HPE FlexNetwork MSR Series User manual
HPE FlexNetwork MSR Router Series
Comware 5 Web-Based Configuration Guide
Part number: 5200-2307
Software version: CMW710-R2516
Document version: 6W107-20160831
i
© Copyright 2016 Hewlett Packard Enterprise Development LP
The information contained herein is subject to change without notice. The only warranties for Hewlett Packard
Enterprise products and services are set forth in the express warranty statements accompanying such
products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett
Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein.
Confidential computer software. Valid license from Hewlett Packard Enterprise required for possession, use, or
copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software
Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor’s
standard commercial license.
Links to third-party websites take you outside the Hewlett Packard Enterprise website. Hewlett Packard
Enterprise has no control over and is not responsible for information outside the Hewlett Packard Enterprise
website.
Acknowledgments
Intel®, Itanium®, Pentium®, Intel Inside®, and the Intel Inside logo are trademarks of Intel Corporation in the
United States and other countries.
Microsoft® and Windows® are trademarks of the Microsoft group of companies.
Adobe® and Acrobat® are trademarks of Adobe Systems Incorporated.
Java and Oracle are registered trademarks of Oracle and/or its affiliates.
UNIX® is a registered trademark of The Open Group.
ii
Contents
Web overview ································································································· 1
Logging in to the Web interface ·························································································································1
Logging out of the Web interface ·······················································································································2
Introduction to the Web interface ·······················································································································2
User level ···························································································································································4
Introduction to the Web-based NM functions·····································································································4
Common Web interface elements····················································································································17
Managing Web-based NM through CLI ···········································································································20
Enabling/disabling Web-based NM ··········································································································20
Managing the current Web user···············································································································21
Configuration guidelines ··································································································································21
Troubleshooting Web browser ·························································································································21
Cannot access the device through the Web interface··············································································21
Displaying device information ······································································· 25
Displaying device information ··························································································································26
Displaying broadband connection information ·································································································26
Displaying 3G wireless card state····················································································································26
Displaying LAN information······························································································································27
Displaying WLAN information ··························································································································27
Displaying service information ·························································································································27
Displaying recent system logs ·························································································································27
Managing integrated services ··························································································································27
Basic services configuration ········································································· 29
Configuring basic services ·······························································································································29
Entering the homepage of basic configuration wizard ·············································································29
Setting WAN interface parameters···········································································································29
Setting LAN interface parameters ············································································································37
Setting WLAN interface parameters·········································································································39
Validating the basic services configuration ······························································································40
Configuring WAN interfaces·········································································· 41
Configuring an Ethernet interface ····················································································································41
Configuring an SA interface ·····························································································································44
Configuring an ADSL/G.SHDSL interface········································································································45
Overview ··················································································································································45
Configuration procedure···························································································································46
Configuring a CE1/PRI interface······················································································································49
Overview ··················································································································································49
Configuration procedure···························································································································49
Configuring a CT1/PRI interface ······················································································································52
Displaying interface information and statistics ·································································································53
Configuring VLANs ······················································································· 55
Overview ··························································································································································55
Configuring a VLAN and its VLAN interface ····································································································55
Recommended configuration procedures ································································································55
Creating a VLAN and its VLAN interface ·································································································56
Configuring VLAN member ports ·············································································································56
Configuring parameters for a VLAN interface ··························································································57
Configuration guidelines ··································································································································59
Wireless configuration overview ··································································· 60
Overview ··························································································································································60
Configuration task list·······································································································································60
iii
Configuring wireless services ······································································· 61
Configuring wireless access service ················································································································61
Creating a wireless access service ··········································································································61
Configuring clear type wireless service····································································································62
Configuring crypto type wireless service··································································································68
Binding an AP radio to a wireless service ································································································73
Security parameter dependencies ···········································································································73
Displaying wireless access service··················································································································74
Displaying wireless service ······················································································································74
Displaying client ·······································································································································77
Displaying RF ping information ················································································································80
Wireless access service configuration examples·····························································································81
Wireless service configuration example···································································································81
Access service-based VLAN configuration example················································································83
PSK authentication configuration example ······························································································85
Local MAC authentication configuration example ····················································································87
Remote MAC authentication configuration example················································································89
Remote 802.1X authentication configuration example·············································································92
802.11n configuration example················································································································95
Client mode··································································································· 96
Enabling the client mode··································································································································97
Connecting the wireless service···············································································································98
Displaying statistics··································································································································99
Client mode configuration example··················································································································99
Configuring radios······················································································· 102
Configuring data transmit rates······················································································································105
Configuring 802.11a/802.11b/802.11g rates··························································································105
Configuring 802.11n MCS······················································································································106
Displaying radio ·············································································································································107
Displaying WLAN services bound to a radio ··························································································107
Displaying detailed radio information ·····································································································107
Configuring WLAN security········································································· 110
Blacklist and white list ····································································································································110
Configuring the blacklist and white list functions····························································································110
Configuring dynamic blacklist·················································································································110
Configuring static blacklist······················································································································111
Configuring white list ······························································································································112
Configuring user isolation ······························································································································112
Configuring WLAN QoS ·············································································· 114
Configuring wireless QoS ······························································································································114
Enabling wireless QoS ···························································································································114
Setting the SVP service ·························································································································114
Setting CAC admission policy ················································································································115
Setting radio EDCA parameters for APs ································································································116
Setting EDCA parameters for wireless clients ·······················································································117
Displaying radio statistics·······················································································································118
