|
|
This section describes how to configure the Cisco AS5800 to support terminal EXEC shell services and login prompts for client modems.
The following subsections are provided:
In this case study, THEnet commissions the Cisco AS5800 network access server (NAS). Local-based authentication is used. After the Cisco AS5800 is commissioned, THEnet configures and tests PPP as described in "Configuring PPP and Authentication." In the future, THEnet will use a AAA RADIUS server.
 |
Note For a description of terminal EXEC shell services, see the section "Task 7. Testing Asynchronous EXEC Shell Connections." |
To build an access network by using the Cisco AS5800, you need to understand the following:
The Cisco AS5800 access server contains:
Figure 3-1 shows the Cisco AS5800's system architecture for this case study:
|
Note The Cisco IOS uses a three-element notation to specify interface and port locations: shelf/slot/port. |
As shown in Figure 3-2, the following components are used to process a call:
One asynchronous PPP call consumes:
One synchronous PPP call consumes:
 |
Tips Synchronous PPP calls require HDLC resources. Each T3 trunk card is limited to 256 HDLC resources. T1 trunk cards do not have HDLC resource limitations. |
Verify that basic system components are functioning:
To view the boot sequence through a terminal session, you must have a console connection to the access server before it powers up.
The following boot sequence occurs. Event numbers and comments are inserted in the example to describe the boot sequence.
System Bootstrap, Version 11.1(13)CA, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) Copyright (c) 1997 by cisco Systems, Inc. C7200 processor with 131072 Kbytes of main memory Self decompressing the image : ################################################# ################################################################################ ################################################################ [OK] %PA-2-UNDEFPA: Undefined Port Adaptor type 106 in bay 2 %SYS-4-CONFIG_NEWER: Configurations from version 12.0 may not be correctly under stood. %OIR-3-SEATED: Insert/removal failed (slot 2), check card seating %OIR-3-SEATED: Insert/removal failed (slot 2), check card seatingCCCCCCCCCCCCCCC CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC Read 7314384 bytes from file slot0:c5800-p4-mz.120-4.XL1.bin Self decompressing the image : ################################################# ################################################################################ ################################################################################ ################################################################################ ################################################################################ ################################################################################ ################################################################################ ################################################################################ ############################ [OK]
1. In the previous segment, the NAS decompresses the system boot image, tests the NVRAM for validity, and decompresses the Cisco IOS image.
%PA-2-UNDEFPA: Undefined Port Adapter
%OIR-3-SEATED: Insert/removal failed
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco Internetwork Operating System Software IOS (tm) 5800 Software (C5800-P4-M), Version 12.0(4)XL1, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
TAC:Home:SW:IOS:Specials for info
Copyright (c) 1986-1999 by cisco Systems, Inc.
Compiled Thu 12-Aug-99 13:16 by ayeh
Image text-base: 0x60008900, data-base: 0x611A6000
cisco 7206 (NPE200) processor with 114688K/16384K bytes of memory.
R5000 CPU at 200Mhz, Implementation 35, Rev 2.1, 512KB L2 Cache
6 slot midplane, Version 1.3
Last reset from power-on
X.25 software, Version 3.0.0.
Bridging software.
SuperLAT software (copyright 1990 by Meridian Technology Corp).
1 FastEthernet/IEEE 802.3 interface(s)
1296 terminal line(s)
1 Channelized T3 port(s)
125K bytes of non-volatile configuration memory.
4096K bytes of packet SRAM memory.
20480K bytes of Flash PCMCIA card at slot 0 (Sector size 128K).
4096K bytes of Flash internal SIMM (Sector size 256K).
2. The following components are detected: Cisco IOS Release, available memory, and available interfaces.
--- System Configuration Dialog --- Would you like to enter the initial configuration dialog? [yes/no]: no
3. Because the NAS has never been configured, the Cisco IOS cannot find a startup-config file. Abort the configuration dialog. In this case study, the Cisco IOS is configured manually. The automatic setup script is not used. Manually configuring the Cisco IOS develops your expertise.
00:00:52: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 12 Succeeded 00:00:53: %DSC_REDUNDANCY-3-BICLINK: Switching to DSC 12 00:00:56: %DSC_REDUNDANCY-3-BICLINK: Link to active DSC up 00:02:05: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 0 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 2 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 3 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 4 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 5 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 6 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 7 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 8 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 9 Succeeded 00:02:06: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 10 Succeeded Press RETURN to get started! Router>
After the Cisco AS5800 is powered up, enter the show environment command. Verify that there are no critical grounding, heating, or power problems. The following example shows a normal operating environment.5800-NAS>show environment All measured values are normal 5800-NAS>show environment all Power Supplies: Power supply 1 is empty. Power supply 2 is Zytek AC Power Supply. Unit is on. Temperature readings: chassis inlet measured at 25C/77F chassis outlet 1 measured at 27C/80F chassis outlet 2 measured at 33C/91F chassis outlet 3 measured at 41C/105F Voltage readings: +3.45 V measured at +3.49 V +5.15 V measured at +5.21 V +12.15 measured at +12.34 V -11.95 measured at -11.81 V Envm stats saved 1 time(s) since reload 5800-NAS>
The dial shelf and router shelf run separate Cisco IOS images:
On the router shelf, check the Cisco IOS image, uptime, and restart reason:
Router#show version Cisco Internetwork Operating System Software IOS (tm) 5800 Software (C5800-P4-M), Version 12.0(4)XL1, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) TAC:Home:SW:IOS:Specials for info Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Thu 12-Aug-99 13:16 by ayeh Image text-base: 0x60008900, data-base: 0x611A6000 ROM: System Bootstrap, Version 11.1(13)CA, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) BOOTFLASH: 7200 Software (C7200-BOOT-M), Version 11.1(24)CC, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) Router uptime is 2 minutes System returned to ROM by reload System image file is "slot0:c5800-p4-mz.120-4.XL1.bin" cisco 7206 (NPE200) processor with 114688K/16384K bytes of memory. R5000 CPU at 200Mhz, Implementation 35, Rev 2.1, 512KB L2 Cache 6 slot midplane, Version 1.3 Last reset from power-on X.25 software, Version 3.0.0. Bridging software. SuperLAT software (copyright 1990 by Meridian Technology Corp). 1 FastEthernet/IEEE 802.3 interface(s) 1296 terminal line(s) 1 Channelized T3 port(s) 125K bytes of non-volatile configuration memory. 4096K bytes of packet SRAM memory. 20480K bytes of Flash PCMCIA card at slot 0 (Sector size 128K). 4096K bytes of Flash internal SIMM (Sector size 256K). Configuration register is 0x2102
Table 3-1 describes the significant output fields in the previous display:
| Field | Description |
|---|---|
5800 Software (C5800-P4-M), Version 12.0(4)XL1 | Cisco IOS version. |
Router uptime is 2 minutes | Reports the router's uptime. Watch for unscheduled reloads. |
System returned to ROM by reload | Describes why the access server last reloaded. If the field displays "power-on," a power interruption caused the reload. |
System image file is "slot0:c5800-p4-mz.120-4.XL1.bin" | The Cisco 7206 router shelf booted from the external PCMCIA Flash card at slot 0. The router shelf does not have an internal Flash. If the PCMCIA Flash card is missing, the router shelf will not boot. |
On the dial shelf, check the Cisco IOS image, uptime, and restart reason. If you do not have a physical console connection to the dial shelf, enter the execute-on slot [12 | 13] show version command. The DSC can be in slot 12 or 13.
