Page 1
Promina® Series
Multiservice Access Platform
LAN/WAN Exchange
Installation and Configuration
Guide
Release 3.04
Part Number: 029894-304 Rev B
Page 2
Copyright © 2006 Network Equipment Technologies, Inc. All rights reserved.
NETWORK EQUIPMENT TECHNOLOGIES, INC. (hereinafter referred to as "N.E.T."), PROVIDES THIS
DOCUMENT AS IS, WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESSED OR IMPLIED,
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY AND FITNESS
FOR A PARTICULAR PURPOSE.
No part of this publication may be stored in a retrieval system, transmitted or reproduced in any way, including photocopy, photograph, magnetic, or other record, without the prior written permission of N.E.T. Unpublished-rights
reserved under the copyright laws of the United States.
Trademarks
The N.E.T. logo, PanaVue, PrimeSwitch, Promina, SCREAM, Service Creation Manager, and SHOUTIP are
registered trademarks, and CellXpress, FrameXpress, Frame Relay Exchange, IPNX, LAN/WAN Exchange, Network
Equipment Technologies, N.E.T., the net.com logo, net.com, netMS, PortExtender, PrimeVoice, SCREAMvue, and
SHOUT are trademarks of Network Equipment Technologies, Inc.
SunOS and Solaris software copyright is held by Sun Microsystems, Inc. Sun Microsystems is a registered trademark
and Sun, SunOS, OpenWindows, Solaris, and Ultra are trademarks of Sun Microsystems, Inc. UNIX is a registered
trademark of The Open Group.
All other trademarks and registered trademarks are the sole property of their respective owners.
This document constitutes the sole Specifications referred to in N.E.T.'s Product Warranty for the products or services
described herein. N.E.T.’s Product Warranty is subject to all the conditions, restrictions, and limitations contained
herein and in the applicable contract. N.E.T. has made reasonable efforts to verify that the information in this document is accurate, but N.E.T. reserves the right to correct typographical errors or technical inaccuracies. N.E.T.
assumes no responsibility for any use of the information contained in this document or for any infringement of patents or other rights of third parties that may result from the use of this document. Networking products cannot be
tested in all possible uses, configurations or implementations, and interoperability with other products cannot be
guaranteed. The customer is solely responsible for verifying the suitability of N.E.T.'s products for use in its network.
Local market variations may apply. This document is subject to change by N.E.T. without notice as additional information is incorporated by N.E.T. or as changes are made by N.E.T. to hardware or software.
U.S. Government Rights, Government Users
The software accompanying this documentation is furnished under a license and may only be used in accordance with
the terms of such license. This documentation is "commercial computer software documentation" as that term is used
in 48 CFR 12.212. Unless otherwise agreed, use, duplication, or disclosure of this documentation and any related
software by U.S. Government civilian agencies is subject to restrictions as set forth in 48 CFR 52.227-14 (ALT III)
and 48 CFR 52.227-19, and use, duplication, or disclosure by the U.S. Department of Defense is subject to restrictions as set forth in 48 CFR 227.7202-1(a) and 48 CFR 227.7202-3(a) or, if applicable, 48 CFR 252.2277013(c)(1)(ii) (OCT 1988).
Released
July 2006
Network Equipment Technologies, Inc.
6900 Paseo Padre Parkway
Fremont, CA 94555 U.S.A.
http://www.net.com
ii LAN/WAN Exchange Installation and Configuration Guide Release 3.04
Page 3
Contents
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Preface ......................................................................................................................................... xvii
Chapter 1 Introduction
Overview ........................................................................................................................................ 1-2
Supported PX3 and Interface Cards ......................................................................................... 1-2
Memory Requirements ............................................................................................................1-2
Base and Global Versions ........................................................................................................ 1-2
LWX Features ................................................................................................................................ 1-4
Support for Multi-Protocol Networks ...................................................................................... 1-4
Supported Media ...................................................................................................................... 1-4
Dynamic Network Routing ...................................................................................................... 1-4
Dynamic Bandwidth Setting .................................................................................................... 1-4
Dynamic Routing Tables .........................................................................................................1-4
Diagnostic Tools ...................................................................................................................... 1-4
Software Management Over the Network ............................................................................... 1-4
Access Methods ....................................................................................................................... 1-5
Network Security ..................................................................................................................... 1-5
Network Management .............................................................................................................. 1-5
Backup and Restore ................................................................................................................. 1-5
SNMP v3 Support .................................................................................................................... 1-5
Documentation Guide .................................................................................................................... 1-6
Supported Features ........................................................................................................................ 1-7
Unsupported Software Functions ............................................................................................. 1-7
Platform Functionality Differences ......................................................................................... 1-7
Platform Configuration Differences ........................................................................................ 1-8
Chapter 2 Installing and Configuring LWX
Before You Begin .......................................................................................................................... 2-2
Setting the Clock ............................................................................................................................ 2-2
Configuring Features Using the Setup Command ......................................................................... 2-3
Configuring the Application as a TFTP Server ............................................................................. 2-5
Backing Up the LWX Configuration ............................................................................................. 2-6
Storing the Configuration in NVRAM .................................................................................... 2-6
Storing the Configuration on a Remote Host ........................................................................... 2-6
Backup and Restore of Archived Configuration Files ............................................................. 2-7
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 iii
Page 4
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Chapter 3 Verifying the Configuration and Connections
Verifying the Configuration ........................................................................................................... 3-2
Verifying Connections ................................................................................................................... 3-4
Verifying Token Ring Connections ......................................................................................... 3-4
Verifying Ethernet Connections .............................................................................................. 3-5
Verifying Connections with Ping ............................................................................................ 3-5
Verifying Connections with Telnet .......................................................................................... 3-6
Chapter 4 Upgrading the LWX Application
Preparing the Card for a New Application Image ......................................................................... 4-2
Downloading an Image from a PCMCIA Card ............................................................................. 4-4
Upgrading Cards on a Network Using TFTP ................................................................................ 4-6
Upgrading the Application Using the PX3 Bootstrap Program ..................................................... 4-8
Upgrading from a PCMCIA Card ............................................................................................ 4-8
Transferring an Image Using FTP ......................................................................................... 4-11
Upgrading the PX3 Bootstrap Program ....................................................................................... 4-12
Chapter 5 Problem Checklists
Checklists for Installation Problems .............................................................................................. 5-2
If you cannot install a PX3 card ......................................................................................... 5-2
If the PX3 card does not load the LWX code .................................................................... 5-2
If you cannot connect to a PX3 card .................................................................................. 5-2
Chapter 6 Alarms and Events
90.1 .......................................................................................................................................... 6-1
90.2 .......................................................................................................................................... 6-2
90.3 .......................................................................................................................................... 6-2
90.4 .......................................................................................................................................... 6-2
90.5 .......................................................................................................................................... 6-3
90.6 .......................................................................................................................................... 6-3
90.7 .......................................................................................................................................... 6-3
90.8 .......................................................................................................................................... 6-3
90.9 .......................................................................................................................................... 6-4
90.10 ........................................................................................................................................ 6-4
90.11 ........................................................................................................................................ 6-7
90.12 ........................................................................................................................................ 6-7
iv LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 5
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
90.13 ........................................................................................................................................ 6-7
90.14 ........................................................................................................................................ 6-7
90.15 ........................................................................................................................................ 6-8
90.16 ........................................................................................................................................ 6-8
90.17 ........................................................................................................................................ 6-8
90.18 ........................................................................................................................................ 6-8
90.19 ........................................................................................................................................ 6-9
90.20 ........................................................................................................................................ 6-9
90.21 ........................................................................................................................................ 6-9
90.22 ........................................................................................................................................ 6-9
90.23 ...................................................................................................................................... 6-10
Chapter 7 SNMP Overview
Agent Description .......................................................................................................................... 7-2
SNMPv1 Overview ............................................................................................................ 7-2
SNMPv3 Overview ............................................................................................................ 7-3
Recommended Additional Documentation .................................................................................... 7-4
Books ....................................................................................................................................... 7-4
Internet Resources .................................................................................................................... 7-4
Chapter 8 Agent Configuration
Configuration Overview ................................................................................................................ 8-2
Operator Interface .................................................................................................................... 8-3
Configuring an SNMP EngineID ...................................................................................................8-4
Creating an SNMP View ............................................................................................................... 8-5
Creating an SNMP Group .............................................................................................................. 8-6
Creating an SNMP User ................................................................................................................ 8-8
Configuring an SNMP Host ......................................................................................................... 8-10
Showing an SNMP EngineID ...................................................................................................... 8-11
Showing an SNMP Group ........................................................................................................... 8-12
Showing an SNMP Host .............................................................................................................. 8-13
Chapter 9 Trap Support
Trap Description ............................................................................................................................ 9-2
Configuring an SNMP Host ........................................................................................................... 9-3
Configuring SNMP Traps .............................................................................................................. 9-4
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 v
Page 6
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Appendix A LWX Command Reference
Working with NVRAM Files .......................................................................................................A-2
Working with Flash Memory Files ............................................................................................... A-2
Working with PCMCIA Cards ..................................................................................................... A-3
Allocating Flash Memory ............................................................................................................. A-3
Setting the Boot Image ................................................................................................................. A-4
Showing the Active Version ......................................................................................................... A-4
Appendix B SSH Support
SSH Overview .............................................................................................................................. A-2
SSH Configuration ........................................................................................................................ A-3
Configure Host Name ............................................................................................................. A-3
Configure Domain Name ........................................................................................................ A-4
Generate RSA Keys ................................................................................................................ A-4
Configure Timeout Value for User Authentication ................................................................ A-4
Enable SSH Transport Support for VTYS .............................................................................. A-4
Verify Login Account and Password ...................................................................................... A-5
Verify SSH Server Configuration ........................................................................................... A-5
Enable SCP Server .................................................................................................................. A-6
Restart LWX ........................................................................................................................... A-6
UNIX Server Setup for SSH ................................................................................................... A-6
Enabling TFTP Server ............................................................................................................ A-7
Initiating SSH Sessions ................................................................................................................. A-8
SSH Sessions from a UNIX Server ........................................................................................ A-8
Restricting Transport Protocol Access ......................................................................................... A-9
Index ..................................................................................................................................................1
vi LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 7
Figures
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Chapter 1 Introduction
