Huawei Quidway NetEngine 20, Quidway NetEngine 20E, V200R005 Configuration Manual

Huawei Proprietary and Confidential

Quidway NetEngine20/20E Series Routers V200R005

Configuration Guide - Basic Configurations

Issue

Date

2010-01-30

Part Number

31501234

Huawei Proprietary and Confidential

Huawei Technologies Co., Ltd. provides customers with comprehensive technical support and service. For any assistance, please contact our local office or company headquarters.

Huawei Technologies Co., Ltd.

Address: Huawei Industrial Base

Bantian, Longgang Shenzhen 518129

People's Republic of China Website: http://www.huawei.com Email: support@huawei.com

No part of this document may be reproduced or transmitted in any form or by any means without prior written consent of Huawei Technologies Co., Ltd.

Trademarks and Permissions

and other Huawei trademarks are trademarks of Huawei Technologies Co., Ltd.

All other trademarks and trade names mentioned in this document are the property of their respective holders.

Notice

The information in this document is subject to change without notice. Every effort has been made in the preparation of this document to ensure accuracy of the contents, but all statements, information, and recommendations in this document do not constitute the warranty of any kind, express or implied.

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Contents

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

Contents

About This Document..................................................................................................................... 1

1 Product Overview ......................................................................................................................1-1

1.1 Introduction.................................................................................................................................................1-2

1.1.1 NE20/20E..........................................................................................................................................1-2

1.1.2 Architecture.......................................................................................................................................1-2

1.1.3 VRP...................................................................................................................................................1-3

1.2 Functional Features.....................................................................................................................................1-4

1.3 Functions.....................................................................................................................................................1-9

1.3.1 File System......................................................................................................................................1-10

1.3.2 SNMP Configuration.......................................................................................................................1-10

1.3.3 T erm inal Services............................................................................................................................1-11

1.3.4 High Reliability...............................................................................................................................1-11

1.3.5 Interfaces.........................................................................................................................................1-12

1.3.6 Link Layer Protocols.......................................................................................................................1-12

1.3.7 IP Services.......................................................................................................................................1-13

1.3.8 Unicast Routing Protocols...............................................................................................................1-13

1.3.9 Multicast Routing Protocols............................................................................................................1-14

1.3.10 MPLS Features..............................................................................................................................1-14

1.3.11 VPN Services.................................................................................................................................1-15

1.3.12 QoS................................................................................................................................................1-15

1.3.13 Security Features...........................................................................................................................1-17

2 Establishment of the Configuration Environment..............................................................2-1

2.1 Introduction.................................................................................................................................................2-2

2.1.1 Establishing the Configuration Environment by the Console Port....................................................2-2

2.1.2 Configuring the Router Through Telnet............................................................................................2-2

2.1.3 Establishing the Configuration Environm ent Through the AUX Port...............................................2-3

2.2 Establishing the Local Configuration Environment Through the Console Port..........................................2-3

2.2.1 Establishing the Configuration Task..................................................................................................2-3

2.2.2 Establishing the Physical Connection ...............................................................................................2-4

2.2.3 Configuring Terminals.......................................................................................................................2-4

2.2.4 Logging In to the Router...................................................................................................................2-4

Contents

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

2.3 Establishing the Configuration Environment Thro ugh Telnet.....................................................................2-4

2.3.1 Establishing the Configuration Task..................................................................................................2-4

2.3.2 Establishing the Physical Connection ...............................................................................................2-5

2.3.3 Configuring Login User Parameters..................................................................................................2-5

2.3.4 Logging In from the Telnet Client.....................................................................................................2-5

2.4 Establishing the Configuration Environment Thro ugh the AUX Port.........................................................2-6

2.4.1 Establishing the Configuration Task..................................................................................................2-6

2.4.2 Establishing the Physical Connection ...............................................................................................2-6

2.4.3 Initializing and Configuring the Modem on the Interface.................................................................2-7

2.4.4 Configuring the Connection Between Remote Terminal and the Router..........................................2-7

2.4.5 Logging In to the Router...................................................................................................................2-7

2.5 Configuration Examples..............................................................................................................................2-7

2.5.1 Example for Login Through the Console Port ..................................................................................2-7

2.5.2 Example for Login Through Telnet................................................................................................. 2-10

2.5.3 Example for Login Through the AUX Port.....................................................................................2-11

3 CLI Overview..............................................................................................................................3-1

3.1 Introduction.................................................................................................................................................3-2

3.1.1 Characteristics of the CLI..................................................................................................................3-2

3.1.2 Command Levels...............................................................................................................................3-3

3.1.3 Command Line Views.......................................................................................................................3-3

3.1.4 Regular Expressions..........................................................................................................................3-3

3.2 Configuring the Command Line View ........................................................................................................3-4

3.3 Online Help of the Command Line.............................................................................................................3-7

3.4 Error Messages of the Command Line........................................................................................................3-8

3.5 History Commands......................................................................................................................................3-8

3.6 Editing Characteristics.................................................................................................................................3-9

3.7 Displaying Characteristics.........................................................................................................................3-10

3.8 Outputting the Display ..............................................................................................................................3-11

3.8.1 Vi ewing the Display........................................................................................................................3-11

3.8.2 Filtering the Display........................................................................................................................3-11

3.9 Filtering the Information Through Regular Expressions...........................................................................3-11

3.10 Shortcut Keys..........................................................................................................................................3-12

