Patton 3210 Getting Started Guide

Download

IPLink 3210 Series

G.SHDSL VPN Router

Getting Started Guide

Sales Ofﬁce: +1 (301) 975-1000

Technical Support: +1 (301) 975-1007

E-mail: support@patton.com

WWW: www.patton.com

Document Number: 13220U1-002 Rev. A

Part Number: 07M3210-GS

Revised: March 22, 2007

Patton Electronics Company, Inc.

7622 Rickenbacker Drive

Gaithersburg, MD 20879 USA

Tel: +1 (301) 975-1000

Fax: +1 (301) 869-9293

Support: +1 (301) 975-1007

URL: www.patton.com

E-Mail: support@patton.com

Trademark Statement

The term IPLink is a trademark of Patton Electronics Company. All other trademarks presented in this document are the property of their respective owners.

The information in this document is subject to change without notice. Patton Electronics assumes no liability for errors that may appear in this document.

Warranty Information

The software described in this document is furnished under a license and may be used or copied only in accordance with the terms of such license.

Patton Electronics warrants all IPLink router components to be free from defects,

and will—at our option—repair or replace the product should it fail within one year from the ﬁrst date of the shipment.

This warranty is limited to defects in workmanship or materials, and does not cover customer damage, abuse or unauthorized modiﬁcation. If the product fails to perform as warranted, your sole recourse shall be repair or replacement as described above. Under no condition shall Patton Electronics be liable for any damages incurred by the use of this product. These damages include, but are not limited to, the following: lost proﬁts, lost savings and incidental or consequential damages arising from the use of or inability to use this product. Patton Electronics speciﬁcally disclaims all other warranties, expressed or implied, and the installation or use of this product shall be deemed an acceptance of these terms by the user.

Summary Table of Contents

1 General information...................................................................................................................................... 19

2 Hardware installation.................................................................................................................................... 26

3 Getting started with the IPLink .................................................................................................................... 34

4 G.SHDSL Basic Configuration ..................................................................................................................... 40

5 VPN configuration ........................................................................................................................................ 45

6 Access control list configuration.................................................................................................................... 57

7 Link scheduler configuration ........................................................................................................................ 71

8 LEDs status and monitoring ......................................................................................................................... 90

9 Contacting Patton for assistance ................................................................................................................... 92

A Compliance information .............................................................................................................................. 95

B Specifications ................................................................................................................................................ 98

C Cabling ....................................................................................................................................................... 103

D Port pin-outs .............................................................................................................................................. 107

E IPLink 3210 Series factory configuration .................................................................................................. 110

F Installation checklist .................................................................................................................................. 112

Summary Table of Contents

IPLink 3210 Series Getting Started Guide

Summary Table of Contents ........................................................................................................................... 3

Table of Contents ........................................................................................................................................... 5

List of Figures ............................................................................................................................................... 11

List of Tables ................................................................................................................................................ 12

About this guide ........................................................................................................................................... 13

Audience............................................................................................................................................................... 13

Structure............................................................................................................................................................... 13

Precautions ........................................................................................................................................................... 14

Safety when working with electricity ...............................................................................................................15

General observations .......................................................................................................................................16

Typographical conventions used in this document................................................................................................ 17

General conventions .......................................................................................................................................17

1 General information...................................................................................................................................... 19

IPLink Model 3210 Series overview.......................................................................................................................20

IPLink 3210 Series detailed description ..........................................................................................................21

Model code extensions ..............................................................................................................................21

Ports descriptions ......................................................................................................................................22

Applications overview............................................................................................................................................23

Branch-Office virtual private network over Frame Relay service ......................................................................23

Corporate multi-function virtual private network ...........................................................................................24

2 Hardware installation.................................................................................................................................... 26

Planning the installation........................................................................................................................................27

Installation checklist ........................................................................................................................................28

Site log ............................................................................................................................................................29

Network information ......................................................................................................................................29

Network Diagram .....................................................................................................................................29

IP related information .....................................................................................................................................29

Software tools .................................................................................................................................................29

Power source ...................................................................................................................................................29

Location and mounting requirements .............................................................................................................30

Installing the VPN router......................................................................................................................................30

Mounting the VPN router ..............................................................................................................................30

Connecting cables ...........................................................................................................................................30

Installing the Ethernet cable ......................................................................................................................30

Installing the DSL cable ............................................................................................................................31

Connecting to external power source .........................................................................................................32

3 Getting started with the IPLink .................................................................................................................... 34

Introduction..........................................................................................................................................................35

1. Configure IP address .........................................................................................................................................36

Table of Contents

IPLink 3210 Series Getting Started Guide

Power connection and default configuration ...................................................................................................36

Connect with the serial interface .....................................................................................................................36

Login ..............................................................................................................................................................37

Changing the IP address .................................................................................................................................37

2. Connect the IPLink VPN Router to the network ..............................................................................................38

3. Load configuration ............................................................................................................................................38

4 G.SHDSL Basic Configuration ..................................................................................................................... 40

Introduction..........................................................................................................................................................41

Line Setup .............................................................................................................................................................41

Configuring PPPoE...............................................................................................................................................41

Configuration Summary........................................................................................................................................42

Setting up permanent virtual circuits (PVC)..........................................................................................................43

Using PVC channels in bridged Ethernet mode ..............................................................................................43

Using PVC channels with PPPoE ...................................................................................................................43

Diagnostics .....................................................................................................................................................44

Troubleshooting DSL Connections.......................................................................................................................44

5 VPN configuration ........................................................................................................................................ 45

Introduction..........................................................................................................................................................46

Authentication ................................................................................................................................................46

Encryption ......................................................................................................................................................46

Transport and tunnel modes ...........................................................................................................................47

VPN configuration task list ...................................................................................................................................47

Creating an IPsec transformation profile .........................................................................................................47

Creating an IPsec policy profile .......................................................................................................................48

Creating/modifying an outgoing ACL profile for IPsec ...................................................................................50

Configuration of an IP interface and the IP router for IPsec ............................................................................51

Displaying IPsec configuration information ....................................................................................................51

Debugging IPsec .............................................................................................................................................52

Sample configurations ...........................................................................................................................................53

IPsec tunnel, DES encryption .........................................................................................................................53

IPLink configuration .................................................................................................................................53

Cisco router configuration .........................................................................................................................54

IPsec tunnel, AES encryption at 256 bit key length, AH authentication with HMAC-SHA1-96 ....................54

IPLink configuration .................................................................................................................................54

Cisco router configuration .........................................................................................................................55

IPsec tunnel, 3DES encryption at 192 bit key length, ESP authentication with HMAC-MD5-96 ..................55

IPLink configuration .................................................................................................................................55

Cisco router configuration .........................................................................................................................55

6 Access control list configuration.................................................................................................................... 57

Introduction..........................................................................................................................................................58

About access control lists .......................................................................................................................................58

What access lists do .........................................................................................................................................58

Why you should configure access lists .............................................................................................................58

IPLink 3210 Series Getting Started Guide

Table of Contents

When to configure access lists .........................................................................................................................59

Features of access control lists .........................................................................................................................59

Access control list configuration task list................................................................................................................60

Mapping out the goals of the access control list ...............................................................................................60

Creating an access control list profile and enter configuration mode ...............................................................61

Adding a filter rule to the current access control list profile .............................................................................61

Adding an ICMP filter rule to the current access control list profile ................................................................63

Adding a TCP, UDP or SCTP filter rule to the current access control list profile ...........................................65

Binding and unbinding an access control list profile to an IP interface ............................................................67

Displaying an access control list profile ...........................................................................................................68

Debugging an access control list profile ...........................................................................................................68

Examples ...............................................................................................................................................................70

Denying a specific subnet ................................................................................................................................70

7 Link scheduler configuration ........................................................................................................................ 71

Introduction..........................................................................................................................................................72

Configuring access control lists..............................................................................................................................72

Configuring quality of service (QoS) .....................................................................................................................73

Applying scheduling at the bottleneck .............................................................................................................73

Using traffic classes .........................................................................................................................................73

Introduction to Scheduling .............................................................................................................................74

Priority ......................................................................................................................................................74

Weighted fair queuing (WFQ) ..................................................................................................................74

Shaping .....................................................................................................................................................75

Burst tolerant shaping or wfq ....................................................................................................................75

Hierarchy ..................................................................................................................................................75

Quick references....................................................................................................................................................76

Setting the modem rate ...................................................................................................................................76

Command cross reference ...............................................................................................................................77

Link scheduler configuration task list.....................................................................................................................77

Defining the access control list profile .............................................................................................................78

Packet classification ...................................................................................................................................78

Creating an access control list ....................................................................................................................79

Creating a service policy profile .......................................................................................................................80

Specifying the handling of traffic-classes ..........................................................................................................82

Defining fair queuing weight .....................................................................................................................82

Defining the bit-rate .................................................................................................................................83

Defining absolute priority .........................................................................................................................83

Defining the maximum queue length ........................................................................................................83

Specifying the type-of-service (TOS) field .................................................................................................83

Specifying the precedence field ..................................................................................................................84

Specifying differentiated services codepoint (DSCP) marking ...................................................................84

Specifying layer 2 marking ........................................................................................................................85

Defining random early detection ...............................................................................................................86

Table of Contents

IPLink 3210 Series Getting Started Guide

Discarding Excess Load .............................................................................................................................86

Devoting the service policy profile to an interface ...........................................................................................87

Displaying link arbitration status ....................................................................................................................88

Displaying link scheduling profile information ...............................................................................................88

Enable statistics gathering ...............................................................................................................................88

8 LEDs status and monitoring ......................................................................................................................... 90

Status LEDs...........................................................................................................................................................91

9 Contacting Patton for assistance ................................................................................................................... 92

Introduction..........................................................................................................................................................93

Contact information..............................................................................................................................................93

Patton Support Headquarters in the USA .......................................................................................................93

Alternate Patton support for Europe, Middle Ease, and Africa (EMEA) ..........................................................93

Warranty Service and Returned Merchandise Authorizations (RMAs)...................................................................93

Warranty coverage ..........................................................................................................................................93

Out-of-warranty service .............................................................................................................................94

Returns for credit ......................................................................................................................................94

Return for credit policy .............................................................................................................................94

RMA numbers ................................................................................................................................................94

Shipping instructions ................................................................................................................................94

A Compliance information .............................................................................................................................. 95

Compliance ...........................................................................................................................................................96

EMC ...............................................................................................................................................................96

Safety ..............................................................................................................................................................96

PSTN Regulatory ............................................................................................................................................96

Radio and TV Interference (FCC Part 15) ............................................................................................................96

CE Declaration of Conformity ..............................................................................................................................96

Authorized European Representative .....................................................................................................................97

FCC Part 68 (ACTA) Statement ...........................................................................................................................97

Industry Canada Notice ........................................................................................................................................97

B Specifications ................................................................................................................................................ 98

Ethernet interfaces.................................................................................................................................................99

PPP support ..........................................................................................................................................................99

IP services..............................................................................................................................................................99

Management .........................................................................................................................................................99

Operating environment .........................................................................................................................................99

Operating temperature ....................................................................................................................................99

Operating humidity ........................................................................................................................................99

System.................................................................................................................................................................100

Dimensions .........................................................................................................................................................100

G.SHDSL Daughter Card...................................................................................................................................101

Power supply .......................................................................................................................................................102

Internal AC version .......................................................................................................................................102

IPLink 3210 Series Getting Started Guide

Table of Contents

12VDC version with External AC Power Adapter .........................................................................................102

5VDC Version with External Power Adapter ................................................................................................102

C Cabling ....................................................................................................................................................... 103

Introduction........................................................................................................................................................104

Serial console.......................................................................................................................................................104

Ethernet 10Base-T and 100Base-T......................................................................................................................105

D Port pin-outs .............................................................................................................................................. 107

Introduction........................................................................................................................................................108

Console port, RJ-45, EIA-561 (RS-232)..............................................................................................................108

Ethernet 10Base-T and 100Base-T port...............................................................................................................109

DSL.....................................................................................................................................................................109

E IPLink 3210 Series factory configuration .................................................................................................. 110

Introduction........................................................................................................................................................111

F Installation checklist .................................................................................................................................. 112

Introduction........................................................................................................................................................113

Table of Contents

IPLink 3210 Series Getting Started Guide

List of Figures

1 IPLink G.SHDSL VPN Router . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

2 IPLink 3210 Series G.SHDSL connector . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

3 IPLink 3210 Series power input connectors . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

4 IPLink 3210 Series front panels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

5 Branch-office virtual private network over a Frame-Relay service network . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

6 Corporate multi-function virtual private network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

7 Connecting an IPLink 3210 Series device to a hub . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31

8 Power connector location on rear panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32

9 VPN Router front panel LEDs and Console port locations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

10 Steps for setting up a new IPLink VPN Router . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

11 Connecting to the terminal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

12 Connecting the IPLink VPN Router to the network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

13 Configuring the G.SHDSL card for PPPoE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

14 Using traffic filters to prevent traffic from being routed to a network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

15 Deny a specific subnet on an interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70

16 IP context and related elements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73

17 Packet routing in IPLink . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74

18 Example of Hierarchical Scheduling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

19 Elements of link scheduler configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78

20 Scenario with Web server regarded as a single source host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79

21 Structure of a Service-Policy Profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81

22 Using a Service Policy Profile on an IP Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87

23 Examples of IPLink 3210 Series front panels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91

24 Connecting a serial terminal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 104

25 Ethernet cross-over . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105

26 Ethernet straight-through . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

27 EIA-561 (RJ-45 8-pin) port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108

List of Tables

1 General conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

2 Rear panel ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

3 Installation checklist . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28

4 Sample site log entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

5 Ethernet 10/100Base-T (RJ-45) port pin-outs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31

6 Factory default IP address and network mask configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

7 PVC Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

8 PVC channels in bridged Ethernet mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

9 PVC channels in PPPoE mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

10 Diagnostics commans . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44

11 Command cross reference . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

12 TOS values and their meaning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84

13 Traffic control info (TCI) field . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85

14 Values defining detail of the queuing statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

15 IPLink LED Indications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91

16 G.SHDSL Daughter Card Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

17 RS-232 Console Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108

18 RJ-45 socket . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109

19 RJ-11 connector . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109

20 Installation checklist . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

About this guide

This guide describes IPLink VPN router hardware, installation, and conﬁguration.

Audience

This guide is intended for the following users:

• Operators

• Installers

• Maintenance technicians

Structure

This guide contains the following chapters and appendices:

• Chapter 1 on page 19 provides information about router features, capabilities, operation, and applications

• Chapter 2 on page 26 provides hardware installation procedures

• Chapter 3 on page 34 provides quick-start procedures for conﬁguring the IPLink VPN router

• Chapter 4 on page 40 provides information on G.SHDSL basic conﬁguration.

• Chapter 5 on page 45 describes how to conﬁgure the VPN connections between two IPLink routers or

between an IPLink and a third-party device.

• Chapter 6 on page 57 provides an overview of IP access control lists and describes the tasks involved in their

conﬁguration through the IPLink router.

• Chapter 7 on page 71 describes how to use and conﬁgure IPLink quality of service (QoS) features.

• Chapter 8 on page 90 provides LED deﬁnitions

• Chapter 9 on page 92 contains information on contacting Patton technical support for assistance

• Appendix A on page 95 contains compliance information

• Appendix B on page 98 contains speciﬁcations for the routers

• Appendix C on page 103 provides cable recommendations

• Appendix D on page 107 describes the router’s ports and pin-outs

• Appendix E on page 110 lists the factory conﬁguration settings for the IPLink VPN router

• Appendix F on page 112 provides license information that describes acceptable usage of the software pro-

vided with the IPLink VPN router

For best results, read the contents of this guide before you install the router.

About this guide

IPLink 3210 Series Getting Started Guide

Precautions

Notes, cautions, and warnings, which have the following meanings, are used throughout this guide to help you become aware of potential problems. Warnings are intended to prevent safety hazards that could result in personal injury. Cautions are intended to prevent situations that could result in property damage or impaired functioning.

Note

IMPORTANT

CAUTION

A note presents additional information or interesting sidelights.

The alert symbol and IMPORTANT heading calls attention to important information.

The alert symbol and CAUTION heading indicate a potential hazard. Strictly follow the instructions to avoid property damage.

The shock hazard symbol and CAUTION heading indicate a potential electric shock hazard. Strictly follow the instructions to avoid property damage caused by electric shock.

WARNING

The alert symbol and WARNING heading indicate a potential safety hazard. Strictly follow the warning instructions to avoid personal injury.

The shock hazard symbol and WARNING heading indicate a potential electric shock hazard. Strictly follow the warning instructions to avoid injury caused by electric shock.

IPLink 3210 Series Getting Started Guide

Safety when working with electricity

The IPLink contains no user serviceable parts. The equipment shall be returned to Patton Electronics for repairs, or repaired by qualiﬁed service personnel.

WARNING

Opening the IPLink case will void the warranty.

Mains Voltage: Do not open the case the when the power cord is attached. For systems without a power switch, line voltages are present within the power supply when the power cords are connected. The mains outlet that is utilized to power the devise shall be within 10 feet (3 meters) of the device, shall be easily accessible, and protected by a circuit breaker.

For units with an external power adapter, the adapter shall be a listed Limited Power Source.

For AC powered units, ensure that the power cable used with this device meets all applicable standards for the country in which it is to be installed, and that it is connected to a wall outlet which has earth ground.

About this guide

WARNING

Hazardous network voltages are present in WAN ports regardless of whether power to the IPLink is ON or OFF. To avoid electric shock, use caution when near WAN ports. When detaching cables, detach the end away from the IPLink ﬁrst.

Do not work on the system or connect or disconnect cables during periods of lightning activity.

Before opening the chassis, disconnect the telephone network cables to avoid contact with telephone line voltages. When detaching the cables, detach the end away from the IPLink ﬁrst .

About this guide

CAUTION

IPLink 3210 Series Getting Started Guide

The power supply automatically adjusts to accept an input voltage from 100 to 240 VAC (50/60 Hz).

Verify that the proper voltage is present before plugging the power cord into the receptacle. Failure to do so could result in equipment damage.

The interconnecting cables shall be acceptable for external use and shall be rated for the proper application with respect to voltage, current, anticipated temperature, ﬂammability, and mechanical serviceability.

In accordance with the requirements of council directive 2002/ 96/EC on Waste of Electrical and Electronic Equipment (WEEE), ensure that at end-of-life you separate this product from other waste and scrap and deliver to the WEEE collection system in your country for recycling.

General observations

• Clean the case with a soft slightly moist anti-static cloth

• Place the unit on a ﬂat surface and ensure free air circulation

• Avoid exposing the unit to direct sunlight and other heat sources

• Protect the unit from moisture, vapors, and corrosive liquids

IPLink 3210 Series Getting Started Guide

About this guide

Typographical conventions used in this document

This section describes the typographical conventions and terms used in this guide.

General conventions

The procedures described in this manual use the following text conventions:

Table 1. General conventions

Convention Meaning

Garamond blue type

Futura bold type Commands and keywords are in boldface font. Futura bold-italic type Parts of commands, which are related to elements already named by the user, are

Italicized Futura type

Futura type

Garamond bold type Indicates the names of command buttons that execute an action.

< >

[ ] Elements in square brackets are optional. {a | b | c} Alternative but required keywords are grouped in braces ({ }) and are separated

blue screen Information you enter is in blue screen font. screen Terminal sessions and information the system displays are in screen font . node The leading IP address or nodename of an IPLink is substituted with

3210 The leading 3210 on a command line represents the nodename of the IPLink # An hash sign at the beginning of a line indicates a comment line.

Indicates a cross-reference hyperlink that points to a ﬁgure, graphic, table, or section heading. Clicking on the hyperlink jumps you to the reference. When you have ﬁnished reviewing the reference, click on the Go to Previous View

button in the Adobe® Acrobat® Reader toolbar to return to your starting point.

boldface italic

in Variables for which you supply values are in Indicates the names of ﬁelds or windows.

Angle brackets indicate function and keyboard keys, such as <SHIFT>, <CTRL>, <C>, and so on.

by vertical bars ( | )

boldface italic

font.

italic

font

node

About this guide

IPLink 3210 Series Getting Started Guide

Chapter 1

Chapter contents

IPLink Model 3210 Series overview....................................................................................................................20

IPLink 3210 Series detailed description ........................................................................................................21

Model code extensions .............................................................................................................................21

Ports descriptions .....................................................................................................................................22

Applications overview..........................................................................................................................................23

Branch-Office virtual private network over Frame Relay service .................................................................23

Corporate multi-function virtual private network ..........................................................................................24

General information

IPLink 3210 Series Getting Started Guide

1 • General information

IPLink Model 3210 Series overview

The IPLink Model 3210 Series G.SHDSL VPN Router (see ﬁgure 1) is a next generation business-class G.SHDSL router that addresses both the security and the trafﬁc prioritization needs of enterprises while providing complete broadband integration with existing DSLAM neteworks. VPN routers enable the secure communication between remote ofﬁces, home ofﬁces, and mobile users across insecure IP networks such as the Internet. The 3210 takes it one step further and integrates quality of service (QoS).

Figure 1. IPLink G.SHDSL VPN Router

The Model 3210 provides two 10/100Base-T Ethernet ports and one G.SHDSL port to deliver a managed virtual-private-network (VPN) connection over the Internet or any unsecured IP network.

The IPlink 3210 Router supports Frame-Relay and PPP networking with VPN and ﬁrewall functionality. Authentication and ﬁrewall services protect against unauthorized users while encryption, and anti-replay capabilities preserve data conﬁdentiality. Patton's powerful CoS and QoS mechanisms provide trafﬁc-shaping and prioritization to guarantee your mission-critical data is delivered promptly and unimpeded by trafﬁc from other users on the same LAN. Besides assuring ﬁrst priority for key information, Patton's advanced QoS technology enhances the quality and clarity of realtime application such as live voice and video communications with the main ofﬁce. These compact VPN Routers support PPP/PPPoE and Frame Relay services over the serial WAN link.

The IPLink VPN Router performs the following major functions:

• Routed LAN-to-WAN connectivity between two 10/100 Ethernet LAN ports and one G.SHDSL port.

• IP Routing with class-of-service/quality-of-service (CoS/QoS) support for Internet or IP-WAN access with

trafﬁc shaping and prioritization.

• VPN tunneling for secure traversal of unsecured IP networks

• IPSec payload encryption with authentication header (AH, speciﬁed in RFC 2402) and encapsulating secu-

rity payload (ESP, speciﬁed in RFC 2406) protects data integrity and conﬁdentiality and prevents unauthorized data-replay.

IPLink Model 3210 Series overview

IPLink 3210 Series Getting Started Guide 1 • General information

• Firewall capabilities including IP-address and IP-port ﬁltering, access control lists (ACLs), and denial-of-

service (DoS) attack detection.

• Enhanced IP services include domain name service (DNS) resolver and relay, NAT/NAPT, dynamic DNS,

and DHCP server.

IPLink 3210 Series detailed description

The IPLink 3210 Series G.SHDSL VPN Router provides secure managed VPN routed networking with 2port Ethernet LAN connectivity and a G.SHDSL WAN interface (see ﬁgure 2).

IPLink 3210 G.SHDSL WAN port connector

ACT LINK

10/100Base-T Ethernet LAN ports 0/1 and 0/0

Figure 2. IPLink 3210 Series G.SHDSL connector

lnternal power supply connector accepts 100–240 VAC, 50/60 Hz, up to 1 A

External power supply connector accepts 12 VDC, 1 A, from external AC adapter (some models accept +5VDC, see Appendix B, “Specifications” for details)

Figure 3. IPLink 3210 Series power input connectors

Model code extensions

A model-code extension indicates the type of power supply the Router model provides. The model-code conventions are:

• UI stands for internal 100–240V AC universal input power supply (see ﬁgure 3)

IPLink Model 3210 Series overview 21

IPLink 3210 Series Getting Started Guide 1 • General information

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

• EUI stands for external 100–240V AC universal input power supply (see ﬁgure 3)

Ports descriptions

The IPLink 3210 Series rear-panel ports are described in table 2.

Table 2. Rear panel ports

Port Location Description

10/100 Ethernet ETH 0/0 (WAN) &

ETH 0/1 (LAN) G.SHDSL Rear panel Provides up to 5.7 Mbps symmetrical throughput, supporting ATM

Power Rear panel

Console Front panel

Rear panel

RJ-45 connectors (see ﬁgure 2 on page 21) that connect the router to an Ethernet device (e.g., a cable or DSL modem, LAN hub or switch).

QoS. Supports multiple PVC and DSLAM interoperability. The DSL LEDs are located on either side of the DSL port. ACT (when lit or blinking) shows activity, and Link (when lit) shoes that the DSL port is connected.

The router is available in a DC or AC power input version (see ﬁgure 3 on page 21), labeled as follows:

AC version (Internal power supply):

100–240 VAC, 50/60 Hz, 1 A

DC version: +12 V, 1 A or +5 VDC 1 A Used for service and maintenance, the

Console

port (see ﬁgure 4), an RS-232 RJ-45 connector, connects the router to a serial terminal such as a PC or ASCII terminal (also called a dumb terminal).

IPLink 3210

IPLink VPN Router

Link

100M

Enet 0

Activity

Link

100M

Enet 1

Activity

Console

Power

Run

Console port

Figure 4. IPLink 3210 Series front panels

Note For LED descriptions, refer to chapter 8, “LEDs status and monitor-

ing” on page 90.

IPLink Model 3210 Series overview 22

IPLink 3210 Series Getting Started Guide 1 • General information

Applications overview

Patton’s IPLink managed VPN routers deliver the features you need for secure, optimized communication over non-secured IP networks. Combining VPN tunneling, standard IPSec encryption, and ﬁrewall capabilities with Patton’s powerful quality of service technology, IPLink VPN routers deliver private, prioritized networking for business, government, and military applications.

Banking, insurance, retail, utilities, railroads, or government, any organization with more than one site can beneﬁt from the security and trafﬁc-shaping advantages of the IPLink family of VPN routers. As trafﬁc traverses unsecured networks, VPN tunneling with standard IPSec encryption plus ﬁrewall capabilities preserve data security and integrity. Meanwhile, IPLink’s ToS/Qos trafﬁc-shaping and prioritization prevent critical information getting blocked or impeded by less important trafﬁc while enhancing the quality of real-time applications such as voice and video.

IPLink 3210 Series models provide dual 10/100Base-T Ethernet ports with a G.SHDSL port. The two Ethernet ports provide full-featured IP routing plus Ethernet and IP-layer QoS services. The G.SHDSL port provides WAN access by means of a leased-line connection to the network. The following sections show some typical applications for the IPLink 3210 Series.

This chapter describes typical applications for which the IPLink 3210 Series series is uniquely suited.

Branch-Ofﬁce virtual private network over Frame Relay service

Featuring VPN tunneling combined with built-in frame-relay support and a selection of standard serial interfaces on-board, the IPLink 3210 Series offers the remote-branch ofﬁce a secure, private and prioritized network connection to another location over virtually any available network service and any standard WAN interface.

Figure 5. Branch-ofﬁce virtual private network over a Frame-Relay service network

Figure 5 shows a branch-to-branch VPN connection through a frame-relay service network as delivered on

serial lines. The IPLink 3210 Series can support a similar scenario with network service delivered via an Ethernet WAN interface. For remote sites where PPP service is available, the 3210 Series also supports PPP network access over all the standard WAN interface options mentioned above.

In this speciﬁc application, all trafﬁc between the branch and corporate ofﬁces is carried in an IPSec tunnel. All of the IPSec VPN trafﬁc is encapsulated in Frame Relay for transport over the Frame Relay service network. The serial port is conﬁgured for Frame Relay.

Applications overview 23

IPLink 3210 Series Getting Started Guide 1 • General information

To conﬁgure this application, you need to conﬁgure the following features:

• The WAN port with Frame Relay as the encapsulation protocol

• An IPSec VPN between the two endpoints.

See chapter 4 on page 40 to conﬁgure the serial port and chapter 5 on page 45 to conﬁgure the VPN.

Corporate multi-function virtual private network

The IPLink 3210 Series can deliver both private corporate intranet service and public Internet access to multiple remote sites by leveraging IPLink’s multiple frame-relay PVC support (see ﬁgure 6). The enterprise enjoys the beneﬁts of secure multi-ofﬁce virtual private networking with QoS for prioritized trafﬁc ﬂow for missioncritical information.

Figure 6. Corporate multi-function virtual private network

In ﬁgure 6, the blue pipes represent VPN connections for private trafﬁc within the corporate intranet, while the green pipes represent the Internet trafﬁc. The red pipe is a Frame Relay PVC transporting Internet trafﬁc and private corporate trafﬁc over the VPN. Each of the three remote sites is connected with headquarters via an IPLink VPN router. Each remote site can take advantage of the most convenient and locally available interface the WAN service can offer.

