Avaya BSGX4e User Guide
BSGX4e
Business Gateway
User Guide
Release 01.01
Trademarks
Nortel, the Nortel logo, and the Globemark are trademarks of Nortel Networks.
All other trademarks appearing in this guide are the exclusive property of their
respective owners.
Hardware Notice
WARNING: Before working on this equipment, be aware of good safety practices
and the hazards involved with electrical circuits.
WARNING: To reduce risk of injury, fire hazard, and electric shock, do not install
the unit near a damp location.
CAUTION: Do not connect the FXS port (labeled PHONE) to the central office line.
CAUTION: To reduce the risk of fire, use only number 26 AWG or larger UL Listed
or CSA Certified telecommunication line cord for all network and
telecommunication connections.
2 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
C
ONTENTS
ABOUT THIS GUIDE
Audience ........................................................................... 23
Organization....................................................................... 23
Conventions ....................................................................... 25
Command Prompt Convention................................................ 25
Text Font Conventions......................................................... 25
Documentation.................................................................... 26
How to get help................................................................... 26
Getting Help from the Nortel Web site ..................................... 26
Getting Help over the phone from a Nortel Solutions Center ........... 26
Getting Help from a specialist by using an Express Routing Code ...... 27
Getting Help through a Nortel distributor or reseller .................... 27
1
CONNECTING TO THE DEVICE
Network Role...................................................................... 29
Device Features................................................................... 30
Connecting to the Unit .......................................................... 32
Finding an IP Address using a Console Session ............................. 32
Remote Administration Services ............................................. 33
Telnet Access...................................................................... 34
Telnet Configuration Command .............................................. 34
Telnet Configuration Example ................................................ 35
Show Telnet Configuration.................................................... 35
Telnet Client Command........................................................ 35
Telnet Session Example........................................................ 35
SSH Server ..................................... ..... ..... ..... ..................... 36
Digital Signature Algorithm (DSA) Host Keys ............................... 36
SSH Configuration Command ................................................. 36
SSH Example .................................................... ..... ..... ...... 37
Show SSH Configuration ....................................................... 37
Regenerate SSH keys........................................................... 37
Upload Public Key.............................................................. 38
Web Server ........................................................................ 38
Web Server Configuration Command........................................ 39
Disable Web Server Example.................................................. 39
Show Web Server Configuration.............................................. 39
Show Web Server Statistics ................................................... 40
SSL .................................................................................. 40
SSL Key........................................................................... 40
SSL CSR........................................................................... 41
SSL Certificate .................................................................. 42
SSL Configuration Example.................................................... 43
Show SSL Configuration........................................................ 43
2 INITIAL SETUP
Setting the Time ..................................................................47
Show the Current Time.........................................................47
Setting the Time Manually.....................................................47
Setting the Time through an SNTP Server...................................48
Watchdog Reset Timer ...........................................................49
Watchdog Timer Command ....................................................49
Watchdog Timer Example......................................................50
Show Watchdog Configuration ................................................50
DNS Client.............................................................. ..... .......50
DNS Client Configuration Command..........................................50
DNS Client Configuration Example ...........................................51
Show DNS Client Configuration ...............................................52
Check DNS Server Accessibility ...............................................52
Initial Settings .....................................................................52
3
USER MANAGEMENT
User Management Features......................................................57
Password Entry ....................................................................58
Failed log on Attempts.........................................................58
Changing a Password ...........................................................59
Showing Active Users .............................................................60
User Accounts, Groups and Rights..............................................61
User Configuration Commands................................................61
User Accounts......................................................................61
Add User Account Example....................................................63
Show User Account .............................................................63
Deleting a User Account .......................................................63
User Groups ........................................................................64
Add User Group Example ......................................................65
Show a User Group..............................................................65
Deleting a User Group..........................................................65
User Rights .........................................................................66
Command Authority ............................................................66
Configuration Requirements...................................................66
Configuration Command .......................................................67
Add User Rights Example ......................................................67
Show User Rights Record.......................................................68
Deleting a User Rights Record.................................................68
Radius Authentication............................................................68
Configuration Requirements...................................................69
Configuration Steps.............................................................69
Radius Authentication Records................................................69
Example of Configuring a Radius Authentication Record .................70
Show Radius Authentication Records ........................................71
Radius Activity Logs ............................................................71
TACACS+ Authentication .........................................................71
Configuration Steps.............................................................72
4 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
TACACS+ Authentication Records ............................................ 72
Example of Configuring a TACACS+ Authentication Record.............. 73
Show TACACS+ Authentication Records ..................................... 73
TACACS+ Activity Logs ......................................................... 74
TACACS+ Authentication......................................................... 74
Configuration Requirements.................................................. 74
TACACS+ Authentication Records ............................................ 75
Example of Configuring a TACACS+ Authentication Record.............. 75
4
COMMAND INTERFACE
Command Entry................................................................... 77
Logging Off ....... .... ............................................................. 78
Exit Command .................................................................. 78
Customizing the Command Session ............................................ 78
Changing the Terminal Settings .............................................. 79
Saving Configuration Changes .................................................. 79
Showing the Configuration ...................................................... 80
Defining Auto Run Commands .................................................. 80
Online Help........................................................................ 81
General Help.................................................................... 81
Specific Help.................................................................... 81
Interactive Mode.................................................................. 82
CLI Command Syntax............................................................. 83
Parameter Values............................................................... 84
Command Keyword NO ............................................. ..... ..... . 84
Command Keyword ALL.................................................. ..... . 85
Maintenance Commands...... ..... ..... ..... ..... ............................... 86
Maintenance Command Syntax............................................... 86
Maintenance Command Help ............................ ..... ..... ..... ..... . 86
List of Maintenance Commands .............................................. 86
Debug Commands....................................... ..... ..... ..... ..... ..... . 88
Debug Command Syntax............................. ..... ..... ................ 88
Debug Command Help . ........................................................ 88
List of Debug Commands ...................................................... 88
5
WAN INTERFACE CONFIGURATION
Ethernet WAN Port and Interface.............................................. 91
WAN Ports........................................................................ 91
WAN Interface (eth0) .......................................................... 92
eth0 Configuration Command ................................................ 92
Show eth0 Configuration ...................................................... 94
eth0 Statistics................................................................... 94
6
LAN SWITCH CONFIGURATION
Introduction ....................................................................... 97
LAN Switch Ports.................................................................. 97
LAN Port Configuration Command ........................................... 98
LAN Port Configuration Examples............................................ 98
BSGX4e Business Gateway User Guide 5
Release 01.01 NN47928-102
Show Port Configuration .......................................................99
Show Port Status ................................................................99
Show Port Statistics.............................................................100
LAN Interface (eth1)..............................................................102
eth1 Configuration Command.................................................102
Configure eth1 Interface Example ...........................................102
Show eth1 Configuration.......................................................103
ARL Configuration.................................................................104
ARL Configuration Command..................................................104
Show ARL Table..................................................................105
Remove an ARL Entry...........................................................106
Flush ARL Table..................................................................106
Layer 2 QoS ........................................................................106
Priority Queues..................................................................107
Selecting Layer 2 QoS Settings................................................108
Mapping Port Numbers to Priority Queues ..................................108
Mapping IEEE 802.1p Tags to Priority Queues...............................108
Mapping ToS/DiffServ Tags to Priority Queues..............................109
Layer 2 QoS Configuration Example..........................................109
Show Layer 2 QoS Configuration..............................................109
7
VLAN CONFIGURATION
Assigning Ports to a VLAN........................................................111
Packet Tagging...................................................................112
VLAN Port Assignment Command.............................................112
VLAN Port Assignment Examples..............................................112
Show VLAN Port Assignments..................................................113
Delete VLAN Port Assignment.................................................113
Configuring a VLAN Interface....................................................114
Configuration Constraints......................................................114
Virtual Interface Configuration ...............................................114
VLAN IP Address Assignment ..................................................115
Virtual Interface Configuration Examples...................................116
Modifying or Deleting a VLAN ...................................................117
8
ROUTING CONFIGURATION
Introduction........................................................................121
Configuring ARP ...................................................................122
ARP Entry Configuration Command ..........................................122
ARP Entry Example..............................................................122
Show ARP Table..................................................................122
Delete ARP Entry...................... ..... ..... ................................123
Flush ARP Table .................................................................123
Protecting ARP Traffic..........................................................123
Configuring Static Routes ........................................................124
Route Configuration Command ...............................................124
Static Route Examples..........................................................125
Show Route Table ...............................................................125
6 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
Delete a Static Route.......................................................... 126
Starting the RIP Daemon......................................................... 126
RIP Constraints.................................................................. 126
RIP Daemon Command......................................................... 126
RIP Daemon Example .......................................................... 127
Show RIP Status................................................................. 127
Show RIP Routes................................................................ 127
9
SECURITY CONFIGURATION
Secure Traffic Processing........................................................ 129
Firewall Security Policies........................................................ 130
Initial Firewall Security Policies.............................................. 130
Configuration Constraints ..................................................... 130
Security Policy Sequence...................................................... 130
Security Policy Configuration Command.................................... 131
Firewall Security Policy Example ............................................ 132
Show Firewall Security Policies .............................................. 132
Remove a Firewall Security Policy ........................................... 132
Show Firewall Log Entries..................................................... 132
Connection Time-outs............................................................ 133
Connection Timeout Command............................................... 133
Show Timeout Settings ........................................................ 133
NAT/ALG ........................................................................... 134
Configuring NAT................................................................. 134
Enable NAT on the WAN Interface............................................ 135
Configuring NAT Policies................... ..... ..... ..... ..... ..... ........... 135
Configuring NAT Public Addresses............................................ 136
Port Forwarding................................................................. 137
Address Forwarding ............................................................ 138
Static NAT Forwarding ......................................................... 138
Show NAT Policies .............................................................. 139
ALG Configuration.............................................................. 140
IDS................................................................................... 140
Attack Types..................................................................... 141
