Cisco Systems 881SECK9 User Manual

Cisco 880 Series Integrated Services Router Software Configuration Guide

Americas Headquarters

Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000

800 553-NETS (6387)

Fax: 408 527-0883

Text Part Number: OL-22206-01

THE SPECIFICATIONS AND INFORMATION REGA RDING THE P RODUCTS IN THIS MA NUAL ARE SUBJECT TO CHANGE W ITH OUT NOT ICE. A LL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILIT Y FOR THEIR APPLICATION OF ANY PRODUCTS.

THE SOFTWARE LICENSE AND LIMITED WARRA NTY FO R THE A CCOMPA NYING PRODUCT A RE SET FORTH IN T HE INFORM ATION P ACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.

The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.

NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DO CUMENT FILES AND SOFTWARE OF THESE SUPPL IERS ARE PROVI DED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAI M ALL WARRANTIE S, EXPRESSED OR LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICUL AR PURPOSE AN D NONINFRINGE MENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.

IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOS T PROFITS OR LOSS OR DAMAGE TO DATA ARISIN G OUT OF THE USE OR INABILI TY TO USE THIS MA NUAL, EVEN I F CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SU CH DAMA GES.

CCDE, CCENT, CCSI, Cisco Eos, Cisco HealthPresence, Cisco IronPort, the Cisco logo, Cisco Lumin, Cisco Nexus, Cisco Nurse Connect, Cisco StackPower, Cisco

StadiumVision, Cisco TelePresence, Cisco Unified Computing System, Cisco WebEx, DCE, Flip Channels, Flip for Good, Flip Mi no, Flip Video , Flip Video (D esign), Flipshare (Design), Flip Ultra, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn, Cisco service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco

Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQuick Study, IronPort, the IronPort PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx

All other trademarks mentioned in this document or website are the property of th eir respective owners. The use of the word partn er d oes not imply a par tn ers hi p r elati ons hip between Cisco and any other company. (1005R)

logo, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, Network Registrar,

logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.

IMPLIED, INCLUDING, WITHOUT

Store, and Flip Gift Card are

Any Internet Protocol (IP) addresses us ed in this docu ment ar e not i ntend ed to be ac tual address es. A ny exam ples, comman d d isplay output, and fig ures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.

Cisco 880 Series Integrated Services Router Software Configuration Guide

Preface

This preface describes the objectives, audience, organization, and conventions used in this guide, and describes related documents that have additional information. It contains the following sections:

• Objective, page xiii

• Audience, page xiii

• Organization, page xiv

• Conventions, page xiv

• Related Documentation, page xv

Objective

Audience

• Searching Cisco Documents, page xv

• Obtaining Documentation and Submitting a Service Request, page xvi

This guide provides an overview and explains how to configure the various features for the Cisco 880 series Integrated Services Routers (ISR). Some information may not apply to your particular router model.

For warranty, service, and support information, see the “Cisco One-Year Limited Hardware Warranty Terms” section in Readme First for the Cisco 800 Series Integrated Services Routers that was shipped with your router.

This guide is intended for Cisco equipment providers who are technically knowledgeable and familiar with Cisco routers and Cisco

IOS software and features.

OL-22206-01

Cisco 880 Series Integrated Services Router Software Configuration Guide

xiii

Organization

This guide is organized into the following parts, chapters, and appendixes.

Chapters

Product Overview Provides a brief description of the router models and

Wireless Device Overview Provides an introduction to the wireless device on

Basic Router Configuration Provides procedures for configuring the basic

Basic Wireless Device Configuration Provides procedures for initial configuration of the

Conventions

Preface

the available software features.

the router and its use in network configurations.

parameters of the router.

wireless device.

These documents use the conventions listed in Table 1 to convey instructions and information.

Table 1 Command Conventions

Convention Description boldface font Commands and keywords.

italic font Variables for which you supply values. [ ] Optional keywords or arguments appear in square brackets. {x | y | z} A choice of required keywords appears in braces separated by vertical bars. You

must select one.

screen font

boldface screen

font

< > Nonprinting characters, for example, passwords, appear in angle brackets in

[ ] Default responses to system prompts appear in square brackets.

Note Means reader take note. Notes contain helpful suggestions or references to additional information and

material.

Examples of information displayed on the screen. Examples of information you must enter.

contexts where italics are not available.

xiv

Caution This symbol means reader be careful. In this situation, you might do something that could result in

equipment damage or loss of data.

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

Preface

Tip Means the following information will help you solve a problem. The tips information might not be

troubleshooting or even an action, but could be useful information, similar to a Timesaver.

Searching Cisco Documents

To search an HTML document using a web browser, use the Ctrl+F (Windows) or Cmd+F (Apple) sequences. In most browsers the option to search whole words only, invoke case sensitivity, or search forward and backward are also available.

