ZyXEL Communications 28641 User Manual

Prestige 2864I

User’s Manual

Version 2.0

ZyXEL

ACCESSING THE INTERNET & INTRANET

ZyXEL Limited Warranty

ZyXEL warrants to the original end user (purchaser) that this product is
free from any defects in materials or workmanship for a period of up to
two (2) years from the date of purchase. During the warranty period,
and upon proof of purchase, should the product have indications of
failure due to faulty workmanship and/or materials, ZyXEL will, at its
discretion, repair or replace the defective products or components
without charge for either parts or labor, and to whatever extent it shall
deem necessary to restore the product or components to proper
operating condition. Any replacement will consist of a new or re­manufactured functionally equivalent product of equal value, and will be
solely at the discretion of ZyXEL. This warranty shall not apply if the
product is modified, misused, tampered with, damaged by an act of
God, or subjected to abnormal working conditions.

Note: Repair or replacement, as provided under this warranty, is the
exclusive remedy of the purchaser. This warranty is in lieu of all other
warranties, express or implied, including any implied warranty of
merchantability or fitness for a particular use or purpose. ZyXEL shall in
no event be held liable for indirect or consequential damages of any
kind or character to the purchaser.

To obtain the services of this warranty, contact ZyXEL’s Service
Center, refer to the separate Warranty Card for your Return Material
Authorization number (RMA). Products must be returned Postage
Prepaid. It is recommended that the unit be insured when shipped. Any
returned products without proof of purchase or those with an out-dated
warranty will be repaired or replaced (at the discretion of ZyXEL) and
the customer will be billed for parts and labor. All repaired or replaced
products will be shipped by ZyXEL to the corresponding return
address, Postage Paid (USA and territories only). If the customer
desires some other return destination beyond the U.S. borders, the
customer shall bear the cost of the return shipment. This warranty gives

ii

you specific legal rights, and you may also have other rights which vary
from state to state.

Copyright © 1997 by ZyXEL

The contents of this book may not be reproduced (in any part or as a
whole) or transmitted in any form or by any means without the written
permission of the publisher.

Published by ZyXEL Communications Corporation. All rights reserved.
Note: ZyXEL does not assume any liability arising out of the

application or use of any products, or software described herein.
Neither does it convey any license under its patent rights nor the patents
rights of others. ZyXEL further reserves the right to make changes in
any products described herein without notice. This document is subject
to change without notice.

Acknowledgments

Trademarks mentioned in this manual are used for informational
purposes only.

Trademarks are properties of their respective owners.

FCC Part 15 Information

This device complies with Part 15 of FCC rules. Operation is subject to
the following two conditions:

1. This device may not cause harmful interference.

2. This device must accept any interference received, including
interference that may cause undesired operations.

This equipment has been tested and found to comply with the limits for
a CLASS B digital device pursuant to Part 15 of the FCC Rules. These
limits are designed to provide reasonable protection against harmful

iii

interference in a commercial environment. This equipment generates,
uses, and can radiate radio frequency energy, and if not installed and
used in accordance with the instructions, may cause harmful interference
to radio communications.

If this equipment does cause harmful interference to radio/television
reception, which can be determined by turning the equipment off and
on, the user is encouraged to try to correct the interference by one or
more of the following measures:

• Reorient or relocate the receiving antenna.

• Increase the separation between the equipment and the receiver.

• Connect the equipment into an outlet on a circuit different from that

to which the receiver is connected.

• Consult the dealer or an experienced radio/TV technician for help.

Changes or modifications not expressly approved by the party
responsible for compliance could void the user’s authority to operate
the equipment. Shielded RS-232 cables are required to be used to
ensure compliance with FCC Part 15, and it is the responsibility of the
user to provide and use shielded RS-232 cables.

Information for Canadian Users

The Industry Canada label identifies certified equipment. This
certification means that the equipment meets certain telecommunications
network protective, operation, and safety requirements. The Industry
Canada does not guarantee that the equipment will operate to a user’s
satisfaction.

Before installing this equipment, users should ensure that it is permissible
to be connected to the facilities of the local telecommunications
company. The equipment must also be installed using an acceptable

iv

method of connection. In some cases, the company’s inside wiring
associated with a single line individual service may be extended by
means of a certified connector assembly. The customer should be
aware that the compliance with the above conditions may not prevent
degradation of service in some situations.

Repairs to certified equipment should be made by an authorized
Canadian maintenance facility designated by the supplier. Any repairs or
alterations made by the user to this equipment, or equipment
malfunctions, may give the telecommunications company cause to
request the user to disconnect the equipment.

For their own protection, users should ensure that the electrical ground
connections of the power utility, telephone lines, and internal metallic
water pipe system, if present, are connected together. This precaution
may be particularly important in rural areas.

Caution: Users should not attempt to make such connections
themselves, but should contact the appropriate electrical
inspection authority, or electrician, as appropriate.

This digital apparatus does not exceed the class A limits for radio noise
emissions from digital apparatus set out in the radio interference
regulations of Industry Canada. The declarations of CE marking:

The Prestige has been approved for connection to the Public Switched
Telecommunication Network using interfaces compatible with ITU-TSS
recommendation I.420 (Basic Rate ISDN user access). The Prestige
complies with the following directives:

v

• The Council Directive 89/336/EEC of 3 May 1992 on the
approximation of the laws of the member states relation to Electro
Magnetic Compatibility. (EMC Directive)

• Council Directive 91/263/EEC of 29 April 1991 on the
approximation of the laws of the Member States concerning
telecommunication terminal equipment. (The Telecom Terminal
Equipment Directive)

• 93/68/EEC of 22 July 1993 amending the Directives 89/336/EEC,
91/263 /EEC and 92/31/EEC.(Marking Directive)

• The Council Directive 92/31/EEC of 28 April 1992 amending
directive on the approximation of the laws of the member states
relating to EletoMagnetic Compatibility.

Contacting ZyXEL

If you have questions about your ZyXEL product or desire assistance,
contact ZyXEL Communications Corporation in one of the following
ways:

• Phone: In North America call between 8:00 AM and 5:00 PM
PST at (714) 693-0808

Outside North America, you can dial +886-3-5783942 EXT 252

between 8:00AM and 5:00PM Taiwan time (GMT +8:00).

• Fax: ZyXEL in North America: (714) 693-8811 or Taiwan: +886-
3-5782439

• E-mail:

• Sales inquiries: sales@zyxel.com in North America.

sales@zyxel.hinet.net outside North America.

vi

• Technical support: support@zyxel.com in North America.

support@zyxel.hinet.net outside North America.

• Product information: Visit our site on the World Wide Web:
http://www.zyxel.com.

• FTP: Information , such as ZyXEL software and ROM updates for
North America can be found at this FTP address: ftp.zyxel.com

For European and Asian versions and related files, use the address:

ftp.zyxel.co.at

• Postal Service: You can send written communications at the
following address:

ZyXEL Communications Corporation
6, Innovation Road II, Science-Based Industrial Park
Hsinchu, Taiwan 300, R.O.C.
or
ZyXEL Communications Inc.
4920 E. La Palma Avenue
Anaheim, CA92807, U.S.A.

vii

Contents

ZyXEL Limited Warranty ii
Copyright © 1997 by ZyXEL iii
Acknowledgments iii
FCC Part 15 Information iii
Information for Canadian Users iv
Contacting ZyXEL vi

1 Introduction 1

Features 1

Ease of Installation 1
ISDN Basic Rate Interface (BRI) 2
Built-in V.34 Modem 2
Multiple Networking Protocol Support 2
Standard Phone Jack 2
Dial On Demand 2
Bandwidth On Demand 3
Full Network Management 3
RADIUS (Remote Authentication Dial In User Service) 3
PPP Security 3
DHCP Support (Dynamic Host Configuration Protocol) 3
Call Control 4
Data Compression 4
Networking Compatibility 4

Applications For Your Prestige 4

Internet Access 4
Internet Single User Account (SUA) 4
Multiprotocol LAN-to-LAN Connection 5
Telecommuting Server 5

viii

Mobile Users with V.34 Modems 5

What This Manual Covers 5
What This Manual Doesn’t Cover 6
Other Resources 6
Packing List 7
Additional Installation Requirements 7

2 Before You Begin 9

Road Map and Flow 9
Completing the Worksheet 10

Ordering Your ISDN Line 10
Collecting General Setup Information 11
Collecting ISDN Phone Line Information 12
Collecting Ethernet Setup Information 14

3 Installation 21

A Warning On Connection Cables 22
Connecting Your Computer and Your Prestige 22

Connecting the RS-232 Cable to your Prestige 22
Connecting an ISDN Line to your Prestige 22
Connecting a Telephone/Fax to your Prestige 23
Connecting an Ethernet Cable to your Prestige 23
Connecting a Power Adapter to your Prestige 24

Prestige Front Panel 24
Powering On Your Prestige 26
Navigating Through the System Management Terminal
Interface 27
System Management Terminal Interface Summary 28
General Setup 29
ISDN Setup 31

North American ISDN 31
DSS1 & 1TR6 ISDN 33

Ethernet Setup 36

ix

General Ethernet Setup 36
TCP/IP Ethernet Setup and DHCP 37
Novell IPX Ethernet Setup 40
Bridge Ethernet Setup 40

4 Configuring for Internet Access 41

IP Addresses and the Internet 42
Internet Access Configuration 43
Single User Account 46
Configuration for Single User Account 48
Configuring Backup ISP Accounts 48

5 Remote Node Configuration 51

Bandwidth on Demand 57
Editing PPP Options 59

6 Dial-In Configuration 61

Telecommuting 62
Dial-In Server Application 62
Default Dial-In Setup 63
Dial-In Users Setup 67

More on CLID 70

7 TCP/IP Configuration 71

IP Subnet Mask 71
LAN-to-LAN Application 72

Remote Node Setup 73
Static Route Setup 75

8 Novell IPX Configuration 79

IPX Network Environment 79

Frame Type 79
Network Numbers 79

Prestige on LAN with Server 80

x

Prestige on LAN without Server 80
IPX Spoofing 81
IPX Ethernet Setup 81
LAN-to-LAN Application 83

Remote Node Setup 83

Static Route Setup 85

9 Bridging Configuration 89

IPX Spoofing 89
Bridge Ethernet Setup 89
LAN-to-LAN Application 91

Remote Node Setup 91
Default Dial-In Setup for Bridge 92
Bridge Static Route Setup 93

10 Filter Configuration 95

About Filtering 95
Prestige’s Filter Structure 96
Configuring a Filter Set 96
Configuring a Filter Rule 99

TCP/IP Filter Rule 99
Generic Filter Rule 103
Novell IPX Filter Rule 104

11 SNMP 107

About SNMP 107
Configuring Your Prestige For SNMP Support 107

12 System Security 111

Using RADIUS Authentication 111

Installing a RADIUS Server 111
Configuring the Prestige for RADIUS Authentication 112
Adding Users to the RADIUS Database 114

xi

Using RADIUS Authentication for CLID 114

Configuring the SMT Password 115

13 Telnet Configuration and Capabilities 117

About Telnet Configuration 117
Telnet Capabilities 118

Single Administrator 118
System Timeout 118

14 System Maintenance 119

System Status 119
Terminal Baud Rate 122
Log and Trace 123

View Error Log 123
Syslog And Accounting 124

Diagnostic 125
Backup Configuration 128
Restore Configuration 129
Software Update 129
Command Interpreter Mode 130
Call Control 131

Call Control Parameters 131
Blacklist 132
Budget Management 133
Modem/ISDN TA Emulation 133

15 Troubleshooting 135

Problems Starting Up the Prestige 135

None of the LEDs are on when you power up the Prestige 135
Connecting the RS-232 cable, cannot access the SMT 135

Problems With the ISDN Line 136

The ISDN initialization failed 136
The ISDN loopback test failed 136

xii

Problems with the LAN Interface 137

Can’t PING any station on the LAN 137

Problems Connecting to a Remote Node or ISP 137
Problems Connecting to a Remote User 138

16 ISDN Switch Types 139

Provisioning For U.S. Switches 139

Provisioning For the AT&T 5ESS Switches 140
Provisioning For the Northern Telecom Switch 141

17 Index 143

xiii

xiv

1 Introduction

Congratulations on your purchase of the ZyXEL Prestige 2864I
Remote Access Router. The Prestige is the first device to integrate a
Router and Bridge into a single package. In a modem-sized box, the
Prestige offers inexpensive yet complete telecommunications and
internetworking solutions for your home or branch office. The Prestige
is ideal for everything from Internet browsing to receiving calls from
Remote Dial-in Users to making LAN-to-LAN connections to Remote
Nodes.

