|
|
This chapter contains basic configuration examples for connecting a Cisco 700 series router to an Internet service provider (ISP) or to a central site, such as your company network. It is assumed that your router is cabled as described in the Cisco 700 Quick Reference Guide. Before you proceed with the examples in this chapter, have the information regarding ordering the ISDN line and the connection information in the Cisco 700 Quick Reference Guide (shipped with your router package) available.
The chapter is written so that a knowledgeable beginner can perform a basic configuration of the router, guided by the examples. Explanations are kept to a minimum, but they do show how the individual commands fit into the framework of a configuration.
This chapter has the following sections:
The information in this section describes basic networking concepts as they relate to the Cisco 700 series router and the examples presented. If you have some experience with Cisco 700 series routers, you can skip this section.
Routers forward packets on to specific network segments based on a logical network address, reducing network traffic by keeping unnecessary packets off network segments by only forwarding packets to segments as required.
A bridge joins individual network segments into a single network. The bridge floods packets on to all the network segments it is connected to. In other words, bridges offer simplicity and routers offer a greater degree of control. Cisco 700 series routers can function as a bridge and a router.
Cisco 700 series routers have a "LAN side" and a "WAN side." The LAN side of the router is the Ethernet 10BaseT connection where your computer (or another short-range network device) is connected to the router. The WAN side is ISDN. The configuration commands can affect function on one or both sides of the router. Which side is affected depends upon the command and the profile containing the command.
You can display the current configuration at any time using the show configuration command. If you issued the command in system mode, system mode commands display. If you issue the command in profile mode, profile mode commands display. An asterisk (*) next to a value indicates the value has been modified from the default value. The command is entered as follows:
>show config
The following sample display shows output for the Cisco700 series routers, from the show configuration command in system mode:
Host> show config
System Parameters
Environment
Screen Length 20
Echo Mode ON
CountryGroup 1
Bridging Parameters
LAN Forward Mode ANY
WAN Forward Mode ONLY
Address Age Time OFF
Call Startup Parameters
Multidestination OFF
Line Parameters
Switch Type 5ESS
Call Parameters Link 1 Link 2
Retry Delay 30 30
Profile Parameters
Bridging Parameters
Bridging ON
Routed Protocols
Learn Mode ON
Passthru OFF
Call Startup Parameters
Encapsulation PPP
Line Parameters
Line Speed AUTO
Numbering Plan NORMAL
Call Parameters Link 1 Link 2
Auto ON ON
Called Number
Ringback Number
In the examples, the Cisco 700 series router you are configuring is referred to as the remote router. This is strictly for identification purposes and does not have anything to do with geography or the physical location of the router.
There are several types of authentication, such as Password Authentication Protocol (PAP) and Challenge Handshake Authentication Protocol (CHAP). To avoid confusion, the PAP password is referred to as password, and the CHAP secret password is referred to as secret. The PAP password is plain text. The CHAP secret is encrypted.
For more information on the commands, basics of networking, profiles and so forth, refer to the Cisco 700 Series Router Command Reference publication. The Cisco 700 Series Command Reference publication also contains advanced configuration examples.
This section shows how to set the router to default values and provide basic configuration information used in all configurations. All of the example configurations assume default values unless otherwise indicated.
Step 1 Use the set default command as follows to be sure that you begin with all default values when configuring your router:
> set def
System-level parameters and the parameters in the permanent profiles are set to their default values. Existing user-defined profiles are deleted and the router reboots.
Step 2 Enter the set directorynumber command (usually a ten-digit local number with no spaces or dashes) to set the ISDN directory numbers.
>set 1 directory number 4085551234 >set 2 directory number 4085551235
You are ready to set Service Profile Identifier (SPID) automatic detection. A SPID is a number provided by the ISDN carrier to identify the line configuration of the BRI service. Each SPID points to line setup and configuration information.
Setting a SPID is described in the section "Setting SPID Autodetection (North America only)" in this chapter (recommended if you are connecting to a service provider where the ISDN switch type is DMS-100 or National ISDN-1 (NI1)) or to enter the SPIDs manually, as described in the section "Setting SPIDs Manually (North America only)" in this chapter.
If the service provider ISDN switch type is DMS-100 or National ISDN-1 (NI1), the router supports an automatic SPID detection feature. This section describes how to set the autodetection feature. If the switch type is 5ESS Custom PPP, do not enter SPIDs; go to the next section.
