maipu router config manualv1.0

Maipu Router Series Configuration Manual

No. 16, Jiuxing Avenue Hi-Tech Park Chengdu, Sichuan Province P. R. China 610041 Tel: (86) 28-85148850, 85148041 Fax: (86) 28-85148948, 85148139 URL: http://www.maipu.com Mail: [email protected]

Maipu Communication Technology Co., Ltd

Maipu Confidential & Proprietary Information

Page 1 of 937

All rights reserved. Printed in the Peoples Republic of China. No part of this document may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language or computer language, in any form or by any means, electronic, mechanical, magnetic, optical, chemical, manual or or without the prior written consent of Maipu Communication Technology Co., Ltd. Maipu makes no representations or warranties with respect to this document contents and specifically disclaims any implied warranties of merchantability or fitness for any specific purpose. Further, Maipu reserves the right to revise this document and to make changes from time to time in its content without being obligated to notify any person of such revisions or changes. Maipu values and appreciates comments you may have concerning our products or this document. Please address comments to: No. 16, Jiuxing Avenue, Hi-Tech Park Chengdu, Sichuan Province P. R. China 610041 Tel: (86) 28-85148850, 85148041 Fax: (86) 28-85148948, 85148139 URL: http:// www.maipu.com Mail: [email protected]

Maipu Communication Technology Co., Ltd

All other products or services mentioned herein may be registered trademarks, trademarks, or service marks of their respective manufacturers, companies, or organizations.

Document HistoryDate 01/09/2007 Revision No. R1.0 Description The Maipu Router Series Configuration Manual provides detailed information about configuration issues of router series designed and developed by Maipu Communication Technology Co., Ltd


Page 2 of 937

Maipu Feedback FormYour opinion helps us improve the quality of our product documentation and offer better services. Please fax your comments and suggestions to (86) 28-85148948, 85148139 or email to [email protected] Title Product Version Evaluate this document MAIPU ROUTER SERIES CONFIGURATION MANUAL Document Revision Number 1.0

Presentation: (Introductions, procedures, illustrations, completeness, arrangement, appearance) Good Fair Average Poor Accessibility: (Contents, index, headings, numbering) Good Fair Average Poor Editorial: (Language, vocabulary, readability, clarity, technical accuracy, content) Good Fair Average Poor

Your suggestions to improve the document

Please check suggestions to improve this document: Improve introduction Make more concise Improve Contents Add more step-by-step procedures/tutorials Improve arrangement Add more technical information Include images Make it less technical Add more detail Improve index

If you wish to be contacted, complete the following: Name Postcode Telephone Company Address E-mail


Page 3 of 937

ContentsAbout Configuration Manual ................................................................... 17Purpose ............................................................................................................... 17 How to Get in Touch ............................................................................................. 17Customer Support.................................................................................................................17 Documentation Support.........................................................................................................17

Router Concepts ...................................................................................... 19Command Line Mode ............................................................................................ 20 Configuration Environment .................................................................................... 24Configuring Router via Console ..............................................................................................24 Configuring via 56/336 Modem Module LINE Port....................................................................27 Configuring Router via Telnet.................................................................................................27

CLI...................................................................................................................... 31Command Line Help ..............................................................................................................32 Command Line Error Message................................................................................................37 History Command .................................................................................................................38 Editing ..................................................................................................................................39 Display .................................................................................................................................40

System Configuration Management ....................................................... 41System Configuration............................................................................................ 41Configuring System Name .....................................................................................................42 Configuring System Calendar.................................................................................................43 Configuring System Logon Security Service ............................................................................43

System Management ............................................................................................ 45Storage Medium & File Types.................................................................................................45 File System Management.......................................................................................................45 Router Configuration File Management ...................................................................................64

System Authentication & Command Hierarchical-Authorization Command ................. 67enable ..................................................................................................................................67 privilege................................................................................................................................69 Enable Password ...................................................................................................................70 User .....................................................................................................................................71 Line ......................................................................................................................................71 show privilege .......................................................................................................................73

System Tools ....................................................................................................... 74show ....................................................................................................................................74


Page 4 of 937

Protocol Debugging ...............................................................................................................82 SysLog (System Logging) ......................................................................................................83 CPU Utilization.......................................................................................................................86 Configure System Alarming Temperature ...............................................................................87

System Remote Login Service ............................................................................... 87Telnet ...................................................................................................................................87 SSH......................................................................................................................................88

Interface Configuration........................................................................... 89Interface Types .................................................................................................... 90Configuring Interfaces ...........................................................................................................91

Configuring Ethernet Port ...................................................................................... 91Protocols...............................................................................................................................92 Ethernet Commands..............................................................................................................92 Configuring Network Address.................................................................................................92 Address Resolution Protocol (ARP)..........................................................................................93 Proxy ARP.............................................................................................................................94 Monitoring & Maintenance......................................................................................................96

Configuring High-speed Serial Interface.................................................................. 97Configuring Asynchronous Serial Interface..............................................................................98 Configuring Synchronous Serial Interface ...............................................................................99 Monitoring & Maintenance....................................................................................................100 CE1 Interface ......................................................................................................................102 Configuring CE1 Interface ....................................................................................................103 CE1 Interface Configuration .................................................................................................105 Monitoring CE1 Module ........................................................................................................106

Configuring E1 Module ........................................................................................ 106E1 Interface ........................................................................................................................107 Configuring E1 Interface ......................................................................................................107 E1 Interface Configuration Example .....................................................................................109 Monitoring E1 Interface .......................................................................................................109

