OmniAccess 700 CLI
Configuration Guide
Release 2.2
26801 West Agoura Road
Calabasas, CA 91301 (818) 880-3500 FAX (818) 880-3505
support@ind.alcatel.com US Customer Support—(800) 995-2696 International Customer Support—(818) 878-4507 Internet—service.esd.alcatel-lucent.com Website: www.alcatel-lucent.com
Part No: 060223-00, Rev A
Copyright
The Specifications And Information regarding the products in this manual are subject to change without notice. All statements, information, and recommendations in this manual are believed to be accurate but are presented without warranty of any kind, express or implied. Users must take full responsibility for their application of any products.
THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE.
This equipment has been tested and found to comply within the limits pursuant to the (Centre for Telecom) rules. These limits are designed to provide protection against harmful interference when the equipment is operated in a commercial environment.
The following information is for the Users of the OmniAccess 700: If it is not installed in accordance with the installation instructions, it may not function exactly to the said specifications. Modifying the equipment without Alcatel-Lucent’s written authorization may result in the equipment no longer complying with the said dimensions.
Copyright © 2007, Alcatel-Lucent. All rights reserved. Alcatel-Lucent and Alcatel-Lucent logo are registered trademarks of Alcatel-Lucent. The contents or specifications contained within this document are subject to change without notice.
Not withstanding any other warranty herein, all hardware and software are provided "as is" with all faults. Alcatel-Lucent disclaim all warranties, expressed or implied, including, without limitation, those of merchantability, fitness for a particular purpose and non-infringement or arising from a course of dealing, usage, or trade practice. In no event shall Alcatel-Lucent be liable for any indirect, special, consequential, or incidental damages, including, without limitation, lost profits or loss or damage to data arising out of the use or inability to use this manual, even if Alcatel-Lucent have been advised of the possibility of such damages.
Table of Contents |
|
1 Preface............................................................................................................. |
1 |
About This Guide ...................................................................................................................... |
1 |
Audience ................................................................................................................................... |
1 |
Organization.............................................................................................................................. |
2 |
Part I - Introduction ............................................................................................................. |
2 |
Part II - LAN Interfaces ....................................................................................................... |
2 |
Part IIIWAN Interfaces...................................................................................................... |
3 |
Part IV - Packet Classification ............................................................................................ |
4 |
Part V - Routing Protocols .................................................................................................. |
4 |
Part VI - Network Security CLI............................................................................................ |
5 |
Part VII - Quality Of Service ............................................................................................... |
5 |
Part VIII - TCP/IP Services ................................................................................................. |
6 |
Part IX - Lifeline (Dedicated Management Framework) ..................................................... |
6 |
Document Conventions............................................................................................................. |
7 |
Obtaining Documentation.......................................................................................................... |
8 |
Reference Publications ............................................................................................................. |
8 |
Obtaining Technical Assistance ................................................................................................ |
9 |
Documentation Feedback ......................................................................................................... |
9 |
Part 1: Introduction |
|
2 The Command Line Interface ...................................................................... |
13 |
CLI Overview........................................................................................................................... |
13 |
Introduction to CLI Modes ....................................................................................................... |
14 |
CLI User Mode ................................................................................................................. |
14 |
CLI Configuration Mode.................................................................................................... |
14 |
CLI Sub-Configuration Mode (SCM)................................................................................. |
14 |
CLI Modes............................................................................................................................... |
15 |
User Mode (UM) ............................................................................................................... |
17 |
Super User Mode (SUM) .................................................................................................. |
18 |
Example............................................................................................................................ |
18 |
Configuration Mode (CM) ................................................................................................. |
20 |
Interface Configuration Mode (ICM) ................................................................................. |
23 |
Sub-Interface Configuration Mode (S-ICM) ...................................................................... |
24 |
Router Configuration Mode (RCM)................................................................................... |
25 |
Exiting Configuration Modes............................................................................................. |
25 |
Initial Setup....................................................................................................................... |
26 |
Using the Command Line Interface......................................................................................... |
27 |
CLI Help............................................................................................................................ |
27 |
Partial Help ....................................................................................................................... |
30 |
Partial Commands ............................................................................................................ |
30 |
Command Line Editing ..................................................................................................... |
31 |
Command History............................................................................................................. |
33 |
Configuring Interfaces ............................................................................................................. |
34 |
Interface Configuration Commands.................................................................................. |
34 |
Interface Types and Limitations........................................................................................ |
34 |
Common Interface Configuration Commands .................................................................. |
34 |
Interface Show Commands .............................................................................................. |
35 |
Clear Interface Commands............................................................................................... |
39 |
Shutting Down and Bring Up an Interface ........................................................................ |
39 |
Backup Interface............................................................................................................... |
40 |
3 System Configuration and Monitoring ....................................................... |
43 |
System Configuration and Monitoring Tasks .......................................................................... |
43 |
Chapter Conventions........................................................................................................ |
43 |
Management Plane Overview ................................................................................................. |
44 |
Out of Band Management (Console or Modem)............................................................... |
44 |
Inband Management (SSH and Telnet)............................................................................ |
46 |
Idle Timeout...................................................................................................................... |
48 |
Example............................................................................................................................ |
48 |
Ping .................................................................................................................................. |
49 |
Example............................................................................................................................ |
49 |
Traceroute ........................................................................................................................ |
52 |
Example............................................................................................................................ |
52 |
Terminal Settings .................................................................................................................... |
55 |
Example .................................................................................................................................. |
55 |
System Name.......................................................................................................................... |
55 |
Example .................................................................................................................................. |
55 |
AAA Configuration on OA-700 ................................................................................................ |
56 |
To Enable AAA Services .................................................................................................. |
56 |
Example............................................................................................................................ |
56 |
Authentication Commands ............................................................................................... |
57 |
Show Commands ............................................................................................................. |
73 |
Setting and Displaying the System Time and Date................................................................. |
75 |
Clock Set .......................................................................................................................... |
76 |
Example............................................................................................................................ |
76 |
Clock Synchronize............................................................................................................ |
77 |
Example............................................................................................................................ |
77 |
System Logging and Debugging ............................................................................................. |
78 |
Example............................................................................................................................ |
79 |
Example 1......................................................................................................................... |
80 |
Example 2......................................................................................................................... |
81 |
Example 3......................................................................................................................... |
81 |
Example 4......................................................................................................................... |
81 |
Rate Limiting in Statlog ........................................................................................................... |
82 |
Example 1......................................................................................................................... |
83 |
Example 2......................................................................................................................... |
83 |
Example 3......................................................................................................................... |
83 |
Saving Log Messages............................................................................................................. |
84 |
Example............................................................................................................................ |
84 |
Viewing Tech Support ...................................................................................................... |
85 |
Example............................................................................................................................ |
85 |
The File System ...................................................................................................................... |
86 |
Example 1......................................................................................................................... |
86 |
Example 2......................................................................................................................... |
87 |