Applications overview 24

IPLink 3210 Series Getting Started Guide 1 • General information

The corporate multi-function application carries two types of trafﬁc between each remote ofﬁce and corporate’s central ofﬁce:

• Private corporate trafﬁc (the intranet/extranet)

• Internet trafﬁc

The service provider offers a Frame Relay network for access, so both the private corporate trafﬁc and the Internet trafﬁc is transported over a Frame Relay PVC with one DLCI. The corporate trafﬁc is transported within IPSec VPN that is in the Frame Relay PVC. The separation of corporation and Internet trafﬁc is managed by using an ACL using IP addresses as the watershed.

To conﬁgure this application, you must conﬁgure the following features:

• A serial Frame Relay link as the WAN service which will carry both private corporate trafﬁc and public

Internet trafﬁc

• An IPSec VPN for private corporate trafﬁc

• An ACL to distinguish between the two types of trafﬁc so only the private corporate trafﬁc is carried over

the VPN.

See chapter 4 on page 40 to conﬁgure the serial port, chapter 5 on page 45 to conﬁgure the VPN, and chapter

6 on page 57 to conﬁgure the ACL. Chapter 7 on page 71 provides more in-depth explanations of scheduling

various types of trafﬁc. Various techniques are also described, including QoS and TOS.

Applications overview 25

Chapter 2 Hardware installation

Chapter contents

Planning the installation.......................................................................................................................................27

Installation checklist ......................................................................................................................................28

Site log ...........................................................................................................................................................29

Network information .....................................................................................................................................29

Network Diagram .....................................................................................................................................29

IP related information ....................................................................................................................................29

Software tools ................................................................................................................................................29

Power source ..................................................................................................................................................29

Location and mounting requirements ............................................................................................................30

Installing the VPN router .....................................................................................................................................30

Mounting the VPN router ..............................................................................................................................30

Connecting cables ..........................................................................................................................................30

Installing the Ethernet cable .....................................................................................................................30

Installing the DSL cable ...........................................................................................................................31

Connecting to external power source .......................................................................................................32

IPLink 3210 Series Getting Started Guide 2 • Hardware installation

Planning the installation

Before you start the actual installation, we strongly recommend that you gather all the information you will need to install and setup the device. See table 3 for an example of what pre-installment checks you might need to carry out. Completing the pre-installation checks enables you to install and set up your VPN router within an existing network infrastructure with conﬁdence.

The mains outlet that is utilized to power the equipment must be within 1 meter (3 feet) of the device and shall be easily accessible.

CAUTION

Note When setting up your VPN router you must consider cable length

limitations, and potential electromagnetic interference (EMI) as deﬁned by the applicable local and international regulations. Ensure that your site is properly prepared before beginning installation.

Before installing the VPN Router device, the following tasks should be completed:

• Create a network diagram (see section “Network information” on page 29)

• Gather IP related information (see section “IP related information” on page 29 for more information)

• Install the hardware and software needed to conﬁgure the IPLink router. (See section “Software tools”

on page 29)

• Verify power source reliability (see section “Power source” on page 29).

When you ﬁnish preparing for your VPN Router installation, go to section “Installing the VPN router” on page 30 to install the device.

Planning the installation 27

IPLink 3210 Series Getting Started Guide 2 • Hardware installation

Installation checklist

The installation checklist (see table 3) lists the tasks for installing an IPLink 3210 Series VPN Router. Make a copy of this checklist and mark the entries as you complete each task. For each IPLink 3210 Series VPN Router, include a copy of the completed checklist in your site log.

Table 3. Installation checklist

Task Veriﬁed by Date

Network information available & recorded in site log

Environmental speciﬁcations veriﬁed

Site power voltages veriﬁed

Installation site pre-power check completed

Required tools available

Additional equipment available

All printed documents available

IPLink release & build number veriﬁed

Rack, desktop, or wall mounting of chassis completed

Initial electrical connections established

ASCII terminal attached to console port

Cable length limits veriﬁed

Initial conﬁguration performed

Initial operation veriﬁed

Planning the installation 28

IPLink 3210 Series Getting Started Guide 2 • Hardware installation

Site log

Patton recommends that you maintain a site log to record all actions relevant to the system, if you do not already keep such a log. Site log entries should include information such as listed in table 4.

Table 4. Sample site log entries

Entry Description

Installation Make a copy of the installation checklist and insert it into the site log

Upgrades and maintenance Use the site log to record ongoing maintenance and expansion history

Conﬁguration changes Record all changes and the reasons for them

Maintenance Schedules, requirements, and procedures performed

Comments Notes, and problems

Software Changes and updates to IPLink software

Network information

When planning your installation there are certain network-connection considerations that you should take into account. The following sections describe such considerations for several types of network interfaces.

Network Diagram

Draw a network overview diagram that displays all neighboring IP nodes, connected elements and telephony components.

IP related information

Before you can set up the basic IP connectivity for your IPLink 3210 Series you should have the following information:

• IP addresses and subnet masks used for Ethernet LAN and WAN ports

• IP addresses and subnet masks used for the V.35 or X.21 serial WAN port

• IP addresses and subnet masks used for the T1/E1 WAN port

• IP addresses of central TFTP Server used for conﬁguration upload and download

• Login and password for PPPoE Access.

Software tools

You will need a PC (or equivalent) with a VT-100 emulation program (e.g. HyperTerminal) to conﬁgure the software on your IPLink VPN Router.

Power source

If you suspect that your AC power is not reliable, for example if room lights ﬂicker often or there is machinery with large motors nearby, have a qualiﬁed professional test the power. Install a power conditioner if necessary.