Figure 1-1 How to Use the Documentation ........................................................... 1-6
Chapter 2 Installing and Configuring LWX
Chapter 3 Verifying the Configuration and Connections
Chapter 4 Upgrading the LWX Application
Chapter 5 Problem Checklists
Chapter 6 Alarms and Events
Chapter 7 SNMP Overview
Figure 7-1 SNMP Message Types ......................................................................... 7-3
Chapter 8 Agent Configuration
Chapter 9 Trap Support
Appendix A LWX Command Reference
Appendix B SSH Support
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 ix
Page 8
Figures
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
x LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 9
Tables
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Chapter 1 Introduction
Table 1-1 Supported PX3 Revision Levels .......................................................... 1-2
Table 1-2 Minimum Memory Requirements ....................................................... 1-2
Chapter 2 Installing and Configuring LWX
Chapter 3 Verifying the Configuration and Connections
Chapter 4 Upgrading the LWX Application
Chapter 5 Problem Checklists
Chapter 6 Alarms and Events
Table 6-1 DLM Names for Event 90.10 .............................................................. 6-5
Table 6-2 Reason Codes for Event 90.10 ............................................................. 6-5
Chapter 7 SNMP Overview
Chapter 8 Agent Configuration
Chapter 9 Trap Support
Appendix A LWX Command Reference
Table A-1 Working with NVRAM Commands ................................................... A-2
Table A-2 Working with Flash Memory Commands .......................................... A-2
Table A-3 Working with PCMCIA Cards ........................................................... A-3
Table A-4 Allocating Flash Memory Commands ................................................ A-3
Table A-5 Setting the Boot Image ....................................................................... A-4
Table A-6 Displaying the Active Version ............................................................ A-4
Appendix B SSH Support
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 xi
Page 10
Tables
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
xii LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 11
Examples
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Chapter 1 Introduction
Chapter 2 Installing and Configuring LWX
Example 2-1 Setup Command Facility Example ...................................................... 2-4
Example 2-2 Establishing a TFTP Server Configuration .......................................... 2-5
Example 2-3 Writing the Configuration File to a Host ............................................. 2-6
Example 2-4 Loading the Configuration from the Network ..................................... 2-6
Example 2-5 Entering the Host/Network Configuration File Information ............... 2-7
Example 2-6 NVRAM Unpack Command ............................................................... 2-7
Chapter 3 Verifying the Configuration and Connections
Example 3-1 Verifying the Stored Configuration ..................................................... 3-3
Example 3-2 Verifying Token Ring Connections ..................................................... 3-4
Example 3-3 Verifying Ethernet Connections .......................................................... 3-5
Example 3-4 Verifying Connections with Ping ........................................................ 3-5
Example 3-5 Verifying Connections with Telnet ...................................................... 3-6
Chapter 4 Upgrading the LWX Application
Example 4-1 Allocating RAM Using ramloadmode ................................................. 4-2
Example 4-2 Checking the Flash Directory .............................................................. 4-2
Example 4-3 Deleting Files from Flash Memory ...................................................... 4-2
Example 4-4 Running the show version command ................................................... 4-3
Example 4-5 Mounting a PCMCIA Card .................................................................. 4-4
Example 4-6 Checking the PCMCIA Directory ........................................................ 4-4
Example 4-7 Copying an Image to Flash Memory ................................................... 4-4
Example 4-8 Setting the Boot Image ........................................................................ 4-5
Example 4-9 Configuring LWX as a TFTP Server ................................................... 4-6
Example 4-10 Pinging the TFTP Server Card ............................................................. 4-6
Example 4-11 Downloading an Image to Flash Memory ........................................... 4-7
Example 4-12 Logging In to the PX3 Bootstrap Program .......................................... 4-8
Example 4-13 Displaying the File Submenu ............................................................... 4-8
Example 4-14 The Bootstrap File Submenu ............................................................... 4-9
Example 4-15 Setting the Boot Image from Bootstrap ............................................... 4-9
Example 4-16 Replacing the PX3 Bootstrapper Program ......................................... 4-12
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 xiii
Page 12
Examples
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Chapter 5 Problem Checklists
Chapter 6 Alarms and Events
Chapter 7 SNMP Overview
Chapter 8 Agent Configuration
Example 8-1 Configuring an SNMP EngineID (local agent) .................................... 8-4
Example 8-2 Entering configuration mode ............................................................... 8-5
Example 8-3 Obtaining help with SNMP parameters ............................................... 8-5
Example 8-4 Creating an SNMP view ...................................................................... 8-5
Example 8-5 Obtaining help with SNMP parameters ............................................... 8-6
Example 8-6 Creating an SNMP group (no authentication) ..................................... 8-7
Example 8-7 Creating an SNMP group (authentication, no privacy) ....................... 8-7
Example 8-8 Creating an SNMP group (authentication and privacy) ....................... 8-7
Example 8-9 Obtaining help with SNMP parameters ............................................... 8-8
Example 8-10 Creating an SNMP user ....................................................................... 8-9
Example 8-11 Creating an SNMP user (authentication, no privacy) .......................... 8-9
Example 8-12 Creating an SNMP user (authentication and privacy) ......................... 8-9
Example 8-13 Configuring an SNMP host ................................................................ 8-10
Example 8-14 Showing an SNMP engineID ............................................................. 8-11
Example 8-15 Showing an SNMP group .................................................................. 8-12
Example 8-16 Showing an SNMP host ..................................................................... 8-13
Chapter 9 Trap Support
Example 9-1 Configuring an SNMP host .................................................................. 9-3
Example 9-2 Configuring SNMP traps ..................................................................... 9-4
xiv LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 13
Procedures
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Chapter 1 Introduction
Chapter 2 Installing and Configuring LWX
Chapter 3 Verifying the Configuration and Connections
Chapter 4 Upgrading the LWX Application
To prepare the PX3 card for a new application image ....................................................... 4-2
To download a new application image from a PCMCIA card .......................................... 4-4
To upgrade PX3 cards on a network using TFTP .............................................................. 4-6
To upgrade from a PCMCIA card using the PX3 Bootstrap program ............................... 4-8
To FTP an image using PX3 boot menus ........................................................................ 4-11
To upgrade the PX3 bootstrap program ........................................................................... 4-12
Chapter 5 Problem Checklists
Chapter 6 Alarms and Events
Chapter 7 SNMP Overview
Chapter 8 Agent Configuration
To configure an SNMP engineID ...................................................................................... 8-4
To create an SNMP view ................................................................................................... 8-5
To create an SNMP group ................................................................................................. 8-6
To create an SNMP user .................................................................................................... 8-8
To configure an SNMP host ............................................................................................ 8-10
To show an SNMP engineID ........................................................................................... 8-11
To show an SNMP group ................................................................................................. 8-12
To show an SNMP host ................................................................................................... 8-13
Chapter 9 Trap Support
To configure an SNMP host .............................................................................................. 9-3
To configure SNMP traps .................................................................................................. 9-4
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 xv
Page 14
Procedures
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
xvi LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 15
Preface
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
About This Document
This document provides information about the LAN/WAN Exchange
(LWX) application for use with the PX3 card. This document is for use in
the installation and management of the LWX application with the
Promina Series of Multiservice Access Platforms.
This document assumes that you have a working knowledge of data
communications, LAN and WAN routing principles, trunking and
transmission concepts, Cisco IOS commands, features, and concepts, and
PX3 card operation. You should also be aware of the hazards associated
with electronic equipment and electricity, a detailed discussion of which
is beyond the scope of this document.
Screen displays are provided as examples of output. Because the
displayed information is dependent on each node’s configuration, the
examples shown in this document may not correspond exactly to the
information displayed by another node. Differences in software releases
can also account for differences in displayed information.
Document Organization
The document contains the following sections:
Section Title Description
Chapter 1 Introduction Provides an overview of the product.
Chapter 2 Installing and
Chapter 3 Verifying the
Chapter 4 Upgrading the LWX
Chapter 5 Problem Checklists Provides checklists for addressing
Chapter 6 Alarms and Events Describes the events generated by the
Chapter 7 SNMP Overview Describes the SNMP agents used in the
Configuring LWX
Configuration and
Connections
Application
Provides LWX installation and
configuration procedures.
Describes how to verify the configuration
and existing connections.
Describes how to upgrade the LWX
application.
installation problems.
LWX application.
LWX application.
Chapter 8 Agent Configuration Describes how to install and configure the
SNMP agents used in the LWX
application.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 xvii
Page 16
Preface
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Section Title Description
Chapter 9 Trap Support Describes the structure of the SNMP traps
used in the LWX application.
Appendix A LWX Command
Appendix B SSH Support Describes how to configure for SSH on
New Information
This version of the LWX Installation and Configuration Guide contains
much new material and substantially revised material from previous
versions.
Document Conventions
The following conventions are used in this document:
Convention Example Description
Promina, node Install the node. Refers generally to the Promina 200, 400,
Key name Press the Delete key. Refers to non-printing keys on the
Reference
Describes the commands used to install
and configure the LWX application.
the LWX Module.
and 800, unless specified differently.
keyboard that you press.
Simultaneous
Key
bold Install Card. Indicates a command to be typed. Also
Enter Enter Install Card. Indicates that after typing the information,
italic The Alarms Pending
Press Shift+F1. Refers to non-printing keys on the
keyboard that need to be pressed
simultaneously.
used for emphasis.
press the Return or Enter key.
Refers to parameter options and other
message displays on
the screen.
A gateway node is any
node that connects to a
domain.
For more information,
see the Hardware
Description manual.
information displayed by the software.
Refers to a new term that is defined.
Refers to a document or book title.
xviii LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 17
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Preface
The following icons are used in this document to provide important
information:
Icon Description Definition
Warning Provides information on how to avoid a
potentially hazardous electrical situation that, if
not avoided, could result in death or serious
injury.
Warning Provides information on how to avoid a
potentially hazardous non-electrical situation
that, if not avoided, could result in death or
serious injury.
Warning Laser or LED radiation emission warning.
Caution Provides information on how to avoid possible
disruption of traffic or damage to files or
equipment.
Associated Documents
The following documents provide additional information:
Document Description
Operator Interface Contains information on how to use the Promina Operator
Hardware Description Contains information about the Promina hardware
PX Platform Guide Contains information about the PX3 card.
Cisco IOS 11.2 Software
Configuration
Cisco IOS 12.1 Software
Configuration
Note Provides information that helps the user and
should be read before proceeding.
Interface.
configuration.
Contains information on how to configure the LWX
application.
Contains additional information on how to configure the
LWX application for SNMP v3 support.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 xix
Page 18
Preface
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Reader’s Response
We encourage comments on the content of this document. Please address
any comments to:
Manager, Information Development
N.E.T.
6900 Paseo Padre Parkway
Fremont, California 94555
infodev@net.com
N.E.T. may use or distribute, without incurring any obligation, and in any
way it believes appropriate, any information supplied.
Technical Assistance Information
If there is a problem installing or using N.E.T. products, contact your
technical support organization. For those customers who have access to
the N.E.T. Technical Assistance Center (TAC), the toll-free number for
the United States is:
1-800-800-4638
For N.E.T.’s TAC support, customers outside the United States, except in
the UK and Europe, may use the following number:
703-724-7999
For N.E.T.’s TAC support, UK and European customers can use the
following number:
(44) 1293-600703
TAC personnel are available by telephone 24 hours a day, 7 days a week.
Warranty and contract customers receive first consideration in the
scheduling of technical resources.
Before contacting TAC for help, review and verify the provisions
contained in your warranty or contract. Depending on those provisions,
there may be a charge for service.
When authorized, TAC engineers can diagnose most network problems
remotely, using dial-up connections. When a service technician is
required, TAC will dispatch the nearest N.E.T. or third-party service
engineer.
xx LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 19
1Chapter 1
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1Introduction
This chapter describes:
• What the LWX application is: Overview on page 1-2
• What features of Cisco IOS are supported: LWX Features on page 1-4
• How to use the documentation: Documentation Guide on page 1-6
• What features of Cisco IOS Release 11.2 are not supported:
Supported Features on page 1-7
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 1 - 1
Page 20
Overview Introduction
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Overview
The LAN/WAN Exchange (LWX) application is a general purpose
router/bridge application integrated into the Promina Series platform,
providing internetwork connectivity between LANs over WANs that
contain Promina Series nodes. The LWX application is used in
conjunction with a PX3 front card and an Ethernet or Token Ring
interface rear card, and provides:
• concurrent multi-protocol routing and fallback MAC layer bridging
• up to eight logical serial connections to other LWXs or external
routers
Supported PX3
and Interface
Cards
Memory
Requirements
LWX Release 3.04 supports four- and eight-port PX3 cards1 with
Ethernet and Token Ring interface cards (T1/Ethernet and E1/Ethernet
are not supported). LWX Release 3.04 requires PX3 cards of a certain
revision level, as shown in Table 1-1.
Table 1-1 Supported PX3 Revision Levels
Assembly No. Revision Level
#027074-405 (4-port)
#027075-407 (8-port)
#029756-405 (4-port)
#029757-407 (8-port)
Rev. B or higher
Rev. A or higher
LWX Release 3.04 also requires Release 1.2.2.9 or higher of the PX3
Bootstrap software.
The minimum memory requirements for LWX Release 3.04 are shown in
Table 1-2:
Table 1-2 Minimum Memory Requirements
Flash System DRAM Packet DRAM
16 MB 16 MB 16 MB
Base and Global
Versions
The LWX application is available in two versions, base and global. The
base version supports a basic set of functions:
• Interfaces: Ethernet and serial ports
•Protocols: IP, IPX, SNMP, and transparent bridging
1.Support for 16-port PX3 cards may be included in a future release.
1 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 21
Introduction Overview
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
• WAN services: HDLC, frame relay, X.25, PPP, and SMDS
• Compatible with the Cisco IP/IPX products
• Supports flash memory, NVRAM DOS filesystem
• Supports upgrades using PCMCIA cards (Release 3.02.03 or later)
The global version supports all the base functions, and these additional
functions:
• Interfaces: Token Ring
•Protocols: Decnet IV, Decnet V, Appletalk, XNS, Vines, OSI, and
Apollo
•IP routing: ES-IS and IS-IS
• IBM support: RSRB, local ack, address priority, NETBIOS name
cache, STUN, SDLLC, and DLSw+ (does not support APPN)
• WAN services: SDLC
The LWX application is based on the Cisco Internetwork Operating
System (IOS), Release 11.2.14. To configure LWX, you need to use
Cisco IOS commands. For information about Cisco IOS Release 11.2
commands, see the Cisco IOS Software Configuration document set.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 1 - 3
Page 22
LWX Features Introduction
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
LWX Features
The LWX application is designed to satisfy LAN/WAN interoperability
and connectivity requirements of multi-protocol, multimedia, and
multivendor networks.
Support for
Multi-Protocol
Networks
The LWX application supports various routing protocols: AppleTalk,
DECnet, Novell, CLNS static, and IP. Bridging support includes:
Transparent, Remote Source Route, Fast Sequenced Transport, LLC2,
SNA, and NETBIOS1.
