Eltex Esr-10 User manual



ESR service routers

ESR-10, ESR-12V, ESR-12VF, ESR-14VF, ESR-20,

ESR-21, ESR-100, ESR-200, ESR-1000, ESR-1200,

ESR-1500, ESR-1700

User manual, Functionality description (29.10.2020)

Firmware version1.12.0

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 2
Contents
Introduction ........................................................................................................................... 10
1 Abstract ................................................................................................................................. 10
2 Target Audience.................................................................................................................... 10
3 Notes and warnings.............................................................................................................. 10
Interface management ......................................................................................................... 11
1 VLAN Configuration.............................................................................................................. 11
1.1 Configuration algorithm .................................................................................................12
1.2 Configuration example 1. VLAN removal from the interface.......................................13
1.3 Configuration example 2. Enabling VLAN processing in tagged mode ......................14
1.4 Configuration example 3. Enabling VLAN processing in tagged and untagged 
modes..............................................................................................................................14
2 LLDP configuration ............................................................................................................... 15
2.1 Configuration algorithm .................................................................................................15
2.2 Configuration example ...................................................................................................16
3 LLDP MED configuration ...................................................................................................... 17
3.1 Configuration algorithm .................................................................................................17
3.2 Voice VLAN configuration example...............................................................................18
4 Sub-interface termination configuration ............................................................................. 19
5 Configuration algorithm ....................................................................................................... 20
5.1 Sub-interface configuration example ............................................................................21
6 Q-in-Q termination configuration ......................................................................................... 22
6.1 Configuration algorithm .................................................................................................22
6.2 Q-in-Q configuration example ........................................................................................25
7 USB modems configuration ................................................................................................. 25
7.1 USB modems configuration algorithm ..........................................................................25
7.2 Configuration example ...................................................................................................28
8 PPP through E1 configuration.............................................................................................. 29
8.1 Configuration algorithm ................................................................................................29
8.2 Configuration example ...................................................................................................31
9 MLPPP Configuration ........................................................................................................... 32
9.1 Configuration algorithm .................................................................................................32
9.2 Configuration example ...................................................................................................34
10 Bridge configuration ............................................................................................................. 35
10.1 Configuration algorithm .................................................................................................36
10.2 Example of bridge configuration for VLAN and L2TPv3 tunnel...................................39

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 3
10.3 Example of bridge configuration for VLAN ...................................................................40
10.4 Configuration example of the second VLAN tag adding/removing ............................41
11 Dual-Homing configuration .................................................................................................. 42
11.1 Configuration algorithm .................................................................................................42
11.2 Configuration example ...................................................................................................42
12 Mirroring configuration (SPAN/RSPAN).............................................................................. 43
12.1 Configuration algorithm .................................................................................................44
12.2 Configuration example ...................................................................................................44
13 LACP configuration............................................................................................................... 45
13.1 Configuration algorithm .................................................................................................45
13.2 Configuration example ...................................................................................................48
14 AUX configuration................................................................................................................. 48
14.1 Configuration algorithm .................................................................................................48
14.2 Configuration examples .................................................................................................50
14.3 Adapter soldering schemes ...........................................................................................56
Tunneling management........................................................................................................ 57
1 GRE tunnel configuration...................................................................................................... 57
1.1 Configuration algorithm .................................................................................................57
1.2 IP-GRE tunnel configuration example............................................................................61
2 DMVPN configuration........................................................................................................... 63
2.1 Configuration algorithm .................................................................................................63
2.2 Configuration example ...................................................................................................65
3 L2TPv3 tunnel configuration................................................................................................ 70
3.1 Configuration algorithm .................................................................................................70
3.2 L2TPv3 tunnel configuration example...........................................................................72
4 IPsec VPN configuration ...................................................................................................... 74
4.1 Route-based IPsec VPN configuration algorithm.........................................................74
4.2 Route-based IPsec VPN configuration example...........................................................79
4.3 Policy-based IPsec VPN configuration algorithm.........................................................84
4.4 Policy-based IPsec VPN configuration example ..........................................................89
4.5 Remote Access IPsec VPN configuration algorithm....................................................92
4.6 Remote Access IPsec VPN configuration example......................................................99
5 LT tunnels configuration .................................................................................................... 104
5.1 Configuration algorithm .............................................................................................. 104
5.2 Configuration example ................................................................................................ 105
QoS management ............................................................................................................... 107
1 Basic QoS ............................................................................................................................ 107