Planning the installation 29

IPLink 3210 Series Getting Started Guide 2 • Hardware installation

Location and mounting requirements

The IPLink VPN Router is intended to be placed on a desktop or similar sturdy, ﬂat surface that offers easy access to the cables. Allow sufﬁcient space at the rear of the chassis for cable connections. Additionally, you should consider the need to access the unit for future upgrades and maintenance.

Installing the VPN router

IPLink VPN Router installation consists of the following:

• Placing the device at the desired installation location (see section “Mounting the VPN router” on page 30)

• Installing the interface and power cables (see section “Connecting cables” on page 30)

When you ﬁnish installing the IPLink router, go to chapter 3, “Getting started with the IPLink” on page 34.

Mounting the VPN router

Place the VPN Router on a desktop or similar sturdy, ﬂat surface that offers easy access to the cables. The VPN Router should be installed in a dry environment with sufﬁcient space to allow air circulation for cooling.

Note For proper ventilation, leave at least 2 inches (5 cm) to the left, right,

front, and rear of the IPLink VPN Router.

Connecting cables

Do not work on the system or connect or disconnect cables during periods of lightning activity.

WARNING

The interconnecting cables must be acceptable for external use and must be rated for the proper application with respect to volt-

CAUTION

age, current, anticipated temperature, ﬂammability, and mechanical serviceability.

Installing VPN Router cables takes place in the following order:

1. Installing the 10/100 Ethernet port cable or cables (see section “Installing the Ethernet cable” on page 30)

2. Installing the cables (see section “Installing the DSL cable” on page 31)

3. Installing the power input (see section “Connecting to external power source” on page 32)

Installing the Ethernet cable

The IPLink 3210 Series has automatic MDX (auto-cross-over) detection and conﬁguration on the Ethernet ports. Any of the two ports can be connected to a host or hub/switch with a straight-through wired cable (see

Installing the VPN router 30

IPLink 3210 Series Getting Started Guide 2 • Hardware installation

ﬁgure 7). Ethernet devices (10Base-T or 100Base-T) are connected to the IPLink’s Ethernet ports (see table 5

for port pin-out listing) via a cable terminated with RJ-45 plugs.

Table 5. Ethernet 10/100Base-T (RJ-45) port pin-outs

Pin Signal

1 TX+ 2 TX3 RX+ 6 RX-

Note Pins not listed are not used.

Hub

Straight-through cable

RJ-45, male

Tx+

Tx-

Rx+

Rx-

RJ-45, male

1 Rx+ 2 Rx3 Tx+ 6 Tx-

Figure 7. Connecting an IPLink 3210 Series device to a hub

Installing the DSL cable

The IPLink 3210 comes with a G.SHDSL interface. Use a straight-through RJ-11 cable to connect the DSL port.

Installing the VPN router 31

IPLink 3210 Series Getting Started Guide 2 • Hardware installation

Connecting to external power source

The VPN Router comes with one of the following power supply options as best-suited to the expected installation environment:

• 120/140VAC internal power supply (designated by the model code extension UI)

• 120/140VAC external power supply (designated by the model code extension EUI)

• 120VAC external power supply (designated by the model code extension E)

This section below describes installing the power cord into the VPN Router. Do the following:

Note Do not connect the power cord to the power outlet at this time.

1. If your unit is equipped with an internal power supply, go to step 2. Otherwise, insert the barrel type con-

nector end of the AC power cord into the external power supply connector (see ﬁgure 8).

2. Insert the female end of the power cord into the internal power supply connector (see ﬁgure 8).

lnternal power supply connector accepts 100–240 VAC, 50/60 Hz, up to 1 A

External power supply connector accepts 12 VDC, 1 A, from external AC adapter (some models accept +5VDC, see Appendix B, “Specifications” for details)

Figure 8. Power connector location on rear panel

Installing the VPN router 32

IPLink 3210 Series Getting Started Guide 2 • Hardware installation

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

The UI and EUI power supplies automatically adjust to accept an input voltage from 100 to 240 VAC (50/60 Hz).

CAUTION

Verify that the proper voltage is present before plugging the power cord into the receptacle. Failure to do so could result in equipment damage.

3. Verify that the AC power cord included with your VPN Router is compatible with local standards. If it is

not, refer to chapter 9, “Contacting Patton for assistance” on page 92 to ﬁnd out how to replace it with a compatible power cord.

4. Connect the male end of the power cord to an appropriate power outlet.

IPLink VPN Router

Link

100M

Enet 0

Enet 0 100M

Activity

Enet 0

Activity

Link

Enet 1

100M

Link

Activity

Enet 1 100M

Enet 1

Activity

Console

port

Power

Run

Power

Run

Enet 0

Link

Figure 9. VPN Router front panel LEDs and Console port locations

5. Verify that the green Power LED is lit (see ﬁgure 9).

Congratulations, you have ﬁnished installing the IPLink VPN Router! Now go to chapter 3, “Getting started

with the IPLink” on page 34.

Installing the VPN router 33

Chapter 3 Getting started with the IPLink

Chapter contents

Introduction ..........................................................................................................................................................35

1. Configure IP address ........................................................................................................................................36

Power connection and default configuration .................................................................................................36

Connect with the serial interface ...................................................................................................................36

Login ..............................................................................................................................................................37

Changing the IP address ................................................................................................................................37

2. Connect the IPLink VPN Router to the network..............................................................................................38

3. Load configuration ...........................................................................................................................................38

IPLink 3210 Series Getting Started Guide 3 • Getting started with the IPLink

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

Introduction

This chapter leads you through the basic steps to set up a new IPLink VPN Router. Figure 10 show the main steps for setting up a new IPLink VPN Router.

Configure IP address

Console port

Connect the IPLink VPN Router to the network

Load configuration

Ethernet interface ETH0

Serial

interface

Network

PC or workstation with VT-100 emulation terminal

Network interface

3. Load configuration

1. Download configuration example

Internet

PC or workstation or VT-100 emulation terminal

2. Modify configuration

Note

You can manually configure the IPLink Router. You do not have to load a configuration file.