Router#execute-on slot 12 show version
DA-Slot12>
Cisco Internetwork Operating System Software IOS (tm) 5800 Software (C5800-DSC-M), Version 12.0(4)XL1, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
TAC:Home:SW:IOS:Specials for info
Copyright (c) 1986-1999 by cisco Systems, Inc.
Compiled Thu 12-Aug-99 18:48 by ayeh
Image text-base: 0x600088F0, data-base: 0x60520000
ROM: System Bootstrap, Version 11.3(1)AA, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
ROM: 5800 Software (C5800-DSC-M), Version 11.3(9)AA2, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
DA-Slot12 uptime is 20 hours, 38 minutes
System returned to ROM by reload
System image file is "slot0:dsc-c5800-mz.120-4.XL1.bin"
cisco c5800 (R4K) processor with 24576K/8192K bytes of memory.
R4700 CPU at 150Mhz, Implementation 33, Rev 1.0, 512KB L2 Cache
Last reset from power-on
1 Ethernet/IEEE 802.3 interface(s)
2 Dial Shelf Interconnect(DSI) FE interface(s)
123K bytes of non-volatile configuration memory.
8192K bytes of Flash PCMCIA card at slot 0 (Sector size 128K).
4096K bytes of Flash internal SIMM (Sector size 256K).
Configuration register is 0x2102
Verify that the feature boards are up (T3, T1, E3, E1, modem, or voice):
Router#show dial-shelf
Slot Board CPU DRAM I/O Memory State Elapsed
Type Util Total (free) Total (free) Time
0 CT3 0%/0% 21598976( 81%) 8388608( 41%) Up 00:01:35
2 Modem(DMM) 20%/20% 46764800( 86%) 16777216( 74%) Up 00:01:35
3 Modem(DMM) 0%/0% 46764800( 86%) 16777216( 74%) Up 00:01:35
4 Modem(DMM) 20%/20% 46764800( 86%) 16777216( 74%) Up 00:01:35
5 Modem(DMM) 20%/20% 46764800( 86%) 16777216( 74%) Up 00:01:35
6 Modem(DMM) 40%/40% 46764800( 86%) 16777216( 74%) Up 00:01:35
7 Modem(DMM) 40%/40% 46764800( 86%) 16777216( 74%) Up 00:01:35
8 Modem(DMM) 35%/35% 46764800( 86%) 16777216( 74%) Up 00:01:35
9 Modem(DMM) 0%/0% 46764800( 86%) 16777216( 74%) Up 00:01:35
10 Modem(DMM) 20%/20% 46764800( 86%) 16777216( 74%) Up 00:01:34
12 DSC 0%/0% 19097792( 79%) 8388608( 66%) Up 00:02:49
Dial shelf set for auto boot
Router#
If the DSC card does not come up, perform the following troubleshooting steps. If the DSC card never comes up, the feature boards in the dial shelf cannot communicate with the router shelf.
Step 2 Verify that the DSI port adapter on the Cisco 7206 is inserted correctly.
Step 3 Verify that the cable between the DSI port adapter and the DSC card is connected correctly.
Step 4 From the Cisco 7206, verify that the DSI-Fast Ethernet interface and line protocol are up:
Router>show dsi
DSI-Fastethernet0/2/0 is up, line protocol is up
Hardware is DEC21140A, address is 0030.f2f5.1438 (bia 0030.f2f5.1438)
MTU 0 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:00:00, output 00:00:00, output hang never
Last clearing of "show interface" counters never
Queueing strategy: fifo
Output queue 0/40, 0 drops; input queue 0/75, 0 drops
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
|
Note |
The following example shows a dial shelf interconnection that changes state to up after the DSC card reloads. Loss of DSIP Keepalive messages indicate no communication between the router shelf and dial shelf. After DSIP Hello messages succeed, the Fast Ethernet DSI-Tx 0 and DSI-Rx 1 change their state to up. Until these interfaces are up, the router shelf and dial shelf cannot communicate. No debug commands are used to create these console messages; however, the terminal monitor command is required to watch them.
Router# 00:04:29: %DSIPPF-5-DS_KEEPALIVE_LOSS: DSIP Keepalive Loss from shelf 1 slot 12 00:05:12: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 12 Succeeded 00:05:18: %DIAL12-3-MSG: 00:00:03: %LINK-3-UPDOWN: Interface DSI-Tx-FastEthernet0, changed state to up 00:00:03: %LINK-3-UPDOWN: Interface DSI-Rx-FastEthernet1, changed state to up 00:00:03: %LINK-3-UPDOWN: Interface Ethernet0, changed state to up Router#
|
Note In a production environment, verify that console logging is disabled. Enter the show logging command. If logging is enabled, the access server might intermittently freeze up as soon as the console port gets overloaded with log messages. Enter the no logging console command. |
The following messages appear on the console-terminal session after the DSC card is physically removed from slot 12 and re-inserted. Approximately 120 seconds elapse before all these messages appear.