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 4
1.1 Configuration algorithm .............................................................................................. 107
1.2 Configuration example ................................................................................................ 110
2 Advanced QoS..................................................................................................................... 111
2.1 Configuration algorithm .............................................................................................. 111
2.2 Configuration example ................................................................................................ 115
Routing management ......................................................................................................... 118
1 Static routes configuration................................................................................................. 118
1.1 Configuration algorithm .............................................................................................. 118
1.2 Static routes configuration example .......................................................................... 119
2 RIP Configuration................................................................................................................ 121
2.1 Configuration algorithm .............................................................................................. 121
2.2 RIP configuration example .......................................................................................... 125
3 OSFP configuration............................................................................................................. 126
3.1 Configuration algorithm .............................................................................................. 126
3.2 OSPF configuration example ...................................................................................... 136
3.3 OSPF stub area configuration example...................................................................... 137
3.4 Virtual link configuration example .............................................................................. 138
4 BGP configuration............................................................................................................... 139
4.1 Configuration algorithm .............................................................................................. 139
4.2 Configuration example ................................................................................................ 149
5 BFD configuration ............................................................................................................... 151
5.1 Configuration algorithm .............................................................................................. 151
5.2 Configuration example of BFD with BGP.................................................................... 154
6 PBR routing policy configuration ....................................................................................... 156
6.1 Configuration algorithm of Route-map for BGP......................................................... 156
6.2 Configuration example 1. Route-map for BGP........................................................... 160
6.3 Configuration example 2. Route-map for BGP........................................................... 161
6.4 Route-map based on access control lists (Policy-based routing) configuration 
algorithm ...................................................................................................................... 162
6.5 Route-map based on access control lists (Policy-based routing) configuration 
example ........................................................................................................................ 163
7 VRF Lite configuration ........................................................................................................ 165
7.1 Configuration algorithm .............................................................................................. 165
7.2 Configuration example ................................................................................................ 166
8 MultiWAN configuration ..................................................................................................... 168
8.1 Configuration algorithm .............................................................................................. 168
8.2 Configuration example ................................................................................................ 170
9 IS-IS configuration .............................................................................................................. 172

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 5
9.1 Configuration algorithm .............................................................................................. 173
9.2 Configuration example ................................................................................................ 182
MPLS technology management......................................................................................... 184
1 LDP configuration ............................................................................................................... 184
1.1 Configuration algorithm .............................................................................................. 185
1.2 Configuration example ................................................................................................ 186
2 Configuring session parameters in LDP............................................................................ 189
2.1 Algorithm for setting Hello holdtime and Hello interval in the global LDP 
configuration ................................................................................................................ 191
2.2 Algorithm for setting Hello holdtime and Hello interval for address family............. 191
2.3 Algorithm for setting Keepalive holdtime parameter in the global LDP 
configuration ................................................................................................................ 191
2.4 Algorithm for setting Keepalive holdtime parameter for the specific neighbor ...... 192
2.5 Configuration example ................................................................................................ 192
3 Configuring session parameters in targeted-LDP............................................................. 193
3.1 Algorithm for setting Hello holdtime, Hello interval and Keepalive holdtime for the 
LDP process ................................................................................................................. 195
3.2 Algorithm for setting Hello holdtime, Hello interval and Keepalive holdtime for the 
specific neighbor ......................................................................................................... 195
3.3 Configuration example ................................................................................................ 196
4 LDP tag filtering configuration........................................................................................... 197
4.1 Configuration algorithm .............................................................................................. 197
4.2 Configuration example ................................................................................................ 198
5 L2VPN Martini mode configuration................................................................................... 199
5.1 L2VPN VPWS configuration algorithm....................................................................... 199
5.2 L2VPN VPWS configuration example......................................................................... 201
5.3 L2VPN VPLS configuration algorithm ........................................................................ 204
5.4 L2VPN VPLS configuration example .......................................................................... 205
6 L2VPN Kompella mode configuration............................................................................... 209
6.1 L2VPN VPLS configuration algorithm ........................................................................ 209
6.2 L2VPN VPLS configuration example .......................................................................... 212
7 L3VPN configuration .......................................................................................................... 227
7.1 Configuration algorithm .............................................................................................. 227
7.2 Configuration example ................................................................................................ 229
8 MPLS traffic balancing ....................................................................................................... 242
8.1 Configuration example ................................................................................................ 243
9 Operation with the bridge domain within MPLS ............................................................... 243
10 Assignment of MTU when operating with MPLS.............................................................. 246
Security management......................................................................................................... 252

