Hypertec ISDN 10T Router User Manual
Introduction
Hypertec ISDN 10T Router
USER'S MANUAL
Information in this document is subject to change without
notice. All rights reserved. All brand names are registered
trademarks of their respective companies.
1
Introduction
WARNING
This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in
accordance with the instruction manual, may cause interference to radio communications. It has been
tested and found to comply with the limits for a Class A computing device pursuant to Subpart J of Para.
15 of FCC Rules, which are designed to provide reasonable protection against such interference when
operated in a commercial environment. Operation of this equipment in a residential area is likely to cause
interference in which case the user at his own expense will be required to take whatever measures may be
required to correct the interference.
NOTICE
The information contained in this manual is subject to change without notice
No warranty is made of any kind with regard to this material, including but not restricted to, the implied
warranty of fitness for a particular purpose. The vendor shall not be liable for errors contained herein or
for incidental or consequential damages in connection with the furnishing, performance or use of this
material.
Windows, Windows95, and Windows NT are trademarks of Microsoft Corporation
All rights reserved
2
Introduction
Contents
Contents 3
1 INTRODUCTION 1-1
About this Manual 1-4
2 INSTALLATION 2-1
General 2-1
Hardware Installation 2-1
Software Installation 2-3
Installing EasyWeb 2-4
3. Concepts and Principles of Operation 3-1
ISDN Overview 3-1
Data Communication Services 3-3
Voice Communication Service 3-15
Basic Rate ISDN Provisioning for United States and Canada 3-15
4. Configuration and Management 4-1
Introduction 4-1
NMS 4-2
Monitoring Sta tus with ClearMon. 4-40
Managing the HyperRoute from a Console 4-40
Managing the HyperRoute from a Browser 4-42
5. Troubleshooting 5-1
Troubleshooting Tips 5-1
Index 6
3
Introduction
INTRODUCTION
The Hypertec ISDN 10T Router is a compact router/bridge designed for small office and home
applications by providing a consolidated data and voice link to Internet, Intranet, and the telephone
network over a single ISDN line.
Figure 0-1 The Hypertec ISDN 10T Router
The Hypertec ISDN 10T Router provides an ideal means of connecting a local area network consisting of
Ethernet stations to the Internet through a local Internet Service Provider (ISP) and using conventional
voice and fax services over the same ISDN line.
Using the Hypertec Router, users at Ethernet workstations can communicate freely with each other over a
private Intranet and can access Internet servers all via the same ISDN line. The Hypertec Router
establishes the ISDN connection when required and automatically drops when it is not in use. The
Hypertec ISDN Router is of equal value in linking satellite branches with Novell IPX b ased networks to
their head office Novell Networks, using IPX spoofing to minimise call connection time.
By using up to 128 KBPS bandwidth of an ISDN digital line, the Hypertec ISDN Router overcomes the
slow response times, noise and data corruption which may be exhibited by modems using analog lines.
The Hypertec ISDN Router includes all the hardware and software necessary for accessing the Internet
and corporate LANs.
The Hypertec ISDN Router includes full management capabilities, which permit easy configuration o f the
router and ISDN parameters. Management may be performed from a console, through SNMP network
management software, or through a web browser.
4
Introduction
A schematic of how the Hypertec ISDN Router is used is shown in Figure 0-2 A Hypertec ISDN Router
Application.
Figure 0-2 A Hypertec ISDN Router Application
The Hypertec ISDN Routersupports the following features:
ISDN
• U or ST interfaces
• Switched ISDN service for various switches worldwide :
National ISDN, ATT 5ESS, DMS switches in North America
EuroISDN(ETSI) switches in Europe
NTT switches in Japan
EuroISDN switches in Tai wan, Singapore
ATT 5ESS switches in Korea
• Detailed accounting including dialed numbers, disconnect causes, frame statistics
• Auto Dial-out triggered by outgoing LAN traffic, auto disconnect due to inactive connection
• Bandwidth-On-Demand, 0<->1<->2 bandwidth management,1B to 2B if traffic increases
beyond threshold,. 2B to 1B if traffic falls below threshold, 1B to 0B if traffic is idle for more
than an pre-defined period
Ethernet
• 4 port Ethernet Repeater with unlimited LAN users
Internet/Intranet
• PPP, MultiLink PPP (MLPPP), LCP, IPCP, IPXCP, and BCP
• Internet and Intranet connection profiles. Allows one B channel for Internet connection and the
other B channel for intranet connection
• STAC LZS data compression with 128 KPBS -> 512 KBPS, 4:1 compression ratio on normal
text file
• Static or dynamic IP address assignment
• Static or dynamic IP Route
5
Introduction
Security
• CLID (caller ID)
• Call-Back (hang-up and dial the caller)
• PAP/CHAP ( PPP authentication protocol)
• Access List (filtering of packets bases upon IP address)
• NAT (network address translation). Hides internal IP addresses from outside world, no need to
change existing IP address assignments, allows the subscription of single IP address account for
the entire LAN.