Router> 04:41:42: %DSC_REDUNDANCY-3-BICLINK: Link to active DSC down 04:42:13: %ISDN-6-LAYER2DOWN: Layer 2 for Interface Se1/0/0:4:23, TEI 0 changed to down 04:42:14: %DSC_REDUNDANCY-3-BICLINK: Link to active DSC up 04:42:36: %DSIPPF-5-DS_KEEPALIVE_LOSS: DSIP Keepalive Loss from shelf 1 slot 2 04:42:36: %DSIPPF-5-DS_KEEPALIVE_LOSS: DSIP Keepalive Loss from shelf 1 slot 3 04:42:46: %DSIPPF-5-DS_KEEPALIVE_LOSS: DSIP Keepalive Loss from shelf 1 slot 0 04:42:46: %DSIPPF-5-DS_KEEPALIVE_LOSS: DSIP Keepalive Loss from shelf 1 slot 12 04:42:53: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 12 Succeeded 04:44:59: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 0 Succeeded 04:45:02: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 2 Succeeded 04:45:03: %DSIPPF-5-DS_HELLO: DSIP Hello from shelf 1 slot 3 Succeeded Router>
The following boot sequence occurs in the previous example:
1. The DSC card takes 32 seconds to boot up. Afterwards, the card checks the dial shelf's inventory.
2. The dial shelf exchanges hardware inventory information with the router shelf. After the exchange, the router shelf instructs the DSC card to load the appropriate boot images into the feature boards.
3. More than two minutes elapse before the DSC card detects the first "DSIP Hello" message from the first feature board (in shelf 1 slot 0). If the DSC card never comes up, the feature boards in the dial shelf cannot communicate with the router shelf.
4. The router shelf gives the feature boards the appropriate images.
Step 5 If the DSC card is still down, the card might have an incorrect Cisco IOS image, or the Flash card is missing (ROM monitor mode). Open a physical console connection to the DSC card, copy an image into boot Flash, and try re-initializing the system.
Step 6 For advanced troubleshooting measures after the DSC card is up, open a virtual-console session to the DSC card (DA-Slot12). To end the session, enter Ctrl C three times:
Router#dsip console slave 12 Trying Dial shelf slot 12 ... Entering CONSOLE for slot 12 Type "^C^C^C" to end this session DA-Slot12> DA-Slot12# DA-Slot12# DA-Slot12# Terminate NIP IO session? [confirm] [Connection to Dial shelf slot 12 closed by local host] Router#
 |
Warning The router shelf provides the DSC card with the required configuration. Do not change the DSIP settings in the DSC card's configuration. |
If the show dial-shelf command reports that the feature boards are booting for extended periods of time, start debugging from the router shelf by using the following commands:
debug dsip transport debug dsip trace debug dsip boot
Debug dsip transport shows the registered MAC address sent from each feature board. Debug dsip trace displays detailed DSIP hello and keepalive messages. Debug dsip boot shows if the router shelf is sending the boot image to the feature boards.
The router shelf communicates with the dial shelf by using:
For the DSIP command reference and other system management functions, refer to the document Dial and System Management Commands for the Cisco AS5800 at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios113ed/113aa/113aa_2/
58cfeats/c5800uas.htm
To understand how DSIP functions, enter the commands in the following bullet list:
5800-NAS#show dsi
DSI-Fastethernet0/2/0 is up, line protocol is up
Hardware is DEC21140A, address is 00d0.d342.4c38 (bia 00d0.d342.4c38)
MTU 0 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:00:00, output 00:00:00, output hang never
Last clearing of "show interface" counters never
Queueing strategy: fifo
Output queue 0/40, 0 drops; input queue 0/75, 0 drops
5 minute input rate 0 bits/sec, 0 packets/sec
|
Note |
Router#show dsip transport DSIP transport statistics:IPC : input msgs=4309, bytes=509139; output msgs=4308, bytes=291468total consumed ipc msgs=2133; total freed ipc msgs = 2133transmit contexts in use = 13, free = 243, zombie = 0, invalid = 0ipc getmsg failures = 0, ipc timeouts=0core getbuffer failures=0, api getbuffer failures=0 dsip test msgs rcvd = 0, sent = 0 CNTL : input msgs=20927, bytes=738902; output msgs=20350, bytes=29816080 getbuffer failures=0 DATA : input msgs=1076, bytes=38736; output msgs=0, bytes=0DSIP Private Buffer Pool Hits = 0DSIP registered addresses:Shelf0 :Master: 00d0.d342.4c38,Status=localShelf1 :Slot0 : 0090.bf52.4e00,Status=remoteShelf1 :Slot2 : 0090.bf52.4e10, Status=remote Shelf1 : Slot3 : 0090.bf52.4e18, Status=remote Shelf1 : Slot4 : 0090.bf52.4e20, Status=remote Shelf1 : Slot5 : 0090.bf52.4e28, Status=remote Shelf1 : Slot6 : 0090.bf52.4e30, Status=remote Shelf1 : Slot7 : 0090.bf52.4e38, Status=remote Shelf1 : Slot8 : 0090.bf52.4e40, Status=remote Shelf1 : Slot9 : 0090.bf52.4e48, Status=remote Shelf1 : Slot10: 0090.bf52.4e50, Status=remote Shelf1 : Slot12: 0090.bf52.4e60, Status=remote Router#
Router#show dsip version DSIP version information: ------------------------ Local DSIP major version = 5, minor version = 2 All feature boards are running DSIP versions compatible with router shelf Local clients registered versions: ------------------------------------ Client Name Major Version Minor Version Console 5 2 Clock 2 1 Modem 0 0 Logger No version No version TDM No version No version Trunk No version No version Async data No version No version VOICE 0 0 Dial shelf 1 1 Environment No version No version FILESYS No version No version DSC Red. UI 0 1 Split DS No version No version DSIP Test No version No version Mismatched remote client versions: ----------------------------------- Router#
|
Note This command also reports mismatched Cisco IOS versions. No mismatches exist in this example. |
The Cisco IOS creates an initial running configuration. To get familiar with the default settings, inspect the configuration.