3.10.1 Classifying Shortcut Keys.............................................................................................................3-12

3.10.2 Defining Shortcut Keys.................................................................................................................3-14

3.10.3 Use of Shortcut Keys.....................................................................................................................3-14

3.11 Configuration Examples..........................................................................................................................3-14

3.11.1 Example for Using Shortcut Keys.................................................................................................3-14

4 Basic Configuration ...................................................................................................................4-1

4.1 Introduction.................................................................................................................................................4-2

4.1.1 Extension of Command Levels.........................................................................................................4-2

4.1.2 Extension of User Levels..................................................................................................................4-2

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Contents

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

iii

4.2 Configuring Basic System Environment.....................................................................................................4-2

4.2.1 Establishing the Configuration Task..................................................................................................4-2

4.2.2 Switching Language Mode................................................................................................................4-3

4.2.3 Configuring the Device Name...........................................................................................................4-4

4.2.4 Configuring the System Clock..........................................................................................................4-4

4.2.5 Configuring the Header Text.............................................................................................................4-4

4.2.6 Configuring the Password for Switching User Levels ......................................................................4-5

4.2.7 Switching User Levels ......................................................................................................................4-5

4.2.8 Locking the User Interface................................................................................................................4-6

4.2.9 Configuring Command Privilege Levels...........................................................................................4-6

4.2.10 Displaying System Status Messages................................................................................................4-7

5 User Management ......................................................................................................................5-1

5.1 Introduction.................................................................................................................................................5-2

5.1.1 User Interface View...........................................................................................................................5-2

5.1.2 User Management .............................................................................................................................5-3

5.2 Configuring a User Interface.......................................................................................................................5-5

5.2.1 Establishing the Configuration Task..................................................................................................5-5

5.2.2 Transmitting Messages Between User Interfaces..............................................................................5-6

5.2.3 Configuring Asynchronous Interface Attributes................................................................................5-6

5.2.4 Setting Terminal Attributes................................................................................................................5-7

5.2.5 Configuring the User Interface Priority............................................................................................. 5-8

5.2.6 Configuring Modem Attributes.........................................................................................................5-8

5.2.7 Configuring an Auto-executed Command.........................................................................................5-9

5.2.8 Configuring the Redirection Function...............................................................................................5-9

5.2.9 Configuring the Call-in or Call-out Restrictions of the VTY User Interface...................................5-10

5.2.10 Configuring the Maximum Number of VTY User Interfaces........................................................ 5-10

5.2.11 Configuring the Authentication T im eout Time for VTY Users.....................................................5-11

5.2.12 Disconnecting a Specified User Interface.....................................................................................5-11

5.2.13 Checking the Configuration..........................................................................................................5-11

5.3 Configuring User Management.................................................................................................................5-12

5.3.1 Establishing the Configuration Task................................................................................................5-12

5.3.2 Configuring Authentication Mode...................................................................................................5-13

5.3.3 Configuring the Authentication Password.......................................................................................5-13

5.3.4 Setting Username and Password for AAA Local Authentication ....................................................5-14

5.3.5 Configuring the User Priority..........................................................................................................5-14

5.3.6 Checking the Configuration............................................................................................................5-14

5.4 Configuring the Local User Management .................................................................................................5-15

5.4.1 Establishing the Configuration Task................................................................................................5-15

5.4.2 Creating the Local User Account ....................................................................................................5-16

5.4.3 Configuring the Service Type of the Local User.............................................................................5-16

5.4.4 Configuring FTP Directory Authority of the Local U ser.................................................................5-17

Contents

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

5.4.5 Configuring the Local User Status..................................................................................................5-17

5.4.6 Configuring the Local User Priority................................................................................................5-17

5.4.7 Configuring the Access Restriction of the Local User ....................................................................5-18

5.4.8 Checking the Configuration............................................................................................................5-18

5.5 Configuration Examples............................................................................................................................5-18

5.5.1 Example for Logging In to the Router Through Password Authentication.....................................5-19

5.5.2 Example for Logging In to the Router Through AAA.....................................................................5-20

6 File System ..................................................................................................................................6-1

6.1 Introduction.................................................................................................................................................6-2

6.1.1 File System........................................................................................................................................6-2

6.1.2 Storage Devices.................................................................................................................................6-2

6.1.3 Files...................................................................................................................................................6-2

6.1.4 Directories.........................................................................................................................................6-2

6.2 Managing Directories..................................................................................................................................6-2

6.2.1 Establishing the Configuration Task..................................................................................................6-2

6.2.2 Viewing the Current Directory..........................................................................................................6-3

6.2.3 Switching the Directory.....................................................................................................................6-3

6.2.4 Displaying the Directory of File........................................................................................................6-4

6.2.5 Creating a Directory.......................................................................................................................... 6-4

6.2.6 Deleting a Directory..........................................................................................................................6-4

6.3 Managing Files............................................................................................................................................6-5

6.3.1 Displaying Contents of a File............................................................................................................6-6

6.3.2 Copying a File...................................................................................................................................6-6

6.3.3 Moving a File....................................................................................................................................6-6

6.3.4 Renaming a File ................................................................................................................................6-7

6.3.5 Deleting a File...................................................................................................................................6-7

6.3.6 Deleting Files in the Recycle Bin......................................................................................................6-7

6.3.7 Undeleting Files ................................................................................................................................6-7

6.4 Configuring Batch Configuration................................................................................................................6-8

