Cisco IntraPort Carrier-8 Administrator's Manual

IntraPort Carrier-8 Chassis

Administrator’s Guide

Compatible Systems Co rporation

4730 Waln ut Street

Suite 102

Boulder, Colorado 80301

303-444-9532
800-356-0283

http://www.compatible.com

IntraPort Carrier-8 Chassis Administrator’s Guide
Version 1
Copyright © 1999, Compatible Systems Corporation

All rights reserved. IntraPort Enterprise, RISC Router, MicroRouter and CompatiView are
trademarks of Compatible Systems Corporation. Other trademarks are the property of their
respective holders.

Part number: A00-1855

FCC Notice: This product has been certified to comply with the limits for a Class A computing
device, pursuant to Subpart J of Part 15 of FCC Rules. It is designed to provide reasonable
protection against radio or television communication interference in a commercial environment.
Operation of this equipment in a residential area could cause interference with radio or television
communication.

Table of Contents

i

Introduction to the IntraPort Carrier-8 1

INTRAPORT CARRIER-8 MANUAL OVERVIEW 1

Chapter 1 - Getting Started 2

A FEW NOTES 2

Please Read the Manuals 2
Warranty and Service 2
Getting Help with the IntraPort Carrier-8 2

WHAT YOU WILL NEED TO GET STARTED 3

Supplied with the IntraPort Carrier-8 3
Additional Items Needed for Installation 3

Chapter 2 - Mounting Instructions 4

PLACEMENT CONSIDERATIONS 4
SAFETY GUIDELINES 4
PARTS AND TOOLS 5
CHANGING THE POWER SUPPLY VOLTAGE SETTINGS 5
RACK-MOUNTING INSTRUCTIONS 6

Installing Mounting Ears and Handles 6
Rack-Mount Brackets 7
Right Bracket Installation 8
Left Bracket Installation 9
Securing the Shelf 10
Moving the Unit into the Rack 11
Placing the Unit in an Equipment Rack 12
Securing the Unit to the Rack 13

Chapter 3 - Powering Up the Server 14

POWERING UP THE SERVER 14

Power Alarm Information 14

Chapter 4 - CompatiView Software Installation 15

COMPATIVIEW FOR WINDOWS 15

System Requirements 15
Installation and Operat io n 15
Transport Protocols and CompatiView 16

Chapter 5 - Command Line Preparation 17

OUT-OF-BAND COMMAND LINE MANAGEMENT 17
TEMPORARILY RECONFIGURING A HOST FOR COMMAND LINE MANAGEMENT 17
SETTING UP TELNET OPERATION 18

Table of Contents

ii

Chapter 6 - Functionality and Configuration Overview 19

INTRAPORT CARRIER-8 FUNCTIONALITY 19

Routing From/To the Public Internet 19
Routing To/From a Corporate Intranet 19
Routing in General 19