Router#show running-config Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Router ! ! shelf-id 0 router-shelf shelf-id 1 dial-shelf ! ! ! resource-pool disable ! modem-pool Default pool-range 1/2/0-1/10/143 ! ! spe 1/2/0 1/10/11 firmware ios-bundled default modem recovery action none ip subnet-zero ! isdn voice-call-failure 0 ! ! controller T3 1/0/0 cablelength 224 ! ! ! process-max-time 200 ! interface FastEthernet0/1/0 no ip address no ip directed-broadcast shutdown ! interface Group-Async0 no ip address no ip directed-broadcast group-range 1/2/00 1/10/143 ! ip classless no ip http server ! ! ! line con 0 transport input none line aux 0 line vty 0 4 line 1/2/00 1/10/143 modem InOut no modem log rs232 ! end
Step 2 Without connecting to the DSC card, display the configuration on the Cisco DS5814 dial shelf:
Router#execute-on slot 12 show running-config DA-Slot12# Building configuration... Current configuration: ! version 12.0 service config no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname DA-Slot12 ! ! ip subnet-zero ! ! process-max-time 200 ! interface Ethernet0 no ip address no ip directed-broadcast shutdown ! no ip http server ip classless ! ! line con 0 transport input none line vty 0 4 ! end
Get familiar with the file system and memory storage areas. The Cisco IOS File System (IFS) provides a consolidated interface to:
IFS first appeared in Cisco IOS Releases 11.3 AA and 12.0. For more information about IFS, refer to the chapter Using the Cisco IOS File System in the Release 12.0 Configuration Fundamentals Configuration Guide at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/fun_c/fcprt2/fcifs.htm
Figure 3-3 shows the memory locations inside the Cisco AS5800.
Table 3-2 describes the memory locations shown in Figure 3-3.
| Component | Description |
|---|---|
CPU (NPE200) | Central processing unit. |
The Cisco IOS image is initially read out of Flash memory, decompressed, and loaded into processor memory (also known as main memory). Routing tables, call control blocks, and other data structures are also stored here. | |
Packet I/O memory | Packets are temporarily stored in I/O memory. |
slot0: flash: slot1: | PCMCIA Flash memory cards in the router shelf. They store Cisco IOS images, modem firmware/portware, and custom web pages. |
bootflash: | Flash memory on the Cisco 7206's motherboard. |
nvram: | Non-volatile configuration memory. |
dsc12-slot0: dsc12-slot1: | |
dsc12-bootflash: | Flash memory on DSC card's motherboard. |
dsc12-nvram: | Non-volatile configuration memory in the DSC card. |
To inspect the file system, enter the commands in the following bullet list:
Router#show file systems
File Systems:
Size(b) Free(b) Type Flags Prefixes
- - flash rw disk0:
- - flash rw disk1:
- - opaque rw null:
- - opaque rw system:
- - network rw tftp:
129016 128277 nvram rw nvram:
* 20578304 13263792 flash rw slot0: flash:
- - flash rw slot1:
3407872 1286636 flash rw bootflash:
- - opaque wo lex:
- - network rw rcp:
- - network rw pram:
- - network rw ftp:
7995392 5825440 flash rw dsc12-slot0:
- - flash rw dsc12-slot1:
3407872 1575412 flash rw dsc12-bootflash:
126968 126968 nvram rw dsc12-nvram:
Router#
Router#dir system: Directory of system:/ 2 dr-x 0 <no date> memory 1 -rw- 787 <no date> running-config No space information available Router#
Router#pwd slot0: Router#dir Directory of slot0:/ 1 -rw- 7314384 Sep 13 1999 20:03:41 c5800-p4-mz.120-4.XL1.bin 20578304 bytes total (13263792 bytes free) Router# Router#dir dsc12-slot0: Directory of dsc12-slot0:/ 1 -rw- 2169824 Sep 13 1999 20:28:53 dsc-c5800-mz.120-4.XL1.bin 7995392 bytes total (5825440 bytes free) Router#
Router#dir bootflash: Directory of bootflash:/ 1 -rw- 2121108 Jan 01 2000 00:00:48 c7200-boot-mz.111-24.CC 3407872 bytes total (1286636 bytes free) Router Router#dir dsc12-bootflash: Directory of dsc12-bootflash:/ 1 -rw- 2169824 Nov 18 1999 22:18:30 dsc-c5800-mz.120-4.XL1.bin 3407872 bytes total (1237920 bytes free)
5800-NAS#pwd
dsc12-bootflash:/
5800-NAS#delete dsc-c5800-mz.113-9.AA2
Delete filename [dsc-c5800-mz.113-9.AA2]?
Delete dsc12-bootflash:dsc-c5800-mz.113-9.AA2? [confirm]
5800-NAS#squeeze dsc12-bootflash:
All deleted files will be removed. Continue? [confirm]
Squeeze operation may take a while. Continue? [confirm]
DA-Slot12#
All deleted files will be removed. Continue? [confirm]
Squeeze operation may take a while. Continue? [confirm]
Squeeze of bootflash complete
Squeeze of dsc12-bootflash complete
5800-NAS#
Router#dir nvram: Directory of nvram:/ 1 -rw- 739 <no date> startup-config 2 ---- 24 <no date> private-config 3 -rw- 739 <no date> underlying-config 129016 bytes total (128277 bytes free) Router# Router#dir dsc12-nvram: Directory of dsc12-nvram:/ 1 -rw- 0 <no date> startup-config 2 ---- 0 <no date> private-config 3 -rw- 0 <no date> underlying-config 126968 bytes total (126968 bytes free) Router#
Use the show memory summary command to:
The following exercise explains how to inspect and calculate memory usage:
5800-NAS#show memory summmary
Head Total(b) Used(b) Free(b) Lowest(b) Largest(b)
Processor 6164D4E0 94055200 42346480 51708720 50435436 51592056
I/O 7000000 16777216 6433400 10343816 10343816 10343772
PCI 4B000000 4194304 618584 3575720 3575720 3575676
 |
Caution Do not enter the show memory summary command with the terminal length 0 command enabled. Otherwise, you will produce many screens of output which might interrupt your session. |
Table 3-3 describes the significant fields in the previous display:
| Field | Description |
|---|---|
Processor | Processor memory. The Cisco IOS image is initially read out of Flash memory, decompressed, and placed into main memory. Routing tables and call control blocks are also stored in main memory. |
I/O | Packets are temporarily stored in I/O memory. |
Head | Hexadecimal address of the head of the memory allocation chain. |
Total(b) | Summary of used bytes plus free bytes. |
Used(b) | Total number of bytes currently used for routing tables and call-processing components. |
Free(b) | Total number of free bytes. The free memory size should be close to the largest block available. |
Lowest(b) | Smallest amount of free memory since last boot. |
Largest(b) | Size of largest available free block. Whenever the largest available block is equal to the free block, there is no fragmentation. In the example, there is a small amount of fragmentation. |
Step 2 Convert bytes to megabytes:
Step 3 Perform some useful memory calculations:
cisco 7206 (NPE200) processor with 114688K/16384K bytes of memory.
High utilization causes network performance problems. For example, knowing when the router is running at over 50% utilization is critical. The router might start dropping packets if an unexpected traffic burst comes through or if OSPF gets recalculated. Fast switching reduces CPU utilization.
