|
|
This chapter describes how to configure the Cisco 766 to dial out to the Cisco AS5300.
Figure 4-1 shows the network topology from the Cisco 766's perspective.
Table 4-1 provides detailed information about each end of the connection. This is the network administrator's top-level design table.
| Host Name/ Username | Username Password | WAN IP Address1 | Ethernet IP Address | Assigned Phone Number | Site Hardware |
|---|---|---|---|---|---|
soho-tahoe | tahoe-pw | 10.1.254.3 255.255.255.0 | 10.1.3.1 255.255.255.0 | Directory numbers = 5558084 | Cisco 766 |
hq-sanjose | hq-sanjose-pw | 10.1.254.1 255.255.255.0 | 10.1.1.10 255.255.255.0 | 4085551234 | Cisco AS5300 |
| 1The Cisco 766's default route is 10.1.254.1, which is the Cisco AS5300's dialer interface IP address. This is the next hop IP address. |
Perform the following steps:
System level settings include system name, security, ISDN setup, and PPP setup.
To configure the system level settings, use the following commands in system mode:
| Step | Command | Purpose | ||
|---|---|---|---|---|
| Enter the host name for this Cisco 766. | |||
| soho-tahoe> set switch ni1 | Specify the ISDN switch type that your phone company uses. | ||
| soho-tahoe> set 1 directorynumber 5558084 | Enter the directory numbers for the BRI port's two B channels. | ||
| soho-tahoe> set 1 spid 53055580840101 | Configure your SPIDs, which are required by many switches types. The SPID number is a derivative of the directory number. | ||
| soho-tahoe> set phone1 5558084 | Enable calls to route to the phone 1 and phone 2 POTS jacks. | ||
| soho-tahoe> set voicepriority out conditional | Set the incoming and outgoing voice priority mode. It determines whether the system will disconnect a B channel assigned to a data call to allow a voice call. | ||
| soho-tahoe> set ppp multilink on | Turn on multilink PPP. | ||
| soho-tahoe> set ppp authentication incoming chap | Authenticate incoming callers using CHAP. | ||
| soho-tahoe> set ppp secret host | Specify the CHAP password for authenticating PPP peers. You must enter it twice for verification1. | ||
| soho-tahoe> set password system | Protect your Cisco 766 terminal service shell with a password1. The system configuration mode can be accessed through the console port or a telnet session2. |
| 1Make sure to use your own secret password. Do not use "tahoe-pw" or "admin-pw." 2To modify what is protected by the password, use the set local access command. |
To verify the configuration:
Profile Parameters."
soho-tahoe> show configuration
System Parameters
Environment
Screen Length 20
Echo Mode ON
CountryGroup 1
Bridging Parameters
LAN Forward Mode ANY
WAN Forward Mode ONLY
Address Age Time OFF
Call Startup Parameters
Multidestination OFF
Line Parameters
Switch Type NI-1
Svc Profile ID 1 53055580840101
Directory Number(s) 5558084
Svc Profile ID 2 53055580850101
Directory Number(s) 5558085
Auto SPID and Switch Detection OFF
Conference access code 60
Transfer access code 61
Call Parameters Link 1 Link 2
Retry Delay 30 30
Button Standard
Profile Parameters
Bridging Parameters
Bridging ON
Routed Protocols NONE
Learn Mode ON
Passthru OFF
Call Startup Parameters
Line Parameters
Line Speed AUTO
Numbering Plan NORMAL
Call Parameters Link 1 Link 2
Auto ON ON
Called Number
Backup Number
Ringback Number
CLI Validate Number
CLICallback OFF
CLIAuthentication OFF
soho-tahoe> show security
System Parameters
Security
Access Status ON
System Password EXISTS
Remote Configuration PROTECTED
Local Configuration ON
ClickStart ON
Logout Timeout 5
Caller ID Security OFF
Caller Id Numbers
PPP Security
PPP Authentication IN CHAP
CHAP REFUSE NONE
Profile Parameters
PPP Security
PPP Authentication OUT NONE
PPP Authentication ACCEPT EITHER
Token Authentication Support
TAS Client 0.0.0.0
Use Local CHAP Secret ON
Client
User Name soho-tahoe
PAP Password NONE
CHAP Secret NONE
Host
PAP Password NONE
CHAP Secret EXISTS
Callback
Request OFF
Reply OFF
soho-tahoe> show status
Status 01/01/1998 00:01:08 Line Status Line Activated Terminal Identifier Assigned SPID Accepted Terminal Identifier Assigned SPID Accepted Port Status Interface Connection Link Ch: 1 Waiting for Call Ch: 2 Waiting for Call
The LAN profile contains the Cisco 766's Ethernet IP address and routing characteristics. Before you configure the LAN profile, you should understand how profiles work.