S

AMPLE CONFIGURATION 20

Configuration Details 23

Frame Relay 23
Routing 23
Clients 23

Chapter 7 - Test Switch Settings 24

Appendix A - Connector and Cable Pin Outs 25

PIN OUTS FOR DB-25 MALE TO DB-25 FEMALE CONSOLE CABLE 25

Appendix B - Downloading Software 26

FROM COMPATIBLE SYSTEMS 26
TO THE DEVICE 26

Appendix C - Adding or Replacing RIOP Cards 27

Appendix D - When the “Over Temp” Light Comes On 28

REPLACING OR CLEANING THE INTRAPORT CARRIER-8 AIR FILTER 28

Appendix E - Terms and Conditio ns 29

Table of Contents

i

Figure 1. Location of Voltage Switch on the Power Supply 5
Figure 2. Installing Mounting Ears and Handles for a Standard Equipment Rack 6
Figure 2.1. Installing Mounting Ears for a Telco Rack 6
Figure 3. Rack-Mount Brackets 7
Figure 4. Fastening the Right Bracket to the Rack 8
Figure 5. Fastening the Left Bracket to the Rack 9
Figure 6. Lowering the Shelf 10
Figure 6.1. Securing the Shelf 10
Figure 7. Moving the Unit into a Standard Equipment Rack 11
Figure 7.1. Moving the Unit into a Telco Rack 11
Figure 8. Placing the Unit in a Standard Equipment Rack 12
Figure 8.1. Placing the Unit in a Telco Rack 12
Figure 9. Securing the Unit to the Rack 13
Figure 10. Detail of Power Units 14
Figure 11. IntraPort Carrier-8 Configuration Example 20
Figure 12. Removing and Replacing an RIOP Card or Cover Plate 27
Figure 13. Removing the Filter Cover Plate 28

Introduction to the IntraPort Carrier-8 1

Introduction to the IntraPort Carrier-8

The IntraPort Carrier-8 (IPC) is a Layer 3 to Layer 2 gateway designed to let Network Service
Providers (NSPs) sell services that provide secure access to traditional networks such as Frame Relay
via IPSec-based Virtual Private Network (VPN) client sessions.

The IPC terminates Layer 3 IPSec sessions which were initiated by PCs running VPN Client so f t-

ware. Client PCs may be connected to the IP infrastructure (on or off a particular NSP’s netw or k) vi a
dial-up or direct Ethernet attachment. The IPC administrator determines whether these sessions are
encrypted and/or digitally signed.

Traffic from client sessions is typically decrypted and authenticated by the IPC, and then switched
into pre-specified Layer 2 virtual circuits (VCs), if a WAN interface is in use, or routed onto the
Ethernet at the POP. The process also works in reverse, with traffic received from a specific VC or
POP network typically being encrypted and digitally signed before being routed to the appropriate
client session.

RADIUS authentication can be used to provide general access control to the IPC, along with
returning information regarding which set of pre-configured parameters a client session should be
assigned.

IPC systems are based on a two-slot chassis that can hold one or two I/O cards. Currently available
I/O cards include 3DES - DS3, 3DES - HSSI and DES - 10/100 Ethernet. These can be used in any
combination desired.

IntraPort Carrier-8 Manual Overview

The manual is divided into several sections that should provide you with the basic information you
will need to use the IntraPort Carrier-8 on your network. For the latest documentation on Compatible
Systems products, including the most current version of this manual, visit the Technical Support
section of our Web site.

Chapter 1 - Getting Started

This part of the manual describes the contents of the IntraPort Carrier-8 package and emphasizes the
preparation and equipment you will need to install the server.

Chapter 2 - Mounting Instructions

This part of the manual includes detailed instructions for mounting the IntraPort Carrier-8 in a variety
of equipment racks.

Chapter 3 - Powering Up the Server

This part of the manual includes information on the voltage switch and instructions for powering up
the device.

Chapter 4 - CompatiView Software Installation

This part of the manual describes how to install CompatiView, Compatible Systems’ GUI (Graphical
User Interface) management software which is included with your server.

Chapter 5 - Command Line Preparation

This part of the manual provides basic instructions for using command line management and
text-based configuration to configure a server.

Chapter 6 - Functionality and Configuration Overview

This part of the manual provides a minimal list of parameters that must be entered into a server for
proper operation.

Chapter 7 - Test Switch Settings

This part of the manual describes the test switch settings.

Appendices

This part of the manual includes additional information that might be of interest to you such as tech­nical specifications, some maintenance procedur es and instru ctions for do wnloading cu rrent software.

Chapter 1 - Getting Started 2

Chapter 1 - Getting Started

A Few Notes

Please Read the Manuals

The manuals included with your IntraPort Carrier-8 VPN Access Server contain very impor­tant information about installing and operating the IntraPort Carrier-8. Please read this manual,
and refer to the management reference guides as required. It’s worth the few minutes it will
take.

Also, please fill out the warranty registration card and return it to us today. This will help us
keep you informed about updates to the IntraPort Carrier-8 and future products available from
Compatible Systems.