Configuring 8-port Synchronous Module ............................................................... 110Configuring 8S Interface......................................................................................................110 Monitoring 8s Interface........................................................................................................112

Configuring Built-in Base-band Modem ................................................................. 113Configuring Single-port 128 Modem Module .........................................................................113 Configuring 8-port 128 Modem Module.................................................................................114

Configuring Built-in MODEM Module ..................................................................... 115Built-in MODEM Debugging..................................................................................................117

Configuring ISDN Module .................................................................................... 118BRI Configuration................................................................................................................118 PRI Configuration ................................................................................................................120


Page 5 of 937

Configuring ATM Module...................................................................................... 121Overview ............................................................................................................................121 ATM Configuration Command ..............................................................................................122 ATM Configuration...............................................................................................................134

POS Module Configuration ................................................................................... 153Basic Configuration Commands............................................................................................153 Extended Configuration Command.......................................................................................158 PoS Physical Layer Display Command ..................................................................................159 PoS Configuration Example..................................................................................................160

CPOS Module Configuration ................................................................................. 161Configure CPOS...................................................................................................................162 CPOS Configuration Example ...............................................................................................168 CPOS Usage Attention .........................................................................................................170

Configuring Interface-group................................................................................. 172 Interface Traffic Statistics Configuration................................................................ 174Configuration Command......................................................................................................174 Traffic Statistics Configuration Example ................................................................................175

802.1 Configuration .............................................................................. 176802.1Q Protocol.................................................................................................. 176 802.1Q Configuring Principles .............................................................................. 177VLAN Functions ...................................................................................................................177 Router On A Stick................................................................................................................177 Subnet Isolation..................................................................................................................178

802.1Q Configuration Command.......................................................................... 179 802.1Q Configuration Example ............................................................................ 181Router-On-A-Stick Application..............................................................................................181 Typical Subnet Isolation Application......................................................................................183 Configuration Information & Statistics ..................................................................................186

WAN Protocol Configuration................................................................. 187PPP Protocol ....................................................................................................... 187PPP Instructions ..................................................................................................................188 PPP Configuration Examples.................................................................................................198 HDLC Protocol .....................................................................................................................223 HDLC Commands................................................................................................................224 HDLC Configuration Example ...............................................................................................227 HDLC Debug Information.....................................................................................................228 Configuring HDLC Bridge-connection Mode ...........................................................................229 Configuring HDLC Bridge Ethernet........................................................................................231

SLIP Protocol...................................................................................................... 233Configuration Example.........................................................................................................233

X.25 Protocol...................................................................................................... 236


Page 6 of 937

Overview ............................................................................................................................236 Basic X.25 Configuration......................................................................................................237 X.25 Configuration ..............................................................................................................239 Debugging/Monitoring X.25 .................................................................................................240 X.25 Sub-interface ..............................................................................................................241 X.25 Sub-interface Configuration Example............................................................................242 X.25 Switching Function ......................................................................................................244 X.25 GRE Function ..............................................................................................................249 Annex G (X.25 over Frame-Relay) .......................................................................................249 X.25 PAD Function...............................................................................................................255 XOT (X.25 Over TCP/IP) ......................................................................................................256

Frame Relay Protocol .......................................................................................... 259Configure Frame Relay Command........................................................................................260 Frame Relay Configuration Example.....................................................................................262 Frame Relay Debugging, Monitoring.....................................................................................264 Frame Relay Inverse Address Resolution Protocol .................................................................265 Frame Relay Sub-interface...................................................................................................268 Frame Relay Sub-interface Configuration Example ................................................................269 Frame Relay Switch.............................................................................................................271 Frame-relay Traffic Shaping.................................................................................................275 Frame-relay Bridging VLAN..................................................................................................279 Frame-Relay PVC Compression ............................................................................................284 DE Bit Support on Frame-Relay............................................................................................288 Frame-Relay Fragment........................................................................................................290

Virtual Ethernet Bridge Protocol ........................................................................... 291Overview ............................................................................................................................291 Configuration Command......................................................................................................291 Configuration Example.........................................................................................................293

Network Protocol .................................................................................. 295IP Address Configuration ..................................................................................... 295IP Addressing......................................................................................................................295 IP Address Configuration Command .....................................................................................297 Allocating IP Address to Interface.........................................................................................297 Example .............................................................................................................................298 Enabling IP Unnumbered on Serial Port ................................................................................299 Setting IP Address Negotiation Property on Interface ............................................................300 Examine IP Address Configuration........................................................................................300

Address Resolution Configuration ......................................................................... 301Address Resolution Basic Configuration Command ................................................................301 Establishing ARP..................................................................................................................301 Domain Name System (DNS) ..............................................................................................304

IP Protocol Configuration ..................................................................................... 306


Page 7 of 937

IP Protocol Basic Configuration Command ............................................................................306 Enabling/Disabling IP Route Forwarding ...............................................................................307 Permitting/Prohibiting IP to Send Redirection Messages.........................................................307 Permitting/Prohibiting IP Receiving Redirection Message .......................................................307 IP Fast Forwarding ..............................................................................................................308 Enable/disable IP source address check................................................................................308 Configuring IP Protocol Attributes.........................................................................................309 Observe IP Statistics............................................................................................................311

ICMP Protocol..................................................................................................... 311ICMP Basic Configuration Command.....................................................................................311 Configuring ICMP Options ....................................................................................................312 Displaying ICMP Statistics ....................................................................................................313

TCP Protocol....................................................................................................... 313TCP Protocol Basic Command Configuration..........................................................................313 Configure TCP Properties .....................................................................................................314 Displaying TCP Statistics......................................................................................................317