Network Management
• From local console, NMS/SNMP or Web Browser/HTTP
• NMS runs on Windows 3.1, Windows95 and Windows NT platforms
• Alarm warning o n ISDN usage
• Configuration file save and restore
Analog Services
• 2 RJ-11 ports for telephone, modem or fax analog devices
Router Software
• Software up graded throug h TFTP and stored in FLASH memory
6
Introduction
About this Manual
Chapter 2, Installation. This chapter provides details of how to install the Hypertec ISDN Router
hardware and software. Guidance is provided about the ISDN line that is required from your telephone
company and the personal computer requirements to use the Network Management System software.
Chapter 3, Concepts and Principles of Operation. This chapter covers the concepts and principles of
operation of three major topics : ISDN, Data Services, and voice services. The Hypertec ISDN Router
operation principles in the area of Internet/Intranet profiles, and bandwidth management are discussed in
detail. This chapter also includes information about ISDN line provisio ning.
Chapter 4, Set-up and Configuration. This chapter provides details of how to setup and configure your
Hypertec ISDN Router for operation. This chapter provides brief details of how to perform this from a
console or from a Browser. Full details are provided for the recommended method of setup and
configuration from the NMS software provided with the Hypertec ISDN Router.
Chapter 4, Troubleshooting. This chapter provides troubleshooting procedures in the unlikely event that
Hypertec ISDN Router does not function properly.
An index is provided at the end of the manual.
Hypertec ISDN 10T Router Packing List:
Your Hypertec ISDN 10T Router should contain the following:
• The Hypertec ISDN 10T Router
• Diskette : NMS software
• Express Route Manual
• ISDN Cable: RJ45!Black color, 4 copper wire with different color, 6 feet"RJ45
• DB cable: DB9 female!1.4meter "DB9 male
• DB converter: DB9 male !"DB 25 female
• Power Adapter: Output rate at 15DVC 600mA
7
Installation
INSTALLATION
General
The Hypertec ISDN 10T Router is shipped in a box, which contains the following items:
• The Hypertec ISDN 10T Router
• One Power Adapter with cable
• One ISDN cable, 6 foot long with an RJ45 connector at each end
• One data cable with a DB9 connector at each end
• One changer DB9 (male) to DB25 (female)
• Two 3
• One 3
1
/2” diskette containing the Hypertec ISDN 10T Router NMS software
1
/2” diskette containing the Hypertec ISDN 10T Router EasyWeb software
• This Hypertec ISDN 10T Router user manual
Check the contents of the box and ensure that everything is included. If there are any items that are
missing or appear to be damaged, replace all the items back in the box and contact your sales
representative.
Hardware Installation
Before installing the hardware, you will need:
A 100 to 230 VAC wall outlet within a few feet of where you intend to place the Hypertec ISDN
10T Router.
An ISDN BRI line RJ45 termination within a few feet of where you intend to place the Hypertec
ISDN 10T Router.
If you intend to connect an analog modem, telephone or fax to your Hypertec ISDN 10T Router,
you will need a standard RJ11 telephone cable for each of the connected devices.
Each Ethernet LAN connection to the Hypertec ISDN 10T Router must use a normal straight
through twisted pair cable with an RJ45 connector. If the LAN employs coaxial cable, an adapter
converting the coaxial cable to a twisted pair RJ45 cable must be used.
All connections during the hardware installation are made at the Hypertec ISDN 10T Router rear
panel shown in Figure 0-1, Hypertec ISDN 10T Router Rear Panel.
Power Phone1
DIN RJ 11 RJ 45 DB 9 RJ 45
Phone2
ISDN
Console
Ethernet
Power
Cord
To FAX or
Telephone
Lines
To ISDN
Line
To PC or Terminal
Console
To Ethernet Hubs
or Stations
Figure 0-1, Hypertec ISDN 10T Router Rear Panel
1
Installation
1. Determine the place where the Hypertec ISDN 10T Router is to reside, it is designed to rest on a
flat level surface such as a desktop or table. Make sure that an AC power source and the ISDN
termination are nearby.
Connect the Ethernet LAN to any or all of the four RJ 45 ports labeled Ethernet using cables
with RJ45 connectors. You may daisy-chain the Hypertec ISDN 10T Router embedded repeater
to other external Ethernet hubs to accommodate more than 4 LAN users by using a cross-over
RJ45 cable (see Figure 0-2, Using Ethernet Hubs).
Figure 0-2, Using Ethernet Hubs, all Ethernet stations can access the Internet
through the Hypertec ISDN 10T Router
2. Connect the ISDN line to the Hypertec ISDN 10T Router using the supplied RJ45 cable.
Connect one end to the ISDN line termination and the other end to the RJ45 on the Hypertec
ISDN 10T Router rear panel labeled ISDN. If your Hypertec ISDN 10T Router is equipped with
ST interface, use the same RJ45 cable to connect the Hypertec ISDN 10T Router to the NT1
device (normally provided by the telephone company).
3. If you intend to connect analog devices such as modems, telephones or faxes to the Hypertec
ISDN 10T Router, use standard telephone RJ11 cable and connect them to the two RJ11 ports
on the Hypertec ISDN 10T Router rear panel labeled Phone1 and Phone2. These are general
purpose ports and either can be used for any analog devices, phone, modem, fax machine.
4. If you intend to use an alphanumeric terminal as a console for managing the Hypertec ISDN
10T Router, connect its RS232 port to the DB9 port on the Hypertec ISDN 10T Router rear
panel label ed Console. Use the DB9 to D B9 straight through cable. You may need a DB9 to
DB25 adapter at the terminal end if the terminal RS232 uses a DB25 connector.