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

Preface

To search a PDF document in Adobe Reader, use the basic Find toolbar (Ctrl+F) or the Full Reader Search window (Shift+Ctrl+F). Use the Find toolbar to find words or phrases within one specific document. Use the Full Reader Search window to search multiple PDF files simultaneously as well as change case sensitivity , and ot her options. Adobe Read er comes wit h online help with more information regarding searching PDF documents.

Obtaining Documentation and Submitting a Service Request

For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What’s revised Cisco

http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html

Subscribe to the What’s New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS version 2.0.

technical documentation, at:

New in Cisco Product Documentation, which also lists all new and

xvi

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

Product Overview

This chapter provides an overview of the features available for the Cisco 880 series Integrated Service Router (ISR), and contains the following sections:

• General Description, page 1-1

• Cisco 880 Series ISR, page 1-1

• Licensing, page 1-3

• 880 SKUs for next generation Cisco 880 Series ISR platforms, page 1-3

• Memory, page 1-5

• LED Overview, page 1-6

• Power Supply, page 1-7

General Description

CHAPTER

The Cisco 880 ISR provides Internet, VPN, data, and backup capability to corporate teleworkers and remote and small offices of fewer than 20 users. These routers are capable of bridging and multiprotocol routing between LAN and WAN ports, and provide advanced features such as antivirus protection. In addition, the Cisco act as a wireless access point.

880W series ISR incorporates an 802.11b/g/n wireless radio that allows the ISR to

Cisco 880 Series ISR

The Cisco 880 series ISRs are a family of fixed-configuration data routers, as described in the following sections:

• Models of the Cisco 880 Series ISRs, page 1-1

• Common Features, page 1-2

Host router sofware will be runnin gon 1st core and WLAN AP software will be running on 2nd core.

Models of the Cisco 880 Series ISRs

The Cisco 880 series ISRs have data capabilities. Each router has one WA N port. Data backup ports are also available on most of the routers. The 802.11b/g/n option is available on all models.

OL-22206-01

Cisco 880 Series Integrated Services Router Software Configuration Guide

1-1

Cisco 880 Series ISR

Table 1-1 gives the port configurations of the Cisco 880 series data routers.

Table 1-1 Port Configurations of the Cisco 880 Series Data ISRs

Model WAN Port

C886VA-W-E-K9 ADSL2+ UR2 C887VAM-W-E-K9 ADSL2+ Annex M C887VA-W-A-K9 ADSL2+ Annex A C887VA-W-E-K9 ADSL2+ Annex A C881W-A-K9 FE C881W-E-K9 FE C881W-P-K9 FE

Common Features

Cisco 880 series ISRs support the following features:

• 4-port 10/100 FE LAN Switch, page 1-2

• 802.11b/g/n Wireless LAN, page 1-2

Chapter 1 Product Overview

• Battery-backed-up Real-Time Clock, page 1-2

• Security Features, page 1-2

4-port 10/100 FE LAN Switch

This switch provides four ports for connecti ng to 10/100BA SE-T FE LANs, access point s, or IP phon es. A factory installed upgrade is available that gives Power over Ethernet (PoE) on two of the ports to provide power to access points or phones.

802.11b/g/n Wireless LAN

The Cisco 880W series ISRs have an integrated 802.11b/g/n single radio module for wireless LAN connectivity. With this module, the router can act as an access point in the local infrastructure.

Battery-backed-up Real-Time Clock

A battery-backed-up real-time clock (RTC) provides the date and time when the system is powered on. The RTC is used to verify the validity of the Certification Authority stored on the router.

Security Features

The Cisco 880 platforms provide the following security features:

• Intrusion Prevention System (IPS)

• Dynamic Multipoint VPN (DMVPN)

1-2

• IPsec

• Quality of service (QoS)

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

Chapter 1 Product Overview

• Firewall

• URL filtering

Licensing

The Cisco 880 ISR is shipped with licensed software installed. Software features may be upgraded and the software licenses may be managed through Cisco Licensing Manager. See

Cisco Integrated Services Routers on Cisco.com for details.

When you order a new router, you can specify the soft ware image and feature set. The image and feature set are installed on your router before you receive it, so you do not need to purchase a software license. The router stores the software license file on the flash memory.

Selecting Feature Sets

Some feature sets are bundled and offered with a software license that is installed on the hardware platforms. For a list of features available with a software license on the Cisco

Sheet. See Cisco IOS Software Activation Tasks and Commands on Cisco.com for details about how to

activate and manage the software licenses.

Licensing

Software Activation On

880, see Cisco 880 Data

880 SKUs for next generation Cisco 880 Series ISR platforms

The following lists the SKUs particular for Next generation Cisco 880 Series ISR platforms.