Enable automatic SPID detection feature as follows:
>set autodetection on
Once you enable the autodetection feature, wait for the router to complete the process. This process might take several minutes to complete. When autodetection is successful, the following messages display:
>L761Auto Spid Detect Successful 5ESS >L761055512340Auto Spid Detect Successful >L762055512350Auto Spid Detect Successful
No additional procedures are required. You can now enter specific configuration information.
If autodetection fails, the following message displays:
>L84Manually enter spids and set autodetection off
In this event, set autodetection off by using the set autodetection command and continue with the section "Setting SPIDs Manually (North America only)" to enter SPIDs manually.
SPIDs can be detected automatically using the set autodetection command, or SPIDs can be entered manually, as described in this section.
If the service provider switch type is 5ESS Custom PPP, you do not need to enter SPIDs; go to the next section. If the service provider switch type is DMS-100, National (NI1), or 5ESS Multipoint, continue with this section.
To enter the SPIDs assigned by your ISDN service provider, take the following steps:
Step 1 Enter the set switch command to configure the ISDN switch type that is being used with your ISDN line:
> set switch dms
Step 2 Enter the set spid command to set the router's SPID numbers:
> set 1 spid 0510198765430 > set 2 spid 0510187654320
You are ready to configure the router for a specific routing environment.
An AT&T 5ESS switch can support up to eight SPIDs per BRI line. Because multiple SPIDs can be applied to a single B channel, multiple services can be supported simultaneously. For example, the first B channel can be configured for data, and the second B channel can be configured for both voice and data. In this scenario, the second B channel can support an ISDN telephone in addition to supporting data connections. For 5ESS switches, the SPID is usually the 10-digit ISDN number beginning with "01" and ending with "0." For example: ISDN number, 4085551212; SPID, 0140855512120. (There is no standard format for SPIDs. As a result, SPID values can vary, depending on the switch vendor and the carrier.)
DMS-100 and NI1 switches support only two SPIDs, with only one B channel per SPID. If both B channels will be used for data only, enter the two SPIDs (one for each B channel). An issue comes up when trying to run data and voice over the same B channel. Assuming the first SPID is applied to the first B channel for data traffic and is limited to that B channel only, this leaves only one other SPID for the second B channel.
Consequently, the second B channel can be used for either data or voice, but not both simultaneously. The absence or presence of the second SPID in the configuration dictates whether the second B channel can be used for data or voice. This is an example of SPID values for DMS-100 and NI1 switches: ISDN number, 4085551212; SPID 1, 408555121201; SPID 2, 408555121202. In this case the SPID is the 10-digit ISDN number ending with a "01" for SPID 1 and a "02" for SPID 2.
Figure 3-1 illustrates an example of a remote Cisco 700 series router bridging to a router called central at a central site.
You are going to establish a basic connection with another router, relying primarily on the defaults. In this example configuration, a simple user-defined profile is created in your Cisco 700 series router to bridge over an ISDN network to another router.
By default, the Cisco 700 series router automatically "learns" the MAC addresses that exist locally and remotely across the WAN. The router stores the MAC addresses in a MAC address table, so it knows if the unicast packets should remain on the LAN or forwarded across the ISDN line. In a bridging scenario, the router does not need an IP address and bridging occurs regardless. The IP address is used when the router is being managed remotely by a Telnet session or participating in SNMP.
Both sides of the WAN must be configured with PPP host names, secrets, and passwords for authentication. Each profile must also include dialing information.
The IP address and subnet mask are not entered. IP address assignments are not necessary in a bridged network; they are used only if the router is being pinged or accessed through Telnet or SNMP.
Following is the command summary for configuring the Cisco 700 series router to bridge to the router called central at the central site:
set system CPA765 set user central set active set ppp secret client set ppp password client set bridging on set 1 number phone_number set 2 number phone_number reboot
This section describes how to configure a Cisco 700 series router to route to an ISP by using Internet Protocol (IP). Figure 3-2 illustrates the configuration used in this example. By default, PPP incoming authentication is on and outgoing authentication is off.
The example also uses an unnumbered IP address on the Cisco 700 series router and a dynamically-assigned IP address from the ISP, a common practice used to conserve IP addresses.
In this example, a user-defined profile named isp is created, representing the ISP router. Your router uses the isp profile to initiate the call to the ISP router.
When the Cisco 700 series router calls the ISP router, it sends the ISP the PPP host name, the CHAP secrets, and PAP passwords, depending upon what the other router requires to authenticate the call.