5. Apply power to Hypertec ISDN 10T using the AC power adapter and cable supplied with the
Hypertec ISDN 10T Router. Connect the end of the cable with the small round DIN connector
to the DIN port on the rear panel of the Hypertec ISDN 10T Router labeled Power. Plug the
adapter into the AC wall outlet.
There is no ON/OFF switch on the Hypertec ISDN Router, when the adapter is plugged into the
wall outlet, the Hypertec ISDN 10T Router is automatically ON and is operational.
2
Installation
Software Installation
The Hypertec ISDN 10T Router software diskettes contain two software packages, namely, NMS
and EasyWeb.
The Hypertec ISDN 10T Router Network M anagement System (NMS ) is used to manage the
Hypertec ISDN 10T Router from a Windows based PC equipped with a TCP/IP protocol stack.
NMS communic ates with the Hypertec ISD N 10T Router through Simple Network Management
Protocol (SNMP)
NMS consists of two applications, One is the SNMP management which is used to configure the
Hypertec ISDN 10T Router router and the other is Remote Monitor which displays the Hypertec
ISDN 10T Router real-time status in a front panel like mini-window.
EasyWeb, which also runs on a Windows95/NT (not Windows 3.1) based PC on the attached
Ethernet. EasyWeb is a proxy web server and acts as an adjunct to a PC web browser. EasyWeb
translates HTTP requests into SNMP requests and forwards them to the Hypertec ISDN 10T
Router. Likewise, SNMP responses from the Hypertec ISDN 10T Router are translated into HTTP
responses and delivered to the browser. EasyWeb makes it possible to manage the Hypertec ISDN
10T Router from any PC with a web browser.
Installing the Hypertec ISDN 10T Router NMS
1. Select a Windows-based PC on the Ethernet network that is attached to the Hypertec ISDN
10T Router directly or indirectly through another repeater. Insert the supplied Hypertec ISDN
10T Router NMS software diskette into the disk drive.
2. Under Windows 95/NT select Run in the Start Menu and type A:\Setup.exe in the Open field
and click OK.
Under Window 3.1 select Run in the File menu of the Program Manager window and type
A:\Setup. exe in the Command Line, and click OK.
Note: If the designation of the floppy disk drive is B: use this instead of A:.
3. The setup program will assign a default directory for the installed program. You will be asked
to either accept the default directory or assign a different one.
4. When the setup program is finished, you will see:
NMS and Remote Monitor in the Start/Programs menu under Windows 95/NT.
The NMS and Remote Monitor icons under Windows 3.1 (see Figure 0-3, Hypertec ISDN 10T
Router Software Icons) are :.
Figure 0-3, Hypertec ISDN 10T Router Software Icons
5. When the setup is complete, the programs may be launched. Details of launching and
operating the programs are described in Chapter 3.
3
Installation
Uninstalling NMS
Under Window95/NT you ca n uninstall NMS by selectin g Add/Remove Programs in the
Start/Settings/Control Panel window. Select NMS from the list and click the Add/Remove button.
Installing EasyWeb
The procedure for installing EasyWeb depends upon whether your system has an installed HTTP
server or not.
Installing EasyWeb if there is NO installed HTTP server.
1. Select a Windows95/NT-based PC on the Ethernet network that is attached to the Hypertec
ISDN 10T Router and there is no HTTP server running. Stop the active HTTP server if there
one. Insert the supplied Hypertec ISDN 10T Router EasyWeb software diskette into the disk
drive.
2. Select Run in the Start Menu and type A:\Setup.exe in the Open field and click OK.
Note: If the designation of the floppy disk drive is B: use this instead of A:.
3. The setup program will assign a default directory for the installed pro gram. You will be asked
to either accept the default directory or assign a different one.
4. When the setup program is finished, the option will appear in the Start/Progra ms.
5. When the setup is complete, the programs may be launched. Details of launching and
operating the programs are described in Chapter 3.
Installing EasyWeb if there is an installed HTTP server.
1. Select a Windows95/NT-based PC on the Ethernet network that is attached to the Hypertec
ISDN 10T Router. Insert the supplied Hypertec ISDN 10T Router EasyWeb software diskette
into the disk drive.
2. Select Run in the Start Menu and type A:\Setup.exe in the Open field and click OK.
Note: If the designation of the floppy disk drive is B: use this instead of A:.
3. The EasyWeb setup program will install all the HTML files and the cgi executable file that
will be required to run EasyWeb. To make these files accessible to the browser you must
administer your existing web server.
4. Copy the cgi-bin file installed by Setup (found in the <install path>\EasyWeb directory) to the
directory specified by your web server cgi-bin. to the directory specified by your web
server cgi-bin. X
Note: <install path> is the path that was used to install EasyWeb during t he setup process
You may have t o consult yo ur web server vendor to find out how to configure aliases and
directories.
4
Installation
Example using the Microsoft Personal web server on Win95.
1. Run the Microsoft Personal web server on Windows 95
2. Double click the icon on the right end of the task bar. A tagged Personal Web Server Properties)
dialog box pops up.
3. Select the Administration page.
4. Press the Administration button to launch the default web browser on your system.
5. The Internet Services Administration web page is shown on the browser. Select WWW
Administration to bring up the Internet Services Administrator-WWW page.