C881W

• 512 MB memory

• 256 MB Flash

• 4-port 10/100 Switch

• 2-port PoE is a factory-configurable option

• 10/100 FE WAN

• 1 port console/aux

• 1 port external USB 2.0

• Real-time clock

• Embedded WLAN antenna on wireless models

C886VA-W

OL-22206-01

• 512 MB memory

Cisco 880 Series Integrated Services Router Software Configuration Guide

1-3

880 SKUs for next generation Cisco 880 Series ISR platforms

• 256 MB Flash

• 4-port 10/100 Switch

• 2-port PoE is a factory-configurable option

• 1 port console/aux

• 1 port external USB 2.0

• ADSL2+ Annex B

• ISDN backup WAN

• Real-time clock

• Embedded WLAN antenna on wireless models

C887VAM-W

• 512 MB memory

• 256 MB Flash

• 4-port 10/100 Switch

Chapter 1 Product Overview

C887VA-W

• 2-port PoE is a factory-configurable option

• 1 port console/aux

• 1 port external USB 2.0

• ADSL2+ Annex M

• Real-time clock

• Embedded WLAN antenna on wireless model

• 512 MB memory

• 256 MB Flash

• 4-port 10/100 Switch

• 2 port PoE is a factory-configurable option

• 1 port console/aux

• 1 port external USB 2.0

• ADSL2+ Annex A

• Real-time clock

• Embedded WLAN antenna on wireless model

C881GW

Cisco 880 Series Integrated Services Router Software Configuration Guide

1-4

• 512 MB memory

• 256 MB Flash

OL-22206-01

Chapter 1 Product Overview

C887GW

Memory

• 4-port 10/100 Switch

• 2-port PoE is a factory-configurable option

• 10/100 FE WAN

• 3G modem with Dual SIMM card slots

• 1 port console/aux

• 1 port external USB 2.0

• Real-time clock

• Embedded WLAN antenna on wireless models

• 512 MB memory

• 256 MB Flash

• 4-port 10/100 Switch

• 2-port PoE is a facotry-configurable option

Memory

• 1 port console/aux

• 1 port external USB 2.0

• ADSL2+ Annex A

• 3G modem with Dual SIMM card slots

• Real-time clock

• Embedded WLAN antenna on wireless models

Table 1-2 illustrates the on board memory and flash size for the first and second core. The total memory

installed is 512 MB + 256 MB flash, and they are partitioned as shown in the following table.

Table 1-2 Memory Specifications

On Board Memory 1st core 2nd core

512 MB 384 MB 128 MB

Flash size

256 192 64

OL-22206-01

Cisco 880 Series Integrated Services Router Software Configuration Guide

1-5

LED Overview

All LEDs are visible on the front of the chassis (bezel side). No LEDs are mounted on the I/O side.

Table 1-3 LED Definition Summary by Interface

LED Color Description Indication

PWR Ok Green Power On OK, Rourter

Ethernet Switch and FE/GE LAN/WAN ports

PoE Green/Yellow PoE Status Off= no device powered, PoE

Chapter 1 Product Overview

Off= no power

Operational

Green Ethernet Switch Off= No link

Steady on= normal operation Blink= boot up phase in

ROM Monitor mode

Steady on= link Blink= TXD/RXD data

administratively disabled Steady on green= PD

connected and powered Steady on yellow= PD denied

power, power delivery fault

xDSL Green CD Steady on= connected

Blink= training

Green Data Blink= TXD/RXD data

ISDN data Green Link Off= no connection

Steady on= BRI S/T connection established

Green B1 channel data Off= No data

Blin= TXD/RXD data

Green B2 channel data Off= No data

Blink= TXD/RXD data

1-6

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

Chapter 1 Product Overview

Table 1-3 LED Definition Summary by Interface (continued)

LED Color Description Indication

PWR Ok Green Power On OK, Rourter

LED Overview

Off= no power

Operational

Steady on= normal operation Blink= boot up phase in

ROM Monitor mode

Wireless/LAN Green 2.4 GHz Radio Off= Radio is down (no SSID

Green If dual-radio is installed

configured) Steady on= Radio is up, SSID

configured, beacons being send, client is associated, no data traffic being sent/received

Slow blink= Radio is up (SSID configured and sending beacon)

Fast Blink= Radio is up, client is associated, radio is sending/receiving data traffic

Green Autonomous Mode Off= Ethernet link down

On= Ethernet link up no traffic

Blink= Ethernet link up with data traffic

Unified Mode Off= Ethernet link down

On= Ethernet link up, connected to controller

OL-22206-01

Blink= AP not communicating with controller

VPN_OK Off= no tunnel

Steady on= at least one tunnel is up

PPP_OK Off=no PPP session

Steady on= at least one PPP established

Cisco 880 Series Integrated Services Router Software Configuration Guide

1-7

Power Supply

External 12V Power Supply Adapter

The following power supplies are used accross Next generation Cisco 880 ISR platforms depending on SKU:

• New grounded 12 V 30 W external desktop adapter for all 86x and 88x models. Connection to the

chassis is with a single barrel connector.

