Difference between revisions of "Nextelco:CNOC Norway"
(→Hardware & Software specifications) |
(→Predefined Configuration) |
||
(37 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
− | + | __NOTOC__ | |
+ | The Runcom CNOC available in Norway is composed by two components, each one installed in a different front slot. | ||
+ | * In the first slot there is the SCC-GEth (Service Creation Card - Gigabit Ethernet) module. | ||
+ | * In the second slot there is the RDS (Redirection Server) module. | ||
− | |||
− | The | + | The following figure shows how is the CNOC physically. |
+ | |||
+ | [[File:CNOC_with_Port_descriptions.png|700px|center]] | ||
+ | |||
+ | |||
+ | == Getting access == | ||
+ | As it is shown in the previous figure, both components or modules, have several ethernet connections as well as a console ports. Console ports are intended to be the first way of getting access, which requires local presence, however none of the components is answering by this port. | ||
+ | |||
+ | The default configuration allows to get access through console ports, however, these CNOC has been already manipulated and that is why console ports are not responding. | ||
+ | |||
+ | The second option to get access is using ethernet ports and by telnet or ssh. For that purpose is necessary to now which is the IP address of the port. Since CNOC was already configured that is not an straight forward action. To solve that issue there are two possible solutions: | ||
+ | # With a tool such as NMAP (Network exploration tool), which can be used to analyze all possible IP addresses and try to find to which ones does the CNOC answer | ||
+ | # If the CNOC provides an IP address, try to use Wireshark (Packet analyzer tool) to figure out which is the IP address of the DHCP server. | ||
+ | |||
+ | During the first access the second option was used. That solution provide us the IP address of the DHCP server, which in this case is 192.168.0.3. Unfortunately, not telnet neither ssh were able to get access. | ||
+ | |||
+ | After scanning several IP ranges and trying both telnet and ssh, finally we got access. | ||
+ | * To connect to the first module, the SCC-GEth, it is necessary to connect to the LAN 1/1 port and use telnet to 192.168.11.3 IP address. Then we need the default credentials to get access. | ||
+ | telnet 192.168.11.3 | ||
+ | * To connect to the second module, the RDS, it is necessary to connect to the LAN 0/3 port and use ssh to 192.168.11.4 IP address. | ||
+ | ssh te@192.168.11.4 | ||
− | |||
== Hardware & Software specifications == | == Hardware & Software specifications == | ||
− | These are hardware and software specifications of CNOC | + | These are hardware and software specifications of the SCC module: |
+ | CNOC> show version hardware | ||
+ | Module Num Part No. Serial No. Slot | ||
+ | --------- --- ---------------- ---------- ---- | ||
+ | Backplane 1 710-200-0 Rev 0 0 | ||
+ | SCC-GEth 2 650-045 Rev 2 906771 1 | ||
+ | |||
+ | CNOC> show version software | ||
+ | Module Num Application | ||
+ | -------- --- ------------------------- | ||
+ | SCC-GEth 1 13.0 Dec 11 2012 16:45:56 | ||
+ | |||
+ | CNOC> show version pack | ||
+ | Pack Image Name: V130_7055_PM | ||
+ | Version: V13.0 December 11 2012 17:19:28 | ||
+ | Size: 1951170 byte | ||
+ | Pack Components: | ||
+ | Main Image Version: 13.0 Dec 11 2012 16:45:56 | ||
+ | Main Description: Service Creation | ||
+ | File GOS.ini Image Version: V13.0 | ||
+ | File Description: INI for GOS | ||
+ | File V130.mib.zip Image Version: version | ||
+ | File Description: SCC MIB | ||
+ | |||
+ | These are hardware and software specifications of the RDS module: | ||
RDSHost> show version hardware | RDSHost> show version hardware | ||
Module Num Part No. Serial No. Version | Module Num Part No. Serial No. Version | ||
Line 16: | Line 61: | ||
RDSHost> show version software | RDSHost> show version software | ||
− | Module | + | Module Num Version |
− | ------ | + | ------ --- ------------- |
− | RDS | + | RDS 1 V4.1.10.0_RDS |
− | Kernel | + | Kernel 2 2.4.32 |
RDSHost> show version pack | RDSHost> show version pack | ||
Line 26: | Line 71: | ||
Size: 0 | Size: 0 | ||
Pack Components: | Pack Components: | ||
− | Kernel Version: 2.4.32 | + | Kernel Version: 2.4.32 |
− | EDS Version: V4.1.10.0_RDS | + | EDS Version: V4.1.10.0_RDS |
− | == Predefined | + | |
− | The CNOC | + | |
− | RDSHost> | + | == Predefined configuration == |
+ | This section shows all the possible configuration of both modules, components or cards. The first card is the SCC-GEth and the second one the RDS. All configuration files are collapsed by default due to their length. In order to show the files click on ''Expand'' button.. | ||
+ | |||
+ | ==== SCC-GEth ==== | ||
+ | This is the SCC-GEth card configuration. In order to see all the ''show ...'' commands click on ''Expand'' button. | ||
+ | |||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show configuration | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show configuration | ||
+ | # version: 13.0 Dec 11 2012 16:45:56 | ||
+ | interface loopback 1 10.0.2.1 255.255.255.255 | ||
+ | interface loopback 2 10.0.3.1 255.255.255.255 | ||
+ | interface loopback 3 192.168.101.1 255.255.255.255 | ||
+ | interface ethernet 0\1 77.40.168.13 255.255.255.128 auto | ||
+ | interface ethernet 1\1 192.168.11.3 255.255.255.0 auto | ||
+ | interface ethernet 1\2 192.168.0.3 255.255.255.0 auto mtu 1544 | ||
+ | password viewer Tw)wtx- | ||
+ | password operator Tw)wtx- | ||
+ | password superuser WoH | ||
+ | password technician Koz!# | ||
+ | password pre-authentication +k(~#i+^#43\,6 | ||
+ | def-service-auth ppp-auto | ||
+ | authentication user internal | ||
+ | authentication user name ANY service NIP_WALLED | ||
+ | authentication user name bronze password bronze service NIP_Bronze | ||
+ | authentication user name gold password gold service NIP_Gold | ||
+ | authentication user name platinium password platinium service NIP_Platinium | ||
+ | authentication user name botoure2 password botoure | ||
+ | authentication user name botoure3 password botoure3 service NIP_Bronze | ||
+ | authentication user name botoure4 password botoure4 service NIP_Gold | ||
+ | radius-server key ggcon | ||
+ | access-list snmp-permit 0.0.0.0 0.0.0.0 | ||
+ | access-list eds-permit 91.207.159.21 255.255.255.255 | ||
+ | access-list eds-permit 192.168.11.4 255.255.255.255 | ||
+ | access-list eds-permit 212.199.47.226 255.255.255.255 | ||
+ | access-list eds-permit 212.199.47.228 255.255.255.255 | ||
+ | access-list native-ip 10.0.3.0 255.255.255.0 | ||
+ | access-list native-ip 10.0.4.0 255.255.255.0 | ||
+ | access-list native-ip 192.168.101.0 255.255.255.0 | ||
+ | snmp-server community get T}y||g | ||
+ | snmp-server community set T}y||g | ||
+ | tunnel-server host 80.179.16.50 mask 255.255.255.255 | ||
+ | router id 192.168.0.3 | ||
+ | hostname CNOC | ||
+ | banner BannerString | ||
+ | session-timeout 64000 | ||
+ | idle-timeout 1800 | ||
+ | service cache off | ||
+ | service internal auth local | ||
+ | native-ip def-service-auth NIP_OPEN | ||
+ | native-ip enable interface ethernet 1\2 | ||
+ | telnet timeout 60 | ||
+ | asn enable | ||
+ | asn def-service-auth none def-service-name wimaxDS | ||
+ | ip domain-name RN-ASN-SG | ||
+ | ip primary-name-server 8.8.8.8 | ||
+ | ip route 192.168.101.253 255.255.255.255 0.0.0.0 ethernet 1\ 2 | ||
+ | ip route 212.199.47.228 255.255.255.255 77.40.168.1 ethernet 0\ 1 | ||
+ | ip route nip 192.168.101.128 255.255.255.192 192.168.0.1 | ||
+ | ip route nip 192.168.101.192 255.255.255.224 192.168.0.1 | ||
+ | ip default-gateway 192.168.11.1 | ||
+ | ip tcp adjust-mss on | ||
+ | ip dhcp relay server interface default 0\0\0 1 127.0.0.1 source-interface default | ||
+ | ip dhcp local-pool bs_pool 192.168.0.33 192.168.0.46 255.255.255.0 192.168.0.3 | ||
+ | ip dhcp local-pool cpe_pool 10.0.2.2 10.0.2.254 255.255.255.0 10.0.2.1 | ||
+ | ip forward | ||
+ | debug | ||
+ | watchdog-TimeValue 600 | ||
+ | error-level default 3 output-device console | ||
+ | event-level default 3 output-device console | ||
+ | event-level module ICMP max 5 | ||
+ | sysLog-server-ip 192.168.1.1 | ||
+ | resource-watchdog mode watch-restart timeout 360 | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show dhcp ip-pool | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show dhcp ip-pool | ||
+ | |||
+ | Pool Name Used IPs Free IPs Status | ||
+ | __________ ________ ________ ______ | ||
+ | |||
+ | bs_pool 0 14 active | ||
+ | cpe_pool 0 253 active | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show ethernet | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show ethernet | ||
+ | |||
+ | Interface Slot 0 Port 1 IF 1506 is up, line protocol is down | ||
+ | Hardware address is 00203802495A | ||
+ | Internet address is 77.40.168.13 Mask is 255.255.255.128 | ||
+ | Gateway IP address is 192.168.11.1 | ||
+ | Duplex mode is forced to half-duplex | ||
+ | Ethernet speed is 10 Mbps | ||
+ | MTU 1500 bytes, BW 100 Mbps | ||
+ | 8 packets input, 704 bytes | ||
+ | Received 8 broadcast | ||
+ | 0 input errors, 0 runts, 0 giants, 0 CRC | ||
+ | |||
+ | Input frame discard = 0 | ||
+ | Assign Rx buffers failure = 0 | ||
+ | Free Rx buffers = 2384 | ||
+ | 3 packets output, 192 bytes | ||
+ | 0 output errors, 0 output late collisions, 0 retry | ||
+ | 0 re-transmission limit | ||
+ | Output discards = 0 | ||
+ | Redundancy status: redundancy is not configured | ||
+ | |||
+ | |||
+ | |||
+ | Interface Slot 1 Port 1 IF 1507 is up, line protocol is up | ||
+ | Hardware address is 00D0C9B9E42C | ||
+ | Internet address is 192.168.11.3 Mask is 255.255.255.0 | ||
+ | Gateway IP address is 192.168.11.1 | ||
+ | Duplex mode sensed by auto-negotiation is full-duplex | ||
+ | Ethernet speed is 100 Mbps | ||
+ | MTU 1500 bytes, BW 100 Mbps | ||
+ | 3048 packets input, 258857 bytes | ||
+ | Received 980 broadcast | ||
+ | 0 input errors, 0 runts, 0 giants, 0 non-octet, 0 CRC | ||
+ | |||
+ | Input frame discard = 0 | ||
+ | Assign Rx buffers failure = 0 | ||
+ | Free Rx buffers = 2392 | ||
+ | 3391 packets output, 353826 bytes | ||
+ | 0 output errors, 0 output late collisions, 0 deferrals, 0 retry | ||
+ | 0 re-transmission limit, 0 carrier sense loss | ||
+ | Output discards = 0 | ||
+ | Redundancy status: redundancy is not configured | ||
+ | |||
+ | |||
+ | |||
+ | Interface Slot 1 Port 2 IF 1508 is up, line protocol is down | ||
+ | Hardware address is 00D0C9B9E42D | ||
+ | Internet address is 192.168.0.3 Mask is 255.255.255.0 | ||
+ | Gateway IP address is 192.168.11.1 | ||
+ | Duplex mode is forced to half-duplex | ||
+ | Ethernet speed is 10 Mbps | ||
+ | MTU 1544 bytes, BW 100 Mbps | ||
+ | 1 packets input, 64 bytes | ||
+ | Received 1 broadcast | ||
+ | 0 input errors, 0 runts, 0 giants, 0 non-octet, 0 CRC | ||
+ | |||
+ | Input frame discard = 0 | ||
+ | Assign Rx buffers failure = 0 | ||
+ | Free Rx buffers = 2392 | ||
+ | 1 packets output, 64 bytes | ||
+ | 0 output errors, 0 output late collisions, 0 deferrals, 0 retry | ||
+ | 0 re-transmission limit, 0 carrier sense loss | ||
+ | Output discards = 0 | ||
+ | Redundancy status: redundancy is not configured | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show port ethernet | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show port ethernet | ||
+ | |||
+ | Slot Port Status Max Capacity Type | ||
+ | ____ ____ __________ ____________ ______ | ||
+ | |||
+ | 0 1 down 1000M copper | ||
+ | 0 2 no-conf 1000M copper | ||
+ | 0 3 no-conf 1000M copper | ||
+ | 1 1 up 1000M copper | ||
+ | 1 2 down 1000M copper | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show users | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show users | ||
+ | |||
+ | Line Line User User Name IP Address Duration Calling | ||
+ | Type Type dd:hh:mm:ss Number | ||
+ | ____ ____ ____ __________ __________ ___________ _______ | ||
+ | |||
+ | Total number of Network connected lines: 0 | ||
+ | ANet (Analog source) lines: 0, INet (ISDN source) lines: 0 | ||
+ | Eth (Ethernet source) lines: 0 | ||
+ | PPP (PPP source) lines: 0 | ||
+ | Total number of Framed users: 0 | ||
+ | PPP users: 0, MLP users: 0 | ||
+ | |||
+ | Total number of tunnel switch users: 0 | ||
+ | Total number of native IP users: 0 | ||
+ | NIPP (radius-proxy triggered) users: 0 | ||
+ | NIPD (dhcp-proxy triggered) users: 0 | ||
+ | NIPI (ip triggered) users: 0 | ||
+ | NIPR (Roamed) users: 0 | ||
+ | NIPW (Wimax) users: 0 | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show ip-route | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show ip-route | ||
+ | |||
+ | Network NetMask Gateway Interface | ||
+ | Address Address | ||
+ | ___________ _____________ ___________ __________________ | ||
+ | |||
+ | 0.0.0.0 0.0.0.0 192.168.11.1 Ethernet 1\1 | ||
+ | 77.40.168.13 255.255.255.128 * Ethernet 0\1 | ||
+ | 192.168.0.3 255.255.255.0 * Ethernet 1\2 | ||
+ | 192.168.11.3 255.255.255.0 * Ethernet 1\1 | ||
+ | 192.168.101.253 255.255.255.255 * Ethernet 1\2 | ||
+ | 212.199.47.228 255.255.255.255 77.40.168.1 Ethernet 0\1 | ||
+ | |||
+ | --- Native IP --- | ||
+ | 192.168.101.128 255.255.255.192 192.168.0.1 | ||
+ | |||
+ | 192.168.101.192 255.255.255.224 192.168.0.1 | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show telnet-users | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show telnet-users | ||
+ | |||
+ | Number User Level Duration Source | ||
+ | ______ __________ ________ ______ | ||
+ | 1 Technician 00:00:58:57 Network | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show system | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show system | ||
+ | |||
+ | Up-time: 2 Days, 19 Hours, 23 Minutes, 27 Seconds | ||
+ | Time: 19:23:49 03-01-1998 Baud rate: 38400 bit/s | ||
+ | Temperature: 34 degrees Celsius | ||
+ | |||
+ | Total number of network incoming calls: 0 | ||
+ | Total number of network connected calls: 0 | ||
+ | |||
+ | Current number of Network connected lines: 0 | ||
+ | ANet (Analog source) lines: 0, INet (ISDN source) lines: 0 | ||
+ | Eth (Ethernet source) lines: 0 | ||
+ | Current number of PPP (PPP source) lines: 0 | ||
+ | |||
+ | Current number of connected Framed users: 0 | ||
+ | PPP users: 0, MLP users: 0 | ||
+ | Current number of connected native IP users: 0 | ||
+ | NIPI users: 0, NIPD users: 0 | ||
+ | NIPP users: 0, NIPR users: 0 | ||
+ | NIPW users: 0 | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show license | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show license | ||
+ | [CREATION] | ||
+ | DATE=January 06 2013 11:02:31 | ||
+ | [VERSION] | ||
+ | MAJOR=13 | ||
+ | [SN] | ||
+ | SNSOURCE=1 | ||
+ | SNNUM=1 | ||
+ | SN1=906771 | ||
+ | [MAGIC] | ||
+ | Magic String=C000000067 | ||
+ | [OPTIONS] | ||
+ | Allow Maximum 500 Users=on | ||
+ | Service Creation [790-003]=on | ||
+ | ASN [790-019]=on | ||
+ | Pre Paid [792-002]=on | ||
+ | Bandwidth Control [792-001]=on | ||
+ | Hierarchical Bandwidth Control [792-015]=off | ||
+ | Native IP [792-007]=on | ||
+ | Native IP Roaming [792-014]=off | ||
+ | Dynamic IP Changing [792-008]=off | ||
+ | Application Awareness [792-013]=off | ||
+ | Smart Client [792-017]=off | ||
+ | Radius Plus [792-018]=off | ||
+ | Auth-Internal [792-019]=on | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show internal services stored | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show internal services stored | ||
+ | # | ||
+ | # CNOC default system services V13.0T1.034 and on | ||
+ | # | ||
+ | |||
+ | # Common WiMAX CPE service definition with maximum bandwidth for bridge type CPE with NRTPS | ||
+ | |||
+ | <GUY_DEMO_SERVICE> | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = acl;1024 | ||
+ | SG-Acl-Up-Mean-Rate = acl;128 | ||
+ | SG-Cos=acl;4 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Timeout = 120 | ||
+ | SG-Data-Quota = 2000000000 | ||
+ | SG-Next-Service-Name = NIP_Blocked | ||
+ | SG-Service-Name = GUY_DEMO_SERVICE | ||
+ | |||
+ | <wimaxDS> | ||
+ | Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl;30000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl;30000 | ||
+ | SG-Wimax-Acl-Schedule-Type = wiacl;up;nrtPS | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate=wiacl;up;64000 | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int=wiacl;up;60 | ||
+ | SG-Node-Dynamic-Service = NIP_OPEN | ||
+ | SG-Node-Default-Service = NIP_OPEN | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = wimaxDS | ||
+ | |||
+ | # Common WiMAX CPE service definition for router type CPE with NRTPS | ||
+ | <wimaxDS_NAT_NRTPS> | ||
+ | Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl;30000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl;30000 | ||
+ | SG-Wimax-Acl-Schedule-Type = wiacl;up;nrtPS | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate=wiacl;up;64000 | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int=wiacl;up;60 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Name = wimaxDS_NAT_NRTPS | ||
+ | |||
+ | <NIP_Bronze> | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = acl;1024 | ||
+ | SG-Acl-Up-Mean-Rate = acl;192 | ||
+ | SG-Cos=acl;2 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Timeout = 7200 | ||
+ | SG-Data-Quota = 500000000 | ||
+ | SG-Next-Service-Name = NIP_Blocked | ||
+ | SG-Service-Name = NIP_Bronze | ||
+ | |||
+ | <NIP_Silver> | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = acl;1024 | ||
+ | SG-Acl-Up-Mean-Rate = acl;128 | ||
+ | SG-Cos=acl;4 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Timeout = 28800 | ||
+ | SG-Data-Quota = 2000000000 | ||
+ | SG-Next-Service-Name = NIP_Blocked | ||
+ | SG-Service-Name = NIP_Silver | ||
+ | |||
+ | <NIP_Gold> | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = acl;1536 | ||
+ | SG-Acl-Up-Mean-Rate = acl;192 | ||
+ | SG-Cos=acl;3 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Timeout = 86400 | ||
+ | SG-Data-Quota = 5000000000 | ||
+ | SG-Next-Service-Name = NIP_Blocked | ||
+ | SG-Service-Name = NIP_Gold | ||
+ | |||
+ | |||
+ | <NIP_Platinium> | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = acl;2048 | ||
+ | SG-Acl-Up-Mean-Rate = acl;256 | ||
+ | SG-Cos=acl;2 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Timeout = 604800 | ||
+ | SG-Data-Quota = 8000000000 | ||
+ | SG-Next-Service-Name = NIP_Blocked | ||
+ | SG-Service-Name = NIP_Platinium | ||
+ | |||
+ | <NIP_Diamond> | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = acl;4096 | ||
+ | SG-Acl-Up-Mean-Rate = acl;320 | ||
+ | SG-Cos=acl;1 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Timeout = 2592000 | ||
+ | SG-Data-Quota = 20000000000 | ||
+ | SG-Next-Service-Name = NIP_Blocked | ||
+ | SG-Service-Name = NIP_Diamond | ||
+ | |||
+ | <NIP_WALLED> | ||
+ | Filter-Id = acl out permit 212.199.47.228 255.255.255.255 | ||
+ | Filter-Id = acl out permit 192.168.11.4 255.255.255.255 | ||
+ | Filter-Id = acl out permit 91.207.159.21 255.255.255.255 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0;udp;dst;53 | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Remote-Filter-Redirect-Gw = 212.199.47.228 | ||
+ | SG-Acl-Down-Mean-Rate = acl;4096 | ||
+ | SG-Acl-Up-Mean-Rate = acl;4096 | ||
+ | SG-Personal-Site=http://www.nextelco.net:8657/nextt/web_authentication.html | ||
+ | SG-Next-Hop = 192.168.11.1 | ||
+ | User-Name = WALLED | ||
+ | SG-Service-Name = NIP_Blocked-4 | ||
+ | |||
+ | <PPP_Blocked> | ||
+ | Filter-Id = acl out permit 212.199.47.226 255.255.255.255 | ||
+ | Filter-Id = acl out permit 212.199.47.228 255.255.255.255 | ||
+ | Filter-Id = acl out permit 8.8.8.8 255.255.255.255 | ||
+ | Filter-Id = acl out permit 91.207.158.83 255.255.255.255 | ||
+ | Filter-Id = acl out permit 0.0.0.0 0.0.0.0;udp;dst;53 | ||
+ | Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | # Filter-Id = acl in permit 0.0.0.0 0.0.0.0 | ||
+ | # Filter-Id = acl out permit 0.0.0.0 0.0.0.0 | ||
+ | # SG-Acl-Down-Mean-Rate = acl;4096 | ||
+ | # SG-Acl-Up-Mean-Rate = acl;4096 | ||
+ | SG-Next-Hop = 192.168.11.1 | ||