6. Select directories. A list of directories and aliases is displayed.
7. Add an alias for the EasyWeb html alias.
a) Click the hyperlink Add under Action
b) Enter the path of the installed web pages (<install path>\EasyWeb\).
c) Enter the alias name, for example, EasyWeb.
d) Set the access mode to READ
8. If cgi-bin is defined in the directory list, copy the cgi files into this director y. Other wise add the
cgi-bin alias.
a) Click the hyperlink Add under Action.
b) Enter the path of the installed cgi-bin file (<install path>\EasyWeb\cgi-bin)
c) Enter the alias name as cgi-bin.
d) Set the access mode to Execute and Read
Restart your web server. You can access by the URL: http//<your web server
name>/EasyWeb/login.htm.
Concepts and Principles of Operation
Hypertec ISDN 10T Router provides two types of communication services, namely, data communication
services and voice communication services.
The data communication service enables the LAN users to access the Internet resources by an ISDN dialup to an ISP, and access the corporate resources by the ISDN dial-up to the office.
The voice communication service enables users to place or receive phone calls using the ordinary analog
telephone, modem, or fax machine.
In this chapter, three major topics : ISDN, Data Service, and voice service are discussed in details. This
chapter also includes information about ISDN line provisioning, and the Hypertec ISDN 10T Router
operation principles in the area of Internet/Intranet profiles, and bandwidth management.
ISDN Overview
ISDN stands for Integrated Service Digital Network. The service is designed to deliver data, voice, video
traffic in digital format. ISDN Basic Rate Interface (BRI) consists of 2B+D channels. The D channel at 16
KBPS is mainly used for ISDN signaling to establish or tear down the 2 bearer (B) channels. Each B
channel operating at 64 KBPS is capable of delivering data or voice service. Although standardised by
international standard body IT U, many countries and regions implement their ISDN network slightly
different from each other. The Hypertec Router is designed to support different ISDN switches for
different countries and regions.
5
Concepts and Principles of Operation
Physical Interface
The ISDN physical interface is a available in two types, U and S/T. The S/T interface relies on a external
device called NT1 to connect the user equipment to the ISDN line. The S/T interface is used in most parts
of the world. The U interface, widely used in North America, is designed for user equipment with built-in
NT1. The NT1 (also called ISDN DSU) built-in ISDN device is also allowed In Japan. The Japanese U
interface however works differently from the rest of the world.
ISDN Switch Variants
When your Hypertec Router is delivered, it is preset to use a default ISDN variant. The ISDN variant is
the type of ISDN operation run by your Telephone company.
Interface Type National ISDN Variants Default Setting
U North American National ISDN
S/T Japan NTT
S/T Rest of the World EURO-ISDN
You must have the right IS DN variant (switch) configured as provided by your ISDN service provider
or telephone company.
6
Concepts and Principles of Operation
Directory numbers
A directory number is the address or telephone number for the ISDN line assigned by your ISDN service
provider or telephone company. The number of directory numbers allocated depends on which Service
Provider you are using. If you are using an NI-1 line, you will be assigned one directory number per Bchannel. Otherwise, you will be assigned one directory number per device.
Service Profile Identifiers (SPIDs)
Note: Service Profile Identifiers are only allocated by Service Providers in North America.
When you order an ISDN service, your Service Provider needs to know which ISDN features you
require, for example, Calling Line Identification (Caller ID). This is known as a service profile. Your
service provider then allocates you a unique Service Profile Identifier (SPID) that allows you to use
these particular features.
Depending on your ISDN variant, you will have none, one or two SPIDs assigned to your ISDN line a s
shown below.
ISDN Variant Directory numbers SPIDs
AT&T 5ESS P-P 1 (1 per device) None
AT&T 5ESS M-P 2 (1 per B-channel) 2 (1 per B-channel)
NTI DMS 2 (1 per B-channel) 2 (1 per B-channel)
NI-1 2 (1 per B-channel) 2 (1 per B-channel)
NI-2 1 (1 per device) 1 (1 per device)
European 1 (1 per device) None
1TR6 1 (1 per device) None
NTT 1 (1 per device) None
Austel (TS013) 1 (1 per device) None
AT&T Point to Point ignores the Directory number from the user equipment, so you could be sending
anything that will sync up, and it will place a call. One should leave the SPIDs blank while configure
the Hypertec ISDN 10T Router for AT&T Point to Point Switch. ATT Multi-point, NTI, and NI1 are
very specific about DN directory Number and SPID numbers. If they are wrong, you cannot place a
call.
56K/64K Rate Adaption
The Rate Adaptation of the line is the speed at which data can be transmitted over that line. This can be
64 KBPS or 56kbit/s. If you are connected to a European ISDN Service, always set the Rate
Adaptation to 64 KBPS (the default value). If you are connected to a North American ISDN Service,
always select 64 KBPS for local calls. You may need to select 56 KBPS for international or some
inter-state calls. Some area in North America, dialing 1+10 digit is required in order to access the
64kbit/s. You should generally select 64 KBP in most part of the world.
ISDN Permanent (Nailed) Circuit
Most telephone companies offer only switched ISDN circuits. In. Germany leased line ISDN service is
also offered as a option. German ISDN Permanent connection services (types 64S, S01 and S02) is
available from Deutsche Telekom. This service provides a permanently open leased line with an ISDN
interface at each end, which allows you to take advantage of Deutsche Telekom tariff rates.
