Carrier Access MSR-Adit 3K GUI User Manual

Adit 3000 Series and

Multi-Service Router (MSR) Card

GUI REFERENCE MANUAL

Part Number: 770-0169 BB

Product Release: Adit 3000 Series - 1.6

MSR Card - 2.0

April 2008

Copyright 2008 Turin Networks Inc. All rights reserved.

The information presented in this manual is subject to change without notice and does not represent a commitment on the
part of Turin Networks Inc. The hardware and software described herein are furnished under a license or non-disclosure
agreement. The hardware, software, and manual may be used or copied only in accordance with the terms of this agreement.
It is against the law to reproduce, transmit, transcribe, store in a retrieval system, or translate into any medium - electronic,
mechanical, magnetic, optical, chemical, manual, or otherwise - any part of this manual or software supplied with the Adit
3000 series or MSR products for any purpose other than the purchaser’s personal use without the express written
permission of Turin Networks Inc.

The Turin Networks logo and Adit are registered trademarks of Turin Networks Inc. All other brand or product names are
trademarks or registration trademarks of their respective companies or organizations.

Corporate Contact Information:

Turin Networks
1415 North McDowell Blvd.
Petaluma, CA 94954
Phone: +1-707-665-4400
Fax: +1-707-793-4935
www.TurinNetworks.com

Customer Support:

E-mail: tech-support@TurinNetworks.com
Phone: 800-786-9929 or 303-218-5655

Supporting Software Versions:

Adit 3104 - Release 1.6

Adit 3200 - Release 1.6

Adit 3500 - Release 1.6

Multi-Service Router (MSR) Card - Release 2.0

Safety Information

CAUTION! WHEN USING YOUR TELEPHONE EQUIPMENT, BASIC SAFETY PRECAUTIONS SHOULD

ALWAYS BE FOLLOWED TO REDUCE THE RISK OF FIRE, ELECTRIC SHOCK AND INJURY TO PERSONS,
INCLUDING THE FOLLOWING:

 Do not use this product near water for example, near a bathtub, washbowl, kitchen sink or

laundry tub, in a wet basement or near a swimming pool.

 Avoid using a telephone (other than a cordless type) during an electrical storm. There may be

a remote risk of electric shock from lightning.

PREFACE

Preface

 Do not use the telephone to report a gas leak in the vicinity of the leak.

 Use only the power cord and batteries indicated in this manual. Do not dispose of batteries in a

fire. They may explode. Check with local codes for possible special disposal instructions.

 Refer to the installation section of this manual for a safe and proper installation procedure. All

wiring external to this equipment should follow the current provision of the National Electrical
Code

NOTE: For Safety and Compliance information for the Multi-Service Router (MSR) card and

Adit 600 platform, please refer to the Adit 600 User Manual.

Preface

Notices

This manual contains important information and warnings that must be followed to ensure safe
operation of the equipment.

DANGER! A DANGER NOTICE INDICATES THE PRESENCE OF A HAZARD THAT CAN OR WILL

CAUSE DEATH OR SEVERE PERSONAL INJURY IF THE HAZARD IS NOT AVOIDED.

CAUTION! A CAUTION NOTICE INDICATES THE POSSIBILITY OF INTERRUPTING NETWORK

SERVICE IF THE HAZARD IS NOT AVOIDED.

WARNING! A WARNING NOTICE INDICATES THE POSSIBILITY OF EQUIPMENT DAMAGE IF THE

HAZARD IS NOT AVOIDED.

NOTE: A Note indicates information to help you understand how to perform a procedure or how the

system works. Notes should be read before performing the required action.

iv Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

TABLE OF CONTENTS

Table of Contents

Preface

Safety Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . iii

Notices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . iv

1 Web Based Management

Overview of Supported Products . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-2

Adit 3104 IP Business Gateway . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-2

Adit 3200 Business Router . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-2

Adit 3500 Trunk Gateway . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-2

Multi-Service Router (MSR) Card (for the Adit 600 Platform) . . . . . . . . . . . . . . . . . . . . . . . 1-2