The Cisco 766's operating system uses a profile model. The LAN and remote site parameters are configured inside profiles. When using the command line interface for configuring the device, the current mode determines the effect and display output of each command. The current mode is indicated by the router prompt. To move between modes, use the cd command.
soho-tahoe><----------------------- This is system mode.
soho-tahoe>cd lan <------------------- Change to the LAN profile.
soho-tahoe:LAN>cd hq-sanjose <------- Change to the hq-sanjose profile.
soho-tahoe:hq-sanjose>cd <------------ Go back to system mode.
soho-tahoe>
In the following example, notice that the output of the show security command is different for each configuration mode.
soho-tahoe> show security
System Parameters
Security
Access Status ON
System Password EXISTS
Remote Configuration PROTECTED
Local Configuration ON
ClickStart ON
Logout Timeout 5
Caller ID Security OFF
Caller Id Numbers
PPP Security
PPP Authentication IN CHAP
CHAP REFUSE NONE
Profile Parameters
PPP Security
PPP Authentication OUT NONE
PPP Authentication ACCEPT EITHER
Token Authentication Support
TAS Client 0.0.0.0
Use Local CHAP Secret ON
Client
User Name soho-tahoe
PAP Password NONE
CHAP Secret NONE
Host
PAP Password NONE
CHAP Secret EXISTS
Callback
Request OFF
Reply OFF
soho-tahoe> cd hq-sanjose
soho-tahoe:hq-sanjose> show security
Profile Parameters
PPP Security
PPP Authentication OUT NONE<*>
PPP Authentication ACCEPT EITHER
Token Authentication Support
TAS Mode OFF
TAS Client 0.0.0.0
Use Local CHAP Secret ON
Client
User Name soho-tahoe
PAP Password NONE
CHAP Secret EXISTS
Host
PAP Password NONE
CHAP Secret EXISTS
Callback
Request OFF
Reply OFF
To configure the LAN profile parameters, use the following commands beginning in system configuration mode:
| Step | Command | Purpose | ||
|---|---|---|---|---|
| | Enter LAN profile mode. | ||
| | Enter the IP address. | ||
| | Configure the subnet mask. | ||
| | Turn bridging off. | ||
| | Turn on IP routing. | ||
| | Turn off IP RIP updates. |
To verify the configuration:
soho-tahoe:LAN> show configuration
Profile Parameters
Bridging Parameters
Bridging OFF<*>
Routed Protocols IP <*>
Learn Mode ON
Passthru OFF
Call Startup Parameters
Line Parameters
Line Speed AUTO
Numbering Plan NORMAL
Call Parameters Link 1 Link 2
Auto ON ON
Called Number
Backup Number
Ringback Number
CLI Validate Number
CLICallback OFF
CLIAuthentication OFF
soho-tahoe:LAN> show lan packets
Packet Statistics for LAN Filtered: 120 Forwarded: 1 Received: 124 Dropped: 0 Lost: 0 Corrupted: 0 Misordered: 0 Ethernet Type: 0800 Count: 15 Ethernet Type: 0806 Count: 7
The hq-sanjose profile provides the dialing characteristics for connecting to the Cisco AS5300 (hq-sanjose).
To configure the site profile, use the following commands beginning in LAN profile mode:
| Step | Command | Purpose | ||
|---|---|---|---|---|
| | Create the profile for the headquarters NAS. This profile name must match the PPP name sent by the NAS during CHAP authentication1. | ||
| | Ensure that the profile is currently active and active at reboot. | ||
| | Enable PPP encapsulation. | ||
| | Turn on IP routing. | ||
| | Set IP framing for PPP encapsulation. | ||
| | Set the IP address to be used on the WAN port when using this profile. See Table 4-1. | ||
| | Set the IP netmask address for the dialer cloud. | ||
| | Create a static route for the next hop, which is the Cisco AS5300's WAN port. IP address 10.1.254.1 is used on the Cisco AS5300's dialer interface2. | ||
| | Turn off bridging. | ||
| | Turn off IP RIP updates. | ||
| | Enter the hq-sanjose telephone number. | ||
| | Start your connection testing with 56K, which is often a more dependable connect speed3. | ||
| | When soho-tahoe dials out, it will not authenticate hq-sanjose. | ||
| | All incoming PPP callers are authenticated with CHAP. | ||
| | Specify the secret password to use when soho-tahoe is logging into hq-sanjose4. |
To verify the configuration:
soho-tahoe:hq-sanjose> show security
Profile Parameters
PPP Security
PPP Authentication OUT NONE<*>
PPP Authentication ACCEPT EITHER
Token Authentication Support
TAS Mode OFF
TAS Client 0.0.0.0
Use Local CHAP Secret ON
Client
User Name soho-tahoe
PAP Password NONE
CHAP Secret EXISTS
Host
PAP Password NONE
CHAP Secret EXISTS
Callback
Request OFF
Reply OFF
soho-tahoe:hq-sanjose> show configuration
Profile Parameters
Bridging Parameters
Bridging OFF<*>
Routed Protocols IP <*>
Learn Mode ON
Passthru OFF
Call Startup Parameters
Line Parameters
Line Speed AUTO
Numbering Plan NORMAL
Call Parameters Link 1 Link 2
Auto ON ON
Called Number 14085551234<*> 14085551234<*>
Backup Number
Ringback Number
CLI Validate Number
CLICallback OFF
CLIAuthentication OFF
This section describes how to perform the test. Figure 4-2 shows the actual test lab environment used in this test case.