Supported Media In addition to Ethernet and Token Ring interfaces, the LWX application
supports internal synchronous serial speeds up to 4096 Kbps on a
Promina 800 node (2048 Kbps on a Promina 400 or 200 node).
Dynamic Network
Routing
The LWX application supports various dynamic routing protocols, such
as IGRP, OSPF, RIP, BGP, GDP, SPLIT Horizon, IRDP, and IS-IS, to
ensure reliable packet routing. LAN traffic can be routed by the logical
network, through a protocol such as IGRP and EIGRP. Traffic can also be
routed by the Promina network itself.
Dynamic
Bandwidth Setting
Dynamic Routing
Tables
Bandwidth is dynamically adjusted to respond to network changes,
ensuring that reliable bandwidth is available for network traffic.
LAN traffic is automatically routed either through the logical LAN
network or through the Promina network.
Diagnostic Tools The LWX application provides detailed network-management statistics
such as traffic and message statistics.
Software
Management Over
the Network
LWX software is stored in flash memory on the PX3 card. In the event of
a failure, software is automatically loaded from the flash memory. The
Promina can also distribute software upgrades (for example, using FTP
across an interface card) and provide out-of-band diagnostics to the LWX
application.
1.There are limitations on NETBIOS support over Token Ring.
1 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 23
Introduction LWX Features
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Access Methods You connect to the LWX application in one of three ways:
• Remotely using telnet
• Through the Promina node using the Connect to PX Card feature.
• Through a terminal connected to the UART connector on the PX3
card
Network Security You can secure the LWX application and your data from unauthorized
use by:
• Limiting access to the privileged command set and to console and
terminal lines by using operator account passwords.
• Restricting transmissions to specified addresses (such as ports, hosts,
and gateways) using access lists.
• Providing controls according to the service used (such as mail, file
transfers, and remote login).
• Using DDN security options for IP packets.
• Using Secure Shell (SSH v1) sessions for securing file management
traffic flowing into and out of the LWX network. For this release, the
SSH package is imported from Cisco IOS Release 12.3.10. This
implementation utilizes DES encryption (56-bit) with
password-based authentication.
• Disabling or restricting standard session access or standard file
transfer access.
Network
Management
You can manage the LWX application using a network management
system that supports the Simple Network Management Protocol (SNMP),
such as HP OpenView.
Backup and
Restore
LWX Release 3.04 and higher provides a mechanism to backup and
restore the configuration files for managed nodes from a network
management workstation.
SNMP v3 Support LWX Release 3.03 and higher now supports SNMP v3. However, the
implementation of SNMP v3 on the LWX application will still have the
same limitations as Cisco IOS Release 12.1.
Note: Support for SNMP v1 is still provided.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 1 - 5
Page 24
Documentation Guide Introduction
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Documentation Guide
Note: This manual, Installation and Configuration Guide, is the key resource for
LWX operations and initial installation tasks. The Cisco IOS Release 11.2
Software Configuration documentation set provides essential information to
install and configure the LWX application.
Figure 1-1 shows where to go for information on installing and
configuring the LWX application. For the three tasks shown, an arrow
points to support documentation for each task. The gray (bottom row)
arrows indicate cross references from one document to another.
Figure 1-1 How to Use the Documentation
To do this...
(Tasks)
Refer to...
(Publications)
1. Install
and
configure
PX3 card
Promina
Series PX
Platform
Guide
2. Install
and
configure
LWX
LAN/WAN
Exchange
Installation
and
Configuration
3. Configure
protocols
and
interfaces.
Cisco IOS
R11.2
Software
Configuration
doc set
1 - 6 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 25
Introduction Supported Features
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Supported Features
LWX Release 3.04 supports most of the features and functions in Cisco
IOS Release 11.2, which are described in the accompanying Cisco
document set Cisco IOS Release 11.2 Software Configuration. Features
and functions described in Cisco documentation but not supported by
LWX fall into three categories:
• Features and functions no longer supported by Cisco: Unsupported
Software Functions on page 1-7.
• Differences in platform function: Platform Functionality Differences on page 1-7.
• Differences in platform configuration: Platform Configuration
Differences on page 1-8.
Unsupported
Software
Functions
Platform
Functionality
Differences
LWX Release 3.04 does not support PUP routing, Chaos routing, and
Hello inter-router protocols; Cisco stopped supporting these protocols in
Release 9.1.9. LWX also does not support HTTP EZ setup and SLARP
autoconfiguration.
LWX Release 3.04 (PX3 platform) provides some additional functions
not supported by Cisco routers, and does not support some Cisco features.
These differences must be kept in mind when referring to the Cisco IOS
Release 11.2 Software Configuration document set. The major
differences include:
• Virtual Card Connect. LWX Release 3.04 allows an operator to
connect to the PX3 card through the Promina network using virtual
card connection; this is an additional function not supported by Cisco.
• Remote Access and Control. LWX Release 3.04 allows remote
access to the router, and control of system functions, including remote
restart.
• LAN interfaces. LWX Release 3.04 (PX3 platform) supports only
the following interface cards:
Ethernet (LAN)
Token Ring
Certain Cisco routers support multiple LAN interfaces. References in
the Cisco documentation to multiple LAN ports, such as switching
between these ports, do not apply to LWX. This includes, for
example, SRB autonomous switching: all LWX switching is RSRB.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 1 - 7
Page 26
Supported Features Introduction
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
• Serial interfaces. The serial interfaces to the LWX are Promina calls.
The LWX is unaware of physical serial interfaces. Therefore,
functions that need to control modems, such as dial backup, are
generally not available.
•Flash memory. The LWX code is stored on the PX3 card’s flash
memory. Loading procedures for the LWX are documented in
Upgrading the LWX Application on page 4-1. For additional
information regarding flash memory, see the PX Platform Guide.
• Other interfaces. The LWX (PX platform) has no auxiliary port,
FDDI, HSSI, ISDN, or Ultra interface. All references to these
interfaces in the Cisco documentation are not applicable to LWX. For
example, SLIP connections require the auxiliary port in Cisco routers
and so are not available on the LWX.
Platform
Configuration
Differences
Because of the hardware differences, procedures for configuring LWX
differ from configuring Cisco IOS:
• Loopback Tests. A loopback test detects and distinguishes
equipment malfunctions between the line and the modem or
CSU/DSU problems. This function is not supported by LWX,
because it is unaware of the physical serial interface. Physical
interfaces are controlled by the Promina OI. Loopback tests are
supported on data cards.
• SRB Autonomous Switching. Autonomous switching in
source-route bridging refers to local SRB between Token Ring
interfaces in the same router. The LWX does not support multi-LAN
port interfaces.
• TFTP Server. The LWX network server can be configured as a
limited TFTP server from which other PX3 cards running LWX can
boot their software. As a TFTP server host, the LWX network server
responds to TFTP request messages. This procedure is documented in
Configuring the Application as a TFTP Server on page 2-5.
• Fast switching. Cisco documentation refers to fast switching over the
CSC-C2CTR interface. This interface is not supported on the PX3
platform. For similar reasons, fast switching for the following
protocols is not supported:
– SRB fast switching over Token Ring
– RSRB (SRB over a tunnel) fast switching over Token Ring
– SMDS fast switching for IP on selected interfaces (HSSI)
1 - 8 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 27
Introduction Supported Features
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
• Dial Backup Service. The dial backup service provides protection
against WAN downtime by using a backup serial line that is
configured through a circuit-switched connection. In the LWX
environment, the Promina is responsible for re-routing calls due to
circuit interruption. All dial functions are therefore not supported,
including DDR (Dial on Demand Routing), DDR Hunt Group, and
CHAP for DDR.
•SLIP. A method of sending Internet packets over standard RS-232
asynchronous serial lines, SLIP is only supported on the Cisco
auxiliary interface, which does not exist on the PX3 platform.
• Half-Duplex Mode (STUN). The LWX is not aware of the physical
RS-232 interface, so it does not support half-duplex mode, (a 2-wire
mode in which RTS/CTS signals are toggled).
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 1 - 9
Page 28
Supported Features Introduction
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1 - 10 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 29
1Chapter 2
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
2Installing and
Configuring LWX
This chapter describes how to install and configure the LWX application.
The following tasks are described in this chapter:
• Before You Begin on page 2-2
• Setting the Clock on page 2-2
• Configuring Features Using the Setup Command on page 2-3
• Configuring the Application as a TFTP Server on page 2-5
• Backing Up the LWX Configuration on page 2-6
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 2 - 1
Page 30
Before You Begin Installing and Configuring LWX
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Before You Begin
Before starting to configure LWX, there are several preliminary steps that
must be completed. These include:
• Installing the PX3 cards into a Promina network.
• Installing ports for the PX3 cards into the Promina network database.
• Deciding on the design of your router network.
Consult the PX Platform Guide for information on installing PX3 cards;
and refer to the Promina Series Documentation Set for information on
configuring the Promina network.
Setting the Clock
The LWX application uses the clock from the local Promina node.
If the system is synchronized by a valid outside timing mechanism, such
as an NTP or VINES clock source, or if you have a Cisco 7000 with
calendar capability, you do not need to set the system clock.
2 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 31
Installing and Configuring LWX Configuring Features Using the Setup Command
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configuring Features Using the Setup Command
By using the setup command facility, you specify which protocols and
interfaces are installed. The facility steps you through the configuration
of each interface until all have been configured. For more information on
configuring interfaces, refer to the Cisco document set Cisco IOS Release
11.2 Software Configuration.
If you are configuring a new LWX application (that is, you have ordered
a new PX3 card with the LWX application on it), you must use the Cisco
IOS setup command facility to enter basic configuration information. If
you have upgraded the LWX application on an existing card, the
configuration database used for previous releases of LWX remains on the
card. You may need to update the configuration database to take
advantage of new features.
If the LWX database is not yet configured, the prompt displayed is of the
format LWX _d Xn Yc Z#, where X is the domain number, Y is the node
number, and Z is the card number. If the LWX application is already
configured, the prompt will display the hostname set during
configuration.
If the LWX database is not yet configured, the application does not
launch the configuration dialog. It displays a default configuration in
which all interfaces are in a shutdown state, with no IP addresses
assigned. To configure the LWX application, start the configuration
dialog by typing the following commands:
LWX_d0n1c2> enable
LWX_d0n1c2# setup
Before you begin to use the setup command facility, be sure that you
know what:
• Interfaces the card has
• Protocols the card is routing
• Whether the card is to perform bridging
• Network addresses for the protocols being configured
• Password strategy for your environment
You must run through the entire configuration dialog even if you only
want to change a few items. To accept default settings for items that you
do not want to change, press Return.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 2 - 3
Page 32
Configuring Features Using the Setup Command Installing and Configuring LWX
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
The configuration dialog begins with text as shown in Example 2-1.
Continue answering questions until all interfaces have been configured
and you have saved the configuration.
Example 2-1 Setup Command Facility Example
LWX_d0n1c1#setup
--- System Configuration Dialog ---
At any point you may enter a question mark ’?’ for help.
Use ctrl-c to abort configuration dialog at any prompt.
Default settings are in square brackets ’[]’.
Continue with configuration dialog? [yes/no]: yes
First, would you like to see the current interface summary? [yes]:
Note: If a complete configuration of the LWX is not possible using the Cisco
IOS setup command facility, request at least one protocol from the global
parameters. At the end of the setup sequence, answer Yes to the question “Use
this configuration?” Not accepting the configuration can corrupt the configuration
database. The configuration can be changed later through the setup command
or the configure command.
When the setup routine is complete, restart the LWX using the reload
command.
2 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 33
Installing and Configuring LWX Configuring the Application as a TFTP Server
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configuring the Application as a TFTP Server
LWX Release 3.04 allows you to configure the LWX as a Trivial File
Transfer Protocol (TFTP) server.
Example 2-2 provides an example of the command syntax necessary to
begin and complete a typical configuration. Enter configuration
commands, one per line. Press Control- Z to implement and exit the
configuration process. Note that only one configuration command
(conf t) is entered in this example.
For specific information on the TFTP configuration process, refer to the
accompanying Cisco document set Router Products Configuration and
Reference.
Example 2-2 Establishing a TFTP Server Configuration
n1c24# conf t
n1c24(config)# tftp-server flash lwxg54.03
n1c24(config)# end
n1c24# wr
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 2 - 5
Page 34
Backing Up the LWX Configuration Installing and Configuring LWX
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Backing Up the LWX Configuration
A working copy of the LWX configuration is loaded into DRAM, while
the application is stored in non-volatile memory (NVRAM) or kept as a
file on a remote host. The show config command displays the NVRAM
version of the configuration, while the show running (previously write
term) command displays the working configuration. (All commands
used in this section are Cisco IOS commands.)
Note: Several Cisco IOS commands, including show running, copy
running-config, and copy startup-config tftp, have multiple forms. LWX
supports both the old and new forms; the new form is used in this document.
Storing the
Configuration in
NVRAM
Storing the
Configuration on a
Remote Host
Example 2-3 Writing the Configuration File to a Host
LWX_d0n157c41# copy startup-config tftp
Remote host [134.56.186.115]?
Name of configuration file to write [n4c5-config]?
Write file n4c5-config on host 134.56.186.115? [confirm] y
Writing n4c5-config ...
[OK]
Use the enabled command copy running-config to store the
configuration in NVRAM.
1. Use the enabled command copy startup-config tftp to store the
configuration as a file on a remote host. The operating system
requests the destination host’s address and a file name, as shown in
Example 2-3.
2. To load the configuration from the network, use the enabled
command configure and then enter network as shown in Example
2-4.
Example 2-4 Loading the Configuration from the Network
Configuring from terminal, memory, or network [terminal]? network
2 - 6 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 35
Installing and Configuring LWX Backing Up the LWX Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
3. Next, the operating system asks whether to use a host or network
configuration file, and prompts you for the address of the host and a
configuration filename as shown in Example 2-5.
Example 2-5 Entering the Host/Network Configuration File Information
Host or network configuration file [host]?
IP address of remote host [255.255.255.255]? 134.56.186.115
Name of configuration file [n4c5-config]?
Configure using n4c5-config from 134.56.186.115? [confirm]yes
Booting n4c5-config from 134.56.186.115: !! [OK - 874/160000 bytes]
Backup and
Restore of
Archived
Configuration
Files
Example 2-6 NVRAM Unpack Command
LWX_d1961n1c33#nvram unpack pack.dba
LWX_d1961n1c33#nvram_unpack: Unpacking archive file: pack.dba
UnpackArchiveFile: Opening archive file pack.dba
COMPLETE file pack.dba with 2386 bytes
UnpackArchiveFile: Reading arcFH to archive file for 274 bytes
UnpackArchiveFile: Got total files 3
File config.lwx is 1393 bytes
File platform.dbs is 403 bytes
File confreg.lwx is 100 bytes
Unpacking file config.lwx, 1393 bytes
Unpacking file platform.dbs, 403 bytes
Unpacking file confreg.lwx, 100 bytes
To bring this restored configuration on line issue a 'reload'
command!
LWX Release 3.04 and higher provides an NVRAM Unpack CLI
command which allows the user to manually unpack an archived
configuration file which has been downloaded to an LWX node.
When the user issues the command and specifies the filename of the
archived configuration, the archived configuration is unpacked and will
be ready for restoration to active operation upon a restart of the LWX card
as shown in Example 2-6.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 2 - 7
Page 36
Backing Up the LWX Configuration Installing and Configuring LWX
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
2 - 8 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 37
1Chapter 3
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
3Verifying the
Configuration and
Connections
This chapter describes how to verify the LWX configuration, physical
connections, and logical connections. This section discusses the
following topics:
• Verifying the Configuration on page 3-2
• Verifying Connections on page 3-4
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 3 - 1
Page 38
Verifying the Configuration Verifying the Configuration and Connections
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Verifying the Configuration
The show config command displays the LWX database configuration
that is stored in NVRAM (stored using the copy running-config
command). Using the show running command displays the working
configuration stored in flash memory.
Changes made to the working configuration but not copied to the
NVRAM appear when show running is entered, but not show config. In
Example 3-1, typing show config at the prompt would not display the
lines shown in bold if source bridging were configured but not written to
NVRAM.
3 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 39
Verifying the Configuration and Connections Verifying the Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Example 3-1 Verifying the Stored Configuration
LWX_d0n157c41# show running
Using 999 out of 31456 bytes
!
hostname n157c5
!
!
!
!
!
interface CBus 0
no ip address
!
interface TokenRing 0
ip address 134.56.186.121 255.255.255.248
no keepalive
source-bridge 4 6 200
source-bridge spanning
multiring all
!
interface Serial 0
ip address 134.56.194.106 255.255.255.248
!
.
.
interface Serial 7
ip address 134.56.186.114 255.255.255.248
shutdown
!
!
router rip
network 134.56.0.0
!
ip route 134.56.0.0 255.255.0.0 134.56.186.112
!
!
ip name-server 255.255.255.255
!
!
line cbt 0
login
line vty 0 4
login
line con 0
exec-timeout 0 0
stopbits 1.5
line cbt 0
stopbits 1.5
line vty 0
line vty 1
line vty 2
line vty 3
line vty 4
!
end
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 3 - 3
Page 40
Verifying Connections Verifying the Configuration and Connections
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Verifying Connections
This section describes how to verify physical and logical connections
from OSI layer one to layer three.
Verifying Token
Ring Connections
Example 3-2 Verifying Token Ring Connections
LWX_d0n157c41#show interface t 0
TokenRing 0 is up, line protocol is up
Hardware is Token Ring 16M, address is 0080.b210.017f (bia 0080.b210.017f)
Internet address is 134.56.186.124, subnet mask is 255.255.255.248
MTU 4472 bytes, BW 16000 Kbit, DLY 630 usec, rely 255/255, load 1/255
Encapsulation SNAP, loopback not set, keepalive not set
ARP type: SNAP, ARP Timeout 4:00:00
Ring speed: 16 Mbps
Multiring node, Source Route Bridge capable
Group Address: 0x00000000, Functional Address: 0x00000100
Last Ring Status 2d21 <Only station> (0x40)
Last input 0:00:01, output 0:00:01, output hang never
Last clearing of "show interface" counters never
Output queue 0/40, 0 drops; input queue 0/75, 1 drops
Five minute input rate 0 bits/sec, 0 packets/sec
Five minute output rate 0 bits/sec, 0 packets/sec
102987 packets input, 14310193 bytes, 0 no buffer
Received 102954 broadcasts, 0 runts, 0 giants
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
1322 packets output, 115191 bytes, 0 underruns
0 output errors, 4 interface resets, 0 restarts
12 transitions
To check the Token Ring connection, type show interface t 0 at the
prompt. In Example 3-2, the lines in bold show the general status and the
packets being input and output.
3 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 41
Verifying the Configuration and Connections Verifying Connections
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Verifying Ethernet
Connections
Example 3-3 Verifying Ethernet Connections
LWX_d0n157c41#show int e 0
Ethernet 0 is up, line protocol is up
Hardware is Lance, address is 0080.b210.00c2 (bia 0000.0000.0000)
Internet address is 134.56.186.5, subnet mask is 255.255.255.248
MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec, rely 255/255, load 1/255
Encapsulation ARPA, loopback not set, keepalive set (10 sec)
ARP type: ARPA, ARP Timeout 4:00:00
Last input 0:00:00, output 0:00:25, output hang never
Last clearing of "show interface" counters never
Output queue 0/40, 0 drops; input queue 32/75, 0 drops
Five minute input rate 0 bits/sec, 1 packets/sec
Five minute output rate 0 bits/sec, 0 packets/sec
650672 packets input, 71404625 bytes, 0 no buffer
Received 650435 broadcasts, 0 runts, 0 giants
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
4387 packets output, 400260 bytes, 0 underruns
0 output errors, 115 collisions, 0 interface resets, 0 restarts
To check Ethernet connections, type show int e 0 at the prompt.
In Example 3-3, the lines in bold show the general status and the packets
being input and output. For example:
Verifying
Connections with
Ping
Example 3-4 Verifying Connections with Ping
LWX_d0n157c41#ping 134.56.186.121
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 134.56.186.121, timeout is 2 seconds:
.!!!!
Success rate is 80 percent (4/5), round-trip min/avg/max = 4/4/4 ms
LWX_d0n157c41#ping 134.56.186.121
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 134.56.186.121, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
Ping examines the connections between the LWX and another LWX or
external router up through OSI layer three. It sends an echo-request
packet to the target address. If the target has a matching address, it returns
an echo-response packet. Failures can occur because a route could not be
established within the timeout period, or because an ARP was required
for a MAC address (shown in Example 3-4).
ping <address>
where <address> is an IP address on the LWX or external router. For
example:
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 3 - 5
Page 42
Verifying Connections Verifying the Configuration and Connections
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Verifying
Connections with
Telnet
Example 3-5 Verifying Connections with Telnet
hostname#telnet 134.56.27.50
Trying 134.56.27.50 ... Open
User Access Verification
Password:
LWX_d0n157c41>
To check that routing is working, telnet to a remote LWX or external
router. The telnet protocol allows any customer to log onto remote hosts.
telnet makes the other hosts appear as if they are all using the same
technique to display information. An example command syntax is shown
below.
telnet <address>
where <address> is an IP address on the LWX or external router. A
sample screen session is shown in Example 3-5.
You would enter your password when prompted.
3 - 6 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 43
1Chapter 4
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
4Upgrading the LWX
Application
This chapter describes methods for upgrading the LWX application. The
application is upgraded by transferring the image to the flash memory and
selecting it as the boot image. Upgrading the Bootstrap program is also
covered.
This chapter contains the following sections:
• Preparing the Card for a New Application Image on page 4-2
• Downloading an Image from a PCMCIA Card on page 4-4
• Upgrading Cards on a Network Using TFTP on page 4-6
• Upgrading the Application Using the PX3 Bootstrap Program on
page 4-8
• Upgrading the PX3 Bootstrap Program on page 4-12
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 4 - 1
Page 44
Preparing the Card for a New Application Image Upgrading the LWX Application
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Preparing the Card for a New Application Image
Before transferring the LWX application image to the flash memory of
the PX3 card, you must determine the size of the image and prepare the
flash by allocating sufficient RAM for the image.
Use the flash dir command to determine the amount of RAM required.
This command displays the size of the image in bytes, which can be
converted to megabytes by dividing by 1,000,000.
For example, an image that is 4063372 bytes is 4.06 megabytes (MB).
The amount of RAM required is the next highest integer, 5 MB.
To prepare the PX3 card for a new application image
1. Allocate sufficient RAM for the image by running ramloadmode.
Example 4-1 Allocating RAM Using ramloadmode
LWX_d0n157c41#ramloadmode 5
Reload for the new ram load mode to take effect.
LWX_d0n157c41#reload
Proceed with reload? [confirm]
%SYS-5-RELOAD: Reload requested
Reloading .....
Caution: Be sure to allocate sufficient RAM for the new image. If you do not
allocate enough RAM, the downloading process will leave your card in the PX3
booter.
2. Check the flash directory to determine if there is sufficient room for
the image, by entering flash dir.
Example 4-2 Checking the Flash Directory
LWX_d0n157c41#flash dir
LWXG50 .38 5324940 @ 3
LWXG54 .03 7091984 @ 24
Flash space occupied = 14680064 bytes, free = 2097152 bytes
3. Delete older files if necessary to create room for the image.
Example 4-3 Deleting Files from Flash Memory
LWX_d0n157c41#flash del lwxg50.38
eeeeeeeeeeeeeeeeeeeeeee
4 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 45
Upgrading the LWX Application Preparing the Card for a New Application Image
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
4. Run the show version command to verify that the application is in
read-write mode.
Example 4-4 Running the show version command
LWX_d0n157c41#show version
LWX Software (PX3) Version g3.03.01(54.03), RELEASE SOFTWARE
Copyright 1997 by Network Equipment Technologies, Inc. Fremont, CA 94555
All Rights Reserved
Compiled Thu Apr 1 18:37:40 PST 1999 by lwxrel
Image text-base: 0x20000058, data-base: 0x08030000
LWX3 Boot Monitor, Version 1.0(19) [Build 104]
LWX_d0n157c41 uptime is 11 minutes
System restarted by reload
Running default software
N.E.T PX3 (68040) processor (revision A) with 15553K (System Memory)/1984K (IO
Memory) bytes of memory.
Processor board ID 1487295
Bridging software.
SuperLAT software copyright 1990 by Meridian Technology Corp).
X.25 software, Version 2.0, NET2, BFE and GOSIP compliant.
TN3270 Emulation software.
1 Ethernet/IEEE 802.3 interface(s)
8 Serial network interface(s)
1 netCbus interface.
128K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)
Running from system RAM. 8 megabytes used.
Running image: lwxG54.03
Location: Domain Number: 0 Node: 157 Card: 41
Packet Memory size: 8192K bytes
PX3 Boot version 1.2.1.7 Mon Jun 29 16:37:27 PDT 1998
PX3 LCA version p23j_c25bc29a_t14a_8e.exo.bin Fri Jun 26 10:07:36 PDT 1998
Configuration register is 0x101
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 4 - 3
Page 46
Downloading an Image from a PCMCIA Card Upgrading the LWX Application
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Downloading an Image from a PCMCIA Card
After preparing the card, you can upgrade the application image.