6.5 Managing Storage Devices..........................................................................................................................6-9

6.6 Configuring Prompt Modes.........................................................................................................................6-9

6.7 Example for Configuring Directory Management.....................................................................................6-10

7 Management of Configuration Files ......................................................................................7-1

7.1 Introduction.................................................................................................................................................7-2

7.1.1 Definitions.........................................................................................................................................7-2

7.1.2 Configuration Files and Current Configurations...............................................................................7-2

7.2 Displaying the Configuration of the Router................................................................................................7-2

7.2.1 Vi ewing the Intial Configuration.......................................................................................................7-2

7.2.2 Vi ewing the Current Configuration...................................................................................................7-3

7.2.3 Viewing the Running Configuration in the Current View.................................................................7-3

7.3 Saving the Current Configuration................................................................................................................7-3

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Contents

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

7.4 Clearing the Running Information...............................................................................................................7-3

7.5 Comparing Configuration Files...................................................................................................................7-4

8 FTP, TFTP and XModem ..........................................................................................................8-1

8.1 Introduction.................................................................................................................................................8-2

8.1.1 FTP....................................................................................................................................................8-2

8.1.2 TFTP .................................................................................................................................................8-2

8.1.3 XModem ...........................................................................................................................................8-2

8.2 Configuring the Router to be the FTP Server..............................................................................................8-3

8.2.1 Establishing the Configuration Task..................................................................................................8-3

8.2.2 Enabling the FTP Server ...................................................................................................................8-4

8.2.3 Configuring the Timeout Period........................................................................................................8-4

8.2.4 Configuring the Local Username and the Password..........................................................................8-4

8.2.5 Configuring Service Types and Authorization Information...............................................................8-5

8.2.6 Checking the Configuration..............................................................................................................8-5

8.3 Configuring FTP ACL.................................................................................................................................8-6

8.3.1 Establishing the Configuration Task..................................................................................................8-6

8.3.2 Enabling the FTP Server ...................................................................................................................8-6

8.3.3 Configuring the Basic ACL...............................................................................................................8-7

8.3.4 Configuring the Basic FTP ACL.......................................................................................................8-7

8.4 Configuring the Router to Be the FTP Client..............................................................................................8-8

8.4.1 Establishing the Configuration Task..................................................................................................8-8

8.4.2 Logging In to the FTP Server............................................................................................................8-8

8.4.3 Configuring File Transmission Mode................................................................................................8-9

8.4.4 Viewing Online Help of the FTP Command.....................................................................................8-9

8.4.5 Uploading or Downloading Files......................................................................................................8-9

8.4.6 Managing Directories......................................................................................................................8-10

8.4.7 Managing Files................................................................................................................................8-11

8.4.8 Changing Login Users.....................................................................................................................8-11

8.4.9 Disconnecting with FTP..................................................................................................................8-11

8.5 Configuring TFTP.....................................................................................................................................8-12

8.5.1 Establishing the Configuration Task................................................................................................8-12

8.5.2 Downloading Files Through TFTP..................................................................................................8-12

8.5.3 Uploading Files Through TFTP ......................................................................................................8-13

8.6 Limiting the Access to the TFTP Server....................................................................................................8-13

8.6.1 Establishing the Configuration Task................................................................................................8-13

8.6.2 Configuring the Basic ACL.............................................................................................................8-14

8.6.3 Configuring the Basic TFTP ACL...................................................................................................8-14

8.7 Configuring XModem...............................................................................................................................8-15

8.7.1 Establishing the Configuration Task................................................................................................8-15

8.7.2 Getting a File Through XModem....................................................................................................8-15

8.8 Configuration Examples............................................................................................................................8-16

Contents

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

8.8.1 Example for Configuring the FTP Server........................................................................................8-16

8.8.2 Example for Configuring FTP ACL................................................................................................8-18

8.8.3 Example for Configuring the FTP Client........................................................................................8-20

8.8.4 Example for Configuring TFTP ......................................................................................................8-21

8.8.5 Example for Configuring XModem................................................................................................8-23

9 Telnet and SSH...........................................................................................................................9-1

9.1 Introduction.................................................................................................................................................9-1

9.1.1 Overview of User Login....................................................................................................................9-2

9.1.2 T elnet Te rm inal Services...................................................................................................................9-2

9.1.3 SSH Terminal Services......................................................................................................................9-3

9.2 Configuring T elnet Te rminal Services.........................................................................................................9-6

9.2.1 Establishing the Configuration Task..................................................................................................9-6

9.2.2 Establishing a Telnet Connection......................................................................................................9-7

9.2.3 Scheduled Telnet Disconnection.......................................................................................................9-7

9.2.4 Checking the Configuration..............................................................................................................9-7

9.3 Configuring SSH Users...............................................................................................................................9-8

9.3.1 Establishing the Configuration Task..................................................................................................9-8

9.3.2 Creating an SSH User .......................................................................................................................9-9

9.3.3 Configuring SSH for the VTY User Interface.................................................................................9-10

9.3.4 Generating a Local RSA Key Pair...................................................................................................9-10

9.3.5 Configuring the Authentication Mode for SSH Users.....................................................................9-11

9.3.6 Configuring the Basic Authentication Information for SSH Users.................................................9-12

9.3.7 Authorizing SSH Users Through the Command Line.....................................................................9-12

9.3.8 Configuring the Service Type of SSH Users................................................................................... 9-13