Step 1 Look at the routing table. Enter the show ip route command to verify that the correct routes are set up. Before you try to use IP, you should verify that IP will work.
View this information in the hq-sanjose profile and at the system level. If the profile is shut down, you will not see the route at the system level.
Step 2 Change to the hq-sanjose profile. Enter the show connection command. Verify that no calls are currently connected:
Step 3 Call hq-sanjose manually by entering the call ch2 command. Notice that the call must be initiated from within the hq-sanjose profile:
Step 4 Ping the DNS server, which is behind hq-sanjose and might be several hops away. If it fails, move back and try to ping the closest router (10.1.254.1).
Step 5 Enter the show connection command to verify that the second connection is up:
Step 6 Enter the show status command:
Step 7 Try pinging the DNS server from a test PC on the local Ethernet LAN. Open the DOS application and enter the ping command.
Here is the final configuration running on the Cisco 766. This configuration file can be used as a basic template for turning up additional remote sites. The bold entries are site specific. They should be customized for each site.
 | TimeSaver You can save time configuring a Cisco 766 by pasting a configuration file directly into a router. To do this, first return the router to its default state using the set default command. The router has no running configuration after this command is entered. Next, paste in the configuration file. |
set system soho-tahoe
set switch ni1
set 1 spid 53055580840101
set 2 spid 53055580850101
set 1 directorynumber 5558084
set 2 directorynumber 5558085
set phone1 5558084
set phone2 5558085
set voice out conditional set voice in conditional set ppp multilink on set ppp authentication incoming chap
set ppp secret host
tahoe-pw
tahoe-pw
set password system
admin-pw
admin-pw
cd lan set ip address 10.1.3.1
set ip netmask 255.255.255.0
set ip routing on set ip rip update off set bridging off cd set user hq-sanjose
set prof power=activate user=hq-sanjose
cd hq-sanjose
set active
set encap ppp
set ip routing on
set ip framing none set ip address 10.1.254.3 set ip netmask 255.255.0.0 set ip pat off set ip rip update off set ip route destination 0.0.0.0 gateway 10.1.254.1
set bridging off
set number 14085551234
set speed 56
set ppp authentication outgoing none
set ppp authentication incoming chap
set ppp secret client
tahoe-pw
tahoe-pw
cd reboot
After you verify that the configuration works, initiate an upload at the end of the session and save it. An upload displays the setting of every configuration parameter on the Cisco 766.