+ | SG-Remote-Filter-Redirect-Gw = 212.199.47.228 | ||
+ | SG-Personal-Site=http://www.nextelco.net/ | ||
+ | Framed-Protocol=PPP | ||
+ | SG-Service-Name = PPP_Blocked | ||
+ | |||
+ | |||
+ | # Multi service flow bridge CPE service definition (3 SFs) | ||
+ | <MULTI_SF> | ||
+ | Filter-Id = wiacl1 in permit 0.0.0.0 0.0.0.0;icmp | ||
+ | Filter-Id = wiacl1 out permit 0.0.0.0 0.0.0.0;icmp | ||
+ | SG-Wimax-Acl-Schedule-Type = wiacl1;up;UGS | ||
+ | SG-Acl-Down-Mean-Rate = wiacl1;128 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl1;128 | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = wiacl1;up;128000 | ||
+ | SG-Wimax-Acl-Unsolicited-Grant-Int = wiacl1;up;20 | ||
+ | SG-Wimax-Acl-Tolerated-Jitter = wiacl1;up;10 | ||
+ | SG-Wimax-Acl-Maximum-Latency = wiacl1;up;50 | ||
+ | Filter-Id = wiacl2 in permit 10.0.1.2 255.255.255.255 | ||
+ | Filter-Id = wiacl2 out permit 10.0.1.2 255.255.255.255 | ||
+ | SG-Wimax-Acl-Schedule-Type = wiacl2;up;rtPS | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = wiacl2;up;64000 | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = wiacl2;up;60 | ||
+ | SG-Wimax-Acl-Maximum-Latency=wiacl2;up;50 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl2;5000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl2;2500 | ||
+ | Filter-Id = wiacl3 in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl3 out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Wimax-Acl-Schedule-Type = wiacl3;up;nrtPS | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate=wiacl3;up;64000 | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int=wiacl3;up;60 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl3;5000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl3;2500 | ||
+ | SG-Node-Dynamic-Service = NIP_OPEN | ||
+ | SG-Node-Default-Service = NIP_OPEN | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = MULTI_SF | ||
+ | |||
+ | # Multi users behind bridge CPE service definition with BE scheduling (4 users) | ||
+ | <MULTI_USERS> | ||
+ | Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl;30000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl;3000 | ||
+ | SG-Node-Dynamic-Service = NIP_OPEN | ||
+ | SG-Node-Default-Service = NIP_OPEN | ||
+ | SG-Max-Allowed-Nodes = 4 | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = MULTI_USERS | ||
+ | |||
+ | # DHCP fixed IP address for router CPE (acting as NAT) with BE scheduling | ||
+ | # CPE-IP: 212.199.47.229 Mask:255.255.255.240 Gateway:212.199.47.229 DNS Pri:212.199.47.230 DNS Sec:8.8.8.8 | ||
+ | <CPE_NAT_FIX_IP> | ||
+ | Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl;30000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl;30000 | ||
+ | SG-Fixed-Ip-Address = 212.199.47.229/28 212.199.47.230 | ||
+ | SG-Lease-Time = 3600 | ||
+ | SG-Ip-Primary = 212.199.47.230 | ||
+ | SG-Ip-Secondary = 8.8.8.8 | ||
+ | SG-Service-Name = CPE_NAT_FIX_IP | ||
+ | |||
+ | # Static IP address for CPE (acting as NAT or bridge) CPE:212.199.47.229 with BE scheduling | ||
+ | <CPE_STATIC_IP> | ||
+ | Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl;30000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl;30000 | ||
+ | Framed-IP-Address = 212.199.47.229 | ||
+ | SG-Service-Name = CPE_STATIC_IP | ||
+ | |||
+ | # Static IP address for a station behind the CPE (station IP: 212.199.47.229) for CPE acting as bridge with BE scheduling | ||
+ | <CPE_PC_STATIC_IP> | ||
+ | Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = wiacl;30000 | ||
+ | SG-Acl-Up-Mean-Rate = wiacl;30000 | ||
+ | Token-Pool = cpe_pool | ||
+ | Framed-Route = 212.199.47.229/32 0.0.0.0 | ||
+ | SG-Service-Name = CPE_PC_STATIC_IP | ||
+ | |||
+ | # Camera behind bridged CPE RTPS scheduling type definition | ||
+ | # Camera static IP: 212.199.47.229 | ||
+ | <CPE_CAMERA> | ||
+ | Filter-Id = rtps in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = rtps out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Wimax-Acl-Schedule-Type = rtps;up;rtPS | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = rtps;up;256000 | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = rtps;up;60 | ||
+ | SG-Wimax-Acl-Maximum-Latency = rtps;up;50 | ||
+ | SG-Acl-Down-Mean-Rate = rtps;100 | ||
+ | SG-Acl-Up-Mean-Rate = rtps;1500 | ||
+ | Framed-Route = 212.199.47.229/32 0.0.0.0 | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = CPE_CAMERA | ||
+ | |||
+ | |||
+ | # Default user behind bridged CPE open service definition | ||
+ | <NIP_OPEN> | ||
+ | Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 | ||
+ | Token-Pool = user_pool | ||
+ | SG-Service-Name = NIP_OPEN | ||
+ | |||
+ | |||
+ | # | ||
+ | # Scheduling types' exmples definitions for bridged CPE (for NAT CPE define Token-Pool = user_pool) | ||
+ | # | ||
+ | |||
+ | #Basic Best Effort scheduling type definition | ||
+ | <CPE_BE> | ||
+ | Filter-Id = be in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = be out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Acl-Down-Mean-Rate = be;30000 | ||
+ | SG-Acl-Up-Mean-Rate = be;30000 | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = CPE_BE | ||
+ | |||
+ | #Basic NRTPS scheduling type definition | ||
+ | <CPE_NRTPS> | ||
+ | Filter-Id = nrtps in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = nrtps out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Wimax-Acl-Schedule-Type = nrtps;up;nrtPS | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = nrtps;up;64000 | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = nrtps;up;60 | ||
+ | SG-Acl-Down-Mean-Rate = nrtps;30000 | ||
+ | SG-Acl-Up-Mean-Rate = nrtps;1500 | ||
+ | SG-Node-Dynamic-Service = NIP_OPEN | ||
+ | SG-Node-Default-Service = NIP_OPEN | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = CPE_NRTPS | ||
+ | |||
+ | #Basic RTPS scheduling type definition | ||
+ | <CPE_RTPS> | ||
+ | Filter-Id = rtps in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = rtps out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Wimax-Acl-Schedule-Type = rtps;up;rtPS | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = rtps;up;64000 | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = rtps;up;60 | ||
+ | SG-Wimax-Acl-Maximum-Latency = rtps;up;50 | ||
+ | SG-Acl-Down-Mean-Rate = rtps;30000 | ||
+ | SG-Acl-Up-Mean-Rate = rtps;1500 | ||
+ | SG-Node-Dynamic-Service = NIP_OPEN | ||
+ | SG-Node-Default-Service = NIP_OPEN | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = CPE_RTPS | ||
+ | |||
+ | #Basic ERTPS scheduling type definition (good for VoIP phones) | ||
+ | <CPE_ERTPS> | ||
+ | Filter-Id = ertps in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = ertps out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Wimax-Acl-Schedule-Type = ertps;up;ErtPS | ||
+ | SG-Acl-Down-Mean-Rate = ertps;128 | ||
+ | SG-Acl-Up-Mean-Rate = ertps;128 | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = ertps;up;128000 | ||
+ | SG-Wimax-Acl-Unsolicited-Grant-Int = ertps;up;20 | ||
+ | SG-Wimax-Acl-Tolerated-Jitter = ertps;up;10 | ||
+ | SG-Wimax-Acl-Maximum-Latency = ertps;up;50 | ||
+ | SG-Node-Dynamic-Service = NIP_OPEN | ||
+ | SG-Node-Default-Service = NIP_OPEN | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = CPE_ERTPS | ||
+ | |||
+ | #Basic UGS scheduling type definition | ||
+ | <CPE_UGS> | ||
+ | Filter-Id = ugs in permit 0.0.0.0 0.0.0.0 | ||
+ | Filter-Id = ugs out permit 0.0.0.0 0.0.0.0 | ||
+ | SG-Wimax-Acl-Schedule-Type = ugs;up;UGS | ||
+ | SG-Acl-Down-Mean-Rate = ugs;30000 | ||
+ | SG-Acl-Up-Mean-Rate = ugs;1000 | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = ugs;up;1000000 | ||
+ | SG-Wimax-Acl-Unsolicited-Grant-Int = ugs;up;20 | ||
+ | SG-Wimax-Acl-Tolerated-Jitter = ugs;up;10 | ||
+ | SG-Wimax-Acl-Maximum-Latency = ugs;up;50 | ||
+ | SG-Node-Dynamic-Service = NIP_OPEN | ||
+ | SG-Node-Default-Service = NIP_OPEN | ||
+ | Token-Pool = cpe_pool | ||
+ | SG-Service-Name = CPE_UGS | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show internal services active | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show internal services active | ||
+ | <wimaxDS> | ||
+ | Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl;30000" | ||
+ | SG-Wimax-Acl-Schedule-Type = "wiacl;up;nrtPS" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl;up;64000" | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl;up;60" | ||
+ | SG-Node-Dynamic-Service = "NIP_OPEN" | ||
+ | SG-Node-Default-Service = "NIP_OPEN" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "wimaxDS" | ||
+ | |||
+ | <NIP_Bronze> | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "acl;1024" | ||
+ | SG-Acl-Up-Mean-Rate = "acl;192" | ||
+ | SG-Cos = "acl;2" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Timeout = 7200 | ||
+ | SG-Data-Quota = "500000000" | ||
+ | SG-Next-Service-Name = "NIP_Blocked" | ||
+ | SG-Service-Name = "NIP_Bronze" | ||
+ | |||
+ | <GUY_DEMO_SERVICE> | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "acl;1024" | ||
+ | SG-Acl-Up-Mean-Rate = "acl;128" | ||
+ | SG-Cos = "acl;4" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Timeout = 120 | ||
+ | SG-Data-Quota = "2000000000" | ||
+ | SG-Next-Service-Name = "NIP_Blocked" | ||
+ | SG-Service-Name = "GUY_DEMO_SERVICE" | ||
+ | |||
+ | <NIP_Platinium> | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "acl;2048" | ||
+ | SG-Acl-Up-Mean-Rate = "acl;256" | ||
+ | SG-Cos = "acl;2" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Timeout = 604800 | ||
+ | SG-Data-Quota = "8000000000" | ||
+ | SG-Next-Service-Name = "NIP_Blocked" | ||
+ | SG-Service-Name = "NIP_Platinium" | ||
+ | |||
+ | <PPP_Blocked> | ||
+ | Filter-Id = "acl out permit 212.199.47.226 255.255.255.255" | ||
+ | Filter-Id = "acl out permit 212.199.47.228 255.255.255.255" | ||
+ | Filter-Id = "acl out permit 8.8.8.8 255.255.255.255" | ||
+ | Filter-Id = "acl out permit 91.207.158.83 255.255.255.255" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0;udp;dst;53" | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Next-Hop = 192.168.11.1 | ||
+ | SG-Remote-Filter-Redirect-Gw = "212.199.47.228" | ||