PX3 cards on a network can be upgraded by downloading the LWX
application image from a PCMCIA card to the flash memory of a PX3
card on the network, then transferring the new image to other cards on the
network using TFTP.
PCMCIA cards are not supported in LWX releases prior to 3.02.03. You
must upgrade from earlier LWX releases by using the PX3 boot menus
(see Upgrading the Application Using the PX3 Bootstrap Program on
page 4-8).
To download a new application image from a PCMCIA card
1. To download the image, you must be running in ramloadmode.
2. Mount the PCMCIA card by entering pcmcia mount.
Example 4-5 Mounting a PCMCIA Card
LWX_d0n157c41#pcmcia mount
Flash device size = 8388608 at 04000000
/flash/1 installed
3. Check the PCMCIA directory for the image filename by entering
pcmcia dir.
Example 4-6 Checking the PCMCIA Directory
LWX_d0n157c41#pcmcia dir
LWXG54 .03 7091984 @ 3
PCMCIA space occupied = 7602176 bytes, free = 786432 bytes
4. Copy the image to the flash by entering the pcmcia copy command.
Example 4-7 Copying an Image to Flash Memory
LWX_d0n157c41#pcmcia copy to flash LWXG54.03 lwxb.1
eeeeeee
LWX_d0n157c41#flash dir
LWXG54 .03 7091984 @ 3
LWXB .1 828964 @ 31
If you receive an error message stating that “the image may not be
contiguous”, delete all images on the flash and reload if necessary.
4 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 47
Upgrading the LWX Application Downloading an Image from a PCMCIA Card
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
5. Set the new version as the boot image, enter ramloadmode 0 and
reload.
Example 4-8 Setting the Boot Image
LWX_d0n157c41#setbootimage lwxb.1
LWX_d0n157c41#ramloadmode 0
Reload for the new ram load mode to take effect.
LWX_d0n157c41#reload
Proceed with reload? [confirm]yes
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 4 - 5
Page 48
Upgrading Cards on a Network Using TFTP Upgrading the LWX Application
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Upgrading Cards on a Network Using TFTP
Once you have downloaded the new application image onto a PX3 card,
you can transfer the new image to cards on a network using TFTP. To do
so, you must first configure the new version to a TFTP server.
To upgrade PX3 cards on a network using TFTP
1. Configure the new version of the LWX application as a TFTP server.
Example 4-9 Configuring LWX as a TFTP Server
LWX_d0n157c41#conf t
Enter configuration commands, one per line. End with CNTL/Z.
LWX_d0n157c41(config)#tftp flash lwxb54.03
LWX_d0n157c41(config)#end
LWX_d0n157c41#
%SYS-5-CONFIG_I: Configured from console by console
LWX_d0n157c41#
LWX_d0n157c41#
LWX_d0n157c41#wr
Building configuration...
[OK]
LWX_d0n157c41#
Once the new application is configured as a TFTP server, prepare each
card to be upgraded (see Preparing the Card for a New Application Image
on page 4-2) and send a request for the application image from each card.
2. Ping the IP address of an active interface on the card acting as the
TFTP server.
Example 4-10 Pinging the TFTP Server Card
LWX_d0n159c8#ping 10.1.1.101
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.1.1.101, timeout is 2 seconds:
.!!!!
Success rate is 80 percent (4/5), round-trip min/avg/max = 1/2/4 ms
LWX_d0n159c8#flash dir
LWXG54 .03 7091984 @ 3
Flash space occupied = 9175040 bytes, free = 7602176 bytes
4 - 6 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 49
Upgrading the LWX Application Upgrading Cards on a Network Using TFTP
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
3. Download the application image to the flash memory of each card.
Example 4-11 Downloading an Image to Flash Memory
LWX_d0n159c8#flash load
Address or name of remote host [134.56.27.100]?
Source file name? lwxG54.03
Destination file name [lwxg54.03]?
Accessing file ’lwxg54.03’ on 134.56.27.100...
Loading lwxg54.03 .from 134.56.27.100 (via Ethernet0): ! [OK]
e
Loading lwxg54.03 from 134.56.27.100 (via Ethernet0):
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!e!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!e!!!
[OK - 7091984/9437184 bytes]
ee
Flash copy took 0:08:27 [hh:mm:ss]
LWX_d0n159c8#flash dir
LWXG50 .38 5324940 @ 3
LWXG54 .03 7091984 @ 24
Flash space occupied = 14680064 bytes, free = 2097152 bytes
4. Set the new image as the boot image, run ramloadmode and reload
(as shown in Example 4-8)
5. Repeat steps 2, 3, and 4 from each PX3 card being upgraded on the
network.
If you encounter problems loading the application, see Problem
Checklists on page 5-1.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 4 - 7
Page 50
Upgrading the Application Using the PX3 Bootstrap Program Upgrading the LWX Application
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Upgrading the Application Using the PX3 Bootstrap Program
If the flash memory is empty, corrupted, or does not contain the LWX
application, you can upgrade the flash memory using the PX3 Bootstrap
program. You can upgrade the application using the boot menus either by
downloading the image from a PCMCIA card or by transferring the
image using FTP.
Upgrading from a
PCMCIA Card
Example 4-12 Logging In to the PX3 Bootstrap Program
Login: changeme
Password:
PX3 BOOTSTRAP
Top Level Menu
1 (EXA) Examine Items
2 (MOD) Modify configuration
3 (FIL) File Operations
4 (LOG) Logout
5 (EXI) Exit and restart
To upgrade from a PCMCIA card using the PX3 Bootstrap program
1. Login to the Bootstrap program. The default username and password
are both changeme.
2. Insert the PCMCIA card containing the LWX upgrade into the slot on
the face of the PX3.
The card slides into place with a small amount of effort.
3. Display the File submenu by entering fil.
Example 4-13 Displaying the File Submenu
PX3 BOOTSTRAP
Top Level Menu
1 (EXA) Examine Items
2 (MOD) Modify configuration
3 (FIL) File Operations
4 (LOG) Logout
5 (EXI) Exit and restart
Enter> fil
4. Mount the PCMCIA card by entering mou.
4 - 8 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 51
Upgrading the LWX Application Upgrading the Application Using the PX3 Bootstrap Program
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Example 4-14 The Bootstrap File Submenu
PX3 BOOTSTRAP
File ...
1 (PWD) PWD Print Working Directory
2 (DIR) Directory of files
3 (CD ) CD Change to Directory
4 (LIS) List a file
5 (DEL) Delete file
6 (COP) Copy a file
7 (REN) Rename a file
8 (MOU) Mount PCMCIA FLASH Device (/FLASH/1)
9 (DOS) DOS Fs Config Info
10 (CAL) Calculate Checksum for a File
11 (REA) Read Checksum Information in a file
* 12 (FIN) Finish - return to top menu
Enter> mou
The PCMCIA card is mounted as a file system (/flash/1).
5. Display the PCMCIA directory by entering pwd.
If you do not see the /flash/1 directory, type cd /flash/1 and press
Return to continue.
6. Copy the new image to flash memory by entering
copy<filename>.bin /flash/0/<filename>.bin, where <filename> is
the name of the image you are copying.
Make sure that the name you enter matches the image name exactly.
7. Return to the main menu by entering fin.
8. Make the copied image the boot image by entering mod to display the
Modify configuration menu, then entering set. You are prompted to
enter the filename of the image.
Example 4-15 Setting the Boot Image from Bootstrap
PX3 BOOTSTRAP
Modify ...
1 (ACC) Access List of IP Addresses
2 (SET) Set Boot Image
3 (PAS) Password Set for Booter Login
4 (USE) User ID Set for Booter Login
* 5 (FIN) Finish
Enter> set
9. Return to the main menu; exit and restart the card by entering exi.
This resets and reloads the PX3 card with the new application.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 4 - 9
Page 52
Upgrading the Application Using the PX3 Bootstrap Program Upgrading the LWX Application
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
10. Type yes when prompted to reset the PX3 card.
The application is now upgraded.
Note: If the system produces a file titled panic.log on the /nvram/0 file partition,
please provide it to your N.E.T. field service representative.
11. Press the eject button to remove the PCMCIA card and to maintain
proper air flow through the PX3 card.
Note: Do not leave the PCMCIA card in the slot for an extended time period.
4 - 10 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 53
Upgrading the LWX Application Upgrading the Application Using the PX3 Bootstrap Program
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Transferring an
Image Using FTP
To upgrade using FTP, the PX3 card being upgraded must be connected
to a workstation running FTP through an Ethernet interface card.
To FTP an image using PX3 boot menus
1. Login to the Bootstrap program.
2. Invoke FTP to start the file transfer process.
3. Enter the IP address of the Ethernet port on the PX3 card.
4. Select or type bin to select binary transfer mode.
If a dialog box appears on your system, enter any random user ID or
password; otherwise, continue to the next step.
5. Type hash to display the progress of the file transfer
(on Unix workstations only - hash mode may not be available in some
FTP programs.).
6. Enter cd /flash/0.
7. Enter put lwx<version>, where <version> indicates the version; for
example, g54.03 indicates global version 54.03.
This command places the upgraded application into the flash
directory.
8. Enter bye to log out of the FTP program.
For more information on PX3 card operations, refer to the PX Platform
Guide.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 4 - 11
Page 54
Upgrading the PX3 Bootstrap Program Upgrading the LWX Application
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Upgrading the PX3 Bootstrap Program
New versions of the PX3 Bootstrap program, containing new features or
enhancements are released periodically. Bootstrap program upgrades
should normally be performed by qualified support personnel.
To upgrade the PX3 bootstrap program
1. Load the new bootstrap image into flash memory using the flash load
command.
2. Replace the older image with the new image loaded into flash
memory using the replacepx3bootstrapper command. The filename
specified in the command should already exist in /flash/0.
Caution: Do not enter an incorrect image name. Doing so could damage the
card and require factory service.
An example syntax is shown in Example 4-16:
replacepx3bootstrapper <filename>, where <filename> is the name of
the image being replaced.
Example 4-16 Replacing the PX3 Bootstrapper Program
LWX_d0n157c41#replacepx3bootstrapper px3boot.5
Replacing the PX3 bootstrapper with px3boot.5
File size = 813792 bytes in 813792 blocks
eeee!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!
Boot code replaced
LWX_d0n157c41#
LWX_d0n157c41#ramloadmode 0
Reload for the new ram load mode to take effect.
LWX_d0n157c41#reload
Proceed with reload? [confirm]y
4 - 12 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 55
1Chapter 5
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
5Problem Checklists
This chapter provides checklists for troubleshooting problems that can
occur during installation. These checklists are not intended to be in-depth
troubleshooting procedures.
The following problems are discussed in this section:
• If you cannot install a PX3 card on page 5-2
• If the PX3 card does not load the LWX code on page 5-2
• If you cannot connect to a PX3 card on page 5-2
You need to have the following information ready before contacting your
support organization for assistance:
• Promina software version
• LWX software version
• PX3 card hardware revision level
• Boot code revision level
• Location (node and card) of the problem
• Complete description of the problem and symptoms
• Modem number for remote login to the Promina node
Note: The first time you connect using the card connect and/or connect to PX
card feature you do not need a password. You can subsequently change the
configuration to set a password for the following types of connections: card
connections, console connections, and telnet connections.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 5 - 1
Page 56
Checklists for Installation Problems Problem Checklists
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Checklists for Installation Problems
The following checklists are not sequential; if one of the listed items
solves the problem, there is no need to follow the other items for that
problem.
If you cannot install a PX3 card
• Wait 30 seconds for hardware initialization to complete and retry
• Verify that the Promina software is at Release 1.x2 or later
• Verify that the power LED is steadily on
• Verify that the heartbeat LED is flashing once per second
• Reseat the PX3 card in the slot, wait 30 seconds, and reinstall the card
• Contact your support organization
If the PX3 card does not load the LWX code
• Check the Promina event log for PX3-related events
• Log in to the booter (see Upgrading the Application Using the PX3
Bootstrap Program on page 4-8)
• Verify that the boot image is correct
• Contact your support organization
If you cannot connect to a PX3 card
• Query the card (using the Promina Operator Interface) to verify it is
“active” and “up”, and running the correct version of LWX
• Verify connectivity to the node
Refer to the PX Platform Guide for more information on installing the
PX3 card, and to the Promina Series documentation set for information
on the Promina Operator Interface.
5 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 57
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
6Alarms and Events
This section describes the events generated by the LWX application (type
90 events). The PX platform cards also generate type 27 events for events
that occur at the card level; see the Alarms and Events Manual in the
Promina Series document set for details on type 27 events.