Packet Anomaly Protection ................................................... 141
Flood Protection................................................................ 143
Scan Protection................................................................. 146
Spoof Protection................................................................ 147
IDS Statistics .................................................................... 149
Clear IDS Statistics ............................................................. 150
Show IDS Log Entries........................................................... 150
10
VPN CONFIGURATION
VPN Support ....................................................................... 153
IKE .................................................................................. 154
IKE Policies ...................................................................... 155
IKE Lifetime Parameters....................................................... 155
IKE Preshared Key Records.................................................... 156
BSGX4e Business Gateway User Guide 7
Release 01.01 NN47928-102
Show IKE Security Associations ...............................................157
Show IKE Statistics..............................................................158
IPsec.................................................................................158
IPsec Parameters................................................................159
IPsec Proposals ..................................................................160
IPsec Policies ....................................................................160
Show IPsec Security Associations .............................................162
IPsec Statistics...................................................................163
VPN Configuration Examples ....................................................163
Office-to-Office VPN Example ................................................163
ISP Tunnel Example .............................................................166
Configuring a VPN.................................................................169
VPN support on BSGX4e ..........................................................174
Example ..........................................................................175
Configuration of BSGX4e using a single tunnel .............................175
Configuration of Cisco..........................................................176
Troubleshooting on BSGX4e..................................... ..... ..... ..... ..177
11
GOS CONFIGURATION
Introduction to GoS ...............................................................181
Quality Groups...................................................................182
GoS Classes....................................... ..... ..... ......................182
Traffic Policing ..................................................................183
Configuring GoS .................................................................185
Configuring a GoS Link ...........................................................186
GoS Link Example.......................... .....................................186
Show the GoS Link ..............................................................186
Delete GoS Link .................................................................187
Configuring Quality Groups ......................................................187
Configuration Constraints......................................................187
Downgraded and Dropped Packets ...........................................187
Default Best Effort Quality Group............................................188
Quality Group Command.......................................................188
Quality Group Examples .......................................................189
Show Quality Groups ...........................................................190
Delete a Quality Group.........................................................190
Assigning Traffic Flows to Quality Groups.....................................190
VoIP Traffic Protection .........................................................191
ARP Traffic Protection..........................................................191
Traffic Protection by Security Policy.........................................191
GoS Security Policy Examples................. ..... ..... ..... ..... ............192
Show GoS Security Policies ....................................................193
Delete a Security Policy........................................................193
GoS Statistics ...................................... ..... ..... ..... .................193
Cumulative Statistics...........................................................193
Clearing GoS Cumulative Statistics...........................................195
Instantaneous Statistics........................................................195
Configuring QoS....................................................................197
Example ..........................................................................200
8 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
Configuring Layer 2 QoS....................................................... 201
Configuring Layer 3 QoS....................................................... 204
12
MGCP CONFIGURATION
Introduction to MGCP ............................................................ 209
MGCP Session Controller ...................................................... 210
MGCP Gateway.................................................................. 211
MGCP Configuration Steps .................................................... 211
MGCP Call Servers ................................................................ 212
Call Server Failover ............................................................ 212
MGCP Server Profile Command............................................... 213
MGCP Server Profile Examples................................................ 213
Show Server Settings........................................................... 214
Delete MGCP Server Profile................................................... 214
Show MGCP Server Status ..................................................... 214
MGCP Session Controller Configuration ....................................... 215
MGCP Signaling Proxy (MSP) .................................................. 216
Endpoint Status Handling (ESH) .............................................. 220
MGCP Gateway.................................................................... 222
Configuring MGCP Settings for the Gateway ............................... 222
Configuring the MGCP Gateway .............................................. 223
MGCP Endpoints................................................................... 227
Preparing Endpoints for Registration ........................................ 227
Verify Endpoint Registration.................................................. 228
13
VOIP CONFIGURATION
Media Bridge (MBR)............................................................... 229
Media Settings Command........................................... ..... ..... . 229
Media Settings Example ....................................................... 230
Show Media Settings ........................................................... 230
Show Media Status ............................................................. 230
Show Media Connection Statistics ........................................... 231
Access Control List (ACL)........................................................ 232
Access Control List Command ................................................ 233
ACL Entry Example............................................................. 233
Show ACL ........................................................................ 234
Cisco Discovery Protocol (CDP)................................................. 234
Show CDP Entry................................................................. 234
Show CDP Neighbors ........................................................... 235
Show CDP Statistics ............................................................ 236
Call Admission Control (CAC) ................................................... 236
VoIP Bandwidth Requirements................................................ 236
Show Call Admission Settings................................................. 237
FXS Port Configuration........................................................... 238
Country Code and Unit Name Setting ....................................... 239
Jitter Buffer Settings .......................................................... 240
Call Progress Tones............................................................. 241
DSP Gain Settings............................................................... 243
BSGX4e Business Gateway User Guide 9
Release 01.01 NN47928-102
Line Impedance Settings.......................................................243