Y o u can also register on the Web at http://www.compatible.com. If you ’d like to be notified via
e-mail about new products and receive important news from Compatible Systems, please join
our e-mail list on the Web.

Warranty and Service

The IntraPort Carrier-8 is covered by the Compatible Systems Integrated Support Package,
which includes a lifetime comprehensive warranty, a twenty-four hour advance replacement
program, unlimited phone support and software upgrades for the life of the product. A 24 x 7
support plan is also available.

Compatible Systems maintains copies of current software updates on the Internet. You may
download product software from the Internet at any time. For more information on down­loading current product software, see Appendix B.

Getting Help with the IntraPort Carrier-8

If you have a question about the IntraPort Carrier-8 and can’t find the answer in one of the
manuals included with the product, please visit the technical support section of our Web site
(http://www.compatible.com). This site includes extensive technical resources which may
answer many of your questions. You can also request technical support by filling out a brief
form. Technical support requests received via the Web form will receive expedited treatment.
You may also call Compatible Systems Corporation or send support questions via e-m ail to
support@compatible.com. Compatible Systems' phone number is listed on the front of this
guide. We will be happy to help you.

Chapter 1 - Getting Started 3

What You Will Need to Get Started

Before connecting the IntraPort Carrier-8 VPN Access Server, please check the list below to
make sure that you have received all of the items that are supplied with the shipping
package(s).

You should also make sure you have any additional items that are necessary to connect the
server to your network.

Supplied with the IntraPort Carrier-8

Please check your shipping package(s) for the following items:

• IntraPort Carrier-8 unit

• 2 power cords

• One left rack-mount bracket

• One right rack-mount bracket

• Two mounting ears

• Two handles

• Two hand le spacers

• 14 mounting screws (10-32 undercut flat head)

• One DB-25 male to DB-25 female console cable

• One reusable replacement air filter

• CD-ROM including:

4 CompatiView software for Windows
4 Operating software
4 VPN Client software
4 HTML version of product documentation (which can be vi ewed with your favorit e

Web browser)

• VPN Client Reference Guide

• CompatiView Management Software Reference Guide

• Text-Based Configuration and Command Line Management Ref erence Guide

• Warranty registration card

Additional Items Needed for Installation

• If you choose to rack-mount the IntraPort Carrier-8, you will need to provide your
own screws or clips to secure the mounting brackets to the equipment rack. A more
detailed list of the items needed for mounting the server is in Chapter 2 - Mounting
Instructions.

• Before connecting the Intr aPort Carrier -8 t o your network, yo u need to make sure t hat
you have the necessary interface cabling equipment. See each I/O card’s Network
Installation section for details.

Chapter 2 - Mounting Instructions 4

Chapter 2 - Mounting Instructions

The IntraPort Carrier-8 VPN Access Server is designed to be mounted in a 19-inch equipment
rack or in a Telco rack. Compatible Systems provides all the parts necessary for securing the
supplied mounting brackets and ears to the device; however, due to the variety of equipment
racks and mounting techniques, you will need to provide your own screws or clips to secure
the mounting brackets and ears to the equipment rack.

Placement Considerations

There are several things to consider when preparing to install the IntraPort Carrier-8 VPN
Access Server.

• Do not place the server on the floor, since it will more quickly accumulate dust. As
alternatives to rack-mounting, it can be placed on a sturdy table or solid platform.

• A clean, air-conditioned environment is ideal.

• An open equipment rack (i.e., one without side enclosures or doors) is recommended

for adequate ventilation.

• The chassis requires 13.5 shelf positions (23.5 vertical inches) of rack space.

• While no rear clearance is required, the front of the server needs adequate clearance

for air circulation, RIOP card addition or replacement, cable connections, etc. At least
two feet of front clearance and one inch of top clearance are recommended.