Displaying client statistics ······················································································································119
Setting rate limiting·································································································································121
Wireless QoS configuration example·············································································································122
CAC service configuration example ·······································································································122
Static rate limiting configuration example·······························································································123
Dynamic rate limiting configuration example··························································································124
Configuring advanced settings···································································· 126
Setting a district code·····································································································································126
Channel busy test ··········································································································································126
iv
3G/4G connection ······················································································· 128
Displaying 3G/4G connection information······································································································128
Configuring the cellular interface ···················································································································131
Managing the PIN ··········································································································································132
Rebooting the 3G/4G modem ························································································································133
Configuring NAT ························································································· 134
Overview ························································································································································134
Recommended configuration procedure········································································································134
Configuring dynamic NAT ······························································································································134
Configuring a DMZ host ·································································································································136
Creating a DMZ host ······························································································································136
Enabling DMZ host on an interface········································································································136
Configuring an internal server························································································································137
Enabling application layer protocol check······································································································139
Configuring connection limit···························································································································139
NAT configuration examples··························································································································140
Internal hosts accessing public network configuration example ····························································140
Internal server configuration example ····································································································141
Configuring access control·········································································· 145
Configuration procedure ································································································································145
Access control configuration example ···········································································································146
Configuring URL filtering············································································· 148
Configuration procedure ································································································································148
URL filtering configuration example ···············································································································149
Configuring attack protection ······································································ 151
Overview ························································································································································151
Blacklist function ····································································································································151
Intrusion detection function ····················································································································151
Configuring the blacklist function ···················································································································153
Recommended configuration procedure ································································································153
Enabling the blacklist function················································································································154
Adding a blacklist entry manually···········································································································154
Viewing blacklist entries ·························································································································155
Configuring intrusion detection ······················································································································155
Attack protection configuration examples ······································································································157
Attack protection configuration example for MSR900/20-1X ·································································157
For MSR20/30/36/50/930 routers···········································································································160
Configuring application control···································································· 164
Recommended configuration procedure········································································································164
Loading applications ······························································································································164
Configuring a custom application ···········································································································165
Enabling application control ···················································································································166
Application control configuration example ·····································································································167
Configuring webpage redirection ································································ 169
Configuring routes······················································································· 171
Overview ························································································································································171
Creating an IPv4 static route··························································································································171
Displaying the active route table ····················································································································172
IPv4 static route configuration example ·········································································································173
Network requirements····························································································································173
Configuration considerations··················································································································174
Configuration procedure·························································································································174
Configuration guidelines ································································································································176
v
Configuring user-based load sharing ·························································· 177
Overview ························································································································································177
Configuration procedure ································································································································177
Configuring traffic ordering·········································································· 179
Overview ························································································································································179
Recommended configuration procedure········································································································179
Setting the traffic ordering interval ·················································································································179
Specifying the traffic ordering mode ··············································································································180
Displaying internal interface traffic ordering statistics ····················································································180
Displaying external interface traffic ordering statistics ···················································································181
Configuring DNS ························································································· 182
Overview ························································································································································182
Recommended configuration procedure········································································································182
Configuring dynamic domain name resolution ·······················································································182
Configuring DNS proxy ··························································································································183
Enabling dynamic domain name resolution ···································································································183
Enabling DNS proxy·······································································································································183
Clearing the dynamic domain name cache····································································································184
Specifying a DNS server································································································································184
Configuring a domain name suffix ·················································································································184
Domain name resolution configuration example····························································································185
Configuring DDNS ······················································································ 190
Overview ························································································································································190
Configuration prerequisites ····························································································································191
Configuration procedure ································································································································191
DDNS configuration example·························································································································192
Configuring DHCP ······················································································ 195
Introduction to DHCP ·····································································································································195
Recommended configuration procedure········································································································196
Configuring the DHCP server·················································································································196
Configuring the DHCP relay agent·········································································································197
Configuring the DHCP client ··················································································································198
Configuration guidelines ································································································································198
Enabling DHCP··············································································································································198
Configuring DHCP interface setup·················································································································199
Configuring a static address pool for the DHCP server ·················································································200
Configuring a dynamic address pool for the DHCP server ············································································201
Configuring IP addresses excluded from dynamic allocation ········································································203
Configuring a DHCP server group ·················································································································204
DHCP configuration examples·······················································································································205
DHCP configuration example without DHCP relay agent ······································································206
DHCP relay agent configuration example ······························································································213
Configuring ACLs························································································ 218
Overview ························································································································································218
Recommended IPv4 ACL configuration procedure························································································218
Configuration guidelines ································································································································218