UDP Protocol ...................................................................................................... 318Configuring UDP Protocol Attributes......................................................................................319 Displaying UDP Statistic Information ....................................................................................321

Socket Interface ................................................................................................. 321

NDSP Protocol Configuration................................................................ 322Commands ........................................................................................................ 322 Examples........................................................................................................... 323

Routing Configuration........................................................................... 324Static Routing/Default Routing Basic Commands...................................................................325 Configure Static Routing ......................................................................................................326 Configuring Default Route....................................................................................................329 Display Static Routing..........................................................................................................329 Debug Static Routing...........................................................................................................330 RIP Commands ...................................................................................................................332 RIP Configuration Commands ..............................................................................................332 RIP Configuration Example ..................................................................................................340 RIP Monitoring/Debugging ...................................................................................................353 Configure OSPF Commands .................................................................................................353 Commands Configuring OSPF ..............................................................................................355 OSPF Configuration Examples ..............................................................................................363 Debugging/Monitoring OSPF ................................................................................................365 IRMP Commands.................................................................................................................369 Configure IRMP ...................................................................................................................370 IRMP Configuration..............................................................................................................373 Debugging/monitoring IRMP ...............................................................................................381 Commands to Configure SNSP............................................................................................382


Page 8 of 937

SNSP Configuration Example ...............................................................................................383 Commands .........................................................................................................................384 Command Supporting Load Balance.....................................................................................384 Load Balance Configuration Example....................................................................................385 Monitoring & Debugging Load Balance..................................................................................387 BGP Configuration Commands .............................................................................................388 BGP Configuration Examples................................................................................................406 BGP Monitoring & Debugging ...............................................................................................416 Route-map Configuration Commands...................................................................................420 Configuring Route-Map........................................................................................................432 Policy-based Route Configuration Commands .......................................................................432 Policy-based Route Configuration .........................................................................................434 Monitoring and Debugging of Policy Route ............................................................................436 M-VRF Configuration Commands..........................................................................................437 M-VRF Configuration............................................................................................................441 Monitoring & Debugging M-VRF............................................................................................444

Multicast Routing Configuration ........................................................... 445Configure Multicast Common Part ........................................................................ 445Multicast Common Configuration..........................................................................................445 Basic Commands of Multicast Common Configuration ...........................................................445

Configure IGMP .................................................................................................. 448Overview ............................................................................................................................448 Configuring IGMP ................................................................................................................449 IGMP Configuration Example................................................................................................451 IGMP Monitoring & Debugging .............................................................................................453

Configure PIM-SM............................................................................................... 454Overview ............................................................................................................................454 Commands to Configure PIM-SM..........................................................................................455 PIM-SM Configuration Example ............................................................................................457 Monitoring & Debugging PIM-SM..........................................................................................462

Configure PIM-DM .............................................................................................. 464Overview ............................................................................................................................464 Configuring PIM-DM ............................................................................................................465 PIM-DM Configuration Example............................................................................................468 PIM-DM Monitoring & Debugging .........................................................................................472

Configuring DVMRP............................................................................................. 473Overview ............................................................................................................................473 Configuring Commands .......................................................................................................474 DVMRP Configuration ..........................................................................................................475 DVMRP Monitoring & Debugging ..........................................................................................477

Configuring VRRP.................................................................................. 478VRRP Configuration Commands ........................................................................... 478


Page 9 of 937

VRRP Configuration Example ............................................................................... 481 Monitoring & Debugging VRRP ............................................................................. 482

DDR & Interface Backup ....................................................................... 483Dialer Backup..................................................................................................... 483Built-in Frequency-band MODEM Configuration .....................................................................483 Configuration of Dial Backup ................................................................................................491 Dialer Backup Example........................................................................................................492 Configure Backup Load........................................................................................................494 Debugging of Modem ..........................................................................................................497

DDR Dialer Configurations ................................................................................... 499Preparing to Configure DDR (Dial-On-Demand Routing)........................................................499 Dialer Callback ....................................................................................................................511 Configuring ISDN ................................................................................................................514

Dialup Prototype (Profile) .................................................................................... 522Dialer Interface ...................................................................................................................522 Dialer Map-class..................................................................................................................524 Dialer Pool ..........................................................................................................................524 Sample Configuration ..........................................................................................................525

Configuring Snapshot Routing.............................................................. 528Snapshot Routing Configuration Commands ......................................................... 528 clear snapshot quiet-time interface....................................................................... 528 Snapshot Routing ............................................................................................... 530 Monitoring & Debugging Snapshot Routing ........................................................... 532

PPPoE Configuration ............................................................................. 534 IP Telephone Configuration.................................................................. 540Configure Voice Card Interface............................................................................. 541Commands .........................................................................................................................541 Configuration ......................................................................................................................542

Configuring VoIP................................................................................................. 542Commands .........................................................................................................................543 VoIP Configuration Example.................................................................................................544 Configuring Maipu Router as H.323 Voice Gateway ...............................................................553 RAS Overview .....................................................................................................................554 Configure RAS Command List ..............................................................................................554 H323 Voice Gateway Configuration Example.........................................................................555

IP Telephone Debugging Switch........................................................................... 556

Terminal Confuguration ........................................................................ 557Terminal Protocol................................................................................................ 557Terminal Commands ...........................................................................................................559 Terminal Protocol Configuration Example..............................................................................565 Terminal Configuration ........................................................................................................567