Caution: Remove the front card before reseating the rear interface card to
prevent damage to the card.
90.1
Event Message <card ID> Ethernet back card failure
Alarm Message ENET I/F FAILURE
Default Level Major – this alarm requires urgent action.
1Chapter 6
Description The Ethernet interface card has experienced a failure. This may be caused
by a true hardware failure of the Ethernet card, or the Ethernet card has
become un-seated in its slot on the Promina shelf.
Action Re-seat the front card (PX) and the Ethernet interface card and reboot the
code. If the condition persists, replace the Ethernet card and contact your
support organization.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 6 - 1
Page 58
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Alarms and Events
90.2
Event Message <card ID> Token Ring back card failure
Alarm Message TR I/F FAILURE
Default Level Major – this alarm requires urgent action.
Description The Token Ring interface card has experienced a failure. This may be
caused by a true hardware failure of the Token Ring card, or the Token
Ring card has become un-seated in its slot on the Promina shelf.
Action Re-seat the front card (PX) and the Token Ring interface card, and reboot
the code. If the condition persists, call TAC or replace the Token Ring
card.
90.3
Event Message <port ID> HDLC controller failure
Alarm Message HDLC FAILURE
Default Level Info – this alarm might indicate a problem that should be investigated.
Description A hardware problem has occurred with the HDLC controller.
Action If there is a serial port available transfer the traffic to the available serial
controller. If there is no serial port available, replace the PX card. Contact
your support organization for assistance.
90.4
Event Message <port ID> HDLC controller unexpected LOS
Alarm Message HDLC LOS
Default Level None
Description The HDLC controller on the PX card for port <port ID> has had an
unexpected loss of signal.
Action If there is a serial port available transfer the traffic to the available serial
controller. If there is no serial port available call TAC or replace the PX
card.
6 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 59
Alarms and Events
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
90.5
Event Message <Port ID> HDLC port activated
Alarm Message No alarm
Default Level None
Description This event occurs whenever the PX card activates or deactivates one of
the eight internal HDLC ports attached to the card.
Action None
90.6
Event Message <Port ID> HDLC port de-activated
Alarm Message No alarm
Default Level None
Description This event occurs whenever the PX card activates or deactivates one of
the eight internal HDLC ports attached to the card.
Action None
90.7
Event Message <card ID> Network download failed
Alarm Message DWNLD FAILURE
Default Level Major – this alarm requires urgent action.
Description This event occurs when the attempt to download the LWX code over the
network using TFTP has failed.
Action Try another path to the card acting as the TFTP server. Make sure there is
a link up to the card. Contact your support organization for assistance.
90.8
Event Message <card ID> Loaded image does not match function
Alarm Message IMAGE/FUNC MISMATCH
Default Level Major – this alarm requires urgent action.
Description The PX card can be configured for FRX and LWX code. This message
means that the card is configured for LWX, and the code that was loaded
onto the card is not LWX code (for example, FRX code loaded onto an
LWX-configured card.)
Action Make sure that the correct code is loading. Contact your support
organization for assistance.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 6 - 3
Page 60
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Alarms and Events
90.9
Event Message <card ID> LWX system restart
Alarm Message LWX RESTART
Default Level Critical – requires immediate action to solve a network-affecting
problem.
Description The LWX card has restarted; this can occur for one of several reasons: the
card was removed from the slot and re-inserted, the Reset switch on the
front of the card was triggered, or the card had an internal failure causing
the restart.
Action If the operator restarted the card, then no action is necessary. If the card
restarts by itself frequently, contact your support organization.
90.10
Event Message Error in <operation> DLM <DLM <DLM name>: <reason>
Alarm Message LWX ERRMS G
Default Level Major – this alarm requires urgent action.
Description The LWX had an error pertaining to a DLM (Dynamically Loadable
Module). The <operation> could be Loading, Unloading or Initializing,
depending on when the error occurred during the load process.
This message applies to the PX2 card only. It is not applicable to
LWX Release 3.01 and later.
6 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 61
Alarms and Events
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
<DLM name> can be any one of the DLMs listed in Table 6-1, or cache if
the <operation> is initializing.
Table 6-1 DLM Names for Event 90.10
DLM Protocol
ATALK AppleTalk
BRIDGE SRB, Transparent, Lan Manager, Netbios
DECCLNS DECnet, CLNS, ESIS, ISIS
FRAMEREL Frame Relay
OSPF OSPF
PPP PPP
SDLC SDLC
SMDS SMDS
SNMP SNMP
STUN STUN
VINES Banyan VINES
XNS XNS, NOVELL, Apollo
X.25 X.25
The <reason> is a short description of the reason for the error. Possible
reasons are listed in Table 6-2:
Table 6-2 Reason Codes for Event 90.10 (1 of 2)
Possible Reasons
All DLM operations are disabled
Card options are not enabled for this DLM
Decompression failure
DLM data is corrupted
DLM is permanently loaded
DLM is still implicitly loaded
DLM not found
DLM version does not match base
Error reading DLM
Insufficient memory available
(internal error) did not initialize cache
(internal error) tried to read released DLM
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 6 - 5
Page 62
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Alarms and Events
Table 6-2 Reason Codes for Event 90.10 (2 of 2)
Possible Reasons
(internal error) tried to re-initialize MEM cache
(internal error) tried to release unread DLM
Invalid directory format
Invalid DLM format
Action Different action is called for, depending on the reason displayed in the
<reason> field.
• For all errors, make sure that there is a valid path to the source of the
DLMs.
• If the error is Card options not enabled for this DLM, it means that the
option is not available on this LWX. Some options are not included in
the base LWX, including x.25 and Bridging. Contact your sales
representative to arrange for these options to be installed.
• If the <reason> is (internal error), this is a serious problem - call TAC.
6 - 6 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 63
Alarms and Events
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
90.11
Event Message <card ID> LWX Backcard interface Shutdown
Alarm Message BC I/F SHUTDOWN
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The LWX backcard interface was shut down.
Action None
90.12
Event Message <card ID> LWX Backcard interface Up
Alarm Message BC I/F UP
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The LWX backcard is back up.
Action None
90.13
Event Message <card ID> LWX Configuration
Alarm Message LWX CONFIG
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The LWX received a new configuration.
Action None
90.14
Event Message <card ID> LWX IP Routing Enable
Alarm Message IP ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The IP routing protocol has been enabled on this card.
Action None.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 6 - 7
Page 64
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Alarms and Events
90.15
Event Message <card ID> LWX DECNET Routing Enable
Alarm Message DECNET ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The DECNET routing protocol has been enabled on this card.
Action None.
90.16
Event Message <card ID> LWX CLNS Routing Enable
Alarm Message CLNS ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The CLNS routing protocol has been enabled on this card.
Action None.
90.17
Event Message <card ID> LWX AppleTalk Routing Enable
Alarm Message APPLETALK ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The AppleTalk routing protocol has been enabled on this card.
Action None.
90.18
Event Message <card ID> LWX XNS Routing Enable
Alarm Message XNS ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The XNS routing protocol has been enabled on this card.
Action None.
6 - 8 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 65
Alarms and Events
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
90.19
Event Message <card ID> LWX NOVELL Routing Enable
Alarm Message NOVELL ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The NOVELL routing protocol has been enabled on this card.
Action None.
90.20
Event Message <card ID> LWX VINES Routing Enable
Alarm Message VINES ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The Banyan VINES routing protocol has been enabled on this card.
Action None.
90.21
Event Message <card ID> LWX PUP Routing Enable
Alarm Message PUP ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The PUP routing protocol has been enabled on this card.
Action None.
90.22
Event Message <card ID> LWX APOLLO Routing Enable
Alarm Message APOLLO ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The Apollo routing protocol has been enabled on this card.
Action None.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 6 - 9
Page 66
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Alarms and Events
90.23
Event Message <card ID> LWX CHAOS Routing Enable
Alarm Message CHAOS ROUTING
Default Level Info – this alarm might indicate a problem that should be investigated.
Description The CHAOS routing protocol has been enabled on this card.
Action None.
6 - 10 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 67
1Chapter 7
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
7SNMP Overview
This chapter provides an overview of the Simple Network Management
Protocol (SNMP) agents that are supported in the LWX application. This
chapter contains the following sections:
• Agent Description on page 7-2.
• Recommended Additional Documentation on page 7-4.
Note: This document assumes that the user is familiar with standard SNMP
concepts and it is intended to provide only LWX-specific details, rather than a
general explanation of SNMP principles. For a list of additional resources on
SNMP, see Recommended Additional Documentation on page 7-4.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 7 - 1
Page 68
Agent Description SNMP Overview
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Agent Description
The SNMP agents allow the LWX application to be managed by an
SNMP manager, such as the netMS or PanaVue management system. The
LWX SNMP agents, together with netMS or PanaVue, provide a
powerful system for managing, configuring, and instrumenting the LWX
application across the multiple domains of a SuperWAN.
Two versions of SNMP are supported, SNMP version 1 (SNMPv1) and
SNMP version 3 (SNMPv3). Authorized managers now have a field to
specify the SNMP trap version (v1 or v3). The SNMPv1 authorized
managers utilize the already established community string method of
authentication. The SNMPv3 authorized managers may not specify a
USM user, which is used for more stringent authentication and security
for SNMP transactions.
For more information, see:
• SNMPv1, as described in SNMPv1 Overview on page 7-2.
• SNMPv3, as described in SNMPv3 Overview on page 7-3.
SNMPv1 Overview
The supported SNMPv1 capabilities include:
•get and getNext – An authorized SNMP manager can request
configuration or performance information by sending get request and
get next request messages to the agent. The agent returns the
requested information in a get response message.
•set – An authorized SNMP manager can alter configuration
information at an agent by sending set request messages to the agent.
The agent returns a get response message.
•getBulk– An authorized SNMP manager can query a network entity
efficiently for a tree of information by sending a get bulk request. If
the network entity encounters an error while processing the request,
an error packet will be returned and a message will be displayed,
helping the user to pinpoint why the request was malformed.
•traps – Each agent is configured to send event messages, known as
traps, to one or more authorized managers. The traps alert the
manager of changes at the agent or node, so that the manager can
decide what kind of corrective action, if any, is necessary.
Figure 7-1 illustrates the direction of messages sent between a manager
and agent.
7 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 69
SNMP Overview Agent Description
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Figure 7-1 SNMP Message Types
SNMP
Manager
get request
get response
set request
get response
traps
Promina
Agent
SNMPv3 Overview
SNMPv3 uses a User-based Security Model (USM) for advanced
authentication of users. Rather than having a community string assigned
to an incoming IP address, there are configured users. Each of these users
has an authentication key and a privacy key. The authentication key is a
MD5 or SHA encoded key, which provides encrypted communication
from the manager to the agent and vice versa. This replaces the SNMPv1
community string. In addition to this, there is a privacy key to encrypt the
PDU in the SNMP message using DES encryption providing another
layer of security.
As well as the above keys, each SNMP manager or agent has an assigned
engine ID that identifies that particular SNMP device. This is used in the
generation of the encrypted key so that the two communicating parties
can confirm they are talking to the right device. The engine ID in the
Promina is automatically assigned a value.
Traps within SNMPv3 follow the same mechanism as they do in
SNMPv1. However, they also use the new authentication and privacy
keys rather than the community string. Therefore when configuring an
authorized manager, a selection must be made as to whether to send
version 1 or version 3 traps.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 7 - 3
Page 70
Recommended Additional Documentation SNMP Overview
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Recommended Additional Documentation
This section lists recommended resources of additional information about
SNMP and TCP/IP.
Books There are many good books on the basics of SNMP and TCP/IP. Here are
just a few:
• Managing Internetworks with SNMP by Mark A. Miller, M&T Books
1993 (ISBN 1-55851-304-3) – A good blend of theory and practice,
very readable.
• SNMP, A Guide To Network Management by Dr. Sidnie Feit,
McGraw-Hill, Inc. 1995 (ISBN 0-07-020359-8) – An overview of
SNMPv1 and SNMPv2 principles.
• SNMP, SNMPv2, and RMON by William Stallings, Addison Wesley
Longman, Inc. Reading, MA 1996 (ISBN 0-201-63479-1) – A
practical introduction to SNMP that covers the major principles.
• TCP/IP Illustrated, Volume 1: The Protocols by W. Richard Stevens,
Addison-Wesley Professional Computing Series 1994 (ISBN
0-201-63346-9) – A solid conceptual introduction to SNMP, MIBs,
and related concepts.
Internet
Resources
• Understanding SNMP MIBs by David Perkins and Evan McGinnis,
Prentice-Hall New Jersey 1996 (ISBN 0-13-437708-7) – An
explanation of the MIB structure and ASN.1 format. It provides a
complete guide for using MIBs to manage network devices.