Service type Number of channels
64S One B-channel
S01 One B- and one D-channel
S02 Two B- and one D-channel
Japan NTT also offers leased line ISDN service :
7
Concepts and Principles of Operation
Service type Number of channels
DA64 One B-channel
DA128 Two B channels
Data Communication Services
Two widel y used inter-ne tworking mechanisms a re bridging and routing. Bridging offers a
straightforward method of interconnecting network segments. Bridges are si mple to use. However, i f
you are bridging across a WAN using ISDN, you can incur unnecessary costs from the ISDN bill. A
more controllable way of moving data cross networks is by routing. For Internet access, TCP/IP is the
routing protocol. For Intranet access, IPX, and bridging for other protocols (e.g. NETBIOS) may be
needed occasionally.
Bridging
A bridge automatically learns addresses of all active stations on its Local Area Network (LAN). It
examines all the packets on the LAN, reading their source and destination addresses, and does not forward
those packets which are intended for a local destination, while forwarding all others across the WAN to
the next LAN. This means that traffic that is intended only for the local segment does not cross the bridge.
However, there are some packets which a bridge must forward across the WAN to all parts of the network,
such as broadcasts, multicasts and packets with unk nown destinations to the bridge. The broadcast and
multicast transmission or transmission to an unknown destination may initiate an ISDN call. Every ISDN
call costs money. Bridging is not recommended unless absolutely necessary.
Routing
Routing is moving user data traffic across the inter-network from source to destination based on the
network layer address. Along the way, at least one intermediate router is typically encountered. Routing
and bridging is designed to accomplish precisely the same purpose. The primary difference between the
two is that bridging occurs at Layer 2 (the link layer) of the OSI reference model, while routing occurs at
Layer 3 (t he network layer). This distinction provides routing and br idging with d i fferent information to
use in the process of moving user data from source to destination. There are several different kinds of
routing in use, most widely used are IP, and IPX routing.
8
Concepts and Principles of Operation
Internet and Intranet Connection Profiles
Hypertec ISDN 10T Router maintains two connection profiles one for Internet and the other for
Intranet. The Internet connection by definition is for users to reach Internet, the Intranet connection is
made between two offices. The Internet profile contains the configuration parameters required by the
Internet connection. The categories available under Internet profile are : ISDN, PPP, IP, and NAT. The
Intranet profile contains the configuration parameters required by the Intranet connection. The
categories available under the Intranet profile are ISDN, PPP, IP, IPX, and Bridge. NAT is intended
for Internet only where security and ISP monthly charge is of concerned. The IPX and Bridging
functions are intended for Intranet where protocols other than IP may be required. Users should make
sure not to configure conflicting information between these two profiles, such as setting the sa me
remote IP address or ISDN dialing number to both profiles. These two types of connections are shown
in Figure 0-1, Internet and Intranet Connections.
Figure 0-1, Internet and Intranet Connections
IP Address and Subnet Mask
The address used for IP routing is the IP address. An IP Address is a 32-bit address which must be
assigned to every host that wants to use IP to communicate across the Internet. If you are connecting to
the Internet, in general the IP addresses of the computers and router are assigned from your Internet
service provider unless Network Address Translation (NAT) is used which we will discuss later.
The IP address are specified in a.b.c.d where a,b,c,d are each decimal numbers between 0 and 255 with
some restrictions applied. The Hypertec Router Ethernet IP address must be on the same network as
your PCs on the LAN. A network can be subnetted into one or more physical networks which form a
subset of the main network. The Subnet Mask is a number identifying a subnet within a network.
Routing Table
In order to move data from port to port, the router has to make routing decision based on the routing
table. Each routing entry describes what network can be reached through which interface via a certain
gateway.
Some routing entries are system created based on the router interface configuration. Some routing
entries may be created by users & classified as static routes, and other may be created based on the
information learned from the router protocol (eg. RIP). Static Routes are a cost-saving feature which
avoids running RIP over WAN links. The active route is advertised by Hypertec Router via RIP (if
enabled) on its LAN interface. For the Hypertec ISDN router, the default route created by the system is
automatically set toward Internet remote router. Users need to enter static route entries only when there
are multiple subnets at the Intranet remote end.
IP Address, Un -Numbered, or Numbered
9
Concepts and Principles of Operation
You can set Hypertec Router IP addresses to be 'un-numbered' or ‘numbered’. By setting it to “unnumbered”, you can route IP over a link between two devices without assigning IP addresses to the
ISDN interfaces. This allows you to save valuable IP address space. There are situations where a
traditional “numbered” IP address scheme is inevitable.
In Figure 0-2, Unnumbered ISDN Link, there is an unnumbered link between an ISDN router and a remote
router at the ISP site. These two devices can still communicate with each other, although neither of the
ISDN interfaces has been assigned an IP address. Instead, a route is assigned between a device and its
destination network, using interfaces instead of IP add r esses.
SOHO ISDN Router Remote Router at ISP
eth1
50.0.0.1
unnumbered link
eth1
90.0.0.1
Figure 0-2, Unnumbered ISDN Link
In Figure 0-3, Numbered ISDN Link, there is an numbered link between an ISDN router and a remote
router at the ISP site. An IP address is assigned at each end of the numbered link.