Maipu Confidential & Proprietary Information 937

Page 10 of

X.3 PAD Terminal ................................................................................................................570 X.3 PAD Overview ...............................................................................................................570 X.3 PAD Terminal Commands ..............................................................................................570 X.3 PAD Terminal Configuration ...........................................................................................571

ITEST Usage & Configuration............................................................................... 574ITEST Program Parameters..................................................................................................574 ITEST Configuration File.......................................................................................................575 ITEST Security Control.........................................................................................................576 ITEST Terminal Management...............................................................................................578 TELNET Fix-terminal ............................................................................................................580 UNIX System Configuration .................................................................................................580 UNIX system Administrate...................................................................................................589 Comparison of Terminal Number Distribution........................................................................591 Comparison of Interface Configuration..................................................................................592 Configuration of Itest.conf Adopting Encryption and Compression..........................................592 Examples of New/Old Configuration of Maipu Router.............................................................593

Quality of Service (QoS) Configuration ................................................ 595Intergrated Services, IntServ............................................................................... 595RSVP (Resource Reservation Protocol)..................................................................................595 RSVP Commands ................................................................................................................596 RSVP Configuration Example................................................................................................598 Bandwidth Management, BwMg ...........................................................................................599 Congestion Management, CgMg) .........................................................................................604 Congestion Avoidence, CgAvD .............................................................................................625 BitTorrent traffic control.......................................................................................................630

SNTP Configuration ............................................................................... 634 Security Configuration .......................................................................... 639Firewall Configuration.......................................................................................... 639Overview ............................................................................................................................640 Correlative Firewall Configuration .........................................................................................647 Applying Access Lists to Interface.........................................................................................649 Firewall Security Check........................................................................................................651 Firewall Log.........................................................................................................................657 Monitoring & Maintaining Firewall .........................................................................................658 Configuring Access Channel .................................................................................................659 Time Limit Packet Filtering ...................................................................................................662 Media Access Control (MAC) Address Packet Filtering ............................................................666 Reflect Access List ...............................................................................................................667 Configuration & Usage of Security Accounting.......................................................................669 A Few Points About Firewall Configuration.............................................................................672 Configuration Example.........................................................................................................675

Network Address Translation (NAT) Configuration.................................................. 678 Maipu Confidential & Proprietary Information 937 Page 11 of

Basic Commands.................................................................................................................678 Interior Source Address Translation......................................................................................681 Change NAT Translation Parameter......................................................................................687 NAT Monitoring, Maintenance & Debugging ..........................................................................688 Considerations of Configuring NAT .......................................................................................692

Easy IP Configuration.......................................................................................... 693Easy IP Configuration ..........................................................................................................693

NIA Configuration ............................................................................................... 694Overview ............................................................................................................................694 NIA Commands...................................................................................................................695 NIA Configuration Example ..................................................................................................695 NIA Displaying & Debug Details............................................................................................704

Configure Virtual Private Dial-up Network (VPDN).................................................. 704Global VPDN Configuration...................................................................................................704 VPDN Configuration Example ...............................................................................................707 VPDN Monitoring & Debugging.............................................................................................709

Configure GRE.................................................................................................... 709Commands to Configure GRE...............................................................................................709 GRE Configuration ...............................................................................................................712 GRE Checking & Debugging .................................................................................................715

AAA Configuration................................................................................. 716AAA Configuration Commands ............................................................................. 716 Command with AAA............................................................................................ 717 AAA Configuration Example ................................................................................. 727 Checking & Debugging AAA ................................................................................. 728

DHCP Configuration............................................................................... 731DHCP Configuration Commands........................................................................... 731 Commands ........................................................................................................ 732 DHCP Configuration Case .................................................................................... 733DHCP Commands of Router A in Global Mode .......................................................................734 DHCP Pool Command of Router A ........................................................................................734 On f0 of router B .................................................................................................................734 Router A Configures DHCP Command in Global Mode............................................................735 Command of Router A in DHCP Pool.....................................................................................736 Router B Configuration ........................................................................................................736

DHCP Checking and Debugging ........................................................................... 736

SNA Configuration................................................................................. 738DLSw Configuration ............................................................................................ 738Configuring Commands to DLSw.........................................................................................739 Debugging & Monitoring ......................................................................................................742

SDLC Configuration............................................................................................. 743


Page 12 of

Overview ............................................................................................................................743 SDLC Configuring Commands ..............................................................................................743 Configuring Operations of SDLC on Interface ........................................................................745

LLC2 Configuration ............................................................................................. 746Overview ............................................................................................................................746 An example of typical LLC2 configuration..............................................................................747

QLLC Configuration............................................................................................. 750QLLC Commands ................................................................................................................750 Typical QLLC Configuration ..................................................................................................753

SNA Network Mode & Configuration ..................................................................... 754Network Construction Mode of SNA Application.....................................................................754 Network Mode Configuration................................................................................................755

MPLS Configuration............................................................................... 760MPLS Overview .................................................................................................. 760 Commands to Configure MPLS............................................................................. 761mpls ip ...............................................................................................................................761 mpls ip propagate-ttl ...........................................................................................................761 mpls ldp router-id................................................................................................................763 mpls ldp loop-detection........................................................................................................763 mpls ldp label-distribution....................................................................................................763 mpls ldp label-control ..........................................................................................................764 mpls ldp label-retention .......................................................................................................764 mpls ldp hello-interval .........................................................................................................765 mpls ldp hello-hold-interval..................................................................................................765 mpls ldp keepalive-interval ..................................................................................................766 mpls ldp keepalive-hold-interval...........................................................................................766 mpls route-cache ................................................................................................................767