Distinguishing features of the Prestige include support for a full range of
networking protocols such as TCP/IP (Transmission Control
Protocol/Internet Protocol), Novell IPX (Internet Packet Exchange),
and Transparent Bridging. The complete solution also includes Remote
Dial -in User support, an Internet Single User Account (Network
Address Translation), POTS line support (Plain Old Telephone Service;
also called A/B Adapter in Europe), extensive Network Management,
and solid security features.

Features

The Prestige is packed with a number of features that give it the
flexibility to provide a complete networking solution for almost any user.

Ease of Installation

The Prestige is a self-contained unit that is quick and easy to install.
Physically, it resembles an external modem except for the fact that it is a
router and uses an Ethernet cable to connect to the host network.

Introduction 1

ISDN Basic Rate Interface (BRI)

Using either a standard S/T or U Interface the Prestige supports a full
range of switch types. The switch type depends on the CO (Central
Office) switch your ISDN line is connected to. See Chapter 16 for
more information on North American, European, and Asian ISDN
firmware and switch types supported by the Prestige.

The two B-channels can be used independently for two destinations. Or
they can be bundled for one connection to support bandwidth-on­demand.

Built-in V.34 Modem

The Prestige has a built-in V.34 modem. This enables it to communicate
to remote routers or users at speeds up to 28.8Kbps through the ISDN
connection.

Multiple Networking Protocol Support

The Prestige is a multi-protocol router. It supports TCP/IP, Novell
IPX, and Transparent Bridging.

2 Introduction

Standard Phone Jack

The Prestige is equipped with a standard phone jack for connection to a
telephone, FAX machine, or modem.

Dial On Demand

The Dial On Demand feature allows the Prestige to automatically place
a call to a Remote Node whenever there is traffic coming from any
workstation on the LAN to that remote site.

Bandwidth On Demand

The Prestige supports bandwidth up to 128Kbps over a single ISDN
BRI line. It incorporates PPP/MP (Point-to-Point Protocol/Multilink
Protocol ) to bundle two B channels over a BRI line. In addition, the
Prestige dynamically allocates bandwidth between the two B channels,
increasing or decreasing speeds as needed to allow for greater
efficiency in data transfer. It supports BAP (Bandwidth Allocation
Protocol ) and BACP (Bandwidth Allocation Control Protocol) to
manage the number of links in multilink bundle.

Full Network Management

The Prestige incorporates SNMP (Simple Network Management
Protocol ) support and menu-driven network management via an RS­232 or Telnet connection. The Prestige is also equipped with a Call
Detail Record (CDR) to help analyze and manage your telephone bill.

RADIUS (Remote Authentication Dial In User
Service)

The RADIUS feature allows you to use an external, central, Unix based
server to support thousands of users.

PPP Security

The Prestige supports PAP (Password Authentication Protocol) and
CHAP (Challenge Handshake Authentication Protocol).

DHCP Support (Dynamic Host Configuration
Protocol)

DHCP (Dynamic Host Configuration Protocol) allows you to
dynamically and automatically assign IP address settings to hosts on
your network.

Introduction 3

Call Control

The Prestige provides budget management for outgoing calls and
maintains a blacklist for unreachable phone numbers in order to save
you the expense of unnecessary charges.

Data Compression

The Prestige incorporates Stac data compression and CCP
(Compression Control Protocol).

Networking Compatibility

The Prestige is compatible with remote access products from other
companies such as Ascend, Cisco, and 3Com. Furthermore, it supports
Microsoft Windows 95 and Windows NT remote access capability.

Applications For Your Prestige

Some applications for the Prestige include:

Internet Access

4 Introduction

The Prestige supports the TCP/IP protocol, which is the language used
for the Internet. It is also compatible with access servers manufactured
by major vendors such as Cisco and Ascend.

Internet Single User Account (SUA)

For a small office environment, the Prestige offers a Single User Internet
Account from an ISP (Internet Service Provider). This allows multiple
users on the LAN (Local Area Network) to access the Internet
concurrently for the cost of a single user.

Single User Account address mapping can also be used for LAN to
LAN connection.

Multiprotocol LAN-to-LAN Connection

The Prestige can dial to or answer calls from another remote access
router connected to a different network. The Prestige supports TCP/IP,
Novell IPX, and has the capability to bridge any Ethernet protocol.

Telecommuting Server

The Prestige allows Remote Dial-in Users to dial-in and gain access to
your LAN. This feature enables users that have workstations with
remote access capabilities, e.g., Windows 95, to dial in using an ISDN
terminal adapter (TA) to access the network resources without
physically being in the office.

Mobile Users with V.34 Modems

The Prestige has a built-in V.34 modem. This allows mobile users that
have workstations with remote access capabilities to dial-in to the
Prestige using a standard V.34 modem to access network resources.

What This Manual Covers

This manual is divided into five parts.

1. Part One - Getting Started (Chapters 1-3) - is structured as a
step-by-step guide to help you connect, install, and setup your
Prestige to operate on your LAN.

2. Part Two - The Internet (Chapter 4) - describes how to configure
the Prestige to connect to the Internet.

3. Part Three - Setting Up Advanced Applications (Chapters 5-10)

- describes how to use the Prestige for more advanced applications,
such as TCP/IP routing and Bridging.

Introduction 5

4. Part Four - Advanced Management (Chapters 11-14) - provides
information on advanced management features for network
managers.

5. Part Five - System Maintenance (Chapters 15-16) - describes
maintenance features for checking system status and logging errors.

Regardless of the application, it is important that you follow the steps
outlined in Part One (Chapters 1-3) to correctly connect your Prestige
to your LAN. You can then refer to other chapters of the manual
depending on which applications you wish to use.

What This Manual Doesn’t Cover

This manual assumes that you know how to use your computer and are
familiar with your communications software. If you have questions about
using either one, refer to the manual for the product.

Other Resources

For more information about the Prestige check the following sources:

6 Introduction

• Quick Start Guide.

• Prestige Support disk.

• Release notes for firmware upgrades and other information can be

accessed through a ZyXEL FTP server site.

For ZyXEL contact information see page vi.

Packing List

Before you proceed further, check all items you received with your
Prestige against this list to make sure nothing is missing. The complete
package should include:

• One Prestige 2864I.

• One power adapter.

• One RJ-45 phone cable.

• One RJ-11 phone cable.

• One 25 pin female - 9 pin male adapter.

• One LAN crossover cable (red tag).

• One LAN straight cable (white tag).

• One Prestige Support Disk.

• One Prestige 2864I Quick Start Guide.

• This Prestige 2864I User’s Manual.

Additional Installation Requirements

In addition to the contents of your package, there are other hardware
and software requirements you need before you can install and use your
Prestige. These requirements include:

• An ISDN telephone line.

• An Ethernet connection to your computer.

Introduction 7

• A computer equipped with communications software configured to
the following parameters:

• VT100 terminal emulation.

• 9600 Baud rate.

• No parity, 8 Data bits, 1 Stop bit.

After the Prestige has been successfully connected to your network,
you can make future changes to the configuration by using a Telnet
application.

8 Introduction

2 Before You Begin

To ensure successful installation of your Prestige, we strongly
recommend that you carefully follow the steps outlined in Chapters 2
and 3. These chapters are designed as a guide for you to collect the
necessary information about your ISDN phone line, and the LAN which
you will be connected to. Once this information has been collected, it
will be used to configure your Prestige.

After you have successfully configured your Prestige, see the
appropriate chapters to setup your application. For Internet Access,
see Chapter 4.

Road Map and Flow

The chart below is provided as a step by step guide to successfully
installing your Prestige.

Before You Begin 9

Figure 2-1 Installation Guide

Completing the Worksheet

Before you continue locate the worksheet at the end of this chapter.
This information worksheet has been provided to help you get through
setup and installation of your Prestige as easily as possible.

Ordering Your ISDN Line

If you do not have the ISDN line installed already, we suggest that you
order it from your telephone company as soon as possible to avoid the

10 Before You Begin

long waits common when ordering a new line. Use the information in
this section to place the order (see Chapter 16 for information on
provisioning your ISDN line). If you have already installed your ISDN
line, you can check the following section to make sure that you can use
all the features of your Prestige.

1. Contact your local telephone company’s ISDN Ordering Center.

2. Find out what type of ISDN service is available. Refer to Chapter
16 to find out the provisioning information for the appropriate
switch type and ISDN service. For the U.S., the Prestige (both U
and S/T Interface) have been approved by Bellcore and have IOC
(ISDN Ordering Code) “S” Capability, EZ-ISDN 1.

3. Provide your telephone company with the proper provisioning
information.

4. When the telephone company installs your ISDN line, be sure to
obtain the following information:

• ISDN switch type.

• ISDN telephone number(s).

• ISDN Service Profile Identifiers (SPID) number(s) (only for

North America).

Collecting General Setup Information

The Prestige requires the following system information. You can obtain
all the pertinent information from your network administrator. Record
this information into the worksheet as it becomes available. This
worksheet will later be referred to as you configure your Prestige.

• System Name - This is the name given to the Prestige for
identification purposes. This name should be no more than 8
alphanumeric characters. Spaces are not allowed, but “-” and “_”
are accepted. This name can be obtained remotely via the SNMP

Before You Begin 11

management protocol and will be displayed as the prompt when the
user enters the Command Mode.

• Route IP Field - For Internet access, you will need to enable the
Route IP Field. See Chapter 4 for more details on configuring your
Prestige for Internet access. To support Novell IPX, or Bridging,
enable the appropriate protocol and reference the related chapters
for detailed information.

You have now collected all of the general setup information you need.
Make sure that you have entered all the values onto the worksheet
before proceeding to the next section.

Collecting ISDN Phone Line Information

After you have successfully installed the ISDN phone line or if you
already have one installed, you need to use the ISDN line information to
complete the worksheet and configure your Prestige. Your telephone
company can give you the following information to configure the
Prestige:

Switch Type Geography No of Phone #s No of SPIDs

AT&T 5ESS NI-1 North America 2 2
AT&T 5ESS Point to Point North America 1 0
AT&T 5ESS Multipoint North America 2 2
Northern Telecom NI-1 North America 2 2
Northern Telecom Custom North America 2 2
DSS1 Europe, Asia 2 N/A
1TR6 Germany 2 N/A

• Switch Type - This is the type of switch used by your telephone

12 Before You Begin

company. Check with your telephone company and choose the
appropriate option on the worksheet. For North America, select
your ISDN switch type. For DSS1 and 1TR6, verify this field to
make sure that you have the proper firmware loaded.

• B Channel Usage - Determine which connection is appropriate for
your B channel and check the corresponding option on the
worksheet.