SOHO ISDN Router Remote Router at ISP
eth1
50.0.0.1
numbered link
66.0.0.1 66.0.0.2
eth1
90.0.0.1
Figure 0-3, Numbered ISDN Link
Dynamic IP address Assignment
If you are subscribing to a single user account, the ISP won’t assign you a static (semi-permanent) IP
address(es). Instead, an IP address is dynamically assigned at the login time. Hypertec ISDN 10T
Router will accept the dynamically assigned IP address for its ISDN interface and update the routing
table accordingly. The assigned IP address will be freed, and the associated routing table entry is
deleted when the session is closed. The NAT feature is required for multiple LAN users to access the
Internet using the single IP account.
10
Concepts and Principles of Operation
IPX
IPX is the protocol used by Novel Netware as the network layer protocol. Novel IPX also uses
Routing Information Protocol (RIP) for routing protocol. The IPX address consists of two parts: a 4-
byte network number, and a 6- byte node number. Often, the node number is assigned as the Ethernet
MAC address. In a bridging environment, all Netware clients and servers share the same external
network number. In an IPX routing environment, networks connected by IPX routers are assigned with
unique IPX network numbers.
An IPX client wishing to connect to a Netware server first sends a “find nearest server” request trying
to locate a server. After the server's response to the request, the Netware client login process may
begin. If a Netware server is not locally connected to the client’s network, the router connecting to the
client’s network is responsible for responding to the “find nearest server” request. A router such as
Hypertec ISDN 10T Router learns of the existence of a remote server by manual configuration, and
through Servi ce Advertising Protocol (SAP).
Internal IPX net:
00-00-11-22
Internal IPX node:
00-00-00-00-00-01
server
client
Router
Router
IPX Address
external network AA-AA-AA-AA
Netware 3.x and later use the notations of external IPX address and internal IPX address. Any Netware
device physically connected to a network have an external IPX address. A Netware server such as a
file server is also assigned with an internal IPX address. The internal address refers to the internal
network within a server allowing internal processes to communicate. All external and internal
addresses must be unique from one another.
external network BB-BB-BB-BB
IPX Frame Type
The IPX frames can be encoded in 4 frame types of the following formats:
Ethernet II (0x81,0x37,...),
802.3 (length, 0xFF, 0xFF,....),
802.2 (length, 0xE0, 0xE0, 0x03, 0xFF, 0xFF,......), and
SNAP (length, 0xAA, 0xAA, 0x03, 0x00, 0x00, 0x00, 0x81, 0x37,...).
Among them, 802.3 and 802.2 are two most commonly used format. Hypertec ISDN 10T Router
routes only IPX traffic of certain frame type. Other frame type of IPX traffic may be bridged if so
enabled.
11
Concepts and Principles of Operation
RIP
Novel IPX also uses Routing Information Protocol (RIP) as a routing protocol. Alt hough it is similarly
named to the IP equivalent, it uses a different protocol. IPX RIP broadcasts packets to the network
every 60 seconds to inform other IPX routers or servers about its network. Upon receiving an IPX RIP
packet, a router adds one to the hop count of each router advertised and broadcasts a RIP packet to
other networks it is connected to.
SAP
Netware Servers such as file servers use SAP protocols to advertise their service throughout the
network. A router such as Hypertec ISDN 10T Router listens to the SAP packets from servers to learn
what services are available in the local network. Routers also exchange SAP packets so that the router
can learn what services are available at the remote networks. With that global knowledge, the router is
able to respond the “find nearest server” request for the remote IPX networks.
IPX Spoofing
A Netware server regularly send a “keep alive” message to a logged -in client every 3-5 minutes for
connectivity verification. If a client fails to respond within the allowed limit, the server closes the
client’s connection. The IPX “keep alive” packets tend to keep the dial-up connection on line. To
minimize the un-necessary dial-up connection time, Hypertec ISDN 10T Router is equipped with an
IPX spoofing function which will return the “keep alive” on behalf of the remote Netware clients for a
pre-configured period. A dial-up call may be triggered by the “keep alive” packets only after the
spoofing timer expires.
PPP
The Point-to-Point Protocol (PPP) is the de-facto standard as the link encapsulation protocol for
Internet Access. PPP consists of a suite of protocols including LCP, PAP, CHAP, IPCP and other
related protocols. Link Control Protocol (LCP) is used to negotiate the link parameters, such as what
authentication protocol to use. LCP is specified in RFC 1570. Password Authentication Protocol
(PAP), and Challenge Authentication Protocol (CHAP) are used to inform the remote site (eg. ISP)
about which router is connecting to it. CHAP and PAP are specified in RFC 1334. IPCP is used to
negotiate IP specific parameters such IP address. IPCP is specified in RFC 1332.
PAP/CHAP
When a CHAP authentication connection to the ISP is attempted, the remote router or access server
sends a CHAP packet to HyperRoute. The CHAP packet "challenges" Hypertec Router to respond. The
challenge packet consists of an ID, a random number, and the host name of the remote router. The
required response consists of an encrypted version of the ID, a secret password, and the random
number of the local name. When the remote router or access server receives the response, it verifies the
secret password by performing the same encryption operation as indicated in the response and looking
up the required host/user name. Hypertec Router and the remote router must agree on the identical
secret passwords. By transmitting this response, the secret password is never transmitted in clear text,
preventing other devices from stealing it and gaining illegal access to the system. Without the proper
response, the remote will reject the PPP connection request.