The internet contains hundreds of sites that contain documentation on
SNMP, and the following are good starting places to discover them:
• http://www.snmp.com – Contains basic information about SNMP,
along with links to other resources.
• http://www.snmpinfo.com - Contains basic information about SNMP
and miscellaneous tools.
• http://www.simple-times.org/pub/simple-times/issues – A newsletter
devoted to the promotion of SNMP.
Note: The internet “http” URL addresses given in this section were current as of
this manual’s publication date. However, given the rapidly changing nature of
the internet, these addresses can change at any time.
7 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 71
1Chapter 8
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
8Agent Configuration
This chapter explains how to install and configure the SNMP agent used
in the LWX application. This chapter contains the following sections:
• Configuration Overview on page 8-2.
• Configuring an SNMP EngineID on page 8-4
• Creating an SNMP Group on page 8-6
• Creating an SNMP User on page 8-8.
• Configuring an SNMP EngineID on page 8-4
• Configuring an SNMP Host on page 8-10
• Showing an SNMP EngineID on page 8-11
• Showing an SNMP Group on page 8-12
• Showing an SNMP Host on page 8-13
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 8 - 1
Page 72
Configuration Overview Agent Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configuration Overview
Installing and configuring an SNMP agent, either SNMPv1 or SNMPv3,
involves:
• Configuring the SNMP engineID
• Creating SNMP views to allow the user to access MIBs
• Creating SNMP groups to specify which view(s) that the user can use
as well as setting the level of authentication/privacy for the user
• Creating the SNMP users
After you have created the SNMP views and groups, and configured the
users, you can proceed with configuring the LWX application for SNMP
trap support. See Trap Support on page 9-1.
8 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 73
Agent Configuration Configuration Overview
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Operator Interface The SNMP agents are configured on the LWX module using Cisco IOS
commands issued from the console interface provided when logging into
the card. This can be accomplished by connecting from another processor
on the Promina node or through the LWX card’s front serial console port.
The configuration parameters for an SNMP agent are installed for the
first time using the following commands:
Note: Ensure that you are in configuration mode prior to running the
following commands.
• snmp-server engineID: used to configure names for the local router
• snmp-server view: used to create and configure a new SNMP view
• snmp-server group: used to create and configure a new SNMP
group, or a table that maps SNMP users to SNMP views
• snmp-server user: used to configure a new user to an SNMP group
• snmp-server host: used to configure the recipient of an SNMP trap
operation.
Note: Ensure that you are out of configuration mode prior to running the
following commands.
• show snmp engineID: used to display information about the local
SNMP engineID
• show snmp group: used to display information about each SNMP
group configured on the device
• show snmp user: used to display information about each SNMP
username in the SNMP user’s table
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 8 - 3
Page 74
Configuring an SNMP EngineID Agent Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configuring an SNMP EngineID
You can configure an SNMP engineID for the local SNMP engine on the
router.
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To configure an SNMP engineID
1. Ensure that you are in configuration mode. If not, enter configuration
mode using conf t.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
3. Configure an SNMP EngineID by using snmp-server engineID. The
following example will configure an SNMP engineID of the local
agent called engineID_1.
Example 8-1 Configuring an SNMP EngineID (local agent)
Router(config)# snmp-server engineID local engineID_1
8 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 75
Agent Configuration Creating an SNMP View
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Creating an SNMP View
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To create an SNMP view
1. Enter configuration mode at the router prompt using conf t.
Example 8-2 Entering configuration mode
Router# conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
Example 8-3 Obtaining help with SNMP parameters
Router(config)# snmp-server view ?
WORD Name of the view
Router(config)# snmp-server view SNMP_user1 ?
WORD MIB view family name
Router(config)# snmp-server view SNMP_user1 1.3 ?
excluded MIB family is excluded from the view
included MIB family is included in the view
3. Create an SNMP view using snmp view. The following example will
create an SNMP view called SNMP_user1 and allow all access to the
associated MIB files.
Example 8-4 Creating an SNMP view
Router(config)# snmp-server view SNMP_user1 1.3 included
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 8 - 5
Page 76
Creating an SNMP Group Agent Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Creating an SNMP Group
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To create an SNMP group
1. Ensure that you are in configuration mode. If not, enter configuration
mode using conf t.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
Example 8-5 Obtaining help with SNMP parameters
Router(config)# snmp-server group ?
WORD Name of the group
Router(config)# snmp-server group SNMP_group1 ?
v1 user using the v1 security model
v2c user using the v2c security model
v3 user using the v3 security model
Router(config)# snmp-server group SNMP_group1 v3 ?
auth group using the authNoPriv Security Level
noauth group using the noAuthNoPriv Security Level
priv group using SNMPv3 authPriv security level
Router(config)# snmp-server group SNMP_group1 v3 noauth ?
notify specify a notify view for the group
read specify a read view for the group
write specify a write view for the group
Router(config)# snmp-server group SNMP_group1 v3 noauth read ?
WORD read view name
Router(config)# snmp-server group SNMP_group1 v3 noauth read
SNMP_view1 ?
notify specify a notify view for the group
write specify a write view for the group
Router(config)#snmp-server group SNMP_group1 v3 noauth read
SNMP_view1
8 - 6 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 77
Agent Configuration Creating an SNMP Group
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
3. Create an SNMP group using snmp-server group. The following
example will create an SNMP view called SNMP_group1 with no
authentication, no privacy, but with read access to a view called
SNMP_view1.
Example 8-6 Creating an SNMP group (no authentication)
Router(config)# snmp-server group SNMP_group1 v3 noauth read
SNMP_view1
4. The following example will create an SNMP view called
SNMP_group1 with authentication, no privacy, but with read access
to a view called SNMP_view1.
Example 8-7 Creating an SNMP group (authentication, no privacy)
Router(config)# snmp-server group SNMP_group1 v3 auth read
SNMP_view1
5. The following example will create an SNMP view called
SNMP_group1 with authentication and privacy, but with read access
to a view called SNMP_view1.
Example 8-8 Creating an SNMP group (authentication and privacy)
Router(config)# snmp-server group SNMP_group1 v3 priv read
SNMP_view1
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 8 - 7
Page 78
Creating an SNMP User Agent Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Creating an SNMP User
The following steps assume that a telnet session has previously been
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To create an SNMP user
1. Ensure that you are in configuration mode. If not, enter configuration
mode using conf t.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
Example 8-9 Obtaining help with SNMP parameters
Router(config)# snmp-server user ?
WORD Name of the user
Router(config)#snmp-server user SNMP_user1 SNMP_group1 ?
remote Specify a remote SNMP entity to which the user belongs
v1 user using the v1 security model
v2c user using the v2c security model
v3 user using the v3 security model
Router(config)#snmp-server user SNMP_user1 SNMP_group1 V3 ?
auth authentication parameters for the user
encrypted specifying passwords as MD5 or SHA digests
<cr>
Router(config)#snmp-server user SNMP_user1 SNMP_group1 V3 ?
<cr>
Router(config)#snmp-server user SNMP_user1 SNMP_group1 V3
Adding an snmpv3 user could cause a bootup delay,
do you wish to continue? (y/n)[confirm]y
Router(config)#
8 - 8 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 79
Agent Configuration Creating an SNMP User
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
3. Create an SNMP user using snmp-server user. The following
example will create an SNMP user called SNMP_user1.
Example 8-10 Creating an SNMP user
Router(config)# snmp-server user SNMP_user1 SNMP_group1 V3
Adding an snmpv3 user could cause a bootup delay,
do you wish to continue? (y/n)[confirm]y
Router(config)#
4. The following example will create an SNMP user called
SNMP_user1 with authentication, default password set to password1.
Example 8-11 Creating an SNMP user (authentication, no privacy)
Router(config)# snmp-server user SNMP_user1 SNMP_group1 V3 auth md5
password1
Adding an snmpv3 user could cause a bootup delay,
do you wish to continue? (y/n)[confirm]y
Router(config)#
5. The following example will create an SNMP user called
SNMP_user1 with authentication, default password set to password1,
privacy using DES56, and default privacy password set to password2.
Example 8-12 Creating an SNMP user (authentication and privacy)
Router(config)# snmp-server user SNMP_user1 SNMP_group1 v3
encrypted auth md5 password1 priv des56 password2
Adding an snmpv3 user could cause a bootup delay,
do you wish to continue? (y/n)[confirm]y
Router(config)#
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 8 - 9
Page 80
Configuring an SNMP Host Agent Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configuring an SNMP Host
You can configure an SNMP host to be the recipient of an SNMP trap
operation.
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To configure an SNMP host
1. Ensure that you are in configuration mode. If not, enter configuration
mode using conf t.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
3. Configure an SNMP host by using snmp-server host. The following
example will configure an SNMP host at IP address 134.56.216.23 to
allow for the gathering of the following SNMP trap information:
config, frame-relay, and syslog.
Example 8-13 Configuring an SNMP host
Router(config)# snmp host 134.56.216.23 traps snmp_user1 config
frame-relay syslog
8 - 10 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 81
Agent Configuration Showing an SNMP EngineID
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Showing an SNMP EngineID
You can display information regarding the SNMP engineID for the local
SNMP engine on the router.
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To show an SNMP engineID
1. Ensure that you are not in configuration mode.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
3. Show an SNMP engineID by using show snmp engineID.
Example 8-14 Showing an SNMP engineID
Router#show snmp engineID
Local SNMP engineID: 800000B1FF0000A10016B1BF
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 8 - 11
Page 82
Showing an SNMP Group Agent Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Showing an SNMP Group
You can display information on each SNMP group on the network.
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To show an SNMP group
1. Ensure that you are not in configuration mode.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
3. Show an SNMP group by using show snmp group.
Example 8-15 Showing an SNMP group
Router#show snmp group
groupname: A_P security model:v3 priv
readview :ReadAll writeview: WriteAll
notifyview: <no notifyview specified>
row status: active
groupname: SNMP security model:v3 priv
readview :SNMP_user1 writeview: SNMP_user1
notifyview: <no notifyview specified>
row status: active
groupname: A_noP security model:v3 auth
readview :v1default writeview: <no writeview
specified>
notifyview: <no notifyview specified>
row status: active
groupname: ForV1 security model:v1
readview :ForV1_ReadAll writeview: ForV1_ReadAll
notifyview: <no notifyview specified>
row status: active
groupname: ForV1 security model:v2c
readview :ForV1_ReadAll writeview: ForV1_ReadAll
notifyview: <no notifyview specified>
--More--
8 - 12 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 83
Agent Configuration Showing an SNMP Host
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Showing an SNMP Host
You can display information on each SNMP username in the SNMP
user’s table.
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To show an SNMP host
1. Ensure that you are not in configuration mode.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
3. Show an SNMP host by using show snmp host.
Example 8-16 Showing an SNMP host
Router#show snmp host
Notification host: 134.56.216.23 udp-port: 162 type: trap
user: snmp_user1 security model: v1
Notification host: 134.56.216.23 udp-port: 162 type: trap
user: trap_catcher security model: v1
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 8 - 13
Page 84
Showing an SNMP Host Agent Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
8 - 14 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 85
1Chapter 9
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
9Trap Support
9
This chapter describes the structure of the SNMP traps that are supported
in the LWX application. This chapter contains the following sections:
• Trap Description on page 9-2.
• Configuring an SNMP Host on page 9-3.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 9 - 1
Page 86
Trap Description Trap Support
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Trap Description
Traps are asynchronous messages that notify SNMP managers of
significant events that have occurred at the agent or node. Traps are sent
unsolicited to the SNMP managers that are configured to receive them.
SNMP traps that can be specified by the user are:
• authentication-failure
• linkup
• linkdown
• coldstart
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
9 - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 87
Trap Support Configuring an SNMP Host
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configuring an SNMP Host
You can configure an SNMP host to be the recipient of an SNMP trap
operation.
The following steps assume that a telnet session has been previously
established with the LWX application. See “Verifying Connections with
Telnet” on page 6.
To configure an SNMP host
1. Ensure that you are in configuration mode. If not, enter configuration
mode using conf t.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
3. Configure an SNMP host by using snmp-server host. The following
example will configure an SNMP host at IP address 134.56.216.23 to
allow for the gathering of the following SNMP trap information:
config, frame-relay, and syslog.
Example 9-1 Configuring an SNMP host
Router(config)# snmp host 134.56.216.23 traps snmp_user1 config
frame-relay syslog
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 9 - 3
Page 88
Configuring SNMP Traps Trap Support
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configuring SNMP Traps
Note: Ensure that you have configured the SNMP host. See Configuring
an SNMP Host
You can configure an SNMP host to be the recipient of an SNMP trap
operation.