9.3.9 Configuring the Authorized Directory of SFTP Service for SSH Users..........................................9-13

9.3.10 Checking the Configuration..........................................................................................................9-13

9.4 Configuring the SSH Server......................................................................................................................9-14

9.4.1 Establishing the Configuration Task................................................................................................9-14

9.4.2 Enabling the STelnet Service...........................................................................................................9-15

9.4.3 Enabling the SFTP Service..............................................................................................................9-15

9.4.4 Enabling the Earlier Version-Compatible Function.........................................................................9-15

9.4.5 Configuring the Number of the Port Monitored by the SSH Server................................................9-16

9.4.6 Enabling the Tra p Function.............................................................................................................9-16

9.4.7 Configuring the Interval for Updating the Key Pair on the SSH Server .........................................9-17

9.4.8 Checking the Configuration............................................................................................................9-17

9.5 Configuring the STelnet Client Function...................................................................................................9-17

9.5.1 Establishing the Configuration Task................................................................................................9-17

9.5.2 Enabling the First-Time Authentication on the SSH Client.............................................................9-18

9.5.3 Configuring the SSH Client to Assign the RSA Public Key to the SSH Server..............................9-19

9.5.4 Enabling the STelnet Client.............................................................................................................9-19

9.5.5 Checking the Configuration............................................................................................................9-20

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Contents

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

vii

9.6 Configuring the SFTP Client Function......................................................................................................9-20

9.6.1 Establishing the Configuration Task................................................................................................9-20

9.6.2 Configuring the First-Time Aut hentication on the SSH Client .......................................................9-21

9.6.3 Configuring the SSH Client to Assign the RSA Public Key to the SSH Server..............................9-21

9.6.4 Enabling the SFTP Client................................................................................................................9-21

9.6.5 Managing the Directory...................................................................................................................9-22

9.6.6 Managing the File............................................................................................................................9-23

9.6.7 Displaying the SFTP Client Command Help...................................................................................9-23

9.6.8 Checking the Configuration............................................................................................................9-24

9.7 Maintaining Telnet and SSH......................................................................................................................9-24

9.7.1 Debugging Telnet Terminal Services...............................................................................................9-24

9.7.2 Debugging SSH Terminal Services.................................................................................................9-25

9.8 Configuration Examples............................................................................................................................9-26

9.8.1 Example for Configuring Te lnet Term inal Services........................................................................9-26

9.8.2 Example for Connecting the STelnet Client to the SSH Server.......................................................9-27

9.8.3 Example for Connecting the SFTP Client to the SSH Server..........................................................9-33

9.8.4 Example for Accessing the SSH Server Through Other Port Numbers...........................................9-37

9.8.5 Example for Authenticating SSH Through RADIUS......................................................................9-43

10 Router Maintenance ..............................................................................................................10-1

10.1 Introduction.............................................................................................................................................10-2

10.1.1 Device Operation Management.....................................................................................................10-2

10.1.2 Electronic Label ............................................................................................................................10-2

10.2 Powering off the FIC/HIC.......................................................................................................................10-2

10.2.1 Establishing the Configuration Task..............................................................................................10-2

10.2.2 Powering off the FIC/HIC.............................................................................................................10-3

10.2.3 Checking the Configuration ..........................................................................................................10-3

10.3 Managing the Device Operation..............................................................................................................10-4

10.3.1 Establishing the Configuration Task..............................................................................................10-4

10.3.2 Specifying the Slave RPU.............................................................................................................10-5

10.3.3 Restarting the Router.....................................................................................................................10-5

10.3.4 Performing the Master/Slave Switchover......................................................................................10-6

10.4 Monitoring the Router Status ..................................................................................................................10-7

10.4.1 Displaying the Basic Device Information .....................................................................................10-7

10.4.2 Displaying the System Version Information..................................................................................10-7

10.4.3 Displaying the Restart Information of RPU..................................................................................10-8

10.5 Configuring the Electronic Label............................................................................................................10-9

10.5.1 Establishing the Configuration Task..............................................................................................10-9

10.5.2 Querying the Electronic Label.......................................................................................................10-9

10.5.3 Backing Up the Electronic Label ..................................................................................................10-9

11 System Software Upgrade ....................................................................................................11-1

11.1 Introduction.............................................................................................................................................11-2

Contents

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

viii

Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

11.1.1 System Software Upgrade.............................................................................................................11-2

11.1.2 License ..........................................................................................................................................11-2

11.2 Uploading the System Software and License Files..................................................................................11-3

11.2.1 Establishing the Configuration Task..............................................................................................11-3

11.2.2 Uploading the System Software and License to the Master RPU...............................................11-3

11.2.3 Copying the System Software and License to the Slave RPU....................................................11-4

11.2.4 Checking the Configuration...........................................................................................................11-4

11.3 Specifying the System Software for the Next Startup of the Router.......................................................11-5

11.3.1 Establishing the Configuration Task..............................................................................................11-5

11.3.2 Specifying the System Software for the Next Startup of the Master RPU .................................11-5

11.3.3 Specifying the System Software for the Next Startup of the Slave RPU....................................11-6

11.3.4 Checking the Configuration...........................................................................................................11-6

12 Patch Management.................................................................................................................12-1

12.1 Introduction.............................................................................................................................................12-2

12.2 Checking the Running of Patch in the System........................................................................................12-3

12.2.1 Establishing the Configuration Task..............................................................................................12-3