If PAP authentication is enabled, when attempting to connect to the ISP or remote router, it is
necessary to send an authentication request including the user name and password. If the user name
and password are accepted, the ISP or the remote router sends an authentication acknowledgment to
conclude the authentication process.
There is a configuration choice of two sets of authentication protocol and password. One set for
Internet connection and one set for Intranet connections. Each set consists of two pairs of
authentication configuration. The Dial-out authentication password pair is ap p lied to the PPP
connection initiated by Hypertec ISDN 10T Router. The call-in authentication-password pair is app lied
to the PPP connection initiated from the remote end. The dial-out authentication protocol (none, PAP,
CHAP) specifies the authentication protocol that H ypertec ISDN 10T Router will insist on when
initiating a PPP connection. The remote end is supposed to accept the specified authentication protocol
for the PPP negotiation to proceed. The setting of “either” as the call-in authentication protocol allows
12
Concepts and Principles of Operation
Hypertec ISDN 10T Router to negotiate for either PAP or CHAP authentication protocol whichever
the remote end prefers.
Multilink PPP
The PPP Multilink Protocol (RFC 1717) is a standards based extension of the PPP (Point-to-Point
Protocol) standard. It allows you to combine channels into a 'Multilink bundle' so that data can be sent
at higher rates. Multilink PPP can implement a feature known as 'packet fragmentation' where larger
individual packets are chopped into smaller fragments. These fragments are then distributed among
two channels in use. The receiver at the other end of the links collects the fragments, reassembles them
and delivers them in the original order.
Multilink PPP allows packet fragmentation over two B channels to reduce latency and speed up
transmission. The actual implementation of fragmentation howeve r demands significant CPU
overhead. This overhead prevents most ISDN SOHO router vendors from doing the packet
fragmentation, instead packets are distributed between two B channel in a round-robin fashion.
P1 P2 P2 P1
R1 R2
P1
P2
Figure 0-4, Packet transmission without fragmentation, round-robin
When packets are sent with fragmentation, the larger packets are chopped into two fragments of equal
size and distributed from Router 1 to Router 2 over the two channels in use.
P1 P2 P2 P1
F1
R1 R2
Packet 2 Packet 1
Figure 0-5, Packet transmission with fragmentation, chop-in-half
Not all ISDN routers or access servers accept packet fragmentation. To guarantee compatibility, the
Hypertec Router sends packets in round-robin over the Multilink PPP. Hypertec ISDN 10T Router can be
configured to accept both round-robin and fragmented packets. There is a possibility of packet out-ofsequence when sending and receiving packet in round-robin fashion, Hypertec ISDN 10T Router will reorder the packets when compression is enabled. This will minimize the history reset request caused by the
packet out-of-sequence. The diagram above illustrates how packet fragmentation changes the way packets
are transmitted between two routes. When packets are send in round-robin, packets are sent whole across
the B-channels.
F1
F2 F2
13
Concepts and Principles of Operation
(
)
Dial on Demand
When the ISDN router receives packets from the Ethernet and decides to route packets to the WAN
interface, an ISDN call is automatically made to the remote end, followed by the PPP negotiation. The
PPP connection to the remote router is triggered automatically by the LAN traffic without user
intervention. On the other hand, when the traffic activity over the connection become idle for a certain
period, the ISDN router automatically releases the ISDN/PPP connection.
Bandwidth on Demand
If Multilink PPP is enabled, the router will bring up the second B channel when the traffic activity on
the first PPP channel passes beyond a certain threshold for a certain period, as specified in “1->2 util”
(increase from 1B to 2B), and “ave interval” (average) parameters. The router may also release the
second B channel when the data traffic activity on the second channel has fallen below a certain
threshold for a certain period, as specified in “2->1 util”(decrease from 2B to 1B), and “ave interval”.
Bandwidth
Kbits/sec
128
1
2
64
A
B
5
secs
01020
A = 80% volume of one B-Channel (64 Kbits/sec)
B = 30% volume of one B-Channel
3
30
Time (in seconds)
4
5
secs
40 50 60
5
Traffic bandwidth
Available bandwidth
128 Kbits/sec
Figure 0-6, Bandwidth on Demand
Bandwidth on Demand occ urs dynamically on an 'as needed' basis. Before you begin to set up
Bandwidth on Demand parameters, you need to d ecide at what point you want the second B -channel to
open. For example, you may want to open the second channel when the first is at 50% of its maximum
throughput . You also need to work out how long you want traffi c on the first B-channel to remain at
this percentage level before the second channel opens up. The diagram above illustrates how
Bandwidth on Demand works.
When an ISDN call is made, one B-channel is opened. Point 1 shows when data reaches the traffic load
percentage value. This means that the volume of data has reached the percentage value that you have
set on “1->2 util”. You can configure Hypertec Router to wait for a set length of time before bringing
the second B-channel into operation. In this case, data volume must exceed 80% volume for a certain
length of time, as in “ave interval” before the second B-channel is opened. Point 2 marks the point at
which data volume has exceeded the traffic load percentage value for five seconds. The second ISDN
B-channel now opens automatically, and remains open until data volume drops b elow a configurable
level as in parameter “2->1 util”. Data is shared equally between the two B-channels. At point 3 in the
14
Concepts and Principles of Operation
diagram, traffic decreases temporarily before increasing again. Because bandwidth requirements can
change suddenly like this, the second B-channel waits for a period of time before closing down. In the
above diagram, this value has been set to 5 seconds. You can set this time to s uit your own
requirements.