Figure 10. Steps for setting up a new IPLink VPN Router

Introduction 35

Patton Web server

with configuration examples

IPLink 3210 Series Getting Started Guide 3 • Getting started with the IPLink

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

1. Conﬁgure IP address

Power connection and default conﬁguration

First the IPLink VPN Router must be connected to the mains power supply with the power cable. Wait until the

Run LED stops blinking and lights constantly. Now the IPLink VPN Router is ready.

The factory default conﬁguration for the Ethernet interface IP addresses and network masks are listed in table 6.

Table 6. Factory default IP address and network mask conﬁguration

IP Address Network Mask

Interface Ethernet 0/0 (ETH0) 172.16.40.1 255.255.0.0 Interface Ethernet 0/1 (ETH1) 192.168.1.1 255.255.255.0 Interface Ethernet 0/2 (ETH2) x.x.x.x x.x.x.x Interface Ethernet 0/3 (ETH3) x.x.x.x x.x.x.x Interface Ethernet 0/4 (ETH4) x.x.x.x x.x.x.x

All Ethernet interfaces are activated upon power-up.

If these addresses match with those of your network, go to section “2. Connect the IPLink VPN Router to the

network” on page 38. Otherwise, refer to the following sections to change the addresses and network masks.

Connect with the serial interface

The Console port is wired as an EIA-561, RS-232 port. Use the included Model 16F-561 adapter and cable (see

ﬁgure 11) between the IPLink VPN Router’s Console port and a PC or workstation’s RS-232 serial interface.

Activate the terminal emulation program on the PC or workstation that supports the serial interface (e.g. HyperTerm).

Serial Terminal

A Patton Model 16F-561 RJ45 to DB-9 adapter is included

Note

with each IPLink Series device

Figure 11. Connecting to the terminal

Terminal emulation program settings:

• 9600 bps

• no parity

• 8 bit

1. Configure IP address 36

IPLink 3210 Series Getting Started Guide 3 • Getting started with the IPLink

• 1 stop bit

• No ﬂow control

Login

Accessing your IPLink VPN Router via the local console port (or via a Telnet session) causes the login screen to display. Type the factory default login: administrator and leave the password empty. Press the Enter key after the password prompt.

172.16.40.1>

After you have successfully logged in you are in the operator execution mode, indicated by > as command line prompt. With the commands enable and conﬁgure you enter the conﬁguration mode.

172.16.40.1>enable

172.16.40.1#configure

172.16.40.1(cfg)#

Changing the IP address

Select the context IP mode to conﬁgure an IP interface.

172.16.40.1(cfg)#context ip router

172.16.40.1(ctx-ip)[router]#

Now you can set your IP address and network mask for the interface eth0. Within this example a class C network (172.16.1.0/24) is assumed. The IP address in this example is set to 172.16.1.99 (you should set this to an unused IP address on your network).

172.16.40.1(ctx-ip)[router]#interface eth0

172.16.40.1(if-ip)[eth0]#ipaddress 172.16.1.99 255.255.255.0 2002-10-29T00:09:40 : LOGINFO : Link down on interface eth0. 2002-10-29T00:09:40 : LOGINFO : Link up on interface eth0.

172.16.1.99(if-ip)[eth0]#

Copy this modiﬁed conﬁguration to your new start-up conﬁguration. Upon the next start-up the system will initialize itself using the modiﬁed conﬁguration.

172.16.1.99(if-ip)[eth0]#copy running-config startup-config

172.16.1.99(if-ip)[eth0]#

The IPLink VPN Router can now be connected with your network.

1. Configure IP address 37

IPLink 3210 Series Getting Started Guide 3 • Getting started with the IPLink

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

Link

100M

Activity

Enet 0

IPLink VPN Router

Run

Link

100M

Activity

Enet 1

Power

Console

2. Connect the IPLink VPN Router to the network

Depending whether you connect the IPLink VPN Router to a host directly or via a hub or switch either straight-through wired or cross-over cables must be used (see ﬁgure 12).

Network interface ETH 0

Cross-over cable

Host

IPLink Router

Hub

ETH 0

Straight-through

wired cable

IPLink Router

Host

Network interface

Straight-through

wired cable

Figure 12. Connecting the IPLink VPN Router to the network

You can check the connection with the ping command to another host on the local LAN.

172.16.1.99(if-ip)[eth0]#ping <IP Address of the host>

Respectively from the host: ping 172.16.1.99

Note To ping outside your local LAN, you will need to conﬁgure the

default gateway.

3. Load conﬁguration

Patton provides a collection of conﬁguration templates on the CD-ROM that came with the IPLink device, one of which may be similar enough to your application that you can use it to speed up conﬁguring the IPLink router. Simply download the conﬁguration note that matches your application to your PC. Adapt the conﬁguration as described in the conﬁguration note to your network (remember to modify the IP address) and copy the modiﬁed conﬁguration to a TFTP server. The IPLink VPN Router can now load its conﬁguration from this server.

In this example we assume the TFTP server on the host with the IP address 172.16.1.11 and the conﬁguration named IPL.cfg in the root directory of the TFTP server.

172.16.1.99(if-ip)[eth0]#copy tftp://172.16.1.11/IPL.cfg startup-config Download...100%

172.16.1.99(if-ip)[eth0]#

2. Connect the IPLink VPN Router to the network 38

IPLink 3210 Series Getting Started Guide 3 • Getting started with the IPLink

After the IPLink VPN Router has been rebooted the new start up conﬁguration will be activated.

172.16.1.99(if-ip)[eth0]#reload Running configuration has been changed. Do you want to copy the 'running-config' to the 'startup-config'? Press 'yes' to store, 'no' to drop changes : no Press 'yes' to restart, 'no' to cancel : yes The system is going down

3. Load configuration 39

Chapter 4 G.SHDSL Basic Conﬁguration