Accessing the GUI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-3

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-4

Navigation Pane Icons . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-5

Action Icons (for Managing Lists) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-5

Home . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-6

Network Map . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-7

Quick Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-10

Internet Connection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-11

Network Connections. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-20

Main Window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-20

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-22

Voice over IP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-23

Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-25

System Monitoring. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-26

Logout . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-28

2 Advanced

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-2

ARP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-3

Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-4

Digital Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-4

X.509 Certificate Format . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-5

Obtaining and Loading an X.509 Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-6

Registering the CA’s Certificate. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-11

Date and Time . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-13

Setting the Date and Time . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-14

Diagnostics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-16

Pinging an IP Address. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-17

Performing a Traceroute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-17

Table of Contents

DNS Static Entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-18

Viewing the DNS Table. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-18

Adding a New Entry to the DNS Table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-19

Modifying an Entry in the DNS Table. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-20

Dynamic DNS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-21

Using Dynamic DNS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-22

IP Address Distribution (DHCP). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-23

Summary of Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-23

IPSec (IP Security) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-28

General IPSec Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-29

Key Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-30

Log Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-31

Creating a New Secured Connection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-32

NAT/FW Connections. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-33

Network Objects . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-34

PPTP (Point-to-Point Tunneling Protocol) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-36

RADIUS Client . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-37

Configuring RADIUS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-37

Remote Administration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-38

Restart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-39

Restore Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-40

Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-41

Static Routing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-41

RIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-46

OSPF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-47

Scheduler Rules. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-52

Simple Network Management Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-55

Configuring the Adit’s SNMP Agent. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-55

System Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-57

Defining an Outgoing Mail Server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-60

Technical Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-61

Configuration File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-63

Upgrade From a Local Computer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-64

Upgrading the Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-64

Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-65

Adding a User . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-66

Editing a User. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-67

Configuring E-mail Notification for Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-68

VLAN Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-69

Configuring a VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-70

vi Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Table of Contents

3 Network Connections

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-2

Adit 3000 Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3-2

Adit MSR Connections. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-3

Preconfigured Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-5

Ethernet 1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-5

Ethernet 2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-9

Serial 1 (Adit 3000 Only) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-12

T1 1 - T1 4 (Adit 3000 Only) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-13

Connections that Require Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-16

Multilink . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-17

Serial (PPPoDS0) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-21

New Connection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-27

Point-to-Point Protocol over DS0 (Serial) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-29

Multilink Point-to-Point Protocol over DS0 (Multilink) . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-32

Point-to-Point Tunneling Protocol (PPTP) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-34

Point-to-Point Tunneling Protocol Server (PPTP Server) . . . . . . . . . . . . . . . . . . . . . . . . . . 3-35

Layer Two Tunneling Protocol (L2TP) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-37

Internet Protocol Security (IPSec) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-38

OSPF Configuration on the Network Connection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-40

4 Security

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-2

General . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-4

Security Levels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-5

Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-6

Adding an Access Control Rule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-7

Modifying an Access Control Rule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-9

Creating a User-Defined Rule. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-10

Local Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-13

Adding a Local Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-14

Modifying a Local Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-16

DMZ Host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-17

Designating a Local Computer as a DMZ Host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-18

Port Triggering. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-19

Setting up Port Triggering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-20

Remote Administration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-23

Configuring Remote Administration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-24

IP/Hostname Filtering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-25

Adding an Address/Hostname to the Restricted List . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-26

Advanced Filtering. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-28

Adding an Advanced Filtering Rule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-29

NAT Bypass. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-33

Adding/Modifying a NAT Bypass Rule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-33

Security Log. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-34

Changing the Security Log Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-35

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI vii

Table of Contents

5 System Monitoring

6 Voice Over IP

Firewall Implementation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-37

Network Connection Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-37

Firewall Processing Sequence . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-39

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-2

Connections. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-4

Traffic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-5

System Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-6

T1 Log (Adit 3000 Only) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-7

SIP Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-8

PRI Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-9

T1 Performance (Adit 3000 Only) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-10

Alarms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-11

System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-12

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-2

IP Telephony . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-3

Configuring the Digit Map. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-6

Advanced (Button). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-9

Redundancy (Button) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-12

Phone Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-14

Phone Book . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-19

Line Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-22

Trunk Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-25

Channel Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-30

Trunk Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-32

Trunk Registration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-35

Adding a PBX Phone Line. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-36

Glossary

Index

viii Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

CHAPTER

1

Web Based Management

This Reference Manual covers the web-based Graphical User Interface (GUI) for the following
products:

 Adit 3000 series (Adit 3104, Adit 3200, and Adit 3500)

 Multi-Service Router (MSR) Card (a service card for the Adit 600 platform)

These products are generically referred to as "the Adit" in this manual.