Electrical Status.................................................................244
Line Fault Testing ...............................................................245
Voice Quality Monitoring (VQM).................................................247
Monitored Calls....................................... ..... ..... ..... ..... .......248
VQM Analyser Command ........ ..... .......................................... 249
VQM Analyser Example............................................. ..... .......250
Show VQM Analyser Configuration............................................250
Show VQM Call Summary.......................................................250
Voice Quality Statistics.........................................................251
Alarm Log Entries ...............................................................252
Alarm Statistics..................................................................252
Call Records........................................................................253
Show Current Calls..............................................................253
Show Call History ...............................................................254
14
LOCAL CALL ROUTING
VoIP Service Interruption ........................................................255
Local Call Routing (LCR) Mode ..................................................256
LCR Configuration...............................................................256
LCR Account Configuration ....................................................256
LCR Settings......................................................................257
FxO Gain and Impedance Settings............................................259
Show LCR Status.................................................................262
Show LCR Connections .........................................................262
15
SIP CONFIGURATION
Introduction to SIP ................................................................263
SIP Session Controller .................................... ..... ..... ............264
SIP Gateway............................ .......................................... 265
SIP Configuration Steps .............. ..... ..... ..... ..... ..... .................265
SIP Call Server Access ............................................................266
Call Server Failover.............................................................266
Additional Inbound Servers....................................................266
SIP Server Profile Command...................................................267
SIP Server Profile Examples ........................ ..... ..... ..... ..... .......267
Show SIP Server Settings.......................................................269
Delete SIP Server Profile.......................................................270
Show SIP Server Status .........................................................270
SIP Session Controller.............................................................271
SIP Signaling Proxy (SSP).......................................................272
Session Controller Setting Command ........................................272
Show SIP Session Controller Settings.........................................273
Show SIP Session Controller Status...........................................274
Show SIP Signaling Statistics ..................................................274
Show SIP Call Statistics.........................................................275
Show SIP Call Records ..........................................................276
Show Registered Endpoints....................................................276
10 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
Endpoint Status Handling (ESH) .............................................. 277
SIP Gateway ....................................................................... 278
SIP Settings for the Gateway ................................................. 278
SIP Gateway Configuration.................................................... 280
Numbering Plan for the Gateway ............................................ 284
SIP Endpoints...................................................................... 288
Preparing Endpoints for Registration ........................................ 288
Verify Endpoint Registration.................................................. 289
IP Address Change.............................................................. 289
Configuring SIP.................................................................... 290
Step 1-Configure BSGX4e Session Controller ................................. 292
Configuration of the IP Network ............................................. 292
Data service configuration for the LAN VoIP phones: DHCP, SNTP, and TFTP296
Configuration of the SIP voice services offered to LAN VoIP phones .. 297
Step 2-Configuring the BSGX4e User Agent................................... 299
Step 3-Configure LAN VoIP phones (Example using Cisco 7960) .......... 300
Step 4-Check the overall configuration ....................................... 301
Step 5-Make calls ................................................................. 302
Annex A-Configuration example for Cisco 7960 SIP phone................. 303
Annex B-Call Admission Controller algorithm............................... 306
16
VOIP SERVICES AND RELAYS
DHCP Server ....................................................................... 309
Default DHCP Server Configuration.......................................... 309
DHCP Server Configuration Command....................................... 310
DHCP Server Configuration Example ........................................ 311
Show DHCP Server Configuration ............................................ 311
Show DHCP Leases.............................................................. 312
DHCP Relay ........................................................................ 312
DHCP Relay Command ......................................................... 312
DHCP Relay Example........................................................... 313
Show DHCP Relay Settings .................................................... 313
DNS Relay .......................................................................... 313
DNS Relay Command........................................................... 313
DNS Relay Example............................................................. 314
Show DNS Relay Settings ...................................................... 314
Show DNS Sessions.............................................................. 314
Show DNS Relay Cache......................................................... 314
SNTP Relay......................................................................... 315
SNTP Relay Command.......................................................... 315
SNTP Relay Example ........................................................... 315
Show SNTP Settings ............................................................ 316
Show SNTP Sessions ............................................................ 316
TFTP Relay......................................................................... 316
TFTP Relay Command.......................................................... 316
TFTP Relay Settings Example................................................. 317
Show TFTP Relay Settings..................................................... 317
Show TFTP Sessions ............................................................ 317
TFTP File Cache................................................................... 318
BSGX4e Business Gateway User Guide 11
Release 01.01 NN47928-102
TFTP Cache Command .........................................................318
Specifying Files to be Cached.................................................318
TFTP Cache Example ...........................................................319
Show TFTP Cache Settings and Usage .......................................319
Show TFTP Cache Contents....................................................319
Delete Files to be Cached .....................................................320
Clear TFTP Cache ...............................................................320
17
MONITORING
Show System Exceptions .........................................................321
Show Hardware Information.....................................................322
Show System Status...............................................................322
Show System Operation Summary ..............................................323
Audit Logging ......................................................................324
Audit Log Command ............................................................324
Show Audit Log Status..........................................................324
Show Audit Log Entries.........................................................325
Clear Audit Log..................................................................325