12.2.2 Checking the Running of Patch on the RPU.................................................................................12-3

12.3 Loading a Patch.......................................................................................................................................12-4

12.3.1 Establishing the Configuration Task..............................................................................................12-4

12.3.2 Uploading a Patch to the Root Directory of the Flash of the Master RPU.................................12-4

12.3.3 Copying a Patch to the Root Directory of the Flash of the Slave RPU ......................................12-5

12.4 Installing a Patch on the RPU...............................................................................................................12-5

12.4.1 Establishing the Configuration Task..............................................................................................12-5

12.4.2 Uploading the RPU Patch..............................................................................................................12-6

12.4.3 Activating the RPU Patch...........................................................................................................12-6

12.4.4 Running the RPU Patch.................................................................................................................12-6

12.5 Stop Running the RPU Patch...................................................................................................................12-7

12.5.1 Establishing the Configuration Task..............................................................................................12-7

12.5.2 Deactivating the RPU Patch.......................................................................................................12-7

12.6 Unloading the RPU Patch........................................................................................................................12-7

12.6.1 Establishing the Configuration Task..............................................................................................12-7

12.6.2 Deleting the RPU Patch.................................................................................................................12-8

A Glossary .................................................................................................................................... A-1

B Acronyms and Abbreviations ................................................................................................ B-1

Index ................................................................................................................................................ i-1

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Figures

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

Figures

Figure 1-1 architecture......................................................................................................................................1-3

Figure 2-1 Networking diagram of logging in through the console port..........................................................2-7

Figure 2-2 New connection..............................................................................................................................2-8

Figure 2-3 Setting the port................................................................................................................................2-9

Figure 2-4 Setting the port communication param e ters....................................................................................2-9

Figure 2-5 Establishing the configuration environment through WAN..........................................................2-10

Figure 2-6 Running the Telnet program on the PC.........................................................................................2-11

Figure 2-7 Establishing the remote configuration environment.....................................................................2-11

Figure 8-1 Using FTP to download files.........................................................................................................8-16

Figure 8-2 FTP ACL.......................................................................................................................................8-18

Figure 8-3 Configuring the FTP client............................................................................................................8-20

Figure 8-4 Using TFTP to download files......................................................................................................8-21

Figure 8-5 Setting the Base Directory of the TFTP server.............................................................................8-22

Figure 8-6 Specifying the file to be sent.........................................................................................................8-23

Figure 9-1 Telnet client services .......................................................................................................................9-2

Figure 9-2 Usage of Telnet shortcut keys.........................................................................................................9-3

Figure 9-3 Establishing an SSH channel in a LAN..........................................................................................9-4

Figure 9-4 Establishing an SSH channel in a WAN..........................................................................................9-4

Figure 9-5 Networking diagram of the Telnet terminal services mode...........................................................9-26

Figure 9-6 Networking diagram of connecting the STelnet client to the SSH server.....................................9-28

Figure 9-7 Networking diagram of connecting the SFTP client to the SSH server........................................9-34

Figure 9-8 Networking diagram of accessing the SSH server through other port numbers............................9-38

Figure 9-9 Networking diagram of authenticating the SSH through RADIUS..............................................9-43

Figure 12-1 Conversion between the statuses of a patch................................................................................12-2

Quidway NetEngine20/20E Configuration Guide - Basic Configurations T ables

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

Tables

Table 1-1 System service features.....................................................................................................................1-4

Table 3-1 Command line views ........................................................................................................................3-5

Table 3-2 Common error messages of the command line.................................................................................3-8

Table 3-3 Access the history commands...........................................................................................................3-9

Table 3-4 Editing functions...............................................................................................................................3-9

Table 3-5 Displaying functions.......................................................................................................................3-10

Table 3-6 Metacharacter description...............................................................................................................3-11

Table 3-7 System-defined shortcut keys .........................................................................................................3-12

Table 5-1 Example for the absolute numbering................................................................................................5-3

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Contents

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

Contents

About This Document..................................................................................................................... 1

Quidway NetEngine20/20E Configuration Guide - Basic Configurations About This Document

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

About This Document

Purpose

This part describes the organization of this document, product version, intended audience, conventions, and update history.

Related Versions

The following table lists the product versions related to this document.

Product Name Version

Quidway NetEngine20/20E Series Routers V200R005

Intended Audience

This document is intended for:

Commissioning engineer

Data configuration engineer

Network monitoring engineer

System maintenance engineer

Organization

This document consists of six chapters and is organized as follows.

Chapter Content

1 Product Overview This chapter describes the architecture, functional features

and main functions of the NE20/20E.

2 Establishment of the Configuration Environment

This chapter describes the procedures to set up the configuration environments through CON, Telnet, and AUX.

About This Document

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

Chapter Content

3 CLI Overview This chapter describes the command line interface,

command levels, command views and hot keys.

4 Basic Configurtion This chapter describes how to configure the basic system

environment on the router

5 User Management This chapter describes the basic concepts of the user

interface and the user management

6 File System This chapter describes the file system and its configuration,

uploading and downloading files through FTP, TFTP and XModem, and the management of configuration file.

7 Management of Configuration Files

This chapter describes how to configure the file management.

8 FTP,TFTP and XModem This chapter describes how to configure the basic functions

of the FTP server.

9 Telnet and SSH This chapter describes how to log in to the router through

Telnet and configure the router.