The web-based GUI provides a user-friendly interface for setup of the unit. This interface
provides a Quick Setup option for the unit, as well as specific features for advanced setup.

NOTE: Throughout this manual, examples primarily reflect the Adit 3000 series. Where

differences exist for the MSR card, these differences are noted.

In this Chapter

 Overview of Supported Products

 Accessing the GUI

 Overview

 Home

 Quick Setup

 Network Connections

 Security

 Voice over IP

 Advanced

 System Monitoring

 Logout

Web Based Management

Overview of Supported Products

Overview of Supported Products

The following products have different hardware configurations, as well as optional features that can be
purchased (for example, a VPN software keyed feature), therefore there are many possibilities for
window options. For the most of the examples in this manual, the Adit 3500 is shown, as the majority
of features are available on this product.

Adit 3104 IP Business Gateway

The Adit 3104 IP Business Gateway incorporates VoIP capabilities with a high-performance router. It
supports a single T1 or Fast Ethernet WAN port, four-port Ethernet switch, stateful firewall, intrusion
detection, and terminates up to 24 voice lines of VoIP.

The Adit 3104 creates a secure partition between external public network access while enabling remote
users to securely connect to their businesses.

Adit 3200 Business Router

The Adit 3200 collapses multiple network entities - a high-performance router, managed switch, and
stateful firewall - into one compact device. By providing a T1 termination port and an Ethernet port, it
provides the ability to upgrade bandwidth without the need to replace hardware. The Adit 3200’s
advanced VoIP-aware routing engine provides wire-speed throughput even when all security features
have been enabled.

Adit 3500 Trunk Gateway

The Adit 3500 integrates the features of a trunk gateway, high-performance router, and stateful firewall,
with flexible WAN options. It replaces multiple elements at the customer premises that typically
provide routing, security, and trunk gateway functions, offering a powerful blend of speed, security,
data, and voice. Additionally, a 4-FXS option provides connectivity for analog fax and modems.

This single platform offers scalability and high-performance for Internet and IP access, LAN-to-LAN
connectivity over private and public networks, and VoIP PBX trunk service applications.

Multi-Service Router (MSR) Card (for the Adit 600 Platform)

The Multi-Service Router (MSR) card for the Adit 600 integrates the features of a trunk gateway, high­performance IPSec VPN-capable router, and stateful firewall with flexible WAN options. It replaces
multiple elements at the customer premises that typically provide routing, security, and trunk gateway
functions – offering a powerful blend of speed, security, data, and voice. When integrated into the Adit
600, the MSR card offers scalability and high performance for Internet and IP access, LAN-to-LAN
connectivity over private and public networks, and VoIP PBX trunk service applications

1-2 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Accessing the GUI

Accessing the GUI

NOTE: The following instructions assume that you have connected your PC to the Ethernet

port on the Adit 3000 (3104, 3200, or 3500) or MSR card. For additional connection options,
see the User Manual for your product.

1. Launch a web browser on your PC from the same LAN as the Adit 3000 or MSR.

2. Enter the Adit 3000 or MSR card’s IP address or name in the address bar.
The default IP address is http://192.168.1.1. The Login screen appears.

3. Log in to the unit by entering the user name and password.

 The default user name is admin

 The default password is admin 123

NOTE: For security purposes, the user name and password should be changed from the

default settings after the initial login. See Editing a User on page 2-67 for information on
modifying user names and passwords.