Module Logging ....................................................................325
Logging Level Command .......................................................326
Mapping Log Destinations......................................................327
Show Module Log Entries.......................................................329
Configure Log Server ...........................................................329
Ethernet Interface Statistics ....................................................331
IP Stack Statistics .................................................................331
IP Statistics ......................................................................332
ICMP Statistics...................................................................333
UDP Statistics....................................................................335
TCP Statistics....................................................................335
18
MONITORING TOOLS
Port Mirroring......................................................................339
Port Mirroring Constraints .....................................................339
Port Mirroring Command.......................................................339
Mirroring Configuration Example ....................... ..... ..... ..... ..... ..340
Show Mirroring Configuration .................................................340
Deleting a Port Mirroring Entry ...............................................340
Protocol Monitoring (PMON) .....................................................340
Enable PMON Command........................................................341
PMON Trace Command .........................................................341
PMON Configuration Example .................................................342
Show PMON Status ..............................................................342
Show PMON Traces..............................................................342
Show PMON Trace Statistics ...................................................343
Clear PMON Trace Statistics...................................................343
Netflow Exporter..................................................................343
Netflow Exporter Command...................................................344
Netflow Filter Command.......................................................345
12 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
Netflow Configuration Example.............................................. 345
Show Netflow Status........................................................... 346
Show Netflow Filters........................................................... 346
Show Netflow Statistics ....................................................... 346
Clear Netflow Statistics ....................................................... 346
SNMP Agent................................................... ..... ..... ..... ..... . 347
SNMP Configuration Command .......................... ..... ................ 347
SNMP Community Command.............. ..... ............................... 348
SNMP Agent Configuration Example ......................................... 348
Show SNMP Agent Configuration ............................................. 349
Show SNMP Community Configuration ...................................... 349
Show SNMP Agent Statistics................................................... 349
Clear SNMP Statistics .......................................................... 351
SNMP Traps ....................................... ..... ..... ..... ..... ..... ...... 351
Copying Trap MIB Data......................................................... 352
TCPdump Command.............................................................. 352
TCPDump Command Options ................................................. 352
Limited Capture Example ..................................................... 354
Ping Command .................................................................... 355
Ping Example.................................................................... 356
Traceroute Command............................................................ 356
Traceroute Example............................................................ 357
19
SOFTWARE UPGRADES
File System ........................................................................ 359
File System Navigation ........................................................ 359
File System Management...................................................... 360
Software Upgrade Procedures .................................................. 362
Device Software ................................................................ 362
Check Current Software Versions ............................................ 362
Web UI Upgrade Procedure ..................................................... 363
Requirements ................................................................... 363
Save the Current Configuration .............................................. 363
Upgrade Software through Web UI........................................... 365
Change Default Application Image........................................... 368
View Bootloader Version ...................................................... 369
Restore the Configuration...................... ............................... 369
SFTP Upgrade Procedure ........................................................ 371
Listing the Configuration ........................................................ 374
A
WEB USER INTERFACE
...................................................................................... 379
Web UI Features .................................................................. 380
Logging on to the Web UI........................................................ 380
Access Requirements........................................................... 381
Log on Procedure................................ ..... ..... ..................... 381
Web UI Screen Structure ........................................................ 382
Menus............................................................................. 382
BSGX4e Business Gateway User Guide 13
Release 01.01 NN47928-102
Help Icons........................................................................382
Operations Menu ................................................................383
Web UI Menus......................................................................384
Configuration Example ...........................................................388
Monitoring Example...............................................................390
Wizards Example ..................................................................391
Exit Web UI.........................................................................396
B
THIRD PARTY SOFTWARE
Software Applications ............................................................399
C
SSH FUNCTIONALITY
Introduction........................................................................401
SSH Server Functionality .........................................................401
SFTP.................................................................................402
Authentication.....................................................................402
Host Keys.........................................................................403
Remote Log on...................................................................403
Service Functions..................................................................403
SSH Service.......................................................................403
SFTP Service .....................................................................404
SSH System Architecture.........................................................404
SSH-TRANS .......................................................................404
SSH-AUTH ........................................................................405
SSH-CONNECTION ...............................................................405
D
TCPDUMP EXPRESSIONS
Introduction........................................................................407
Expressions.........................................................................407
Primitives...........................................................................407
STANDARDS COMPLIANCE
E
Data Standards ....................................................................411
Switching.........................................................................411
Routing ...........................................................................411
Security...........................................................................412
Quality of Service...............................................................412
Services...........................................................................413
Monitoring........................................................................413
Voice Standards ...................................................................414