Adding an IPv4 ACL·······································································································································219
Configuring a rule for a basic IPv4 ACL·········································································································219
Configuring a rule for an advanced IPv4 ACL································································································221
Configuring a rule for an Ethernet frame header ACL ···················································································224
Configuring QoS ························································································· 227
Overview ························································································································································227
Subnet limit ············································································································································227
Advanced limit········································································································································227
Advanced queue ····································································································································227
vi
Configuring subnet limit ·································································································································228
Configuring advanced limit·····························································································································229
Configuring advanced queue ·························································································································231
Configuring interface bandwidth·············································································································232
Configuring bandwidth guarantee ··········································································································233
QoS configuration examples··························································································································235
Subnet limit configuration example ········································································································235
Advanced queue configuration example ································································································236
Appendix Packet precedences ······················································································································239
Configuring SNMP ······················································································ 242
Overview ························································································································································242
SNMP agent configuration task list ················································································································242
Enabling the SNMP agent function ········································································································243
Configuring an SNMP view ····················································································································245
Configuring an SNMP community ··········································································································247
Configuring an SNMP group ··················································································································248
Configuring an SNMP user ····················································································································249
Configuring the SNMP trap function·······································································································251
Displaying SNMP packet statistics·········································································································252
SNMPv1/v2c configuration example ··············································································································253
SNMPv3 configuration example·····················································································································256
Configuring bridging···················································································· 262
Overview ························································································································································262
Major functionalities of bridges···············································································································262
VLAN transparency ································································································································266
Configuring bridging·······································································································································266
Recommended basic bridging configuration procedure·········································································266
Enabling a bridge set ·····························································································································266
Adding an interface to a bridge set ········································································································267
Bridging configuration example······················································································································268
Configuring user groups·············································································· 271
User group configuration task list···················································································································271
Configuring a user group························································································································271
Configuring a user··································································································································272
Configuring access control·····················································································································273
Configuring application control···············································································································274
Configuring bandwidth control················································································································275
Configuring packet filtering·····················································································································276
Synchronizing user group configuration for wan interfaces ···································································278
User group configuration example ·················································································································278
Configuring MSTP······················································································· 286
Introduction to STP ········································································································································286
STP protocol packets ·····························································································································286
Basic concepts in STP ···························································································································286
How STP works······································································································································287
Introduction to RSTP······································································································································293
Introduction to MSTP ·····································································································································293
MSTP features ·······································································································································293
MSTP basic concepts ····························································································································294
How MSTP works···································································································································297
MSTP implementation on devices··········································································································297
Protocols and standards ························································································································298
Configuration restrictions and guidelines ·······································································································298
Recommended MSTP configuration procedure·····························································································298
Configuring an MST region ····························································································································299
Configuring MSTP globally ····························································································································300
Configuring MSTP on a port ··························································································································304
MSTP configuration example·························································································································306
vii
Configuring RADIUS ··················································································· 311
Overview ························································································································································311
Configuring a RADIUS scheme ·····················································································································311
Configuring common parameters···········································································································312
Adding RADIUS servers·························································································································315
RADIUS configuration example ·····················································································································316
Configuration guidelines ································································································································322
Configuring login control ············································································· 324
Configuration procedure ································································································································324
Login control configuration example ··············································································································325
Network requirements····························································································································325
Configuring a login control rule so Host A cannot Telnet to Router ·······················································325
Configuring a login control rule so Host B cannot access Router through the Web ······························326
Configuring ARP ························································································· 328
Overview ························································································································································328
Gratuitous ARP ······································································································································328
Displaying ARP entries ··································································································································328
Creating a static ARP entry····························································································································328
Removing ARP entries···································································································································329
Enabling learning of dynamic ARP entries·····································································································329
Configuring gratuitous ARP ···························································································································330
Static ARP configuration example ·················································································································331
Configuring ARP attack protection······························································ 335
Overview ························································································································································335
Configuring periodic sending of gratuitous ARP packets···············································································335
Configuring ARP automatic scanning ············································································································336
Configuring fixed ARP····································································································································337
Configuring IPsec VPN ··················································································· 1
Overview ····························································································································································1
Recommended configuration procedure············································································································1
Configuring an IPsec connection ·······················································································································2
Displaying IPsec VPN monitoring information ···································································································7
IPsec VPN configuration example ·····················································································································9
Configuration guidelines ··································································································································11
Configuring L2TP ·························································································· 12
Enabling L2TP ·················································································································································13
Adding an L2TP group ·····································································································································13
Displaying L2TP tunnel information ·················································································································19
Client-initiated VPN configuration example······································································································19
Configuring GRE··························································································· 24