• Load the equipment rack from the bottom. For stability, it is strongly recommended
that the IntraPort Carrier-8 VPN Access Server be placed in the bottom half of an
equipment rack.

v

Note: When stacking other equipment on the IntraPort Carrier -8 VPN Access Server, do not

exceed 35 pounds of evenly distributed weight on top of the s erver. Additional weight may bend
the case.

Safety Guidelines

T o help en sure you r safety and minimize p otential damage to equipment, read an d follow these
guidelines before attempting to move or work on the IntraPort Carrier-8 VPN Access Server.
These guidelines do not encompass all po tential ha zards. You must use good judgment and due
caution when working with this or any other electrical device.

• The default setting for the voltage switch on the power supplies for the Carrier-8 is for
a low input voltage (marked 115V on the switch). If your electrical system requires a
high input voltage on the po wer supplies, you must change t he settings before

plug-

ging in the server (for instructions, see Changing the Power Supply Voltage Settings).

• Never attempt to move the server using the RIOP card handles or the filter cover
opening. They will not su ppo rt t he wei ght of the device. Use the built-in side hand le s
and either the large mounting handles, if you have installed them, or the very bottom
of the chassis to move it (see Figures 2 and 2.1).

• The IntraPort Carrier-8 VPN Access Server weighs approximately 110 pounds. Mov­ing the server requires at least two people, able to bear 55 pounds of weight apiece. If
your union or company policy outlines a lower maximum weight load per person, use
the appropriate number of people.

• Make sure you have a clear path between the server and the equipment rack, platform
or table before attempting to move it into place.

+ Warning: All power cords and interf ace ca bl es mus t be di s conn ected before you attempt to

move or work on the IntraPort Carrier-8 VPN Access Server. Even the interface cables can
deliver lethal doses of electricity.

Chapter 2 - Mounting Instructions 5

Parts and Tools

The following items are needed to install the mounting ears and handles on the IntraPort
Carrier-8 VPN Access Server.

• IntraPort Carrier-8 unit

• Two mounting ears

• Two handles

• Two hand le spacers

• 14 mounting screws (10-32 undercut flat head)

• Phillip’s head screwdriver

In addition to the above items, the following items are needed to install the IntraPort Carrier-8
VPN Access Server in an equipment rack.

• One left rack-mount bracket

• One right rack-mount bracket

• One DB-25 male to DB-25 female console cable

• Tape measure (optional)

• Level (optional)

• Your own screws or clips, for fastening the brackets to the rack

• At least two people to lift the device into place. Do not attempt to move the device

into the rack or onto a table or platform by yourself.

Changing the Power Supply Voltage Settings

The default setting for the voltage switches on the server’s power supplies is for a low input
voltage (marked 115V on the switch) . If y our el ectrical s ystem r equires a hig h input vol tage on
the power supplies, you must change it manually on the device before

plugging the device in.

To change the settings:

1. Make sure the server is powered down and not connected to any power source.

2. Using a small screw driver, change the voltage switches to the desired setting (230V
for high input voltage, 115V for low input voltage).

Figure 1. Location of Voltage Switch on the Power Supply

Chapter 2 - Mounting Instructions 6

Rack-Mounting Instructi ons

Installing Mounting Ears and Handles

Figure 2. Installing Mounting Ears and Handles for a Standard Equipment Rack

Figure 2.1. Installing Mounting Ears for a Telco Rack

The mounting ears should be installed on the IntraPort Carrier-8 VPN Access Server whether
you are planning to rack-mount it or not. The handles need not be installed for Telco rack
mounts because there is not enough finger room to use them, but the handles are recommended
for all other installations.

If you are not going to rack-mount the IntraPort Carrier-8, it is recommended that you install
the mounting ears and handles using the Standard Equipment Rack position (as shown in
Figure 2).

1. Use the supplied screws and fasten the mounting ears to the sides of the device using
5 screws on each side as shown in Figure 2 (for a standard equipment rack) or in Fig­ure 2.1 (for a Telco rack).

2. Use the supplied screws and fasten the handles and spacers to the center of the mount­ing ears as shown in Figure 2.