If your Prestige is the only device using the ISDN line, then

configure B Channel Usage to Switch/Switch so that your device
will use both B channels to communicate. If your Prestige is sharing
the ISDN line with other devices, then configure B Channel Usage
to Switch/Unused.

• Telephone Number(s) - Record on the worksheet the telephone
number(s) given to you by your ISDN provider. Some switch types
only have one telephone number. These phone numbers should be
in a standard digit format (for example, 5551212). Note that these
fields will only accept digits, so - and spaces will not be accepted.

• Analog Call - Check the appropriate Analog Call option on the
worksheet for each telephone number. This information is later used
to configure the Prestige in routing an incoming analog call. Set to
modem, A/B adapter, or select Ignore if you don’t want to utilize
this option.

• SPID Number(s) - (For North America only) The SPID (Service
Profile Identifier) is a number used by a central office switch for
identification purposes. With the switch information, see the
previous table for the number of SPIDs you must enter.

You have now collected all of the necessary information about your
ISDN phone line. Make sure that these values are entered into your
worksheet before you continue to the next section. For DSS1 and
1TR6 ISDN, refer to Chapter 3.

Before You Begin 13

Collecting Ethernet Setup Information

This section assumes that you are setting up your Prestige for a TCP/IP
connection. If you want to configure the Prestige for other protocols
(e.g., IPX), refer to the appropriate chapters.

• Ethernet Interface - The first step is to determine the type of
Ethernet interface you will be using on the Prestige. There are two
options: AUI or UTP. Record the interface type onto the
worksheet. If you have a 10Base2 (BNC), you should choose
AUI.

• IP Address - An IP Address is required for TCP/IP protocol. The
IP Address is the unique 32-bit number assigned to your Prestige.
This address is written in dotted decimal notation (four 8-bit
numbers, between 0 and 255, separated by periods), e.g.,

192.68.203.5.

Record the IP Address into the worksheet as assigned by your

network administrator. Note that every machine on an internet must
have a unique IP address - do not assign an arbitrary address to
any machine.

• IP Sub-net Mask - This field is required for TCP/IP protocol. An

The table below lists some examples of IP subnet masks and the
number of hosts that are allowed. Consult your network administrator if
you are unsure of this value.

14 Before You Begin

IP address consists of two parts, the network ID and the host ID.
The IP Subnet Mask is used to specify the network ID portion of
the address, expressed in dotted decimal notation. The Prestige will
automatically calculate this mask based on the IP address that you
assign. Unless you have special need for subnetting, use the default
mask as calculated by the Prestige.

IP Subnet Mask Number of Host IDs Number of Bits

255.255.255.0 254 24

255.255.255.128 126 25

255.255.255.192 62 26

255.255.255.224 30 27

255.255.255.255 1 32

Before You Begin 15

Prestige Setup and Installation
Worksheet

General Setup Information

• System Name (for identification purposes):
_______________________________________

• Protocol Routing:

___TCP/IP
___IPX
___Bridging

ISDN Setup Information

• Switch Type (check one):

___AT&T 5ESS NI-1
___AT&T Point to Point
___AT&T 5ESS Multipoint
___Northern Telecom NI-1
___Northern Telecom Custom
___DSS1
___1TR6

• B-Channel Usage (check one):

___Switch/Switch

16 Before You Begin

___Switch/Unused

North America ISDN

• 1st Telephone Number:
_______________________________________

• Analog Call (check one):

___Modem
___A/B Adapter
___Ignore

• 1st SPID Number:
_______________________________________

• 2nd Telephone Number:

_______________________________________

• Analog Call (check one):

___Modem
___A/B Adapter
___Ignore

• 2nd SPID Number:
_______________________________________

DSS1 ISDN

• ISDN Data Number & Subaddress:

_______________________________________

Before You Begin 17

• A/B Adapter Number & Subaddress:
_______________________________________

• Outside Line Prefix Number:
_______________________________________

• PBX Number (S/T Bus Number):
_______________________________________

• Incoming Number Matching:

___MSN
___CDSA
___Don’t Care

• Analog Call Routing:

___Modem
___A/B Adapter
___Ignore

• Global Analog Call:

___Accept
___Ignore

1TR6 ISDN:

• ISDN Data Number:

• A/B Adapter Number:

18 Before You Begin

_______________________________________

_______________________________________

• Outside Line Prefix Number:
_______________________________________

• PBX Number (S/T Bus Number):
_______________________________________

• Incoming Number Matching:

___EAZ
___Don’t Care

• Analog Call Routing:

___Modem
___A/B
___Ignore

Ethernet Setup Information

• Ethernet Interface (check one):

___AUI
___UTP

• IP Address:

_______._______._______._______

• IP Subnet Mask:

_______._______._______._______

Before You Begin 19

20 Before You Begin

3 Installation

This chapter outlines how to connect your Prestige to the LAN and
ISDN line. A diagram of the right panel and rear panel of the Prestige
are shown below. Please refer to this diagram to identify all of the ports
on your device when you attempt to make the various connections.

Figure 3-1 Rear Panel Diagram

Installation 21

A Warning On Connection Cables

The RS-232, ISDN line, and Ethernet cable, are very similar to each
other. It is important that you use the correct cable for each connection;
otherwise, your Prestige could be damaged.

Connecting Your Computer and Your Prestige

For the initial setup of your Prestige, you must use an RS-232 cable and
communications software to configure the Prestige.

After the Prestige has been successfully installed, you can modify the
configuration through a remote Telnet connection. See Chapter 13 for
detailed instructions on using Telnet to configure your Prestige.

Connecting the RS-232 Cable to your Prestige

To connect the RS-232 cable, first click open the door on the right
panel to reveal the port. Plug one end of the RS-232 cable (looks like a
telephone jack) into the port until the retainer clicks into place. Connect
the other end of the RS-232 cable to the serial port (COM1, COM2,
or any other COM port) of your computer.

Connecting an ISDN Line to your Prestige

Plug one end of your ISDN phone line which is included in your
package into the socket on the rear panel of the Prestige labeled ISDN
and the other end into the ISDN wall jack.

• S/T interface - This can only connect to your NT-1 (Network
Termination) device.

O NOTE: DO NOT UNDER ANY CIRCUMSTANCES CONNECT DIRECTLY TO THE ISDN WALL

JACK.

22 Installation

• U interface - This allows you to connect directly to your ISDN
wall jack.

O NOTE: THE ISDN JACK IS FOR ISDN LINE CONNECTION ONLY. CONNECTION OF A

PHONE LINE MAY RESULT IN DAMAGE TO YOUR PRESTIGE.

ATTENTION: LA FICHE ISDN EST DESTINÉE UNIQUEMENT POUR LA CONNEXION SUR UNE

LIGNE RNIS. LA CONNEXION SUR UNE LIGNE TÉLÉPHONIQUE PEUT
ENDOMMAGER VOTRE ADAPTATEUR DE TERMINAL.

Connecting a Telephone/Fax to your Prestige

You can connect a regular telephone, a fax machine or a modem to
your Prestige to be used for analog calls. It should be noted that this is
optional and is not required for you to run other applications using your
Prestige.

Plug one end of the telephone cord from a phone or fax or modem into
the socket on the rear panel of the Prestige labeled PHONE.

In order to receive incoming calls using a device connected to the
PHONE port, you need to enter Voice in the Analog Call field under
the desired telephone number (e.g., 1st phone #) in SMT Menu 2 ­ISDN Setup. See Collecting ISDN Phone Line Information in Chapter
2 for more details.

Connecting an Ethernet Cable to your Prestige

The Prestige supports two types of Ethernet connections. The
connection procedure differs for each one; follow the one that is
appropriate for your installation.

• UTP

The UTP port is used to connect to a 10Base-T network. 10Base-T
networks use Unshielded Twisted Pair (UTP) cable and RJ-45

Installation 23

connectors that look like a bigger telephone plug with 8 pins. Two types
of gray Ethernet cables come with the package:

• Straight through cable (white tag): Connect your Prestige to a

10Base-T hub.

• Crossover cable (red tag): Connect your Prestige to your

computer directly without a hub.

O NOTE: IF THIS CABLE IS USED TO CONNECT ISDN, IT MAY DAMAGE YOUR PRESTIGE.

• AUI

The AUI port (the connector with 15 pins) is used to connect the
Prestige to a 10Base5 (thicknet) network.

If you have a 10Base2 network using BNC connectors and thin coaxial
cables, you will need a transceiver between the AUI port and the
10Base2 cabling.

Connecting a Power Adapter to your Prestige

Plug a 16VAC 1200mA power adapter into the outlet on the rear panel
of the Prestige labeled POWER

At this point, you should have connected the RS-232 cable, the ISDN
phone line, the Ethernet cable, and the power supply. You can now
power on your Prestige.

Prestige Front Panel

Names and descriptions of the Prestige front panel LEDs are listed
below:

24 Installation

Figure 3-2 Front Panel

PWR - This LED (power) comes on as soon as you connect you

Prestige to the power supply and switch it to the ‘I’ (on) position.
RDY - The ready LED will come on once the Prestige has been turned

on and initialized. If this LED is blinking, there is an error and you need
to contact technical support.

LAN - This LED indicates that the Prestige has been successfully
connected to the LAN via the Ethernet interface.

B1 and B2 - These LEDs are on if there is an active WAN session on
that channel or if that channel is making or receiving a call.

Tx/Rx - Transmit/Receive LEDs will blink to indicate when there is
traffic over the corresponding channel (B1 or B2).

Link - This LED indicates that the Prestige has an ISDN line connected
to the WAN interface and it has been successfully initialized.

NM - The NM (network management) LED should be blinking if the
Prestige is functioning properly.

POTS - This LED indicates the functionality of the POTS port on the
Prestige. If there is a device plugged into this port, and the device is in
use, this LED should be on.

AA - This LED (auto answer) indicates when auto answer is turned on.

Installation 25

Powering On Your Prestige

When you power on your Prestige, the Prestige will perform several
internal tests and will also do an ISDN line initialization. After this
initialization, the Prestige will ask you to press ENTER to continue as
shown below:

Figure 3-3 Power on Messages

If you press ENTER, the Prestige will display a login screen and ask
you to enter the password as shown below:

26 Installation

Figure 3-4 Login Screen

Enter the default password, 1234 to get into the Main Menu of System
Management Terminal (SMT). Note that once you are in the SMT and
if there is no activity for longer than 5 minutes, the Prestige will
automatically log you out and will display a blank screen. If you see a
blank screen, press ENTER to bring up the password screen.

Navigating Through the System Management
Terminal Interface

The SMT is the interface that you use to configure your Prestige.
Several operations that you should be familiar with before you attempt
to modify the configuration of your Prestige are listed below:

• Moving Forward to Another Menu. To move forward to a sub-
menu below the current one, type in the number of the sub-menu
and press ENTER.

• Moving Backward to a Previous Menu. Press the Escape key
to move back to the previous menu. The only exception is the Main
Menu, where typing 99 is the only method to exit the SMT.

• Moving the Cursor. Within a menu, press ENTER (carriage
return) to move to the next field. You can also use the Up and
Down keys to move to the previous and the next field, respectively.

• Entering Information. There are two types of fields that you will
need to fill in. The first requires you to type in the appropriate
information. The second gives you choices to choose from. In the
second case, press the space bar to cycle through the available
choices.

• Required Fields. Some of the fields in the SMT are essential in
order to configure the Prestige. These fields will initially show a ?

Installation 27

indicating that the information must be filled in before that menu can
be saved.

• N/A Fields. Some of the fields in the SMT will show a N/A. This
symbol refers to an option that is not available.

• Saving Your Configuration. You can save your configuration by
pressing ENTER at the message: Press ENTER to confirm or ESC
to cancel: Saving the data on the screen will take you in most cases
to the previous menu.

The SMT main menu is shown below:

Figure 3-5 SMT Main Menu

System Management Terminal Interface Summary

This section summarizes all major SMT Menus:

# Menu Title Description
1 General Setup Setup general information and enable routing

or bridging of specific protocols

28 Installation

# Menu Title Description
2 ISDN Setup Setup ISDN configuration
3 Ethernet Setup Setup Ethernet configuration
4 Internet Access Setup A quick and easy way to setup Internet

connection

11 Remote Node Setup Setup Remote Node for LAN -to-LAN

connection including Internet connection.
Prestige has four Remote Nodes.

12 Static Routing Setup Setup static route for different protocols.

There are four static routes for each protocol.

13 Default Dial -in Setup Setup default dial -in parameters such that

your Prestige can be a dial -in server for the
Remote Node and Remote Dial -in User.

14 Dial-in User Setup Setup Remote Dial -in User. Prestige has eight

Remote Dial -in Users.

21 Filter Set Configuration Setup filters to be used in Menu 3 and Menu

11 to provide security, call control, etc.
22 SNMP Configuration Setup SNMP related parameters
23 System Security Setup security related parameters
24 System Maintenance Provide system status, diagnostics, firmware

upload, etc.
99 Exit To exit from SMT and return to the blank

screen

General Setup

This menu contains administrative and system-related information. Enter
1 in the main menu to go to Menu 1 - General Setup.

Installation 29

Figure 3-6 Menu 1 - General Setup

1. System Name - Choose a descriptive name for the Prestige for

identification purposes, e.g., p2864. This name should be no more
than 8 alphanumeric characters. Spaces are not allowed, but “-”
and “_” are accepted. This name can be retrieved remotely via
SNMP, used for CHAP authentication, and will be displayed as the
prompt in the Command Mode. See Chapter 6 for more
information on CHAP; see Chapter 14 for more information on
Command Mode.

2. Location - Enter the geographic location (up to 31 characters) of

your Prestige, e.g., San Jose.

3. Contact Person’s Name - Enter the name (up to 8 characters) of

the person in charge of this Prestige, e.g., Brent Harper. The
Location and the Contact Person fields are optional.

4. Protocols - Turn on or off the individual protocols for your

particular application. Unsupported protocols will have a N/A in
their fields.

30 Installation

ISDN Setup

Menu 2 is for entering information about your ISDN line. Different
telephone companies deploy different types of switches for ISDN
service. Depending on the switch for your particular installation, you will
have a different number of telephone numbers, and if you are in North
America, you may also have SPIDs. Make sure that you have correct
and complete telephone numbers and SPIDs. You need to pass the
ISDN setup before your system can make an outgoing call or answer
an incoming call.

North American ISDN

Figure 3-7 Menu 2 - ISDN Setup for North America

1. Switch Type - Verify the switch type information with your

telephone company. For North America, select the type of switch
used by your telephone company. If your switch type is not
currently shown, press the space bar to change to the next switch;
repeat until you see the correct switch type. The Prestige will not be
able to place or to receive calls if the wrong switch type is specified.
If you are not sure, contact your telephone company to confirm the
exact switch type.

Installation 31

2. B Channel Usage - If you are using one B channel of your

Prestige with another device on the S/T bus, then select
Switch/Unused. If not choose Switch/Switch .

3. Telephone Number(s) - Enter the telephone number(s) assigned

to your ISDN line by your telephone company. Some switch types
only have one telephone number. For North America, these phone
numbers should be in a standard seven digit format e.g. 5551234.
Note that the Prestige only accepts digits; do not include - and
spaces in this field. This field should be no longer than 19 digits.

4. Analog Call - This tells the Prestige how to route an incoming

analog call. Set to Voice if you wish to route the incoming analog
call for this telephone number to the PHONE port (a.k.a., ‘POTS’
port in North America and a/b adapter in Europe). Set to Modem
if you wish to route the incoming analog call for this telephone
number to the internal modem (e.g., when the Prestige is used as a
dial -in server for the Remote Dial-in User).

5. SPID Number(s) - SPIDs are numbers used by a switch for

identification purposes. Depending on your switch type, you may
have zero, one, or two SPIDs assigned to your line. For example, if
your switch type is Northern Telecom Custom, you will have to
enter two SPID numbers.

32 Installation

DSS1 & 1TR6 ISDN

Figure 3-8 Menu 2 - ISDN Setup for DSS1

Figure 3-9 Menu 2 - ISDN Setup for 1TR6

1. Switch Type - This field is fixed as DSS1 or 1TR6.

2. B Channel Usage - This field is fixed as Switch/Switch.

3. ISDN Data & Subaddress - Enter the telephone number and

subaddress assigned to the ISDN data call for the Prestige. It will
be used as the outgoing CGPN(Calling Party Number) setting for
ISDN data calls. Note that the Prestige only accepts digits; do not
include - and spaces in this field. This field should be no longer than

Installation 33

19 digits for the number and 5 digits for the Subaddress. The
Subaddress is only applicable to DSS1.

4. Modem & Subaddress - Enter the telephone number and

subaddress assigned to the internal Modem data call for the
Prestige. It will be used as outgoing CGPN(Calling Party Number)
setting for the internal Modem data call.

5. A/B Adapter & Subaddress - Enter the telephone number and

subaddress assigned to the A/B Adapter (POTS port) call for the
Prestige. It will be used as outgoing CGPN(Calling Party Number)
setting for the A/B Adapter call.

6. Dial Prefix to Access Outside Line - Enter the prefix number if

the Prestige is connected to an ISDN PBX. This number will be
added to all outgoing calls and should be no longer than 3 digits.
Otherwise, leave this field blank.

7. PBX Number (with S/T Bus Number) - Enter the S/T bus

number if the Prestige is connected to an ISDN PBX. If this field is
left as blank then the loopback test will be skipped.

8. Incoming Phone Number Matching - There are three options in

this field:

34 Installation

Multiple Subscriber Number (MSN) - The digital call will only

be answered when there is a match for the ISDN data number. The
analog call will be answered as a modem call when there is a match
for the modem number. Or it will be answered as A/B Adapter call
when there is a match for the A/B Adapter number. If no modem or
A/B Adapter number is specified, then the analog call will not be
answered. This option will be available as EAZ (Endgeraete
Auswahl Ziffer) for 1TR6.

Called Party Sub-Address (CDSA) - The digital call will be

answered when there is a match for the ISDN Data subaddress.

The analog call will be answered as a modem call when there is a
match for the modem subaddress. Or it will be answered as A/B
Adapter call when there is a match for the A/B Adapter
subaddress. If no modem or A/B Adapter subaddress is specified,
then the analog call will not be answered. This option is only
available for DSS1.

Don’t care - all numbers accepted - All digital calls, including

global calls (without CDPN and CDSA in the call setup), to any
CDPN (Called Party Number) will be answered. All analog calls
will be routed to the modem, A/B Adapter, or not answered. This
depends on the setting of ‘Analog Call Routing’. All global analog
calls will either accept or not answer them depending on the setting
of Global Analog Call.

9. Analog Call Routing - All analog calls will be routed to the

modem if the setting is Modem. Or they will be routed to the A/B
Adapter if the setting is A/B Adapter. Or they will not be answered
if the setting is Ignore.

10. Global Analog Call - : All global analog calls will be answered

and routed to the modem or A/B Adapter (the setting in the filed of
Analog call routing) if the setting is Accept. Or they will not be
answered if the setting is Ignore.

When you are finished, press ENTER at the message: Press ENTER
to Confirm ... to save your selections, or press ESC to cancel. When
you press ENTER, the Prestige will use the information that you entered
to initialize the ISDN link to the telephone company switch. It should be
noted that whenever the switch type is changed, the ISDN initialization
will take slightly longer. In addition, if you are using the U-interface, the
system will also take slightly longer to initialize.

At this point, the Prestige will ask if you wish to test to check if your
ISDN line has been successfully connected to your Prestige. If you

Installation 35

select Yes, the Prestige will perform a loop-back test to check the
ISDN line. If the loop-back test fails, note the error message that you
receive and take the appropriate troubleshooting action.

Ethernet Setup

Menu 3 is used to enter Ethernet related information. Depending on the
protocols (TCP/IP or IPX) on your LAN, you will need to configure
each protocol separately.

Figure 3-10 ISDN Loop -Back Test Screen

36 Installation

General Ethernet Setup

This menu determines the type of Ethernet interface you are using as
well as the filter sets you wish to implement to monitor your Ethernet
traffic. From Menu 3 - Ethernet Setup, enter 1 to go to menu 3.1 ­General Ethernet Setup.

Figure 3-11 Menu 3.1 - General Ethernet Setup

1. Ethernet Interface - The Prestige supports two types of Ethernet

connections, the AUI (15-pin) or the connection for the 10BaseT
network (looks like a bigger telephone plug). Determine which type
you are using and select the appropriate option in this field.

2. Input and Output Filter Sets - Filter sets are used to block

certain packets to reduce traffic and to prevent a security breach.
Filtering is a very involved subject, so leave these fields blank for
the time being. After you have studied filtering in Chapter 10, come
back and define the filter sets.

TCP/IP Ethernet Setup and DHCP

If you are setting up your network for the first time, read Chapter 4,
Configuring for Internet Access, before proceeding. The chapter
contains important information on how to assign IP addresses for your
network.

From Menu 3 - Ethernet Setup, enter 2 to go to Menu 3.2 - TCP/IP
Ethernet Setup.

Installation 37

Figure 3-12 Menu 3.2 - TCP/IP Ethernet Setup

1. DHCP - This field determines what mode of DHCP (Dynamic

Host Configuration Protocol) support the Prestige should use. If it is
set to None, DHCP will not be used. If it is set to Server, the
Prestige will act as a DHCP server, capable of automatically
assigning IP addresses to Windows 95, Windows NT, and other
systems that support the DHCP client. When DHCP is used, the
following four items need to be set.

Do not set this field to Server if there is already a DHCP server on

your network.

2. Client IP Pool Starting Address - DHCP can assign IP

addresses to hosts dynamically instead of requiring that each system
have a fixed IP address. IP addresses are allocated from a block of
addresses, usually assigned by your Internet provider. The Client IP
Pool Starting Address gives the first address in the reserved block,
which is also used as the LAN network address of the Prestige
itself. This address will also serve as the default gateway for DHCP
clients.

38 Installation

3. Size of Client IP Pool - Gives the size of the block of addresses

reserved for DHCP address assignment. The Prestige itself uses the

first address in the block, and the remaining addresses in the pool
are assigned to clients.

4. Primary DNS Server/Secondary DNS Server - These two

fields are used by DHCP clients (such as Windows 95 and
Windows NT systems) for Domain Name Servers. Usually your
Internet provider will provide one or more name service hosts.

5. IP Address - Enter the IP address of the Prestige in dotted decimal

notation (four 8-bit numbers, between 0 and 255, separated by
periods), e.g., 192.68.135.5. Note that every machine on the
TCP/IP network must have a unique IP address.

6. IP Subnet Mask - An IP address consists of two parts, the

network ID and the host ID. The IP Subnet Mask is used to specify
the network ID portion of the address, expressed in dotted decimal
notation. The Prestige will automatically calculate this mask based
on the IP address that you assign. Unless you have special need for
subnetting, use the default subnet mask calculated by the Prestige.

7. RIP Direction - This parameter determines how the Prestige

handles RIP (Routing Information Protocol). If set to Both (default),
the Prestige will broadcast its routing table on the LAN, and
incorporate RIP broadcasts by other routers into its routing table. If
set to In Only, the Prestige will not broadcast its routing table on the
LAN, if set to Out Only, the Prestige will broadcast its routing table
but ignores any RIP broadcast packets that it receives. If set to
None, the Prestige will not participate in any RIP exchange with
other routers.