Router#show processes cpu CPU utilization for five seconds: 20%/6%; one minute: 31%; five minutes: 19% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 1 144208 1526300 94 0.00% 0.00% 0.00% 0 Load Meter 2 118732 19749060 6 0.24% 0.12% 0.08% 0 OSPF Hello 3 42752544 2699659 15836 3.75% 0.87% 0.62% 0 Check heaps 4 7260 30062 241 0.00% 0.00% 0.00% 0 Pool Manager 5 0 2 0 0.00% 0.00% 0.00% 0 Timers 6 1472 494101 2 0.00% 0.00% 0.00% 0 Serial Background 7 49424 7631216 6 0.00% 0.00% 0.00% 0 EnvMon 8 0 1 0 0.00% 0.00% 0.00% 0 OIR Handler 9 13368616 3217631 4154 0.32% 0.57% 0.42% 0 ARP Input 10 18932 533419 35 0.00% 0.00% 0.00% 0 DDR Timers 11 116 4 29000 0.00% 0.00% 0.00% 0 Entity MIB API
|
Note |
Look at the top line of the output. If you see high utilization numbers, for example over 50%, inspect the columns 5Sec, 1Min, and 5Min. Find the process that uses the most CPU power. For an idle chassis, numbers larger than two percent indicate a problem. The CPU utilization is displayed at the top of the display. See the following table for the field descriptions.
Table 3-4 describes the significant output fields in the previous example:
| Field | Description |
|---|---|
CPU utilization for five seconds: 20%/6%; | The first % number is the CPU utilization for the last 5 seconds. The second % number is the percentage of CPU time spent at the packet-based interrupt level. |
one minute: 31%; | CPU utilization for the last minute. |
five minutes: 19% | CPU utilization for the last 5 minutes. |
Whenever memory cannot be allocated to a process request (a memory leak), a console error message appears:
Sep 14 11:30:33.339 EDT: %SYS-2-MALLOCFAIL: Memory allocation of 19960 bytes failed from 0x603D530C, pool Processor, alignment 0 -Process= "Exec", ipl= 0, pid= 48 -Traceback= 603D8610 603DAA70 603D5314 603D5AF0 60373054 60371474 603C33DC 603C3538 603C4378 60371934 603586B8 60358A10 6037C12C 6037C1E4 60372E9C 6037EDEC
To identify the problem, inspect the first few output lines of the show memory summary command and show processor memory command. At times, the Cisco IOS causes memory leaks. Whenever this happens, the Cisco TAC:
Apply a basic-running configuration to the NAS:
|
Tips Periodically save the configuration by using the copy running-config startup-config command. |
Assign a host name to the NAS, specify an enable secret password, and turn on time stamps:
hostname 5800-NAS enable secret yourpasswordhere service password-encryption service timestamps debug datetime msec service timestamps log datetime msec
|
Note The enable password command is an obsolete command. Do not use it. |
Step 2 Log in with the enable secret password. The show privilege command shows the current security privilege level.
5800-NAS#disable 5800-NAS>enable Password: 5800-NAS#show privilege Current privilege level is 15 5800-NAS#
Configure AAA to perform login authentication by using the local username database. The login keyword authenticates EXEC shell users. Additionally, configure PPP authentication to use the local database if the session was not already authenticated by login.
AAA is the Cisco IOS security model used on all Cisco devices. AAA provides the primary framework through which you set up access control on the NAS.
In this basic case study, the same authentication method is used on all interfaces. AAA is set up to use the local database configured on the NAS. This local database is created with the username configuration commands.
!username admin password adminpasshere username dude password dudepasshere!
|
Warning This step also prevents you from getting locked out of the NAS. If you get locked out, you must reboot the device and perform password recovery. |
Step 2 Configure local AAA security in global configuration mode. You must enter the aaa new-model command before the other two authentication commands.
!aaa new-model aaa authentication login default local aaa authentication ppp default if-needed local!
Table 3-5 describes the previous configuration fragment:
| Command | Purpose |
|---|---|
aaa new-model | Initiates the AAA access control system. This command immediately locks down login and PPP authentication. |
Configures AAA to perform login authentication by using the local username database. The login keyword authenticates EXEC shell users. | |
aaa authentication ppp default if-needed local | Configures PPP authentication to use the local database if the session was not already authenticated by login. |
Step 3 Log in with your username and password:
5800-NAS#login User Access Verification Username:admin Password: 5800-NAS#
Successfully logging in means that your local username will work on any TTY or VTY line. Do not disconnect your session until you can log in.
Create a login banner. However, do not tell users what device they are connecting to until after they log in. Providing device sensitive information might tempt unauthorized users to hack into the system.
5800-NAS(config)#banner login | Enter TEXT message. End with the character '|'. This is a secured device. Unauthorized use is prohibited by law. | 5800-NAS(config)#^Z 5800-NAS#
Step 2 Test the banner:
5800-NAS# 5800-NAS#login This is a secured device. Unauthorized use is prohibited by law. User Access Verification Username: admin Password: 5800-NAS#
To commission a basic dial access service:
! interface Loopback0 ip address 172.22.99.1 255.255.255.255 ! interface Loopback1 ip address 172.22.90.1 255.255.255.0 ! interface FastEthernet0/1/0 ip address 172.22.66.23 255.255.255.0 ! ip route 0.0.0.0 0.0.0.0 172.22.66.1 !
The loopback interfaces are used for the following reasons:
Step 2 Verify that the Fast Ethernet interface is up. Ping the default gateway.
5800-NAS#ping 172.22.66.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.22.66.1, timeout is 2 seconds: .!!!! Success rate is 80 percent (4/5), round-trip min/avg/max = 1/1/1 ms 5800-NAS#
This step verifies that you have IP connectivity with another device on the subnet. If the ping succeeds to the default gateway, try pinging the DNS server in your backbone. Make sure the backbone is configured to get to the access server; otherwise, the ping will not work. Configure the backbone routers to support the routes to the networks you are using.
|
Note An 80% ping-success rate is normal for the first time you ping an external device. The NAS does not yet have an ARP entry (address resolution protocol) for the external device. A 100% success rate is achieved the next time you ping the device. |
Configure the settings for the T3/T1 controllers. They must match the telco's settings on the telephone switch. Mismatched settings cause problems; sometimes these problems are not detected for a long time.