MPLS\VPN Configuration Example ........................................................................ 767 MPLS Monitoring & Testing .................................................................................. 774

SNMP Configuration .............................................................................. 777SNMP agent server configuration ......................................................................... 777SNMP agent Server Configuration ........................................................................................778

Remote Network Monitoring (RMON).................................................................... 794Brief introduction of RMON...................................................................................................794 RMON basic command description .......................................................................................795

IPsec VPN Configuration....................................................................... 804Overview ........................................................................................................... 804IPsec Supported Protocol Standard & Secure Service ............................................................804 Security Association,SA .......................................................................................................805 The Internet Key Exchange (IKE).........................................................................................806 Diffie-Hellman exchange......................................................................................................806


Page 13 of

Digital Certificate & Public Key Infrastructure ........................................................................807

IPsec Commands................................................................................................ 807 IPsec Configuration............................................................................................. 811Configure Pre-share Encryption Key .....................................................................................811 Configur IKE Proposal..........................................................................................................813 Define IKE proposal.............................................................................................................814 Configure IPsec proposal .....................................................................................................816 Configure security level........................................................................................................821 Configure VPN Tunnel..........................................................................................................823 Configure Manual Tunnel .....................................................................................................834 Configure Policy...................................................................................................................837 Configure Global Parameter .................................................................................................842 IPsec/IKE Monitoring & Debugging.......................................................................................844 Monitoring Management ......................................................................................................844 Debugging Command..........................................................................................................847

Digital Certificate Application & Configuration ........................................................ 849Configure CA Server Information & Authentication Policy.......................................................849 Retrieve & Authenticate CA Server Certificate .......................................................................852 Online Certificate Application................................................................................................854 Retrieve Certificate ..............................................................................................................855 Offline Certificate Application and Import ..............................................................................855 Obtain certificate revocation list............................................................................................858 Delete local saved certificate ................................................................................................859 Certificate display ................................................................................................................860

Configure solution............................................................................................... 861(Site-to-Site) VPN................................................................................................................861 Dynamic Dial-up VPN ..........................................................................................................863 Virtual Security Domain VPN................................................................................................865 Load balance VPN................................................................................................................868 Using Software VRC ............................................................................................................870 Backup Gateway Configuration Example...............................................................................880 DHCP over IPsec Configuration Example...............................................................................883 Configuration Example Combining with DHRP.......................................................................887

Software Upgrade ................................................................................. 889Upgrade of ROOT ............................................................................................... 889Upgrade Hex File of ROOT Program via Console Interface......................................................889

Application IOS Upgrade ..................................................................................... 891Upgrade Bin File of Application via TFTP/FTP .........................................................................891 Upgrade Bin File of Application via Console Interface............................................................893 Upgrade Hex File of Application via Console Interface............................................................894

Network Test & Troubleshooting.......................................................... 896Network Test Tools ............................................................................................. 896 Maipu Confidential & Proprietary Information 937 Page 14 of

Ping & Groupping ................................................................................................................896 traceroute...........................................................................................................................900 netstat................................................................................................................................903 show ..................................................................................................................................904 Troubleshooting of LAN Interface .........................................................................................905 Troubleshooting of WAN Interface........................................................................................906

Card Hot-swappable.............................................................................. 908Overview ........................................................................................................... 908 Hot-swappable Commands.................................................................................. 908 Manual Hot-swappable........................................................................................ 909Manual Hot Inset.................................................................................................................909 Card Command Hot-swappable............................................................................................910 Card Command Hot Inset ....................................................................................................910 Hot-swappable Debugging...................................................................................................912 Hot-swappable Configuration Debugging ..............................................................................913

DHRP Configuration .............................................................................. 918Overview ........................................................................................................... 918 Commands ........................................................................................................ 919 DHRP Basic Configuration.................................................................................... 919 DHRP Check & Debugging ................................................................................... 921 DHRP Configuration Example............................................................................... 922

Ethernet Switching Module Configuration ........................................... 924Ethernet Switching Module L2 Function Configuration ............................................ 924L2 Commands.....................................................................................................................925 VLAN Configuration Commands ...........................................................................................927 802.1p Commands..............................................................................................................929 Port Configuration Commands .............................................................................................930

Ethernet Switch Module L3 Simulated Interface Configuration................................. 936sw Interface Command .......................................................................................................936 Switchethernet Interface Command .....................................................................................936


Page 15 of


About Configuration Manual

PurposeThe Maipu Router Series Configuration Manual provides technical information you need to understand various configuration and related technical issues. The document provides right answers to your technical queries.

How to Get in TouchThe following sections provide information on how to obtain support for the Maipu English documentation and Maipu products.

Customer SupportIf you have problems or questions regarding your product, please contact us by e-mail at [email protected]. You can also call our International Business Department over +8628-85148850, 85148041, 85148050, 85148750, and 85148997.

Documentation SupportMaipu Communication Technology Co., Ltd welcomes comments and suggestions on the document usefulness. For further queries or suggestions, contact us by e-mail [email protected] or fax comments to +86-28-85148948 or 85148139. You can visit our website at http://www.maipu.com, which comprises interesting subjects such as product knowledge base, sales & support and Maipu news.


Page 17 of 937


Router ConceptsThis chapter explains concepts of InfoExpress IOS system in Maipu router series such as InfoExpress system mode, configuration environment and CLI.