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 6
1 AAA configuration............................................................................................................... 252
2 Local authentication configuration algorithm................................................................... 253
2.1 AAA configuration algorithm via RADIUS................................................................... 256
2.2 AAA configuration algorithm via TACACS ................................................................. 259
2.3 AAA configuration algorithm via LDAP ...................................................................... 262
2.4 Example of authentication configuration using telnet via RADIUS server ............... 266
3 Command privilege configuration ..................................................................................... 266
3.1 Configuration algorithm .............................................................................................. 266
3.2 Example of command privilege configuration........................................................... 267
4 Configuration of logging and protection against network attacks.................................. 267
4.1 Configuration algorithm .............................................................................................. 267
4.2 Description of attack protection mechanisms........................................................... 270
4.3 Configuration example of logging and protection against network attacks............ 273
5 Firewall configuration......................................................................................................... 274
5.1 Configuration algorithm .............................................................................................. 275
5.2 Firewall configuration example................................................................................... 281
5.3 Configuration example of application filtering (DPI)................................................. 283
6 Access list (ACL) configuration ......................................................................................... 285
6.1 Configuration algorithm .............................................................................................. 285
6.2 Access list configuration example ............................................................................. 287
7 IPS/IDS configuration ......................................................................................................... 288
7.1 Base configuration algorithm...................................................................................... 288
7.2 Configuration algorithm for IPS/IDS rules autoupdate from external sources ....... 289
7.3 Recommended open rule update source ................................................................... 290
7.4 IPS/IDS configuration example with auto-update rules ............................................ 293
7.5 Basic user rules configuration algorithm ................................................................... 294
7.6 Basic user rules configuration example..................................................................... 303
7.7 Extended user rules configuration algorithm............................................................. 305
7.8 Extended user rules configuration example............................................................... 305
8 Eltex Distribution Manager interaction configuration....................................................... 306
8.1 Base configuration algorithm...................................................................................... 307
8.2 Configuration example: ............................................................................................... 310
Redundancy management ................................................................................................. 314
1 VRRP configuration............................................................................................................. 314
1.1 Configuration algorithm .............................................................................................. 314
1.2 Configuration example 1 ............................................................................................. 317
1.3 Configuration example 2 ............................................................................................. 318

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 7
2 VRRP tracking configuration.............................................................................................. 320
2.1 Configuration algorithm .............................................................................................. 320
2.2 Configuration example ................................................................................................ 322
Remote access configuration ............................................................................................ 325
1 Configuring server for remote access to corporate network via PPTP protocol............ 325
1.1 Configuration algorithm .............................................................................................. 325
1.2 Configuration example ................................................................................................ 328
2 Configuring server for remote access to corporate network via L2TP protocol ............ 330
2.1 Configuration algorithm .............................................................................................. 330
2.2 Configuration example ................................................................................................ 333
3 Configuring server for remote access to corporate network via OpenVPN protocol..... 335
3.1 Configuration algorithm .............................................................................................. 335
3.2 Configuration example ................................................................................................ 339
4 Configuring remote access client via PPPoE.................................................................... 341
4.1 Configuration algorithm .............................................................................................. 341
4.2 Configuration example ................................................................................................ 343
5 Configuring remote access client via PPTP...................................................................... 344
5.1 Configuration algorithm .............................................................................................. 344
5.2 Configuration example ................................................................................................ 346
6 Configuring remote access client via L2TP ...................................................................... 347
6.1 Configuration algorithm .............................................................................................. 347
6.2 Configuration example ................................................................................................ 349
Service management.......................................................................................................... 352
1 DHCP server configuration................................................................................................. 352
1.1 Configuration algorithm .............................................................................................. 352
1.2 Configuration example ................................................................................................ 356
2 Destination NAT configuration .......................................................................................... 357
2.1 Configuration algorithm .............................................................................................. 358
2.2 Destination NAT configuration example .................................................................... 360
3 Source NAT configuration.................................................................................................. 362
3.1 Configuration algorithm .............................................................................................. 362
3.2 Configuration example 1 ............................................................................................. 364
3.3 Configuration example 2 ............................................................................................. 367
4 Static NAT configuration.................................................................................................... 368
4.1 Configuration algorithm .............................................................................................. 368
4.2 Static NAT configuration example.............................................................................. 368
5 HTTP/HTTPS traffic proxying............................................................................................ 370

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 8
5.1 Configuration algorithm .............................................................................................. 370
5.2 HTTP proxy configuration example............................................................................ 373
6 NTP configuration............................................................................................................... 374
6.1 Configuration algorithm .............................................................................................. 374
6.2 Configuration example ................................................................................................ 376
Monitoring ........................................................................................................................... 379
1 Netflow configuration......................................................................................................... 379
1.1 Configuration algorithm .............................................................................................. 379
1.2 Configuration example ................................................................................................ 380
2 sFlow configuration ............................................................................................................ 381
2.1 Configuration algorithm .............................................................................................. 381
2.2 Configuration example ................................................................................................ 382
3 SNMP configuration ........................................................................................................... 383
3.1 Configuration algorithm .............................................................................................. 383
3.2 Configuration example ................................................................................................ 387
4 Zabbix-agent/proxy configuration ..................................................................................... 388
4.1 Configuration algorithm .............................................................................................. 388
4.2 Zabbix-agent configuration example.......................................................................... 390
4.3 Zabbix-agent configuration example.......................................................................... 391
5 Syslog configuration........................................................................................................... 394
5.1 Configuration algorithm .............................................................................................. 395
5.2 Configuration example ................................................................................................ 397
6 Integrity check..................................................................................................................... 398
6.1 Configuration process ................................................................................................. 398
6.2 Configuration example ................................................................................................ 398
7 Router configuration file archiving..................................................................................... 398
7.1 Configuration process ................................................................................................. 399
7.2 Configuration example ................................................................................................ 399
BRAS (Broadband Remote Access Server) management................................................ 401
1 Configuration algorithm ..................................................................................................... 401
2 Example of configuration with SoftWLC ........................................................................... 406
3 Example of configuration without SoftWLC...................................................................... 412
3.1 Step 1:........................................................................................................................... 412
3.2 Step 2:........................................................................................................................... 413
VoIP management .............................................................................................................. 419
1 SIP profile configuration algorithm.................................................................................... 419
2 FXS/FXO ports configuration algorithm............................................................................ 420

