User Guide
Page 7
Model S500 52 Model S580 52 Model S590 53 Model S593/S595 53 Model S598 and S599 54 Model S574 and S578 54 Configuring Ethernet Paths and Ports ... to Central Site Tunneling 68 Creating a VPN for Individual Remote Users 68 Example 1 69 Example 2 70 Creating a VPN for a Remote Office 71 On the Remote Office OfficeConnect Bridge/Router 72 On the Central Site PathBuilder Switch 73 Monitoring VPN Performance 73 Web Link Health Monitor 73 Secure VPN Manager...
Model S500 52 Model S580 52 Model S590 53 Model S593/S595 53 Model S598 and S599 54 Model S574 and S578 54 Configuring Ethernet Paths and Ports ... to Central Site Tunneling 68 Creating a VPN for Individual Remote Users 68 Example 1 69 Example 2 70 Creating a VPN for a Remote Office 71 On the Remote Office OfficeConnect Bridge/Router 72 On the Central Site PathBuilder Switch 73 Monitoring VPN Performance 73 Web Link Health Monitor 73 Secure VPN Manager...
User Guide
Page 13
... throughout this guide, follow the instructions in this guide. This guide is intended for the PathBuilder™ switch. Most user guides and release notes are available in Adobe Acrobat Reader Portable Document Format (PDF) or HTML on... the 3Com World Wide Web site: http://www.3com.com/ Table 1 lists notice icons that are shipped with your product ... network administrators who are configuring the central site as well as the remote of severe personal injury
... throughout this guide, follow the instructions in this guide. This guide is intended for the PathBuilder™ switch. Most user guides and release notes are available in Adobe Acrobat Reader Portable Document Format (PDF) or HTML on... the 3Com World Wide Web site: http://www.3com.com/ Table 1 lists notice icons that are shipped with your product ... network administrators who are configuring the central site as well as the remote of severe personal injury
User Guide
Page 15
... PathBuilder switch supplies high-speed, scalable performance for your enterprise. 1 OVERVIEW OF THE PATHBUILDER SWITCH This chapter provides an overview of the PathBuilder™ switch and describes how it is high, these services can be off-loaded onto other devices, which enables the creation and maintenance of multiple secure tunnels through the public network to many remote...
... PathBuilder switch supplies high-speed, scalable performance for your enterprise. 1 OVERVIEW OF THE PATHBUILDER SWITCH This chapter provides an overview of the PathBuilder™ switch and describes how it is high, these services can be off-loaded onto other devices, which enables the creation and maintenance of multiple secure tunnels through the public network to many remote...
User Guide
Page 18
...automatic teller machines. LMI provides information about all data link connection identifiers (DLCIs) connecting the local system with the remote ones. If you want to use multiple PPP lines or channels to connect to the same destination, you can be routers, ...for supported IBM protocols. The LMI improves reliability between DTEs, which can use PPP. 18 CHAPTER 1: OVERVIEW OF THE PATHBUILDER SWITCH Table 4 Packet-Switched Services Packet-Switched Services/Protocol X.25 Frame Relay Telco Line POTS Leased line SMDS Leased line Serial Device Requirements Modem CSU/DSU (not ...
...automatic teller machines. LMI provides information about all data link connection identifiers (DLCIs) connecting the local system with the remote ones. If you want to use multiple PPP lines or channels to connect to the same destination, you can be routers, ...for supported IBM protocols. The LMI improves reliability between DTEs, which can use PPP. 18 CHAPTER 1: OVERVIEW OF THE PATHBUILDER SWITCH Table 4 Packet-Switched Services Packet-Switched Services/Protocol X.25 Frame Relay Telco Line POTS Leased line SMDS Leased line Serial Device Requirements Modem CSU/DSU (not ...
User Guide
Page 40
...you have accessed the user interface, you know the exact syntax, enter the command at the system prompt. For information on how to use from a remote host. s If you need to decide whether to run SNMP, see Using Enterprise OS Software. s Use Simple Network Management Protocol (SNMP) to ...to a gateway, use the menu-driven interface. Deciding Which Interface to Use After you have configured the IP address of the PathBuilder switch, you can access the user interface using one that you are unsure of interfaces is described in Reference for Enterprise OS Software.
...you have accessed the user interface, you know the exact syntax, enter the command at the system prompt. For information on how to use from a remote host. s If you need to decide whether to run SNMP, see Using Enterprise OS Software. s Use Simple Network Management Protocol (SNMP) to ...to a gateway, use the menu-driven interface. Deciding Which Interface to Use After you have configured the IP address of the PathBuilder switch, you can access the user interface using one that you are unsure of interfaces is described in Reference for Enterprise OS Software.
User Guide
Page 50
...;gure multiple ports over one path. SysCallerID virtual ports use bandwidth-on -demand. 50 CHAPTER 4: BASIC CONFIGURATION OF PORTS, PATHS, AND CONNECTORS A path that represents a remote site. Dynamic Paths Ports running MLP can be Path Bindings assigned to a path as a logical interface that is assigned to a port when a dial call is... a dial pool. A path that represents a connection to a static path, or for a port. Use multiple static paths on the same port: s To use a dial pool of a remote site.
...;gure multiple ports over one path. SysCallerID virtual ports use bandwidth-on -demand. 50 CHAPTER 4: BASIC CONFIGURATION OF PORTS, PATHS, AND CONNECTORS A path that represents a remote site. Dynamic Paths Ports running MLP can be Path Bindings assigned to a path as a logical interface that is assigned to a port when a dial call is... a dial pool. A path that represents a connection to a static path, or for a port. Use multiple static paths on the same port: s To use a dial pool of a remote site.
User Guide
Page 65
... OS Software. See PPP Service Parameters in Reference for Enterprise OS Software. See Port Service Parameters in Reference for Enterprise OS Software. s the local and remote user ID and password.
... OS Software. See PPP Service Parameters in Reference for Enterprise OS Software. See Port Service Parameters in Reference for Enterprise OS Software. s the local and remote user ID and password.
User Guide
Page 67
... ISP to configure and monitor a virtual private network (VPN). Typically a company is required to use a PathBuilder switch with Enterprise OS software to the central site. A VPN provides a less expensive method of directly managing remote access WAN lines a company can be set up in of fice to the central site. Instead...
... ISP to configure and monitor a virtual private network (VPN). Typically a company is required to use a PathBuilder switch with Enterprise OS software to the central site. A VPN provides a less expensive method of directly managing remote access WAN lines a company can be set up in of fice to the central site. Instead...
User Guide
Page 68
... CONFIGURING AND MONITORING VIRTUAL PRIVATE NETWORKS ISP to Central Site Tunneling The ISP must have to support tunneling in any way. s The remote user then establishes a session directly with the central site. Once the tunnel is required on a digital certificate. For example...site establish the tunnel, using authentication based on a user ID and password and perhaps on the remote user, the remote user can call a local number instead of setting up multiple remote access servers at a great distance from a menu) that no special software is established, communications ...
... CONFIGURING AND MONITORING VIRTUAL PRIVATE NETWORKS ISP to Central Site Tunneling The ISP must have to support tunneling in any way. s The remote user then establishes a session directly with the central site. Once the tunnel is required on a digital certificate. For example...site establish the tunnel, using authentication based on a user ID and password and perhaps on the remote user, the remote user can call a local number instead of setting up multiple remote access servers at a great distance from a menu) that no special software is established, communications ...
User Guide
Page 69
... device (if present), or the PathBuilder switch, to the central site based on authentication data. s The ISP checks its authentication server to Central Site Tunnel Access ISP server PPTP or L2TP tunnel Central site Remote workstation Total Control hub Authentication server Firewall... or CSU/DSU (optional) PathBuilder switch Authentication server The connection process typically follows this user can also be used for ...
... device (if present), or the PathBuilder switch, to the central site based on authentication data. s The ISP checks its authentication server to Central Site Tunnel Access ISP server PPTP or L2TP tunnel Central site Remote workstation Total Control hub Authentication server Firewall... or CSU/DSU (optional) PathBuilder switch Authentication server The connection process typically follows this user can also be used for ...
User Guide
Page 70
...the central site based on separate devices, for instructions on the PathBuilder switch. Refer to the documentation for your workstation or consult your workstation as a RADIUS server (see the Configuring Remote Access Services chapter in Figure 18 shows these services being performed on...gured to create a tunnel directly to Central Site Tunnel ISP Central site PPTP or L2TP tunnel Remote workstation Authentication server Firewall or CSU/DSU (optional) PathBuilder switch Authentication server The connection process typically follows this user can also be configured on ...
...the central site based on separate devices, for instructions on the PathBuilder switch. Refer to the documentation for your workstation or consult your workstation as a RADIUS server (see the Configuring Remote Access Services chapter in Figure 18 shows these services being performed on...gured to create a tunnel directly to Central Site Tunnel ISP Central site PPTP or L2TP tunnel Remote workstation Authentication server Firewall or CSU/DSU (optional) PathBuilder switch Authentication server The connection process typically follows this user can also be configured on ...
User Guide
Page 71
.../router PPTP or L2TP tunnel ISP Firewall or CSU/DSU (optional) Central site PathBuilder switch The connection process typically follows this configuration, the tunnel is established between the remote of the user by MPPE (see the Building Internet Firewalls chapter in Using Enterprise...2 Configure the firewall device if present, or the PathBuilder switch, to allow tunnel traffic through the ISP using tunneling protocols such as a RADIUS server (see the Configuring Remote Access Services chapter in Using Enterprise OS Software). 4 Enable PPP encryption to...
.../router PPTP or L2TP tunnel ISP Firewall or CSU/DSU (optional) Central site PathBuilder switch The connection process typically follows this configuration, the tunnel is established between the remote of the user by MPPE (see the Building Internet Firewalls chapter in Using Enterprise...2 Configure the firewall device if present, or the PathBuilder switch, to allow tunnel traffic through the ISP using tunneling protocols such as a RADIUS server (see the Configuring Remote Access Services chapter in Using Enterprise OS Software). 4 Enable PPP encryption to...
User Guide
Page 72
...64257;guring Network Address Translation chapter in Using Enterprise OS Software). 2 Create a virtual port specifying the SysCallerID (SCID) of the central site PathBuilder switch (see the Configuring Port Bandwidth Management chapter in Using Enterprise OS Software). 3 Add a dial number list to enable the bridge/... contents and key at the central site (see the Configuring L2Tunnel Connections chapter in Using Enterprise OS Software). On the Remote Office On the OfficeConnect NETBuilder bridge/router, follow these steps: OfficeConnect Bridge/Router 1 Confi...
...64257;guring Network Address Translation chapter in Using Enterprise OS Software). 2 Create a virtual port specifying the SysCallerID (SCID) of the central site PathBuilder switch (see the Configuring Port Bandwidth Management chapter in Using Enterprise OS Software). 3 Add a dial number list to enable the bridge/... contents and key at the central site (see the Configuring L2Tunnel Connections chapter in Using Enterprise OS Software). On the Remote Office On the OfficeConnect NETBuilder bridge/router, follow these steps: OfficeConnect Bridge/Router 1 Confi...
User Guide
Page 73
...that present performance data in the protocol performance graph group. 73 On the Central Site At the central site, follow these steps: PathBuilder Switch 1 Configure the L2Tunnel Service (see the Configuring IPSec chapter in Using Enterprise OS Software). Monitoring VPN Performance You...3 Configure IPSec specifying the same profile contents and key as the remote site (see the Configuring L2Tunnel Connections chapter in Using Enterprise OS Software) to enable the PathBuilder switch as a tunnel terminator. 2 Configure the firewall device if present, ...
...that present performance data in the protocol performance graph group. 73 On the Central Site At the central site, follow these steps: PathBuilder Switch 1 Configure the L2Tunnel Service (see the Configuring IPSec chapter in Using Enterprise OS Software). Monitoring VPN Performance You...3 Configure IPSec specifying the same profile contents and key as the remote site (see the Configuring L2Tunnel Connections chapter in Using Enterprise OS Software) to enable the PathBuilder switch as a tunnel terminator. 2 Configure the firewall device if present, ...
User Guide
Page 108
... port. Dialing the Same Phone Number Multiple Times You can configure up to support Switched 56 operation. Add a different letter after each phone number you are using the same phone number. Switched 56 operation is not supported on a 28.8 Kbps modem, for instance, the second number .... The call again using a dial pool, you can specify the number of the list. An external switched 56 device needs to be added to the end of times the software attempts to redial the remote system if the call attempt fails using: SETDefault ! -PORT DialRetryCount = (0Ð255) If the ...
... port. Dialing the Same Phone Number Multiple Times You can configure up to support Switched 56 operation. Add a different letter after each phone number you are using the same phone number. Switched 56 operation is not supported on a 28.8 Kbps modem, for instance, the second number .... The call again using a dial pool, you can specify the number of the list. An external switched 56 device needs to be added to the end of times the software attempts to redial the remote system if the call attempt fails using: SETDefault ! -PORT DialRetryCount = (0Ð255) If the ...
User Guide
Page 125
...is down. s To receive data from the network and loopback data to the network without performing any framing or deframing, configure a remote line loopback by entering: DLTest Abort 7 Restore the owner of the wide area port you are testing from loopback to your protocol using : ...entering one of errors by entering: DLTest STATistics 6 Stop the loopback test by entering: Figure 45 RX to TX Loopback Testing Data Flow PathBuilder switch Link partner Before running the T1/E1 loopback test, attach a console or Telnet to -transmit loopback as shown in loopback mode preventing ...