Overview ··························································································································································24
Configuring a GRE over IPv4 tunnel················································································································24
Recommended configuration procedure ··································································································24
Creating a GRE tunnel·····························································································································24
GRE over IPv4 tunnel configuration example ··································································································26
Network requirements······························································································································26
Configuration procedure···························································································································26
Verifying the configuration························································································································31
SSL VPN overview························································································ 32
How SSL VPN works ·······································································································································32
Advantages of SSL VPN··································································································································33
Configuring SSL VPN gateway ····································································· 34
Recommended configuration procedure··········································································································34
viii
Configuring the SSL VPN service ····················································································································35
Configuring Web proxy server resources·········································································································36
Configuring TCP application resources ···········································································································38
Configuring a remote access service resource ························································································38
Configuring a desktop sharing service resource ······················································································40
Configuring an email service resource·····································································································41
Configuring a Notes service resource ······································································································42
Configuring a common TCP service resource ·························································································44
Configuring IP network resources····················································································································45
Recommended configuration procedure ··································································································45
Configuring global parameters·················································································································45
Configuring host resources ······················································································································46
Configuring a user-IP binding···················································································································48
Configuring a predefined domain name ···································································································49
Configuring a resource group ··························································································································50
Configuring local users ····································································································································52
Adding a local user manually ···················································································································52
Importing local users in bulk·····················································································································54
Configuring a user group ·································································································································55
Viewing user information··································································································································57
Viewing online user information ···············································································································57
Logging out an online user·······················································································································57
Viewing history user information ··············································································································57
Performing basic configurations for the SSL VPN domain ··············································································58
Configuring the domain policy··················································································································58
Configuring the caching policy ·················································································································60
Configuring a bulletin ·······························································································································60
Configuring authentication policies ··················································································································61
Configuring local authentication ···············································································································62
Configuring RADIUS authentication·········································································································62
Configuring LDAP authentication ·············································································································63
Configuring AD authentication ·················································································································65
Configuring combined authentication·······································································································66
Configuring a security policy ····························································································································67
Customizing the SSL VPN user interface ········································································································70
Customizing the SSL VPN interface partially ···························································································70
Customizing the SSL VPN interface fully ·································································································71
User access to SSL VPN ·············································································· 73
Logging in to the SSL VPN service interface ···································································································73
Accessing SSL VPN resources························································································································74
Getting help information···································································································································75
Changing the login password···························································································································75
SSL VPN configuration example··································································· 77
Network requirements······································································································································77
Configuration prerequisites ······························································································································77
Configuration procedure ··································································································································78
Configuring the SSL VPN service ············································································································78
Configuring SSL VPN resources··············································································································81
Configuring SSL VPN users·····················································································································85
Configuring an SSL VPN domain·············································································································88
Verifying the configuration ·······························································································································90
Managing certificates ···················································································· 93
Overview ··························································································································································93
Recommended configuration procedure··········································································································93
Recommended configuration procedure for manual request ···································································94
Recommended configuration procedure for automatic request ·······························································95
Creating a PKI entity ········································································································································96
Creating a PKI domain·····································································································································97
Generating an RSA key pair ··························································································································100
ix
Destroying the RSA key pair··························································································································101
Retrieving and displaying a certificate ···········································································································101
Requesting a local certificate ·························································································································102
Retrieving and displaying a CRL····················································································································103
PKI configuration examples ···························································································································104
Certificate request from a Windows 2003 CA server ·············································································104
Certificate request from an RSA Keon CA server ··················································································108
IKE negotiation with RSA digital signature·····························································································112
Configuration guidelines ································································································································118
Managing the system·················································································· 119
Configuring Web management ······················································································································119
Managing the configuration····························································································································119
Saving the configuration·························································································································119
Restoring factory defaults ······················································································································120
Backing up configuration························································································································120
Restoring configuration ··························································································································121
Backing up and restoring device files through the USB port··································································122
Rebooting the device ·····································································································································123
Managing services ·········································································································································123
Managing users ·············································································································································125
Creating a user·······································································································································125
Setting the super password····················································································································127
Switching to the management level ·······································································································127
Configuring system time ································································································································128
Setting the system time··························································································································128
Setting the time zone and daylight saving time······················································································130
Configuring TR-069········································································································································131
TR-069 network framework····················································································································132
TR-069 basic functions ··························································································································132
Configuration procedure·························································································································134
Configuration guidelines·························································································································135
Upgrading software········································································································································135
Upgrading software (for the MSR900/MSR20-1X)·················································································135
Upgrading software (for the MSR20/30/50) ···························································································136
Configuring SNMP (lite version)·································································· 137