10 Router Maintenance This chapter describes the principle and concepts of the

router maintenance.

11 System Software Upgrade

This chapter describes the pr inciple and concepts of th e system software upgrade.

12 Patch Management This chapter describes the principle and concepts of patch

management.

Appendix A Glossary & B Acronyms and Abbreviations

This chapter collates glossary and frequently used acronyms and abbreviations in this manual.

Index This chapter collates important keywords used in this

manual to help the reader to access the required information quickly.

Conventions

Symbol Conventions

The symbols that may be found in this document are defined as follows.

Symbol Description

Indicates a hazard with a high level of risk, which if not avoided, will result in death or serious injury.

Quidway NetEngine20/20E Configuration Guide - Basic Configurations About This Document

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

Symbol Description

Indicates a hazard with a medium or low level of risk, which if not avoided, could result in minor or moderate injury.

Indicates a potentially hazardous situation, which if not avoided, could result in equipment damage, data loss, performance degradation, or unexpected results.

Indicates a tip that may help you solve a problem or save time. Provides additional information to emphasize or supplement

important points of the main text.

General Conventions

The general conventions that may be found in this document are defined as follows.

Convention Description

Times New Roman Normal paragraphs are in Times New Roman.

Boldface

Names of files, directories, folders, and users are in boldface. For example, log in as user root.

Italic Book titles are in italics. Courier New

Examples of information displayed on the screen are in Courier New.

Command Conventions

The command conventions that may be found in this document are defined as follows.

Convention Description

Boldface

The keywords of a command line are in boldface.

Italic Command arguments are in italics. [ ] Items (keywords or arguments) in square brackets [ ] are

optional.

{ x | y | ... } Optional items are grouped in braces and separated by

vertical bars. One item is selected.

[ x | y | ... ] Optional items are grouped in brackets and separated by

vertical bars. One item is selected or no item is selected.

{ x | y | ... } * Optional items are grouped in braces and separated by

vertical bars. A minimum of one item or a maximum of all items can be selected.

About This Document

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

Convention Description

[ x | y | ... ] * Optional items are grouped in brackets and separated by

vertical bars. Several items or no item can be selected.

&<1-n>

The parameter before the & sign can be repeated 1 to n times.

# A line starting with the # sign is comments.

GUI Conventions

The GUI conventions that may be found in this document are defined as follows.

Convention Description

Boldface

Buttons, menus, parameters, tabs, windows, and dialog titles are in boldface. For example, click OK.

> Multi-le ve l m enus are in boldface and separated by the ">"

signs. For example, choose File > Create > Folder.

Keyboard Operations

The keyboard operations that may be found in this document are defined as follows.

Format Description

Key

Press the key. For example, press Enter and press Tab.

Key 1+Key 2 Press the keys concurrently. For example, pressing

Ctrl+Alt+A means the three keys should be pressed

concurrently.

Key 1, Key 2 Press the keys in turn. For example, pressing Alt, A means

the two keys should be pressed in turn.

Mouse Operations

The mouse operations that may be found in this document are defined as follows.

Action Description

Click Select and release the primary mouse button without

moving the pointer.

Double-click Press the primary mouse button twice continuously and

quickly without moving the pointer.

Quidway NetEngine20/20E Configuration Guide - Basic Configurations About This Document

Issue 05 (2010-01-30)

Huawei Proprietary and Confidential

Action Description

Drag Press and hold the primary mouse button and move the

pointer to a certain position.

Update History

Updates between document issues are cumulative. Therefore, the latest document issue contains all updates made in previous issues.

Updates in Issue 05 (2010-01-30)

For fifth commercial release.

Updates in Issue 04 (2008-07-24)

For fourth commercial release.

Updates in Issue 03 (2007-07-20)

For third commercial release.

Updates in Issue 02 (2007-06-15)

For second commercial release. Modified the naming method of the manual version.

Updates in Issue 01(2007-03-18)

The commercial release has the following updates: Initial field trial release.

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Contents

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

Contents

1 Product Overview ......................................................................................................................1-1

1.1 Introduction...................................................................................................................................................1-2

1.1.1 NE20/20E.............................................................................................................................................1-2

1.1.2 Architecture.......................................................................................................................................... 1-2

1.1.3 VRP......................................................................................................................................................1-3

1.2 Functional Features.......................................................................................................................................1-4

1.3 Functions.......................................................................................................................................................1-9

1.3.1 File System ........................................................................................................................................1-10

1.3.2 SNMP Configuration.........................................................................................................................1-10

1.3.3 T erm inal Services...............................................................................................................................1-11

1.3.4 High Reliability..................................................................................................................................1-11

1.3.5 Interfaces............................................................................................................................................1-12

1.3.6 Link Layer Protocols..........................................................................................................................1-12

1.3.7 IP Services..........................................................................................................................................1-13

1.3.8 Unicast Routing Protocols .................................................................................................................1-13

1.3.9 Multicast Routing Protocols...............................................................................................................1-14

1.3.10 MPLS Features.................................................................................................................................1-14

1.3.11 VPN Services...................................................................................................................................1-15

1.3.12 QoS..................................................................................................................................................1-15

1.3.13 Security Features..............................................................................................................................1-17

Quidway NetEngine20/20E Configuration Guide - Basic Configurations Figures

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

iii

Figures

Figure 1-1 architecture.......................................................................................................................................1-3

Quidway NetEngine20/20E Configuration Guide - Basic Configurations T ables

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

Tables

Table 1-1 System service features ......................................................................................................................1-4

Quidway NetEngine20/20E Configuration Guide - Basic Configurations 1 Product Overview

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

1-1

1 Product Overview

About This Chapter

The following table shows the contents of this chapter.

Section Description

1.1 Introduction This section describes the characteristics of the

NE20/20E.

1.2 Functional Features This section describes the functional features of the

NE20/20E.

1.3 Functions This section describes the main functions of the

NE20/20E.

1 Product Overview

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

1-2 Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

1.1 Introduction

This section covers what you need to learn about the NE20/20E:

NE20/20E

Architecture

VRP

1.1.1 NE20/20E

The NE20/20E router is grouped into NE20-2, NE2 0-4 a nd NE2 0-8 in terms of the number of slots. The NE20E series router has only one type, the NE20E-8. The equipment structure and the system of the NE20E are almost the same as the NE20. All of them adopt modular architecture, providing many kinds of optional multifunctional interface modules such as High-speed Interface Card (HIC) and Flexible Interface Card (FIC).

The NE20/20E series routers provide coherent network interface, user interface and management interface as well as strong flexibility and configurability. The routers integrate many emerging technologies, such as Multi-protocol Label Switching (MPLS), Virtual Private Network (VPN), Quality of Service (QoS), traffic engineering, multicast, and user management. The routers also support abundant link layer protocols. In networking applications, as high-performance convergence devices, the routers can provide overall service processing capacity and flexible network solutions, and thus effectively add the network value and save the construction cost.

1.1.2 Architecture

Based on the TCP/IP structure model, the NE20/20E supports multiple data link layer protocols, network layer protocols and application layer protocols, as shown in Figure 1-1.

Quidway NetEngine20/20E Configuration Guide - Basic Configurations 1 Product Overview

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

1-3

Figure 1-1 architecture

Service Control Plane(SCP)

Protocol Client

AAA/Local-MCM

Data Forwarding Plane(DFP)

FE API

FEC

FE DRV

General Control Plane(GCP)

Routing

URP4/6 MRP4/6

VPN_ExTE_Ex

RM4/6

VPN

L2VPN/L3VPN

IP Stack

Application Layer

Socket Layer

TCP4/6 UDP4/6

IP4/6 ICMP4/6

MPLS

CSPF/CR-LDP/

RSVP-TE

Net Interface

IFNET/PPP/ETH/

ATM/Tunnel

Security

FireWall/ACL/

NAT QoS

BW-M/QoSM/

RSVP

System Manage

Plane(SMP)

Config Management

CLI/SNMP/WebUI

CMO

Information

Management

Trace/State Multi

Languages

Device

Management

Hot Plug

Switch Over

System Servic e Plane(SSP)

RPC

IPC

OSAL

Operating System

1.1.3 VRP

The Versatile Routing Platform (VRP) is a versatile operating system platform. It is developed for the data communication products of Huawei Technologies Co., Ltd. (hereinafter referred to as Huawei). VRP takes the IP service as its core service, and has a modular architecture. It can provide rich functional features and scalability based on applications.

With TCP/IP as its core protocol suite, VRP is Huawei's proprietary network operating system and it can do the following:

Integrates routing, QoS, VPN, security and IP voice in the operating system.

Provides excellent data forwarding capabilities for routing equipment by using the IP TurboEngine technology.

Provides various hardware platforms with consistent network interface, user interface and management interface.

Provides users with flexible application solutions.

At the same time, the VRP is a sustainable platform. It protects users' investments to the maximum extent.

1 Product Overview

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

1-4 Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

1.2 Functional Features

Table 1-1 System service features

Service Features Description

LAN protocol

Ethernet VLAN

Network interconnection

Link Layer protocol

PPP and MP HDLC (High-level Data Link Control) Frame Relay ATM PPPoE, IPoA, PPPoA and PPPoEoA

IP service ARP

Domain name resolution NAT IP unnumbered address DHCP relay and DHCP server IP policy-based routing IP packet filtering

Protocol stacks

IPv4 and IPv6 dual protocol stacks IPv6 forwarding through the hardware

IPv4 routing Static route management

Dynamic unicast routing protocols: RIP-1/RIP-2 OSPF IS-IS BGP-4/MBGP/BGP VPN V4 Routing policies

IPv6 routing IPv4-to-IPv6 transition technologies: manual

configuration of the tunnel, automatic configuration of the Tunnel, 6to4 tunnel, NAT-PT on the hardware

IPv6 static route, BGP4/BGP4+, RIPng, OSPFv3, and ISISv6 dynamic routing protocol

IPv6 MIB: ICMPv6 MIB, UDP6 MIB, TCP6 MIB, and IPv6 MIB

Network protocol

IP Multicast protocols

IGMP PIM-DM, PIM-SM PIM-SSM MBGP MSDP

Quidway NetEngine20/20E Configuration Guide - Basic Configurations 1 Product Overview

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

1-5

Service Features Description

MPLS MPLS Basic MPLS forwarding

MPLS LDP MPLS TE MPLS QoS Hierarchy of PE (HoPE)

L2VPN MPLS L2VPN (Martini, Kompella, CCC and

SVC) VPLS L2TP

PWE3 Single- and multi-hop PWs in LDP mode

Static PW, dynamic PW, and RSVP-PW LSP, GRE and TE tunnels Pseudo wire templates Interconnection with different media PW QoS Many encapsulation modes: Ethernet, VLAN,