Usually, you should leave this parameter at its default of Both and

let RIP propagate the routing information automatically.

When you are finished, press ENTER at the message: Press ENTER
to Confirm... to save your selections, or press ESC at any time to
cancel them.

Installation 39

Novell IPX Ethernet Setup

Refer to the chapter on Novell IPX configuration.

Bridge Ethernet Setup

Refer to the chapter on Bridging configuration.

40 Installation

4 Configuring for Internet

Access

Menu 4 of the SMT allows you to configure Internet access on one
screen. Before you configure the Prestige for Internet access, you need
to collect the following information from your ISP (Internet Service
Provider).

• IP address of the ISP’s gateway (optional).

• Telephone number(s) of your ISP.

• Login name.

• Password for ISP authentication

For your Workstation:

• Domain Name Server (DNS)

Configuring for Internet Access 41

Figure 4-1 Internet Access

IP Addresses and the Internet

Conventionally, the Internet (with a capital I) refers the large-scale
interconnected networks across the world that was originally developed
by the US Department of Defense. The Internet uses exclusively the
TCP/IP suite of protocols. The term “internet” (lower case i), however,
refers to any interconnected networks using any protocol. An internet
can be as simple as two hosts on a LAN, or it can be as complex as the
Internet itself.

Every machine on the Internet must have a unique address within that
internet. If your networks are isolated from the Internet, e.g., only
between your two branch offices, you can assign any IP addresses to
the hosts without problems. However, the Internet Assigned Numbers
Authority (IANA) has reserved the following three blocks of IP
addresses specifically for private networks:

10.0.0.0 - 10.255.255.255

172.16.0.0 - 172.31.255.255

42 Configuring for Internet Access

192.168.0.0 - 192.168.255.255

For this reason, it is recommended that you choose your network
number from the above list.

You can obtain your IP address from the IANA, from an ISP, or
assigned from a private network. If you belong to a small organization
and your Internet access is through an ISP, the ISP can provide you
with the Internet addresses for your local networks. On the other hand,
if you are part of a much larger organization, you should consult your
network administrator for the appropriate IP addresses.

O NOTE: REGARDLESS OF YOUR PARTICULAR SITUATION, DO NOT CREATE AN

ARBITRARY IP ADDRESS; ALWAYS FOLLOW THE GUIDELINES ABOVE. FOR MORE
INFORMATION ON ADDRESS ASSIGNMENT, REFER TO RFC 1597, ADDRESS

ALLOCATION FOR PRIVATE INTERNETS AND RFC 1466, GUIDELINES FOR
MANAGEMENT OF IP ADDRESS SPACE.

Once you have determined the IP address range for your local network,
you may want to use DHCP (Dynamic Host Configuration Protocol) to
assign addresses to individual hosts on the network, as an alternative to
manually configuring each host’s IP settings. See the TCP/IP Ethernet
Setup and DHCP section on page 37 for more information about
DHCP.

Internet Access Configuration

The following steps describe the set-up procedure to configure your
Prestige for Internet access. The information you will need to provide
will be indicated in bold type.

Configuring for Internet Access 43

Figure 4-2 Menu 4 - Internet Access Setup

1. From the Main Menu, enter 4 to go to Menu 4 - Internet Access

Setup as seen above.

2. ISP’s Name - Enter the name of your Internet Service Provider,

e.g., myisp. This information is for identification purposes only.

3. ISP IP Addr - Enter the IP Address of the remote gateway at the

ISP’s site. If you do not have this data, just leave it blank.

4. Pri(mary) Phone # and Sec(ondary) Phone Number - Both the

Primary and the Secondary Phone number refer to the number that
the Prestige will dial to connect to the ISP. The Prestige will always
call your ISP using the Primary Phone number first. If the Primary
Phone number is busy or does not answer, the Prestige will call the
Secondary Phone number if available. Once connected, the Prestige
will use the BACP (Bandwidth Allocation Control Protocol) to
establish the second B-channel if PPP/MP is enabled, and the ISP
also supports MP and BACP.

5. My Login Name - Enter the login name given to you by your ISP.

6. My Password - Enter the password associated with the login name

above. Note that this login name/password pair is only for the
Prestige to connect to the ISP’s gateway. When you use TCP/IP

44 Configuring for Internet Access

applications, e.g., FTP, to access the Internet from your
workstation, you will need a separate login name and password for
each server.

7. Single User Account - See the following section for a more

detailed discussion on the Single User Account feature. The default
is No.

8. Telco Options: Transfer Rate - This field (which only applies to

outgoing calls) controls the rate at which the data is transferred
between your Prestige and the Internet. There are four options for
this field:

• 64K - The Prestige will place 64Kbps (bits per second) digital

data calls. (Default)

• Modem - The Prestige will place Modem data calls.

• X.75 - (for the DSS1 and 1TR6 only) The Prestige will place

X.75 digital data calls.

• V.120 - (for the DSS1 and 1TR6 only) The Prestige will place

V.120 digital calls.

• 56K - (For the North America only) The Prestige will place

56Kbps digital data calls.

• DOVBS - (For the North America only) The Prestige will

place 56Kbps Data Over Voice Bearer Service (DOVBS) call.
Some phone companies in North America charge less if calls
are made using DOVBS.

9. Press ENTER at the message: Press ENTER to Confirm ... to

confirm your selections, or press ESC at any time to cancel your
selections.

10. At this point, the SMT will ask if you wish to test the Internet

connection. If you select Yes, the Prestige will call the ISP to test

Configuring for Internet Access 45

the Internet connection. If the test fails, note the error message that
you receive and take the appropriate troubleshooting steps.

Single User Account

Typically, if there are multiple users on the LAN wanting to concurrently
access the Internet, they will have to subscribe to multiple IP addresses
or a Class C subnetwork from the ISP. In either case, these two
approaches will cost more than a single user account.

The Single User Account (SUA) feature allows customers to have the
same benefits as having a Class C address, but still only pay for one IP
address, thus saving significantly on subscription fees. (Check with your
ISP before you enable this feature).

This feature may also be used to connect to TCP/IP remote nodes
other than Internet Service Providers. For example this feature can be
used to simplify the allocation of IP addresses when connecting branch
offices to the corporate network.

The IP address for the Single User Account can be either fixed or
dynamically assigned by the ISP (or other remote node). In addition,
you can also configure a server, e.g., a Web server, on your local
network and make it accessible by outside users.

If you do not set a server IP address, SUA offers the additional benefit
of firewall protection. This is because if no server is defined, all
incoming inquiries will be filtered out by the Prestige even if you do have
a server on your network. This can prevent intruders from probing your
system.

The Prestige accomplishes this address sharing by translating the internal
LAN IP addresses to a single address that is globally unique on the
Internet. For more information on IP address translation, refer to RFC
1631, The IP Network Address Translator (NAT).

46 Configuring for Internet Access

In summary:

1. SUA is an ideal, cost-effective solution for small offices with less

than 20 hosts using a LAN to concurrently access the Internet or
other remote TCP/IP network.

2. SUA can provide one server address to be accessed by Remote

Dial -in Users, thus controlling the incoming packets.

3. SUA can provide firewall protection if you do not configure a

server IP address. All incoming inquiries will be filtered out by the
Prestige. Therefore, servers on your network are protected.

4. UDP and TCP datagrams can be routed. In addition, ICMP echo

can also be routed.

The figure below shows an example of a small office connected to the
Internet via a Single User Account using the Prestige. Note that if you
enable the Single User Account feature, your local IP address MUST
be selected from the list of IP addresses for private networks as defined
by the IANA.

Figure 4-3 A Single User Account Using the Prestige

Configuring for Internet Access 47

Configuration for Single User Account

The steps for configuring your Prestige for Single User Internet Access
are identical to conventional Internet Access with the exception that you
need to fill in three extra fields.

Follow steps 1-8 from the previous section, Internet Access
Configuration .

1. Single User Account - Enter Yes to enable the Single User

Account feature. Use the space bar to toggle between Yes and No.

2. Single User Account: IP Addr - If your ISP assigns you a

dynamic IP address, enter 0.0.0.0 here. If your ISP assigns you a
static IP address enter that IP address here.

3. Single User Account: Server IP Addr - If you want to make a

single server, e.g., a Web server, accessible to outside users, enter
that server’s IP address here.

Press ENTER at the message: Press ENTER to Confirm ... to

confirm your selections or press ESC at any time to cancel your
selections.

At this point, the Prestige will ask if you wish to test the Internet

connection. If you select Yes, the Prestige will call the ISP to test
the Internet connection. If the test fails, note the error message that
you receive and take the appropriate troubleshooting steps.

Configuring Backup ISP Accounts

Sometimes it may be desirable to configure more than one ISP account
for backup purposes. The Single User Account feature can be enabled
for all of these accounts, making it convenient to switch Internet Service
Providers in the event of a failure.

To configure a backup ISP,

48 Configuring for Internet Access

1. Configure your primary ISP using Menu 4, as described earlier in

this chapter.

2. Enter Menu 11, then select the number of an unused remote node.

3. In Menu 11.1, choose a name for your backup ISP account, set the

Active field to No, and enter your outgoing login name, password,
and phone number(s). The Remote IP Address field should be set
to 1.1.1.1.

4. In Menu 11.3, set the remote node’s subnet mask to 0.0.0.0, and

set RIP to None.

5. Save the new configuration.
Once you have done this, if you need to change from your primary ISP

to a backup ISP follow the steps below:

1. Enter Menu 11 and select your Primary ISP.

2. In Menu 11.1, set the Active field to No.

3. Enter Menu 11 again and select your backup ISP.

4. In Menu 11.1, set the Active field to Yes.
You will now be able to access the Internet through the backup ISP

Remote Node.

Configuring for Internet Access 49

50 Configuring for Internet Access

5 Remote Node Configuration

A Remote Node represents both a remote gateway and the internet
behind it, across an ISDN connection. A Remote Node is required for
placing calls to or answering calls from a remote network. Note that
when you use Menu 4 to configure the Internet, the Prestige will
automatically add a Remote Node for you. Once a Remote Node is
configured properly, traffic to the remote LAN will trigger the Prestige
to make a call automatically (i.e., Dial On Demand). Similarly, calls
from the remote LAN will be answered automatically and security will
be checked.

In this chapter, we will discuss the parameters that are protocol
independent. The protocol dependent configuration will be covered in
subsequent chapters. For TCP/IP, see Chapter 7. For IPX, see
Chapter 8. For bridging, see Chapter 9.

From the Main Menu, enter 11 to go to Menu 11 - Remote Node
Setup. When in menu 11, enter the number of the Remote Nodes (1 to

4) that you wish to configure as shown below:

Remote Node Configuration 51

Figure 5-1 Menu 11 - Remote Node Setup

Enter the Remote Node number to edit and you will go to the next
submenu: 11.1 - Remote Node Profile as shown below:

Figure 5-2 Menu 11.1 - Remote Node Profile

1. Rem Node Name - This is a required field. Enter a descriptive

name for the Remote Node, e.g., SJHQ. This field can support up
to eight characters. This name must be unique from any other
Remote Node name or Remote Dial-in User name.

2. Active - Press the space bar to toggle between Yes and No. When

a Remote Node is deactivated, it has no effect on the operation of
the Prestige, even though it is still kept in the database, and can be

52 Remote Node Configuration

activated in the future. Deactivated nodes are displayed with a ­(minus sign) at the beginning of the name in Menu 11.