+ | SG-Personal-Site = "http://www.nextelco.net/" | ||
+ | Framed-Protocol = PPP | ||
+ | SG-Service-Name = "PPP_Blocked" | ||
+ | |||
+ | <NIP_WALLED> | ||
+ | Filter-Id = "acl out permit 212.199.47.228 255.255.255.255" | ||
+ | Filter-Id = "acl out permit 192.168.11.4 255.255.255.255" | ||
+ | Filter-Id = "acl out permit 91.207.159.21 255.255.255.255" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0;udp;dst;53" | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Remote-Filter-Redirect-Gw = "212.199.47.228" | ||
+ | SG-Acl-Down-Mean-Rate = "acl;4096" | ||
+ | SG-Acl-Up-Mean-Rate = "acl;4096" | ||
+ | SG-Personal-Site = "http://www.nextelco.net:8657/nextt/web_authentication.html" | ||
+ | SG-Next-Hop = 192.168.11.1 | ||
+ | User-Name = "WALLED" | ||
+ | SG-Service-Name = "NIP_Blocked-4" | ||
+ | |||
+ | <NIP_Gold> | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "acl;1536" | ||
+ | SG-Acl-Up-Mean-Rate = "acl;192" | ||
+ | SG-Cos = "acl;3" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Timeout = 86400 | ||
+ | SG-Data-Quota = "5000000000" | ||
+ | SG-Next-Service-Name = "NIP_Blocked" | ||
+ | SG-Service-Name = "NIP_Gold" | ||
+ | |||
+ | <NIP_OPEN> | ||
+ | Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Name = "NIP_OPEN" | ||
+ | |||
+ | <CPE_ERTPS> | ||
+ | Filter-Id = "ertps in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "ertps out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Wimax-Acl-Schedule-Type = "ertps;up;ErtPS" | ||
+ | SG-Acl-Down-Mean-Rate = "ertps;128" | ||
+ | SG-Acl-Up-Mean-Rate = "ertps;128" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "ertps;up;128000" | ||
+ | SG-Wimax-Acl-Unsolicited-Grant-Int = "ertps;up;20" | ||
+ | SG-Wimax-Acl-Tolerated-Jitter = "ertps;up;10" | ||
+ | SG-Wimax-Acl-Maximum-Latency = "ertps;up;50" | ||
+ | SG-Node-Dynamic-Service = "NIP_OPEN" | ||
+ | SG-Node-Default-Service = "NIP_OPEN" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "CPE_ERTPS" | ||
+ | |||
+ | <CPE_RTPS> | ||
+ | Filter-Id = "rtps in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "rtps out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Wimax-Acl-Schedule-Type = "rtps;up;rtPS" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "rtps;up;64000" | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = "rtps;up;60" | ||
+ | SG-Wimax-Acl-Maximum-Latency = "rtps;up;50" | ||
+ | SG-Acl-Down-Mean-Rate = "rtps;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "rtps;1500" | ||
+ | SG-Node-Dynamic-Service = "NIP_OPEN" | ||
+ | SG-Node-Default-Service = "NIP_OPEN" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "CPE_RTPS" | ||
+ | |||
+ | <CPE_NRTPS> | ||
+ | Filter-Id = "nrtps in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "nrtps out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Wimax-Acl-Schedule-Type = "nrtps;up;nrtPS" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "nrtps;up;64000" | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = "nrtps;up;60" | ||
+ | SG-Acl-Down-Mean-Rate = "nrtps;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "nrtps;1500" | ||
+ | SG-Node-Dynamic-Service = "NIP_OPEN" | ||
+ | SG-Node-Default-Service = "NIP_OPEN" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "CPE_NRTPS" | ||
+ | |||
+ | <CPE_BE> | ||
+ | Filter-Id = "be in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "be out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "be;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "be;30000" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "CPE_BE" | ||
+ | |||
+ | <wimaxDS_NAT_NRTPS> | ||
+ | Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl;30000" | ||
+ | SG-Wimax-Acl-Schedule-Type = "wiacl;up;nrtPS" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl;up;64000" | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl;up;60" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Name = "wimaxDS_NAT_NRTPS" | ||
+ | |||
+ | <CPE_UGS> | ||
+ | Filter-Id = "ugs in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "ugs out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Wimax-Acl-Schedule-Type = "ugs;up;UGS" | ||
+ | SG-Acl-Down-Mean-Rate = "ugs;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "ugs;1000" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "ugs;up;1000000" | ||
+ | SG-Wimax-Acl-Unsolicited-Grant-Int = "ugs;up;20" | ||
+ | SG-Wimax-Acl-Tolerated-Jitter = "ugs;up;10" | ||
+ | SG-Wimax-Acl-Maximum-Latency = "ugs;up;50" | ||
+ | SG-Node-Dynamic-Service = "NIP_OPEN" | ||
+ | SG-Node-Default-Service = "NIP_OPEN" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "CPE_UGS" | ||
+ | |||
+ | <CPE_CAMERA> | ||
+ | Filter-Id = "rtps in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "rtps out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Wimax-Acl-Schedule-Type = "rtps;up;rtPS" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "rtps;up;256000" | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = "rtps;up;60" | ||
+ | SG-Wimax-Acl-Maximum-Latency = "rtps;up;50" | ||
+ | SG-Acl-Down-Mean-Rate = "rtps;100" | ||
+ | SG-Acl-Up-Mean-Rate = "rtps;1500" | ||
+ | Framed-Route = "212.199.47.229/32 0.0.0.0" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "CPE_CAMERA" | ||
+ | |||
+ | <NIP_Diamond> | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "acl;4096" | ||
+ | SG-Acl-Up-Mean-Rate = "acl;320" | ||
+ | SG-Cos = "acl;1" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Timeout = 2592000 | ||
+ | SG-Data-Quota = "20000000000" | ||
+ | SG-Next-Service-Name = "NIP_Blocked" | ||
+ | SG-Service-Name = "NIP_Diamond" | ||
+ | |||
+ | <MULTI_USERS> | ||
+ | Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl;3000" | ||
+ | SG-Node-Dynamic-Service = "NIP_OPEN" | ||
+ | SG-Node-Default-Service = "NIP_OPEN" | ||
+ | SG-Max-Allowed-Nodes = 4 | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "MULTI_USERS" | ||
+ | |||
+ | <CPE_PC_STATIC_IP> | ||
+ | Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl;30000" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | Framed-Route = "212.199.47.229/32 0.0.0.0" | ||
+ | SG-Service-Name = "CPE_PC_STATIC_IP" | ||
+ | |||
+ | <CPE_STATIC_IP> | ||
+ | Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl;30000" | ||
+ | Framed-IP-Address = 212.199.47.229 | ||
+ | SG-Service-Name = "CPE_STATIC_IP" | ||
+ | |||
+ | <CPE_NAT_FIX_IP> | ||
+ | Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl;30000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl;30000" | ||
+ | SG-Fixed-Ip-Address = "212.199.47.229/28 212.199.47.230" | ||
+ | SG-Lease-Time = 3600 | ||
+ | SG-Ip-Primary = 212.199.47.230 | ||
+ | SG-Ip-Secondary = 8.8.8.8 | ||
+ | SG-Service-Name = "CPE_NAT_FIX_IP" | ||
+ | |||
+ | <NIP_Silver> | ||
+ | Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Acl-Down-Mean-Rate = "acl;1024" | ||
+ | SG-Acl-Up-Mean-Rate = "acl;128" | ||
+ | SG-Cos = "acl;4" | ||
+ | Token-Pool = "user_pool" | ||
+ | SG-Service-Timeout = 28800 | ||
+ | SG-Data-Quota = "2000000000" | ||
+ | SG-Next-Service-Name = "NIP_Blocked" | ||
+ | SG-Service-Name = "NIP_Silver" | ||
+ | |||
+ | <MULTI_SF> | ||
+ | Filter-Id = "wiacl1 in permit 0.0.0.0 0.0.0.0;icmp" | ||
+ | Filter-Id = "wiacl1 out permit 0.0.0.0 0.0.0.0;icmp" | ||
+ | SG-Wimax-Acl-Schedule-Type = "wiacl1;up;UGS" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl1;128" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl1;128" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl1;up;128000" | ||
+ | SG-Wimax-Acl-Unsolicited-Grant-Int = "wiacl1;up;20" | ||
+ | SG-Wimax-Acl-Tolerated-Jitter = "wiacl1;up;10" | ||
+ | SG-Wimax-Acl-Maximum-Latency = "wiacl1;up;50" | ||
+ | Filter-Id = "wiacl2 in permit 10.0.1.2 255.255.255.255" | ||
+ | Filter-Id = "wiacl2 out permit 10.0.1.2 255.255.255.255" | ||
+ | SG-Wimax-Acl-Schedule-Type = "wiacl2;up;rtPS" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl2;up;64000" | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl2;up;60" | ||
+ | SG-Wimax-Acl-Maximum-Latency = "wiacl2;up;50" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl2;5000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl2;2500" | ||
+ | Filter-Id = "wiacl3 in permit 0.0.0.0 0.0.0.0" | ||
+ | Filter-Id = "wiacl3 out permit 0.0.0.0 0.0.0.0" | ||
+ | SG-Wimax-Acl-Schedule-Type = "wiacl3;up;nrtPS" | ||
+ | SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl3;up;64000" | ||
+ | SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl3;up;60" | ||
+ | SG-Acl-Down-Mean-Rate = "wiacl3;5000" | ||
+ | SG-Acl-Up-Mean-Rate = "wiacl3;2500" | ||
+ | SG-Node-Dynamic-Service = "NIP_OPEN" | ||
+ | SG-Node-Default-Service = "NIP_OPEN" | ||
+ | Token-Pool = "cpe_pool" | ||
+ | SG-Service-Name = "MULTI_SF" | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show tunnel lns | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show tunnel lns | ||
+ | |||
+ | Tunnel IP Tunnel Tunnel Session | ||
+ | Endpoint ID ID | ||
+ | _______________ ____________ ______ _______ | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show tunnel lac | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show tunnel lac | ||
+ | |||
+ | Tunnel IP Tunnel Tunnel Session | ||
+ | Endpoint ID ID | ||
+ | _______________ ____________ ______ _______ | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show ip-tunnel | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show ip-tunnel | ||
+ | |||
+ | Tunnel IP Tunnel Total Tunnel Tunnel Tunnel Counter | ||
+ | Endpoint Sessions Status Type Down/Sense | ||
+ | _______________ ________ ________ _______ ________ ____________________ | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show availability | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show availability | ||
+ | |||
+ | Id Module Redundancy Trigger Status | ||
+ | Triggering ID | ||
+ | Module | ||
+ | ____ _________ ___________ _______ _________ | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show asn map | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show asn map | ||
+ | |||
+ | BSIP BSID ASN-GW IP | ||