FR, PPP, HDLC, ATM-n-to-1, ATM-1-to-1, and ATM-SDU

Multi-hop LDP-PW loop detection PWE3 inter-AS Interworking between PWE3 and VPLS ATM QoS class, CLP, DSCP, 801.1p, and MPLS

EXP mapping ATM OAM transparent transmission

VPN

L3VPN MPLS/BGP VPN, serving as PE/ P

Inter-AS VPN Hierarchy of VPN (HoVPN) GRE

AAA service CHAP authentication

PAP authentication RADIUS HWTACACS Local user management

Network security

IPSec encryption

IKE and IPSec through hardware, including IKE negotiation, IPSec packet process and SA management

1 Product Overview

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

1-6 Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

Service Features Description

NetStream Making a NetStream flow with a septet,

including the source IP address, destination IP address, source port number, destination port number, IP protocol type, IP TOS, and ingress information

Recording and measuring information of traffic The routing and peer entity information: the next

hop address, source AS number, destination AS number, source address mask, destination address mask

Exporting statistics packets in format V5, V8 and V9

Convergence according to AS, protocol-port, source-prefix, destination-prefix, prefix and ToS

Connecting normal ageing and compelled ageing configured by users

Monitoring TCP link state Making a flow with fragments (the first

fragment) NAT NetStream Inbound/Outbound NetStream of MPLS Collecting packet information either in definite

proportion or random proportion Multicast data flow ATM, POS, ETH (including high speed and low

speed card FE/GE), VLAN sub-interface, E1, HSSI and CE1 statistics

NAT Pure IP address translation, and simultaneous

translation of IP address and port number Load balancing between multiple public network

egresses Internal servers Hybrid addressing of internal networks Various NAT ALGs One public network to multiple private networks,

and one private network to multiple public networks

Traffic limit and rate limit to specific users Traffic limit to BT NAT statistics NAT log

Quidway NetEngine20/20E Configuration Guide - Basic Configurations 1 Product Overview

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

1-7

Service Features Description

Other security features

Terminal access security IP Packet filtering (interface based ACL and

time-range based ACL) Firewall (packet filtering firewall and state

firewall) Port mirroring Unicast Reverse Path Forwarding (URPF)

Hierarchical protection of commands to ensure that the unauthorized users have no access to the router

Redundancy hot backup

1:1 backup of RPU and NPU Power 1+1 redundancy backup Power, fan and service interface module hot

plugging as well as automatic adjustment of fan

rotate speed GR Protocol-level GR: IS-IS, OSPF, BGP and LDP FRR IP FRR

MPLS TE FRR

VPN FRR

LDP FRR BFD Creating, deleting and modifying a BFD session

Bi-directional fault detection for links

Deleting faults in asynchronous and query modes

BFD detection of single- and multi-hop links

Providing information of link state for the

application layer by BFD

Automatic switchover for protection

Device reliability

Other features

backup center

VRRP

NextHop Backup

Maintainability Automatic fault diagnosis function

remote configuration and maintenance through AUX

1 Product Overview

Quidway NetEngine20/20E

Configuration Guide - Basic Configurations

1-8 Huawei Proprietary and Confidential

Issue 05 (2010-01-30)

Service Features Description

Traffic classification

Simple traffic classification

Complex traffic classification, based on the port

number, layer 2, layer 3 and layer 4 packet

information Traffic

policing and shaping

Traffic policing and shaping based on srTCM

and trTCM

Services such as EF and AF based on Diff-Serv

GTS Congestion

management

LLS, LLQ, NLS, PQ, CQ, WFQ, and CBWFQ

Congestion avoidance

RED, WRED and SARED

Policy-based routing

Route re-direction, and distribution of LSP

explicit route of MPLS MPLS QoS Mapping between DSCP and EXP at the domain

boundary L2 QoS 802.1p mark and DSCP/IP Precedence mark

QoS

HQoS Hierarchical QoS

Quidway NetEngine20/20E Configuration Guide - Basic Configurations 1 Product Overview

Issue 05 (2010-01-30) Huawei Proprietary and Confidential

1-9

Service Features Description

Command line interface

Local configuration through the console port

Local configuration or remote configuration

through the Aux port

Local configuration or remote configuration

through Telnet

Local configuration or remote configuration

through SSH login

Command hierarchical protection to prevent

unauthorized users from accessing the router

Detailed debugging information that help

diagnose network faults

Network test tools such as tracert and ping

commands to quickly diagnose the network

The Telnet command to log in to and manage

other routers

FTP Server/Client: to download and upload

configuration files and application programs

through FTP

TFTP Client: to download and upload

configuration files and application programs

through TFTP

To download configuration file s and application

programs locally by using the Xmodem protocol

Log function

Virtual file system

User-interface configuration: multiple modes of

authentication and authorization for login users Time service Time zone

NTP Server and NTP Client Online

service

Online loading

Online upgrade Information

processing center

Outputting alarm information and log

information to the log host and login user

terminal through SNMP Agent and cache buffer

Configuration management

Network management

SNMP V1/V2c/VC3

RMON and RMON2

1.3 Functions

This section covers the following contents:

+ 207 hidden pages

Huawei Quidway NetEngine 20, Quidway NetEngine 20E, V200R005 Configuration Manual

Specifications and Main Features

Frequently Asked Questions

User Manual