Overview ························································································································································137
Enabling the SNMP agent function ················································································································137
SNMP configuration examples·······················································································································139
SNMPv1/v2c configuration example ······································································································139
SNMPv3 configuration example·············································································································141
Configuring syslogs····················································································· 143
Displaying syslogs ·········································································································································143
Setting the log host ········································································································································144
Setting buffer capacity and refresh interval····································································································145
Using diagnostic tools ················································································· 146
Traceroute······················································································································································146
Ping································································································································································146
Traceroute operation······································································································································146
Ping operation················································································································································147
Configuring WiNet······················································································· 149
Configuring WiNet··········································································································································149
Enabling WiNet ······································································································································149
Setting the background image for the WiNet topology diagram·····························································150
Managing WiNet·····································································································································151
Configuring a RADIUS user ···················································································································153
How the guest administrator obtains the guest password······································································155
WiNet configuration example ·························································································································156
x
WiNet establishment configuration example ··························································································156
WiNet-based RADIUS authentication configuration example ································································160
Configuration wizard ··················································································· 164
Overview ························································································································································164
Basic service setup ········································································································································164
Entering the configuration wizard homepage·························································································164
Selecting a country·································································································································164
Configuring local numbers ·····················································································································165
Configuring connection properties ·········································································································165
Finishing configuration wizard················································································································166
Local number and call route········································································ 167
Local numbers and call routes ·······················································································································167
Fax and modem ·············································································································································167
Call services···················································································································································167
Advanced settings··········································································································································167
Basic settings······························································································ 168
Introduction to basic settings ·························································································································168
Local number ·········································································································································168
Call route················································································································································168
Basic settings·················································································································································169
Configuring a local number ····················································································································169
Configuring a call route ··························································································································170
Configuration examples of local number and call route ·················································································173
Configuring direct calling for SIP UAs through the SIP protocol (configuring static IP address)············173
Configuring direct calling for SIP UAs through the SIP protocol (configuring domain name) ················178
Configuring proxy server involved calling for SIP UAs···········································································183
Configuring trunking mode calling··········································································································190
Fax and modem ·························································································· 194
Protocols and standards for FoIP···········································································································194
Fax flow··················································································································································194
Introduction to fax methods····················································································································195
SIP modem pass-through function·················································································································195
Configuring fax and modem···························································································································196
Configuring fax and modem parameters of a local number ···································································196
Configuring fax and modem parameters of a call route ·········································································199
Call services································································································ 200
Call waiting·············································································································································200
Call hold ·················································································································································200
Call forwarding ·······································································································································200
Call transfer············································································································································200
Call backup ············································································································································201
Hunt group ·············································································································································201
Call barring·············································································································································201
Message waiting indication ····················································································································201
Three-party conference··························································································································201
Silent monitor and barge in services ······································································································201
Calling party control ·······························································································································202
Door opening control······························································································································202
CID on the FXS voice subscriber line ····································································································202
CID on the FXO voice subscriber line ····································································································203
Support for SIP voice service of the VCX ······························································································203
Configuring call services of a local number ···································································································203
Configuring call forwarding, call waiting, call hold, call transfer, and three-party conference ················203
Configuring other voice functions···········································································································205
Configuring call services of a call route ·········································································································207
Call services configuration examples·············································································································208
Configuring call waiting ··························································································································208
xi
Configuring call forwarding·····················································································································209
Configuring call transfer ·························································································································211
Configuring hunt group···························································································································212
Configuring three-party conference········································································································215
Configuring silent monitor and barge in ·································································································217
Advanced settings······················································································· 223
Introduction to advanced settings ··················································································································223
Coding parameters·································································································································223
Other parameters···································································································································227
Configuring advanced settings of a local number ··························································································227
Configuring coding parameters of a local number ·················································································227
Configuring other parameters of a local number····················································································229
Configuring advanced settings of a call route ································································································230
Configuring coding parameters of a call route ·······················································································230
Configuring other parameters for a call route·························································································230
Advanced settings configuration example ·····································································································231
Configuring out-of-band DTMF transmission mode for SIP ···································································231
SIP-to-SIP connections··············································································· 233
Configuring media parameters for SIP-to-SIP connections ···········································································233
Configuring signaling parameters for SIP-to-SIP connections·······································································234
Configuring dial plans ················································································· 236
Dial plan process ···········································································································································236
Regular expression ········································································································································237
Dial plan functions··········································································································································238
Number match········································································································································238
Call control ·············································································································································240
Number substitution ·······························································································································240
Configuring dial plan ······································································································································241
Configuring number match·····················································································································241