Figure 3-4 shows the logical controller components inside a Cisco AS5800. It shows that a T3 trunk card requires T1 and T3 controller configuration settings. In the figure, only the fourth controller is configured. There are a total of 28 T1 controllers to configure.
!isdn switch-type primary-ni!
There are two ways to define the switch type:
|
Note For T1 CAS trunks, no ISDN switch type is configured. |
Step 2 Configure the T3 controller. There are 28 T1 controllers in one T3. In this example, only the fourth controller is configured. The t1 4 controller command automatically creates the logical T1 controller 1/0/0:4. The number of logical T1 controllers should match the number of TI PRI lines coming into the T3.
!controller T3 1/0/0 framing m23 cablelength 0 t1 4 controller!
Step 3 Configure the corresponding T1 controllers:
!controller t1 1/0/0:4 framing esf pri-group timeslots 1-24!
After the controllers are correctly configured, the following cards and interfaces change their state:
00:01:59: %CONTROLLER-5-UPDOWN: Controller T3 1/0/0, changed state to up 00:02:01: %CONTROLLER-5-UPDOWN: Controller T1 1/0/0:4, changed state to up 00:02:02: %DIAL12-3-MSG: 07:08:54: %DSCCLOCK-3-SWITCH3: Clock moving to NORMAL from HOLDOVER, selected cl ock is on slot 0 port 4 line 0 00:02:05: %ISDN-6-LAYER2DOWN: Layer 2 for Interface Se1/0/0:4:23, TEI 0 changed to down 00:02:21: %ISDN-6-LAYER2UP: Layer 2 for Interface Se1/0/0:4:23, TEI 0 changed to up 5800-NAS>
Table 3-6 describes some of the T3 and T1-controller concepts that are applied in the previous steps.
| Concept | Description |
|---|---|
Framing type | Defines the control bits and data bits. For T3s, Cisco supports:
For T1s, Cisco supports:
|
Line code type | An encoding method used to allow synchronous data to be transmitted in a compatible format. Common line codes are RZ (return to zero), NRZ (non-return to zero), B8ZS, AMI, and HDB3.
|
Clock source | Refers to both timing and synchronization of the T1 carrier. Timing is encoded within the transmitted data signal, and it ensures synchronization throughout the network. Clocks are prioritized by slot number (slot 0 to slot 5). The highest priority clock is selected from the card in slot 0. If this clock fails, the highest priority clock from the card in slot 1 becomes the default clock, and so forth. |
Timeslot assignment | Timeslots are assigned to channels. For T1 PRI scenarios, all 24 T1 timeslots are assigned as ISDN PRI channels. After timeslots are assigned by the pri-group command, D-channel serial interfaces are automatically created in the configuration file (for example S1/0/0:0:23, S1/0/0:1:23, and so on). |
Step 4 Verify that the controllers are up and no alarms or errors are detected. Error counters are recorded over a 24-hour period in 15-minute intervals. In the display output, focus on the data in the current interval.
5800-NAS#show controller t3
T3 1/0/0 is up.
Applique type is Channelized T3
No alarms detected.
FEAC code received: No code is being received
Framing is M23, Line Code is B3ZS, Clock Source is Internal
Data in current interval (201 seconds elapsed):
0 Line Code Violations, 0 P-bit Coding Violation
0 C-bit Coding Violation, 0 P-bit Err Secs
0 P-bit Severely Err Secs, 0 Severely Err Framing Secs
0 Unavailable Secs, 0 Line Errored Secs
0 C-bit Errored Secs, 0 C-bit Severely Errored Secs
Total Data (last 1 15 minute intervals):
30664 Line Code Violations, 49191 P-bit Coding Violation,
47967 C-bit Coding Violation, 0 P-bit Err Secs,
0 P-bit Severely Err Secs, 0 Severely Err Framing Secs,
2 Unavailable Secs, 0 Line Errored Secs,
10 C-bit Errored Secs, 10 C-bit Severely Errored Secs
5800-NAS#
5800-NAS#show control T1 1/0/0:4
T1 1/0/0:4 is up.
Applique type is Channelized T1
Cablelength is short
No alarms detected.
Framing is ESF, Line Code is AMI, Clock Source is Line.
Data in current interval (240 seconds elapsed):
0 Line Code Violations, 0 Path Code Violations
0 Slip Secs, 0 Fr Loss Secs, 0 Line Err Secs, 0 Degraded Mins
0 Errored Secs, 0 Bursty Err Secs, 0 Severely Err Secs, 0 Unavail Secs
Data in Interval 1:
0 Line Code Violations, 8 Path Code Violations
11 Slip Secs, 26 Fr Loss Secs, 0 Line Err Secs, 0 Degraded Mins
0 Errored Secs, 0 Bursty Err Secs, 0 Severely Err Secs, 26 Unavail Secs
Total Data (last 1 15 minute intervals):
0 Line Code Violations, 8 Path Code Violations,
11 Slip Secs, 26 Fr Loss Secs, 0 Line Err Secs, 0 Degraded Mins,
0 Errored Secs, 0 Bursty Err Secs, 0 Severely Err Secs, 26 Unavail Secs
5800-NAS#
After each controller is correctly set up, clear the counters and look for ongoing line violations and errors. To do this, enter the clear controller command followed by the show controller command:
clear controller t3 show controller t3 clear controller t1 1/0/0:4 show controller T1 1/0/0:4
In the display output, focus on the data in the current interval. Error counters stop increasing when the controller is configured correctly.
|
Tips The clear controller t1 command does not reset or bring down the controller. The T1 stays up. Only the counters are cleared. |
From the reference point of the NAS, Table 3-7 provides a list of T1 alarm conditions and descriptions.
| Alarm | Description |
|---|---|
CRC Errors | Occur only in ESF format when a CRC bit has an error. |
Excessive CRC Error Indication (ECRCEI) | Reported in ESF format when 32 of any 33 consecutive CRCs are in error. |
Out of Frame (OOF) | Occurs when the framing pattern for a T1 line has been lost, and data cannot be extracted. This is a red alarm. In SF and ESF formats, OOF occurs when any two of four consecutive frame-synchronization bits are in error. |
Loss of Signal (LOS) | Occurs when 175 consecutive 0s are detected in the MC. This is a red alarm. The signal is recovered if the density of 1s reaches 12.5%. The recovery happens when four 1s are received within a 32-bit period. |
Remote Frame Alarm (RHEA) | Indicates that an OOF framing pattern occurred at the remote end. This is a yellow alarm. |
Alarm Indication Signal (AIS) | Indicates to the remote end a loss of the received signal. This is a blue alarm. AIS occurs when a stream of 1s is received. |
Loop Back | Indicates that a remotely initiated loopback (from the network) is in progress. |
Errored Seconds | Depending on the framing format, indicates OOF conditions, frame slip conditions, or error events. For SF, errored seconds reports the number of seconds the frame was in the OOF or slip condition. For ESF, errored seconds reports error events in seconds. |
Bursty Errored Seconds | Reports CRC error conditions in seconds (ESF format only). |
Severely Errored Seconds | Reports error events or frame slip conditions in seconds. |
For more information about controllers, see the section "Channelized E1 & Channelized T1 Setup Commands" at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/dial_r/drprt1/index.htm
Step 5 Verify that the individual serial D channels are created. B channels S1/0/0:4:0 through S1/0/0:4:22 are rotary members (dialers) of the signaling D channel S1/0/0:4:23.