3. Call Direction - If this parameter is set to Both, the Prestige can

both place and receive calls to/from this Remote Node. If set to
Incoming, the Prestige will not place a call to this Remote Node. If
set to Outgoing, the Prestige will drop any call from this Remote
Node.

Several other fields in this menu depend on this parameter. For

example, in order to enable Call Back, the Call Direction must be
Both.

4. Incoming: Rem Node Login Name - Enter the login name that

this Remote Node will use when it calls into the Prestige. The login
name in this field combined with the Rem Node Password will be
used to authenticate the incoming calls from this node.

5. Incoming: Rem Node Password - Enter the password used when

this Remote Node calls into the Prestige.

6. Incoming: Rem CLID - This field is active only if Call Direction is

either Both or Incoming. Otherwise, an N/A appears in the field.
This is the Calling Line ID (the telephone number of the calling
party) of this Remote Node. If you enable the CLID Authen field in
Menu 13 - Default Dial In, the Prestige will check this number
against the CLID in the incoming call. If they do not match and the
CLID Authen is Required, then the Prestige will reject the call.

7. Incoming: Call Back - This field will be valid only if Call Direction

is Both. Otherwise, an N/A appears in the field. This field
determines whether or not you wish the Prestige to call back after
receiving a call from this Remote Node. If this option is enabled, the
Prestige will disconnect the initial call from this node and call it back
at the Outgoing Primary Phone Number (see below).

Remote Node Configuration 53

8. Outgoing: My Login Name - This is a required field if Call

Direction is either Both or Out. Enter the login name for the Prestige
when it calls this Remote Node.

9. Outgoing: My Password - This is a required field if Call Direction

is either Both or Out. Enter the password for the Prestige when it
calls this Remote Node.

10. Outgoing: Authen - This field sets the authentication protocol used

for outgoing calls.

The Prestige supports two authentication protocols: PAP

(Password Authentication Protocol) and CHAP (Challenge
Handshake Authentication Protocol).

• PAP sends the user name and password in plain text.

• CHAP scrambles the password before it is sent over the wire.

Generally speaking, CHAP is more secure than PAP; however,

PAP is readily available on more platforms. The recommendation is
to use CHAP whenever possible. Turning off the authentication is
STRONGLY discouraged.

Options for this field are:

• CHAP/PAP - Prestige will try CHAP when CHAP is

requested by the Remote Node or PAP when PAP is
requested by the Remote Node.

• CHAP - use CHAP only.

• PAP - use PAP only.

11. Outgoing: Pri(mary) Phone Sec(ondary) Phone Number - Both

the Primary Phone number and the Secondary Phone number refer
to the number that the Prestige will dial to connect to the Remote
Node. The Prestige will always call the Remote Node using the
Primary Phone number first. If the Primary Phone number is busy or
does not answer, the Prestige will call the Secondary Phone number

54 Remote Node Configuration

if available. Once connected, the Prestige will use the BACP
(Bandwidth Allocation Control Protocol) to establish the second B­channel if Multilink PPP is enabled, and the Remote Node supports
MP and BACP.

Some areas require dialing # before the phone number for local

calls. A # symbol may be included at the beginning of the Primary
Phone number or Secondary Phone number.

12. Route - This fields determines the protocols that the Prestige will

route. The choices for this field are determined by the features
enabled on your Prestige.

13. Bridge - Bridging is used for protocols that are not supported or

not turned on in the previous Route field by the Prestige, e.g., SNA.
When bridging is enabled, the Prestige will forward any packet that
it does not recognize to this Remote Node; otherwise, the
unrecognized packets are discarded. The disadvantage of bridging
is that it usually generates large amounts of traffic. Press the space
bar to select either Yes or No.

14. Edit PPP Options - To edit the PPP options for this Remote

Node, move the cursor to this field, use the space bar to select Yes
and press ENTER. This will bring you to Menu 11.2 - Remote
Node PPP Options For more information on configuring PPP
options, see the section Editing PPP Options.

15. IP Addr - This is a required field if Route is set to IP. Enter the IP

address of this Remote Node.

16. Edit IP/IPX/Bridge Options - To edit the parameters of the

protocols, go to this field, select Yes and press ENTER. This will
bring you to Menu 11.3 - Remote Node Network Layer Options.
For more information on filling out this screen, refer to the chapter
pertaining to your specific protocol.

Remote Node Configuration 55

17. Telco Options: Transfer Rate - This field (which only applies to

outgoing calls) controls the rate at which the data is transferred
between your Prestige and the Remote Node. The options for this
field are:

• 64K - The Prestige will place 64Kbps (bits per second) digital

data calls. (Default)

• Modem - The Prestige will place Modem data calls.

• X.75 - (for the DSS1 and 1TR6 only) The Prestige will place

X.75 digital data calls.

• V.120 - (for the DSS1 and 1TR6 only) The Prestige will place

V.120 digital calls.

• 56K - (For the North America only) The Prestige will place

56Kbps digital data calls.

• DOVBS - (For the North America only) The Prestige will

place 56Kbps Data Over Voice Bearer Service (DOVBS) call.
Some phone companies in North America charge less if calls
are made using DOVBS.

18. Telco Options: Allocated Budget (min) - This field will set a

budget outgoing call time for the Remote Node. The default for this
field is 0 for no budget control.

19. Telco Options: Period (hr) - This field will set the time interval to

reset the above outgoing call budget control.

20. Session Option: Input Filter Sets, Output Filter Sets and Call

Filter Sets - In these fields, select which filter set(s) you would like
to implement to filter the incoming and outgoing traffic between this
Remote Node and the Prestige. You can choose from 12 different
filter sets. In addition, you can link up to 4 filter sets together for
further customization (e.g., 1, 5, 9, 12). Note that spaces and , are
accepted in this field.

56 Remote Node Configuration

For more information on customizing your filter sets, see Chapter

used to initiate

channel(s) used

on demand

10. The default is blank, i.e., no filters defined.

21. Session Option: Idle Timeout (sec) - This value specifies the

number of idle seconds that elapses before the Remote Node is
automatically disconnected. Idle seconds is the period of time
where no data is passed between the Remote Node and your
Prestige. Administrative packets such as RIP are not counted as
data. The default is 300 seconds (5 minutes). There is no Idle
Timeout for incoming calls.

Once you have completed filling in Menu 11.1 - Remote Node Profile,
press ENTER at the message: Press ENTER to Confirm ... to confirm
your selections, or press ESC at any time to cancel your selections.

Bandwidth on Demand

The Bandwidth on Demand (BOD) feature allows you to bundle both B
channels in one connection. The second channel is added and
subtracted dynamically according to traffic demand. The Prestige uses
the Bandwidth Allocation Control Protocol (BACP) and the Multilink
Protocol (MP) to implement bandwidth on demand.

The configuration of bandwidth on demand focuses on the Base
Transmission Rate (BTR) and the Maximum Transmission Rate (MTR).
The relationship between BTR and MTR are shown below:

BTR & MTR Setting No. of channel(s)

BTR = 64, MTR = 64 1 1 Off
BTR = 64, MTR = 128 1 2 On
BTR = 128, MTR = 128 2 2 Off

Max No. of

Bandwidth

When bandwidth on demand is enabled, a second channel will be
brought up if traffic on the initial channel is higher than the high Target

Remote Node Configuration 57

Utility number for longer than the specified Add Persist value. Similarly,
the second channel will be dropped if the traffic level falls below the low
Target Utility number for longer than the Subtract Persist value.

The Target Utility specifies the line utilization range at which you want
the Prestige to add or subtract bandwidth. The range is 30 to 64 kbps
(kilobits per second). The parameters are separated by a -. For
example, 30-60 means the add threshold is 60 kbps and subtract
threshold is 30 kbps. The Prestige will perform bandwidth on demand
only if it initiates the call. Addition and subtraction are based on the
value set in the BOD Calculation field. If this field is set to Transmit or
Receive, then traffic in either direction will be calculated to determine if
a link should be added or dropped. Transmit will only use outgoing
traffic to make this determination, and Receive will only use incoming
traffic to make this determination.

If, after making the call to bring up a second channel, the second
channel does not succeed in joining the Multilink Protocol bundle
(because the remote device does not recognize the second call as
coming from the same device), the Prestige will hang up the second
channel and continue with the first channel alone.

58 Remote Node Configuration

Editing PPP Options

1. Encapsulation - Select CCP (Compression Control Protocol) for

the PPP or MP link. There are two options in this field.

• Standard PPP - Standard PPP options will be used.

• CISCO PPP - Cisco PPP options will be used.

2. Compression - Turn on the Stac Compression. The default for this

field is Off.

Figure 5-3 Remote Node PPP Options

3. Multiple Link Options: BOD Calculation - Select the direction

of the traffic you wish to calculate in order to determine when to
add or subtract a link. The default for this field is Transmit or
Receive.

4. Multiple Link Options: Base Trans Rate - Select the base data

transfer rate for this Remote Node. This parameter is in kilobits per
second (Kbps). There are two options for this field:

• 64 - Only one channel will be used.

• 128 - Two channels will be used when a packet triggers a call.

Remote Node Configuration 59

5. Multiple Link Options: Max Trans Rate - Enter the maximum

data transfer rate allowed for this Remote Node. This parameter is
in kilobits per second. There are two options for this field:

• 64 - At most one channel can be used.

• 128 - A maximum of two channels can be used.

6. Multiple Link Options: Target Utility - Enter the two thresholds

separated by a - for subtracting and adding the second channel. The
default is 32-48.

7. Multiple Link Options: Add Persist - This parameter specifies

the number of seconds there traffic is above the adding threshold
before the Prestige will bring up the second channel. The default is 5
seconds.

8. Multiple Link Options: Subtract Persist - This parameter

specifies the number of seconds where traffic is below the
subtraction threshold before the Prestige drops the second channel.
The default is 5 seconds.

Once you have completed Menu 11.2 - Remote Node PPP Options,
press ENTER at the message: Press ENTER to Confirm ... to confirm
your selections, or press ESC to cancel your selections.

60 Remote Node Configuration

6 Dial -In Configuration

You can configure the Prestige to receive calls from Remote Dial-in
Users (e.g. telecommuters) and Remote Nodes. There are several
differences between Remote Dial-in Users and Remote Nodes:

1. The Prestige can make calls to or answer calls from the Remote

Node. However, the Prestige will only answer calls from Remote
Dial -in Users.

2. Each Remote Node can have its own set of parameters such as

Bandwidth On Demand, Protocol, Security, etc.; while all Remote
Dial -in Users share one common set, as defined in the Default Dial
In Setup (Menu 13).

3. Generally, Remote Dial-in Users are individual users who dial in to

the Prestige directly from their workstations, while Remote Nodes
represent networks and are used for LAN-to-LAN connections.

This chapter discusses how to setup Default Dial-in parameters for both
Remote Node and Remote Dial-in Users. The following sections give
two examples of how the Prestige can be configured as a dial-in server
for either or both.

By default, the Prestige allows information for up to eight users to be
kept. If more than eight remote dial-in users can access the Prestige,
you can use a separate RADIUS server to provide remote
authentication services. For details on using a separate RADIUS server,
see the Using RADIUS Authentication section in Chapter 12.

Dial-In Configuration 61

Telecommuting

Telecommuting enables people to work at remote sites and yet still

have access to the resources in the business office. Typically, a
telecommuter will uses a client workstation with TCP/IP or IPX and
dial -out capabilities, e.g., a Windows 95 PC or a Macintosh and an
ISDN Terminal Adapter (TA). For telecommuters to call in to your
LAN, you need to configure a Dial-In User Profile for each
telecommuter. Additionally, you need to configure the Default Dial­In Setup to set the operational parameters for all dial-in users. You
can configure up to eight Remote Dial-in Users for the Prestige.