Configuring call control···························································································································242
Configuring number substitution ············································································································245
Dial plan configuration examples ···················································································································247
Configuring number match mode···········································································································247
Configuring the match order of number selection rules ·········································································250
Configuring entity type selection priority rules························································································253
Configuring call authority control············································································································257
Configuring number substitution ············································································································260
Call connection ··························································································· 268
Introduction to SIP ·········································································································································268
Terminology ···········································································································································268
Functions and features of SIP················································································································269
SIP messages ········································································································································270
SIP fundamentals···································································································································270
Support for transport layer protocols··············································································································273
SIP security····················································································································································273
Signaling encryption·······························································································································274
Media flow encryption ····························································································································274
TLS-SRTP combinations························································································································275
Support for SIP extensions ····························································································································275
Configuring SIP connections······································································· 276
Configuring connection properties ·················································································································276
Configuring registrar·······························································································································276
Configuring proxy server ························································································································277
Configuring session properties ······················································································································278
Configuring source address binding·······································································································278
Configuring SIP listening························································································································280
Configuring media security·····················································································································281
xii
Configuring caller identity and privacy ···································································································281
Configuring SIP session refresh·············································································································282
Configuring compatibility ························································································································283
Configuring advanced settings·······················································································································284
Configuring the address hiding mode ····································································································284
Specifying the outbound proxy···············································································································285
Configuring registration parameters·······································································································285
Configuring voice mailbox server ···········································································································287
Configuring signaling security ················································································································289
Configuring call release cause code mapping ·······························································································289
Configuring PSTN call release cause code mappings ···········································································289
Configuring SIP status code mappings ··································································································290
SIP connection configuration examples·········································································································291
Configuring basic SIP calling features ···································································································291
Configuring caller ID blocking ················································································································291
Configuring SRTP for SIP calls ··············································································································293
Configuring TCP to carry outgoing SIP calls··························································································293
Configuring TLS to carry outgoing SIP calls ··························································································295
Managing SIP server groups ······································································ 297
Creating a SIP server group···················································································································297
Configuring the real-time switching function ··························································································297
Configuring the keep-alive mode ···········································································································298
Configuring the source address binding mode·······················································································299
Configuring server information management ·························································································300
Configuring SIP trunk·················································································· 302
Features·················································································································································303
Typical applications································································································································303
Protocols and standards ························································································································304
Configuring SIP trunk·····································································································································304
Configuration task list·····························································································································304
Enabling the SIP trunk function··············································································································305
Configuring a SIP server group··············································································································305
Configuring a SIP trunk account ············································································································306
Configuring a call route for outbound calls·····································································································307
Configuring a call route for a SIP trunk account·····················································································307
Configuring fax and modem parameters of the call route of a SIP trunk account··································309
Configuring advanced settings of the call route of a SIP trunk account·················································309
Configuring media parameters for SIP-to-SIP connections ···································································311
Configuring signaling parameters for SIP-to-SIP connections ·······························································312
Configuring a call route for inbound calls·······································································································313
SIP trunk configuration examples ··················································································································313
Configuring a SIP server group with only one member server·······························································313
Configuring a SIP server group with multiple member servers ······························································319
Configuring call match rules···················································································································322
Managing data links ···················································································· 325
Overview ························································································································································325
Introduction to E1 and T1·······················································································································325
E1 and T1 voice functions······················································································································325
E1 and T1 interfaces ······························································································································325
Features of E1 and T1 ···························································································································326
Introduction to BSV interface ·················································································································327
Configuring digital link management··············································································································327
Configuring VE1 line ······························································································································327
Configuring VT1 line·······························································································································333
Configuring BSV line ······························································································································335
Displaying ISDN link state······················································································································340
E1 voice DSS1 signaling configuration example ···························································································340
xiii
Managing lines···························································································· 343
FXS voice subscriber line ······························································································································343
FXO voice subscriber line ······························································································································343
E&M subscriber line ·······································································································································343
E&M introduction····································································································································343
E&M start mode ·····································································································································343
One-to-one binding between FXS and FXO voice subscriber lines·······························································345
Echo adjustment function·······························································································································345
Adjusting echo duration··························································································································345
Adjusting echo cancellation parameters ································································································345
Enabling the nonlinear function of echo cancellation ·············································································346
Line management configuration·····················································································································346
Configuring an FXS voice subscriber line ······························································································346
Configuring an FXO voice subscriber line······························································································348
Configuring an E&M subscriber line·······································································································352
Configuring an ISDN line························································································································355
Configuring a paging line ·······················································································································357
Configuring an MoH line·························································································································358
Line management configuration examples ····································································································359
Configuring an FXO voice subscriber line······························································································359
Configuring one-to-one binding between FXS and FXO········································································360
Configuring SIP local survival ····································································· 367
Configuring SIP local survival ························································································································368