SIP Session Controller .................................... ..... ..... ............414
MGCP Session Controller.......................................................415
SIP User Agent (Integrated Gateway)........................................415
MGCP User Agent (Integrated Gateway).....................................416
F
RULE COMPLIANCE
FCC Compliance (U.S.) ...........................................................419
14 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
FCC Telecom Statement....................................................... 419
Declaration of Conformity .................................................... 420
Equipment Attachment Regulations (Canada) ............................. 421
Canadian Department of Communications Statement.................... 421
Supplementary Information................................................... 421
G
COPYRIGHT INFORMATION
...................................................................................... 423
GLOSSARY
H
...................................................................................... 429
INDEX
...................................................................................... 433
BSGX4e Business Gateway User Guide 15
Release 01.01 NN47928-102
16 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
T
ABLES
1 User Guide Organization.................................................. 23
2 Text Conventions .......................................................... 25
3 Telnet Server Configuration Parameters................................ 35
4 Telnet Parameters......................................................... 35
5 SSH Configuration Parameters............................................ 37
6 Web Server Configuration Parameters .................................. 39
7 Web Server Statistics ...................................................... 40
8 SSL Key Configuration Parameters....................................... 41
9 SSL CSR Configuration Parameters....................................... 41
10 SSL Certificate Configuration Parameters .............................. 43
11 SNTP Server Configuration Parameters ................................. 48
12 System Watchdog Configuration Parameters........................... 49
13 DNS Client Configuration Parameters ................................... 51
14 Initial Settings............................................................... 53
15 Config User Commands .................................................... 61
16 User Account Configuration Parameters................................ 62
17 User Group Configuration Parameters .................................. 64
18 User Rights Parameters.................................................... 67
19 Radius Authentication Record Parameters ............................. 70
20 TACACS+ Authentication Record Parameters .......................... 73
21 TACACS+ Authentication Record Parameters .......................... 75
22 Terminal Session Parameters............................................. 79
23 Autorun Command Parameters........................................... 80
24 eth0 Parameters............................................................ 92
25 LAN Port Parameters....................................................... 98
26 LAN Port Summary Statistics.............................................. 100
27 LAN Interface Parameters................................................. 102
28 ARL Parameters............................................................. 104
29 Default Priority Queues............................... ..................... 107
30 Layer 2 QoS Setting Parameters......................................... 108
31 Layer 2 QoS Port Mapping Parameters .................................. 108
32 Layer 2 QoS 802.1p Tag Mapping Parameters.......................... 108
33 Layer 2 QoS DiffServ/ToS Mapping Parameters........................ 109
34 VLAN Configuration Parameters.......................................... 112
35 Virtual Interface Parameters ............................................. 114
36 IP Address Assignment Parameters ...................................... 115
37 ARP Route Parameters..................................................... 122
38 Route Configuration Parameters......................................... 125
39 RIP Daemon Parameters................................................... 127
40 Traffic Classification....................................................... 129
41 Security Policy Parameters................................................ 131
42 Connection Configuration Parameters................................... 133
43 NAT Status Parameters..................................................... 135
44 NAT Policy Configuration Parameters.................................... 136
45 ALG Configuration Parameters............................................ 140
46 Protocols to which IDS Attack Protection Applies...................... 141
47 Packet Anomaly Attacks ................................................... 142
48 Packet Fragment Anomaly Parameters .................................. 142
49 Flood Detection Activation Parameters ................................. 144
50 Default Flood Threshold Values........................................... 145
51 Flood Threshold Setting Parameters ..................................... 146
52 IDS Scan Configuration Parameters....................................... 147
53 Default Trust Settings for Interfaces..................................... 148
54 IDS Spoof Configuration Parameters ..................................... 148
55 IKE Parameters .............................................................. 155
56 IKE Preshared Configuration Parameters................................ 156
57 IKE SAs.......................................... 158
58 IPsec Parameters........................................... ..... ..... ..... .. 159
59 IPsec Proposal Parameters................. ..... ..... ..... ..... ..... ..... .. 160
60 IPsec Policy Parameters.................................................... 161
61 Network information ....................................................... 169
62 Performance of each module with QoS running concurrently........ 171
63 ESP Statistics................................................................. 179
64 GoS Link Configuration Parameters ...................................... 186
65 GoS Group Configuration Parameters.................................... 188
66 GoS Cumulative Statistics.................................................. 194
67 GoS Instantaneous Statistics .............................................. 196
68 Network Information ....................................................... 197
69 Server Information.......................................................... 197
70 MGCP Server Profile Parameters.......................................... 213
71 MGCP Session Controller Parameters .................................... 216
72 MGCP Gateway Parameters................................................ 223
73 MGCP Gateway Configuration Parameters .............................. 224
74 Media Stream Parameters ................................................. 230
75 Voice ACL Parameters...................................................... 233
76 System Info Parameters.................................................... 239
77 Voice Jitter Buffer Configuration Parameters.......................... 240
78 Call Progress Tone Parameters ........................................... 242
79 Call Analyser Configuration Parameters................................. 249
80 Call Record Fields........................................................... 253
81 LCR Account Parameters................................................... 257
82 LCR Configuration Parameters ............................................ 258
18 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
83 AC Impedance Register Values ........................................... 261
84 SIP Server Profile Parameters ............................................ 267
85 SIP Session Controller Parameters ....................................... 273
86 SIP Gateway Parameters .................................................. 279
87 SIP Gateway Configuration Parameters................................. 281
88 SIP Numbering Plan Parameters.......................................... 284
89 Network Information....................................................... 291
90 Server Information ......................................................... 291
91 DHCP Server Configuration Parameters................................. 310
92 DHCP Relay Parameters ................................................... 312
93 DNS Relay Parameters ..................................................... 314
94 SNTP Relay Configuration Parameters .................................. 315
95 TFTP Relay Configuration Parameters .................................. 316