+ | ______________ ______________ ______________ | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show asn bs | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show asn bs | ||
+ | |||
+ | BSIP BSID Name Users Status Remarks | ||
+ | ______________ ______________ _____________ ______ _________ ______________ | ||
+ | |||
+ | Total number of BS: 0 | ||
+ | BS up: 0 | ||
+ | BS down: 0 | ||
+ | BS unknown: 0 | ||
+ | </div> | ||
+ | |||
+ | |||
+ | CNOC> show asn ho-statistics | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | CNOC> show asn ho-statistics | ||
+ | |||
+ | Target BSIP Serving BSIP Success Fail | ||
+ | _______________ _______________ _______ _______ | ||
+ | </div> | ||
+ | </div> | ||
+ | |||
+ | |||
+ | ==== RDS ==== | ||
+ | This is the RDS configuration. In order to see all the ''show ...'' commands click on ''Expand'' button. | ||
+ | |||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | RDSHost> show configuration | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | RDSHost> show configuration | ||
+ | |||
+ | #version V4.1.10.0_RDS saved at : 2013/09/17 21:22:00 | ||
− | |||
− | |||
− | |||
default-redirection-site http://91.207.159.21:8657/nextt/web_authentication.html | default-redirection-site http://91.207.159.21:8657/nextt/web_authentication.html | ||
hostname RDSHost | hostname RDSHost | ||
Line 47: | Line 1,073: | ||
snmp-server community get public | snmp-server community get public | ||
access-list snmp-permit 0.0.0.0 0.0.0.0 | access-list snmp-permit 0.0.0.0 0.0.0.0 | ||
+ | </div> | ||
+ | RDSHost> show route | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
RDSHost> show route | RDSHost> show route | ||
RDS IP routing table | RDS IP routing table | ||
Line 55: | Line 1,085: | ||
192.168.11.0 0.0.0.0 255.255.255.0 | 192.168.11.0 0.0.0.0 255.255.255.0 | ||
127.0.0.0 0.0.0.0 255.0.0.0 | 127.0.0.0 0.0.0.0 255.0.0.0 | ||
− | 0.0.0.0 192.168.11.1 0.0.0.0 | + | 0.0.0.0 192.168.11.1 0.0.0.0 |
+ | </div> | ||
+ | |||
+ | |||
+ | RDSHost> show system | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
+ | RDSHost> show system | ||
+ | Up time: 2 Days 22 Hours, 14 Minutes | ||
+ | Average Http hits per second: 0 | ||
+ | Accumulated Http hits on port 80: 0 | ||
+ | Accumulated Http hits on EDS port: 0 | ||
+ | Cpu usage: 0.01 % | ||
+ | </div> | ||
+ | RDSHost> show certificate | ||
+ | <div class="mw-collapsible mw-collapsed"> | ||
+ | | ||
RDSHost> show certificate | RDSHost> show certificate | ||
Certificate: | Certificate: | ||
− | + | Data: | |
− | + | Version: 3 (0x2) | |
− | + | Serial Number: 0 (0x0) | |
− | + | Signature Algorithm: md5WithRSAEncryption | |
− | + | Issuer: C=IL, ST=Herzeliya, L=Herzeliya, O=ADC, OU=ADC-UNIT, CN=www.sg1-rds.com/Email=raviv.zeev@g-connect.co.il | |
− | + | Validity | |
− | + | Not Before: Mar 27 11:07:03 2007 GMT | |
− | + | Not After : May 5 11:07:03 2011 GMT | |
− | + | Subject: C=IL, ST=Herzeliya, L=Herzeliya, O=ADC, OU=ADC-UNIT, CN=www.sg1-rds.com/Email=raviv.zeev@g-connect.co.il | |
− | + | Subject Public Key Info: | |
− | + | Public Key Algorithm: rsaEncryption | |
− | + | RSA Public Key: (1024 bit) | |
− | + | Modulus (1024 bit): | |
− | + | 00:c7:68:2d:73:5e:8b:03:3a:86:21:6a:74:21:67: | |
− | + | ec:ab:32:f3:9c:69:8b:63:16:74:76:37:0f:fb:e1: | |
− | + | 19:82:bf:56:7f:ca:7d:5a:fe:38:ba:db:91:31:35: | |
− | + | 25:14:b5:be:d1:b3:2f:b1:0d:6f:06:65:29:bf:8a: | |
− | + | 9e:e2:6b:12:73:71:bf:0b:10:24:c3:da:1f:c5:11: | |
− | + | df:7f:78:8c:ff:a2:54:9e:f8:a5:e0:51:a1:81:44: | |
− | + | 62:79:e4:9c:b3:49:1f:79:5c:0f:97:6f:de:57:66: | |
− | + | 33:92:8e:57:a0:af:37:7f:c4:94:88:11:f7:2c:3e: | |
− | + | c4:a3:4d:a6:11:61:27:b8:c7 | |
− | + | Exponent: 65537 (0x10001) | |
− | + | X509v3 extensions: | |
− | + | X509v3 Subject Key Identifier: | |
− | + | B8:22:3A:CC:14:40:CB:1C:66:10:79:20:44:15:83:29:81:65:20:FE | |
− | + | X509v3 Authority Key Identifier: | |
− | + | keyid:B8:22:3A:CC:14:40:CB:1C:66:10:79:20:44:15:83:29:81:65:20:FE | |
− | + | DirName:/C=IL/ST=Herzeliya/L=Herzeliya/O=ADC/OU=ADC-UNIT/CN=www.sg1-rds.com/Email=raviv.zeev@g-connect.co.il | |
− | + | serial:00 | |
− | + | X509v3 Basic Constraints: | |
− | + | CA:TRUE | |
− | + | Signature Algorithm: md5WithRSAEncryption | |
− | + | ae:96:ef:cd:e3:a1:a1:c9:c6:75:d3:50:c2:8b:08:b1:39:ae: | |
− | + | 4a:15:26:52:ec:ab:63:9f:ee:21:72:47:13:24:0f:cd:da:bb: | |
− | + | 31:7f:7f:7a:1d:d1:0d:5d:f2:19:b3:ef:cc:7c:67:80:4b:a1: | |
− | + | 99:68:cc:4d:7e:62:07:c0:7b:91:f6:0f:b4:bb:d3:c7:4f:ae: | |
− | + | d2:4b:f7:51:ec:0c:2d:52:b0:6d:33:f7:d7:62:d6:1f:b4:e0: | |
− | + | ef:fe:4d:2d:b7:a7:95:14:b8:29:2e:de:eb:4e:ef:d3:bb:af: | |
− | + | 6a:25:6f:96:a3:05:15:72:0f:60:57:45:1a:d7:31:e7:9a:e0: | |
− | + | d0:e2 | |
+ | </div> | ||
+ | </div> | ||
+ | | ||
+ | | ||
+ | |||
+ | == Redirection Server == | ||
+ | |||
+ | The Redirection Server is an FCS’s product that redirects all peers’ Http requests to their personal-sites as pre-defined in the Radius server. The RDS uses FCS’s EDS (Enhanced Dynamic Services) policy to redirect the connected peers and it actually acts as a sophisticated SSC (Service Creation Card). | ||
+ | |||
+ | The RDS is usually located at the ISP/Carrier network but it is not mandatory. When the RDS is located outside the access subnet the ASN-SG (Access Service Network - Service Gateway) uses an IP in IP tunnel to transfer the redirected data. | ||
+ | |||
+ | |||
+ | |||
+ | |||
Return to [[Nextelco:Technology|Technology]] page. | Return to [[Nextelco:Technology|Technology]] page. |
Latest revision as of 15:10, 31 August 2014
The Runcom CNOC available in Norway is composed by two components, each one installed in a different front slot.
- In the first slot there is the SCC-GEth (Service Creation Card - Gigabit Ethernet) module.
- In the second slot there is the RDS (Redirection Server) module.
The following figure shows how is the CNOC physically.
Getting access
As it is shown in the previous figure, both components or modules, have several ethernet connections as well as a console ports. Console ports are intended to be the first way of getting access, which requires local presence, however none of the components is answering by this port.
The default configuration allows to get access through console ports, however, these CNOC has been already manipulated and that is why console ports are not responding.
The second option to get access is using ethernet ports and by telnet or ssh. For that purpose is necessary to now which is the IP address of the port. Since CNOC was already configured that is not an straight forward action. To solve that issue there are two possible solutions:
- With a tool such as NMAP (Network exploration tool), which can be used to analyze all possible IP addresses and try to find to which ones does the CNOC answer
- If the CNOC provides an IP address, try to use Wireshark (Packet analyzer tool) to figure out which is the IP address of the DHCP server.
During the first access the second option was used. That solution provide us the IP address of the DHCP server, which in this case is 192.168.0.3. Unfortunately, not telnet neither ssh were able to get access.
After scanning several IP ranges and trying both telnet and ssh, finally we got access.
- To connect to the first module, the SCC-GEth, it is necessary to connect to the LAN 1/1 port and use telnet to 192.168.11.3 IP address. Then we need the default credentials to get access.
telnet 192.168.11.3
- To connect to the second module, the RDS, it is necessary to connect to the LAN 0/3 port and use ssh to 192.168.11.4 IP address.
ssh te@192.168.11.4
Hardware & Software specifications
These are hardware and software specifications of the SCC module:
CNOC> show version hardware Module Num Part No. Serial No. Slot --------- --- ---------------- ---------- ---- Backplane 1 710-200-0 Rev 0 0 SCC-GEth 2 650-045 Rev 2 906771 1
CNOC> show version software Module Num Application -------- --- ------------------------- SCC-GEth 1 13.0 Dec 11 2012 16:45:56
CNOC> show version pack Pack Image Name: V130_7055_PM Version: V13.0 December 11 2012 17:19:28 Size: 1951170 byte Pack Components: Main Image Version: 13.0 Dec 11 2012 16:45:56 Main Description: Service Creation File GOS.ini Image Version: V13.0 File Description: INI for GOS File V130.mib.zip Image Version: version File Description: SCC MIB
These are hardware and software specifications of the RDS module:
RDSHost> show version hardware Module Num Part No. Serial No. Version ------ --- -------- ---------- ---------------- RDS 1 780-002 D0C9BA9DE8 V2.0_RDS_1866.717
RDSHost> show version software Module Num Version ------ --- ------------- RDS 1 V4.1.10.0_RDS Kernel 2 2.4.32
RDSHost> show version pack Pack Image Name: RDS_4_1_10 Version: V4.1.10.0_RDS_pack Size: 0 Pack Components: Kernel Version: 2.4.32 EDS Version: V4.1.10.0_RDS
Predefined configuration
This section shows all the possible configuration of both modules, components or cards. The first card is the SCC-GEth and the second one the RDS. All configuration files are collapsed by default due to their length. In order to show the files click on Expand button..
SCC-GEth
This is the SCC-GEth card configuration. In order to see all the show ... commands click on Expand button.
CNOC> show configuration