Copying Files.................................................................................................................... |
87 |
Example............................................................................................................................ |
87 |
Deleting Files.................................................................................................................... |
88 |
Example............................................................................................................................ |
88 |
Configuration File Management ....................................................................................... |
88 |
Software Package Management ............................................................................................. |
97 |
Package Types................................................................................................................. |
97 |
Reloading the System ........................................................................................................... |
102 |
Example ................................................................................................................................ |
102 |
Managing Individual Slots............................................................................................... |
103 |
Example.......................................................................................................................... |
103 |
System Monitoring and Troubleshooting............................................................................... |
104 |
Environmental Information.............................................................................................. |
104 |
Example.......................................................................................................................... |
104 |
System Hardware Information ........................................................................................ |
106 |
Example.......................................................................................................................... |
106 |
System Status ................................................................................................................ |
108 |
Example.......................................................................................................................... |
108 |
To View the Current State Of LEDs................................................................................ |
109 |
Example.......................................................................................................................... |
109 |
To View Process Information.......................................................................................... |
110 |
Example.......................................................................................................................... |
110 |
Memory Information........................................................................................................ |
111 |
Example.......................................................................................................................... |
111 |
SNMP (Simple Network Management Protocol) ................................................................... |
112 |
SNMP Basics.................................................................................................................. |
112 |
SNMP Agent and Manager............................................................................................. |
113 |
Example.......................................................................................................................... |
115 |
SNMP Version ................................................................................................................ |
116 |
Example.......................................................................................................................... |
116 |
SNMP Show Commands................................................................................................ |
117 |
SNMP MIB CLI ............................................................................................................... |
118 |
SNMP MIB GUI .............................................................................................................. |
119 |
4 Virtual Router Redundancy Protocol........................................................ |
121 |
Chapter Organization ..................................................................................................... |
121 |
Chapter Conventions...................................................................................................... |
121 |
VRRP Overview .................................................................................................................... |
122 |
VRRP Configuration.............................................................................................................. |
123 |
VRRP Configuration Steps ............................................................................................. |
123 |
VRRP Configuration Flow............................................................................................... |
124 |
VRRP CLI Commands.................................................................................................... |
125 |
Modify Global VRRP Group Parameters ........................................................................ |
128 |
Monitor and Debug VRRP .............................................................................................. |
132 |
VRRP Interface Tracking ...................................................................................................... |
134 |
Alcatel-Lucent's Interface Tracking Design .................................................................... |
134 |
VRRP Configuration Scenario using OA-700........................................................................ |
136 |
Procedure ....................................................................................................................... |
136 |
VRRP Configuration ....................................................................................................... |
137 |
Part 2: LAN Interfaces and Configuration |
|
5 Ethernet Interfaces on SE.......................................................................... |
141 |
Chapter Conventions...................................................................................................... |
141 |
Ethernet Overview................................................................................................................. |
142 |
Ethernet Basics .............................................................................................................. |
142 |
Ethernet Terminologies .................................................................................................. |
143 |
Switched Ethernet .......................................................................................................... |
144 |
Full-duplex Ethernet ....................................................................................................... |
144 |
Alcatel-Lucent Specific Overview on Ethernet Interfaces............................................... |
144 |
Ethernet Configuration .......................................................................................................... |
145 |
Ethernet Interface Configuration Steps .......................................................................... |
145 |
Ethernet Interface Configuration Flow ............................................................................ |
146 |
Ethernet Interface Configuration Commands ................................................................. |
147 |
Ethernet Interface Show Commands.............................................................................. |
149 |
Ethernet Interface Clear Commands .............................................................................. |
152 |
6 Layer 2 Switching Configuration .............................................................. |
153 |
Chapter Conventions...................................................................................................... |
153 |
Switching Overview............................................................................................................... |
154 |
Alcatel-Lucent Specific Overview on Switching.............................................................. |
156 |
L2 Switching Configuration ................................................................................................... |
158 |
L2 Switching Configuration Steps................................................................................... |
158 |
L2 Switching Configuration Flow .................................................................................... |
160 |
L2 Switching Commands................................................................................................ |
161 |
L2 Switching Show Commands...................................................................................... |
164 |
L2 Switching Clear Commands ...................................................................................... |
169 |
Switching Configuration using OA-700 ................................................................................. |
170 |
OA-700 as a Switch with no VLANs ............................................................................... |
170 |
OA-700 as a Switch with VLANs .................................................................................... |
171 |
7 Per VLAN Spanning Tree +........................................................................ |
175 |
Chapter Conventions...................................................................................................... |
175 |
Per VLAN Spanning Tree (PVST+) Overview....................................................................... |
176 |
PVST+ Configuration ............................................................................................................ |
177 |
PVST+ Configuration Steps............................................................................................ |
177 |
PVST+ Configuration Flow ............................................................................................. |
178 |
PVST+ Configuration Commands .................................................................................. |
179 |
Show Commands in PVST+ ........................................................................................... |
183 |
PVST+ Configuration Examples ........................................................................................... |
187 |
Example 1....................................................................................................................... |
187 |
Example 2....................................................................................................................... |
189 |
Topology......................................................................................................................... |
189 |
Procedure ....................................................................................................................... |
190 |
8 Integrated Routing and Bridging .............................................................. |
193 |
Chapter Conventions...................................................................................................... |
193 |
Integrated Routing and Bridging Overview ........................................................................... |
194 |
Alcatel-Lucent Specific IRB Overview ............................................................................ |
194 |
IRB Configuration.................................................................................................................. |
195 |
IRB Configuration Steps ................................................................................................. |
195 |
IRB Commands .............................................................................................................. |
196 |
IRB Configuration using OA-700........................................................................................... |
197 |
Topology for IRB Configuration on OA-700.................................................................... |
197 |
9 802.1X Port-Based Authentication............................................................ |
199 |
Chapter Conventions...................................................................................................... |
199 |
802.1X Overview................................................................................................................... |
200 |
Generic terms used in 802.1X ........................................................................................ |
201 |
Using 802.1X with VLAN Assignment ............................................................................ |
203 |
Alcatel-Lucent Specific Overview ................................................................................... |
203 |
802.1X Configuration ............................................................................................................ |
204 |
802.1X Configuration Steps............................................................................................ |
204 |
802.1X Configuration Flow ............................................................................................. |
207 |
802.1X Configuration Commands .................................................................................. |
208 |
802.1X Show Commands............................................................................................... |
214 |
802.1X Configuration Example ............................................................................................. |
216 |
10 Port Monitoring........................................................................................... |
221 |
Chapter Conventions...................................................................................................... |
221 |
Port Monitoring Overview...................................................................................................... |
222 |