Configuration ModesMaipu routers provide users with four configuration modes: Configuration using the command shell via console interface Configuration via LINE interface of 56/336 modem module Configuration via telnet remote log in a router Configuration via SNMP network management system

The configuration mode - configuration via SNMP network management system - provides users with English interface to monitor network status and collect system statistical information. The manual also explains router configuration mode via interface console. The other two modes, which configure the router via LINE interface in 56/336modem and telnet remote login, are similar. The configuration via SNMP refers to the router network management system specifications.


Page 19 of 937


Command Line ModeInfoExpress IOS of Maipu router series provides a special subsystem dealing with commands for management and execution of system commands called shell. Following are the shell functions: System command registration User edit of system configuration commands Syntax parsing of commands input by users (via interface console or telnet link) System command execution When a user configures router via command shell, the system provides many run modes for command execution. Each command mode supports the special InfoExpress IOS configuring command. This protects system hierarchy and ensures protection against unauthorized access to the system. The shell subsystem provides the following modes for running configuring commands. Each different mode relates with a different system prompt informing users about their operating mode. The modes are: Common user mode (user EXEC) Privileged user mode (privileged EXEC) Global configuration mode (global configuration) Interface configuration mode (interface configuration) Route configuration mode (route configuration) File system configuration mode (file system configuration) Access list configuration mode (access list configuration) Voice-port configuration mode (voice-port configuration) Dial-peer configuration mode (dial-peer configuring) Encryption transform configuration) configuration mode (crypto transform-set


Page 20 of 937


Encryption mapping configuration mode (crypto map configuration) IKE policy configuration mode (isakmp configuration) Pub key chain configuration mode (pubkey-chain configuration) Pub key configuration mode (pubkey configuration) DHCP configuration mode (DHCP configuration) The following table lists methods of entering different command modes and how to switch between modes. The InfoExpress system modes and switch methods between modes are:Mode Common user mode Entering mode Login System prompt router> Exiting Execute command exit to exit Function Alters terminal configuration Executes the basic testing Displays system information Privileged user mode Execute command enable in the common user mode router# Execute command disable to come back to the user mode Execute command configure to enter the global configuration mode Global configuration mode Execute command configure in privileged user mode and specify related keyword at the same time Execute command interface in global configuration mode (and designate related interface at the same time) Router(config)# Execute command exit to come back to the privileged user mode Execute command interface to enter the interface configuration mode router(config-ifxxx[number])# Execute command exit to come back to the privileged user mode Configures global parameters needed for the router running Configures executing parameters of the router

Interface Configuration mode

Configures interface of the router in the mode, including Ethernet interface, serial interface, ISDN


Page 21 of 937


Configures the interface IP phone; Configures the interface E1 Routing configuration mode Execute related route configuring command in global configuration mode router(configstatic)# router(configrip)# router(config-ospf)# router(configirmp)# Execute command exit to return to the privileged user mode Configures IP routing protocol in the mode, including Static routing, RIP dynamic routing, IRMP configuration mode Finishes file system management of the router Upgrades the router software router(config-stdnacl)# router(config-extnacl)# Execute command exit to return to the global configuration mode Configures access list of the firewall, including standard access list, extended access list Configures voice-port

File system configuration mode

In global configuration mode, a user enters this mode via command filesystem In global configuration mode, a user enters the mode via command ip access-list, and designates related keys and parameters In global configuration mode, a user enters the mode via command voice-port, and designates related parameters In global configuration mode, a user enters the mode via command dial-peer, and designates keys and parameters In global configuration mode, a user enters the mode via command crypto IPsec transform-set, and designates

router (config-fs)#

Execute command exit to return to the privileged user mode

Access list configuration mode

Voice-port configuration mode

router(config-voiceport)#

Execute command exit to come back to the global configuration mode

The dial-peer configuration mode

router(config-dialpeer)#


Configures VoIP Configures POTS

The encryption transform configuration mode

router(cfg-cryptotrans)#


Configures the encryption transform set


Page 22 of 937


related parameters

The encryption mapping configuration mode

In global configuration mode, a user enters the mode via command crypto map, and designates related keys and parameters In global configuration mode, a user enters the mode via command crypto isakmp, and designates related keys and parameters In global configuration mode, a user enters the mode via command crypto key pubkey-chain rsa In configpubkey-chain mode, a user enters the mode via command named-key or addressed-key and designates related keys and parameters In the global configuration mode, a user enters the mode via command router(config)#ip dhcp pool, and designates keywords and parameters

router(cfg-cryptomap)#


Configures the encryption mapping items

The IKE policy Configuration mode

router(configisakmp)#


Configures IKE policy

The public key chain configuration mode

router(configpubkeychain)#

Execute command exit to return to the global configuration mode

Configures RSA public key to be used

Public key configuration mode

router(configpubkey-key)#

Execute command exit to return to the config-pubkeychain mode

Configures public key

DHCP Configuration mode

router(dhcpconfig)#

Execute command exit to return to the global configuration mode

Configures DHCP

The word router is the default system name of a router when it leaves the factory. Users rename the system name by executing the command hostname in the global configuration mode. The change goes into effect immediately.


Page 23 of 937


Configuration EnvironmentUsers use the command line provided by a router in four different ways.

Configuring Router via ConsoleFollowing are steps to connect with a terminal and configure the router via port console: The terminal can be a standard one with RS-232 serial port or a common PC. When configuring from remote-end, users need two more modems. After ensuring shutdown of the router or terminal, connect RS-232 serial port of the terminal with the router console port.


