The ISDN Menu will display the preconfigured default values:

Device ISDN Menu: (Device = "Monterey")

1)

ISDN Line Protocol

“PPP (Point to Point Protocol)”

2)

Base Data Rate

“64000 bps”

3)

Initial

Data Rate

“64000 bps”

4)

Maximum

Data Rate

“128000 bps”

5)

Dial Out Phone Number(s)

“”

6)

Subaddress

“”

7)

Profile

Name

“Default_Profile”

8)

H0 Call

Support

DISABLED

Select function from above or <RET> for previous menu: 1

We do not want to use the default ISDN Line Protocol of PPP. Press 1 to configure this device’s ISDN line protocol. The device Monterey uses HDLC protocol, so we will press 2:

Workgroup Remote Access Switch 55

EXAMPLE NETWORKS

Device ISDN Line Protocol Menu: (Device = "Monterey")

1)PPP (Point to Point Protocol)

2)HDLC Bridge

3)IP Host (RFC1294)

Select option to associate with device "Monterey",

or “0” to disable ISDN access for this device [default = 1]? 2

No other changes are required. Return to the Device Table Menu.

Next, we will configure the Bridge Ethernet Address and Password. At the Device Table Menu press 4, Authentication. The following screen is displayed:

Device Authentication Menu: (Device = "Monterey")

PPP:

 

 

1)

PAP Password

""

2)

CHAP Secret

""

3)

Outbound Authentication

ENABLED

4)

User Level Authentication

DISABLED

IP Host (RFC 1294):

 

5)

IP Host Id

""

HDLC Bridge:

 

6)

Bridge Ethernet Address

""

7)

Bridge Password

""

ISDN:

 

 

8)

Calling Line Id(s)

""

Select function from above or <RET> for previous menu: 5

Press 6 to specify Bridge Ethernet Address (123123123123); and press 7 to specify Bridge Password (q3bay) at this prompt.

Return to the Device Table Menu and select 5, IP Routing. Disable IP routing for this device.

We will configure bridging options next. Return to the Device Table Menu and press 8, Bridging:

Select IP (Sub-)Network Number. Respond to the prompt as follows:

IP (Sub-)Network Number in dotted decimal notation or NONE [default = NONE]?

198.12.10.0

Select Bridging. Enable bridging.

Leave remaining options disabled. (The Make Calls... feature is not supported for RLAN interfaces; theIPX... options are not applicable for this example.)

Return to the On-nodeDevice Entries Menu. Configuration is now complete for the device Monterey. Enter the device Carmel in the same way, providing its Bridge Ethernet address and password.

CONFIGURING THEUSERLEVELDATABASES

This network doesn’t require the use of a user level database. Therefore, no changes are necessary.

56 CyberSWITCH