Service configuration······························································································································368
User management··································································································································369
Trusted nodes ········································································································································369
Call-out route··········································································································································370
Area prefix··············································································································································371
Call authority control ······························································································································371
SIP local survival configuration examples······································································································373
Configuring local SIP server to operate in alone mode··········································································373
Configuring local SIP server to operate in alive mode ···········································································375
Configuring call authority control············································································································377
Configuring an area prefix······················································································································382
Configuring a call-out route ····················································································································384
Configuring IVR··························································································· 387
Overview ························································································································································387
Advantages ····················································································································································387
Customizable voice prompts ··················································································································387
Various codecs·······································································································································387
Flexible node configuration ····················································································································387
Customizable process····························································································································387
Successive jumping ·······························································································································387
Error processing methods ······················································································································388
Timeout processing methods ·················································································································388
Various types of secondary calls············································································································388
Configuring IVR··············································································································································388
Uploading media resource files··············································································································388
Importing a media resource through an MoH audio input port·······························································389
Configuring the global key policy ···················································································································390
Configuring IVR nodes···································································································································391
Configuring a call node ··························································································································391
Configuring a jump node························································································································394
Configuring a service node ····················································································································396
Configuring access number management ·····································································································397
Configuring an access number ··············································································································397
Configuring advanced settings for the access number ··········································································398
IVR configuration examples ···························································································································398
Configure a secondary call on a call node (match the terminator of numbers)······································398
xiv
Configure a secondary call on a call node (match the number length) ··················································403
Configure a secondary call on a call node (match a number)································································406
Configure an extension secondary call on a call node···········································································408
Configure a jump node···························································································································410
Configure an immediate secondary call on a service node····································································412
Configure a secondary call on a service node ·······················································································414
Configure a call node, jump node, and service node ·············································································416
Customizing IVR services ······························································································································422
Create a menu ·······································································································································423
Bind an access number··························································································································428
Customize IVR services ·························································································································429
Custom IVR service configuration example ···························································································430
Advanced configuration ·············································································· 441
Global configuration ·······································································································································441
VRF-aware SIP ··············································································································································442
Batch configuration ········································································································································443
Local number ·········································································································································443
Call route················································································································································450
Line management ··································································································································453
SIP local survival services······················································································································456
States and statistics ···················································································· 458
Line states······················································································································································458
Displaying detailed information about analog voice subscriber lines ·····················································459
Displaying detailed information about digital voice subscriber lines ······················································459
Call statistics ··················································································································································460
Displaying active call summary ··············································································································461
Displaying history call summary·············································································································461
SIP UA states·················································································································································462
Displaying TCP connection information ·································································································462
Displaying TLS connection information··································································································462
Connection status ··········································································································································463
Displaying number register status··········································································································463
Displaying number subscription status···································································································464
Local survival service states ··························································································································464
SIP trunk account states ································································································································465
Displaying SIP trunk account states·······································································································465
Displaying dynamic contact states ·········································································································466
Server group information ·······························································································································466
IVR information ··············································································································································467
Displaying IVR call states·······················································································································467
Displaying IVR play states ·····················································································································467
Document conventions and icons ······························································· 469
Conventions ···················································································································································469
Network topology icons··································································································································470
Support and other resources ······································································ 471
Accessing Hewlett Packard Enterprise Support ····························································································471
Accessing updates·········································································································································471
Websites ················································································································································472
Customer self repair·······························································································································472
Remote support······································································································································472
Documentation feedback ·······················································································································472
Index ··········································································································· 474
1
Web overview
The device provides Web-based configuration interfaces for visual device management and
maintenance.
Figure 1 Web-based network management operating environment
Logging in to the Web interface
Follow these guidelines when you log in to the Web interface:
•The PC in Figure 1 is the one where you configure the device, but not necessarily the
Web-based network management terminal. The Web-based network management terminal is a
PC (or another terminal) used to log in to the Web interface and is required to be reachable to
the device.
•If you click the verification code displayed on the Web login page, you can get a new verification
code.
•Up to 24 users can concurrently log in to the device through the Web interface.
•You can also log in to the Web interface through HTTPS, but you must enable HTTPS on the
device, and the address you input in the address bar must start with https://. For more
information, see "Configuring service management."
•If you have configured the auto authentication mode for an HTTPS login user by using the web
https-authorization mode command, the user is automatically authenticated by the PKI
certificate, without inputting any username and password. For more information, see HPE
FlexNetwork MSR Router Series Comware 5 Fundamentals Configuration Guide.
You can use the following default settings to log in to the Web interface through HTTP:
•Username—admin.
•Password—admin.
•IP address of the device—192.168.1.1.
To log in to the Web interface of the device from a PC:
1. Connect the Ethernet interface Ethernet 0/0 of the device to the PC using a crossover Ethernet
cable.
2. Configure an IP address for the PC and make sure the PC and device can reach each other.
For example, assign the PC an IP address (for example, 192.168.1.2) within the network
segment 192.168.1.0/24 (except for 192.168.1.1).
3. Open the browser, and input the login information.
a. Type the IP address http://192.168.1.1 in the address bar and press Enter.
The login page of the Web interface (see Figure 2) appears.
b. Enter the username and password admin, and the verification code, select the language
(English and Chinese are supported at present), and click Login.
2
Figure 2 Login page of the Web interface
Logging out of the Web interface
CAUTION:
A logged-in user cannot automatically log out by directly closing the browser.
Click Logout in the upper-right corner of the Web interface to quit Web-based network management.
The system will not save the current configuration before you log out of the Web interface. Save the
current configuration before logout.
Introduction to the Web interface
The Web-based interface is composed of three parts: navigation area, title area, and body area.