96 TFTP Cache Configuration Parameters.................................. 318
97 TFTP Files Configuration Parameters.................................... 319
98 System Exception Information Fields.................................... 321
99 Message Severity........................................................... 326
100 Logging Modules Configuration Parameters ............................ 326
101 Log Destination Map Parameters......................................... 328
102 Log Server Parameters..................................................... 330
103 IP Statistics.................................................................. 332
104 ICMP Statistics .............................................................. 334
105 UDP Statistics ............................................................... 335
106 TCP Statistics ............................................................... 336
107 Mirroring Parameters ...................................................... 340
108 PMON Trace Parameters................................................... 342
109 Netflow Agent Configuration Parameters............................... 344
110 Netflow Filter Configuration Parameters ............................... 345
111 SNMP Agent Configuration Parameters.................................. 347
112 SNMP Community Configuration Parameters ........................... 348
113 SNMP Data Fields ........................................................... 349
114 SNMP Agent Statistics...................................................... 350
115 SNMP Traps Configuration Parameters .................................. 351
116 TCPDump Options .......................................................... 353
117 Ping Options................................................................. 355
118 Traceroute Options......................................................... 356
119 Ls Configuration Options .................................................. 360
120 rm Parameters .............................................................. 361
121 Web UI Menus ............................................................... 385
122 Switching .................................................................... 411
123 Routing....................................................................... 411
124 NAT Security ................................................................ 412
BSGX4e Business Gateway User Guide 19
Release 01.01 NN47928-102
125 IKE Security .................................................................. 412
126 IPsec Security................. ..... ..... ..... ..... ..... ...................... 412
127 Quality of Service ........................................................... 412
128 Services....................................................................... 413
129 Monitoring.................................................................... 413
130 SIP Session Controller ...................................................... 414
131 MGCP Session Controller ................................................... 415
132 SIP User Agent ............................................................... 415
133 MGCP User Agent............................................................ 416
20 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
F
IGURES
1 BSGX4e Connectivity......................................................... 30
2 Connect to the Console Port ............................................... 32
3 Head office and branch office traffic .................................... 169
4 Logical path of the routing engine ....................................... 170
5 VPN operations when NAT is disabled.................................... 172
6 VPN operations when NAT is enabled .................................... 173
7 Flow types.................................................................... 173
8 Capacity Reduction Between Fast Ethernet and WAN.................. 181
9 GoS Classes.................................................................... 183
10 Strict Policing................................................................. 184
11 CAR Policing................................................................... 185
12 Logical path.............................................. ..... ..... ........... 198
13 Hardware path................................................................ 199
14 MGCP Network Layout....................................................... 210
15 Flows that VQM Measures................................................... 248
16 VoIP Service Interruption ........................................ ..... ..... . 255
17 SIP Network Layout .......................................................... 264
18 Main Page...................................................................... 379
19 log on Window................................................................ 381
20 Menu Bar....................................................................... 384
22 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
A
BOUT
This preface describes the intended audience for this guide, how this guide is
organized, its conventions, and access to customer support.
T
HIS
G
UIDE
Audience
This document provides guidelines for configuring and monitoring the BSGX4e
Business Gateway device. It is designed for network managers, administrators, and
technicians who are responsible for the management of networking equipment in
enterprise and service provider environments. Knowledge of telecommunication
technologies and standards, including telephony and Internet protocols, is assumed.
For installation information, see the BSGX4e Business Gateway Installation Guide
(see “Documentation” (page 26)).
Organization
The following table describes the content and organization of this guide.
Table 1. User Guide Organization
Chapter Title Content
Part I: BSGX4e Use
1 Connecting to
the Device
2 Initial Setup How to set the time, restart timer and Domain
3 User
Management
4 Command
Interface
5 WAN Interface
Configuration
6 LAN Switch
Configuration
Device overview and the means of remote access to
the unit.
Name Service (DNS) server, and a list of initial
configuration settings.
How to create, modify, remove, and monitor user
access to the device.
How to use commands, including accessing online
help, command syntax, showing and saving
configurations, and defining autorun commands.
Part II: Interfaces and Switch Ports
How to configure the Wide Area Network (WAN)
interface.
How to configure the Local Area Network (LAN)
switch ports and the LAN interface. Topics include
Address Resolution Logic (ARL) and layer 2 Quality
of Service (QoS).
7 VLAN
Configuration
How to configure virtual LANs (VLANs).
Table 1. User Guide Organization (continued)
Chapter Title Content
8 Routing
Configuration
9 Security
Configuration
10 VPN
Configuration
11 GoS
Configuration
12 SIP
Configuration
13 MGCP
Configuration
14 VoIP
Configuration
How to manage an Address Resolution Protocol
(ARP) table, configure static routes, and start the
Routing Information Protocol (RIP) daemon.
Part III: Traffic Protection
Security topics, including the firewall, Network
Address Translation (NAT), Application Layer
Gateway (ALG), and Intrusion Detection System
(IDS).
How to configure Virtual Private Networks (VPN)
using IP security (IPsec) and Internet Key Exchange
(IKE).
How to configure Nortel’s layer 3 QoS feature,
Guarantee of Service (GoS).
Part IV: VoIP
How to configure the Source Internet Protocol (SIP)
session controller and user agent.
How to configure the Media Gateway Control
Protocol (MGCP) session controller and user agent.
Voice over Internet Protocol (VoIP) topics common
to both SIP and MGCP.
15 Local Call
Routing
16 VoIP Services
How phone service is maintained by local call
routing.
Services available to LAN devices.
and Relays
Part V:System Management
17 Monitoring Displays and statistics for monitoring the system.
18 Monitoring
Tools
19 Software
Upgrades
Tools including port mirroring and protocol
monitoring.
The file system and how to install upgrades of the
device software.
Appendices
A Web User
Interface
B Third Party
Software
C SSH
Functionality
D TCPdump
Expressions
Introduces the Web User Interface that provides a
graphic user interface for the unit.
Lists contact information for third-party software
applications referenced in this guide.
How Secure Shell (SSH) can secure the remote
management of the unit.
Lists the primitives that determine which packets
are dumped by a tcpdump command.
24 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
Table 1. User Guide Organization (continued)
Chapter Title Content
About This Guide
E Standards
Compliance
F Rule
Compliance
G Copyright
Information
Lists the data and voice standards to which the
device complies.
Describes how the device complies with U.S.
Federal Communications Commission (FCC) and
Canadian telecommunication rules.
Lists copyright acknowledgements and restrictions.
Conventions
The following conventions are used throughout the guide.
Command Prompt Convention
This guide assumes that the Command Line Interface (CLI) is the user’s primary
method of interaction with the device. When using the CLI, the user enters each
command on a command line following the command prompt. The command prompt
consists of a string followed by the > character. The string can be easily changed, by
convention, so this guide shows the command prompt as the greater than (>) symbol
only.
Text Font Conventions
This guide uses the following text font conventions:
Table 2. Text Conventions
Font Purpose
NOTE:
IMPORTANT:
CAUTION:
WARNING:
italic emphasis Shows book titles, special terms, or emphasis.
bold emphasis Shows strong emphasis.
courier font Shows a screen capture: what is displayed on the monitor.
blue screen font Emphasizes selected items in a screen capture.
italic screen
font
boldface screen
font
Emphasizes information to improve product use.
Indicates important information or instructions that must
be followed.
Indicates how to avoid equipment damage or faulty
application.
Issues warnings to avoid personal injury.
Indicates a parameter placeholder in command examples.
Shows commands that you enter or keyboard keys that you
press.
BSGX4e Business Gateway User Guide 25
Release 01.01 NN47928-102
Documentation
The documentation for the unit is on the CD-ROM, titled Nortel BSGX4e
Documentation, that is shipped with the unit. PDF files on the CD contain the
following guides:
BSGX4e Business Gateway Installation Guide
BSGX4e Business Gateway User Guide
To view PDF files, use Adobe Acrobat® Reader® 5.0, or later, from your workstation.
If Adobe Acrobat Reader is not installed on your system, you can obtain it free from
the Adobe website: www.adobe.co
m
How to get help
This section explains how to get help for Nortel products and services.
Getting Help from the Nortel Web site
The best way to get technical support for Nortel products is from the Nortel
Technical Support Web site:
www.nortel.com/support
This site provides quick access to software, documentation, bulletins, and tools to
address issues with Nortel products. More specifically, the site enables you to:
download software, documentation, and product bulletins
search the Technical Support Web site and the Nortel Knowledge Base for
answers to technical issues
sign up for automatic notification of new software and documentation for Nortel
equipment
open and manage technical support cases
Getting Help over the phone from a Nortel Solutions Center
If you do not find the information you require on the Nortel Technical Support Web
site, and have a Nortel support contract, you can also get help over the phone from
a Nortel Solutions Center.
In North America, call 1-800-4NORTEL (1-800-466-7835).
Outside North America, go to the following Web site to obtain the phone number for
your region:
www.nortel.com/callus
26 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
About This Guide
Getting Help from a specialist by using an Express Routing Code
To access some Nortel Technical Solutions Centers, you can use an Express Routing
Code (ERC) to quickly route your call to a specialist in your Nortel product or
service. To locate the ERC for your product or service, go to:
www.nortel.com/erc
Getting Help through a Nortel distributor or reseller
If you purchased a service contract for your Nortel product from a distributor or
authorized reseller, contact the technical support staff for that distributor or
reseller.
BSGX4e Business Gateway User Guide 27
Release 01.01 NN47928-102
28 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
1
C
ONNECTING TO THE
This chapter describes the features of the BSGX4e device and its role in an IP
network. It also describes how to connect to the device and how to set up remote
administrative services.
The BSGX4e is an integrated device, that contains a broad set of networking
functionality for voice and data in a single unit:
It acts as a full-featured router with VoIP, QoS, and advanced security
capabilities.
It slots into the existing network, connected by an Ethernet cable to the WAN
access router.
It enables the effective provisioning of converged VoIP and data services.
It provides session control and service monitoring of VoIP devices on the LAN,
protects against malicious packet attacks, and provides call admission control.
The BSGX4e includes an Foreign Exchange Station (FXS) port that can provide an
analog device with access to VoIP service.
D
EVICE
The BSGX4e includes an Foreign Exchange Office (FXO) port that can provide
backup access to the Public Switched Telephone Network (PSTN).
Network Role
Figure 1 shows a possible IP network layout with an BSGX4e unit that connects a LAN
to the WAN. The figure illustrates the following:
The BSGX4e unit can reference servers on the WAN for the devices on its LAN.
LAN devices can include VoIP phones using SIP or MGCP protocols.
Through its FXO port, you can connect the BSGX4e device to a CO line (PSTN) that
acts as a lifeline if VoIP service is not available.
The unit can provide a VoIP connection for an analog device (such as a phone or
fax machine).
Use a console to locally configure and monitor the unit.
Administrative
Servers
VoIP Call
Servers
ICAD40
Central Office
Line
Analog Phone
Figure 1. BSGX4e Connectivity
VoIP Phones
Device Features
An BSGX4e unit provides the following services:
VoIP Session Controller
The BSGX4e unit acts as the session controller for up to 1000 VoIP phones. It can
use the SIP or MGCP protocol and can control up to 500 concurrent calls.
When the WAN is down, the unit provides VoIP survivability. It can place calls
between LAN endpoints and, with its intelligent lifeline, it can switch calls to the
PSTN through the emergency backup FXO line.
Integrated VoIP Gateway (User Agent)
An BSGX4e unit also acts as User Agent (UA) for VoIP phones. It provides a VoIP
endpoint within the network, performing signaling, media control, and conversion
from traditional interfaces to VoIP.
30 BSGX4e Business Gateway User Guide
NN47928-102 Release 01.01
Loading...