...is down. s To receive data from the network and loopback data to the network without performing any framing or deframing, configure a remote line loopback by entering: DLTest Abort 7 Restore the owner of the wide area port you are testing from loopback to your protocol using : ...entering one of errors by entering: DLTest STATistics 6 Stop the loopback test by entering: Figure 45 RX to TX Loopback Testing Data Flow PathBuilder switch Link partner Before running the T1/E1 loopback test, attach a console or Telnet to -transmit loopback as shown in loopback mode preventing ...
User Guide
Page 126
... STOP Failure to perform this step causes the port to remain in echo mode transmits the received data back to the network, configure a remote payload loopback by entering: LPBCK ! -PATH RmPyldLpbck 3 The loopback is removed, the PathBuilder switch displays: Path x Detected DTE Loopback OFF, switching to various link partner loopback assertions.
... STOP Failure to perform this step causes the port to remain in echo mode transmits the received data back to the network, configure a remote payload loopback by entering: LPBCK ! -PATH RmPyldLpbck 3 The loopback is removed, the PathBuilder switch displays: Path x Detected DTE Loopback OFF, switching to various link partner loopback assertions.
User Guide
Page 127
...one of the following messages, depending on the loopback requested: engaging line loopback or engaging payload loopback The PathBuilder switch then loops the received T1 data stream back to the transmit side, out to the central of the ...DSU Interface If the PathBuilder is connected to the PathBuilder switch. Upon receipt of such a loopback request message, the PathBuilder switch displays one of fice switch. Upon receipt of a loopback terminate message, the PathBuilder switch displays: terminating remote-initiated loopback The Pathbuilder switch then terminates the loopback...
...one of the following messages, depending on the loopback requested: engaging line loopback or engaging payload loopback The PathBuilder switch then loops the received T1 data stream back to the transmit side, out to the central of the ...DSU Interface If the PathBuilder is connected to the PathBuilder switch. Upon receipt of such a loopback request message, the PathBuilder switch displays one of fice switch. Upon receipt of a loopback terminate message, the PathBuilder switch displays: terminating remote-initiated loopback The Pathbuilder switch then terminates the loopback...
User Guide
Page 130
...the IP address associated with the TFTP server. The following options are available: 1. Gateway 4. The default parameters are in bold: 1. Remote File Server (not applicable) 5. The default destination is /dump. 9 Enter the target directory on the TFTP server to the network,... 130 APPENDIX E: TROUBLESHOOTING 3 Select Dump Configuration Menu from the Dump Destination menu and enter the IP address of the PathBuilder switch. Dump Destination Directory 7 Set the IP addresses for Network: 1. Dump Destination LAN1 Auto Baud Auto Duplex No Full Dump 4 Select...
...the IP address associated with the TFTP server. The following options are available: 1. Gateway 4. The default parameters are in bold: 1. Remote File Server (not applicable) 5. The default destination is /dump. 9 Enter the target directory on the TFTP server to the network,... 130 APPENDIX E: TROUBLESHOOTING 3 Select Dump Configuration Menu from the Dump Destination menu and enter the IP address of the PathBuilder switch. Dump Destination Directory 7 Set the IP addresses for Network: 1. Dump Destination LAN1 Auto Baud Auto Duplex No Full Dump 4 Select...
User Guide
Page 172
... frame synchronization to an E1 or T1 frame pattern. LOS (Loss of ALOS, LOS, or RLOF active. The display is in progress. Remote Payload, Remote Line Loopbacks: ACTIVE when any type of loopback is structured as follows: CURRENT CONNECTOR 4.1 STATUS LED: Carrier (Carrier Detect):GREEN (E1/T1... Description The ConnStatus parameter displays the receive-side operational status of whether UI or CO switch initiated. Alarm (Yellow Alarm) LED: SOLID YELLOW = RYEL, RMYEL, or RAIS. This LED is YELLOW when the remote alarm indication bit (Yellow Alarm) is set or when an AIS pattern is no ...
... frame synchronization to an E1 or T1 frame pattern. LOS (Loss of ALOS, LOS, or RLOF active. The display is in progress. Remote Payload, Remote Line Loopbacks: ACTIVE when any type of loopback is structured as follows: CURRENT CONNECTOR 4.1 STATUS LED: Carrier (Carrier Detect):GREEN (E1/T1... Description The ConnStatus parameter displays the receive-side operational status of whether UI or CO switch initiated. Alarm (Yellow Alarm) LED: SOLID YELLOW = RYEL, RMYEL, or RAIS. This LED is YELLOW when the remote alarm indication bit (Yellow Alarm) is set or when an AIS pattern is no ...