Page 24 of 937


Creating connection: Choose a name for the connection Maipu or choose other name. Choosing Windows icon for created connection:

Power up the terminal, configuring communication parameters of the terminal: 9600bps baud rate, 8 data bits, no parity, 1 stop bit, and no flow control. Choose VT100 as the type of terminal. If the PC is running Win95/98/2000/NT Operating System, use the Hyper Terminal program and set serial port parameters of HyperTerminal program according to above parameters. The following example explains the HyperTerminal program running in Windows NT:


Page 25 of 937


Choosing serial communication port: Configuring parameters of the serial communication port: Baud ratio (bits per second) - 9600bps Data bits - 8 Parity - no Stop bit - 1 Flow control - None Choosing serial communication port: This example explains configuration HyperTerminal program: communication parameters of

Choose COM1 or COM2 according to the serial port connected.

Configuring parameters of the serial communication port: Power on the router and press Enter key. A prompt router> displays on the terminal, allowing router configuration.


Page 26 of 937


Configuring via 56/336 Modem Module LINE PortIf the 56/336modem module is configured in the router, the DIP dial-up switch of the module is used to configure the port LINE working mode. The following table explains usage of DIP switch:Choosing mode Configuring DIP switch 1 56/336MODEM mode Console port mode OFF ON 2 OFF OFF LINE port used as interface of inside 56/336MODEM LINE port used as CONSOLE port and router can be configured via remote dial-up login Interpretation

Configuring Router via TelnetIf the IP address of each interface on the router is configured correctly, then Telnet can be used to log in the router via LAN or WAN, and the router can be configured. Configuring via LAN:

PC for configuration

PC

PC

the router to configure Server


Page 27 of 937


Connect the computer network interface with router Ethernet port on LAN Run the Telnet client application program on a computer in LAN Configure default mode (preference) of the Telnet terminal Contents of the configuration should be set as: terminal ->default mode -> simulation option select VT100/ANSI.

During configuration of Telnet client program, the option local response (each display) should be canceled or it displays contents input by the user adversely effecting the command edit function of shell subsystem.


Page 28 of 937


Type in router IP address and establish Telnet connection to the router. Set Host Name as router IP address: 128.255.255.1 Configure port as Telnet (23) Configure terminal type as TCP/IP (Winsock) The other operations are the same as configuration via console interface.

Configuring via WAN: Connect the configured computer to the remote router via LAN router. Run the telnet client program application on locally configured computer. Other steps are the same as configuration via LAN.


Page 29 of 937


PC for configuration

Configuring the remote router through PC for configuration in LAN

PC

PC

PC

WAN LAN Local routerSynchronous/ asynchronous port Synchronous/ asynchronous port

Router waiting for configuration

LAN Server

Configuring a remote router via a local router: Run the Telnet client program on the local router and configure a remoteend router by logging on to network. The method is the same as one of configuring a router via telnet on network. Following is the connection configuration:

Configuring remote-end router through local routerPC PC PC

PC for configuration PC serial

Synchronous/ Asynchronous

WAN LAN Synchronous/ Asynchronous

Configuring Local router port

Cable of configuring port

Router waiting for configuration

LAN Server

When configuring the router via telnet, do not alter IP address of WAN interface. Change the IP address only after ensuring configuration of other parameters. After the address is changed, telnet disconnects and re-establishes the connection. So the connection should be established again after the new IP address is input to the host. If users log into a Maipu router from a Linux system, the configuration should be made as follows:


Page 30 of 937


Input the username and password in Linux system. Run telnet client program in shell environment of Linux system to log in the router using the following command: telnet 128.255.255.1 After the command is executed, the output is as follows: Connected to 128.255.255.1 ...done Display the system prompt of the router: router> Press the keys ^ and ] to return to the prompt of telnet program: telnet> Execute the command to cancel the local binary mode: telnet> unset binary Already in network ASCII mode with remote host. router> After the above operations are completed, command-editing environment in shell system works normally. If users log in to router via another type of telnet client program and the command edit environment works abnormally, configure the Telnet client program according to the abovementioned specifications.

CLICLI is an interactive interface provided by the shell subsystem for users to configure and use a router. Users perform configuration tasks via CLI. Users examine the system information and see the running system status via the interface. CLI provides the following functions: System help information management Input and editing of system commands Interface history commands management Terminal displaying system management


Page 31 of 937


Command Line HelpThe Command Line provides the following kinds of online help: Help Full help Partial help Users get various kinds of help information. In any command mode, type help to obtain simple description about the help system: router>help Help may be requested at any point in a command by typing a question mark. If nothing matches, the help list will be empty and you should backup until entering a '?' shows available options. Two types of help are provided: Full help is available when you are ready to enter a command argument (example: show?') and explains each possible argument. Partial help is provided when an abbreviated argument is entered and you want to know which arguments match the input (example: 'show pr?') In any command mode, type in a question mark ? to view all possible commands and simple description in this mode. The following table lists commands that can be executed in the privileged user mode.