On board 12V Power supply

PoE ports powered from 12 VDC on motherboard.

Power over Ethernet (PoE Inline Power Option)

Chapter 1 Product Overview

Inline power is a configurator option. PoE configured boxes are supplied with a 12 VDC 60 W adapter in lieu of the 30 W.

Images supported

c800-universalk9-mz

This image offers all IOS features supported by c8xx platforms.

c800-universalk9_npe-mz

This image does not support VPN payload and secure voice functionality, and statisfies import considerations for CIS countries.

Licenses for each image:

For universalk9 image:

Technology Package licenses:

–

Advipservices

–

advsecurityk9

1-8

Feature licenses:

–

ios-ips-update

–

SSL_VPN

For universalk9_npe image:

Technology Package licenses:

–

advipservices_npe

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

Chapter 1 Product Overview

–

advsecurity_npe

Feature licenses:

–

ios-ips-ipdate

Minimum software version needed to support AP802

Table 1-4 Software version needed for AP802

Software Minimum version

Router IOS 15.1(4) M AP IOS (Autonomous mode) TBD AP IOS (unified mode) J.MR2 WLC J.MR2 WCS J.MR2

Images supported

OL-22206-01

Cisco 880 Series Integrated Services Router Software Configuration Guide

1-9

Images supported

Chapter 1 Product Overview

1-10

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

Wireless Device Overview

Wireless devices (commonly configured as access points) provide a secure, af fordable, and easy-to-use wireless LAN solution that combines mobility and flexibility with the enterprise-class features required by networking professionals. When configured as a access point, the wireless device serves as the connection point between wireless and wired networks or as the center point of a stand-alone wireless network. In large installations, wireless users within radio range can roam throughout a facility while maintaining seamless, uninterrupted access to the network.

With a management system based on Cisco IOS software, wireless devices are Wi-Fi CERTIFIED™,

802.11b-compliant, 802.11g-compliant, and 802.11n-compliant wireless LAN transceivers.

Software Modes

The access point is shipped with an autonomous image and a recovery image on the access point’s flash. The default mode is autonomous; however , the access p oint can be upgraded to operate in Cisco Unified Wireless mode.

Each mode is described below:

–

Autonomous mode—supports standalone network configurations, where all configuration

settings are maintained locally on the wireless device. Each autonomous device can load its starting configuration independently, and still operate in a cohesive fashion on the network.

CHAPTER

OL-22206-01

–

Cisco Unified Wireless mode—operates in conjunction with a Cisco Unified Wireless LAN

controller, where all configurat ion information is maintained within the cont roller. In the Cisco Unified Wireless LAN architecture, wireless devi ces operate in the lightweight mode using Leightweight Access Point Protocol (LWAPP), (as opposed to autonomous mode). The lightweight access point, or wireless device, has no configuration until it associates to a controller. The configuration on the wireless device can be modified by the controller only when the networking is up and running. The controller manages the wireless device configuration, firmware, and control transactions such as 802.1x authentication. All wireless traffic is tunneled through the controller.

See Why Migrate to a Cisco Unified Wireless Network? on Cisco.com for more about this network architecture design.

Cisco 880 Series Integrated Services Router Software Configuration Guide

2-1

Management Options

The wireless device runs its own version of Cisco IOS software that is separate from the Cisco IOS software operating on the router. You can configure and monitor the access point with several different tools:

• Cisco IOS software CLI

• Simple Network Management Protocol (SN MP)

• Web-browser interface:

http://cisco.com/en/US/docs/wireless/access_point/12.4_10b_JA/configuration/guide/scg12410b-c hap2-gui.html

Note The web-browser interface is fully compatible with Microsoft Internet Explorer version 6.0 on

Windows 98, 2000, and XP plat forms, and with Netscape version 7.0 on W indow s 98, 2000, XP, and Solaris platforms.

Chapter 2 Wireless Device Overview

Note A void using t he CLI and the web-browser t ools concurrently t o configure the wireless devi ce. If

you configure the wireless device using the CLI, the web-browser interface may display an inaccurate interpretation of the configuration. This inappropriate display of information does not necessarily mean the wireless device is misconfigured .

Use the interface dot11radio global configuration CLI command to place the wireless device into the radio configuration mode.

2-2

Cisco 880 Series Integrated Services Router Software Configuration Guide

OL-22206-01

+ 40 hidden pages