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-3

Web Based Management

Navigation
Pane

Display
Window

Address
Bar

Network

Network
Map

Question Mark

Overview

Overview

The GUI management window contains two sections:

 Navigation Pane (on the left) – Provides a list of topics to view and configure. When you select

an icon, the information is displayed on the right.

 Display window (on the right) – Displays the setup windows for a topic selected from the

Navigation Pane or items that have been selected through a shortcut button.

Other helpful features:

 Address Bar (along the top) – Displays the current path to the information displayed in the

window below.

 Network Map (Button) – Provides a shortcut to the Network Map. See Network Map on

page 1-7.

 Network (Button) – Displays the Network List.

 Question Mark (Button) – Provides a shortcut to Technical Information about the system.

1-4 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Overview

Navigation Pane Icons

The following icons are available on the Navigation Pane:

Home - Displays the Network Map.

Quick Setup - Allows you to quickly configure your Internet connection.

Network Connections - Allows you to create and configure network connections.

Security - Allows you to configure the Firewall and regulate communication between

the Internet and the network.

Voice Over IP - Allows you to configure VoIP features.
Note: This feature is not supported on the Adit 3200.

Advanced - Allows you to control network parameters (DHCP server, DNS) and

perform administrative functions, including changing passwords and upgrading the
system.

System Monitoring - Displays system information, statistics, logs, and alarms.

Logout - Logs you out of the current session.

Action Icons (for Managing Lists)

The following icons may appear in a list, under Action:

Add - Adds an item to the list.

Edit - Edits an item in the list.

Delete - Removes an item from the list.

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-5

Web Based Management

Home

Home

The Home window displays the Network Map which shows the various elements in the network.
Note: This window is modified as the configuration changes.

 Local network computers

 Firewall

 Adit 3000 or MSR

 External network interface (Internet connection)

 Internal network interface (Ethernet, etc.)

1-6 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

WAN

LAN

Home

Network Map

The following icons appear on the Network Map. For all icons except the Internet, you can open the
item’s configuration window by clicking on the icon.

Symbol Represents

Internet.

Opens the Quick Setup window.

Ethernet WAN connection.

Opens the Quick Setup window.

Firewall.

Opens the Security setup window.

Note that the height of the wall corresponds to the security level currently
selected.

Ethernet Local Area Network (LAN) connection.

Opens the LAN Ethernet Properties window.

A computer (host) connected in the network.

Opens the Host Information window (see the following section).

Note: This icon appears only when the host is connected with dynamic IP
allocation. Hosts that have statically defined IPs are not shown.

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-7

Web Based Management

Home

Host Information Window

To display this window, click on the Computer Host icon on the Network Map.

The Host Information window displays network information for the corresponding
computer.

Field Definition

Host Displays the Host Name.

IP Address Displays the Host IP Address.

Subnet Mask Displays the Subnet Mask of the Host IP Address.

Network Connection Displays the type of Network Connection.

Lease Type Displays the type of lease.

Local Servers Displays the Local Server.

Ping Test This button will test the connectivity through a Ping test.

See the following section on Test Connectivity.

Windows Shared Folders Displays an address for the host, which is also a link to the address.

1-8 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Home

Test Connectivity

The Test Connectivity button brings up the Diagnostics window. This window will automatically
ping the Host IP Address and display the results.

NOTE: This window can also be accessed through Advanced/Diagnostics.

See Diagnostics on page 2-16, for detailed information on this window.

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-9

Web Based Management

Quick Setup

Quick Setup

The Quick Setup window enables quick configuration of your Internet connection.

When subscribing to a broadband service, you should be aware of the method by which you are
connecting to the Internet. Technical information regarding the properties of your Internet connection
should be provided by your Internet Service Provider (ISP). For example, your ISP should inform you
whether you connect to the Internet using a static or dynamic IP address and what protocols, such as
PPTP, you use to communicate over the Internet.

The Quick Setup window appears upon initial login, or it can opened by selecting the Quick Setup
button on the navigation pane.

1-10 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Quick Setup

Internet Connection

Connection Type

The WAN connection can be configured using any of the following methods. With each of these
connection types, the window displays a different set of field options. See the following sections
for information on each of these connection types and the associated options.