Port Monitoring Configuration ............................................................................................... |
223 |
Port Monitoring Configuration Steps............................................................................... |
223 |
Port Monitoring Commands............................................................................................ |
224 |
Port Monitoring Configuration on OA-700 ............................................................................. |
225 |
Part 3: WAN Interfaces and Protocols |
|
11 T1E1 Line Card ........................................................................................... |
229 |
Chapter Organization ..................................................................................................... |
229 |
Chapter Conventions...................................................................................................... |
229 |
T1 and E1 Overview.............................................................................................................. |
230 |
E1 Interface Overview........................................................................................................... |
231 |
E1 Timeslot Functionalities............................................................................................. |
231 |
Mechanisms Supported by the E1 interface................................................................... |
232 |
E1 Modes of Operation................................................................................................... |
233 |
Alcatel-Lucent Specific Overview ................................................................................... |
233 |
E1 Configuration ................................................................................................................... |
234 |
E1 Configuration Steps................................................................................................... |
234 |
E1 Configuration Flow .................................................................................................... |
236 |
E1 Configuration Commands ......................................................................................... |
237 |
E1 Show Commands...................................................................................................... |
245 |
Troubleshooting E1 Lines............................................................................................... |
247 |
T1 Interface Overview........................................................................................................... |
248 |
Frame Formats Used in T1 Cards .................................................................................. |
248 |
T1 Modes of Operation................................................................................................... |
249 |
T1 Configuration.................................................................................................................... |
250 |
T1 Configuration Steps................................................................................................... |
250 |
T1 Configuration Flow .................................................................................................... |
252 |
T1 Configuration Commands.......................................................................................... |
253 |
T1 Show Commands ...................................................................................................... |
261 |
Troubleshooting T1 Lines ............................................................................................... |
263 |
12 Serial Line Cards ........................................................................................ |
265 |
Chapter Organization ..................................................................................................... |
265 |
Chapter Conventions...................................................................................................... |
266 |
Serial Line Card (V.35/X.21) Overview ................................................................................. |
267 |
Alcatel-Lucent Specific Overview.......................................................................................... |
268 |
V.35/X.21 Configuration ........................................................................................................ |
269 |
V.35/X.21 Interface Configuration Steps ........................................................................ |
269 |
V.35/X.21 Configuration Flow......................................................................................... |
270 |
V.35/X.21 Configuration Commands .............................................................................. |
271 |
V.35/X.21 DTE and DCE CLI Configuration Commands................................................ |
272 |
13 High-level Data Link Control ..................................................................... |
277 |
Chapter Conventions...................................................................................................... |
277 |
HDLC Overview .................................................................................................................... |
278 |
HDLC Frame Structure................................................................................................... |
278 |
HDLC Frame Formats .................................................................................................... |
279 |
HDLC Protocol Operation............................................................................................... |
279 |
HDLC Configuration .............................................................................................................. |
280 |
HDLC Configuration Steps ............................................................................................. |
281 |
HDLC Configuration Flow............................................................................................... |
283 |
HDLC Configuration Commands .................................................................................... |
284 |
14 Frame Relay ................................................................................................ |
289 |
Chapter Conventions...................................................................................................... |
289 |
Frame Relay Overview.......................................................................................................... |
290 |
Frame Relay Devices ..................................................................................................... |
290 |
Frame Relay Virtual Circuits........................................................................................... |
290 |
Frame Relay Network Deployments............................................................................... |
291 |
Frame Relay Configuration ................................................................................................... |
292 |
Frame Relay Configuration Steps .................................................................................. |
293 |
Frame Relay Configuration Flow .................................................................................... |
295 |
Frame Relay Commands................................................................................................ |
296 |
15 Point-to-Point Protocol .............................................................................. |
305 |
Chapter Conventions...................................................................................................... |
305 |
PPP Overview ....................................................................................................................... |
306 |
PPP Components ........................................................................................................... |
306 |
PPP Operation................................................................................................................ |
306 |
PPP Configuration................................................................................................................. |
307 |
PPP Configuration Steps................................................................................................ |
308 |
PPP Configuration Flow ................................................................................................. |
310 |
PPP Configuration Commands....................................................................................... |
311 |
PPP Optional Parameters .............................................................................................. |
312 |
PPP Show Commands ................................................................................................... |
320 |
PPP Debug Commands ................................................................................................. |
327 |
16 Multilink Point to Point Protocol............................................................... |
329 |
Chapter Conventions...................................................................................................... |
329 |
MLPPP Overview .................................................................................................................. |
330 |
MLPPP Components ...................................................................................................... |
331 |
MLPPP Operation........................................................................................................... |
331 |
Alcatel-Lucent Specific Overview on MLPPP Features.................................................. |
332 |
MLPPP Configuration............................................................................................................ |
333 |
MLPPP Configuration Steps........................................................................................... |
334 |
MLPPP Configuration Flow ............................................................................................ |
336 |
MLPPP Configuration Commands.................................................................................. |
337 |
MLPPP Show Commands .............................................................................................. |
339 |
MLPPP Configuration Example............................................................................................. |
340 |
17 Multilink Frame Relay................................................................................. |
343 |
Chapter Conventions...................................................................................................... |
343 |
MLFR Overview .................................................................................................................... |
344 |
MLFR Components ........................................................................................................ |
344 |
MLFR Operation ............................................................................................................. |
344 |
Alcatel-Lucent Specific Overview on MLFR features ..................................................... |
346 |
MLFR Configuration.............................................................................................................. |
346 |
MLFR Configuration Steps ............................................................................................. |
347 |
MLFR Configuration Flow............................................................................................... |
350 |
MLFR Configuration Commands .................................................................................... |
351 |
MLFR Show Commands ................................................................................................ |
355 |
Part 4: Common Classification |
|
18 Common Classifiers................................................................................... |
359 |
Chapter Conventions...................................................................................................... |
359 |
CC Overview ......................................................................................................................... |
360 |
Benefits of Alcatel-Lucent Devices Common Classifiers................................................ |
361 |
CC Architecture .............................................................................................................. |
361 |
Before you Configure CC ............................................................................................... |
362 |
CC Configuration................................................................................................................... |
363 |
CC Configuration Steps.................................................................................................. |
363 |
Elements Used in Configuring CC.................................................................................. |
364 |
To Configure a Match-list ............................................................................................... |
367 |
Example.......................................................................................................................... |
367 |
Rules within Match-lists .................................................................................................. |
367 |
To Configure Rules Using the Protocol Numbers........................................................... |
373 |
Lists in CC ...................................................................................................................... |
374 |
Nesting Of Match-lists .................................................................................................... |
376 |
Show commands in CC .................................................................................................. |
378 |
Deletion Commands in CC ............................................................................................. |
381 |
Sample examples on the usage of CC across applications .................................................. |
383 |
Example 1....................................................................................................................... |
383 |
Example 2....................................................................................................................... |
384 |
Example 3....................................................................................................................... |
385 |
Part 5: Routing Protocols |
|
19 Protocol Independent Features................................................................. |
389 |
Protocol Independent Features Configuration ...................................................................... |
389 |
Chapter Conventions...................................................................................................... |
389 |
Protocol-Independent Configuration............................................................................... |
390 |
Protocol-Independent Configuration Commands ........................................................... |
391 |
20 Routing Information Protocol.................................................................... |
417 |
Chapter Conventions...................................................................................................... |
417 |
RIP Overview ........................................................................................................................ |
418 |
RIP Configuration.................................................................................................................. |
419 |
RIP Configuration Steps ................................................................................................. |
420 |
RIP Configuration Flow................................................................................................... |
422 |
RIP Configuration Commands........................................................................................ |
423 |
RIP Optional Parameters................................................................................................ |
424 |
RIP Show Commands .................................................................................................... |
436 |
RIP Clear Commands..................................................................................................... |
440 |
21 Border Gateway Protocol .......................................................................... |
441 |
Chapter Conventions...................................................................................................... |
441 |
BGP Overview....................................................................................................................... |
442 |
BGP Configuration ................................................................................................................ |
443 |
BGP Configuration Steps ............................................................................................... |
443 |
BGP Configuration Flow ................................................................................................. |
445 |
BGP Configuration Commands ...................................................................................... |
446 |
BGP Show Commands................................................................................................... |
448 |
BGP Clear Commands ................................................................................................... |
451 |
A Typical BGP Example Using OA-700 ................................................................................ |
454 |
22 Open Shortest Path First ........................................................................... |
457 |
Chapter Conventions...................................................................................................... |
457 |
OSPF Overview .................................................................................................................... |
458 |
OSPF Configuration .............................................................................................................. |
459 |
OSPF Configuration Steps ............................................................................................. |
459 |
OSFP Configuration Flow............................................................................................... |
461 |
OSPF Configuration Commands .................................................................................... |
462 |
OSPF Optional Parameters............................................................................................ |
463 |
Show Commands in OSPF............................................................................................. |
481 |
Clear Commands in OSPF ............................................................................................. |
490 |
OSPF Configuration on OA-700............................................................................................ |
491 |
Example 1....................................................................................................................... |
491 |
23 Multicast Routing ....................................................................................... |
493 |
Chapter Conventions...................................................................................................... |
493 |
Multicast Overview ................................................................................................................ |
494 |
Protocol Independent Multicast (PIM) ............................................................................ |
494 |
Internet Group Management Protocol (IGMP)................................................................ |
495 |
RFCs .............................................................................................................................. |
496 |
PIM Configuration ................................................................................................................. |
497 |
PIM Configuration Steps................................................................................................. |
497 |
PIM Configuration Flow .................................................................................................. |
499 |
PIM Configuration Commands ....................................................................................... |
500 |
Show Commands in PIM ................................................................................................ |
505 |
Clear Commands in PIM ................................................................................................ |
508 |
IGMP Configuration............................................................................................................... |
509 |
IGMP Configuration Steps.............................................................................................. |
509 |
IGMP Configuration Flow ............................................................................................... |
511 |
IGMP Configuration Commands..................................................................................... |
512 |
Show Commands in IGMP ............................................................................................. |
516 |
Show Commands in Multicast ........................................................................................ |
517 |
Clear Commands in Multicast......................................................................................... |
518 |
Multicast Configuration on OA-700 ....................................................................................... |
519 |
Example 1....................................................................................................................... |
519 |
Verifying Multicast Routing ............................................................................................. |
523 |
24 Policy Based Routing................................................................................. |
525 |
Chapter Conventions...................................................................................................... |
525 |
PBR Overview....................................................................................................................... |
526 |
Alcatel-Lucent Specific Overview ................................................................................... |
526 |
PBR Configuration ................................................................................................................ |
527 |
PBR Configuration Steps................................................................................................ |
527 |
PBR Configuration Flow ................................................................................................. |
529 |
PBR Configuration Commands ...................................................................................... |
530 |
Show Commands in PBR ............................................................................................... |
533 |
Clear Commands............................................................................................................ |
534 |
PBR Configuration Example ................................................................................................. |
535 |
Configuration Steps ........................................................................................................ |
535 |
Show Commands ........................................................................................................... |
536 |
Part 6: Network Security |
|
25 Network Address Translation.................................................................... |
539 |
Chapter Conventions...................................................................................................... |
539 |
NAT Overview ....................................................................................................................... |
540 |
Types of NAT.................................................................................................................. |
540 |
Benefits of NAT .............................................................................................................. |
542 |
Before You Configure NAT............................................................................................. |
542 |
Alcatel-Lucent Specific Overview ................................................................................... |
542 |
Source NAT Configuration .................................................................................................... |
543 |
SNAT Configuration Steps ............................................................................................. |
544 |
SNAT Configuration Flow ............................................................................................... |
546 |
SNAT Configuration Commands .................................................................................... |
547 |
Sample Configurations of SNAT on OA-700 .................................................................. |
553 |
Destination NAT Configuration.............................................................................................. |
554 |
DNAT Configuration Steps ............................................................................................. |
555 |
DNAT Configuration Flow............................................................................................... |
557 |
DNAT Configuration Commands .................................................................................... |
558 |
Sample Configuration Example of DNAT on OA-700..................................................... |
561 |
Bypass IPsec Traffic....................................................................................................... |
562 |
NAT Show Commands ................................................................................................... |
563 |
NAT Clear Commands ................................................................................................... |
565 |
NAT Debug Commands ................................................................................................. |
566 |
Modifying NAT Configuration ................................................................................................ |
567 |
Insertions ........................................................................................................................ |
567 |
Updations ....................................................................................................................... |
568 |
NAT Deletion Commands............................................................................................... |
570 |
26 Filter and Firewall....................................................................................... |
573 |
Chapter Conventions...................................................................................................... |
573 |
Network Security - An overview ............................................................................................ |
574 |
Network Security Terminologies..................................................................................... |
575 |
Firewall Mechanisms ...................................................................................................... |
576 |
Before You Configure Filters and Firewalls .................................................................... |
577 |
OA-700 Specific Overview.............................................................................................. |
577 |
Filter Configuration................................................................................................................ |
578 |
Filter Configuration Steps ............................................................................................... |
578 |
Filter Configuration Flow................................................................................................. |
580 |
Filter Configuration Commands...................................................................................... |
581 |
Filter Show Commands .................................................................................................. |
585 |
Filter Deletion Commands .............................................................................................. |
587 |
Filter Clear Commands................................................................................................... |
588 |