soho-tahoe> upl
CD SET SCREENLENGTH 20 SET COUNTRYGROUP 1 SET LAN MODE ANY SET WAN MODE ONLY SET AGE OFF SET MULTIDESTINATION OFF SET SWITCH NI-1 SET 1 SPID 53055580840101 SET 1 DIRECTORYNUMBER 5558084 SET PHONE1 = 5558084 SET 2 SPID 53055580850101 SET 2 DIRECTORYNUMBER 5558085 SET PHONE2 = 5558085 SET AUTODETECTION OFF SET CONFERENCE 60 SET TRANSFER 61 SET 1 DELAY 30 SET 2 DELAY 30 SET BRIDGING ON SET LEARN ON SET PASSTHRU OFF SET SPEED AUTO SET PLAN NORMAL SET 1 AUTO ON SET 2 AUTO ON SET 1 NUMBER SET 2 NUMBER SET 1 BACKUPNUMBER SET 2 BACKUPNUMBER SET 1 RINGBACK SET 2 RINGBACK SET 1 CLIVALIDATENUMBER SET 2 CLIVALIDATENUMBER SET CLICALLBACK OFF SET CLIAUTHENTICATION OFF SET SYSTEMNAME SOHO-TAHOE LOG CALLS TIME VERBOSE SET UNICASTFILTER OFF DEMAND 1 THRESHOLD 0 DEMAND 2 THRESHOLD 48 DEMAND 1 DURATION 1 DEMAND 2 DURATION 1 DEMAND 1 SOURCE LAN DEMAND 2 SOURCE BOTH TIMEOUT 1 THRESHOLD 0 TIMEOUT 2 THRESHOLD 48 TIMEOUT 1 DURATION 0 TIMEOUT 2 DURATION 0 TIMEOUT 1 SOURCE LAN TIMEOUT 2 SOURCE BOTH SET PASSWORD SYSTEM ENCRYPTED 0500120632484048 SET REMOTEACCESS PROTECTED SET LOCALACCESS ON SET CLICKSTART ON SET LOGOUT 5 SET CALLERID OFF SET PPP AUTHENTICATION IN CHAP SET PPP CHAPREFUSE NONE SET PPP AUTHENTICATION OUT NONE SET PPP AUTHENTICATION ACCEPT EITHER SET PPP TAS CLIENT 0.0.0.0 SET PPP TAS CHAPSECRET LOCAL ON SET PPP SECRET HOST ENCRYPTED 10471a1d0b43191f4d45 SET PPP CALLBACK REQUEST OFF SET PPP CALLBACK REPLY OFF SET PPP NEGOTIATION INTEGRITY 10 SET PPP NEGOTIATION COUNT 10 SET PPP NEGOTIATION RETRY 3000 SET PPP TERMREQ COUNT 2 SET PPP MULTILINK ON SET COMPRESSION STAC SET PPP BACP ON SET PPP ADDRESS NEGOTIATION LOCAL OFF SET PPP IP NETMASK LOCAL OFF SET IP PAT UDPTIMEOUT 5 SET IP PAT TCPTIMEOUT 30 SET IP RIP TIME 30 SET CALLDURATION 0 SET SNMP CONTACT "" SET SNMP LOCATION "" SET SNMP TRAP COLDSTART OFF SET SNMP TRAP WARMSTART OFF SET SNMP TRAP LINKDOWN OFF SET SNMP TRAP LINKUP OFF SET SNMP TRAP AUTHENTICATIONFAIL OFF SET DHCP OFF SET DHCP DOMAIN SET DHCP NETBIOS_SCOPE SET VOICEPRIORITY INCOMING INTERFACE PHONE1 CONDITIONAL SET VOICEPRIORITY OUTGOING INTERFACE PHONE1 CONDITIONAL SET CALLWAITING INTERFACE PHONE1 ON SET VOICEPRIORITY INCOMING INTERFACE PHONE2 CONDITIONAL SET VOICEPRIORITY OUTGOING INTERFACE PHONE2 CONDITIONAL SET CALLWAITING INTERFACE PHONE2 ON SET CALLTIME VOICE INCOMING OFF SET CALLTIME VOICE OUTGOING OFF SET CALLTIME DATA INCOMING OFF SET CALLTIME DATA OUTGOING OFF SET USER LAN SET BRIDGING OFF SET IP ROUTING ON SET IP ADDRESS 10.1.3.1 SET IP NETMASK 255.255.255.0 SET IP FRAMING ETHERNET_II SET IP PROPAGATE ON SET IP COST 1 SET IP RIP RECEIVE V1 SET IP RIP UPDATE OFF SET IP RIP VERSION 1 SET USER Internal SET IP FRAMING ETHERNET_II SET USER Standard SET PROFILE ID 000000000000 SET PROFILE POWERUP ACTIVATE SET PROFILE DISCONNECT KEEP SET IP ROUTING ON SET IP ADDRESS 0.0.0.0 SET IP NETMASK 0.0.0.0 SET IP FRAMING NONE SET IP RIP RECEIVE V1 SET IP RIP UPDATE OFF SET IP RIP VERSION 1 SET USER HQ-SANJOSE SET PROFILE ID 000000000000 SET PROFILE POWERUP ACTIVATE SET PROFILE DISCONNECT KEEP SET BRIDGING OFF SET SPEED 56K SET 1 NUMBER 14085551234 SET 2 NUMBER 14085551234 SET PPP AUTHENTICATION OUT NONE SET PPP SECRET CLIENT ENCRYPTED 020f175f055204350d0f SET IP ROUTING ON SET IP ADDRESS 10.1.254.3 SET IP NETMASK 255.255.0.0 SET IP FRAMING NONE SET IP PROPAGATE ON SET IP COST 1 SET IP RIP RECEIVE V1 SET IP RIP UPDATE OFF SET IP RIP VERSION 1 SET IP PAT OFF SET IP ROUTE DEST 0.0.0.0/0 GATEWAY 10.1.254.1 PROPAGATE OFF COST 1 CD SET BUTTON Standard LOGOUT
|
|