ESR service routers.ESR-Series. Functionality description. Version 1.12.0
 9
3 Dial plan configuration algorithm ...................................................................................... 422
4 PBX server configuration algorithm................................................................................... 422
5 Registration trunk creation algorithm................................................................................ 424
6 VoIP configuration example............................................................................................... 424
7 Dial plan configuration example ........................................................................................ 427
8 FXO port configuration ....................................................................................................... 429
Safe configuration recommendations............................................................................... 431
1 General recommendations................................................................................................. 431
2 Event logging system configuration .................................................................................. 431
2.1 Recommendations....................................................................................................... 432
2.2 Warnings....................................................................................................................... 432
2.3 Configuration example ................................................................................................ 432
3 Password usage policy configuration ............................................................................... 432
3.1 Recommendations....................................................................................................... 433
3.2 Configuration example ................................................................................................ 433
4 AAA policy configuration.................................................................................................... 433
4.1 Recommendations....................................................................................................... 434
4.2 Warnings....................................................................................................................... 434
4.3 Configuration example ................................................................................................ 434
5 Remote management configuration................................................................................. 435
5.1 Recommendations....................................................................................................... 435
5.2 Configuration example ................................................................................................ 436
6 Configuration of protection against network attacks mechanisms................................ 436
6.1 Recommendations....................................................................................................... 436
6.2 Configuration example ................................................................................................ 437
FREQUENTLY ASKED QUESTIONS .................................................................................... 438
ESR technical support......................................................................................................... 440

ESR service routers.ESR-Series. Functionality description. Version 1.12.0

1 Introduction

1.1 Abstract

Today, large-scale communication network development projects are becoming increasingly common. One of

the main tasks in implementation of large multiservice networks is the creation of reliable high-performance

transport network that will serve as a backbone in multilayer architecture of next-generation networks.

ESR series firewalls could be used in large enterprise networks, SMB networks and operator's networks.

Devices provide high performance and bandwidth, and feature protection of transmitted data.

This manual provides descriptions, algorithms, and examples of how to configure the ESR series service router

functionality (hereafter referred to as the router or device).

1.2 Target Audience

This user manual is intended for technical personnel that performs device installation, configuration and

monitoring via command line interface (CLI) as well as the system maintenance and firmware update

procedures. Qualified technical personnel should be familiar with the operation basics of TCP/IP protocol

stacks and Ethernet networks design concepts.

1.3 Notes and warnings

Notes contain important information, tips or recommendations on device operation and setup.



Warnings inform users about hazardous conditions which may cause injuries or device damage and

may lead to the device malfunctioning or data loss.



This manual suits for next models

Table of contents

Other ELTEX Wireless Router manuals

ELTEX

ELTEX WB-2P-LR5 User manual

ELTEX

ELTEX RG-5421G-Wac User manual

Popular Wireless Router manuals by other brands

NETGEAR

NETGEAR Zing user guide

Proroute

Proroute GEM420 user manual

ICP DAS USA

ICP DAS USA WF-2000 Series Faq

SMC Networks

SMC Networks 7904WBRA-N FICHE user guide

Hamlet

Hamlet HRDSL300N user manual

Icidu

Icidu NI-707517 Quick installation guide

Hawking

Hawking HWRGM1A user manual

Airlogic

Airlogic AirSync Class 1 Features

Samsung

Samsung WCH730B user manual

NETGEAR

NETGEAR PowerLINE WiFi 1000 Series quick start

TRENDnet

TRENDnet TEW-211BRP user manual

Cisco

Cisco Valet M10 user guide

Alloy

Alloy WLF2454AP-S user guide

TELEFONICA

TELEFONICA USB Adapter quick start guide

TP-Link

TP-Link TL-WR542G user guide

Hama

Hama 53120 Operating instruction

Asus

Asus RT-N10P user guide

D-Link

D-Link DIR-506L Quick installation guide

ELTEX ESR-10 User manual

Popular Wireless Router manuals by other brands