Filter Debug Commands................................................................................................. |
589 |
Sample Examples of Configuring Filters on OA-700 ...................................................... |
590 |
Managing Security Configuration.......................................................................................... |
591 |
Insertions ........................................................................................................................ |
591 |
Updations ....................................................................................................................... |
592 |
Network Attacks - An Overview............................................................................................. |
594 |
Types of Network Attacks............................................................................................... |
594 |
Default Attacks (Rate-limiting / Stateful)......................................................................... |
595 |
Default Attacks (Non-rate Limiting / Stateless)............................................................... |
597 |
Optional Attacks ............................................................................................................. |
599 |
Network Attack Prevention Configuration ............................................................................. |
601 |
Network Attack Prevention Configuration Steps............................................................. |
601 |
Network Attack Prevention Configuration Flow .............................................................. |
603 |
Network Attack Prevention Configuration Commands ................................................... |
604 |
Firewall Show Commands.............................................................................................. |
614 |
Firewall Debug Commands ............................................................................................ |
620 |
Sample Firewall Policy Configurations on OA-700......................................................... |
621 |
Zone Configuration................................................................................................................ |
623 |
Trusted Zone Configuration............................................................................................ |
623 |
Untrusted Zone Configuration ........................................................................................ |
623 |
Semi-trusted Zone or Demilitarized Zone....................................................................... |
624 |
Three Zone Firewall Example......................................................................................... |
625 |
Example 2: Simple Zone Configuration in OA-700......................................................... |
633 |
Time-range/Timer Configuration ........................................................................................... |
635 |
Time-range Configuration Commands ........................................................................... |
635 |
Time-range Show Command.......................................................................................... |
636 |
ALGs Supported in OA-700 .................................................................................................. |
637 |
ALG Configuration Commands....................................................................................... |
639 |
Customized-service Rule Based ALG Configuration ............................................................ |
646 |
Customizing ALG Commands ........................................................................................ |
646 |
UA ALG Configuration........................................................................................................... |
649 |
UA ALG Commands ....................................................................................................... |
649 |
Typical Rule Based ALG and DNAT Example Using OA-700............................................... |
652 |
Security - Best Practices ....................................................................................................... |
654 |
Rules for Configuring Packet Filters ............................................................................... |
654 |
27 IP Security - Virtual Private Network ........................................................ |
659 |
Chapter Conventions...................................................................................................... |
660 |
IPsec VPN Overview............................................................................................................. |
661 |
IPsec Enabled VPN ........................................................................................................ |
663 |
IPsec Connection Types................................................................................................. |
663 |
IPsec Concepts .............................................................................................................. |
665 |
Benefits of IPsec Enabled VPN ...................................................................................... |
670 |
Default Configuration Setting on OA-700 ....................................................................... |
671 |
IPsec VPN Configuration ...................................................................................................... |
672 |
IPsec VPN Configuration Steps...................................................................................... |
672 |
IPsec VPN Configuration Flow ....................................................................................... |
674 |
IPsec Configuration Commands..................................................................................... |
675 |
To Configure the Match-lists........................................................................................... |
675 |
IPsec Configuration with Pre-shared Key....................................................................... |
675 |
Example.......................................................................................................................... |
675 |
IPsec Configuration with X.509 Certificates ................................................................... |
676 |
To Import a RSA Key...................................................................................................... |
676 |
Example.......................................................................................................................... |
676 |
Example.......................................................................................................................... |
677 |
To Export RSA Keys....................................................................................................... |
683 |
Example.......................................................................................................................... |
683 |
To Delete a CA Certificate.............................................................................................. |
683 |
Example.......................................................................................................................... |
683 |
To Delete a Signed Certificate........................................................................................ |
684 |
Example.......................................................................................................................... |
684 |
To Delete a Peer Certificate ........................................................................................... |
684 |
Example.......................................................................................................................... |
684 |
To Delete an RSA Key Pair ............................................................................................ |
684 |
Example.......................................................................................................................... |
684 |
Internet Key Exchange (IKE) Policy ............................................................................... |
685 |
To Configure Transform-set in IPsec.............................................................................. |
689 |
To Configure IPsec Crypto Map ..................................................................................... |
691 |
Example.......................................................................................................................... |
691 |
To Attach Crypto Map to an Interface............................................................................. |
695 |
Dead Peer Detection (DPD) ........................................................................................... |
696 |
IPsec VPN Show Commands......................................................................................... |
698 |
Clear Commands in IPsec.............................................................................................. |
714 |
IPsec Scenarios on OA-700.................................................................................................. |
715 |
Best Practices For Deploying IPsec VPN ............................................................................. |
718 |
Identity ............................................................................................................................ |
718 |
IPsec Access Control ..................................................................................................... |
719 |
IPsec............................................................................................................................... |
719 |
Network Address Translation ......................................................................................... |
720 |
Network Access Control ................................................................................................. |
720 |
Interoperability ................................................................................................................ |
720 |
Routing Entry.................................................................................................................. |
721 |
IPsec NAT-Traversal............................................................................................................. |
722 |
Scenarios Depicting IPsec Nat-traversal............................................................................... |
723 |
IPsec Tunnel Interface .......................................................................................................... |
725 |
Before You Configure IPsec Tunnel Interface ................................................................ |
725 |
Default Configuration...................................................................................................... |
726 |
IPsec Tunnel Interface Configuration.................................................................................... |
727 |
IPsec Tunnel Interface Configuration Steps ................................................................... |
727 |
IPsec Tunnel Interface Configuration Flow..................................................................... |
729 |
IPsec Tunnel Interface Configuration Commands.......................................................... |
730 |
IPsec Tunnel Configuration Scenarios using OA-700........................................................... |
737 |
28 Generic Routing Encapsulation................................................................ |
739 |
Chapter Organization ..................................................................................................... |
739 |
Chapter Conventions...................................................................................................... |
739 |
GRE Overview ...................................................................................................................... |
740 |
GRE Tunnel Setup ......................................................................................................... |
740 |
GRE Tunnel Features..................................................................................................... |
741 |
Summary ........................................................................................................................ |
742 |
Alcatel-Lucent Specific Overview ................................................................................... |
742 |
GRE Tunnel Configuration .................................................................................................... |
743 |
GRE Configuration Steps ............................................................................................... |
743 |
GRE Configuration Flow................................................................................................. |
745 |
GRE CLI Commands...................................................................................................... |
746 |
GRE Configuration Scenarios using OA-700 ........................................................................ |
749 |
1. GRE Configuration ..................................................................................................... |
749 |
2. GRE + IP Filters + DoS Configuration ...................................................................... |
752 |
3. GRE over IPsec Configuration ................................................................................. |
754 |
29 Transparent Firewall .................................................................................. |
757 |
Chapter Conventions...................................................................................................... |
757 |
TF Overview.......................................................................................................................... |
758 |
OA-700 Specific Overview.............................................................................................. |
758 |
TF Configuration ................................................................................................................... |
759 |
TF Configuration Steps................................................................................................... |
759 |