The following steps assume that a telnet session has been previously
established with the LWX application. See Verifying Connections with
Tel ne t on page 3-6.
To configure SNMP traps
1. Ensure that you are in configuration mode. If not, enter configuration
mode using conf t.
2. To obtain help with SNMP parameters, you can enter a ? after the
parameter. Help information regarding the parameter is listed below
the command line prompt. A new command line prompt is displayed
allowing you to enter additional parameters.
on page 9-3.
Note: For detailed information about Cisco IOS Release 12.1 commands,
see the Cisco IOS Software Configuration document set.
3. Configure SNMP traps by using snmp-server enable traps snmp.
The following example will configure the system for SNMP trap
support.
Example 9-2 Configuring SNMP traps
Router(config)# snmp-server enable traps snmp
9 - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration Guide
Page 89
1Appendix A
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
ALWX Command Reference
This appendix describes the commands specific to the LWX application.
The Cisco IOS commands are documented in the Cisco IOS 11.2
Software Configuration document set.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 A - 1
Page 90
Working with NVRAM Files LWX Command Reference
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Working with NVRAM Files
NVRAM commands allow you to display the contents of the NVRAM
directory, rename a file, or even delete files. Table A-1 describes the
available commands. NVRAM commands are hidden; that is, they do not
appear in the Help facility.
Table A-1 Working with NVRAM Commands
Command Function
nvram dir Displays the NVRAM directory
nvram rename <old name> <new name> Renames a file in NVRAM
nvram delete <filename> Deletes a file in NVRAM
nvram display <filename> Displays a file in NVRAM (for example,
nvram display platform.dbs) This
command is intended for text files only.
Caution: NVRAM files contain system and configuration files, and diagnostic
data. Extreme caution should be used when making changes to these files.
Working with Flash Memory Files
Flash memory commands allow you to display the contents of the flash
memory, rename files, delete files, and specify which file to load into
flash memory from a TFTP server. Table A-2 describes the available
commands.
You must be running in ramloadmode (see Allocating Flash Memory on
page A-3) in order to write to or delete flash memory files.
Table A-2 Working with Flash Memory Commands
Command Function
flash dir Displays the directory of files in flash memory
flash rename <old filename> <new filename> Renames a file in flash memory
flash delete <filename> Deletes a file in flash memory and erases the
flash load Loads a file from a TFTP server into the flash
space occupied by the file flash load
memory. You are prompted for both the
filename and the IP address of the TFTP server
A - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 91
LWX Command Reference Working with PCMCIA Cards
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Working with PCMCIA Cards
Starting with Release 3.02.03, you can copy files into flash memory from
a PCMCIA card, or copy files from flash onto a PCMCIA card. Table A-3
describes the available commands.
See Downloading an Image from a PCMCIA Card on page 4-4 for a
description of upgrading the LWX application from a PCMCIA card.
Table A-3 Working with PCMCIA Cards
Command Function
pcmcia copy from flash <fname> <pname> Copies a file <fname> from flash memory to the
PCMCIA card, and gives it a name, <pname>
pcmcia copy to flash <pname> <fname> Copies a file <pname> from the PCMCIA card
to flash, and gives it a name, <fname>
pcmcia delete <name> Deletes a file, <name>, residing on the
PCMCIA card
pcmcia dir Lists the files on the PCMCIA card
pcmcia mount Mounts the PCMCIA card’s filesystem
pcmcia rename <oldname> <newname> Renames a file on the PCMCIA card
pcmcia unmount Unmounts the PCMCIA card’s filesystem
Allocating Flash Memory
To load an application image into RAM memory, you must first allocate
enough memory to hold the image. Table A-4 describes these commands.
The application defaults to ramloadmode 0, running the working
application from flash memory.
Table A-4 Allocating Flash Memory Commands
ramloadmode 0 Sets the allocation to 0 MB. The application runs
ramloadmode <size> Sets the allocation to <size>, where <size> is the
Command Function
from flash memory, preventing the contents of the
flash from being modified or deleted.
number of megabytes of flash memory needed to
store the image. If the size of the image is not an
integer (for example, 5.2), increase <size> to the
next highest integer (6).
A copy of the application runs from RAM memory,
allowing the flash memory to be modified.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 A - 3
Page 92
Setting the Boot Image LWX Command Reference
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Setting the Boot Image
This command determines which image boots during the next reload.
Table A-5 provides a syntax example. See Upgrading the PX3 Bootstrap
Program on page 4-12 for additional information.
Table A-5 Setting the Boot Image
Command Function
setbootimage <filename> Specifies which LWX application image
should be used to boot the card during the
next reload
Showing the Active Version
This command displays information about the software and the PX3 card
the application is running on. Table A-6 describes this command.
Table A-6 Displaying the Active Version
Command Function
show version Displays information about the software
versions of the LWX application and the
booter, available memory, and the PX3
card
A - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 93
1Appendix B
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
BSSH Support
This appendix describes the configuration process necessary to establish
and support Secure Shell (SSH) connections to and from a LAN/WAN
Exchange (LWX) module.
This appendix contains the following sections:
• SSH Overview on page B-2.
• SSH Configuration on page B-3.
• Restricting Transport Protocol Access on page B-9.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 B - 1
Page 94
SSH Overview SSH Support
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
SSH Overview
SSH is a feature than enables the user to log into an LWX Module over a
network, to execute commands on a remote node, and to transfer files
from one node to another. SSH provides security (through encryption),
integrity, strong authentication, and secure communications over insecure
channels.
LWX Release 3.04 supports SSH Version 1 only. For this release, the
SSH package is imported from Cisco IOS Release 12.3.10. This
implementation utilizes DES encryption (56-bit) with password-based
authentication (no public key authentication support).
SSH provides for a secure alternative to the existing (non-secure)
standard accesses (rlogin and telnet) and standard file transfer accesses
(FTP) into and out of an LWX Module. The user will have the option of
disabling standard access and standard file transfer access through the
Operator Interface (OI).
B - 2 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 95
SSH Support SSH Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
SSH Configuration
In order for SSH sessions to be supported on an LWX Module, the user
will need to perform an initial configuration of the SSH files on the LWX
Module. The SSH configuration process involves the following:
• Configure Host Name
• Configure Domain Name
• Generate RSA Keys
• Configure Timeout Value for User Authentication
• Enable SSH Transport Support for VTYS
• Verify Login Account and Password
• Verify SSH Server Configuration
• Enable SCP Server
• Restart LWX
Configure Host
Name
Example B-1 Configuring Host Name for the LWX
LWX# configure
LWX (config) # hostname myhost
Note: Do not disable standard session and/or standard file transfer access until
you have completed the SSH configuration process and verified that SSH
sessions and secure file transfers are working correctly.
To configure for SSH, perform the following:
1. Configure host name for the LWX (Example B-1):
a. Enable Global configuration mode
b. Login into console using serial port
c. LWX (config) hostname <hostname>
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 B - 3
Page 96
SSH Configuration SSH Support
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Configure Domain
Name
Example B-2 Configuring Domain Name on LWX for SSH Support
p202_lwxc7 (config)# ip domain-name mydomain
Generate RSA
Keys
Example B-3 Generating RSA Key Pair
p202_lwxc7 (config)# crypto key generate rsa
2. Configure domain name needed for using SSH on LWX (Example
B-2). This creates a default domain name that the system software
uses to complete unqualified hostnames:
a. LWX (config)# ip domain-name <domain name>
3. Generate RSA key pair (Example B-3):
a. LWX (config)# crypto key generate rsa
b. Select 1024 bits; this process will take approximately five (5)
minutes to complete
Configure Timeout
Value for User
Authentication
Example B-4 Configuring the Timeout Value for User Authentication
p202_lwxc7 (config)# ip ssh timeout 300
Enable SSH
Transport Support
for VTYS
Example B-5 Enabling SSH Transport Support for the VTYS
p202_lwxc7 # config terminal
p202_lwxc7 (config term)# line vty 0
p202_lwxc7 (config-line)# login local
4. Configure the timeout value for user authentication. If the user fails to
authenticate within the configured time, the connection is aborted
(Example B-4):
a. LWX (config)# ip ssh timeout <seconds>
5. Enable SSH transport support for the virtual terminal (vtys),
(Example B-5):
B - 4 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 97
SSH Support SSH Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Verify Login
Account and
Password
Example B-6 Verifying Login Account and Password
p202_lwxc7 # conf term
p202_lwxc7 (config-term)# username net password 0 net
p202_lwxc7 (config-term)# enable password net
p202_lwxc7 (config-term)# exit
p202_lwxc7 (config)# line
p202_lwxc7 (config-line)# vty 0
p202_lwxc7 (config-line)# password net
p202_lwxc7 (config-line)# login local
Verify SSH Server
Configuration
6. Verify login account and password are set (Example B-6):
a. Configure username/password with minimum privileges (0)
LWX (config-term)# username <username> password 0
<password>
LWX (config-term)# enable password <password>
LWX (config-term)# exit
LWX (config) line
LWX (config-line)# password <password>
7. Verify the SSH server configuration
a. LWX # show crypto mypubkey rsa
Example B-7 Verifying Login Account and Password
p202_lwxc7 # show crypto mypubkey rsa
% Key pair was generated at: 00:00:57 UTC Mar 1 1993
Key name: p202_lwxc7.cnet
Usage: General Purpose Key
Key is not exportable.
Key Data:
305C300D 06092A86 4886F70D 01010105 00034B00 30480241 00C9E5A3 CD6B3C72
DACA41F4 7BC53222 4DB68A74 169F628D 5E370321 AEE47A01 036DD2D9 56116561
F3424AA0 2751798A 074F3C3F 5AA0E07C E51E2E94 B300FFB7 31020301 0001
% Key pair was generated at: 00:01:43 UTC Mar 1 1993
Key name: p202_lwxc7.cnet.server
Usage: Encryption Key
Key is not exportable.
Key Data:
307C300D 06092A86 4886F70D 01010105 00036B00 30680261 00C0FF59 4C2FA65C
411BF82A 196CF8F9 FD9C9732 43945D06 B67342D6 204CC36B 59EBD5D2 598E3F14
BE702E02 D8456475 C338ECE7 E2A93BF4 EB15BE95 B93AA4F3 B7090A9F 6B91BF30
6E0E1833 D51D46A5 464FECE5 C6253234 9F53DD9B D9CB7DF7 47020301 0001
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 B - 5
Page 98
SSH Configuration SSH Support
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Enable SCP Server Enable the SCP Server (Example B-8):
Example B-8 Enabling the SCP Server
p202_lwxc7 # config terminal
p202_lwxc7 (config term)# ip scp server enable
Note: The SCP Server is disabled by default and operates only in server mode
on the LWX. There is no SCP support between cards.
Restart LWX 8. After initializing the LWX Module with the SSH files, reboot the
node to restart the ssh daemon for SSH services to take effect. If you
are only changing the client key files, no reboot is required.
UNIX Server Setup
for SSH
The UNIX system used for network management (netMS) uses the
following directory for storage of the SSH keys and configuration files:
/var/NMS/tmp/s100/.ssh
The following files are placed in this directory when the user (nwkdata)
issues the following command: /usr/bin/ssh-keygen -t rsa1:
identity
identity.pub
authorized_keys
1. Verify that the keys are present in the directory listed above.
2. Ensure that the /var/NMS/tmp/s100 and /var/NMS/tmp/s100/.ssh
directories have the permissions set to 755 and are owned by nwkdata
3. Ensure that the identity.pub file has the permissions set to 644 and is
owned by nwkdata.
4. Ensure that the identity file has the permissions set to 600 and is
owned by nwkdata.
5. Ensure that the authorized_keys file has the permissions set to 644
and is owned by nwkdata.
B - 6 LAN/WAN Exchange Release 3.04 Installation and Configuration
Page 99
SSH Support SSH Configuration
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Enabling TFTP
Server
In order to use non-secure database backup from LWX, you will need to
enable the TFTP server on the netMS system. This feature is disabled by
default.
Edit the /etc/inetd.conf file, uncomment the first line shown below:
#tftp dgram udp6 wait root /usr/sbin/in.tftpd in.tftpd -s /tftpboot
Modify the permissions of the /tftpboot directory to 777 to allow writing
of the database file.
Installation and Configuration Guide LAN/WAN Exchange Release 3.04 B - 7
Page 100
Initiating SSH Sessions SSH Support
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Initiating SSH Sessions
SSH Sessions
from a UNIX
Server
To initiate an SSH session from a UNIX server, execute the following
command:
ssh -c des -1 user name xx.xx.xx.xx (where user name represents the user
login and xx.xx.xx.xx represents the IP address of the NE).
B - 8 LAN/WAN Exchange Release 3.04 Installation and Configuration
Loading...