Following is the command summary for configuring the remote Cisco 700 series router to connect to an ISP:
set system 764 cd lan set ip address 172.16.17.9 set ip netmask 255.255.255.248 set ip routing on set user isp set number 5558011 set ppp password client set ppp secret client set ppp address negotiation local on set ip routing on set ip route destination 0.0.0.0/0 gateway 0.0.0.0 propagate on set bridging off set ip address 0.0.0.0 set ip netmask 0.0.0.0 set timeout 360 set ip pat on set active reboot
If you are being charged for each connection, you can use the set timeout command to set the timeout to zero. Doing so maintains your connection and minimizes the number of fees.
This section describes how to configure a remote Cisco 765 router and a central site Cisco 765 router for on-demand IP routing using PPP.
PPP addresses these issues by providing an extensible Link Control Protocol (LCP) and a family of Network Control Protocols (NCPs) to negotiate optional configuration parameters and facilities. PPP supports IP and IPX.
Figure 3-3 is an illustration of the configuration used in this example.
In this example, the Cisco 765 router named remote765 is used to establish a connection through the ISDN service provider to the corporate network at a central site.
Following is the command summary for configuring the remote Cisco 765 router for on-demand IP routing using PPP:
set system remote765 set multidestination on cd LAN set ip address 172.16.17.9 set ip netmask 255.255.255.0 set ip routing on set ip rip update periodic set user central765 set ppp password client set ppp secret client set ip address 10.48.125.7 set ip netmask 255.255.255.0 set ip routing on set ip rip update demand set ip route destination 0.0.0.0/0 gateway 10.48.125.4 set number 5550143 set timeout 360 set active reboot
Following is the command summary for configuring the central site Cisco 700 series router for on-demand IP routing with PPP:
set system central766 set multidest on set ppp auth in chap set ppp secret host cd lan set ip address 172.15.1.100 set ip netmask 255.255.255.0 set ip routing on set ip rip update periodic set user remote765 set ppp auth out chap set ppp secret client set bridging off set ip address 10.48.125.4 set ip netmask 255.255.255.0 set ip routing on set ip rip update demand set ip route destination 0.0.0.0 gateway 10.48.125.7 set ip rip version 1 set 1 number 5553693 set 2 number 5553694 set timeout 360 set active reboot
The set ip rip update demand command is only applicable to the Cisco700 series router.
If you are being charged for each connection, you can use the set timeout command to set the timeout to zero. Doing so maintains your connection and minimizes the number of fees.
This section describes how to configure the remote Cisco 765 router and the central site Cisco 765 router for on-demand IP and IPX routing using PPP.
Figure 3-4 illustrates the configuration used in this example.
The remote Cisco 765 router is used to establish a connection through the ISDN service provider to the corporate network at a central site using PPP. The remote Cisco 765 router has three permanent profiles: LAN, Internal, and Standard. This example uses the LAN profile and a user-defined profile.
Following is the command summary for configuring the remote Cisco 765 router for on-demand IP and IPX routing using PPP:
set system remote765 set multidestination on set ppp password client set ppp secret client set ppp auth out chap set ppp password host set ppp secret host cd LAN set ipx routing on set ipx network 1478 set ipx framing 802.2 set ipx rip update periodic set ip address 172.16.17.9 set ip netmask 255.255.255.0 set ip routing on set ip rip update periodic set user central765 set ipx routing on set ipx network 32125 set ipx rip update demand set ipx spoof 10 set ip route destination 0.0.0.0/0 gateway 10.32.125.4 set ip address 10.32.125.7 set ip netmask 255.255.255.0 set ip routing on set ip rip update demand set 1 number 5550143 set 2 number 5551044 set timeout 360 set active reboot
Following is the command summary for configuring the central site Cisco 700 series router router for on-demand IP and IPX routing using PPP:
set system central765 set multidestination on set ppp auth in chap set ppp secret client cd lan set ipx routing on set ipx network 73146 set ipx framing 802.2 set ipx rip update periodic set ip address 172.15.1.100 set ip netmask 255.255.255.0 set ip routing on set ip rip update periodic set user remote765 set bridging off set 1 number 5553693 set 2 number 5553694 set ipx network 32125 set ipx routing on set ipx framing none set ipx rip update demand set ipx spoof 10 set ip route destination 0.0.0.0/0 gateway 10.32.125.7 set ip address 10.32.125.4 set ip netmask 255.255.255.0 set ip routing on set ip rip update demand set ppp auth out chap set ppp secret host reboot
Posted: Wed Sep 1 16:35:02 PDT 1999
Copyright 1989-1999©Cisco Systems Inc.