TF Configuration Flow .................................................................................................... |
760 |
TF Configuration Commands ......................................................................................... |
761 |
Show Commands in TF .................................................................................................. |
763 |
Clear Commands............................................................................................................ |
764 |
TF Configuration on OA-700 ................................................................................................. |
765 |
Configuration Steps ........................................................................................................ |
765 |
Show Commands ........................................................................................................... |
765 |
Part 7: Quality of Service |
|
30 Quality of Service ....................................................................................... |
769 |
Chapter Conventions...................................................................................................... |
769 |
QoS Overview ....................................................................................................................... |
770 |
Generic terms used in QoS ............................................................................................ |
770 |
Alcatel-Lucent Specific Overview on QoS ...................................................................... |
772 |
Traffic Without Policing and Shaping.............................................................................. |
774 |
Traffic with Policing......................................................................................................... |
775 |
Traffic with Shaping ........................................................................................................ |
776 |
Hierarchical Queuing ...................................................................................................... |
777 |
Bandwidth Sharing in Tunnels........................................................................................ |
779 |
QoS Configuration................................................................................................................. |
780 |
QoS Configuration Steps................................................................................................ |
780 |
QoS Configuration Flow ................................................................................................. |
783 |
QoS Configuration Commands....................................................................................... |
785 |
Class Map Configuration ................................................................................................ |
785 |
Policy Map Configuration................................................................................................ |
786 |
Attaching a Policy Map to an Interface ........................................................................... |
789 |
Traffic Class Attributes Configuration ............................................................................. |
790 |
Auto QoS Configuration.................................................................................................. |
798 |
Hierarchical Policy Configuration.................................................................................... |
800 |
QoS over Tunnel Interface ............................................................................................. |
805 |
Example.......................................................................................................................... |
805 |
QoS Show Commands ................................................................................................... |
806 |
QoS Clear Commands ................................................................................................... |
815 |
QoS Test Scenarios on OA-780............................................................................................ |
816 |
Traffic Shaping ............................................................................................................... |
816 |
Priority Queuing.............................................................................................................. |
817 |
31 Intrusion Detection System ....................................................................... |
819 |
Chapter Conventions...................................................................................................... |
819 |
IDS Overview ........................................................................................................................ |
820 |
Alcatel-Lucent Specific Overview ................................................................................... |
820 |
IDS Configuration.................................................................................................................. |
820 |
IDS Configuration Steps ................................................................................................. |
821 |
IDS Configuration Flow................................................................................................... |
823 |
IDS Configuration Commands........................................................................................ |
824 |
IDS Show Commands .................................................................................................... |
830 |
IDS Clear Commands..................................................................................................... |
835 |
IDS Debug Commands................................................................................................... |
836 |
IDS Configuration Scenario Using OA-700 ........................................................................... |
837 |
Configuration Steps ........................................................................................................ |
837 |
Show Commands ........................................................................................................... |
837 |
IDS Topology.................................................................................................................. |
838 |
Part 8: TCP/IP Services |
|
32 DHCP (Dynamic Host Configuration Protocol) Server............................ |
841 |
Chapter Conventions...................................................................................................... |
841 |
DHCP Server Overview ........................................................................................................ |
842 |
Alcatel-Lucent Specific Overview ................................................................................... |
842 |
DHCP Server Configuration .................................................................................................. |
843 |
DHCP Server Configuration Steps ................................................................................. |
843 |
DHCP Server Configuration Flow................................................................................... |
845 |
DHCP Server Configuration Commands ........................................................................ |
846 |
DHCP Server Show Commands .................................................................................... |
853 |
DHCP Server Test Scenarios using OA-780 ........................................................................ |
856 |
Configuration Steps ........................................................................................................ |
857 |
33 TFTP (Trivial File Transfer Protocol) Server ............................................ |
859 |
Chapter Conventions...................................................................................................... |
859 |
TFTP Server Overview.......................................................................................................... |
860 |
Alcatel-Lucent Specific Overview ................................................................................... |
860 |
TFTP Server Configuration ................................................................................................... |
861 |
TFTP Configuration Steps .............................................................................................. |
861 |
TFTP Configuration Flow................................................................................................ |
862 |
TFTP Configuration Commands..................................................................................... |
863 |
TFTP Show Commands ................................................................................................. |
864 |
34 DHCP (Dynamic Host Configuration Protocol) Relay ............................. |
865 |
Chapter Conventions...................................................................................................... |
865 |
DHCP Relay Overview.......................................................................................................... |
866 |
Alcatel-Lucent Specific Overview ................................................................................... |
866 |
DHCP Relay Configuration ................................................................................................... |
867 |
DHCP Relay Configuration Steps................................................................................... |
867 |
DHCP Relay Configuration Flow .................................................................................... |
868 |
DHCP Relay Configuration Commands ......................................................................... |
869 |
DHCP Relay Test Scenarios using OA-780.......................................................................... |
871 |
Configuration Steps ........................................................................................................ |
871 |
35 DNS (Domain Name Service) Client.......................................................... |
873 |
Chapter Conventions...................................................................................................... |
873 |
DNS Client Overview ............................................................................................................ |
874 |
DNS Client Configuration ...................................................................................................... |
874 |
DNS Client Configuration Steps ..................................................................................... |
875 |
DNS Client Configuration Flow....................................................................................... |
876 |
DNS Client Configuration Commands ............................................................................ |
877 |
DNS Client Test Scenario using OA-780 .............................................................................. |
881 |
Configuration Steps ........................................................................................................ |
881 |
Part 9: Lifeline (Dedicated Management Framework) |
|
36 Lifeline......................................................................................................... |
885 |
Chapter Conventions...................................................................................................... |
886 |
Lifeline Overview ............................................................................................................ |
887 |
Lifeline Features ............................................................................................................. |
888 |
Failure Modes supported by Lifeline............................................................................... |
890 |
Failure Detection ............................................................................................................ |
891 |
Failure Notification.......................................................................................................... |
892 |
Interface Cards that are Currently Supported................................................................. |
892 |
Functionality Available in Lifeline Mode.......................................................................... |
892 |
Routing Considerations in Lifeline Mode ........................................................................ |
893 |
Operation of OA-780 in Lifeline Mode ............................................................................ |
893 |
CLI Commands............................................................................................................... |
894 |
Recovery from Lifeline Mode to Normal Mode ............................................................... |
897 |
Lifeline Configuration Scenario ............................................................................................. |
898 |
Part 10: Appendices |
|
A Well Defined Port Numbers for Services...................................................... |
3 |
B RFCs Supported by OA-700 ........................................................................ |
11 |
AAA Authentication ................................................................................................................. |
11 |
SNMP...................................................................................................................................... |
11 |
Management ........................................................................................................................... |
11 |
VRRP ...................................................................................................................................... |
11 |
LAN ......................................................................................................................................... |
12 |
WAN........................................................................................................................................ |
12 |
Layer-2 protocols .................................................................................................................... |
12 |
Routing.................................................................................................................................... |