 Manual IP Address Ethernet Connection

 Automatic IP Address Ethernet Connection

 Point-to-Point Protocol over DS0 (Serial)

 Multilink Point-to-Point Protocol over DS0 (Multilink)

 Point-to-Point Tunneling Protocol (PPTP)

 No Internet Connection

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-11

Web Based Management

Quick Setup

Manual IP Address Ethernet Connection

This window is used to manually configure the Internet Connection with a specific IP Address.

Field Definition

IP Address Enter the IP Address for the Ethernet connection of this device.

Subnet Mask Enter the Subnet Mask for the IP Address above.

Default Gateway Enter the Default Gateway address for this device.

Primary DNS Server Enter the Primary DNS Service address.

Secondary DNS Server Enter the Secondary DNS Service address.

1-12 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Quick Setup

Automatic IP Address Ethernet Connection

With this selection, the device uses DHCP to find and set an address for this connection.

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-13

Web Based Management

Quick Setup

Point-to-Point Protocol over DS0 (Serial)

With this selection, the MSR card uses a single Link Cross-Connect (LCC) PPP WAN for Internet
connectivity.

Field Definition

Login User Name Enter the user name for this unit.

Login Password Enter the password for this unit.

Connection Shows the LCCs available for the connection.

NOTE: For the MSR card, cross-connects from Adit 600 resources (T1 lines or WAN-capable

cards) must be made before setting up the WAN link. All DS0s cross-connected to the WAN
link must be of type "Data." Use the connect (msr) command to cross-connect resources to
the MSR card. (See the Adit 600 User Manual for more information.)

1-14 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Quick Setup

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-15

Web Based Management

Quick Setup

Multilink Point-to-Point Protocol over DS0 (Multilink)

With this selection, the MSR card uses a multiple Link Cross-Connect (LCC) WAN for Internet
connectivity.

Field Definition

Login User Name Enter the user name for this unit.

Login Password Enter the password for this unit.

Connection Shows the LCCs available for the connection.

NOTE: For the MSR card, cross-connects from Adit 600 resources (T1 lines or WAN-capable

cards) must be made before setting up the WAN link. All DS0s cross-connected to the WAN
link must be of type "Data." Use the connect (msr) command to cross-connect resources to
the MSR card. (See the Adit 600 User Manual for more information.)

1-16 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Quick Setup

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-17

Web Based Management

Quick Setup

Point-to-Point Tunneling Protocol (PPTP)

Point-to-Point Tunneling is a technology for creating Virtual Private Networks (VPNs). A VPN is
a private network of computers that uses the public Internet to connect some nodes. Because the
Internet is essentially an open network, the Point-to-Point Tunneling Protocol (PPTP) is used to
ensure that messages transmitted from one VPN node to another are secure. With PPTP, users can
dial in to their corporate network via the Internet.

Field Definition

Login User Name Enter the User name for this unit.

Login Password Enter the password for this unit.

IP Address Enter the IP Address for the Ethernet connection of this device.

Subnet Mask Enter the Subnet Mask for the IP Address above.

Default Gateway Enter the Default Gateway address for this device.

1-18 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Quick Setup

No Internet Connection

This option disables the Internet connection on the device.

Administrator

The following section appears on all Quick Setup windows (located at the bottom of the window).

Field Definition

Adit 3000’s or
Adit MSR’s Hostname

E-Mail Enter an E-Mail address to be used for monitoring and alert purposes.

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-19

Display/set the current the Host Name for this device.

Web Based Management

Network Connections

Network Connections

Main Window

The Network Connection window allows the user to create and configure network connections. For the
Adit 3000, the basic connections for this system are preconfigured. Additional connections can be set
up with the New Connection option.

For detailed information on Network Connections, see Chapter 3, Network Connections.

Adit 3500

1-20 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

Web Based Management

Network Connections

Adit MSR

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI 1-21

Web Based Management

Security

Security

The Adit 3000 and MSR include comprehensive and robust security services:

 Stateful Packet Inspection Firewall
 User authentication protocols
 Password protection mechanisms

For detailed information on security features, see Chapter 4, Security.

1-22 Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI