Cabletron Systems CSX200 User Manual

CSX200 CyberSWITCH

Installation Guide

9032753

Notice

Cabletron Systems reserves the right to make changes in specifications and other information contained in this document without prior
notice. The reader should in all cases consult Cabletron Systems to determine whether any such changes have been made.

The hardware, firmware, or software described in this manual is subject to change without notice.
IN NO EVENT SHALL CABLETRON SYSTEMS BE LIABLE FOR ANY INCIDENTAL, INDIRECT, SPECIAL, OR

CONSEQUENTIAL DAMA GES WHATSOEVER (INCLUDING BUT NOT LIMITED T O LOST PROFITS) ARISING OUT OF OR
RELATED TO THIS MANUAL OR THE INFORMATION CONTAINED IN IT, EVEN IF CABLETRON SYSTEMS HAS BEEN
ADVISED OF, KNOWN, OR SHOULD HAVE KNOWN, THE POSSIBILITY OF SUCH DAMAGES.



1998 by Cabletron Systems, Inc., P.O. Box 5005, Rochester, NH 03866-5005
All Rights Reserved
Printed in the United States of America

Part Number: 9032753 August 1998

Cabletron Systems, LANVIEW, QuickSET,

are trademarks of Cabletron Systems, Inc.
All other product names mentioned in this manual may be trademarks or registered trademarks of their respective companies.

FCC Notice

This device complies with Part 15 of the FCC rules. Operation is subject to the following two conditions: (1) this device may not cause
harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired
operation.

NOTE:

This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to Part 15 of the
FCC rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a
commercial environment. This equipment uses, generates, and can radiate radio frequency energy and if not installed in accordance
with the operator’s manual, may cause harmful interference to radio communications. Operation of this equipment in a residential area
is likely to cause interference in which case the user will be required to correct the interference at his own expense.

WARNING:

could void the user’s authority to operate the equipment.

Changes or modifications made to this device which are not expressly approved by the party responsible for compliance

and

SPECTRUM

are registered trademarks, and

QuickSTART

, and

CyberSWITCH

Industry Canada Notice

This digital apparatus does not exceed the Class A limits for radio noise emissions from digital apparatus set out in the Radio
Interference Regulations of the Canadian Department of Communications.

Le présent appareil numérique n’émet pas de bruits radioélectriques dépassant les limites applicables aux appareils numériques de la
class A prescrites dans le Règlement sur le brouillage radioélectrique édicté par le ministère des Communications du Canada.

CSX200 Installation Guide i

Notice

VCCI Notice

This is a Class A product based on the standard of the Voluntary Control Council for Interference by Information Technology
Equipment (VCCI). If this equipment is used in a domestic environment, radio disturbance may arise. When such trouble occurs, the
user may be required to take corrective actions.

Cabletron Systems, Inc. Program License Agreement

IMPORTANT:

This document is an agreement between you, the end user, and Cabletron Systems, Inc. (“Cabletron”) that sets forth your rights and
obligations with respect to the Cabletron software program (the “Program”) contained in this package. The Program may be contained
in firmware, chips or other media. BY UTILIZING THE ENCLOSED PRODUCT, YOU ARE AGREEING TO BECOME BOUND BY
THE TERMS OF THIS AGREEMENT, WHICH INCLUDES THE LICENSE AND THE LIMITATION OF WARRANTY AND
DISCLAIMER OF LIABILITY. IF YOU DO NOT AGREE TO THE TERMS OF THIS AGREEMENT, PROMPTLY RETURN THE
UNUSED PRODUCT TO THE PLACE OF PURCHASE FOR A FULL REFUND.

Before utilizing this product, carefully read this License Agreement.

Cabletron Software Program License

1. LICENSE. You have the right to use only the one (1) copy of the Program provided in this package subject to the terms and

conditions of this License Agreement.
You may not copy , reproduce or transmit an y part of the Program except as permitted by the Cop yright Act of the United States or

as authorized in writing by Cabletron.

2. OTHER RESTRICTIONS. You may not reverse engineer, decompile, or disassemble the Program.

3. APPLICABLE LA W. This License Agreement shall be interpreted and governed under the laws and in the state and federal courts

of New Hampshire. You accept the personal jurisdiction and venue of the New Hampshire courts.

ii CSX200 Installation Guide

Exclusion of Warranty and Disclaimer of Liability

Notice

1. EXCLUSION OF

expressed or implied, concerning the Program (including its documentation and media).
CABLETRON DISCLAIMS ALL WARRANTIES, OTHER THAN THOSE SUPPLIED TO YOU BY CABLETRON IN

WRITING, EITHER EXPRESSED OR IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE, WITH RESPECT TO THE PROGRAM, THE
ACCOMP ANYING WRITTEN MA TERIALS, AND ANY A CCOMP ANYING HARDWARE.

2. NO LIABILITY FOR CONSEQUENTIAL DAMAGES. IN NO EVENT SHALL CABLETRON OR ITS SUPPLIERS BE

LIABLE FOR ANY DAMAGES WHATSOEVER (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF
BUSINESS, PROFITS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION, SPECIAL, INCIDENTAL,
CONSEQUENTIAL, OR RELIANCE DAMAGES, OR OTHER LOSS) ARISING OUT OF THE USE OR INABILITY TO USE
THIS CABLETRON PRODUCT, EVEN IF CABLETRON HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH
DAMAGES. BECAUSE SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR
CONSEQUENTIAL OR INCIDENTAL DAMAGES, OR ON THE DURATION OR LIMITATION OF IMPLIED
WARRANTIES, IN SOME INSTANCES THE ABOVE LIMITATIONS AND EXCLUSIONS MAY NOT APPLY TO YOU.

WARRANTY. Except as may be specifically provided by Cabletron in writing, Cabletron makes no warranty,

United States Government Restricted Rights

The enclosed product (a) was developed solely at priv ate e xpense; (b) contains “restricted computer software” submitted with restricted
rights in accordance with Section 52227-19 (a) through (d) of the Commercial Computer Software - Restricted Rights Clause and its
successors, and (c) in all respects is proprietary data belonging to Cabletron and/or its suppliers.

For Department of Defense units, the product is licensed with “Restricted Rights” as defined in the DoD Supplement to the Federal
Acquisition Regulations, Section 52.227-7013 (c) (1) (ii) and its successors, and use, duplication, disclosure by the Government is
subject to restrictions as set forth in subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at

252.227-7013. Cabletron Systems, Inc., 35 Industrial Way, Rochester, New Hampshire 03867-0505.

CSX200 Installation Guide iii

Notice

Declaration of Conformity

Application of Council Directive(s):

Manufacturer’s Name:

Manufacturer’s Address:

European Representative Name:

European Representative Address:

Conformance to Directive(s)/Product Standards:

Equipment T ype/Environment:

W e the undersigned, hereby declare, under our sole responsibility, that the equipment packaged with this notice conforms to the
above directives.

89/336/EEC
73/23/EEC
91/263/EEC

Cabletron Systems, Inc.
35 Industrial Way

PO Box 5005
Rochester, NH 03867

Mr. J. Solari
Cabletron Systems Limited

Nexus House, Newbury Business Park
London Road, Newbury
Berkshire RG13 2PZ, England

EC Directive 89/336/EEC
EC Directive 73/23/EEC
EC Directive 91/263/EEC
EN 55022
EN 50082-1
EN 60950

Networking Equipment, for use in a Commercial or Light Industrial
Environment.

Manufacturer Legal Representative in Europe
Mr. Ronald Fotino Mr. J. Solari

___________________________________ ___________________________________

Full Name Full Name
Principal Compliance Engineer Managing Director - E.M.E.A.

___________________________________ ___________________________________

Title Title
Rochester, NH, USA Newbury, Berkshire, England

___________________________________ ___________________________________

Location Location

iv CSX200 Installation Guide

CHAPTER 1 INTRODUCTION

Related Documentation ...................................................................................1-1

How to Use This Guide ....................................................................................1-1

Document Conventions...................................................................................1-3

Getting Help......................................................................................................1-4

CHAPTER 2 ABOUT THE CSX200

CSX200 Hardware.............................................................................................2-1

WAN Connection........................................................................................2-1

Ethernet LAN Connection .........................................................................2-2

Remote Management Capabilities..................................................................2-3

Optional Features.............................................................................................2-3

CSX200 Firmware Support ..............................................................................2-4

IEEE 802.3 Ethernet ...................................................................................2-4

WAN Protocols...........................................................................................2-4

Firmware Data Compression ....................................................................2-5

HDLC...........................................................................................................2-5

DHCP and NAT...........................................................................................2-5

Frame Relay Protocol................................................................................2-6

Point-to-Point Protocol (PPP)...................................................................2-7

PAP and CHAP Security............................................................................2-7

LQM.............................................................................................................2-8

Multilink Protocol.......................................................................................2-8

ISDN ............................................................................................................2-8

HDSL ...........................................................................................................2-9

Bridging and Routing ................................................................................2-9

Bridging and Routing Protocol Filtering................................................2-11

System Passwords ..................................................................................2-12

Simple Network Management Protocol (SNMP)....................................2-12

Software and Firmware Upgrades..........................................................2-15

Contents

CSX200 Installation Guide v

Contents

CHAPTER 3 10BASE-T LAN REQUIREMENTS

Network Requirements ....................................................................................3-1

10BASE-T Twisted Pair Network ..............................................................3-1

Port Descriptions..............................................................................................3-2

10BASE-T LAN Configuration .........................................................................3-3

Connecting UTP Cables to Ports 1 Through 12......................................3-3

CHAPTER 4 INSTALLATION

Unpacking the CSX200 ....................................................................................4-1

Installation Guidelines .....................................................................................4-1

Removing the CSX200 Cover....................................................................4-2

Installing a WPIM........................................................................................4-3

COMP/ENCR Module Installation....................................................................4-5

Installing the CSX200.......................................................................................4-6

Tabletop and Shelf Installations...............................................................4-6

Rackmount Installation....................................................................................4-7

Attaching the Strain-Relief Bracket..........................................................4-8

Attaching the Rackmount Brackets .........................................................4-9

Installing the CSX200 in a 19-Inch Rack................................................4-10

Powering the CSX200.....................................................................................4-10

CHAPTER 5 TROUBLESHOOTING

Troubleshooting CSX200 Hardware ...............................................................5-4

Power (PWR) LED is OFF..........................................................................5-4

Processor (CPU) LED is OFF....................................................................5-4

Processor (CPU) LED is RED....................................................................5-4

Troubleshooting the LAN ................................................................................5-4

Collision (CLN) LED is RED ......................................................................5-4

Link (LNK) LED is OFF...............................................................................5-4

Troubleshooting the WAN ...............................................................................5-5

Link (LNK) LED is OFF...............................................................................5-5

Link (LNK) LED is RED..............................................................................5-5

Link (LNK) LED is AMBER.........................................................................5-5

Status 1 (STS1) LED is OFF ......................................................................5-5

Status 1 (STS1) LED is RED......................................................................5-6

vi CSX200 Installation Guide

Status 1 (STS1) LED is AMBER ................................................................5-7

Status 1 (STS1) LED is GREEN.................................................................5-7

Status 2 (STS2) LED is OFF ......................................................................5-8

Status 2 (STS 2) LED is RED WPIM-HDSL Installed in CSX200.............5-8

Status 2 (STS2) LED is AMBER ................................................................5-9

Status 2 (STS2) LED is GREEN.................................................................5-9

Test (TST) LED is AMBER (blinking)......................................................5-10

Investigating Software Configuration Problems .........................................5-10

Connection to Device Fails During Software Configuration................5-10

User Cannot Communicate with Remote Network Station..................5-10

APPENDIX A WPIM CABLE SPECIFICATIONS

WPIM-T1 ...........................................................................................................A-1

WPIM-SY...........................................................................................................A-3

EIA-449....................................................................................................... A-4

V.35.............................................................................................................A-5

EIA-232....................................................................................................... A-7

X.21.............................................................................................................A-8

EIA-530, EIA-530 ALT A, EIA-530 A, and EIA-530 A ALT A.................... A-9

WPIM-DDS...................................................................................................... A-11

WPIM-E1 ......................................................................................................... A-12

WPIM-DI.......................................................................................................... A-14

WPIM-HDSL....................................................................................................A-15

Contents

APPENDIX B SPECIFICATIONS AND STANDARDS COMPLIANCE

CSX200 Regulatory Compliance.................................................................... B-2

Individual WPIM Regulatory Compliance......................................................B-2

WPIM-T1..................................................................................................... B-2

WPIM-SY ....................................................................................................B-3

WPIM-DDS..................................................................................................B-3

WPIM-E1.....................................................................................................B-4

WPIM-DI......................................................................................................B-4

WPIM-HDSL ...............................................................................................B-4

CSX200 Installation Guide vii

Contents

APPENDIX C FCC PART 68 - USER’S INFORMATION FOR CSX200

APPENDIX D GLOSSARY

INDEX

viii CSX200 Installation Guide

1

Introduction

Welcome to the Cabletron Systems
provides configuration information, hardware specifications and troubleshooting tips for the
CSX200 CyberSWITCH. This guide also provides background information about 10BASE-T
Ethernet Local Area Networks (LANs) and guidelines for routing and bridging over Wide Area
Networks (WANs).

CSX200 CyberSWITCH Installation Guide

. This guide

Related Documentation

Use the Cabletron Systems
case) to install your CSX200.

Use the
you begin configuration of your CSX200.

Use the Cabletron Systems
graphic interface to monitor the Wide Area Network performance.

Consult appropriate WPIM (Wide Area Port Interface Module) user guides for information about
your Wide Area Network Interface type.

READ ME FIRST!

CSX200 QuickSTART Guide

document included with the CSX200 to set up your computer before

CyberMONITOR User’s Guide

(the CD insert of the

and

CyberMONITOR

QuickSET

Utility and

CD

How to Use This Guide

The

READ ME FIRST!

provide all the information you need to install the CSX200. Read all of these documents before
installing the CSX200.

document, the

CSX200 QuickSTART Guide,

and this installation guide,

This guide consists of the following sections:

Chapter 1, Introduction
Chapter 2, About the CSX200,

protocols employed by this device.

Chapter 3, 10BASE-T LAN Requirements

Local Area Network (LAN).

Chapter 4, Installation

CSX200 Installation Guide 1-1

, details document conventions and provides

describes the hardware components and features, and software

, describes the cabling requirements for an Ethernet

, shows how to install your CSX200 and connect it to a network.

Getting Help

information.

Chapter 1:

Introduction

Chapter 5, Troubleshooting

, shows how to use the LANVIEW LEDs on the CSX200 for

network troubleshooting.

Appendix A, WPIM Cable Specifications

, provides part numbers and connector information for

WPIMs (Wide Area Port Interface Modules).

Appendix B, Specifications and Standards Compliance

, contains hardware specifications and

safety and compliance standards for the CSX200.

Appendix C, FCC Part 68 - User’s Information for CSX200

requirements for FCC Rules, Part 68.

Appendix D, Glossary

, defines commonly used networking terms.

, provides compliance

1-2 CSX200 Installation Guide

Document Conventions

The following conventions are used throughout this guide:

Note

NOTE

TIP

symbol. Calls the reader’s attention to any item of information that may be of

special importance.

Tip

symbol. Conveys helpful hints concerning procedures or actions.

Document Conventions

!

CAUTION

WARNING

Caution

Warning

electrical shock hazard.

Warning

symbol. Contains information essential to avoid damage to the equipment.

symbol. Warns against an action that could result in the presence of an

symbol. Warns against an action that could result in personal injury or death.

CSX200 Installation Guide 1-3

Chapter 1:

Introduction

Getting Help

If you need additional support related to this device, or if you have any questions, comments, or
suggestions concerning this manual, contact the Cabletron Systems Global Call Center:

Phone (603) 332-9400
Internet mail support@ctron.com
FTP ctron.com (134.141.197.25)

Login
Password

BBS (603) 335-3358

Modem setting 8N1: 8 data bits, No parity, 1 stop bit

For additional information about Cabletron Systems or our products,
visit our World Wide Web site:
For technical support, select

Before calling the Cabletron Systems Global Call Center, have the following information ready:

• Your Cabletron Systems service contract number

• A description of the failure

anonymous
your email address

http://www.cabletron.com/

Service and Support

.

• A description of any action(s) already taken to resolve the problem (e.g., changing mode
switches, rebooting the unit, etc.)

• The serial and revision numbers of all involved Cabletron Systems products in the network

• A description of your network environment (layout, cable type, etc.)

• Network load and frame size at the time of trouble (if known)

• The device history (i.e., have you returned the device before, is this a recurring problem, etc.)

• Any previous Return Material Authorization (RMA) numbers

1-4 CSX200 Installation Guide

2

About the CSX200

The CSX200 CyberSWITCH (
Network (LAN) connectivity (via twelve RJ45 ports) for the small office, and offers high-speed
Wide Area Network (WAN) access to a remote site, such as the Internet or an enterprise network.
The CSX200 supports IEEE 802.1d transparent bridging, IP, and IPX routing, ISDN, Dynamic
Host Configuration Protocol (DHCP), and Network Address Translation (NAT) routing between
Ethernet LANs across a WAN.

Figure 2-1

Figure 2-1 The CSX200 CyberSWITCH

) is an access device that provides Ethernet Local Area

STS 1
STS 2

CSX200 Hardware

This section details hardware features of the CSX200 CyberSWITCH.

WAN Connection

The CSX200 supports Point-to-Point Protocol (PPP) including: Link Control Protocol (LCP),
BNCP, IPCP, IPXCP, LQM, Multilink Protocol (MP), Frame Relay, and CHAP and PAP security
protocols, through one of the following WAN port interface modules (WPIMs):

•

The WPIM-T1 provides a T1 interface through a front panel RJ45 port and includes a built-in
Channel Service Unit/Digital Service Unit (CSU/DSU) for direct connection to a T1 line. The
WPIM-T1 provides both Full T1 (twenty-four time slots) or Fractional T1 (less than
twenty-four time slots) using 56 Kbps-, or 64Kbps per time slot. The total throughput of the
CSX200 is 1.544 Mbps.

CSX200 Installation Guide 2-1

Chapter 2:

•

The WPIM-SY provides a synchronous serial connection of up to 2.048 Mbps to external

About the CSX200

communications equipment (e.g., a multiplexer or CSU/DSU). The WPIM-Sync uses a
subminiature 26-pin connector that supports the electrical signal interfaces listed below.

Appendix A, WPIM Cable Specifications

, provides complete part number and cable pin
assignment information for the following electrical signal interfaces: EIA-RS449, V.35,
EIA-RS232D, X.21, EIA-RS530, EIA-530A, RS530 ALT A, and RS530A ALT A

•

The WPIM-DDS provides a 56 Kbps or 64 Kbps Digital Data Service (DDS) connection. The
WPIM-DDS supports remote CSU diagnostic, or 64 Kbps clear channel loopback and
non-latching remote DSU diagnostic loopback.

•

The WPIM-E1 provides an E1 interface through a front panel RJ45 port and includes a built-in
CSU/DSU for direct connection to an E1 line. The WPIM-E1 provides both Full E1(32 time
slots) or Fractional E1 (less than 32 time slots) using 56Kbps, or 64 Kbps per time slot with a
total throughput of up to 2.048 Mbps.

•

The WPIM-DI provides a T1 interface through a front panel RJ45 port and includes a built-in
CSU/DSU for direct connection to a T1 line. The WPIM-DI provides both Full T1 (24 time
slots) or Fractional T1 (less than 24 time slots) using 56Kbps-, or 64 Kbps per time slot. The
WPIM-D1 also provides a second Drop-and-Insert interface, which allows more than one
device, such as a PBX, to share a single T1 connection.

• The WPIM-S/T provides an Integrated Services Digital Netw ork (ISDN) 128 Kbps Basic Rate

Interface for the CSX200. An NT-1 adapter is necessary for this interface in the United States.

• The WPIM-HDSL provides a 1.544 Mbps connection for: users in a campus environment, or

for access to local subscriber loops. The WPIM-HDSL uses existing telephone lines between
floors, buildings, or other physical structures. HDSL supports line lengths of up to 3, 657 meters
(12,000 feet) over 24 AWG Unshielded Twisted Pair cabling.

Ethernet LAN Connection

The CSX200 provides 10 Mbps Ethernet/IEEE 802.3 support through twelve (11 if Call Backup is
enabled) 8-pin RJ45 10BASE-T ports on the front of the unit (see Figure 2-1).

Repeater Functionality — The CSX200 fully conforms to the IEEE 802.3 Repeater, AUI, and

10BASE-T specifications, and provides the flexibility to connect networks using IEEE 802.3,
Ethernet Version 1 or Version 2 equipment. The CSX200 transmits retimed data packets,
regenerates the preamble, extends fragments, and arbitrates collisions. The CSX200 automatically
partitions problem segments, and reconnects repaired segments to the network. This feature
minimizes the impact on network operation resulting from a problem on one segment by isolating
the problem segment. Only devices on the problem segment are affected. When the problem is
solved, the CSX200 automatically reconnects the isolated segment to the network.

2-2 CSX200 Installation Guide

Remote Management Capabilities

Polarity Detection and Correction — Each twisted pair port on the CSX200 incorporates a

Polarity Detection and Correction feature that allows the CSX200 to pass data regardless of the
polarity of the twisted pair segment’s receive link. We do not recommend operating in this
condition. When this condition is detected, remove the segment from the network and wire it
correctly to reduce the potential for problems if equipment changes are made.

Flash EEPROMs — The CSX200 uses a Flash Electrically Erasable Programmable Read-Only

Memory (EEPROM) that allows the downloading of new and updated firmware in conjunction
with QuickSET or any device utilizing BootP or TFTP protocols.

LANVIEW LEDs — LANVIEW Status Monitoring and Diagnostics System is a troubleshooting

tool that helps in diagnosing power failures, collisions, cable faults, and link problems. The
LANVIEW LEDs are conveniently located on the CSX200 front panel.

RESET Button — The front panel RESET button reboots the CSX200 and initializes the

processor. The RESET button is also used (with the mode switches) to clear NVRAM.

Remote Management Capabilities

The CSX200 can be managed remotely with any SNMP (Simple Network Management Protocol)
compliant network management system.

Optional Features

Rack Mounting Capabilities — The CSX200 can be installed in a 19-inch rack with an

accessory package that includes the rackmount brackets, a strain-relief bracket for cable
management, and mounting screws. See Chapter 4, Installation, for complete rack mounting
instructions.

Hardware Data Compression Module — The same industry standard STAC Electronics

Stacker LZS Compression algorithm supported by CSX200 software is made available by an
optional hardware data compression module that accelerates data compression for the CSX200
over PPP and Frame Relay. Depending on the packet type and size, hardware data compression
provides a minimum of 2:1 data compression, giving (effectively) 3 Mbps throughput on a T-1
WPIM interface. To use the hardware data compression module, compatible equipment (that
conforms to the applicable standards), must be in use at both ends of the WAN link. When the
hardware data compression module is installed on the board, it automatically assumes the
compression task from software. There is no configuration necessary to prioritize hardware over
software compression.

CSX200 Installation Guide 2-3

Chapter 2: About the CSX200

CSX200 Firmware Support

The CSX200 firmware supports IEEE 802.1d bridging, and IP and IPX routing,. Wide Area
Networking includes Point-to-Point Pr otocol (PPP), and Frame Relay . Remote access is via Full
or Fractional T1, E1, Synchronous, Digital Data Service, ISDN, or HDSL connections.

This device supports industry-standard protocols, security features, compression algorithms and
network management tools to ensure interoperability with equipment from other vendors.

IEEE 802.3 Ethernet

The CSX200 provides a standard 802.3 Media Access Control (MAC) layer for Ethernet
communications. All bridging and routing protocols are supported across the Ethernet link.

WAN Protocols

This device supports the following WAN protocols over the WAN port:

• Point-to-Point Compression Control Protocol (CCP) as defined by RFC 1962

• Dynamic Host Configuration Protocol (DHCP) as defined by RFC 1541

• Network Address Translation (NAT) routing as defined by RFC 1631

• Point-to-Point Protocol (LCP) as defined by RFC 1661

• Point-to-Point Protocol (BNCP) as defined by RFC 1638

• Point-to-Point Protocol (IPCP) as defined by RFC 1332

• Point-to-Point Protocol (IPXCP) as defined by RFC 1552

• Password Authentication Protocol (PAP) and Challenge Handshake Authentication Protocol

(CHAP) under PPP as defined by RFC 1994

• Point-to-Point Protocol Link Quality Monitoring (LQM) as defined by RFC 1333

• Point-to-Point Protocol Multilink Protocol (MP) as defined by RFC 1717

• Frame Relay Link Management Interface (LMI) as defined by ANSI T1.617 Annex D and ITU

Q.933 Annex A

• Frame Relay Data Encapsulation as defined by RFC 1490

• Frame Relay Data Compression Protocol (DCP) as defined by FRF.9

2-4 CSX200 Installation Guide

CSX200 Firmware Support

Firmware Data Compression

The STAC Electronics Stacker LZS Compression algorithm provides a minimum of 2:1 firmware
data compression for the CSX200 over PPP and Frame Relay. Firmware data compression is
supported in software on each WAN interface for line speeds of up to 256 Kbps per WPIM, which
is equivalent to four DS0 channels. To use data compression, compatible equipment (which
conforms to the applicable standards), must be in use at both ends of the WAN link. This method
of data compression is used as the default, if the hardware compression module is not installed.

HDLC

High-level Data Link Control (HDLC) protocol is used in conjunction with the WPIM-HDSL to
conserve WAN bandwidth between two compatible devices, over a point-to-point connection. The
HDLC (RAW) protocol reduces the amount of overhead information that needs to be contained
within each data packet to direct it to its destination. This decreased packet overhead provides
more available bandwidth to transfer data.

DHCP and NAT

The Dynamic Host Configuration Protocol (DHCP) and Network Address Translation (NAT)
schemes eliminate the expense of purchasing limited public IP addresses for each client on a local
network, and the need to re-configure a client if it is moved to a different network.

The CSX200 acts as a DHCP server that lets individual clients (PCs, network equipment) take
turns using a range of private IP addresses (often referred to as local IP addresses), and provides
optional secondary setup features for these clients on a per-port basis. A pri v ate or “local” netw ork
is referred to as a sub network that is using private or “local” IP addresses. An “outside” network
refers to a Wide Area Network (WAN) commonly known as an Internet. An Intranet is an
“Internet” in use on a facility or campus where registered public IP addresses are required.

The CSX200 distributes these addresses on a first-come-first-served basis, dynamically assigning a
local IP address to an individual client (from 253 av ailable addresses). This local IP address is then
“leased” for a predetermined amount of time, configured for a particular port. Each Ethernet port
provides DHCP services for one Class C subnet and secondary setup features for individual clients
that support the use of a default gateway, domain name and WINs server. On the Wide Area
Network (WAN) side, the Network Address Translation (NAT) routing scheme lets clients with
local IP addresses use the public IP address(es) of the CSX200 WAN interface(s) to access the
WAN.

NAT lets several DHCP clients on a sub network connect to WAN clients by letting the DHCP
clients share a single public IP address. The NAT scheme modifies the IP headers and addresses,
and the selected fields in upper layer protocol headers.

CSX200 Installation Guide 2-5

Chapter 2: About the CSX200

This is done to replace the hidden local IP addresses from the sub network with one or more public
InterNic assigned IP addresses that can be sent over the outside network on the WAN interfaces.
Once the CSX200 is assigned at least one public IP address, over 250 IP clients can share this
address simultaneously using NAT. This public IP address is assigned statically by the Internet
Service Provider (ISP).

Frame Relay Protocol

Frame Relay can be defined as a “packet mode” service, organizing data into individually
addressed units known as “frames”. Frame Relay eliminates Layer 3 processing. Only a few
Layer 2 functions are used, such as checking for a valid, error free frame, but not requesting
retransmission if an error is found. Frame Relay uses a variable length framing structure, which,
depending on user data, can range from a few to more than a thousand characters.

A Frame Relay Network will often be depicted as a cloud, because the Frame Relay Network is
not a single physical connection between one endpoint and another. Frame Relay Protocol is based
on the concept of “virtual circuits” (VCs). VCs are two-way, software defined data paths between
two ports that take the place of private lines in the network. There are two types of Frame Relay
connections; Switched Virtual Circuits (SVCs), and Permanent Virtual Circuits (PVCs).

Permanent Virtual Circuits, or PVCs, are set up via a network management system, and initially
defined as a connection between two sites, or endpoints. PVCs may be added as the demand arises
for more bandwidth, alternate routing, or more sites, or endpoints. PVCs are fixed paths, not
available on demand, or on a call-by-call basis. Although the actual path through the network may
change from time to time, such as when automatic rerouting takes place, the beginning and end of
the circuit will not change.

Switched Virtual Circuits, or SVCs, are available on a call-by-call basis using the SVC signaling
protocol (Q.933). The network must quickly establish the connection, and allocate bandwidth
based on the user’s request.

In a Frame Relay frame, user data packets are not changed in any way. A two-byte header is
appended to the frame. Contained in this header is a 10-bit number called the Data Link
Connection Identifier (DLCI). The DLCI is the “virtual circuit” number which corresponds to a
particular destination. The DLCI allows data coming into a Frame Relay switch to be sent across
the network using a three-step process: check the integrity of the frame and discard it if it is in
error, look up the DLCI in a table and if not intended for this link, discard the frame. If the frame
passes the previous tests, relay the frame toward its destination out the port specified in the table. If
the frame passes the previous tests, relay the frame toward its destination out the port specified in
the table.

2-6 CSX200 Installation Guide

CSX200 Firmware Support

The ANSI standard defines a mechanism for the network to signal the existence of congestion,
called Explicit Congestion Notification (ECN) bits. Frame Relay uses FECN (Forward ECN) and
BECN (Backward ECN) bits to notify end user devices about network congestion. Although the
Frame Relay Protocol does not respond to congestion, some higher layer protocols for end-user
devices may respond to ECNs by recognizing that delays have increased, or that frames have been
dropped.

Point-to-Point Protocol (PPP)

PPP is a data link layer industry standard WAN protocol for transferring multi-protocol data traffic
over point-to-point connections. With this protocol, options such as security, data compression,
and network protocols can be negotiated over the connection. Data compression allows Frame
Relay to negotiate compression over Frame Relay permanent virtual circuits (PVCs). Frame Relay
is a packet-switching data communications protocol that statistically multiplexes many data
conversations over a single transmission link.

The CSX200 supports synchronous PPP over an ISDN WAN port (WPIM-S/T). In Single Link
Mode, PPP uses one ISDN B channel for data transmission. PPP runs over each ISDN B channel
for two separate conversations (split B channel). In Multi-Link Protocol mode, PPP
simultaneously sends and receives data over two ISDN B channels on the same connection to
optimize bandwidth usage. The STAC Electronics Stacker LZS Compression Protocol is supported
over PPP, providing up to 4:1 data compression.

PAP and CHAP Security

The CSX200 supports the Password Authentication Protocol (PAP) and Challenge Handshake
Authentication Protocol (CHAP) under PPP.

PAP provides verification of passwords between devices using a two-way handshake. One device
(peer) sends the system name and password to the other device (authenticator). Then the
authenticator checks the peer’s password against the configured remote peer’s password and
returns acknowledgment.

CHAP is more secure than PAP as unencrypted passwords are not sent across the network. CHAP
uses a 3-way handshake and supports full or half-duplex operation. In half-duplex operation, the
authenticator device challenges the peer device by generating a CHAP challenge. The challenge
contains an MD5 algorithm with a random number that your encrypted password and system
name. The peer device then applies a one-way hash algorithm to the random number and returns
this encrypted information along with the system name in the CHAP response. The authenticator
then runs the same algorithm and compares the result with the expected value. This authentication
method depends upon a password or secret, known only to both ends locally.

CSX200 Installation Guide 2-7

Chapter 2: About the CSX200

Full-duplex operation places an additional step to half-duplex operation that mirrors the operation
for a peer to validate the authenticator. The peer device challenges the authenticator by generating
a CHAP challenge, and the authenticator returns a CHAP response.

The peer device challenges the authenticator device by generating a CHAP challenge, and the
challenge contains your encrypted password and system name. The authenticator device then
applies a one-way hash algorithm to the random number and returns this encrypted information
along with the system name in the CHAP response. The peer device then runs the same algorithm
and compares the result with the expected value. This authentication method depends upon a
password or secret, known only to both ends locally.

LQM

Link Quality Monitoring (LQM) is a link control mechanism used with PPP to determine when,
and how often, a link is dropping data in units of packets and octets. Link Quality Monitoring
accomplishes this by providing Link-Quality-Reports to determine if the quality of the link is
adequate for operation. Link Quality Monitoring provides separate measurements for both
incoming and outgoing packets that are communicated to both ends of the link.

The PPP LQM mechanism carefully defines the Link-Quality-Report packet formats, and specifies
reference points for all data transmission and reception measurements. The LQM implementation
maintains successfully received packet and octet counts, and periodically transmits this
information to its peer using Link-Quality-Report packets.

Multilink Protocol

Multilink Protocol (MP) is an extension of PPP that controls the way frames are transferred across
several links whenever a single link is not sufficient to meet requirements of your present traffic
load. Multilink Protocol establishes several simultaneous links between two end points over
switched circuits (dial-up lines) in an ISDN network, and dynamically adjusts the bandwidth
demands between available links to maintain an effective data transfer.

ISDN

ISDN provides an inexpensive switched digital access to remote sites. The ISDN BRI (Basic Rate
Interface) standard provides for two high speed 64 Kbps bearer (B) channels used for voice or data
connections and one 16 Kbps signaling data (D) channel used for call setup, signaling, and other
information. ISDN allows all types of information to be transferred including voice, data, fax, and
video. Multiple devices can be linked to a single ISDN connection, each having their own
telephone number. Two or more channels can be combined into a single larger transmission pipe
offering variable transmission speeds.

2-8 CSX200 Installation Guide

CSX200 Firmware Support

The CSX200 supports one ISDN BRI line and either or both of the B channels for transferring
data. If the two B channels are used for separate connections, each provides up to 64 Kbps transfer
rate. Both channels can be used together to provide uncompressed data transfer at up to 128 Kbps.
The CSX200 can also transfer compressed data at up to 512 Kbps (after decompression).

A network terminator device (NT-1) provides the interface between ISDN terminal (router)
equipment and the ISDN service provider. The CSX200 supports the WPIM-S/T by providing an
S/T interface that requires an external NT-1.

The following telephone switch types are supported within the U.S.:

• NET3 (European ISDN)

• NET3SW (European Swiss Variant)

• NTT (Nippon Telephone and Telegraph)

• KDD (Kokusai Denshin Denwa Co. Ltd.)

• French Delta (VN4) switches

HDSL

High data rate Digital Subscriber Line (HDSL) technology uses existing copper twisted pair cables
designed for conventional analog voice transmission from a telephone carrier servicing area as
low-cost alternative to fiber optic cables. HDSL provides high-speed full-duplex digital
transmission links of up to 1.544 Mbps.

HDSL is a direct connection technology that allows connections to be made for distances of up to
12,000 feet over 24 American Wire Gauge (AWG) unconditioned twisted pair wire. To obtain the
Full T1 line Rate of 1.544 Mbps, two wire pairs are necessary (four wires). If one pair of wires is
used, the data rate is772 Kbps, equivalent to one-half of a T1 line.

Bridging and Routing

Bridging — Bridging connects two or more separate networks together. The bridge examines a

portion of each network frame called the header. This header contains control information for the
frame. The bridge compares the destination address of the frame to a table of source addresses
(bridges dynamically learn the physical location of devices by logging the source addresses of
each frame and the bridge port the frame was received on in the source address table).

CSX200 Installation Guide 2-9

Chapter 2: About the CSX200

In transparent bridging, the decision to forward the frame is based on this comparison. If the
address indicates that the sending station and the destination station are on the same side of the
bridge, the frame is not forwarded across the bridge. If the addresses do not indicate that, the
bridge forwards the broadcast frame across the bridge to the other network(s).

Bridging allows frames to be sent to all destinations regardless of the network protocols used. It
also allows protocols that cannot be routed (such as NETBIOS) to be forwarded, and optimizes
internetwork capacity by localizing traffic on LAN segments. A bridge extends the physical reach
of networks beyond the limits of each LAN segment. Filters can be used to increase network
security in bridged networks, and restrict message forwarding by using user-built address
tables (non-transparent bridging).

Routing — Routing provides a way to transfer user data from source to destination over dif ferent

LAN and WAN links using one or more network protocol formats. Routing relies on routing
address tables to determine the best path for each packet. Routing tables can be seeded (i.e.,
addresses for remote destinations are placed in the table along with network address masks and a
metric for path latency). Routing tables are also built dynamically (i.e., the location of remote
stations, hosts and networks are updated through inter-router protocols). Routing helps to increase
network capacity by localizing traffic on LAN segments and broadcasts that would result from
bridged traffic. It also provides security by isolating traffic on segmented LANs. Routing extends
the world-wide reach of networks.

CSX200 Bridging and Routing — The CSX200 can operate as a bridge, a router, or both. The

CSX200 operates as a router for network protocols that are supported when routing is enabled and
operates as a bridge when bridging is enabled. When both bridging and routing are enabled,
routing takes precedence over bridging; i.e., the CSX200 uses the protocol address information of
the packet to route the packet to the correct destination. However, if the protocol is not supported,
the CSX200 operates as a bridge and uses the MAC address information to send the packet.

Operation of the CSX200 is influenced by routing and bridging controls and filters set during
CSX200 configuration. General IP routing, and routing or bridging from specific remote routers
are controls set during the configuration process.

IEEE 802.1d Bridging — The CSX200 supports the IEEE 802.1d standard for LAN to LAN

bridging. Bridging is provided over PPP and Frame Relay as well as adjacent LAN ports. Bridging
uses the MAC (Machine Address and Control layer) address unique to each device. When
configured as a bridge, the CSX200 bridges data packets to the destination, regardless of the
network protocols used.