An example of Remote Dial-in User application, telecommuting, is

shown below:

Figure 6-1 Example of Remote User: Telecommuter

Dial -In Server Application

The Prestige can also be used as a dial-in server. This application

allows the Prestige to provide services for workstations on a remote
network. For the Prestige to be set up as a dial-in server, you need
to configure the Default Dial-In Setup to set the operational
parameters for incoming call. Additionally, you will have to create a
Remote Node for the router on the remote network (see Chapter

62 Dial-In Configuration

5). An example of the Prestige being used as a dial-in server is
shown below:

Figure 6-2 Example of a Dial-In Server Application

Default Dial-In Setup

This section covers the default dial-in parameters. The parameters

in Menu 13 affect incoming calls from all Remote Dial-in Users and
Remote Nodes before authentication is completed. Once
authentication is completed, and if it matches a Remote Node, the
Prestige will use parameters from that particular Remote Node.

Dial-In Configuration 63

Figure 6-3 Menu 13 - Default Dial-in Setup

From the Main Menu, enter 13 to go to Menu 13 - Default Dial-in
Setup. This section will describe how to configure the protocol­independent fields in this menu. For the protocol-dependent fields, refer
to the appropriate chapters.

1. Telco Options: CLID Authen. - This field sets the CLID

authentication parameter for all incoming calls. There are three
options for this field:

• None - No CLID is required.

• Required - Must provide CLID, or call is disconnected.

• Preferred - If the CLID is available then CLID will be used to

do authentication. If the CLID is not available the call will
continue.

2. PPP Options: Recv. Authen. - This field sets the authentication

protocol used for incoming calls. User names and passwords are
configured in the next section (Remote users/Dial-in Users Setup).
Options for this field are:

• CHAP/PAP - Prestige will try CHAP first, but PAP will be

• CHAP - Use CHAP only.

64 Dial-In Configuration

used if CHAP is not available.

• None - No authentication required.

3. PPP Options: Mutual Authen. - Some vendors, e.g. Cisco,

implement a type of mutual authentication. That is, the node that
initiates the call will request a user name and password from the far
end that they are dialing to. If the Remote Node that is dialing in
implements this type of authentication, set this field to Yes.

4. PAP Login - This field will only be enabled if the Mutual Authen.

field is set to Yes. Enter in the login name to be used to respond to
the far end’s PAP authentication request. This field does not apply
to CHAP authentication.

5. PAP Password - This field will only be enabled if the Mutual

Authen. field is set to Yes. Enter in the PAP password to be used
to respond to the far end’s authentication request. This field does
not apply to CHAP authentication.

6. Multiple Link Options: Max Trans Rate - Enter the maximum

data transfer rate between your Prestige and the Remote Dial-in
User. The unit is in bits per second. There are two options for this
field:

• 64 - At most, one B channel will be used.

• 128 - A maximum of two channels can be used.

When the Prestige calls back to the Remote Dial-in User the

maximum data transfer rate is always 64.

7. Callback Budget Management: Allocated Budget (min) - This

field will set a budget callback time for all the Remote Dial-in Users.
The default for this field is 0 for no budget control.

8. Callback Budget Management: Period (hr) - This field will set

the time interval to reset the above callback budget control.

9. Dial-In IP Address Supplied By: Dial-in User - If set to Yes, it

tells the Prestige to allow a remote host to specify its own IP

Dial-In Configuration 65

address. This is to prevent the remote host from using an invalid IP
address and potentially disrupting the whole network. If set to No,
the remote host must use the IP address assigned by the Prestige
from the IP pool, configured below. The default is Yes.

10. Dial-In IP Address Supplied By: IP Pool - This field tells the

Prestige to provide the remote host with an IP address from the
pool. This field is required if Dial-In IP Address Supplied By: Dial­in User is set to No. You can configure this field even if Dial-in User
is set to Yes, in which case the Prestige will accept the IP address if
the remote peer specifies one; otherwise, an IP address is assigned
from the pool. The default is No.

11. IP Pool: IP Start Addr - This field is active only if you selected

Yes in the Dial-In IP Address Supplied By: IP Pool field. The IP
pool contains contiguous IP addresses and this field specifies the
first one in the pool.

12. IP Count (1,2) - In this field, enter the number (1 or 2) of the

addresses in the IP Pool. For example, if the starting address is

192.168.135.5 and the count is 2, then the pool will have

192.68.135.5 and 192.68.135.6

13. Dial-In IPX Net. Num. Supplied By: IPX Pool - This field tells

the Prestige to provide the remote host with an IPX network
number from the pool. Otherwise, the Prestige will generate a
random IPX network number. The default is No.

14. IPX Start Net. Num. - This field is active only if you selected Yes

in the Dial-In IPX Net. Num. Supplied By: IPX Pool field. The IPX
pool contains contiguous IPX network numbers and this field
specifies the first one in the pool.

15. IPX Count (1,16) - In this field, enter the number (1 - 16) of

network numbers in the IPX Pool. For example, if the starting

66 Dial-In Configuration

number is 12345678, and the count is 2, then the pool will have
12345678 and 12345679.

16. Session Options: Input Filter Sets and Session Options:

Output Filter Sets - In these fields, you need to select the filter
set(s) to filter the incoming and outgoing traffic between your
Prestige and the Remote Dial-in User. Keep in mind that these filter
set(s) will only apply to all Remote Dial-in Users but not the
Remote Nodes.

You can choose from 12 different filter sets. In addition, you can

link up to 4 filter sets together for further customization (e.g., 1, 5,
9, 12). Note that spaces and , are accepted in this field. For more
information on customizing your filter sets, see Chapter 10 on Filter
Configuration. The default is blank, i.e., no filters.

17. Session Options: Idle Timeout - This value is the number of idle

seconds that elapses before the dial-in user is automatically
disconnected. Idle Timeout is the period of time when there is no
data traffic between the dial-in user or Remote Node and the
Prestige. This field will only be used if the Recv. Authen is set to
None and the call is not mapped to any Remote Node or Remote
Dial -in User or the Prestige calls back to the Remote Dial-in User.
There is no Idle Timeout for incoming calls.

Once you have completed filling in Menu 13 - Default Dial-in Setup,
press ENTER at the message: Press ENTER to Confirm ... to save
your selections, or press ESC at any time to cancel your selections.

Dial -In Users Setup

The following steps describe the setup procedure for adding a Remote
Dial -in User. From the Main Menu, enter 14 to go to 14. Dial-in User
Setup is shown below:

Dial-In Configuration 67

Figure 6-4 Menu 14 - Dial-in User Setup

After selecting one of eight users by number and pressing enter you will
see Menu 14.1 - Edit Dial-in User as seen below:

Figure 6-5 Menu 14.1 - Edit Dial-in User

1. User Name - This is a required field. This will be used as the login

name for authentication. Choose a descriptive word for login, e.g.,
peterhousel.

2. Active - You can disallow dial-in access to this user by setting this

field to Inactive. When set to inactive, the user record is still kept in
the database for later activation. Deactivated users are displayed
with a - (minus sign) at the beginning of the name in Menu 14.

68 Dial-In Configuration

3. Password - Enter the password for the Remote Dial-in User.

4. Callback - This field determines if the Prestige will allow call back

to the Remote Dial-in User upon dial-in. If this option is enabled,
the Prestige will be able to call back to the Remote Dial-in User if
they request it. In such a case, the Prestige will disconnect the initial
call from this user and dial back to the specified call back number
(see below). The default is no callback.

5. Callback # Supplied by Caller - If Callback is Yes, then this is a

required field. Otherwise, an N/A will appear in the field. Enter the
telephone number to which the Prestige will call back.

6. Callback Phone # - If Callback is No, an N/A will appear in the

field. The callback override allows the Remote Dial-in User to
specify the call back telephone number on call-by-call basis. This is
useful for when the Prestige returns a call back to a mobile user at
different numbers, e.g., a sales rep in a hotel. Note that the default is
No, i.e., the Prestige always calls back to the fixed callback
number.

7. Rem CLID - If you have enabled the CLID Authen field in Menu

13, then you need to specify the telephone number from which this
Remote Dial-in User calls. The Prestige will check this number
against the CLID in the incoming call. If they do not match and the
CLID Authen is Required, then the Prestige will reject the call.

8. Idle Time-out - Enter the idle time (in seconds). This time-out

determines how long the dial-in user can be idle before the Prestige
disconnects the call. Idle time is defined as the period of time where
there is no data traffic between the dial-in user and the Prestige. The
default is 300 seconds (5 minutes).

Once you have completed filling in Menu 14.1 - Edit Dial-in User ,
press ENTER at the message: Press ENTER to Confirm ... to save
your selections, or press ESC at any time to cancel your selections.

Dial-In Configuration 69

More on CLID

CLID allows the Prestige to authenticate the caller before a call is
answered, thus saving the cost of a connection. The Prestige uses the
caller ID in the ISDN call setup message to match against the CLID in
the database.

However, CLID may not be available due to your switch configuration.
Besides authentication, another application of CLID is to combine it

with call back. For instance, your company pays for the connection
charges for telecommuting employees, and you are using the Prestige as
the dial in server. You can turn on both the CLID authentication and call
back options for the dial-in users. By doing so, all usage are charged to
the company instead of the employees, and your accounting department
can avoid the hassles of accountability and reimbursement.

70 Dial-In Configuration

7 TCP/IP Configuration

This chapter shows you how to configure the Prestige for TCP/IP.

Depending on your particular applications, you will need to
configure different menus. For instance, Internet access is the most
common application of TCP/IP. For this application, you should
configure Menu 4. We will illustrate the configuration for other
applications in the following sections.

IP Subnet Mask

A subnet mask is a 32-bit quantity that, when logically ANDed with an
IP address, yields the network number. For instance, the subnet masks
for class A, B and C without subnetting are 255.0.0.0, 255.255.0.0
and 255.255.255.0, respectively.

To create more network numbers, you shift some bits from the host ID
to the network ID. For instance, to partition a class C network number

192.68.135.0 into two, you shift 1 bit from the host ID to the network
ID. Thus the new subnet mask will be 255.255.255.128; the first
subnet will have network number 192.68.135.0 with hosts

192.68.135.1 to 129.68.135.126 and the second subnet will have
network number 192.68.135.128 with hosts 192.68.135.129 to

192.68.135.254.
It is recommended that you use the same subnet mask for all physical

networks that share an IP network number. The table below lists the
additional subnet mask bits in dot decimal notations. To use to following
table, write down the original subnet mask and substitute the higher
order 0s with the dot decimal of the additional subnet bits. For instance,

TCP/IP Configuration 71

to partition your class C network 204.247.203.0 with subnet mask

255.255.255.0 into 16 subnets (4 bits), the new subnet mask becomes

255.255.255.240.

Number of Bit s Dot Decimal

1 128
2 192
3 224
4 240
5 248
6 252
7 254
8 255

LAN-to-LAN Application

A typical LAN-to-LAN application is to use the Prestige to call from a
branch office to the headquarters, as depicted in the following diagram.

For the branch office, you need to configure a Remote Node in order to
dial out to the headquarters. Additionally, you may also need to

72 TCP/IP Configuration

Figure 7-1 LAN-to-LAN Application

configure Static Routes if some services reside beyond the immediate
remote LAN.

Remote Node Setup

Follow the procedure in Chapter 5 to fill the protocol-independent

parameters in Menu 11, Remote Node Profile. For the protocol­dependent parameters, follow the instructions below. If you are
configuring the Prestige to receive an incoming call, you also need to
set the default dial-in parameters in menu 13 (see Chapter 6).