Page 32 of 937


router#?Command bootparams bridge Clear Clock Configure console-speed Copy Debug Disable display exit filesystem help language logout memdump more mrt netstat no pad phonerxgain phonetxgain ping quickping reload reset rlogin sendtrap set show spy sysupdate telnet terminal trace traceroute undebug wdogDisable Description Print/modify system boot parameters Transparent bridge two scc interfaces Reset function Config the system clock information Turn on configuration commands mode Set console speed Copy a file to another Debugging functions Turn off privileged commands Show something for debug purpose Exit from EXEC mode Turn on file system management commands mode Description of the interactive help system Set help information language Exit from EXEC shell Dump memory image Format showing output Mrouted Show active connections for Internet protocol socket Negate a command or set its defaults Open a X.29 PAD connection Voip card receive, gain, adjust Voip card transmit, gain, adjust Send echo messages Send echo messages Halt and perform a cold restart Set something of running system Open a rlogin connection Send a trap to a specified host or all the host in the trap host list Set something of running system Show running system information Control collecting task activity data Update system software Open a telnet connection Set terminal line parameters Show a task stack frame Trace route to destination Disable debugging functions Disable system watchdog


Page 33 of 937


wdogEnable who Whoami write x3

Enable the system watchdog Show who is logged on Who am i? Write running configuration to a destination Set X.3 parameters on PAD

Type in a command followed by a ? and separated by a blank. If there is to be a keyword in the place, all keywords and simple description will be listed. The following list shows all keywords following command show in the privileged user mode: router#show ?Command about access-lists accounting adsl arp bridge card_list cbwfq clock compress console controllers Description Print copyright information List access lists Accounting data for active sessions ADSL Print entries in the system ARP table Bridge Forwarding/Filtering Database verbose] Show information of hardware modules Show CBWFQ status Print system clock information PPP protocol Print console interface information Controllers Show CPU use per process Show CQ status State of each debugging option Debug register list Print the system devices information Dynamic Host Configuration Protocol status Dialer parameters and statistics Print system DIP switch Dot1Q Show module name of dynamic register Print enable information Print file system information Print file system information of device Show flux information Forward Frame-Relay protocol Gre protocol

cpucq debugging debuglist device dhcp dialer dip-switch dot1Q dynamic-command enable file filesystem flux forward frame-relay gre


Page 34 of 937


hosts if-list ifx-list interface ip keyflow language ld llc2 logging mbuf memory modem mpdlc mpls name-server ndsp netDev netjob nia pool ppp pq process queueing rmon route-map running-config scriptList semaphore snapshot snmp-server snsp sntp spd spy stack standby startup-config strt-list sysadmin sysjob systimertask

Print host tables information Print ifnet list Print ifnet_ext list Print detailed information of interface Print Internet protocol status information Keyflow information What language you use LLC2 device Show LLC2 status Show system logging information Print detailed statistics of mbuf Print the system memory usage information Modem Show MPDLC information Mpls Print DNS Resolver configuration NDSP information Print net device list Print netJob information NIA information Show all mbuf pool Point-to-Point protocol Show PQ status Active process statistics Show queuing configuration Remote monitoring Show route map information Print system running configuration information Print system script list Print the semaphore information Snapshot parameters and statistics Show static of SNMP Agent Stub Network Search Protocol (SNSP) Print sntp client information Show spd status Show spy switch status Print the Process stack utilization information Virtual Backup Router Protocol information Print system startup configuration information Static route hash table Show tasks cared Print sysJob information Print all tasks scheduled on the systimer list


Page 35 of 937


tacacs tcp tech-support terminal time-range tunnel-chain ura users version vpdn wfq wred x25

Shows tacacs server statistics Status of TCP connections Show system information for Tech-Support Show terminal Show time range Tunnel chain User resource authorization information Print the system user login information Print system hardware and software status VPDN information Show WFQ status Show WRED status X.25 information

Type in a command followed by one question mark ? separated by a blank. If there is a parameter in this place, the description of parameters will be listed: router(config)#interface ?Command Group Fastethernet Loopback dialer tunnel Multilink virtual-template Serial Description Interface group Fast Ethernet network interface Loopback interface Dialer interface Tunnel interface Multilink interface Virtual Template interface Serial network interface

Type in a character string closely followed by one question mark ? and all keywords which begin with the same character string and description will be listed. router#d?Command display disable debug Description Show something for debug purpose Turn off privileged commands Debugging functions


Page 36 of 937


Type in a command followed by a character string closely with one question mark ? and all keywords which begin with the character string and their description will be listed. router#show h?Command Hosts Description Print host table information

Command Line Error MessageWhen users key in commands, the syntax is examined. If the syntax is correct, then commands execute or error messages will be reported to users. Following are the common error messages: Error prompt messages of command line:Error message % Invalid input detected at '^' marker. Unknown Reason Cannot find the command Cannot find keywords Parameter type of is wrong The parameter value is beyond the range Type *** ? for a list of subcommands The input command is not integrated

The string *** represents uncompleted command-string the user input.


Page 37 of 937


History CommandCLI provides the function similar to DosKey and the system will automatically save commands input by the user into the history command buffer. Users transfer history commands saved by CLI at any time and execute them repeatedly to reduce users unnecessary repetition of input commands. CLI stores up to 10 commands for each user connecting to a router. The most recent commands take priority over the oldest command. Accessing history commands:Operation Accessing last history command Accessing next history command Key pressed Up-cursor key or Ctrl+p Function If there are some earlier history commands, then they are taken out If there are some later history commands, then they are taken out; or else, the system clears command line and alarms.

Down-cursor key or Ctrl+n

When the cursor key is used to access history commands and telnet runs in Windows98/NT system to log in the router, the option terminal>premier option->simulation option should be configured as type VT100/ANSI.


Page 38 of 937


EditingCLI provides basic command editing functions supporting multi-line editing with a maximum of 256 characters for each command line. The following table lists basic editing functions provided by the subsystem shell.Key Common key Function If the edit buffer is not full, then the key is inserted at the location of the cursor and the cursor shifts right or the system gives alarm bell Deletes the character before cursor location. If the cursor has arrived at the beginning of the command, the system gives alarm bell Deletes the character on the cursor location. If the cursor has arrived at the end of the command, the system gives alarm bell Left shifts the cursor one character location. If the cursor has

maipu router config manualv1.0

Documents