12 |
IPsec VPN............................................................................................................................... |
13 |
GRE ........................................................................................................................................ |
14 |
QoS ......................................................................................................................................... |
14 |
C Failure Scenarios While Installing OA-700 Software Package................. |
15 |
Failure Scenarios While Installing ........................................................................................... |
15 |
D QoS Values and Mnemonics ....................................................................... |
17 |
Default Values for Random-detect ip-precedence............................................................ |
17 |
Default Values for Random-detect ip-dscp....................................................................... |
17 |
IP-DSCP Mnemonics........................................................................................................ |
20 |
IP-precedence Mnemonics............................................................................................... |
21 |
ToS Mnemonics................................................................................................................ |
21 |
E IP Security Interoperability of OA-700 ........................................................ |
23 |
Configuring IPsec Tunnel Between OA-700 and Cisco 2621 ................................................. |
23 |
Configuration .................................................................................................................... |
24 |
Verification........................................................................................................................ |
28 |
Configuring IPsec between OA-700 and Sonicwall (PRO 3060) ............................................ |
29 |
Configuration .................................................................................................................... |
30 |
Configuring Sonicwall (PRO 3060)................................................................................... |
32 |
Verifying the Configuration ............................................................................................... |
36 |
F Software Licenses and Acknowledgements.............................................. |
37 |
Linux Kernel...................................................................................................................... |
38 |
Intel Linux Device Driver Software ................................................................................... |
38 |
PMC-Sierra Linux Device Driver Software ....................................................................... |
38 |
Mindspeed Linux Device Driver Software......................................................................... |
39 |
eCos ................................................................................................................................. |
39 |
U-Boot .............................................................................................................................. |
40 |
Linux STP ......................................................................................................................... |
40 |
Paul's PPP Package......................................................................................................... |
40 |
DHCP ............................................................................................................................... |
42 |
tftp-hpa ............................................................................................................................. |
43 |
Net-SNMP ........................................................................................................................ |
44 |
OpenSSH ......................................................................................................................... |
46 |
ZEBRA CLI ...................................................................................................................... |
48 |
GNU Pth - The GNU Portable Threads ............................................................................ |
49 |
TCP Proxy and Reassembly ............................................................................................ |
49 |
Strongswan IKE................................................................................................................ |
50 |
FreeBSD Crypto Library ................................................................................................... |
50 |
Snort ................................................................................................................................. |
51 |
Mbedthis AppWeb ............................................................................................................ |
51 |
libxslt................................................................................................................................. |
52 |
BusyBox ........................................................................................................................... |
53 |
iputils ................................................................................................................................ |
53 |
e2fsprogs.......................................................................................................................... |
55 |
InetUtils, gawk, GDB ........................................................................................................ |
55 |
cURL................................................................................................................................. |
56 |
PCRE................................................................................................................................ |
56 |
MD5 .................................................................................................................................. |
57 |
GNU General Public License............................................................................................ |
58 |
GNU Lesser General Public License................................................................................ |
64 |
List of Figures
Configuration Modes 15 VRRP Configuration Flow 124 VRRP Topology 136 Ethernet Network 143
Ethernet Interface Configuration Flow 146 Layer 2 Switching 155
L2-GE Front Panel View of the RJ-45 Connector 156 L2 Switching Configuration Flow 160
Switching with no VLANs 170 Switching with VLAN 171 PVST+ Configuration Flow 178 PVST+ Topology 187
PVST+ Topology on OA-700 189 IRB Topology 197
802.1X Deployment Scenario 200 Message Exchange 202
802.1X Configuration Flow 207
802.1X Topology 216
Port Monitoring Topology 225 The OA-700 T1E1 Line Card 230 E1 Frame Structure 231
E1 Configuration Flow 236
T1 Configuration Flow 252 Serial Line Card (V.35/X.21) 268
V.35/X.21 Configuration Flow 270
An HDLC frame with an information field 278 HDLC Configuration Flow 283
FR Configuration Flow 295
PPP Configuration Flow 310
Sample Deployment Scenario for MLPPP 330
MLPPP Header in Long Sequence Number Format 331 MLPPP Header in Short Sequence Number Format 332 MLPPP Configuration Flow 336
MLFR frame format for data packets 345 MLFR frame format for control packets 345 MLFR Configuration Flow 350
Depicting Alcatel-Lucent’s Common Classification 360 Elements in Common Classifiers 361
RIP Configuration Flow 422
BGP Configuration Flow 445 BGP Configuration Scenario 454 OSPF Configuration Flow 461 OSPF Configuration Scenario 491 PIM Configuration Flow 499 IGMP Configuration Flow 511
Multicast Configuration Scenario 519 PBR Configuration Flow 529
SNAT Configuration Flow 546
DNAT Configuration Flow 557
Depicting ALG Scenario 575
Filter Configuration Flow 580
Network Attack Prevention Flowchart 603 Figure Depicting Three Zones 623
Three - Zone Network Topology 624 Three Zone Firewall Network Topology 625 ALG Configuration Scenario 652
General VPN Usage 661
A General Scenario of IPsec - VPN 664 Tunnel Mode 665
Phase 1 Negotiation - Main Mode 668
Phase 2 Negotiation - Quick Mode 669 IPsec Configuration Flowchart 674 IPsec Scenario with NAT-Traversal 723
IPsec Tunnel Interface Configuration Flowchart 729 IPsec Tunnel Interface Configuration Topology 737 GRE Configuration Flow 745
GRE Configuration Topology 749
GRE+ IP Filters + DoS Configuration Topology 752 GRE + IPsec Configuration Topology 754
TF Configuration Flow 760
Data Traffic before Policing And Shaping 774 Data Traffic with Policing 775
Data Traffic with Shaping 776
Link Sharing Requirement Example 777 Link Sharing Solution 778
Link Bandwidth sharing requirements over VPN tunnels 779 QoS Configuration Flow - Auto QoS Procedure 783
QoS Configuration Flow - Standard Procedure 784 QoS Traffic Shaping Using OA-780 816
QoS Priority Queuing Using OA-780 817 IDS Configuration Flow 823
IDS Topology 838
DHCP Server Configuration Flow 845
DHCP Server Test Scenario using OA-780 856 TFTP Configuration Flow 862
DHCP Relay Configuration Flow 868
DHCP Relay Test Scenario using OA-780 871 DNS Client Configuration Flow 876
DNS Client Test Scenario using OA-780 881 Separate Management Plane 888
N+1 Redundant Management Architecture 889 Uninterrupted Access to System Management 890 Lifeline Configuration Scenario 898
IPsec Interoperability Between OA-700 and Cisco 2621 23
IPsec Interoperability Between OA-700 and Sonicwall PRO 3060 29 Configuring Local network behind Sonicwall 32
Configuring External IP Address for Sonicwall 33 Configuring IPsec Policy and Destination Network 34 Configuring IPsec Phase 1 and Phase 2 Proposals 35
Preface
CHAPTER 1 PREFACE
ABOUT THIS GUIDE
This guide describes the CLI commands used to configure different services available in the OmniAccess 700 (OA-700). It focuses on accessing the OmniAccess 700 by using the Command Line Interface (CLI). In addition to showing how to configure each feature, this guide also provides background on why user might need the service and how it works.
The following list is a sampling of what is found in this guide:
•Getting efficient use of network resources.
•Configuring the LAN and WAN interfaces effectively.
•Optimizing routing services to enhance network scalability.
•Integrating networks with different routing protocols.
•Adding intelligence and flexibility to use the ACLs across applications using the Common Classifiers.
•Setting improved security policies on the network for users and their services.
•Extending the network to new places, such as Internet, securely.
•Protecting information and network resources.
AUDIENCE
This guide is intended for networking professionals who are responsible for designing, implementing, and managing enterprise networks. This guide aims to provide unique technologies and effective practices that not only deliver value on the networking perspective but also provides an opportunity for professional growth.
Alcatel-Lucent
CLI Configuration Guide |
1 |
CLI Configuration Guide
ORGANIZATION
The chapters in the CLI Configuration Guide are organized into seven parts.
PART I - INTRODUCTION
The first part provides an introduction to CLI, “The Command Line Interface” in Chapter 2. This is a preparatory chapter that describes the CLI configuration considerations, tools required, an overview of the Command Line Interface and procedures that should be performed before the actual configuration.
Chapter 3 “System Configuration and Monitoring” provides an overview of the system level commands required to troubleshoot, monitor, connect the system to the network. This chapter also includes commands for Inband and Out-of-band management, setting system parameters, software management, configuration management, AAA services, SNMP, etc. The various commands described include SSH, Telnet, show version, update, show environment, show mem, show proc, etc.
Chapter 4 “Virtual Router Redundancy Protocol” details a study on VRRP implementation on the OA-700. It is a method of providing nonstop path redundancy and gateway redundancy for an enterprise network by sharing protocol and Media Access Control (MAC) addresses between redundant gateways.
PART II - LAN INTERFACES
This part introduces the commands and steps to configure the LAN interfaces. It gives a succinct overview on the Ethernet Interface configuration in Chapter 5 “Ethernet Interfaces on SE”.
The Bridging configuration in Chapter 6 “Layer 2 Switching Configuration” deals with the L2 switching Configuration on the OA-700. The chapter is organized with the L2 switching overview, configuration details in the first few sections and the configuration scenario in the end to give a real time example for configuring switching.
Chapter 7 “Per VLAN Spanning Tree +” details the VLAN commands in switching.
Chapter 8 “Integrated Routing and Bridging” deals with Switching configuration integrated with routing.
Chapter 9 “802.1X Port-Based Authentication” describes how to configure IEEE 802.1X port-based authentication on the OA-700.
Alcatel-Lucent
2 |
CLI Configuration Guide |
Organization
Chapter 10 “Port Monitoring” chapter details the commands used to configure Port Monitoring on the OA-700.
PART IIIWAN INTERFACES
This part introduces the commands and steps to configure a T1 or an E1 interface in Chapter 11 “T1E1 Line Card”. The different encapsulation that can be applied on an interface are described in the subsequent chapters.
Chapter 12 “Serial Line Cards” provides the configuration steps and commands to configure Serial interface (V.35/ X.21). The different encapsulation that can be applied on an interface are described in the subsequent chapters.
Chapter 13 “High-level Data Link Control” provides the configuration steps and commands to configure an High-level Data Link Control (HDLC) encapsulation on an interface.
Chapter 14 “Frame Relay” provides the configuration steps and commands for Frame Relay (FR) encapsulation on an interface. It includes the configuration commands for LMI, DLCI and FR fragmentation.
Chapter 15 “Point-to-Point Protocol” provides the configuration commands for Point-to-point (PPP) encapsulation on an interface. It includes CLI commands for configuring LCP, IPCP, Counters and Timers, Authentication, etc.