5800-NAS#show ip interface brief | inc :23
Serial1/0/0:4:23 unassigned YES NVRAM up up
5800-NAS#
Additionally, enter the show interface S1/0/0:4:23 command.
Configure the serial D channels to route incoming voice calls from the PSTN to the integrated modems. The behavior of the B channels is controlled by the D channels' configuration instructions. The D channel is the signaling channel.
Table 3-8 describes the relationship between T1 controllers and serial interfaces.
An ISDN switch type defined on the global level is automatically propagated to the serial D-channel interface level. However, a switch type defined on the serial-interface level overrides a switch type defined on the global level. Per interface switch types are first introduced in Release 11.3AA.
| T1 Controllers | D Channels | B Channels |
|---|---|---|
Controller T1 1/0/0:0 | Interface Serial 1/0/0:0:23 | S1/0/0:0:0 through S1/0/0:0:22 |
Controller T1 1/0/0:1 | Interface Serial 1/0/0:1:23 | S1/0/0:1:0 through S1/0/0:1:22 |
Controller T1 1/0/0:2 | Interface Serial 1/0/0:2:23 | S1/0/0:2:0 through S1/0/0:2:22 |
Controller T1 1/0/0:3 | Interface Serial 1/0/0:3:23 | S1/0/0:3:0 through S1/0/0:3:22 |
Controller T1 1/0/0:4 | Interface Serial 1/0/0:4:23 | S1/0/0:4:0 through S1/0/0:4:22 |
... | ... | ... |
!interface Serial1/0/0:4:23 isdn incoming-voice modem!
Step 2 Verify that ISDN is functioning properly, and the serial channels are up:
5800-NAS#show isdn status
Global ISDN Switchtype = primary-ni
ISDN Serial1/0/0:4:23 interface
dsl 0, interface ISDN Switchtype = primary-ni
Layer 1 Status:
ACTIVE
Layer 2 Status:
TEI = 0, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED
Layer 3 Status:
0 Active Layer 3 Call(s)
Activated dsl 0 CCBs = 0
The Free Channel Mask: 0x807FFFFF
Total Allocated ISDN CCBs = 0
5800-NAS#show isdn service PRI Channel Statistics: ISDN Se1/0/0:4:23, Channel [1-24] Configured Isdn Interface (dsl) 0 Channel State (0=Idle 1=Propose 2=Busy 3=Reserved 4=Restart 5=Maint_Pend) 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 3 Service State (0=Inservice 1=Maint 2=Outofservice) 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 5800-NAS#
Step 3 Test the configuration by sending a plain old telephone service (POTS) call into the Cisco AS5800 network access server (NAS). If the modem answers (you hear modem squelch), the configuration works. See Figure 3-5.
S Telephone Call into a NAS
A different telephone number is associated with each end of the connection.
In Figure 3-5:
Modems and lines are configured after:
Each modem is mapped to a dedicated asynchronous line inside the NAS. After the modem inout command is applied to the lines, the NAS is ready to accept modem calls.
AAA security is applied to the lines by the aaa new-model command and aaa authentication login default local command. AAA performs login authentication by using the local username database. The login keyword authenticates EXEC shell users.
|
Note The modem speed 115200 bps and hardware flow control are the defaults for integrated modems. |
!line 1/2/00 1/10/143 modem InOut!
|
Note The no modem log rs232 command limits the size of the show modem log command's output. |
Step 2 Understand the modem-numbering scheme for the Cisco AS5800. Modems use the shelf/slot/port notation.
5800-NAS#show modem
Codes:
* - Modem has an active call
T - Back-to-Back test in progress
R - Modem is being Reset
p - Download request is pending and modem cannot be used for taking calls
D - Download in progress
B - Modem is marked bad and cannot be used for taking calls
b - Modem is either busied out or shut-down
d - DSP software download is required for achieving K56flex connections
! - Upgrade request is pending
Avg Hold Inc calls Out calls Busied Failed No Succ
Mdm Time Succ Fail Succ Fail Out Dial Answer Pct
1/2/00 00:00:00 0 0 0 0 0 0 0 0%
1/2/01 00:00:00 0 0 0 0 0 0 0 0%
1/2/02 00:00:00 0 0 0 0 0 0 0 0%
1/2/03 00:00:00 0 0 0 0 0 0 0 0%
1/2/04 00:00:00 0 0 0 0 0 0 0 0%
|
Note |
Step 3 Choose a specific modem and inspect the modem-to-TTY line association. TTY lines are simulated RS-232 ports. In this example, TTY 432 is associated with modem 1/2/00.
TTY line numbers map to specific slots. Each slot is hard coded with 144 TTY lines. In this case study, the first modem card is in slot 2 (slot 0 and slot 1 do not contain modem cards).