At point 4, data drops below the lower traffic load percentage value. Because traffic volume must
remain below this threshold for a certain length of time, the second B-channel does not close until
point 5 (5 seconds later) has been reached.
Data Compression
Data compression allows the router to send and receive data more efficiently by compressing the data at
sending and de-compress the data at receiving. When compression is enabled, the Hypertec Router
negotiates using a STAC LZS compression sc heme using the Compression Control Protocol (CCP).
Hypertec ISDN 10T Router supports both Ascend’s pre-standard compression scheme, and the standard
compression scheme as specified by ITEF. Depending on the actual data pattern, the STAC compression
algorithm may accomplish the compression ratio of 4:1 against an ASCII file. No data compression can be
gained against a file which has already been compressed. When working with the Multilink PPP protocol,
the compression algorithm is inappropriate as the frequent packet out-of-sequence condition can cause
either end to request a compression history reset.
Calling Line Identification (CLID)
Calling Line Identification (CLI) or Caller ID is a mechanism for identifying incoming calls. You may be
able to order CLI from your telephone company as part of your ISDN Service. The Hypertec Router
allows one CLID for each Profile. In many circumstances, the incoming call indication signal does not
include the Calling Line Identification (directory number) of the device which has just called you, or the
Calling Line Identification (CLID) may not be passed to the Hypertec Router . You may want to disable
CLID authentication, instead, use the Challenge-Handshake Authentication Protocol (CHAP) for
additional security if these circumstances apply.
Callback
Callback is available on ISDN circuits. It allows a router to request a return call from a remote router,
meaning that when an incoming call is received on a circuit, the router drops that call and calls back
the originating router. This feature allows you to take advantage of any differences in call charges and
obtain centralized billing. Callback also provides additional security.
There are two scenarios of Callback operation:
1. Caller ID (CLID)
A call arrives at the Hypertec Router, which has been configured to accept Callback requests with
the CLID enabled. The HypertecRouter checks if the CLID matches its CLID configuration. If a
match is found, the Hypertec Router rejects the incoming SETUP message and calls back the
originator using the number presented by Caller ID. This method means that there is either no
charge or a minimal call setup charge (service provider dependent) to the originator. If the
originator is not configured to request Callback but the receiving circuit is configured to call back
the originator, then when a call arrives it will still be called back. If the originator is configured to
request Callback but the receiving end is not configured to call back, the receiving end will accept
the call and the originator will pay the cost of the call.
2. PPP
If CLID is disabled in configuration in the Hypertec Router, a call is accepted by the Listener
circuit then Callback is negotiated using PPP authentication. This method will mean a small cost is
incurred at the originating end since the call has to be accepted before Callback is negotiated. If the
PPP negotiation fails then the call is dropped as usual.
Packet Filtering, IP Access List
To provide an additional level of security once the connection is established, the Hypertec Router
allows users to configure access lists against the IP traffic. The access list specifies what kind of data
15
Concepts and Principles of Operation
packets are to be filtered or forwarded. If no access list is specified, all valid packets will be forwarded.
You can specify in the IP access list the following criteria: source IP address, destination IP address,
source port number, destination port number, and the protocol which when matched will be forwarded
or filtered.
NAT
The ISP generally offers two type of accounts to SOHO users. The Single User account, and the LAN
Access (Multiple Users) account. The Single User account is often referred as Terminal Adapter or
Modem account where single user Internet access is assumed. The LAN Access account cost more
than the Single User account because multiple IP addresses are assigned. Network Tr anslation (NAT)
is designed to allow multiple users on the LAN to access Internet simultaneously using the Single User
account. In addition to cost saving, NAT is also useful in areas in which security or convenience are a
concern. It is convenient in the sense that, the users don’t have to change the private legacy IP
addressed already in use.
In order for the outside world to access the TCP/IP servers on the LAN, the Hypertec Router allows a
list of internal IP addresses to be associated with FTP, Telnet, HTTP, and Email servers. Traffic
destined for the list servers are forwarded to the specified IP addresses. The inbound traffic distribution
works only for static IP address arrangement where you can register an IP address against the domain
names. You will not have an IP address to register or publish when access to the Internet is via a
“single-user” account.
There are some limitation on the NAT application :
1. If the ISDN connection drops (e.g., because of an idle time-out), it is most likely that upon
reconnection you will get a different IP address assigned. For example, if you are using a web
browser and the connection drops because you go idle, if you then click on a link, you might get an
error message because you now have a different IP address.
2. Certain applications, like some UDP-based Internet games and chat client programs, will work
unreliably or not at all when using NAT because they report their private IP address to the server
instead of the "correct" dynamically assigned address. The remote application while sending UDP
packets toward the private IP address will not be able to deliver.
3.
NAT is available for Internet connections only. The Intranet connection is not affected by the
Internet NAT setting.
16
Loading...