1. Route - Make sure IP is among the protocols in the Route field.

2. IP Address - Enter the IP address of the gateway at the remote

site (in this case, headquarters). If the remote router is using a
different IP address than the one entered here, the Prestige will
drop the call.

3. Edit IP/IPX/Bridge - Press the space bar to change it to Yes and

press Enter to go to the Menu 11.3 - Remote Node Network
Layer Options menu shown below:

Figure 7-2 Menu 11.3 - Remote Node Network Layer Options

4. Rem IP Address - This will show the IP address you entered for

this Remote Node in the previous menu.

TCP/IP Configuration 73

5. Rem IP Subnet Mask - Enter the subnet mask for the remote

network.

6. My WAN Addr - Some implementations, especially the UNIX

derivatives, require hosts on both ends of the ISDN link to have
separate addresses from the LAN, and that the addresses must
have the same network number. If this is the case, enter the IP
address assigned to the WAN port of the Prestige. Note that this is
the address assigned to the local Prestige, not the remote router.

7. Single User Account - This field should be set to yes to enable the

Single User Account (Network Address Translation) feature for this
site. Use the space bar to toggle between yes and no. See page for
more information on the Single User Account feature.

8. Server IP address - If you are using the Single User Account

feature and you want to make a server accessible on your LAN,
e.g., a web server, accessible to outside users, enter that servers IP
address here.

74 TCP/IP Configuration

Figure 7-3 Sample IP Addresses

9. Metric - The metric represents the “cost” of transmission for

routing purpose. IP routing uses hop count as the measurement of
cost, with a minimum of 1 for directly connected networks. Enter a
number that approximates the cost for this link. The number need
not be precise, but it must be between 1 and 16. In practice, 2 or 3
is usually a good number.

10. Private - This parameter determines if the Prestige will include the

route to this Remote Node in its RIP broadcasts. If set to yes, this
route is kept private and not included in RIP broadcast. If no, the
route to this Remote Node will be propagated to other hosts
through RIP broadcasts.

11. RIP - This parameter determines how the Prestige handles RIP

(Routing Information Protocol), and the default is Both. If set to
Both, the Prestige will broadcast its routing table on the WAN, and
incorporate RIP broadcasts by the other router into its routing table.
If set to In Only, the Prestige will not broadcast its routing table on
the WAN; if set to Out Only, the Prestige will broadcast its routing
table but ignores any RIP broadcast packets that it receives. If set
to None, the Prestige will not participate in any RIP exchange with
other routers. Usually, you should leave this parameter at its default
of Both and let RIP propagate the routing information automatically.

Once you have completed filling in the Network Layer Options Menu,
press ENTER to return to Menu 11. Press ENTER at the message:
Press ENTER to Confirm ... to save your selections, or press ESC at
any time to cancel your selections.

Static Route Setup

On a directly connected internet, RIP usually handles the routing
automatically. However, RIP cannot propagate across isolated
networks, as in the case before a connection is made between the two
subnetworks using one Class C IP address. Without a route, no

TCP/IP Configuration 75

packets can be forwarded to their destinations. A static route is used to
resolve this problem by providing the Prestige with some static routing
information. As a matter of fact, when you configure the Internet Access
or a Remote Node, a static route is implicitly created by the Prestige.
An example is given below. In the example, stations on the

204.5.1.0/24 subnetwork can access the remote stations using the static
route. The route will have a destination of 204.5.1.64/26 with the
gateway address being that of the Remote Node (204.5.1.150).

Note that in normal circumstances, the Prestige will have adequate
routing information after you configure the Internet access and Remote
Nodes; you do not need to configure additional static routes. You will
need to configure static routes only for unusual cases, e.g., subnetting.
To create an additional static routes for IP, use Menu 12, Static Route
Setup as shown below:

76 TCP/IP Configuration

Figure 7-4 Static Routing Example

Figure 7-5 Menu 12 - Static Route Setup - Main Menu

Figure 7-6 IP Static Route Setup

1. Route Name - Enter a descriptive name for this route. This is for

identification purpose only.

2. Active - This fields allows you to activate/deactivate this static

route.

3. Destination IP Address - This parameter specifies the IP

network address of the final destination. Routing is always based
on network number. If you need to specify a route to a single host,
use a subnet mask of 255.255.255.255 in the subnet mask field to
force the network number to be identical to the host ID.

TCP/IP Configuration 77

4. IP Subnet Mask - Enter the subnet mask for this destination.

Follow the discussion on IP subnet mask in this chapter.

5. Gateway IP Address - Enter the IP address of the gateway. The

gateway is an immediate neighbor of the Prestige that will forward
the packet to the destination. On the LAN, the gateway must be a
router on the same segment as the Prestige; over ISDN, the
gateway must be the IP address of one of the Remote Nodes.

6. The Metric and the Private parameters have the same meaning as

those in the Remote Node Setup.

Once you have completed filling in the menu, press ENTER at the
message: Press ENTER to Confirm ... to save your selections, or press
ESC at any time to cancel your selections.

78 TCP/IP Configuration

8 Novell IPX Configuration

This chapter shows you how to configure the Prestige for IPX.

Depending on your particular applications, you will need to
configure different menus. We will illustrate the configuration for
some applications in the following sections.

IPX Network Environment

Frame Type

The stations on an IPX network (both clients and servers) can run on
four different frame types existing on one physical Ethernet cable. These
frame types include 802.2, 802.3, Ethernet II (DIX), and SNAP.

Network Numbers

Whenever you are setting up an IPX routing environment, it is important
to correctly configure the network numbers on the LAN. On any IPX
network, there is an external network number that is, the number
associated with the frame type on the Ethernet cable to which the
stations on the network are joined. In addition to this external network
number, each NetWare server has its own internal network number. It
is important to remember that every network number has to be unique
for that entire internetwork. So if a server station had an internal
network number of 00000011, there is no other network number
(internal or external) of 00000011 anywhere on the entire network.

There are two different scenarios in which you would connect your
Prestige to a LAN: one with a server (server side), and one without a
server (client side).

Novell IPX Configuration 79

Figure 8-1 Prestige Operating in IPX Environment

Prestige on LAN with Server

When the Prestige is being connected to a LAN with an existing

NetWare server station, you will not need to configure the Prestige
as a seed router, and hence the network number parameter in the
Ethernet Setup Menu for the Prestige. Rather, the Prestige will learn
the network number of the network it is attached to through the
regular RIP broadcasts sent by the server and add this route to its
routing table.

Prestige on LAN without Server

If the Prestige is connected to a LAN without an existing NetWare

server station, then it needs to create a unique external network
number to apply to that frame on the LAN. This Prestige must then
be configured as a Seed Router, and the network number can be
configured in the Ethernet Setup Menu. The network number must
be unique and not used anywhere else on the entire internetwork.

80 Novell IPX Configuration

IPX Spoofing

The Prestige comes with several pre-defined call filters designed to

prevent certain IPX packets from triggering a call to a Remote
Node. These filters should inform your Prestige which packets
should be ignored as traffic.

When you are routing IPX packets, the default call filters are

defined as follows:

• Block periodical SAP and RIP response messages.

• Block NetWare serialization packets.

• Allow SAP and RIP inquiry packets.

These call filters prevent the Prestige from making a call to the Remote
Node, thus preventing the expense of an unnecessary phone call.

IPX Ethernet Setup

The first step is to set up the Prestige on the LAN. From menu 3,

select option 3 to go to Menu 3.3 - Novell IPX Ethernet Setup as
seen below:

Novell IPX Configuration 81

Figure 8-2 Menu 3.3 - Novell IPX Ethernet Setup

1. Seed Router - Determine if the Prestige is to act as a seed router.

This value depends on the existing network. If there is a NetWare
server providing the network number, select No. If there is no
NetWare server providing the network number, select Yes.

2. Frame Type - For every frame type that the Prestige needs to

support, you need to set the corresponding field to Yes. The frame
type(s) selected here must be the same frame type(s) as the server
or client stations on that network. Otherwise, the devices will not be
able to communicate. You can select one or more of these four
frame types:

• 802.2

• 802.3

• Ethernet II

• SNAP

3. IPX Network # - If you selected the Prestige to act as a seed

router, you need to provide a unique network number to be
associated with the network that the Prestige has joined. Keep in
mind that this number must not be used anywhere else on the entire
internetwork.

82 Novell IPX Configuration

Once you have completed filling in the Menu 3.3, press ENTER the
save message to save your selections, or press ESC at any time to
cancel your selections.

LAN-to-LAN Application

A typical LAN-to-LAN application is to use the Prestige to call from a
branch office to headquarters such that all of the stations on the branch
office network have access to the server at the headquarters, as
depicted in the following diagram:

Figure 8-3 LAN-to-LAN application

For the branch office, you need to configure a Remote Node in order to
dial out to headquarters.

Remote Node Setup

Follow the procedure in Chapter 5 to fill the protocol-independent
parameters in Menu 11, Remote Node Profile. For the protocol­dependent parameters, follow the ensuing instructions. If the Prestige is

Novell IPX Configuration 83

configured to receive an incoming call, you can configure the default
dial -in parameters in menu 13 (see Chapter 6).

1. Route - Make sure IPX is among the protocols in the Route field.

2. Edit IP/IPX/Bridge - Press the space bar to change it to Yes and

press Enter to go to the network layer options menu.

Figure 8-4 Menu 14.1 - Edit Dial-in User

3. Dial-On-Query - This field is necessary for the Prestige on the

client side LAN. When set to Yes, any Get Service SAP or RIP
broadcasts coming from the LAN will trigger the Prestige to make a
call to that Remote Node. If it is set to No, the Prestige will not
make the outgoing call.

4. Rem LAN Net # - In this field, enter the internal network number

of the NetWare server on the remote side LAN. The Prestige will
create a route to access this server.

5. My WAN Net # - In this field, you can enter in the WAN network

number of the device that you are connecting to. This number will
be used for negotiation between the Prestige and the remote device.
If you leave this field as 00000000, the Prestige will select the
greater WAN network number between the two devices.

84 Novell IPX Configuration

6. Hop Count - This field indicates the number of intermediate

networks that must be passed through to reach the Remote Node.
The default is one (1).

7. Tick Count - This field indicates the time-ticks required to reach

the Remote Node. The default is two (2).

8. W/D Spoofing (min) - This field is used for the Prestige on the

server side LAN. The Prestige can spoof a response to a server’s
WatchDog request after the connection is dropped. In this field,
enter in the time (number of minutes) that you want the Prestige to
spoof the WatchDog response.

9. SAP/RIP Timeout (min) - This field indicates the amount of time

that you want the Prestige to maintain the SAP and RIP entries
learned from this Remote Node in its internal tables after the
connection has been dropped. If this information is retained, then
the Prestige will not have to get the SAP information when the line is
brought back up. Enter the time (number of minutes) in this field.

Once you have completed filling in the Network Layer Options Menu,
press ENTER to return to Menu 11.1. Press ENTER at the message:
Press ENTER to Confirm ... to save your selections, or press ESC at
any time to cancel your selections.

Static Route Setup

If your LAN-to-LAN application has NetWare servers on both sides
of the link, then all NetWare client stations will have access to a server
on their LAN as shown below:

Novell IPX Configuration 85

Figure 8-5 NetWare Servers on Both Sides of the Link

This may present a problem if you desire your client station to access a
server at a remote site. For example, in the above diagram, suppose
that a client station on the network on the left wishes to access the
NetWare server on the right (internal network number = 111).
However, the SAP broadcasts will receive a response from the server
on the left (internal network number = 444). A static route is used to
resolve this problem by providing the Prestige with some static routing
information to access the remote server.

From Menu 12, select one of the four possible IPX Static Routes as
shown below:

86 Novell IPX Configuration