3
Figure 3 Initial page of the Web interface
4
(1) Navigation area (2) Title area (3) Body area
•Navigation area—Organizes the Web function menus in the form of a navigation tree, where
you can select function menus as needed. The result is displayed in the body area.
•Title area—On the left, displays the path of the current configuration interface in the navigation
area; on the right, provides the Save button to quickly save the current configuration, the Help
button to display the Web related help information, and the Logout button to log out of the Web
interface.
•Body area—The area where you can configure and display a function.
User level
Web user levels, from low to high, are visitor, monitor, configure, and management. A
higher-level user has all rights of a lower-level user.
•Visitor—Users of this level can perform the ping and traceroute operations, but can neither
access the device data nor configure the device.
•Monitor—Users of this level can only access the device data but cannot configure the device.
•Configure—Users of this level can access data from the device and configure the device, but
they cannot upgrade the host software, add/delete/modify users, or backup/restore the
application file.
•Management—Users of this level can perform any operations for the device.
Introduction to the Web-based NM functions
User level in Table 1 indicates that users of this level or users of a higher level can perform the
corresponding operations.
Table 1 Web-based NM function description
Function menu Description User
level
Device Information
Device Information
Displays and allows you to
refresh device information,
broadband connection
information, 3G wireless
card state, LAN information,
WLAN information, services
information, and recent
system logs.
Monitor
Integrated Service
Management
Displays the URL address
on a card. Monitor
Allows you to change the
URL address of a card, and
log in to the Web interface
of the card.
Configure
Wizard Basic Configuration Wizard
Guides you through the
basic service configuration
of routers.
Configure
Interface
Setup
WAN
Interface
Setup
WAN Interface Setup
Displays the configuration
information of a WAN
interface, and allows you to
view interface statistics.
Monitor
5
Function menu Description User
level
Allows you to modify WAN
interface configuration, and
clear the statistics of a WAN
interface.
Configure
LAN Interface
Setup
VLAN Setup
Displays the configuration
information of a VLAN. Monitor
Allows you to configure a
VLAN. Configure
VLAN Interface Setup
Displays the configuration
information of a VLAN
interface.
Monitor
Allows you to configure a
VLAN interface. Configure
Wireless
Configuration
Summary
Displays wireless service,
radio and client information. Monitor
Allows you to view wireless
service, radio and client
information; clear radio
statistics; clear client
statistics, disconnect a
connection, and add a client
to a blacklist.
Configure
Access Service
Displays configuration
information about an
access service.
Monitor
Allows you to create and
configure an access
service.
Configure
Radio
Displays radio parameters
and radio rate settings. Monitor
Allows you to set radio
parameters, 802.11a/b/g
rates, and 803.11n MCS.
Configure
Security
Displays configuration
information of blacklist,
whitelist, and user isolation.
Monitor
Allows you to configure
blacklist, whitelist, and user
isolation.
Configure
Wireless QoS
Displays wireless QoS and
rate limiting settings, and
displays radio and client
information.
Monitor
Allows you to configure
wireless QoS and rate
limiting, and clear radio and
client information.
Configure
Country Code
Displays configuration
information of the country
code.
Monitor
Other manuals for FlexNetwork MSR Series
7
Table of contents
Other HPE Network Router manuals
HPE
HPE FlexNetwork MSR Series User manual
HPE
HPE FlexNetwork MSR Series Installation manual
HPE
HPE FlexNetwork 6600 Installation manual
HPE
HPE FlexNetwork MSR Series User manual
HPE
HPE FlexNetwork HSR6800 series User manual
HPE
HPE FlexNetwork 10500 SERIES User manual
HPE
HPE FlexNetwork MSR Series User manual
HPE
HPE FlexNetwork 5510 HI Series User manual
HPE
HPE FlexNetwork HSR6800 series Installation manual
HPE
HPE Aruba 2930F 24G User manual
HPE
HPE FlexNetwork 5510 HI Series User manual
HPE
HPE FlexFabric 7900 Series User manual
HPE
HPE FlexNetwork 5130 EI Series User manual
HPE
HPE FlexNetwork MSR2004-48 User manual
HPE
HPE FlexNetwork MSR Series User manual
HPE
HPE FlexNetwork MSR3012 Installation manual
HPE
HPE FlexNetwork MSR954 User manual
HPE
HPE FlexNetwork 5130 Series User manual
HPE
HPE FlexNetwork VSR1000 User manual
HPE
HPE FlexNetwork HSR6600 User manual
Popular Network Router manuals by other brands
Airlinkplus
Airlinkplus ARW027 user manual
ZyXEL Communications
ZyXEL Communications PMG1005-T20C quick start guide
Aztech
Aztech DSL1000EW L Start guide
D-Link
D-Link DIR-601 Quick install guide
THOMSON
THOMSON GRASS VALLEY Profile XP PVS3000 installation guide
NetComm
NetComm Liberty 3G17Wn Internet Connection Setup Instructions