5800-NAS#show modem 1/2/00
Mdm Typ Status Tx/Rx G Duration RTS CTS DCD DTR
--- --- ------ ----- - -------- --- --- --- ---
1/2/00 (n/a) Idle 0/0 1 00:00:00 RTS CTS noDCD DTR
Modem 1/2/00, Cisco MICA modem (Managed), Async1/2/00, TTY432
Firmware Rev: 2.6.2.0
Modem config: Incoming and Outgoing
Protocol: (n/a), Compression: (n/a)
Management config: Status polling
RX signals: 0 dBm
Last clearing of "show modem" counters never
0 incoming completes, 0 incoming failures
0 outgoing completes, 0 outgoing failures
0 failed dial attempts, 0 ring no answers, 0 busied outs
0 no dial tones, 0 dial timeouts, 0 watchdog timeouts
0 no carriers, 0 link failures, 0 resets, 0 recover oob
0 recover modem, 0 current fail count
0 protocol timeouts, 0 protocol errors, 0 lost events
|
Note |
Tune IP routing behavior and domain-name services for EXEC shell users:
ip subnet-zero no ip source-route ip classless
Table 3-9 describes the previous commands:
| Command | Purpose |
|---|---|
ip subnet-zero | Specifies that 172.22.0.0 is a valid subnet. |
no ip source-route | Tightens security by ensuring that IP-header packets cannot define their own paths through the access server. |
ip classless | Turns off traditional IP network class distinctions in the router [Class-A, Class-B, Class-C]. |
Step 2 Enter domain-name service global configuration commands to support EXEC shell users:
ip domain-lookup ip host guessme 172.22.100.9 ip domain-name the.net ip name-server 172.22.11.10 ip name-server 172.22.12.10
Table 3-10 describes the previous commands:
| Command | Purpose |
|---|---|
ip domain-lookup | Enables IP domain-name lookups. |
ip host guessme 172.22.100.9 | Creates a local name-to-address map. When the NAS is not entered in a DNS server, this map is useful. |
ip domain-name the.net | Tells the NAS how to qualify DNS look ups. In this example, the.net is appended to the end of each name that is looked up. |
ip name-server 172.22.11.10 ip name-server 172.22.12.10 | Specifies the primary and secondary name servers. They are used for mapping names to IP addresses. |
This task verifies that the following components are working:
The Cisco IOS provides a command-line interface (CLI) called the EXEC.
The EXEC:
During this task, some administrators try to make complex services function such as PPP-based Web browsing. Do not jump ahead. Many other elements still need to be configured (for example, PPP and IPCP). The asynchronous-shell test ensures that the EXEC's login prompt can be accessed by a client modem. Taking a layered approach to building a network isolates problems and saves you time.
|
Note The Cisco AS5800 is designed to process PPP sessions. To support high ratios of EXEC-shell users or V.120 users, work with your assistance support team. |
Step 2 From a terminal-emulation program, test your RS-232 connection to the client modem. Enter the at command. The modem sends you an OK return message.
at OK
Step 3 Dial the PRI telephone number assigned to the NAS (in this example 5551234). After the modem successfully connects, a connect message appears.
atdt5551234 CONNECT 28800 V42bis
|
Note Many modems support the a/ command, which recalls the last AT command. The ath command hangs up a modem call. The atdl command dials the last telephone number. |
Step 4 Log into the EXEC session:
This is a secured device. Unauthorized use is prohibited by law. User Access Verification Username: dude Password: 5800-NAS>
Step 5 Determine upon which line the call landed. The following example shows that TTY line 436 accepted the call. The call has been up and active for 20 seconds.
5800-NAS#show caller
Active Idle
Line User Service Time Time
con 0 admin TTY 00:13:43 00:00:00
tty 436 dude TTY 00:00:20 00:00:08
5800-NAS#show caller user dude
User: dude, line tty 436, service TTY
Active time 00:00:34, Idle time 00:00:09
Timeouts: Absolute Idle Idle
Session Exec
Limits: - - 00:10:00
Disconnect in: - - 00:09:50
TTY: Line 1/2/04
DS0: (slot/unit/channel)=0/4/2
Status: Ready, Active, No Exit Banner
Capabilities: Hardware Flowcontrol In, Hardware Flowcontrol Out
Modem Callout, Modem RI is CD
Modem State: Ready
5800-NAS#
|
Note The show caller command is added to the Cisco IOS software in Release 11.3 AA and 12.0 T. If your software release does not support this command, use the show user command. |
Step 6 Test the IP functionality to support shell sessions. From the NAS, telnet to another device in your network.
5800-NAS>telnet 172.22.66.26 Trying 172.22.66.26 ... Open User Access Verification Username: admin Password: 5800-NAS> 5800-NAS>telnet guessme Translating "guessme"...domain server (172.22.11.10) [OK] Trying guessme.cisco.com (172.22.2.2)... Open SunOS 5.6 login: dude Password: Last login: Wed Oct 6 08:57:46 from dhcp-aus-163-236 Sun Microsystems Inc. SunOS 5.6 Generic August 1997 guessme%
After completing the tasks in this section, the final running configuration looks like this:
5800-NAS#show running-config Building configuration... Current configuration: ! version 12.0 service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname 5800-NAS ! aaa new-model aaa authentication login default local aaa authentication ppp default if-needed local enable secret 5 $1$gq.d$nZwr.ElnV/O0nE9U.wZ3D/ ! username admin password 7 105B1D1A0A12 username dude password 7 111C0D061817 ! ! ! ! shelf-id 0 router-shelf shelf-id 1 dial-shelf ! ! ! resource-pool disable ! modem-pool Default pool-range 1/2/0-1/10/143 ! ! spe 1/2/0 1/10/11 firmware ios-bundled default modem recovery action none ip subnet-zero no ip source-route ip host guessme 172.22.100.9 ip domain-name the.net ip name-server 172.22.11.10 ip name-server 172.22.12.11 ! isdn switch-type primary-ni isdn voice-call-failure 0 ! ! controller T3 1/0/0 framing m23 cablelength 0 t1 4 controller ! controller T1 1/0/0:4 framing esf pri-group timeslots 1-24 ! ! voice-port 1/0/0:4:D ! ! process-max-time 200 ! interface Loopback0 ip address 172.22.99.1 255.255.255.255 no ip directed-broadcast ! interface Loopback1 ip address 172.22.90.1 255.255.255.0 no ip directed-broadcast ! interface FastEthernet0/1/0 ip address 172.22.66.23 255.255.255.0 no ip directed-broadcast ! interface Serial1/0/0:4:23 no ip address no ip directed-broadcast isdn switch-type primary-ni isdn incoming-voice modem no cdp enable ! interface Group-Async0 no ip address no ip directed-broadcast group-range 1/2/00 1/10/143 ! ip classless ip route 0.0.0.0 0.0.0.0 172.22.66.1 no ip http server ! ! banner login ^C This is a secured device. Unauthorized use is prohibited by law. ^C ! line con 0 transport input none line aux 0 line vty 0 4 line 1/2/00 1/10/143 modem InOut no modem log rs232 ! end
Perform the tasks in the section "Verifying Modem Performance."
Posted: Mon May 22 13:06:16 PDT 2000
Copyright 1989 - 2000©Cisco Systems Inc.