CNOC> show configuration # version: 13.0 Dec 11 2012 16:45:56 interface loopback 1 10.0.2.1 255.255.255.255 interface loopback 2 10.0.3.1 255.255.255.255 interface loopback 3 192.168.101.1 255.255.255.255 interface ethernet 0\1 77.40.168.13 255.255.255.128 auto interface ethernet 1\1 192.168.11.3 255.255.255.0 auto interface ethernet 1\2 192.168.0.3 255.255.255.0 auto mtu 1544 password viewer Tw)wtx- password operator Tw)wtx- password superuser WoH password technician Koz!# password pre-authentication +k(~#i+^#43\,6 def-service-auth ppp-auto authentication user internal authentication user name ANY service NIP_WALLED authentication user name bronze password bronze service NIP_Bronze authentication user name gold password gold service NIP_Gold authentication user name platinium password platinium service NIP_Platinium authentication user name botoure2 password botoure authentication user name botoure3 password botoure3 service NIP_Bronze authentication user name botoure4 password botoure4 service NIP_Gold radius-server key ggcon access-list snmp-permit 0.0.0.0 0.0.0.0 access-list eds-permit 91.207.159.21 255.255.255.255 access-list eds-permit 192.168.11.4 255.255.255.255 access-list eds-permit 212.199.47.226 255.255.255.255 access-list eds-permit 212.199.47.228 255.255.255.255 access-list native-ip 10.0.3.0 255.255.255.0 access-list native-ip 10.0.4.0 255.255.255.0 access-list native-ip 192.168.101.0 255.255.255.0 snmp-server community get T}y||g snmp-server community set T}y||g tunnel-server host 80.179.16.50 mask 255.255.255.255 router id 192.168.0.3 hostname CNOC banner BannerString session-timeout 64000 idle-timeout 1800 service cache off service internal auth local native-ip def-service-auth NIP_OPEN native-ip enable interface ethernet 1\2 telnet timeout 60 asn enable asn def-service-auth none def-service-name wimaxDS ip domain-name RN-ASN-SG ip primary-name-server 8.8.8.8 ip route 192.168.101.253 255.255.255.255 0.0.0.0 ethernet 1\ 2 ip route 212.199.47.228 255.255.255.255 77.40.168.1 ethernet 0\ 1 ip route nip 192.168.101.128 255.255.255.192 192.168.0.1 ip route nip 192.168.101.192 255.255.255.224 192.168.0.1 ip default-gateway 192.168.11.1 ip tcp adjust-mss on ip dhcp relay server interface default 0\0\0 1 127.0.0.1 source-interface default ip dhcp local-pool bs_pool 192.168.0.33 192.168.0.46 255.255.255.0 192.168.0.3 ip dhcp local-pool cpe_pool 10.0.2.2 10.0.2.254 255.255.255.0 10.0.2.1 ip forward debug watchdog-TimeValue 600 error-level default 3 output-device console event-level default 3 output-device console event-level module ICMP max 5 sysLog-server-ip 192.168.1.1 resource-watchdog mode watch-restart timeout 360
CNOC> show dhcp ip-pool
CNOC> show dhcp ip-pool Pool Name Used IPs Free IPs Status __________ ________ ________ ______ bs_pool 0 14 active cpe_pool 0 253 active
CNOC> show ethernet
CNOC> show ethernet Interface Slot 0 Port 1 IF 1506 is up, line protocol is down Hardware address is 00203802495A Internet address is 77.40.168.13 Mask is 255.255.255.128 Gateway IP address is 192.168.11.1 Duplex mode is forced to half-duplex Ethernet speed is 10 Mbps MTU 1500 bytes, BW 100 Mbps 8 packets input, 704 bytes Received 8 broadcast 0 input errors, 0 runts, 0 giants, 0 CRC Input frame discard = 0 Assign Rx buffers failure = 0 Free Rx buffers = 2384 3 packets output, 192 bytes 0 output errors, 0 output late collisions, 0 retry 0 re-transmission limit Output discards = 0 Redundancy status: redundancy is not configured Interface Slot 1 Port 1 IF 1507 is up, line protocol is up Hardware address is 00D0C9B9E42C Internet address is 192.168.11.3 Mask is 255.255.255.0 Gateway IP address is 192.168.11.1 Duplex mode sensed by auto-negotiation is full-duplex Ethernet speed is 100 Mbps MTU 1500 bytes, BW 100 Mbps 3048 packets input, 258857 bytes Received 980 broadcast 0 input errors, 0 runts, 0 giants, 0 non-octet, 0 CRC Input frame discard = 0 Assign Rx buffers failure = 0 Free Rx buffers = 2392 3391 packets output, 353826 bytes 0 output errors, 0 output late collisions, 0 deferrals, 0 retry 0 re-transmission limit, 0 carrier sense loss Output discards = 0 Redundancy status: redundancy is not configured Interface Slot 1 Port 2 IF 1508 is up, line protocol is down Hardware address is 00D0C9B9E42D Internet address is 192.168.0.3 Mask is 255.255.255.0 Gateway IP address is 192.168.11.1 Duplex mode is forced to half-duplex Ethernet speed is 10 Mbps MTU 1544 bytes, BW 100 Mbps 1 packets input, 64 bytes Received 1 broadcast 0 input errors, 0 runts, 0 giants, 0 non-octet, 0 CRC Input frame discard = 0 Assign Rx buffers failure = 0 Free Rx buffers = 2392 1 packets output, 64 bytes 0 output errors, 0 output late collisions, 0 deferrals, 0 retry 0 re-transmission limit, 0 carrier sense loss Output discards = 0 Redundancy status: redundancy is not configured
CNOC> show port ethernet
CNOC> show port ethernet Slot Port Status Max Capacity Type ____ ____ __________ ____________ ______ 0 1 down 1000M copper 0 2 no-conf 1000M copper 0 3 no-conf 1000M copper 1 1 up 1000M copper 1 2 down 1000M copper
CNOC> show users
CNOC> show users Line Line User User Name IP Address Duration Calling Type Type dd:hh:mm:ss Number ____ ____ ____ __________ __________ ___________ _______ Total number of Network connected lines: 0 ANet (Analog source) lines: 0, INet (ISDN source) lines: 0 Eth (Ethernet source) lines: 0 PPP (PPP source) lines: 0 Total number of Framed users: 0 PPP users: 0, MLP users: 0 Total number of tunnel switch users: 0 Total number of native IP users: 0 NIPP (radius-proxy triggered) users: 0 NIPD (dhcp-proxy triggered) users: 0 NIPI (ip triggered) users: 0 NIPR (Roamed) users: 0 NIPW (Wimax) users: 0
CNOC> show ip-route
CNOC> show ip-route Network NetMask Gateway Interface Address Address ___________ _____________ ___________ __________________ 0.0.0.0 0.0.0.0 192.168.11.1 Ethernet 1\1 77.40.168.13 255.255.255.128 * Ethernet 0\1 192.168.0.3 255.255.255.0 * Ethernet 1\2 192.168.11.3 255.255.255.0 * Ethernet 1\1 192.168.101.253 255.255.255.255 * Ethernet 1\2 212.199.47.228 255.255.255.255 77.40.168.1 Ethernet 0\1 --- Native IP --- 192.168.101.128 255.255.255.192 192.168.0.1 192.168.101.192 255.255.255.224 192.168.0.1
CNOC> show telnet-users
CNOC> show telnet-users Number User Level Duration Source ______ __________ ________ ______ 1 Technician 00:00:58:57 Network
CNOC> show system
CNOC> show system Up-time: 2 Days, 19 Hours, 23 Minutes, 27 Seconds Time: 19:23:49 03-01-1998 Baud rate: 38400 bit/s Temperature: 34 degrees Celsius Total number of network incoming calls: 0 Total number of network connected calls: 0 Current number of Network connected lines: 0 ANet (Analog source) lines: 0, INet (ISDN source) lines: 0 Eth (Ethernet source) lines: 0 Current number of PPP (PPP source) lines: 0 Current number of connected Framed users: 0 PPP users: 0, MLP users: 0 Current number of connected native IP users: 0 NIPI users: 0, NIPD users: 0 NIPP users: 0, NIPR users: 0 NIPW users: 0
CNOC> show license
CNOC> show license [CREATION] DATE=January 06 2013 11:02:31 [VERSION] MAJOR=13 [SN] SNSOURCE=1 SNNUM=1 SN1=906771 [MAGIC] Magic String=C000000067 [OPTIONS] Allow Maximum 500 Users=on Service Creation [790-003]=on ASN [790-019]=on Pre Paid [792-002]=on Bandwidth Control [792-001]=on Hierarchical Bandwidth Control [792-015]=off Native IP [792-007]=on Native IP Roaming [792-014]=off Dynamic IP Changing [792-008]=off Application Awareness [792-013]=off Smart Client [792-017]=off Radius Plus [792-018]=off Auth-Internal [792-019]=on
CNOC> show internal services stored
CNOC> show internal services stored # # CNOC default system services V13.0T1.034 and on # # Common WiMAX CPE service definition with maximum bandwidth for bridge type CPE with NRTPS <GUY_DEMO_SERVICE> Filter-Id = acl in permit 0.0.0.0 0.0.0.0 Filter-Id = acl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = acl;1024 SG-Acl-Up-Mean-Rate = acl;128 SG-Cos=acl;4 Token-Pool = user_pool SG-Service-Timeout = 120 SG-Data-Quota = 2000000000 SG-Next-Service-Name = NIP_Blocked SG-Service-Name = GUY_DEMO_SERVICE <wimaxDS> Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = wiacl;30000 SG-Acl-Up-Mean-Rate = wiacl;30000 SG-Wimax-Acl-Schedule-Type = wiacl;up;nrtPS SG-Wimax-Acl-Min-Reserved-Traffic-Rate=wiacl;up;64000 SG-Wimax-Acl-Unsolicited-Polling-Int=wiacl;up;60 SG-Node-Dynamic-Service = NIP_OPEN SG-Node-Default-Service = NIP_OPEN Token-Pool = cpe_pool SG-Service-Name = wimaxDS # Common WiMAX CPE service definition for router type CPE with NRTPS <wimaxDS_NAT_NRTPS> Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = wiacl;30000 SG-Acl-Up-Mean-Rate = wiacl;30000 SG-Wimax-Acl-Schedule-Type = wiacl;up;nrtPS SG-Wimax-Acl-Min-Reserved-Traffic-Rate=wiacl;up;64000 SG-Wimax-Acl-Unsolicited-Polling-Int=wiacl;up;60 Token-Pool = user_pool SG-Service-Name = wimaxDS_NAT_NRTPS <NIP_Bronze> Filter-Id = acl in permit 0.0.0.0 0.0.0.0 Filter-Id = acl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = acl;1024 SG-Acl-Up-Mean-Rate = acl;192 SG-Cos=acl;2 Token-Pool = user_pool SG-Service-Timeout = 7200 SG-Data-Quota = 500000000 SG-Next-Service-Name = NIP_Blocked SG-Service-Name = NIP_Bronze <NIP_Silver> Filter-Id = acl in permit 0.0.0.0 0.0.0.0 Filter-Id = acl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = acl;1024 SG-Acl-Up-Mean-Rate = acl;128 SG-Cos=acl;4 Token-Pool = user_pool SG-Service-Timeout = 28800 SG-Data-Quota = 2000000000 SG-Next-Service-Name = NIP_Blocked SG-Service-Name = NIP_Silver <NIP_Gold> Filter-Id = acl in permit 0.0.0.0 0.0.0.0 Filter-Id = acl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = acl;1536 SG-Acl-Up-Mean-Rate = acl;192 SG-Cos=acl;3 Token-Pool = user_pool SG-Service-Timeout = 86400 SG-Data-Quota = 5000000000 SG-Next-Service-Name = NIP_Blocked SG-Service-Name = NIP_Gold <NIP_Platinium> Filter-Id = acl in permit 0.0.0.0 0.0.0.0 Filter-Id = acl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = acl;2048 SG-Acl-Up-Mean-Rate = acl;256 SG-Cos=acl;2 Token-Pool = user_pool SG-Service-Timeout = 604800 SG-Data-Quota = 8000000000 SG-Next-Service-Name = NIP_Blocked SG-Service-Name = NIP_Platinium <NIP_Diamond> Filter-Id = acl in permit 0.0.0.0 0.0.0.0 Filter-Id = acl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = acl;4096 SG-Acl-Up-Mean-Rate = acl;320 SG-Cos=acl;1 Token-Pool = user_pool SG-Service-Timeout = 2592000 SG-Data-Quota = 20000000000 SG-Next-Service-Name = NIP_Blocked SG-Service-Name = NIP_Diamond <NIP_WALLED> Filter-Id = acl out permit 212.199.47.228 255.255.255.255 Filter-Id = acl out permit 192.168.11.4 255.255.255.255 Filter-Id = acl out permit 91.207.159.21 255.255.255.255 Filter-Id = acl out permit 0.0.0.0 0.0.0.0;udp;dst;53 Filter-Id = acl in permit 0.0.0.0 0.0.0.0 SG-Remote-Filter-Redirect-Gw = 212.199.47.228 SG-Acl-Down-Mean-Rate = acl;4096 SG-Acl-Up-Mean-Rate = acl;4096 SG-Personal-Site=http://www.nextelco.net:8657/nextt/web_authentication.html SG-Next-Hop = 192.168.11.1 User-Name = WALLED SG-Service-Name = NIP_Blocked-4 <PPP_Blocked> Filter-Id = acl out permit 212.199.47.226 255.255.255.255 Filter-Id = acl out permit 212.199.47.228 255.255.255.255 Filter-Id = acl out permit 8.8.8.8 255.255.255.255 Filter-Id = acl out permit 91.207.158.83 255.255.255.255 Filter-Id = acl out permit 0.0.0.0 0.0.0.0;udp;dst;53 Filter-Id = acl in permit 0.0.0.0 0.0.0.0 # Filter-Id = acl in permit 0.0.0.0 0.0.0.0 # Filter-Id = acl out permit 0.0.0.0 0.0.0.0 # SG-Acl-Down-Mean-Rate = acl;4096 # SG-Acl-Up-Mean-Rate = acl;4096 SG-Next-Hop = 192.168.11.1 SG-Remote-Filter-Redirect-Gw = 212.199.47.228 SG-Personal-Site=http://www.nextelco.net/ Framed-Protocol=PPP SG-Service-Name = PPP_Blocked # Multi service flow bridge CPE service definition (3 SFs) <MULTI_SF> Filter-Id = wiacl1 in permit 0.0.0.0 0.0.0.0;icmp Filter-Id = wiacl1 out permit 0.0.0.0 0.0.0.0;icmp SG-Wimax-Acl-Schedule-Type = wiacl1;up;UGS SG-Acl-Down-Mean-Rate = wiacl1;128 SG-Acl-Up-Mean-Rate = wiacl1;128 SG-Wimax-Acl-Min-Reserved-Traffic-Rate = wiacl1;up;128000 SG-Wimax-Acl-Unsolicited-Grant-Int = wiacl1;up;20 SG-Wimax-Acl-Tolerated-Jitter = wiacl1;up;10 SG-Wimax-Acl-Maximum-Latency = wiacl1;up;50 Filter-Id = wiacl2 in permit 10.0.1.2 255.255.255.255 Filter-Id = wiacl2 out permit 10.0.1.2 255.255.255.255 SG-Wimax-Acl-Schedule-Type = wiacl2;up;rtPS SG-Wimax-Acl-Min-Reserved-Traffic-Rate = wiacl2;up;64000 SG-Wimax-Acl-Unsolicited-Polling-Int = wiacl2;up;60 SG-Wimax-Acl-Maximum-Latency=wiacl2;up;50 SG-Acl-Down-Mean-Rate = wiacl2;5000 SG-Acl-Up-Mean-Rate = wiacl2;2500 Filter-Id = wiacl3 in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl3 out permit 0.0.0.0 0.0.0.0 SG-Wimax-Acl-Schedule-Type = wiacl3;up;nrtPS SG-Wimax-Acl-Min-Reserved-Traffic-Rate=wiacl3;up;64000 SG-Wimax-Acl-Unsolicited-Polling-Int=wiacl3;up;60 SG-Acl-Down-Mean-Rate = wiacl3;5000 SG-Acl-Up-Mean-Rate = wiacl3;2500 SG-Node-Dynamic-Service = NIP_OPEN SG-Node-Default-Service = NIP_OPEN Token-Pool = cpe_pool SG-Service-Name = MULTI_SF # Multi users behind bridge CPE service definition with BE scheduling (4 users) <MULTI_USERS> Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = wiacl;30000 SG-Acl-Up-Mean-Rate = wiacl;3000 SG-Node-Dynamic-Service = NIP_OPEN SG-Node-Default-Service = NIP_OPEN SG-Max-Allowed-Nodes = 4 Token-Pool = cpe_pool SG-Service-Name = MULTI_USERS # DHCP fixed IP address for router CPE (acting as NAT) with BE scheduling # CPE-IP: 212.199.47.229 Mask:255.255.255.240 Gateway:212.199.47.229 DNS Pri:212.199.47.230 DNS Sec:8.8.8.8 <CPE_NAT_FIX_IP> Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = wiacl;30000 SG-Acl-Up-Mean-Rate = wiacl;30000 SG-Fixed-Ip-Address = 212.199.47.229/28 212.199.47.230 SG-Lease-Time = 3600 SG-Ip-Primary = 212.199.47.230 SG-Ip-Secondary = 8.8.8.8 SG-Service-Name = CPE_NAT_FIX_IP # Static IP address for CPE (acting as NAT or bridge) CPE:212.199.47.229 with BE scheduling <CPE_STATIC_IP> Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = wiacl;30000 SG-Acl-Up-Mean-Rate = wiacl;30000 Framed-IP-Address = 212.199.47.229 SG-Service-Name = CPE_STATIC_IP # Static IP address for a station behind the CPE (station IP: 212.199.47.229) for CPE acting as bridge with BE scheduling <CPE_PC_STATIC_IP> Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = wiacl;30000 SG-Acl-Up-Mean-Rate = wiacl;30000 Token-Pool = cpe_pool Framed-Route = 212.199.47.229/32 0.0.0.0 SG-Service-Name = CPE_PC_STATIC_IP # Camera behind bridged CPE RTPS scheduling type definition # Camera static IP: 212.199.47.229 <CPE_CAMERA> Filter-Id = rtps in permit 0.0.0.0 0.0.0.0 Filter-Id = rtps out permit 0.0.0.0 0.0.0.0 SG-Wimax-Acl-Schedule-Type = rtps;up;rtPS SG-Wimax-Acl-Min-Reserved-Traffic-Rate = rtps;up;256000 SG-Wimax-Acl-Unsolicited-Polling-Int = rtps;up;60 SG-Wimax-Acl-Maximum-Latency = rtps;up;50 SG-Acl-Down-Mean-Rate = rtps;100 SG-Acl-Up-Mean-Rate = rtps;1500 Framed-Route = 212.199.47.229/32 0.0.0.0 Token-Pool = cpe_pool SG-Service-Name = CPE_CAMERA # Default user behind bridged CPE open service definition <NIP_OPEN> Filter-Id = wiacl in permit 0.0.0.0 0.0.0.0 Filter-Id = wiacl out permit 0.0.0.0 0.0.0.0 Token-Pool = user_pool SG-Service-Name = NIP_OPEN # # Scheduling types' exmples definitions for bridged CPE (for NAT CPE define Token-Pool = user_pool) # #Basic Best Effort scheduling type definition <CPE_BE> Filter-Id = be in permit 0.0.0.0 0.0.0.0 Filter-Id = be out permit 0.0.0.0 0.0.0.0 SG-Acl-Down-Mean-Rate = be;30000 SG-Acl-Up-Mean-Rate = be;30000 Token-Pool = cpe_pool SG-Service-Name = CPE_BE #Basic NRTPS scheduling type definition <CPE_NRTPS> Filter-Id = nrtps in permit 0.0.0.0 0.0.0.0 Filter-Id = nrtps out permit 0.0.0.0 0.0.0.0 SG-Wimax-Acl-Schedule-Type = nrtps;up;nrtPS SG-Wimax-Acl-Min-Reserved-Traffic-Rate = nrtps;up;64000 SG-Wimax-Acl-Unsolicited-Polling-Int = nrtps;up;60 SG-Acl-Down-Mean-Rate = nrtps;30000 SG-Acl-Up-Mean-Rate = nrtps;1500 SG-Node-Dynamic-Service = NIP_OPEN SG-Node-Default-Service = NIP_OPEN Token-Pool = cpe_pool SG-Service-Name = CPE_NRTPS #Basic RTPS scheduling type definition <CPE_RTPS> Filter-Id = rtps in permit 0.0.0.0 0.0.0.0 Filter-Id = rtps out permit 0.0.0.0 0.0.0.0 SG-Wimax-Acl-Schedule-Type = rtps;up;rtPS SG-Wimax-Acl-Min-Reserved-Traffic-Rate = rtps;up;64000 SG-Wimax-Acl-Unsolicited-Polling-Int = rtps;up;60 SG-Wimax-Acl-Maximum-Latency = rtps;up;50 SG-Acl-Down-Mean-Rate = rtps;30000 SG-Acl-Up-Mean-Rate = rtps;1500 SG-Node-Dynamic-Service = NIP_OPEN SG-Node-Default-Service = NIP_OPEN Token-Pool = cpe_pool SG-Service-Name = CPE_RTPS #Basic ERTPS scheduling type definition (good for VoIP phones) <CPE_ERTPS> Filter-Id = ertps in permit 0.0.0.0 0.0.0.0 Filter-Id = ertps out permit 0.0.0.0 0.0.0.0 SG-Wimax-Acl-Schedule-Type = ertps;up;ErtPS SG-Acl-Down-Mean-Rate = ertps;128 SG-Acl-Up-Mean-Rate = ertps;128 SG-Wimax-Acl-Min-Reserved-Traffic-Rate = ertps;up;128000 SG-Wimax-Acl-Unsolicited-Grant-Int = ertps;up;20 SG-Wimax-Acl-Tolerated-Jitter = ertps;up;10 SG-Wimax-Acl-Maximum-Latency = ertps;up;50 SG-Node-Dynamic-Service = NIP_OPEN SG-Node-Default-Service = NIP_OPEN Token-Pool = cpe_pool SG-Service-Name = CPE_ERTPS #Basic UGS scheduling type definition <CPE_UGS> Filter-Id = ugs in permit 0.0.0.0 0.0.0.0 Filter-Id = ugs out permit 0.0.0.0 0.0.0.0 SG-Wimax-Acl-Schedule-Type = ugs;up;UGS SG-Acl-Down-Mean-Rate = ugs;30000 SG-Acl-Up-Mean-Rate = ugs;1000 SG-Wimax-Acl-Min-Reserved-Traffic-Rate = ugs;up;1000000 SG-Wimax-Acl-Unsolicited-Grant-Int = ugs;up;20 SG-Wimax-Acl-Tolerated-Jitter = ugs;up;10 SG-Wimax-Acl-Maximum-Latency = ugs;up;50 SG-Node-Dynamic-Service = NIP_OPEN SG-Node-Default-Service = NIP_OPEN Token-Pool = cpe_pool SG-Service-Name = CPE_UGS
CNOC> show internal services active
CNOC> show internal services active <wimaxDS> Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "wiacl;30000" SG-Acl-Up-Mean-Rate = "wiacl;30000" SG-Wimax-Acl-Schedule-Type = "wiacl;up;nrtPS" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl;up;64000" SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl;up;60" SG-Node-Dynamic-Service = "NIP_OPEN" SG-Node-Default-Service = "NIP_OPEN" Token-Pool = "cpe_pool" SG-Service-Name = "wimaxDS" <NIP_Bronze> Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "acl;1024" SG-Acl-Up-Mean-Rate = "acl;192" SG-Cos = "acl;2" Token-Pool = "user_pool" SG-Service-Timeout = 7200 SG-Data-Quota = "500000000" SG-Next-Service-Name = "NIP_Blocked" SG-Service-Name = "NIP_Bronze" <GUY_DEMO_SERVICE> Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "acl;1024" SG-Acl-Up-Mean-Rate = "acl;128" SG-Cos = "acl;4" Token-Pool = "user_pool" SG-Service-Timeout = 120 SG-Data-Quota = "2000000000" SG-Next-Service-Name = "NIP_Blocked" SG-Service-Name = "GUY_DEMO_SERVICE" <NIP_Platinium> Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "acl;2048" SG-Acl-Up-Mean-Rate = "acl;256" SG-Cos = "acl;2" Token-Pool = "user_pool" SG-Service-Timeout = 604800 SG-Data-Quota = "8000000000" SG-Next-Service-Name = "NIP_Blocked" SG-Service-Name = "NIP_Platinium" <PPP_Blocked> Filter-Id = "acl out permit 212.199.47.226 255.255.255.255" Filter-Id = "acl out permit 212.199.47.228 255.255.255.255" Filter-Id = "acl out permit 8.8.8.8 255.255.255.255" Filter-Id = "acl out permit 91.207.158.83 255.255.255.255" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0;udp;dst;53" Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" SG-Next-Hop = 192.168.11.1 SG-Remote-Filter-Redirect-Gw = "212.199.47.228" SG-Personal-Site = "http://www.nextelco.net/" Framed-Protocol = PPP SG-Service-Name = "PPP_Blocked" <NIP_WALLED> Filter-Id = "acl out permit 212.199.47.228 255.255.255.255" Filter-Id = "acl out permit 192.168.11.4 255.255.255.255" Filter-Id = "acl out permit 91.207.159.21 255.255.255.255" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0;udp;dst;53" Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" SG-Remote-Filter-Redirect-Gw = "212.199.47.228" SG-Acl-Down-Mean-Rate = "acl;4096" SG-Acl-Up-Mean-Rate = "acl;4096" SG-Personal-Site = "http://www.nextelco.net:8657/nextt/web_authentication.html" SG-Next-Hop = 192.168.11.1 User-Name = "WALLED" SG-Service-Name = "NIP_Blocked-4" <NIP_Gold> Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "acl;1536" SG-Acl-Up-Mean-Rate = "acl;192" SG-Cos = "acl;3" Token-Pool = "user_pool" SG-Service-Timeout = 86400 SG-Data-Quota = "5000000000" SG-Next-Service-Name = "NIP_Blocked" SG-Service-Name = "NIP_Gold" <NIP_OPEN> Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" Token-Pool = "user_pool" SG-Service-Name = "NIP_OPEN" <CPE_ERTPS> Filter-Id = "ertps in permit 0.0.0.0 0.0.0.0" Filter-Id = "ertps out permit 0.0.0.0 0.0.0.0" SG-Wimax-Acl-Schedule-Type = "ertps;up;ErtPS" SG-Acl-Down-Mean-Rate = "ertps;128" SG-Acl-Up-Mean-Rate = "ertps;128" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "ertps;up;128000" SG-Wimax-Acl-Unsolicited-Grant-Int = "ertps;up;20" SG-Wimax-Acl-Tolerated-Jitter = "ertps;up;10" SG-Wimax-Acl-Maximum-Latency = "ertps;up;50" SG-Node-Dynamic-Service = "NIP_OPEN" SG-Node-Default-Service = "NIP_OPEN" Token-Pool = "cpe_pool" SG-Service-Name = "CPE_ERTPS" <CPE_RTPS> Filter-Id = "rtps in permit 0.0.0.0 0.0.0.0" Filter-Id = "rtps out permit 0.0.0.0 0.0.0.0" SG-Wimax-Acl-Schedule-Type = "rtps;up;rtPS" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "rtps;up;64000" SG-Wimax-Acl-Unsolicited-Polling-Int = "rtps;up;60" SG-Wimax-Acl-Maximum-Latency = "rtps;up;50" SG-Acl-Down-Mean-Rate = "rtps;30000" SG-Acl-Up-Mean-Rate = "rtps;1500" SG-Node-Dynamic-Service = "NIP_OPEN" SG-Node-Default-Service = "NIP_OPEN" Token-Pool = "cpe_pool" SG-Service-Name = "CPE_RTPS" <CPE_NRTPS> Filter-Id = "nrtps in permit 0.0.0.0 0.0.0.0" Filter-Id = "nrtps out permit 0.0.0.0 0.0.0.0" SG-Wimax-Acl-Schedule-Type = "nrtps;up;nrtPS" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "nrtps;up;64000" SG-Wimax-Acl-Unsolicited-Polling-Int = "nrtps;up;60" SG-Acl-Down-Mean-Rate = "nrtps;30000" SG-Acl-Up-Mean-Rate = "nrtps;1500" SG-Node-Dynamic-Service = "NIP_OPEN" SG-Node-Default-Service = "NIP_OPEN" Token-Pool = "cpe_pool" SG-Service-Name = "CPE_NRTPS" <CPE_BE> Filter-Id = "be in permit 0.0.0.0 0.0.0.0" Filter-Id = "be out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "be;30000" SG-Acl-Up-Mean-Rate = "be;30000" Token-Pool = "cpe_pool" SG-Service-Name = "CPE_BE" <wimaxDS_NAT_NRTPS> Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "wiacl;30000" SG-Acl-Up-Mean-Rate = "wiacl;30000" SG-Wimax-Acl-Schedule-Type = "wiacl;up;nrtPS" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl;up;64000" SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl;up;60" Token-Pool = "user_pool" SG-Service-Name = "wimaxDS_NAT_NRTPS" <CPE_UGS> Filter-Id = "ugs in permit 0.0.0.0 0.0.0.0" Filter-Id = "ugs out permit 0.0.0.0 0.0.0.0" SG-Wimax-Acl-Schedule-Type = "ugs;up;UGS" SG-Acl-Down-Mean-Rate = "ugs;30000" SG-Acl-Up-Mean-Rate = "ugs;1000" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "ugs;up;1000000" SG-Wimax-Acl-Unsolicited-Grant-Int = "ugs;up;20" SG-Wimax-Acl-Tolerated-Jitter = "ugs;up;10" SG-Wimax-Acl-Maximum-Latency = "ugs;up;50" SG-Node-Dynamic-Service = "NIP_OPEN" SG-Node-Default-Service = "NIP_OPEN" Token-Pool = "cpe_pool" SG-Service-Name = "CPE_UGS" <CPE_CAMERA> Filter-Id = "rtps in permit 0.0.0.0 0.0.0.0" Filter-Id = "rtps out permit 0.0.0.0 0.0.0.0" SG-Wimax-Acl-Schedule-Type = "rtps;up;rtPS" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "rtps;up;256000" SG-Wimax-Acl-Unsolicited-Polling-Int = "rtps;up;60" SG-Wimax-Acl-Maximum-Latency = "rtps;up;50" SG-Acl-Down-Mean-Rate = "rtps;100" SG-Acl-Up-Mean-Rate = "rtps;1500" Framed-Route = "212.199.47.229/32 0.0.0.0" Token-Pool = "cpe_pool" SG-Service-Name = "CPE_CAMERA" <NIP_Diamond> Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "acl;4096" SG-Acl-Up-Mean-Rate = "acl;320" SG-Cos = "acl;1" Token-Pool = "user_pool" SG-Service-Timeout = 2592000 SG-Data-Quota = "20000000000" SG-Next-Service-Name = "NIP_Blocked" SG-Service-Name = "NIP_Diamond" <MULTI_USERS> Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "wiacl;30000" SG-Acl-Up-Mean-Rate = "wiacl;3000" SG-Node-Dynamic-Service = "NIP_OPEN" SG-Node-Default-Service = "NIP_OPEN" SG-Max-Allowed-Nodes = 4 Token-Pool = "cpe_pool" SG-Service-Name = "MULTI_USERS" <CPE_PC_STATIC_IP> Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "wiacl;30000" SG-Acl-Up-Mean-Rate = "wiacl;30000" Token-Pool = "cpe_pool" Framed-Route = "212.199.47.229/32 0.0.0.0" SG-Service-Name = "CPE_PC_STATIC_IP" <CPE_STATIC_IP> Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "wiacl;30000" SG-Acl-Up-Mean-Rate = "wiacl;30000" Framed-IP-Address = 212.199.47.229 SG-Service-Name = "CPE_STATIC_IP" <CPE_NAT_FIX_IP> Filter-Id = "wiacl in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "wiacl;30000" SG-Acl-Up-Mean-Rate = "wiacl;30000" SG-Fixed-Ip-Address = "212.199.47.229/28 212.199.47.230" SG-Lease-Time = 3600 SG-Ip-Primary = 212.199.47.230 SG-Ip-Secondary = 8.8.8.8 SG-Service-Name = "CPE_NAT_FIX_IP" <NIP_Silver> Filter-Id = "acl in permit 0.0.0.0 0.0.0.0" Filter-Id = "acl out permit 0.0.0.0 0.0.0.0" SG-Acl-Down-Mean-Rate = "acl;1024" SG-Acl-Up-Mean-Rate = "acl;128" SG-Cos = "acl;4" Token-Pool = "user_pool" SG-Service-Timeout = 28800 SG-Data-Quota = "2000000000" SG-Next-Service-Name = "NIP_Blocked" SG-Service-Name = "NIP_Silver" <MULTI_SF> Filter-Id = "wiacl1 in permit 0.0.0.0 0.0.0.0;icmp" Filter-Id = "wiacl1 out permit 0.0.0.0 0.0.0.0;icmp" SG-Wimax-Acl-Schedule-Type = "wiacl1;up;UGS" SG-Acl-Down-Mean-Rate = "wiacl1;128" SG-Acl-Up-Mean-Rate = "wiacl1;128" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl1;up;128000" SG-Wimax-Acl-Unsolicited-Grant-Int = "wiacl1;up;20" SG-Wimax-Acl-Tolerated-Jitter = "wiacl1;up;10" SG-Wimax-Acl-Maximum-Latency = "wiacl1;up;50" Filter-Id = "wiacl2 in permit 10.0.1.2 255.255.255.255" Filter-Id = "wiacl2 out permit 10.0.1.2 255.255.255.255" SG-Wimax-Acl-Schedule-Type = "wiacl2;up;rtPS" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl2;up;64000" SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl2;up;60" SG-Wimax-Acl-Maximum-Latency = "wiacl2;up;50" SG-Acl-Down-Mean-Rate = "wiacl2;5000" SG-Acl-Up-Mean-Rate = "wiacl2;2500" Filter-Id = "wiacl3 in permit 0.0.0.0 0.0.0.0" Filter-Id = "wiacl3 out permit 0.0.0.0 0.0.0.0" SG-Wimax-Acl-Schedule-Type = "wiacl3;up;nrtPS" SG-Wimax-Acl-Min-Reserved-Traffic-Rate = "wiacl3;up;64000" SG-Wimax-Acl-Unsolicited-Polling-Int = "wiacl3;up;60" SG-Acl-Down-Mean-Rate = "wiacl3;5000" SG-Acl-Up-Mean-Rate = "wiacl3;2500" SG-Node-Dynamic-Service = "NIP_OPEN" SG-Node-Default-Service = "NIP_OPEN" Token-Pool = "cpe_pool" SG-Service-Name = "MULTI_SF"
CNOC> show tunnel lns
CNOC> show tunnel lns Tunnel IP Tunnel Tunnel Session Endpoint ID ID _______________ ____________ ______ _______
CNOC> show tunnel lac
CNOC> show tunnel lac Tunnel IP Tunnel Tunnel Session Endpoint ID ID _______________ ____________ ______ _______
CNOC> show ip-tunnel
CNOC> show ip-tunnel Tunnel IP Tunnel Total Tunnel Tunnel Tunnel Counter Endpoint Sessions Status Type Down/Sense _______________ ________ ________ _______ ________ ____________________
CNOC> show availability
CNOC> show availability Id Module Redundancy Trigger Status Triggering ID Module ____ _________ ___________ _______ _________
CNOC> show asn map
CNOC> show asn map BSIP BSID ASN-GW IP ______________ ______________ ______________
CNOC> show asn bs
CNOC> show asn bs BSIP BSID Name Users Status Remarks ______________ ______________ _____________ ______ _________ ______________ Total number of BS: 0 BS up: 0 BS down: 0 BS unknown: 0
CNOC> show asn ho-statistics
CNOC> show asn ho-statistics Target BSIP Serving BSIP Success Fail _______________ _______________ _______ _______
RDS
This is the RDS configuration. In order to see all the show ... commands click on Expand button.
RDSHost> show configuration
RDSHost> show configuration #version V4.1.10.0_RDS saved at : 2013/09/17 21:22:00 default-redirection-site http://91.207.159.21:8657/nextt/web_authentication.html hostname RDSHost interface ethernet 1 192.168.11.4 255.255.255.0 ip default-gw 192.168.11.1 error-level 0 output-device console event-level 0 output-device console sysLog-server-ip 0.0.0.0 remote-ip-in-ip 192.168.11.3 snmp-server community set public snmp-server community get public access-list snmp-permit 0.0.0.0 0.0.0.0
RDSHost> show route
RDSHost> show route RDS IP routing table Destination Gateway Mask 192.168.11.0 0.0.0.0 255.255.255.0 192.168.11.0 0.0.0.0 255.255.255.0 127.0.0.0 0.0.0.0 255.0.0.0 0.0.0.0 192.168.11.1 0.0.0.0
RDSHost> show system
RDSHost> show system Up time: 2 Days 22 Hours, 14 Minutes Average Http hits per second: 0 Accumulated Http hits on port 80: 0 Accumulated Http hits on EDS port: 0 Cpu usage: 0.01 %
RDSHost> show certificate
RDSHost> show certificate Certificate: Data: Version: 3 (0x2) Serial Number: 0 (0x0) Signature Algorithm: md5WithRSAEncryption Issuer: C=IL, ST=Herzeliya, L=Herzeliya, O=ADC, OU=ADC-UNIT, CN=www.sg1-rds.com/Email=raviv.zeev@g-connect.co.il Validity Not Before: Mar 27 11:07:03 2007 GMT Not After : May 5 11:07:03 2011 GMT Subject: C=IL, ST=Herzeliya, L=Herzeliya, O=ADC, OU=ADC-UNIT, CN=www.sg1-rds.com/Email=raviv.zeev@g-connect.co.il Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public Key: (1024 bit) Modulus (1024 bit): 00:c7:68:2d:73:5e:8b:03:3a:86:21:6a:74:21:67: ec:ab:32:f3:9c:69:8b:63:16:74:76:37:0f:fb:e1: 19:82:bf:56:7f:ca:7d:5a:fe:38:ba:db:91:31:35: 25:14:b5:be:d1:b3:2f:b1:0d:6f:06:65:29:bf:8a: 9e:e2:6b:12:73:71:bf:0b:10:24:c3:da:1f:c5:11: df:7f:78:8c:ff:a2:54:9e:f8:a5:e0:51:a1:81:44: 62:79:e4:9c:b3:49:1f:79:5c:0f:97:6f:de:57:66: 33:92:8e:57:a0:af:37:7f:c4:94:88:11:f7:2c:3e: c4:a3:4d:a6:11:61:27:b8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:22:3A:CC:14:40:CB:1C:66:10:79:20:44:15:83:29:81:65:20:FE X509v3 Authority Key Identifier: keyid:B8:22:3A:CC:14:40:CB:1C:66:10:79:20:44:15:83:29:81:65:20:FE DirName:/C=IL/ST=Herzeliya/L=Herzeliya/O=ADC/OU=ADC-UNIT/CN=www.sg1-rds.com/Email=raviv.zeev@g-connect.co.il serial:00 X509v3 Basic Constraints: CA:TRUE Signature Algorithm: md5WithRSAEncryption ae:96:ef:cd:e3:a1:a1:c9:c6:75:d3:50:c2:8b:08:b1:39:ae: 4a:15:26:52:ec:ab:63:9f:ee:21:72:47:13:24:0f:cd:da:bb: 31:7f:7f:7a:1d:d1:0d:5d:f2:19:b3:ef:cc:7c:67:80:4b:a1: 99:68:cc:4d:7e:62:07:c0:7b:91:f6:0f:b4:bb:d3:c7:4f:ae: d2:4b:f7:51:ec:0c:2d:52:b0:6d:33:f7:d7:62:d6:1f:b4:e0: ef:fe:4d:2d:b7:a7:95:14:b8:29:2e:de:eb:4e:ef:d3:bb:af: 6a:25:6f:96:a3:05:15:72:0f:60:57:45:1a:d7:31:e7:9a:e0: d0:e2
Redirection Server
The Redirection Server is an FCS’s product that redirects all peers’ Http requests to their personal-sites as pre-defined in the Radius server. The RDS uses FCS’s EDS (Enhanced Dynamic Services) policy to redirect the connected peers and it actually acts as a sophisticated SSC (Service Creation Card).
The RDS is usually located at the ISP/Carrier network but it is not mandatory. When the RDS is located outside the access subnet the ASN-SG (Access Service Network - Service Gateway) uses an IP in IP tunnel to transfer the redirected data.
Return to Technology page.