Chapter 16 “Multilink Point to Point Protocol” provides the configuration commands for Multilink Point-to-Point (MLPPP) encapsulation on an interface. It includes CLI commands for configuring a multi-link bundle interface and member link configuration.
Chapter 17 “Multilink Frame Relay” provides the configuration commands for Multilink Frame Relay (MLFR) encapsulation on an interface. It includes CLI commands for configuring a multi-link bundle interface and member link configuration.
Alcatel-Lucent
CLI Configuration Guide |
3 |
CLI Configuration Guide
PART IV - PACKET CLASSIFICATION
This part consists of Chapter 18 “Common Classifiers” that focuses on configuring the Common Classifier commands. These commands are generic across all applications. You are required to have a thorough knowledge of this chapter before you proceed to configure the NATs, Filters, etc. This chapter provides a concise overview on the concepts of creating rules, match-lists, lists, etc.
PART V - ROUTING PROTOCOLS
The aim of the fourth part is to get the most out of addressing and routing. The routing function moves data through the network efficiently and finds new paths when network changes occur. Routing also affects how large the network can grow - that is, the complexity of the topology and the stability of the network as it expands.
All the chapters in this part focus on configuring the routing services.
Chapter 19 “Protocol Independent Features” provides commands that are generic across all routing protocols. You are required to have a thorough knowledge of this chapter before you proceed to configure the routing protocols.
Chapter 20 “Routing Information Protocol” and Chapter 21 “Border Gateway Protocol” and Chapter 22 “Open Shortest Path First” provides configuration commands for configuring RIP, BGP and OSPF routing protocols.
Chapter 23 “Multicast Routing” provides Multicast routing configuration on the OA-700.
Chapter 24 “Policy Based Routing” covers the Policy Based Routing (PBR) configuration on the OA-700.
Alcatel-Lucent
4 |
CLI Configuration Guide |
Organization
PART VI - NETWORK SECURITY CLI
This part deals with the methodologies to secure the network, protect data and users, and extend connectivity with confidence. Security services protect the confidentiality and integrity of information on the network. You are required to have a complete knowledge in configuring the match-lists (access lists) before you proceed to configure the Filters, NATs, Firewalls, and IPsecs.
Chapter 25 “Network Address Translation” covers the configuration of NATs (SNAT and DNAT configuration).
Chapter 26 “Filter and Firewall” progresses logically from basic network security, starting with filters to more sophisticated topics such as Firewall policies and Zone configuration. The “Time-range CLI” includes commands and procedure to configure scheduling in different applications, such as Firewall.
Chapter 27 “IP Security - Virtual Private Network” begins a survey of advanced security services and provides details about IPsec - a leading technology for building VPNs. IPsec building blocks include IKE, Transform Sets, Security Associations, Modes, Authentication Header (AH), Encapsulating Security Payload (ESP), and basic cryptography.
Chapter 28 “Intrusion Detection System” comprehends the commands to configure Intrusion Detection and Intrusion Prevention on the OA-700.
Chapter 29 “Generic Routing Encapsulation” provides the commands for GRE (Generic Routing Encapsulation) configuration.
Chapter 30 “Transparent Firewall” covers the Transparent Firewall (TF) configuration on the OA-700.
PART VII - QUALITY OF SERVICE
Quality of Service (QoS) refers to a broad collection of shaping technologies/ techniques. QoS is an increasingly important area of research and development in computer networking. It is especially important for the new generation of internet applications such as video-on-demand and other consumer services. QoS tools help in alleviating most congestion problems especially when there is too much traffic and a network monitoring system becomes a must.
Chapter 31 “Quality of Service” provides the configuration commands for QoS. It includes CLI commands for configuring policing, shaping, queueing network traffic, auto Qos, etc.
Alcatel-Lucent
CLI Configuration Guide |
5 |
CLI Configuration Guide
PART VIII - TCP/IP SERVICES
This part consists of Chapter 32 “DHCP (Dynamic Host Configuration Protocol) Server” that focuses on DHCP Server configuration, and Chapter 33 “TFTP (Trivial File Transfer Protocol) Server” that documents the TFTP Server configuration commands.
Chapter 34 “DHCP (Dynamic Host Configuration Protocol) Relay” focuses on DHCP Relay configuration.
and Chapter 35 “DNS (Domain Name Service) Client” documents the DNS Client configuration commands.
PART IX - LIFELINE (DEDICATED MANAGEMENT FRAMEWORK)
This part consists of Chapter 36 “Lifeline” that describes the Lifeline management framework, which is a key architectural aspect of the OA-780.
Alcatel-Lucent
6 |
CLI Configuration Guide |
Document Conventions
DOCUMENT CONVENTIONS
The following table describes the document conventions used with the commands in this document:
Convention |
Description |
|
|
|
|
Bold |
Indicates commands and keywords |
|
|
|
|
Italics |
Indicates arguments/command input supplied by you. |
|
|
|
|
[ ] |
Square brackets enclose an optional element (keyword |
|
|
or argument) |
|
|
|
|
< > |
Braces enclose a mandatory element (keyword or |
|
|
argument). |
|
|
|
|
| |
Line indicates an optional choice. |
|
|
|
|
[x | y] |
Square brackets enclosing keywords or arguments |
|
|
separated by a vertical line indicates an optional |
|
|
choice. |
|
|
|
|
{x | y} |
Braces enclosing keywords or arguments separated by |
|
|
a vertical line indicate a required choice. You must |
|
|
select one. |
|
|
|
|
[w {x|y}............] |
Nested sets of square brackets or braces indicate |
|
|
optional or required choices within the optional or |
|
|
required elements. |
|
|
|
|
{x|y}... OR |
Braces enclosing keywords or arguments with ‘...’ |
|
[x|y]... |
indicate that the element within the brace can be |
|
repeated. |
||
|
||
|
|
|
Courier font |
Examples of information displayed on the screen. |
|
< > |
Angle brackets enclose text that is not printed on the |
|
|
screen such as passwords. |
|
|
|
|
“no” form of the |
The 'no' form of a command is issued to either set it to |
|
commands |
its default value or to negate it. |
|
|
|
|
[ ^ ] |
[ ^ ] in the command indicate negation. |
|
|
|
Alcatel-Lucent
CLI Configuration Guide |
7 |
CLI Configuration Guide
The following conventions are used to attract the attention of the reader:
Note: A note contains helpful suggestions or information that may be easily overlooked.
Caution: Indicates a situation where the reader needs to be careful. Failure to observe the cautionary note could result in equipment damage or loss of data.
Warning: Warning is used in similar cases as caution. This also indicates a situation where the reader needs to pay extra attention to avoid hazardous situations.
OBTAINING DOCUMENTATION
Alcatel-Lucent provides several ways to obtain technical assistance and other technical resources. Documents can be downloaded from our support site service.esd.alcatel-lucent.com.
REFERENCE PUBLICATIONS
The following publications are part of the Alcatel-Lucent documentation suite:
•OmniAccess 700 CLI Command Reference Guide (Release 2.2)
•OmniAccess 700 Web GUI Users Guide (Release 2.2)
•OmniAccess 700 Getting Started Guide (Release 2.2)
•OmniAccess 780 Hardware Users Guide (Release 2.2)
•OmniAccess 740 Hardware Users Guide (Release 2.2)
Alcatel-Lucent
8 |
CLI Configuration Guide |
Loading...