2-10 CSX200 Installation Guide

CSX200 Firmware Support

The CSX200 uses the Spanning Tree Algorithm to prevent data loops and duplicate data. This is a
self-learning bridge, i.e., the bridge builds and updates an address table with each MAC source
address and associated information when the packets are received.

IP Routing — IP routing support provides the ability to process TCP/IP frames at the network

layer for routing. IP routing support includes the Routing Information Protocol (RIP) that allows
the exchange of routing information on a TCP/IP network. The CSX200 recei v es and rebroadcasts
RIP messages to and from adjacent routers and workstations.

IPX Routing — Internet Packet Exchange (IPX) routing support provides the ability to process

Novell proprietary frames at the network layer for routing. IPX routing support includes both
Routing Information Protocol (RIP), and Service Advertising Protocol (SAP). These protocols
allow the exchange of routing information on a Novell NetWare network. The SAP protocol
provides a means for routers and workstations to advertise their class of services (file, print, etc.) to
adjacent routers and workstations.

Bridging and Routing Protocol Filtering

Filtering is used to allow efficient usage of network resources and provide security for your
network and hosts.

IP Internet Firewall — The CSX200 supports IP Internet Firewall filtering to prevent

unauthorized access to your system and network resources from the Internet or a corporate
Intranet. Security can be configured to permit or deny IP traffic. The security is established by
configuring IP access filters, which are based on source IP address, source mask, destination IP
address, destination mask, protocol type, and application port identifiers for both Transmission
Control Protocol (TCP) and User Datagram Protocol (UDP).

IP access filters allow individual IP source and destination pair filtering as well as IP address
ranges and wild carding to match any IP address. Firewall filters can be defined to allow inbound
only, outbound only, or bi-directional IP communication up to the UDP and TCP application port
level. The CSX200 supports the IP Access Control (from the ctip-mib) Internet Firewall Filter.

Bridge Filtering — Bridge filtering lets a network administrator control the flow of packets

across the CSX200. Bridge filtering is used to “deny” or “allow” packets based on a “matched
pattern” using a specified position and hexadecimal content within the packet. This enables
restricting or forwarding of messages based on address, protocol, or data content. Common uses
include preventing access to remote networks, controlling unauthorized access to the local
network, and limiting unnecessary traffic.

CSX200 Installation Guide 2-11

Chapter 2: About the CSX200

System Passwords

You can control access to the CSX200 by the use of three passwords. Each password provides a
different level of access to the CSX200. The default password for each access level is pre-set to
public. The following definitions explain the levels of access:

read-only — allows reading of device parameters not including system passwords.
read-write — Allows editing of some device configuration parameters not including changing

system passwords.

super-user — Allows full management privileges. You must access the CSX200 at this level to

run QuickSET.

Simple Network Management Protocol (SNMP)

The CSX200 provides SNMP agent support for standard, and Enterprise-Specific Management
Information Bases (MIBs), and support for standard, and Enterprise-Specific SNMP Traps. SNMP
is also used internally for configuration of the CSX200. The active SNMP agent within the
CSX200 accepts SNMP requests for status, statistics, and configuration updates. Communication
with the SNMP agent occurs over the LAN or WAN connection. Any management application
using SNMP over UDP/IP has access to the local SNMP agent.

SNMP MIB Support

SNMP MIBs (Management Information Bases) are databases of objects used for managing and
determining the status and configuration of an SNMP-compliant device.

The CSX200 supports the following SNMP MIBs:

• MIB II RFC1213

• RMON MIB RFC1271

• DS1 and E1 MIB RFC1406 (Digital Signal Level 1 [T1/E1 interface types])

• IETF Bridge MIB RFC1493

• IP Forwarding MIB RFC1354

• PPP LCP MIB RFC1471 (Point-to-Point Protocol, Link Control Protocol)

• PPP IPCP MIB RFC1473 (IP Control Protocol)

• PPP BNCP MIB RFC1474 (Bridge Network Control Protocol)

• IPXCP MIB RFC1552

2-12 CSX200 Installation Guide

CSX200 Firmware Support

• Frame Relay DTE MIB RFC1490

• Security MIB RFC1472 (CCP, PAP, and CHAP)

• RS-232 MIB RFC1317

• LQM MIB RFC1989

• PPP MP MIB RFC1990

• Frame Relay Multi Protocol Encapsulation MIB RFC1490

SNMP T rap Support

SNMP Traps are notifications of network events sent by an SNMP-compliant device to an SNMP
management station.

TheCSX200 supports the following SNMP IETF Standard Traps:

• Warm Start Trap Type Code #1 RFC1214

• Bridge New Root Trap Type Code #1 RFC1493

• Bridge Topology Change Trap Type Code #2 RFC1493

Cabletron Enterprise Traps include:

• Port Segmented Trap Type Code #257(0x101) rrev4-mib

• Port Operational Trap Type Code #258(0x102) rrev4-mib

• Port Link Up Trap Type Code #259(0x103) rrev4-mib

• Port Link Down Trap Type Code #260(0x106) rrev4-mib

• Environmental Temperature Hot Trap Type Code #282(0x11A) rrev4-mib

• Environmental Temperature Normal Trap Type Code #284(0x11C) rrev4-mib

• IP Event Log Change Trap Type Code #1280(0x500) ctip-mib

The following is a list of IP Events that are logged, and that create the IP Event Log Change Trap.

• IP Routing has been disabled on interface #

• IP Routing has been enabled on interface #

• IP Forwarding has been enabled on interface #

• IP MTU size has been changed on interface #

• IP Framing Type has been changed on interface #

CSX200 Installation Guide 2-13